Azure Classic

Pulumi Official
Package maintained by Pulumi
v5.15.0 published on Wednesday, Aug 17, 2022 by Pulumi

ApplicationGateway

Manages an Application Gateway.

Example Usage

using System.Collections.Generic;
using Pulumi;
using Azure = Pulumi.Azure;

return await Deployment.RunAsync(() => 
{
    var exampleResourceGroup = new Azure.Core.ResourceGroup("exampleResourceGroup", new()
    {
        Location = "West Europe",
    });

    var exampleVirtualNetwork = new Azure.Network.VirtualNetwork("exampleVirtualNetwork", new()
    {
        ResourceGroupName = exampleResourceGroup.Name,
        Location = exampleResourceGroup.Location,
        AddressSpaces = new[]
        {
            "10.254.0.0/16",
        },
    });

    var frontend = new Azure.Network.Subnet("frontend", new()
    {
        ResourceGroupName = exampleResourceGroup.Name,
        VirtualNetworkName = exampleVirtualNetwork.Name,
        AddressPrefixes = new[]
        {
            "10.254.0.0/24",
        },
    });

    var backend = new Azure.Network.Subnet("backend", new()
    {
        ResourceGroupName = exampleResourceGroup.Name,
        VirtualNetworkName = exampleVirtualNetwork.Name,
        AddressPrefixes = new[]
        {
            "10.254.2.0/24",
        },
    });

    var examplePublicIp = new Azure.Network.PublicIp("examplePublicIp", new()
    {
        ResourceGroupName = exampleResourceGroup.Name,
        Location = exampleResourceGroup.Location,
        AllocationMethod = "Dynamic",
    });

    var backendAddressPoolName = exampleVirtualNetwork.Name.Apply(name => $"{name}-beap");

    var frontendPortName = exampleVirtualNetwork.Name.Apply(name => $"{name}-feport");

    var frontendIpConfigurationName = exampleVirtualNetwork.Name.Apply(name => $"{name}-feip");

    var httpSettingName = exampleVirtualNetwork.Name.Apply(name => $"{name}-be-htst");

    var listenerName = exampleVirtualNetwork.Name.Apply(name => $"{name}-httplstn");

    var requestRoutingRuleName = exampleVirtualNetwork.Name.Apply(name => $"{name}-rqrt");

    var redirectConfigurationName = exampleVirtualNetwork.Name.Apply(name => $"{name}-rdrcfg");

    var network = new Azure.Network.ApplicationGateway("network", new()
    {
        ResourceGroupName = exampleResourceGroup.Name,
        Location = exampleResourceGroup.Location,
        Sku = new Azure.Network.Inputs.ApplicationGatewaySkuArgs
        {
            Name = "Standard_Small",
            Tier = "Standard",
            Capacity = 2,
        },
        GatewayIpConfigurations = new[]
        {
            new Azure.Network.Inputs.ApplicationGatewayGatewayIpConfigurationArgs
            {
                Name = "my-gateway-ip-configuration",
                SubnetId = frontend.Id,
            },
        },
        FrontendPorts = new[]
        {
            new Azure.Network.Inputs.ApplicationGatewayFrontendPortArgs
            {
                Name = frontendPortName,
                Port = 80,
            },
        },
        FrontendIpConfigurations = new[]
        {
            new Azure.Network.Inputs.ApplicationGatewayFrontendIpConfigurationArgs
            {
                Name = frontendIpConfigurationName,
                PublicIpAddressId = examplePublicIp.Id,
            },
        },
        BackendAddressPools = new[]
        {
            new Azure.Network.Inputs.ApplicationGatewayBackendAddressPoolArgs
            {
                Name = backendAddressPoolName,
            },
        },
        BackendHttpSettings = new[]
        {
            new Azure.Network.Inputs.ApplicationGatewayBackendHttpSettingArgs
            {
                Name = httpSettingName,
                CookieBasedAffinity = "Disabled",
                Path = "/path1/",
                Port = 80,
                Protocol = "Http",
                RequestTimeout = 60,
            },
        },
        HttpListeners = new[]
        {
            new Azure.Network.Inputs.ApplicationGatewayHttpListenerArgs
            {
                Name = listenerName,
                FrontendIpConfigurationName = frontendIpConfigurationName,
                FrontendPortName = frontendPortName,
                Protocol = "Http",
            },
        },
        RequestRoutingRules = new[]
        {
            new Azure.Network.Inputs.ApplicationGatewayRequestRoutingRuleArgs
            {
                Name = requestRoutingRuleName,
                RuleType = "Basic",
                HttpListenerName = listenerName,
                BackendAddressPoolName = backendAddressPoolName,
                BackendHttpSettingsName = httpSettingName,
            },
        },
    });

});
package main

import (
	"fmt"

	"github.com/pulumi/pulumi-azure/sdk/v5/go/azure/core"
	"github.com/pulumi/pulumi-azure/sdk/v5/go/azure/network"
	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		exampleResourceGroup, err := core.NewResourceGroup(ctx, "exampleResourceGroup", &core.ResourceGroupArgs{
			Location: pulumi.String("West Europe"),
		})
		if err != nil {
			return err
		}
		exampleVirtualNetwork, err := network.NewVirtualNetwork(ctx, "exampleVirtualNetwork", &network.VirtualNetworkArgs{
			ResourceGroupName: exampleResourceGroup.Name,
			Location:          exampleResourceGroup.Location,
			AddressSpaces: pulumi.StringArray{
				pulumi.String("10.254.0.0/16"),
			},
		})
		if err != nil {
			return err
		}
		frontend, err := network.NewSubnet(ctx, "frontend", &network.SubnetArgs{
			ResourceGroupName:  exampleResourceGroup.Name,
			VirtualNetworkName: exampleVirtualNetwork.Name,
			AddressPrefixes: pulumi.StringArray{
				pulumi.String("10.254.0.0/24"),
			},
		})
		if err != nil {
			return err
		}
		_, err = network.NewSubnet(ctx, "backend", &network.SubnetArgs{
			ResourceGroupName:  exampleResourceGroup.Name,
			VirtualNetworkName: exampleVirtualNetwork.Name,
			AddressPrefixes: pulumi.StringArray{
				pulumi.String("10.254.2.0/24"),
			},
		})
		if err != nil {
			return err
		}
		examplePublicIp, err := network.NewPublicIp(ctx, "examplePublicIp", &network.PublicIpArgs{
			ResourceGroupName: exampleResourceGroup.Name,
			Location:          exampleResourceGroup.Location,
			AllocationMethod:  pulumi.String("Dynamic"),
		})
		if err != nil {
			return err
		}
		_, err = network.NewApplicationGateway(ctx, "network", &network.ApplicationGatewayArgs{
			ResourceGroupName: exampleResourceGroup.Name,
			Location:          exampleResourceGroup.Location,
			Sku: &network.ApplicationGatewaySkuArgs{
				Name:     pulumi.String("Standard_Small"),
				Tier:     pulumi.String("Standard"),
				Capacity: pulumi.Int(2),
			},
			GatewayIpConfigurations: network.ApplicationGatewayGatewayIpConfigurationArray{
				&network.ApplicationGatewayGatewayIpConfigurationArgs{
					Name:     pulumi.String("my-gateway-ip-configuration"),
					SubnetId: frontend.ID(),
				},
			},
			FrontendPorts: network.ApplicationGatewayFrontendPortArray{
				&network.ApplicationGatewayFrontendPortArgs{
					Name: pulumi.String(frontendPortName),
					Port: pulumi.Int(80),
				},
			},
			FrontendIpConfigurations: network.ApplicationGatewayFrontendIpConfigurationArray{
				&network.ApplicationGatewayFrontendIpConfigurationArgs{
					Name:              pulumi.String(frontendIpConfigurationName),
					PublicIpAddressId: examplePublicIp.ID(),
				},
			},
			BackendAddressPools: network.ApplicationGatewayBackendAddressPoolArray{
				&network.ApplicationGatewayBackendAddressPoolArgs{
					Name: pulumi.String(backendAddressPoolName),
				},
			},
			BackendHttpSettings: network.ApplicationGatewayBackendHttpSettingArray{
				&network.ApplicationGatewayBackendHttpSettingArgs{
					Name:                pulumi.String(httpSettingName),
					CookieBasedAffinity: pulumi.String("Disabled"),
					Path:                pulumi.String("/path1/"),
					Port:                pulumi.Int(80),
					Protocol:            pulumi.String("Http"),
					RequestTimeout:      pulumi.Int(60),
				},
			},
			HttpListeners: network.ApplicationGatewayHttpListenerArray{
				&network.ApplicationGatewayHttpListenerArgs{
					Name:                        pulumi.String(listenerName),
					FrontendIpConfigurationName: pulumi.String(frontendIpConfigurationName),
					FrontendPortName:            pulumi.String(frontendPortName),
					Protocol:                    pulumi.String("Http"),
				},
			},
			RequestRoutingRules: network.ApplicationGatewayRequestRoutingRuleArray{
				&network.ApplicationGatewayRequestRoutingRuleArgs{
					Name:                    pulumi.String(requestRoutingRuleName),
					RuleType:                pulumi.String("Basic"),
					HttpListenerName:        pulumi.String(listenerName),
					BackendAddressPoolName:  pulumi.String(backendAddressPoolName),
					BackendHttpSettingsName: pulumi.String(httpSettingName),
				},
			},
		})
		if err != nil {
			return err
		}
		return nil
	})
}
package generated_program;

import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azure.core.ResourceGroup;
import com.pulumi.azure.core.ResourceGroupArgs;
import com.pulumi.azure.network.VirtualNetwork;
import com.pulumi.azure.network.VirtualNetworkArgs;
import com.pulumi.azure.network.Subnet;
import com.pulumi.azure.network.SubnetArgs;
import com.pulumi.azure.network.PublicIp;
import com.pulumi.azure.network.PublicIpArgs;
import com.pulumi.azure.network.ApplicationGateway;
import com.pulumi.azure.network.ApplicationGatewayArgs;
import com.pulumi.azure.network.inputs.ApplicationGatewaySkuArgs;
import com.pulumi.azure.network.inputs.ApplicationGatewayGatewayIpConfigurationArgs;
import com.pulumi.azure.network.inputs.ApplicationGatewayFrontendPortArgs;
import com.pulumi.azure.network.inputs.ApplicationGatewayFrontendIpConfigurationArgs;
import com.pulumi.azure.network.inputs.ApplicationGatewayBackendAddressPoolArgs;
import com.pulumi.azure.network.inputs.ApplicationGatewayBackendHttpSettingArgs;
import com.pulumi.azure.network.inputs.ApplicationGatewayHttpListenerArgs;
import com.pulumi.azure.network.inputs.ApplicationGatewayRequestRoutingRuleArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;

public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }

    public static void stack(Context ctx) {
        var exampleResourceGroup = new ResourceGroup("exampleResourceGroup", ResourceGroupArgs.builder()        
            .location("West Europe")
            .build());

        var exampleVirtualNetwork = new VirtualNetwork("exampleVirtualNetwork", VirtualNetworkArgs.builder()        
            .resourceGroupName(exampleResourceGroup.name())
            .location(exampleResourceGroup.location())
            .addressSpaces("10.254.0.0/16")
            .build());

        var frontend = new Subnet("frontend", SubnetArgs.builder()        
            .resourceGroupName(exampleResourceGroup.name())
            .virtualNetworkName(exampleVirtualNetwork.name())
            .addressPrefixes("10.254.0.0/24")
            .build());

        var backend = new Subnet("backend", SubnetArgs.builder()        
            .resourceGroupName(exampleResourceGroup.name())
            .virtualNetworkName(exampleVirtualNetwork.name())
            .addressPrefixes("10.254.2.0/24")
            .build());

        var examplePublicIp = new PublicIp("examplePublicIp", PublicIpArgs.builder()        
            .resourceGroupName(exampleResourceGroup.name())
            .location(exampleResourceGroup.location())
            .allocationMethod("Dynamic")
            .build());

        final var backendAddressPoolName = exampleVirtualNetwork.name().applyValue(name -> String.format("%s-beap", name));

        final var frontendPortName = exampleVirtualNetwork.name().applyValue(name -> String.format("%s-feport", name));

        final var frontendIpConfigurationName = exampleVirtualNetwork.name().applyValue(name -> String.format("%s-feip", name));

        final var httpSettingName = exampleVirtualNetwork.name().applyValue(name -> String.format("%s-be-htst", name));

        final var listenerName = exampleVirtualNetwork.name().applyValue(name -> String.format("%s-httplstn", name));

        final var requestRoutingRuleName = exampleVirtualNetwork.name().applyValue(name -> String.format("%s-rqrt", name));

        final var redirectConfigurationName = exampleVirtualNetwork.name().applyValue(name -> String.format("%s-rdrcfg", name));

        var network = new ApplicationGateway("network", ApplicationGatewayArgs.builder()        
            .resourceGroupName(exampleResourceGroup.name())
            .location(exampleResourceGroup.location())
            .sku(ApplicationGatewaySkuArgs.builder()
                .name("Standard_Small")
                .tier("Standard")
                .capacity(2)
                .build())
            .gatewayIpConfigurations(ApplicationGatewayGatewayIpConfigurationArgs.builder()
                .name("my-gateway-ip-configuration")
                .subnetId(frontend.id())
                .build())
            .frontendPorts(ApplicationGatewayFrontendPortArgs.builder()
                .name(frontendPortName)
                .port(80)
                .build())
            .frontendIpConfigurations(ApplicationGatewayFrontendIpConfigurationArgs.builder()
                .name(frontendIpConfigurationName)
                .publicIpAddressId(examplePublicIp.id())
                .build())
            .backendAddressPools(ApplicationGatewayBackendAddressPoolArgs.builder()
                .name(backendAddressPoolName)
                .build())
            .backendHttpSettings(ApplicationGatewayBackendHttpSettingArgs.builder()
                .name(httpSettingName)
                .cookieBasedAffinity("Disabled")
                .path("/path1/")
                .port(80)
                .protocol("Http")
                .requestTimeout(60)
                .build())
            .httpListeners(ApplicationGatewayHttpListenerArgs.builder()
                .name(listenerName)
                .frontendIpConfigurationName(frontendIpConfigurationName)
                .frontendPortName(frontendPortName)
                .protocol("Http")
                .build())
            .requestRoutingRules(ApplicationGatewayRequestRoutingRuleArgs.builder()
                .name(requestRoutingRuleName)
                .ruleType("Basic")
                .httpListenerName(listenerName)
                .backendAddressPoolName(backendAddressPoolName)
                .backendHttpSettingsName(httpSettingName)
                .build())
            .build());

    }
}
import pulumi
import pulumi_azure as azure

example_resource_group = azure.core.ResourceGroup("exampleResourceGroup", location="West Europe")
example_virtual_network = azure.network.VirtualNetwork("exampleVirtualNetwork",
    resource_group_name=example_resource_group.name,
    location=example_resource_group.location,
    address_spaces=["10.254.0.0/16"])
frontend = azure.network.Subnet("frontend",
    resource_group_name=example_resource_group.name,
    virtual_network_name=example_virtual_network.name,
    address_prefixes=["10.254.0.0/24"])
backend = azure.network.Subnet("backend",
    resource_group_name=example_resource_group.name,
    virtual_network_name=example_virtual_network.name,
    address_prefixes=["10.254.2.0/24"])
example_public_ip = azure.network.PublicIp("examplePublicIp",
    resource_group_name=example_resource_group.name,
    location=example_resource_group.location,
    allocation_method="Dynamic")
backend_address_pool_name = example_virtual_network.name.apply(lambda name: f"{name}-beap")
frontend_port_name = example_virtual_network.name.apply(lambda name: f"{name}-feport")
frontend_ip_configuration_name = example_virtual_network.name.apply(lambda name: f"{name}-feip")
http_setting_name = example_virtual_network.name.apply(lambda name: f"{name}-be-htst")
listener_name = example_virtual_network.name.apply(lambda name: f"{name}-httplstn")
request_routing_rule_name = example_virtual_network.name.apply(lambda name: f"{name}-rqrt")
redirect_configuration_name = example_virtual_network.name.apply(lambda name: f"{name}-rdrcfg")
network = azure.network.ApplicationGateway("network",
    resource_group_name=example_resource_group.name,
    location=example_resource_group.location,
    sku=azure.network.ApplicationGatewaySkuArgs(
        name="Standard_Small",
        tier="Standard",
        capacity=2,
    ),
    gateway_ip_configurations=[azure.network.ApplicationGatewayGatewayIpConfigurationArgs(
        name="my-gateway-ip-configuration",
        subnet_id=frontend.id,
    )],
    frontend_ports=[azure.network.ApplicationGatewayFrontendPortArgs(
        name=frontend_port_name,
        port=80,
    )],
    frontend_ip_configurations=[azure.network.ApplicationGatewayFrontendIpConfigurationArgs(
        name=frontend_ip_configuration_name,
        public_ip_address_id=example_public_ip.id,
    )],
    backend_address_pools=[azure.network.ApplicationGatewayBackendAddressPoolArgs(
        name=backend_address_pool_name,
    )],
    backend_http_settings=[azure.network.ApplicationGatewayBackendHttpSettingArgs(
        name=http_setting_name,
        cookie_based_affinity="Disabled",
        path="/path1/",
        port=80,
        protocol="Http",
        request_timeout=60,
    )],
    http_listeners=[azure.network.ApplicationGatewayHttpListenerArgs(
        name=listener_name,
        frontend_ip_configuration_name=frontend_ip_configuration_name,
        frontend_port_name=frontend_port_name,
        protocol="Http",
    )],
    request_routing_rules=[azure.network.ApplicationGatewayRequestRoutingRuleArgs(
        name=request_routing_rule_name,
        rule_type="Basic",
        http_listener_name=listener_name,
        backend_address_pool_name=backend_address_pool_name,
        backend_http_settings_name=http_setting_name,
    )])
import * as pulumi from "@pulumi/pulumi";
import * as azure from "@pulumi/azure";

const exampleResourceGroup = new azure.core.ResourceGroup("exampleResourceGroup", {location: "West Europe"});
const exampleVirtualNetwork = new azure.network.VirtualNetwork("exampleVirtualNetwork", {
    resourceGroupName: exampleResourceGroup.name,
    location: exampleResourceGroup.location,
    addressSpaces: ["10.254.0.0/16"],
});
const frontend = new azure.network.Subnet("frontend", {
    resourceGroupName: exampleResourceGroup.name,
    virtualNetworkName: exampleVirtualNetwork.name,
    addressPrefixes: ["10.254.0.0/24"],
});
const backend = new azure.network.Subnet("backend", {
    resourceGroupName: exampleResourceGroup.name,
    virtualNetworkName: exampleVirtualNetwork.name,
    addressPrefixes: ["10.254.2.0/24"],
});
const examplePublicIp = new azure.network.PublicIp("examplePublicIp", {
    resourceGroupName: exampleResourceGroup.name,
    location: exampleResourceGroup.location,
    allocationMethod: "Dynamic",
});
const backendAddressPoolName = pulumi.interpolate`${exampleVirtualNetwork.name}-beap`;
const frontendPortName = pulumi.interpolate`${exampleVirtualNetwork.name}-feport`;
const frontendIpConfigurationName = pulumi.interpolate`${exampleVirtualNetwork.name}-feip`;
const httpSettingName = pulumi.interpolate`${exampleVirtualNetwork.name}-be-htst`;
const listenerName = pulumi.interpolate`${exampleVirtualNetwork.name}-httplstn`;
const requestRoutingRuleName = pulumi.interpolate`${exampleVirtualNetwork.name}-rqrt`;
const redirectConfigurationName = pulumi.interpolate`${exampleVirtualNetwork.name}-rdrcfg`;
const network = new azure.network.ApplicationGateway("network", {
    resourceGroupName: exampleResourceGroup.name,
    location: exampleResourceGroup.location,
    sku: {
        name: "Standard_Small",
        tier: "Standard",
        capacity: 2,
    },
    gatewayIpConfigurations: [{
        name: "my-gateway-ip-configuration",
        subnetId: frontend.id,
    }],
    frontendPorts: [{
        name: frontendPortName,
        port: 80,
    }],
    frontendIpConfigurations: [{
        name: frontendIpConfigurationName,
        publicIpAddressId: examplePublicIp.id,
    }],
    backendAddressPools: [{
        name: backendAddressPoolName,
    }],
    backendHttpSettings: [{
        name: httpSettingName,
        cookieBasedAffinity: "Disabled",
        path: "/path1/",
        port: 80,
        protocol: "Http",
        requestTimeout: 60,
    }],
    httpListeners: [{
        name: listenerName,
        frontendIpConfigurationName: frontendIpConfigurationName,
        frontendPortName: frontendPortName,
        protocol: "Http",
    }],
    requestRoutingRules: [{
        name: requestRoutingRuleName,
        ruleType: "Basic",
        httpListenerName: listenerName,
        backendAddressPoolName: backendAddressPoolName,
        backendHttpSettingsName: httpSettingName,
    }],
});
resources:
  exampleResourceGroup:
    type: azure:core:ResourceGroup
    properties:
      location: West Europe
  exampleVirtualNetwork:
    type: azure:network:VirtualNetwork
    properties:
      resourceGroupName: ${exampleResourceGroup.name}
      location: ${exampleResourceGroup.location}
      addressSpaces:
        - 10.254.0.0/16
  frontend:
    type: azure:network:Subnet
    properties:
      resourceGroupName: ${exampleResourceGroup.name}
      virtualNetworkName: ${exampleVirtualNetwork.name}
      addressPrefixes:
        - 10.254.0.0/24
  backend:
    type: azure:network:Subnet
    properties:
      resourceGroupName: ${exampleResourceGroup.name}
      virtualNetworkName: ${exampleVirtualNetwork.name}
      addressPrefixes:
        - 10.254.2.0/24
  examplePublicIp:
    type: azure:network:PublicIp
    properties:
      resourceGroupName: ${exampleResourceGroup.name}
      location: ${exampleResourceGroup.location}
      allocationMethod: Dynamic
  network:
    type: azure:network:ApplicationGateway
    properties:
      resourceGroupName: ${exampleResourceGroup.name}
      location: ${exampleResourceGroup.location}
      sku:
        name: Standard_Small
        tier: Standard
        capacity: 2
      gatewayIpConfigurations:
        - name: my-gateway-ip-configuration
          subnetId: ${frontend.id}
      frontendPorts:
        - name: ${frontendPortName}
          port: 80
      frontendIpConfigurations:
        - name: ${frontendIpConfigurationName}
          publicIpAddressId: ${examplePublicIp.id}
      backendAddressPools:
        - name: ${backendAddressPoolName}
      backendHttpSettings:
        - name: ${httpSettingName}
          cookieBasedAffinity: Disabled
          path: /path1/
          port: 80
          protocol: Http
          requestTimeout: 60
      httpListeners:
        - name: ${listenerName}
          frontendIpConfigurationName: ${frontendIpConfigurationName}
          frontendPortName: ${frontendPortName}
          protocol: Http
      requestRoutingRules:
        - name: ${requestRoutingRuleName}
          ruleType: Basic
          httpListenerName: ${listenerName}
          backendAddressPoolName: ${backendAddressPoolName}
          backendHttpSettingsName: ${httpSettingName}
variables:
  backendAddressPoolName: ${exampleVirtualNetwork.name}-beap
  frontendPortName: ${exampleVirtualNetwork.name}-feport
  frontendIpConfigurationName: ${exampleVirtualNetwork.name}-feip
  httpSettingName: ${exampleVirtualNetwork.name}-be-htst
  listenerName: ${exampleVirtualNetwork.name}-httplstn
  requestRoutingRuleName: ${exampleVirtualNetwork.name}-rqrt
  redirectConfigurationName: ${exampleVirtualNetwork.name}-rdrcfg

Create a ApplicationGateway Resource

new ApplicationGateway(name: string, args: ApplicationGatewayArgs, opts?: CustomResourceOptions);
@overload
def ApplicationGateway(resource_name: str,
                       opts: Optional[ResourceOptions] = None,
                       authentication_certificates: Optional[Sequence[ApplicationGatewayAuthenticationCertificateArgs]] = None,
                       autoscale_configuration: Optional[ApplicationGatewayAutoscaleConfigurationArgs] = None,
                       backend_address_pools: Optional[Sequence[ApplicationGatewayBackendAddressPoolArgs]] = None,
                       backend_http_settings: Optional[Sequence[ApplicationGatewayBackendHttpSettingArgs]] = None,
                       custom_error_configurations: Optional[Sequence[ApplicationGatewayCustomErrorConfigurationArgs]] = None,
                       enable_http2: Optional[bool] = None,
                       fips_enabled: Optional[bool] = None,
                       firewall_policy_id: Optional[str] = None,
                       force_firewall_policy_association: Optional[bool] = None,
                       frontend_ip_configurations: Optional[Sequence[ApplicationGatewayFrontendIpConfigurationArgs]] = None,
                       frontend_ports: Optional[Sequence[ApplicationGatewayFrontendPortArgs]] = None,
                       gateway_ip_configurations: Optional[Sequence[ApplicationGatewayGatewayIpConfigurationArgs]] = None,
                       http_listeners: Optional[Sequence[ApplicationGatewayHttpListenerArgs]] = None,
                       identity: Optional[ApplicationGatewayIdentityArgs] = None,
                       location: Optional[str] = None,
                       name: Optional[str] = None,
                       private_link_configurations: Optional[Sequence[ApplicationGatewayPrivateLinkConfigurationArgs]] = None,
                       probes: Optional[Sequence[ApplicationGatewayProbeArgs]] = None,
                       redirect_configurations: Optional[Sequence[ApplicationGatewayRedirectConfigurationArgs]] = None,
                       request_routing_rules: Optional[Sequence[ApplicationGatewayRequestRoutingRuleArgs]] = None,
                       resource_group_name: Optional[str] = None,
                       rewrite_rule_sets: Optional[Sequence[ApplicationGatewayRewriteRuleSetArgs]] = None,
                       sku: Optional[ApplicationGatewaySkuArgs] = None,
                       ssl_certificates: Optional[Sequence[ApplicationGatewaySslCertificateArgs]] = None,
                       ssl_policy: Optional[ApplicationGatewaySslPolicyArgs] = None,
                       ssl_profiles: Optional[Sequence[ApplicationGatewaySslProfileArgs]] = None,
                       tags: Optional[Mapping[str, str]] = None,
                       trusted_client_certificates: Optional[Sequence[ApplicationGatewayTrustedClientCertificateArgs]] = None,
                       trusted_root_certificates: Optional[Sequence[ApplicationGatewayTrustedRootCertificateArgs]] = None,
                       url_path_maps: Optional[Sequence[ApplicationGatewayUrlPathMapArgs]] = None,
                       waf_configuration: Optional[ApplicationGatewayWafConfigurationArgs] = None,
                       zones: Optional[Sequence[str]] = None)
@overload
def ApplicationGateway(resource_name: str,
                       args: ApplicationGatewayArgs,
                       opts: Optional[ResourceOptions] = None)
func NewApplicationGateway(ctx *Context, name string, args ApplicationGatewayArgs, opts ...ResourceOption) (*ApplicationGateway, error)
public ApplicationGateway(string name, ApplicationGatewayArgs args, CustomResourceOptions? opts = null)
public ApplicationGateway(String name, ApplicationGatewayArgs args)
public ApplicationGateway(String name, ApplicationGatewayArgs args, CustomResourceOptions options)
type: azure:network:ApplicationGateway
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.

name string
The unique name of the resource.
args ApplicationGatewayArgs
The arguments to resource properties.
opts CustomResourceOptions
Bag of options to control resource's behavior.
resource_name str
The unique name of the resource.
args ApplicationGatewayArgs
The arguments to resource properties.
opts ResourceOptions
Bag of options to control resource's behavior.
ctx Context
Context object for the current deployment.
name string
The unique name of the resource.
args ApplicationGatewayArgs
The arguments to resource properties.
opts ResourceOption
Bag of options to control resource's behavior.
name string
The unique name of the resource.
args ApplicationGatewayArgs
The arguments to resource properties.
opts CustomResourceOptions
Bag of options to control resource's behavior.
name String
The unique name of the resource.
args ApplicationGatewayArgs
The arguments to resource properties.
options CustomResourceOptions
Bag of options to control resource's behavior.

