@pulumi/azuredevops 2.11.0 → 2.12.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/getServiceEndpointAzureRM.d.ts +12 -0
- package/getServiceEndpointAzureRM.js.map +1 -1
- package/package.json +2 -2
- package/package.json.dev +2 -2
- package/serviceEndpointAzureRM.d.ts +24 -9
- package/serviceEndpointAzureRM.js +12 -9
- package/serviceEndpointAzureRM.js.map +1 -1
- package/serviceendpoint/azureRM.d.ts +24 -9
- package/serviceendpoint/azureRM.js +12 -9
- package/serviceendpoint/azureRM.js.map +1 -1
|
@@ -89,6 +89,10 @@ export interface GetServiceEndpointAzureRMResult {
|
|
|
89
89
|
* Specifies the description of the Service Endpoint.
|
|
90
90
|
*/
|
|
91
91
|
readonly description: string;
|
|
92
|
+
/**
|
|
93
|
+
* The Cloud Environment. Possible values are `AzureCloud` and `AzureChinaCloud`.
|
|
94
|
+
*/
|
|
95
|
+
readonly environment: string;
|
|
92
96
|
/**
|
|
93
97
|
* The provider-assigned unique ID for this managed resource.
|
|
94
98
|
*/
|
|
@@ -104,6 +108,14 @@ export interface GetServiceEndpointAzureRMResult {
|
|
|
104
108
|
readonly serviceEndpointAuthenticationScheme: string;
|
|
105
109
|
readonly serviceEndpointId: string;
|
|
106
110
|
readonly serviceEndpointName: string;
|
|
111
|
+
/**
|
|
112
|
+
* The issuer if `serviceEndpointAuthenticationScheme` is set to `WorkloadIdentityFederation`. This looks like `https://vstoken.dev.azure.com/f66a4bc2-08ad-4ec0-a25e-e769d6b3b294`, where the GUID is the Organization ID of your Azure DevOps Organisation.
|
|
113
|
+
*/
|
|
114
|
+
readonly workloadIdentityFederationIssuer: string;
|
|
115
|
+
/**
|
|
116
|
+
* The subject if `serviceEndpointAuthenticationScheme` is set to `WorkloadIdentityFederation`. This looks like `sc://my-organisation/my-project/my-service-connection-name`.
|
|
117
|
+
*/
|
|
118
|
+
readonly workloadIdentityFederationSubject: string;
|
|
107
119
|
}
|
|
108
120
|
/**
|
|
109
121
|
* Use this data source to access information about an existing AzureRM service Endpoint.
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"getServiceEndpointAzureRM.js","sourceRoot":"","sources":["../getServiceEndpointAzureRM.ts"],"names":[],"mappings":";AAAA,wFAAwF;AACxF,iFAAiF;;;AAEjF,yCAAyC;AACzC,yCAAyC;AAEzC;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAkCG;AACH,SAAgB,yBAAyB,CAAC,IAAmC,EAAE,IAA2B;IAEtG,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,IAAI,EAAE,CAAC,CAAC;IACzE,OAAO,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,uEAAuE,EAAE;QAClG,WAAW,EAAE,IAAI,CAAC,SAAS;QAC3B,mBAAmB,EAAE,IAAI,CAAC,iBAAiB;QAC3C,qBAAqB,EAAE,IAAI,CAAC,mBAAmB;KAClD,EAAE,IAAI,CAAC,CAAC;AACb,CAAC;AARD,8DAQC;
|
|
1
|
+
{"version":3,"file":"getServiceEndpointAzureRM.js","sourceRoot":"","sources":["../getServiceEndpointAzureRM.ts"],"names":[],"mappings":";AAAA,wFAAwF;AACxF,iFAAiF;;;AAEjF,yCAAyC;AACzC,yCAAyC;AAEzC;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAkCG;AACH,SAAgB,yBAAyB,CAAC,IAAmC,EAAE,IAA2B;IAEtG,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,IAAI,EAAE,CAAC,CAAC;IACzE,OAAO,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,uEAAuE,EAAE;QAClG,WAAW,EAAE,IAAI,CAAC,SAAS;QAC3B,mBAAmB,EAAE,IAAI,CAAC,iBAAiB;QAC3C,qBAAqB,EAAE,IAAI,CAAC,mBAAmB;KAClD,EAAE,IAAI,CAAC,CAAC;AACb,CAAC;AARD,8DAQC;AAmFD;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAkCG;AACH,SAAgB,+BAA+B,CAAC,IAAyC,EAAE,IAA2B;IAClH,OAAO,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC,KAAK,CAAC,CAAC,CAAM,EAAE,EAAE,CAAC,yBAAyB,CAAC,CAAC,EAAE,IAAI,CAAC,CAAC,CAAA;AACpF,CAAC;AAFD,0EAEC"}
|
package/package.json
CHANGED
|
@@ -1,6 +1,6 @@
|
|
|
1
1
|
{
|
|
2
2
|
"name": "@pulumi/azuredevops",
|
|
3
|
-
"version": "v2.
