azure.appservice.WindowsWebApp

Azure v6.35.0, Apr 21 26

We recommend using Azure Native.

Viewing docs for Azure v6.35.0
published on Tuesday, Apr 21, 2026 by Pulumi

Schema (JSON)

pulumi/pulumi-azure

We recommend using Azure Native.

Viewing docs for Azure v6.35.0
published on Tuesday, Apr 21, 2026 by Pulumi

Schema (JSON)

pulumi/pulumi-azure

Example Usage

import * as pulumi from "@pulumi/pulumi";
import * as azure from "@pulumi/azure";

const example = new azure.core.ResourceGroup("example", {
    name: "example-resources",
    location: "West Europe",
});
const exampleServicePlan = new azure.appservice.ServicePlan("example", {
    name: "example",
    resourceGroupName: example.name,
    location: example.location,
    skuName: "P1v2",
    osType: "Windows",
});
const exampleWindowsWebApp = new azure.appservice.WindowsWebApp("example", {
    name: "example",
    resourceGroupName: example.name,
    location: exampleServicePlan.location,
    servicePlanId: exampleServicePlan.id,
    siteConfig: {},
});

import pulumi
import pulumi_azure as azure

example = azure.core.ResourceGroup("example",
    name="example-resources",
    location="West Europe")
example_service_plan = azure.appservice.ServicePlan("example",
    name="example",
    resource_group_name=example.name,
    location=example.location,
    sku_name="P1v2",
    os_type="Windows")
example_windows_web_app = azure.appservice.WindowsWebApp("example",
    name="example",
    resource_group_name=example.name,
    location=example_service_plan.location,
    service_plan_id=example_service_plan.id,
    site_config={})

package main

import (
	"github.com/pulumi/pulumi-azure/sdk/v6/go/azure/appservice"
	"github.com/pulumi/pulumi-azure/sdk/v6/go/azure/core"
	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		example, err := core.NewResourceGroup(ctx, "example", &core.ResourceGroupArgs{
			Name:     pulumi.String("example-resources"),
			Location: pulumi.String("West Europe"),
		})
		if err != nil {
			return err
		}
		exampleServicePlan, err := appservice.NewServicePlan(ctx, "example", &appservice.ServicePlanArgs{
			Name:              pulumi.String("example"),
			ResourceGroupName: example.Name,
			Location:          example.Location,
			SkuName:           pulumi.String("P1v2"),
			OsType:            pulumi.String("Windows"),
		})
		if err != nil {
			return err
		}
		_, err = appservice.NewWindowsWebApp(ctx, "example", &appservice.WindowsWebAppArgs{
			Name:              pulumi.String("example"),
			ResourceGroupName: example.Name,
			Location:          exampleServicePlan.Location,
			ServicePlanId:     exampleServicePlan.ID(),
			SiteConfig:        &appservice.WindowsWebAppSiteConfigArgs{},
		})
		if err != nil {
			return err
		}
		return nil
	})
}

using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Azure = Pulumi.Azure;

return await Deployment.RunAsync(() => 
{
    var example = new Azure.Core.ResourceGroup("example", new()
    {
        Name = "example-resources",
        Location = "West Europe",
    });

    var exampleServicePlan = new Azure.AppService.ServicePlan("example", new()
    {
        Name = "example",
        ResourceGroupName = example.Name,
        Location = example.Location,
        SkuName = "P1v2",
        OsType = "Windows",
    });

    var exampleWindowsWebApp = new Azure.AppService.WindowsWebApp("example", new()
    {
        Name = "example",
        ResourceGroupName = example.Name,
        Location = exampleServicePlan.Location,
        ServicePlanId = exampleServicePlan.Id,
        SiteConfig = null,
    });

});

package generated_program;

import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azure.core.ResourceGroup;
import com.pulumi.azure.core.ResourceGroupArgs;
import com.pulumi.azure.appservice.ServicePlan;
import com.pulumi.azure.appservice.ServicePlanArgs;
import com.pulumi.azure.appservice.WindowsWebApp;
import com.pulumi.azure.appservice.WindowsWebAppArgs;
import com.pulumi.azure.appservice.inputs.WindowsWebAppSiteConfigArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;

public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }

    public static void stack(Context ctx) {
        var example = new ResourceGroup("example", ResourceGroupArgs.builder()
            .name("example-resources")
            .location("West Europe")
            .build());

        var exampleServicePlan = new ServicePlan("exampleServicePlan", ServicePlanArgs.builder()
            .name("example")
            .resourceGroupName(example.name())
            .location(example.location())
            .skuName("P1v2")
            .osType("Windows")
            .build());

        var exampleWindowsWebApp = new WindowsWebApp("exampleWindowsWebApp", WindowsWebAppArgs.builder()
            .name("example")
            .resourceGroupName(example.name())
            .location(exampleServicePlan.location())
            .servicePlanId(exampleServicePlan.id())
            .siteConfig(WindowsWebAppSiteConfigArgs.builder()
                .build())
            .build());

    }
}

resources:
  example:
    type: azure:core:ResourceGroup
    properties:
      name: example-resources
      location: West Europe
  exampleServicePlan:
    type: azure:appservice:ServicePlan
    name: example
    properties:
      name: example
      resourceGroupName: ${example.name}
      location: ${example.location}
      skuName: P1v2
      osType: Windows
  exampleWindowsWebApp:
    type: azure:appservice:WindowsWebApp
    name: example
    properties:
      name: example
      resourceGroupName: ${example.name}
      location: ${exampleServicePlan.location}
      servicePlanId: ${exampleServicePlan.id}
      siteConfig: {}

API Providers

This resource uses the following Azure API Providers:

Microsoft.Web - 2023-12-01, 2023-01-01

Create WindowsWebApp Resource

Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.

Constructor syntax

new WindowsWebApp(name: string, args: WindowsWebAppArgs, opts?: CustomResourceOptions);

@overload
def WindowsWebApp(resource_name: str,
                  args: WindowsWebAppArgs,
                  opts: Optional[ResourceOptions] = None)

@overload
def WindowsWebApp(resource_name: str,
                  opts: Optional[ResourceOptions] = None,
                  resource_group_name: Optional[str] = None,
                  site_config: Optional[WindowsWebAppSiteConfigArgs] = None,
                  service_plan_id: Optional[str] = None,
                  location: Optional[str] = None,
                  name: Optional[str] = None,
                  client_certificate_enabled: Optional[bool] = None,
                  client_certificate_exclusion_paths: Optional[str] = None,
                  client_certificate_mode: Optional[str] = None,
                  connection_strings: Optional[Sequence[WindowsWebAppConnectionStringArgs]] = None,
                  enabled: Optional[bool] = None,
                  ftp_publish_basic_authentication_enabled: Optional[bool] = None,
                  https_only: Optional[bool] = None,
                  identity: Optional[WindowsWebAppIdentityArgs] = None,
                  key_vault_reference_identity_id: Optional[str] = None,
                  app_settings: Optional[Mapping[str, str]] = None,
                  logs: Optional[WindowsWebAppLogsArgs] = None,
                  client_affinity_enabled: Optional[bool] = None,
                  public_network_access_enabled: Optional[bool] = None,
                  backup: Optional[WindowsWebAppBackupArgs] = None,
                  auth_settings_v2: Optional[WindowsWebAppAuthSettingsV2Args] = None,
                  auth_settings: Optional[WindowsWebAppAuthSettingsArgs] = None,
                  sticky_settings: Optional[WindowsWebAppStickySettingsArgs] = None,
                  storage_accounts: Optional[Sequence[WindowsWebAppStorageAccountArgs]] = None,
                  tags: Optional[Mapping[str, str]] = None,
                  virtual_network_backup_restore_enabled: Optional[bool] = None,
                  virtual_network_image_pull_enabled: Optional[bool] = None,
                  virtual_network_subnet_id: Optional[str] = None,
                  webdeploy_publish_basic_authentication_enabled: Optional[bool] = None,
                  zip_deploy_file: Optional[str] = None)

func NewWindowsWebApp(ctx *Context, name string, args WindowsWebAppArgs, opts ...ResourceOption) (*WindowsWebApp, error)

public WindowsWebApp(string name, WindowsWebAppArgs args, CustomResourceOptions? opts = null)

public WindowsWebApp(String name, WindowsWebAppArgs args)
public WindowsWebApp(String name, WindowsWebAppArgs args, CustomResourceOptions options)

type: azure:appservice:WindowsWebApp
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.

Parameters

name string: The unique name of the resource.
args WindowsWebAppArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

resource_name str: The unique name of the resource.
args WindowsWebAppArgs: The arguments to resource properties.
opts ResourceOptions: Bag of options to control resource's behavior.

ctx Context: Context object for the current deployment.
name string: The unique name of the resource.
args WindowsWebAppArgs: The arguments to resource properties.
opts ResourceOption: Bag of options to control resource's behavior.

name string: The unique name of the resource.
args WindowsWebAppArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

name String: The unique name of the resource.
args WindowsWebAppArgs: The arguments to resource properties.
options CustomResourceOptions: Bag of options to control resource's behavior.

WindowsWebApp Resource Properties

To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

Inputs

In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.

The WindowsWebApp resource accepts the following input properties:

ResourceGroupName string: The name of the Resource Group where the Windows Web App should exist. Changing this forces a new Windows Web App to be created.
ServicePlanId string: The ID of the Service Plan that this Windows App Service will be created in.
SiteConfig WindowsWebAppSiteConfig: A siteConfig block as defined below.
AppSettings Dictionary<string, string>: A map of key-value pairs of App Settings.
AuthSettings WindowsWebAppAuthSettings: An authSettings block as defined below.
AuthSettingsV2 WindowsWebAppAuthSettingsV2: An authSettingsV2 block as defined below.
Backup WindowsWebAppBackup: A backup block as defined below.
ClientAffinityEnabled bool: Should Client Affinity be enabled?
ClientCertificateEnabled bool: Should Client Certificates be enabled?
ClientCertificateExclusionPaths string: Paths to exclude when using client certificates, separated by ;
ClientCertificateMode string: The Client Certificate mode. Possible values are Required, Optional, and OptionalInteractiveUser. This property has no effect when clientCertificateEnabled is false. Defaults to Required.
ConnectionStrings List<WindowsWebAppConnectionString>: One or more connectionString blocks as defined below.
Enabled bool: Should the Windows Web App be enabled? Defaults to true.
FtpPublishBasicAuthenticationEnabled bool: Should the default FTP Basic Authentication publishing profile be enabled. Defaults to true.
HttpsOnly bool: Should the Windows Web App require HTTPS connections. Defaults to false.
Identity WindowsWebAppIdentity: An identity block as defined below.
KeyVaultReferenceIdentityId string: The User Assigned Identity ID used for accessing KeyVault secrets. The identity must be assigned to the application in the identity block. For more information see - Access vaults with a user-assigned identity
Location string: The Azure Region where the Windows Web App should exist. Changing this forces a new Windows Web App to be created.
Logs WindowsWebAppLogs: A logs block as defined below.
Name string: The name which should be used for this Windows Web App. Changing this forces a new Windows Web App to be created.
PublicNetworkAccessEnabled bool: Should public network access be enabled for the Web App. Defaults to true.
StickySettings WindowsWebAppStickySettings: A stickySettings block as defined below.
StorageAccounts List<WindowsWebAppStorageAccount>: One or more storageAccount blocks as defined below.
Note: Using this value requires WEBSITE_RUN_FROM_PACKAGE=1 to be set on the App in appSettings. Refer to the Azure docs for further details.
Tags Dictionary<string, string>: A mapping of tags which should be assigned to the Windows Web App.
VirtualNetworkBackupRestoreEnabled bool: Whether backup and restore operations over the linked virtual network are enabled. Defaults to false.
VirtualNetworkImagePullEnabled bool: Whether traffic for the image pull should be routed over the virtual network.
Note: virtualNetworkImagePullEnabled must be set to true when running in an App Service Environment.
VirtualNetworkSubnetId string: The subnet id which will be used by this Web App for regional virtual network integration.
Note: The AzureRM Terraform provider provides regional virtual network integration via the standalone resource appServiceVirtualNetworkSwiftConnection and in-line within this resource using the virtualNetworkSubnetId property. You cannot use both methods simultaneously. If the virtual network is set via the resource appServiceVirtualNetworkSwiftConnection then ignoreChanges should be used in the web app configuration.
Note: Assigning the virtualNetworkSubnetId property requires RBAC permissions on the subnet
WebdeployPublishBasicAuthenticationEnabled bool: Should the default WebDeploy Basic Authentication publishing credentials enabled. Defaults to true.
Note: Setting this value to true will disable the ability to use zipDeployFile which currently relies on the default publishing profile.
ZipDeployFile string: The local path and filename of the Zip packaged application to deploy to this Windows Web App.
Note: Using this value requires either WEBSITE_RUN_FROM_PACKAGE=1 or SCM_DO_BUILD_DURING_DEPLOYMENT=true to be set on the App in appSettings. Refer to the Azure docs on running the Web App directly from the Zip package, or automating the build for Zip deploy for further details.

ResourceGroupName string: The name of the Resource Group where the Windows Web App should exist. Changing this forces a new Windows Web App to be created.
ServicePlanId string: The ID of the Service Plan that this Windows App Service will be created in.
SiteConfig WindowsWebAppSiteConfigArgs: A siteConfig block as defined below.
AppSettings map[string]string: A map of key-value pairs of App Settings.
AuthSettings WindowsWebAppAuthSettingsArgs: An authSettings block as defined below.
AuthSettingsV2 WindowsWebAppAuthSettingsV2Args: An authSettingsV2 block as defined below.
Backup WindowsWebAppBackupArgs: A backup block as defined below.
ClientAffinityEnabled bool: Should Client Affinity be enabled?
ClientCertificateEnabled bool: Should Client Certificates be enabled?
ClientCertificateExclusionPaths string: Paths to exclude when using client certificates, separated by ;
ClientCertificateMode string: The Client Certificate mode. Possible values are Required, Optional, and OptionalInteractiveUser. This property has no effect when clientCertificateEnabled is false. Defaults to Required.
ConnectionStrings []WindowsWebAppConnectionStringArgs: One or more connectionString blocks as defined below.
Enabled bool: Should the Windows Web App be enabled? Defaults to true.
FtpPublishBasicAuthenticationEnabled bool: Should the default FTP Basic Authentication publishing profile be enabled. Defaults to true.
HttpsOnly bool: Should the Windows Web App require HTTPS connections. Defaults to false.
Identity WindowsWebAppIdentityArgs: An identity block as defined below.
KeyVaultReferenceIdentityId string: The User Assigned Identity ID used for accessing KeyVault secrets. The identity must be assigned to the application in the identity block. For more information see - Access vaults with a user-assigned identity
Location string: The Azure Region where the Windows Web App should exist. Changing this forces a new Windows Web App to be created.
Logs WindowsWebAppLogsArgs: A logs block as defined below.
Name string: The name which should be used for this Windows Web App. Changing this forces a new Windows Web App to be created.
PublicNetworkAccessEnabled bool: Should public network access be enabled for the Web App. Defaults to true.
StickySettings WindowsWebAppStickySettingsArgs: A stickySettings block as defined below.
StorageAccounts []WindowsWebAppStorageAccountArgs: One or more storageAccount blocks as defined below.
Note: Using this value requires WEBSITE_RUN_FROM_PACKAGE=1 to be set on the App in appSettings. Refer to the Azure docs for further details.
Tags map[string]string: A mapping of tags which should be assigned to the Windows Web App.
VirtualNetworkBackupRestoreEnabled bool: Whether backup and restore operations over the linked virtual network are enabled. Defaults to false.
VirtualNetworkImagePullEnabled bool: Whether traffic for the image pull should be routed over the virtual network.
Note: virtualNetworkImagePullEnabled must be set to true when running in an App Service Environment.
VirtualNetworkSubnetId string: The subnet id which will be used by this Web App for regional virtual network integration.
Note: The AzureRM Terraform provider provides regional virtual network integration via the standalone resource appServiceVirtualNetworkSwiftConnection and in-line within this resource using the virtualNetworkSubnetId property. You cannot use both methods simultaneously. If the virtual network is set via the resource appServiceVirtualNetworkSwiftConnection then ignoreChanges should be used in the web app configuration.
Note: Assigning the virtualNetworkSubnetId property requires RBAC permissions on the subnet
WebdeployPublishBasicAuthenticationEnabled bool: Should the default WebDeploy Basic Authentication publishing credentials enabled. Defaults to true.
Note: Setting this value to true will disable the ability to use zipDeployFile which currently relies on the default publishing profile.
ZipDeployFile string: The local path and filename of the Zip packaged application to deploy to this Windows Web App.
Note: Using this value requires either WEBSITE_RUN_FROM_PACKAGE=1 or SCM_DO_BUILD_DURING_DEPLOYMENT=true to be set on the App in appSettings. Refer to the Azure docs on running the Web App directly from the Zip package, or automating the build for Zip deploy for further details.

resourceGroupName String: The name of the Resource Group where the Windows Web App should exist. Changing this forces a new Windows Web App to be created.
servicePlanId String: The ID of the Service Plan that this Windows App Service will be created in.
siteConfig WindowsWebAppSiteConfig: A siteConfig block as defined below.
appSettings Map<String,String>: A map of key-value pairs of App Settings.
authSettings WindowsWebAppAuthSettings: An authSettings block as defined below.
authSettingsV2 WindowsWebAppAuthSettingsV2: An authSettingsV2 block as defined below.
backup WindowsWebAppBackup: A backup block as defined below.
clientAffinityEnabled Boolean: Should Client Affinity be enabled?
clientCertificateEnabled Boolean: Should Client Certificates be enabled?
clientCertificateExclusionPaths String: Paths to exclude when using client certificates, separated by ;
clientCertificateMode String: The Client Certificate mode. Possible values are Required, Optional, and OptionalInteractiveUser. This property has no effect when clientCertificateEnabled is false. Defaults to Required.
connectionStrings List<WindowsWebAppConnectionString>: One or more connectionString blocks as defined below.
enabled Boolean: Should the Windows Web App be enabled? Defaults to true.
ftpPublishBasicAuthenticationEnabled Boolean: Should the default FTP Basic Authentication publishing profile be enabled. Defaults to true.
httpsOnly Boolean: Should the Windows Web App require HTTPS connections. Defaults to false.
identity WindowsWebAppIdentity: An identity block as defined below.
keyVaultReferenceIdentityId String: The User Assigned Identity ID used for accessing KeyVault secrets. The identity must be assigned to the application in the identity block. For more information see - Access vaults with a user-assigned identity
location String: The Azure Region where the Windows Web App should exist. Changing this forces a new Windows Web App to be created.
logs WindowsWebAppLogs: A logs block as defined below.
name String: The name which should be used for this Windows Web App. Changing this forces a new Windows Web App to be created.
publicNetworkAccessEnabled Boolean: Should public network access be enabled for the Web App. Defaults to true.
stickySettings WindowsWebAppStickySettings: A stickySettings block as defined below.
storageAccounts List<WindowsWebAppStorageAccount>: One or more storageAccount blocks as defined below.
Note: Using this value requires WEBSITE_RUN_FROM_PACKAGE=1 to be set on the App in appSettings. Refer to the Azure docs for further details.
tags Map<String,String>: A mapping of tags which should be assigned to the Windows Web App.
virtualNetworkBackupRestoreEnabled Boolean: Whether backup and restore operations over the linked virtual network are enabled. Defaults to false.
virtualNetworkImagePullEnabled Boolean: Whether traffic for the image pull should be routed over the virtual network.
Note: virtualNetworkImagePullEnabled must be set to true when running in an App Service Environment.
virtualNetworkSubnetId String: The subnet id which will be used by this Web App for regional virtual network integration.
Note: The AzureRM Terraform provider provides regional virtual network integration via the standalone resource appServiceVirtualNetworkSwiftConnection and in-line within this resource using the virtualNetworkSubnetId property. You cannot use both methods simultaneously. If the virtual network is set via the resource appServiceVirtualNetworkSwiftConnection then ignoreChanges should be used in the web app configuration.
Note: Assigning the virtualNetworkSubnetId property requires RBAC permissions on the subnet
webdeployPublishBasicAuthenticationEnabled Boolean: Should the default WebDeploy Basic Authentication publishing credentials enabled. Defaults to true.
Note: Setting this value to true will disable the ability to use zipDeployFile which currently relies on the default publishing profile.
zipDeployFile String: The local path and filename of the Zip packaged application to deploy to this Windows Web App.
Note: Using this value requires either WEBSITE_RUN_FROM_PACKAGE=1 or SCM_DO_BUILD_DURING_DEPLOYMENT=true to be set on the App in appSettings. Refer to the Azure docs on running the Web App directly from the Zip package, or automating the build for Zip deploy for further details.

resourceGroupName string: The name of the Resource Group where the Windows Web App should exist. Changing this forces a new Windows Web App to be created.
servicePlanId string: The ID of the Service Plan that this Windows App Service will be created in.
siteConfig WindowsWebAppSiteConfig: A siteConfig block as defined below.
appSettings {[key: string]: string}: A map of key-value pairs of App Settings.
authSettings WindowsWebAppAuthSettings: An authSettings block as defined below.
authSettingsV2 WindowsWebAppAuthSettingsV2: An authSettingsV2 block as defined below.
backup WindowsWebAppBackup: A backup block as defined below.
clientAffinityEnabled boolean: Should Client Affinity be enabled?
clientCertificateEnabled boolean: Should Client Certificates be enabled?
clientCertificateExclusionPaths string: Paths to exclude when using client certificates, separated by ;
clientCertificateMode string: The Client Certificate mode. Possible values are Required, Optional, and OptionalInteractiveUser. This property has no effect when clientCertificateEnabled is false. Defaults to Required.
connectionStrings WindowsWebAppConnectionString[]: One or more connectionString blocks as defined below.
enabled boolean: Should the Windows Web App be enabled? Defaults to true.
ftpPublishBasicAuthenticationEnabled boolean: Should the default FTP Basic Authentication publishing profile be enabled. Defaults to true.
httpsOnly boolean: Should the Windows Web App require HTTPS connections. Defaults to false.
identity WindowsWebAppIdentity: An identity block as defined below.
keyVaultReferenceIdentityId string: The User Assigned Identity ID used for accessing KeyVault secrets. The identity must be assigned to the application in the identity block. For more information see - Access vaults with a user-assigned identity
location string: The Azure Region where the Windows Web App should exist. Changing this forces a new Windows Web App to be created.
logs WindowsWebAppLogs: A logs block as defined below.
name string: The name which should be used for this Windows Web App. Changing this forces a new Windows Web App to be created.
publicNetworkAccessEnabled boolean: Should public network access be enabled for the Web App. Defaults to true.
stickySettings WindowsWebAppStickySettings: A stickySettings block as defined below.
storageAccounts WindowsWebAppStorageAccount[]: One or more storageAccount blocks as defined below.
Note: Using this value requires WEBSITE_RUN_FROM_PACKAGE=1 to be set on the App in appSettings. Refer to the Azure docs for further details.
tags {[key: string]: string}: A mapping of tags which should be assigned to the Windows Web App.
virtualNetworkBackupRestoreEnabled boolean: Whether backup and restore operations over the linked virtual network are enabled. Defaults to false.
virtualNetworkImagePullEnabled boolean: Whether traffic for the image pull should be routed over the virtual network.
Note: virtualNetworkImagePullEnabled must be set to true when running in an App Service Environment.
virtualNetworkSubnetId string: The subnet id which will be used by this Web App for regional virtual network integration.
Note: The AzureRM Terraform provider provides regional virtual network integration via the standalone resource appServiceVirtualNetworkSwiftConnection and in-line within this resource using the virtualNetworkSubnetId property. You cannot use both methods simultaneously. If the virtual network is set via the resource appServiceVirtualNetworkSwiftConnection then ignoreChanges should be used in the web app configuration.
Note: Assigning the virtualNetworkSubnetId property requires RBAC permissions on the subnet
webdeployPublishBasicAuthenticationEnabled boolean: Should the default WebDeploy Basic Authentication publishing credentials enabled. Defaults to true.
Note: Setting this value to true will disable the ability to use zipDeployFile which currently relies on the default publishing profile.
zipDeployFile string: The local path and filename of the Zip packaged application to deploy to this Windows Web App.
Note: Using this value requires either WEBSITE_RUN_FROM_PACKAGE=1 or SCM_DO_BUILD_DURING_DEPLOYMENT=true to be set on the App in appSettings. Refer to the Azure docs on running the Web App directly from the Zip package, or automating the build for Zip deploy for further details.

resource_group_name str: The name of the Resource Group where the Windows Web App should exist. Changing this forces a new Windows Web App to be created.
service_plan_id str: The ID of the Service Plan that this Windows App Service will be created in.
site_config WindowsWebAppSiteConfigArgs: A siteConfig block as defined below.
app_settings Mapping[str, str]: A map of key-value pairs of App Settings.
auth_settings WindowsWebAppAuthSettingsArgs: An authSettings block as defined below.
auth_settings_v2 WindowsWebAppAuthSettingsV2Args: An authSettingsV2 block as defined below.
backup WindowsWebAppBackupArgs: A backup block as defined below.
client_affinity_enabled bool: Should Client Affinity be enabled?
client_certificate_enabled bool: Should Client Certificates be enabled?
client_certificate_exclusion_paths str: Paths to exclude when using client certificates, separated by ;
client_certificate_mode str: The Client Certificate mode. Possible values are Required, Optional, and OptionalInteractiveUser. This property has no effect when clientCertificateEnabled is false. Defaults to Required.
connection_strings Sequence[WindowsWebAppConnectionStringArgs]: One or more connectionString blocks as defined below.
enabled bool: Should the Windows Web App be enabled? Defaults to true.
ftp_publish_basic_authentication_enabled bool: Should the default FTP Basic Authentication publishing profile be enabled. Defaults to true.
https_only bool: Should the Windows Web App require HTTPS connections. Defaults to false.
identity WindowsWebAppIdentityArgs: An identity block as defined below.
key_vault_reference_identity_id str: The User Assigned Identity ID used for accessing KeyVault secrets. The identity must be assigned to the application in the identity block. For more information see - Access vaults with a user-assigned identity
location str: The Azure Region where the Windows Web App should exist. Changing this forces a new Windows Web App to be created.
logs WindowsWebAppLogsArgs: A logs block as defined below.
name str: The name which should be used for this Windows Web App. Changing this forces a new Windows Web App to be created.
public_network_access_enabled bool: Should public network access be enabled for the Web App. Defaults to true.
sticky_settings WindowsWebAppStickySettingsArgs: A stickySettings block as defined below.
storage_accounts Sequence[WindowsWebAppStorageAccountArgs]: One or more storageAccount blocks as defined below.
Note: Using this value requires WEBSITE_RUN_FROM_PACKAGE=1 to be set on the App in appSettings. Refer to the Azure docs for further details.
tags Mapping[str, str]: A mapping of tags which should be assigned to the Windows Web App.
virtual_network_backup_restore_enabled bool: Whether backup and restore operations over the linked virtual network are enabled. Defaults to false.
virtual_network_image_pull_enabled bool: Whether traffic for the image pull should be routed over the virtual network.
Note: virtualNetworkImagePullEnabled must be set to true when running in an App Service Environment.
virtual_network_subnet_id str: The subnet id which will be used by this Web App for regional virtual network integration.
Note: The AzureRM Terraform provider provides regional virtual network integration via the standalone resource appServiceVirtualNetworkSwiftConnection and in-line within this resource using the virtualNetworkSubnetId property. You cannot use both methods simultaneously. If the virtual network is set via the resource appServiceVirtualNetworkSwiftConnection then ignoreChanges should be used in the web app configuration.
Note: Assigning the virtualNetworkSubnetId property requires RBAC permissions on the subnet
webdeploy_publish_basic_authentication_enabled bool: Should the default WebDeploy Basic Authentication publishing credentials enabled. Defaults to true.
Note: Setting this value to true will disable the ability to use zipDeployFile which currently relies on the default publishing profile.
zip_deploy_file str: The local path and filename of the Zip packaged application to deploy to this Windows Web App.
Note: Using this value requires either WEBSITE_RUN_FROM_PACKAGE=1 or SCM_DO_BUILD_DURING_DEPLOYMENT=true to be set on the App in appSettings. Refer to the Azure docs on running the Web App directly from the Zip package, or automating the build for Zip deploy for further details.

resourceGroupName String: The name of the Resource Group where the Windows Web App should exist. Changing this forces a new Windows Web App to be created.
servicePlanId String: The ID of the Service Plan that this Windows App Service will be created in.
siteConfig Property Map: A siteConfig block as defined below.
appSettings Map<String>: A map of key-value pairs of App Settings.
authSettings Property Map: An authSettings block as defined below.
authSettingsV2 Property Map: An authSettingsV2 block as defined below.
backup Property Map: A backup block as defined below.
clientAffinityEnabled Boolean: Should Client Affinity be enabled?
clientCertificateEnabled Boolean: Should Client Certificates be enabled?
clientCertificateExclusionPaths String: Paths to exclude when using client certificates, separated by ;
clientCertificateMode String: The Client Certificate mode. Possible values are Required, Optional, and OptionalInteractiveUser. This property has no effect when clientCertificateEnabled is false. Defaults to Required.
connectionStrings List<Property Map>: One or more connectionString blocks as defined below.
enabled Boolean: Should the Windows Web App be enabled? Defaults to true.
ftpPublishBasicAuthenticationEnabled Boolean: Should the default FTP Basic Authentication publishing profile be enabled. Defaults to true.
httpsOnly Boolean: Should the Windows Web App require HTTPS connections. Defaults to false.
identity Property Map: An identity block as defined below.
keyVaultReferenceIdentityId String: The User Assigned Identity ID used for accessing KeyVault secrets. The identity must be assigned to the application in the identity block. For more information see - Access vaults with a user-assigned identity
location String: The Azure Region where the Windows Web App should exist. Changing this forces a new Windows Web App to be created.
logs Property Map: A logs block as defined below.
name String: The name which should be used for this Windows Web App. Changing this forces a new Windows Web App to be created.
publicNetworkAccessEnabled Boolean: Should public network access be enabled for the Web App. Defaults to true.
stickySettings Property Map: A stickySettings block as defined below.
storageAccounts List<Property Map>: One or more storageAccount blocks as defined below.
Note: Using this value requires WEBSITE_RUN_FROM_PACKAGE=1 to be set on the App in appSettings. Refer to the Azure docs for further details.
tags Map<String>: A mapping of tags which should be assigned to the Windows Web App.
virtualNetworkBackupRestoreEnabled Boolean: Whether backup and restore operations over the linked virtual network are enabled. Defaults to false.
virtualNetworkImagePullEnabled Boolean: Whether traffic for the image pull should be routed over the virtual network.
Note: virtualNetworkImagePullEnabled must be set to true when running in an App Service Environment.
virtualNetworkSubnetId String: The subnet id which will be used by this Web App for regional virtual network integration.
Note: The AzureRM Terraform provider provides regional virtual network integration via the standalone resource appServiceVirtualNetworkSwiftConnection and in-line within this resource using the virtualNetworkSubnetId property. You cannot use both methods simultaneously. If the virtual network is set via the resource appServiceVirtualNetworkSwiftConnection then ignoreChanges should be used in the web app configuration.
Note: Assigning the virtualNetworkSubnetId property requires RBAC permissions on the subnet
webdeployPublishBasicAuthenticationEnabled Boolean: Should the default WebDeploy Basic Authentication publishing credentials enabled. Defaults to true.
Note: Setting this value to true will disable the ability to use zipDeployFile which currently relies on the default publishing profile.
zipDeployFile String: The local path and filename of the Zip packaged application to deploy to this Windows Web App.
Note: Using this value requires either WEBSITE_RUN_FROM_PACKAGE=1 or SCM_DO_BUILD_DURING_DEPLOYMENT=true to be set on the App in appSettings. Refer to the Azure docs on running the Web App directly from the Zip package, or automating the build for Zip deploy for further details.