ApplicationGateway Resource Properties

To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

Inputs

The ApplicationGateway resource accepts the following input properties:

BackendAddressPools List<ApplicationGatewayBackendAddressPoolArgs>

One or more backend_address_pool blocks as defined below.

BackendHttpSettings List<ApplicationGatewayBackendHttpSettingArgs>

One or more backend_http_settings blocks as defined below.

FrontendIpConfigurations List<ApplicationGatewayFrontendIpConfigurationArgs>

One or more frontend_ip_configuration blocks as defined below.

FrontendPorts List<ApplicationGatewayFrontendPortArgs>

One or more frontend_port blocks as defined below.

GatewayIpConfigurations List<ApplicationGatewayGatewayIpConfigurationArgs>

One or more gateway_ip_configuration blocks as defined below.

HttpListeners List<ApplicationGatewayHttpListenerArgs>

One or more http_listener blocks as defined below.

RequestRoutingRules List<ApplicationGatewayRequestRoutingRuleArgs>

One or more request_routing_rule blocks as defined below.

ResourceGroupName string

The name of the resource group in which to the Application Gateway should exist. Changing this forces a new resource to be created.

Sku ApplicationGatewaySkuArgs

A sku block as defined below.

AuthenticationCertificates List<ApplicationGatewayAuthenticationCertificateArgs>

One or more authentication_certificate blocks as defined below.

AutoscaleConfiguration ApplicationGatewayAutoscaleConfigurationArgs

A autoscale_configuration block as defined below.

CustomErrorConfigurations List<ApplicationGatewayCustomErrorConfigurationArgs>

One or more custom_error_configuration blocks as defined below.

EnableHttp2 bool

Is HTTP2 enabled on the application gateway resource? Defaults to false.

FipsEnabled bool

Is FIPS enabled on the Application Gateway?

FirewallPolicyId string

The ID of the Web Application Firewall Policy.

ForceFirewallPolicyAssociation bool

Is the Firewall Policy associated with the Application Gateway?

Identity ApplicationGatewayIdentityArgs

An identity block as defined below.

Location string

The Azure region where the Application Gateway should exist. Changing this forces a new resource to be created.

Name string

The name of the Application Gateway. Changing this forces a new resource to be created.

PrivateLinkConfigurations List<ApplicationGatewayPrivateLinkConfigurationArgs>

One or more private_link_configuration blocks as defined below.

Probes List<ApplicationGatewayProbeArgs>

One or more probe blocks as defined below.

RedirectConfigurations List<ApplicationGatewayRedirectConfigurationArgs>

One or more redirect_configuration blocks as defined below.

RewriteRuleSets List<ApplicationGatewayRewriteRuleSetArgs>

One or more rewrite_rule_set blocks as defined below. Only valid for v2 SKUs.

SslCertificates List<ApplicationGatewaySslCertificateArgs>

One or more ssl_certificate blocks as defined below.

SslPolicy ApplicationGatewaySslPolicyArgs

a ssl policy block as defined below.

SslProfiles List<ApplicationGatewaySslProfileArgs>

One or more ssl_profile blocks as defined below.

Tags Dictionary<string, string>

A mapping of tags to assign to the resource.

TrustedClientCertificates List<ApplicationGatewayTrustedClientCertificateArgs>

One or more trusted_client_certificate blocks as defined below.

TrustedRootCertificates List<ApplicationGatewayTrustedRootCertificateArgs>

One or more trusted_root_certificate blocks as defined below.

UrlPathMaps List<ApplicationGatewayUrlPathMapArgs>

One or more url_path_map blocks as defined below.

WafConfiguration ApplicationGatewayWafConfigurationArgs

A waf_configuration block as defined below.

Zones List<string>

Specifies a list of Availability Zones in which this Application Gateway should be located. Changing this forces a new Application Gateway to be created.

BackendAddressPools []ApplicationGatewayBackendAddressPoolArgs

One or more backend_address_pool blocks as defined below.

BackendHttpSettings []ApplicationGatewayBackendHttpSettingArgs

One or more backend_http_settings blocks as defined below.

FrontendIpConfigurations []ApplicationGatewayFrontendIpConfigurationArgs

One or more frontend_ip_configuration blocks as defined below.

FrontendPorts []ApplicationGatewayFrontendPortArgs

One or more frontend_port blocks as defined below.

GatewayIpConfigurations []ApplicationGatewayGatewayIpConfigurationArgs

One or more gateway_ip_configuration blocks as defined below.

HttpListeners []ApplicationGatewayHttpListenerArgs

One or more http_listener blocks as defined below.

RequestRoutingRules []ApplicationGatewayRequestRoutingRuleArgs

One or more request_routing_rule blocks as defined below.

ResourceGroupName string

The name of the resource group in which to the Application Gateway should exist. Changing this forces a new resource to be created.

Sku ApplicationGatewaySkuArgs

A sku block as defined below.

AuthenticationCertificates []ApplicationGatewayAuthenticationCertificateArgs

One or more authentication_certificate blocks as defined below.

AutoscaleConfiguration ApplicationGatewayAutoscaleConfigurationArgs

A autoscale_configuration block as defined below.

CustomErrorConfigurations []ApplicationGatewayCustomErrorConfigurationArgs

One or more custom_error_configuration blocks as defined below.

EnableHttp2 bool

Is HTTP2 enabled on the application gateway resource? Defaults to false.

FipsEnabled bool

Is FIPS enabled on the Application Gateway?

FirewallPolicyId string

The ID of the Web Application Firewall Policy.

ForceFirewallPolicyAssociation bool

Is the Firewall Policy associated with the Application Gateway?

Identity ApplicationGatewayIdentityArgs

An identity block as defined below.

Location string

The Azure region where the Application Gateway should exist. Changing this forces a new resource to be created.

Name string

The name of the Application Gateway. Changing this forces a new resource to be created.

PrivateLinkConfigurations []ApplicationGatewayPrivateLinkConfigurationArgs

One or more private_link_configuration blocks as defined below.

Probes []ApplicationGatewayProbeArgs

One or more probe blocks as defined below.

RedirectConfigurations []ApplicationGatewayRedirectConfigurationArgs

One or more redirect_configuration blocks as defined below.

RewriteRuleSets []ApplicationGatewayRewriteRuleSetArgs

One or more rewrite_rule_set blocks as defined below. Only valid for v2 SKUs.

SslCertificates []ApplicationGatewaySslCertificateArgs

One or more ssl_certificate blocks as defined below.

SslPolicy ApplicationGatewaySslPolicyArgs

a ssl policy block as defined below.

SslProfiles []ApplicationGatewaySslProfileArgs

One or more ssl_profile blocks as defined below.

Tags map[string]string

A mapping of tags to assign to the resource.

TrustedClientCertificates []ApplicationGatewayTrustedClientCertificateArgs

One or more trusted_client_certificate blocks as defined below.

TrustedRootCertificates []ApplicationGatewayTrustedRootCertificateArgs

One or more trusted_root_certificate blocks as defined below.

UrlPathMaps []ApplicationGatewayUrlPathMapArgs

One or more url_path_map blocks as defined below.

WafConfiguration ApplicationGatewayWafConfigurationArgs

A waf_configuration block as defined below.

Zones []string

Specifies a list of Availability Zones in which this Application Gateway should be located. Changing this forces a new Application Gateway to be created.

backendAddressPools List<ApplicationGatewayBackendAddressPoolArgs>

One or more backend_address_pool blocks as defined below.

backendHttpSettings List<ApplicationGatewayBackendHttpSettingArgs>

One or more backend_http_settings blocks as defined below.

frontendIpConfigurations List<ApplicationGatewayFrontendIpConfigurationArgs>

One or more frontend_ip_configuration blocks as defined below.

frontendPorts List<ApplicationGatewayFrontendPortArgs>

One or more frontend_port blocks as defined below.

gatewayIpConfigurations List<ApplicationGatewayGatewayIpConfigurationArgs>

One or more gateway_ip_configuration blocks as defined below.

httpListeners List<ApplicationGatewayHttpListenerArgs>

One or more http_listener blocks as defined below.

requestRoutingRules List<ApplicationGatewayRequestRoutingRuleArgs>

One or more request_routing_rule blocks as defined below.

resourceGroupName String

The name of the resource group in which to the Application Gateway should exist. Changing this forces a new resource to be created.

sku ApplicationGatewaySkuArgs

A sku block as defined below.

authenticationCertificates List<ApplicationGatewayAuthenticationCertificateArgs>

One or more authentication_certificate blocks as defined below.

autoscaleConfiguration ApplicationGatewayAutoscaleConfigurationArgs

A autoscale_configuration block as defined below.

customErrorConfigurations List<ApplicationGatewayCustomErrorConfigurationArgs>

One or more custom_error_configuration blocks as defined below.

enableHttp2 Boolean

Is HTTP2 enabled on the application gateway resource? Defaults to false.

fipsEnabled Boolean

Is FIPS enabled on the Application Gateway?

firewallPolicyId String

The ID of the Web Application Firewall Policy.

forceFirewallPolicyAssociation Boolean

Is the Firewall Policy associated with the Application Gateway?

identity ApplicationGatewayIdentityArgs

An identity block as defined below.

location String

The Azure region where the Application Gateway should exist. Changing this forces a new resource to be created.

name String

The name of the Application Gateway. Changing this forces a new resource to be created.

privateLinkConfigurations List<ApplicationGatewayPrivateLinkConfigurationArgs>

One or more private_link_configuration blocks as defined below.

probes List<ApplicationGatewayProbeArgs>

One or more probe blocks as defined below.

redirectConfigurations List<ApplicationGatewayRedirectConfigurationArgs>

One or more redirect_configuration blocks as defined below.

rewriteRuleSets List<ApplicationGatewayRewriteRuleSetArgs>

One or more rewrite_rule_set blocks as defined below. Only valid for v2 SKUs.

sslCertificates List<ApplicationGatewaySslCertificateArgs>

One or more ssl_certificate blocks as defined below.

sslPolicy ApplicationGatewaySslPolicyArgs

a ssl policy block as defined below.

sslProfiles List<ApplicationGatewaySslProfileArgs>

One or more ssl_profile blocks as defined below.

tags Map<String,String>

A mapping of tags to assign to the resource.

trustedClientCertificates List<ApplicationGatewayTrustedClientCertificateArgs>

One or more trusted_client_certificate blocks as defined below.

trustedRootCertificates List<ApplicationGatewayTrustedRootCertificateArgs>

One or more trusted_root_certificate blocks as defined below.

urlPathMaps List<ApplicationGatewayUrlPathMapArgs>

One or more url_path_map blocks as defined below.

wafConfiguration ApplicationGatewayWafConfigurationArgs

A waf_configuration block as defined below.

zones List<String>

Specifies a list of Availability Zones in which this Application Gateway should be located. Changing this forces a new Application Gateway to be created.

backendAddressPools ApplicationGatewayBackendAddressPoolArgs[]

One or more backend_address_pool blocks as defined below.

backendHttpSettings ApplicationGatewayBackendHttpSettingArgs[]

One or more backend_http_settings blocks as defined below.

frontendIpConfigurations ApplicationGatewayFrontendIpConfigurationArgs[]

One or more frontend_ip_configuration blocks as defined below.

frontendPorts ApplicationGatewayFrontendPortArgs[]

One or more frontend_port blocks as defined below.

gatewayIpConfigurations ApplicationGatewayGatewayIpConfigurationArgs[]

One or more gateway_ip_configuration blocks as defined below.

httpListeners ApplicationGatewayHttpListenerArgs[]

One or more http_listener blocks as defined below.

requestRoutingRules ApplicationGatewayRequestRoutingRuleArgs[]

One or more request_routing_rule blocks as defined below.

resourceGroupName string

The name of the resource group in which to the Application Gateway should exist. Changing this forces a new resource to be created.

sku ApplicationGatewaySkuArgs

A sku block as defined below.

authenticationCertificates ApplicationGatewayAuthenticationCertificateArgs[]

One or more authentication_certificate blocks as defined below.

autoscaleConfiguration ApplicationGatewayAutoscaleConfigurationArgs

A autoscale_configuration block as defined below.

customErrorConfigurations ApplicationGatewayCustomErrorConfigurationArgs[]

One or more custom_error_configuration blocks as defined below.

enableHttp2 boolean

Is HTTP2 enabled on the application gateway resource? Defaults to false.

fipsEnabled boolean

Is FIPS enabled on the Application Gateway?

firewallPolicyId string

The ID of the Web Application Firewall Policy.

forceFirewallPolicyAssociation boolean

Is the Firewall Policy associated with the Application Gateway?

identity ApplicationGatewayIdentityArgs

An identity block as defined below.

location string

The Azure region where the Application Gateway should exist. Changing this forces a new resource to be created.

name string

The name of the Application Gateway. Changing this forces a new resource to be created.

privateLinkConfigurations ApplicationGatewayPrivateLinkConfigurationArgs[]

One or more private_link_configuration blocks as defined below.

probes ApplicationGatewayProbeArgs[]

One or more probe blocks as defined below.

redirectConfigurations ApplicationGatewayRedirectConfigurationArgs[]

One or more redirect_configuration blocks as defined below.

rewriteRuleSets ApplicationGatewayRewriteRuleSetArgs[]

One or more rewrite_rule_set blocks as defined below. Only valid for v2 SKUs.

sslCertificates ApplicationGatewaySslCertificateArgs[]

One or more ssl_certificate blocks as defined below.

sslPolicy ApplicationGatewaySslPolicyArgs

a ssl policy block as defined below.

sslProfiles ApplicationGatewaySslProfileArgs[]

One or more ssl_profile blocks as defined below.

tags {[key: string]: string}

A mapping of tags to assign to the resource.

trustedClientCertificates ApplicationGatewayTrustedClientCertificateArgs[]

One or more trusted_client_certificate blocks as defined below.

trustedRootCertificates ApplicationGatewayTrustedRootCertificateArgs[]

One or more trusted_root_certificate blocks as defined below.

urlPathMaps ApplicationGatewayUrlPathMapArgs[]

One or more url_path_map blocks as defined below.

wafConfiguration ApplicationGatewayWafConfigurationArgs

A waf_configuration block as defined below.

zones string[]

Specifies a list of Availability Zones in which this Application Gateway should be located. Changing this forces a new Application Gateway to be created.

backend_address_pools Sequence[ApplicationGatewayBackendAddressPoolArgs]

One or more backend_address_pool blocks as defined below.

backend_http_settings Sequence[ApplicationGatewayBackendHttpSettingArgs]

One or more backend_http_settings blocks as defined below.

frontend_ip_configurations Sequence[ApplicationGatewayFrontendIpConfigurationArgs]

One or more frontend_ip_configuration blocks as defined below.

frontend_ports Sequence[ApplicationGatewayFrontendPortArgs]

One or more frontend_port blocks as defined below.

gateway_ip_configurations Sequence[ApplicationGatewayGatewayIpConfigurationArgs]

One or more gateway_ip_configuration blocks as defined below.

http_listeners Sequence[ApplicationGatewayHttpListenerArgs]

One or more http_listener blocks as defined below.

request_routing_rules Sequence[ApplicationGatewayRequestRoutingRuleArgs]

One or more request_routing_rule blocks as defined below.

resource_group_name str

The name of the resource group in which to the Application Gateway should exist. Changing this forces a new resource to be created.

sku ApplicationGatewaySkuArgs

A sku block as defined below.

authentication_certificates Sequence[ApplicationGatewayAuthenticationCertificateArgs]

One or more authentication_certificate blocks as defined below.

autoscale_configuration ApplicationGatewayAutoscaleConfigurationArgs

A autoscale_configuration block as defined below.

custom_error_configurations Sequence[ApplicationGatewayCustomErrorConfigurationArgs]

One or more custom_error_configuration blocks as defined below.

enable_http2 bool

Is HTTP2 enabled on the application gateway resource? Defaults to false.

fips_enabled bool

Is FIPS enabled on the Application Gateway?

firewall_policy_id str

The ID of the Web Application Firewall Policy.

force_firewall_policy_association bool

Is the Firewall Policy associated with the Application Gateway?

identity ApplicationGatewayIdentityArgs

An identity block as defined below.

location str

The Azure region where the Application Gateway should exist. Changing this forces a new resource to be created.

name str

The name of the Application Gateway. Changing this forces a new resource to be created.

private_link_configurations Sequence[ApplicationGatewayPrivateLinkConfigurationArgs]

One or more private_link_configuration blocks as defined below.

probes Sequence[ApplicationGatewayProbeArgs]

One or more probe blocks as defined below.

redirect_configurations Sequence[ApplicationGatewayRedirectConfigurationArgs]

One or more redirect_configuration blocks as defined below.

rewrite_rule_sets Sequence[ApplicationGatewayRewriteRuleSetArgs]

One or more rewrite_rule_set blocks as defined below. Only valid for v2 SKUs.

ssl_certificates Sequence[ApplicationGatewaySslCertificateArgs]

One or more ssl_certificate blocks as defined below.

ssl_policy ApplicationGatewaySslPolicyArgs

a ssl policy block as defined below.

ssl_profiles Sequence[ApplicationGatewaySslProfileArgs]

One or more ssl_profile blocks as defined below.

tags Mapping[str, str]

A mapping of tags to assign to the resource.

trusted_client_certificates Sequence[ApplicationGatewayTrustedClientCertificateArgs]

One or more trusted_client_certificate blocks as defined below.

trusted_root_certificates Sequence[ApplicationGatewayTrustedRootCertificateArgs]

One or more trusted_root_certificate blocks as defined below.

url_path_maps Sequence[ApplicationGatewayUrlPathMapArgs]

One or more url_path_map blocks as defined below.

waf_configuration ApplicationGatewayWafConfigurationArgs

A waf_configuration block as defined below.

zones Sequence[str]

Specifies a list of Availability Zones in which this Application Gateway should be located. Changing this forces a new Application Gateway to be created.

backendAddressPools List<Property Map>

One or more backend_address_pool blocks as defined below.

backendHttpSettings List<Property Map>

One or more backend_http_settings blocks as defined below.

frontendIpConfigurations List<Property Map>

One or more frontend_ip_configuration blocks as defined below.

frontendPorts List<Property Map>

One or more frontend_port blocks as defined below.

gatewayIpConfigurations List<Property Map>

One or more gateway_ip_configuration blocks as defined below.

httpListeners List<Property Map>

One or more http_listener blocks as defined below.

requestRoutingRules List<Property Map>

One or more request_routing_rule blocks as defined below.

resourceGroupName String

The name of the resource group in which to the Application Gateway should exist. Changing this forces a new resource to be created.

sku Property Map

A sku block as defined below.

authenticationCertificates List<Property Map>

One or more authentication_certificate blocks as defined below.

autoscaleConfiguration Property Map

A autoscale_configuration block as defined below.

customErrorConfigurations List<Property Map>

One or more custom_error_configuration blocks as defined below.

enableHttp2 Boolean

Is HTTP2 enabled on the application gateway resource? Defaults to false.

fipsEnabled Boolean

Is FIPS enabled on the Application Gateway?

firewallPolicyId String

The ID of the Web Application Firewall Policy.

forceFirewallPolicyAssociation Boolean

Is the Firewall Policy associated with the Application Gateway?

identity Property Map

An identity block as defined below.

location String

The Azure region where the Application Gateway should exist. Changing this forces a new resource to be created.

name String

The name of the Application Gateway. Changing this forces a new resource to be created.

privateLinkConfigurations List<Property Map>

One or more private_link_configuration blocks as defined below.

probes List<Property Map>

One or more probe blocks as defined below.

redirectConfigurations List<Property Map>

One or more redirect_configuration blocks as defined below.

rewriteRuleSets List<Property Map>

One or more rewrite_rule_set blocks as defined below. Only valid for v2 SKUs.

sslCertificates List<Property Map>

One or more ssl_certificate blocks as defined below.

sslPolicy Property Map

a ssl policy block as defined below.

sslProfiles List<Property Map>

One or more ssl_profile blocks as defined below.

tags Map<String>

A mapping of tags to assign to the resource.

trustedClientCertificates List<Property Map>

One or more trusted_client_certificate blocks as defined below.

trustedRootCertificates List<Property Map>

One or more trusted_root_certificate blocks as defined below.

urlPathMaps List<Property Map>

One or more url_path_map blocks as defined below.

wafConfiguration Property Map

A waf_configuration block as defined below.

zones List<String>

Specifies a list of Availability Zones in which this Application Gateway should be located. Changing this forces a new Application Gateway to be created.

Outputs

All input properties are implicitly available as output properties. Additionally, the ApplicationGateway resource produces the following output properties:

Id string

The provider-assigned unique ID for this managed resource.

PrivateEndpointConnections List<ApplicationGatewayPrivateEndpointConnection>

A list of private_endpoint_connection blocks as defined below.

Id string

The provider-assigned unique ID for this managed resource.

PrivateEndpointConnections []ApplicationGatewayPrivateEndpointConnection

A list of private_endpoint_connection blocks as defined below.

id String

The provider-assigned unique ID for this managed resource.

privateEndpointConnections List<ApplicationGatewayPrivateEndpointConnection>

A list of private_endpoint_connection blocks as defined below.

id string

The provider-assigned unique ID for this managed resource.

privateEndpointConnections ApplicationGatewayPrivateEndpointConnection[]

A list of private_endpoint_connection blocks as defined below.

id str

The provider-assigned unique ID for this managed resource.

private_endpoint_connections Sequence[ApplicationGatewayPrivateEndpointConnection]

A list of private_endpoint_connection blocks as defined below.

id String

The provider-assigned unique ID for this managed resource.

privateEndpointConnections List<Property Map>

A list of private_endpoint_connection blocks as defined below.

