1. Packages
  2. Azure Classic
  3. API Docs
  4. cdn
  5. FrontdoorSecret

We recommend using Azure Native.

Azure v6.13.0 published on Monday, Dec 9, 2024 by Pulumi

azure.cdn.FrontdoorSecret

Explore with Pulumi AI

azure logo

We recommend using Azure Native.

Azure v6.13.0 published on Monday, Dec 9, 2024 by Pulumi

    Manages a Front Door (standard/premium) Secret.

    New-AzADServicePrincipal -ApplicationId "00000000-0000-0000-0000-000000000000"

    Object IDKey PermissionsSecret PermissionsCertificate Permissions
    Microsoft.Azure.Cdn Object ID-Get-
    Your Personal AAD Object ID-Get and ListGet, List, Purge and Recover
    Terraform Service Principal-GetGet, Import, Delete and Purge

    ->NOTE: You only need to add the Access Policy for your personal AAD Object ID if you are planning to view the secrets via the Azure Portal.

    Example Usage

    import * as pulumi from "@pulumi/pulumi";
    import * as azure from "@pulumi/azure";
    import * as azuread from "@pulumi/azuread";
    import * as std from "@pulumi/std";
    
    const current = azure.core.getClientConfig({});
    const frontdoor = azuread.getServicePrincipal({
        displayName: "Microsoft.Azure.Cdn",
    });
    const example = new azure.core.ResourceGroup("example", {
        name: "example-cdn-frontdoor",
        location: "West Europe",
    });
    const exampleKeyVault = new azure.keyvault.KeyVault("example", {
        name: "example-keyvault",
        location: example.location,
        resourceGroupName: example.name,
        tenantId: current.then(current => current.tenantId),
        skuName: "premium",
        softDeleteRetentionDays: 7,
        networkAcls: {
            defaultAction: "Deny",
            bypass: "AzureServices",
            ipRules: ["10.0.0.0/24"],
        },
        accessPolicies: [
            {
                tenantId: current.then(current => current.tenantId),
                objectId: frontdoor.then(frontdoor => frontdoor.objectId),
                secretPermissions: ["Get"],
            },
            {
                tenantId: current.then(current => current.tenantId),
                objectId: current.then(current => current.objectId),
                certificatePermissions: [
                    "Get",
                    "Import",
                    "Delete",
                    "Purge",
                ],
                secretPermissions: ["Get"],
            },
        ],
    });
    const exampleCertificate = new azure.keyvault.Certificate("example", {
        name: "example-cert",
        keyVaultId: exampleKeyVault.id,
        certificate: {
            contents: std.filebase64({
                input: "my-certificate.pfx",
            }).then(invoke => invoke.result),
        },
    });
    const exampleFrontdoorProfile = new azure.cdn.FrontdoorProfile("example", {
        name: "example-cdn-profile",
        resourceGroupName: example.name,
        skuName: "Standard_AzureFrontDoor",
    });
    const exampleFrontdoorSecret = new azure.cdn.FrontdoorSecret("example", {
        name: "example-customer-managed-secret",
        cdnFrontdoorProfileId: exampleFrontdoorProfile.id,
        secret: {
            customerCertificates: [{
                keyVaultCertificateId: exampleCertificate.id,
            }],
        },
    });
    
    import pulumi
    import pulumi_azure as azure
    import pulumi_azuread as azuread
    import pulumi_std as std
    
    current = azure.core.get_client_config()
    frontdoor = azuread.get_service_principal(display_name="Microsoft.Azure.Cdn")
    example = azure.core.ResourceGroup("example",
        name="example-cdn-frontdoor",
        location="West Europe")
    example_key_vault = azure.keyvault.KeyVault("example",
        name="example-keyvault",
        location=example.location,
        resource_group_name=example.name,
        tenant_id=current.tenant_id,
        sku_name="premium",
        soft_delete_retention_days=7,
        network_acls={
            "default_action": "Deny",
            "bypass": "AzureServices",
            "ip_rules": ["10.0.0.0/24"],
        },
        access_policies=[
            {
                "tenant_id": current.tenant_id,
                "object_id": frontdoor.object_id,
                "secret_permissions": ["Get"],
            },
            {
                "tenant_id": current.tenant_id,
                "object_id": current.object_id,
                "certificate_permissions": [
                    "Get",
                    "Import",
                    "Delete",
                    "Purge",
                ],
                "secret_permissions": ["Get"],
            },
        ])
    example_certificate = azure.keyvault.Certificate("example",
        name="example-cert",
        key_vault_id=example_key_vault.id,
        certificate={
            "contents": std.filebase64(input="my-certificate.pfx").result,
        })
    example_frontdoor_profile = azure.cdn.FrontdoorProfile("example",
        name="example-cdn-profile",
        resource_group_name=example.name,
        sku_name="Standard_AzureFrontDoor")
    example_frontdoor_secret = azure.cdn.FrontdoorSecret("example",
        name="example-customer-managed-secret",
        cdn_frontdoor_profile_id=example_frontdoor_profile.id,
        secret={
            "customer_certificates": [{
                "key_vault_certificate_id": example_certificate.id,
            }],
        })
    
