npm - @cdktn/provider-azuread - Versions diffs - 15.0.0 - Mend

@cdktn/provider-azuread 15.0.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (158) hide show

package/.jsii +112042 -0
package/LICENSE +355 -0
package/README.md +94 -0
package/lib/access-package/index.d.ts +151 -0
package/lib/access-package/index.js +354 -0
package/lib/access-package-assignment-policy/index.d.ts +1098 -0
package/lib/access-package-assignment-policy/index.js +2711 -0
package/lib/access-package-catalog/index.d.ts +152 -0
package/lib/access-package-catalog/index.js +357 -0
package/lib/access-package-catalog-role-assignment/index.d.ts +140 -0
package/lib/access-package-catalog-role-assignment/index.js +333 -0
package/lib/access-package-resource-catalog-association/index.d.ts +131 -0
package/lib/access-package-resource-catalog-association/index.js +307 -0
package/lib/access-package-resource-package-association/index.d.ts +132 -0
package/lib/access-package-resource-package-association/index.js +310 -0
package/lib/administrative-unit/index.d.ts +165 -0
package/lib/administrative-unit/index.js +385 -0
package/lib/administrative-unit-member/index.d.ts +123 -0
package/lib/administrative-unit-member/index.js +295 -0
package/lib/administrative-unit-role-member/index.d.ts +131 -0
package/lib/administrative-unit-role-member/index.js +307 -0
package/lib/app-role-assignment/index.d.ts +134 -0
package/lib/app-role-assignment/index.js +319 -0
package/lib/application/index.d.ts +1352 -0
package/lib/application/index.js +3262 -0
package/lib/application-api-access/index.d.ts +152 -0
package/lib/application-api-access/index.js +357 -0
package/lib/application-app-role/index.d.ts +171 -0
package/lib/application-app-role/index.js +390 -0
package/lib/application-certificate/index.d.ts +196 -0
package/lib/application-certificate/index.js +441 -0
package/lib/application-fallback-public-client/index.d.ts +122 -0
package/lib/application-fallback-public-client/index.js +292 -0
package/lib/application-federated-identity-credential/index.d.ts +172 -0
package/lib/application-federated-identity-credential/index.js +394 -0
package/lib/application-flexible-federated-identity-credential/index.d.ts +172 -0
package/lib/application-flexible-federated-identity-credential/index.js +394 -0
package/lib/application-from-template/index.d.ts +134 -0
package/lib/application-from-template/index.js +334 -0
package/lib/application-identifier-uri/index.d.ts +121 -0
package/lib/application-identifier-uri/index.js +289 -0
package/lib/application-known-clients/index.d.ts +130 -0
package/lib/application-known-clients/index.js +315 -0
package/lib/application-optional-claims/index.d.ts +381 -0
package/lib/application-optional-claims/index.js +918 -0
package/lib/application-owner/index.d.ts +121 -0
package/lib/application-owner/index.js +289 -0
package/lib/application-password/index.d.ts +185 -0
package/lib/application-password/index.js +410 -0
package/lib/application-permission-scope/index.d.ts +193 -0
package/lib/application-permission-scope/index.js +432 -0
package/lib/application-pre-authorized/index.d.ts +140 -0
package/lib/application-pre-authorized/index.js +333 -0
package/lib/application-redirect-uris/index.d.ts +140 -0
package/lib/application-redirect-uris/index.js +333 -0
package/lib/application-registration/index.d.ts +278 -0
package/lib/application-registration/index.js +610 -0
package/lib/authentication-strength-policy/index.d.ts +141 -0
package/lib/authentication-strength-policy/index.js +336 -0
package/lib/claims-mapping-policy/index.d.ts +130 -0
package/lib/claims-mapping-policy/index.js +315 -0
package/lib/conditional-access-policy/index.d.ts +959 -0
package/lib/conditional-access-policy/index.js +2705 -0
package/lib/custom-directory-role/index.d.ts +216 -0
package/lib/custom-directory-role/index.js +505 -0
package/lib/data-azuread-access-package/index.d.ts +118 -0
package/lib/data-azuread-access-package/index.js +272 -0
package/lib/data-azuread-access-package-catalog/index.d.ts +108 -0
package/lib/data-azuread-access-package-catalog/index.js +258 -0
package/lib/data-azuread-access-package-catalog-role/index.d.ts +107 -0
package/lib/data-azuread-access-package-catalog-role/index.js +254 -0
package/lib/data-azuread-administrative-unit/index.d.ts +135 -0
package/lib/data-azuread-administrative-unit/index.js +336 -0
package/lib/data-azuread-application/index.d.ts +654 -0
package/lib/data-azuread-application/index.js +1606 -0
package/lib/data-azuread-application-published-app-ids/index.d.ts +85 -0
package/lib/data-azuread-application-published-app-ids/index.js +206 -0
package/lib/data-azuread-application-template/index.d.ts +111 -0
package/lib/data-azuread-application-template/index.js +270 -0
