com.pulumi.azure.machinelearning.kotlin.WorkspaceArgs.kt Maven / Gradle / Ivy
Go to download
Show more of this group Show more artifacts with this name
Show all versions of pulumi-azure-kotlin Show documentation
Show all versions of pulumi-azure-kotlin Show documentation
Build cloud applications and infrastructure by combining the safety and reliability of infrastructure as code with the power of the Kotlin programming language.
@file:Suppress("NAME_SHADOWING", "DEPRECATION")
package com.pulumi.azure.machinelearning.kotlin
import com.pulumi.azure.machinelearning.WorkspaceArgs.builder
import com.pulumi.azure.machinelearning.kotlin.inputs.WorkspaceEncryptionArgs
import com.pulumi.azure.machinelearning.kotlin.inputs.WorkspaceEncryptionArgsBuilder
import com.pulumi.azure.machinelearning.kotlin.inputs.WorkspaceFeatureStoreArgs
import com.pulumi.azure.machinelearning.kotlin.inputs.WorkspaceFeatureStoreArgsBuilder
import com.pulumi.azure.machinelearning.kotlin.inputs.WorkspaceIdentityArgs
import com.pulumi.azure.machinelearning.kotlin.inputs.WorkspaceIdentityArgsBuilder
import com.pulumi.azure.machinelearning.kotlin.inputs.WorkspaceManagedNetworkArgs
import com.pulumi.azure.machinelearning.kotlin.inputs.WorkspaceManagedNetworkArgsBuilder
import com.pulumi.core.Output
import com.pulumi.core.Output.of
import com.pulumi.kotlin.ConvertibleToJava
import com.pulumi.kotlin.PulumiTagMarker
import com.pulumi.kotlin.applySuspend
import kotlin.Boolean
import kotlin.Deprecated
import kotlin.Pair
import kotlin.String
import kotlin.Suppress
import kotlin.Unit
import kotlin.collections.Map
import kotlin.jvm.JvmName
/**
* ## Example Usage
*
* ```typescript
* import * as pulumi from "@pulumi/pulumi";
* import * as azure from "@pulumi/azure";
* const current = azure.core.getClientConfig({});
* const example = new azure.core.ResourceGroup("example", {
* name: "example-resources",
* location: "West Europe",
* });
* const exampleInsights = new azure.appinsights.Insights("example", {
* name: "workspace-example-ai",
* location: example.location,
* resourceGroupName: example.name,
* applicationType: "web",
* });
* const exampleKeyVault = new azure.keyvault.KeyVault("example", {
* name: "workspaceexamplekeyvault",
* location: example.location,
* resourceGroupName: example.name,
* tenantId: current.then(current => current.tenantId),
* skuName: "premium",
* });
* const exampleAccount = new azure.storage.Account("example", {
* name: "workspacestorageaccount",
* location: example.location,
* resourceGroupName: example.name,
* accountTier: "Standard",
* accountReplicationType: "GRS",
* });
* const exampleWorkspace = new azure.machinelearning.Workspace("example", {
* name: "example-workspace",
* location: example.location,
* resourceGroupName: example.name,
* applicationInsightsId: exampleInsights.id,
* keyVaultId: exampleKeyVault.id,
* storageAccountId: exampleAccount.id,
* identity: {
* type: "SystemAssigned",
* },
* });
* ```
* ```python
* import pulumi
* import pulumi_azure as azure
* current = azure.core.get_client_config()
* example = azure.core.ResourceGroup("example",
* name="example-resources",
* location="West Europe")
* example_insights = azure.appinsights.Insights("example",
* name="workspace-example-ai",
* location=example.location,
* resource_group_name=example.name,
* application_type="web")
* example_key_vault = azure.keyvault.KeyVault("example",
* name="workspaceexamplekeyvault",
* location=example.location,
* resource_group_name=example.name,
* tenant_id=current.tenant_id,
* sku_name="premium")
* example_account = azure.storage.Account("example",
* name="workspacestorageaccount",
* location=example.location,
* resource_group_name=example.name,
* account_tier="Standard",
* account_replication_type="GRS")
* example_workspace = azure.machinelearning.Workspace("example",
* name="example-workspace",
* location=example.location,
* resource_group_name=example.name,
* application_insights_id=example_insights.id,
* key_vault_id=example_key_vault.id,
* storage_account_id=example_account.id,
* identity=azure.machinelearning.WorkspaceIdentityArgs(
* type="SystemAssigned",
* ))
* ```
* ```csharp
* using System.Collections.Generic;
* using System.Linq;
* using Pulumi;
* using Azure = Pulumi.Azure;
* return await Deployment.RunAsync(() =>
* {
* var current = Azure.Core.GetClientConfig.Invoke();
* var example = new Azure.Core.ResourceGroup("example", new()
* {
* Name = "example-resources",
* Location = "West Europe",
* });
* var exampleInsights = new Azure.AppInsights.Insights("example", new()
* {
* Name = "workspace-example-ai",
* Location = example.Location,
* ResourceGroupName = example.Name,
* ApplicationType = "web",
* });
* var exampleKeyVault = new Azure.KeyVault.KeyVault("example", new()
* {
* Name = "workspaceexamplekeyvault",
* Location = example.Location,
* ResourceGroupName = example.Name,
* TenantId = current.Apply(getClientConfigResult => getClientConfigResult.TenantId),
* SkuName = "premium",
* });
* var exampleAccount = new Azure.Storage.Account("example", new()
* {
* Name = "workspacestorageaccount",
* Location = example.Location,
* ResourceGroupName = example.Name,
* AccountTier = "Standard",
* AccountReplicationType = "GRS",
* });
* var exampleWorkspace = new Azure.MachineLearning.Workspace("example", new()
* {
* Name = "example-workspace",
* Location = example.Location,
* ResourceGroupName = example.Name,
* ApplicationInsightsId = exampleInsights.Id,
* KeyVaultId = exampleKeyVault.Id,
* StorageAccountId = exampleAccount.Id,
* Identity = new Azure.MachineLearning.Inputs.WorkspaceIdentityArgs
* {
* Type = "SystemAssigned",
* },
* });
* });
* ```
* ```go
* package main
* import (
* "github.com/pulumi/pulumi-azure/sdk/v5/go/azure/appinsights"
* "github.com/pulumi/pulumi-azure/sdk/v5/go/azure/core"
* "github.com/pulumi/pulumi-azure/sdk/v5/go/azure/keyvault"
* "github.com/pulumi/pulumi-azure/sdk/v5/go/azure/machinelearning"
* "github.com/pulumi/pulumi-azure/sdk/v5/go/azure/storage"
* "github.com/pulumi/pulumi/sdk/v3/go/pulumi"
* )
* func main() {
* pulumi.Run(func(ctx *pulumi.Context) error {
* current, err := core.GetClientConfig(ctx, nil, nil)
* if err != nil {
* return err
* }
* example, err := core.NewResourceGroup(ctx, "example", &core.ResourceGroupArgs{
* Name: pulumi.String("example-resources"),
* Location: pulumi.String("West Europe"),
* })
* if err != nil {
* return err
* }
* exampleInsights, err := appinsights.NewInsights(ctx, "example", &appinsights.InsightsArgs{
* Name: pulumi.String("workspace-example-ai"),
* Location: example.Location,
* ResourceGroupName: example.Name,
* ApplicationType: pulumi.String("web"),
* })
* if err != nil {
* return err
* }
* exampleKeyVault, err := keyvault.NewKeyVault(ctx, "example", &keyvault.KeyVaultArgs{
* Name: pulumi.String("workspaceexamplekeyvault"),
* Location: example.Location,
* ResourceGroupName: example.Name,
* TenantId: pulumi.String(current.TenantId),
* SkuName: pulumi.String("premium"),
* })
* if err != nil {
* return err
* }
* exampleAccount, err := storage.NewAccount(ctx, "example", &storage.AccountArgs{
* Name: pulumi.String("workspacestorageaccount"),
* Location: example.Location,
* ResourceGroupName: example.Name,
* AccountTier: pulumi.String("Standard"),
* AccountReplicationType: pulumi.String("GRS"),
* })
* if err != nil {
* return err
* }
* _, err = machinelearning.NewWorkspace(ctx, "example", &machinelearning.WorkspaceArgs{
* Name: pulumi.String("example-workspace"),
* Location: example.Location,
* ResourceGroupName: example.Name,
* ApplicationInsightsId: exampleInsights.ID(),
* KeyVaultId: exampleKeyVault.ID(),
* StorageAccountId: exampleAccount.ID(),
* Identity: &machinelearning.WorkspaceIdentityArgs{
* Type: pulumi.String("SystemAssigned"),
* },
* })
* if err != nil {
* return err
* }
* return nil
* })
* }
* ```
* ```java
* package generated_program;
* import com.pulumi.Context;
* import com.pulumi.Pulumi;
* import com.pulumi.core.Output;
* import com.pulumi.azure.core.CoreFunctions;
* import com.pulumi.azure.core.ResourceGroup;
* import com.pulumi.azure.core.ResourceGroupArgs;
* import com.pulumi.azure.appinsights.Insights;
* import com.pulumi.azure.appinsights.InsightsArgs;
* import com.pulumi.azure.keyvault.KeyVault;
* import com.pulumi.azure.keyvault.KeyVaultArgs;
* import com.pulumi.azure.storage.Account;
* import com.pulumi.azure.storage.AccountArgs;
* import com.pulumi.azure.machinelearning.Workspace;
* import com.pulumi.azure.machinelearning.WorkspaceArgs;
* import com.pulumi.azure.machinelearning.inputs.WorkspaceIdentityArgs;
* import java.util.List;
* import java.util.ArrayList;
* import java.util.Map;
* import java.io.File;
* import java.nio.file.Files;
* import java.nio.file.Paths;
* public class App {
* public static void main(String[] args) {
* Pulumi.run(App::stack);
* }
* public static void stack(Context ctx) {
* final var current = CoreFunctions.getClientConfig();
* var example = new ResourceGroup("example", ResourceGroupArgs.builder()
* .name("example-resources")
* .location("West Europe")
* .build());
* var exampleInsights = new Insights("exampleInsights", InsightsArgs.builder()
* .name("workspace-example-ai")
* .location(example.location())
* .resourceGroupName(example.name())
* .applicationType("web")
* .build());
* var exampleKeyVault = new KeyVault("exampleKeyVault", KeyVaultArgs.builder()
* .name("workspaceexamplekeyvault")
* .location(example.location())
* .resourceGroupName(example.name())
* .tenantId(current.applyValue(getClientConfigResult -> getClientConfigResult.tenantId()))
* .skuName("premium")
* .build());
* var exampleAccount = new Account("exampleAccount", AccountArgs.builder()
* .name("workspacestorageaccount")
* .location(example.location())
* .resourceGroupName(example.name())
* .accountTier("Standard")
* .accountReplicationType("GRS")
* .build());
* var exampleWorkspace = new Workspace("exampleWorkspace", WorkspaceArgs.builder()
* .name("example-workspace")
* .location(example.location())
* .resourceGroupName(example.name())
* .applicationInsightsId(exampleInsights.id())
* .keyVaultId(exampleKeyVault.id())
* .storageAccountId(exampleAccount.id())
* .identity(WorkspaceIdentityArgs.builder()
* .type("SystemAssigned")
* .build())
* .build());
* }
* }
* ```
* ```yaml
* resources:
* example:
* type: azure:core:ResourceGroup
* properties:
* name: example-resources
* location: West Europe
* exampleInsights:
* type: azure:appinsights:Insights
* name: example
* properties:
* name: workspace-example-ai
* location: ${example.location}
* resourceGroupName: ${example.name}
* applicationType: web
* exampleKeyVault:
* type: azure:keyvault:KeyVault
* name: example
* properties:
* name: workspaceexamplekeyvault
* location: ${example.location}
* resourceGroupName: ${example.name}
* tenantId: ${current.tenantId}
* skuName: premium
* exampleAccount:
* type: azure:storage:Account
* name: example
* properties:
* name: workspacestorageaccount
* location: ${example.location}
* resourceGroupName: ${example.name}
* accountTier: Standard
* accountReplicationType: GRS
* exampleWorkspace:
* type: azure:machinelearning:Workspace
* name: example
* properties:
* name: example-workspace
* location: ${example.location}
* resourceGroupName: ${example.name}
* applicationInsightsId: ${exampleInsights.id}
* keyVaultId: ${exampleKeyVault.id}
* storageAccountId: ${exampleAccount.id}
* identity:
* type: SystemAssigned
* variables:
* current:
* fn::invoke:
* Function: azure:core:getClientConfig
* Arguments: {}
* ```
*
* ### With Data Encryption
* > **NOTE:** The Key Vault must enable purge protection.
