@drunk-pulumi/azure-components 0.0.6

package/app/LogicApp.js

@@ -0,0 +1,77 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __importStar = (this && this.__importStar) || (function () {
+    var ownKeys = function(o) {
+        ownKeys = Object.getOwnPropertyNames || function (o) {
+            var ar = [];
+            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
+            return ar;
+        };
+        return ownKeys(o);
+    };
+    return function (mod) {
+        if (mod && mod.__esModule) return mod;
+        var result = {};
+        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
+        __setModuleDefault(result, mod);
+        return result;
+    };
+})();
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.LogicApp = void 0;
+const logic = __importStar(require("@pulumi/azure-native/logic"));
+const base_1 = require("../base");
+class LogicApp extends base_1.BaseResourceComponent {
+    id;
+    resourceName;
+    constructor(name, args, opts) {
+        super('LogicApp', name, args, opts);
+        const { rsGroup, defaultUAssignedId, integrationAccount, workflow } = args;
+        const account = new logic.IntegrationAccount(name, {
+            ...integrationAccount,
+            ...rsGroup,
+            sku: { name: integrationAccount.sku },
+        }, { dependsOn: opts?.dependsOn, parent: this });
+        const wf = new logic.Workflow(name, {
+            ...rsGroup,
+            ...workflow,
+            identity: {
+                type: defaultUAssignedId?.id
+                    ? logic.ManagedServiceIdentityType.UserAssigned
+                    : logic.ManagedServiceIdentityType.SystemAssigned,
+                userAssignedIdentities: defaultUAssignedId?.id ? [defaultUAssignedId.id] : undefined,
+            },
+            integrationAccount: { id: account.id },
+        }, {
+            ...opts,
+            dependsOn: account,
+            parent: this,
+        });
+        this.id = wf.id;
+        this.resourceName = wf.name;
+        this.registerOutputs();
+    }
+    getOutputs() {
+        return {
+            id: this.id,
+            resourceName: this.resourceName,
+        };
+    }
+}
+exports.LogicApp = LogicApp;
+//# sourceMappingURL=data:application/json;base64,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

package/app/SignalR.d.ts

@@ -0,0 +1,45 @@
+import * as ss from '@pulumi/azure-native/signalrservice';
+import * as pulumi from '@pulumi/pulumi';
+import { BaseResourceComponent, CommonBaseArgs } from '../base';
+import * as types from '../types';
+export interface SignalRArgs extends CommonBaseArgs, types.WithUserAssignedIdentity, Pick<ss.SignalRArgs, 'kind' | 'cors' | 'features' | 'tls' | 'identity'> {
+    sku: {
+        /**
+         * Optional, integer. The unit count of the resource.
+         * 1 for Free_F1/Standard_S1/Premium_P1, 100 for Premium_P2 by default.
+         *
+         * If present, following values are allowed:
+         *     Free_F1: 1;
+         *     Standard_S1: 1,2,3,4,5,6,7,8,9,10,20,30,40,50,60,70,80,90,100;
+         *     Premium_P1:  1,2,3,4,5,6,7,8,9,10,20,30,40,50,60,70,80,90,100;
+         *     Premium_P2:  100,200,300,400,500,600,700,800,900,1000;
+         */
+        capacity?: pulumi.Input<number>;
+        /**
+         * The name of the SKU. Required.
+         *
+         * Allowed values: Standard_S1, Free_F1, Premium_P1, Premium_P2
+         */
+        name: 'Standard_S1' | 'Free_F1' | 'Premium_P1' | 'Premium_P2';
+        /**
+         * Optional tier of this particular SKU. 'Standard' or 'Free'.
+         *
+         * `Basic` is deprecated, use `Standard` instead.
+         */
+        tier?: ss.SignalRSkuTier;
+    };
+    disableAadAuth?: boolean;
+    disableLocalAuth?: boolean;
+    network?: Pick<types.NetworkArgs, 'defaultAction' | 'ipRules' | 'privateLink' | 'publicNetworkAccess'>;
+}
+export declare class SignalR extends BaseResourceComponent<SignalRArgs> {
+    readonly id: pulumi.Output<string>;
+    readonly resourceName: pulumi.Output<string>;
+    constructor(name: string, args: SignalRArgs, opts?: pulumi.ComponentResourceOptions);
+    getOutputs(): {
+        id: pulumi.Output<string>;
+        resourceName: pulumi.Output<string>;
+    };
+    private createPrivateLink;
+    private addSecretsToVault;
+}