|
|
3
|
+
"version": "v2.12.0",
|
|
4
4
|
"description": "A Pulumi package for creating and managing Azure DevOps.",
|
|
5
5
|
"keywords": [
|
|
6
6
|
"pulumi",
|
|
@@ -11,7 +11,7 @@
|
|
|
11
11
|
"license": "Apache-2.0",
|
|
12
12
|
"scripts": {
|
|
13
13
|
"build": "tsc",
|
|
14
|
-
"install": "node scripts/install-pulumi-plugin.js resource azuredevops v2.
|
|
14
|
+
"install": "node scripts/install-pulumi-plugin.js resource azuredevops v2.12.0"
|
|
15
15
|
},
|
|
16
16
|
"dependencies": {
|
|
17
17
|
"@pulumi/pulumi": "^3.0.0"
|
package/package.json.dev
CHANGED
|
@@ -1,6 +1,6 @@
|
|
|
1
1
|
{
|
|
2
2
|
"name": "@pulumi/azuredevops",
|
|
3
|
-
"version": "v2.
|
|
3
|
+
"version": "v2.12.0",
|
|
4
4
|
"description": "A Pulumi package for creating and managing Azure DevOps.",
|
|
5
5
|
"keywords": [
|
|
6
6
|
"pulumi",
|
|
@@ -11,7 +11,7 @@
|
|
|
11
11
|
"license": "Apache-2.0",
|
|
12
12
|
"scripts": {
|
|
13
13
|
"build": "tsc",
|
|
14
|
-
"install": "node scripts/install-pulumi-plugin.js resource azuredevops v2.
|
|
14
|
+
"install": "node scripts/install-pulumi-plugin.js resource azuredevops v2.12.0"
|
|
15
15
|
},
|
|
16
16
|
"dependencies": {
|
|
17
17
|
"@pulumi/pulumi": "^3.0.0"
|
|
@@ -106,15 +106,6 @@ import * as outputs from "./types/output";
|
|
|
106
106
|
* name: "example-identity",
|
|
107
107
|
* resourceGroupName: "azurerm_resource_group.identity.name",
|
|
108
108
|
* });
|
|
109
|
-
* const exampleazurerm_federated_identity_credential = new azurerm.index.Azurerm_federated_identity_credential("exampleazurerm_federated_identity_credential", {
|
|
110
|
-
* name: "example-federated-credential",
|
|
111
|
-
* resourceGroupName: identity.name,
|
|
112
|
-
* audience: ["api://AzureADTokenExchange"],
|
|
113
|
-
* issuer: "https://app.vstoken.visualstudio.com",
|
|
114
|
-
* parentId: exampleazurerm_user_assigned_identity.id,
|
|
115
|
-
* subject: `sc://organizationName/projectName/${serviceConnectionName}`,
|
|
116
|
-
* });
|
|
117
|
-
* //NOTE: The federated credential subject is formed from the Azure DevOps Organisation, Project and the Service Connection name.
|
|
118
109
|
* const exampleServiceEndpointAzureRM = new azuredevops.ServiceEndpointAzureRM("exampleServiceEndpointAzureRM", {
|
|
119
110
|
* projectId: exampleProject.id,
|
|
120
111
|
* serviceEndpointName: serviceConnectionName,
|
|
@@ -127,6 +118,14 @@ import * as outputs from "./types/output";
|
|
|
127
118
|
* azurermSubscriptionId: "00000000-0000-0000-0000-000000000000",
|
|
128
119
|
* azurermSubscriptionName: "Example Subscription Name",
|
|
129
120
|
* });
|
|
121
|
+
* const exampleazurerm_federated_identity_credential = new azurerm.index.Azurerm_federated_identity_credential("exampleazurerm_federated_identity_credential", {
|
|
122
|
+
* name: "example-federated-credential",
|
|
123
|
+
* resourceGroupName: identity.name,
|
|
124
|
+
* parentId: exampleazurerm_user_assigned_identity.id,
|
|
125
|
+
* audience: ["api://AzureADTokenExchange"],
|
|
126
|
+
* issuer: exampleServiceEndpointAzureRM.workloadIdentityFederationIssuer,
|
|
127
|
+
* subject: exampleServiceEndpointAzureRM.workloadIdentityFederationSubject,
|
|
128
|
+
* });
|
|
130
129
|
* ```
|
|
131
130
|
* ### Workload Identity Federation Automatic AzureRM Service Endpoint
|
|
132
131
|
*
|
|
@@ -251,6 +250,14 @@ export declare class ServiceEndpointAzureRM extends pulumi.CustomResource {
|
|
|
251
250
|
* The Service Endpoint Name.
|
|
252
251
|
*/
|
|
253
252
|
readonly serviceEndpointName: pulumi.Output<string>;
|
|
253
|
+
/**
|
|
254
|
+
* The issuer if `serviceEndpointAuthenticationScheme` is set to `WorkloadIdentityFederation`. This looks like `https://vstoken.dev.azure.com/00000000-0000-0000-0000-000000000000`, where the GUID is the Organization ID of your Azure DevOps Organisation.
