Azure Active Directory (Azure AD) v5.41.0, Sep 15 23

Azure Active Directory (Azure AD) v5.41.0 published on Friday, Sep 15, 2023 by Pulumi

azuread.ApplicationPassword

Explore with Pulumi AI

Azure Active Directory (Azure AD) v5.41.0 published on Friday, Sep 15, 2023 by Pulumi

pulumi/pulumi-azuread

Import

This resource does not support importing.

Example Usage

Basic example

using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureAD = Pulumi.AzureAD;

return await Deployment.RunAsync(() => 
{
    var exampleApplication = new AzureAD.Application("exampleApplication", new()
    {
        DisplayName = "example",
    });

    var exampleApplicationPassword = new AzureAD.ApplicationPassword("exampleApplicationPassword", new()
    {
        ApplicationObjectId = exampleApplication.ObjectId,
    });

});

package main

import (
	"github.com/pulumi/pulumi-azuread/sdk/v5/go/azuread"
	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		exampleApplication, err := azuread.NewApplication(ctx, "exampleApplication", &azuread.ApplicationArgs{
			DisplayName: pulumi.String("example"),
		})
		if err != nil {
			return err
		}
		_, err = azuread.NewApplicationPassword(ctx, "exampleApplicationPassword", &azuread.ApplicationPasswordArgs{
			ApplicationObjectId: exampleApplication.ObjectId,
		})
		if err != nil {
			return err
		}
		return nil
	})
}

package generated_program;

import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azuread.Application;
import com.pulumi.azuread.ApplicationArgs;
import com.pulumi.azuread.ApplicationPassword;
import com.pulumi.azuread.ApplicationPasswordArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;

public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }

    public static void stack(Context ctx) {
        var exampleApplication = new Application("exampleApplication", ApplicationArgs.builder()        
            .displayName("example")
            .build());

        var exampleApplicationPassword = new ApplicationPassword("exampleApplicationPassword", ApplicationPasswordArgs.builder()        
            .applicationObjectId(exampleApplication.objectId())
            .build());

    }
}

import pulumi
import pulumi_azuread as azuread

example_application = azuread.Application("exampleApplication", display_name="example")
example_application_password = azuread.ApplicationPassword("exampleApplicationPassword", application_object_id=example_application.object_id)

import * as pulumi from "@pulumi/pulumi";
import * as azuread from "@pulumi/azuread";

const exampleApplication = new azuread.Application("exampleApplication", {displayName: "example"});
const exampleApplicationPassword = new azuread.ApplicationPassword("exampleApplicationPassword", {applicationObjectId: exampleApplication.objectId});

resources:
  exampleApplication:
    type: azuread:Application
    properties:
      displayName: example
  exampleApplicationPassword:
    type: azuread:ApplicationPassword
    properties:
      applicationObjectId: ${exampleApplication.objectId}

Time-based rotation

using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureAD = Pulumi.AzureAD;
using Time = Pulumiverse.Time;

return await Deployment.RunAsync(() => 
{
    var exampleApplication = new AzureAD.Application("exampleApplication", new()
    {
        DisplayName = "example",
    });

    var exampleRotating = new Time.Rotating("exampleRotating", new()
    {
        RotationDays = 7,
    });

    var exampleApplicationPassword = new AzureAD.ApplicationPassword("exampleApplicationPassword", new()
    {
        ApplicationObjectId = exampleApplication.ObjectId,
        RotateWhenChanged = 
        {
            { "rotation", exampleRotating.Id },
        },
    });

});

package main

import (
	"github.com/pulumi/pulumi-azuread/sdk/v5/go/azuread"
	"github.com/pulumi/pulumi-time/sdk/go/time"
	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		exampleApplication, err := azuread.NewApplication(ctx, "exampleApplication", &azuread.ApplicationArgs{
			DisplayName: pulumi.String("example"),
		})
		if err != nil {
			return err
		}
		exampleRotating, err := time.NewRotating(ctx, "exampleRotating", &time.RotatingArgs{
			RotationDays: pulumi.Int(7),
		})
		if err != nil {
			return err
		}
		_, err = azuread.NewApplicationPassword(ctx, "exampleApplicationPassword", &azuread.ApplicationPasswordArgs{
			ApplicationObjectId: exampleApplication.ObjectId,
			RotateWhenChanged: pulumi.StringMap{
				"rotation": exampleRotating.ID(),
			},
		})
		if err != nil {
			return err
		}
		return nil
	})
}

package generated_program;