    package main
    
    import (
    	"github.com/pulumi/pulumi-azure/sdk/v6/go/azure/cdn"
    	"github.com/pulumi/pulumi-azure/sdk/v6/go/azure/core"
    	"github.com/pulumi/pulumi-azure/sdk/v6/go/azure/keyvault"
    	"github.com/pulumi/pulumi-azuread/sdk/v5/go/azuread"
    	"github.com/pulumi/pulumi-std/sdk/go/std"
    	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
    )
    
    func main() {
    	pulumi.Run(func(ctx *pulumi.Context) error {
    		current, err := core.GetClientConfig(ctx, map[string]interface{}{}, nil)
    		if err != nil {
    			return err
    		}
    		frontdoor, err := azuread.LookupServicePrincipal(ctx, &azuread.LookupServicePrincipalArgs{
    			DisplayName: pulumi.StringRef("Microsoft.Azure.Cdn"),
    		}, nil)
    		if err != nil {
    			return err
    		}
    		example, err := core.NewResourceGroup(ctx, "example", &core.ResourceGroupArgs{
    			Name:     pulumi.String("example-cdn-frontdoor"),
    			Location: pulumi.String("West Europe"),
    		})
    		if err != nil {
    			return err
    		}
    		exampleKeyVault, err := keyvault.NewKeyVault(ctx, "example", &keyvault.KeyVaultArgs{
    			Name:                    pulumi.String("example-keyvault"),
    			Location:                example.Location,
    			ResourceGroupName:       example.Name,
    			TenantId:                pulumi.String(current.TenantId),
    			SkuName:                 pulumi.String("premium"),
    			SoftDeleteRetentionDays: pulumi.Int(7),
    			NetworkAcls: &keyvault.KeyVaultNetworkAclsArgs{
    				DefaultAction: pulumi.String("Deny"),
    				Bypass:        pulumi.String("AzureServices"),
    				IpRules: pulumi.StringArray{
    					pulumi.String("10.0.0.0/24"),
    				},
    			},
    			AccessPolicies: keyvault.KeyVaultAccessPolicyArray{
    				&keyvault.KeyVaultAccessPolicyArgs{
    					TenantId: pulumi.String(current.TenantId),
    					ObjectId: pulumi.String(frontdoor.ObjectId),
    					SecretPermissions: pulumi.StringArray{
    						pulumi.String("Get"),
    					},
    				},
    				&keyvault.KeyVaultAccessPolicyArgs{
    					TenantId: pulumi.String(current.TenantId),
    					ObjectId: pulumi.String(current.ObjectId),
    					CertificatePermissions: pulumi.StringArray{
    						pulumi.String("Get"),
    						pulumi.String("Import"),
    						pulumi.String("Delete"),
    						pulumi.String("Purge"),
    					},
    					SecretPermissions: pulumi.StringArray{
    						pulumi.String("Get"),
    					},
    				},
    			},
    		})
    		if err != nil {
    			return err
    		}
    		invokeFilebase64, err := std.Filebase64(ctx, &std.Filebase64Args{
    			Input: "my-certificate.pfx",
    		}, nil)
    		if err != nil {
    			return err
    		}
    		exampleCertificate, err := keyvault.NewCertificate(ctx, "example", &keyvault.CertificateArgs{
    			Name:       pulumi.String("example-cert"),
    			KeyVaultId: exampleKeyVault.ID(),
    			Certificate: &keyvault.CertificateCertificateArgs{
    				Contents: pulumi.String(invokeFilebase64.Result),
    			},
    		})
    		if err != nil {
    			return err
    		}
    		exampleFrontdoorProfile, err := cdn.NewFrontdoorProfile(ctx, "example", &cdn.FrontdoorProfileArgs{
    			Name:              pulumi.String("example-cdn-profile"),
    			ResourceGroupName: example.Name,
    			SkuName:           pulumi.String("Standard_AzureFrontDoor"),
    		})
    		if err != nil {
    			return err
    		}
    		_, err = cdn.NewFrontdoorSecret(ctx, "example", &cdn.FrontdoorSecretArgs{
    			Name:                  pulumi.String("example-customer-managed-secret"),
    			CdnFrontdoorProfileId: exampleFrontdoorProfile.ID(),
    			Secret: &cdn.FrontdoorSecretSecretArgs{
    				CustomerCertificates: cdn.FrontdoorSecretSecretCustomerCertificateArray{
    					&cdn.FrontdoorSecretSecretCustomerCertificateArgs{
    						KeyVaultCertificateId: exampleCertificate.ID(),
    					},
    				},
    			},
    		})
    		if err != nil {
    			return err
    		}
    		return nil
    	})
    }
    