|
|
255
|
+
*/
|
|
256
|
+
readonly workloadIdentityFederationIssuer: pulumi.Output<string>;
|
|
257
|
+
/**
|
|
258
|
+
* The subject if `serviceEndpointAuthenticationScheme` is set to `WorkloadIdentityFederation`. This looks like `sc://<organisation>/<project>/<service-connection-name>`.
|
|
259
|
+
*/
|
|
260
|
+
readonly workloadIdentityFederationSubject: pulumi.Output<string>;
|
|
254
261
|
/**
|
|
255
262
|
* Create a ServiceEndpointAzureRM resource with the given unique name, arguments, and options.
|
|
256
263
|
*
|
|
@@ -319,6 +326,14 @@ export interface ServiceEndpointAzureRMState {
|
|
|
319
326
|
* The Service Endpoint Name.
|
|
320
327
|
*/
|
|
321
328
|
serviceEndpointName?: pulumi.Input<string>;
|
|
329
|
+
/**
|
|
330
|
+
* The issuer if `serviceEndpointAuthenticationScheme` is set to `WorkloadIdentityFederation`. This looks like `https://vstoken.dev.azure.com/00000000-0000-0000-0000-000000000000`, where the GUID is the Organization ID of your Azure DevOps Organisation.
|
|
331
|
+
*/
|
|
332
|
+
workloadIdentityFederationIssuer?: pulumi.Input<string>;
|
|
333
|
+
/**
|
|
334
|
+
* The subject if `serviceEndpointAuthenticationScheme` is set to `WorkloadIdentityFederation`. This looks like `sc://<organisation>/<project>/<service-connection-name>`.
|
|
335
|
+
*/
|
|
336
|
+
workloadIdentityFederationSubject?: pulumi.Input<string>;
|
|
322
337
|
}
|
|
323
338
|
/**
|
|
324
339
|
* The set of arguments for constructing a ServiceEndpointAzureRM resource.
|
|
@@ -110,15 +110,6 @@ const utilities = require("./utilities");
|
|
|
110
110
|
* name: "example-identity",
|
|
111
111
|
* resourceGroupName: "azurerm_resource_group.identity.name",
|
|
112
112
|
* });
|
|
113
|
-
* const exampleazurerm_federated_identity_credential = new azurerm.index.Azurerm_federated_identity_credential("exampleazurerm_federated_identity_credential", {
|
|
114
|
-
* name: "example-federated-credential",
|
|
115
|
-
* resourceGroupName: identity.name,
|
|
116
|
-
* audience: ["api://AzureADTokenExchange"],
|
|
117
|
-
* issuer: "https://app.vstoken.visualstudio.com",
|
|
118
|
-
* parentId: exampleazurerm_user_assigned_identity.id,
|
|
119
|
-
* subject: `sc://organizationName/projectName/${serviceConnectionName}`,
|
|
120
|
-
* });
|
|
121
|
-
* //NOTE: The federated credential subject is formed from the Azure DevOps Organisation, Project and the Service Connection name.
|
|
122
113
|
* const exampleServiceEndpointAzureRM = new azuredevops.ServiceEndpointAzureRM("exampleServiceEndpointAzureRM", {
|
|
123
114
|
* projectId: exampleProject.id,
|
|
124
115
|
* serviceEndpointName: serviceConnectionName,
|
|
@@ -131,6 +122,14 @@ const utilities = require("./utilities");
|
|
|
131
122
|
* azurermSubscriptionId: "00000000-0000-0000-0000-000000000000",
|
|
132
123
|
* azurermSubscriptionName: "Example Subscription Name",
|
|
133
124
|
* });
|
|
125
|
+
* const exampleazurerm_federated_identity_credential = new azurerm.index.Azurerm_federated_identity_credential("exampleazurerm_federated_identity_credential", {
|
|
126
|
+
* name: "example-federated-credential",
|
|
127
|
+
* resourceGroupName: identity.name,
|
|
128
|
+
* parentId: exampleazurerm_user_assigned_identity.id,
|
|
129
|
+
* audience: ["api://AzureADTokenExchange"],
|
|
130
|
+
* issuer: exampleServiceEndpointAzureRM.workloadIdentityFederationIssuer,
|
|
131
|
+
* subject: exampleServiceEndpointAzureRM.workloadIdentityFederationSubject,
|
|
132
|
+
* });
|
|
134
133
|
* ```
|
|
135
134
|
* ### Workload Identity Federation Automatic AzureRM Service Endpoint
|
|
136
135
|
*
|
|
@@ -225,6 +224,8 @@ class ServiceEndpointAzureRM extends pulumi.CustomResource {
|
|
|
225