package/lib/data-azuread-client-config/index.d.ts +86 -0
package/lib/data-azuread-client-config/index.js +216 -0
package/lib/data-azuread-directory-object/index.d.ts +94 -0
package/lib/data-azuread-directory-object/index.js +223 -0
package/lib/data-azuread-directory-role-templates/index.d.ts +120 -0
package/lib/data-azuread-directory-role-templates/index.js +293 -0
package/lib/data-azuread-directory-roles/index.d.ts +122 -0
package/lib/data-azuread-directory-roles/index.js +301 -0
package/lib/data-azuread-domains/index.d.ts +190 -0
package/lib/data-azuread-domains/index.js +435 -0
package/lib/data-azuread-group/index.d.ts +207 -0
package/lib/data-azuread-group/index.js +506 -0
package/lib/data-azuread-group-role-management-policy/index.d.ts +105 -0
package/lib/data-azuread-group-role-management-policy/index.js +248 -0
package/lib/data-azuread-groups/index.d.ts +160 -0
package/lib/data-azuread-groups/index.js +348 -0
package/lib/data-azuread-named-location/index.d.ts +163 -0
package/lib/data-azuread-named-location/index.js +398 -0
package/lib/data-azuread-service-principal/index.d.ts +325 -0
package/lib/data-azuread-service-principal/index.js +817 -0
package/lib/data-azuread-service-principals/index.d.ts +183 -0
package/lib/data-azuread-service-principals/index.js +430 -0
package/lib/data-azuread-user/index.d.ts +177 -0
package/lib/data-azuread-user/index.js +465 -0
package/lib/data-azuread-users/index.d.ts +204 -0
package/lib/data-azuread-users/index.js +468 -0
package/lib/directory-role/index.d.ts +125 -0
package/lib/directory-role/index.js +306 -0
package/lib/directory-role-assignment/index.d.ts +143 -0
package/lib/directory-role-assignment/index.js +331 -0
package/lib/directory-role-eligibility-schedule-request/index.d.ts +141 -0
package/lib/directory-role-eligibility-schedule-request/index.js +325 -0
package/lib/directory-role-member/index.d.ts +123 -0
package/lib/directory-role-member/index.js +295 -0
package/lib/group/index.d.ts +392 -0
package/lib/group/index.js +872 -0
package/lib/group-member/index.d.ts +121 -0
package/lib/group-member/index.js +289 -0
package/lib/group-role-management-policy/index.d.ts +1043 -0
package/lib/group-role-management-policy/index.js +2775 -0
package/lib/group-without-members/index.d.ts +381 -0
package/lib/group-without-members/index.js +851 -0
package/lib/index.d.ts +79 -0
package/lib/index.js +85 -0
package/lib/invitation/index.d.ts +203 -0
package/lib/invitation/index.js +490 -0
package/lib/lazy-index.d.ts +4 -0
package/lib/lazy-index.js +82 -0
package/lib/named-location/index.d.ts +212 -0
package/lib/named-location/index.js +571 -0
package/lib/privileged-access-group-assignment-schedule/index.d.ts +218 -0
package/lib/privileged-access-group-assignment-schedule/index.js +484 -0
package/lib/privileged-access-group-eligibility-schedule/index.d.ts +218 -0
package/lib/privileged-access-group-eligibility-schedule/index.js +484 -0
package/lib/provider/index.d.ts +289 -0
package/lib/provider/index.js +549 -0
package/lib/service-principal/index.d.ts +547 -0
package/lib/service-principal/index.js +1305 -0
package/lib/service-principal-certificate/index.d.ts +187 -0
package/lib/service-principal-certificate/index.js +415 -0
package/lib/service-principal-claims-mapping-policy-assignment/index.d.ts +121 -0
package/lib/service-principal-claims-mapping-policy-assignment/index.js +289 -0
package/lib/service-principal-delegated-permission-grant/index.d.ts +151 -0
package/lib/service-principal-delegated-permission-grant/index.js +354 -0
package/lib/service-principal-password/index.d.ts +176 -0
package/lib/service-principal-password/index.js +384 -0
package/lib/service-principal-token-signing-certificate/index.d.ts +137 -0
package/lib/service-principal-token-signing-certificate/index.js +329 -0
package/lib/synchronization-job/index.d.ts +177 -0
package/lib/synchronization-job/index.js +424 -0
package/lib/synchronization-job-provision-on-demand/index.d.ts +254 -0
package/lib/synchronization-job-provision-on-demand/index.js +590 -0
package/lib/synchronization-secret/index.d.ts +184 -0
package/lib/synchronization-secret/index.js +449 -0
package/lib/user/index.d.ts +517 -0
package/lib/user/index.js +1084 -0
package/lib/user-flow-attribute/index.d.ts +141 -0
package/lib/user-flow-attribute/index.js +340 -0
package/package.json +155 -0

package/lib/service-principal/index.d.ts ADDED Viewed

@@ -0,0 +1,547 @@
+/**
+ * Copyright IBM Corp. 2021, 2026
+ * SPDX-License-Identifier: MPL-2.0
+ */
+import { Construct } from 'constructs';
+import * as cdktn from 'cdktn';
+export interface ServicePrincipalConfig extends cdktn.TerraformMetaArguments {
+    /**
+    * Whether or not the service principal account is enabled
+    *
