com.pulumi.azure.webpubsub.kotlin.CustomCertificateArgs.kt Maven / Gradle / Ivy
Go to download
Show more of this group Show more artifacts with this name
Show all versions of pulumi-azure-kotlin Show documentation
Show all versions of pulumi-azure-kotlin Show documentation
Build cloud applications and infrastructure by combining the safety and reliability of infrastructure as code with the power of the Kotlin programming language.
@file:Suppress("NAME_SHADOWING", "DEPRECATION")
package com.pulumi.azure.webpubsub.kotlin
import com.pulumi.azure.webpubsub.CustomCertificateArgs.builder
import com.pulumi.core.Output
import com.pulumi.core.Output.of
import com.pulumi.kotlin.ConvertibleToJava
import com.pulumi.kotlin.PulumiTagMarker
import kotlin.String
import kotlin.Suppress
import kotlin.jvm.JvmName
/**
* Manages an Azure Web PubSub Custom Certificate.
* ## Example Usage
*
* ```typescript
* import * as pulumi from "@pulumi/pulumi";
* import * as azure from "@pulumi/azure";
* import * as azurerm from "@pulumi/azurerm";
* import * as std from "@pulumi/std";
* const current = azure.core.getClientConfig({});
* const example = new azure.core.ResourceGroup("example", {
* name: "example-resources",
* location: "West Europe",
* });
* const exampleWebPubsubService = new azurerm.index.WebPubsubService("example", {
* name: "example-webpubsub",
* location: testAzurermResourceGroup.location,
* resourceGroupName: testAzurermResourceGroup.name,
* sku: [{
* name: "Premium_P1",
* capacity: 1,
* }],
* identity: [{
* type: "SystemAssigned",
* }],
* });
* const exampleKeyVault = new azure.keyvault.KeyVault("example", {
* name: "examplekeyvault",
* location: example.location,
* resourceGroupName: example.name,
* tenantId: current.then(current => current.tenantId),
* skuName: "premium",
* accessPolicies: [
* {
* tenantId: current.then(current => current.tenantId),
* objectId: current.then(current => current.objectId),
* certificatePermissions: [
* "Create",
* "Get",
* "List",
* ],
* secretPermissions: [
* "Get",
* "List",
* ],
* },
* {
* tenantId: current.then(current => current.tenantId),
* objectId: testAzurermWebPubsubService.identity[0].principalId,
* certificatePermissions: [
* "Create",
* "Get",
* "List",
* ],
* secretPermissions: [
* "Get",
* "List",
* ],
* },
* ],
* });
* const exampleCertificate = new azure.keyvault.Certificate("example", {
* name: "imported-cert",
* keyVaultId: exampleKeyVault.id,
* certificate: {
* contents: std.filebase64({
* input: "certificate-to-import.pfx",
* }).then(invoke => invoke.result),
* password: "",
* },
* });
* const test = new azure.webpubsub.CustomCertificate("test", {
* name: "example-cert",
* webPubsubId: exampleWebPubsubService.id,
* customCertificateId: exampleCertificate.id,
* }, {
* dependsOn: [exampleAzurermKeyVaultAccessPolicy],
* });
* ```
* ```python
* import pulumi
* import pulumi_azure as azure
* import pulumi_azurerm as azurerm
* import pulumi_std as std
* current = azure.core.get_client_config()
* example = azure.core.ResourceGroup("example",
* name="example-resources",
* location="West Europe")
* example_web_pubsub_service = azurerm.index.WebPubsubService("example",
* name=example-webpubsub,
* location=test_azurerm_resource_group.location,
* resource_group_name=test_azurerm_resource_group.name,
* sku=[{
* name: Premium_P1,
* capacity: 1,
* }],
* identity=[{
* type: SystemAssigned,
* }])
* example_key_vault = azure.keyvault.KeyVault("example",
* name="examplekeyvault",
* location=example.location,
* resource_group_name=example.name,
* tenant_id=current.tenant_id,
* sku_name="premium",
* access_policies=[
* {
* "tenant_id": current.tenant_id,
* "object_id": current.object_id,
* "certificate_permissions": [
* "Create",
* "Get",
* "List",
* ],
* "secret_permissions": [
* "Get",
* "List",
* ],
* },
* {
* "tenant_id": current.tenant_id,