224
|
resourceInputs["resourceGroup"] = state ? state.resourceGroup : undefined;
|
|
226
225
|
resourceInputs["serviceEndpointAuthenticationScheme"] = state ? state.serviceEndpointAuthenticationScheme : undefined;
|
|
227
226
|
resourceInputs["serviceEndpointName"] = state ? state.serviceEndpointName : undefined;
|
|
227
|
+
resourceInputs["workloadIdentityFederationIssuer"] = state ? state.workloadIdentityFederationIssuer : undefined;
|
|
228
|
+
resourceInputs["workloadIdentityFederationSubject"] = state ? state.workloadIdentityFederationSubject : undefined;
|
|
228
229
|
}
|
|
229
230
|
else {
|
|
230
231
|
const args = argsOrState;
|
|
@@ -250,6 +251,8 @@ class ServiceEndpointAzureRM extends pulumi.CustomResource {
|
|
|
250
251
|
resourceInputs["resourceGroup"] = args ? args.resourceGroup : undefined;
|
|
251
252
|
resourceInputs["serviceEndpointAuthenticationScheme"] = args ? args.serviceEndpointAuthenticationScheme : undefined;
|
|
252
253
|
resourceInputs["serviceEndpointName"] = args ? args.serviceEndpointName : undefined;
|
|
254
|
+
resourceInputs["workloadIdentityFederationIssuer"] = undefined /*out*/;
|
|
255
|
+
resourceInputs["workloadIdentityFederationSubject"] = undefined /*out*/;
|
|
253
256
|
}
|
|
254
257
|
opts = pulumi.mergeOptions(utilities.resourceOptsDefaults(), opts);
|
|
255
258
|
const aliasOpts = { aliases: [{ type: "azuredevops:ServiceEndpoint/azureRM:AzureRM" }] };
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"serviceEndpointAzureRM.js","sourceRoot":"","sources":["../serviceEndpointAzureRM.ts"],"names":[],"mappings":";AAAA,wFAAwF;AACxF,iFAAiF;;;AAEjF,yCAAyC;AAGzC,yCAAyC;AAEzC
|
|
1
|
+
{"version":3,"file":"serviceEndpointAzureRM.js","sourceRoot":"","sources":["../serviceEndpointAzureRM.ts"],"names":[],"mappings":";AAAA,wFAAwF;AACxF,iFAAiF;;;AAEjF,yCAAyC;AAGzC,yCAAyC;AAEzC;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAiLG;AACH,MAAa,sBAAuB,SAAQ,MAAM,CAAC,cAAc;IAC7D;;;;;;;;OAQG;IACI,MAAM,CAAC,GAAG,CAAC,IAAY,EAAE,EAA2B,EAAE,KAAmC,EAAE,IAAmC;QACjI,OAAO,IAAI,sBAAsB,CAAC,IAAI,EAAO,KAAK,kCAAO,IAAI,KAAE,EAAE,EAAE,EAAE,IAAG,CAAC;IAC7E,CAAC;IAKD;;;OAGG;IACI,MAAM,CAAC,UAAU,CAAC,GAAQ;QAC7B,IAAI,GAAG,KAAK,SAAS,IAAI,GAAG,KAAK,IAAI,EAAE;YACnC,OAAO,KAAK,CAAC;SAChB;QACD,OAAO,GAAG,CAAC,cAAc,CAAC,KAAK,sBAAsB,CAAC,YAAY,CAAC;IACvE,CAAC;IAwED,YAAY,IAAY,EAAE,WAAsE,EAAE,IAAmC;QACjI,IAAI,cAAc,GAAkB,EAAE,CAAC;QACvC,IAAI,GAAG,IAAI,IAAI,EAAE,CAAC;QAClB,IAAI,IAAI,CAAC,EAAE,EAAE;YACT,MAAM,KAAK,GAAG,WAAsD,CAAC;YACrE,cAAc,CAAC,eAAe,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,aAAa,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1E,cAAc,CAAC,0BAA0B,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,wBAAwB,CAAC,CAAC,CAAC,SAAS,CAAC;YAChG,cAAc,CAAC,4BAA4B,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,0BAA0B,CAAC,CAAC,CAAC,SAAS,CAAC;YACpG,cAAc,CAAC,oBAAoB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,kBAAkB,CAAC,CAAC,CAAC,SAAS,CAAC;YACpF,cAAc,CAAC,uBAAuB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,qBAAqB,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1F,cAAc,CAAC,yBAAyB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,uBAAuB,CAAC,CAAC,CAAC,SAAS,CAAC;YAC9F,cAAc,CAAC,aAAa,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,WAAW,CAAC,CAAC,CAAC,SAAS,CAAC;YACtE,cAAc,CAAC,aAAa,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,WAAW,CAAC,CAAC,CAAC,SAAS,CAAC;YACtE,cAAc,CAAC,aAAa,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,WAAW,CAAC,CAAC,CAAC,SAAS,CAAC;YACtE,cAAc,CAAC,WAAW,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC;YAClE,cAAc,CAAC,eAAe,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,aAAa,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