+    * Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/azuread/3.7.0/docs/resources/service_principal#account_enabled ServicePrincipal#account_enabled}
+    */
+    readonly accountEnabled?: boolean | cdktn.IResolvable;
+    /**
+    * A list of alternative names, used to retrieve service principals by subscription, identify resource group and full resource ids for managed identities
+    *
+    * Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/azuread/3.7.0/docs/resources/service_principal#alternative_names ServicePrincipal#alternative_names}
+    */
+    readonly alternativeNames?: string[];
+    /**
+    * Whether this service principal requires an app role assignment to a user or group before Azure AD will issue a user or access token to the application
+    *
+    * Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/azuread/3.7.0/docs/resources/service_principal#app_role_assignment_required ServicePrincipal#app_role_assignment_required}
+    */
+    readonly appRoleAssignmentRequired?: boolean | cdktn.IResolvable;
+    /**
+    * The client ID of the application for which to create a service principal
+    *
+    * Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/azuread/3.7.0/docs/resources/service_principal#client_id ServicePrincipal#client_id}
+    */
+    readonly clientId: string;
+    /**
+    * Description of the service principal provided for internal end-users
+    *
+    * Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/azuread/3.7.0/docs/resources/service_principal#description ServicePrincipal#description}
+    */
+    readonly description?: string;
+    /**
+    * Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/azuread/3.7.0/docs/resources/service_principal#id ServicePrincipal#id}
+    *
+    * Please be aware that the id field is automatically added to all resources in Terraform providers using a Terraform provider SDK version below 2.
+    * If you experience problems setting this value it might not be settable. Please take a look at the provider documentation to ensure it should be settable.
+    */
+    readonly id?: string;
+    /**
+    * The URL where the service provider redirects the user to Azure AD to authenticate. Azure AD uses the URL to launch the application from Microsoft 365 or the Azure AD My Apps. When blank, Azure AD performs IdP-initiated sign-on for applications configured with SAML-based single sign-on
+    *
+    * Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/azuread/3.7.0/docs/resources/service_principal#login_url ServicePrincipal#login_url}
+    */
+    readonly loginUrl?: string;
+    /**
+    * Free text field to capture information about the service principal, typically used for operational purposes
+    *
+    * Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/azuread/3.7.0/docs/resources/service_principal#notes ServicePrincipal#notes}
+    */
+    readonly notes?: string;
+    /**
+    * List of email addresses where Azure AD sends a notification when the active certificate is near the expiration date. This is only for the certificates used to sign the SAML token issued for Azure AD Gallery applications
+    *
+    * Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/azuread/3.7.0/docs/resources/service_principal#notification_email_addresses ServicePrincipal#notification_email_addresses}
+    */
+    readonly notificationEmailAddresses?: string[];
+    /**
+    * A list of object IDs of principals that will be granted ownership of the service principal
+    *
+    * Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/azuread/3.7.0/docs/resources/service_principal#owners ServicePrincipal#owners}
+    */
+    readonly owners?: string[];
+    /**
+    * The single sign-on mode configured for this application. Azure AD uses the preferred single sign-on mode to launch the application from Microsoft 365 or the Azure AD My Apps
+    *
+    * Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/azuread/3.7.0/docs/resources/service_principal#preferred_single_sign_on_mode ServicePrincipal#preferred_single_sign_on_mode}
+    */
+    readonly preferredSingleSignOnMode?: string;
+    /**
+    * A set of tags to apply to the service principal
+    *
+    * Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/azuread/3.7.0/docs/resources/service_principal#tags ServicePrincipal#tags}
+    */
+    readonly tags?: string[];
+    /**
+    * When true, the resource will return an existing service principal instead of failing with an error
+    *
+    * Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/azuread/3.7.0/docs/resources/service_principal#use_existing ServicePrincipal#use_existing}
+    */
+    readonly useExisting?: boolean | cdktn.IResolvable;