    using System.Collections.Generic;
    using System.Linq;
    using Pulumi;
    using Azure = Pulumi.Azure;
    using AzureAD = Pulumi.AzureAD;
    using Std = Pulumi.Std;
    
    return await Deployment.RunAsync(() => 
    {
        var current = Azure.Core.GetClientConfig.Invoke();
    
        var frontdoor = AzureAD.GetServicePrincipal.Invoke(new()
        {
            DisplayName = "Microsoft.Azure.Cdn",
        });
    
        var example = new Azure.Core.ResourceGroup("example", new()
        {
            Name = "example-cdn-frontdoor",
            Location = "West Europe",
        });
    
        var exampleKeyVault = new Azure.KeyVault.KeyVault("example", new()
        {
            Name = "example-keyvault",
            Location = example.Location,
            ResourceGroupName = example.Name,
            TenantId = current.Apply(getClientConfigResult => getClientConfigResult.TenantId),
            SkuName = "premium",
            SoftDeleteRetentionDays = 7,
            NetworkAcls = new Azure.KeyVault.Inputs.KeyVaultNetworkAclsArgs
            {
                DefaultAction = "Deny",
                Bypass = "AzureServices",
                IpRules = new[]
                {
                    "10.0.0.0/24",
                },
            },
            AccessPolicies = new[]
            {
                new Azure.KeyVault.Inputs.KeyVaultAccessPolicyArgs
                {
                    TenantId = current.Apply(getClientConfigResult => getClientConfigResult.TenantId),
                    ObjectId = frontdoor.Apply(getServicePrincipalResult => getServicePrincipalResult.ObjectId),
                    SecretPermissions = new[]
                    {
                        "Get",
                    },
                },
                new Azure.KeyVault.Inputs.KeyVaultAccessPolicyArgs
                {
                    TenantId = current.Apply(getClientConfigResult => getClientConfigResult.TenantId),
                    ObjectId = current.Apply(getClientConfigResult => getClientConfigResult.ObjectId),
                    CertificatePermissions = new[]
                    {
                        "Get",
                        "Import",
                        "Delete",
                        "Purge",
                    },
                    SecretPermissions = new[]
                    {
                        "Get",
                    },
                },
            },
        });
    
        var exampleCertificate = new Azure.KeyVault.Certificate("example", new()
        {
            Name = "example-cert",
            KeyVaultId = exampleKeyVault.Id,
            KeyVaultCertificate = new Azure.KeyVault.Inputs.CertificateCertificateArgs
            {
                Contents = Std.Filebase64.Invoke(new()
                {
                    Input = "my-certificate.pfx",
                }).Apply(invoke => invoke.Result),
            },
        });
    
        var exampleFrontdoorProfile = new Azure.Cdn.FrontdoorProfile("example", new()
        {
            Name = "example-cdn-profile",
            ResourceGroupName = example.Name,
            SkuName = "Standard_AzureFrontDoor",
        });
    
        var exampleFrontdoorSecret = new Azure.Cdn.FrontdoorSecret("example", new()
        {
            Name = "example-customer-managed-secret",
            CdnFrontdoorProfileId = exampleFrontdoorProfile.Id,
            Secret = new Azure.Cdn.Inputs.FrontdoorSecretSecretArgs
            {
                CustomerCertificates = new[]
                {
                    new Azure.Cdn.Inputs.FrontdoorSecretSecretCustomerCertificateArgs
                    {
                        KeyVaultCertificateId = exampleCertificate.Id,
                    },
                },
            },
        });
    
    });
    
    package generated_program;
    
    import com.pulumi.Context;
    import com.pulumi.Pulumi;
    import com.pulumi.core.Output;
    import com.pulumi.azure.core.CoreFunctions;
    import com.pulumi.azuread.AzureadFunctions;
    import com.pulumi.azuread.inputs.GetServicePrincipalArgs;
    import com.pulumi.azure.core.ResourceGroup;
    import com.pulumi.azure.core.ResourceGroupArgs;
    import com.pulumi.azure.keyvault.KeyVault;
    import com.pulumi.azure.keyvault.KeyVaultArgs;
    import com.pulumi.azure.keyvault.inputs.KeyVaultNetworkAclsArgs;
    import com.pulumi.azure.keyvault.inputs.KeyVaultAccessPolicyArgs;
    import com.pulumi.azure.keyvault.Certificate;
    import com.pulumi.azure.keyvault.CertificateArgs;
    import com.pulumi.azure.keyvault.inputs.CertificateCertificateArgs;
    import com.pulumi.azure.cdn.FrontdoorProfile;
    import com.pulumi.azure.cdn.FrontdoorProfileArgs;
    import com.pulumi.azure.cdn.FrontdoorSecret;
    import com.pulumi.azure.cdn.FrontdoorSecretArgs;
    import com.pulumi.azure.cdn.inputs.FrontdoorSecretSecretArgs;
    import java.util.List;
    import java.util.ArrayList;
    import java.util.Map;
    import java.io.File;
    import java.nio.file.Files;
    import java.nio.file.Paths;
    