*
* ```typescript
* import * as pulumi from "@pulumi/pulumi";
* import * as azure from "@pulumi/azure";
* const current = azure.core.getClientConfig({});
* const example = new azure.core.ResourceGroup("example", {
* name: "example-resources",
* location: "West Europe",
* });
* const exampleInsights = new azure.appinsights.Insights("example", {
* name: "workspace-example-ai",
* location: example.location,
* resourceGroupName: example.name,
* applicationType: "web",
* });
* const exampleKeyVault = new azure.keyvault.KeyVault("example", {
* name: "workspaceexamplekeyvault",
* location: example.location,
* resourceGroupName: example.name,
* tenantId: current.then(current => current.tenantId),
* skuName: "premium",
* purgeProtectionEnabled: true,
* });
* const exampleAccessPolicy = new azure.keyvault.AccessPolicy("example", {
* keyVaultId: exampleKeyVault.id,
* tenantId: current.then(current => current.tenantId),
* objectId: current.then(current => current.objectId),
* keyPermissions: [
* "Create",
* "Get",
* "Delete",
* "Purge",
* "GetRotationPolicy",
* ],
* });
* const exampleAccount = new azure.storage.Account("example", {
* name: "workspacestorageaccount",
* location: example.location,
* resourceGroupName: example.name,
* accountTier: "Standard",
* accountReplicationType: "GRS",
* });
* const exampleKey = new azure.keyvault.Key("example", {
* name: "workspaceexamplekeyvaultkey",
* keyVaultId: exampleKeyVault.id,
* keyType: "RSA",
* keySize: 2048,
* keyOpts: [
* "decrypt",
* "encrypt",
* "sign",
* "unwrapKey",
* "verify",
* "wrapKey",
* ],
* });
* const exampleWorkspace = new azure.machinelearning.Workspace("example", {
* name: "example-workspace",
* location: example.location,
* resourceGroupName: example.name,
* applicationInsightsId: exampleInsights.id,
* keyVaultId: exampleKeyVault.id,
* storageAccountId: exampleAccount.id,
* identity: {
* type: "SystemAssigned",
* },
* encryption: {
* keyVaultId: exampleKeyVault.id,
* keyId: exampleKey.id,
* },
* });
* ```
* ```python
* import pulumi
* import pulumi_azure as azure
* current = azure.core.get_client_config()
* example = azure.core.ResourceGroup("example",
* name="example-resources",
* location="West Europe")
* example_insights = azure.appinsights.Insights("example",
* name="workspace-example-ai",
* location=example.location,
* resource_group_name=example.name,
* application_type="web")
* example_key_vault = azure.keyvault.KeyVault("example",
* name="workspaceexamplekeyvault",
* location=example.location,
* resource_group_name=example.name,
* tenant_id=current.tenant_id,
* sku_name="premium",
* purge_protection_enabled=True)
* example_access_policy = azure.keyvault.AccessPolicy("example",
* key_vault_id=example_key_vault.id,
* tenant_id=current.tenant_id,
* object_id=current.object_id,
* key_permissions=[
* "Create",
* "Get",
* "Delete",
* "Purge",
* "GetRotationPolicy",
* ])
* example_account = azure.storage.Account("example",
* name="workspacestorageaccount",
* location=example.location,
* resource_group_name=example.name,
* account_tier="Standard",
* account_replication_type="GRS")
* example_key = azure.keyvault.Key("example",
* name="workspaceexamplekeyvaultkey",
* key_vault_id=example_key_vault.id,
* key_type="RSA",
* key_size=2048,
* key_opts=[
* "decrypt",
* "encrypt",
* "sign",
* "unwrapKey",
* "verify",
* "wrapKey",
* ])
* example_workspace = azure.machinelearning.Workspace("example",
* name="example-workspace",
* location=example.location,
* resource_group_name=example.name,
* application_insights_id=example_insights.id,
* key_vault_id=example_key_vault.id,
* storage_account_id=example_account.id,
* identity=azure.machinelearning.WorkspaceIdentityArgs(
* type="SystemAssigned",
* ),
* encryption=azure.machinelearning.WorkspaceEncryptionArgs(
* key_vault_id=example_key_vault.id,
* key_id=example_key.id,
* ))
* ```
* ```csharp
* using System.Collections.Generic;
* using System.Linq;
* using Pulumi;
* using Azure = Pulumi.Azure;
* return await Deployment.RunAsync(() =>
* {
* var current = Azure.Core.GetClientConfig.Invoke();
* var example = new Azure.Core.ResourceGroup("example", new()
* {
* Name = "example-resources",
* Location = "West Europe",
* });
* var exampleInsights = new Azure.AppInsights.Insights("example", new()
* {
* Name = "workspace-example-ai",
* Location = example.Location,
* ResourceGroupName = example.Name,
* ApplicationType = "web",
* });
* var exampleKeyVault = new Azure.KeyVault.KeyVault("example", new()
* {
* Name = "workspaceexamplekeyvault",
* Location = example.Location,
* ResourceGroupName = example.Name,
* TenantId = current.Apply(getClientConfigResult => getClientConfigResult.TenantId),
* SkuName = "premium",
* PurgeProtectionEnabled = true,
* });
* var exampleAccessPolicy = new Azure.KeyVault.AccessPolicy("example", new()
* {
* KeyVaultId = exampleKeyVault.Id,
* TenantId = current.Apply(getClientConfigResult => getClientConfigResult.TenantId),
* ObjectId = current.Apply(getClientConfigResult => getClientConfigResult.ObjectId),
* KeyPermissions = new[]
* {
* "Create",
* "Get",
* "Delete",
* "Purge",
* "GetRotationPolicy",
* },
* });
* var exampleAccount = new Azure.Storage.Account("example", new()
* {
* Name = "workspacestorageaccount",
* Location = example.Location,
* ResourceGroupName = example.Name,
* AccountTier = "Standard",
* AccountReplicationType = "GRS",
* });
* var exampleKey = new Azure.KeyVault.Key("example", new()
* {
* Name = "workspaceexamplekeyvaultkey",
* KeyVaultId = exampleKeyVault.Id,
* KeyType = "RSA",
* KeySize = 2048,
* KeyOpts = new[]
* {
* "decrypt",
* "encrypt",
* "sign",
* "unwrapKey",
* "verify",
* "wrapKey",
* },
* });
* var exampleWorkspace = new Azure.MachineLearning.Workspace("example", new()
* {
* Name = "example-workspace",
* Location = example.Location,
* ResourceGroupName = example.Name,
* ApplicationInsightsId = exampleInsights.Id,
* KeyVaultId = exampleKeyVault.Id,
* StorageAccountId = exampleAccount.Id,
* Identity = new Azure.MachineLearning.Inputs.WorkspaceIdentityArgs
* {
* Type = "SystemAssigned",
* },
* Encryption = new Azure.MachineLearning.Inputs.WorkspaceEncryptionArgs
* {
* KeyVaultId = exampleKeyVault.Id,
* KeyId = exampleKey.Id,
* },
* });
* });
* ```
* ```go
* package main
* import (
* "github.com/pulumi/pulumi-azure/sdk/v5/go/azure/appinsights"
* "github.com/pulumi/pulumi-azure/sdk/v5/go/azure/core"
* "github.com/pulumi/pulumi-azure/sdk/v5/go/azure/keyvault"
* "github.com/pulumi/pulumi-azure/sdk/v5/go/azure/machinelearning"
* "github.com/pulumi/pulumi-azure/sdk/v5/go/azure/storage"
* "github.com/pulumi/pulumi/sdk/v3/go/pulumi"
* )
* func main() {
* pulumi.Run(func(ctx *pulumi.Context) error {
* current, err := core.GetClientConfig(ctx, nil, nil)
* if err != nil {
* return err
* }
* example, err := core.NewResourceGroup(ctx, "example", &core.ResourceGroupArgs{
* Name: pulumi.String("example-resources"),
* Location: pulumi.String("West Europe"),
* })
* if err != nil {
* return err
* }
* exampleInsights, err := appinsights.NewInsights(ctx, "example", &appinsights.InsightsArgs{
* Name: pulumi.String("workspace-example-ai"),
* Location: example.Location,
* ResourceGroupName: example.Name,
* ApplicationType: pulumi.String("web"),
* })
* if err != nil {
* return err
* }
* exampleKeyVault, err := keyvault.NewKeyVault(ctx, "example", &keyvault.KeyVaultArgs{
* Name: pulumi.String("workspaceexamplekeyvault"),
* Location: example.Location,
* ResourceGroupName: example.Name,
* TenantId: pulumi.String(current.TenantId),