Look up an Existing ApplicationGateway Resource

Get an existing ApplicationGateway resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

public static get(name: string, id: Input<ID>, state?: ApplicationGatewayState, opts?: CustomResourceOptions): ApplicationGateway
@staticmethod
def get(resource_name: str,
        id: str,
        opts: Optional[ResourceOptions] = None,
        authentication_certificates: Optional[Sequence[ApplicationGatewayAuthenticationCertificateArgs]] = None,
        autoscale_configuration: Optional[ApplicationGatewayAutoscaleConfigurationArgs] = None,
        backend_address_pools: Optional[Sequence[ApplicationGatewayBackendAddressPoolArgs]] = None,
        backend_http_settings: Optional[Sequence[ApplicationGatewayBackendHttpSettingArgs]] = None,
        custom_error_configurations: Optional[Sequence[ApplicationGatewayCustomErrorConfigurationArgs]] = None,
        enable_http2: Optional[bool] = None,
        fips_enabled: Optional[bool] = None,
        firewall_policy_id: Optional[str] = None,
        force_firewall_policy_association: Optional[bool] = None,
        frontend_ip_configurations: Optional[Sequence[ApplicationGatewayFrontendIpConfigurationArgs]] = None,
        frontend_ports: Optional[Sequence[ApplicationGatewayFrontendPortArgs]] = None,
        gateway_ip_configurations: Optional[Sequence[ApplicationGatewayGatewayIpConfigurationArgs]] = None,
        http_listeners: Optional[Sequence[ApplicationGatewayHttpListenerArgs]] = None,
        identity: Optional[ApplicationGatewayIdentityArgs] = None,
        location: Optional[str] = None,
        name: Optional[str] = None,
        private_endpoint_connections: Optional[Sequence[ApplicationGatewayPrivateEndpointConnectionArgs]] = None,
        private_link_configurations: Optional[Sequence[ApplicationGatewayPrivateLinkConfigurationArgs]] = None,
        probes: Optional[Sequence[ApplicationGatewayProbeArgs]] = None,
        redirect_configurations: Optional[Sequence[ApplicationGatewayRedirectConfigurationArgs]] = None,
        request_routing_rules: Optional[Sequence[ApplicationGatewayRequestRoutingRuleArgs]] = None,
        resource_group_name: Optional[str] = None,
        rewrite_rule_sets: Optional[Sequence[ApplicationGatewayRewriteRuleSetArgs]] = None,
        sku: Optional[ApplicationGatewaySkuArgs] = None,
        ssl_certificates: Optional[Sequence[ApplicationGatewaySslCertificateArgs]] = None,
        ssl_policy: Optional[ApplicationGatewaySslPolicyArgs] = None,
        ssl_profiles: Optional[Sequence[ApplicationGatewaySslProfileArgs]] = None,
        tags: Optional[Mapping[str, str]] = None,
        trusted_client_certificates: Optional[Sequence[ApplicationGatewayTrustedClientCertificateArgs]] = None,
        trusted_root_certificates: Optional[Sequence[ApplicationGatewayTrustedRootCertificateArgs]] = None,
        url_path_maps: Optional[Sequence[ApplicationGatewayUrlPathMapArgs]] = None,
        waf_configuration: Optional[ApplicationGatewayWafConfigurationArgs] = None,
        zones: Optional[Sequence[str]] = None) -> ApplicationGateway
func GetApplicationGateway(ctx *Context, name string, id IDInput, state *ApplicationGatewayState, opts ...ResourceOption) (*ApplicationGateway, error)
public static ApplicationGateway Get(string name, Input<string> id, ApplicationGatewayState? state, CustomResourceOptions? opts = null)
public static ApplicationGateway get(String name, Output<String> id, ApplicationGatewayState state, CustomResourceOptions options)
Resource lookup is not supported in YAML
name
The unique name of the resulting resource.
id
The unique provider ID of the resource to lookup.
state
Any extra arguments used during the lookup.
opts
A bag of options that control this resource's behavior.
resource_name
The unique name of the resulting resource.
id
The unique provider ID of the resource to lookup.
name
The unique name of the resulting resource.
id
The unique provider ID of the resource to lookup.
state
Any extra arguments used during the lookup.
opts
A bag of options that control this resource's behavior.
name
The unique name of the resulting resource.
id
The unique provider ID of the resource to lookup.
state
Any extra arguments used during the lookup.
opts
A bag of options that control this resource's behavior.
name
The unique name of the resulting resource.
id
The unique provider ID of the resource to lookup.
state
Any extra arguments used during the lookup.
opts
A bag of options that control this resource's behavior.
The following state arguments are supported:
AuthenticationCertificates List<ApplicationGatewayAuthenticationCertificateArgs>

One or more authentication_certificate blocks as defined below.

AutoscaleConfiguration ApplicationGatewayAutoscaleConfigurationArgs

A autoscale_configuration block as defined below.

BackendAddressPools List<ApplicationGatewayBackendAddressPoolArgs>

One or more backend_address_pool blocks as defined below.

BackendHttpSettings List<ApplicationGatewayBackendHttpSettingArgs>

One or more backend_http_settings blocks as defined below.

CustomErrorConfigurations List<ApplicationGatewayCustomErrorConfigurationArgs>

One or more custom_error_configuration blocks as defined below.

EnableHttp2 bool

Is HTTP2 enabled on the application gateway resource? Defaults to false.

FipsEnabled bool

Is FIPS enabled on the Application Gateway?

FirewallPolicyId string

The ID of the Web Application Firewall Policy.

ForceFirewallPolicyAssociation bool

Is the Firewall Policy associated with the Application Gateway?

FrontendIpConfigurations List<ApplicationGatewayFrontendIpConfigurationArgs>

One or more frontend_ip_configuration blocks as defined below.

FrontendPorts List<ApplicationGatewayFrontendPortArgs>

One or more frontend_port blocks as defined below.

GatewayIpConfigurations List<ApplicationGatewayGatewayIpConfigurationArgs>

One or more gateway_ip_configuration blocks as defined below.

HttpListeners List<ApplicationGatewayHttpListenerArgs>

One or more http_listener blocks as defined below.

Identity ApplicationGatewayIdentityArgs

An identity block as defined below.

Location string

The Azure region where the Application Gateway should exist. Changing this forces a new resource to be created.

Name string

The name of the Application Gateway. Changing this forces a new resource to be created.

PrivateEndpointConnections List<ApplicationGatewayPrivateEndpointConnectionArgs>

A list of private_endpoint_connection blocks as defined below.

PrivateLinkConfigurations List<ApplicationGatewayPrivateLinkConfigurationArgs>

One or more private_link_configuration blocks as defined below.

Probes List<ApplicationGatewayProbeArgs>

One or more probe blocks as defined below.

RedirectConfigurations List<ApplicationGatewayRedirectConfigurationArgs>

One or more redirect_configuration blocks as defined below.

RequestRoutingRules List<ApplicationGatewayRequestRoutingRuleArgs>

One or more request_routing_rule blocks as defined below.

ResourceGroupName string

The name of the resource group in which to the Application Gateway should exist. Changing this forces a new resource to be created.

RewriteRuleSets List<ApplicationGatewayRewriteRuleSetArgs>

One or more rewrite_rule_set blocks as defined below. Only valid for v2 SKUs.

Sku ApplicationGatewaySkuArgs

A sku block as defined below.

SslCertificates List<ApplicationGatewaySslCertificateArgs>

One or more ssl_certificate blocks as defined below.

SslPolicy ApplicationGatewaySslPolicyArgs

a ssl policy block as defined below.

SslProfiles List<ApplicationGatewaySslProfileArgs>

One or more ssl_profile blocks as defined below.

Tags Dictionary<string, string>

A mapping of tags to assign to the resource.

TrustedClientCertificates List<ApplicationGatewayTrustedClientCertificateArgs>

One or more trusted_client_certificate blocks as defined below.

TrustedRootCertificates List<ApplicationGatewayTrustedRootCertificateArgs>

One or more trusted_root_certificate blocks as defined below.

UrlPathMaps List<ApplicationGatewayUrlPathMapArgs>

One or more url_path_map blocks as defined below.

WafConfiguration ApplicationGatewayWafConfigurationArgs

A waf_configuration block as defined below.

Zones List<string>

Specifies a list of Availability Zones in which this Application Gateway should be located. Changing this forces a new Application Gateway to be created.

AuthenticationCertificates []ApplicationGatewayAuthenticationCertificateArgs

One or more authentication_certificate blocks as defined below.

AutoscaleConfiguration ApplicationGatewayAutoscaleConfigurationArgs

A autoscale_configuration block as defined below.

BackendAddressPools []ApplicationGatewayBackendAddressPoolArgs

One or more backend_address_pool blocks as defined below.

BackendHttpSettings []ApplicationGatewayBackendHttpSettingArgs

One or more backend_http_settings blocks as defined below.

CustomErrorConfigurations []ApplicationGatewayCustomErrorConfigurationArgs

One or more custom_error_configuration blocks as defined below.

EnableHttp2 bool

Is HTTP2 enabled on the application gateway resource? Defaults to false.

FipsEnabled bool

Is FIPS enabled on the Application Gateway?

FirewallPolicyId string

The ID of the Web Application Firewall Policy.

ForceFirewallPolicyAssociation bool

Is the Firewall Policy associated with the Application Gateway?

FrontendIpConfigurations []ApplicationGatewayFrontendIpConfigurationArgs

One or more frontend_ip_configuration blocks as defined below.

FrontendPorts []ApplicationGatewayFrontendPortArgs

One or more frontend_port blocks as defined below.

GatewayIpConfigurations []ApplicationGatewayGatewayIpConfigurationArgs

One or more gateway_ip_configuration blocks as defined below.

HttpListeners []ApplicationGatewayHttpListenerArgs

One or more http_listener blocks as defined below.

Identity ApplicationGatewayIdentityArgs

An identity block as defined below.

Location string

The Azure region where the Application Gateway should exist. Changing this forces a new resource to be created.

Name string

The name of the Application Gateway. Changing this forces a new resource to be created.

PrivateEndpointConnections []ApplicationGatewayPrivateEndpointConnectionArgs

A list of private_endpoint_connection blocks as defined below.

PrivateLinkConfigurations []ApplicationGatewayPrivateLinkConfigurationArgs

One or more private_link_configuration blocks as defined below.

Probes []ApplicationGatewayProbeArgs

One or more probe blocks as defined below.

RedirectConfigurations []ApplicationGatewayRedirectConfigurationArgs

One or more redirect_configuration blocks as defined below.

RequestRoutingRules []ApplicationGatewayRequestRoutingRuleArgs

One or more request_routing_rule blocks as defined below.

ResourceGroupName string

The name of the resource group in which to the Application Gateway should exist. Changing this forces a new resource to be created.

RewriteRuleSets []ApplicationGatewayRewriteRuleSetArgs

One or more rewrite_rule_set blocks as defined below. Only valid for v2 SKUs.

Sku ApplicationGatewaySkuArgs

A sku block as defined below.

SslCertificates []ApplicationGatewaySslCertificateArgs

One or more ssl_certificate blocks as defined below.

SslPolicy ApplicationGatewaySslPolicyArgs

a ssl policy block as defined below.

SslProfiles []ApplicationGatewaySslProfileArgs

One or more ssl_profile blocks as defined below.

Tags map[string]string

A mapping of tags to assign to the resource.

TrustedClientCertificates []ApplicationGatewayTrustedClientCertificateArgs

One or more trusted_client_certificate blocks as defined below.

TrustedRootCertificates []ApplicationGatewayTrustedRootCertificateArgs

One or more trusted_root_certificate blocks as defined below.

UrlPathMaps []ApplicationGatewayUrlPathMapArgs

One or more url_path_map blocks as defined below.

WafConfiguration ApplicationGatewayWafConfigurationArgs

A waf_configuration block as defined below.

Zones []string

Specifies a list of Availability Zones in which this Application Gateway should be located. Changing this forces a new Application Gateway to be created.

authenticationCertificates List<ApplicationGatewayAuthenticationCertificateArgs>

One or more authentication_certificate blocks as defined below.

autoscaleConfiguration ApplicationGatewayAutoscaleConfigurationArgs

A autoscale_configuration block as defined below.

backendAddressPools List<ApplicationGatewayBackendAddressPoolArgs>

One or more backend_address_pool blocks as defined below.

backendHttpSettings List<ApplicationGatewayBackendHttpSettingArgs>

One or more backend_http_settings blocks as defined below.

customErrorConfigurations List<ApplicationGatewayCustomErrorConfigurationArgs>

One or more custom_error_configuration blocks as defined below.

enableHttp2 Boolean

Is HTTP2 enabled on the application gateway resource? Defaults to false.

fipsEnabled Boolean

Is FIPS enabled on the Application Gateway?

firewallPolicyId String

The ID of the Web Application Firewall Policy.

forceFirewallPolicyAssociation Boolean

Is the Firewall Policy associated with the Application Gateway?

frontendIpConfigurations List<ApplicationGatewayFrontendIpConfigurationArgs>

One or more frontend_ip_configuration blocks as defined below.

frontendPorts List<ApplicationGatewayFrontendPortArgs>

One or more frontend_port blocks as defined below.

gatewayIpConfigurations List<ApplicationGatewayGatewayIpConfigurationArgs>

One or more gateway_ip_configuration blocks as defined below.

httpListeners List<ApplicationGatewayHttpListenerArgs>

One or more http_listener blocks as defined below.

identity ApplicationGatewayIdentityArgs

An identity block as defined below.

location String

The Azure region where the Application Gateway should exist. Changing this forces a new resource to be created.

name String

The name of the Application Gateway. Changing this forces a new resource to be created.

privateEndpointConnections List<ApplicationGatewayPrivateEndpointConnectionArgs>

A list of private_endpoint_connection blocks as defined below.

privateLinkConfigurations List<ApplicationGatewayPrivateLinkConfigurationArgs>

One or more private_link_configuration blocks as defined below.

probes List<ApplicationGatewayProbeArgs>

One or more probe blocks as defined below.

redirectConfigurations List<ApplicationGatewayRedirectConfigurationArgs>

One or more redirect_configuration blocks as defined below.

requestRoutingRules List<ApplicationGatewayRequestRoutingRuleArgs>

One or more request_routing_rule blocks as defined below.

resourceGroupName String

The name of the resource group in which to the Application Gateway should exist. Changing this forces a new resource to be created.

rewriteRuleSets List<ApplicationGatewayRewriteRuleSetArgs>

One or more rewrite_rule_set blocks as defined below. Only valid for v2 SKUs.

sku ApplicationGatewaySkuArgs

A sku block as defined below.

sslCertificates List<ApplicationGatewaySslCertificateArgs>

One or more ssl_certificate blocks as defined below.

sslPolicy ApplicationGatewaySslPolicyArgs

a ssl policy block as defined below.

sslProfiles List<ApplicationGatewaySslProfileArgs>

One or more ssl_profile blocks as defined below.

tags Map<String,String>

A mapping of tags to assign to the resource.

trustedClientCertificates List<ApplicationGatewayTrustedClientCertificateArgs>

One or more trusted_client_certificate blocks as defined below.

trustedRootCertificates List<ApplicationGatewayTrustedRootCertificateArgs>

One or more trusted_root_certificate blocks as defined below.

urlPathMaps List<ApplicationGatewayUrlPathMapArgs>

One or more url_path_map blocks as defined below.

wafConfiguration ApplicationGatewayWafConfigurationArgs

A waf_configuration block as defined below.

zones List<String>

Specifies a list of Availability Zones in which this Application Gateway should be located. Changing this forces a new Application Gateway to be created.

authenticationCertificates ApplicationGatewayAuthenticationCertificateArgs[]

One or more authentication_certificate blocks as defined below.

autoscaleConfiguration ApplicationGatewayAutoscaleConfigurationArgs

A autoscale_configuration block as defined below.

backendAddressPools ApplicationGatewayBackendAddressPoolArgs[]

One or more backend_address_pool blocks as defined below.

backendHttpSettings ApplicationGatewayBackendHttpSettingArgs[]

One or more backend_http_settings blocks as defined below.

customErrorConfigurations ApplicationGatewayCustomErrorConfigurationArgs[]

One or more custom_error_configuration blocks as defined below.

enableHttp2 boolean

Is HTTP2 enabled on the application gateway resource? Defaults to false.

fipsEnabled boolean

Is FIPS enabled on the Application Gateway?

firewallPolicyId string

The ID of the Web Application Firewall Policy.

forceFirewallPolicyAssociation boolean

Is the Firewall Policy associated with the Application Gateway?

frontendIpConfigurations ApplicationGatewayFrontendIpConfigurationArgs[]

One or more frontend_ip_configuration blocks as defined below.

frontendPorts ApplicationGatewayFrontendPortArgs[]

One or more frontend_port blocks as defined below.

gatewayIpConfigurations ApplicationGatewayGatewayIpConfigurationArgs[]

One or more gateway_ip_configuration blocks as defined below.

httpListeners ApplicationGatewayHttpListenerArgs[]

One or more http_listener blocks as defined below.

identity ApplicationGatewayIdentityArgs

An identity block as defined below.

location string

The Azure region where the Application Gateway should exist. Changing this forces a new resource to be created.

name string

The name of the Application Gateway. Changing this forces a new resource to be created.

privateEndpointConnections ApplicationGatewayPrivateEndpointConnectionArgs[]

A list of private_endpoint_connection blocks as defined below.

privateLinkConfigurations ApplicationGatewayPrivateLinkConfigurationArgs[]

One or more private_link_configuration blocks as defined below.

probes ApplicationGatewayProbeArgs[]

One or more probe blocks as defined below.

redirectConfigurations ApplicationGatewayRedirectConfigurationArgs[]

One or more redirect_configuration blocks as defined below.

requestRoutingRules ApplicationGatewayRequestRoutingRuleArgs[]

One or more request_routing_rule blocks as defined below.

resourceGroupName string

The name of the resource group in which to the Application Gateway should exist. Changing this forces a new resource to be created.

rewriteRuleSets ApplicationGatewayRewriteRuleSetArgs[]

One or more rewrite_rule_set blocks as defined below. Only valid for v2 SKUs.

sku ApplicationGatewaySkuArgs

A sku block as defined below.

sslCertificates ApplicationGatewaySslCertificateArgs[]

One or more ssl_certificate blocks as defined below.

sslPolicy ApplicationGatewaySslPolicyArgs

a ssl policy block as defined below.

sslProfiles ApplicationGatewaySslProfileArgs[]

One or more ssl_profile blocks as defined below.

tags {[key: string]: string}

A mapping of tags to assign to the resource.

trustedClientCertificates ApplicationGatewayTrustedClientCertificateArgs[]

One or more trusted_client_certificate blocks as defined below.

trustedRootCertificates ApplicationGatewayTrustedRootCertificateArgs[]

One or more trusted_root_certificate blocks as defined below.

urlPathMaps ApplicationGatewayUrlPathMapArgs[]

One or more url_path_map blocks as defined below.

wafConfiguration ApplicationGatewayWafConfigurationArgs

A waf_configuration block as defined below.

zones string[]

Specifies a list of Availability Zones in which this Application Gateway should be located. Changing this forces a new Application Gateway to be created.

authentication_certificates Sequence[ApplicationGatewayAuthenticationCertificateArgs]

One or more authentication_certificate blocks as defined below.

autoscale_configuration ApplicationGatewayAutoscaleConfigurationArgs

A autoscale_configuration block as defined below.

backend_address_pools Sequence[ApplicationGatewayBackendAddressPoolArgs]

One or more backend_address_pool blocks as defined below.

backend_http_settings Sequence[ApplicationGatewayBackendHttpSettingArgs]

One or more backend_http_settings blocks as defined below.

custom_error_configurations Sequence[ApplicationGatewayCustomErrorConfigurationArgs]

One or more custom_error_configuration blocks as defined below.

enable_http2 bool

Is HTTP2 enabled on the application gateway resource? Defaults to false.

fips_enabled bool

Is FIPS enabled on the Application Gateway?

firewall_policy_id str

The ID of the Web Application Firewall Policy.

force_firewall_policy_association bool

Is the Firewall Policy associated with the Application Gateway?

frontend_ip_configurations Sequence[ApplicationGatewayFrontendIpConfigurationArgs]

One or more frontend_ip_configuration blocks as defined below.

frontend_ports Sequence[ApplicationGatewayFrontendPortArgs]

One or more frontend_port blocks as defined below.

gateway_ip_configurations Sequence[ApplicationGatewayGatewayIpConfigurationArgs]

One or more gateway_ip_configuration blocks as defined below.

http_listeners Sequence[ApplicationGatewayHttpListenerArgs]

One or more http_listener blocks as defined below.

identity ApplicationGatewayIdentityArgs

An identity block as defined below.

location str

The Azure region where the Application Gateway should exist. Changing this forces a new resource to be created.

name str

The name of the Application Gateway. Changing this forces a new resource to be created.

private_endpoint_connections Sequence[ApplicationGatewayPrivateEndpointConnectionArgs]

A list of private_endpoint_connection blocks as defined below.

private_link_configurations Sequence[ApplicationGatewayPrivateLinkConfigurationArgs]

One or more private_link_configuration blocks as defined below.

probes Sequence[ApplicationGatewayProbeArgs]

One or more probe blocks as defined below.

redirect_configurations Sequence[ApplicationGatewayRedirectConfigurationArgs]

One or more redirect_configuration blocks as defined below.

request_routing_rules Sequence[ApplicationGatewayRequestRoutingRuleArgs]

One or more request_routing_rule blocks as defined below.

resource_group_name str

The name of the resource group in which to the Application Gateway should exist. Changing this forces a new resource to be created.

rewrite_rule_sets Sequence[ApplicationGatewayRewriteRuleSetArgs]

One or more rewrite_rule_set blocks as defined below. Only valid for v2 SKUs.

sku ApplicationGatewaySkuArgs

A sku block as defined below.

ssl_certificates Sequence[ApplicationGatewaySslCertificateArgs]

One or more ssl_certificate blocks as defined below.

ssl_policy ApplicationGatewaySslPolicyArgs

a ssl policy block as defined below.

ssl_profiles Sequence[ApplicationGatewaySslProfileArgs]

One or more ssl_profile blocks as defined below.

tags Mapping[str, str]

A mapping of tags to assign to the resource.

trusted_client_certificates Sequence[ApplicationGatewayTrustedClientCertificateArgs]

One or more trusted_client_certificate blocks as defined below.

trusted_root_certificates Sequence[ApplicationGatewayTrustedRootCertificateArgs]

One or more trusted_root_certificate blocks as defined below.

url_path_maps Sequence[ApplicationGatewayUrlPathMapArgs]

One or more url_path_map blocks as defined below.

waf_configuration ApplicationGatewayWafConfigurationArgs

A waf_configuration block as defined below.

zones Sequence[str]

Specifies a list of Availability Zones in which this Application Gateway should be located. Changing this forces a new Application Gateway to be created.

authenticationCertificates List<Property Map>

One or more authentication_certificate blocks as defined below.

autoscaleConfiguration Property Map

A autoscale_configuration block as defined below.

backendAddressPools List<Property Map>

One or more backend_address_pool blocks as defined below.

backendHttpSettings List<Property Map>

One or more backend_http_settings blocks as defined below.

customErrorConfigurations List<Property Map>

One or more custom_error_configuration blocks as defined below.

enableHttp2 Boolean

Is HTTP2 enabled on the application gateway resource? Defaults to false.

fipsEnabled Boolean

Is FIPS enabled on the Application Gateway?

firewallPolicyId String

The ID of the Web Application Firewall Policy.

forceFirewallPolicyAssociation Boolean

Is the Firewall Policy associated with the Application Gateway?

frontendIpConfigurations List<Property Map>

One or more frontend_ip_configuration blocks as defined below.

frontendPorts List<Property Map>

One or more frontend_port blocks as defined below.

gatewayIpConfigurations List<Property Map>

One or more gateway_ip_configuration blocks as defined below.

httpListeners List<Property Map>

One or more http_listener blocks as defined below.

identity Property Map

An identity block as defined below.

location String

The Azure region where the Application Gateway should exist. Changing this forces a new resource to be created.

name String

The name of the Application Gateway. Changing this forces a new resource to be created.

privateEndpointConnections List<Property Map>

A list of private_endpoint_connection blocks as defined below.

privateLinkConfigurations List<Property Map>

One or more private_link_configuration blocks as defined below.

probes List<Property Map>

One or more probe blocks as defined below.

redirectConfigurations List<Property Map>

One or more redirect_configuration blocks as defined below.

requestRoutingRules List<Property Map>

One or more request_routing_rule blocks as defined below.

resourceGroupName String

The name of the resource group in which to the Application Gateway should exist. Changing this forces a new resource to be created.

rewriteRuleSets List<Property Map>

One or more rewrite_rule_set blocks as defined below. Only valid for v2 SKUs.

sku Property Map

A sku block as defined below.

sslCertificates List<Property Map>

One or more ssl_certificate blocks as defined below.

sslPolicy Property Map

a ssl policy block as defined below.

sslProfiles List<Property Map>

One or more ssl_profile blocks as defined below.

tags Map<String>

A mapping of tags to assign to the resource.

trustedClientCertificates List<Property Map>

One or more trusted_client_certificate blocks as defined below.

trustedRootCertificates List<Property Map>

One or more trusted_root_certificate blocks as defined below.

urlPathMaps List<Property Map>

One or more url_path_map blocks as defined below.

wafConfiguration Property Map

A waf_configuration block as defined below.

zones List<String>

Specifies a list of Availability Zones in which this Application Gateway should be located. Changing this forces a new Application Gateway to be created.

Supporting Types

ApplicationGatewayAuthenticationCertificate

Data string

The contents of the Authentication Certificate which should be used.

Name string

The name of the Authentication Certificate.

Id string

The ID of the Rewrite Rule Set

Data string

The contents of the Authentication Certificate which should be used.

Name string

The name of the Authentication Certificate.

Id string

The ID of the Rewrite Rule Set

data String

The contents of the Authentication Certificate which should be used.

name String

The name of the Authentication Certificate.

id String

The ID of the Rewrite Rule Set

data string

The contents of the Authentication Certificate which should be used.

name string

The name of the Authentication Certificate.

id string

The ID of the Rewrite Rule Set

data str

The contents of the Authentication Certificate which should be used.

name str

The name of the Authentication Certificate.

id str

The ID of the Rewrite Rule Set

data String

The contents of the Authentication Certificate which should be used.

name String

The name of the Authentication Certificate.

id String

The ID of the Rewrite Rule Set

ApplicationGatewayAutoscaleConfiguration

MinCapacity int

Minimum capacity for autoscaling. Accepted values are in the range 0 to 100.