package/app/SignalR.js

@@ -0,0 +1,125 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __importStar = (this && this.__importStar) || (function () {
+    var ownKeys = function(o) {
+        ownKeys = Object.getOwnPropertyNames || function (o) {
+            var ar = [];
+            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
+            return ar;
+        };
+        return ownKeys(o);
+    };
+    return function (mod) {
+        if (mod && mod.__esModule) return mod;
+        var result = {};
+        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
+        __setModuleDefault(result, mod);
+        return result;
+    };
+})();
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.SignalR = void 0;
+const ss = __importStar(require("@pulumi/azure-native/signalrservice"));
+const pulumi = __importStar(require("@pulumi/pulumi"));
+const base_1 = require("../base");
+const vault = __importStar(require("../vault"));
+const PrivateEndpoint_1 = require("../vnet/PrivateEndpoint");
+class SignalR extends base_1.BaseResourceComponent {
+    id;
+    resourceName;
+    constructor(name, args, opts) {
+        super('SignalR', name, args, opts);
+        const { rsGroup, network, sku, ...props } = args;
+        const isFreeTier = sku.name === 'Free_F1';
+        const service = new ss.SignalR(name, {
+            ...props,
+            ...rsGroup,
+            sku,
+            publicNetworkAccess: network?.publicNetworkAccess ? 'Enabled' : network?.privateLink ? 'Disabled' : 'Enabled',
+            networkACLs: isFreeTier
+                ? undefined
+                : network?.privateLink
+                    ? {
+                        defaultAction: ss.ACLAction.Allow,
+                        publicNetwork: {
+                            allow: [ss.SignalRRequestType.ClientConnection],
+                            deny: [ss.SignalRRequestType.ServerConnection, ss.SignalRRequestType.RESTAPI],
+                        },
+                        privateEndpoints: [
+                            {
+                                name: '',
+                                allow: [ss.SignalRRequestType.ClientConnection, ss.SignalRRequestType.ServerConnection],
+                                deny: [ss.SignalRRequestType.RESTAPI],
+                            },
+                        ],
+                    }
+                    : {
+                        defaultAction: ss.ACLAction.Allow,
+                        publicNetwork: {
+                            allow: [ss.SignalRRequestType.ClientConnection, ss.SignalRRequestType.ServerConnection],
+                            deny: [ss.SignalRRequestType.RESTAPI],
+                        },
+                    },
+        }, { ...opts, parent: this });
+        this.createPrivateLink(service);
+        this.addSecretsToVault(service);
+        this.id = service.id;
+        this.resourceName = service.name;
+        this.registerOutputs();
+    }
+    getOutputs() {
+        return {
+            id: this.id,
+            resourceName: this.resourceName,
+        };
+    }
+    createPrivateLink(service) {
+        const { rsGroup, network } = this.args;
+        if (!network?.privateLink)
+            return;
+        return new PrivateEndpoint_1.PrivateEndpoint(this.name, { ...network.privateLink, resourceInfo: service, rsGroup, type: 'signalR' }, { dependsOn: service, parent: this });
+    }
+    addSecretsToVault(service) {
+        const { rsGroup, disableLocalAuth, vaultInfo } = this.args;
+        if (disableLocalAuth || !vaultInfo)
+            return;
+        pulumi.output([service.name, rsGroup.resourceGroupName]).apply(async ([svName, rgName]) => {
+            if (!svName)
+                return;
+            const keys = await ss.listSignalRKeys({
+                resourceName: svName,
+                resourceGroupName: rgName,
+            });
+            new vault.VaultSecrets(this.name, {
+                vaultInfo,
+                secrets: {
+                    [`${this.name}-primary-conn`]: {
+                        value: keys.primaryConnectionString,
+                        contentType: `SignalR Primary ConnectionString`,
+                    },
+                    [`${this.name}-secondary-conn`]: {
+                        value: keys.secondaryConnectionString,
+                        contentType: `SignalR Secondary ConnectionString`,
+                    },
+                },
+            }, { dependsOn: service, parent: this });
+        });
+    }
+}
+exports.SignalR = SignalR;
+//# sourceMappingURL=data:application/json;base64,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