* SkuName: pulumi.String("premium"),
* PurgeProtectionEnabled: pulumi.Bool(true),
* })
* if err != nil {
* return err
* }
* _, err = keyvault.NewAccessPolicy(ctx, "example", &keyvault.AccessPolicyArgs{
* KeyVaultId: exampleKeyVault.ID(),
* TenantId: pulumi.String(current.TenantId),
* ObjectId: pulumi.String(current.ObjectId),
* KeyPermissions: pulumi.StringArray{
* pulumi.String("Create"),
* pulumi.String("Get"),
* pulumi.String("Delete"),
* pulumi.String("Purge"),
* pulumi.String("GetRotationPolicy"),
* },
* })
* if err != nil {
* return err
* }
* exampleAccount, err := storage.NewAccount(ctx, "example", &storage.AccountArgs{
* Name: pulumi.String("workspacestorageaccount"),
* Location: example.Location,
* ResourceGroupName: example.Name,
* AccountTier: pulumi.String("Standard"),
* AccountReplicationType: pulumi.String("GRS"),
* })
* if err != nil {
* return err
* }
* exampleKey, err := keyvault.NewKey(ctx, "example", &keyvault.KeyArgs{
* Name: pulumi.String("workspaceexamplekeyvaultkey"),
* KeyVaultId: exampleKeyVault.ID(),
* KeyType: pulumi.String("RSA"),
* KeySize: pulumi.Int(2048),
* KeyOpts: pulumi.StringArray{
* pulumi.String("decrypt"),
* pulumi.String("encrypt"),
* pulumi.String("sign"),
* pulumi.String("unwrapKey"),
* pulumi.String("verify"),
* pulumi.String("wrapKey"),
* },
* })
* if err != nil {
* return err
* }
* _, err = machinelearning.NewWorkspace(ctx, "example", &machinelearning.WorkspaceArgs{
* Name: pulumi.String("example-workspace"),
* Location: example.Location,
* ResourceGroupName: example.Name,
* ApplicationInsightsId: exampleInsights.ID(),
* KeyVaultId: exampleKeyVault.ID(),
* StorageAccountId: exampleAccount.ID(),
* Identity: &machinelearning.WorkspaceIdentityArgs{
* Type: pulumi.String("SystemAssigned"),
* },
* Encryption: &machinelearning.WorkspaceEncryptionArgs{
* KeyVaultId: exampleKeyVault.ID(),
* KeyId: exampleKey.ID(),
* },
* })
* if err != nil {
* return err
* }
* return nil
* })
* }
* ```
* ```java
* package generated_program;
* import com.pulumi.Context;
* import com.pulumi.Pulumi;
* import com.pulumi.core.Output;
* import com.pulumi.azure.core.CoreFunctions;
* import com.pulumi.azure.core.ResourceGroup;
* import com.pulumi.azure.core.ResourceGroupArgs;
* import com.pulumi.azure.appinsights.Insights;
* import com.pulumi.azure.appinsights.InsightsArgs;
* import com.pulumi.azure.keyvault.KeyVault;
* import com.pulumi.azure.keyvault.KeyVaultArgs;
* import com.pulumi.azure.keyvault.AccessPolicy;
* import com.pulumi.azure.keyvault.AccessPolicyArgs;
* import com.pulumi.azure.storage.Account;
* import com.pulumi.azure.storage.AccountArgs;
* import com.pulumi.azure.keyvault.Key;
* import com.pulumi.azure.keyvault.KeyArgs;
* import com.pulumi.azure.machinelearning.Workspace;
* import com.pulumi.azure.machinelearning.WorkspaceArgs;
* import com.pulumi.azure.machinelearning.inputs.WorkspaceIdentityArgs;
* import com.pulumi.azure.machinelearning.inputs.WorkspaceEncryptionArgs;
* import java.util.List;
* import java.util.ArrayList;
* import java.util.Map;
* import java.io.File;
* import java.nio.file.Files;
* import java.nio.file.Paths;
* public class App {
* public static void main(String[] args) {
* Pulumi.run(App::stack);
* }
* public static void stack(Context ctx) {
* final var current = CoreFunctions.getClientConfig();
* var example = new ResourceGroup("example", ResourceGroupArgs.builder()
* .name("example-resources")
* .location("West Europe")
* .build());
* var exampleInsights = new Insights("exampleInsights", InsightsArgs.builder()
* .name("workspace-example-ai")
* .location(example.location())
* .resourceGroupName(example.name())
* .applicationType("web")
* .build());
* var exampleKeyVault = new KeyVault("exampleKeyVault", KeyVaultArgs.builder()
* .name("workspaceexamplekeyvault")
* .location(example.location())
* .resourceGroupName(example.name())
* .tenantId(current.applyValue(getClientConfigResult -> getClientConfigResult.tenantId()))
* .skuName("premium")
* .purgeProtectionEnabled(true)
* .build());
* var exampleAccessPolicy = new AccessPolicy("exampleAccessPolicy", AccessPolicyArgs.builder()
* .keyVaultId(exampleKeyVault.id())
* .tenantId(current.applyValue(getClientConfigResult -> getClientConfigResult.tenantId()))
* .objectId(current.applyValue(getClientConfigResult -> getClientConfigResult.objectId()))
* .keyPermissions(
* "Create",
* "Get",
* "Delete",
* "Purge",
* "GetRotationPolicy")
* .build());
* var exampleAccount = new Account("exampleAccount", AccountArgs.builder()
* .name("workspacestorageaccount")
* .location(example.location())
* .resourceGroupName(example.name())
* .accountTier("Standard")
* .accountReplicationType("GRS")
* .build());
* var exampleKey = new Key("exampleKey", KeyArgs.builder()
* .name("workspaceexamplekeyvaultkey")
* .keyVaultId(exampleKeyVault.id())
* .keyType("RSA")
* .keySize(2048)
* .keyOpts(
* "decrypt",
* "encrypt",
* "sign",
* "unwrapKey",
* "verify",
* "wrapKey")
* .build());
* var exampleWorkspace = new Workspace("exampleWorkspace", WorkspaceArgs.builder()
* .name("example-workspace")
* .location(example.location())
* .resourceGroupName(example.name())
* .applicationInsightsId(exampleInsights.id())
* .keyVaultId(exampleKeyVault.id())
* .storageAccountId(exampleAccount.id())
* .identity(WorkspaceIdentityArgs.builder()
* .type("SystemAssigned")
* .build())
* .encryption(WorkspaceEncryptionArgs.builder()
* .keyVaultId(exampleKeyVault.id())
* .keyId(exampleKey.id())
* .build())
* .build());
* }
* }
* ```
* ```yaml
* resources:
* example:
* type: azure:core:ResourceGroup
* properties:
* name: example-resources
* location: West Europe
* exampleInsights:
* type: azure:appinsights:Insights
* name: example
* properties:
* name: workspace-example-ai
* location: ${example.location}
* resourceGroupName: ${example.name}
* applicationType: web
* exampleKeyVault:
* type: azure:keyvault:KeyVault
* name: example
* properties:
* name: workspaceexamplekeyvault
* location: ${example.location}
* resourceGroupName: ${example.name}
* tenantId: ${current.tenantId}
* skuName: premium
* purgeProtectionEnabled: true
* exampleAccessPolicy:
* type: azure:keyvault:AccessPolicy
* name: example
* properties:
* keyVaultId: ${exampleKeyVault.id}
* tenantId: ${current.tenantId}
* objectId: ${current.objectId}
* keyPermissions:
* - Create
* - Get
* - Delete
* - Purge
* - GetRotationPolicy
* exampleAccount:
* type: azure:storage:Account
* name: example
* properties:
* name: workspacestorageaccount
* location: ${example.location}
* resourceGroupName: ${example.name}
* accountTier: Standard
* accountReplicationType: GRS
* exampleKey:
* type: azure:keyvault:Key
* name: example
* properties:
* name: workspaceexamplekeyvaultkey
* keyVaultId: ${exampleKeyVault.id}
* keyType: RSA
* keySize: 2048
* keyOpts:
* - decrypt
* - encrypt
* - sign
* - unwrapKey
* - verify
* - wrapKey
* exampleWorkspace:
* type: azure:machinelearning:Workspace
* name: example
* properties:
* name: example-workspace
* location: ${example.location}
* resourceGroupName: ${example.name}
* applicationInsightsId: ${exampleInsights.id}
* keyVaultId: ${exampleKeyVault.id}
* storageAccountId: ${exampleAccount.id}
* identity:
* type: SystemAssigned
* encryption:
* keyVaultId: ${exampleKeyVault.id}
* keyId: ${exampleKey.id}
* variables:
* current:
* fn::invoke:
* Function: azure:core:getClientConfig
* Arguments: {}
* ```
*
* ### With User Assigned Identity And Data Encryption
* > **NOTE:** The Key Vault must enable purge protection.