Outputs

All input properties are implicitly available as output properties. Additionally, the WindowsWebApp resource produces the following output properties:

CustomDomainVerificationId string: The identifier used by App Service to perform domain ownership verification via DNS TXT record.
DefaultHostname string: The default hostname of the Windows Web App.
HostingEnvironmentId string: The ID of the App Service Environment used by App Service.
Id string: The provider-assigned unique ID for this managed resource.
Kind string: The Kind value for this Windows Web App.
OutboundIpAddressLists List<string>: A list of outbound IP addresses - such as ["52.23.25.3", "52.143.43.12"]
OutboundIpAddresses string: A comma separated list of outbound IP addresses - such as 52.23.25.3,52.143.43.12.
PossibleOutboundIpAddressLists List<string>: A list of possible outbound ip address.
PossibleOutboundIpAddresses string: A comma separated list of outbound IP addresses - such as 52.23.25.3,52.143.43.12,52.143.43.17 - not all of which are necessarily in use. Superset of outboundIpAddresses.
SiteCredentials List<WindowsWebAppSiteCredential>: A siteCredential block as defined below.

CustomDomainVerificationId string: The identifier used by App Service to perform domain ownership verification via DNS TXT record.
DefaultHostname string: The default hostname of the Windows Web App.
HostingEnvironmentId string: The ID of the App Service Environment used by App Service.
Id string: The provider-assigned unique ID for this managed resource.
Kind string: The Kind value for this Windows Web App.
OutboundIpAddressLists []string: A list of outbound IP addresses - such as ["52.23.25.3", "52.143.43.12"]
OutboundIpAddresses string: A comma separated list of outbound IP addresses - such as 52.23.25.3,52.143.43.12.
PossibleOutboundIpAddressLists []string: A list of possible outbound ip address.
PossibleOutboundIpAddresses string: A comma separated list of outbound IP addresses - such as 52.23.25.3,52.143.43.12,52.143.43.17 - not all of which are necessarily in use. Superset of outboundIpAddresses.
SiteCredentials []WindowsWebAppSiteCredential: A siteCredential block as defined below.

customDomainVerificationId String: The identifier used by App Service to perform domain ownership verification via DNS TXT record.
defaultHostname String: The default hostname of the Windows Web App.
hostingEnvironmentId String: The ID of the App Service Environment used by App Service.
id String: The provider-assigned unique ID for this managed resource.
kind String: The Kind value for this Windows Web App.
outboundIpAddressLists List<String>: A list of outbound IP addresses - such as ["52.23.25.3", "52.143.43.12"]
outboundIpAddresses String: A comma separated list of outbound IP addresses - such as 52.23.25.3,52.143.43.12.
possibleOutboundIpAddressLists List<String>: A list of possible outbound ip address.
possibleOutboundIpAddresses String: A comma separated list of outbound IP addresses - such as 52.23.25.3,52.143.43.12,52.143.43.17 - not all of which are necessarily in use. Superset of outboundIpAddresses.
siteCredentials List<WindowsWebAppSiteCredential>: A siteCredential block as defined below.

customDomainVerificationId string: The identifier used by App Service to perform domain ownership verification via DNS TXT record.
defaultHostname string: The default hostname of the Windows Web App.
hostingEnvironmentId string: The ID of the App Service Environment used by App Service.
id string: The provider-assigned unique ID for this managed resource.
kind string: The Kind value for this Windows Web App.
outboundIpAddressLists string[]: A list of outbound IP addresses - such as ["52.23.25.3", "52.143.43.12"]
outboundIpAddresses string: A comma separated list of outbound IP addresses - such as 52.23.25.3,52.143.43.12.
possibleOutboundIpAddressLists string[]: A list of possible outbound ip address.
possibleOutboundIpAddresses string: A comma separated list of outbound IP addresses - such as 52.23.25.3,52.143.43.12,52.143.43.17 - not all of which are necessarily in use. Superset of outboundIpAddresses.
siteCredentials WindowsWebAppSiteCredential[]: A siteCredential block as defined below.

custom_domain_verification_id str: The identifier used by App Service to perform domain ownership verification via DNS TXT record.
default_hostname str: The default hostname of the Windows Web App.
hosting_environment_id str: The ID of the App Service Environment used by App Service.
id str: The provider-assigned unique ID for this managed resource.
kind str: The Kind value for this Windows Web App.
outbound_ip_address_lists Sequence[str]: A list of outbound IP addresses - such as ["52.23.25.3", "52.143.43.12"]
outbound_ip_addresses str: A comma separated list of outbound IP addresses - such as 52.23.25.3,52.143.43.12.
possible_outbound_ip_address_lists Sequence[str]: A list of possible outbound ip address.
possible_outbound_ip_addresses str: A comma separated list of outbound IP addresses - such as 52.23.25.3,52.143.43.12,52.143.43.17 - not all of which are necessarily in use. Superset of outboundIpAddresses.
site_credentials Sequence[WindowsWebAppSiteCredential]: A siteCredential block as defined below.

customDomainVerificationId String: The identifier used by App Service to perform domain ownership verification via DNS TXT record.
defaultHostname String: The default hostname of the Windows Web App.
hostingEnvironmentId String: The ID of the App Service Environment used by App Service.
id String: The provider-assigned unique ID for this managed resource.
kind String: The Kind value for this Windows Web App.
outboundIpAddressLists List<String>: A list of outbound IP addresses - such as ["52.23.25.3", "52.143.43.12"]
outboundIpAddresses String: A comma separated list of outbound IP addresses - such as 52.23.25.3,52.143.43.12.
possibleOutboundIpAddressLists List<String>: A list of possible outbound ip address.
possibleOutboundIpAddresses String: A comma separated list of outbound IP addresses - such as 52.23.25.3,52.143.43.12,52.143.43.17 - not all of which are necessarily in use. Superset of outboundIpAddresses.
siteCredentials List<Property Map>: A siteCredential block as defined below.

Look up Existing WindowsWebApp Resource

Get an existing WindowsWebApp resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

public static get(name: string, id: Input<ID>, state?: WindowsWebAppState, opts?: CustomResourceOptions): WindowsWebApp

@staticmethod
def get(resource_name: str,
        id: str,
        opts: Optional[ResourceOptions] = None,
        app_settings: Optional[Mapping[str, str]] = None,
        auth_settings: Optional[WindowsWebAppAuthSettingsArgs] = None,
        auth_settings_v2: Optional[WindowsWebAppAuthSettingsV2Args] = None,
        backup: Optional[WindowsWebAppBackupArgs] = None,
        client_affinity_enabled: Optional[bool] = None,
        client_certificate_enabled: Optional[bool] = None,
        client_certificate_exclusion_paths: Optional[str] = None,
        client_certificate_mode: Optional[str] = None,
        connection_strings: Optional[Sequence[WindowsWebAppConnectionStringArgs]] = None,
        custom_domain_verification_id: Optional[str] = None,
        default_hostname: Optional[str] = None,
        enabled: Optional[bool] = None,
        ftp_publish_basic_authentication_enabled: Optional[bool] = None,
        hosting_environment_id: Optional[str] = None,
        https_only: Optional[bool] = None,
        identity: Optional[WindowsWebAppIdentityArgs] = None,
        key_vault_reference_identity_id: Optional[str] = None,
        kind: Optional[str] = None,
        location: Optional[str] = None,
        logs: Optional[WindowsWebAppLogsArgs] = None,
        name: Optional[str] = None,
        outbound_ip_address_lists: Optional[Sequence[str]] = None,
        outbound_ip_addresses: Optional[str] = None,
        possible_outbound_ip_address_lists: Optional[Sequence[str]] = None,
        possible_outbound_ip_addresses: Optional[str] = None,
        public_network_access_enabled: Optional[bool] = None,
        resource_group_name: Optional[str] = None,
        service_plan_id: Optional[str] = None,
        site_config: Optional[WindowsWebAppSiteConfigArgs] = None,
        site_credentials: Optional[Sequence[WindowsWebAppSiteCredentialArgs]] = None,
        sticky_settings: Optional[WindowsWebAppStickySettingsArgs] = None,
        storage_accounts: Optional[Sequence[WindowsWebAppStorageAccountArgs]] = None,
        tags: Optional[Mapping[str, str]] = None,
        virtual_network_backup_restore_enabled: Optional[bool] = None,
        virtual_network_image_pull_enabled: Optional[bool] = None,
        virtual_network_subnet_id: Optional[str] = None,
        webdeploy_publish_basic_authentication_enabled: Optional[bool] = None,
        zip_deploy_file: Optional[str] = None) -> WindowsWebApp

func GetWindowsWebApp(ctx *Context, name string, id IDInput, state *WindowsWebAppState, opts ...ResourceOption) (*WindowsWebApp, error)

public static WindowsWebApp Get(string name, Input<string> id, WindowsWebAppState? state, CustomResourceOptions? opts = null)

public static WindowsWebApp get(String name, Output<String> id, WindowsWebAppState state, CustomResourceOptions options)

resources:  _:    type: azure:appservice:WindowsWebApp    get:      id: ${id}

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

resource_name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

The following state arguments are supported:

AppSettings Dictionary<string, string>: A map of key-value pairs of App Settings.
AuthSettings WindowsWebAppAuthSettings: An authSettings block as defined below.
AuthSettingsV2 WindowsWebAppAuthSettingsV2: An authSettingsV2 block as defined below.
Backup WindowsWebAppBackup: A backup block as defined below.
ClientAffinityEnabled bool: Should Client Affinity be enabled?
ClientCertificateEnabled bool: Should Client Certificates be enabled?
ClientCertificateExclusionPaths string: Paths to exclude when using client certificates, separated by ;
ClientCertificateMode string: The Client Certificate mode. Possible values are Required, Optional, and OptionalInteractiveUser. This property has no effect when clientCertificateEnabled is false. Defaults to Required.
ConnectionStrings List<WindowsWebAppConnectionString>: One or more connectionString blocks as defined below.
CustomDomainVerificationId string: The identifier used by App Service to perform domain ownership verification via DNS TXT record.
DefaultHostname string: The default hostname of the Windows Web App.
Enabled bool: Should the Windows Web App be enabled? Defaults to true.
FtpPublishBasicAuthenticationEnabled bool: Should the default FTP Basic Authentication publishing profile be enabled. Defaults to true.
HostingEnvironmentId string: The ID of the App Service Environment used by App Service.
HttpsOnly bool: Should the Windows Web App require HTTPS connections. Defaults to false.
Identity WindowsWebAppIdentity: An identity block as defined below.
KeyVaultReferenceIdentityId string: The User Assigned Identity ID used for accessing KeyVault secrets. The identity must be assigned to the application in the identity block. For more information see - Access vaults with a user-assigned identity
Kind string: The Kind value for this Windows Web App.
Location string: The Azure Region where the Windows Web App should exist. Changing this forces a new Windows Web App to be created.
Logs WindowsWebAppLogs: A logs block as defined below.
Name string: The name which should be used for this Windows Web App. Changing this forces a new Windows Web App to be created.
OutboundIpAddressLists List<string>: A list of outbound IP addresses - such as ["52.23.25.3", "52.143.43.12"]
OutboundIpAddresses string: A comma separated list of outbound IP addresses - such as 52.23.25.3,52.143.43.12.
PossibleOutboundIpAddressLists List<string>: A list of possible outbound ip address.
PossibleOutboundIpAddresses string: A comma separated list of outbound IP addresses - such as 52.23.25.3,52.143.43.12,52.143.43.17 - not all of which are necessarily in use. Superset of outboundIpAddresses.
PublicNetworkAccessEnabled bool: Should public network access be enabled for the Web App. Defaults to true.
ResourceGroupName string: The name of the Resource Group where the Windows Web App should exist. Changing this forces a new Windows Web App to be created.
ServicePlanId string: The ID of the Service Plan that this Windows App Service will be created in.
SiteConfig WindowsWebAppSiteConfig: A siteConfig block as defined below.
SiteCredentials List<WindowsWebAppSiteCredential>: A siteCredential block as defined below.
StickySettings WindowsWebAppStickySettings: A stickySettings block as defined below.
StorageAccounts List<WindowsWebAppStorageAccount>: One or more storageAccount blocks as defined below.
Note: Using this value requires WEBSITE_RUN_FROM_PACKAGE=1 to be set on the App in appSettings. Refer to the Azure docs for further details.
Tags Dictionary<string, string>: A mapping of tags which should be assigned to the Windows Web App.
VirtualNetworkBackupRestoreEnabled bool: Whether backup and restore operations over the linked virtual network are enabled. Defaults to false.
VirtualNetworkImagePullEnabled bool: Whether traffic for the image pull should be routed over the virtual network.
Note: virtualNetworkImagePullEnabled must be set to true when running in an App Service Environment.
VirtualNetworkSubnetId string: The subnet id which will be used by this Web App for regional virtual network integration.
Note: The AzureRM Terraform provider provides regional virtual network integration via the standalone resource appServiceVirtualNetworkSwiftConnection and in-line within this resource using the virtualNetworkSubnetId property. You cannot use both methods simultaneously. If the virtual network is set via the resource appServiceVirtualNetworkSwiftConnection then ignoreChanges should be used in the web app configuration.
Note: Assigning the virtualNetworkSubnetId property requires RBAC permissions on the subnet
WebdeployPublishBasicAuthenticationEnabled bool: Should the default WebDeploy Basic Authentication publishing credentials enabled. Defaults to true.
Note: Setting this value to true will disable the ability to use zipDeployFile which currently relies on the default publishing profile.
ZipDeployFile string: The local path and filename of the Zip packaged application to deploy to this Windows Web App.
Note: Using this value requires either WEBSITE_RUN_FROM_PACKAGE=1 or SCM_DO_BUILD_DURING_DEPLOYMENT=true to be set on the App in appSettings. Refer to the Azure docs on running the Web App directly from the Zip package, or automating the build for Zip deploy for further details.

AppSettings map[string]string: A map of key-value pairs of App Settings.
AuthSettings WindowsWebAppAuthSettingsArgs: An authSettings block as defined below.
AuthSettingsV2 WindowsWebAppAuthSettingsV2Args: An authSettingsV2 block as defined below.
Backup WindowsWebAppBackupArgs: A backup block as defined below.
ClientAffinityEnabled bool: Should Client Affinity be enabled?
ClientCertificateEnabled bool: Should Client Certificates be enabled?
ClientCertificateExclusionPaths string: Paths to exclude when using client certificates, separated by ;
ClientCertificateMode string: The Client Certificate mode. Possible values are Required, Optional, and OptionalInteractiveUser. This property has no effect when clientCertificateEnabled is false. Defaults to Required.
ConnectionStrings []WindowsWebAppConnectionStringArgs: One or more connectionString blocks as defined below.
CustomDomainVerificationId string: The identifier used by App Service to perform domain ownership verification via DNS TXT record.
DefaultHostname string: The default hostname of the Windows Web App.
Enabled bool: Should the Windows Web App be enabled? Defaults to true.
FtpPublishBasicAuthenticationEnabled bool: Should the default FTP Basic Authentication publishing profile be enabled. Defaults to true.
HostingEnvironmentId string: The ID of the App Service Environment used by App Service.
HttpsOnly bool: Should the Windows Web App require HTTPS connections. Defaults to false.
Identity WindowsWebAppIdentityArgs: An identity block as defined below.
KeyVaultReferenceIdentityId string: The User Assigned Identity ID used for accessing KeyVault secrets. The identity must be assigned to the application in the identity block. For more information see - Access vaults with a user-assigned identity
Kind string: The Kind value for this Windows Web App.
Location string: The Azure Region where the Windows Web App should exist. Changing this forces a new Windows Web App to be created.
Logs WindowsWebAppLogsArgs: A logs block as defined below.
Name string: The name which should be used for this Windows Web App. Changing this forces a new Windows Web App to be created.
OutboundIpAddressLists []string: A list of outbound IP addresses - such as ["52.23.25.3", "52.143.43.12"]
OutboundIpAddresses string: A comma separated list of outbound IP addresses - such as 52.23.25.3,52.143.43.12.
PossibleOutboundIpAddressLists []string: A list of possible outbound ip address.
PossibleOutboundIpAddresses string: A comma separated list of outbound IP addresses - such as 52.23.25.3,52.143.43.12,52.143.43.17 - not all of which are necessarily in use. Superset of outboundIpAddresses.
PublicNetworkAccessEnabled bool: Should public network access be enabled for the Web App. Defaults to true.
ResourceGroupName string: The name of the Resource Group where the Windows Web App should exist. Changing this forces a new Windows Web App to be created.
ServicePlanId string: The ID of the Service Plan that this Windows App Service will be created in.
SiteConfig WindowsWebAppSiteConfigArgs: A siteConfig block as defined below.
SiteCredentials []WindowsWebAppSiteCredentialArgs: A siteCredential block as defined below.
StickySettings WindowsWebAppStickySettingsArgs: A stickySettings block as defined below.
StorageAccounts []WindowsWebAppStorageAccountArgs: One or more storageAccount blocks as defined below.
Note: Using this value requires WEBSITE_RUN_FROM_PACKAGE=1 to be set on the App in appSettings. Refer to the Azure docs for further details.
Tags map[string]string: A mapping of tags which should be assigned to the Windows Web App.
VirtualNetworkBackupRestoreEnabled bool: Whether backup and restore operations over the linked virtual network are enabled. Defaults to false.
VirtualNetworkImagePullEnabled bool: Whether traffic for the image pull should be routed over the virtual network.
Note: virtualNetworkImagePullEnabled must be set to true when running in an App Service Environment.
VirtualNetworkSubnetId string: The subnet id which will be used by this Web App for regional virtual network integration.
Note: The AzureRM Terraform provider provides regional virtual network integration via the standalone resource appServiceVirtualNetworkSwiftConnection and in-line within this resource using the virtualNetworkSubnetId property. You cannot use both methods simultaneously. If the virtual network is set via the resource appServiceVirtualNetworkSwiftConnection then ignoreChanges should be used in the web app configuration.
Note: Assigning the virtualNetworkSubnetId property requires RBAC permissions on the subnet
WebdeployPublishBasicAuthenticationEnabled bool: Should the default WebDeploy Basic Authentication publishing credentials enabled. Defaults to true.
Note: Setting this value to true will disable the ability to use zipDeployFile which currently relies on the default publishing profile.
ZipDeployFile string: The local path and filename of the Zip packaged application to deploy to this Windows Web App.
Note: Using this value requires either WEBSITE_RUN_FROM_PACKAGE=1 or SCM_DO_BUILD_DURING_DEPLOYMENT=true to be set on the App in appSettings. Refer to the Azure docs on running the Web App directly from the Zip package, or automating the build for Zip deploy for further details.

appSettings Map<String,String>: A map of key-value pairs of App Settings.
authSettings WindowsWebAppAuthSettings: An authSettings block as defined below.
authSettingsV2 WindowsWebAppAuthSettingsV2: An authSettingsV2 block as defined below.
backup WindowsWebAppBackup: A backup block as defined below.
clientAffinityEnabled Boolean: Should Client Affinity be enabled?
clientCertificateEnabled Boolean: Should Client Certificates be enabled?
clientCertificateExclusionPaths String: Paths to exclude when using client certificates, separated by ;
clientCertificateMode String: The Client Certificate mode. Possible values are Required, Optional, and OptionalInteractiveUser. This property has no effect when clientCertificateEnabled is false. Defaults to Required.
connectionStrings List<WindowsWebAppConnectionString>: One or more connectionString blocks as defined below.
customDomainVerificationId String: The identifier used by App Service to perform domain ownership verification via DNS TXT record.
defaultHostname String: The default hostname of the Windows Web App.
enabled Boolean: Should the Windows Web App be enabled? Defaults to true.
ftpPublishBasicAuthenticationEnabled Boolean: Should the default FTP Basic Authentication publishing profile be enabled. Defaults to true.
hostingEnvironmentId String: The ID of the App Service Environment used by App Service.
httpsOnly Boolean: Should the Windows Web App require HTTPS connections. Defaults to false.
identity WindowsWebAppIdentity: An identity block as defined below.
keyVaultReferenceIdentityId String: The User Assigned Identity ID used for accessing KeyVault secrets. The identity must be assigned to the application in the identity block. For more information see - Access vaults with a user-assigned identity
kind String: The Kind value for this Windows Web App.
location String: The Azure Region where the Windows Web App should exist. Changing this forces a new Windows Web App to be created.
logs WindowsWebAppLogs: A logs block as defined below.
name String: The name which should be used for this Windows Web App. Changing this forces a new Windows Web App to be created.
outboundIpAddressLists List<String>: A list of outbound IP addresses - such as ["52.23.25.3", "52.143.43.12"]
outboundIpAddresses String: A comma separated list of outbound IP addresses - such as 52.23.25.3,52.143.43.12.
possibleOutboundIpAddressLists List<String>: A list of possible outbound ip address.
possibleOutboundIpAddresses String: A comma separated list of outbound IP addresses - such as 52.23.25.3,52.143.43.12,52.143.43.17 - not all of which are necessarily in use. Superset of outboundIpAddresses.
publicNetworkAccessEnabled Boolean: Should public network access be enabled for the Web App. Defaults to true.
resourceGroupName String: The name of the Resource Group where the Windows Web App should exist. Changing this forces a new Windows Web App to be created.
servicePlanId String: The ID of the Service Plan that this Windows App Service will be created in.
siteConfig WindowsWebAppSiteConfig: A siteConfig block as defined below.
siteCredentials List<WindowsWebAppSiteCredential>: A siteCredential block as defined below.
stickySettings WindowsWebAppStickySettings: A stickySettings block as defined below.
storageAccounts List<WindowsWebAppStorageAccount>: One or more storageAccount blocks as defined below.
Note: Using this value requires WEBSITE_RUN_FROM_PACKAGE=1 to be set on the App in appSettings. Refer to the Azure docs for further details.
tags Map<String,String>: A mapping of tags which should be assigned to the Windows Web App.
virtualNetworkBackupRestoreEnabled Boolean: Whether backup and restore operations over the linked virtual network are enabled. Defaults to false.
virtualNetworkImagePullEnabled Boolean: Whether traffic for the image pull should be routed over the virtual network.
Note: virtualNetworkImagePullEnabled must be set to true when running in an App Service Environment.
virtualNetworkSubnetId String: The subnet id which will be used by this Web App for regional virtual network integration.
Note: The AzureRM Terraform provider provides regional virtual network integration via the standalone resource appServiceVirtualNetworkSwiftConnection and in-line within this resource using the virtualNetworkSubnetId property. You cannot use both methods simultaneously. If the virtual network is set via the resource appServiceVirtualNetworkSwiftConnection then ignoreChanges should be used in the web app configuration.
Note: Assigning the virtualNetworkSubnetId property requires RBAC permissions on the subnet
webdeployPublishBasicAuthenticationEnabled Boolean: Should the default WebDeploy Basic Authentication publishing credentials enabled. Defaults to true.
Note: Setting this value to true will disable the ability to use zipDeployFile which currently relies on the default publishing profile.
zipDeployFile String: The local path and filename of the Zip packaged application to deploy to this Windows Web App.
Note: Using this value requires either WEBSITE_RUN_FROM_PACKAGE=1 or SCM_DO_BUILD_DURING_DEPLOYMENT=true to be set on the App in appSettings. Refer to the Azure docs on running the Web App directly from the Zip package, or automating the build for Zip deploy for further details.

appSettings {[key: string]: string}: A map of key-value pairs of App Settings.
authSettings WindowsWebAppAuthSettings: An authSettings block as defined below.
authSettingsV2 WindowsWebAppAuthSettingsV2: An authSettingsV2 block as defined below.
backup WindowsWebAppBackup: A backup block as defined below.
clientAffinityEnabled boolean: Should Client Affinity be enabled?
clientCertificateEnabled boolean: Should Client Certificates be enabled?
clientCertificateExclusionPaths string: Paths to exclude when using client certificates, separated by ;
clientCertificateMode string: The Client Certificate mode. Possible values are Required, Optional, and OptionalInteractiveUser. This property has no effect when clientCertificateEnabled is false. Defaults to Required.
connectionStrings WindowsWebAppConnectionString[]: One or more connectionString blocks as defined below.
customDomainVerificationId string: The identifier used by App Service to perform domain ownership verification via DNS TXT record.
defaultHostname string: The default hostname of the Windows Web App.
enabled boolean: Should the Windows Web App be enabled? Defaults to true.
ftpPublishBasicAuthenticationEnabled boolean: Should the default FTP Basic Authentication publishing profile be enabled. Defaults to true.
hostingEnvironmentId string: The ID of the App Service Environment used by App Service.
httpsOnly boolean: Should the Windows Web App require HTTPS connections. Defaults to false.
identity WindowsWebAppIdentity: An identity block as defined below.
keyVaultReferenceIdentityId string: The User Assigned Identity ID used for accessing KeyVault secrets. The identity must be assigned to the application in the identity block. For more information see - Access vaults with a user-assigned identity
kind string: The Kind value for this Windows Web App.
location string: The Azure Region where the Windows Web App should exist. Changing this forces a new Windows Web App to be created.
logs WindowsWebAppLogs: A logs block as defined below.
name string: The name which should be used for this Windows Web App. Changing this forces a new Windows Web App to be created.
outboundIpAddressLists string[]: A list of outbound IP addresses - such as ["52.23.25.3", "52.143.43.12"]
outboundIpAddresses string: A comma separated list of outbound IP addresses - such as 52.23.25.3,52.143.43.12.
possibleOutboundIpAddressLists string[]: A list of possible outbound ip address.
possibleOutboundIpAddresses string: A comma separated list of outbound IP addresses - such as 52.23.25.3,52.143.43.12,52.143.43.17 - not all of which are necessarily in use. Superset of outboundIpAddresses.
publicNetworkAccessEnabled boolean: Should public network access be enabled for the Web App. Defaults to true.
resourceGroupName string: The name of the Resource Group where the Windows Web App should exist. Changing this forces a new Windows Web App to be created.
servicePlanId string: The ID of the Service Plan that this Windows App Service will be created in.
siteConfig WindowsWebAppSiteConfig: A siteConfig block as defined below.
siteCredentials WindowsWebAppSiteCredential[]: A siteCredential block as defined below.
stickySettings WindowsWebAppStickySettings: A stickySettings block as defined below.
storageAccounts WindowsWebAppStorageAccount[]: One or more storageAccount blocks as defined below.
Note: Using this value requires WEBSITE_RUN_FROM_PACKAGE=1 to be set on the App in appSettings. Refer to the Azure docs for further details.
tags {[key: string]: string}: A mapping of tags which should be assigned to the Windows Web App.
virtualNetworkBackupRestoreEnabled boolean: Whether backup and restore operations over the linked virtual network are enabled. Defaults to false.
virtualNetworkImagePullEnabled boolean: Whether traffic for the image pull should be routed over the virtual network.
Note: virtualNetworkImagePullEnabled must be set to true when running in an App Service Environment.
virtualNetworkSubnetId string: The subnet id which will be used by this Web App for regional virtual network integration.
Note: The AzureRM Terraform provider provides regional virtual network integration via the standalone resource appServiceVirtualNetworkSwiftConnection and in-line within this resource using the virtualNetworkSubnetId property. You cannot use both methods simultaneously. If the virtual network is set via the resource appServiceVirtualNetworkSwiftConnection then ignoreChanges should be used in the web app configuration.
Note: Assigning the virtualNetworkSubnetId property requires RBAC permissions on the subnet
webdeployPublishBasicAuthenticationEnabled boolean: Should the default WebDeploy Basic Authentication publishing credentials enabled. Defaults to true.
Note: Setting this value to true will disable the ability to use zipDeployFile which currently relies on the default publishing profile.
zipDeployFile string: The local path and filename of the Zip packaged application to deploy to this Windows Web App.
Note: Using this value requires either WEBSITE_RUN_FROM_PACKAGE=1 or SCM_DO_BUILD_DURING_DEPLOYMENT=true to be set on the App in appSettings. Refer to the Azure docs on running the Web App directly from the Zip package, or automating the build for Zip deploy for further details.

app_settings Mapping[str, str]: A map of key-value pairs of App Settings.
auth_settings WindowsWebAppAuthSettingsArgs: An authSettings block as defined below.
auth_settings_v2 WindowsWebAppAuthSettingsV2Args: An authSettingsV2 block as defined below.
backup WindowsWebAppBackupArgs: A backup block as defined below.
client_affinity_enabled bool: Should Client Affinity be enabled?
client_certificate_enabled bool: Should Client Certificates be enabled?
client_certificate_exclusion_paths str: Paths to exclude when using client certificates, separated by ;
client_certificate_mode str: The Client Certificate mode. Possible values are Required, Optional, and OptionalInteractiveUser. This property has no effect when clientCertificateEnabled is false. Defaults to Required.
connection_strings Sequence[WindowsWebAppConnectionStringArgs]: One or more connectionString blocks as defined below.
custom_domain_verification_id str: The identifier used by App Service to perform domain ownership verification via DNS TXT record.
default_hostname str: The default hostname of the Windows Web App.
enabled bool: Should the Windows Web App be enabled? Defaults to true.
ftp_publish_basic_authentication_enabled bool: Should the default FTP Basic Authentication publishing profile be enabled. Defaults to true.
hosting_environment_id str: The ID of the App Service Environment used by App Service.
https_only bool: Should the Windows Web App require HTTPS connections. Defaults to false.
identity WindowsWebAppIdentityArgs: An identity block as defined below.
key_vault_reference_identity_id str: The User Assigned Identity ID used for accessing KeyVault secrets. The identity must be assigned to the application in the identity block. For more information see - Access vaults with a user-assigned identity
kind str: The Kind value for this Windows Web App.
location str: The Azure Region where the Windows Web App should exist. Changing this forces a new Windows Web App to be created.
logs WindowsWebAppLogsArgs: A logs block as defined below.
name str: The name which should be used for this Windows Web App. Changing this forces a new Windows Web App to be created.
outbound_ip_address_lists Sequence[str]: A list of outbound IP addresses - such as ["52.23.25.3", "52.143.43.12"]
outbound_ip_addresses str: A comma separated list of outbound IP addresses - such as 52.23.25.3,52.143.43.12.
possible_outbound_ip_address_lists Sequence[str]: A list of possible outbound ip address.
possible_outbound_ip_addresses str: A comma separated list of outbound IP addresses - such as 52.23.25.3,52.143.43.12,52.143.43.17 - not all of which are necessarily in use. Superset of outboundIpAddresses.
public_network_access_enabled bool: Should public network access be enabled for the Web App. Defaults to true.
resource_group_name str: The name of the Resource Group where the Windows Web App should exist. Changing this forces a new Windows Web App to be created.
service_plan_id str: The ID of the Service Plan that this Windows App Service will be created in.
site_config WindowsWebAppSiteConfigArgs: A siteConfig block as defined below.
site_credentials Sequence[WindowsWebAppSiteCredentialArgs]: A siteCredential block as defined below.
sticky_settings WindowsWebAppStickySettingsArgs: A stickySettings block as defined below.
storage_accounts Sequence[WindowsWebAppStorageAccountArgs]: One or more storageAccount blocks as defined below.
Note: Using this value requires WEBSITE_RUN_FROM_PACKAGE=1 to be set on the App in appSettings. Refer to the Azure docs for further details.
tags Mapping[str, str]: A mapping of tags which should be assigned to the Windows Web App.
virtual_network_backup_restore_enabled bool: Whether backup and restore operations over the linked virtual network are enabled. Defaults to false.
virtual_network_image_pull_enabled bool: Whether traffic for the image pull should be routed over the virtual network.
Note: virtualNetworkImagePullEnabled must be set to true when running in an App Service Environment.
virtual_network_subnet_id str: The subnet id which will be used by this Web App for regional virtual network integration.
Note: The AzureRM Terraform provider provides regional virtual network integration via the standalone resource appServiceVirtualNetworkSwiftConnection and in-line within this resource using the virtualNetworkSubnetId property. You cannot use both methods simultaneously. If the virtual network is set via the resource appServiceVirtualNetworkSwiftConnection then ignoreChanges should be used in the web app configuration.
Note: Assigning the virtualNetworkSubnetId property requires RBAC permissions on the subnet
webdeploy_publish_basic_authentication_enabled bool: Should the default WebDeploy Basic Authentication publishing credentials enabled. Defaults to true.
Note: Setting this value to true will disable the ability to use zipDeployFile which currently relies on the default publishing profile.
zip_deploy_file str: The local path and filename of the Zip packaged application to deploy to this Windows Web App.
Note: Using this value requires either WEBSITE_RUN_FROM_PACKAGE=1 or SCM_DO_BUILD_DURING_DEPLOYMENT=true to be set on the App in appSettings. Refer to the Azure docs on running the Web App directly from the Zip package, or automating the build for Zip deploy for further details.

appSettings Map<String>: A map of key-value pairs of App Settings.
authSettings Property Map: An authSettings block as defined below.
authSettingsV2 Property Map: An authSettingsV2 block as defined below.
backup Property Map: A backup block as defined below.
clientAffinityEnabled Boolean: Should Client Affinity be enabled?
clientCertificateEnabled Boolean: Should Client Certificates be enabled?
clientCertificateExclusionPaths String: Paths to exclude when using client certificates, separated by ;
clientCertificateMode String: The Client Certificate mode. Possible values are Required, Optional, and OptionalInteractiveUser. This property has no effect when clientCertificateEnabled is false. Defaults to Required.
connectionStrings List<Property Map>: One or more connectionString blocks as defined below.
customDomainVerificationId String: The identifier used by App Service to perform domain ownership verification via DNS TXT record.
defaultHostname String: The default hostname of the Windows Web App.
enabled Boolean: Should the Windows Web App be enabled? Defaults to true.
ftpPublishBasicAuthenticationEnabled Boolean: Should the default FTP Basic Authentication publishing profile be enabled. Defaults to true.
hostingEnvironmentId String: The ID of the App Service Environment used by App Service.
httpsOnly Boolean: Should the Windows Web App require HTTPS connections. Defaults to false.
identity Property Map: An identity block as defined below.
keyVaultReferenceIdentityId String: The User Assigned Identity ID used for accessing KeyVault secrets. The identity must be assigned to the application in the identity block. For more information see - Access vaults with a user-assigned identity
kind String: The Kind value for this Windows Web App.
location String: The Azure Region where the Windows Web App should exist. Changing this forces a new Windows Web App to be created.
logs Property Map: A logs block as defined below.
name String: The name which should be used for this Windows Web App. Changing this forces a new Windows Web App to be created.
outboundIpAddressLists List<String>: A list of outbound IP addresses - such as ["52.23.25.3", "52.143.43.12"]
outboundIpAddresses String: A comma separated list of outbound IP addresses - such as 52.23.25.3,52.143.43.12.
possibleOutboundIpAddressLists List<String>: A list of possible outbound ip address.
possibleOutboundIpAddresses String: A comma separated list of outbound IP addresses - such as 52.23.25.3,52.143.43.12,52.143.43.17 - not all of which are necessarily in use. Superset of outboundIpAddresses.
publicNetworkAccessEnabled Boolean: Should public network access be enabled for the Web App. Defaults to true.
resourceGroupName String: The name of the Resource Group where the Windows Web App should exist. Changing this forces a new Windows Web App to be created.
servicePlanId String: The ID of the Service Plan that this Windows App Service will be created in.
siteConfig Property Map: A siteConfig block as defined below.
siteCredentials List<Property Map>: A siteCredential block as defined below.
stickySettings Property Map: A stickySettings block as defined below.
storageAccounts List<Property Map>: One or more storageAccount blocks as defined below.
Note: Using this value requires WEBSITE_RUN_FROM_PACKAGE=1 to be set on the App in appSettings. Refer to the Azure docs for further details.
tags Map<String>: A mapping of tags which should be assigned to the Windows Web App.
virtualNetworkBackupRestoreEnabled Boolean: Whether backup and restore operations over the linked virtual network are enabled. Defaults to false.
virtualNetworkImagePullEnabled Boolean: Whether traffic for the image pull should be routed over the virtual network.
Note: virtualNetworkImagePullEnabled must be set to true when running in an App Service Environment.
virtualNetworkSubnetId String: The subnet id which will be used by this Web App for regional virtual network integration.
Note: The AzureRM Terraform provider provides regional virtual network integration via the standalone resource appServiceVirtualNetworkSwiftConnection and in-line within this resource using the virtualNetworkSubnetId property. You cannot use both methods simultaneously. If the virtual network is set via the resource appServiceVirtualNetworkSwiftConnection then ignoreChanges should be used in the web app configuration.
Note: Assigning the virtualNetworkSubnetId property requires RBAC permissions on the subnet
webdeployPublishBasicAuthenticationEnabled Boolean: Should the default WebDeploy Basic Authentication publishing credentials enabled. Defaults to true.
Note: Setting this value to true will disable the ability to use zipDeployFile which currently relies on the default publishing profile.
zipDeployFile String: The local path and filename of the Zip packaged application to deploy to this Windows Web App.
Note: Using this value requires either WEBSITE_RUN_FROM_PACKAGE=1 or SCM_DO_BUILD_DURING_DEPLOYMENT=true to be set on the App in appSettings. Refer to the Azure docs on running the Web App directly from the Zip package, or automating the build for Zip deploy for further details.