package/app/index.d.ts

@@ -0,0 +1,6 @@
+export * from './AppCert';
+export * from './AppConfig';
+export * from './AppService';
+export * from './IoTHub';
+export * from './LogicApp';
+export * from './SignalR';

package/app/index.js

@@ -0,0 +1,23 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __exportStar = (this && this.__exportStar) || function(m, exports) {
+    for (var p in m) if (p !== "default" && !Object.prototype.hasOwnProperty.call(exports, p)) __createBinding(exports, m, p);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+__exportStar(require("./AppCert"), exports);
+__exportStar(require("./AppConfig"), exports);
+__exportStar(require("./AppService"), exports);
+__exportStar(require("./IoTHub"), exports);
+__exportStar(require("./LogicApp"), exports);
+__exportStar(require("./SignalR"), exports);
+//# sourceMappingURL=data:application/json;base64,eyJ2ZXJzaW9uIjozLCJmaWxlIjoiaW5kZXguanMiLCJzb3VyY2VSb290IjoiIiwic291cmNlcyI6WyIuLi8uLi9zcmMvYXBwL2luZGV4LnRzIl0sIm5hbWVzIjpbXSwibWFwcGluZ3MiOiI7Ozs7Ozs7Ozs7Ozs7Ozs7QUFBQSw0Q0FBMEI7QUFDMUIsOENBQTRCO0FBQzVCLCtDQUE2QjtBQUM3QiwyQ0FBeUI7QUFDekIsNkNBQTJCO0FBQzNCLDRDQUEwQiJ9