*
* ```typescript
* import * as pulumi from "@pulumi/pulumi";
* import * as azure from "@pulumi/azure";
* import * as azuread from "@pulumi/azuread";
* const current = azure.core.getClientConfig({});
* const example = new azure.core.ResourceGroup("example", {
* name: "example-resources",
* location: "West Europe",
* });
* const exampleInsights = new azure.appinsights.Insights("example", {
* name: "example-ai",
* location: example.location,
* resourceGroupName: example.name,
* applicationType: "web",
* });
* const exampleAccount = new azure.storage.Account("example", {
* name: "examplestorageaccount",
* location: example.location,
* resourceGroupName: example.name,
* accountTier: "Standard",
* accountReplicationType: "GRS",
* });
* const exampleKeyVault = new azure.keyvault.KeyVault("example", {
* name: "example-keyvalut",
* location: example.location,
* resourceGroupName: example.name,
* tenantId: current.then(current => current.tenantId),
* skuName: "premium",
* purgeProtectionEnabled: true,
* });
* const exampleUserAssignedIdentity = new azure.authorization.UserAssignedIdentity("example", {
* name: "example-identity",
* location: example.location,
* resourceGroupName: example.name,
* });
* const example_identity = new azure.keyvault.AccessPolicy("example-identity", {
* keyVaultId: exampleKeyVault.id,
* tenantId: current.then(current => current.tenantId),
* objectId: exampleUserAssignedIdentity.principalId,
* keyPermissions: [
* "WrapKey",
* "UnwrapKey",
* "Get",
* "Recover",
* ],
* secretPermissions: [
* "Get",
* "List",
* "Set",
* "Delete",
* "Recover",
* "Backup",
* "Restore",
* ],
* });
* const example_sp = new azure.keyvault.AccessPolicy("example-sp", {
* keyVaultId: exampleKeyVault.id,
* tenantId: current.then(current => current.tenantId),
* objectId: current.then(current => current.objectId),
* keyPermissions: [
* "Get",
* "Create",
* "Recover",
* "Delete",
* "Purge",
* "GetRotationPolicy",
* ],
* });
* const test = azuread.getServicePrincipal({
* displayName: "Azure Cosmos DB",
* });
* const example_cosmosdb = new azure.keyvault.AccessPolicy("example-cosmosdb", {
* keyVaultId: exampleKeyVault.id,
* tenantId: current.then(current => current.tenantId),
* objectId: test.then(test => test.objectId),
* keyPermissions: [
* "Get",
* "Recover",
* "UnwrapKey",
* "WrapKey",
* ],
* });
* const exampleKey = new azure.keyvault.Key("example", {
* name: "example-keyvaultkey",
* keyVaultId: exampleKeyVault.id,
* keyType: "RSA",
* keySize: 2048,
* keyOpts: [
* "decrypt",
* "encrypt",
* "sign",
* "unwrapKey",
* "verify",
* "wrapKey",
* ],
* });
* const example_role1 = new azure.authorization.Assignment("example-role1", {
* scope: exampleKeyVault.id,
* roleDefinitionName: "Contributor",
* principalId: exampleUserAssignedIdentity.principalId,
* });
* const example_role2 = new azure.authorization.Assignment("example-role2", {
* scope: exampleAccount.id,
* roleDefinitionName: "Storage Blob Data Contributor",
* principalId: exampleUserAssignedIdentity.principalId,
* });
* const example_role3 = new azure.authorization.Assignment("example-role3", {
* scope: exampleAccount.id,
* roleDefinitionName: "Contributor",
* principalId: exampleUserAssignedIdentity.principalId,
* });
* const example_role4 = new azure.authorization.Assignment("example-role4", {
* scope: exampleInsights.id,
* roleDefinitionName: "Contributor",
* principalId: exampleUserAssignedIdentity.principalId,
* });
* const exampleWorkspace = new azure.machinelearning.Workspace("example", {
* name: "example-workspace",
* location: example.location,
* resourceGroupName: example.name,
* applicationInsightsId: exampleInsights.id,
* keyVaultId: exampleKeyVault.id,
* storageAccountId: exampleAccount.id,
* highBusinessImpact: true,
* primaryUserAssignedIdentity: exampleUserAssignedIdentity.id,
* identity: {
* type: "UserAssigned",
* identityIds: [exampleUserAssignedIdentity.id],
* },
* encryption: {
* userAssignedIdentityId: exampleUserAssignedIdentity.id,
* keyVaultId: exampleKeyVault.id,
* keyId: exampleKey.id,
* },
* });
* ```
* ```python
* import pulumi
* import pulumi_azure as azure
* import pulumi_azuread as azuread
* current = azure.core.get_client_config()
* example = azure.core.ResourceGroup("example",
* name="example-resources",
* location="West Europe")
* example_insights = azure.appinsights.Insights("example",
* name="example-ai",
* location=example.location,
* resource_group_name=example.name,
* application_type="web")
* example_account = azure.storage.Account("example",
* name="examplestorageaccount",
* location=example.location,
* resource_group_name=example.name,
* account_tier="Standard",
* account_replication_type="GRS")
* example_key_vault = azure.keyvault.KeyVault("example",
* name="example-keyvalut",
* location=example.location,
* resource_group_name=example.name,
* tenant_id=current.tenant_id,
* sku_name="premium",
* purge_protection_enabled=True)
* example_user_assigned_identity = azure.authorization.UserAssignedIdentity("example",
* name="example-identity",
* location=example.location,
* resource_group_name=example.name)
* example_identity = azure.keyvault.AccessPolicy("example-identity",
* key_vault_id=example_key_vault.id,
* tenant_id=current.tenant_id,
* object_id=example_user_assigned_identity.principal_id,
* key_permissions=[
* "WrapKey",
* "UnwrapKey",
* "Get",
* "Recover",
* ],
* secret_permissions=[
* "Get",
* "List",
* "Set",
* "Delete",
* "Recover",
* "Backup",
* "Restore",
* ])
* example_sp = azure.keyvault.AccessPolicy("example-sp",
* key_vault_id=example_key_vault.id,
* tenant_id=current.tenant_id,
* object_id=current.object_id,
* key_permissions=[
* "Get",
* "Create",
* "Recover",
* "Delete",
* "Purge",
* "GetRotationPolicy",
* ])
* test = azuread.get_service_principal(display_name="Azure Cosmos DB")
* example_cosmosdb = azure.keyvault.AccessPolicy("example-cosmosdb",
* key_vault_id=example_key_vault.id,
* tenant_id=current.tenant_id,
* object_id=test.object_id,
* key_permissions=[
* "Get",
* "Recover",
* "UnwrapKey",
* "WrapKey",
* ])
* example_key = azure.keyvault.Key("example",
* name="example-keyvaultkey",
* key_vault_id=example_key_vault.id,
* key_type="RSA",
* key_size=2048,
* key_opts=[
* "decrypt",
* "encrypt",
* "sign",
* "unwrapKey",
* "verify",
* "wrapKey",
* ])
* example_role1 = azure.authorization.Assignment("example-role1",
* scope=example_key_vault.id,
* role_definition_name="Contributor",
* principal_id=example_user_assigned_identity.principal_id)
* example_role2 = azure.authorization.Assignment("example-role2",
* scope=example_account.id,
* role_definition_name="Storage Blob Data Contributor",
* principal_id=example_user_assigned_identity.principal_id)
* example_role3 = azure.authorization.Assignment("example-role3",
* scope=example_account.id,
* role_definition_name="Contributor",
* principal_id=example_user_assigned_identity.principal_id)
* example_role4 = azure.authorization.Assignment("example-role4",
* scope=example_insights.id,
* role_definition_name="Contributor",
* principal_id=example_user_assigned_identity.principal_id)
* example_workspace = azure.machinelearning.Workspace("example",
* name="example-workspace",
* location=example.location,
* resource_group_name=example.name,
* application_insights_id=example_insights.id,
* key_vault_id=example_key_vault.id,
* storage_account_id=example_account.id,
* high_business_impact=True,
* primary_user_assigned_identity=example_user_assigned_identity.id,
* identity=azure.machinelearning.WorkspaceIdentityArgs(
* type="UserAssigned",
* identity_ids=[example_user_assigned_identity.id],
* ),
* encryption=azure.machinelearning.WorkspaceEncryptionArgs(
* user_assigned_identity_id=example_user_assigned_identity.id,
* key_vault_id=example_key_vault.id,
* key_id=example_key.id,
* ))
* ```
* ```csharp
* using System.Collections.Generic;
* using System.Linq;
* using Pulumi;
* using Azure = Pulumi.Azure;
* using AzureAD = Pulumi.AzureAD;
* return await Deployment.RunAsync(() =>
* {
* var current = Azure.Core.GetClientConfig.Invoke();
* var example = new Azure.Core.ResourceGroup("example", new()
* {
* Name = "example-resources",
* Location = "West Europe",
* });
* var exampleInsights = new Azure.AppInsights.Insights("example", new()
* {
* Name = "example-ai",
* Location = example.Location,
* ResourceGroupName = example.Name,
* ApplicationType = "web",
* });
* var exampleAccount = new Azure.Storage.Account("example", new()
* {
* Name = "examplestorageaccount",
* Location = example.Location,
* ResourceGroupName = example.Name,
* AccountTier = "Standard",
* AccountReplicationType = "GRS",
* });
* var exampleKeyVault = new Azure.KeyVault.KeyVault("example", new()
* {
* Name = "example-keyvalut",
* Location = example.Location,
* ResourceGroupName = example.Name,
* TenantId = current.Apply(getClientConfigResult => getClientConfigResult.TenantId),
* SkuName = "premium",
* PurgeProtectionEnabled = true,
* });
* var exampleUserAssignedIdentity = new Azure.Authorization.UserAssignedIdentity("example", new()
* {
* Name = "example-identity",
* Location = example.Location,
* ResourceGroupName = example.Name,
* });
* var example_identity = new Azure.KeyVault.AccessPolicy("example-identity", new()
* {
* KeyVaultId = exampleKeyVault.Id,
* TenantId = current.Apply(getClientConfigResult => getClientConfigResult.TenantId),
* ObjectId = exampleUserAssignedIdentity.PrincipalId,
* KeyPermissions = new[]
* {
* "WrapKey",
* "UnwrapKey",
* "Get",
* "Recover",
* },
* SecretPermissions = new[]
* {
* "Get",
* "List",
* "Set",
* "Delete",
* "Recover",
* "Backup",
* "Restore",
* },
* });
* var example_sp = new Azure.KeyVault.AccessPolicy("example-sp", new()
* {
* KeyVaultId = exampleKeyVault.Id,
* TenantId = current.Apply(getClientConfigResult => getClientConfigResult.TenantId),
* ObjectId = current.Apply(getClientConfigResult => getClientConfigResult.ObjectId),
* KeyPermissions = new[]
* {
* "Get",
* "Create",
* "Recover",
* "Delete",
* "Purge",
* "GetRotationPolicy",
* },
* });
* var test = AzureAD.GetServicePrincipal.Invoke(new()
* {
* DisplayName = "Azure Cosmos DB",
* });
* var example_cosmosdb = new Azure.KeyVault.AccessPolicy("example-cosmosdb", new()
* {
* KeyVaultId = exampleKeyVault.Id,
* TenantId = current.Apply(getClientConfigResult => getClientConfigResult.TenantId),
* ObjectId = test.Apply(getServicePrincipalResult => getServicePrincipalResult.ObjectId),
* KeyPermissions = new[]
* {
* "Get",
* "Recover",
* "UnwrapKey",
* "WrapKey",
* },
* });