+    /**
+    * feature_tags block
+    *
+    * Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/azuread/3.7.0/docs/resources/service_principal#feature_tags ServicePrincipal#feature_tags}
+    */
+    readonly featureTags?: ServicePrincipalFeatureTags[] | cdktn.IResolvable;
+    /**
+    * features block
+    *
+    * Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/azuread/3.7.0/docs/resources/service_principal#features ServicePrincipal#features}
+    */
+    readonly features?: ServicePrincipalFeatures[] | cdktn.IResolvable;
+    /**
+    * saml_single_sign_on block
+    *
+    * Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/azuread/3.7.0/docs/resources/service_principal#saml_single_sign_on ServicePrincipal#saml_single_sign_on}
+    */
+    readonly samlSingleSignOn?: ServicePrincipalSamlSingleSignOn;
+    /**
+    * timeouts block
+    *
+    * Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/azuread/3.7.0/docs/resources/service_principal#timeouts ServicePrincipal#timeouts}
+    */
+    readonly timeouts?: ServicePrincipalTimeouts;
+}
+export interface ServicePrincipalAppRoles {
+}
+export declare function servicePrincipalAppRolesToTerraform(struct?: ServicePrincipalAppRoles): any;
+export declare function servicePrincipalAppRolesToHclTerraform(struct?: ServicePrincipalAppRoles): any;
+export declare class ServicePrincipalAppRolesOutputReference extends cdktn.ComplexObject {
+    private isEmptyObject;
+    /**
+    * @param terraformResource The parent resource
+    * @param terraformAttribute The attribute on the parent resource this class is referencing
+    * @param complexObjectIndex the index of this item in the list
+    * @param complexObjectIsFromSet whether the list is wrapping a set (will add tolist() to be able to access an item via an index)
+    */
+    constructor(terraformResource: cdktn.IInterpolatingParent, terraformAttribute: string, complexObjectIndex: number, complexObjectIsFromSet: boolean);
+    get internalValue(): ServicePrincipalAppRoles | undefined;
+    set internalValue(value: ServicePrincipalAppRoles | undefined);
+    get allowedMemberTypes(): string[];
+    get description(): string;
+    get displayName(): string;
+    get enabled(): cdktn.IResolvable;
+    get id(): string;
+    get value(): string;
+}
+export declare class ServicePrincipalAppRolesList extends cdktn.ComplexList {
+    protected terraformResource: cdktn.IInterpolatingParent;
+    protected terraformAttribute: string;
+    protected wrapsSet: boolean;
+    /**
+    * @param terraformResource The parent resource
+    * @param terraformAttribute The attribute on the parent resource this class is referencing
+    * @param wrapsSet whether the list is wrapping a set (will add tolist() to be able to access an item via an index)
+    */
+    constructor(terraformResource: cdktn.IInterpolatingParent, terraformAttribute: string, wrapsSet: boolean);
+    /**
+    * @param index the index of the item to return
+    */
+    get(index: number): ServicePrincipalAppRolesOutputReference;
+}
+export interface ServicePrincipalOauth2PermissionScopes {
+}
+export declare function servicePrincipalOauth2PermissionScopesToTerraform(struct?: ServicePrincipalOauth2PermissionScopes): any;
+export declare function servicePrincipalOauth2PermissionScopesToHclTerraform(struct?: ServicePrincipalOauth2PermissionScopes): any;
+export declare class ServicePrincipalOauth2PermissionScopesOutputReference extends cdktn.ComplexObject {
+    private isEmptyObject;
+    /**
+    * @param terraformResource The parent resource
+    * @param terraformAttribute The attribute on the parent resource this class is referencing
+    * @param complexObjectIndex the index of this item in the list
+    * @param complexObjectIsFromSet whether the list is wrapping a set (will add tolist() to be able to access an item via an index)
+    */
+    constructor(terraformResource: cdktn.IInterpolatingParent, terraformAttribute: string, complexObjectIndex: number, complexObjectIsFromSet: boolean);
+    get internalValue(): ServicePrincipalOauth2PermissionScopes | undefined;
+    set internalValue(value: ServicePrincipalOauth2PermissionScopes | undefined);
+    get adminConsentDescription(): string;
+    get adminConsentDisplayName(): string;
+    get enabled(): cdktn.IResolvable;
+    get id(): string;
+    get type(): string;
+    get userConsentDescription(): string;
+    get userConsentDisplayName(): string;
+    get value(): string;
+}
+export declare class ServicePrincipalOauth2PermissionScopesList extends cdktn.ComplexList {
+    protected terraformResource: cdktn.IInterpolatingParent;
+    protected terraformAttribute: string;
+    protected wrapsSet: boolean;
+    /**