package/azAd/AppRegistration.d.ts

@@ -0,0 +1,52 @@
+import * as azAd from '@pulumi/azuread';
+import * as pulumi from '@pulumi/pulumi';
+import { BaseComponent } from '../base/BaseComponent';
+import { WithMemberOfArgs, WithVaultInfo } from '../types';
+import { RoleAssignmentArgs } from './RoleAssignment';
+export declare enum GroupMembershipClaimsTypes {
+    None = "None",
+    SecurityGroup = "SecurityGroup",
+    DirectoryRole = "DirectoryRole",
+    ApplicationGroup = "ApplicationGroup",
+    All = "All"
+}
+export interface AppRegistrationArgs extends WithVaultInfo, WithMemberOfArgs, Pick<azAd.ApplicationArgs, 'identifierUris' | 'oauth2PostResponseRequired' | 'optionalClaims' | 'featureTags' | 'api' | 'appRoles' | 'owners' | 'requiredResourceAccesses'> {
+    info?: Pick<azAd.ApplicationArgs, 'description' | 'displayName' | 'logoImage' | 'marketingUrl' | 'notes' | 'privacyStatementUrl'>;
+    groupMembershipClaims?: pulumi.Input<GroupMembershipClaimsTypes[]>;
+    identifierUris?: pulumi.Input<pulumi.Input<string>[]>;
+    enableClientSecret?: pulumi.Input<boolean>;
+    servicePrincipal?: Pick<azAd.ServicePrincipalArgs, 'notificationEmailAddresses' | 'preferredSingleSignOnMode' | 'samlSingleSignOn' | 'appRoleAssignmentRequired'> & {
+        enabled: boolean;
+    };
+    appType?: 'web' | 'singlePageApplication' | 'native';
+    /** This is require when the appType is 'web' or 'singlePageApplication' */
+    redirectUris?: pulumi.Input<pulumi.Input<string>[]>;
+    /** This option is for the appType is 'web' */
+    homepageUrl?: pulumi.Input<string>;
+    /** This option is for the appType is 'web' */
+    logoutUrl?: pulumi.Input<string>;
+    /** This option is for the appType is 'web' */
+    implicitGrant?: pulumi.Input<{
+        accessTokenIssuanceEnabled?: pulumi.Input<boolean>;
+        idTokenIssuanceEnabled?: pulumi.Input<boolean>;
+    }>;
+    roleAssignments?: Array<Omit<RoleAssignmentArgs, 'roleAssignmentName' | 'principalId' | 'principalType'>>;
+}
+export declare class AppRegistration extends BaseComponent<AppRegistrationArgs> {
+    readonly clientId: pulumi.Output<string>;
+    readonly clientSecret?: pulumi.Output<string>;
+    readonly servicePrincipalId?: pulumi.Output<string>;
+    readonly servicePrincipalPassword?: pulumi.Output<string>;
+    constructor(name: string, args?: AppRegistrationArgs, opts?: pulumi.ComponentResourceOptions);
+    getOutputs(): {
+        clientId: pulumi.Output<string>;
+        clientSecret: pulumi.Output<string> | undefined;
+        servicePrincipalId: pulumi.Output<string> | undefined;
+        servicePrincipalPassword: pulumi.Output<string> | undefined;
+    };
+    private createServicePrincipal;
+    private createClientSecret;
+    private addRoleAssignments;
+    private addMemberOf;
+    private addSecret;
+}