* var exampleKey = new Azure.KeyVault.Key("example", new()
* {
* Name = "example-keyvaultkey",
* KeyVaultId = exampleKeyVault.Id,
* KeyType = "RSA",
* KeySize = 2048,
* KeyOpts = new[]
* {
* "decrypt",
* "encrypt",
* "sign",
* "unwrapKey",
* "verify",
* "wrapKey",
* },
* });
* var example_role1 = new Azure.Authorization.Assignment("example-role1", new()
* {
* Scope = exampleKeyVault.Id,
* RoleDefinitionName = "Contributor",
* PrincipalId = exampleUserAssignedIdentity.PrincipalId,
* });
* var example_role2 = new Azure.Authorization.Assignment("example-role2", new()
* {
* Scope = exampleAccount.Id,
* RoleDefinitionName = "Storage Blob Data Contributor",
* PrincipalId = exampleUserAssignedIdentity.PrincipalId,
* });
* var example_role3 = new Azure.Authorization.Assignment("example-role3", new()
* {
* Scope = exampleAccount.Id,
* RoleDefinitionName = "Contributor",
* PrincipalId = exampleUserAssignedIdentity.PrincipalId,
* });
* var example_role4 = new Azure.Authorization.Assignment("example-role4", new()
* {
* Scope = exampleInsights.Id,
* RoleDefinitionName = "Contributor",
* PrincipalId = exampleUserAssignedIdentity.PrincipalId,
* });
* var exampleWorkspace = new Azure.MachineLearning.Workspace("example", new()
* {
* Name = "example-workspace",
* Location = example.Location,
* ResourceGroupName = example.Name,
* ApplicationInsightsId = exampleInsights.Id,
* KeyVaultId = exampleKeyVault.Id,
* StorageAccountId = exampleAccount.Id,
* HighBusinessImpact = true,
* PrimaryUserAssignedIdentity = exampleUserAssignedIdentity.Id,
* Identity = new Azure.MachineLearning.Inputs.WorkspaceIdentityArgs
* {
* Type = "UserAssigned",
* IdentityIds = new[]
* {
* exampleUserAssignedIdentity.Id,
* },
* },
* Encryption = new Azure.MachineLearning.Inputs.WorkspaceEncryptionArgs
* {
* UserAssignedIdentityId = exampleUserAssignedIdentity.Id,
* KeyVaultId = exampleKeyVault.Id,
* KeyId = exampleKey.Id,
* },
* });
* });
* ```
* ```go
* package main
* import (
* "github.com/pulumi/pulumi-azure/sdk/v5/go/azure/appinsights"
* "github.com/pulumi/pulumi-azure/sdk/v5/go/azure/authorization"
* "github.com/pulumi/pulumi-azure/sdk/v5/go/azure/core"
* "github.com/pulumi/pulumi-azure/sdk/v5/go/azure/keyvault"
* "github.com/pulumi/pulumi-azure/sdk/v5/go/azure/machinelearning"
* "github.com/pulumi/pulumi-azure/sdk/v5/go/azure/storage"
* "github.com/pulumi/pulumi-azuread/sdk/v5/go/azuread"
* "github.com/pulumi/pulumi/sdk/v3/go/pulumi"
* )
* func main() {
* pulumi.Run(func(ctx *pulumi.Context) error {
* current, err := core.GetClientConfig(ctx, nil, nil)
* if err != nil {
* return err
* }
* example, err := core.NewResourceGroup(ctx, "example", &core.ResourceGroupArgs{
* Name: pulumi.String("example-resources"),
* Location: pulumi.String("West Europe"),
* })
* if err != nil {
* return err
* }
* exampleInsights, err := appinsights.NewInsights(ctx, "example", &appinsights.InsightsArgs{
* Name: pulumi.String("example-ai"),
* Location: example.Location,
* ResourceGroupName: example.Name,
* ApplicationType: pulumi.String("web"),
* })
* if err != nil {
* return err
* }
* exampleAccount, err := storage.NewAccount(ctx, "example", &storage.AccountArgs{
* Name: pulumi.String("examplestorageaccount"),
* Location: example.Location,
* ResourceGroupName: example.Name,
* AccountTier: pulumi.String("Standard"),
* AccountReplicationType: pulumi.String("GRS"),
* })
* if err != nil {
* return err
* }
* exampleKeyVault, err := keyvault.NewKeyVault(ctx, "example", &keyvault.KeyVaultArgs{
* Name: pulumi.String("example-keyvalut"),
* Location: example.Location,
* ResourceGroupName: example.Name,
* TenantId: pulumi.String(current.TenantId),
* SkuName: pulumi.String("premium"),
* PurgeProtectionEnabled: pulumi.Bool(true),
* })
* if err != nil {
* return err
* }
* exampleUserAssignedIdentity, err := authorization.NewUserAssignedIdentity(ctx, "example", &authorization.UserAssignedIdentityArgs{
* Name: pulumi.String("example-identity"),
* Location: example.Location,
* ResourceGroupName: example.Name,
* })
* if err != nil {
* return err
* }
* _, err = keyvault.NewAccessPolicy(ctx, "example-identity", &keyvault.AccessPolicyArgs{
* KeyVaultId: exampleKeyVault.ID(),
* TenantId: pulumi.String(current.TenantId),
* ObjectId: exampleUserAssignedIdentity.PrincipalId,
* KeyPermissions: pulumi.StringArray{
* pulumi.String("WrapKey"),
* pulumi.String("UnwrapKey"),
* pulumi.String("Get"),
* pulumi.String("Recover"),
* },
* SecretPermissions: pulumi.StringArray{
* pulumi.String("Get"),
* pulumi.String("List"),
* pulumi.String("Set"),
* pulumi.String("Delete"),
* pulumi.String("Recover"),
* pulumi.String("Backup"),
* pulumi.String("Restore"),
* },
* })
* if err != nil {
* return err
* }
* _, err = keyvault.NewAccessPolicy(ctx, "example-sp", &keyvault.AccessPolicyArgs{
* KeyVaultId: exampleKeyVault.ID(),
* TenantId: pulumi.String(current.TenantId),
* ObjectId: pulumi.String(current.ObjectId),
* KeyPermissions: pulumi.StringArray{
* pulumi.String("Get"),
* pulumi.String("Create"),
* pulumi.String("Recover"),
* pulumi.String("Delete"),
* pulumi.String("Purge"),
* pulumi.String("GetRotationPolicy"),
* },
* })
* if err != nil {
* return err
* }
* test, err := azuread.LookupServicePrincipal(ctx, &azuread.LookupServicePrincipalArgs{
* DisplayName: pulumi.StringRef("Azure Cosmos DB"),
* }, nil)
* if err != nil {
* return err
* }
* _, err = keyvault.NewAccessPolicy(ctx, "example-cosmosdb", &keyvault.AccessPolicyArgs{
* KeyVaultId: exampleKeyVault.ID(),
* TenantId: pulumi.String(current.TenantId),
* ObjectId: pulumi.String(test.ObjectId),
* KeyPermissions: pulumi.StringArray{
* pulumi.String("Get"),
* pulumi.String("Recover"),
* pulumi.String("UnwrapKey"),
* pulumi.String("WrapKey"),
* },
* })
* if err != nil {
* return err
* }
* exampleKey, err := keyvault.NewKey(ctx, "example", &keyvault.KeyArgs{
* Name: pulumi.String("example-keyvaultkey"),
* KeyVaultId: exampleKeyVault.ID(),
* KeyType: pulumi.String("RSA"),
* KeySize: pulumi.Int(2048),
* KeyOpts: pulumi.StringArray{
* pulumi.String("decrypt"),
* pulumi.String("encrypt"),
* pulumi.String("sign"),
* pulumi.String("unwrapKey"),
* pulumi.String("verify"),
* pulumi.String("wrapKey"),
* },
* })
* if err != nil {
* return err
* }
* _, err = authorization.NewAssignment(ctx, "example-role1", &authorization.AssignmentArgs{
* Scope: exampleKeyVault.ID(),
* RoleDefinitionName: pulumi.String("Contributor"),
* PrincipalId: exampleUserAssignedIdentity.PrincipalId,
* })
* if err != nil {
* return err
* }
* _, err = authorization.NewAssignment(ctx, "example-role2", &authorization.AssignmentArgs{
* Scope: exampleAccount.ID(),
* RoleDefinitionName: pulumi.String("Storage Blob Data Contributor"),
* PrincipalId: exampleUserAssignedIdentity.PrincipalId,
* })
* if err != nil {
* return err
* }
* _, err = authorization.NewAssignment(ctx, "example-role3", &authorization.AssignmentArgs{
* Scope: exampleAccount.ID(),
* RoleDefinitionName: pulumi.String("Contributor"),
* PrincipalId: exampleUserAssignedIdentity.PrincipalId,
* })
* if err != nil {
* return err
* }
* _, err = authorization.NewAssignment(ctx, "example-role4", &authorization.AssignmentArgs{
* Scope: exampleInsights.ID(),
* RoleDefinitionName: pulumi.String("Contributor"),
* PrincipalId: exampleUserAssignedIdentity.PrincipalId,
* })
* if err != nil {
* return err
* }
* _, err = machinelearning.NewWorkspace(ctx, "example", &machinelearning.WorkspaceArgs{
* Name: pulumi.String("example-workspace"),
* Location: example.Location,
* ResourceGroupName: example.Name,
* ApplicationInsightsId: exampleInsights.ID(),
* KeyVaultId: exampleKeyVault.ID(),
* StorageAccountId: exampleAccount.ID(),
* HighBusinessImpact: pulumi.Bool(true),
* PrimaryUserAssignedIdentity: exampleUserAssignedIdentity.ID(),
* Identity: &machinelearning.WorkspaceIdentityArgs{
* Type: pulumi.String("UserAssigned"),
* IdentityIds: pulumi.StringArray{
* exampleUserAssignedIdentity.ID(),
* },
* },
* Encryption: &machinelearning.WorkspaceEncryptionArgs{
* UserAssignedIdentityId: exampleUserAssignedIdentity.ID(),
* KeyVaultId: exampleKeyVault.ID(),
* KeyId: exampleKey.ID(),
* },
* })
* if err != nil {
* return err
* }
* return nil
* })
* }
* ```
* ```java
* package generated_program;
* import com.pulumi.Context;
* import com.pulumi.Pulumi;
* import com.pulumi.core.Output;
* import com.pulumi.azure.core.CoreFunctions;
* import com.pulumi.azure.core.ResourceGroup;
* import com.pulumi.azure.core.ResourceGroupArgs;
* import com.pulumi.azure.appinsights.Insights;
* import com.pulumi.azure.appinsights.InsightsArgs;
* import com.pulumi.azure.storage.Account;
* import com.pulumi.azure.storage.AccountArgs;
* import com.pulumi.azure.keyvault.KeyVault;
* import com.pulumi.azure.keyvault.KeyVaultArgs;
* import com.pulumi.azure.authorization.UserAssignedIdentity;
* import com.pulumi.azure.authorization.UserAssignedIdentityArgs;
* import com.pulumi.azure.keyvault.AccessPolicy;
* import com.pulumi.azure.keyvault.AccessPolicyArgs;
* import com.pulumi.azuread.AzureadFunctions;
* import com.pulumi.azuread.inputs.GetServicePrincipalArgs;
* import com.pulumi.azure.keyvault.Key;
* import com.pulumi.azure.keyvault.KeyArgs;
* import com.pulumi.azure.authorization.Assignment;
* import com.pulumi.azure.authorization.AssignmentArgs;
* import com.pulumi.azure.machinelearning.Workspace;
* import com.pulumi.azure.machinelearning.WorkspaceArgs;
* import com.pulumi.azure.machinelearning.inputs.WorkspaceIdentityArgs;
* import com.pulumi.azure.machinelearning.inputs.WorkspaceEncryptionArgs;
* import java.util.List;
* import java.util.ArrayList;
* import java.util.Map;
* import java.io.File;
* import java.nio.file.Files;
* import java.nio.file.Paths;
* public class App {
* public static void main(String[] args) {
* Pulumi.run(App::stack);
* }
* public static void stack(Context ctx) {
* final var current = CoreFunctions.getClientConfig();
* var example = new ResourceGroup("example", ResourceGroupArgs.builder()
* .name("example-resources")
* .location("West Europe")
* .build());
* var exampleInsights = new Insights("exampleInsights", InsightsArgs.builder()
* .name("example-ai")
* .location(example.location())
* .resourceGroupName(example.name())
* .applicationType("web")
* .build());
* var exampleAccount = new Account("exampleAccount", AccountArgs.builder()
* .name("examplestorageaccount")
* .location(example.location())
* .resourceGroupName(example.name())
* .accountTier("Standard")
* .accountReplicationType("GRS")
* .build());
* var exampleKeyVault = new KeyVault("exampleKeyVault", KeyVaultArgs.builder()