MaxCapacity int

Maximum capacity for autoscaling. Accepted values are in the range 2 to 125.

MinCapacity int

Minimum capacity for autoscaling. Accepted values are in the range 0 to 100.

MaxCapacity int

Maximum capacity for autoscaling. Accepted values are in the range 2 to 125.

minCapacity Integer

Minimum capacity for autoscaling. Accepted values are in the range 0 to 100.

maxCapacity Integer

Maximum capacity for autoscaling. Accepted values are in the range 2 to 125.

minCapacity number

Minimum capacity for autoscaling. Accepted values are in the range 0 to 100.

maxCapacity number

Maximum capacity for autoscaling. Accepted values are in the range 2 to 125.

min_capacity int

Minimum capacity for autoscaling. Accepted values are in the range 0 to 100.

max_capacity int

Maximum capacity for autoscaling. Accepted values are in the range 2 to 125.

minCapacity Number

Minimum capacity for autoscaling. Accepted values are in the range 0 to 100.

maxCapacity Number

Maximum capacity for autoscaling. Accepted values are in the range 2 to 125.

ApplicationGatewayBackendAddressPool

Name string

The name of the Backend Address Pool.

Fqdns List<string>

A list of FQDN's which should be part of the Backend Address Pool.

Id string

The ID of the Rewrite Rule Set

IpAddresses List<string>

A list of IP Addresses which should be part of the Backend Address Pool.

Name string

The name of the Backend Address Pool.

Fqdns []string

A list of FQDN's which should be part of the Backend Address Pool.

Id string

The ID of the Rewrite Rule Set

IpAddresses []string

A list of IP Addresses which should be part of the Backend Address Pool.

name String

The name of the Backend Address Pool.

fqdns List<String>

A list of FQDN's which should be part of the Backend Address Pool.

id String

The ID of the Rewrite Rule Set

ipAddresses List<String>

A list of IP Addresses which should be part of the Backend Address Pool.

name string

The name of the Backend Address Pool.

fqdns string[]

A list of FQDN's which should be part of the Backend Address Pool.

id string

The ID of the Rewrite Rule Set

ipAddresses string[]

A list of IP Addresses which should be part of the Backend Address Pool.

name str

The name of the Backend Address Pool.

fqdns Sequence[str]

A list of FQDN's which should be part of the Backend Address Pool.

id str

The ID of the Rewrite Rule Set

ip_addresses Sequence[str]

A list of IP Addresses which should be part of the Backend Address Pool.

name String

The name of the Backend Address Pool.

fqdns List<String>

A list of FQDN's which should be part of the Backend Address Pool.

id String

The ID of the Rewrite Rule Set

ipAddresses List<String>

A list of IP Addresses which should be part of the Backend Address Pool.

ApplicationGatewayBackendHttpSetting

CookieBasedAffinity string

Is Cookie-Based Affinity enabled? Possible values are Enabled and Disabled.

Name string

The name of the Backend HTTP Settings Collection.

Port int

The port which should be used for this Backend HTTP Settings Collection.

Protocol string

The Protocol which should be used. Possible values are Http and Https.

AffinityCookieName string

The name of the affinity cookie.

AuthenticationCertificates List<ApplicationGatewayBackendHttpSettingAuthenticationCertificate>

One or more authentication_certificate blocks.

ConnectionDraining ApplicationGatewayBackendHttpSettingConnectionDraining

A connection_draining block as defined below.

HostName string

Host header to be sent to the backend servers. Cannot be set if pick_host_name_from_backend_address is set to true.

Id string

The ID of the Rewrite Rule Set

Path string

The Path which should be used as a prefix for all HTTP requests.

PickHostNameFromBackendAddress bool

Whether host header should be picked from the host name of the backend server. Defaults to false.

ProbeId string

The ID of the associated Probe.

ProbeName string

The name of an associated HTTP Probe.

RequestTimeout int

The request timeout in seconds, which must be between 1 and 86400 seconds. Defaults to 30.

TrustedRootCertificateNames List<string>

A list of trusted_root_certificate names.

CookieBasedAffinity string

Is Cookie-Based Affinity enabled? Possible values are Enabled and Disabled.

Name string

The name of the Backend HTTP Settings Collection.

Port int

The port which should be used for this Backend HTTP Settings Collection.

Protocol string

The Protocol which should be used. Possible values are Http and Https.

AffinityCookieName string

The name of the affinity cookie.

AuthenticationCertificates []ApplicationGatewayBackendHttpSettingAuthenticationCertificate

One or more authentication_certificate blocks.

ConnectionDraining ApplicationGatewayBackendHttpSettingConnectionDraining

A connection_draining block as defined below.

HostName string

Host header to be sent to the backend servers. Cannot be set if pick_host_name_from_backend_address is set to true.

Id string

The ID of the Rewrite Rule Set

Path string

The Path which should be used as a prefix for all HTTP requests.

PickHostNameFromBackendAddress bool

Whether host header should be picked from the host name of the backend server. Defaults to false.

ProbeId string

The ID of the associated Probe.

ProbeName string

The name of an associated HTTP Probe.

RequestTimeout int

The request timeout in seconds, which must be between 1 and 86400 seconds. Defaults to 30.

TrustedRootCertificateNames []string

A list of trusted_root_certificate names.

cookieBasedAffinity String

Is Cookie-Based Affinity enabled? Possible values are Enabled and Disabled.

name String

The name of the Backend HTTP Settings Collection.

port Integer

The port which should be used for this Backend HTTP Settings Collection.

protocol String

The Protocol which should be used. Possible values are Http and Https.

affinityCookieName String

The name of the affinity cookie.

authenticationCertificates List<ApplicationGatewayBackendHttpSettingAuthenticationCertificate>

One or more authentication_certificate blocks.

connectionDraining ApplicationGatewayBackendHttpSettingConnectionDraining

A connection_draining block as defined below.

hostName String

Host header to be sent to the backend servers. Cannot be set if pick_host_name_from_backend_address is set to true.

id String

The ID of the Rewrite Rule Set

path String

The Path which should be used as a prefix for all HTTP requests.

pickHostNameFromBackendAddress Boolean

Whether host header should be picked from the host name of the backend server. Defaults to false.

probeId String

The ID of the associated Probe.

probeName String

The name of an associated HTTP Probe.

requestTimeout Integer

The request timeout in seconds, which must be between 1 and 86400 seconds. Defaults to 30.

trustedRootCertificateNames List<String>

A list of trusted_root_certificate names.

cookieBasedAffinity string

Is Cookie-Based Affinity enabled? Possible values are Enabled and Disabled.

name string

The name of the Backend HTTP Settings Collection.

port number

The port which should be used for this Backend HTTP Settings Collection.

protocol string

The Protocol which should be used. Possible values are Http and Https.

affinityCookieName string

The name of the affinity cookie.

authenticationCertificates ApplicationGatewayBackendHttpSettingAuthenticationCertificate[]

One or more authentication_certificate blocks.

connectionDraining ApplicationGatewayBackendHttpSettingConnectionDraining

A connection_draining block as defined below.

hostName string

Host header to be sent to the backend servers. Cannot be set if pick_host_name_from_backend_address is set to true.

id string

The ID of the Rewrite Rule Set

path string

The Path which should be used as a prefix for all HTTP requests.

pickHostNameFromBackendAddress boolean

Whether host header should be picked from the host name of the backend server. Defaults to false.

probeId string

The ID of the associated Probe.

probeName string

The name of an associated HTTP Probe.

requestTimeout number

The request timeout in seconds, which must be between 1 and 86400 seconds. Defaults to 30.

trustedRootCertificateNames string[]

A list of trusted_root_certificate names.

cookie_based_affinity str

Is Cookie-Based Affinity enabled? Possible values are Enabled and Disabled.

name str

The name of the Backend HTTP Settings Collection.

port int

The port which should be used for this Backend HTTP Settings Collection.

protocol str

The Protocol which should be used. Possible values are Http and Https.

affinity_cookie_name str

The name of the affinity cookie.

authentication_certificates Sequence[ApplicationGatewayBackendHttpSettingAuthenticationCertificate]

One or more authentication_certificate blocks.

connection_draining ApplicationGatewayBackendHttpSettingConnectionDraining

A connection_draining block as defined below.

host_name str

Host header to be sent to the backend servers. Cannot be set if pick_host_name_from_backend_address is set to true.

id str

The ID of the Rewrite Rule Set

path str

The Path which should be used as a prefix for all HTTP requests.

pick_host_name_from_backend_address bool

Whether host header should be picked from the host name of the backend server. Defaults to false.

probe_id str

The ID of the associated Probe.

probe_name str

The name of an associated HTTP Probe.

request_timeout int

The request timeout in seconds, which must be between 1 and 86400 seconds. Defaults to 30.

trusted_root_certificate_names Sequence[str]

A list of trusted_root_certificate names.

cookieBasedAffinity String

Is Cookie-Based Affinity enabled? Possible values are Enabled and Disabled.

name String

The name of the Backend HTTP Settings Collection.

port Number

The port which should be used for this Backend HTTP Settings Collection.

protocol String

The Protocol which should be used. Possible values are Http and Https.

affinityCookieName String

The name of the affinity cookie.

authenticationCertificates List<Property Map>

One or more authentication_certificate blocks.

connectionDraining Property Map

A connection_draining block as defined below.

hostName String

Host header to be sent to the backend servers. Cannot be set if pick_host_name_from_backend_address is set to true.

id String

The ID of the Rewrite Rule Set

path String

The Path which should be used as a prefix for all HTTP requests.

pickHostNameFromBackendAddress Boolean

Whether host header should be picked from the host name of the backend server. Defaults to false.

probeId String

The ID of the associated Probe.

probeName String

The name of an associated HTTP Probe.

requestTimeout Number

The request timeout in seconds, which must be between 1 and 86400 seconds. Defaults to 30.

trustedRootCertificateNames List<String>

A list of trusted_root_certificate names.

ApplicationGatewayBackendHttpSettingAuthenticationCertificate

Name string

The name of the Authentication Certificate.

Id string

The ID of the Rewrite Rule Set

Name string

The name of the Authentication Certificate.

Id string

The ID of the Rewrite Rule Set

name String

The name of the Authentication Certificate.

id String

The ID of the Rewrite Rule Set

name string

The name of the Authentication Certificate.

id string

The ID of the Rewrite Rule Set

name str

The name of the Authentication Certificate.

id str

The ID of the Rewrite Rule Set

name String

The name of the Authentication Certificate.

id String

The ID of the Rewrite Rule Set

ApplicationGatewayBackendHttpSettingConnectionDraining

DrainTimeoutSec int

The number of seconds connection draining is active. Acceptable values are from 1 second to 3600 seconds.

Enabled bool

If connection draining is enabled or not.

DrainTimeoutSec int

The number of seconds connection draining is active. Acceptable values are from 1 second to 3600 seconds.

Enabled bool

If connection draining is enabled or not.

drainTimeoutSec Integer

The number of seconds connection draining is active. Acceptable values are from 1 second to 3600 seconds.

enabled Boolean

If connection draining is enabled or not.

drainTimeoutSec number

The number of seconds connection draining is active. Acceptable values are from 1 second to 3600 seconds.

enabled boolean

If connection draining is enabled or not.

drain_timeout_sec int

The number of seconds connection draining is active. Acceptable values are from 1 second to 3600 seconds.

enabled bool

If connection draining is enabled or not.

drainTimeoutSec Number

The number of seconds connection draining is active. Acceptable values are from 1 second to 3600 seconds.

enabled Boolean

If connection draining is enabled or not.

ApplicationGatewayCustomErrorConfiguration

CustomErrorPageUrl string

Error page URL of the application gateway customer error.

StatusCode string

Status code of the application gateway customer error. Possible values are HttpStatus403 and HttpStatus502

Id string

The ID of the Rewrite Rule Set

CustomErrorPageUrl string

Error page URL of the application gateway customer error.

StatusCode string

Status code of the application gateway customer error. Possible values are HttpStatus403 and HttpStatus502

Id string

The ID of the Rewrite Rule Set

customErrorPageUrl String

Error page URL of the application gateway customer error.

statusCode String

Status code of the application gateway customer error. Possible values are HttpStatus403 and HttpStatus502

id String

The ID of the Rewrite Rule Set

customErrorPageUrl string

Error page URL of the application gateway customer error.

statusCode string

Status code of the application gateway customer error. Possible values are HttpStatus403 and HttpStatus502

id string

The ID of the Rewrite Rule Set

custom_error_page_url str

Error page URL of the application gateway customer error.

status_code str

Status code of the application gateway customer error. Possible values are HttpStatus403 and HttpStatus502

id str

The ID of the Rewrite Rule Set

customErrorPageUrl String

Error page URL of the application gateway customer error.

statusCode String

Status code of the application gateway customer error. Possible values are HttpStatus403 and HttpStatus502

id String

The ID of the Rewrite Rule Set

ApplicationGatewayFrontendIpConfiguration

Name string

The name of the Frontend IP Configuration.

Id string

The ID of the Rewrite Rule Set

PrivateIpAddress string

The Private IP Address to use for the Application Gateway.

PrivateIpAddressAllocation string

The Allocation Method for the Private IP Address. Possible values are Dynamic and Static.

PrivateLinkConfigurationId string

The ID of the associated private link configuration.

PrivateLinkConfigurationName string

The name of the private link configuration to use for this frontend IP configuration.

PublicIpAddressId string

The ID of a Public IP Address which the Application Gateway should use. The allocation method for the Public IP Address depends on the sku of this Application Gateway. Please refer to the Azure documentation for public IP addresses for details.

SubnetId string

The ID of the Subnet.

Name string

The name of the Frontend IP Configuration.

Id string

The ID of the Rewrite Rule Set

PrivateIpAddress string

The Private IP Address to use for the Application Gateway.

PrivateIpAddressAllocation string

The Allocation Method for the Private IP Address. Possible values are Dynamic and Static.

PrivateLinkConfigurationId string

The ID of the associated private link configuration.

PrivateLinkConfigurationName string

The name of the private link configuration to use for this frontend IP configuration.

PublicIpAddressId string

The ID of a Public IP Address which the Application Gateway should use. The allocation method for the Public IP Address depends on the sku of this Application Gateway. Please refer to the Azure documentation for public IP addresses for details.

SubnetId string

The ID of the Subnet.

name String

The name of the Frontend IP Configuration.

id String

The ID of the Rewrite Rule Set

privateIpAddress String

The Private IP Address to use for the Application Gateway.

privateIpAddressAllocation String

The Allocation Method for the Private IP Address. Possible values are Dynamic and Static.

privateLinkConfigurationId String

The ID of the associated private link configuration.

privateLinkConfigurationName String

The name of the private link configuration to use for this frontend IP configuration.

publicIpAddressId String

The ID of a Public IP Address which the Application Gateway should use. The allocation method for the Public IP Address depends on the sku of this Application Gateway. Please refer to the Azure documentation for public IP addresses for details.

subnetId String

The ID of the Subnet.

name string

The name of the Frontend IP Configuration.

id string

The ID of the Rewrite Rule Set

privateIpAddress string

The Private IP Address to use for the Application Gateway.

privateIpAddressAllocation string

The Allocation Method for the Private IP Address. Possible values are Dynamic and Static.

privateLinkConfigurationId string

The ID of the associated private link configuration.

privateLinkConfigurationName string

The name of the private link configuration to use for this frontend IP configuration.

publicIpAddressId string

The ID of a Public IP Address which the Application Gateway should use. The allocation method for the Public IP Address depends on the sku of this Application Gateway. Please refer to the Azure documentation for public IP addresses for details.

subnetId string

The ID of the Subnet.

name str

The name of the Frontend IP Configuration.

id str

The ID of the Rewrite Rule Set

private_ip_address str

The Private IP Address to use for the Application Gateway.

private_ip_address_allocation str

The Allocation Method for the Private IP Address. Possible values are Dynamic and Static.

private_link_configuration_id str

The ID of the associated private link configuration.

private_link_configuration_name str

The name of the private link configuration to use for this frontend IP configuration.

public_ip_address_id str

The ID of a Public IP Address which the Application Gateway should use. The allocation method for the Public IP Address depends on the sku of this Application Gateway. Please refer to the Azure documentation for public IP addresses for details.

subnet_id str

The ID of the Subnet.

name String

The name of the Frontend IP Configuration.

id String

The ID of the Rewrite Rule Set

privateIpAddress String

The Private IP Address to use for the Application Gateway.

privateIpAddressAllocation String

The Allocation Method for the Private IP Address. Possible values are Dynamic and Static.

privateLinkConfigurationId String

The ID of the associated private link configuration.

privateLinkConfigurationName String

The name of the private link configuration to use for this frontend IP configuration.

publicIpAddressId String

The ID of a Public IP Address which the Application Gateway should use. The allocation method for the Public IP Address depends on the sku of this Application Gateway. Please refer to the Azure documentation for public IP addresses for details.

subnetId String

The ID of the Subnet.

ApplicationGatewayFrontendPort

Name string

The name of the Frontend Port.

Port int

The port used for this Frontend Port.

Id string

The ID of the Rewrite Rule Set

Name string

The name of the Frontend Port.

Port int

The port used for this Frontend Port.

Id string

The ID of the Rewrite Rule Set

name String

The name of the Frontend Port.

port Integer

The port used for this Frontend Port.

id String

The ID of the Rewrite Rule Set

name string

The name of the Frontend Port.

port number

The port used for this Frontend Port.

id string

The ID of the Rewrite Rule Set

name str

The name of the Frontend Port.

port int

The port used for this Frontend Port.

id str

The ID of the Rewrite Rule Set

name String

The name of the Frontend Port.

port Number

The port used for this Frontend Port.

id String

The ID of the Rewrite Rule Set

ApplicationGatewayGatewayIpConfiguration

Name string

The Name of this Gateway IP Configuration.

SubnetId string

The ID of the Subnet which the Application Gateway should be connected to.

Id string

The ID of the Rewrite Rule Set

Name string

The Name of this Gateway IP Configuration.

SubnetId string

The ID of the Subnet which the Application Gateway should be connected to.

Id string

The ID of the Rewrite Rule Set

name String

The Name of this Gateway IP Configuration.

subnetId String

The ID of the Subnet which the Application Gateway should be connected to.

id String

The ID of the Rewrite Rule Set

name string

The Name of this Gateway IP Configuration.

subnetId string

The ID of the Subnet which the Application Gateway should be connected to.

id string

The ID of the Rewrite Rule Set

name str

The Name of this Gateway IP Configuration.

subnet_id str

The ID of the Subnet which the Application Gateway should be connected to.

id str

The ID of the Rewrite Rule Set

name String

The Name of this Gateway IP Configuration.

subnetId String

The ID of the Subnet which the Application Gateway should be connected to.

id String

The ID of the Rewrite Rule Set

ApplicationGatewayHttpListener

FrontendIpConfigurationName string

The Name of the Frontend IP Configuration used for this HTTP Listener.

FrontendPortName string

The Name of the Frontend Port use for this HTTP Listener.

Name string

The Name of the HTTP Listener.

Protocol string

The Protocol to use for this HTTP Listener. Possible values are Http and Https.

CustomErrorConfigurations List<ApplicationGatewayHttpListenerCustomErrorConfiguration>

One or more custom_error_configuration blocks as defined below.

FirewallPolicyId string

The ID of the Web Application Firewall Policy which should be used for this HTTP Listener.

FrontendIpConfigurationId string

The ID of the associated Frontend Configuration.

FrontendPortId string

The ID of the associated Frontend Port.

HostName string

The Hostname which should be used for this HTTP Listener. Setting this value changes Listener Type to 'Multi site'.

HostNames List<string>

A list of Hostname(s) should be used for this HTTP Listener. It allows special wildcard characters.

Id string

The ID of the Rewrite Rule Set

RequireSni bool

Should Server Name Indication be Required? Defaults to false.

SslCertificateId string

The ID of the associated SSL Certificate.

SslCertificateName string

The name of the associated SSL Certificate which should be used for this HTTP Listener.

SslProfileId string

The ID of the associated SSL Certificate.

SslProfileName string

The name of the associated SSL Profile which should be used for this HTTP Listener.

FrontendIpConfigurationName string

The Name of the Frontend IP Configuration used for this HTTP Listener.

FrontendPortName string

The Name of the Frontend Port use for this HTTP Listener.

Name string

The Name of the HTTP Listener.

Protocol string

The Protocol to use for this HTTP Listener. Possible values are Http and Https.

CustomErrorConfigurations []ApplicationGatewayHttpListenerCustomErrorConfiguration

One or more custom_error_configuration blocks as defined below.

FirewallPolicyId string

The ID of the Web Application Firewall Policy which should be used for this HTTP Listener.

FrontendIpConfigurationId string

The ID of the associated Frontend Configuration.

FrontendPortId string

The ID of the associated Frontend Port.

HostName string

The Hostname which should be used for this HTTP Listener. Setting this value changes Listener Type to 'Multi site'.

HostNames []string

A list of Hostname(s) should be used for this HTTP Listener. It allows special wildcard characters.

Id string

The ID of the Rewrite Rule Set

RequireSni bool

Should Server Name Indication be Required? Defaults to false.

SslCertificateId string

The ID of the associated SSL Certificate.

SslCertificateName string

The name of the associated SSL Certificate which should be used for this HTTP Listener.

SslProfileId string

The ID of the associated SSL Certificate.

SslProfileName string

The name of the associated SSL Profile which should be used for this HTTP Listener.

frontendIpConfigurationName String

The Name of the Frontend IP Configuration used for this HTTP Listener.

frontendPortName String

The Name of the Frontend Port use for this HTTP Listener.

name String

The Name of the HTTP Listener.

protocol String

The Protocol to use for this HTTP Listener. Possible values are Http and Https.

customErrorConfigurations List<ApplicationGatewayHttpListenerCustomErrorConfiguration>

One or more custom_error_configuration blocks as defined below.

firewallPolicyId String

The ID of the Web Application Firewall Policy which should be used for this HTTP Listener.

frontendIpConfigurationId String

The ID of the associated Frontend Configuration.

frontendPortId String

The ID of the associated Frontend Port.

hostName String

The Hostname which should be used for this HTTP Listener. Setting this value changes Listener Type to 'Multi site'.

hostNames List<String>

A list of Hostname(s) should be used for this HTTP Listener. It allows special wildcard characters.

id String

The ID of the Rewrite Rule Set

requireSni Boolean

Should Server Name Indication be Required? Defaults to false.

sslCertificateId String

The ID of the associated SSL Certificate.

sslCertificateName String

The name of the associated SSL Certificate which should be used for this HTTP Listener.

sslProfileId String

The ID of the associated SSL Certificate.

sslProfileName String

The name of the associated SSL Profile which should be used for this HTTP Listener.

frontendIpConfigurationName string

The Name of the Frontend IP Configuration used for this HTTP Listener.

frontendPortName string

The Name of the Frontend Port use for this HTTP Listener.

name string

The Name of the HTTP Listener.

protocol string

The Protocol to use for this HTTP Listener. Possible values are Http and Https.

customErrorConfigurations ApplicationGatewayHttpListenerCustomErrorConfiguration[]

One or more custom_error_configuration blocks as defined below.

firewallPolicyId string

The ID of the Web Application Firewall Policy which should be used for this HTTP Listener.

frontendIpConfigurationId string

The ID of the associated Frontend Configuration.

frontendPortId string

The ID of the associated Frontend Port.

hostName string

The Hostname which should be used for this HTTP Listener. Setting this value changes Listener Type to 'Multi site'.

hostNames string[]

A list of Hostname(s) should be used for this HTTP Listener. It allows special wildcard characters.

id string

The ID of the Rewrite Rule Set

requireSni boolean

Should Server Name Indication be Required? Defaults to false.

sslCertificateId string

The ID of the associated SSL Certificate.

sslCertificateName string

The name of the associated SSL Certificate which should be used for this HTTP Listener.

sslProfileId string

The ID of the associated SSL Certificate.

sslProfileName string

The name of the associated SSL Profile which should be used for this HTTP Listener.

frontend_ip_configuration_name str

The Name of the Frontend IP Configuration used for this HTTP Listener.

frontend_port_name str

The Name of the Frontend Port use for this HTTP Listener.

name str

The Name of the HTTP Listener.

protocol str

The Protocol to use for this HTTP Listener. Possible values are Http and Https.

custom_error_configurations Sequence[ApplicationGatewayHttpListenerCustomErrorConfiguration]

One or more custom_error_configuration blocks as defined below.

firewall_policy_id str

The ID of the Web Application Firewall Policy which should be used for this HTTP Listener.

frontend_ip_configuration_id str

The ID of the associated Frontend Configuration.

frontend_port_id str

The ID of the associated Frontend Port.

host_name str

The Hostname which should be used for this HTTP Listener. Setting this value changes Listener Type to 'Multi site'.

host_names Sequence[str]

A list of Hostname(s) should be used for this HTTP Listener. It allows special wildcard characters.

id str

The ID of the Rewrite Rule Set

require_sni bool

Should Server Name Indication be Required? Defaults to false.

ssl_certificate_id str

The ID of the associated SSL Certificate.

ssl_certificate_name str

The name of the associated SSL Certificate which should be used for this HTTP Listener.

ssl_profile_id str

The ID of the associated SSL Certificate.

ssl_profile_name str

The name of the associated SSL Profile which should be used for this HTTP Listener.

frontendIpConfigurationName String

The Name of the Frontend IP Configuration used for this HTTP Listener.

frontendPortName String

The Name of the Frontend Port use for this HTTP Listener.

name String

The Name of the HTTP Listener.

protocol String

The Protocol to use for this HTTP Listener. Possible values are Http and Https.

customErrorConfigurations List<Property Map>

One or more custom_error_configuration blocks as defined below.

firewallPolicyId String

The ID of the Web Application Firewall Policy which should be used for this HTTP Listener.

frontendIpConfigurationId String

The ID of the associated Frontend Configuration.

frontendPortId String

The ID of the associated Frontend Port.

hostName String

The Hostname which should be used for this HTTP Listener. Setting this value changes Listener Type to 'Multi site'.

hostNames List<String>

A list of Hostname(s) should be used for this HTTP Listener. It allows special wildcard characters.

id String

The ID of the Rewrite Rule Set

requireSni Boolean

Should Server Name Indication be Required? Defaults to false.

sslCertificateId String

The ID of the associated SSL Certificate.

sslCertificateName String

The name of the associated SSL Certificate which should be used for this HTTP Listener.

sslProfileId String

The ID of the associated SSL Certificate.

sslProfileName String

The name of the associated SSL Profile which should be used for this HTTP Listener.