* "object_id": test_azurerm_web_pubsub_service["identity"][0]["principalId"],
* "certificate_permissions": [
* "Create",
* "Get",
* "List",
* ],
* "secret_permissions": [
* "Get",
* "List",
* ],
* },
* ])
* example_certificate = azure.keyvault.Certificate("example",
* name="imported-cert",
* key_vault_id=example_key_vault.id,
* certificate={
* "contents": std.filebase64(input="certificate-to-import.pfx").result,
* "password": "",
* })
* test = azure.webpubsub.CustomCertificate("test",
* name="example-cert",
* web_pubsub_id=example_web_pubsub_service["id"],
* custom_certificate_id=example_certificate.id,
* opts = pulumi.ResourceOptions(depends_on=[example_azurerm_key_vault_access_policy]))
* ```
* ```csharp
* using System.Collections.Generic;
* using System.Linq;
* using Pulumi;
* using Azure = Pulumi.Azure;
* using Azurerm = Pulumi.Azurerm;
* using Std = Pulumi.Std;
* return await Deployment.RunAsync(() =>
* {
* var current = Azure.Core.GetClientConfig.Invoke();
* var example = new Azure.Core.ResourceGroup("example", new()
* {
* Name = "example-resources",
* Location = "West Europe",
* });
* var exampleWebPubsubService = new Azurerm.Index.WebPubsubService("example", new()
* {
* Name = "example-webpubsub",
* Location = testAzurermResourceGroup.Location,
* ResourceGroupName = testAzurermResourceGroup.Name,
* Sku = new[]
* {
* {
* { "name", "Premium_P1" },
* { "capacity", 1 },
* },
* },
* Identity = new[]
* {
* {
* { "type", "SystemAssigned" },
* },
* },
* });
* var exampleKeyVault = new Azure.KeyVault.KeyVault("example", new()
* {
* Name = "examplekeyvault",
* Location = example.Location,
* ResourceGroupName = example.Name,
* TenantId = current.Apply(getClientConfigResult => getClientConfigResult.TenantId),
* SkuName = "premium",
* AccessPolicies = new[]
* {
* new Azure.KeyVault.Inputs.KeyVaultAccessPolicyArgs
* {
* TenantId = current.Apply(getClientConfigResult => getClientConfigResult.TenantId),
* ObjectId = current.Apply(getClientConfigResult => getClientConfigResult.ObjectId),
* CertificatePermissions = new[]
* {
* "Create",
* "Get",
* "List",
* },
* SecretPermissions = new[]
* {
* "Get",
* "List",
* },
* },
* new Azure.KeyVault.Inputs.KeyVaultAccessPolicyArgs
* {
* TenantId = current.Apply(getClientConfigResult => getClientConfigResult.TenantId),
* ObjectId = testAzurermWebPubsubService.Identity[0].PrincipalId,
* CertificatePermissions = new[]
* {
* "Create",
* "Get",
* "List",
* },
* SecretPermissions = new[]
* {
* "Get",
* "List",
* },
* },
* },
* });
* var exampleCertificate = new Azure.KeyVault.Certificate("example", new()
* {
* Name = "imported-cert",
* KeyVaultId = exampleKeyVault.Id,
* KeyVaultCertificate = new Azure.KeyVault.Inputs.CertificateCertificateArgs
* {
* Contents = Std.Filebase64.Invoke(new()
* {
* Input = "certificate-to-import.pfx",
* }).Apply(invoke => invoke.Result),
* Password = "",
* },
* });
* var test = new Azure.WebPubSub.CustomCertificate("test", new()
* {
* Name = "example-cert",
* WebPubsubId = exampleWebPubsubService.Id,
* CustomCertificateId = exampleCertificate.Id,
* }, new CustomResourceOptions
* {
* DependsOn =
* {
* exampleAzurermKeyVaultAccessPolicy,
* },
* });
* });
* ```
* ```go
* package main
* import (
* "github.com/pulumi/pulumi-azure/sdk/v5/go/azure/core"
* "github.com/pulumi/pulumi-azure/sdk/v5/go/azure/keyvault"
* "github.com/pulumi/pulumi-azure/sdk/v5/go/azure/webpubsub"
* "github.com/pulumi/pulumi-azurerm/sdk/go/azurerm"
* "github.com/pulumi/pulumi-std/sdk/go/std"
* "github.com/pulumi/pulumi/sdk/v3/go/pulumi"
* )
* func main() {
* pulumi.Run(func(ctx *pulumi.Context) error {
* current, err := core.GetClientConfig(ctx, nil, nil)
* if err != nil {
* return err
* }
* example, err := core.NewResourceGroup(ctx, "example", &core.ResourceGroupArgs{
* Name: pulumi.String("example-resources"),
* Location: pulumi.String("West Europe"),
* })
* if err != nil {