import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azuread.Application;
import com.pulumi.azuread.ApplicationArgs;
import com.pulumi.time.Rotating;
import com.pulumi.time.RotatingArgs;
import com.pulumi.azuread.ApplicationPassword;
import com.pulumi.azuread.ApplicationPasswordArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;

public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }

    public static void stack(Context ctx) {
        var exampleApplication = new Application("exampleApplication", ApplicationArgs.builder()        
            .displayName("example")
            .build());

        var exampleRotating = new Rotating("exampleRotating", RotatingArgs.builder()        
            .rotationDays(7)
            .build());

        var exampleApplicationPassword = new ApplicationPassword("exampleApplicationPassword", ApplicationPasswordArgs.builder()        
            .applicationObjectId(exampleApplication.objectId())
            .rotateWhenChanged(Map.of("rotation", exampleRotating.id()))
            .build());

    }
}

import pulumi
import pulumi_azuread as azuread
import pulumiverse_time as time

example_application = azuread.Application("exampleApplication", display_name="example")
example_rotating = time.Rotating("exampleRotating", rotation_days=7)
example_application_password = azuread.ApplicationPassword("exampleApplicationPassword",
    application_object_id=example_application.object_id,
    rotate_when_changed={
        "rotation": example_rotating.id,
    })

import * as pulumi from "@pulumi/pulumi";
import * as azuread from "@pulumi/azuread";
import * as time from "@pulumiverse/time";

const exampleApplication = new azuread.Application("exampleApplication", {displayName: "example"});
const exampleRotating = new time.Rotating("exampleRotating", {rotationDays: 7});
const exampleApplicationPassword = new azuread.ApplicationPassword("exampleApplicationPassword", {
    applicationObjectId: exampleApplication.objectId,
    rotateWhenChanged: {
        rotation: exampleRotating.id,
    },
});

resources:
  exampleApplication:
    type: azuread:Application
    properties:
      displayName: example
  exampleRotating:
    type: time:Rotating
    properties:
      rotationDays: 7
  exampleApplicationPassword:
    type: azuread:ApplicationPassword
    properties:
      applicationObjectId: ${exampleApplication.objectId}
      rotateWhenChanged:
        rotation: ${exampleRotating.id}

Create ApplicationPassword Resource

new ApplicationPassword(name: string, args: ApplicationPasswordArgs, opts?: CustomResourceOptions);

@overload
def ApplicationPassword(resource_name: str,
                        opts: Optional[ResourceOptions] = None,
                        application_object_id: Optional[str] = None,
                        display_name: Optional[str] = None,
                        end_date: Optional[str] = None,
                        end_date_relative: Optional[str] = None,
                        rotate_when_changed: Optional[Mapping[str, str]] = None,
                        start_date: Optional[str] = None)
@overload
def ApplicationPassword(resource_name: str,
                        args: ApplicationPasswordArgs,
                        opts: Optional[ResourceOptions] = None)

func NewApplicationPassword(ctx *Context, name string, args ApplicationPasswordArgs, opts ...ResourceOption) (*ApplicationPassword, error)

public ApplicationPassword(string name, ApplicationPasswordArgs args, CustomResourceOptions? opts = null)

public ApplicationPassword(String name, ApplicationPasswordArgs args)
public ApplicationPassword(String name, ApplicationPasswordArgs args, CustomResourceOptions options)

type: azuread:ApplicationPassword
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.

name string: The unique name of the resource.
args ApplicationPasswordArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

resource_name str: The unique name of the resource.
args ApplicationPasswordArgs: The arguments to resource properties.
opts ResourceOptions: Bag of options to control resource's behavior.

ctx Context: Context object for the current deployment.
name string: The unique name of the resource.
args ApplicationPasswordArgs: The arguments to resource properties.
opts ResourceOption: Bag of options to control resource's behavior.

name string: The unique name of the resource.
args ApplicationPasswordArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

name String: The unique name of the resource.
args ApplicationPasswordArgs: The arguments to resource properties.
options CustomResourceOptions: Bag of options to control resource's behavior.

ApplicationPassword Resource Properties

To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

Inputs

The ApplicationPassword resource accepts the following input properties:

ApplicationObjectId string: The object ID of the application for which this password should be created. Changing this field forces a new resource to be created.
DisplayName string: A display name for the password. Changing this field forces a new resource to be created.
EndDate string: The end date until which the password is valid, formatted as an RFC3339 date string (e.g. 2018-01-01T01:02:03Z). Changing this field forces a new resource to be created.
EndDateRelative string: A relative duration for which the password is valid until, for example 240h (10 days) or 2400h30m. Changing this field forces a new resource to be created.
RotateWhenChanged Dictionary<string, string>: A map of arbitrary key/value pairs that will force recreation of the password when they change, enabling password rotation based on external conditions such as a rotating timestamp. Changing this forces a new resource to be created.
StartDate string: The start date from which the password is valid, formatted as an RFC3339 date string (e.g. 2018-01-01T01:02:03Z). If this isn't specified, the current date is used. Changing this field forces a new resource to be created.