Supporting Types

WindowsWebAppAuthSettings, WindowsWebAppAuthSettingsArgs

Enabled bool: Should the Authentication / Authorization feature is enabled for the Windows Web App be enabled?
ActiveDirectory WindowsWebAppAuthSettingsActiveDirectory: An activeDirectory block as defined above.
AdditionalLoginParameters Dictionary<string, string>: Specifies a map of login Parameters to send to the OpenID Connect authorization endpoint when a user logs in.
AllowedExternalRedirectUrls List<string>: Specifies a list of External URLs that can be redirected to as part of logging in or logging out of the Windows Web App.
DefaultProvider string: The default authentication provider to use when multiple providers are configured. Possible values include: AzureActiveDirectory, Facebook, Google, MicrosoftAccount, Twitter, Github
Note: This setting is only needed if multiple providers are configured, and the unauthenticatedClientAction is set to "RedirectToLoginPage".
Facebook WindowsWebAppAuthSettingsFacebook: A facebook block as defined below.
Github WindowsWebAppAuthSettingsGithub: A github block as defined below.
Google WindowsWebAppAuthSettingsGoogle: A google block as defined below.
Issuer string: The OpenID Connect Issuer URI that represents the entity which issues access tokens for this Windows Web App.
Note: When using Azure Active Directory, this value is the URI of the directory tenant, e.g. https://sts.windows.net/{tenant-guid}/.
Microsoft WindowsWebAppAuthSettingsMicrosoft: A microsoft block as defined below.
RuntimeVersion string: The RuntimeVersion of the Authentication / Authorization feature in use for the Windows Web App.
TokenRefreshExtensionHours double: The number of hours after session token expiration that a session token can be used to call the token refresh API. Defaults to 72 hours.
TokenStoreEnabled bool: Should the Windows Web App durably store platform-specific security tokens that are obtained during login flows? Defaults to false.
Twitter WindowsWebAppAuthSettingsTwitter: A twitter block as defined below.
UnauthenticatedClientAction string: The action to take when an unauthenticated client attempts to access the app. Possible values include: RedirectToLoginPage, AllowAnonymous.

Enabled bool: Should the Authentication / Authorization feature is enabled for the Windows Web App be enabled?
ActiveDirectory WindowsWebAppAuthSettingsActiveDirectory: An activeDirectory block as defined above.
AdditionalLoginParameters map[string]string: Specifies a map of login Parameters to send to the OpenID Connect authorization endpoint when a user logs in.
AllowedExternalRedirectUrls []string: Specifies a list of External URLs that can be redirected to as part of logging in or logging out of the Windows Web App.
DefaultProvider string: The default authentication provider to use when multiple providers are configured. Possible values include: AzureActiveDirectory, Facebook, Google, MicrosoftAccount, Twitter, Github
Note: This setting is only needed if multiple providers are configured, and the unauthenticatedClientAction is set to "RedirectToLoginPage".
Facebook WindowsWebAppAuthSettingsFacebook: A facebook block as defined below.
Github WindowsWebAppAuthSettingsGithub: A github block as defined below.
Google WindowsWebAppAuthSettingsGoogle: A google block as defined below.
Issuer string: The OpenID Connect Issuer URI that represents the entity which issues access tokens for this Windows Web App.
Note: When using Azure Active Directory, this value is the URI of the directory tenant, e.g. https://sts.windows.net/{tenant-guid}/.
Microsoft WindowsWebAppAuthSettingsMicrosoft: A microsoft block as defined below.
RuntimeVersion string: The RuntimeVersion of the Authentication / Authorization feature in use for the Windows Web App.
TokenRefreshExtensionHours float64: The number of hours after session token expiration that a session token can be used to call the token refresh API. Defaults to 72 hours.
TokenStoreEnabled bool: Should the Windows Web App durably store platform-specific security tokens that are obtained during login flows? Defaults to false.
Twitter WindowsWebAppAuthSettingsTwitter: A twitter block as defined below.
UnauthenticatedClientAction string: The action to take when an unauthenticated client attempts to access the app. Possible values include: RedirectToLoginPage, AllowAnonymous.

enabled Boolean: Should the Authentication / Authorization feature is enabled for the Windows Web App be enabled?
activeDirectory WindowsWebAppAuthSettingsActiveDirectory: An activeDirectory block as defined above.
additionalLoginParameters Map<String,String>: Specifies a map of login Parameters to send to the OpenID Connect authorization endpoint when a user logs in.
allowedExternalRedirectUrls List<String>: Specifies a list of External URLs that can be redirected to as part of logging in or logging out of the Windows Web App.
defaultProvider String: The default authentication provider to use when multiple providers are configured. Possible values include: AzureActiveDirectory, Facebook, Google, MicrosoftAccount, Twitter, Github
Note: This setting is only needed if multiple providers are configured, and the unauthenticatedClientAction is set to "RedirectToLoginPage".
facebook WindowsWebAppAuthSettingsFacebook: A facebook block as defined below.
github WindowsWebAppAuthSettingsGithub: A github block as defined below.
google WindowsWebAppAuthSettingsGoogle: A google block as defined below.
issuer String: The OpenID Connect Issuer URI that represents the entity which issues access tokens for this Windows Web App.
Note: When using Azure Active Directory, this value is the URI of the directory tenant, e.g. https://sts.windows.net/{tenant-guid}/.
microsoft WindowsWebAppAuthSettingsMicrosoft: A microsoft block as defined below.
runtimeVersion String: The RuntimeVersion of the Authentication / Authorization feature in use for the Windows Web App.
tokenRefreshExtensionHours Double: The number of hours after session token expiration that a session token can be used to call the token refresh API. Defaults to 72 hours.
tokenStoreEnabled Boolean: Should the Windows Web App durably store platform-specific security tokens that are obtained during login flows? Defaults to false.
twitter WindowsWebAppAuthSettingsTwitter: A twitter block as defined below.
unauthenticatedClientAction String: The action to take when an unauthenticated client attempts to access the app. Possible values include: RedirectToLoginPage, AllowAnonymous.

enabled boolean: Should the Authentication / Authorization feature is enabled for the Windows Web App be enabled?
activeDirectory WindowsWebAppAuthSettingsActiveDirectory: An activeDirectory block as defined above.
additionalLoginParameters {[key: string]: string}: Specifies a map of login Parameters to send to the OpenID Connect authorization endpoint when a user logs in.
allowedExternalRedirectUrls string[]: Specifies a list of External URLs that can be redirected to as part of logging in or logging out of the Windows Web App.
defaultProvider string: The default authentication provider to use when multiple providers are configured. Possible values include: AzureActiveDirectory, Facebook, Google, MicrosoftAccount, Twitter, Github
Note: This setting is only needed if multiple providers are configured, and the unauthenticatedClientAction is set to "RedirectToLoginPage".
facebook WindowsWebAppAuthSettingsFacebook: A facebook block as defined below.
github WindowsWebAppAuthSettingsGithub: A github block as defined below.
google WindowsWebAppAuthSettingsGoogle: A google block as defined below.
issuer string: The OpenID Connect Issuer URI that represents the entity which issues access tokens for this Windows Web App.
Note: When using Azure Active Directory, this value is the URI of the directory tenant, e.g. https://sts.windows.net/{tenant-guid}/.
microsoft WindowsWebAppAuthSettingsMicrosoft: A microsoft block as defined below.
runtimeVersion string: The RuntimeVersion of the Authentication / Authorization feature in use for the Windows Web App.
tokenRefreshExtensionHours number: The number of hours after session token expiration that a session token can be used to call the token refresh API. Defaults to 72 hours.
tokenStoreEnabled boolean: Should the Windows Web App durably store platform-specific security tokens that are obtained during login flows? Defaults to false.
twitter WindowsWebAppAuthSettingsTwitter: A twitter block as defined below.
unauthenticatedClientAction string: The action to take when an unauthenticated client attempts to access the app. Possible values include: RedirectToLoginPage, AllowAnonymous.

enabled bool: Should the Authentication / Authorization feature is enabled for the Windows Web App be enabled?
active_directory WindowsWebAppAuthSettingsActiveDirectory: An activeDirectory block as defined above.
additional_login_parameters Mapping[str, str]: Specifies a map of login Parameters to send to the OpenID Connect authorization endpoint when a user logs in.
allowed_external_redirect_urls Sequence[str]: Specifies a list of External URLs that can be redirected to as part of logging in or logging out of the Windows Web App.
default_provider str: The default authentication provider to use when multiple providers are configured. Possible values include: AzureActiveDirectory, Facebook, Google, MicrosoftAccount, Twitter, Github
Note: This setting is only needed if multiple providers are configured, and the unauthenticatedClientAction is set to "RedirectToLoginPage".
facebook WindowsWebAppAuthSettingsFacebook: A facebook block as defined below.
github WindowsWebAppAuthSettingsGithub: A github block as defined below.
google WindowsWebAppAuthSettingsGoogle: A google block as defined below.
issuer str: The OpenID Connect Issuer URI that represents the entity which issues access tokens for this Windows Web App.
Note: When using Azure Active Directory, this value is the URI of the directory tenant, e.g. https://sts.windows.net/{tenant-guid}/.
microsoft WindowsWebAppAuthSettingsMicrosoft: A microsoft block as defined below.
runtime_version str: The RuntimeVersion of the Authentication / Authorization feature in use for the Windows Web App.
token_refresh_extension_hours float: The number of hours after session token expiration that a session token can be used to call the token refresh API. Defaults to 72 hours.
token_store_enabled bool: Should the Windows Web App durably store platform-specific security tokens that are obtained during login flows? Defaults to false.
twitter WindowsWebAppAuthSettingsTwitter: A twitter block as defined below.
unauthenticated_client_action str: The action to take when an unauthenticated client attempts to access the app. Possible values include: RedirectToLoginPage, AllowAnonymous.

enabled Boolean: Should the Authentication / Authorization feature is enabled for the Windows Web App be enabled?
activeDirectory Property Map: An activeDirectory block as defined above.
additionalLoginParameters Map<String>: Specifies a map of login Parameters to send to the OpenID Connect authorization endpoint when a user logs in.
allowedExternalRedirectUrls List<String>: Specifies a list of External URLs that can be redirected to as part of logging in or logging out of the Windows Web App.
defaultProvider String: The default authentication provider to use when multiple providers are configured. Possible values include: AzureActiveDirectory, Facebook, Google, MicrosoftAccount, Twitter, Github
Note: This setting is only needed if multiple providers are configured, and the unauthenticatedClientAction is set to "RedirectToLoginPage".
facebook Property Map: A facebook block as defined below.
github Property Map: A github block as defined below.
google Property Map: A google block as defined below.
issuer String: The OpenID Connect Issuer URI that represents the entity which issues access tokens for this Windows Web App.
Note: When using Azure Active Directory, this value is the URI of the directory tenant, e.g. https://sts.windows.net/{tenant-guid}/.
microsoft Property Map: A microsoft block as defined below.
runtimeVersion String: The RuntimeVersion of the Authentication / Authorization feature in use for the Windows Web App.
tokenRefreshExtensionHours Number: The number of hours after session token expiration that a session token can be used to call the token refresh API. Defaults to 72 hours.
tokenStoreEnabled Boolean: Should the Windows Web App durably store platform-specific security tokens that are obtained during login flows? Defaults to false.
twitter Property Map: A twitter block as defined below.
unauthenticatedClientAction String: The action to take when an unauthenticated client attempts to access the app. Possible values include: RedirectToLoginPage, AllowAnonymous.

WindowsWebAppAuthSettingsActiveDirectory, WindowsWebAppAuthSettingsActiveDirectoryArgs

ClientId string: The ID of the Client to use to authenticate with Azure Active Directory.
AllowedAudiences List<string>: Specifies a list of Allowed audience values to consider when validating JWTs issued by Azure Active Directory.
Note: The clientId value is always considered an allowed audience.
ClientSecret string: The Client Secret for the Client ID. Cannot be used with clientSecretSettingName.
ClientSecretSettingName string: The App Setting name that contains the client secret of the Client. Cannot be used with clientSecret.

ClientId string: The ID of the Client to use to authenticate with Azure Active Directory.
AllowedAudiences []string: Specifies a list of Allowed audience values to consider when validating JWTs issued by Azure Active Directory.
Note: The clientId value is always considered an allowed audience.
ClientSecret string: The Client Secret for the Client ID. Cannot be used with clientSecretSettingName.
ClientSecretSettingName string: The App Setting name that contains the client secret of the Client. Cannot be used with clientSecret.

clientId String: The ID of the Client to use to authenticate with Azure Active Directory.
allowedAudiences List<String>: Specifies a list of Allowed audience values to consider when validating JWTs issued by Azure Active Directory.
Note: The clientId value is always considered an allowed audience.
clientSecret String: The Client Secret for the Client ID. Cannot be used with clientSecretSettingName.
clientSecretSettingName String: The App Setting name that contains the client secret of the Client. Cannot be used with clientSecret.

clientId string: The ID of the Client to use to authenticate with Azure Active Directory.
allowedAudiences string[]: Specifies a list of Allowed audience values to consider when validating JWTs issued by Azure Active Directory.
Note: The clientId value is always considered an allowed audience.
clientSecret string: The Client Secret for the Client ID. Cannot be used with clientSecretSettingName.
clientSecretSettingName string: The App Setting name that contains the client secret of the Client. Cannot be used with clientSecret.

client_id str: The ID of the Client to use to authenticate with Azure Active Directory.
allowed_audiences Sequence[str]: Specifies a list of Allowed audience values to consider when validating JWTs issued by Azure Active Directory.
Note: The clientId value is always considered an allowed audience.
client_secret str: The Client Secret for the Client ID. Cannot be used with clientSecretSettingName.
client_secret_setting_name str: The App Setting name that contains the client secret of the Client. Cannot be used with clientSecret.

clientId String: The ID of the Client to use to authenticate with Azure Active Directory.
allowedAudiences List<String>: Specifies a list of Allowed audience values to consider when validating JWTs issued by Azure Active Directory.
Note: The clientId value is always considered an allowed audience.
clientSecret String: The Client Secret for the Client ID. Cannot be used with clientSecretSettingName.
clientSecretSettingName String: The App Setting name that contains the client secret of the Client. Cannot be used with clientSecret.

WindowsWebAppAuthSettingsFacebook, WindowsWebAppAuthSettingsFacebookArgs

AppId string: The App ID of the Facebook app used for login.
AppSecret string: The App Secret of the Facebook app used for Facebook login. Cannot be specified with appSecretSettingName.
AppSecretSettingName string: The app setting name that contains the appSecret value used for Facebook login. Cannot be specified with appSecret.
OauthScopes List<string>: Specifies a list of OAuth 2.0 scopes to be requested as part of Facebook login authentication.

AppId string: The App ID of the Facebook app used for login.
AppSecret string: The App Secret of the Facebook app used for Facebook login. Cannot be specified with appSecretSettingName.
AppSecretSettingName string: The app setting name that contains the appSecret value used for Facebook login. Cannot be specified with appSecret.
OauthScopes []string: Specifies a list of OAuth 2.0 scopes to be requested as part of Facebook login authentication.

appId String: The App ID of the Facebook app used for login.
appSecret String: The App Secret of the Facebook app used for Facebook login. Cannot be specified with appSecretSettingName.
appSecretSettingName String: The app setting name that contains the appSecret value used for Facebook login. Cannot be specified with appSecret.
oauthScopes List<String>: Specifies a list of OAuth 2.0 scopes to be requested as part of Facebook login authentication.

appId string: The App ID of the Facebook app used for login.
appSecret string: The App Secret of the Facebook app used for Facebook login. Cannot be specified with appSecretSettingName.
appSecretSettingName string: The app setting name that contains the appSecret value used for Facebook login. Cannot be specified with appSecret.
oauthScopes string[]: Specifies a list of OAuth 2.0 scopes to be requested as part of Facebook login authentication.

app_id str: The App ID of the Facebook app used for login.
app_secret str: The App Secret of the Facebook app used for Facebook login. Cannot be specified with appSecretSettingName.
app_secret_setting_name str: The app setting name that contains the appSecret value used for Facebook login. Cannot be specified with appSecret.
oauth_scopes Sequence[str]: Specifies a list of OAuth 2.0 scopes to be requested as part of Facebook login authentication.

appId String: The App ID of the Facebook app used for login.
appSecret String: The App Secret of the Facebook app used for Facebook login. Cannot be specified with appSecretSettingName.
appSecretSettingName String: The app setting name that contains the appSecret value used for Facebook login. Cannot be specified with appSecret.
oauthScopes List<String>: Specifies a list of OAuth 2.0 scopes to be requested as part of Facebook login authentication.

WindowsWebAppAuthSettingsGithub, WindowsWebAppAuthSettingsGithubArgs

ClientId string: The ID of the GitHub app used for login.
ClientSecret string: The Client Secret of the GitHub app used for GitHub login. Cannot be specified with clientSecretSettingName.
ClientSecretSettingName string: The app setting name that contains the clientSecret value used for GitHub login. Cannot be specified with clientSecret.
OauthScopes List<string>: Specifies a list of OAuth 2.0 scopes that will be requested as part of GitHub login authentication.

ClientId string: The ID of the GitHub app used for login.
ClientSecret string: The Client Secret of the GitHub app used for GitHub login. Cannot be specified with clientSecretSettingName.
ClientSecretSettingName string: The app setting name that contains the clientSecret value used for GitHub login. Cannot be specified with clientSecret.
OauthScopes []string: Specifies a list of OAuth 2.0 scopes that will be requested as part of GitHub login authentication.

clientId String: The ID of the GitHub app used for login.
clientSecret String: The Client Secret of the GitHub app used for GitHub login. Cannot be specified with clientSecretSettingName.
clientSecretSettingName String: The app setting name that contains the clientSecret value used for GitHub login. Cannot be specified with clientSecret.
oauthScopes List<String>: Specifies a list of OAuth 2.0 scopes that will be requested as part of GitHub login authentication.

clientId string: The ID of the GitHub app used for login.
clientSecret string: The Client Secret of the GitHub app used for GitHub login. Cannot be specified with clientSecretSettingName.
clientSecretSettingName string: The app setting name that contains the clientSecret value used for GitHub login. Cannot be specified with clientSecret.
oauthScopes string[]: Specifies a list of OAuth 2.0 scopes that will be requested as part of GitHub login authentication.

client_id str: The ID of the GitHub app used for login.
client_secret str: The Client Secret of the GitHub app used for GitHub login. Cannot be specified with clientSecretSettingName.
client_secret_setting_name str: The app setting name that contains the clientSecret value used for GitHub login. Cannot be specified with clientSecret.
oauth_scopes Sequence[str]: Specifies a list of OAuth 2.0 scopes that will be requested as part of GitHub login authentication.

clientId String: The ID of the GitHub app used for login.
clientSecret String: The Client Secret of the GitHub app used for GitHub login. Cannot be specified with clientSecretSettingName.
clientSecretSettingName String: The app setting name that contains the clientSecret value used for GitHub login. Cannot be specified with clientSecret.
oauthScopes List<String>: Specifies a list of OAuth 2.0 scopes that will be requested as part of GitHub login authentication.

WindowsWebAppAuthSettingsGoogle, WindowsWebAppAuthSettingsGoogleArgs

ClientId string: The OpenID Connect Client ID for the Google web application.
ClientSecret string: The client secret associated with the Google web application. Cannot be specified with clientSecretSettingName.
ClientSecretSettingName string: The app setting name that contains the clientSecret value used for Google login. Cannot be specified with clientSecret.
OauthScopes List<string>: Specifies a list of OAuth 2.0 scopes that will be requested as part of Google Sign-In authentication. If not specified, openid, profile, and email are used as default scopes.

ClientId string: The OpenID Connect Client ID for the Google web application.
ClientSecret string: The client secret associated with the Google web application. Cannot be specified with clientSecretSettingName.
ClientSecretSettingName string: The app setting name that contains the clientSecret value used for Google login. Cannot be specified with clientSecret.
OauthScopes []string: Specifies a list of OAuth 2.0 scopes that will be requested as part of Google Sign-In authentication. If not specified, openid, profile, and email are used as default scopes.

clientId String: The OpenID Connect Client ID for the Google web application.
clientSecret String: The client secret associated with the Google web application. Cannot be specified with clientSecretSettingName.
clientSecretSettingName String: The app setting name that contains the clientSecret value used for Google login. Cannot be specified with clientSecret.
oauthScopes List<String>: Specifies a list of OAuth 2.0 scopes that will be requested as part of Google Sign-In authentication. If not specified, openid, profile, and email are used as default scopes.

clientId string: The OpenID Connect Client ID for the Google web application.
clientSecret string: The client secret associated with the Google web application. Cannot be specified with clientSecretSettingName.
clientSecretSettingName string: The app setting name that contains the clientSecret value used for Google login. Cannot be specified with clientSecret.
oauthScopes string[]: Specifies a list of OAuth 2.0 scopes that will be requested as part of Google Sign-In authentication. If not specified, openid, profile, and email are used as default scopes.

client_id str: The OpenID Connect Client ID for the Google web application.
client_secret str: The client secret associated with the Google web application. Cannot be specified with clientSecretSettingName.
client_secret_setting_name str: The app setting name that contains the clientSecret value used for Google login. Cannot be specified with clientSecret.
oauth_scopes Sequence[str]: Specifies a list of OAuth 2.0 scopes that will be requested as part of Google Sign-In authentication. If not specified, openid, profile, and email are used as default scopes.

clientId String: The OpenID Connect Client ID for the Google web application.
clientSecret String: The client secret associated with the Google web application. Cannot be specified with clientSecretSettingName.
clientSecretSettingName String: The app setting name that contains the clientSecret value used for Google login. Cannot be specified with clientSecret.
oauthScopes List<String>: Specifies a list of OAuth 2.0 scopes that will be requested as part of Google Sign-In authentication. If not specified, openid, profile, and email are used as default scopes.

WindowsWebAppAuthSettingsMicrosoft, WindowsWebAppAuthSettingsMicrosoftArgs

ClientId string: The OAuth 2.0 client ID that was created for the app used for authentication.
ClientSecret string: The OAuth 2.0 client secret that was created for the app used for authentication. Cannot be specified with clientSecretSettingName.
ClientSecretSettingName string: The app setting name containing the OAuth 2.0 client secret that was created for the app used for authentication. Cannot be specified with clientSecret.
OauthScopes List<string>: Specifies a list of OAuth 2.0 scopes that will be requested as part of Microsoft Account authentication. If not specified, "wl.basic" is used as the default scope.

ClientId string: The OAuth 2.0 client ID that was created for the app used for authentication.
ClientSecret string: The OAuth 2.0 client secret that was created for the app used for authentication. Cannot be specified with clientSecretSettingName.
ClientSecretSettingName string: The app setting name containing the OAuth 2.0 client secret that was created for the app used for authentication. Cannot be specified with clientSecret.
OauthScopes []string: Specifies a list of OAuth 2.0 scopes that will be requested as part of Microsoft Account authentication. If not specified, "wl.basic" is used as the default scope.

clientId String: The OAuth 2.0 client ID that was created for the app used for authentication.
clientSecret String: The OAuth 2.0 client secret that was created for the app used for authentication. Cannot be specified with clientSecretSettingName.
clientSecretSettingName String: The app setting name containing the OAuth 2.0 client secret that was created for the app used for authentication. Cannot be specified with clientSecret.
oauthScopes List<String>: Specifies a list of OAuth 2.0 scopes that will be requested as part of Microsoft Account authentication. If not specified, "wl.basic" is used as the default scope.

clientId string: The OAuth 2.0 client ID that was created for the app used for authentication.
clientSecret string: The OAuth 2.0 client secret that was created for the app used for authentication. Cannot be specified with clientSecretSettingName.
clientSecretSettingName string: The app setting name containing the OAuth 2.0 client secret that was created for the app used for authentication. Cannot be specified with clientSecret.
oauthScopes string[]: Specifies a list of OAuth 2.0 scopes that will be requested as part of Microsoft Account authentication. If not specified, "wl.basic" is used as the default scope.

client_id str: The OAuth 2.0 client ID that was created for the app used for authentication.
client_secret str: The OAuth 2.0 client secret that was created for the app used for authentication. Cannot be specified with clientSecretSettingName.
client_secret_setting_name str: The app setting name containing the OAuth 2.0 client secret that was created for the app used for authentication. Cannot be specified with clientSecret.
oauth_scopes Sequence[str]: Specifies a list of OAuth 2.0 scopes that will be requested as part of Microsoft Account authentication. If not specified, "wl.basic" is used as the default scope.

clientId String: The OAuth 2.0 client ID that was created for the app used for authentication.
clientSecret String: The OAuth 2.0 client secret that was created for the app used for authentication. Cannot be specified with clientSecretSettingName.
clientSecretSettingName String: The app setting name containing the OAuth 2.0 client secret that was created for the app used for authentication. Cannot be specified with clientSecret.
oauthScopes List<String>: Specifies a list of OAuth 2.0 scopes that will be requested as part of Microsoft Account authentication. If not specified, "wl.basic" is used as the default scope.

WindowsWebAppAuthSettingsTwitter, WindowsWebAppAuthSettingsTwitterArgs

ConsumerKey string: The OAuth 1.0a consumer key of the Twitter application used for sign-in.
ConsumerSecret string: The OAuth 1.0a consumer secret of the Twitter application used for sign-in. Cannot be specified with consumerSecretSettingName.
ConsumerSecretSettingName string: The app setting name that contains the OAuth 1.0a consumer secret of the Twitter application used for sign-in. Cannot be specified with consumerSecret.

ConsumerKey string: The OAuth 1.0a consumer key of the Twitter application used for sign-in.
ConsumerSecret string: The OAuth 1.0a consumer secret of the Twitter application used for sign-in. Cannot be specified with consumerSecretSettingName.
ConsumerSecretSettingName string: The app setting name that contains the OAuth 1.0a consumer secret of the Twitter application used for sign-in. Cannot be specified with consumerSecret.

consumerKey String: The OAuth 1.0a consumer key of the Twitter application used for sign-in.
consumerSecret String: The OAuth 1.0a consumer secret of the Twitter application used for sign-in. Cannot be specified with consumerSecretSettingName.
consumerSecretSettingName String: The app setting name that contains the OAuth 1.0a consumer secret of the Twitter application used for sign-in. Cannot be specified with consumerSecret.

consumerKey string: The OAuth 1.0a consumer key of the Twitter application used for sign-in.
consumerSecret string: The OAuth 1.0a consumer secret of the Twitter application used for sign-in. Cannot be specified with consumerSecretSettingName.
consumerSecretSettingName string: The app setting name that contains the OAuth 1.0a consumer secret of the Twitter application used for sign-in. Cannot be specified with consumerSecret.

consumer_key str: The OAuth 1.0a consumer key of the Twitter application used for sign-in.
consumer_secret str: The OAuth 1.0a consumer secret of the Twitter application used for sign-in. Cannot be specified with consumerSecretSettingName.
consumer_secret_setting_name str: The app setting name that contains the OAuth 1.0a consumer secret of the Twitter application used for sign-in. Cannot be specified with consumerSecret.

consumerKey String: The OAuth 1.0a consumer key of the Twitter application used for sign-in.
consumerSecret String: The OAuth 1.0a consumer secret of the Twitter application used for sign-in. Cannot be specified with consumerSecretSettingName.
consumerSecretSettingName String: The app setting name that contains the OAuth 1.0a consumer secret of the Twitter application used for sign-in. Cannot be specified with consumerSecret.