package/azAd/AppRegistration.js

@@ -0,0 +1,165 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __importStar = (this && this.__importStar) || (function () {
+    var ownKeys = function(o) {
+        ownKeys = Object.getOwnPropertyNames || function (o) {
+            var ar = [];
+            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
+            return ar;
+        };
+        return ownKeys(o);
+    };
+    return function (mod) {
+        if (mod && mod.__esModule) return mod;
+        var result = {};
+        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
+        __setModuleDefault(result, mod);
+        return result;
+    };
+})();
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.AppRegistration = exports.GroupMembershipClaimsTypes = void 0;
+const azAd = __importStar(require("@pulumi/azuread"));
+const pulumi = __importStar(require("@pulumi/pulumi"));
+const BaseComponent_1 = require("../base/BaseComponent");
+const helpers_1 = require("../base/helpers");
+const vault_1 = require("../vault");
+const RoleAssignment_1 = require("./RoleAssignment");
+var GroupMembershipClaimsTypes;
+(function (GroupMembershipClaimsTypes) {
+    GroupMembershipClaimsTypes["None"] = "None";
+    GroupMembershipClaimsTypes["SecurityGroup"] = "SecurityGroup";
+    GroupMembershipClaimsTypes["DirectoryRole"] = "DirectoryRole";
+    GroupMembershipClaimsTypes["ApplicationGroup"] = "ApplicationGroup";
+    GroupMembershipClaimsTypes["All"] = "All";
+})(GroupMembershipClaimsTypes || (exports.GroupMembershipClaimsTypes = GroupMembershipClaimsTypes = {}));
+class AppRegistration extends BaseComponent_1.BaseComponent {
+    clientId;
+    clientSecret;
+    servicePrincipalId;
+    servicePrincipalPassword;
+    //private readonly _app: azAd.Application;
+    constructor(name, args = { appType: 'native' }, opts) {
+        super((0, helpers_1.getComponentResourceType)('AppRegistration'), name, args, opts);
+        const ops = args.info ?? {
+            displayName: name,
+            description: name,
+        };
+        //Application
+        const app = new azAd.Application(name, {
+            ...ops,
+            preventDuplicateNames: true,
+            signInAudience: 'AzureADMyOrg',
+            featureTags: args.featureTags,
+            oauth2PostResponseRequired: args.oauth2PostResponseRequired,
+            identifierUris: args.identifierUris,
+            requiredResourceAccesses: args.requiredResourceAccesses,
+            optionalClaims: args.optionalClaims,
+            groupMembershipClaims: args.groupMembershipClaims,
+            appRoles: args.appRoles,
+            //Expose the API
+            api: args.api,
+            owners: args.owners,
+            //Clients Apps
+            web: args.appType == 'web'
+                ? {
+                    redirectUris: args.redirectUris,
+                    logoutUrl: args.logoutUrl,
+                    implicitGrant: args.implicitGrant,
+                    homepageUrl: args.homepageUrl,
+                }
+                : undefined,
+            singlePageApplication: args.appType == 'singlePageApplication' ? { redirectUris: args.redirectUris } : undefined,
+        }, { ...opts, parent: this });
+        this.addSecret('client-id', app.clientId);
+        if (args.enableClientSecret) {
+            const secret = this.createClientSecret(app);
+            this.clientSecret = secret.clientSecret;
+        }
+        if (args.servicePrincipal?.enabled) {
+            const sp = this.createServicePrincipal(app);
+            this.servicePrincipalId = sp.servicePrincipalId;
+            this.servicePrincipalPassword = sp.servicePrincipalPassword;
+        }
+        this.addMemberOf(app);
+        this.clientId = app.clientId;
+        this.registerOutputs(this.getOutputs());
+    }
+    getOutputs() {
+        return {
+            clientId: this.clientId,
+            clientSecret: this.clientSecret,
+            servicePrincipalId: this.servicePrincipalId,
+            servicePrincipalPassword: this.servicePrincipalPassword,
+        };
+    }
+    createServicePrincipal(app) {
+        //Service Principal
+        const sp = new azAd.ServicePrincipal(`${this.name}-sp`, {
+            ...this.args.servicePrincipal,
+            description: this.name,
+            clientId: app.clientId,
+            owners: this.args.owners,
+        }, { dependsOn: app, parent: this });
+        var spPass = new azAd.ServicePrincipalPassword(`${this.name}-sp-pass`, {
+            displayName: this.name,
+            servicePrincipalId: pulumi.interpolate `/servicePrincipals/${sp.objectId}`,
+        }, { dependsOn: sp, parent: this });
+        this.addRoleAssignments(sp);
+        this.addSecret('sp-pass', spPass.value);
+        return {
+            servicePrincipalId: sp.id,
+            servicePrincipalPassword: spPass.value,
+        };
+    }
+    createClientSecret(app) {
+        const clientSecret = new azAd.ApplicationPassword(`${this.name}-client-secret`, {
+            displayName: this.name,
+            applicationId: app.id,
+        }, { dependsOn: app, parent: this });
+        this.addSecret('client-secret', clientSecret.value);
+        return {
+            clientSecret: clientSecret.value,
+        };
+    }
+    addRoleAssignments(sv) {
+        const { roleAssignments } = this.args;
+        if (!roleAssignments)
+            return;
+        return roleAssignments.map((role) => new RoleAssignment_1.RoleAssignment(`${this.name}-${role.roleName}`, { ...role, principalId: sv.objectId, principalType: 'ServicePrincipal' }, { dependsOn: sv, parent: this }));
+    }
+    addMemberOf(app) {
+        if (!this.args.memberof)
+            return;
+        this.args.memberof.map((group) => pulumi.output(group).apply((id) => new azAd.GroupMember(`${this.name}-${id.objectId}`, {
+            groupObjectId: id.objectId,
+            memberObjectId: app.objectId,
+        }, { dependsOn: app, parent: this })));
+    }
+    addSecret(name, value) {
+        if (!this.args.vaultInfo)
+            return;
+        new vault_1.VaultSecret(`${this.name}-${name}`, {
+            vaultInfo: this.args.vaultInfo,
+            value: value,
+            contentType: `${this.name} ${name}`,
+        }, { dependsOn: this.opts?.dependsOn, parent: this });
+    }
+}
+exports.AppRegistration = AppRegistration;
+//# sourceMappingURL=data:application/json;base64,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