1E,cAAc,CAAC,qCAAqC,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,mCAAmC,CAAC,CAAC,CAAC,SAAS,CAAC;YACtH,cAAc,CAAC,qBAAqB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,mBAAmB,CAAC,CAAC,CAAC,SAAS,CAAC;YACtF,cAAc,CAAC,kCAAkC,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,gCAAgC,CAAC,CAAC,CAAC,SAAS,CAAC;YAChH,cAAc,CAAC,mCAAmC,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,iCAAiC,CAAC,CAAC,CAAC,SAAS,CAAC;SACrH;aAAM;YACH,MAAM,IAAI,GAAG,WAAqD,CAAC;YACnE,IAAI,CAAC,CAAC,IAAI,IAAI,IAAI,CAAC,kBAAkB,KAAK,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBAC/D,MAAM,IAAI,KAAK,CAAC,gDAAgD,CAAC,CAAC;aACrE;YACD,IAAI,CAAC,CAAC,IAAI,IAAI,IAAI,CAAC,SAAS,KAAK,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBACtD,MAAM,IAAI,KAAK,CAAC,uCAAuC,CAAC,CAAC;aAC5D;YACD,IAAI,CAAC,CAAC,IAAI,IAAI,IAAI,CAAC,mBAAmB,KAAK,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBAChE,MAAM,IAAI,KAAK,CAAC,iDAAiD,CAAC,CAAC;aACtE;YACD,cAAc,CAAC,eAAe,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,aAAa,CAAC,CAAC,CAAC,SAAS,CAAC;YACxE,cAAc,CAAC,0BAA0B,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,wBAAwB,CAAC,CAAC,CAAC,SAAS,CAAC;YAC9F,cAAc,CAAC,4BAA4B,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,0BAA0B,CAAC,CAAC,CAAC,SAAS,CAAC;YAClG,cAAc,CAAC,oBAAoB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,kBAAkB,CAAC,CAAC,CAAC,SAAS,CAAC;YAClF,cAAc,CAAC,uBAAuB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,qBAAqB,CAAC,CAAC,CAAC,SAAS,CAAC;YACxF,cAAc,CAAC,yBAAyB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,uBAAuB,CAAC,CAAC,CAAC,SAAS,CAAC;YAC5F,cAAc,CAAC,aAAa,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC,CAAC,SAAS,CAAC;YACpE,cAAc,CAAC,aAAa,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC,CAAC,SAAS,CAAC;YACpE,cAAc,CAAC,aAAa,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC,CAAC,SAAS,CAAC;YACpE,cAAc,CAAC,WAAW,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC;YAChE,cAAc,CAAC,eAAe,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,aAAa,CAAC,CAAC,CAAC,SAAS,CAAC;YACxE,cAAc,CAAC,qCAAqC,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,mCAAmC,CAAC,CAAC,CAAC,SAAS,CAAC;YACpH,cAAc,CAAC,qBAAqB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,mBAAmB,CAAC,CAAC,CAAC,SAAS,CAAC;YACpF,cAAc,CAAC,kCAAkC,CAAC,GAAG,SAAS,CAAC,OAAO,CAAC;YACvE,cAAc,CAAC,mCAAmC,CAAC,GAAG,SAAS,CAAC,OAAO,CAAC;SAC3E;QACD,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,CAAC,CAAC;QACnE,MAAM,SAAS,GAAG,EAAE,OAAO,EAAE,CAAC,EAAE,IAAI,EAAE,6CAA6C,EAAE,CAAC,EAAE,CAAC;QACzF,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,IAAI,EAAE,SAAS,CAAC,CAAC;QAC5C,KAAK,CAAC,sBAAsB,CAAC,YAAY,EAAE,IAAI,EAAE,cAAc,EAAE,IAAI,CAAC,CAAC;IAC3E,CAAC;;AArJL,wDAsJC;AAxIG,gBAAgB;AACO,mCAAY,GAAG,iEAAiE,CAAC"}
|
|
@@ -106,15 +106,6 @@ import * as outputs from "../types/output";
|
|
|
106
106
|
* name: "example-identity",
|
|
107
107
|
* resourceGroupName: "azurerm_resource_group.identity.name",
|
|
108
108
|
* });
|
|
109
|
-
* const exampleazurerm_federated_identity_credential = new azurerm.index.Azurerm_federated_identity_credential("exampleazurerm_federated_identity_credential", {
|
|
110
|
-
* name: "example-federated-credential",
|
|
111
|
-
* resourceGroupName: identity.name,
|
|
112
|
-
* audience: ["api://AzureADTokenExchange"],
|
|
113
|
-
* issuer: "https://app.vstoken.visualstudio.com",
|
|
114
|
-
* parentId: exampleazurerm_user_assigned_identity.id,
|
|
115
|
-
* subject: `sc://organizationName/projectName/${serviceConnectionName}`,
|
|
116
|
-
* });
|
|
117
|
-
* //NOTE: The federated credential subject is formed from the Azure DevOps Organisation, Project and the Service Connection name.