    public class App {
        public static void main(String[] args) {
            Pulumi.run(App::stack);
        }
    
        public static void stack(Context ctx) {
            final var current = CoreFunctions.getClientConfig();
    
            final var frontdoor = AzureadFunctions.getServicePrincipal(GetServicePrincipalArgs.builder()
                .displayName("Microsoft.Azure.Cdn")
                .build());
    
            var example = new ResourceGroup("example", ResourceGroupArgs.builder()
                .name("example-cdn-frontdoor")
                .location("West Europe")
                .build());
    
            var exampleKeyVault = new KeyVault("exampleKeyVault", KeyVaultArgs.builder()
                .name("example-keyvault")
                .location(example.location())
                .resourceGroupName(example.name())
                .tenantId(current.applyValue(getClientConfigResult -> getClientConfigResult.tenantId()))
                .skuName("premium")
                .softDeleteRetentionDays(7)
                .networkAcls(KeyVaultNetworkAclsArgs.builder()
                    .defaultAction("Deny")
                    .bypass("AzureServices")
                    .ipRules("10.0.0.0/24")
                    .build())
                .accessPolicies(            
                    KeyVaultAccessPolicyArgs.builder()
                        .tenantId(current.applyValue(getClientConfigResult -> getClientConfigResult.tenantId()))
                        .objectId(frontdoor.applyValue(getServicePrincipalResult -> getServicePrincipalResult.objectId()))
                        .secretPermissions("Get")
                        .build(),
                    KeyVaultAccessPolicyArgs.builder()
                        .tenantId(current.applyValue(getClientConfigResult -> getClientConfigResult.tenantId()))
                        .objectId(current.applyValue(getClientConfigResult -> getClientConfigResult.objectId()))
                        .certificatePermissions(                    
                            "Get",
                            "Import",
                            "Delete",
                            "Purge")
                        .secretPermissions("Get")
                        .build())
                .build());
    
            var exampleCertificate = new Certificate("exampleCertificate", CertificateArgs.builder()
                .name("example-cert")
                .keyVaultId(exampleKeyVault.id())
                .certificate(CertificateCertificateArgs.builder()
                    .contents(StdFunctions.filebase64(Filebase64Args.builder()
                        .input("my-certificate.pfx")
                        .build()).result())
                    .build())
                .build());
    
            var exampleFrontdoorProfile = new FrontdoorProfile("exampleFrontdoorProfile", FrontdoorProfileArgs.builder()
                .name("example-cdn-profile")
                .resourceGroupName(example.name())
                .skuName("Standard_AzureFrontDoor")
                .build());
    
            var exampleFrontdoorSecret = new FrontdoorSecret("exampleFrontdoorSecret", FrontdoorSecretArgs.builder()
                .name("example-customer-managed-secret")
                .cdnFrontdoorProfileId(exampleFrontdoorProfile.id())
                .secret(FrontdoorSecretSecretArgs.builder()
                    .customerCertificates(FrontdoorSecretSecretCustomerCertificateArgs.builder()
                        .keyVaultCertificateId(exampleCertificate.id())
                        .build())
                    .build())
                .build());
    
        }
    }
    
    resources:
      example:
        type: azure:core:ResourceGroup
        properties:
          name: example-cdn-frontdoor
          location: West Europe
      exampleKeyVault:
        type: azure:keyvault:KeyVault
        name: example
        properties:
          name: example-keyvault
          location: ${example.location}
          resourceGroupName: ${example.name}
          tenantId: ${current.tenantId}
          skuName: premium
          softDeleteRetentionDays: 7
          networkAcls:
            defaultAction: Deny
            bypass: AzureServices
            ipRules:
              - 10.0.0.0/24
          accessPolicies:
            - tenantId: ${current.tenantId}
              objectId: ${frontdoor.objectId}
              secretPermissions:
                - Get
            - tenantId: ${current.tenantId}
              objectId: ${current.objectId}
              certificatePermissions:
                - Get
                - Import
                - Delete
                - Purge
              secretPermissions:
                - Get
      exampleCertificate:
        type: azure:keyvault:Certificate
        name: example
        properties:
          name: example-cert
          keyVaultId: ${exampleKeyVault.id}
          certificate:
            contents:
              fn::invoke:
                Function: std:filebase64
                Arguments:
                  input: my-certificate.pfx
                Return: result
      exampleFrontdoorProfile:
        type: azure:cdn:FrontdoorProfile
        name: example
        properties:
          name: example-cdn-profile
          resourceGroupName: ${example.name}
          skuName: Standard_AzureFrontDoor
      exampleFrontdoorSecret:
        type: azure:cdn:FrontdoorSecret
        name: example
        properties:
          name: example-customer-managed-secret
          cdnFrontdoorProfileId: ${exampleFrontdoorProfile.id}
          secret:
            customerCertificates:
              - keyVaultCertificateId: ${exampleCertificate.id}
    variables:
      current:
        fn::invoke:
          Function: azure:core:getClientConfig
          Arguments: {}
      frontdoor:
        fn::invoke:
          Function: azuread:getServicePrincipal
          Arguments:
            displayName: Microsoft.Azure.Cdn
    