* .name("example-keyvalut")
* .location(example.location())
* .resourceGroupName(example.name())
* .tenantId(current.applyValue(getClientConfigResult -> getClientConfigResult.tenantId()))
* .skuName("premium")
* .purgeProtectionEnabled(true)
* .build());
* var exampleUserAssignedIdentity = new UserAssignedIdentity("exampleUserAssignedIdentity", UserAssignedIdentityArgs.builder()
* .name("example-identity")
* .location(example.location())
* .resourceGroupName(example.name())
* .build());
* var example_identity = new AccessPolicy("example-identity", AccessPolicyArgs.builder()
* .keyVaultId(exampleKeyVault.id())
* .tenantId(current.applyValue(getClientConfigResult -> getClientConfigResult.tenantId()))
* .objectId(exampleUserAssignedIdentity.principalId())
* .keyPermissions(
* "WrapKey",
* "UnwrapKey",
* "Get",
* "Recover")
* .secretPermissions(
* "Get",
* "List",
* "Set",
* "Delete",
* "Recover",
* "Backup",
* "Restore")
* .build());
* var example_sp = new AccessPolicy("example-sp", AccessPolicyArgs.builder()
* .keyVaultId(exampleKeyVault.id())
* .tenantId(current.applyValue(getClientConfigResult -> getClientConfigResult.tenantId()))
* .objectId(current.applyValue(getClientConfigResult -> getClientConfigResult.objectId()))
* .keyPermissions(
* "Get",
* "Create",
* "Recover",
* "Delete",
* "Purge",
* "GetRotationPolicy")
* .build());
* final var test = AzureadFunctions.getServicePrincipal(GetServicePrincipalArgs.builder()
* .displayName("Azure Cosmos DB")
* .build());
* var example_cosmosdb = new AccessPolicy("example-cosmosdb", AccessPolicyArgs.builder()
* .keyVaultId(exampleKeyVault.id())
* .tenantId(current.applyValue(getClientConfigResult -> getClientConfigResult.tenantId()))
* .objectId(test.applyValue(getServicePrincipalResult -> getServicePrincipalResult.objectId()))
* .keyPermissions(
* "Get",
* "Recover",
* "UnwrapKey",
* "WrapKey")
* .build());
* var exampleKey = new Key("exampleKey", KeyArgs.builder()
* .name("example-keyvaultkey")
* .keyVaultId(exampleKeyVault.id())
* .keyType("RSA")
* .keySize(2048)
* .keyOpts(
* "decrypt",
* "encrypt",
* "sign",
* "unwrapKey",
* "verify",
* "wrapKey")
* .build());
* var example_role1 = new Assignment("example-role1", AssignmentArgs.builder()
* .scope(exampleKeyVault.id())
* .roleDefinitionName("Contributor")
* .principalId(exampleUserAssignedIdentity.principalId())
* .build());
* var example_role2 = new Assignment("example-role2", AssignmentArgs.builder()
* .scope(exampleAccount.id())
* .roleDefinitionName("Storage Blob Data Contributor")
* .principalId(exampleUserAssignedIdentity.principalId())
* .build());
* var example_role3 = new Assignment("example-role3", AssignmentArgs.builder()
* .scope(exampleAccount.id())
* .roleDefinitionName("Contributor")
* .principalId(exampleUserAssignedIdentity.principalId())
* .build());
* var example_role4 = new Assignment("example-role4", AssignmentArgs.builder()
* .scope(exampleInsights.id())
* .roleDefinitionName("Contributor")
* .principalId(exampleUserAssignedIdentity.principalId())
* .build());
* var exampleWorkspace = new Workspace("exampleWorkspace", WorkspaceArgs.builder()
* .name("example-workspace")
* .location(example.location())
* .resourceGroupName(example.name())
* .applicationInsightsId(exampleInsights.id())
* .keyVaultId(exampleKeyVault.id())
* .storageAccountId(exampleAccount.id())
* .highBusinessImpact(true)
* .primaryUserAssignedIdentity(exampleUserAssignedIdentity.id())
* .identity(WorkspaceIdentityArgs.builder()
* .type("UserAssigned")
* .identityIds(exampleUserAssignedIdentity.id())
* .build())
* .encryption(WorkspaceEncryptionArgs.builder()
* .userAssignedIdentityId(exampleUserAssignedIdentity.id())
* .keyVaultId(exampleKeyVault.id())
* .keyId(exampleKey.id())
* .build())
* .build());
* }
* }
* ```
* ```yaml
* resources:
* example:
* type: azure:core:ResourceGroup
* properties:
* name: example-resources
* location: West Europe
* exampleInsights:
* type: azure:appinsights:Insights
* name: example
* properties:
* name: example-ai
* location: ${example.location}
* resourceGroupName: ${example.name}
* applicationType: web
* exampleAccount:
* type: azure:storage:Account
* name: example
* properties:
* name: examplestorageaccount
* location: ${example.location}
* resourceGroupName: ${example.name}
* accountTier: Standard
* accountReplicationType: GRS
* exampleKeyVault:
* type: azure:keyvault:KeyVault
* name: example
* properties:
* name: example-keyvalut
* location: ${example.location}
* resourceGroupName: ${example.name}
* tenantId: ${current.tenantId}
* skuName: premium
* purgeProtectionEnabled: true
* exampleUserAssignedIdentity:
* type: azure:authorization:UserAssignedIdentity
* name: example
* properties:
* name: example-identity
* location: ${example.location}
* resourceGroupName: ${example.name}
* example-identity:
* type: azure:keyvault:AccessPolicy
* properties:
* keyVaultId: ${exampleKeyVault.id}
* tenantId: ${current.tenantId}
* objectId: ${exampleUserAssignedIdentity.principalId}
* keyPermissions:
* - WrapKey
* - UnwrapKey
* - Get
* - Recover
* secretPermissions:
* - Get
* - List
* - Set
* - Delete
* - Recover
* - Backup
* - Restore
* example-sp:
* type: azure:keyvault:AccessPolicy
* properties:
* keyVaultId: ${exampleKeyVault.id}
* tenantId: ${current.tenantId}
* objectId: ${current.objectId}
* keyPermissions:
* - Get
* - Create
* - Recover
* - Delete
* - Purge
* - GetRotationPolicy
* example-cosmosdb:
* type: azure:keyvault:AccessPolicy
* properties:
* keyVaultId: ${exampleKeyVault.id}
* tenantId: ${current.tenantId}
* objectId: ${test.objectId}
* keyPermissions:
* - Get
* - Recover
* - UnwrapKey
* - WrapKey
* exampleKey:
* type: azure:keyvault:Key
* name: example
* properties:
* name: example-keyvaultkey
* keyVaultId: ${exampleKeyVault.id}
* keyType: RSA
* keySize: 2048
* keyOpts:
* - decrypt
* - encrypt
* - sign
* - unwrapKey
* - verify
* - wrapKey
* example-role1:
* type: azure:authorization:Assignment
* properties:
* scope: ${exampleKeyVault.id}
* roleDefinitionName: Contributor
* principalId: ${exampleUserAssignedIdentity.principalId}
* example-role2:
* type: azure:authorization:Assignment
* properties:
* scope: ${exampleAccount.id}
* roleDefinitionName: Storage Blob Data Contributor
* principalId: ${exampleUserAssignedIdentity.principalId}
* example-role3:
* type: azure:authorization:Assignment
* properties:
* scope: ${exampleAccount.id}
* roleDefinitionName: Contributor
* principalId: ${exampleUserAssignedIdentity.principalId}
* example-role4:
* type: azure:authorization:Assignment
* properties:
* scope: ${exampleInsights.id}
* roleDefinitionName: Contributor
* principalId: ${exampleUserAssignedIdentity.principalId}
* exampleWorkspace:
* type: azure:machinelearning:Workspace
* name: example
* properties:
* name: example-workspace
* location: ${example.location}
* resourceGroupName: ${example.name}
* applicationInsightsId: ${exampleInsights.id}
* keyVaultId: ${exampleKeyVault.id}
* storageAccountId: ${exampleAccount.id}
* highBusinessImpact: true
* primaryUserAssignedIdentity: ${exampleUserAssignedIdentity.id}
* identity:
* type: UserAssigned
* identityIds:
* - ${exampleUserAssignedIdentity.id}
* encryption:
* userAssignedIdentityId: ${exampleUserAssignedIdentity.id}
* keyVaultId: ${exampleKeyVault.id}
* keyId: ${exampleKey.id}
* variables:
* current:
* fn::invoke:
* Function: azure:core:getClientConfig
* Arguments: {}
* test:
* fn::invoke:
* Function: azuread:getServicePrincipal
* Arguments:
* displayName: Azure Cosmos DB
* ```
*
* ## Import
* Machine Learning Workspace can be imported using the `resource id`, e.g.
* ```sh
* $ pulumi import azure:machinelearning/workspace:Workspace example /subscriptions/00000000-0000-0000-0000-000000000000/resourceGroups/group1/providers/Microsoft.MachineLearningServices/workspaces/workspace1
* ```
* @property applicationInsightsId The ID of the Application Insights associated with this Machine Learning Workspace. Changing this forces a new resource to be created.
* @property containerRegistryId The ID of the container registry associated with this Machine Learning Workspace. Changing this forces a new resource to be created.
* > **NOTE:** The `admin_enabled` should be `true` in order to associate the Container Registry to this Machine Learning Workspace.
* @property description The description of this Machine Learning Workspace.
* @property encryption An `encryption` block as defined below. Changing this forces a new resource to be created.
* @property featureStore A `feature_store` block as defined below.
* @property friendlyName Display name for this Machine Learning Workspace.
* @property highBusinessImpact Flag to signal High Business Impact (HBI) data in the workspace and reduce diagnostic data collected by the service. Changing this forces a new resource to be created.
* @property identity An `identity` block as defined below.
* @property imageBuildComputeName The compute name for image build of the Machine Learning Workspace.
* @property keyVaultId The ID of key vault associated with this Machine Learning Workspace. Changing this forces a new resource to be created.
* @property kind The type of the Workspace. Possible values are `Default`, `FeatureStore`. Defaults to `Default`
* @property location Specifies the supported Azure location where the Machine Learning Workspace should exist. Changing this forces a new resource to be created.
* @property managedNetwork A `managed_network` block as defined below.
* @property name Specifies the name of the Machine Learning Workspace. Changing this forces a new resource to be created.
* @property primaryUserAssignedIdentity The user assigned identity id that represents the workspace identity.
* @property publicAccessBehindVirtualNetworkEnabled Enable public access when this Machine Learning Workspace is behind a VNet. Changing this forces a new resource to be created.
* @property publicNetworkAccessEnabled Enable public access when this Machine Learning Workspace is behind VNet.
* > **NOTE:** `public_access_behind_virtual_network_enabled` is deprecated and will be removed in favour of the property `public_network_access_enabled`.
* @property resourceGroupName Specifies the name of the Resource Group in which the Machine Learning Workspace should exist. Changing this forces a new resource to be created.
* @property skuName SKU/edition of the Machine Learning Workspace, possible values are `Free`, `Basic`, `Standard` and `Premium`. Defaults to `Basic`.