|
|
118
109
|
* const exampleServiceEndpointAzureRM = new azuredevops.ServiceEndpointAzureRM("exampleServiceEndpointAzureRM", {
|
|
119
110
|
* projectId: exampleProject.id,
|
|
120
111
|
* serviceEndpointName: serviceConnectionName,
|
|
@@ -127,6 +118,14 @@ import * as outputs from "../types/output";
|
|
|
127
118
|
* azurermSubscriptionId: "00000000-0000-0000-0000-000000000000",
|
|
128
119
|
* azurermSubscriptionName: "Example Subscription Name",
|
|
129
120
|
* });
|
|
121
|
+
* const exampleazurerm_federated_identity_credential = new azurerm.index.Azurerm_federated_identity_credential("exampleazurerm_federated_identity_credential", {
|
|
122
|
+
* name: "example-federated-credential",
|
|
123
|
+
* resourceGroupName: identity.name,
|
|
124
|
+
* parentId: exampleazurerm_user_assigned_identity.id,
|
|
125
|
+
* audience: ["api://AzureADTokenExchange"],
|
|
126
|
+
* issuer: exampleServiceEndpointAzureRM.workloadIdentityFederationIssuer,
|
|
127
|
+
* subject: exampleServiceEndpointAzureRM.workloadIdentityFederationSubject,
|
|
128
|
+
* });
|
|
130
129
|
* ```
|
|
131
130
|
* ### Workload Identity Federation Automatic AzureRM Service Endpoint
|
|
132
131
|
*
|
|
@@ -253,6 +252,14 @@ export declare class AzureRM extends pulumi.CustomResource {
|
|
|
253
252
|
* The Service Endpoint Name.
|
|
254
253
|
*/
|
|
255
254
|
readonly serviceEndpointName: pulumi.Output<string>;
|
|
255
|
+
/**
|
|
256
|
+
* The issuer if `serviceEndpointAuthenticationScheme` is set to `WorkloadIdentityFederation`. This looks like `https://vstoken.dev.azure.com/00000000-0000-0000-0000-000000000000`, where the GUID is the Organization ID of your Azure DevOps Organisation.
|
|
257
|
+
*/
|
|
258
|
+
readonly workloadIdentityFederationIssuer: pulumi.Output<string>;
|
|
259
|
+
/**
|
|
260
|
+
* The subject if `serviceEndpointAuthenticationScheme` is set to `WorkloadIdentityFederation`. This looks like `sc://<organisation>/<project>/<service-connection-name>`.
|
|
261
|
+
*/
|
|
262
|
+
readonly workloadIdentityFederationSubject: pulumi.Output<string>;
|
|
256
263
|
/**
|
|
257
264
|
* Create a AzureRM resource with the given unique name, arguments, and options.
|
|
258
265
|
*
|
|
@@ -322,6 +329,14 @@ export interface AzureRMState {
|
|
|
322
329
|
* The Service Endpoint Name.
|
|
323
330
|
*/
|
|
324
331
|
serviceEndpointName?: pulumi.Input<string>;
|
|
332
|
+
/**
|
|
333
|
+
* The issuer if `serviceEndpointAuthenticationScheme` is set to `WorkloadIdentityFederation`. This looks like `https://vstoken.dev.azure.com/00000000-0000-0000-0000-000000000000`, where the GUID is the Organization ID of your Azure DevOps Organisation.
|
|
334
|
+
*/
|
|
335
|
+
workloadIdentityFederationIssuer?: pulumi.Input<string>;
|
|
336
|
+
/**
|
|
337
|
+
* The subject if `serviceEndpointAuthenticationScheme` is set to `WorkloadIdentityFederation`. This looks like `sc://<organisation>/<project>/<service-connection-name>`.
|
|
338
|
+
*/
|
|
339
|
+
workloadIdentityFederationSubject?: pulumi.Input<string>;
|
|
325
340
|
}
|
|
326
341
|
/**
|
|
327
342
|
* The set of arguments for constructing a AzureRM resource.
|
|
@@ -110,15 +110,6 @@ const utilities = require("../utilities");
|
|
|
110
110
|
* name: "example-identity",
|
|
111
111
|
* resourceGroupName: "azurerm_resource_group.identity.name",
|
|
112
112
|
* });
|
|
113
|
-
* const exampleazurerm_federated_identity_credential = new azurerm.index.Azurerm_federated_identity_credential("exampleazurerm_federated_identity_credential", {
|
|
114
|
-
* name: "example-federated-credential",
|
|
115
|
-
* resourceGroupName: identity.name,
|
|
116
|
-
* audience: ["api://AzureADTokenExchange"],
|
|
117
|
-
* issuer: "https://app.vstoken.visualstudio.com",
|
|
118
|
-
* parentId: exampleazurerm_user_assigned_identity.id,
|
|
119
|
-
* subject: `sc://organizationName/projectName/${serviceConnectionName}`,
|
|
120
|
-
* });
|
|
121
|
-
* //NOTE: The federated credential subject is formed from the Azure DevOps Organisation, Project and the Service Connection name.