    Create FrontdoorSecret Resource

    Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.

    Constructor syntax

    new FrontdoorSecret(name: string, args: FrontdoorSecretArgs, opts?: CustomResourceOptions);
    @overload
    def FrontdoorSecret(resource_name: str,
                        args: FrontdoorSecretArgs,
                        opts: Optional[ResourceOptions] = None)
    
    @overload
    def FrontdoorSecret(resource_name: str,
                        opts: Optional[ResourceOptions] = None,
                        cdn_frontdoor_profile_id: Optional[str] = None,
                        secret: Optional[FrontdoorSecretSecretArgs] = None,
                        name: Optional[str] = None)
    func NewFrontdoorSecret(ctx *Context, name string, args FrontdoorSecretArgs, opts ...ResourceOption) (*FrontdoorSecret, error)
    public FrontdoorSecret(string name, FrontdoorSecretArgs args, CustomResourceOptions? opts = null)
    public FrontdoorSecret(String name, FrontdoorSecretArgs args)
    public FrontdoorSecret(String name, FrontdoorSecretArgs args, CustomResourceOptions options)
    
    type: azure:cdn:FrontdoorSecret
    properties: # The arguments to resource properties.
    options: # Bag of options to control resource's behavior.
    
    

    Parameters

    name string
    The unique name of the resource.
    args FrontdoorSecretArgs
    The arguments to resource properties.
    opts CustomResourceOptions
    Bag of options to control resource's behavior.
    resource_name str
    The unique name of the resource.
    args FrontdoorSecretArgs
    The arguments to resource properties.
    opts ResourceOptions
    Bag of options to control resource's behavior.
    ctx Context
    Context object for the current deployment.
    name string
    The unique name of the resource.
    args FrontdoorSecretArgs
    The arguments to resource properties.
    opts ResourceOption
    Bag of options to control resource's behavior.
    name string
    The unique name of the resource.
    args FrontdoorSecretArgs
    The arguments to resource properties.
    opts CustomResourceOptions
    Bag of options to control resource's behavior.
    name String
    The unique name of the resource.
    args FrontdoorSecretArgs
    The arguments to resource properties.
    options CustomResourceOptions
    Bag of options to control resource's behavior.

    Constructor example

    The following reference example uses placeholder values for all input properties.

    var frontdoorSecretResource = new Azure.Cdn.FrontdoorSecret("frontdoorSecretResource", new()
    {
        CdnFrontdoorProfileId = "string",
        Secret = new Azure.Cdn.Inputs.FrontdoorSecretSecretArgs
        {
            CustomerCertificates = new[]
            {
                new Azure.Cdn.Inputs.FrontdoorSecretSecretCustomerCertificateArgs
                {
                    KeyVaultCertificateId = "string",
                    SubjectAlternativeNames = new[]
                    {
                        "string",
                    },
                },
            },
        },
        Name = "string",
    });
    
    example, err := cdn.NewFrontdoorSecret(ctx, "frontdoorSecretResource", &cdn.FrontdoorSecretArgs{
    	CdnFrontdoorProfileId: pulumi.String("string"),
    	Secret: &cdn.FrontdoorSecretSecretArgs{
    		CustomerCertificates: cdn.FrontdoorSecretSecretCustomerCertificateArray{
    			&cdn.FrontdoorSecretSecretCustomerCertificateArgs{
    				KeyVaultCertificateId: pulumi.String("string"),
    				SubjectAlternativeNames: pulumi.StringArray{
    					pulumi.String("string"),
    				},
    			},
    		},
    	},
    	Name: pulumi.String("string"),
    })
    
    var frontdoorSecretResource = new FrontdoorSecret("frontdoorSecretResource", FrontdoorSecretArgs.builder()
        .cdnFrontdoorProfileId("string")
        .secret(FrontdoorSecretSecretArgs.builder()
            .customerCertificates(FrontdoorSecretSecretCustomerCertificateArgs.builder()
                .keyVaultCertificateId("string")
                .subjectAlternativeNames("string")
                .build())
            .build())
        .name("string")
        .build());
    