+    * @param terraformResource The parent resource
+    * @param terraformAttribute The attribute on the parent resource this class is referencing
+    * @param wrapsSet whether the list is wrapping a set (will add tolist() to be able to access an item via an index)
+    */
+    constructor(terraformResource: cdktn.IInterpolatingParent, terraformAttribute: string, wrapsSet: boolean);
+    /**
+    * @param index the index of the item to return
+    */
+    get(index: number): ServicePrincipalOauth2PermissionScopesOutputReference;
+}
+export interface ServicePrincipalFeatureTags {
+    /**
+    * Whether this service principal represents a custom SAML application
+    *
+    * Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/azuread/3.7.0/docs/resources/service_principal#custom_single_sign_on ServicePrincipal#custom_single_sign_on}
+    */
+    readonly customSingleSignOn?: boolean | cdktn.IResolvable;
+    /**
+    * Whether this service principal represents an Enterprise Application
+    *
+    * Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/azuread/3.7.0/docs/resources/service_principal#enterprise ServicePrincipal#enterprise}
+    */
+    readonly enterprise?: boolean | cdktn.IResolvable;
+    /**
+    * Whether this service principal represents a gallery application
+    *
+    * Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/azuread/3.7.0/docs/resources/service_principal#gallery ServicePrincipal#gallery}
+    */
+    readonly gallery?: boolean | cdktn.IResolvable;
+    /**
+    * Whether this app is invisible to users in My Apps and Office 365 Launcher
+    *
+    * Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/azuread/3.7.0/docs/resources/service_principal#hide ServicePrincipal#hide}
+    */
+    readonly hide?: boolean | cdktn.IResolvable;
+}
+export declare function servicePrincipalFeatureTagsToTerraform(struct?: ServicePrincipalFeatureTags | cdktn.IResolvable): any;
+export declare function servicePrincipalFeatureTagsToHclTerraform(struct?: ServicePrincipalFeatureTags | cdktn.IResolvable): any;
+export declare class ServicePrincipalFeatureTagsOutputReference extends cdktn.ComplexObject {
+    private isEmptyObject;
+    private resolvableValue?;
+    /**
+    * @param terraformResource The parent resource
+    * @param terraformAttribute The attribute on the parent resource this class is referencing
+    * @param complexObjectIndex the index of this item in the list
+    * @param complexObjectIsFromSet whether the list is wrapping a set (will add tolist() to be able to access an item via an index)
+    */
+    constructor(terraformResource: cdktn.IInterpolatingParent, terraformAttribute: string, complexObjectIndex: number, complexObjectIsFromSet: boolean);
+    get internalValue(): ServicePrincipalFeatureTags | cdktn.IResolvable | undefined;
+    set internalValue(value: ServicePrincipalFeatureTags | cdktn.IResolvable | undefined);
+    private _customSingleSignOn?;
+    get customSingleSignOn(): boolean | cdktn.IResolvable;
+    set customSingleSignOn(value: boolean | cdktn.IResolvable);
+    resetCustomSingleSignOn(): void;
+    get customSingleSignOnInput(): boolean | cdktn.IResolvable | undefined;
+    private _enterprise?;
+    get enterprise(): boolean | cdktn.IResolvable;
+    set enterprise(value: boolean | cdktn.IResolvable);
+    resetEnterprise(): void;
+    get enterpriseInput(): boolean | cdktn.IResolvable | undefined;
+    private _gallery?;
+    get gallery(): boolean | cdktn.IResolvable;
+    set gallery(value: boolean | cdktn.IResolvable);
+    resetGallery(): void;
+    get galleryInput(): boolean | cdktn.IResolvable | undefined;
+    private _hide?;
+    get hide(): boolean | cdktn.IResolvable;
+    set hide(value: boolean | cdktn.IResolvable);
+    resetHide(): void;
+    get hideInput(): boolean | cdktn.IResolvable | undefined;
+}
+export declare class ServicePrincipalFeatureTagsList extends cdktn.ComplexList {
+    protected terraformResource: cdktn.IInterpolatingParent;
+    protected terraformAttribute: string;
+    protected wrapsSet: boolean;
+    internalValue?: ServicePrincipalFeatureTags[] | cdktn.IResolvable;
+    /**
+    * @param terraformResource The parent resource
+    * @param terraformAttribute The attribute on the parent resource this class is referencing
+    * @param wrapsSet whether the list is wrapping a set (will add tolist() to be able to access an item via an index)
+    */
+    constructor(terraformResource: cdktn.IInterpolatingParent, terraformAttribute: string, wrapsSet: boolean);
+    /**
+    * @param index the index of the item to return
+    */
+    get(index: number): ServicePrincipalFeatureTagsOutputReference;
+}
+export interface ServicePrincipalFeatures {