|
|
122
113
|
* const exampleServiceEndpointAzureRM = new azuredevops.ServiceEndpointAzureRM("exampleServiceEndpointAzureRM", {
|
|
123
114
|
* projectId: exampleProject.id,
|
|
124
115
|
* serviceEndpointName: serviceConnectionName,
|
|
@@ -131,6 +122,14 @@ const utilities = require("../utilities");
|
|
|
131
122
|
* azurermSubscriptionId: "00000000-0000-0000-0000-000000000000",
|
|
132
123
|
* azurermSubscriptionName: "Example Subscription Name",
|
|
133
124
|
* });
|
|
125
|
+
* const exampleazurerm_federated_identity_credential = new azurerm.index.Azurerm_federated_identity_credential("exampleazurerm_federated_identity_credential", {
|
|
126
|
+
* name: "example-federated-credential",
|
|
127
|
+
* resourceGroupName: identity.name,
|
|
128
|
+
* parentId: exampleazurerm_user_assigned_identity.id,
|
|
129
|
+
* audience: ["api://AzureADTokenExchange"],
|
|
130
|
+
* issuer: exampleServiceEndpointAzureRM.workloadIdentityFederationIssuer,
|
|
131
|
+
* subject: exampleServiceEndpointAzureRM.workloadIdentityFederationSubject,
|
|
132
|
+
* });
|
|
134
133
|
* ```
|
|
135
134
|
* ### Workload Identity Federation Automatic AzureRM Service Endpoint
|
|
136
135
|
*
|
|
@@ -230,6 +229,8 @@ class AzureRM extends pulumi.CustomResource {
|
|
|
230
229
|
resourceInputs["resourceGroup"] = state ? state.resourceGroup : undefined;
|
|
231
230
|
resourceInputs["serviceEndpointAuthenticationScheme"] = state ? state.serviceEndpointAuthenticationScheme : undefined;
|
|
232
231
|
resourceInputs["serviceEndpointName"] = state ? state.serviceEndpointName : undefined;
|
|
232
|
+
resourceInputs["workloadIdentityFederationIssuer"] = state ? state.workloadIdentityFederationIssuer : undefined;
|
|
233
|
+
resourceInputs["workloadIdentityFederationSubject"] = state ? state.workloadIdentityFederationSubject : undefined;
|
|
233
234
|
}
|
|
234
235
|
else {
|
|
235
236
|
const args = argsOrState;
|
|
@@ -255,6 +256,8 @@ class AzureRM extends pulumi.CustomResource {
|
|
|
255
256
|
resourceInputs["resourceGroup"] = args ? args.resourceGroup : undefined;
|
|
256
257
|
resourceInputs["serviceEndpointAuthenticationScheme"] = args ? args.serviceEndpointAuthenticationScheme : undefined;
|
|
257
258
|
resourceInputs["serviceEndpointName"] = args ? args.serviceEndpointName : undefined;
|
|
259
|
+
resourceInputs["workloadIdentityFederationIssuer"] = undefined /*out*/;
|
|
260
|
+
resourceInputs["workloadIdentityFederationSubject"] = undefined /*out*/;
|
|
258
261
|
}
|
|
259
262
|
opts = pulumi.mergeOptions(utilities.resourceOptsDefaults(), opts);
|
|
260
263
|
super(AzureRM.__pulumiType, name, resourceInputs, opts);
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"azureRM.js","sourceRoot":"","sources":["../../serviceendpoint/azureRM.ts"],"names":[],"mappings":";AAAA,wFAAwF;AACxF,iFAAiF;;;AAEjF,yCAAyC;AAGzC,0CAA0C;AAE1C
|
|
1
|
+
{"version":3,"file":"azureRM.js","sourceRoot":"","sources":["../../serviceendpoint/azureRM.ts"],"names":[],"mappings":";AAAA,wFAAwF;AACxF,iFAAiF;;;AAEjF,yCAAyC;AAGzC,0CAA0C;AAE1C;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAmLG;AACH,MAAa,OAAQ,SAAQ,MAAM,CAAC,cAAc;IAC9C;;;;;;;;OAQG;IACI,MAAM,CAAC,GAAG,CAAC,IAAY,EAAE,EAA2B,EAAE,KAAoB,EAAE,IAAmC;QAClH,MAAM,CAAC,GAAG,CAAC,IAAI,CAAC,+HAA+H,CAAC,CAAA;QAChJ,OAAO,IAAI,OAAO,CAAC,IAAI,EAAO,KAAK,kCAAO,IAAI,KAAE,EAAE,EAAE,EAAE,IAAG,CAAC;IAC9D,CAAC;IAKD;;;OAGG;IACI,MAAM,CAAC,UAAU,CAAC,GAAQ;QAC7B,IAAI,GAAG,KAAK,SAAS,IAAI,GAAG,KAAK,IAAI,EAAE;YACnC,OAAO,KAAK,CAAC;SAChB;QACD,OAAO,GAAG,CAAC,cAAc,CAAC,KAAK,OAAO,CAAC,YAAY,CAAC;IACxD,CAAC;IAyED,yHAAyH;IACzH,YAAY,IAAY,EAAE,WAAwC,EAAE,IAAmC;QACnG,MAAM,CAAC,GAAG,CAAC,IAAI,CAAC,+HAA+H,CAAC,CAAA;QAChJ,IAAI,cAAc,GAAkB,EAAE,CAAC;QACvC,IAAI,GAAG,IAAI,IAAI,EAAE,CAAC;QAClB,IAAI,IAAI,CAAC,EAAE,EAAE;YACT,MAAM,KAAK,GAAG,WAAuC,CAAC;YACtD,cAAc,