* return err
* }
* exampleWebPubsubService, err := azurerm.NewWebPubsubService(ctx, "example", &azurerm.WebPubsubServiceArgs{
* Name: "example-webpubsub",
* Location: testAzurermResourceGroup.Location,
* ResourceGroupName: testAzurermResourceGroup.Name,
* Sku: []map[string]interface{}{
* map[string]interface{}{
* "name": "Premium_P1",
* "capacity": 1,
* },
* },
* Identity: []map[string]interface{}{
* map[string]interface{}{
* "type": "SystemAssigned",
* },
* },
* })
* if err != nil {
* return err
* }
* exampleKeyVault, err := keyvault.NewKeyVault(ctx, "example", &keyvault.KeyVaultArgs{
* Name: pulumi.String("examplekeyvault"),
* Location: example.Location,
* ResourceGroupName: example.Name,
* TenantId: pulumi.String(current.TenantId),
* SkuName: pulumi.String("premium"),
* AccessPolicies: keyvault.KeyVaultAccessPolicyArray{
* &keyvault.KeyVaultAccessPolicyArgs{
* TenantId: pulumi.String(current.TenantId),
* ObjectId: pulumi.String(current.ObjectId),
* CertificatePermissions: pulumi.StringArray{
* pulumi.String("Create"),
* pulumi.String("Get"),
* pulumi.String("List"),
* },
* SecretPermissions: pulumi.StringArray{
* pulumi.String("Get"),
* pulumi.String("List"),
* },
* },
* &keyvault.KeyVaultAccessPolicyArgs{
* TenantId: pulumi.String(current.TenantId),
* ObjectId: pulumi.Any(testAzurermWebPubsubService.Identity[0].PrincipalId),
* CertificatePermissions: pulumi.StringArray{
* pulumi.String("Create"),
* pulumi.String("Get"),
* pulumi.String("List"),
* },
* SecretPermissions: pulumi.StringArray{
* pulumi.String("Get"),
* pulumi.String("List"),
* },
* },
* },
* })
* if err != nil {
* return err
* }
* invokeFilebase64, err := std.Filebase64(ctx, &std.Filebase64Args{
* Input: "certificate-to-import.pfx",
* }, nil)
* if err != nil {
* return err
* }
* exampleCertificate, err := keyvault.NewCertificate(ctx, "example", &keyvault.CertificateArgs{
* Name: pulumi.String("imported-cert"),
* KeyVaultId: exampleKeyVault.ID(),
* Certificate: &keyvault.CertificateCertificateArgs{
* Contents: pulumi.String(invokeFilebase64.Result),
* Password: pulumi.String(""),
* },
* })
* if err != nil {
* return err
* }
* _, err = webpubsub.NewCustomCertificate(ctx, "test", &webpubsub.CustomCertificateArgs{
* Name: pulumi.String("example-cert"),
* WebPubsubId: exampleWebPubsubService.Id,
* CustomCertificateId: exampleCertificate.ID(),
* }, pulumi.DependsOn([]pulumi.Resource{
* exampleAzurermKeyVaultAccessPolicy,
* }))
* if err != nil {
* return err
* }
* return nil
* })
* }
* ```
* ```java
* package generated_program;
* import com.pulumi.Context;
* import com.pulumi.Pulumi;
* import com.pulumi.core.Output;
* import com.pulumi.azure.core.CoreFunctions;
* import com.pulumi.azure.core.ResourceGroup;
* import com.pulumi.azure.core.ResourceGroupArgs;
* import com.pulumi.azurerm.webPubsubService;
* import com.pulumi.azurerm.WebPubsubServiceArgs;
* import com.pulumi.azure.keyvault.KeyVault;
* import com.pulumi.azure.keyvault.KeyVaultArgs;
* import com.pulumi.azure.keyvault.inputs.KeyVaultAccessPolicyArgs;
* import com.pulumi.azure.keyvault.Certificate;
* import com.pulumi.azure.keyvault.CertificateArgs;
* import com.pulumi.azure.keyvault.inputs.CertificateCertificateArgs;
* import com.pulumi.azure.webpubsub.CustomCertificate;
* import com.pulumi.azure.webpubsub.CustomCertificateArgs;
* import com.pulumi.resources.CustomResourceOptions;
* import java.util.List;
* import java.util.ArrayList;
* import java.util.Map;
* import java.io.File;
* import java.nio.file.Files;
* import java.nio.file.Paths;
* public class App {
* public static void main(String[] args) {
* Pulumi.run(App::stack);
* }
* public static void stack(Context ctx) {
* final var current = CoreFunctions.getClientConfig();
* var example = new ResourceGroup("example", ResourceGroupArgs.builder()
* .name("example-resources")
* .location("West Europe")
* .build());