+    /**
+    * Whether this service principal represents a custom SAML application
+    *
+    * Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/azuread/3.7.0/docs/resources/service_principal#custom_single_sign_on_app ServicePrincipal#custom_single_sign_on_app}
+    */
+    readonly customSingleSignOnApp?: boolean | cdktn.IResolvable;
+    /**
+    * Whether this service principal represents an Enterprise Application
+    *
+    * Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/azuread/3.7.0/docs/resources/service_principal#enterprise_application ServicePrincipal#enterprise_application}
+    */
+    readonly enterpriseApplication?: boolean | cdktn.IResolvable;
+    /**
+    * Whether this service principal represents a gallery application
+    *
+    * Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/azuread/3.7.0/docs/resources/service_principal#gallery_application ServicePrincipal#gallery_application}
+    */
+    readonly galleryApplication?: boolean | cdktn.IResolvable;
+    /**
+    * Whether this app is visible to users in My Apps and Office 365 Launcher
+    *
+    * Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/azuread/3.7.0/docs/resources/service_principal#visible_to_users ServicePrincipal#visible_to_users}
+    */
+    readonly visibleToUsers?: boolean | cdktn.IResolvable;
+}
+export declare function servicePrincipalFeaturesToTerraform(struct?: ServicePrincipalFeatures | cdktn.IResolvable): any;
+export declare function servicePrincipalFeaturesToHclTerraform(struct?: ServicePrincipalFeatures | cdktn.IResolvable): any;
+export declare class ServicePrincipalFeaturesOutputReference extends cdktn.ComplexObject {
+    private isEmptyObject;
+    private resolvableValue?;
+    /**
+    * @param terraformResource The parent resource
+    * @param terraformAttribute The attribute on the parent resource this class is referencing
+    * @param complexObjectIndex the index of this item in the list
+    * @param complexObjectIsFromSet whether the list is wrapping a set (will add tolist() to be able to access an item via an index)
+    */
+    constructor(terraformResource: cdktn.IInterpolatingParent, terraformAttribute: string, complexObjectIndex: number, complexObjectIsFromSet: boolean);
+    get internalValue(): ServicePrincipalFeatures | cdktn.IResolvable | undefined;
+    set internalValue(value: ServicePrincipalFeatures | cdktn.IResolvable | undefined);
+    private _customSingleSignOnApp?;
+    get customSingleSignOnApp(): boolean | cdktn.IResolvable;
+    set customSingleSignOnApp(value: boolean | cdktn.IResolvable);
+    resetCustomSingleSignOnApp(): void;
+    get customSingleSignOnAppInput(): boolean | cdktn.IResolvable | undefined;
+    private _enterpriseApplication?;
+    get enterpriseApplication(): boolean | cdktn.IResolvable;
+    set enterpriseApplication(value: boolean | cdktn.IResolvable);
+    resetEnterpriseApplication(): void;
+    get enterpriseApplicationInput(): boolean | cdktn.IResolvable | undefined;
+    private _galleryApplication?;
+    get galleryApplication(): boolean | cdktn.IResolvable;
+    set galleryApplication(value: boolean | cdktn.IResolvable);
+    resetGalleryApplication(): void;
+    get galleryApplicationInput(): boolean | cdktn.IResolvable | undefined;
+    private _visibleToUsers?;
+    get visibleToUsers(): boolean | cdktn.IResolvable;
+    set visibleToUsers(value: boolean | cdktn.IResolvable);
+    resetVisibleToUsers(): void;
+    get visibleToUsersInput(): boolean | cdktn.IResolvable | undefined;
+}
+export declare class ServicePrincipalFeaturesList extends cdktn.ComplexList {
+    protected terraformResource: cdktn.IInterpolatingParent;
+    protected terraformAttribute: string;
+    protected wrapsSet: boolean;
+    internalValue?: ServicePrincipalFeatures[] | cdktn.IResolvable;
+    /**
+    * @param terraformResource The parent resource
+    * @param terraformAttribute The attribute on the parent resource this class is referencing
+    * @param wrapsSet whether the list is wrapping a set (will add tolist() to be able to access an item via an index)
+    */
+    constructor(terraformResource: cdktn.IInterpolatingParent, terraformAttribute: string, wrapsSet: boolean);
+    /**
+    * @param index the index of the item to return
+    */
+    get(index: number): ServicePrincipalFeaturesOutputReference;
+}
+export interface ServicePrincipalSamlSingleSignOn {
+    /**
+    * The relative URI the service provider would redirect to after completion of the single sign-on flow
+    *
+    * Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/azuread/3.7.0/docs/resources/service_principal#relay_state ServicePrincipal#relay_state}
+    */
+    readonly relayState?: string;