ApplicationGatewayHttpListenerCustomErrorConfiguration

CustomErrorPageUrl string

Error page URL of the application gateway customer error.

StatusCode string

Status code of the application gateway customer error. Possible values are HttpStatus403 and HttpStatus502

Id string

The ID of the Rewrite Rule Set

CustomErrorPageUrl string

Error page URL of the application gateway customer error.

StatusCode string

Status code of the application gateway customer error. Possible values are HttpStatus403 and HttpStatus502

Id string

The ID of the Rewrite Rule Set

customErrorPageUrl String

Error page URL of the application gateway customer error.

statusCode String

Status code of the application gateway customer error. Possible values are HttpStatus403 and HttpStatus502

id String

The ID of the Rewrite Rule Set

customErrorPageUrl string

Error page URL of the application gateway customer error.

statusCode string

Status code of the application gateway customer error. Possible values are HttpStatus403 and HttpStatus502

id string

The ID of the Rewrite Rule Set

custom_error_page_url str

Error page URL of the application gateway customer error.

status_code str

Status code of the application gateway customer error. Possible values are HttpStatus403 and HttpStatus502

id str

The ID of the Rewrite Rule Set

customErrorPageUrl String

Error page URL of the application gateway customer error.

statusCode String

Status code of the application gateway customer error. Possible values are HttpStatus403 and HttpStatus502

id String

The ID of the Rewrite Rule Set

ApplicationGatewayIdentity

IdentityIds List<string>

Specifies a list of User Assigned Managed Identity IDs to be assigned to this Application Gateway.

Type string

Specifies the type of Managed Service Identity that should be configured on this Application Gateway. Only possible value is UserAssigned.

IdentityIds []string

Specifies a list of User Assigned Managed Identity IDs to be assigned to this Application Gateway.

Type string

Specifies the type of Managed Service Identity that should be configured on this Application Gateway. Only possible value is UserAssigned.

identityIds List<String>

Specifies a list of User Assigned Managed Identity IDs to be assigned to this Application Gateway.

type String

Specifies the type of Managed Service Identity that should be configured on this Application Gateway. Only possible value is UserAssigned.

identityIds string[]

Specifies a list of User Assigned Managed Identity IDs to be assigned to this Application Gateway.

type string

Specifies the type of Managed Service Identity that should be configured on this Application Gateway. Only possible value is UserAssigned.

identity_ids Sequence[str]

Specifies a list of User Assigned Managed Identity IDs to be assigned to this Application Gateway.

type str

Specifies the type of Managed Service Identity that should be configured on this Application Gateway. Only possible value is UserAssigned.

identityIds List<String>

Specifies a list of User Assigned Managed Identity IDs to be assigned to this Application Gateway.

type String

Specifies the type of Managed Service Identity that should be configured on this Application Gateway. Only possible value is UserAssigned.

ApplicationGatewayPrivateEndpointConnection

Id string

The ID of the Rewrite Rule Set

Name string

The name of the Application Gateway. Changing this forces a new resource to be created.

Id string

The ID of the Rewrite Rule Set

Name string

The name of the Application Gateway. Changing this forces a new resource to be created.

id String

The ID of the Rewrite Rule Set

name String

The name of the Application Gateway. Changing this forces a new resource to be created.

id string

The ID of the Rewrite Rule Set

name string

The name of the Application Gateway. Changing this forces a new resource to be created.

id str

The ID of the Rewrite Rule Set

name str

The name of the Application Gateway. Changing this forces a new resource to be created.

id String

The ID of the Rewrite Rule Set

name String

The name of the Application Gateway. Changing this forces a new resource to be created.

ApplicationGatewayPrivateLinkConfiguration

IpConfigurations List<ApplicationGatewayPrivateLinkConfigurationIpConfiguration>

One or more ip_configuration blocks as defined below.

Name string

The name of the private link configuration.

Id string

The ID of the Rewrite Rule Set

IpConfigurations []ApplicationGatewayPrivateLinkConfigurationIpConfiguration

One or more ip_configuration blocks as defined below.

Name string

The name of the private link configuration.

Id string

The ID of the Rewrite Rule Set

ipConfigurations List<ApplicationGatewayPrivateLinkConfigurationIpConfiguration>

One or more ip_configuration blocks as defined below.

name String

The name of the private link configuration.

id String

The ID of the Rewrite Rule Set

ipConfigurations ApplicationGatewayPrivateLinkConfigurationIpConfiguration[]

One or more ip_configuration blocks as defined below.

name string

The name of the private link configuration.

id string

The ID of the Rewrite Rule Set

ip_configurations Sequence[ApplicationGatewayPrivateLinkConfigurationIpConfiguration]

One or more ip_configuration blocks as defined below.

name str

The name of the private link configuration.

id str

The ID of the Rewrite Rule Set

ipConfigurations List<Property Map>

One or more ip_configuration blocks as defined below.

name String

The name of the private link configuration.

id String

The ID of the Rewrite Rule Set

ApplicationGatewayPrivateLinkConfigurationIpConfiguration

Name string

The name of the IP configuration.

Primary bool

Is this the Primary IP Configuration?

PrivateIpAddressAllocation string

The allocation method used for the Private IP Address. Possible values are Dynamic and Static.

SubnetId string

The ID of the subnet the private link configuration should connect to.

PrivateIpAddress string

The Static IP Address which should be used.

Name string

The name of the IP configuration.

Primary bool

Is this the Primary IP Configuration?

PrivateIpAddressAllocation string

The allocation method used for the Private IP Address. Possible values are Dynamic and Static.

SubnetId string

The ID of the subnet the private link configuration should connect to.

PrivateIpAddress string

The Static IP Address which should be used.

name String

The name of the IP configuration.

primary Boolean

Is this the Primary IP Configuration?

privateIpAddressAllocation String

The allocation method used for the Private IP Address. Possible values are Dynamic and Static.

subnetId String

The ID of the subnet the private link configuration should connect to.

privateIpAddress String

The Static IP Address which should be used.

name string

The name of the IP configuration.

primary boolean

Is this the Primary IP Configuration?

privateIpAddressAllocation string

The allocation method used for the Private IP Address. Possible values are Dynamic and Static.

subnetId string

The ID of the subnet the private link configuration should connect to.

privateIpAddress string

The Static IP Address which should be used.

name str

The name of the IP configuration.

primary bool

Is this the Primary IP Configuration?

private_ip_address_allocation str

The allocation method used for the Private IP Address. Possible values are Dynamic and Static.

subnet_id str

The ID of the subnet the private link configuration should connect to.

private_ip_address str

The Static IP Address which should be used.

name String

The name of the IP configuration.

primary Boolean

Is this the Primary IP Configuration?

privateIpAddressAllocation String

The allocation method used for the Private IP Address. Possible values are Dynamic and Static.

subnetId String

The ID of the subnet the private link configuration should connect to.

privateIpAddress String

The Static IP Address which should be used.

ApplicationGatewayProbe

Interval int

The Interval between two consecutive probes in seconds. Possible values range from 1 second to a maximum of 86,400 seconds.

Name string

The Name of the Probe.

Path string

The Path used for this Probe.

Protocol string

The Protocol used for this Probe. Possible values are Http and Https.

Timeout int

The Timeout used for this Probe, which indicates when a probe becomes unhealthy. Possible values range from 1 second to a maximum of 86,400 seconds.

UnhealthyThreshold int

The Unhealthy Threshold for this Probe, which indicates the amount of retries which should be attempted before a node is deemed unhealthy. Possible values are from 1 to 20.

Host string

The Hostname used for this Probe. If the Application Gateway is configured for a single site, by default the Host name should be specified as ‘127.0.0.1’, unless otherwise configured in custom probe. Cannot be set if pick_host_name_from_backend_http_settings is set to true.

Id string

The ID of the Rewrite Rule Set

Match ApplicationGatewayProbeMatch

A match block as defined above.

MinimumServers int

The minimum number of servers that are always marked as healthy. Defaults to 0.

PickHostNameFromBackendHttpSettings bool

Whether the host header should be picked from the backend HTTP settings. Defaults to false.

Port int

Custom port which will be used for probing the backend servers. The valid value ranges from 1 to 65535. In case not set, port from HTTP settings will be used. This property is valid for Standard_v2 and WAF_v2 only.

Interval int

The Interval between two consecutive probes in seconds. Possible values range from 1 second to a maximum of 86,400 seconds.

Name string

The Name of the Probe.

Path string

The Path used for this Probe.

Protocol string

The Protocol used for this Probe. Possible values are Http and Https.

Timeout int

The Timeout used for this Probe, which indicates when a probe becomes unhealthy. Possible values range from 1 second to a maximum of 86,400 seconds.

UnhealthyThreshold int

The Unhealthy Threshold for this Probe, which indicates the amount of retries which should be attempted before a node is deemed unhealthy. Possible values are from 1 to 20.

Host string

The Hostname used for this Probe. If the Application Gateway is configured for a single site, by default the Host name should be specified as ‘127.0.0.1’, unless otherwise configured in custom probe. Cannot be set if pick_host_name_from_backend_http_settings is set to true.

Id string

The ID of the Rewrite Rule Set

Match ApplicationGatewayProbeMatch

A match block as defined above.

MinimumServers int

The minimum number of servers that are always marked as healthy. Defaults to 0.

PickHostNameFromBackendHttpSettings bool

Whether the host header should be picked from the backend HTTP settings. Defaults to false.

Port int

Custom port which will be used for probing the backend servers. The valid value ranges from 1 to 65535. In case not set, port from HTTP settings will be used. This property is valid for Standard_v2 and WAF_v2 only.

interval Integer

The Interval between two consecutive probes in seconds. Possible values range from 1 second to a maximum of 86,400 seconds.

name String

The Name of the Probe.

path String

The Path used for this Probe.

protocol String

The Protocol used for this Probe. Possible values are Http and Https.

timeout Integer

The Timeout used for this Probe, which indicates when a probe becomes unhealthy. Possible values range from 1 second to a maximum of 86,400 seconds.

unhealthyThreshold Integer

The Unhealthy Threshold for this Probe, which indicates the amount of retries which should be attempted before a node is deemed unhealthy. Possible values are from 1 to 20.

host String

The Hostname used for this Probe. If the Application Gateway is configured for a single site, by default the Host name should be specified as ‘127.0.0.1’, unless otherwise configured in custom probe. Cannot be set if pick_host_name_from_backend_http_settings is set to true.

id String

The ID of the Rewrite Rule Set

match ApplicationGatewayProbeMatch

A match block as defined above.

minimumServers Integer

The minimum number of servers that are always marked as healthy. Defaults to 0.

pickHostNameFromBackendHttpSettings Boolean

Whether the host header should be picked from the backend HTTP settings. Defaults to false.

port Integer

Custom port which will be used for probing the backend servers. The valid value ranges from 1 to 65535. In case not set, port from HTTP settings will be used. This property is valid for Standard_v2 and WAF_v2 only.

interval number

The Interval between two consecutive probes in seconds. Possible values range from 1 second to a maximum of 86,400 seconds.

name string

The Name of the Probe.

path string

The Path used for this Probe.

protocol string

The Protocol used for this Probe. Possible values are Http and Https.

timeout number

The Timeout used for this Probe, which indicates when a probe becomes unhealthy. Possible values range from 1 second to a maximum of 86,400 seconds.

unhealthyThreshold number

The Unhealthy Threshold for this Probe, which indicates the amount of retries which should be attempted before a node is deemed unhealthy. Possible values are from 1 to 20.

host string

The Hostname used for this Probe. If the Application Gateway is configured for a single site, by default the Host name should be specified as ‘127.0.0.1’, unless otherwise configured in custom probe. Cannot be set if pick_host_name_from_backend_http_settings is set to true.

id string

The ID of the Rewrite Rule Set

match ApplicationGatewayProbeMatch

A match block as defined above.

minimumServers number

The minimum number of servers that are always marked as healthy. Defaults to 0.

pickHostNameFromBackendHttpSettings boolean

Whether the host header should be picked from the backend HTTP settings. Defaults to false.

port number

Custom port which will be used for probing the backend servers. The valid value ranges from 1 to 65535. In case not set, port from HTTP settings will be used. This property is valid for Standard_v2 and WAF_v2 only.

interval int

The Interval between two consecutive probes in seconds. Possible values range from 1 second to a maximum of 86,400 seconds.

name str

The Name of the Probe.

path str

The Path used for this Probe.

protocol str

The Protocol used for this Probe. Possible values are Http and Https.

timeout int

The Timeout used for this Probe, which indicates when a probe becomes unhealthy. Possible values range from 1 second to a maximum of 86,400 seconds.

unhealthy_threshold int

The Unhealthy Threshold for this Probe, which indicates the amount of retries which should be attempted before a node is deemed unhealthy. Possible values are from 1 to 20.

host str

The Hostname used for this Probe. If the Application Gateway is configured for a single site, by default the Host name should be specified as ‘127.0.0.1’, unless otherwise configured in custom probe. Cannot be set if pick_host_name_from_backend_http_settings is set to true.

id str

The ID of the Rewrite Rule Set

match ApplicationGatewayProbeMatch

A match block as defined above.

minimum_servers int

The minimum number of servers that are always marked as healthy. Defaults to 0.

pick_host_name_from_backend_http_settings bool

Whether the host header should be picked from the backend HTTP settings. Defaults to false.

port int

Custom port which will be used for probing the backend servers. The valid value ranges from 1 to 65535. In case not set, port from HTTP settings will be used. This property is valid for Standard_v2 and WAF_v2 only.

interval Number

The Interval between two consecutive probes in seconds. Possible values range from 1 second to a maximum of 86,400 seconds.

name String

The Name of the Probe.

path String

The Path used for this Probe.

protocol String

The Protocol used for this Probe. Possible values are Http and Https.

timeout Number

The Timeout used for this Probe, which indicates when a probe becomes unhealthy. Possible values range from 1 second to a maximum of 86,400 seconds.

unhealthyThreshold Number

The Unhealthy Threshold for this Probe, which indicates the amount of retries which should be attempted before a node is deemed unhealthy. Possible values are from 1 to 20.

host String

The Hostname used for this Probe. If the Application Gateway is configured for a single site, by default the Host name should be specified as ‘127.0.0.1’, unless otherwise configured in custom probe. Cannot be set if pick_host_name_from_backend_http_settings is set to true.

id String

The ID of the Rewrite Rule Set

match Property Map

A match block as defined above.

minimumServers Number

The minimum number of servers that are always marked as healthy. Defaults to 0.

pickHostNameFromBackendHttpSettings Boolean

Whether the host header should be picked from the backend HTTP settings. Defaults to false.

port Number

Custom port which will be used for probing the backend servers. The valid value ranges from 1 to 65535. In case not set, port from HTTP settings will be used. This property is valid for Standard_v2 and WAF_v2 only.

ApplicationGatewayProbeMatch

Body string

A snippet from the Response Body which must be present in the Response.

StatusCodes List<string>

A list of allowed status codes for this Health Probe.

Body string

A snippet from the Response Body which must be present in the Response.

StatusCodes []string

A list of allowed status codes for this Health Probe.

body String

A snippet from the Response Body which must be present in the Response.

statusCodes List<String>

A list of allowed status codes for this Health Probe.

body string

A snippet from the Response Body which must be present in the Response.

statusCodes string[]

A list of allowed status codes for this Health Probe.

body str

A snippet from the Response Body which must be present in the Response.

status_codes Sequence[str]

A list of allowed status codes for this Health Probe.

body String

A snippet from the Response Body which must be present in the Response.

statusCodes List<String>

A list of allowed status codes for this Health Probe.

ApplicationGatewayRedirectConfiguration

Name string

Unique name of the redirect configuration block

RedirectType string

The type of redirect. Possible values are Permanent, Temporary, Found and SeeOther

Id string

The ID of the Rewrite Rule Set

IncludePath bool

Whether or not to include the path in the redirected Url. Defaults to false

IncludeQueryString bool

Whether or not to include the query string in the redirected Url. Default to false

TargetListenerId string
TargetListenerName string

The name of the listener to redirect to. Cannot be set if target_url is set.

TargetUrl string

The Url to redirect the request to. Cannot be set if target_listener_name is set.

Name string

Unique name of the redirect configuration block

RedirectType string

The type of redirect. Possible values are Permanent, Temporary, Found and SeeOther

Id string

The ID of the Rewrite Rule Set

IncludePath bool

Whether or not to include the path in the redirected Url. Defaults to false

IncludeQueryString bool

Whether or not to include the query string in the redirected Url. Default to false

TargetListenerId string
TargetListenerName string

The name of the listener to redirect to. Cannot be set if target_url is set.

TargetUrl string

The Url to redirect the request to. Cannot be set if target_listener_name is set.

name String

Unique name of the redirect configuration block

redirectType String

The type of redirect. Possible values are Permanent, Temporary, Found and SeeOther

id String

The ID of the Rewrite Rule Set

includePath Boolean

Whether or not to include the path in the redirected Url. Defaults to false

includeQueryString Boolean

Whether or not to include the query string in the redirected Url. Default to false

targetListenerId String
targetListenerName String

The name of the listener to redirect to. Cannot be set if target_url is set.

targetUrl String

The Url to redirect the request to. Cannot be set if target_listener_name is set.

name string

Unique name of the redirect configuration block

redirectType string

The type of redirect. Possible values are Permanent, Temporary, Found and SeeOther

id string

The ID of the Rewrite Rule Set

includePath boolean

Whether or not to include the path in the redirected Url. Defaults to false

includeQueryString boolean

Whether or not to include the query string in the redirected Url. Default to false

targetListenerId string
targetListenerName string

The name of the listener to redirect to. Cannot be set if target_url is set.

targetUrl string

The Url to redirect the request to. Cannot be set if target_listener_name is set.

name str

Unique name of the redirect configuration block

redirect_type str

The type of redirect. Possible values are Permanent, Temporary, Found and SeeOther

id str

The ID of the Rewrite Rule Set

include_path bool

Whether or not to include the path in the redirected Url. Defaults to false

include_query_string bool

Whether or not to include the query string in the redirected Url. Default to false

target_listener_id str
target_listener_name str

The name of the listener to redirect to. Cannot be set if target_url is set.

target_url str

The Url to redirect the request to. Cannot be set if target_listener_name is set.

name String

Unique name of the redirect configuration block

redirectType String

The type of redirect. Possible values are Permanent, Temporary, Found and SeeOther

id String

The ID of the Rewrite Rule Set

includePath Boolean

Whether or not to include the path in the redirected Url. Defaults to false

includeQueryString Boolean

Whether or not to include the query string in the redirected Url. Default to false

targetListenerId String
targetListenerName String

The name of the listener to redirect to. Cannot be set if target_url is set.

targetUrl String

The Url to redirect the request to. Cannot be set if target_listener_name is set.

ApplicationGatewayRequestRoutingRule

HttpListenerName string

The Name of the HTTP Listener which should be used for this Routing Rule.

Name string

The Name of this Request Routing Rule.

RuleType string

The Type of Routing that should be used for this Rule. Possible values are Basic and PathBasedRouting.

BackendAddressPoolId string

The ID of the associated Backend Address Pool.

BackendAddressPoolName string

The Name of the Backend Address Pool which should be used for this Routing Rule. Cannot be set if redirect_configuration_name is set.

BackendHttpSettingsId string

The ID of the associated Backend HTTP Settings Configuration.

BackendHttpSettingsName string

The Name of the Backend HTTP Settings Collection which should be used for this Routing Rule. Cannot be set if redirect_configuration_name is set.

HttpListenerId string

The ID of the associated HTTP Listener.

Id string

The ID of the Rewrite Rule Set

Priority int

Rule evaluation order can be dictated by specifying an integer value from 1 to 20000 with 1 being the highest priority and 20000 being the lowest priority.

RedirectConfigurationId string

The ID of the associated Redirect Configuration.

RedirectConfigurationName string

The Name of the Redirect Configuration which should be used for this Routing Rule. Cannot be set if either backend_address_pool_name or backend_http_settings_name is set.

RewriteRuleSetId string

The ID of the associated Rewrite Rule Set.

RewriteRuleSetName string

The Name of the Rewrite Rule Set which should be used for this Routing Rule. Only valid for v2 SKUs.

UrlPathMapId string

The ID of the associated URL Path Map.

UrlPathMapName string

The Name of the URL Path Map which should be associated with this Routing Rule.

HttpListenerName string

The Name of the HTTP Listener which should be used for this Routing Rule.

Name string

The Name of this Request Routing Rule.

RuleType string

The Type of Routing that should be used for this Rule. Possible values are Basic and PathBasedRouting.

BackendAddressPoolId string

The ID of the associated Backend Address Pool.

BackendAddressPoolName string

The Name of the Backend Address Pool which should be used for this Routing Rule. Cannot be set if redirect_configuration_name is set.

BackendHttpSettingsId string

The ID of the associated Backend HTTP Settings Configuration.

BackendHttpSettingsName string

The Name of the Backend HTTP Settings Collection which should be used for this Routing Rule. Cannot be set if redirect_configuration_name is set.

HttpListenerId string

The ID of the associated HTTP Listener.

Id string

The ID of the Rewrite Rule Set

Priority int

Rule evaluation order can be dictated by specifying an integer value from 1 to 20000 with 1 being the highest priority and 20000 being the lowest priority.

RedirectConfigurationId string

The ID of the associated Redirect Configuration.

RedirectConfigurationName string

The Name of the Redirect Configuration which should be used for this Routing Rule. Cannot be set if either backend_address_pool_name or backend_http_settings_name is set.

RewriteRuleSetId string

The ID of the associated Rewrite Rule Set.

RewriteRuleSetName string

The Name of the Rewrite Rule Set which should be used for this Routing Rule. Only valid for v2 SKUs.

UrlPathMapId string

The ID of the associated URL Path Map.