WindowsWebAppAuthSettingsV2, WindowsWebAppAuthSettingsV2Args

Login WindowsWebAppAuthSettingsV2Login: A login block as defined below.
ActiveDirectoryV2 WindowsWebAppAuthSettingsV2ActiveDirectoryV2: An activeDirectoryV2 block as defined below.
AppleV2 WindowsWebAppAuthSettingsV2AppleV2: An appleV2 block as defined below.
AuthEnabled bool: Should the AuthV2 Settings be enabled. Defaults to false.
AzureStaticWebAppV2 WindowsWebAppAuthSettingsV2AzureStaticWebAppV2: An azureStaticWebAppV2 block as defined below.
ConfigFilePath string: The path to the App Auth settings.
Note: Relative Paths are evaluated from the Site Root directory.
CustomOidcV2s List<WindowsWebAppAuthSettingsV2CustomOidcV2>: Zero or more customOidcV2 blocks as defined below.
DefaultProvider string: The Default Authentication Provider to use when the unauthenticatedAction is set to RedirectToLoginPage. Possible values include: apple, azureactivedirectory, facebook, github, google, twitter and the name of your customOidcV2 provider.
Note: Whilst any value will be accepted by the API for defaultProvider, it can leave the app in an unusable state if this value does not correspond to the name of a known provider (either built-in value, or customOidc name) as it is used to build the auth endpoint URI.
ExcludedPaths List<string>: The paths which should be excluded from the unauthenticatedAction when it is set to RedirectToLoginPage.
Note: This list should be used instead of setting WEBSITE_WARMUP_PATH in appSettings as it takes priority.
FacebookV2 WindowsWebAppAuthSettingsV2FacebookV2: A facebookV2 block as defined below.
ForwardProxyConvention string: The convention used to determine the url of the request made. Possible values include NoProxy, Standard, Custom. Defaults to NoProxy.
ForwardProxyCustomHostHeaderName string: The name of the custom header containing the host of the request.
ForwardProxyCustomSchemeHeaderName string: The name of the custom header containing the scheme of the request.
GithubV2 WindowsWebAppAuthSettingsV2GithubV2: A githubV2 block as defined below.
GoogleV2 WindowsWebAppAuthSettingsV2GoogleV2: A googleV2 block as defined below.
HttpRouteApiPrefix string: The prefix that should precede all the authentication and authorisation paths. Defaults to /.auth.
MicrosoftV2 WindowsWebAppAuthSettingsV2MicrosoftV2: A microsoftV2 block as defined below.
RequireAuthentication bool: Should the authentication flow be used for all requests.
RequireHttps bool: Should HTTPS be required on connections? Defaults to true.
RuntimeVersion string: The Runtime Version of the Authentication and Authorisation feature of this App. Defaults to ~1.
TwitterV2 WindowsWebAppAuthSettingsV2TwitterV2: A twitterV2 block as defined below.
UnauthenticatedAction string: The action to take for requests made without authentication. Possible values include RedirectToLoginPage, AllowAnonymous, Return401, and Return403. Defaults to RedirectToLoginPage.

Login WindowsWebAppAuthSettingsV2Login: A login block as defined below.
ActiveDirectoryV2 WindowsWebAppAuthSettingsV2ActiveDirectoryV2: An activeDirectoryV2 block as defined below.
AppleV2 WindowsWebAppAuthSettingsV2AppleV2: An appleV2 block as defined below.
AuthEnabled bool: Should the AuthV2 Settings be enabled. Defaults to false.
AzureStaticWebAppV2 WindowsWebAppAuthSettingsV2AzureStaticWebAppV2: An azureStaticWebAppV2 block as defined below.
ConfigFilePath string: The path to the App Auth settings.
Note: Relative Paths are evaluated from the Site Root directory.
CustomOidcV2s []WindowsWebAppAuthSettingsV2CustomOidcV2: Zero or more customOidcV2 blocks as defined below.
DefaultProvider string: The Default Authentication Provider to use when the unauthenticatedAction is set to RedirectToLoginPage. Possible values include: apple, azureactivedirectory, facebook, github, google, twitter and the name of your customOidcV2 provider.
Note: Whilst any value will be accepted by the API for defaultProvider, it can leave the app in an unusable state if this value does not correspond to the name of a known provider (either built-in value, or customOidc name) as it is used to build the auth endpoint URI.
ExcludedPaths []string: The paths which should be excluded from the unauthenticatedAction when it is set to RedirectToLoginPage.
Note: This list should be used instead of setting WEBSITE_WARMUP_PATH in appSettings as it takes priority.
FacebookV2 WindowsWebAppAuthSettingsV2FacebookV2: A facebookV2 block as defined below.
ForwardProxyConvention string: The convention used to determine the url of the request made. Possible values include NoProxy, Standard, Custom. Defaults to NoProxy.
ForwardProxyCustomHostHeaderName string: The name of the custom header containing the host of the request.
ForwardProxyCustomSchemeHeaderName string: The name of the custom header containing the scheme of the request.
GithubV2 WindowsWebAppAuthSettingsV2GithubV2: A githubV2 block as defined below.
GoogleV2 WindowsWebAppAuthSettingsV2GoogleV2: A googleV2 block as defined below.
HttpRouteApiPrefix string: The prefix that should precede all the authentication and authorisation paths. Defaults to /.auth.
MicrosoftV2 WindowsWebAppAuthSettingsV2MicrosoftV2: A microsoftV2 block as defined below.
RequireAuthentication bool: Should the authentication flow be used for all requests.
RequireHttps bool: Should HTTPS be required on connections? Defaults to true.
RuntimeVersion string: The Runtime Version of the Authentication and Authorisation feature of this App. Defaults to ~1.
TwitterV2 WindowsWebAppAuthSettingsV2TwitterV2: A twitterV2 block as defined below.
UnauthenticatedAction string: The action to take for requests made without authentication. Possible values include RedirectToLoginPage, AllowAnonymous, Return401, and Return403. Defaults to RedirectToLoginPage.

login WindowsWebAppAuthSettingsV2Login: A login block as defined below.
activeDirectoryV2 WindowsWebAppAuthSettingsV2ActiveDirectoryV2: An activeDirectoryV2 block as defined below.
appleV2 WindowsWebAppAuthSettingsV2AppleV2: An appleV2 block as defined below.
authEnabled Boolean: Should the AuthV2 Settings be enabled. Defaults to false.
azureStaticWebAppV2 WindowsWebAppAuthSettingsV2AzureStaticWebAppV2: An azureStaticWebAppV2 block as defined below.
configFilePath String: The path to the App Auth settings.
Note: Relative Paths are evaluated from the Site Root directory.
customOidcV2s List<WindowsWebAppAuthSettingsV2CustomOidcV2>: Zero or more customOidcV2 blocks as defined below.
defaultProvider String: The Default Authentication Provider to use when the unauthenticatedAction is set to RedirectToLoginPage. Possible values include: apple, azureactivedirectory, facebook, github, google, twitter and the name of your customOidcV2 provider.
Note: Whilst any value will be accepted by the API for defaultProvider, it can leave the app in an unusable state if this value does not correspond to the name of a known provider (either built-in value, or customOidc name) as it is used to build the auth endpoint URI.
excludedPaths List<String>: The paths which should be excluded from the unauthenticatedAction when it is set to RedirectToLoginPage.
Note: This list should be used instead of setting WEBSITE_WARMUP_PATH in appSettings as it takes priority.
facebookV2 WindowsWebAppAuthSettingsV2FacebookV2: A facebookV2 block as defined below.
forwardProxyConvention String: The convention used to determine the url of the request made. Possible values include NoProxy, Standard, Custom. Defaults to NoProxy.
forwardProxyCustomHostHeaderName String: The name of the custom header containing the host of the request.
forwardProxyCustomSchemeHeaderName String: The name of the custom header containing the scheme of the request.
githubV2 WindowsWebAppAuthSettingsV2GithubV2: A githubV2 block as defined below.
googleV2 WindowsWebAppAuthSettingsV2GoogleV2: A googleV2 block as defined below.
httpRouteApiPrefix String: The prefix that should precede all the authentication and authorisation paths. Defaults to /.auth.
microsoftV2 WindowsWebAppAuthSettingsV2MicrosoftV2: A microsoftV2 block as defined below.
requireAuthentication Boolean: Should the authentication flow be used for all requests.
requireHttps Boolean: Should HTTPS be required on connections? Defaults to true.
runtimeVersion String: The Runtime Version of the Authentication and Authorisation feature of this App. Defaults to ~1.
twitterV2 WindowsWebAppAuthSettingsV2TwitterV2: A twitterV2 block as defined below.
unauthenticatedAction String: The action to take for requests made without authentication. Possible values include RedirectToLoginPage, AllowAnonymous, Return401, and Return403. Defaults to RedirectToLoginPage.

login WindowsWebAppAuthSettingsV2Login: A login block as defined below.
activeDirectoryV2 WindowsWebAppAuthSettingsV2ActiveDirectoryV2: An activeDirectoryV2 block as defined below.
appleV2 WindowsWebAppAuthSettingsV2AppleV2: An appleV2 block as defined below.
authEnabled boolean: Should the AuthV2 Settings be enabled. Defaults to false.
azureStaticWebAppV2 WindowsWebAppAuthSettingsV2AzureStaticWebAppV2: An azureStaticWebAppV2 block as defined below.
configFilePath string: The path to the App Auth settings.
Note: Relative Paths are evaluated from the Site Root directory.
customOidcV2s WindowsWebAppAuthSettingsV2CustomOidcV2[]: Zero or more customOidcV2 blocks as defined below.
defaultProvider string: The Default Authentication Provider to use when the unauthenticatedAction is set to RedirectToLoginPage. Possible values include: apple, azureactivedirectory, facebook, github, google, twitter and the name of your customOidcV2 provider.
Note: Whilst any value will be accepted by the API for defaultProvider, it can leave the app in an unusable state if this value does not correspond to the name of a known provider (either built-in value, or customOidc name) as it is used to build the auth endpoint URI.
excludedPaths string[]: The paths which should be excluded from the unauthenticatedAction when it is set to RedirectToLoginPage.
Note: This list should be used instead of setting WEBSITE_WARMUP_PATH in appSettings as it takes priority.
facebookV2 WindowsWebAppAuthSettingsV2FacebookV2: A facebookV2 block as defined below.
forwardProxyConvention string: The convention used to determine the url of the request made. Possible values include NoProxy, Standard, Custom. Defaults to NoProxy.
forwardProxyCustomHostHeaderName string: The name of the custom header containing the host of the request.
forwardProxyCustomSchemeHeaderName string: The name of the custom header containing the scheme of the request.
githubV2 WindowsWebAppAuthSettingsV2GithubV2: A githubV2 block as defined below.
googleV2 WindowsWebAppAuthSettingsV2GoogleV2: A googleV2 block as defined below.
httpRouteApiPrefix string: The prefix that should precede all the authentication and authorisation paths. Defaults to /.auth.
microsoftV2 WindowsWebAppAuthSettingsV2MicrosoftV2: A microsoftV2 block as defined below.
requireAuthentication boolean: Should the authentication flow be used for all requests.
requireHttps boolean: Should HTTPS be required on connections? Defaults to true.
runtimeVersion string: The Runtime Version of the Authentication and Authorisation feature of this App. Defaults to ~1.
twitterV2 WindowsWebAppAuthSettingsV2TwitterV2: A twitterV2 block as defined below.
unauthenticatedAction string: The action to take for requests made without authentication. Possible values include RedirectToLoginPage, AllowAnonymous, Return401, and Return403. Defaults to RedirectToLoginPage.

login WindowsWebAppAuthSettingsV2Login: A login block as defined below.
active_directory_v2 WindowsWebAppAuthSettingsV2ActiveDirectoryV2: An activeDirectoryV2 block as defined below.
apple_v2 WindowsWebAppAuthSettingsV2AppleV2: An appleV2 block as defined below.
auth_enabled bool: Should the AuthV2 Settings be enabled. Defaults to false.
azure_static_web_app_v2 WindowsWebAppAuthSettingsV2AzureStaticWebAppV2: An azureStaticWebAppV2 block as defined below.
config_file_path str: The path to the App Auth settings.
Note: Relative Paths are evaluated from the Site Root directory.
custom_oidc_v2s Sequence[WindowsWebAppAuthSettingsV2CustomOidcV2]: Zero or more customOidcV2 blocks as defined below.
default_provider str: The Default Authentication Provider to use when the unauthenticatedAction is set to RedirectToLoginPage. Possible values include: apple, azureactivedirectory, facebook, github, google, twitter and the name of your customOidcV2 provider.
Note: Whilst any value will be accepted by the API for defaultProvider, it can leave the app in an unusable state if this value does not correspond to the name of a known provider (either built-in value, or customOidc name) as it is used to build the auth endpoint URI.
excluded_paths Sequence[str]: The paths which should be excluded from the unauthenticatedAction when it is set to RedirectToLoginPage.
Note: This list should be used instead of setting WEBSITE_WARMUP_PATH in appSettings as it takes priority.
facebook_v2 WindowsWebAppAuthSettingsV2FacebookV2: A facebookV2 block as defined below.
forward_proxy_convention str: The convention used to determine the url of the request made. Possible values include NoProxy, Standard, Custom. Defaults to NoProxy.
forward_proxy_custom_host_header_name str: The name of the custom header containing the host of the request.
forward_proxy_custom_scheme_header_name str: The name of the custom header containing the scheme of the request.
github_v2 WindowsWebAppAuthSettingsV2GithubV2: A githubV2 block as defined below.
google_v2 WindowsWebAppAuthSettingsV2GoogleV2: A googleV2 block as defined below.
http_route_api_prefix str: The prefix that should precede all the authentication and authorisation paths. Defaults to /.auth.
microsoft_v2 WindowsWebAppAuthSettingsV2MicrosoftV2: A microsoftV2 block as defined below.
require_authentication bool: Should the authentication flow be used for all requests.
require_https bool: Should HTTPS be required on connections? Defaults to true.
runtime_version str: The Runtime Version of the Authentication and Authorisation feature of this App. Defaults to ~1.
twitter_v2 WindowsWebAppAuthSettingsV2TwitterV2: A twitterV2 block as defined below.
unauthenticated_action str: The action to take for requests made without authentication. Possible values include RedirectToLoginPage, AllowAnonymous, Return401, and Return403. Defaults to RedirectToLoginPage.

login Property Map: A login block as defined below.
activeDirectoryV2 Property Map: An activeDirectoryV2 block as defined below.
appleV2 Property Map: An appleV2 block as defined below.
authEnabled Boolean: Should the AuthV2 Settings be enabled. Defaults to false.
azureStaticWebAppV2 Property Map: An azureStaticWebAppV2 block as defined below.
configFilePath String: The path to the App Auth settings.
Note: Relative Paths are evaluated from the Site Root directory.
customOidcV2s List<Property Map>: Zero or more customOidcV2 blocks as defined below.
defaultProvider String: The Default Authentication Provider to use when the unauthenticatedAction is set to RedirectToLoginPage. Possible values include: apple, azureactivedirectory, facebook, github, google, twitter and the name of your customOidcV2 provider.
Note: Whilst any value will be accepted by the API for defaultProvider, it can leave the app in an unusable state if this value does not correspond to the name of a known provider (either built-in value, or customOidc name) as it is used to build the auth endpoint URI.
excludedPaths List<String>: The paths which should be excluded from the unauthenticatedAction when it is set to RedirectToLoginPage.
Note: This list should be used instead of setting WEBSITE_WARMUP_PATH in appSettings as it takes priority.
facebookV2 Property Map: A facebookV2 block as defined below.
forwardProxyConvention String: The convention used to determine the url of the request made. Possible values include NoProxy, Standard, Custom. Defaults to NoProxy.
forwardProxyCustomHostHeaderName String: The name of the custom header containing the host of the request.
forwardProxyCustomSchemeHeaderName String: The name of the custom header containing the scheme of the request.
githubV2 Property Map: A githubV2 block as defined below.
googleV2 Property Map: A googleV2 block as defined below.
httpRouteApiPrefix String: The prefix that should precede all the authentication and authorisation paths. Defaults to /.auth.
microsoftV2 Property Map: A microsoftV2 block as defined below.
requireAuthentication Boolean: Should the authentication flow be used for all requests.
requireHttps Boolean: Should HTTPS be required on connections? Defaults to true.
runtimeVersion String: The Runtime Version of the Authentication and Authorisation feature of this App. Defaults to ~1.
twitterV2 Property Map: A twitterV2 block as defined below.
unauthenticatedAction String: The action to take for requests made without authentication. Possible values include RedirectToLoginPage, AllowAnonymous, Return401, and Return403. Defaults to RedirectToLoginPage.

WindowsWebAppAuthSettingsV2ActiveDirectoryV2, WindowsWebAppAuthSettingsV2ActiveDirectoryV2Args

ClientId string

The ID of the Client to use to authenticate with Azure Active Directory.

TenantAuthEndpoint string

The Azure Tenant Endpoint for the Authenticating Tenant. e.g. https://login.microsoftonline.com/{tenant-guid}/v2.0/

AllowedApplications List<string>

The list of allowed Applications for the Default Authorisation Policy.

AllowedAudiences List<string>

Specifies a list of Allowed audience values to consider when validating JWTs issued by Azure Active Directory.

AllowedGroups List<string>

The list of allowed Group Names for the Default Authorisation Policy.

AllowedIdentities List<string>

The list of allowed Identities for the Default Authorisation Policy.

ClientSecretCertificateThumbprint string

The thumbprint of the certificate used for signing purposes.

!> Note: If one clientSecretSettingName or clientSecretCertificateThumbprint is specified, terraform won't write the client secret or secret certificate thumbprint back to appSetting, so make sure they are existed in appSettings to function correctly.

ClientSecretSettingName string

The App Setting name that contains the client secret of the Client.

!> Note: A setting with this name must exist in appSettings to function correctly.

JwtAllowedClientApplications List<string>

A list of Allowed Client Applications in the JWT Claim.

JwtAllowedGroups List<string>

A list of Allowed Groups in the JWT Claim.

LoginParameters Dictionary<string, string>

A map of key-value pairs to send to the Authorisation Endpoint when a user logs in.

WwwAuthenticationDisabled bool

Should the www-authenticate provider should be omitted from the request? Defaults to false.

ClientId string

The ID of the Client to use to authenticate with Azure Active Directory.

TenantAuthEndpoint string

The Azure Tenant Endpoint for the Authenticating Tenant. e.g. https://login.microsoftonline.com/{tenant-guid}/v2.0/

AllowedApplications []string

The list of allowed Applications for the Default Authorisation Policy.

AllowedAudiences []string

Specifies a list of Allowed audience values to consider when validating JWTs issued by Azure Active Directory.

AllowedGroups []string

The list of allowed Group Names for the Default Authorisation Policy.

AllowedIdentities []string

The list of allowed Identities for the Default Authorisation Policy.

ClientSecretCertificateThumbprint string

The thumbprint of the certificate used for signing purposes.

ClientSecretSettingName string

The App Setting name that contains the client secret of the Client.

!> Note: A setting with this name must exist in appSettings to function correctly.

JwtAllowedClientApplications []string

A list of Allowed Client Applications in the JWT Claim.

JwtAllowedGroups []string

A list of Allowed Groups in the JWT Claim.

LoginParameters map[string]string

A map of key-value pairs to send to the Authorisation Endpoint when a user logs in.

WwwAuthenticationDisabled bool

Should the www-authenticate provider should be omitted from the request? Defaults to false.

clientId String

The ID of the Client to use to authenticate with Azure Active Directory.

tenantAuthEndpoint String

The Azure Tenant Endpoint for the Authenticating Tenant. e.g. https://login.microsoftonline.com/{tenant-guid}/v2.0/

allowedApplications List<String>

The list of allowed Applications for the Default Authorisation Policy.

allowedAudiences List<String>

Specifies a list of Allowed audience values to consider when validating JWTs issued by Azure Active Directory.

allowedGroups List<String>

The list of allowed Group Names for the Default Authorisation Policy.

allowedIdentities List<String>

The list of allowed Identities for the Default Authorisation Policy.

clientSecretCertificateThumbprint String

The thumbprint of the certificate used for signing purposes.

clientSecretSettingName String

The App Setting name that contains the client secret of the Client.

!> Note: A setting with this name must exist in appSettings to function correctly.

jwtAllowedClientApplications List<String>

A list of Allowed Client Applications in the JWT Claim.

jwtAllowedGroups List<String>

A list of Allowed Groups in the JWT Claim.

loginParameters Map<String,String>

A map of key-value pairs to send to the Authorisation Endpoint when a user logs in.

wwwAuthenticationDisabled Boolean

Should the www-authenticate provider should be omitted from the request? Defaults to false.

clientId string

The ID of the Client to use to authenticate with Azure Active Directory.

tenantAuthEndpoint string

The Azure Tenant Endpoint for the Authenticating Tenant. e.g. https://login.microsoftonline.com/{tenant-guid}/v2.0/

allowedApplications string[]

The list of allowed Applications for the Default Authorisation Policy.

allowedAudiences string[]

Specifies a list of Allowed audience values to consider when validating JWTs issued by Azure Active Directory.

allowedGroups string[]

The list of allowed Group Names for the Default Authorisation Policy.

allowedIdentities string[]

The list of allowed Identities for the Default Authorisation Policy.

clientSecretCertificateThumbprint string

The thumbprint of the certificate used for signing purposes.

clientSecretSettingName string

The App Setting name that contains the client secret of the Client.

!> Note: A setting with this name must exist in appSettings to function correctly.

jwtAllowedClientApplications string[]

A list of Allowed Client Applications in the JWT Claim.

jwtAllowedGroups string[]

A list of Allowed Groups in the JWT Claim.

loginParameters {[key: string]: string}

A map of key-value pairs to send to the Authorisation Endpoint when a user logs in.

wwwAuthenticationDisabled boolean

Should the www-authenticate provider should be omitted from the request? Defaults to false.

client_id str

The ID of the Client to use to authenticate with Azure Active Directory.

tenant_auth_endpoint str

The Azure Tenant Endpoint for the Authenticating Tenant. e.g. https://login.microsoftonline.com/{tenant-guid}/v2.0/

allowed_applications Sequence[str]

The list of allowed Applications for the Default Authorisation Policy.

allowed_audiences Sequence[str]

Specifies a list of Allowed audience values to consider when validating JWTs issued by Azure Active Directory.

allowed_groups Sequence[str]

The list of allowed Group Names for the Default Authorisation Policy.

allowed_identities Sequence[str]

The list of allowed Identities for the Default Authorisation Policy.

client_secret_certificate_thumbprint str

The thumbprint of the certificate used for signing purposes.

client_secret_setting_name str

The App Setting name that contains the client secret of the Client.

!> Note: A setting with this name must exist in appSettings to function correctly.

jwt_allowed_client_applications Sequence[str]

A list of Allowed Client Applications in the JWT Claim.

jwt_allowed_groups Sequence[str]

A list of Allowed Groups in the JWT Claim.

login_parameters Mapping[str, str]

A map of key-value pairs to send to the Authorisation Endpoint when a user logs in.

www_authentication_disabled bool

Should the www-authenticate provider should be omitted from the request? Defaults to false.

clientId String

The ID of the Client to use to authenticate with Azure Active Directory.

tenantAuthEndpoint String

The Azure Tenant Endpoint for the Authenticating Tenant. e.g. https://login.microsoftonline.com/{tenant-guid}/v2.0/

allowedApplications List<String>

The list of allowed Applications for the Default Authorisation Policy.

allowedAudiences List<String>

Specifies a list of Allowed audience values to consider when validating JWTs issued by Azure Active Directory.

allowedGroups List<String>

The list of allowed Group Names for the Default Authorisation Policy.

allowedIdentities List<String>

The list of allowed Identities for the Default Authorisation Policy.

clientSecretCertificateThumbprint String

The thumbprint of the certificate used for signing purposes.

clientSecretSettingName String

The App Setting name that contains the client secret of the Client.

!> Note: A setting with this name must exist in appSettings to function correctly.

jwtAllowedClientApplications List<String>

A list of Allowed Client Applications in the JWT Claim.

jwtAllowedGroups List<String>

A list of Allowed Groups in the JWT Claim.

loginParameters Map<String>

A map of key-value pairs to send to the Authorisation Endpoint when a user logs in.

wwwAuthenticationDisabled Boolean

Should the www-authenticate provider should be omitted from the request? Defaults to false.

WindowsWebAppAuthSettingsV2AppleV2, WindowsWebAppAuthSettingsV2AppleV2Args

ClientId string

The OpenID Connect Client ID for the Apple web application.

ClientSecretSettingName string

The app setting name that contains the clientSecret value used for Apple Login.

!> Note: A setting with this name must exist in appSettings to function correctly.

LoginScopes List<string>

A list of Login Scopes provided by this Authentication Provider.

ClientId string

The OpenID Connect Client ID for the Apple web application.

ClientSecretSettingName string

The app setting name that contains the clientSecret value used for Apple Login.

!> Note: A setting with this name must exist in appSettings to function correctly.

LoginScopes []string

A list of Login Scopes provided by this Authentication Provider.

clientId String

The OpenID Connect Client ID for the Apple web application.

clientSecretSettingName String

The app setting name that contains the clientSecret value used for Apple Login.

!> Note: A setting with this name must exist in appSettings to function correctly.

loginScopes List<String>

A list of Login Scopes provided by this Authentication Provider.

clientId string

The OpenID Connect Client ID for the Apple web application.

clientSecretSettingName string

The app setting name that contains the clientSecret value used for Apple Login.

!> Note: A setting with this name must exist in appSettings to function correctly.

loginScopes string[]

A list of Login Scopes provided by this Authentication Provider.

client_id str

The OpenID Connect Client ID for the Apple web application.

client_secret_setting_name str

The app setting name that contains the clientSecret value used for Apple Login.

!> Note: A setting with this name must exist in appSettings to function correctly.

login_scopes Sequence[str]

A list of Login Scopes provided by this Authentication Provider.

clientId String

The OpenID Connect Client ID for the Apple web application.

clientSecretSettingName String

The app setting name that contains the clientSecret value used for Apple Login.

!> Note: A setting with this name must exist in appSettings to function correctly.

loginScopes List<String>

A list of Login Scopes provided by this Authentication Provider.

WindowsWebAppAuthSettingsV2AzureStaticWebAppV2, WindowsWebAppAuthSettingsV2AzureStaticWebAppV2Args

ClientId string: The ID of the Client to use to authenticate with Azure Static Web App Authentication.

ClientId string: The ID of the Client to use to authenticate with Azure Static Web App Authentication.

clientId String: The ID of the Client to use to authenticate with Azure Static Web App Authentication.

clientId string: The ID of the Client to use to authenticate with Azure Static Web App Authentication.

client_id str: The ID of the Client to use to authenticate with Azure Static Web App Authentication.

clientId String: The ID of the Client to use to authenticate with Azure Static Web App Authentication.

WindowsWebAppAuthSettingsV2CustomOidcV2, WindowsWebAppAuthSettingsV2CustomOidcV2Args

ClientId string: The ID of the Client to use to authenticate with the Custom OIDC.
Name string: The name of the Custom OIDC Authentication Provider.
Note: An appSetting matching this value in upper case with the suffix of _PROVIDER_AUTHENTICATION_SECRET is required. e.g. MYOIDC_PROVIDER_AUTHENTICATION_SECRET for a value of myoidc.
OpenidConfigurationEndpoint string: The app setting name that contains the clientSecret value used for the Custom OIDC Login.
AuthorisationEndpoint string: The endpoint to make the Authorisation Request as supplied by openidConfigurationEndpoint response.
CertificationUri string: The endpoint that provides the keys necessary to validate the token as supplied by openidConfigurationEndpoint response.
ClientCredentialMethod string: The Client Credential Method used.
ClientSecretSettingName string: The App Setting name that contains the secret for this Custom OIDC Client. This is generated from name above and suffixed with _PROVIDER_AUTHENTICATION_SECRET.
IssuerEndpoint string: The endpoint that issued the Token as supplied by openidConfigurationEndpoint response.
NameClaimType string: The name of the claim that contains the users name.
Scopes List<string>: The list of the scopes that should be requested while authenticating.
TokenEndpoint string: The endpoint used to request a Token as supplied by openidConfigurationEndpoint response.

ClientId string: The ID of the Client to use to authenticate with the Custom OIDC.
Name string: The name of the Custom OIDC Authentication Provider.
Note: An appSetting matching this value in upper case with the suffix of _PROVIDER_AUTHENTICATION_SECRET is required. e.g. MYOIDC_PROVIDER_AUTHENTICATION_SECRET for a value of myoidc.
OpenidConfigurationEndpoint string: The app setting name that contains the clientSecret value used for the Custom OIDC Login.
AuthorisationEndpoint string: The endpoint to make the Authorisation Request as supplied by openidConfigurationEndpoint response.
CertificationUri string: The endpoint that provides the keys necessary to validate the token as supplied by openidConfigurationEndpoint response.
ClientCredentialMethod string: The Client Credential Method used.
ClientSecretSettingName string: The App Setting name that contains the secret for this Custom OIDC Client. This is generated from name above and suffixed with _PROVIDER_AUTHENTICATION_SECRET.
IssuerEndpoint string: The endpoint that issued the Token as supplied by openidConfigurationEndpoint response.
NameClaimType string: The name of the claim that contains the users name.
Scopes []string: The list of the scopes that should be requested while authenticating.
TokenEndpoint string: The endpoint used to request a Token as supplied by openidConfigurationEndpoint response.

clientId String: The ID of the Client to use to authenticate with the Custom OIDC.
name String: The name of the Custom OIDC Authentication Provider.
Note: An appSetting matching this value in upper case with the suffix of _PROVIDER_AUTHENTICATION_SECRET is required. e.g. MYOIDC_PROVIDER_AUTHENTICATION_SECRET for a value of myoidc.
openidConfigurationEndpoint String: The app setting name that contains the clientSecret value used for the Custom OIDC Login.
authorisationEndpoint String: The endpoint to make the Authorisation Request as supplied by openidConfigurationEndpoint response.
certificationUri String: The endpoint that provides the keys necessary to validate the token as supplied by openidConfigurationEndpoint response.
clientCredentialMethod String: The Client Credential Method used.
clientSecretSettingName String: The App Setting name that contains the secret for this Custom OIDC Client. This is generated from name above and suffixed with _PROVIDER_AUTHENTICATION_SECRET.
issuerEndpoint String: The endpoint that issued the Token as supplied by openidConfigurationEndpoint response.
nameClaimType String: The name of the claim that contains the users name.
scopes List<String>: The list of the scopes that should be requested while authenticating.
tokenEndpoint String: The endpoint used to request a Token as supplied by openidConfigurationEndpoint response.

clientId string: The ID of the Client to use to authenticate with the Custom OIDC.
name string: The name of the Custom OIDC Authentication Provider.
Note: An appSetting matching this value in upper case with the suffix of _PROVIDER_AUTHENTICATION_SECRET is required. e.g. MYOIDC_PROVIDER_AUTHENTICATION_SECRET for a value of myoidc.
openidConfigurationEndpoint string: The app setting name that contains the clientSecret value used for the Custom OIDC Login.
authorisationEndpoint string: The endpoint to make the Authorisation Request as supplied by openidConfigurationEndpoint response.
certificationUri string: The endpoint that provides the keys necessary to validate the token as supplied by openidConfigurationEndpoint response.
clientCredentialMethod string: The Client Credential Method used.
clientSecretSettingName string: The App Setting name that contains the secret for this Custom OIDC Client. This is generated from name above and suffixed with _PROVIDER_AUTHENTICATION_SECRET.
issuerEndpoint string: The endpoint that issued the Token as supplied by openidConfigurationEndpoint response.
nameClaimType string: The name of the claim that contains the users name.
scopes string[]: The list of the scopes that should be requested while authenticating.
tokenEndpoint string: The endpoint used to request a Token as supplied by openidConfigurationEndpoint response.

client_id str: The ID of the Client to use to authenticate with the Custom OIDC.
name str: The name of the Custom OIDC Authentication Provider.
Note: An appSetting matching this value in upper case with the suffix of _PROVIDER_AUTHENTICATION_SECRET is required. e.g. MYOIDC_PROVIDER_AUTHENTICATION_SECRET for a value of myoidc.
openid_configuration_endpoint str: The app setting name that contains the clientSecret value used for the Custom OIDC Login.
authorisation_endpoint str: The endpoint to make the Authorisation Request as supplied by openidConfigurationEndpoint response.
certification_uri str: The endpoint that provides the keys necessary to validate the token as supplied by openidConfigurationEndpoint response.
client_credential_method str: The Client Credential Method used.
client_secret_setting_name str: The App Setting name that contains the secret for this Custom OIDC Client. This is generated from name above and suffixed with _PROVIDER_AUTHENTICATION_SECRET.
issuer_endpoint str: The endpoint that issued the Token as supplied by openidConfigurationEndpoint response.
name_claim_type str: The name of the claim that contains the users name.
scopes Sequence[str]: The list of the scopes that should be requested while authenticating.
token_endpoint str: The endpoint used to request a Token as supplied by openidConfigurationEndpoint response.

clientId String: The ID of the Client to use to authenticate with the Custom OIDC.
name String: The name of the Custom OIDC Authentication Provider.
Note: An appSetting matching this value in upper case with the suffix of _PROVIDER_AUTHENTICATION_SECRET is required. e.g. MYOIDC_PROVIDER_AUTHENTICATION_SECRET for a value of myoidc.
openidConfigurationEndpoint String: The app setting name that contains the clientSecret value used for the Custom OIDC Login.
authorisationEndpoint String: The endpoint to make the Authorisation Request as supplied by openidConfigurationEndpoint response.
certificationUri String: The endpoint that provides the keys necessary to validate the token as supplied by openidConfigurationEndpoint response.
clientCredentialMethod String: The Client Credential Method used.
clientSecretSettingName String: The App Setting name that contains the secret for this Custom OIDC Client. This is generated from name above and suffixed with _PROVIDER_AUTHENTICATION_SECRET.
issuerEndpoint String: The endpoint that issued the Token as supplied by openidConfigurationEndpoint response.
nameClaimType String: The name of the claim that contains the users name.
scopes List<String>: The list of the scopes that should be requested while authenticating.
tokenEndpoint String: The endpoint used to request a Token as supplied by openidConfigurationEndpoint response.