+}
+export declare function servicePrincipalSamlSingleSignOnToTerraform(struct?: ServicePrincipalSamlSingleSignOnOutputReference | ServicePrincipalSamlSingleSignOn): any;
+export declare function servicePrincipalSamlSingleSignOnToHclTerraform(struct?: ServicePrincipalSamlSingleSignOnOutputReference | ServicePrincipalSamlSingleSignOn): any;
+export declare class ServicePrincipalSamlSingleSignOnOutputReference extends cdktn.ComplexObject {
+    private isEmptyObject;
+    /**
+    * @param terraformResource The parent resource
+    * @param terraformAttribute The attribute on the parent resource this class is referencing
+    */
+    constructor(terraformResource: cdktn.IInterpolatingParent, terraformAttribute: string);
+    get internalValue(): ServicePrincipalSamlSingleSignOn | undefined;
+    set internalValue(value: ServicePrincipalSamlSingleSignOn | undefined);
+    private _relayState?;
+    get relayState(): string;
+    set relayState(value: string);
+    resetRelayState(): void;
+    get relayStateInput(): string | undefined;
+}
+export interface ServicePrincipalTimeouts {
+    /**
+    * Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/azuread/3.7.0/docs/resources/service_principal#create ServicePrincipal#create}
+    */
+    readonly create?: string;
+    /**
+    * Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/azuread/3.7.0/docs/resources/service_principal#delete ServicePrincipal#delete}
+    */
+    readonly delete?: string;
+    /**
+    * Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/azuread/3.7.0/docs/resources/service_principal#read ServicePrincipal#read}
+    */
+    readonly read?: string;
+    /**
+    * Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/azuread/3.7.0/docs/resources/service_principal#update ServicePrincipal#update}
+    */
+    readonly update?: string;
+}
+export declare function servicePrincipalTimeoutsToTerraform(struct?: ServicePrincipalTimeouts | cdktn.IResolvable): any;
+export declare function servicePrincipalTimeoutsToHclTerraform(struct?: ServicePrincipalTimeouts | cdktn.IResolvable): any;
+export declare class ServicePrincipalTimeoutsOutputReference extends cdktn.ComplexObject {
+    private isEmptyObject;
+    private resolvableValue?;
+    /**
+    * @param terraformResource The parent resource
+    * @param terraformAttribute The attribute on the parent resource this class is referencing
+    */
+    constructor(terraformResource: cdktn.IInterpolatingParent, terraformAttribute: string);
+    get internalValue(): ServicePrincipalTimeouts | cdktn.IResolvable | undefined;
+    set internalValue(value: ServicePrincipalTimeouts | cdktn.IResolvable | undefined);
+    private _create?;
+    get create(): string;
+    set create(value: string);
+    resetCreate(): void;
+    get createInput(): string | undefined;
+    private _delete?;
+    get delete(): string;
+    set delete(value: string);
+    resetDelete(): void;
+    get deleteInput(): string | undefined;
+    private _read?;
+    get read(): string;
+    set read(value: string);
+    resetRead(): void;
+    get readInput(): string | undefined;
+    private _update?;
+    get update(): string;
+    set update(value: string);
+    resetUpdate(): void;
+    get updateInput(): string | undefined;
+}
+/**
+* Represents a {@link https://registry.terraform.io/providers/hashicorp/azuread/3.7.0/docs/resources/service_principal azuread_service_principal}
+*/
+export declare class ServicePrincipal extends cdktn.TerraformResource {
+    static readonly tfResourceType = "azuread_service_principal";
+    /**
+    * Generates CDKTN code for importing a ServicePrincipal resource upon running "cdktn plan <stack-name>"
+    * @param scope The scope in which to define this construct
+    * @param importToId The construct id used in the generated config for the ServicePrincipal to import
+    * @param importFromId The id of the existing ServicePrincipal that should be imported. Refer to the {@link https://registry.terraform.io/providers/hashicorp/azuread/3.7.0/docs/resources/service_principal#import import section} in the documentation of this resource for the id to use
+    * @param provider? Optional instance of the provider where the ServicePrincipal to import is found
+    */
+    static generateConfigForImport(scope: Construct, importToId: string, importFromId: string, provider?: cdktn.TerraformProvider): cdktn.ImportableResource;
+    /**
+    * Create a new {@link https://registry.terraform.io/providers/hashicorp/azuread/3.7.0/docs/resources/service_principal azuread_service_principal} Resource
+    *
+    * @param scope The scope in which to define this construct
+    * @param id The scoped construct ID. Must be unique amongst siblings in the same scope