CAAC,eAAe,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,aAAa,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1E,cAAc,CAAC,0BAA0B,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,wBAAwB,CAAC,CAAC,CAAC,SAAS,CAAC;YAChG,cAAc,CAAC,4BAA4B,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,0BAA0B,CAAC,CAAC,CAAC,SAAS,CAAC;YACpG,cAAc,CAAC,oBAAoB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,kBAAkB,CAAC,CAAC,CAAC,SAAS,CAAC;YACpF,cAAc,CAAC,uBAAuB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,qBAAqB,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1F,cAAc,CAAC,yBAAyB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,uBAAuB,CAAC,CAAC,CAAC,SAAS,CAAC;YAC9F,cAAc,CAAC,aAAa,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,WAAW,CAAC,CAAC,CAAC,SAAS,CAAC;YACtE,cAAc,CAAC,aAAa,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,WAAW,CAAC,CAAC,CAAC,SAAS,CAAC;YACtE,cAAc,CAAC,aAAa,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,WAAW,CAAC,CAAC,CAAC,SAAS,CAAC;YACtE,cAAc,CAAC,WAAW,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC;YAClE,cAAc,CAAC,eAAe,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,aAAa,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1E,cAAc,CAAC,qCAAqC,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,mCAAmC,CAAC,CAAC,CAAC,SAAS,CAAC;YACtH,cAAc,CAAC,qBAAqB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,mBAAmB,CAAC,CAAC,CAAC,SAAS,CAAC;YACtF,cAAc,CAAC,kCAAkC,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,gCAAgC,CAAC,CAAC,CAAC,SAAS,CAAC;YAChH,cAAc,CAAC,mCAAmC,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,iCAAiC,CAAC,CAAC,CAAC,SAAS,CAAC;SACrH;aAAM;YACH,MAAM,IAAI,GAAG,WAAsC,CAAC;YACpD,IAAI,CAAC,CAAC,IAAI,IAAI,IAAI,CAAC,kBAAkB,KAAK,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBAC/D,MAAM,IAAI,KAAK,CAAC,gDAAgD,CAAC,CAAC;aACrE;YACD,IAAI,CAAC,CAAC,IAAI,IAAI,IAAI,CAAC,SAAS,KAAK,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBACtD,MAAM,IAAI,KAAK,CAAC,uCAAuC,CAAC,CAAC;aAC5D;YACD,IAAI,CAAC,CAAC,IAAI,IAAI,IAAI,CAAC,mBAAmB,KAAK,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBAChE,MAAM,IAAI,KAAK,CAAC,iDAAiD,CAAC,CAAC;aACtE;YACD,cAAc,CAAC,eAAe,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,aAAa,CAAC,CAAC,CAAC,SAAS,CAAC;YACxE,cAAc,CAAC,0BAA0B,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,wBAAwB,CAAC,CAAC,CAAC,SAAS,CAAC;YAC9F,cAAc,CAAC,4BAA4B,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,0BAA0B,CAAC,CAAC,CAAC,SAAS,CAAC;YAClG,cAAc,CAAC,oBAAoB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,kBAAkB,CAAC,CAAC,CAAC,SAAS,CAAC;YAClF,cAAc,CAAC,uBAAuB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,qBAAqB,CAAC,CAAC,CAAC,SAAS,CAAC;YACxF,cAAc,CAAC,yBAAyB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,uBAAuB,CAAC,CAAC,CAAC,SAAS,CAAC;YAC5F,cAAc,CAAC,aAAa,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC,CAAC,SAAS,CAAC;YACpE,cAAc,CAAC,aAAa,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC,CAAC,SAAS,CAAC;YACpE,cAAc,CAAC,aAAa,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC,CAAC,SAAS,CAAC;YACpE,cAAc,CAAC,WAAW,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC;YAChE,cAAc,CAAC,eAAe,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,aAAa,CAAC,CAAC,CAAC,SAAS,CAAC;YACxE,cAAc,CAAC,qCAAqC,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,mCAAmC,CAAC,CAAC,CAAC,SAAS,CAAC;YACpH,cAAc,CAAC,qBAAqB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,mBAAmB,CAAC,CAAC,CAAC,SAAS,CAAC;YACpF,cAAc,CAAC,kCAAkC,CAAC,GAAG,SAAS,CAAC,OAAO,CAAC;YACvE,cAAc,CAAC,mCAAmC,CAAC,GAAG,SAAS,CAAC,OAAO,CAAC;SAC3E;QACD,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,CAAC,CAAC;QACnE,KAAK,CAAC,OAAO,CAAC,YAAY,EAAE,IAAI,EAAE,cAAc,EAAE,IAAI,CAAC,CAAC;IAC5D,CAAC;;AAvJL,0BAwJC;AAzIG,gBAAgB;AACO,oBAAY,GAAG,6CAA6C,CAAC"}
|