* var exampleWebPubsubService = new WebPubsubService("exampleWebPubsubService", WebPubsubServiceArgs.builder()
* .name("example-webpubsub")
* .location(testAzurermResourceGroup.location())
* .resourceGroupName(testAzurermResourceGroup.name())
* .sku(%!v(PANIC=Format method: runtime error: invalid memory address or nil pointer dereference))
* .identity(%!v(PANIC=Format method: runtime error: invalid memory address or nil pointer dereference))
* .build());
* var exampleKeyVault = new KeyVault("exampleKeyVault", KeyVaultArgs.builder()
* .name("examplekeyvault")
* .location(example.location())
* .resourceGroupName(example.name())
* .tenantId(current.applyValue(getClientConfigResult -> getClientConfigResult.tenantId()))
* .skuName("premium")
* .accessPolicies(
* KeyVaultAccessPolicyArgs.builder()
* .tenantId(current.applyValue(getClientConfigResult -> getClientConfigResult.tenantId()))
* .objectId(current.applyValue(getClientConfigResult -> getClientConfigResult.objectId()))
* .certificatePermissions(
* "Create",
* "Get",
* "List")
* .secretPermissions(
* "Get",
* "List")
* .build(),
* KeyVaultAccessPolicyArgs.builder()
* .tenantId(current.applyValue(getClientConfigResult -> getClientConfigResult.tenantId()))
* .objectId(testAzurermWebPubsubService.identity()[0].principalId())
* .certificatePermissions(
* "Create",
* "Get",
* "List")
* .secretPermissions(
* "Get",
* "List")
* .build())
* .build());
* var exampleCertificate = new Certificate("exampleCertificate", CertificateArgs.builder()
* .name("imported-cert")
* .keyVaultId(exampleKeyVault.id())
* .certificate(CertificateCertificateArgs.builder()
* .contents(StdFunctions.filebase64(Filebase64Args.builder()
* .input("certificate-to-import.pfx")
* .build()).result())
* .password("")
* .build())
* .build());
* var test = new CustomCertificate("test", CustomCertificateArgs.builder()
* .name("example-cert")
* .webPubsubId(exampleWebPubsubService.id())
* .customCertificateId(exampleCertificate.id())
* .build(), CustomResourceOptions.builder()
* .dependsOn(exampleAzurermKeyVaultAccessPolicy)
* .build());
* }
* }
* ```
* ```yaml
* resources:
* example:
* type: azure:core:ResourceGroup
* properties:
* name: example-resources
* location: West Europe
* exampleWebPubsubService:
* type: azurerm:webPubsubService
* name: example
* properties:
* name: example-webpubsub
* location: ${testAzurermResourceGroup.location}
* resourceGroupName: ${testAzurermResourceGroup.name}
* sku:
* - name: Premium_P1
* capacity: 1
* identity:
* - type: SystemAssigned
* exampleKeyVault:
* type: azure:keyvault:KeyVault
* name: example
* properties:
* name: examplekeyvault
* location: ${example.location}
* resourceGroupName: ${example.name}
* tenantId: ${current.tenantId}
* skuName: premium
* accessPolicies:
* - tenantId: ${current.tenantId}
* objectId: ${current.objectId}
* certificatePermissions:
* - Create
* - Get
* - List
* secretPermissions:
* - Get
* - List
* - tenantId: ${current.tenantId}
* objectId: ${testAzurermWebPubsubService.identity[0].principalId}
* certificatePermissions:
* - Create
* - Get
* - List
* secretPermissions:
* - Get
* - List
* exampleCertificate:
* type: azure:keyvault:Certificate
* name: example
* properties:
* name: imported-cert
* keyVaultId: ${exampleKeyVault.id}
* certificate:
* contents:
* fn::invoke:
* Function: std:filebase64
* Arguments:
* input: certificate-to-import.pfx
* Return: result
* password:
* test:
* type: azure:webpubsub:CustomCertificate
* properties:
* name: example-cert
* webPubsubId: ${exampleWebPubsubService.id}
* customCertificateId: ${exampleCertificate.id}
* options:
* dependson:
* - ${exampleAzurermKeyVaultAccessPolicy}
* variables:
* current:
* fn::invoke:
* Function: azure:core:getClientConfig
* Arguments: {}
* ```
*
* ## Import
* Custom Certificate for a Web PubSub service can be imported using the `resource id`, e.g.