WindowsWebAppAuthSettingsV2FacebookV2, WindowsWebAppAuthSettingsV2FacebookV2Args

AppId string

The App ID of the Facebook app used for login.

AppSecretSettingName string

The app setting name that contains the appSecret value used for Facebook Login.

!> Note: A setting with this name must exist in appSettings to function correctly.

GraphApiVersion string

The version of the Facebook API to be used while logging in.

LoginScopes List<string>

The list of scopes that should be requested as part of Facebook Login authentication.

AppId string

The App ID of the Facebook app used for login.

AppSecretSettingName string

The app setting name that contains the appSecret value used for Facebook Login.

!> Note: A setting with this name must exist in appSettings to function correctly.

GraphApiVersion string

The version of the Facebook API to be used while logging in.

LoginScopes []string

The list of scopes that should be requested as part of Facebook Login authentication.

appId String

The App ID of the Facebook app used for login.

appSecretSettingName String

The app setting name that contains the appSecret value used for Facebook Login.

!> Note: A setting with this name must exist in appSettings to function correctly.

graphApiVersion String

The version of the Facebook API to be used while logging in.

loginScopes List<String>

The list of scopes that should be requested as part of Facebook Login authentication.

appId string

The App ID of the Facebook app used for login.

appSecretSettingName string

The app setting name that contains the appSecret value used for Facebook Login.

!> Note: A setting with this name must exist in appSettings to function correctly.

graphApiVersion string

The version of the Facebook API to be used while logging in.

loginScopes string[]

The list of scopes that should be requested as part of Facebook Login authentication.

app_id str

The App ID of the Facebook app used for login.

app_secret_setting_name str

The app setting name that contains the appSecret value used for Facebook Login.

!> Note: A setting with this name must exist in appSettings to function correctly.

graph_api_version str

The version of the Facebook API to be used while logging in.

login_scopes Sequence[str]

The list of scopes that should be requested as part of Facebook Login authentication.

appId String

The App ID of the Facebook app used for login.

appSecretSettingName String

The app setting name that contains the appSecret value used for Facebook Login.

!> Note: A setting with this name must exist in appSettings to function correctly.

graphApiVersion String

The version of the Facebook API to be used while logging in.

loginScopes List<String>

The list of scopes that should be requested as part of Facebook Login authentication.

WindowsWebAppAuthSettingsV2GithubV2, WindowsWebAppAuthSettingsV2GithubV2Args

ClientId string

The ID of the GitHub app used for login.

ClientSecretSettingName string

The app setting name that contains the clientSecret value used for GitHub Login.

!> Note: A setting with this name must exist in appSettings to function correctly.

LoginScopes List<string>

The list of OAuth 2.0 scopes that should be requested as part of GitHub Login authentication.

ClientId string

The ID of the GitHub app used for login.

ClientSecretSettingName string

The app setting name that contains the clientSecret value used for GitHub Login.

!> Note: A setting with this name must exist in appSettings to function correctly.

LoginScopes []string

The list of OAuth 2.0 scopes that should be requested as part of GitHub Login authentication.

clientId String

The ID of the GitHub app used for login.

clientSecretSettingName String

The app setting name that contains the clientSecret value used for GitHub Login.

!> Note: A setting with this name must exist in appSettings to function correctly.

loginScopes List<String>

The list of OAuth 2.0 scopes that should be requested as part of GitHub Login authentication.

clientId string

The ID of the GitHub app used for login.

clientSecretSettingName string

The app setting name that contains the clientSecret value used for GitHub Login.

!> Note: A setting with this name must exist in appSettings to function correctly.

loginScopes string[]

The list of OAuth 2.0 scopes that should be requested as part of GitHub Login authentication.

client_id str

The ID of the GitHub app used for login.

client_secret_setting_name str

The app setting name that contains the clientSecret value used for GitHub Login.

!> Note: A setting with this name must exist in appSettings to function correctly.

login_scopes Sequence[str]

The list of OAuth 2.0 scopes that should be requested as part of GitHub Login authentication.

clientId String

The ID of the GitHub app used for login.

clientSecretSettingName String

The app setting name that contains the clientSecret value used for GitHub Login.

!> Note: A setting with this name must exist in appSettings to function correctly.

loginScopes List<String>

The list of OAuth 2.0 scopes that should be requested as part of GitHub Login authentication.

WindowsWebAppAuthSettingsV2GoogleV2, WindowsWebAppAuthSettingsV2GoogleV2Args

ClientId string

The OpenID Connect Client ID for the Google web application.

ClientSecretSettingName string

The app setting name that contains the clientSecret value used for Google Login.

!> Note: A setting with this name must exist in appSettings to function correctly.

AllowedAudiences List<string>

Specifies a list of Allowed Audiences that should be requested as part of Google Sign-In authentication.

LoginScopes List<string>

The list of OAuth 2.0 scopes that should be requested as part of Google Sign-In authentication.

ClientId string

The OpenID Connect Client ID for the Google web application.

ClientSecretSettingName string

The app setting name that contains the clientSecret value used for Google Login.

!> Note: A setting with this name must exist in appSettings to function correctly.

AllowedAudiences []string

Specifies a list of Allowed Audiences that should be requested as part of Google Sign-In authentication.

LoginScopes []string

The list of OAuth 2.0 scopes that should be requested as part of Google Sign-In authentication.

clientId String

The OpenID Connect Client ID for the Google web application.

clientSecretSettingName String

The app setting name that contains the clientSecret value used for Google Login.

!> Note: A setting with this name must exist in appSettings to function correctly.

allowedAudiences List<String>

Specifies a list of Allowed Audiences that should be requested as part of Google Sign-In authentication.

loginScopes List<String>

The list of OAuth 2.0 scopes that should be requested as part of Google Sign-In authentication.

clientId string

The OpenID Connect Client ID for the Google web application.

clientSecretSettingName string

The app setting name that contains the clientSecret value used for Google Login.

!> Note: A setting with this name must exist in appSettings to function correctly.

allowedAudiences string[]

Specifies a list of Allowed Audiences that should be requested as part of Google Sign-In authentication.

loginScopes string[]

The list of OAuth 2.0 scopes that should be requested as part of Google Sign-In authentication.

client_id str

The OpenID Connect Client ID for the Google web application.

client_secret_setting_name str

The app setting name that contains the clientSecret value used for Google Login.

!> Note: A setting with this name must exist in appSettings to function correctly.

allowed_audiences Sequence[str]

Specifies a list of Allowed Audiences that should be requested as part of Google Sign-In authentication.

login_scopes Sequence[str]

The list of OAuth 2.0 scopes that should be requested as part of Google Sign-In authentication.

clientId String

The OpenID Connect Client ID for the Google web application.

clientSecretSettingName String

The app setting name that contains the clientSecret value used for Google Login.

!> Note: A setting with this name must exist in appSettings to function correctly.

allowedAudiences List<String>

Specifies a list of Allowed Audiences that should be requested as part of Google Sign-In authentication.

loginScopes List<String>

The list of OAuth 2.0 scopes that should be requested as part of Google Sign-In authentication.

WindowsWebAppAuthSettingsV2Login, WindowsWebAppAuthSettingsV2LoginArgs

AllowedExternalRedirectUrls List<string>: External URLs that can be redirected to as part of logging in or logging out of the app. This is an advanced setting typically only needed by Windows Store application backends.
Note: URLs within the current domain are always implicitly allowed.
CookieExpirationConvention string: The method by which cookies expire. Possible values include: FixedTime, and IdentityProviderDerived. Defaults to FixedTime.
CookieExpirationTime string: The time after the request is made when the session cookie should expire. Defaults to 08:00:00.
LogoutEndpoint string: The endpoint to which logout requests should be made.
NonceExpirationTime string: The time after the request is made when the nonce should expire. Defaults to 00:05:00.
PreserveUrlFragmentsForLogins bool: Should the fragments from the request be preserved after the login request is made. Defaults to false.
TokenRefreshExtensionTime double: The number of hours after session token expiration that a session token can be used to call the token refresh API. Defaults to 72 hours.
TokenStoreEnabled bool: Should the Token Store configuration Enabled. Defaults to false
TokenStorePath string: The directory path in the App Filesystem in which the tokens will be stored.
TokenStoreSasSettingName string: The name of the app setting which contains the SAS URL of the blob storage containing the tokens.
ValidateNonce bool: Should the nonce be validated while completing the login flow. Defaults to true.

AllowedExternalRedirectUrls []string: External URLs that can be redirected to as part of logging in or logging out of the app. This is an advanced setting typically only needed by Windows Store application backends.
Note: URLs within the current domain are always implicitly allowed.
CookieExpirationConvention string: The method by which cookies expire. Possible values include: FixedTime, and IdentityProviderDerived. Defaults to FixedTime.
CookieExpirationTime string: The time after the request is made when the session cookie should expire. Defaults to 08:00:00.
LogoutEndpoint string: The endpoint to which logout requests should be made.
NonceExpirationTime string: The time after the request is made when the nonce should expire. Defaults to 00:05:00.
PreserveUrlFragmentsForLogins bool: Should the fragments from the request be preserved after the login request is made. Defaults to false.
TokenRefreshExtensionTime float64: The number of hours after session token expiration that a session token can be used to call the token refresh API. Defaults to 72 hours.
TokenStoreEnabled bool: Should the Token Store configuration Enabled. Defaults to false
TokenStorePath string: The directory path in the App Filesystem in which the tokens will be stored.
TokenStoreSasSettingName string: The name of the app setting which contains the SAS URL of the blob storage containing the tokens.
ValidateNonce bool: Should the nonce be validated while completing the login flow. Defaults to true.

allowedExternalRedirectUrls List<String>: External URLs that can be redirected to as part of logging in or logging out of the app. This is an advanced setting typically only needed by Windows Store application backends.
Note: URLs within the current domain are always implicitly allowed.
cookieExpirationConvention String: The method by which cookies expire. Possible values include: FixedTime, and IdentityProviderDerived. Defaults to FixedTime.
cookieExpirationTime String: The time after the request is made when the session cookie should expire. Defaults to 08:00:00.
logoutEndpoint String: The endpoint to which logout requests should be made.
nonceExpirationTime String: The time after the request is made when the nonce should expire. Defaults to 00:05:00.
preserveUrlFragmentsForLogins Boolean: Should the fragments from the request be preserved after the login request is made. Defaults to false.
tokenRefreshExtensionTime Double: The number of hours after session token expiration that a session token can be used to call the token refresh API. Defaults to 72 hours.
tokenStoreEnabled Boolean: Should the Token Store configuration Enabled. Defaults to false
tokenStorePath String: The directory path in the App Filesystem in which the tokens will be stored.
tokenStoreSasSettingName String: The name of the app setting which contains the SAS URL of the blob storage containing the tokens.
validateNonce Boolean: Should the nonce be validated while completing the login flow. Defaults to true.

allowedExternalRedirectUrls string[]: External URLs that can be redirected to as part of logging in or logging out of the app. This is an advanced setting typically only needed by Windows Store application backends.
Note: URLs within the current domain are always implicitly allowed.
cookieExpirationConvention string: The method by which cookies expire. Possible values include: FixedTime, and IdentityProviderDerived. Defaults to FixedTime.
cookieExpirationTime string: The time after the request is made when the session cookie should expire. Defaults to 08:00:00.
logoutEndpoint string: The endpoint to which logout requests should be made.
nonceExpirationTime string: The time after the request is made when the nonce should expire. Defaults to 00:05:00.
preserveUrlFragmentsForLogins boolean: Should the fragments from the request be preserved after the login request is made. Defaults to false.
tokenRefreshExtensionTime number: The number of hours after session token expiration that a session token can be used to call the token refresh API. Defaults to 72 hours.
tokenStoreEnabled boolean: Should the Token Store configuration Enabled. Defaults to false
tokenStorePath string: The directory path in the App Filesystem in which the tokens will be stored.
tokenStoreSasSettingName string: The name of the app setting which contains the SAS URL of the blob storage containing the tokens.
validateNonce boolean: Should the nonce be validated while completing the login flow. Defaults to true.

allowed_external_redirect_urls Sequence[str]: External URLs that can be redirected to as part of logging in or logging out of the app. This is an advanced setting typically only needed by Windows Store application backends.
Note: URLs within the current domain are always implicitly allowed.
cookie_expiration_convention str: The method by which cookies expire. Possible values include: FixedTime, and IdentityProviderDerived. Defaults to FixedTime.
cookie_expiration_time str: The time after the request is made when the session cookie should expire. Defaults to 08:00:00.
logout_endpoint str: The endpoint to which logout requests should be made.
nonce_expiration_time str: The time after the request is made when the nonce should expire. Defaults to 00:05:00.
preserve_url_fragments_for_logins bool: Should the fragments from the request be preserved after the login request is made. Defaults to false.
token_refresh_extension_time float: The number of hours after session token expiration that a session token can be used to call the token refresh API. Defaults to 72 hours.
token_store_enabled bool: Should the Token Store configuration Enabled. Defaults to false
token_store_path str: The directory path in the App Filesystem in which the tokens will be stored.
token_store_sas_setting_name str: The name of the app setting which contains the SAS URL of the blob storage containing the tokens.
validate_nonce bool: Should the nonce be validated while completing the login flow. Defaults to true.

allowedExternalRedirectUrls List<String>: External URLs that can be redirected to as part of logging in or logging out of the app. This is an advanced setting typically only needed by Windows Store application backends.
Note: URLs within the current domain are always implicitly allowed.
cookieExpirationConvention String: The method by which cookies expire. Possible values include: FixedTime, and IdentityProviderDerived. Defaults to FixedTime.
cookieExpirationTime String: The time after the request is made when the session cookie should expire. Defaults to 08:00:00.
logoutEndpoint String: The endpoint to which logout requests should be made.
nonceExpirationTime String: The time after the request is made when the nonce should expire. Defaults to 00:05:00.
preserveUrlFragmentsForLogins Boolean: Should the fragments from the request be preserved after the login request is made. Defaults to false.
tokenRefreshExtensionTime Number: The number of hours after session token expiration that a session token can be used to call the token refresh API. Defaults to 72 hours.
tokenStoreEnabled Boolean: Should the Token Store configuration Enabled. Defaults to false
tokenStorePath String: The directory path in the App Filesystem in which the tokens will be stored.
tokenStoreSasSettingName String: The name of the app setting which contains the SAS URL of the blob storage containing the tokens.
validateNonce Boolean: Should the nonce be validated while completing the login flow. Defaults to true.

WindowsWebAppAuthSettingsV2MicrosoftV2, WindowsWebAppAuthSettingsV2MicrosoftV2Args

ClientId string

The OAuth 2.0 client ID that was created for the app used for authentication.

ClientSecretSettingName string

The app setting name containing the OAuth 2.0 client secret that was created for the app used for authentication.

!> Note: A setting with this name must exist in appSettings to function correctly.

AllowedAudiences List<string>

Specifies a list of Allowed Audiences that will be requested as part of Microsoft Sign-In authentication.

LoginScopes List<string>

The list of Login scopes that should be requested as part of Microsoft Account authentication.

ClientId string

The OAuth 2.0 client ID that was created for the app used for authentication.

ClientSecretSettingName string

The app setting name containing the OAuth 2.0 client secret that was created for the app used for authentication.

!> Note: A setting with this name must exist in appSettings to function correctly.

AllowedAudiences []string

Specifies a list of Allowed Audiences that will be requested as part of Microsoft Sign-In authentication.

LoginScopes []string

The list of Login scopes that should be requested as part of Microsoft Account authentication.

clientId String

The OAuth 2.0 client ID that was created for the app used for authentication.

clientSecretSettingName String

The app setting name containing the OAuth 2.0 client secret that was created for the app used for authentication.

!> Note: A setting with this name must exist in appSettings to function correctly.

allowedAudiences List<String>

Specifies a list of Allowed Audiences that will be requested as part of Microsoft Sign-In authentication.

loginScopes List<String>

The list of Login scopes that should be requested as part of Microsoft Account authentication.

clientId string

The OAuth 2.0 client ID that was created for the app used for authentication.

clientSecretSettingName string

The app setting name containing the OAuth 2.0 client secret that was created for the app used for authentication.

!> Note: A setting with this name must exist in appSettings to function correctly.

allowedAudiences string[]

Specifies a list of Allowed Audiences that will be requested as part of Microsoft Sign-In authentication.

loginScopes string[]

The list of Login scopes that should be requested as part of Microsoft Account authentication.

client_id str

The OAuth 2.0 client ID that was created for the app used for authentication.

client_secret_setting_name str

The app setting name containing the OAuth 2.0 client secret that was created for the app used for authentication.

!> Note: A setting with this name must exist in appSettings to function correctly.

allowed_audiences Sequence[str]

Specifies a list of Allowed Audiences that will be requested as part of Microsoft Sign-In authentication.

login_scopes Sequence[str]

The list of Login scopes that should be requested as part of Microsoft Account authentication.

clientId String

The OAuth 2.0 client ID that was created for the app used for authentication.

clientSecretSettingName String

The app setting name containing the OAuth 2.0 client secret that was created for the app used for authentication.

!> Note: A setting with this name must exist in appSettings to function correctly.

allowedAudiences List<String>

Specifies a list of Allowed Audiences that will be requested as part of Microsoft Sign-In authentication.

loginScopes List<String>

The list of Login scopes that should be requested as part of Microsoft Account authentication.

WindowsWebAppAuthSettingsV2TwitterV2, WindowsWebAppAuthSettingsV2TwitterV2Args

ConsumerKey string

The OAuth 1.0a consumer key of the Twitter application used for sign-in.

ConsumerSecretSettingName string

The app setting name that contains the OAuth 1.0a consumer secret of the Twitter application used for sign-in.

!> Note: A setting with this name must exist in appSettings to function correctly.

ConsumerKey string

The OAuth 1.0a consumer key of the Twitter application used for sign-in.

ConsumerSecretSettingName string

The app setting name that contains the OAuth 1.0a consumer secret of the Twitter application used for sign-in.

!> Note: A setting with this name must exist in appSettings to function correctly.

consumerKey String

The OAuth 1.0a consumer key of the Twitter application used for sign-in.

consumerSecretSettingName String

The app setting name that contains the OAuth 1.0a consumer secret of the Twitter application used for sign-in.

!> Note: A setting with this name must exist in appSettings to function correctly.

consumerKey string

The OAuth 1.0a consumer key of the Twitter application used for sign-in.

consumerSecretSettingName string

The app setting name that contains the OAuth 1.0a consumer secret of the Twitter application used for sign-in.

!> Note: A setting with this name must exist in appSettings to function correctly.

consumer_key str

The OAuth 1.0a consumer key of the Twitter application used for sign-in.

consumer_secret_setting_name str

The app setting name that contains the OAuth 1.0a consumer secret of the Twitter application used for sign-in.

!> Note: A setting with this name must exist in appSettings to function correctly.

consumerKey String

The OAuth 1.0a consumer key of the Twitter application used for sign-in.

consumerSecretSettingName String

The app setting name that contains the OAuth 1.0a consumer secret of the Twitter application used for sign-in.

!> Note: A setting with this name must exist in appSettings to function correctly.

WindowsWebAppBackup, WindowsWebAppBackupArgs

Name string: The name which should be used for this Backup.
Schedule WindowsWebAppBackupSchedule: A schedule block as defined below.
StorageAccountUrl string: The SAS URL to the container.
Enabled bool: Should this backup job be enabled? Defaults to true.

Name string: The name which should be used for this Backup.
Schedule WindowsWebAppBackupSchedule: A schedule block as defined below.
StorageAccountUrl string: The SAS URL to the container.
Enabled bool: Should this backup job be enabled? Defaults to true.

name String: The name which should be used for this Backup.
schedule WindowsWebAppBackupSchedule: A schedule block as defined below.
storageAccountUrl String: The SAS URL to the container.
enabled Boolean: Should this backup job be enabled? Defaults to true.

name string: The name which should be used for this Backup.
schedule WindowsWebAppBackupSchedule: A schedule block as defined below.
storageAccountUrl string: The SAS URL to the container.
enabled boolean: Should this backup job be enabled? Defaults to true.

name str: The name which should be used for this Backup.
schedule WindowsWebAppBackupSchedule: A schedule block as defined below.
storage_account_url str: The SAS URL to the container.
enabled bool: Should this backup job be enabled? Defaults to true.

name String: The name which should be used for this Backup.
schedule Property Map: A schedule block as defined below.
storageAccountUrl String: The SAS URL to the container.
enabled Boolean: Should this backup job be enabled? Defaults to true.

WindowsWebAppBackupSchedule, WindowsWebAppBackupScheduleArgs

FrequencyInterval int: How often the backup should be executed (e.g. for weekly backup, this should be set to 7 and frequencyUnit should be set to Day).
Note: Not all intervals are supported on all Windows Web App SKUs. Please refer to the official documentation for appropriate values.
FrequencyUnit string: The unit of time for how often the backup should take place. Possible values include: Day, Hour
KeepAtLeastOneBackup bool: Should the service keep at least one backup, regardless of age of backup. Defaults to false.
LastExecutionTime string: The time the backup was last attempted.
RetentionPeriodDays int: After how many days backups should be deleted. Defaults to 30.
StartTime string: When the schedule should start working in RFC-3339 format.

FrequencyInterval int: How often the backup should be executed (e.g. for weekly backup, this should be set to 7 and frequencyUnit should be set to Day).
Note: Not all intervals are supported on all Windows Web App SKUs. Please refer to the official documentation for appropriate values.
FrequencyUnit string: The unit of time for how often the backup should take place. Possible values include: Day, Hour
KeepAtLeastOneBackup bool: Should the service keep at least one backup, regardless of age of backup. Defaults to false.
LastExecutionTime string: The time the backup was last attempted.
RetentionPeriodDays int: After how many days backups should be deleted. Defaults to 30.
StartTime string: When the schedule should start working in RFC-3339 format.

frequencyInterval Integer: How often the backup should be executed (e.g. for weekly backup, this should be set to 7 and frequencyUnit should be set to Day).
Note: Not all intervals are supported on all Windows Web App SKUs. Please refer to the official documentation for appropriate values.
frequencyUnit String: The unit of time for how often the backup should take place. Possible values include: Day, Hour
keepAtLeastOneBackup Boolean: Should the service keep at least one backup, regardless of age of backup. Defaults to false.
lastExecutionTime String: The time the backup was last attempted.
retentionPeriodDays Integer: After how many days backups should be deleted. Defaults to 30.
startTime String: When the schedule should start working in RFC-3339 format.

frequencyInterval number: How often the backup should be executed (e.g. for weekly backup, this should be set to 7 and frequencyUnit should be set to Day).
Note: Not all intervals are supported on all Windows Web App SKUs. Please refer to the official documentation for appropriate values.
frequencyUnit string: The unit of time for how often the backup should take place. Possible values include: Day, Hour
keepAtLeastOneBackup boolean: Should the service keep at least one backup, regardless of age of backup. Defaults to false.
lastExecutionTime string: The time the backup was last attempted.
retentionPeriodDays number: After how many days backups should be deleted. Defaults to 30.
startTime string: When the schedule should start working in RFC-3339 format.

frequency_interval int: How often the backup should be executed (e.g. for weekly backup, this should be set to 7 and frequencyUnit should be set to Day).
Note: Not all intervals are supported on all Windows Web App SKUs. Please refer to the official documentation for appropriate values.
frequency_unit str: The unit of time for how often the backup should take place. Possible values include: Day, Hour
keep_at_least_one_backup bool: Should the service keep at least one backup, regardless of age of backup. Defaults to false.
last_execution_time str: The time the backup was last attempted.
retention_period_days int: After how many days backups should be deleted. Defaults to 30.
start_time str: When the schedule should start working in RFC-3339 format.

frequencyInterval Number: How often the backup should be executed (e.g. for weekly backup, this should be set to 7 and frequencyUnit should be set to Day).
Note: Not all intervals are supported on all Windows Web App SKUs. Please refer to the official documentation for appropriate values.
frequencyUnit String: The unit of time for how often the backup should take place. Possible values include: Day, Hour
keepAtLeastOneBackup Boolean: Should the service keep at least one backup, regardless of age of backup. Defaults to false.
lastExecutionTime String: The time the backup was last attempted.
retentionPeriodDays Number: After how many days backups should be deleted. Defaults to 30.
startTime String: When the schedule should start working in RFC-3339 format.

WindowsWebAppConnectionString, WindowsWebAppConnectionStringArgs

Name string: The name of the Connection String.
Type string: Type of database. Possible values include: APIHub, Custom, DocDb, EventHub, MySQL, NotificationHub, PostgreSQL, RedisCache, ServiceBus, SQLAzure, and SQLServer.
Value string: The connection string value.

Name string: The name of the Connection String.
Type string: Type of database. Possible values include: APIHub, Custom, DocDb, EventHub, MySQL, NotificationHub, PostgreSQL, RedisCache, ServiceBus, SQLAzure, and SQLServer.
Value string: The connection string value.

name String: The name of the Connection String.
type String: Type of database. Possible values include: APIHub, Custom, DocDb, EventHub, MySQL, NotificationHub, PostgreSQL, RedisCache, ServiceBus, SQLAzure, and SQLServer.
value String: The connection string value.

name string: The name of the Connection String.
type string: Type of database. Possible values include: APIHub, Custom, DocDb, EventHub, MySQL, NotificationHub, PostgreSQL, RedisCache, ServiceBus, SQLAzure, and SQLServer.
value string: The connection string value.

name str: The name of the Connection String.
type str: Type of database. Possible values include: APIHub, Custom, DocDb, EventHub, MySQL, NotificationHub, PostgreSQL, RedisCache, ServiceBus, SQLAzure, and SQLServer.
value str: The connection string value.

name String: The name of the Connection String.
type String: Type of database. Possible values include: APIHub, Custom, DocDb, EventHub, MySQL, NotificationHub, PostgreSQL, RedisCache, ServiceBus, SQLAzure, and SQLServer.
value String: The connection string value.

WindowsWebAppIdentity, WindowsWebAppIdentityArgs

Type string: Specifies the type of Managed Service Identity that should be configured on this Windows Web App. Possible values are SystemAssigned, UserAssigned, SystemAssigned, UserAssigned (to enable both).
IdentityIds List<string>: A list of User Assigned Managed Identity IDs to be assigned to this Windows Web App.
Note: This is required when type is set to UserAssigned or SystemAssigned, UserAssigned.
PrincipalId string: The Principal ID associated with this Managed Service Identity.
TenantId string: The Tenant ID associated with this Managed Service Identity.

Type string: Specifies the type of Managed Service Identity that should be configured on this Windows Web App. Possible values are SystemAssigned, UserAssigned, SystemAssigned, UserAssigned (to enable both).
IdentityIds []string: A list of User Assigned Managed Identity IDs to be assigned to this Windows Web App.
Note: This is required when type is set to UserAssigned or SystemAssigned, UserAssigned.
PrincipalId string: The Principal ID associated with this Managed Service Identity.
TenantId string: The Tenant ID associated with this Managed Service Identity.

type String: Specifies the type of Managed Service Identity that should be configured on this Windows Web App. Possible values are SystemAssigned, UserAssigned, SystemAssigned, UserAssigned (to enable both).
identityIds List<String>: A list of User Assigned Managed Identity IDs to be assigned to this Windows Web App.
Note: This is required when type is set to UserAssigned or SystemAssigned, UserAssigned.
principalId String: The Principal ID associated with this Managed Service Identity.
tenantId String: The Tenant ID associated with this Managed Service Identity.

type string: Specifies the type of Managed Service Identity that should be configured on this Windows Web App. Possible values are SystemAssigned, UserAssigned, SystemAssigned, UserAssigned (to enable both).
identityIds string[]: A list of User Assigned Managed Identity IDs to be assigned to this Windows Web App.
Note: This is required when type is set to UserAssigned or SystemAssigned, UserAssigned.
principalId string: The Principal ID associated with this Managed Service Identity.
tenantId string: The Tenant ID associated with this Managed Service Identity.

type str: Specifies the type of Managed Service Identity that should be configured on this Windows Web App. Possible values are SystemAssigned, UserAssigned, SystemAssigned, UserAssigned (to enable both).
identity_ids Sequence[str]: A list of User Assigned Managed Identity IDs to be assigned to this Windows Web App.
Note: This is required when type is set to UserAssigned or SystemAssigned, UserAssigned.
principal_id str: The Principal ID associated with this Managed Service Identity.
tenant_id str: The Tenant ID associated with this Managed Service Identity.

type String: Specifies the type of Managed Service Identity that should be configured on this Windows Web App. Possible values are SystemAssigned, UserAssigned, SystemAssigned, UserAssigned (to enable both).
identityIds List<String>: A list of User Assigned Managed Identity IDs to be assigned to this Windows Web App.
Note: This is required when type is set to UserAssigned or SystemAssigned, UserAssigned.
principalId String: The Principal ID associated with this Managed Service Identity.
tenantId String: The Tenant ID associated with this Managed Service Identity.

WindowsWebAppLogs, WindowsWebAppLogsArgs

ApplicationLogs WindowsWebAppLogsApplicationLogs: A applicationLogs block as defined above.
DetailedErrorMessages bool: Should detailed error messages be enabled.
FailedRequestTracing bool: Should tracing be enabled for failed requests.
HttpLogs WindowsWebAppLogsHttpLogs: A httpLogs block as defined above.

ApplicationLogs WindowsWebAppLogsApplicationLogs: A applicationLogs block as defined above.
DetailedErrorMessages bool: Should detailed error messages be enabled.
FailedRequestTracing bool: Should tracing be enabled for failed requests.
HttpLogs WindowsWebAppLogsHttpLogs: A httpLogs block as defined above.

applicationLogs WindowsWebAppLogsApplicationLogs: A applicationLogs block as defined above.
detailedErrorMessages Boolean: Should detailed error messages be enabled.
failedRequestTracing Boolean: Should tracing be enabled for failed requests.
httpLogs WindowsWebAppLogsHttpLogs: A httpLogs block as defined above.

applicationLogs WindowsWebAppLogsApplicationLogs: A applicationLogs block as defined above.
detailedErrorMessages boolean: Should detailed error messages be enabled.
failedRequestTracing boolean: Should tracing be enabled for failed requests.
httpLogs WindowsWebAppLogsHttpLogs: A httpLogs block as defined above.

application_logs WindowsWebAppLogsApplicationLogs: A applicationLogs block as defined above.
detailed_error_messages bool: Should detailed error messages be enabled.
failed_request_tracing bool: Should tracing be enabled for failed requests.
http_logs WindowsWebAppLogsHttpLogs: A httpLogs block as defined above.

applicationLogs Property Map: A applicationLogs block as defined above.
detailedErrorMessages Boolean: Should detailed error messages be enabled.
failedRequestTracing Boolean: Should tracing be enabled for failed requests.
httpLogs Property Map: A httpLogs block as defined above.