ApplicationObjectId string: The object ID of the application for which this password should be created. Changing this field forces a new resource to be created.
DisplayName string: A display name for the password. Changing this field forces a new resource to be created.
EndDate string: The end date until which the password is valid, formatted as an RFC3339 date string (e.g. 2018-01-01T01:02:03Z). Changing this field forces a new resource to be created.
EndDateRelative string: A relative duration for which the password is valid until, for example 240h (10 days) or 2400h30m. Changing this field forces a new resource to be created.
RotateWhenChanged map[string]string: A map of arbitrary key/value pairs that will force recreation of the password when they change, enabling password rotation based on external conditions such as a rotating timestamp. Changing this forces a new resource to be created.
StartDate string: The start date from which the password is valid, formatted as an RFC3339 date string (e.g. 2018-01-01T01:02:03Z). If this isn't specified, the current date is used. Changing this field forces a new resource to be created.

applicationObjectId String: The object ID of the application for which this password should be created. Changing this field forces a new resource to be created.
displayName String: A display name for the password. Changing this field forces a new resource to be created.
endDate String: The end date until which the password is valid, formatted as an RFC3339 date string (e.g. 2018-01-01T01:02:03Z). Changing this field forces a new resource to be created.
endDateRelative String: A relative duration for which the password is valid until, for example 240h (10 days) or 2400h30m. Changing this field forces a new resource to be created.
rotateWhenChanged Map<String,String>: A map of arbitrary key/value pairs that will force recreation of the password when they change, enabling password rotation based on external conditions such as a rotating timestamp. Changing this forces a new resource to be created.
startDate String: The start date from which the password is valid, formatted as an RFC3339 date string (e.g. 2018-01-01T01:02:03Z). If this isn't specified, the current date is used. Changing this field forces a new resource to be created.

applicationObjectId string: The object ID of the application for which this password should be created. Changing this field forces a new resource to be created.
displayName string: A display name for the password. Changing this field forces a new resource to be created.
endDate string: The end date until which the password is valid, formatted as an RFC3339 date string (e.g. 2018-01-01T01:02:03Z). Changing this field forces a new resource to be created.
endDateRelative string: A relative duration for which the password is valid until, for example 240h (10 days) or 2400h30m. Changing this field forces a new resource to be created.
rotateWhenChanged {[key: string]: string}: A map of arbitrary key/value pairs that will force recreation of the password when they change, enabling password rotation based on external conditions such as a rotating timestamp. Changing this forces a new resource to be created.
startDate string: The start date from which the password is valid, formatted as an RFC3339 date string (e.g. 2018-01-01T01:02:03Z). If this isn't specified, the current date is used. Changing this field forces a new resource to be created.

application_object_id str: The object ID of the application for which this password should be created. Changing this field forces a new resource to be created.
display_name str: A display name for the password. Changing this field forces a new resource to be created.
end_date str: The end date until which the password is valid, formatted as an RFC3339 date string (e.g. 2018-01-01T01:02:03Z). Changing this field forces a new resource to be created.
end_date_relative str: A relative duration for which the password is valid until, for example 240h (10 days) or 2400h30m. Changing this field forces a new resource to be created.
rotate_when_changed Mapping[str, str]: A map of arbitrary key/value pairs that will force recreation of the password when they change, enabling password rotation based on external conditions such as a rotating timestamp. Changing this forces a new resource to be created.
start_date str: The start date from which the password is valid, formatted as an RFC3339 date string (e.g. 2018-01-01T01:02:03Z). If this isn't specified, the current date is used. Changing this field forces a new resource to be created.

applicationObjectId String: The object ID of the application for which this password should be created. Changing this field forces a new resource to be created.
displayName String: A display name for the password. Changing this field forces a new resource to be created.
endDate String: The end date until which the password is valid, formatted as an RFC3339 date string (e.g. 2018-01-01T01:02:03Z). Changing this field forces a new resource to be created.
endDateRelative String: A relative duration for which the password is valid until, for example 240h (10 days) or 2400h30m. Changing this field forces a new resource to be created.
rotateWhenChanged Map<String>: A map of arbitrary key/value pairs that will force recreation of the password when they change, enabling password rotation based on external conditions such as a rotating timestamp. Changing this forces a new resource to be created.
startDate String: The start date from which the password is valid, formatted as an RFC3339 date string (e.g. 2018-01-01T01:02:03Z). If this isn't specified, the current date is used. Changing this field forces a new resource to be created.