UrlPathMapName string

The Name of the URL Path Map which should be associated with this Routing Rule.

httpListenerName String

The Name of the HTTP Listener which should be used for this Routing Rule.

name String

The Name of this Request Routing Rule.

ruleType String

The Type of Routing that should be used for this Rule. Possible values are Basic and PathBasedRouting.

backendAddressPoolId String

The ID of the associated Backend Address Pool.

backendAddressPoolName String

The Name of the Backend Address Pool which should be used for this Routing Rule. Cannot be set if redirect_configuration_name is set.

backendHttpSettingsId String

The ID of the associated Backend HTTP Settings Configuration.

backendHttpSettingsName String

The Name of the Backend HTTP Settings Collection which should be used for this Routing Rule. Cannot be set if redirect_configuration_name is set.

httpListenerId String

The ID of the associated HTTP Listener.

id String

The ID of the Rewrite Rule Set

priority Integer

Rule evaluation order can be dictated by specifying an integer value from 1 to 20000 with 1 being the highest priority and 20000 being the lowest priority.

redirectConfigurationId String

The ID of the associated Redirect Configuration.

redirectConfigurationName String

The Name of the Redirect Configuration which should be used for this Routing Rule. Cannot be set if either backend_address_pool_name or backend_http_settings_name is set.

rewriteRuleSetId String

The ID of the associated Rewrite Rule Set.

rewriteRuleSetName String

The Name of the Rewrite Rule Set which should be used for this Routing Rule. Only valid for v2 SKUs.

urlPathMapId String

The ID of the associated URL Path Map.

urlPathMapName String

The Name of the URL Path Map which should be associated with this Routing Rule.

httpListenerName string

The Name of the HTTP Listener which should be used for this Routing Rule.

name string

The Name of this Request Routing Rule.

ruleType string

The Type of Routing that should be used for this Rule. Possible values are Basic and PathBasedRouting.

backendAddressPoolId string

The ID of the associated Backend Address Pool.

backendAddressPoolName string

The Name of the Backend Address Pool which should be used for this Routing Rule. Cannot be set if redirect_configuration_name is set.

backendHttpSettingsId string

The ID of the associated Backend HTTP Settings Configuration.

backendHttpSettingsName string

The Name of the Backend HTTP Settings Collection which should be used for this Routing Rule. Cannot be set if redirect_configuration_name is set.

httpListenerId string

The ID of the associated HTTP Listener.

id string

The ID of the Rewrite Rule Set

priority number

Rule evaluation order can be dictated by specifying an integer value from 1 to 20000 with 1 being the highest priority and 20000 being the lowest priority.

redirectConfigurationId string

The ID of the associated Redirect Configuration.

redirectConfigurationName string

The Name of the Redirect Configuration which should be used for this Routing Rule. Cannot be set if either backend_address_pool_name or backend_http_settings_name is set.

rewriteRuleSetId string

The ID of the associated Rewrite Rule Set.

rewriteRuleSetName string

The Name of the Rewrite Rule Set which should be used for this Routing Rule. Only valid for v2 SKUs.

urlPathMapId string

The ID of the associated URL Path Map.

urlPathMapName string

The Name of the URL Path Map which should be associated with this Routing Rule.

http_listener_name str

The Name of the HTTP Listener which should be used for this Routing Rule.

name str

The Name of this Request Routing Rule.

rule_type str

The Type of Routing that should be used for this Rule. Possible values are Basic and PathBasedRouting.

backend_address_pool_id str

The ID of the associated Backend Address Pool.

backend_address_pool_name str

The Name of the Backend Address Pool which should be used for this Routing Rule. Cannot be set if redirect_configuration_name is set.

backend_http_settings_id str

The ID of the associated Backend HTTP Settings Configuration.

backend_http_settings_name str

The Name of the Backend HTTP Settings Collection which should be used for this Routing Rule. Cannot be set if redirect_configuration_name is set.

http_listener_id str

The ID of the associated HTTP Listener.

id str

The ID of the Rewrite Rule Set

priority int

Rule evaluation order can be dictated by specifying an integer value from 1 to 20000 with 1 being the highest priority and 20000 being the lowest priority.

redirect_configuration_id str

The ID of the associated Redirect Configuration.

redirect_configuration_name str

The Name of the Redirect Configuration which should be used for this Routing Rule. Cannot be set if either backend_address_pool_name or backend_http_settings_name is set.

rewrite_rule_set_id str

The ID of the associated Rewrite Rule Set.

rewrite_rule_set_name str

The Name of the Rewrite Rule Set which should be used for this Routing Rule. Only valid for v2 SKUs.

url_path_map_id str

The ID of the associated URL Path Map.

url_path_map_name str

The Name of the URL Path Map which should be associated with this Routing Rule.

httpListenerName String

The Name of the HTTP Listener which should be used for this Routing Rule.

name String

The Name of this Request Routing Rule.

ruleType String

The Type of Routing that should be used for this Rule. Possible values are Basic and PathBasedRouting.

backendAddressPoolId String

The ID of the associated Backend Address Pool.

backendAddressPoolName String

The Name of the Backend Address Pool which should be used for this Routing Rule. Cannot be set if redirect_configuration_name is set.

backendHttpSettingsId String

The ID of the associated Backend HTTP Settings Configuration.

backendHttpSettingsName String

The Name of the Backend HTTP Settings Collection which should be used for this Routing Rule. Cannot be set if redirect_configuration_name is set.

httpListenerId String

The ID of the associated HTTP Listener.

id String

The ID of the Rewrite Rule Set

priority Number

Rule evaluation order can be dictated by specifying an integer value from 1 to 20000 with 1 being the highest priority and 20000 being the lowest priority.

redirectConfigurationId String

The ID of the associated Redirect Configuration.

redirectConfigurationName String

The Name of the Redirect Configuration which should be used for this Routing Rule. Cannot be set if either backend_address_pool_name or backend_http_settings_name is set.

rewriteRuleSetId String

The ID of the associated Rewrite Rule Set.

rewriteRuleSetName String

The Name of the Rewrite Rule Set which should be used for this Routing Rule. Only valid for v2 SKUs.

urlPathMapId String

The ID of the associated URL Path Map.

urlPathMapName String

The Name of the URL Path Map which should be associated with this Routing Rule.

ApplicationGatewayRewriteRuleSet

Name string

Unique name of the rewrite rule set block

Id string

The ID of the Rewrite Rule Set

RewriteRules List<ApplicationGatewayRewriteRuleSetRewriteRule>

One or more rewrite_rule blocks as defined above.

Name string

Unique name of the rewrite rule set block

Id string

The ID of the Rewrite Rule Set

RewriteRules []ApplicationGatewayRewriteRuleSetRewriteRule

One or more rewrite_rule blocks as defined above.

name String

Unique name of the rewrite rule set block

id String

The ID of the Rewrite Rule Set

rewriteRules List<ApplicationGatewayRewriteRuleSetRewriteRule>

One or more rewrite_rule blocks as defined above.

name string

Unique name of the rewrite rule set block

id string

The ID of the Rewrite Rule Set

rewriteRules ApplicationGatewayRewriteRuleSetRewriteRule[]

One or more rewrite_rule blocks as defined above.

name str

Unique name of the rewrite rule set block

id str

The ID of the Rewrite Rule Set

rewrite_rules Sequence[ApplicationGatewayRewriteRuleSetRewriteRule]

One or more rewrite_rule blocks as defined above.

name String

Unique name of the rewrite rule set block

id String

The ID of the Rewrite Rule Set

rewriteRules List<Property Map>

One or more rewrite_rule blocks as defined above.

ApplicationGatewayRewriteRuleSetRewriteRule

Name string

Unique name of the rewrite rule block

RuleSequence int

Rule sequence of the rewrite rule that determines the order of execution in a set.

Conditions List<ApplicationGatewayRewriteRuleSetRewriteRuleCondition>

One or more condition blocks as defined above.

RequestHeaderConfigurations List<ApplicationGatewayRewriteRuleSetRewriteRuleRequestHeaderConfiguration>

One or more request_header_configuration blocks as defined above.

ResponseHeaderConfigurations List<ApplicationGatewayRewriteRuleSetRewriteRuleResponseHeaderConfiguration>

One or more response_header_configuration blocks as defined above.

Url ApplicationGatewayRewriteRuleSetRewriteRuleUrl

One url block as defined above

Name string

Unique name of the rewrite rule block

RuleSequence int

Rule sequence of the rewrite rule that determines the order of execution in a set.

Conditions []ApplicationGatewayRewriteRuleSetRewriteRuleCondition

One or more condition blocks as defined above.

RequestHeaderConfigurations []ApplicationGatewayRewriteRuleSetRewriteRuleRequestHeaderConfiguration

One or more request_header_configuration blocks as defined above.

ResponseHeaderConfigurations []ApplicationGatewayRewriteRuleSetRewriteRuleResponseHeaderConfiguration

One or more response_header_configuration blocks as defined above.

Url ApplicationGatewayRewriteRuleSetRewriteRuleUrl

One url block as defined above

name String

Unique name of the rewrite rule block

ruleSequence Integer

Rule sequence of the rewrite rule that determines the order of execution in a set.

conditions List<ApplicationGatewayRewriteRuleSetRewriteRuleCondition>

One or more condition blocks as defined above.

requestHeaderConfigurations List<ApplicationGatewayRewriteRuleSetRewriteRuleRequestHeaderConfiguration>

One or more request_header_configuration blocks as defined above.

responseHeaderConfigurations List<ApplicationGatewayRewriteRuleSetRewriteRuleResponseHeaderConfiguration>

One or more response_header_configuration blocks as defined above.

url ApplicationGatewayRewriteRuleSetRewriteRuleUrl

One url block as defined above

name string

Unique name of the rewrite rule block

ruleSequence number

Rule sequence of the rewrite rule that determines the order of execution in a set.

conditions ApplicationGatewayRewriteRuleSetRewriteRuleCondition[]

One or more condition blocks as defined above.

requestHeaderConfigurations ApplicationGatewayRewriteRuleSetRewriteRuleRequestHeaderConfiguration[]

One or more request_header_configuration blocks as defined above.

responseHeaderConfigurations ApplicationGatewayRewriteRuleSetRewriteRuleResponseHeaderConfiguration[]

One or more response_header_configuration blocks as defined above.

url ApplicationGatewayRewriteRuleSetRewriteRuleUrl

One url block as defined above

name str

Unique name of the rewrite rule block

rule_sequence int

Rule sequence of the rewrite rule that determines the order of execution in a set.

conditions Sequence[ApplicationGatewayRewriteRuleSetRewriteRuleCondition]

One or more condition blocks as defined above.

request_header_configurations Sequence[ApplicationGatewayRewriteRuleSetRewriteRuleRequestHeaderConfiguration]

One or more request_header_configuration blocks as defined above.

response_header_configurations Sequence[ApplicationGatewayRewriteRuleSetRewriteRuleResponseHeaderConfiguration]

One or more response_header_configuration blocks as defined above.

url ApplicationGatewayRewriteRuleSetRewriteRuleUrl

One url block as defined above

name String

Unique name of the rewrite rule block

ruleSequence Number

Rule sequence of the rewrite rule that determines the order of execution in a set.

conditions List<Property Map>

One or more condition blocks as defined above.

requestHeaderConfigurations List<Property Map>

One or more request_header_configuration blocks as defined above.

responseHeaderConfigurations List<Property Map>

One or more response_header_configuration blocks as defined above.

url Property Map

One url block as defined above

ApplicationGatewayRewriteRuleSetRewriteRuleCondition

Pattern string

The pattern, either fixed string or regular expression, that evaluates the truthfulness of the condition.

Variable string

The variable of the condition.

IgnoreCase bool

Perform a case in-sensitive comparison. Defaults to false

Negate bool

Negate the result of the condition evaluation. Defaults to false

Pattern string

The pattern, either fixed string or regular expression, that evaluates the truthfulness of the condition.

Variable string

The variable of the condition.

IgnoreCase bool

Perform a case in-sensitive comparison. Defaults to false

Negate bool

Negate the result of the condition evaluation. Defaults to false

pattern String

The pattern, either fixed string or regular expression, that evaluates the truthfulness of the condition.

variable String

The variable of the condition.

ignoreCase Boolean

Perform a case in-sensitive comparison. Defaults to false

negate Boolean

Negate the result of the condition evaluation. Defaults to false

pattern string

The pattern, either fixed string or regular expression, that evaluates the truthfulness of the condition.

variable string

The variable of the condition.

ignoreCase boolean

Perform a case in-sensitive comparison. Defaults to false

negate boolean

Negate the result of the condition evaluation. Defaults to false

pattern str

The pattern, either fixed string or regular expression, that evaluates the truthfulness of the condition.

variable str

The variable of the condition.

ignore_case bool

Perform a case in-sensitive comparison. Defaults to false

negate bool

Negate the result of the condition evaluation. Defaults to false

pattern String

The pattern, either fixed string or regular expression, that evaluates the truthfulness of the condition.

variable String

The variable of the condition.

ignoreCase Boolean

Perform a case in-sensitive comparison. Defaults to false

negate Boolean

Negate the result of the condition evaluation. Defaults to false

ApplicationGatewayRewriteRuleSetRewriteRuleRequestHeaderConfiguration

HeaderName string

Header name of the header configuration.

HeaderValue string

Header value of the header configuration. To delete a request header set this property to an empty string.

HeaderName string

Header name of the header configuration.

HeaderValue string

Header value of the header configuration. To delete a request header set this property to an empty string.

headerName String

Header name of the header configuration.

headerValue String

Header value of the header configuration. To delete a request header set this property to an empty string.

headerName string

Header name of the header configuration.

headerValue string

Header value of the header configuration. To delete a request header set this property to an empty string.

header_name str

Header name of the header configuration.

header_value str

Header value of the header configuration. To delete a request header set this property to an empty string.

headerName String

Header name of the header configuration.

headerValue String

Header value of the header configuration. To delete a request header set this property to an empty string.

ApplicationGatewayRewriteRuleSetRewriteRuleResponseHeaderConfiguration

HeaderName string

Header name of the header configuration.

HeaderValue string

Header value of the header configuration. To delete a response header set this property to an empty string.

HeaderName string

Header name of the header configuration.

HeaderValue string

Header value of the header configuration. To delete a response header set this property to an empty string.

headerName String

Header name of the header configuration.

headerValue String

Header value of the header configuration. To delete a response header set this property to an empty string.

headerName string

Header name of the header configuration.

headerValue string

Header value of the header configuration. To delete a response header set this property to an empty string.

header_name str

Header name of the header configuration.

header_value str

Header value of the header configuration. To delete a response header set this property to an empty string.

headerName String

Header name of the header configuration.

headerValue String

Header value of the header configuration. To delete a response header set this property to an empty string.

ApplicationGatewayRewriteRuleSetRewriteRuleUrl

Path string

The URL path to rewrite.

QueryString string

The query string to rewrite.

Reroute bool

Whether the URL path map should be reevaluated after this rewrite has been applied. More info on rewrite configutation

Path string

The URL path to rewrite.

QueryString string

The query string to rewrite.

Reroute bool

Whether the URL path map should be reevaluated after this rewrite has been applied. More info on rewrite configutation

path String

The URL path to rewrite.

queryString String

The query string to rewrite.

reroute Boolean

Whether the URL path map should be reevaluated after this rewrite has been applied. More info on rewrite configutation

path string

The URL path to rewrite.

queryString string

The query string to rewrite.

reroute boolean

Whether the URL path map should be reevaluated after this rewrite has been applied. More info on rewrite configutation

path str

The URL path to rewrite.

query_string str

The query string to rewrite.

reroute bool

Whether the URL path map should be reevaluated after this rewrite has been applied. More info on rewrite configutation

path String

The URL path to rewrite.

queryString String

The query string to rewrite.

reroute Boolean

Whether the URL path map should be reevaluated after this rewrite has been applied. More info on rewrite configutation

ApplicationGatewaySku

Name string

The Name of the SKU to use for this Application Gateway. Possible values are Standard_Small, Standard_Medium, Standard_Large, Standard_v2, WAF_Medium, WAF_Large, and WAF_v2.

Tier string

The Tier of the SKU to use for this Application Gateway. Possible values are Standard, Standard_v2, WAF and WAF_v2.

Capacity int

The Capacity of the SKU to use for this Application Gateway. When using a V1 SKU this value must be between 1 and 32, and 1 to 125 for a V2 SKU. This property is optional if autoscale_configuration is set.

Name string

The Name of the SKU to use for this Application Gateway. Possible values are Standard_Small, Standard_Medium, Standard_Large, Standard_v2, WAF_Medium, WAF_Large, and WAF_v2.

Tier string

The Tier of the SKU to use for this Application Gateway. Possible values are Standard, Standard_v2, WAF and WAF_v2.

Capacity int

The Capacity of the SKU to use for this Application Gateway. When using a V1 SKU this value must be between 1 and 32, and 1 to 125 for a V2 SKU. This property is optional if autoscale_configuration is set.

name String

The Name of the SKU to use for this Application Gateway. Possible values are Standard_Small, Standard_Medium, Standard_Large, Standard_v2, WAF_Medium, WAF_Large, and WAF_v2.

tier String

The Tier of the SKU to use for this Application Gateway. Possible values are Standard, Standard_v2, WAF and WAF_v2.

capacity Integer

The Capacity of the SKU to use for this Application Gateway. When using a V1 SKU this value must be between 1 and 32, and 1 to 125 for a V2 SKU. This property is optional if autoscale_configuration is set.

name string

The Name of the SKU to use for this Application Gateway. Possible values are Standard_Small, Standard_Medium, Standard_Large, Standard_v2, WAF_Medium, WAF_Large, and WAF_v2.

tier string

The Tier of the SKU to use for this Application Gateway. Possible values are Standard, Standard_v2, WAF and WAF_v2.

capacity number

The Capacity of the SKU to use for this Application Gateway. When using a V1 SKU this value must be between 1 and 32, and 1 to 125 for a V2 SKU. This property is optional if autoscale_configuration is set.

name str

The Name of the SKU to use for this Application Gateway. Possible values are Standard_Small, Standard_Medium, Standard_Large, Standard_v2, WAF_Medium, WAF_Large, and WAF_v2.

tier str

The Tier of the SKU to use for this Application Gateway. Possible values are Standard, Standard_v2, WAF and WAF_v2.

capacity int

The Capacity of the SKU to use for this Application Gateway. When using a V1 SKU this value must be between 1 and 32, and 1 to 125 for a V2 SKU. This property is optional if autoscale_configuration is set.

name String

The Name of the SKU to use for this Application Gateway. Possible values are Standard_Small, Standard_Medium, Standard_Large, Standard_v2, WAF_Medium, WAF_Large, and WAF_v2.

tier String

The Tier of the SKU to use for this Application Gateway. Possible values are Standard, Standard_v2, WAF and WAF_v2.

capacity Number

The Capacity of the SKU to use for this Application Gateway. When using a V1 SKU this value must be between 1 and 32, and 1 to 125 for a V2 SKU. This property is optional if autoscale_configuration is set.

ApplicationGatewaySslCertificate

Name string

The Name of the SSL certificate that is unique within this Application Gateway

Data string

PFX certificate. Required if key_vault_secret_id is not set.

Id string

The ID of the Rewrite Rule Set

KeyVaultSecretId string

Secret Id of (base-64 encoded unencrypted pfx) Secret or Certificate object stored in Azure KeyVault. You need to enable soft delete for keyvault to use this feature. Required if data is not set.

Password string

Password for the pfx file specified in data. Required if data is set.

PublicCertData string

The Public Certificate Data associated with the SSL Certificate.

Name string

The Name of the SSL certificate that is unique within this Application Gateway

Data string

PFX certificate. Required if key_vault_secret_id is not set.

Id string

The ID of the Rewrite Rule Set

KeyVaultSecretId string

Secret Id of (base-64 encoded unencrypted pfx) Secret or Certificate object stored in Azure KeyVault. You need to enable soft delete for keyvault to use this feature. Required if data is not set.

Password string

Password for the pfx file specified in data. Required if data is set.

PublicCertData string

The Public Certificate Data associated with the SSL Certificate.

name String

The Name of the SSL certificate that is unique within this Application Gateway

data String

PFX certificate. Required if key_vault_secret_id is not set.

id String

The ID of the Rewrite Rule Set

keyVaultSecretId String

Secret Id of (base-64 encoded unencrypted pfx) Secret or Certificate object stored in Azure KeyVault. You need to enable soft delete for keyvault to use this feature. Required if data is not set.

password String

Password for the pfx file specified in data. Required if data is set.

publicCertData String

The Public Certificate Data associated with the SSL Certificate.

name string

The Name of the SSL certificate that is unique within this Application Gateway

data string

PFX certificate. Required if key_vault_secret_id is not set.

id string

The ID of the Rewrite Rule Set

keyVaultSecretId string

Secret Id of (base-64 encoded unencrypted pfx) Secret or Certificate object stored in Azure KeyVault. You need to enable soft delete for keyvault to use this feature. Required if data is not set.

password string

Password for the pfx file specified in data. Required if data is set.

publicCertData string

The Public Certificate Data associated with the SSL Certificate.

name str

The Name of the SSL certificate that is unique within this Application Gateway

data str

PFX certificate. Required if key_vault_secret_id is not set.

id str

The ID of the Rewrite Rule Set

key_vault_secret_id str

Secret Id of (base-64 encoded unencrypted pfx) Secret or Certificate object stored in Azure KeyVault. You need to enable soft delete for keyvault to use this feature. Required if data is not set.

password str

Password for the pfx file specified in data. Required if data is set.

public_cert_data str

The Public Certificate Data associated with the SSL Certificate.

name String

The Name of the SSL certificate that is unique within this Application Gateway

data String

PFX certificate. Required if key_vault_secret_id is not set.

id String

The ID of the Rewrite Rule Set

keyVaultSecretId String

Secret Id of (base-64 encoded unencrypted pfx) Secret or Certificate object stored in Azure KeyVault. You need to enable soft delete for keyvault to use this feature. Required if data is not set.

password String

Password for the pfx file specified in data. Required if data is set.

publicCertData String

The Public Certificate Data associated with the SSL Certificate.

ApplicationGatewaySslPolicy

CipherSuites List<string>

A List of accepted cipher suites. Possible values are: TLS_DHE_DSS_WITH_AES_128_CBC_SHA, TLS_DHE_DSS_WITH_AES_128_CBC_SHA256, TLS_DHE_DSS_WITH_AES_256_CBC_SHA, TLS_DHE_DSS_WITH_AES_256_CBC_SHA256, TLS_DHE_RSA_WITH_AES_128_CBC_SHA, TLS_DHE_RSA_WITH_AES_128_GCM_SHA256, TLS_DHE_RSA_WITH_AES_256_CBC_SHA, TLS_DHE_RSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA, TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256, TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA, TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384, TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384, TLS_RSA_WITH_3DES_EDE_CBC_SHA, TLS_RSA_WITH_AES_128_CBC_SHA, TLS_RSA_WITH_AES_128_CBC_SHA256, TLS_RSA_WITH_AES_128_GCM_SHA256, TLS_RSA_WITH_AES_256_CBC_SHA, TLS_RSA_WITH_AES_256_CBC_SHA256 and TLS_RSA_WITH_AES_256_GCM_SHA384.

DisabledProtocols List<string>

A list of SSL Protocols which should be disabled on this Application Gateway. Possible values are TLSv1_0, TLSv1_1 and TLSv1_2.

MinProtocolVersion string

The minimal TLS version. Possible values are TLSv1_0, TLSv1_1 and TLSv1_2.

PolicyName string

The Name of the Policy e.g AppGwSslPolicy20170401S. Required if policy_type is set to Predefined. Possible values can change over time and are published here https://docs.microsoft.com/azure/application-gateway/application-gateway-ssl-policy-overview. Not compatible with disabled_protocols.

PolicyType string

The Type of the Policy. Possible values are Predefined and Custom.

CipherSuites []string

A List of accepted cipher suites. Possible values are: TLS_DHE_DSS_WITH_AES_128_CBC_SHA, TLS_DHE_DSS_WITH_AES_128_CBC_SHA256, TLS_DHE_DSS_WITH_AES_256_CBC_SHA, TLS_DHE_DSS_WITH_AES_256_CBC_SHA256, TLS_DHE_RSA_WITH_AES_128_CBC_SHA, TLS_DHE_RSA_WITH_AES_128_GCM_SHA256, TLS_DHE_RSA_WITH_AES_256_CBC_SHA, TLS_DHE_RSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA, TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256, TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA, TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384, TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384, TLS_RSA_WITH_3DES_EDE_CBC_SHA, TLS_RSA_WITH_AES_128_CBC_SHA, TLS_RSA_WITH_AES_128_CBC_SHA256, TLS_RSA_WITH_AES_128_GCM_SHA256, TLS_RSA_WITH_AES_256_CBC_SHA, TLS_RSA_WITH_AES_256_CBC_SHA256 and TLS_RSA_WITH_AES_256_GCM_SHA384.

DisabledProtocols []string

A list of SSL Protocols which should be disabled on this Application Gateway. Possible values are TLSv1_0, TLSv1_1 and TLSv1_2.

MinProtocolVersion string

The minimal TLS version. Possible values are TLSv1_0, TLSv1_1 and TLSv1_2.

PolicyName string

The Name of the Policy e.g AppGwSslPolicy20170401S. Required if policy_type is set to Predefined. Possible values can change over time and are published here https://docs.microsoft.com/azure/application-gateway/application-gateway-ssl-policy-overview. Not compatible with disabled_protocols.