WindowsWebAppLogsApplicationLogs, WindowsWebAppLogsApplicationLogsArgs

FileSystemLevel string: Log level. Possible values include: Off, Verbose, Information, Warning, and Error.
AzureBlobStorage WindowsWebAppLogsApplicationLogsAzureBlobStorage: An azureBlobStorage block as defined below.

FileSystemLevel string: Log level. Possible values include: Off, Verbose, Information, Warning, and Error.
AzureBlobStorage WindowsWebAppLogsApplicationLogsAzureBlobStorage: An azureBlobStorage block as defined below.

fileSystemLevel String: Log level. Possible values include: Off, Verbose, Information, Warning, and Error.
azureBlobStorage WindowsWebAppLogsApplicationLogsAzureBlobStorage: An azureBlobStorage block as defined below.

fileSystemLevel string: Log level. Possible values include: Off, Verbose, Information, Warning, and Error.
azureBlobStorage WindowsWebAppLogsApplicationLogsAzureBlobStorage: An azureBlobStorage block as defined below.

file_system_level str: Log level. Possible values include: Off, Verbose, Information, Warning, and Error.
azure_blob_storage WindowsWebAppLogsApplicationLogsAzureBlobStorage: An azureBlobStorage block as defined below.

fileSystemLevel String: Log level. Possible values include: Off, Verbose, Information, Warning, and Error.
azureBlobStorage Property Map: An azureBlobStorage block as defined below.

WindowsWebAppLogsApplicationLogsAzureBlobStorage, WindowsWebAppLogsApplicationLogsAzureBlobStorageArgs

Level string: The level at which to log. Possible values include Error, Warning, Information, Verbose and Off. NOTE: this field is not available for httpLogs
RetentionInDays int: The time in days after which to remove blobs. A value of 0 means no retention.
SasUrl string: SAS url to an Azure blob container with read/write/list/delete permissions.
Note: There isn't enough information to for the provider to generate the sasUrl from data.azurerm_storage_account_sas and it should be built by hand (i.e. https://${azurerm_storage_account.example.name}.blob.core.windows.net/${azurerm_storage_container.example.name}${data.azurerm_storage_account_sas.example.sas}&sr=b).

Level string: The level at which to log. Possible values include Error, Warning, Information, Verbose and Off. NOTE: this field is not available for httpLogs
RetentionInDays int: The time in days after which to remove blobs. A value of 0 means no retention.
SasUrl string: SAS url to an Azure blob container with read/write/list/delete permissions.
Note: There isn't enough information to for the provider to generate the sasUrl from data.azurerm_storage_account_sas and it should be built by hand (i.e. https://${azurerm_storage_account.example.name}.blob.core.windows.net/${azurerm_storage_container.example.name}${data.azurerm_storage_account_sas.example.sas}&sr=b).

level String: The level at which to log. Possible values include Error, Warning, Information, Verbose and Off. NOTE: this field is not available for httpLogs
retentionInDays Integer: The time in days after which to remove blobs. A value of 0 means no retention.
sasUrl String: SAS url to an Azure blob container with read/write/list/delete permissions.
Note: There isn't enough information to for the provider to generate the sasUrl from data.azurerm_storage_account_sas and it should be built by hand (i.e. https://${azurerm_storage_account.example.name}.blob.core.windows.net/${azurerm_storage_container.example.name}${data.azurerm_storage_account_sas.example.sas}&sr=b).

level string: The level at which to log. Possible values include Error, Warning, Information, Verbose and Off. NOTE: this field is not available for httpLogs
retentionInDays number: The time in days after which to remove blobs. A value of 0 means no retention.
sasUrl string: SAS url to an Azure blob container with read/write/list/delete permissions.
Note: There isn't enough information to for the provider to generate the sasUrl from data.azurerm_storage_account_sas and it should be built by hand (i.e. https://${azurerm_storage_account.example.name}.blob.core.windows.net/${azurerm_storage_container.example.name}${data.azurerm_storage_account_sas.example.sas}&sr=b).

level str: The level at which to log. Possible values include Error, Warning, Information, Verbose and Off. NOTE: this field is not available for httpLogs
retention_in_days int: The time in days after which to remove blobs. A value of 0 means no retention.
sas_url str: SAS url to an Azure blob container with read/write/list/delete permissions.
Note: There isn't enough information to for the provider to generate the sasUrl from data.azurerm_storage_account_sas and it should be built by hand (i.e. https://${azurerm_storage_account.example.name}.blob.core.windows.net/${azurerm_storage_container.example.name}${data.azurerm_storage_account_sas.example.sas}&sr=b).

level String: The level at which to log. Possible values include Error, Warning, Information, Verbose and Off. NOTE: this field is not available for httpLogs
retentionInDays Number: The time in days after which to remove blobs. A value of 0 means no retention.
sasUrl String: SAS url to an Azure blob container with read/write/list/delete permissions.
Note: There isn't enough information to for the provider to generate the sasUrl from data.azurerm_storage_account_sas and it should be built by hand (i.e. https://${azurerm_storage_account.example.name}.blob.core.windows.net/${azurerm_storage_container.example.name}${data.azurerm_storage_account_sas.example.sas}&sr=b).

WindowsWebAppLogsHttpLogs, WindowsWebAppLogsHttpLogsArgs

AzureBlobStorage WindowsWebAppLogsHttpLogsAzureBlobStorage: A azureBlobStorageHttp block as defined below.
FileSystem WindowsWebAppLogsHttpLogsFileSystem: A fileSystem block as defined above.

AzureBlobStorage WindowsWebAppLogsHttpLogsAzureBlobStorage: A azureBlobStorageHttp block as defined below.
FileSystem WindowsWebAppLogsHttpLogsFileSystem: A fileSystem block as defined above.

azureBlobStorage WindowsWebAppLogsHttpLogsAzureBlobStorage: A azureBlobStorageHttp block as defined below.
fileSystem WindowsWebAppLogsHttpLogsFileSystem: A fileSystem block as defined above.

azureBlobStorage WindowsWebAppLogsHttpLogsAzureBlobStorage: A azureBlobStorageHttp block as defined below.
fileSystem WindowsWebAppLogsHttpLogsFileSystem: A fileSystem block as defined above.

azure_blob_storage WindowsWebAppLogsHttpLogsAzureBlobStorage: A azureBlobStorageHttp block as defined below.
file_system WindowsWebAppLogsHttpLogsFileSystem: A fileSystem block as defined above.

azureBlobStorage Property Map: A azureBlobStorageHttp block as defined below.
fileSystem Property Map: A fileSystem block as defined above.

WindowsWebAppLogsHttpLogsAzureBlobStorage, WindowsWebAppLogsHttpLogsAzureBlobStorageArgs

SasUrl string: SAS url to an Azure blob container with read/write/list/delete permissions.
Note: There isn't enough information to for the provider to generate the sasUrl from data.azurerm_storage_account_sas and it should be built by hand (i.e. https://${azurerm_storage_account.example.name}.blob.core.windows.net/${azurerm_storage_container.example.name}${data.azurerm_storage_account_sas.example.sas}&sr=b).
RetentionInDays int: The time in days after which to remove blobs. A value of 0 means no retention.

SasUrl string: SAS url to an Azure blob container with read/write/list/delete permissions.
Note: There isn't enough information to for the provider to generate the sasUrl from data.azurerm_storage_account_sas and it should be built by hand (i.e. https://${azurerm_storage_account.example.name}.blob.core.windows.net/${azurerm_storage_container.example.name}${data.azurerm_storage_account_sas.example.sas}&sr=b).
RetentionInDays int: The time in days after which to remove blobs. A value of 0 means no retention.

sasUrl String: SAS url to an Azure blob container with read/write/list/delete permissions.
Note: There isn't enough information to for the provider to generate the sasUrl from data.azurerm_storage_account_sas and it should be built by hand (i.e. https://${azurerm_storage_account.example.name}.blob.core.windows.net/${azurerm_storage_container.example.name}${data.azurerm_storage_account_sas.example.sas}&sr=b).
retentionInDays Integer: The time in days after which to remove blobs. A value of 0 means no retention.

sasUrl string: SAS url to an Azure blob container with read/write/list/delete permissions.
Note: There isn't enough information to for the provider to generate the sasUrl from data.azurerm_storage_account_sas and it should be built by hand (i.e. https://${azurerm_storage_account.example.name}.blob.core.windows.net/${azurerm_storage_container.example.name}${data.azurerm_storage_account_sas.example.sas}&sr=b).
retentionInDays number: The time in days after which to remove blobs. A value of 0 means no retention.

sas_url str: SAS url to an Azure blob container with read/write/list/delete permissions.
Note: There isn't enough information to for the provider to generate the sasUrl from data.azurerm_storage_account_sas and it should be built by hand (i.e. https://${azurerm_storage_account.example.name}.blob.core.windows.net/${azurerm_storage_container.example.name}${data.azurerm_storage_account_sas.example.sas}&sr=b).
retention_in_days int: The time in days after which to remove blobs. A value of 0 means no retention.

sasUrl String: SAS url to an Azure blob container with read/write/list/delete permissions.
Note: There isn't enough information to for the provider to generate the sasUrl from data.azurerm_storage_account_sas and it should be built by hand (i.e. https://${azurerm_storage_account.example.name}.blob.core.windows.net/${azurerm_storage_container.example.name}${data.azurerm_storage_account_sas.example.sas}&sr=b).
retentionInDays Number: The time in days after which to remove blobs. A value of 0 means no retention.

WindowsWebAppLogsHttpLogsFileSystem, WindowsWebAppLogsHttpLogsFileSystemArgs

RetentionInDays int: The retention period in days. A values of 0 means no retention.
RetentionInMb int: The maximum size in megabytes that log files can use.

RetentionInDays int: The retention period in days. A values of 0 means no retention.
RetentionInMb int: The maximum size in megabytes that log files can use.

retentionInDays Integer: The retention period in days. A values of 0 means no retention.
retentionInMb Integer: The maximum size in megabytes that log files can use.

retentionInDays number: The retention period in days. A values of 0 means no retention.
retentionInMb number: The maximum size in megabytes that log files can use.

retention_in_days int: The retention period in days. A values of 0 means no retention.
retention_in_mb int: The maximum size in megabytes that log files can use.

retentionInDays Number: The retention period in days. A values of 0 means no retention.
retentionInMb Number: The maximum size in megabytes that log files can use.

WindowsWebAppSiteConfig, WindowsWebAppSiteConfigArgs

AlwaysOn bool: If this Windows Web App is Always On enabled. Defaults to true.
Note: alwaysOn must be explicitly set to false when using Free, F1, D1, or Shared Service Plans.
ApiDefinitionUrl string: The URL to the API Definition for this Windows Web App.
ApiManagementApiId string: The API Management API ID this Windows Web App Slot is associated with.
AppCommandLine string: The App command line to launch.
ApplicationStack WindowsWebAppSiteConfigApplicationStack: A applicationStack block as defined above.
AutoHealSetting WindowsWebAppSiteConfigAutoHealSetting: A autoHealSetting block as defined above. Required with autoHeal.
ContainerRegistryManagedIdentityClientId string: The Client ID of the Managed Service Identity to use for connections to the Azure Container Registry.
ContainerRegistryUseManagedIdentity bool: Should connections for Azure Container Registry use Managed Identity.
Cors WindowsWebAppSiteConfigCors: A cors block as defined above.
DefaultDocuments List<string>: Specifies a list of Default Documents for the Windows Web App.
DetailedErrorLoggingEnabled bool
FtpsState string: The State of FTP / FTPS service. Possible values include: AllAllowed, FtpsOnly, Disabled. Defaults to Disabled.
Note: Azure defaults this value to AllAllowed, however, in the interests of security Terraform will default this to Disabled to ensure the user makes a conscious choice to enable it.
HandlerMappings List<WindowsWebAppSiteConfigHandlerMapping>: One or more handlerMapping blocks as defined below.
HealthCheckEvictionTimeInMin int: The amount of time in minutes that a node can be unhealthy before being removed from the load balancer. Possible values are between 2 and 10. Only valid in conjunction with healthCheckPath.
HealthCheckPath string: The path to the Health Check.
Http2Enabled bool: Should the HTTP2 be enabled?
IpRestrictionDefaultAction string: The Default action for traffic that does not match any ipRestriction rule. possible values include Allow and Deny. Defaults to Allow.
IpRestrictions List<WindowsWebAppSiteConfigIpRestriction>: One or more ipRestriction blocks as defined above.
LinuxFxVersion string
LoadBalancingMode string: The Site load balancing. Possible values include: WeightedRoundRobin, LeastRequests, LeastResponseTime, WeightedTotalTraffic, RequestHash, PerSiteRoundRobin. Defaults to LeastRequests if omitted.
LocalMysqlEnabled bool: Use Local MySQL. Defaults to false.
ManagedPipelineMode string: Managed pipeline mode. Possible values include: Integrated, Classic. Defaults to Integrated.
MinimumTlsVersion string: The configures the minimum version of TLS required for SSL requests. Possible values include: 1.0, 1.1, 1.2 and 1.3. Defaults to 1.2.
RemoteDebuggingEnabled bool: Should Remote Debugging be enabled. Defaults to false.
RemoteDebuggingVersion string: The Remote Debugging Version. Currently only VS2022 is supported.
ScmIpRestrictionDefaultAction string: The Default action for traffic that does not match any scmIpRestriction rule. possible values include Allow and Deny. Defaults to Allow.
ScmIpRestrictions List<WindowsWebAppSiteConfigScmIpRestriction>: One or more scmIpRestriction blocks as defined above.
ScmMinimumTlsVersion string: The configures the minimum version of TLS required for SSL requests to the SCM site Possible values are 1.0, 1.1, 1.2 and 1.3. Defaults to 1.2.
ScmType string
ScmUseMainIpRestriction bool: Should the Windows Web App ipRestriction configuration be used for the SCM also.
Use32BitWorker bool: Should the Windows Web App use a 32-bit worker. Defaults to true.
VirtualApplications List<WindowsWebAppSiteConfigVirtualApplication>: One or more virtualApplication blocks as defined below.
VnetRouteAllEnabled bool: Should all outbound traffic to have NAT Gateways, Network Security Groups and User Defined Routes applied? Defaults to false.
WebsocketsEnabled bool: Should Web Sockets be enabled. Defaults to false.
WindowsFxVersion string
WorkerCount int: The number of Workers for this Windows App Service.

AlwaysOn bool: If this Windows Web App is Always On enabled. Defaults to true.
Note: alwaysOn must be explicitly set to false when using Free, F1, D1, or Shared Service Plans.
ApiDefinitionUrl string: The URL to the API Definition for this Windows Web App.
ApiManagementApiId string: The API Management API ID this Windows Web App Slot is associated with.
AppCommandLine string: The App command line to launch.
ApplicationStack WindowsWebAppSiteConfigApplicationStack: A applicationStack block as defined above.
AutoHealSetting WindowsWebAppSiteConfigAutoHealSetting: A autoHealSetting block as defined above. Required with autoHeal.
ContainerRegistryManagedIdentityClientId string: The Client ID of the Managed Service Identity to use for connections to the Azure Container Registry.
ContainerRegistryUseManagedIdentity bool: Should connections for Azure Container Registry use Managed Identity.
Cors WindowsWebAppSiteConfigCors: A cors block as defined above.
DefaultDocuments []string: Specifies a list of Default Documents for the Windows Web App.
DetailedErrorLoggingEnabled bool
FtpsState string: The State of FTP / FTPS service. Possible values include: AllAllowed, FtpsOnly, Disabled. Defaults to Disabled.
Note: Azure defaults this value to AllAllowed, however, in the interests of security Terraform will default this to Disabled to ensure the user makes a conscious choice to enable it.
HandlerMappings []WindowsWebAppSiteConfigHandlerMapping: One or more handlerMapping blocks as defined below.
HealthCheckEvictionTimeInMin int: The amount of time in minutes that a node can be unhealthy before being removed from the load balancer. Possible values are between 2 and 10. Only valid in conjunction with healthCheckPath.
HealthCheckPath string: The path to the Health Check.
Http2Enabled bool: Should the HTTP2 be enabled?
IpRestrictionDefaultAction string: The Default action for traffic that does not match any ipRestriction rule. possible values include Allow and Deny. Defaults to Allow.
IpRestrictions []WindowsWebAppSiteConfigIpRestriction: One or more ipRestriction blocks as defined above.
LinuxFxVersion string
LoadBalancingMode string: The Site load balancing. Possible values include: WeightedRoundRobin, LeastRequests, LeastResponseTime, WeightedTotalTraffic, RequestHash, PerSiteRoundRobin. Defaults to LeastRequests if omitted.
LocalMysqlEnabled bool: Use Local MySQL. Defaults to false.
ManagedPipelineMode string: Managed pipeline mode. Possible values include: Integrated, Classic. Defaults to Integrated.
MinimumTlsVersion string: The configures the minimum version of TLS required for SSL requests. Possible values include: 1.0, 1.1, 1.2 and 1.3. Defaults to 1.2.
RemoteDebuggingEnabled bool: Should Remote Debugging be enabled. Defaults to false.
RemoteDebuggingVersion string: The Remote Debugging Version. Currently only VS2022 is supported.
ScmIpRestrictionDefaultAction string: The Default action for traffic that does not match any scmIpRestriction rule. possible values include Allow and Deny. Defaults to Allow.
ScmIpRestrictions []WindowsWebAppSiteConfigScmIpRestriction: One or more scmIpRestriction blocks as defined above.
ScmMinimumTlsVersion string: The configures the minimum version of TLS required for SSL requests to the SCM site Possible values are 1.0, 1.1, 1.2 and 1.3. Defaults to 1.2.
ScmType string
ScmUseMainIpRestriction bool: Should the Windows Web App ipRestriction configuration be used for the SCM also.
Use32BitWorker bool: Should the Windows Web App use a 32-bit worker. Defaults to true.
VirtualApplications []WindowsWebAppSiteConfigVirtualApplication: One or more virtualApplication blocks as defined below.
VnetRouteAllEnabled bool: Should all outbound traffic to have NAT Gateways, Network Security Groups and User Defined Routes applied? Defaults to false.
WebsocketsEnabled bool: Should Web Sockets be enabled. Defaults to false.
WindowsFxVersion string
WorkerCount int: The number of Workers for this Windows App Service.

alwaysOn Boolean: If this Windows Web App is Always On enabled. Defaults to true.
Note: alwaysOn must be explicitly set to false when using Free, F1, D1, or Shared Service Plans.
apiDefinitionUrl String: The URL to the API Definition for this Windows Web App.
apiManagementApiId String: The API Management API ID this Windows Web App Slot is associated with.
appCommandLine String: The App command line to launch.
applicationStack WindowsWebAppSiteConfigApplicationStack: A applicationStack block as defined above.
autoHealSetting WindowsWebAppSiteConfigAutoHealSetting: A autoHealSetting block as defined above. Required with autoHeal.
containerRegistryManagedIdentityClientId String: The Client ID of the Managed Service Identity to use for connections to the Azure Container Registry.
containerRegistryUseManagedIdentity Boolean: Should connections for Azure Container Registry use Managed Identity.
cors WindowsWebAppSiteConfigCors: A cors block as defined above.
defaultDocuments List<String>: Specifies a list of Default Documents for the Windows Web App.
detailedErrorLoggingEnabled Boolean
ftpsState String: The State of FTP / FTPS service. Possible values include: AllAllowed, FtpsOnly, Disabled. Defaults to Disabled.
Note: Azure defaults this value to AllAllowed, however, in the interests of security Terraform will default this to Disabled to ensure the user makes a conscious choice to enable it.
handlerMappings List<WindowsWebAppSiteConfigHandlerMapping>: One or more handlerMapping blocks as defined below.
healthCheckEvictionTimeInMin Integer: The amount of time in minutes that a node can be unhealthy before being removed from the load balancer. Possible values are between 2 and 10. Only valid in conjunction with healthCheckPath.
healthCheckPath String: The path to the Health Check.
http2Enabled Boolean: Should the HTTP2 be enabled?
ipRestrictionDefaultAction String: The Default action for traffic that does not match any ipRestriction rule. possible values include Allow and Deny. Defaults to Allow.
ipRestrictions List<WindowsWebAppSiteConfigIpRestriction>: One or more ipRestriction blocks as defined above.
linuxFxVersion String
loadBalancingMode String: The Site load balancing. Possible values include: WeightedRoundRobin, LeastRequests, LeastResponseTime, WeightedTotalTraffic, RequestHash, PerSiteRoundRobin. Defaults to LeastRequests if omitted.
localMysqlEnabled Boolean: Use Local MySQL. Defaults to false.
managedPipelineMode String: Managed pipeline mode. Possible values include: Integrated, Classic. Defaults to Integrated.
minimumTlsVersion String: The configures the minimum version of TLS required for SSL requests. Possible values include: 1.0, 1.1, 1.2 and 1.3. Defaults to 1.2.
remoteDebuggingEnabled Boolean: Should Remote Debugging be enabled. Defaults to false.
remoteDebuggingVersion String: The Remote Debugging Version. Currently only VS2022 is supported.
scmIpRestrictionDefaultAction String: The Default action for traffic that does not match any scmIpRestriction rule. possible values include Allow and Deny. Defaults to Allow.
scmIpRestrictions List<WindowsWebAppSiteConfigScmIpRestriction>: One or more scmIpRestriction blocks as defined above.
scmMinimumTlsVersion String: The configures the minimum version of TLS required for SSL requests to the SCM site Possible values are 1.0, 1.1, 1.2 and 1.3. Defaults to 1.2.
scmType String
scmUseMainIpRestriction Boolean: Should the Windows Web App ipRestriction configuration be used for the SCM also.
use32BitWorker Boolean: Should the Windows Web App use a 32-bit worker. Defaults to true.
virtualApplications List<WindowsWebAppSiteConfigVirtualApplication>: One or more virtualApplication blocks as defined below.
vnetRouteAllEnabled Boolean: Should all outbound traffic to have NAT Gateways, Network Security Groups and User Defined Routes applied? Defaults to false.
websocketsEnabled Boolean: Should Web Sockets be enabled. Defaults to false.
windowsFxVersion String
workerCount Integer: The number of Workers for this Windows App Service.

alwaysOn boolean: If this Windows Web App is Always On enabled. Defaults to true.
Note: alwaysOn must be explicitly set to false when using Free, F1, D1, or Shared Service Plans.
apiDefinitionUrl string: The URL to the API Definition for this Windows Web App.
apiManagementApiId string: The API Management API ID this Windows Web App Slot is associated with.
appCommandLine string: The App command line to launch.
applicationStack WindowsWebAppSiteConfigApplicationStack: A applicationStack block as defined above.
autoHealSetting WindowsWebAppSiteConfigAutoHealSetting: A autoHealSetting block as defined above. Required with autoHeal.
containerRegistryManagedIdentityClientId string: The Client ID of the Managed Service Identity to use for connections to the Azure Container Registry.
containerRegistryUseManagedIdentity boolean: Should connections for Azure Container Registry use Managed Identity.
cors WindowsWebAppSiteConfigCors: A cors block as defined above.
defaultDocuments string[]: Specifies a list of Default Documents for the Windows Web App.
detailedErrorLoggingEnabled boolean
ftpsState string: The State of FTP / FTPS service. Possible values include: AllAllowed, FtpsOnly, Disabled. Defaults to Disabled.
Note: Azure defaults this value to AllAllowed, however, in the interests of security Terraform will default this to Disabled to ensure the user makes a conscious choice to enable it.
handlerMappings WindowsWebAppSiteConfigHandlerMapping[]: One or more handlerMapping blocks as defined below.
healthCheckEvictionTimeInMin number: The amount of time in minutes that a node can be unhealthy before being removed from the load balancer. Possible values are between 2 and 10. Only valid in conjunction with healthCheckPath.
healthCheckPath string: The path to the Health Check.
http2Enabled boolean: Should the HTTP2 be enabled?
ipRestrictionDefaultAction string: The Default action for traffic that does not match any ipRestriction rule. possible values include Allow and Deny. Defaults to Allow.
ipRestrictions WindowsWebAppSiteConfigIpRestriction[]: One or more ipRestriction blocks as defined above.
linuxFxVersion string
loadBalancingMode string: The Site load balancing. Possible values include: WeightedRoundRobin, LeastRequests, LeastResponseTime, WeightedTotalTraffic, RequestHash, PerSiteRoundRobin. Defaults to LeastRequests if omitted.
localMysqlEnabled boolean: Use Local MySQL. Defaults to false.
managedPipelineMode string: Managed pipeline mode. Possible values include: Integrated, Classic. Defaults to Integrated.
minimumTlsVersion string: The configures the minimum version of TLS required for SSL requests. Possible values include: 1.0, 1.1, 1.2 and 1.3. Defaults to 1.2.
remoteDebuggingEnabled boolean: Should Remote Debugging be enabled. Defaults to false.
remoteDebuggingVersion string: The Remote Debugging Version. Currently only VS2022 is supported.
scmIpRestrictionDefaultAction string: The Default action for traffic that does not match any scmIpRestriction rule. possible values include Allow and Deny. Defaults to Allow.
scmIpRestrictions WindowsWebAppSiteConfigScmIpRestriction[]: One or more scmIpRestriction blocks as defined above.
scmMinimumTlsVersion string: The configures the minimum version of TLS required for SSL requests to the SCM site Possible values are 1.0, 1.1, 1.2 and 1.3. Defaults to 1.2.
scmType string
scmUseMainIpRestriction boolean: Should the Windows Web App ipRestriction configuration be used for the SCM also.
use32BitWorker boolean: Should the Windows Web App use a 32-bit worker. Defaults to true.
virtualApplications WindowsWebAppSiteConfigVirtualApplication[]: One or more virtualApplication blocks as defined below.
vnetRouteAllEnabled boolean: Should all outbound traffic to have NAT Gateways, Network Security Groups and User Defined Routes applied? Defaults to false.
websocketsEnabled boolean: Should Web Sockets be enabled. Defaults to false.
windowsFxVersion string
workerCount number: The number of Workers for this Windows App Service.

always_on bool: If this Windows Web App is Always On enabled. Defaults to true.
Note: alwaysOn must be explicitly set to false when using Free, F1, D1, or Shared Service Plans.
api_definition_url str: The URL to the API Definition for this Windows Web App.
api_management_api_id str: The API Management API ID this Windows Web App Slot is associated with.
app_command_line str: The App command line to launch.
application_stack WindowsWebAppSiteConfigApplicationStack: A applicationStack block as defined above.
auto_heal_setting WindowsWebAppSiteConfigAutoHealSetting: A autoHealSetting block as defined above. Required with autoHeal.
container_registry_managed_identity_client_id str: The Client ID of the Managed Service Identity to use for connections to the Azure Container Registry.
container_registry_use_managed_identity bool: Should connections for Azure Container Registry use Managed Identity.
cors WindowsWebAppSiteConfigCors: A cors block as defined above.
default_documents Sequence[str]: Specifies a list of Default Documents for the Windows Web App.
detailed_error_logging_enabled bool
ftps_state str: The State of FTP / FTPS service. Possible values include: AllAllowed, FtpsOnly, Disabled. Defaults to Disabled.
Note: Azure defaults this value to AllAllowed, however, in the interests of security Terraform will default this to Disabled to ensure the user makes a conscious choice to enable it.
handler_mappings Sequence[WindowsWebAppSiteConfigHandlerMapping]: One or more handlerMapping blocks as defined below.
health_check_eviction_time_in_min int: The amount of time in minutes that a node can be unhealthy before being removed from the load balancer. Possible values are between 2 and 10. Only valid in conjunction with healthCheckPath.
health_check_path str: The path to the Health Check.
http2_enabled bool: Should the HTTP2 be enabled?
ip_restriction_default_action str: The Default action for traffic that does not match any ipRestriction rule. possible values include Allow and Deny. Defaults to Allow.
ip_restrictions Sequence[WindowsWebAppSiteConfigIpRestriction]: One or more ipRestriction blocks as defined above.
linux_fx_version str
load_balancing_mode str: The Site load balancing. Possible values include: WeightedRoundRobin, LeastRequests, LeastResponseTime, WeightedTotalTraffic, RequestHash, PerSiteRoundRobin. Defaults to LeastRequests if omitted.
local_mysql_enabled bool: Use Local MySQL. Defaults to false.
managed_pipeline_mode str: Managed pipeline mode. Possible values include: Integrated, Classic. Defaults to Integrated.
minimum_tls_version str: The configures the minimum version of TLS required for SSL requests. Possible values include: 1.0, 1.1, 1.2 and 1.3. Defaults to 1.2.
remote_debugging_enabled bool: Should Remote Debugging be enabled. Defaults to false.
remote_debugging_version str: The Remote Debugging Version. Currently only VS2022 is supported.
scm_ip_restriction_default_action str: The Default action for traffic that does not match any scmIpRestriction rule. possible values include Allow and Deny. Defaults to Allow.
scm_ip_restrictions Sequence[WindowsWebAppSiteConfigScmIpRestriction]: One or more scmIpRestriction blocks as defined above.
scm_minimum_tls_version str: The configures the minimum version of TLS required for SSL requests to the SCM site Possible values are 1.0, 1.1, 1.2 and 1.3. Defaults to 1.2.
scm_type str
scm_use_main_ip_restriction bool: Should the Windows Web App ipRestriction configuration be used for the SCM also.
use32_bit_worker bool: Should the Windows Web App use a 32-bit worker. Defaults to true.
virtual_applications Sequence[WindowsWebAppSiteConfigVirtualApplication]: One or more virtualApplication blocks as defined below.
vnet_route_all_enabled bool: Should all outbound traffic to have NAT Gateways, Network Security Groups and User Defined Routes applied? Defaults to false.
websockets_enabled bool: Should Web Sockets be enabled. Defaults to false.
windows_fx_version str
worker_count int: The number of Workers for this Windows App Service.

alwaysOn Boolean: If this Windows Web App is Always On enabled. Defaults to true.
Note: alwaysOn must be explicitly set to false when using Free, F1, D1, or Shared Service Plans.
apiDefinitionUrl String: The URL to the API Definition for this Windows Web App.
apiManagementApiId String: The API Management API ID this Windows Web App Slot is associated with.
appCommandLine String: The App command line to launch.
applicationStack Property Map: A applicationStack block as defined above.
autoHealSetting Property Map: A autoHealSetting block as defined above. Required with autoHeal.
containerRegistryManagedIdentityClientId String: The Client ID of the Managed Service Identity to use for connections to the Azure Container Registry.
containerRegistryUseManagedIdentity Boolean: Should connections for Azure Container Registry use Managed Identity.
cors Property Map: A cors block as defined above.
defaultDocuments List<String>: Specifies a list of Default Documents for the Windows Web App.
detailedErrorLoggingEnabled Boolean
ftpsState String: The State of FTP / FTPS service. Possible values include: AllAllowed, FtpsOnly, Disabled. Defaults to Disabled.
Note: Azure defaults this value to AllAllowed, however, in the interests of security Terraform will default this to Disabled to ensure the user makes a conscious choice to enable it.
handlerMappings List<Property Map>: One or more handlerMapping blocks as defined below.
healthCheckEvictionTimeInMin Number: The amount of time in minutes that a node can be unhealthy before being removed from the load balancer. Possible values are between 2 and 10. Only valid in conjunction with healthCheckPath.
healthCheckPath String: The path to the Health Check.
http2Enabled Boolean: Should the HTTP2 be enabled?
ipRestrictionDefaultAction String: The Default action for traffic that does not match any ipRestriction rule. possible values include Allow and Deny. Defaults to Allow.
ipRestrictions List<Property Map>: One or more ipRestriction blocks as defined above.
linuxFxVersion String
loadBalancingMode String: The Site load balancing. Possible values include: WeightedRoundRobin, LeastRequests, LeastResponseTime, WeightedTotalTraffic, RequestHash, PerSiteRoundRobin. Defaults to LeastRequests if omitted.
localMysqlEnabled Boolean: Use Local MySQL. Defaults to false.
managedPipelineMode String: Managed pipeline mode. Possible values include: Integrated, Classic. Defaults to Integrated.
minimumTlsVersion String: The configures the minimum version of TLS required for SSL requests. Possible values include: 1.0, 1.1, 1.2 and 1.3. Defaults to 1.2.
remoteDebuggingEnabled Boolean: Should Remote Debugging be enabled. Defaults to false.
remoteDebuggingVersion String: The Remote Debugging Version. Currently only VS2022 is supported.
scmIpRestrictionDefaultAction String: The Default action for traffic that does not match any scmIpRestriction rule. possible values include Allow and Deny. Defaults to Allow.
scmIpRestrictions List<Property Map>: One or more scmIpRestriction blocks as defined above.
scmMinimumTlsVersion String: The configures the minimum version of TLS required for SSL requests to the SCM site Possible values are 1.0, 1.1, 1.2 and 1.3. Defaults to 1.2.
scmType String
scmUseMainIpRestriction Boolean: Should the Windows Web App ipRestriction configuration be used for the SCM also.
use32BitWorker Boolean: Should the Windows Web App use a 32-bit worker. Defaults to true.
virtualApplications List<Property Map>: One or more virtualApplication blocks as defined below.
vnetRouteAllEnabled Boolean: Should all outbound traffic to have NAT Gateways, Network Security Groups and User Defined Routes applied? Defaults to false.
websocketsEnabled Boolean: Should Web Sockets be enabled. Defaults to false.
windowsFxVersion String
workerCount Number: The number of Workers for this Windows App Service.