Outputs

All input properties are implicitly available as output properties. Additionally, the ApplicationPassword resource produces the following output properties:

Id string: The provider-assigned unique ID for this managed resource.
KeyId string: A UUID used to uniquely identify this password credential.
Value string: The password for this application, which is generated by Azure Active Directory.

Id string: The provider-assigned unique ID for this managed resource.
KeyId string: A UUID used to uniquely identify this password credential.
Value string: The password for this application, which is generated by Azure Active Directory.

id String: The provider-assigned unique ID for this managed resource.
keyId String: A UUID used to uniquely identify this password credential.
value String: The password for this application, which is generated by Azure Active Directory.

id string: The provider-assigned unique ID for this managed resource.
keyId string: A UUID used to uniquely identify this password credential.
value string: The password for this application, which is generated by Azure Active Directory.

id str: The provider-assigned unique ID for this managed resource.
key_id str: A UUID used to uniquely identify this password credential.
value str: The password for this application, which is generated by Azure Active Directory.

id String: The provider-assigned unique ID for this managed resource.
keyId String: A UUID used to uniquely identify this password credential.
value String: The password for this application, which is generated by Azure Active Directory.

Look up Existing ApplicationPassword Resource

Get an existing ApplicationPassword resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

public static get(name: string, id: Input<ID>, state?: ApplicationPasswordState, opts?: CustomResourceOptions): ApplicationPassword

@staticmethod
def get(resource_name: str,
        id: str,
        opts: Optional[ResourceOptions] = None,
        application_object_id: Optional[str] = None,
        display_name: Optional[str] = None,
        end_date: Optional[str] = None,
        end_date_relative: Optional[str] = None,
        key_id: Optional[str] = None,
        rotate_when_changed: Optional[Mapping[str, str]] = None,
        start_date: Optional[str] = None,
        value: Optional[str] = None) -> ApplicationPassword

func GetApplicationPassword(ctx *Context, name string, id IDInput, state *ApplicationPasswordState, opts ...ResourceOption) (*ApplicationPassword, error)

public static ApplicationPassword Get(string name, Input<string> id, ApplicationPasswordState? state, CustomResourceOptions? opts = null)

public static ApplicationPassword get(String name, Output<String> id, ApplicationPasswordState state, CustomResourceOptions options)

Resource lookup is not supported in YAML

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

resource_name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

The following state arguments are supported:

ApplicationObjectId string: The object ID of the application for which this password should be created. Changing this field forces a new resource to be created.
DisplayName string: A display name for the password. Changing this field forces a new resource to be created.
EndDate string: The end date until which the password is valid, formatted as an RFC3339 date string (e.g. 2018-01-01T01:02:03Z). Changing this field forces a new resource to be created.
EndDateRelative string: A relative duration for which the password is valid until, for example 240h (10 days) or 2400h30m. Changing this field forces a new resource to be created.
KeyId string: A UUID used to uniquely identify this password credential.
RotateWhenChanged Dictionary<string, string>: A map of arbitrary key/value pairs that will force recreation of the password when they change, enabling password rotation based on external conditions such as a rotating timestamp. Changing this forces a new resource to be created.
StartDate string: The start date from which the password is valid, formatted as an RFC3339 date string (e.g. 2018-01-01T01:02:03Z). If this isn't specified, the current date is used. Changing this field forces a new resource to be created.
Value string: The password for this application, which is generated by Azure Active Directory.

ApplicationObjectId string: The object ID of the application for which this password should be created. Changing this field forces a new resource to be created.
DisplayName string: A display name for the password. Changing this field forces a new resource to be created.
EndDate string: The end date until which the password is valid, formatted as an RFC3339 date string (e.g. 2018-01-01T01:02:03Z). Changing this field forces a new resource to be created.
EndDateRelative string: A relative duration for which the password is valid until, for example 240h (10 days) or 2400h30m. Changing this field forces a new resource to be created.
KeyId string: A UUID used to uniquely identify this password credential.
RotateWhenChanged map[string]string: A map of arbitrary key/value pairs that will force recreation of the password when they change, enabling password rotation based on external conditions such as a rotating timestamp. Changing this forces a new resource to be created.
StartDate string: The start date from which the password is valid, formatted as an RFC3339 date string (e.g. 2018-01-01T01:02:03Z). If this isn't specified, the current date is used. Changing this field forces a new resource to be created.
Value string: The password for this application, which is generated by Azure Active Directory.