    frontdoor_secret_resource = azure.cdn.FrontdoorSecret("frontdoorSecretResource",
        cdn_frontdoor_profile_id="string",
        secret={
            "customer_certificates": [{
                "key_vault_certificate_id": "string",
                "subject_alternative_names": ["string"],
            }],
        },
        name="string")
    
    const frontdoorSecretResource = new azure.cdn.FrontdoorSecret("frontdoorSecretResource", {
        cdnFrontdoorProfileId: "string",
        secret: {
            customerCertificates: [{
                keyVaultCertificateId: "string",
                subjectAlternativeNames: ["string"],
            }],
        },
        name: "string",
    });
    
    type: azure:cdn:FrontdoorSecret
    properties:
        cdnFrontdoorProfileId: string
        name: string
        secret:
            customerCertificates:
                - keyVaultCertificateId: string
                  subjectAlternativeNames:
                    - string
    

    FrontdoorSecret Resource Properties

    To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

    Inputs

    In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.

    The FrontdoorSecret resource accepts the following input properties:

    CdnFrontdoorProfileId string
    The Resource ID of the Front Door Profile. Changing this forces a new Front Door Secret to be created.
    Secret FrontdoorSecretSecret
    A secret block as defined below. Changing this forces a new Front Door Secret to be created.
    Name string
    The name which should be used for this Front Door Secret. Possible values must start with a letter or a number, only contain letters, numbers and hyphens and have a length of between 2 and 260 characters. Changing this forces a new Front Door Secret to be created.
    CdnFrontdoorProfileId string
    The Resource ID of the Front Door Profile. Changing this forces a new Front Door Secret to be created.
    Secret FrontdoorSecretSecretArgs
    A secret block as defined below. Changing this forces a new Front Door Secret to be created.
    Name string
    The name which should be used for this Front Door Secret. Possible values must start with a letter or a number, only contain letters, numbers and hyphens and have a length of between 2 and 260 characters. Changing this forces a new Front Door Secret to be created.
    cdnFrontdoorProfileId String
    The Resource ID of the Front Door Profile. Changing this forces a new Front Door Secret to be created.
    secret FrontdoorSecretSecret
    A secret block as defined below. Changing this forces a new Front Door Secret to be created.
    name String
    The name which should be used for this Front Door Secret. Possible values must start with a letter or a number, only contain letters, numbers and hyphens and have a length of between 2 and 260 characters. Changing this forces a new Front Door Secret to be created.
    cdnFrontdoorProfileId string
    The Resource ID of the Front Door Profile. Changing this forces a new Front Door Secret to be created.
    secret FrontdoorSecretSecret
    A secret block as defined below. Changing this forces a new Front Door Secret to be created.
    name string
    The name which should be used for this Front Door Secret. Possible values must start with a letter or a number, only contain letters, numbers and hyphens and have a length of between 2 and 260 characters. Changing this forces a new Front Door Secret to be created.
    cdn_frontdoor_profile_id str
    The Resource ID of the Front Door Profile. Changing this forces a new Front Door Secret to be created.
    secret FrontdoorSecretSecretArgs
    A secret block as defined below. Changing this forces a new Front Door Secret to be created.
    name str
    The name which should be used for this Front Door Secret. Possible values must start with a letter or a number, only contain letters, numbers and hyphens and have a length of between 2 and 260 characters. Changing this forces a new Front Door Secret to be created.
    cdnFrontdoorProfileId String
    The Resource ID of the Front Door Profile. Changing this forces a new Front Door Secret to be created.
    secret Property Map
    A secret block as defined below. Changing this forces a new Front Door Secret to be created.
    name String
    The name which should be used for this Front Door Secret. Possible values must start with a letter or a number, only contain letters, numbers and hyphens and have a length of between 2 and 260 characters. Changing this forces a new Front Door Secret to be created.

    Outputs

    All input properties are implicitly available as output properties. Additionally, the FrontdoorSecret resource produces the following output properties:

    CdnFrontdoorProfileName string
    The name of the Front Door Profile containing this Front Door Secret.
    Id string
    The provider-assigned unique ID for this managed resource.
    CdnFrontdoorProfileName string
    The name of the Front Door Profile containing this Front Door Secret.
    Id string
    The provider-assigned unique ID for this managed resource.
    cdnFrontdoorProfileName String
    The name of the Front Door Profile containing this Front Door Secret.
    id String
    The provider-assigned unique ID for this managed resource.
    cdnFrontdoorProfileName string
    The name of the Front Door Profile containing this Front Door Secret.
    id string
    The provider-assigned unique ID for this managed resource.
    cdn_frontdoor_profile_name str
    The name of the Front Door Profile containing this Front Door Secret.
    id str
    The provider-assigned unique ID for this managed resource.
    cdnFrontdoorProfileName String
    The name of the Front Door Profile containing this Front Door Secret.
    id String
    The provider-assigned unique ID for this managed resource.