WindowsWebAppSiteConfigApplicationStack, WindowsWebAppSiteConfigApplicationStackArgs

CurrentStack string: The Application Stack for the Windows Web App. Possible values include dotnet, dotnetcore, node, python, php, and java.
Note: Whilst this property is Optional omitting it can cause unexpected behaviour, in particular for display of settings in the Azure Portal.
Note: Windows Web apps can configure multiple appStack properties, it is recommended to always configure this Optional value and set it to the primary application stack of your app to ensure correct operation of this resource and display the correct metadata in the Azure Portal.
DockerImageName string: The docker image, including tag, to be used. e.g. azure-app-service/windows/parkingpage:latest.
DockerRegistryPassword string: The User Name to use for authentication against the registry to pull the image.
Note: dockerRegistryUrl, dockerRegistryUsername, and dockerRegistryPassword replace the use of the appSettings values of DOCKER_REGISTRY_SERVER_URL, DOCKER_REGISTRY_SERVER_USERNAME and DOCKER_REGISTRY_SERVER_PASSWORD respectively, these values will be managed by the provider and should not be specified in the appSettings map.
DockerRegistryUrl string: The URL of the container registry where the dockerImageName is located. e.g. https://index.docker.io or https://mcr.microsoft.com. This value is required with dockerImageName.
DockerRegistryUsername string: The User Name to use for authentication against the registry to pull the image.
DotnetCoreVersion string: The version of .NET to use when currentStack is set to dotnetcore. Possible values include v4.0.
DotnetVersion string: The version of .NET to use when currentStack is set to dotnet. Possible values include v2.0,v3.0, v4.0, v5.0, v6.0, v7.0, v8.0, v9.0 and v10.0.
Note: The Portal displayed values and the actual underlying API values differ for this setting, as follows: Portal Value | API value :--|--: ASP.NET V3.5 | v2.0 ASP.NET V4.8 | v4.0 .NET 6 (LTS) | v6.0 .NET 7 (STS) | v7.0 .NET 8 (LTS) | v8.0 .NET 9 (STS) | v9.0 .NET 10 (LTS) | v10.0
JavaContainer string: Deprecated: this property has been deprecated in favour of tomcatVersion and javaEmbeddedServerEnabled
JavaContainerVersion string: Deprecated: This property has been deprecated in favour of tomcatVersion and javaEmbeddedServerEnabled
JavaEmbeddedServerEnabled bool: Should the Java Embedded Server (Java SE) be used to run the app.
JavaVersion string: The version of Java to use when currentStack is set to java.
Note: For currently supported versions, please see the official documentation. Some example values include: 1.8, 1.8.0_322, 11, 11.0.14, 17, 17.0.2, 21 and 25
NodeVersion string: The version of node to use when currentStack is set to node. Possible values are ~12, ~14, ~16, ~18, ~20 and ~22.
Note: This property conflicts with javaVersion.
PhpVersion string: The version of PHP to use when currentStack is set to php. Possible values are 7.1, 7.4 and Off.
Note: The value Off is used to signify latest supported by the service.
Python bool: Specifies whether this is a Python app. Defaults to false.
TomcatVersion string: The version of Tomcat the Java App should use. Conflicts with javaEmbeddedServerEnabled
Note: See the official documentation for current supported versions. Some example values include: 10.0, 10.0.20.

CurrentStack string: The Application Stack for the Windows Web App. Possible values include dotnet, dotnetcore, node, python, php, and java.
Note: Whilst this property is Optional omitting it can cause unexpected behaviour, in particular for display of settings in the Azure Portal.
Note: Windows Web apps can configure multiple appStack properties, it is recommended to always configure this Optional value and set it to the primary application stack of your app to ensure correct operation of this resource and display the correct metadata in the Azure Portal.
DockerImageName string: The docker image, including tag, to be used. e.g. azure-app-service/windows/parkingpage:latest.
DockerRegistryPassword string: The User Name to use for authentication against the registry to pull the image.
Note: dockerRegistryUrl, dockerRegistryUsername, and dockerRegistryPassword replace the use of the appSettings values of DOCKER_REGISTRY_SERVER_URL, DOCKER_REGISTRY_SERVER_USERNAME and DOCKER_REGISTRY_SERVER_PASSWORD respectively, these values will be managed by the provider and should not be specified in the appSettings map.
DockerRegistryUrl string: The URL of the container registry where the dockerImageName is located. e.g. https://index.docker.io or https://mcr.microsoft.com. This value is required with dockerImageName.
DockerRegistryUsername string: The User Name to use for authentication against the registry to pull the image.
DotnetCoreVersion string: The version of .NET to use when currentStack is set to dotnetcore. Possible values include v4.0.
DotnetVersion string: The version of .NET to use when currentStack is set to dotnet. Possible values include v2.0,v3.0, v4.0, v5.0, v6.0, v7.0, v8.0, v9.0 and v10.0.
Note: The Portal displayed values and the actual underlying API values differ for this setting, as follows: Portal Value | API value :--|--: ASP.NET V3.5 | v2.0 ASP.NET V4.8 | v4.0 .NET 6 (LTS) | v6.0 .NET 7 (STS) | v7.0 .NET 8 (LTS) | v8.0 .NET 9 (STS) | v9.0 .NET 10 (LTS) | v10.0
JavaContainer string: Deprecated: this property has been deprecated in favour of tomcatVersion and javaEmbeddedServerEnabled
JavaContainerVersion string: Deprecated: This property has been deprecated in favour of tomcatVersion and javaEmbeddedServerEnabled
JavaEmbeddedServerEnabled bool: Should the Java Embedded Server (Java SE) be used to run the app.
JavaVersion string: The version of Java to use when currentStack is set to java.
Note: For currently supported versions, please see the official documentation. Some example values include: 1.8, 1.8.0_322, 11, 11.0.14, 17, 17.0.2, 21 and 25
NodeVersion string: The version of node to use when currentStack is set to node. Possible values are ~12, ~14, ~16, ~18, ~20 and ~22.
Note: This property conflicts with javaVersion.
PhpVersion string: The version of PHP to use when currentStack is set to php. Possible values are 7.1, 7.4 and Off.
Note: The value Off is used to signify latest supported by the service.
Python bool: Specifies whether this is a Python app. Defaults to false.
TomcatVersion string: The version of Tomcat the Java App should use. Conflicts with javaEmbeddedServerEnabled
Note: See the official documentation for current supported versions. Some example values include: 10.0, 10.0.20.

currentStack String: The Application Stack for the Windows Web App. Possible values include dotnet, dotnetcore, node, python, php, and java.
Note: Whilst this property is Optional omitting it can cause unexpected behaviour, in particular for display of settings in the Azure Portal.
Note: Windows Web apps can configure multiple appStack properties, it is recommended to always configure this Optional value and set it to the primary application stack of your app to ensure correct operation of this resource and display the correct metadata in the Azure Portal.
dockerImageName String: The docker image, including tag, to be used. e.g. azure-app-service/windows/parkingpage:latest.
dockerRegistryPassword String: The User Name to use for authentication against the registry to pull the image.
Note: dockerRegistryUrl, dockerRegistryUsername, and dockerRegistryPassword replace the use of the appSettings values of DOCKER_REGISTRY_SERVER_URL, DOCKER_REGISTRY_SERVER_USERNAME and DOCKER_REGISTRY_SERVER_PASSWORD respectively, these values will be managed by the provider and should not be specified in the appSettings map.
dockerRegistryUrl String: The URL of the container registry where the dockerImageName is located. e.g. https://index.docker.io or https://mcr.microsoft.com. This value is required with dockerImageName.
dockerRegistryUsername String: The User Name to use for authentication against the registry to pull the image.
dotnetCoreVersion String: The version of .NET to use when currentStack is set to dotnetcore. Possible values include v4.0.
dotnetVersion String: The version of .NET to use when currentStack is set to dotnet. Possible values include v2.0,v3.0, v4.0, v5.0, v6.0, v7.0, v8.0, v9.0 and v10.0.
Note: The Portal displayed values and the actual underlying API values differ for this setting, as follows: Portal Value | API value :--|--: ASP.NET V3.5 | v2.0 ASP.NET V4.8 | v4.0 .NET 6 (LTS) | v6.0 .NET 7 (STS) | v7.0 .NET 8 (LTS) | v8.0 .NET 9 (STS) | v9.0 .NET 10 (LTS) | v10.0
javaContainer String: Deprecated: this property has been deprecated in favour of tomcatVersion and javaEmbeddedServerEnabled
javaContainerVersion String: Deprecated: This property has been deprecated in favour of tomcatVersion and javaEmbeddedServerEnabled
javaEmbeddedServerEnabled Boolean: Should the Java Embedded Server (Java SE) be used to run the app.
javaVersion String: The version of Java to use when currentStack is set to java.
Note: For currently supported versions, please see the official documentation. Some example values include: 1.8, 1.8.0_322, 11, 11.0.14, 17, 17.0.2, 21 and 25
nodeVersion String: The version of node to use when currentStack is set to node. Possible values are ~12, ~14, ~16, ~18, ~20 and ~22.
Note: This property conflicts with javaVersion.
phpVersion String: The version of PHP to use when currentStack is set to php. Possible values are 7.1, 7.4 and Off.
Note: The value Off is used to signify latest supported by the service.
python Boolean: Specifies whether this is a Python app. Defaults to false.
tomcatVersion String: The version of Tomcat the Java App should use. Conflicts with javaEmbeddedServerEnabled
Note: See the official documentation for current supported versions. Some example values include: 10.0, 10.0.20.

currentStack string: The Application Stack for the Windows Web App. Possible values include dotnet, dotnetcore, node, python, php, and java.
Note: Whilst this property is Optional omitting it can cause unexpected behaviour, in particular for display of settings in the Azure Portal.
Note: Windows Web apps can configure multiple appStack properties, it is recommended to always configure this Optional value and set it to the primary application stack of your app to ensure correct operation of this resource and display the correct metadata in the Azure Portal.
dockerImageName string: The docker image, including tag, to be used. e.g. azure-app-service/windows/parkingpage:latest.
dockerRegistryPassword string: The User Name to use for authentication against the registry to pull the image.
Note: dockerRegistryUrl, dockerRegistryUsername, and dockerRegistryPassword replace the use of the appSettings values of DOCKER_REGISTRY_SERVER_URL, DOCKER_REGISTRY_SERVER_USERNAME and DOCKER_REGISTRY_SERVER_PASSWORD respectively, these values will be managed by the provider and should not be specified in the appSettings map.
dockerRegistryUrl string: The URL of the container registry where the dockerImageName is located. e.g. https://index.docker.io or https://mcr.microsoft.com. This value is required with dockerImageName.
dockerRegistryUsername string: The User Name to use for authentication against the registry to pull the image.
dotnetCoreVersion string: The version of .NET to use when currentStack is set to dotnetcore. Possible values include v4.0.
dotnetVersion string: The version of .NET to use when currentStack is set to dotnet. Possible values include v2.0,v3.0, v4.0, v5.0, v6.0, v7.0, v8.0, v9.0 and v10.0.
Note: The Portal displayed values and the actual underlying API values differ for this setting, as follows: Portal Value | API value :--|--: ASP.NET V3.5 | v2.0 ASP.NET V4.8 | v4.0 .NET 6 (LTS) | v6.0 .NET 7 (STS) | v7.0 .NET 8 (LTS) | v8.0 .NET 9 (STS) | v9.0 .NET 10 (LTS) | v10.0
javaContainer string: Deprecated: this property has been deprecated in favour of tomcatVersion and javaEmbeddedServerEnabled
javaContainerVersion string: Deprecated: This property has been deprecated in favour of tomcatVersion and javaEmbeddedServerEnabled
javaEmbeddedServerEnabled boolean: Should the Java Embedded Server (Java SE) be used to run the app.
javaVersion string: The version of Java to use when currentStack is set to java.
Note: For currently supported versions, please see the official documentation. Some example values include: 1.8, 1.8.0_322, 11, 11.0.14, 17, 17.0.2, 21 and 25
nodeVersion string: The version of node to use when currentStack is set to node. Possible values are ~12, ~14, ~16, ~18, ~20 and ~22.
Note: This property conflicts with javaVersion.
phpVersion string: The version of PHP to use when currentStack is set to php. Possible values are 7.1, 7.4 and Off.
Note: The value Off is used to signify latest supported by the service.
python boolean: Specifies whether this is a Python app. Defaults to false.
tomcatVersion string: The version of Tomcat the Java App should use. Conflicts with javaEmbeddedServerEnabled
Note: See the official documentation for current supported versions. Some example values include: 10.0, 10.0.20.

current_stack str: The Application Stack for the Windows Web App. Possible values include dotnet, dotnetcore, node, python, php, and java.
Note: Whilst this property is Optional omitting it can cause unexpected behaviour, in particular for display of settings in the Azure Portal.
Note: Windows Web apps can configure multiple appStack properties, it is recommended to always configure this Optional value and set it to the primary application stack of your app to ensure correct operation of this resource and display the correct metadata in the Azure Portal.
docker_image_name str: The docker image, including tag, to be used. e.g. azure-app-service/windows/parkingpage:latest.
docker_registry_password str: The User Name to use for authentication against the registry to pull the image.
Note: dockerRegistryUrl, dockerRegistryUsername, and dockerRegistryPassword replace the use of the appSettings values of DOCKER_REGISTRY_SERVER_URL, DOCKER_REGISTRY_SERVER_USERNAME and DOCKER_REGISTRY_SERVER_PASSWORD respectively, these values will be managed by the provider and should not be specified in the appSettings map.
docker_registry_url str: The URL of the container registry where the dockerImageName is located. e.g. https://index.docker.io or https://mcr.microsoft.com. This value is required with dockerImageName.
docker_registry_username str: The User Name to use for authentication against the registry to pull the image.
dotnet_core_version str: The version of .NET to use when currentStack is set to dotnetcore. Possible values include v4.0.
dotnet_version str: The version of .NET to use when currentStack is set to dotnet. Possible values include v2.0,v3.0, v4.0, v5.0, v6.0, v7.0, v8.0, v9.0 and v10.0.
Note: The Portal displayed values and the actual underlying API values differ for this setting, as follows: Portal Value | API value :--|--: ASP.NET V3.5 | v2.0 ASP.NET V4.8 | v4.0 .NET 6 (LTS) | v6.0 .NET 7 (STS) | v7.0 .NET 8 (LTS) | v8.0 .NET 9 (STS) | v9.0 .NET 10 (LTS) | v10.0
java_container str: Deprecated: this property has been deprecated in favour of tomcatVersion and javaEmbeddedServerEnabled
java_container_version str: Deprecated: This property has been deprecated in favour of tomcatVersion and javaEmbeddedServerEnabled
java_embedded_server_enabled bool: Should the Java Embedded Server (Java SE) be used to run the app.
java_version str: The version of Java to use when currentStack is set to java.
Note: For currently supported versions, please see the official documentation. Some example values include: 1.8, 1.8.0_322, 11, 11.0.14, 17, 17.0.2, 21 and 25
node_version str: The version of node to use when currentStack is set to node. Possible values are ~12, ~14, ~16, ~18, ~20 and ~22.
Note: This property conflicts with javaVersion.
php_version str: The version of PHP to use when currentStack is set to php. Possible values are 7.1, 7.4 and Off.
Note: The value Off is used to signify latest supported by the service.
python bool: Specifies whether this is a Python app. Defaults to false.
tomcat_version str: The version of Tomcat the Java App should use. Conflicts with javaEmbeddedServerEnabled
Note: See the official documentation for current supported versions. Some example values include: 10.0, 10.0.20.

currentStack String: The Application Stack for the Windows Web App. Possible values include dotnet, dotnetcore, node, python, php, and java.
Note: Whilst this property is Optional omitting it can cause unexpected behaviour, in particular for display of settings in the Azure Portal.
Note: Windows Web apps can configure multiple appStack properties, it is recommended to always configure this Optional value and set it to the primary application stack of your app to ensure correct operation of this resource and display the correct metadata in the Azure Portal.
dockerImageName String: The docker image, including tag, to be used. e.g. azure-app-service/windows/parkingpage:latest.
dockerRegistryPassword String: The User Name to use for authentication against the registry to pull the image.
Note: dockerRegistryUrl, dockerRegistryUsername, and dockerRegistryPassword replace the use of the appSettings values of DOCKER_REGISTRY_SERVER_URL, DOCKER_REGISTRY_SERVER_USERNAME and DOCKER_REGISTRY_SERVER_PASSWORD respectively, these values will be managed by the provider and should not be specified in the appSettings map.
dockerRegistryUrl String: The URL of the container registry where the dockerImageName is located. e.g. https://index.docker.io or https://mcr.microsoft.com. This value is required with dockerImageName.
dockerRegistryUsername String: The User Name to use for authentication against the registry to pull the image.
dotnetCoreVersion String: The version of .NET to use when currentStack is set to dotnetcore. Possible values include v4.0.
dotnetVersion String: The version of .NET to use when currentStack is set to dotnet. Possible values include v2.0,v3.0, v4.0, v5.0, v6.0, v7.0, v8.0, v9.0 and v10.0.
Note: The Portal displayed values and the actual underlying API values differ for this setting, as follows: Portal Value | API value :--|--: ASP.NET V3.5 | v2.0 ASP.NET V4.8 | v4.0 .NET 6 (LTS) | v6.0 .NET 7 (STS) | v7.0 .NET 8 (LTS) | v8.0 .NET 9 (STS) | v9.0 .NET 10 (LTS) | v10.0
javaContainer String: Deprecated: this property has been deprecated in favour of tomcatVersion and javaEmbeddedServerEnabled
javaContainerVersion String: Deprecated: This property has been deprecated in favour of tomcatVersion and javaEmbeddedServerEnabled
javaEmbeddedServerEnabled Boolean: Should the Java Embedded Server (Java SE) be used to run the app.
javaVersion String: The version of Java to use when currentStack is set to java.
Note: For currently supported versions, please see the official documentation. Some example values include: 1.8, 1.8.0_322, 11, 11.0.14, 17, 17.0.2, 21 and 25
nodeVersion String: The version of node to use when currentStack is set to node. Possible values are ~12, ~14, ~16, ~18, ~20 and ~22.
Note: This property conflicts with javaVersion.
phpVersion String: The version of PHP to use when currentStack is set to php. Possible values are 7.1, 7.4 and Off.
Note: The value Off is used to signify latest supported by the service.
python Boolean: Specifies whether this is a Python app. Defaults to false.
tomcatVersion String: The version of Tomcat the Java App should use. Conflicts with javaEmbeddedServerEnabled
Note: See the official documentation for current supported versions. Some example values include: 10.0, 10.0.20.

WindowsWebAppSiteConfigAutoHealSetting, WindowsWebAppSiteConfigAutoHealSettingArgs

Action WindowsWebAppSiteConfigAutoHealSettingAction: An action block as defined above.
Trigger WindowsWebAppSiteConfigAutoHealSettingTrigger: A trigger block as defined below.

Action WindowsWebAppSiteConfigAutoHealSettingAction: An action block as defined above.
Trigger WindowsWebAppSiteConfigAutoHealSettingTrigger: A trigger block as defined below.

action WindowsWebAppSiteConfigAutoHealSettingAction: An action block as defined above.
trigger WindowsWebAppSiteConfigAutoHealSettingTrigger: A trigger block as defined below.

action WindowsWebAppSiteConfigAutoHealSettingAction: An action block as defined above.
trigger WindowsWebAppSiteConfigAutoHealSettingTrigger: A trigger block as defined below.

action WindowsWebAppSiteConfigAutoHealSettingAction: An action block as defined above.
trigger WindowsWebAppSiteConfigAutoHealSettingTrigger: A trigger block as defined below.

action Property Map: An action block as defined above.
trigger Property Map: A trigger block as defined below.

WindowsWebAppSiteConfigAutoHealSettingAction, WindowsWebAppSiteConfigAutoHealSettingActionArgs

ActionType string: Predefined action to be taken to an Auto Heal trigger. Possible values include: Recycle, LogEvent, and CustomAction.
CustomAction WindowsWebAppSiteConfigAutoHealSettingActionCustomAction: A customAction block as defined below.
MinimumProcessExecutionTime string: The minimum amount of time in hh:mm:ss the Windows Web App must have been running before the defined action will be run in the event of a trigger.

ActionType string: Predefined action to be taken to an Auto Heal trigger. Possible values include: Recycle, LogEvent, and CustomAction.
CustomAction WindowsWebAppSiteConfigAutoHealSettingActionCustomAction: A customAction block as defined below.
MinimumProcessExecutionTime string: The minimum amount of time in hh:mm:ss the Windows Web App must have been running before the defined action will be run in the event of a trigger.

actionType String: Predefined action to be taken to an Auto Heal trigger. Possible values include: Recycle, LogEvent, and CustomAction.
customAction WindowsWebAppSiteConfigAutoHealSettingActionCustomAction: A customAction block as defined below.
minimumProcessExecutionTime String: The minimum amount of time in hh:mm:ss the Windows Web App must have been running before the defined action will be run in the event of a trigger.

actionType string: Predefined action to be taken to an Auto Heal trigger. Possible values include: Recycle, LogEvent, and CustomAction.
customAction WindowsWebAppSiteConfigAutoHealSettingActionCustomAction: A customAction block as defined below.
minimumProcessExecutionTime string: The minimum amount of time in hh:mm:ss the Windows Web App must have been running before the defined action will be run in the event of a trigger.

action_type str: Predefined action to be taken to an Auto Heal trigger. Possible values include: Recycle, LogEvent, and CustomAction.
custom_action WindowsWebAppSiteConfigAutoHealSettingActionCustomAction: A customAction block as defined below.
minimum_process_execution_time str: The minimum amount of time in hh:mm:ss the Windows Web App must have been running before the defined action will be run in the event of a trigger.

actionType String: Predefined action to be taken to an Auto Heal trigger. Possible values include: Recycle, LogEvent, and CustomAction.
customAction Property Map: A customAction block as defined below.
minimumProcessExecutionTime String: The minimum amount of time in hh:mm:ss the Windows Web App must have been running before the defined action will be run in the event of a trigger.

WindowsWebAppSiteConfigAutoHealSettingActionCustomAction, WindowsWebAppSiteConfigAutoHealSettingActionCustomActionArgs

Executable string: The executable to run for the customAction.
Parameters string: The parameters to pass to the specified executable.

Executable string: The executable to run for the customAction.
Parameters string: The parameters to pass to the specified executable.

executable String: The executable to run for the customAction.
parameters String: The parameters to pass to the specified executable.

executable string: The executable to run for the customAction.
parameters string: The parameters to pass to the specified executable.

executable str: The executable to run for the customAction.
parameters str: The parameters to pass to the specified executable.

executable String: The executable to run for the customAction.
parameters String: The parameters to pass to the specified executable.

WindowsWebAppSiteConfigAutoHealSettingTrigger, WindowsWebAppSiteConfigAutoHealSettingTriggerArgs

PrivateMemoryKb int: The amount of Private Memory to be consumed for this rule to trigger. Possible values are between 102400 and 13631488.
Requests WindowsWebAppSiteConfigAutoHealSettingTriggerRequests: A requests block as defined above.
SlowRequest WindowsWebAppSiteConfigAutoHealSettingTriggerSlowRequest: A slowRequest block as defined above.
SlowRequestWithPaths List<WindowsWebAppSiteConfigAutoHealSettingTriggerSlowRequestWithPath>: One or more slowRequestWithPath blocks as defined above.
StatusCodes List<WindowsWebAppSiteConfigAutoHealSettingTriggerStatusCode>: One or more statusCode blocks as defined above.

PrivateMemoryKb int: The amount of Private Memory to be consumed for this rule to trigger. Possible values are between 102400 and 13631488.
Requests WindowsWebAppSiteConfigAutoHealSettingTriggerRequests: A requests block as defined above.
SlowRequest WindowsWebAppSiteConfigAutoHealSettingTriggerSlowRequest: A slowRequest block as defined above.
SlowRequestWithPaths []WindowsWebAppSiteConfigAutoHealSettingTriggerSlowRequestWithPath: One or more slowRequestWithPath blocks as defined above.
StatusCodes []WindowsWebAppSiteConfigAutoHealSettingTriggerStatusCode: One or more statusCode blocks as defined above.

privateMemoryKb Integer: The amount of Private Memory to be consumed for this rule to trigger. Possible values are between 102400 and 13631488.
requests WindowsWebAppSiteConfigAutoHealSettingTriggerRequests: A requests block as defined above.
slowRequest WindowsWebAppSiteConfigAutoHealSettingTriggerSlowRequest: A slowRequest block as defined above.
slowRequestWithPaths List<WindowsWebAppSiteConfigAutoHealSettingTriggerSlowRequestWithPath>: One or more slowRequestWithPath blocks as defined above.
statusCodes List<WindowsWebAppSiteConfigAutoHealSettingTriggerStatusCode>: One or more statusCode blocks as defined above.

privateMemoryKb number: The amount of Private Memory to be consumed for this rule to trigger. Possible values are between 102400 and 13631488.
requests WindowsWebAppSiteConfigAutoHealSettingTriggerRequests: A requests block as defined above.
slowRequest WindowsWebAppSiteConfigAutoHealSettingTriggerSlowRequest: A slowRequest block as defined above.
slowRequestWithPaths WindowsWebAppSiteConfigAutoHealSettingTriggerSlowRequestWithPath[]: One or more slowRequestWithPath blocks as defined above.
statusCodes WindowsWebAppSiteConfigAutoHealSettingTriggerStatusCode[]: One or more statusCode blocks as defined above.

private_memory_kb int: The amount of Private Memory to be consumed for this rule to trigger. Possible values are between 102400 and 13631488.
requests WindowsWebAppSiteConfigAutoHealSettingTriggerRequests: A requests block as defined above.
slow_request WindowsWebAppSiteConfigAutoHealSettingTriggerSlowRequest: A slowRequest block as defined above.
slow_request_with_paths Sequence[WindowsWebAppSiteConfigAutoHealSettingTriggerSlowRequestWithPath]: One or more slowRequestWithPath blocks as defined above.
status_codes Sequence[WindowsWebAppSiteConfigAutoHealSettingTriggerStatusCode]: One or more statusCode blocks as defined above.

privateMemoryKb Number: The amount of Private Memory to be consumed for this rule to trigger. Possible values are between 102400 and 13631488.
requests Property Map: A requests block as defined above.
slowRequest Property Map: A slowRequest block as defined above.
slowRequestWithPaths List<Property Map>: One or more slowRequestWithPath blocks as defined above.
statusCodes List<Property Map>: One or more statusCode blocks as defined above.

WindowsWebAppSiteConfigAutoHealSettingTriggerRequests, WindowsWebAppSiteConfigAutoHealSettingTriggerRequestsArgs

Count int: The number of requests in the specified interval to trigger this rule.
Interval string: The interval in hh:mm:ss.

Count int: The number of requests in the specified interval to trigger this rule.
Interval string: The interval in hh:mm:ss.

count Integer: The number of requests in the specified interval to trigger this rule.
interval String: The interval in hh:mm:ss.

count number: The number of requests in the specified interval to trigger this rule.
interval string: The interval in hh:mm:ss.

count int: The number of requests in the specified interval to trigger this rule.
interval str: The interval in hh:mm:ss.

count Number: The number of requests in the specified interval to trigger this rule.
interval String: The interval in hh:mm:ss.

WindowsWebAppSiteConfigAutoHealSettingTriggerSlowRequest, WindowsWebAppSiteConfigAutoHealSettingTriggerSlowRequestArgs

Count int: The number of Slow Requests in the time interval to trigger this rule.
Interval string: The time interval in the form hh:mm:ss.
TimeTaken string: The threshold of time passed to qualify as a Slow Request in hh:mm:ss.

Count int: The number of Slow Requests in the time interval to trigger this rule.
Interval string: The time interval in the form hh:mm:ss.
TimeTaken string: The threshold of time passed to qualify as a Slow Request in hh:mm:ss.

count Integer: The number of Slow Requests in the time interval to trigger this rule.
interval String: The time interval in the form hh:mm:ss.
timeTaken String: The threshold of time passed to qualify as a Slow Request in hh:mm:ss.

count number: The number of Slow Requests in the time interval to trigger this rule.
interval string: The time interval in the form hh:mm:ss.
timeTaken string: The threshold of time passed to qualify as a Slow Request in hh:mm:ss.

count int: The number of Slow Requests in the time interval to trigger this rule.
interval str: The time interval in the form hh:mm:ss.
time_taken str: The threshold of time passed to qualify as a Slow Request in hh:mm:ss.

count Number: The number of Slow Requests in the time interval to trigger this rule.
interval String: The time interval in the form hh:mm:ss.
timeTaken String: The threshold of time passed to qualify as a Slow Request in hh:mm:ss.

WindowsWebAppSiteConfigAutoHealSettingTriggerSlowRequestWithPath, WindowsWebAppSiteConfigAutoHealSettingTriggerSlowRequestWithPathArgs

Count int: The number of Slow Requests in the time interval to trigger this rule.
Interval string: The time interval in the form hh:mm:ss.
TimeTaken string: The threshold of time passed to qualify as a Slow Request in hh:mm:ss.
Path string: The path for which this slow request rule applies.

Count int: The number of Slow Requests in the time interval to trigger this rule.
Interval string: The time interval in the form hh:mm:ss.
TimeTaken string: The threshold of time passed to qualify as a Slow Request in hh:mm:ss.
Path string: The path for which this slow request rule applies.

count Integer: The number of Slow Requests in the time interval to trigger this rule.
interval String: The time interval in the form hh:mm:ss.
timeTaken String: The threshold of time passed to qualify as a Slow Request in hh:mm:ss.
path String: The path for which this slow request rule applies.

count number: The number of Slow Requests in the time interval to trigger this rule.
interval string: The time interval in the form hh:mm:ss.
timeTaken string: The threshold of time passed to qualify as a Slow Request in hh:mm:ss.
path string: The path for which this slow request rule applies.

count int: The number of Slow Requests in the time interval to trigger this rule.
interval str: The time interval in the form hh:mm:ss.
time_taken str: The threshold of time passed to qualify as a Slow Request in hh:mm:ss.
path str: The path for which this slow request rule applies.

count Number: The number of Slow Requests in the time interval to trigger this rule.
interval String: The time interval in the form hh:mm:ss.
timeTaken String: The threshold of time passed to qualify as a Slow Request in hh:mm:ss.
path String: The path for which this slow request rule applies.