+    * @param options ServicePrincipalConfig
+    */
+    constructor(scope: Construct, id: string, config: ServicePrincipalConfig);
+    private _accountEnabled?;
+    get accountEnabled(): boolean | cdktn.IResolvable;
+    set accountEnabled(value: boolean | cdktn.IResolvable);
+    resetAccountEnabled(): void;
+    get accountEnabledInput(): boolean | cdktn.IResolvable | undefined;
+    private _alternativeNames?;
+    get alternativeNames(): string[];
+    set alternativeNames(value: string[]);
+    resetAlternativeNames(): void;
+    get alternativeNamesInput(): string[] | undefined;
+    private _appRoleAssignmentRequired?;
+    get appRoleAssignmentRequired(): boolean | cdktn.IResolvable;
+    set appRoleAssignmentRequired(value: boolean | cdktn.IResolvable);
+    resetAppRoleAssignmentRequired(): void;
+    get appRoleAssignmentRequiredInput(): boolean | cdktn.IResolvable | undefined;
+    private _appRoleIds;
+    get appRoleIds(): cdktn.StringMap;
+    private _appRoles;
+    get appRoles(): ServicePrincipalAppRolesList;
+    get applicationTenantId(): string;
+    private _clientId?;
+    get clientId(): string;
+    set clientId(value: string);
+    get clientIdInput(): string | undefined;
+    private _description?;
+    get description(): string;
+    set description(value: string);
+    resetDescription(): void;
+    get descriptionInput(): string | undefined;
+    get displayName(): string;
+    get homepageUrl(): string;
+    private _id?;
+    get id(): string;
+    set id(value: string);
+    resetId(): void;
+    get idInput(): string | undefined;
+    private _loginUrl?;
+    get loginUrl(): string;
+    set loginUrl(value: string);
+    resetLoginUrl(): void;
+    get loginUrlInput(): string | undefined;
+    get logoutUrl(): string;
+    private _notes?;
+    get notes(): string;
+    set notes(value: string);
+    resetNotes(): void;
+    get notesInput(): string | undefined;
+    private _notificationEmailAddresses?;
+    get notificationEmailAddresses(): string[];
+    set notificationEmailAddresses(value: string[]);
+    resetNotificationEmailAddresses(): void;
+    get notificationEmailAddressesInput(): string[] | undefined;
+    private _oauth2PermissionScopeIds;
+    get oauth2PermissionScopeIds(): cdktn.StringMap;
+    private _oauth2PermissionScopes;
+    get oauth2PermissionScopes(): ServicePrincipalOauth2PermissionScopesList;
+    get objectId(): string;
+    private _owners?;
+    get owners(): string[];
+    set owners(value: string[]);
+    resetOwners(): void;
+    get ownersInput(): string[] | undefined;
+    private _preferredSingleSignOnMode?;
+    get preferredSingleSignOnMode(): string;
+    set preferredSingleSignOnMode(value: string);
+    resetPreferredSingleSignOnMode(): void;
+    get preferredSingleSignOnModeInput(): string | undefined;
+    get redirectUris(): string[];
+    get samlMetadataUrl(): string;
+    get servicePrincipalNames(): string[];
+    get signInAudience(): string;
+    private _tags?;
+    get tags(): string[];
+    set tags(value: string[]);
+    resetTags(): void;
+    get tagsInput(): string[] | undefined;
+    get type(): string;
+    private _useExisting?;
+    get useExisting(): boolean | cdktn.IResolvable;
+    set useExisting(value: boolean | cdktn.IResolvable);
+    resetUseExisting(): void;
+    get useExistingInput(): boolean | cdktn.IResolvable | undefined;
+    private _featureTags;
+    get featureTags(): ServicePrincipalFeatureTagsList;
+    putFeatureTags(value: ServicePrincipalFeatureTags[] | cdktn.IResolvable): void;
+    resetFeatureTags(): void;
+    get featureTagsInput(): cdktn.IResolvable | ServicePrincipalFeatureTags[] | undefined;
+    private _features;
+    get features(): ServicePrincipalFeaturesList;
+    putFeatures(value: ServicePrincipalFeatures[] | cdktn.IResolvable): void;
+    resetFeatures(): void;
+    get featuresInput(): cdktn.IResolvable | ServicePrincipalFeatures[] | undefined;
+    private _samlSingleSignOn;
+    get samlSingleSignOn(): ServicePrincipalSamlSingleSignOnOutputReference;
+    putSamlSingleSignOn(value: ServicePrincipalSamlSingleSignOn): void;
+    resetSamlSingleSignOn(): void;
+    get samlSingleSignOnInput(): ServicePrincipalSamlSingleSignOn | undefined;
+    private _timeouts;
+    get timeouts(): ServicePrincipalTimeoutsOutputReference;
+    putTimeouts(value: ServicePrincipalTimeouts): void;
+    resetTimeouts(): void;
+    get timeoutsInput(): cdktn.IResolvable | ServicePrincipalTimeouts | undefined;
+    protected synthesizeAttributes(): {
+        [name: string]: any;
+    };
+    protected synthesizeHclAttributes(): {
+        [name: string]: any;
+    };
+}