* @property storageAccountId The ID of the Storage Account associated with this Machine Learning Workspace. Changing this forces a new resource to be created.
* > **NOTE:** The `account_tier` cannot be `Premium` in order to associate the Storage Account to this Machine Learning Workspace.
* @property tags A mapping of tags to assign to the resource.
* @property v1LegacyModeEnabled Enable V1 API features, enabling `v1_legacy_mode` may prevent you from using features provided by the v2 API. Defaults to `false`.
*/
public data class WorkspaceArgs(
public val applicationInsightsId: Output? = null,
public val containerRegistryId: Output? = null,
public val description: Output? = null,
public val encryption: Output? = null,
public val featureStore: Output? = null,
public val friendlyName: Output? = null,
public val highBusinessImpact: Output? = null,
public val identity: Output? = null,
public val imageBuildComputeName: Output? = null,
public val keyVaultId: Output? = null,
public val kind: Output? = null,
public val location: Output? = null,
public val managedNetwork: Output? = null,
public val name: Output? = null,
public val primaryUserAssignedIdentity: Output? = null,
@Deprecated(
message = """
`public_access_behind_virtual_network_enabled` will be removed in favour of the property
`public_network_access_enabled` in version 4.0 of the AzureRM Provider.
""",
)
public val publicAccessBehindVirtualNetworkEnabled: Output? = null,
public val publicNetworkAccessEnabled: Output? = null,
public val resourceGroupName: Output? = null,
public val skuName: Output? = null,
public val storageAccountId: Output? = null,
public val tags: Output>? = null,
public val v1LegacyModeEnabled: Output? = null,
) : ConvertibleToJava {
override fun toJava(): com.pulumi.azure.machinelearning.WorkspaceArgs =
com.pulumi.azure.machinelearning.WorkspaceArgs.builder()
.applicationInsightsId(applicationInsightsId?.applyValue({ args0 -> args0 }))
.containerRegistryId(containerRegistryId?.applyValue({ args0 -> args0 }))
.description(description?.applyValue({ args0 -> args0 }))
.encryption(encryption?.applyValue({ args0 -> args0.let({ args0 -> args0.toJava() }) }))
.featureStore(featureStore?.applyValue({ args0 -> args0.let({ args0 -> args0.toJava() }) }))
.friendlyName(friendlyName?.applyValue({ args0 -> args0 }))
.highBusinessImpact(highBusinessImpact?.applyValue({ args0 -> args0 }))
.identity(identity?.applyValue({ args0 -> args0.let({ args0 -> args0.toJava() }) }))
.imageBuildComputeName(imageBuildComputeName?.applyValue({ args0 -> args0 }))
.keyVaultId(keyVaultId?.applyValue({ args0 -> args0 }))
.kind(kind?.applyValue({ args0 -> args0 }))
.location(location?.applyValue({ args0 -> args0 }))
.managedNetwork(managedNetwork?.applyValue({ args0 -> args0.let({ args0 -> args0.toJava() }) }))
.name(name?.applyValue({ args0 -> args0 }))
.primaryUserAssignedIdentity(primaryUserAssignedIdentity?.applyValue({ args0 -> args0 }))
.publicAccessBehindVirtualNetworkEnabled(
publicAccessBehindVirtualNetworkEnabled?.applyValue({ args0 ->
args0
}),
)
.publicNetworkAccessEnabled(publicNetworkAccessEnabled?.applyValue({ args0 -> args0 }))
.resourceGroupName(resourceGroupName?.applyValue({ args0 -> args0 }))
.skuName(skuName?.applyValue({ args0 -> args0 }))
.storageAccountId(storageAccountId?.applyValue({ args0 -> args0 }))
.tags(tags?.applyValue({ args0 -> args0.map({ args0 -> args0.key.to(args0.value) }).toMap() }))
.v1LegacyModeEnabled(v1LegacyModeEnabled?.applyValue({ args0 -> args0 })).build()
}
/**
* Builder for [WorkspaceArgs].
*/
@PulumiTagMarker
public class WorkspaceArgsBuilder internal constructor() {
private var applicationInsightsId: Output? = null
private var containerRegistryId: Output? = null
private var description: Output? = null
private var encryption: Output? = null
private var featureStore: Output? = null
private var friendlyName: Output? = null
private var highBusinessImpact: Output? = null
private var identity: Output? = null
private var imageBuildComputeName: Output? = null
private var keyVaultId: Output? = null
private var kind: Output? = null
private var location: Output? = null
private var managedNetwork: Output? = null
private var name: Output? = null
private var primaryUserAssignedIdentity: Output? = null
private var publicAccessBehindVirtualNetworkEnabled: Output? = null
private var publicNetworkAccessEnabled: Output? = null
private var resourceGroupName: Output? = null
private var skuName: Output? = null
private var storageAccountId: Output? = null
private var tags: Output>? = null
private var v1LegacyModeEnabled: Output? = null
/**
* @param value The ID of the Application Insights associated with this Machine Learning Workspace. Changing this forces a new resource to be created.
*/
@JvmName("hfnkdvthmrdltivc")
public suspend fun applicationInsightsId(`value`: Output) {
this.applicationInsightsId = value
}
/**
* @param value The ID of the container registry associated with this Machine Learning Workspace. Changing this forces a new resource to be created.
* > **NOTE:** The `admin_enabled` should be `true` in order to associate the Container Registry to this Machine Learning Workspace.
*/
@JvmName("bhdspijjfsdauhsg")
public suspend fun containerRegistryId(`value`: Output) {
this.containerRegistryId = value
}
/**
* @param value The description of this Machine Learning Workspace.
*/
@JvmName("xblcelqhvbfxheku")
public suspend fun description(`value`: Output) {
this.description = value
}
/**
* @param value An `encryption` block as defined below. Changing this forces a new resource to be created.
*/
@JvmName("ipriwdjotlxigdel")
public suspend fun encryption(`value`: Output) {
this.encryption = value
}
/**
* @param value A `feature_store` block as defined below.
*/
@JvmName("rnevitsactyrpdmp")
public suspend fun featureStore(`value`: Output) {
this.featureStore = value
}
/**
* @param value Display name for this Machine Learning Workspace.
*/
@JvmName("bnemvgpxtvgxmtlq")
public suspend fun friendlyName(`value`: Output) {
this.friendlyName = value
}
/**
* @param value Flag to signal High Business Impact (HBI) data in the workspace and reduce diagnostic data collected by the service. Changing this forces a new resource to be created.
*/
@JvmName("eagccapauhrfyqfo")
public suspend fun highBusinessImpact(`value`: Output) {
this.highBusinessImpact = value
}
/**
* @param value An `identity` block as defined below.
*/
@JvmName("nhhxvlqtersyvuwq")
public suspend fun identity(`value`: Output) {
this.identity = value
}
/**
* @param value The compute name for image build of the Machine Learning Workspace.
*/
@JvmName("cqokrcredwvfcwsl")
public suspend fun imageBuildComputeName(`value`: Output) {
this.imageBuildComputeName = value
}
/**
* @param value The ID of key vault associated with this Machine Learning Workspace. Changing this forces a new resource to be created.
*/
@JvmName("ioqxksmikxlywonj")
public suspend fun keyVaultId(`value`: Output) {
this.keyVaultId = value
}
/**
* @param value The type of the Workspace. Possible values are `Default`, `FeatureStore`. Defaults to `Default`
*/
@JvmName("jcfjgissuifdkpro")
public suspend fun kind(`value`: Output) {
this.kind = value
}
/**
* @param value Specifies the supported Azure location where the Machine Learning Workspace should exist. Changing this forces a new resource to be created.
*/
@JvmName("bxmindtwdtlogbwj")
public suspend fun location(`value`: Output) {
this.location = value
}
/**
* @param value A `managed_network` block as defined below.
*/
@JvmName("nhkxmyfvlfgeapyk")
public suspend fun managedNetwork(`value`: Output) {
this.managedNetwork = value
}
/**
* @param value Specifies the name of the Machine Learning Workspace. Changing this forces a new resource to be created.
*/
@JvmName("psqflqknydsqeujf")
public suspend fun name(`value`: Output) {
this.name = value
}
/**
* @param value The user assigned identity id that represents the workspace identity.
*/
@JvmName("fkafhmmrlihalkgi")
public suspend fun primaryUserAssignedIdentity(`value`: Output) {
this.primaryUserAssignedIdentity = value
}
/**
* @param value Enable public access when this Machine Learning Workspace is behind a VNet. Changing this forces a new resource to be created.
*/
@Deprecated(
message = """
`public_access_behind_virtual_network_enabled` will be removed in favour of the property
`public_network_access_enabled` in version 4.0 of the AzureRM Provider.
""",
)
@JvmName("nmfxfmqhpprlchyl")
public suspend fun publicAccessBehindVirtualNetworkEnabled(`value`: Output) {
this.publicAccessBehindVirtualNetworkEnabled = value
}
/**
* @param value Enable public access when this Machine Learning Workspace is behind VNet.
* > **NOTE:** `public_access_behind_virtual_network_enabled` is deprecated and will be removed in favour of the property `public_network_access_enabled`.
*/
@JvmName("fgdsxhddsyftuqoi")
public suspend fun publicNetworkAccessEnabled(`value`: Output) {
this.publicNetworkAccessEnabled = value
}
/**
* @param value Specifies the name of the Resource Group in which the Machine Learning Workspace should exist. Changing this forces a new resource to be created.
*/
@JvmName("dqmmsmchwyxqqfna")
public suspend fun resourceGroupName(`value`: Output) {
this.resourceGroupName = value
}
/**
* @param value SKU/edition of the Machine Learning Workspace, possible values are `Free`, `Basic`, `Standard` and `Premium`. Defaults to `Basic`.
*/
@JvmName("cybvyyrvrbphqljh")
public suspend fun skuName(`value`: Output) {
this.skuName = value
}
/**
* @param value The ID of the Storage Account associated with this Machine Learning Workspace. Changing this forces a new resource to be created.
* > **NOTE:** The `account_tier` cannot be `Premium` in order to associate the Storage Account to this Machine Learning Workspace.
*/
@JvmName("pkciebhmohttbtti")
public suspend fun storageAccountId(`value`: Output) {
this.storageAccountId = value
}
/**
* @param value A mapping of tags to assign to the resource.
*/
@JvmName("wlgmtywjwosdvdal")
public suspend fun tags(`value`: Output>) {
this.tags = value
}
/**
* @param value Enable V1 API features, enabling `v1_legacy_mode` may prevent you from using features provided by the v2 API. Defaults to `false`.
*/
@JvmName("luihyvlvuidbbufo")
public suspend fun v1LegacyModeEnabled(`value`: Output) {
this.v1LegacyModeEnabled = value
}
/**
* @param value The ID of the Application Insights associated with this Machine Learning Workspace. Changing this forces a new resource to be created.