* ```sh
* $ pulumi import azure:webpubsub/customCertificate:CustomCertificate example /subscriptions/00000000-0000-0000-0000-000000000000/resourceGroups/group1/providers/Microsoft.SignalRService/webPubSub/WebPubsub1/customCertificates/cert1
* ```
* @property customCertificateId The certificate ID of the Web PubSub Custom Certificate. Changing this forces a new resource to be created.
* > **Note:** Self assigned certificate is not supported and the provisioning status will fail.
* @property name The name of the Web PubSub Custom Certificate. Changing this forces a new resource to be created.
* @property webPubsubId The Web PubSub ID of the Web PubSub Custom Certificate. Changing this forces a new resource to be created.
* > **Note:** custom certificate is only available for Web PubSub Premium tier. Please enable managed identity in the corresponding Web PubSub Service and give the managed identity access to the key vault, the required permission is Get Certificate and Secret.
*/
public data class CustomCertificateArgs(
public val customCertificateId: Output? = null,
public val name: Output? = null,
public val webPubsubId: Output? = null,
) : ConvertibleToJava {
override fun toJava(): com.pulumi.azure.webpubsub.CustomCertificateArgs =
com.pulumi.azure.webpubsub.CustomCertificateArgs.builder()
.customCertificateId(customCertificateId?.applyValue({ args0 -> args0 }))
.name(name?.applyValue({ args0 -> args0 }))
.webPubsubId(webPubsubId?.applyValue({ args0 -> args0 })).build()
}
/**
* Builder for [CustomCertificateArgs].
*/
@PulumiTagMarker
public class CustomCertificateArgsBuilder internal constructor() {
private var customCertificateId: Output? = null
private var name: Output? = null
private var webPubsubId: Output? = null
/**
* @param value The certificate ID of the Web PubSub Custom Certificate. Changing this forces a new resource to be created.
* > **Note:** Self assigned certificate is not supported and the provisioning status will fail.
*/
@JvmName("qxvuyfwuwagcrlnw")
public suspend fun customCertificateId(`value`: Output) {
this.customCertificateId = value
}
/**
* @param value The name of the Web PubSub Custom Certificate. Changing this forces a new resource to be created.
*/
@JvmName("ykgupwmabtcmcdko")
public suspend fun name(`value`: Output) {
this.name = value
}
/**
* @param value The Web PubSub ID of the Web PubSub Custom Certificate. Changing this forces a new resource to be created.
* > **Note:** custom certificate is only available for Web PubSub Premium tier. Please enable managed identity in the corresponding Web PubSub Service and give the managed identity access to the key vault, the required permission is Get Certificate and Secret.
*/
@JvmName("hpmuxdqbiwasebrt")
public suspend fun webPubsubId(`value`: Output) {
this.webPubsubId = value
}
/**
* @param value The certificate ID of the Web PubSub Custom Certificate. Changing this forces a new resource to be created.
* > **Note:** Self assigned certificate is not supported and the provisioning status will fail.
*/
@JvmName("banldojonobcfvug")
public suspend fun customCertificateId(`value`: String?) {
val toBeMapped = value
val mapped = toBeMapped?.let({ args0 -> of(args0) })
this.customCertificateId = mapped
}
/**
* @param value The name of the Web PubSub Custom Certificate. Changing this forces a new resource to be created.
*/
@JvmName("ycgfbuitqyvjpgls")
public suspend fun name(`value`: String?) {
val toBeMapped = value
val mapped = toBeMapped?.let({ args0 -> of(args0) })
this.name = mapped
}
/**
* @param value The Web PubSub ID of the Web PubSub Custom Certificate. Changing this forces a new resource to be created.
* > **Note:** custom certificate is only available for Web PubSub Premium tier. Please enable managed identity in the corresponding Web PubSub Service and give the managed identity access to the key vault, the required permission is Get Certificate and Secret.
*/
@JvmName("roavivkfduwmbvje")
public suspend fun webPubsubId(`value`: String?) {
val toBeMapped = value
val mapped = toBeMapped?.let({ args0 -> of(args0) })
this.webPubsubId = mapped
}
internal fun build(): CustomCertificateArgs = CustomCertificateArgs(
customCertificateId = customCertificateId,
name = name,
webPubsubId = webPubsubId,
)
}
© 2015 - 2025 Weber Informatics LLC | Privacy Policy