PolicyType string

The Type of the Policy. Possible values are Predefined and Custom.

cipherSuites List<String>

A List of accepted cipher suites. Possible values are: TLS_DHE_DSS_WITH_AES_128_CBC_SHA, TLS_DHE_DSS_WITH_AES_128_CBC_SHA256, TLS_DHE_DSS_WITH_AES_256_CBC_SHA, TLS_DHE_DSS_WITH_AES_256_CBC_SHA256, TLS_DHE_RSA_WITH_AES_128_CBC_SHA, TLS_DHE_RSA_WITH_AES_128_GCM_SHA256, TLS_DHE_RSA_WITH_AES_256_CBC_SHA, TLS_DHE_RSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA, TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256, TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA, TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384, TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384, TLS_RSA_WITH_3DES_EDE_CBC_SHA, TLS_RSA_WITH_AES_128_CBC_SHA, TLS_RSA_WITH_AES_128_CBC_SHA256, TLS_RSA_WITH_AES_128_GCM_SHA256, TLS_RSA_WITH_AES_256_CBC_SHA, TLS_RSA_WITH_AES_256_CBC_SHA256 and TLS_RSA_WITH_AES_256_GCM_SHA384.

disabledProtocols List<String>

A list of SSL Protocols which should be disabled on this Application Gateway. Possible values are TLSv1_0, TLSv1_1 and TLSv1_2.

minProtocolVersion String

The minimal TLS version. Possible values are TLSv1_0, TLSv1_1 and TLSv1_2.

policyName String

The Name of the Policy e.g AppGwSslPolicy20170401S. Required if policy_type is set to Predefined. Possible values can change over time and are published here https://docs.microsoft.com/azure/application-gateway/application-gateway-ssl-policy-overview. Not compatible with disabled_protocols.

policyType String

The Type of the Policy. Possible values are Predefined and Custom.

cipherSuites string[]

A List of accepted cipher suites. Possible values are: TLS_DHE_DSS_WITH_AES_128_CBC_SHA, TLS_DHE_DSS_WITH_AES_128_CBC_SHA256, TLS_DHE_DSS_WITH_AES_256_CBC_SHA, TLS_DHE_DSS_WITH_AES_256_CBC_SHA256, TLS_DHE_RSA_WITH_AES_128_CBC_SHA, TLS_DHE_RSA_WITH_AES_128_GCM_SHA256, TLS_DHE_RSA_WITH_AES_256_CBC_SHA, TLS_DHE_RSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA, TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256, TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA, TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384, TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384, TLS_RSA_WITH_3DES_EDE_CBC_SHA, TLS_RSA_WITH_AES_128_CBC_SHA, TLS_RSA_WITH_AES_128_CBC_SHA256, TLS_RSA_WITH_AES_128_GCM_SHA256, TLS_RSA_WITH_AES_256_CBC_SHA, TLS_RSA_WITH_AES_256_CBC_SHA256 and TLS_RSA_WITH_AES_256_GCM_SHA384.

disabledProtocols string[]

A list of SSL Protocols which should be disabled on this Application Gateway. Possible values are TLSv1_0, TLSv1_1 and TLSv1_2.

minProtocolVersion string

The minimal TLS version. Possible values are TLSv1_0, TLSv1_1 and TLSv1_2.

policyName string

The Name of the Policy e.g AppGwSslPolicy20170401S. Required if policy_type is set to Predefined. Possible values can change over time and are published here https://docs.microsoft.com/azure/application-gateway/application-gateway-ssl-policy-overview. Not compatible with disabled_protocols.

policyType string

The Type of the Policy. Possible values are Predefined and Custom.

cipher_suites Sequence[str]

A List of accepted cipher suites. Possible values are: TLS_DHE_DSS_WITH_AES_128_CBC_SHA, TLS_DHE_DSS_WITH_AES_128_CBC_SHA256, TLS_DHE_DSS_WITH_AES_256_CBC_SHA, TLS_DHE_DSS_WITH_AES_256_CBC_SHA256, TLS_DHE_RSA_WITH_AES_128_CBC_SHA, TLS_DHE_RSA_WITH_AES_128_GCM_SHA256, TLS_DHE_RSA_WITH_AES_256_CBC_SHA, TLS_DHE_RSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA, TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256, TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA, TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384, TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384, TLS_RSA_WITH_3DES_EDE_CBC_SHA, TLS_RSA_WITH_AES_128_CBC_SHA, TLS_RSA_WITH_AES_128_CBC_SHA256, TLS_RSA_WITH_AES_128_GCM_SHA256, TLS_RSA_WITH_AES_256_CBC_SHA, TLS_RSA_WITH_AES_256_CBC_SHA256 and TLS_RSA_WITH_AES_256_GCM_SHA384.

disabled_protocols Sequence[str]

A list of SSL Protocols which should be disabled on this Application Gateway. Possible values are TLSv1_0, TLSv1_1 and TLSv1_2.

min_protocol_version str

The minimal TLS version. Possible values are TLSv1_0, TLSv1_1 and TLSv1_2.

policy_name str

The Name of the Policy e.g AppGwSslPolicy20170401S. Required if policy_type is set to Predefined. Possible values can change over time and are published here https://docs.microsoft.com/azure/application-gateway/application-gateway-ssl-policy-overview. Not compatible with disabled_protocols.

policy_type str

The Type of the Policy. Possible values are Predefined and Custom.

cipherSuites List<String>

A List of accepted cipher suites. Possible values are: TLS_DHE_DSS_WITH_AES_128_CBC_SHA, TLS_DHE_DSS_WITH_AES_128_CBC_SHA256, TLS_DHE_DSS_WITH_AES_256_CBC_SHA, TLS_DHE_DSS_WITH_AES_256_CBC_SHA256, TLS_DHE_RSA_WITH_AES_128_CBC_SHA, TLS_DHE_RSA_WITH_AES_128_GCM_SHA256, TLS_DHE_RSA_WITH_AES_256_CBC_SHA, TLS_DHE_RSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA, TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256, TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA, TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384, TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384, TLS_RSA_WITH_3DES_EDE_CBC_SHA, TLS_RSA_WITH_AES_128_CBC_SHA, TLS_RSA_WITH_AES_128_CBC_SHA256, TLS_RSA_WITH_AES_128_GCM_SHA256, TLS_RSA_WITH_AES_256_CBC_SHA, TLS_RSA_WITH_AES_256_CBC_SHA256 and TLS_RSA_WITH_AES_256_GCM_SHA384.

disabledProtocols List<String>

A list of SSL Protocols which should be disabled on this Application Gateway. Possible values are TLSv1_0, TLSv1_1 and TLSv1_2.

minProtocolVersion String

The minimal TLS version. Possible values are TLSv1_0, TLSv1_1 and TLSv1_2.

policyName String

The Name of the Policy e.g AppGwSslPolicy20170401S. Required if policy_type is set to Predefined. Possible values can change over time and are published here https://docs.microsoft.com/azure/application-gateway/application-gateway-ssl-policy-overview. Not compatible with disabled_protocols.

policyType String

The Type of the Policy. Possible values are Predefined and Custom.

ApplicationGatewaySslProfile

Name string

The name of the SSL Profile that is unique within this Application Gateway.

Id string

The ID of the Rewrite Rule Set

SslPolicy ApplicationGatewaySslProfileSslPolicy

a ssl policy block as defined below.

TrustedClientCertificateNames List<string>

The name of the Trusted Client Certificate that will be used to authenticate requests from clients.

VerifyClientCertIssuerDn bool

Should client certificate issuer DN be verified? Defaults to false.

Name string

The name of the SSL Profile that is unique within this Application Gateway.

Id string

The ID of the Rewrite Rule Set

SslPolicy ApplicationGatewaySslProfileSslPolicy

a ssl policy block as defined below.

TrustedClientCertificateNames []string

The name of the Trusted Client Certificate that will be used to authenticate requests from clients.

VerifyClientCertIssuerDn bool

Should client certificate issuer DN be verified? Defaults to false.

name String

The name of the SSL Profile that is unique within this Application Gateway.

id String

The ID of the Rewrite Rule Set

sslPolicy ApplicationGatewaySslProfileSslPolicy

a ssl policy block as defined below.

trustedClientCertificateNames List<String>

The name of the Trusted Client Certificate that will be used to authenticate requests from clients.

verifyClientCertIssuerDn Boolean

Should client certificate issuer DN be verified? Defaults to false.

name string

The name of the SSL Profile that is unique within this Application Gateway.

id string

The ID of the Rewrite Rule Set

sslPolicy ApplicationGatewaySslProfileSslPolicy

a ssl policy block as defined below.

trustedClientCertificateNames string[]

The name of the Trusted Client Certificate that will be used to authenticate requests from clients.

verifyClientCertIssuerDn boolean

Should client certificate issuer DN be verified? Defaults to false.

name str

The name of the SSL Profile that is unique within this Application Gateway.

id str

The ID of the Rewrite Rule Set

ssl_policy ApplicationGatewaySslProfileSslPolicy

a ssl policy block as defined below.

trusted_client_certificate_names Sequence[str]

The name of the Trusted Client Certificate that will be used to authenticate requests from clients.

verify_client_cert_issuer_dn bool

Should client certificate issuer DN be verified? Defaults to false.

name String

The name of the SSL Profile that is unique within this Application Gateway.

id String

The ID of the Rewrite Rule Set

sslPolicy Property Map

a ssl policy block as defined below.

trustedClientCertificateNames List<String>

The name of the Trusted Client Certificate that will be used to authenticate requests from clients.

verifyClientCertIssuerDn Boolean

Should client certificate issuer DN be verified? Defaults to false.

ApplicationGatewaySslProfileSslPolicy

CipherSuites List<string>

A List of accepted cipher suites. Possible values are: TLS_DHE_DSS_WITH_AES_128_CBC_SHA, TLS_DHE_DSS_WITH_AES_128_CBC_SHA256, TLS_DHE_DSS_WITH_AES_256_CBC_SHA, TLS_DHE_DSS_WITH_AES_256_CBC_SHA256, TLS_DHE_RSA_WITH_AES_128_CBC_SHA, TLS_DHE_RSA_WITH_AES_128_GCM_SHA256, TLS_DHE_RSA_WITH_AES_256_CBC_SHA, TLS_DHE_RSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA, TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256, TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA, TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384, TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384, TLS_RSA_WITH_3DES_EDE_CBC_SHA, TLS_RSA_WITH_AES_128_CBC_SHA, TLS_RSA_WITH_AES_128_CBC_SHA256, TLS_RSA_WITH_AES_128_GCM_SHA256, TLS_RSA_WITH_AES_256_CBC_SHA, TLS_RSA_WITH_AES_256_CBC_SHA256 and TLS_RSA_WITH_AES_256_GCM_SHA384.

DisabledProtocols List<string>

A list of SSL Protocols which should be disabled on this Application Gateway. Possible values are TLSv1_0, TLSv1_1 and TLSv1_2.

MinProtocolVersion string

The minimal TLS version. Possible values are TLSv1_0, TLSv1_1 and TLSv1_2.

PolicyName string

The Name of the Policy e.g AppGwSslPolicy20170401S. Required if policy_type is set to Predefined. Possible values can change over time and are published here https://docs.microsoft.com/azure/application-gateway/application-gateway-ssl-policy-overview. Not compatible with disabled_protocols.

PolicyType string

The Type of the Policy. Possible values are Predefined and Custom.

CipherSuites []string

A List of accepted cipher suites. Possible values are: TLS_DHE_DSS_WITH_AES_128_CBC_SHA, TLS_DHE_DSS_WITH_AES_128_CBC_SHA256, TLS_DHE_DSS_WITH_AES_256_CBC_SHA, TLS_DHE_DSS_WITH_AES_256_CBC_SHA256, TLS_DHE_RSA_WITH_AES_128_CBC_SHA, TLS_DHE_RSA_WITH_AES_128_GCM_SHA256, TLS_DHE_RSA_WITH_AES_256_CBC_SHA, TLS_DHE_RSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA, TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256, TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA, TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384, TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384, TLS_RSA_WITH_3DES_EDE_CBC_SHA, TLS_RSA_WITH_AES_128_CBC_SHA, TLS_RSA_WITH_AES_128_CBC_SHA256, TLS_RSA_WITH_AES_128_GCM_SHA256, TLS_RSA_WITH_AES_256_CBC_SHA, TLS_RSA_WITH_AES_256_CBC_SHA256 and TLS_RSA_WITH_AES_256_GCM_SHA384.

DisabledProtocols []string

A list of SSL Protocols which should be disabled on this Application Gateway. Possible values are TLSv1_0, TLSv1_1 and TLSv1_2.

MinProtocolVersion string

The minimal TLS version. Possible values are TLSv1_0, TLSv1_1 and TLSv1_2.

PolicyName string

The Name of the Policy e.g AppGwSslPolicy20170401S. Required if policy_type is set to Predefined. Possible values can change over time and are published here https://docs.microsoft.com/azure/application-gateway/application-gateway-ssl-policy-overview. Not compatible with disabled_protocols.

PolicyType string

The Type of the Policy. Possible values are Predefined and Custom.

cipherSuites List<String>

A List of accepted cipher suites. Possible values are: TLS_DHE_DSS_WITH_AES_128_CBC_SHA, TLS_DHE_DSS_WITH_AES_128_CBC_SHA256, TLS_DHE_DSS_WITH_AES_256_CBC_SHA, TLS_DHE_DSS_WITH_AES_256_CBC_SHA256, TLS_DHE_RSA_WITH_AES_128_CBC_SHA, TLS_DHE_RSA_WITH_AES_128_GCM_SHA256, TLS_DHE_RSA_WITH_AES_256_CBC_SHA, TLS_DHE_RSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA, TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256, TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA, TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384, TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384, TLS_RSA_WITH_3DES_EDE_CBC_SHA, TLS_RSA_WITH_AES_128_CBC_SHA, TLS_RSA_WITH_AES_128_CBC_SHA256, TLS_RSA_WITH_AES_128_GCM_SHA256, TLS_RSA_WITH_AES_256_CBC_SHA, TLS_RSA_WITH_AES_256_CBC_SHA256 and TLS_RSA_WITH_AES_256_GCM_SHA384.

disabledProtocols List<String>

A list of SSL Protocols which should be disabled on this Application Gateway. Possible values are TLSv1_0, TLSv1_1 and TLSv1_2.

minProtocolVersion String

The minimal TLS version. Possible values are TLSv1_0, TLSv1_1 and TLSv1_2.

policyName String

The Name of the Policy e.g AppGwSslPolicy20170401S. Required if policy_type is set to Predefined. Possible values can change over time and are published here https://docs.microsoft.com/azure/application-gateway/application-gateway-ssl-policy-overview. Not compatible with disabled_protocols.

policyType String

The Type of the Policy. Possible values are Predefined and Custom.

cipherSuites string[]

A List of accepted cipher suites. Possible values are: TLS_DHE_DSS_WITH_AES_128_CBC_SHA, TLS_DHE_DSS_WITH_AES_128_CBC_SHA256, TLS_DHE_DSS_WITH_AES_256_CBC_SHA, TLS_DHE_DSS_WITH_AES_256_CBC_SHA256, TLS_DHE_RSA_WITH_AES_128_CBC_SHA, TLS_DHE_RSA_WITH_AES_128_GCM_SHA256, TLS_DHE_RSA_WITH_AES_256_CBC_SHA, TLS_DHE_RSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA, TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256, TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA, TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384, TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384, TLS_RSA_WITH_3DES_EDE_CBC_SHA, TLS_RSA_WITH_AES_128_CBC_SHA, TLS_RSA_WITH_AES_128_CBC_SHA256, TLS_RSA_WITH_AES_128_GCM_SHA256, TLS_RSA_WITH_AES_256_CBC_SHA, TLS_RSA_WITH_AES_256_CBC_SHA256 and TLS_RSA_WITH_AES_256_GCM_SHA384.

disabledProtocols string[]

A list of SSL Protocols which should be disabled on this Application Gateway. Possible values are TLSv1_0, TLSv1_1 and TLSv1_2.

minProtocolVersion string

The minimal TLS version. Possible values are TLSv1_0, TLSv1_1 and TLSv1_2.

policyName string

The Name of the Policy e.g AppGwSslPolicy20170401S. Required if policy_type is set to Predefined. Possible values can change over time and are published here https://docs.microsoft.com/azure/application-gateway/application-gateway-ssl-policy-overview. Not compatible with disabled_protocols.

policyType string

The Type of the Policy. Possible values are Predefined and Custom.

cipher_suites Sequence[str]

A List of accepted cipher suites. Possible values are: TLS_DHE_DSS_WITH_AES_128_CBC_SHA, TLS_DHE_DSS_WITH_AES_128_CBC_SHA256, TLS_DHE_DSS_WITH_AES_256_CBC_SHA, TLS_DHE_DSS_WITH_AES_256_CBC_SHA256, TLS_DHE_RSA_WITH_AES_128_CBC_SHA, TLS_DHE_RSA_WITH_AES_128_GCM_SHA256, TLS_DHE_RSA_WITH_AES_256_CBC_SHA, TLS_DHE_RSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA, TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256, TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA, TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384, TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384, TLS_RSA_WITH_3DES_EDE_CBC_SHA, TLS_RSA_WITH_AES_128_CBC_SHA, TLS_RSA_WITH_AES_128_CBC_SHA256, TLS_RSA_WITH_AES_128_GCM_SHA256, TLS_RSA_WITH_AES_256_CBC_SHA, TLS_RSA_WITH_AES_256_CBC_SHA256 and TLS_RSA_WITH_AES_256_GCM_SHA384.

disabled_protocols Sequence[str]

A list of SSL Protocols which should be disabled on this Application Gateway. Possible values are TLSv1_0, TLSv1_1 and TLSv1_2.

min_protocol_version str

The minimal TLS version. Possible values are TLSv1_0, TLSv1_1 and TLSv1_2.

policy_name str

The Name of the Policy e.g AppGwSslPolicy20170401S. Required if policy_type is set to Predefined. Possible values can change over time and are published here https://docs.microsoft.com/azure/application-gateway/application-gateway-ssl-policy-overview. Not compatible with disabled_protocols.

policy_type str

The Type of the Policy. Possible values are Predefined and Custom.

cipherSuites List<String>

A List of accepted cipher suites. Possible values are: TLS_DHE_DSS_WITH_AES_128_CBC_SHA, TLS_DHE_DSS_WITH_AES_128_CBC_SHA256, TLS_DHE_DSS_WITH_AES_256_CBC_SHA, TLS_DHE_DSS_WITH_AES_256_CBC_SHA256, TLS_DHE_RSA_WITH_AES_128_CBC_SHA, TLS_DHE_RSA_WITH_AES_128_GCM_SHA256, TLS_DHE_RSA_WITH_AES_256_CBC_SHA, TLS_DHE_RSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA, TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256, TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA, TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384, TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384, TLS_RSA_WITH_3DES_EDE_CBC_SHA, TLS_RSA_WITH_AES_128_CBC_SHA, TLS_RSA_WITH_AES_128_CBC_SHA256, TLS_RSA_WITH_AES_128_GCM_SHA256, TLS_RSA_WITH_AES_256_CBC_SHA, TLS_RSA_WITH_AES_256_CBC_SHA256 and TLS_RSA_WITH_AES_256_GCM_SHA384.

disabledProtocols List<String>

A list of SSL Protocols which should be disabled on this Application Gateway. Possible values are TLSv1_0, TLSv1_1 and TLSv1_2.

minProtocolVersion String

The minimal TLS version. Possible values are TLSv1_0, TLSv1_1 and TLSv1_2.

policyName String

The Name of the Policy e.g AppGwSslPolicy20170401S. Required if policy_type is set to Predefined. Possible values can change over time and are published here https://docs.microsoft.com/azure/application-gateway/application-gateway-ssl-policy-overview. Not compatible with disabled_protocols.

policyType String

The Type of the Policy. Possible values are Predefined and Custom.

ApplicationGatewayTrustedClientCertificate

Data string

The base-64 encoded certificate.

Name string

The name of the Trusted Client Certificate that is unique within this Application Gateway.

Id string

The ID of the Rewrite Rule Set

Data string

The base-64 encoded certificate.

Name string

The name of the Trusted Client Certificate that is unique within this Application Gateway.

Id string

The ID of the Rewrite Rule Set

data String

The base-64 encoded certificate.

name String

The name of the Trusted Client Certificate that is unique within this Application Gateway.

id String

The ID of the Rewrite Rule Set

data string

The base-64 encoded certificate.

name string

The name of the Trusted Client Certificate that is unique within this Application Gateway.

id string

The ID of the Rewrite Rule Set

data str

The base-64 encoded certificate.

name str

The name of the Trusted Client Certificate that is unique within this Application Gateway.

id str

The ID of the Rewrite Rule Set

data String

The base-64 encoded certificate.

name String

The name of the Trusted Client Certificate that is unique within this Application Gateway.

id String

The ID of the Rewrite Rule Set

ApplicationGatewayTrustedRootCertificate

Name string

The Name of the Trusted Root Certificate to use.

Data string

The contents of the Trusted Root Certificate which should be used. Required if key_vault_secret_id is not set.

Id string

The ID of the Rewrite Rule Set

KeyVaultSecretId string

The Secret ID of (base-64 encoded unencrypted pfx) Secret or Certificate object stored in Azure KeyVault. You need to enable soft delete for the Key Vault to use this feature. Required if data is not set.

Name string

The Name of the Trusted Root Certificate to use.

Data string

The contents of the Trusted Root Certificate which should be used. Required if key_vault_secret_id is not set.

Id string

The ID of the Rewrite Rule Set

KeyVaultSecretId string

The Secret ID of (base-64 encoded unencrypted pfx) Secret or Certificate object stored in Azure KeyVault. You need to enable soft delete for the Key Vault to use this feature. Required if data is not set.

name String

The Name of the Trusted Root Certificate to use.

data String

The contents of the Trusted Root Certificate which should be used. Required if key_vault_secret_id is not set.

id String

The ID of the Rewrite Rule Set

keyVaultSecretId String

The Secret ID of (base-64 encoded unencrypted pfx) Secret or Certificate object stored in Azure KeyVault. You need to enable soft delete for the Key Vault to use this feature. Required if data is not set.

name string

The Name of the Trusted Root Certificate to use.

data string

The contents of the Trusted Root Certificate which should be used. Required if key_vault_secret_id is not set.

id string

The ID of the Rewrite Rule Set

keyVaultSecretId string

The Secret ID of (base-64 encoded unencrypted pfx) Secret or Certificate object stored in Azure KeyVault. You need to enable soft delete for the Key Vault to use this feature. Required if data is not set.

name str

The Name of the Trusted Root Certificate to use.

data str

The contents of the Trusted Root Certificate which should be used. Required if key_vault_secret_id is not set.

id str

The ID of the Rewrite Rule Set

key_vault_secret_id str

The Secret ID of (base-64 encoded unencrypted pfx) Secret or Certificate object stored in Azure KeyVault. You need to enable soft delete for the Key Vault to use this feature. Required if data is not set.

name String

The Name of the Trusted Root Certificate to use.

data String

The contents of the Trusted Root Certificate which should be used. Required if key_vault_secret_id is not set.

id String

The ID of the Rewrite Rule Set

keyVaultSecretId String

The Secret ID of (base-64 encoded unencrypted pfx) Secret or Certificate object stored in Azure KeyVault. You need to enable soft delete for the Key Vault to use this feature. Required if data is not set.

ApplicationGatewayUrlPathMap

Name string

The Name of the URL Path Map.

PathRules List<ApplicationGatewayUrlPathMapPathRule>

One or more path_rule blocks as defined above.

DefaultBackendAddressPoolId string

The ID of the Default Backend Address Pool.

DefaultBackendAddressPoolName string

The Name of the Default Backend Address Pool which should be used for this URL Path Map. Cannot be set if default_redirect_configuration_name is set.

DefaultBackendHttpSettingsId string

The ID of the Default Backend HTTP Settings Collection.

DefaultBackendHttpSettingsName string

The Name of the Default Backend HTTP Settings Collection which should be used for this URL Path Map. Cannot be set if default_redirect_configuration_name is set.

DefaultRedirectConfigurationId string

The ID of the Default Redirect Configuration.

DefaultRedirectConfigurationName string

The Name of the Default Redirect Configuration which should be used for this URL Path Map. Cannot be set if either default_backend_address_pool_name or default_backend_http_settings_name is set.

DefaultRewriteRuleSetId string
DefaultRewriteRuleSetName string

The Name of the Default Rewrite Rule Set which should be used for this URL Path Map. Only valid for v2 SKUs.

Id string

The ID of the Rewrite Rule Set

Name string

The Name of the URL Path Map.

PathRules []ApplicationGatewayUrlPathMapPathRule

One or more path_rule blocks as defined above.

DefaultBackendAddressPoolId string

The ID of the Default Backend Address Pool.

DefaultBackendAddressPoolName string

The Name of the Default Backend Address Pool which should be used for this URL Path Map. Cannot be set if default_redirect_configuration_name is set.

DefaultBackendHttpSettingsId string

The ID of the Default Backend HTTP Settings Collection.

DefaultBackendHttpSettingsName string

The Name of the Default Backend HTTP Settings Collection which should be used for this URL Path Map. Cannot be set if default_redirect_configuration_name is set.

DefaultRedirectConfigurationId string

The ID of the Default Redirect Configuration.

DefaultRedirectConfigurationName string

The Name of the Default Redirect Configuration which should be used for this URL Path Map. Cannot be set if either default_backend_address_pool_name or default_backend_http_settings_name is set.

DefaultRewriteRuleSetId string
DefaultRewriteRuleSetName string

The Name of the Default Rewrite Rule Set which should be used for this URL Path Map. Only valid for v2 SKUs.