applicationObjectId String: The object ID of the application for which this password should be created. Changing this field forces a new resource to be created.
displayName String: A display name for the password. Changing this field forces a new resource to be created.
endDate String: The end date until which the password is valid, formatted as an RFC3339 date string (e.g. 2018-01-01T01:02:03Z). Changing this field forces a new resource to be created.
endDateRelative String: A relative duration for which the password is valid until, for example 240h (10 days) or 2400h30m. Changing this field forces a new resource to be created.
keyId String: A UUID used to uniquely identify this password credential.
rotateWhenChanged Map<String,String>: A map of arbitrary key/value pairs that will force recreation of the password when they change, enabling password rotation based on external conditions such as a rotating timestamp. Changing this forces a new resource to be created.
startDate String: The start date from which the password is valid, formatted as an RFC3339 date string (e.g. 2018-01-01T01:02:03Z). If this isn't specified, the current date is used. Changing this field forces a new resource to be created.
value String: The password for this application, which is generated by Azure Active Directory.

applicationObjectId string: The object ID of the application for which this password should be created. Changing this field forces a new resource to be created.
displayName string: A display name for the password. Changing this field forces a new resource to be created.
endDate string: The end date until which the password is valid, formatted as an RFC3339 date string (e.g. 2018-01-01T01:02:03Z). Changing this field forces a new resource to be created.
endDateRelative string: A relative duration for which the password is valid until, for example 240h (10 days) or 2400h30m. Changing this field forces a new resource to be created.
keyId string: A UUID used to uniquely identify this password credential.
rotateWhenChanged {[key: string]: string}: A map of arbitrary key/value pairs that will force recreation of the password when they change, enabling password rotation based on external conditions such as a rotating timestamp. Changing this forces a new resource to be created.
startDate string: The start date from which the password is valid, formatted as an RFC3339 date string (e.g. 2018-01-01T01:02:03Z). If this isn't specified, the current date is used. Changing this field forces a new resource to be created.
value string: The password for this application, which is generated by Azure Active Directory.

application_object_id str: The object ID of the application for which this password should be created. Changing this field forces a new resource to be created.
display_name str: A display name for the password. Changing this field forces a new resource to be created.
end_date str: The end date until which the password is valid, formatted as an RFC3339 date string (e.g. 2018-01-01T01:02:03Z). Changing this field forces a new resource to be created.
end_date_relative str: A relative duration for which the password is valid until, for example 240h (10 days) or 2400h30m. Changing this field forces a new resource to be created.
key_id str: A UUID used to uniquely identify this password credential.
rotate_when_changed Mapping[str, str]: A map of arbitrary key/value pairs that will force recreation of the password when they change, enabling password rotation based on external conditions such as a rotating timestamp. Changing this forces a new resource to be created.
start_date str: The start date from which the password is valid, formatted as an RFC3339 date string (e.g. 2018-01-01T01:02:03Z). If this isn't specified, the current date is used. Changing this field forces a new resource to be created.
value str: The password for this application, which is generated by Azure Active Directory.

applicationObjectId String: The object ID of the application for which this password should be created. Changing this field forces a new resource to be created.
displayName String: A display name for the password. Changing this field forces a new resource to be created.
endDate String: The end date until which the password is valid, formatted as an RFC3339 date string (e.g. 2018-01-01T01:02:03Z). Changing this field forces a new resource to be created.
endDateRelative String: A relative duration for which the password is valid until, for example 240h (10 days) or 2400h30m. Changing this field forces a new resource to be created.
keyId String: A UUID used to uniquely identify this password credential.
rotateWhenChanged Map<String>: A map of arbitrary key/value pairs that will force recreation of the password when they change, enabling password rotation based on external conditions such as a rotating timestamp. Changing this forces a new resource to be created.
startDate String: The start date from which the password is valid, formatted as an RFC3339 date string (e.g. 2018-01-01T01:02:03Z). If this isn't specified, the current date is used. Changing this field forces a new resource to be created.
value String: The password for this application, which is generated by Azure Active Directory.

Package Details

Repository: Azure Active Directory (Azure AD) pulumi/pulumi-azuread
License: Apache-2.0
Notes: This Pulumi package is based on the azuread Terraform Provider.

Azure Active Directory (Azure AD) v5.41.0 published on Friday, Sep 15, 2023 by Pulumi

pulumi/pulumi-azuread

azuread.ApplicationPassword

On this page

On this page

Import

Example Usage

Create ApplicationPassword Resource

ApplicationPassword Resource Properties

Inputs

Outputs

Look up Existing ApplicationPassword Resource

Package Details

On this page

On this page