    Look up Existing FrontdoorSecret Resource

    Get an existing FrontdoorSecret resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

    public static get(name: string, id: Input<ID>, state?: FrontdoorSecretState, opts?: CustomResourceOptions): FrontdoorSecret
    @staticmethod
    def get(resource_name: str,
            id: str,
            opts: Optional[ResourceOptions] = None,
            cdn_frontdoor_profile_id: Optional[str] = None,
            cdn_frontdoor_profile_name: Optional[str] = None,
            name: Optional[str] = None,
            secret: Optional[FrontdoorSecretSecretArgs] = None) -> FrontdoorSecret
    func GetFrontdoorSecret(ctx *Context, name string, id IDInput, state *FrontdoorSecretState, opts ...ResourceOption) (*FrontdoorSecret, error)
    public static FrontdoorSecret Get(string name, Input<string> id, FrontdoorSecretState? state, CustomResourceOptions? opts = null)
    public static FrontdoorSecret get(String name, Output<String> id, FrontdoorSecretState state, CustomResourceOptions options)
    Resource lookup is not supported in YAML
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    resource_name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    The following state arguments are supported:
    CdnFrontdoorProfileId string
    The Resource ID of the Front Door Profile. Changing this forces a new Front Door Secret to be created.
    CdnFrontdoorProfileName string
    The name of the Front Door Profile containing this Front Door Secret.
    Name string
    The name which should be used for this Front Door Secret. Possible values must start with a letter or a number, only contain letters, numbers and hyphens and have a length of between 2 and 260 characters. Changing this forces a new Front Door Secret to be created.
    Secret FrontdoorSecretSecret
    A secret block as defined below. Changing this forces a new Front Door Secret to be created.
    CdnFrontdoorProfileId string
    The Resource ID of the Front Door Profile. Changing this forces a new Front Door Secret to be created.
    CdnFrontdoorProfileName string
    The name of the Front Door Profile containing this Front Door Secret.
    Name string
    The name which should be used for this Front Door Secret. Possible values must start with a letter or a number, only contain letters, numbers and hyphens and have a length of between 2 and 260 characters. Changing this forces a new Front Door Secret to be created.
    Secret FrontdoorSecretSecretArgs
    A secret block as defined below. Changing this forces a new Front Door Secret to be created.
    cdnFrontdoorProfileId String
    The Resource ID of the Front Door Profile. Changing this forces a new Front Door Secret to be created.
    cdnFrontdoorProfileName String
    The name of the Front Door Profile containing this Front Door Secret.
    name String
    The name which should be used for this Front Door Secret. Possible values must start with a letter or a number, only contain letters, numbers and hyphens and have a length of between 2 and 260 characters. Changing this forces a new Front Door Secret to be created.
    secret FrontdoorSecretSecret
    A secret block as defined below. Changing this forces a new Front Door Secret to be created.
    cdnFrontdoorProfileId string
    The Resource ID of the Front Door Profile. Changing this forces a new Front Door Secret to be created.
    cdnFrontdoorProfileName string
    The name of the Front Door Profile containing this Front Door Secret.
    name string
    The name which should be used for this Front Door Secret. Possible values must start with a letter or a number, only contain letters, numbers and hyphens and have a length of between 2 and 260 characters. Changing this forces a new Front Door Secret to be created.
    secret FrontdoorSecretSecret
    A secret block as defined below. Changing this forces a new Front Door Secret to be created.
    cdn_frontdoor_profile_id str
    The Resource ID of the Front Door Profile. Changing this forces a new Front Door Secret to be created.
    cdn_frontdoor_profile_name str
    The name of the Front Door Profile containing this Front Door Secret.
    name str
    The name which should be used for this Front Door Secret. Possible values must start with a letter or a number, only contain letters, numbers and hyphens and have a length of between 2 and 260 characters. Changing this forces a new Front Door Secret to be created.
    secret FrontdoorSecretSecretArgs
    A secret block as defined below. Changing this forces a new Front Door Secret to be created.
    cdnFrontdoorProfileId String
    The Resource ID of the Front Door Profile. Changing this forces a new Front Door Secret to be created.
    cdnFrontdoorProfileName String
    The name of the Front Door Profile containing this Front Door Secret.
    name String
    The name which should be used for this Front Door Secret. Possible values must start with a letter or a number, only contain letters, numbers and hyphens and have a length of between 2 and 260 characters. Changing this forces a new Front Door Secret to be created.
    secret Property Map
    A secret block as defined below. Changing this forces a new Front Door Secret to be created.