WindowsWebAppSiteConfigAutoHealSettingTriggerStatusCode, WindowsWebAppSiteConfigAutoHealSettingTriggerStatusCodeArgs

Count int: The number of occurrences of the defined statusCode in the specified interval on which to trigger this rule.
Interval string: The time interval in the form hh:mm:ss.
StatusCodeRange string: The status code for this rule, accepts single status codes and status code ranges. e.g. 500 or 400-499. Possible values are integers between 101 and 599
Path string: The path to which this rule status code applies.
SubStatus int: The Request Sub Status of the Status Code.
Win32StatusCode int: The Win32 Status Code of the Request.

Count int: The number of occurrences of the defined statusCode in the specified interval on which to trigger this rule.
Interval string: The time interval in the form hh:mm:ss.
StatusCodeRange string: The status code for this rule, accepts single status codes and status code ranges. e.g. 500 or 400-499. Possible values are integers between 101 and 599
Path string: The path to which this rule status code applies.
SubStatus int: The Request Sub Status of the Status Code.
Win32StatusCode int: The Win32 Status Code of the Request.

count Integer: The number of occurrences of the defined statusCode in the specified interval on which to trigger this rule.
interval String: The time interval in the form hh:mm:ss.
statusCodeRange String: The status code for this rule, accepts single status codes and status code ranges. e.g. 500 or 400-499. Possible values are integers between 101 and 599
path String: The path to which this rule status code applies.
subStatus Integer: The Request Sub Status of the Status Code.
win32StatusCode Integer: The Win32 Status Code of the Request.

count number: The number of occurrences of the defined statusCode in the specified interval on which to trigger this rule.
interval string: The time interval in the form hh:mm:ss.
statusCodeRange string: The status code for this rule, accepts single status codes and status code ranges. e.g. 500 or 400-499. Possible values are integers between 101 and 599
path string: The path to which this rule status code applies.
subStatus number: The Request Sub Status of the Status Code.
win32StatusCode number: The Win32 Status Code of the Request.

count int: The number of occurrences of the defined statusCode in the specified interval on which to trigger this rule.
interval str: The time interval in the form hh:mm:ss.
status_code_range str: The status code for this rule, accepts single status codes and status code ranges. e.g. 500 or 400-499. Possible values are integers between 101 and 599
path str: The path to which this rule status code applies.
sub_status int: The Request Sub Status of the Status Code.
win32_status_code int: The Win32 Status Code of the Request.

count Number: The number of occurrences of the defined statusCode in the specified interval on which to trigger this rule.
interval String: The time interval in the form hh:mm:ss.
statusCodeRange String: The status code for this rule, accepts single status codes and status code ranges. e.g. 500 or 400-499. Possible values are integers between 101 and 599
path String: The path to which this rule status code applies.
subStatus Number: The Request Sub Status of the Status Code.
win32StatusCode Number: The Win32 Status Code of the Request.

WindowsWebAppSiteConfigCors, WindowsWebAppSiteConfigCorsArgs

AllowedOrigins List<string>: Specifies a list of origins that should be allowed to make cross-origin calls.
SupportCredentials bool: Whether CORS requests with credentials are allowed. Defaults to false

AllowedOrigins []string: Specifies a list of origins that should be allowed to make cross-origin calls.
SupportCredentials bool: Whether CORS requests with credentials are allowed. Defaults to false

allowedOrigins List<String>: Specifies a list of origins that should be allowed to make cross-origin calls.
supportCredentials Boolean: Whether CORS requests with credentials are allowed. Defaults to false

allowedOrigins string[]: Specifies a list of origins that should be allowed to make cross-origin calls.
supportCredentials boolean: Whether CORS requests with credentials are allowed. Defaults to false

allowed_origins Sequence[str]: Specifies a list of origins that should be allowed to make cross-origin calls.
support_credentials bool: Whether CORS requests with credentials are allowed. Defaults to false

allowedOrigins List<String>: Specifies a list of origins that should be allowed to make cross-origin calls.
supportCredentials Boolean: Whether CORS requests with credentials are allowed. Defaults to false

WindowsWebAppSiteConfigHandlerMapping, WindowsWebAppSiteConfigHandlerMappingArgs

Extension string: Specifies which extension to be handled by the specified FastCGI application.
ScriptProcessorPath string: Specifies the absolute path to the FastCGI application.
Arguments string: Specifies the command-line arguments to be passed to the script processor.

Extension string: Specifies which extension to be handled by the specified FastCGI application.
ScriptProcessorPath string: Specifies the absolute path to the FastCGI application.
Arguments string: Specifies the command-line arguments to be passed to the script processor.

extension String: Specifies which extension to be handled by the specified FastCGI application.
scriptProcessorPath String: Specifies the absolute path to the FastCGI application.
arguments String: Specifies the command-line arguments to be passed to the script processor.

extension string: Specifies which extension to be handled by the specified FastCGI application.
scriptProcessorPath string: Specifies the absolute path to the FastCGI application.
arguments string: Specifies the command-line arguments to be passed to the script processor.

extension str: Specifies which extension to be handled by the specified FastCGI application.
script_processor_path str: Specifies the absolute path to the FastCGI application.
arguments str: Specifies the command-line arguments to be passed to the script processor.

extension String: Specifies which extension to be handled by the specified FastCGI application.
scriptProcessorPath String: Specifies the absolute path to the FastCGI application.
arguments String: Specifies the command-line arguments to be passed to the script processor.

WindowsWebAppSiteConfigIpRestriction, WindowsWebAppSiteConfigIpRestrictionArgs

Action string: The action to take. Possible values are Allow or Deny. Defaults to Allow.
Description string: The Description of this IP Restriction.
Headers WindowsWebAppSiteConfigIpRestrictionHeaders: A headers block as defined above.
IpAddress string: The CIDR notation of the IP or IP Range to match. For example: 10.0.0.0/24 or 192.168.10.1/32
Name string: The name which should be used for this ipRestriction.
Priority int: The priority value of this ipRestriction. Defaults to 65000.
ServiceTag string: The Service Tag used for this IP Restriction.
VirtualNetworkSubnetId string: The Virtual Network Subnet ID used for this IP Restriction.
Note: One and only one of ipAddress, serviceTag or virtualNetworkSubnetId must be specified.

Action string: The action to take. Possible values are Allow or Deny. Defaults to Allow.
Description string: The Description of this IP Restriction.
Headers WindowsWebAppSiteConfigIpRestrictionHeaders: A headers block as defined above.
IpAddress string: The CIDR notation of the IP or IP Range to match. For example: 10.0.0.0/24 or 192.168.10.1/32
Name string: The name which should be used for this ipRestriction.
Priority int: The priority value of this ipRestriction. Defaults to 65000.
ServiceTag string: The Service Tag used for this IP Restriction.
VirtualNetworkSubnetId string: The Virtual Network Subnet ID used for this IP Restriction.
Note: One and only one of ipAddress, serviceTag or virtualNetworkSubnetId must be specified.

action String: The action to take. Possible values are Allow or Deny. Defaults to Allow.
description String: The Description of this IP Restriction.
headers WindowsWebAppSiteConfigIpRestrictionHeaders: A headers block as defined above.
ipAddress String: The CIDR notation of the IP or IP Range to match. For example: 10.0.0.0/24 or 192.168.10.1/32
name String: The name which should be used for this ipRestriction.
priority Integer: The priority value of this ipRestriction. Defaults to 65000.
serviceTag String: The Service Tag used for this IP Restriction.
virtualNetworkSubnetId String: The Virtual Network Subnet ID used for this IP Restriction.
Note: One and only one of ipAddress, serviceTag or virtualNetworkSubnetId must be specified.

action string: The action to take. Possible values are Allow or Deny. Defaults to Allow.
description string: The Description of this IP Restriction.
headers WindowsWebAppSiteConfigIpRestrictionHeaders: A headers block as defined above.
ipAddress string: The CIDR notation of the IP or IP Range to match. For example: 10.0.0.0/24 or 192.168.10.1/32
name string: The name which should be used for this ipRestriction.
priority number: The priority value of this ipRestriction. Defaults to 65000.
serviceTag string: The Service Tag used for this IP Restriction.
virtualNetworkSubnetId string: The Virtual Network Subnet ID used for this IP Restriction.
Note: One and only one of ipAddress, serviceTag or virtualNetworkSubnetId must be specified.

action str: The action to take. Possible values are Allow or Deny. Defaults to Allow.
description str: The Description of this IP Restriction.
headers WindowsWebAppSiteConfigIpRestrictionHeaders: A headers block as defined above.
ip_address str: The CIDR notation of the IP or IP Range to match. For example: 10.0.0.0/24 or 192.168.10.1/32
name str: The name which should be used for this ipRestriction.
priority int: The priority value of this ipRestriction. Defaults to 65000.
service_tag str: The Service Tag used for this IP Restriction.
virtual_network_subnet_id str: The Virtual Network Subnet ID used for this IP Restriction.
Note: One and only one of ipAddress, serviceTag or virtualNetworkSubnetId must be specified.

action String: The action to take. Possible values are Allow or Deny. Defaults to Allow.
description String: The Description of this IP Restriction.
headers Property Map: A headers block as defined above.
ipAddress String: The CIDR notation of the IP or IP Range to match. For example: 10.0.0.0/24 or 192.168.10.1/32
name String: The name which should be used for this ipRestriction.
priority Number: The priority value of this ipRestriction. Defaults to 65000.
serviceTag String: The Service Tag used for this IP Restriction.
virtualNetworkSubnetId String: The Virtual Network Subnet ID used for this IP Restriction.
Note: One and only one of ipAddress, serviceTag or virtualNetworkSubnetId must be specified.

WindowsWebAppSiteConfigIpRestrictionHeaders, WindowsWebAppSiteConfigIpRestrictionHeadersArgs

XAzureFdids List<string>: Specifies a list of Azure Front Door IDs.
XFdHealthProbe string: Specifies if a Front Door Health Probe should be expected. The only possible value is 1.
XForwardedFors List<string>: Specifies a list of addresses for which matching should be applied. Omitting this value means allow any.
XForwardedHosts List<string>: Specifies a list of Hosts for which matching should be applied.

XAzureFdids []string: Specifies a list of Azure Front Door IDs.
XFdHealthProbe string: Specifies if a Front Door Health Probe should be expected. The only possible value is 1.
XForwardedFors []string: Specifies a list of addresses for which matching should be applied. Omitting this value means allow any.
XForwardedHosts []string: Specifies a list of Hosts for which matching should be applied.

xAzureFdids List<String>: Specifies a list of Azure Front Door IDs.
xFdHealthProbe String: Specifies if a Front Door Health Probe should be expected. The only possible value is 1.
xForwardedFors List<String>: Specifies a list of addresses for which matching should be applied. Omitting this value means allow any.
xForwardedHosts List<String>: Specifies a list of Hosts for which matching should be applied.

xAzureFdids string[]: Specifies a list of Azure Front Door IDs.
xFdHealthProbe string: Specifies if a Front Door Health Probe should be expected. The only possible value is 1.
xForwardedFors string[]: Specifies a list of addresses for which matching should be applied. Omitting this value means allow any.
xForwardedHosts string[]: Specifies a list of Hosts for which matching should be applied.

x_azure_fdids Sequence[str]: Specifies a list of Azure Front Door IDs.
x_fd_health_probe str: Specifies if a Front Door Health Probe should be expected. The only possible value is 1.
x_forwarded_fors Sequence[str]: Specifies a list of addresses for which matching should be applied. Omitting this value means allow any.
x_forwarded_hosts Sequence[str]: Specifies a list of Hosts for which matching should be applied.

xAzureFdids List<String>: Specifies a list of Azure Front Door IDs.
xFdHealthProbe String: Specifies if a Front Door Health Probe should be expected. The only possible value is 1.
xForwardedFors List<String>: Specifies a list of addresses for which matching should be applied. Omitting this value means allow any.
xForwardedHosts List<String>: Specifies a list of Hosts for which matching should be applied.

WindowsWebAppSiteConfigScmIpRestriction, WindowsWebAppSiteConfigScmIpRestrictionArgs

Action string: The action to take. Possible values are Allow or Deny. Defaults to Allow.
Description string: The Description of this IP Restriction.
Headers WindowsWebAppSiteConfigScmIpRestrictionHeaders: A headers block as defined above.
IpAddress string: The CIDR notation of the IP or IP Range to match. For example: 10.0.0.0/24 or 192.168.10.1/32
Name string: The name which should be used for this ipRestriction.
Priority int: The priority value of this ipRestriction. Defaults to 65000.
ServiceTag string: The Service Tag used for this IP Restriction.
VirtualNetworkSubnetId string: The Virtual Network Subnet ID used for this IP Restriction.
Note: One and only one of ipAddress, serviceTag or virtualNetworkSubnetId must be specified.

Action string: The action to take. Possible values are Allow or Deny. Defaults to Allow.
Description string: The Description of this IP Restriction.
Headers WindowsWebAppSiteConfigScmIpRestrictionHeaders: A headers block as defined above.
IpAddress string: The CIDR notation of the IP or IP Range to match. For example: 10.0.0.0/24 or 192.168.10.1/32
Name string: The name which should be used for this ipRestriction.
Priority int: The priority value of this ipRestriction. Defaults to 65000.
ServiceTag string: The Service Tag used for this IP Restriction.
VirtualNetworkSubnetId string: The Virtual Network Subnet ID used for this IP Restriction.
Note: One and only one of ipAddress, serviceTag or virtualNetworkSubnetId must be specified.

action String: The action to take. Possible values are Allow or Deny. Defaults to Allow.
description String: The Description of this IP Restriction.
headers WindowsWebAppSiteConfigScmIpRestrictionHeaders: A headers block as defined above.
ipAddress String: The CIDR notation of the IP or IP Range to match. For example: 10.0.0.0/24 or 192.168.10.1/32
name String: The name which should be used for this ipRestriction.
priority Integer: The priority value of this ipRestriction. Defaults to 65000.
serviceTag String: The Service Tag used for this IP Restriction.
virtualNetworkSubnetId String: The Virtual Network Subnet ID used for this IP Restriction.
Note: One and only one of ipAddress, serviceTag or virtualNetworkSubnetId must be specified.

action string: The action to take. Possible values are Allow or Deny. Defaults to Allow.
description string: The Description of this IP Restriction.
headers WindowsWebAppSiteConfigScmIpRestrictionHeaders: A headers block as defined above.
ipAddress string: The CIDR notation of the IP or IP Range to match. For example: 10.0.0.0/24 or 192.168.10.1/32
name string: The name which should be used for this ipRestriction.
priority number: The priority value of this ipRestriction. Defaults to 65000.
serviceTag string: The Service Tag used for this IP Restriction.
virtualNetworkSubnetId string: The Virtual Network Subnet ID used for this IP Restriction.
Note: One and only one of ipAddress, serviceTag or virtualNetworkSubnetId must be specified.

action str: The action to take. Possible values are Allow or Deny. Defaults to Allow.
description str: The Description of this IP Restriction.
headers WindowsWebAppSiteConfigScmIpRestrictionHeaders: A headers block as defined above.
ip_address str: The CIDR notation of the IP or IP Range to match. For example: 10.0.0.0/24 or 192.168.10.1/32
name str: The name which should be used for this ipRestriction.
priority int: The priority value of this ipRestriction. Defaults to 65000.
service_tag str: The Service Tag used for this IP Restriction.
virtual_network_subnet_id str: The Virtual Network Subnet ID used for this IP Restriction.
Note: One and only one of ipAddress, serviceTag or virtualNetworkSubnetId must be specified.

action String: The action to take. Possible values are Allow or Deny. Defaults to Allow.
description String: The Description of this IP Restriction.
headers Property Map: A headers block as defined above.
ipAddress String: The CIDR notation of the IP or IP Range to match. For example: 10.0.0.0/24 or 192.168.10.1/32
name String: The name which should be used for this ipRestriction.
priority Number: The priority value of this ipRestriction. Defaults to 65000.
serviceTag String: The Service Tag used for this IP Restriction.
virtualNetworkSubnetId String: The Virtual Network Subnet ID used for this IP Restriction.
Note: One and only one of ipAddress, serviceTag or virtualNetworkSubnetId must be specified.

WindowsWebAppSiteConfigScmIpRestrictionHeaders, WindowsWebAppSiteConfigScmIpRestrictionHeadersArgs

XAzureFdids List<string>: Specifies a list of Azure Front Door IDs.
XFdHealthProbe string: Specifies if a Front Door Health Probe should be expected. The only possible value is 1.
XForwardedFors List<string>: Specifies a list of addresses for which matching should be applied. Omitting this value means allow any.
XForwardedHosts List<string>: Specifies a list of Hosts for which matching should be applied.

XAzureFdids []string: Specifies a list of Azure Front Door IDs.
XFdHealthProbe string: Specifies if a Front Door Health Probe should be expected. The only possible value is 1.
XForwardedFors []string: Specifies a list of addresses for which matching should be applied. Omitting this value means allow any.
XForwardedHosts []string: Specifies a list of Hosts for which matching should be applied.

xAzureFdids List<String>: Specifies a list of Azure Front Door IDs.
xFdHealthProbe String: Specifies if a Front Door Health Probe should be expected. The only possible value is 1.
xForwardedFors List<String>: Specifies a list of addresses for which matching should be applied. Omitting this value means allow any.
xForwardedHosts List<String>: Specifies a list of Hosts for which matching should be applied.

xAzureFdids string[]: Specifies a list of Azure Front Door IDs.
xFdHealthProbe string: Specifies if a Front Door Health Probe should be expected. The only possible value is 1.
xForwardedFors string[]: Specifies a list of addresses for which matching should be applied. Omitting this value means allow any.
xForwardedHosts string[]: Specifies a list of Hosts for which matching should be applied.

x_azure_fdids Sequence[str]: Specifies a list of Azure Front Door IDs.
x_fd_health_probe str: Specifies if a Front Door Health Probe should be expected. The only possible value is 1.
x_forwarded_fors Sequence[str]: Specifies a list of addresses for which matching should be applied. Omitting this value means allow any.
x_forwarded_hosts Sequence[str]: Specifies a list of Hosts for which matching should be applied.

xAzureFdids List<String>: Specifies a list of Azure Front Door IDs.
xFdHealthProbe String: Specifies if a Front Door Health Probe should be expected. The only possible value is 1.
xForwardedFors List<String>: Specifies a list of addresses for which matching should be applied. Omitting this value means allow any.
xForwardedHosts List<String>: Specifies a list of Hosts for which matching should be applied.

WindowsWebAppSiteConfigVirtualApplication, WindowsWebAppSiteConfigVirtualApplicationArgs

PhysicalPath string: The physical path for the Virtual Application.
Preload bool: Should pre-loading be enabled.
VirtualPath string: The Virtual Path for the Virtual Application.
VirtualDirectories List<WindowsWebAppSiteConfigVirtualApplicationVirtualDirectory>: One or more virtualDirectory blocks as defined below.

PhysicalPath string: The physical path for the Virtual Application.
Preload bool: Should pre-loading be enabled.
VirtualPath string: The Virtual Path for the Virtual Application.
VirtualDirectories []WindowsWebAppSiteConfigVirtualApplicationVirtualDirectory: One or more virtualDirectory blocks as defined below.

physicalPath String: The physical path for the Virtual Application.
preload Boolean: Should pre-loading be enabled.
virtualPath String: The Virtual Path for the Virtual Application.
virtualDirectories List<WindowsWebAppSiteConfigVirtualApplicationVirtualDirectory>: One or more virtualDirectory blocks as defined below.

physicalPath string: The physical path for the Virtual Application.
preload boolean: Should pre-loading be enabled.
virtualPath string: The Virtual Path for the Virtual Application.
virtualDirectories WindowsWebAppSiteConfigVirtualApplicationVirtualDirectory[]: One or more virtualDirectory blocks as defined below.

physical_path str: The physical path for the Virtual Application.
preload bool: Should pre-loading be enabled.
virtual_path str: The Virtual Path for the Virtual Application.
virtual_directories Sequence[WindowsWebAppSiteConfigVirtualApplicationVirtualDirectory]: One or more virtualDirectory blocks as defined below.

physicalPath String: The physical path for the Virtual Application.
preload Boolean: Should pre-loading be enabled.
virtualPath String: The Virtual Path for the Virtual Application.
virtualDirectories List<Property Map>: One or more virtualDirectory blocks as defined below.

WindowsWebAppSiteConfigVirtualApplicationVirtualDirectory, WindowsWebAppSiteConfigVirtualApplicationVirtualDirectoryArgs

PhysicalPath string: The physical path for the Virtual Application.
VirtualPath string: The Virtual Path for the Virtual Application.

PhysicalPath string: The physical path for the Virtual Application.
VirtualPath string: The Virtual Path for the Virtual Application.

physicalPath String: The physical path for the Virtual Application.
virtualPath String: The Virtual Path for the Virtual Application.

physicalPath string: The physical path for the Virtual Application.
virtualPath string: The Virtual Path for the Virtual Application.

physical_path str: The physical path for the Virtual Application.
virtual_path str: The Virtual Path for the Virtual Application.

physicalPath String: The physical path for the Virtual Application.
virtualPath String: The Virtual Path for the Virtual Application.

WindowsWebAppSiteCredential, WindowsWebAppSiteCredentialArgs

Name string: The name which should be used for this Windows Web App. Changing this forces a new Windows Web App to be created.
Password string: The Site Credentials Password used for publishing.

Name string: The name which should be used for this Windows Web App. Changing this forces a new Windows Web App to be created.
Password string: The Site Credentials Password used for publishing.

name String: The name which should be used for this Windows Web App. Changing this forces a new Windows Web App to be created.
password String: The Site Credentials Password used for publishing.

name string: The name which should be used for this Windows Web App. Changing this forces a new Windows Web App to be created.
password string: The Site Credentials Password used for publishing.

name str: The name which should be used for this Windows Web App. Changing this forces a new Windows Web App to be created.
password str: The Site Credentials Password used for publishing.

name String: The name which should be used for this Windows Web App. Changing this forces a new Windows Web App to be created.
password String: The Site Credentials Password used for publishing.

WindowsWebAppStickySettings, WindowsWebAppStickySettingsArgs

AppSettingNames List<string>: A list of appSetting names that the Windows Web App will not swap between Slots when a swap operation is triggered.
ConnectionStringNames List<string>: A list of connectionString names that the Windows Web App will not swap between Slots when a swap operation is triggered.

AppSettingNames []string: A list of appSetting names that the Windows Web App will not swap between Slots when a swap operation is triggered.
ConnectionStringNames []string: A list of connectionString names that the Windows Web App will not swap between Slots when a swap operation is triggered.

appSettingNames List<String>: A list of appSetting names that the Windows Web App will not swap between Slots when a swap operation is triggered.
connectionStringNames List<String>: A list of connectionString names that the Windows Web App will not swap between Slots when a swap operation is triggered.

appSettingNames string[]: A list of appSetting names that the Windows Web App will not swap between Slots when a swap operation is triggered.
connectionStringNames string[]: A list of connectionString names that the Windows Web App will not swap between Slots when a swap operation is triggered.

app_setting_names Sequence[str]: A list of appSetting names that the Windows Web App will not swap between Slots when a swap operation is triggered.
connection_string_names Sequence[str]: A list of connectionString names that the Windows Web App will not swap between Slots when a swap operation is triggered.

appSettingNames List<String>: A list of appSetting names that the Windows Web App will not swap between Slots when a swap operation is triggered.
connectionStringNames List<String>: A list of connectionString names that the Windows Web App will not swap between Slots when a swap operation is triggered.

WindowsWebAppStorageAccount, WindowsWebAppStorageAccountArgs

AccessKey string: The Access key for the storage account.
AccountName string: The Name of the Storage Account.
Name string: The name which should be used for this TODO.
ShareName string: The Name of the File Share or Container Name for Blob storage.
Type string: The Azure Storage Type. Possible values include AzureFiles and AzureBlob
MountPath string: The path at which to mount the storage share.

AccessKey string: The Access key for the storage account.
AccountName string: The Name of the Storage Account.
Name string: The name which should be used for this TODO.
ShareName string: The Name of the File Share or Container Name for Blob storage.
Type string: The Azure Storage Type. Possible values include AzureFiles and AzureBlob
MountPath string: The path at which to mount the storage share.

accessKey String: The Access key for the storage account.
accountName String: The Name of the Storage Account.
name String: The name which should be used for this TODO.
shareName String: The Name of the File Share or Container Name for Blob storage.
type String: The Azure Storage Type. Possible values include AzureFiles and AzureBlob
mountPath String: The path at which to mount the storage share.

accessKey string: The Access key for the storage account.
accountName string: The Name of the Storage Account.
name string: The name which should be used for this TODO.
shareName string: The Name of the File Share or Container Name for Blob storage.
type string: The Azure Storage Type. Possible values include AzureFiles and AzureBlob
mountPath string: The path at which to mount the storage share.

access_key str: The Access key for the storage account.
account_name str: The Name of the Storage Account.
name str: The name which should be used for this TODO.
share_name str: The Name of the File Share or Container Name for Blob storage.
type str: The Azure Storage Type. Possible values include AzureFiles and AzureBlob
mount_path str: The path at which to mount the storage share.

accessKey String: The Access key for the storage account.
accountName String: The Name of the Storage Account.
name String: The name which should be used for this TODO.
shareName String: The Name of the File Share or Container Name for Blob storage.
type String: The Azure Storage Type. Possible values include AzureFiles and AzureBlob
mountPath String: The path at which to mount the storage share.

Import

Windows Web Apps can be imported using the resource id, e.g.

$ pulumi import azure:appservice/windowsWebApp:WindowsWebApp example /subscriptions/12345678-1234-9876-4563-123456789012/resourceGroups/resGroup1/providers/Microsoft.Web/sites/site1

To learn more about importing existing cloud resources, see Importing resources.

Package Details

Repository: Azure Classic pulumi/pulumi-azure
License: Apache-2.0
Notes: This Pulumi package is based on the azurerm Terraform Provider.

We recommend using Azure Native.

Viewing docs for Azure v6.35.0
published on Tuesday, Apr 21, 2026 by Pulumi

Schema (JSON)

pulumi/pulumi-azure

azure.appservice.WindowsWebApp

On this page

On this page

Example Usage

API Providers

Create WindowsWebApp Resource

Constructor syntax

Parameters

WindowsWebApp Resource Properties

Inputs

Outputs

Look up Existing WindowsWebApp Resource

Supporting Types

WindowsWebAppAuthSettings, WindowsWebAppAuthSettingsArgs

WindowsWebAppAuthSettingsActiveDirectory, WindowsWebAppAuthSettingsActiveDirectoryArgs

WindowsWebAppAuthSettingsFacebook, WindowsWebAppAuthSettingsFacebookArgs

WindowsWebAppAuthSettingsGithub, WindowsWebAppAuthSettingsGithubArgs

WindowsWebAppAuthSettingsGoogle, WindowsWebAppAuthSettingsGoogleArgs

WindowsWebAppAuthSettingsMicrosoft, WindowsWebAppAuthSettingsMicrosoftArgs

WindowsWebAppAuthSettingsTwitter, WindowsWebAppAuthSettingsTwitterArgs

WindowsWebAppAuthSettingsV2, WindowsWebAppAuthSettingsV2Args

WindowsWebAppAuthSettingsV2ActiveDirectoryV2, WindowsWebAppAuthSettingsV2ActiveDirectoryV2Args

WindowsWebAppAuthSettingsV2AppleV2, WindowsWebAppAuthSettingsV2AppleV2Args

WindowsWebAppAuthSettingsV2AzureStaticWebAppV2, WindowsWebAppAuthSettingsV2AzureStaticWebAppV2Args

WindowsWebAppAuthSettingsV2CustomOidcV2, WindowsWebAppAuthSettingsV2CustomOidcV2Args

WindowsWebAppAuthSettingsV2FacebookV2, WindowsWebAppAuthSettingsV2FacebookV2Args

WindowsWebAppAuthSettingsV2GithubV2, WindowsWebAppAuthSettingsV2GithubV2Args

WindowsWebAppAuthSettingsV2GoogleV2, WindowsWebAppAuthSettingsV2GoogleV2Args

WindowsWebAppAuthSettingsV2Login, WindowsWebAppAuthSettingsV2LoginArgs

WindowsWebAppAuthSettingsV2MicrosoftV2, WindowsWebAppAuthSettingsV2MicrosoftV2Args

WindowsWebAppAuthSettingsV2TwitterV2, WindowsWebAppAuthSettingsV2TwitterV2Args

WindowsWebAppBackup, WindowsWebAppBackupArgs

WindowsWebAppBackupSchedule, WindowsWebAppBackupScheduleArgs

WindowsWebAppConnectionString, WindowsWebAppConnectionStringArgs

WindowsWebAppIdentity, WindowsWebAppIdentityArgs

WindowsWebAppLogs, WindowsWebAppLogsArgs

WindowsWebAppLogsApplicationLogs, WindowsWebAppLogsApplicationLogsArgs

WindowsWebAppLogsApplicationLogsAzureBlobStorage, WindowsWebAppLogsApplicationLogsAzureBlobStorageArgs

WindowsWebAppLogsHttpLogs, WindowsWebAppLogsHttpLogsArgs

WindowsWebAppLogsHttpLogsAzureBlobStorage, WindowsWebAppLogsHttpLogsAzureBlobStorageArgs

WindowsWebAppLogsHttpLogsFileSystem, WindowsWebAppLogsHttpLogsFileSystemArgs

WindowsWebAppSiteConfig, WindowsWebAppSiteConfigArgs

WindowsWebAppSiteConfigApplicationStack, WindowsWebAppSiteConfigApplicationStackArgs

WindowsWebAppSiteConfigAutoHealSetting, WindowsWebAppSiteConfigAutoHealSettingArgs

WindowsWebAppSiteConfigAutoHealSettingAction, WindowsWebAppSiteConfigAutoHealSettingActionArgs

WindowsWebAppSiteConfigAutoHealSettingActionCustomAction, WindowsWebAppSiteConfigAutoHealSettingActionCustomActionArgs

WindowsWebAppSiteConfigAutoHealSettingTrigger, WindowsWebAppSiteConfigAutoHealSettingTriggerArgs

WindowsWebAppSiteConfigAutoHealSettingTriggerRequests, WindowsWebAppSiteConfigAutoHealSettingTriggerRequestsArgs

WindowsWebAppSiteConfigAutoHealSettingTriggerSlowRequest, WindowsWebAppSiteConfigAutoHealSettingTriggerSlowRequestArgs

WindowsWebAppSiteConfigAutoHealSettingTriggerSlowRequestWithPath, WindowsWebAppSiteConfigAutoHealSettingTriggerSlowRequestWithPathArgs

WindowsWebAppSiteConfigAutoHealSettingTriggerStatusCode, WindowsWebAppSiteConfigAutoHealSettingTriggerStatusCodeArgs

WindowsWebAppSiteConfigCors, WindowsWebAppSiteConfigCorsArgs

WindowsWebAppSiteConfigHandlerMapping, WindowsWebAppSiteConfigHandlerMappingArgs

WindowsWebAppSiteConfigIpRestriction, WindowsWebAppSiteConfigIpRestrictionArgs

WindowsWebAppSiteConfigIpRestrictionHeaders, WindowsWebAppSiteConfigIpRestrictionHeadersArgs

WindowsWebAppSiteConfigScmIpRestriction, WindowsWebAppSiteConfigScmIpRestrictionArgs

WindowsWebAppSiteConfigScmIpRestrictionHeaders, WindowsWebAppSiteConfigScmIpRestrictionHeadersArgs

WindowsWebAppSiteConfigVirtualApplication, WindowsWebAppSiteConfigVirtualApplicationArgs

WindowsWebAppSiteConfigVirtualApplicationVirtualDirectory, WindowsWebAppSiteConfigVirtualApplicationVirtualDirectoryArgs

WindowsWebAppSiteCredential, WindowsWebAppSiteCredentialArgs

WindowsWebAppStickySettings, WindowsWebAppStickySettingsArgs

WindowsWebAppStorageAccount, WindowsWebAppStorageAccountArgs

Import

Package Details

On this page

On this page