*/
@JvmName("hnqvgcdfsrlvfduv")
public suspend fun applicationInsightsId(`value`: String?) {
val toBeMapped = value
val mapped = toBeMapped?.let({ args0 -> of(args0) })
this.applicationInsightsId = mapped
}
/**
* @param value The ID of the container registry associated with this Machine Learning Workspace. Changing this forces a new resource to be created.
* > **NOTE:** The `admin_enabled` should be `true` in order to associate the Container Registry to this Machine Learning Workspace.
*/
@JvmName("cibvdcvquasbqcqy")
public suspend fun containerRegistryId(`value`: String?) {
val toBeMapped = value
val mapped = toBeMapped?.let({ args0 -> of(args0) })
this.containerRegistryId = mapped
}
/**
* @param value The description of this Machine Learning Workspace.
*/
@JvmName("nxpndkrqdjlcgqwd")
public suspend fun description(`value`: String?) {
val toBeMapped = value
val mapped = toBeMapped?.let({ args0 -> of(args0) })
this.description = mapped
}
/**
* @param value An `encryption` block as defined below. Changing this forces a new resource to be created.
*/
@JvmName("xpcjqhvrqwytcuic")
public suspend fun encryption(`value`: WorkspaceEncryptionArgs?) {
val toBeMapped = value
val mapped = toBeMapped?.let({ args0 -> of(args0) })
this.encryption = mapped
}
/**
* @param argument An `encryption` block as defined below. Changing this forces a new resource to be created.
*/
@JvmName("bfjgfmmurksvigjd")
public suspend fun encryption(argument: suspend WorkspaceEncryptionArgsBuilder.() -> Unit) {
val toBeMapped = WorkspaceEncryptionArgsBuilder().applySuspend { argument() }.build()
val mapped = of(toBeMapped)
this.encryption = mapped
}
/**
* @param value A `feature_store` block as defined below.
*/
@JvmName("wuiferuetcwghtrs")
public suspend fun featureStore(`value`: WorkspaceFeatureStoreArgs?) {
val toBeMapped = value
val mapped = toBeMapped?.let({ args0 -> of(args0) })
this.featureStore = mapped
}
/**
* @param argument A `feature_store` block as defined below.
*/
@JvmName("gdgchwifweyjxcbw")
public suspend fun featureStore(argument: suspend WorkspaceFeatureStoreArgsBuilder.() -> Unit) {
val toBeMapped = WorkspaceFeatureStoreArgsBuilder().applySuspend { argument() }.build()
val mapped = of(toBeMapped)
this.featureStore = mapped
}
/**
* @param value Display name for this Machine Learning Workspace.
*/
@JvmName("vccgfbriisvdecgs")
public suspend fun friendlyName(`value`: String?) {
val toBeMapped = value
val mapped = toBeMapped?.let({ args0 -> of(args0) })
this.friendlyName = mapped
}
/**
* @param value Flag to signal High Business Impact (HBI) data in the workspace and reduce diagnostic data collected by the service. Changing this forces a new resource to be created.
*/
@JvmName("tysavclstcpvlrhc")
public suspend fun highBusinessImpact(`value`: Boolean?) {
val toBeMapped = value
val mapped = toBeMapped?.let({ args0 -> of(args0) })
this.highBusinessImpact = mapped
}
/**
* @param value An `identity` block as defined below.
*/
@JvmName("eamusheksfdqooef")
public suspend fun identity(`value`: WorkspaceIdentityArgs?) {
val toBeMapped = value
val mapped = toBeMapped?.let({ args0 -> of(args0) })
this.identity = mapped
}
/**
* @param argument An `identity` block as defined below.
*/
@JvmName("qoqwccxcurnnwqhb")
public suspend fun identity(argument: suspend WorkspaceIdentityArgsBuilder.() -> Unit) {
val toBeMapped = WorkspaceIdentityArgsBuilder().applySuspend { argument() }.build()
val mapped = of(toBeMapped)
this.identity = mapped
}
/**
* @param value The compute name for image build of the Machine Learning Workspace.
*/
@JvmName("cclgdtntviqgaqwp")
public suspend fun imageBuildComputeName(`value`: String?) {
val toBeMapped = value
val mapped = toBeMapped?.let({ args0 -> of(args0) })
this.imageBuildComputeName = mapped
}
/**
* @param value The ID of key vault associated with this Machine Learning Workspace. Changing this forces a new resource to be created.
*/
@JvmName("veywygtswhqjpugr")
public suspend fun keyVaultId(`value`: String?) {
val toBeMapped = value
val mapped = toBeMapped?.let({ args0 -> of(args0) })
this.keyVaultId = mapped
}
/**
* @param value The type of the Workspace. Possible values are `Default`, `FeatureStore`. Defaults to `Default`
*/
@JvmName("hulabiejnbrupchr")
public suspend fun kind(`value`: String?) {
val toBeMapped = value
val mapped = toBeMapped?.let({ args0 -> of(args0) })
this.kind = mapped
}
/**
* @param value Specifies the supported Azure location where the Machine Learning Workspace should exist. Changing this forces a new resource to be created.
*/
@JvmName("rtxspuysjmttwjin")
public suspend fun location(`value`: String?) {
val toBeMapped = value
val mapped = toBeMapped?.let({ args0 -> of(args0) })
this.location = mapped
}
/**
* @param value A `managed_network` block as defined below.
*/
@JvmName("mbwwvnnqymmaivfi")
public suspend fun managedNetwork(`value`: WorkspaceManagedNetworkArgs?) {
val toBeMapped = value
val mapped = toBeMapped?.let({ args0 -> of(args0) })
this.managedNetwork = mapped
}
/**
* @param argument A `managed_network` block as defined below.
*/
@JvmName("cqtdpkbodfwjjibm")
public suspend
fun managedNetwork(argument: suspend WorkspaceManagedNetworkArgsBuilder.() -> Unit) {
val toBeMapped = WorkspaceManagedNetworkArgsBuilder().applySuspend { argument() }.build()
val mapped = of(toBeMapped)
this.managedNetwork = mapped
}
/**
* @param value Specifies the name of the Machine Learning Workspace. Changing this forces a new resource to be created.
*/
@JvmName("xdxhunxwjonocpnu")
public suspend fun name(`value`: String?) {
val toBeMapped = value
val mapped = toBeMapped?.let({ args0 -> of(args0) })
this.name = mapped
}
/**
* @param value The user assigned identity id that represents the workspace identity.
*/
@JvmName("yaohtipiwwybhhat")
public suspend fun primaryUserAssignedIdentity(`value`: String?) {
val toBeMapped = value
val mapped = toBeMapped?.let({ args0 -> of(args0) })
this.primaryUserAssignedIdentity = mapped
}
/**
* @param value Enable public access when this Machine Learning Workspace is behind a VNet. Changing this forces a new resource to be created.
*/
@Deprecated(
message = """
`public_access_behind_virtual_network_enabled` will be removed in favour of the property
`public_network_access_enabled` in version 4.0 of the AzureRM Provider.
""",
)
@JvmName("bebsxvhetmysdcuq")
public suspend fun publicAccessBehindVirtualNetworkEnabled(`value`: Boolean?) {
val toBeMapped = value
val mapped = toBeMapped?.let({ args0 -> of(args0) })
this.publicAccessBehindVirtualNetworkEnabled = mapped
}
/**
* @param value Enable public access when this Machine Learning Workspace is behind VNet.
* > **NOTE:** `public_access_behind_virtual_network_enabled` is deprecated and will be removed in favour of the property `public_network_access_enabled`.
*/
@JvmName("fnbgaxotlfcesyly")
public suspend fun publicNetworkAccessEnabled(`value`: Boolean?) {
val toBeMapped = value
val mapped = toBeMapped?.let({ args0 -> of(args0) })
this.publicNetworkAccessEnabled = mapped
}
/**
* @param value Specifies the name of the Resource Group in which the Machine Learning Workspace should exist. Changing this forces a new resource to be created.
*/
@JvmName("metvrnhbyirwpkva")
public suspend fun resourceGroupName(`value`: String?) {
val toBeMapped = value
val mapped = toBeMapped?.let({ args0 -> of(args0) })
this.resourceGroupName = mapped
}
/**
* @param value SKU/edition of the Machine Learning Workspace, possible values are `Free`, `Basic`, `Standard` and `Premium`. Defaults to `Basic`.
*/
@JvmName("pedigqmwqtgpwjbw")
public suspend fun skuName(`value`: String?) {
val toBeMapped = value
val mapped = toBeMapped?.let({ args0 -> of(args0) })
this.skuName = mapped
}
/**
* @param value The ID of the Storage Account associated with this Machine Learning Workspace. Changing this forces a new resource to be created.
* > **NOTE:** The `account_tier` cannot be `Premium` in order to associate the Storage Account to this Machine Learning Workspace.
*/
@JvmName("cumgjvketqumhnpr")
public suspend fun storageAccountId(`value`: String?) {
val toBeMapped = value
val mapped = toBeMapped?.let({ args0 -> of(args0) })
this.storageAccountId = mapped
}
/**
* @param value A mapping of tags to assign to the resource.
*/
@JvmName("lsidvighjjowroqw")
public suspend fun tags(`value`: Map?) {
val toBeMapped = value
val mapped = toBeMapped?.let({ args0 -> of(args0) })
this.tags = mapped
}
/**
* @param values A mapping of tags to assign to the resource.
*/
@JvmName("ohtcfwtfggupwrdn")
public fun tags(vararg values: Pair) {
val toBeMapped = values.toMap()
val mapped = toBeMapped.let({ args0 -> of(args0) })
this.tags = mapped
}
/**
* @param value Enable V1 API features, enabling `v1_legacy_mode` may prevent you from using features provided by the v2 API. Defaults to `false`.
*/
@JvmName("jwserumhgxeymnda")
public suspend fun v1LegacyModeEnabled(`value`: Boolean?) {
val toBeMapped = value
val mapped = toBeMapped?.let({ args0 -> of(args0) })
this.v1LegacyModeEnabled = mapped
}
internal fun build(): WorkspaceArgs = WorkspaceArgs(
applicationInsightsId = applicationInsightsId,
containerRegistryId = containerRegistryId,
description = description,
encryption = encryption,
featureStore = featureStore,
friendlyName = friendlyName,
highBusinessImpact = highBusinessImpact,
identity = identity,
imageBuildComputeName = imageBuildComputeName,
keyVaultId = keyVaultId,
kind = kind,
location = location,
managedNetwork = managedNetwork,
name = name,
primaryUserAssignedIdentity = primaryUserAssignedIdentity,
publicAccessBehindVirtualNetworkEnabled = publicAccessBehindVirtualNetworkEnabled,
publicNetworkAccessEnabled = publicNetworkAccessEnabled,
resourceGroupName = resourceGroupName,
skuName = skuName,
storageAccountId = storageAccountId,
tags = tags,
v1LegacyModeEnabled = v1LegacyModeEnabled,
)
}
© 2015 - 2025 Weber Informatics LLC | Privacy Policy