    Supporting Types

    FrontdoorSecretSecret, FrontdoorSecretSecretArgs

    CustomerCertificates List<FrontdoorSecretSecretCustomerCertificate>
    A customer_certificate block as defined below. Changing this forces a new Front Door Secret to be created.
    CustomerCertificates []FrontdoorSecretSecretCustomerCertificate
    A customer_certificate block as defined below. Changing this forces a new Front Door Secret to be created.
    customerCertificates List<FrontdoorSecretSecretCustomerCertificate>
    A customer_certificate block as defined below. Changing this forces a new Front Door Secret to be created.
    customerCertificates FrontdoorSecretSecretCustomerCertificate[]
    A customer_certificate block as defined below. Changing this forces a new Front Door Secret to be created.
    customer_certificates Sequence[FrontdoorSecretSecretCustomerCertificate]
    A customer_certificate block as defined below. Changing this forces a new Front Door Secret to be created.
    customerCertificates List<Property Map>
    A customer_certificate block as defined below. Changing this forces a new Front Door Secret to be created.

    FrontdoorSecretSecretCustomerCertificate, FrontdoorSecretSecretCustomerCertificateArgs

    KeyVaultCertificateId string

    The ID of the Key Vault certificate resource to use. Changing this forces a new Front Door Secret to be created.

    ->NOTE: If you would like to use the latest version of the Key Vault Certificate use the Key Vault Certificates versionless_id attribute as the key_vault_certificate_id fields value(e.g. key_vault_certificate_id = azurerm_key_vault_certificate.example.versionless_id).

    SubjectAlternativeNames List<string>
    One or more subject alternative names contained within the key vault certificate.
    KeyVaultCertificateId string

    The ID of the Key Vault certificate resource to use. Changing this forces a new Front Door Secret to be created.

    ->NOTE: If you would like to use the latest version of the Key Vault Certificate use the Key Vault Certificates versionless_id attribute as the key_vault_certificate_id fields value(e.g. key_vault_certificate_id = azurerm_key_vault_certificate.example.versionless_id).

    SubjectAlternativeNames []string
    One or more subject alternative names contained within the key vault certificate.
    keyVaultCertificateId String

    The ID of the Key Vault certificate resource to use. Changing this forces a new Front Door Secret to be created.

    ->NOTE: If you would like to use the latest version of the Key Vault Certificate use the Key Vault Certificates versionless_id attribute as the key_vault_certificate_id fields value(e.g. key_vault_certificate_id = azurerm_key_vault_certificate.example.versionless_id).

    subjectAlternativeNames List<String>
    One or more subject alternative names contained within the key vault certificate.
    keyVaultCertificateId string

    The ID of the Key Vault certificate resource to use. Changing this forces a new Front Door Secret to be created.

    ->NOTE: If you would like to use the latest version of the Key Vault Certificate use the Key Vault Certificates versionless_id attribute as the key_vault_certificate_id fields value(e.g. key_vault_certificate_id = azurerm_key_vault_certificate.example.versionless_id).

    subjectAlternativeNames string[]
    One or more subject alternative names contained within the key vault certificate.
    key_vault_certificate_id str

    The ID of the Key Vault certificate resource to use. Changing this forces a new Front Door Secret to be created.

    ->NOTE: If you would like to use the latest version of the Key Vault Certificate use the Key Vault Certificates versionless_id attribute as the key_vault_certificate_id fields value(e.g. key_vault_certificate_id = azurerm_key_vault_certificate.example.versionless_id).

    subject_alternative_names Sequence[str]
    One or more subject alternative names contained within the key vault certificate.
    keyVaultCertificateId String

    The ID of the Key Vault certificate resource to use. Changing this forces a new Front Door Secret to be created.

    ->NOTE: If you would like to use the latest version of the Key Vault Certificate use the Key Vault Certificates versionless_id attribute as the key_vault_certificate_id fields value(e.g. key_vault_certificate_id = azurerm_key_vault_certificate.example.versionless_id).

    subjectAlternativeNames List<String>
    One or more subject alternative names contained within the key vault certificate.

    Import

    Front Door Secrets can be imported using the resource id, e.g.

    $ pulumi import azure:cdn/frontdoorSecret:FrontdoorSecret example /subscriptions/00000000-0000-0000-0000-000000000000/resourceGroups/resourceGroup1/providers/Microsoft.Cdn/profiles/profile1/secrets/secrets1
    

    To learn more about importing existing cloud resources, see Importing resources.

    Package Details

    Repository
    Azure Classic pulumi/pulumi-azure
    License
    Apache-2.0
    Notes
    This Pulumi package is based on the azurerm Terraform Provider.
    azure logo

    We recommend using Azure Native.

    Azure v6.13.0 published on Monday, Dec 9, 2024 by Pulumi