package/azAd/AzRole.d.ts

@@ -0,0 +1,14 @@
+import * as azAd from '@pulumi/azuread';
+import * as pulumi from '@pulumi/pulumi';
+import { BaseComponent } from '../base/BaseComponent';
+export interface AzRoleArgs extends Pick<azAd.GroupArgs, 'members' | 'owners' | 'preventDuplicateNames'> {
+}
+export declare class AzRole extends BaseComponent<AzRoleArgs> {
+    readonly objectId: pulumi.Output<string>;
+    readonly displayName: pulumi.Output<string>;
+    constructor(name: string, args?: AzRoleArgs, opts?: pulumi.ComponentResourceOptions);
+    getOutputs(): {
+        objectId: pulumi.Output<string>;
+        displayName: pulumi.Output<string>;
+    };
+}

package/azAd/AzRole.js

@@ -0,0 +1,72 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __importStar = (this && this.__importStar) || (function () {
+    var ownKeys = function(o) {
+        ownKeys = Object.getOwnPropertyNames || function (o) {
+            var ar = [];
+            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
+            return ar;
+        };
+        return ownKeys(o);
+    };
+    return function (mod) {
+        if (mod && mod.__esModule) return mod;
+        var result = {};
+        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
+        __setModuleDefault(result, mod);
+        return result;
+    };
+})();
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.AzRole = void 0;
+const azAd = __importStar(require("@pulumi/azuread"));
+const BaseComponent_1 = require("../base/BaseComponent");
+const helpers_1 = require("../base/helpers");
+const helpers_2 = require("../helpers");
+class AzRole extends BaseComponent_1.BaseComponent {
+    objectId;
+    displayName;
+    constructor(name, args = {}, opts) {
+        const n = `rol-${name.toLowerCase().replace(/\s+/g, '-')}`;
+        super((0, helpers_1.getComponentResourceType)('AzRole'), n, args, opts);
+        const roleName = name.includes(helpers_2.stackInfo.stack)
+            ? `ROL ${name}`.toUpperCase()
+            : `ROL ${helpers_2.stackInfo.stack} ${name}`.toUpperCase();
+        const role = new azAd.Group(n, {
+            displayName: roleName,
+            description: roleName,
+            members: args.members,
+            owners: args.owners,
+            securityEnabled: true,
+            mailEnabled: false,
+            preventDuplicateNames: args.preventDuplicateNames,
+            assignableToRole: false,
+        }, { parent: this });
+        this.objectId = role.objectId;
+        this.displayName = role.displayName;
+        this.registerOutputs(this.getOutputs());
+    }
+    getOutputs() {
+        return {
+            objectId: this.objectId,
+            displayName: this.displayName,
+        };
+    }
+}
+exports.AzRole = AzRole;
+//# sourceMappingURL=data:application/json;base64,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

package/azAd/CustomRoles.d.ts

@@ -0,0 +1,10 @@
+import * as pulumi from '@pulumi/pulumi';
+import { BaseComponent } from '../base/BaseComponent';
+export interface CustomRoleArgs {
+    enableJustInTimeRemoteRole?: boolean;
+}
+export declare class CustomRoles extends BaseComponent<CustomRoleArgs> {
+    constructor(name: string, args: CustomRoleArgs, opts?: pulumi.ComponentResourceOptions);
+    getOutputs(): {};
+    private createJustInTimeRemoteRole;
+}