Id string

The ID of the Rewrite Rule Set

name String

The Name of the URL Path Map.

pathRules List<ApplicationGatewayUrlPathMapPathRule>

One or more path_rule blocks as defined above.

defaultBackendAddressPoolId String

The ID of the Default Backend Address Pool.

defaultBackendAddressPoolName String

The Name of the Default Backend Address Pool which should be used for this URL Path Map. Cannot be set if default_redirect_configuration_name is set.

defaultBackendHttpSettingsId String

The ID of the Default Backend HTTP Settings Collection.

defaultBackendHttpSettingsName String

The Name of the Default Backend HTTP Settings Collection which should be used for this URL Path Map. Cannot be set if default_redirect_configuration_name is set.

defaultRedirectConfigurationId String

The ID of the Default Redirect Configuration.

defaultRedirectConfigurationName String

The Name of the Default Redirect Configuration which should be used for this URL Path Map. Cannot be set if either default_backend_address_pool_name or default_backend_http_settings_name is set.

defaultRewriteRuleSetId String
defaultRewriteRuleSetName String

The Name of the Default Rewrite Rule Set which should be used for this URL Path Map. Only valid for v2 SKUs.

id String

The ID of the Rewrite Rule Set

name string

The Name of the URL Path Map.

pathRules ApplicationGatewayUrlPathMapPathRule[]

One or more path_rule blocks as defined above.

defaultBackendAddressPoolId string

The ID of the Default Backend Address Pool.

defaultBackendAddressPoolName string

The Name of the Default Backend Address Pool which should be used for this URL Path Map. Cannot be set if default_redirect_configuration_name is set.

defaultBackendHttpSettingsId string

The ID of the Default Backend HTTP Settings Collection.

defaultBackendHttpSettingsName string

The Name of the Default Backend HTTP Settings Collection which should be used for this URL Path Map. Cannot be set if default_redirect_configuration_name is set.

defaultRedirectConfigurationId string

The ID of the Default Redirect Configuration.

defaultRedirectConfigurationName string

The Name of the Default Redirect Configuration which should be used for this URL Path Map. Cannot be set if either default_backend_address_pool_name or default_backend_http_settings_name is set.

defaultRewriteRuleSetId string
defaultRewriteRuleSetName string

The Name of the Default Rewrite Rule Set which should be used for this URL Path Map. Only valid for v2 SKUs.

id string

The ID of the Rewrite Rule Set

name str

The Name of the URL Path Map.

path_rules Sequence[ApplicationGatewayUrlPathMapPathRule]

One or more path_rule blocks as defined above.

default_backend_address_pool_id str

The ID of the Default Backend Address Pool.

default_backend_address_pool_name str

The Name of the Default Backend Address Pool which should be used for this URL Path Map. Cannot be set if default_redirect_configuration_name is set.

default_backend_http_settings_id str

The ID of the Default Backend HTTP Settings Collection.

default_backend_http_settings_name str

The Name of the Default Backend HTTP Settings Collection which should be used for this URL Path Map. Cannot be set if default_redirect_configuration_name is set.

default_redirect_configuration_id str

The ID of the Default Redirect Configuration.

default_redirect_configuration_name str

The Name of the Default Redirect Configuration which should be used for this URL Path Map. Cannot be set if either default_backend_address_pool_name or default_backend_http_settings_name is set.

default_rewrite_rule_set_id str
default_rewrite_rule_set_name str

The Name of the Default Rewrite Rule Set which should be used for this URL Path Map. Only valid for v2 SKUs.

id str

The ID of the Rewrite Rule Set

name String

The Name of the URL Path Map.

pathRules List<Property Map>

One or more path_rule blocks as defined above.

defaultBackendAddressPoolId String

The ID of the Default Backend Address Pool.

defaultBackendAddressPoolName String

The Name of the Default Backend Address Pool which should be used for this URL Path Map. Cannot be set if default_redirect_configuration_name is set.

defaultBackendHttpSettingsId String

The ID of the Default Backend HTTP Settings Collection.

defaultBackendHttpSettingsName String

The Name of the Default Backend HTTP Settings Collection which should be used for this URL Path Map. Cannot be set if default_redirect_configuration_name is set.

defaultRedirectConfigurationId String

The ID of the Default Redirect Configuration.

defaultRedirectConfigurationName String

The Name of the Default Redirect Configuration which should be used for this URL Path Map. Cannot be set if either default_backend_address_pool_name or default_backend_http_settings_name is set.

defaultRewriteRuleSetId String
defaultRewriteRuleSetName String

The Name of the Default Rewrite Rule Set which should be used for this URL Path Map. Only valid for v2 SKUs.

id String

The ID of the Rewrite Rule Set

ApplicationGatewayUrlPathMapPathRule

Name string

The Name of the Path Rule.

Paths List<string>

A list of Paths used in this Path Rule.

BackendAddressPoolId string

The ID of the associated Backend Address Pool.

BackendAddressPoolName string

The Name of the Backend Address Pool to use for this Path Rule. Cannot be set if redirect_configuration_name is set.

BackendHttpSettingsId string

The ID of the associated Backend HTTP Settings Configuration.

BackendHttpSettingsName string

The Name of the Backend HTTP Settings Collection to use for this Path Rule. Cannot be set if redirect_configuration_name is set.

FirewallPolicyId string

The ID of the Web Application Firewall Policy which should be used as a HTTP Listener.

Id string

The ID of the Rewrite Rule Set

RedirectConfigurationId string

The ID of the associated Redirect Configuration.

RedirectConfigurationName string

The Name of a Redirect Configuration to use for this Path Rule. Cannot be set if backend_address_pool_name or backend_http_settings_name is set.

RewriteRuleSetId string

The ID of the associated Rewrite Rule Set.

RewriteRuleSetName string

The Name of the Rewrite Rule Set which should be used for this URL Path Map. Only valid for v2 SKUs.

Name string

The Name of the Path Rule.

Paths []string

A list of Paths used in this Path Rule.

BackendAddressPoolId string

The ID of the associated Backend Address Pool.

BackendAddressPoolName string

The Name of the Backend Address Pool to use for this Path Rule. Cannot be set if redirect_configuration_name is set.

BackendHttpSettingsId string

The ID of the associated Backend HTTP Settings Configuration.

BackendHttpSettingsName string

The Name of the Backend HTTP Settings Collection to use for this Path Rule. Cannot be set if redirect_configuration_name is set.

FirewallPolicyId string

The ID of the Web Application Firewall Policy which should be used as a HTTP Listener.

Id string

The ID of the Rewrite Rule Set

RedirectConfigurationId string

The ID of the associated Redirect Configuration.

RedirectConfigurationName string

The Name of a Redirect Configuration to use for this Path Rule. Cannot be set if backend_address_pool_name or backend_http_settings_name is set.

RewriteRuleSetId string

The ID of the associated Rewrite Rule Set.

RewriteRuleSetName string

The Name of the Rewrite Rule Set which should be used for this URL Path Map. Only valid for v2 SKUs.

name String

The Name of the Path Rule.

paths List<String>

A list of Paths used in this Path Rule.

backendAddressPoolId String

The ID of the associated Backend Address Pool.

backendAddressPoolName String

The Name of the Backend Address Pool to use for this Path Rule. Cannot be set if redirect_configuration_name is set.

backendHttpSettingsId String

The ID of the associated Backend HTTP Settings Configuration.

backendHttpSettingsName String

The Name of the Backend HTTP Settings Collection to use for this Path Rule. Cannot be set if redirect_configuration_name is set.

firewallPolicyId String

The ID of the Web Application Firewall Policy which should be used as a HTTP Listener.

id String

The ID of the Rewrite Rule Set

redirectConfigurationId String

The ID of the associated Redirect Configuration.

redirectConfigurationName String

The Name of a Redirect Configuration to use for this Path Rule. Cannot be set if backend_address_pool_name or backend_http_settings_name is set.

rewriteRuleSetId String

The ID of the associated Rewrite Rule Set.

rewriteRuleSetName String

The Name of the Rewrite Rule Set which should be used for this URL Path Map. Only valid for v2 SKUs.

name string

The Name of the Path Rule.

paths string[]

A list of Paths used in this Path Rule.

backendAddressPoolId string

The ID of the associated Backend Address Pool.

backendAddressPoolName string

The Name of the Backend Address Pool to use for this Path Rule. Cannot be set if redirect_configuration_name is set.

backendHttpSettingsId string

The ID of the associated Backend HTTP Settings Configuration.

backendHttpSettingsName string

The Name of the Backend HTTP Settings Collection to use for this Path Rule. Cannot be set if redirect_configuration_name is set.

firewallPolicyId string

The ID of the Web Application Firewall Policy which should be used as a HTTP Listener.

id string

The ID of the Rewrite Rule Set

redirectConfigurationId string

The ID of the associated Redirect Configuration.

redirectConfigurationName string

The Name of a Redirect Configuration to use for this Path Rule. Cannot be set if backend_address_pool_name or backend_http_settings_name is set.

rewriteRuleSetId string

The ID of the associated Rewrite Rule Set.

rewriteRuleSetName string

The Name of the Rewrite Rule Set which should be used for this URL Path Map. Only valid for v2 SKUs.

name str

The Name of the Path Rule.

paths Sequence[str]

A list of Paths used in this Path Rule.

backend_address_pool_id str

The ID of the associated Backend Address Pool.

backend_address_pool_name str

The Name of the Backend Address Pool to use for this Path Rule. Cannot be set if redirect_configuration_name is set.

backend_http_settings_id str

The ID of the associated Backend HTTP Settings Configuration.

backend_http_settings_name str

The Name of the Backend HTTP Settings Collection to use for this Path Rule. Cannot be set if redirect_configuration_name is set.

firewall_policy_id str

The ID of the Web Application Firewall Policy which should be used as a HTTP Listener.

id str

The ID of the Rewrite Rule Set

redirect_configuration_id str

The ID of the associated Redirect Configuration.

redirect_configuration_name str

The Name of a Redirect Configuration to use for this Path Rule. Cannot be set if backend_address_pool_name or backend_http_settings_name is set.

rewrite_rule_set_id str

The ID of the associated Rewrite Rule Set.

rewrite_rule_set_name str

The Name of the Rewrite Rule Set which should be used for this URL Path Map. Only valid for v2 SKUs.

name String

The Name of the Path Rule.

paths List<String>

A list of Paths used in this Path Rule.

backendAddressPoolId String

The ID of the associated Backend Address Pool.

backendAddressPoolName String

The Name of the Backend Address Pool to use for this Path Rule. Cannot be set if redirect_configuration_name is set.

backendHttpSettingsId String

The ID of the associated Backend HTTP Settings Configuration.

backendHttpSettingsName String

The Name of the Backend HTTP Settings Collection to use for this Path Rule. Cannot be set if redirect_configuration_name is set.

firewallPolicyId String

The ID of the Web Application Firewall Policy which should be used as a HTTP Listener.

id String

The ID of the Rewrite Rule Set

redirectConfigurationId String

The ID of the associated Redirect Configuration.

redirectConfigurationName String

The Name of a Redirect Configuration to use for this Path Rule. Cannot be set if backend_address_pool_name or backend_http_settings_name is set.

rewriteRuleSetId String

The ID of the associated Rewrite Rule Set.

rewriteRuleSetName String

The Name of the Rewrite Rule Set which should be used for this URL Path Map. Only valid for v2 SKUs.

ApplicationGatewayWafConfiguration

Enabled bool

Is the Web Application Firewall be enabled?

FirewallMode string

The Web Application Firewall Mode. Possible values are Detection and Prevention.

RuleSetVersion string

The Version of the Rule Set used for this Web Application Firewall. Possible values are 2.2.9, 3.0, 3.1, and 3.2.

DisabledRuleGroups List<ApplicationGatewayWafConfigurationDisabledRuleGroup>

one or more disabled_rule_group blocks as defined below.

Exclusions List<ApplicationGatewayWafConfigurationExclusion>

one or more exclusion blocks as defined below.

FileUploadLimitMb int

The File Upload Limit in MB. Accepted values are in the range 1MB to 750MB for the WAF_v2 SKU, and 1MB to 500MB for all other SKUs. Defaults to 100MB.

MaxRequestBodySizeKb int

The Maximum Request Body Size in KB. Accepted values are in the range 1KB to 128KB. Defaults to 128KB.

RequestBodyCheck bool

Is Request Body Inspection enabled? Defaults to true.

RuleSetType string

The Type of the Rule Set used for this Web Application Firewall. Currently, only OWASP is supported.

Enabled bool

Is the Web Application Firewall be enabled?

FirewallMode string

The Web Application Firewall Mode. Possible values are Detection and Prevention.

RuleSetVersion string

The Version of the Rule Set used for this Web Application Firewall. Possible values are 2.2.9, 3.0, 3.1, and 3.2.

DisabledRuleGroups []ApplicationGatewayWafConfigurationDisabledRuleGroup

one or more disabled_rule_group blocks as defined below.

Exclusions []ApplicationGatewayWafConfigurationExclusion

one or more exclusion blocks as defined below.

FileUploadLimitMb int

The File Upload Limit in MB. Accepted values are in the range 1MB to 750MB for the WAF_v2 SKU, and 1MB to 500MB for all other SKUs. Defaults to 100MB.

MaxRequestBodySizeKb int

The Maximum Request Body Size in KB. Accepted values are in the range 1KB to 128KB. Defaults to 128KB.

RequestBodyCheck bool

Is Request Body Inspection enabled? Defaults to true.

RuleSetType string

The Type of the Rule Set used for this Web Application Firewall. Currently, only OWASP is supported.

enabled Boolean

Is the Web Application Firewall be enabled?

firewallMode String

The Web Application Firewall Mode. Possible values are Detection and Prevention.

ruleSetVersion String

The Version of the Rule Set used for this Web Application Firewall. Possible values are 2.2.9, 3.0, 3.1, and 3.2.

disabledRuleGroups List<ApplicationGatewayWafConfigurationDisabledRuleGroup>

one or more disabled_rule_group blocks as defined below.

exclusions List<ApplicationGatewayWafConfigurationExclusion>

one or more exclusion blocks as defined below.

fileUploadLimitMb Integer

The File Upload Limit in MB. Accepted values are in the range 1MB to 750MB for the WAF_v2 SKU, and 1MB to 500MB for all other SKUs. Defaults to 100MB.

maxRequestBodySizeKb Integer

The Maximum Request Body Size in KB. Accepted values are in the range 1KB to 128KB. Defaults to 128KB.

requestBodyCheck Boolean

Is Request Body Inspection enabled? Defaults to true.

ruleSetType String

The Type of the Rule Set used for this Web Application Firewall. Currently, only OWASP is supported.

enabled boolean

Is the Web Application Firewall be enabled?

firewallMode string

The Web Application Firewall Mode. Possible values are Detection and Prevention.

ruleSetVersion string

The Version of the Rule Set used for this Web Application Firewall. Possible values are 2.2.9, 3.0, 3.1, and 3.2.

disabledRuleGroups ApplicationGatewayWafConfigurationDisabledRuleGroup[]

one or more disabled_rule_group blocks as defined below.

exclusions ApplicationGatewayWafConfigurationExclusion[]

one or more exclusion blocks as defined below.

fileUploadLimitMb number

The File Upload Limit in MB. Accepted values are in the range 1MB to 750MB for the WAF_v2 SKU, and 1MB to 500MB for all other SKUs. Defaults to 100MB.

maxRequestBodySizeKb number

The Maximum Request Body Size in KB. Accepted values are in the range 1KB to 128KB. Defaults to 128KB.

requestBodyCheck boolean

Is Request Body Inspection enabled? Defaults to true.

ruleSetType string

The Type of the Rule Set used for this Web Application Firewall. Currently, only OWASP is supported.

enabled bool

Is the Web Application Firewall be enabled?

firewall_mode str

The Web Application Firewall Mode. Possible values are Detection and Prevention.

rule_set_version str

The Version of the Rule Set used for this Web Application Firewall. Possible values are 2.2.9, 3.0, 3.1, and 3.2.

disabled_rule_groups Sequence[ApplicationGatewayWafConfigurationDisabledRuleGroup]

one or more disabled_rule_group blocks as defined below.

exclusions Sequence[ApplicationGatewayWafConfigurationExclusion]

one or more exclusion blocks as defined below.

file_upload_limit_mb int

The File Upload Limit in MB. Accepted values are in the range 1MB to 750MB for the WAF_v2 SKU, and 1MB to 500MB for all other SKUs. Defaults to 100MB.

max_request_body_size_kb int

The Maximum Request Body Size in KB. Accepted values are in the range 1KB to 128KB. Defaults to 128KB.

request_body_check bool

Is Request Body Inspection enabled? Defaults to true.

rule_set_type str

The Type of the Rule Set used for this Web Application Firewall. Currently, only OWASP is supported.

enabled Boolean

Is the Web Application Firewall be enabled?

firewallMode String

The Web Application Firewall Mode. Possible values are Detection and Prevention.

ruleSetVersion String

The Version of the Rule Set used for this Web Application Firewall. Possible values are 2.2.9, 3.0, 3.1, and 3.2.

disabledRuleGroups List<Property Map>

one or more disabled_rule_group blocks as defined below.

exclusions List<Property Map>

one or more exclusion blocks as defined below.

fileUploadLimitMb Number

The File Upload Limit in MB. Accepted values are in the range 1MB to 750MB for the WAF_v2 SKU, and 1MB to 500MB for all other SKUs. Defaults to 100MB.

maxRequestBodySizeKb Number

The Maximum Request Body Size in KB. Accepted values are in the range 1KB to 128KB. Defaults to 128KB.

requestBodyCheck Boolean

Is Request Body Inspection enabled? Defaults to true.

ruleSetType String

The Type of the Rule Set used for this Web Application Firewall. Currently, only OWASP is supported.

ApplicationGatewayWafConfigurationDisabledRuleGroup

RuleGroupName string

The rule group where specific rules should be disabled. Accepted values are: crs_20_protocol_violations, crs_21_protocol_anomalies, crs_23_request_limits, crs_30_http_policy, crs_35_bad_robots, crs_40_generic_attacks, crs_41_sql_injection_attacks, crs_41_xss_attacks, crs_42_tight_security, crs_45_trojans, General, REQUEST-911-METHOD-ENFORCEMENT, REQUEST-913-SCANNER-DETECTION, REQUEST-920-PROTOCOL-ENFORCEMENT, REQUEST-921-PROTOCOL-ATTACK, REQUEST-930-APPLICATION-ATTACK-LFI, REQUEST-931-APPLICATION-ATTACK-RFI, REQUEST-932-APPLICATION-ATTACK-RCE, REQUEST-933-APPLICATION-ATTACK-PHP, REQUEST-941-APPLICATION-ATTACK-XSS, REQUEST-942-APPLICATION-ATTACK-SQLI, REQUEST-943-APPLICATION-ATTACK-SESSION-FIXATION

Rules List<int>

A list of rules which should be disabled in that group. Disables all rules in the specified group if rules is not specified.

RuleGroupName string

The rule group where specific rules should be disabled. Accepted values are: crs_20_protocol_violations, crs_21_protocol_anomalies, crs_23_request_limits, crs_30_http_policy, crs_35_bad_robots, crs_40_generic_attacks, crs_41_sql_injection_attacks, crs_41_xss_attacks, crs_42_tight_security, crs_45_trojans, General, REQUEST-911-METHOD-ENFORCEMENT, REQUEST-913-SCANNER-DETECTION, REQUEST-920-PROTOCOL-ENFORCEMENT, REQUEST-921-PROTOCOL-ATTACK, REQUEST-930-APPLICATION-ATTACK-LFI, REQUEST-931-APPLICATION-ATTACK-RFI, REQUEST-932-APPLICATION-ATTACK-RCE, REQUEST-933-APPLICATION-ATTACK-PHP, REQUEST-941-APPLICATION-ATTACK-XSS, REQUEST-942-APPLICATION-ATTACK-SQLI, REQUEST-943-APPLICATION-ATTACK-SESSION-FIXATION

Rules []int

A list of rules which should be disabled in that group. Disables all rules in the specified group if rules is not specified.

ruleGroupName String

The rule group where specific rules should be disabled. Accepted values are: crs_20_protocol_violations, crs_21_protocol_anomalies, crs_23_request_limits, crs_30_http_policy, crs_35_bad_robots, crs_40_generic_attacks, crs_41_sql_injection_attacks, crs_41_xss_attacks, crs_42_tight_security, crs_45_trojans, General, REQUEST-911-METHOD-ENFORCEMENT, REQUEST-913-SCANNER-DETECTION, REQUEST-920-PROTOCOL-ENFORCEMENT, REQUEST-921-PROTOCOL-ATTACK, REQUEST-930-APPLICATION-ATTACK-LFI, REQUEST-931-APPLICATION-ATTACK-RFI, REQUEST-932-APPLICATION-ATTACK-RCE, REQUEST-933-APPLICATION-ATTACK-PHP, REQUEST-941-APPLICATION-ATTACK-XSS, REQUEST-942-APPLICATION-ATTACK-SQLI, REQUEST-943-APPLICATION-ATTACK-SESSION-FIXATION

rules List<Integer>

A list of rules which should be disabled in that group. Disables all rules in the specified group if rules is not specified.

ruleGroupName string

The rule group where specific rules should be disabled. Accepted values are: crs_20_protocol_violations, crs_21_protocol_anomalies, crs_23_request_limits, crs_30_http_policy, crs_35_bad_robots, crs_40_generic_attacks, crs_41_sql_injection_attacks, crs_41_xss_attacks, crs_42_tight_security, crs_45_trojans, General, REQUEST-911-METHOD-ENFORCEMENT, REQUEST-913-SCANNER-DETECTION, REQUEST-920-PROTOCOL-ENFORCEMENT, REQUEST-921-PROTOCOL-ATTACK, REQUEST-930-APPLICATION-ATTACK-LFI, REQUEST-931-APPLICATION-ATTACK-RFI, REQUEST-932-APPLICATION-ATTACK-RCE, REQUEST-933-APPLICATION-ATTACK-PHP, REQUEST-941-APPLICATION-ATTACK-XSS, REQUEST-942-APPLICATION-ATTACK-SQLI, REQUEST-943-APPLICATION-ATTACK-SESSION-FIXATION

rules number[]

A list of rules which should be disabled in that group. Disables all rules in the specified group if rules is not specified.

rule_group_name str

The rule group where specific rules should be disabled. Accepted values are: crs_20_protocol_violations, crs_21_protocol_anomalies, crs_23_request_limits, crs_30_http_policy, crs_35_bad_robots, crs_40_generic_attacks, crs_41_sql_injection_attacks, crs_41_xss_attacks, crs_42_tight_security, crs_45_trojans, General, REQUEST-911-METHOD-ENFORCEMENT, REQUEST-913-SCANNER-DETECTION, REQUEST-920-PROTOCOL-ENFORCEMENT, REQUEST-921-PROTOCOL-ATTACK, REQUEST-930-APPLICATION-ATTACK-LFI, REQUEST-931-APPLICATION-ATTACK-RFI, REQUEST-932-APPLICATION-ATTACK-RCE, REQUEST-933-APPLICATION-ATTACK-PHP, REQUEST-941-APPLICATION-ATTACK-XSS, REQUEST-942-APPLICATION-ATTACK-SQLI, REQUEST-943-APPLICATION-ATTACK-SESSION-FIXATION

rules Sequence[int]

A list of rules which should be disabled in that group. Disables all rules in the specified group if rules is not specified.

ruleGroupName String

The rule group where specific rules should be disabled. Accepted values are: crs_20_protocol_violations, crs_21_protocol_anomalies, crs_23_request_limits, crs_30_http_policy, crs_35_bad_robots, crs_40_generic_attacks, crs_41_sql_injection_attacks, crs_41_xss_attacks, crs_42_tight_security, crs_45_trojans, General, REQUEST-911-METHOD-ENFORCEMENT, REQUEST-913-SCANNER-DETECTION, REQUEST-920-PROTOCOL-ENFORCEMENT, REQUEST-921-PROTOCOL-ATTACK, REQUEST-930-APPLICATION-ATTACK-LFI, REQUEST-931-APPLICATION-ATTACK-RFI, REQUEST-932-APPLICATION-ATTACK-RCE, REQUEST-933-APPLICATION-ATTACK-PHP, REQUEST-941-APPLICATION-ATTACK-XSS, REQUEST-942-APPLICATION-ATTACK-SQLI, REQUEST-943-APPLICATION-ATTACK-SESSION-FIXATION

rules List<Number>

A list of rules which should be disabled in that group. Disables all rules in the specified group if rules is not specified.

ApplicationGatewayWafConfigurationExclusion

MatchVariable string

Match variable of the exclusion rule to exclude header, cookie or GET arguments. Possible values are RequestHeaderNames, RequestArgNames and RequestCookieNames

Selector string

String value which will be used for the filter operation. If empty will exclude all traffic on this match_variable

SelectorMatchOperator string

Operator which will be used to search in the variable content. Possible values are Equals, StartsWith, EndsWith, Contains. If empty will exclude all traffic on this match_variable

MatchVariable string

Match variable of the exclusion rule to exclude header, cookie or GET arguments. Possible values are RequestHeaderNames, RequestArgNames and RequestCookieNames

Selector string

String value which will be used for the filter operation. If empty will exclude all traffic on this match_variable

SelectorMatchOperator string

Operator which will be used to search in the variable content. Possible values are Equals, StartsWith, EndsWith, Contains. If empty will exclude all traffic on this match_variable

matchVariable String

Match variable of the exclusion rule to exclude header, cookie or GET arguments. Possible values are RequestHeaderNames, RequestArgNames and RequestCookieNames

selector String

String value which will be used for the filter operation. If empty will exclude all traffic on this match_variable

selectorMatchOperator String

Operator which will be used to search in the variable content. Possible values are Equals, StartsWith, EndsWith, Contains. If empty will exclude all traffic on this match_variable

matchVariable string

Match variable of the exclusion rule to exclude header, cookie or GET arguments. Possible values are RequestHeaderNames, RequestArgNames and RequestCookieNames

selector string

String value which will be used for the filter operation. If empty will exclude all traffic on this match_variable

selectorMatchOperator string

Operator which will be used to search in the variable content. Possible values are Equals, StartsWith, EndsWith, Contains. If empty will exclude all traffic on this match_variable

match_variable str

Match variable of the exclusion rule to exclude header, cookie or GET arguments. Possible values are RequestHeaderNames, RequestArgNames and RequestCookieNames

selector str

String value which will be used for the filter operation. If empty will exclude all traffic on this match_variable

selector_match_operator str

Operator which will be used to search in the variable content. Possible values are Equals, StartsWith, EndsWith, Contains. If empty will exclude all traffic on this match_variable

matchVariable String

Match variable of the exclusion rule to exclude header, cookie or GET arguments. Possible values are RequestHeaderNames, RequestArgNames and RequestCookieNames

selector String

String value which will be used for the filter operation. If empty will exclude all traffic on this match_variable

selectorMatchOperator String

Operator which will be used to search in the variable content. Possible values are Equals, StartsWith, EndsWith, Contains. If empty will exclude all traffic on this match_variable

Import

Application Gateway’s can be imported using the resource id, e.g.

 $ pulumi import azure:network/applicationGateway:ApplicationGateway example /subscriptions/00000000-0000-0000-0000-000000000000/resourceGroups/mygroup1/providers/Microsoft.Network/applicationGateways/myGateway1

Package Details

Repository
https://github.com/pulumi/pulumi-azure
License
Apache-2.0
Notes

This Pulumi package is based on the azurerm Terraform Provider.