PyPI - pulumi-azuread - Versions diffs - 5.48.0a1706744699__py3-none-any.whl → 6.8.0a1766208344__py3-none-any.whl - Mend

pulumi-azuread 5.48.0a1706744699py3-none-any.whl → 6.8.0a1766208344py3-none-any.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Potentially problematic release.

This version of pulumi-azuread might be problematic. Click here for more details.

Files changed (87) hide show

pulumi_azuread/__init__.py +48 -1
pulumi_azuread/_inputs.py +3803 -919
pulumi_azuread/_utilities.py +52 -12
pulumi_azuread/access_package.py +84 -78
pulumi_azuread/access_package_assignment_policy.py +202 -196
pulumi_azuread/access_package_catalog.py +82 -76
pulumi_azuread/access_package_catalog_role_assignment.py +73 -67
pulumi_azuread/access_package_resource_catalog_association.py +73 -67
pulumi_azuread/access_package_resource_package_association.py +79 -73
pulumi_azuread/administrative_unit.py +120 -100
pulumi_azuread/administrative_unit_member.py +66 -50
pulumi_azuread/administrative_unit_role_member.py +75 -69
pulumi_azuread/app_role_assignment.py +164 -264
pulumi_azuread/application.py +766 -692
pulumi_azuread/application_api_access.py +84 -80
pulumi_azuread/application_app_role.py +120 -116
pulumi_azuread/application_certificate.py +349 -211
pulumi_azuread/application_fallback_public_client.py +50 -44
pulumi_azuread/application_federated_identity_credential.py +142 -197
pulumi_azuread/application_from_template.py +90 -84
pulumi_azuread/application_identifier_uri.py +56 -52
pulumi_azuread/application_known_clients.py +50 -44
pulumi_azuread/application_optional_claims.py +87 -81
pulumi_azuread/application_owner.py +76 -42
pulumi_azuread/application_password.py +159 -205
pulumi_azuread/application_permission_scope.py +160 -156
pulumi_azuread/application_pre_authorized.py +120 -236
pulumi_azuread/application_redirect_uris.py +75 -69
pulumi_azuread/application_registration.py +315 -309
pulumi_azuread/authentication_strength_policy.py +73 -67
pulumi_azuread/claims_mapping_policy.py +48 -42
pulumi_azuread/conditional_access_policy.py +248 -232
pulumi_azuread/config/__init__.py +2 -1
pulumi_azuread/config/__init__.pyi +23 -17
pulumi_azuread/config/vars.py +47 -37
pulumi_azuread/custom_directory_role.py +128 -122
pulumi_azuread/directory_role.py +60 -54
pulumi_azuread/directory_role_assignment.py +194 -181
pulumi_azuread/directory_role_eligibility_schedule_request.py +86 -80
pulumi_azuread/directory_role_member.py +54 -48
pulumi_azuread/get_access_package.py +45 -31
pulumi_azuread/get_access_package_catalog.py +40 -27
pulumi_azuread/get_access_package_catalog_role.py +39 -25
pulumi_azuread/get_administrative_unit.py +42 -27
pulumi_azuread/get_application.py +135 -94
pulumi_azuread/get_application_published_app_ids.py +42 -47
pulumi_azuread/get_application_template.py +49 -33
pulumi_azuread/get_client_config.py +24 -15
pulumi_azuread/get_directory_object.py +32 -21
pulumi_azuread/get_directory_role_templates.py +20 -12
pulumi_azuread/get_directory_roles.py +23 -14
pulumi_azuread/get_domains.py +65 -46
pulumi_azuread/get_group.py +147 -88
pulumi_azuread/get_group_role_management_policy.py +178 -0
pulumi_azuread/get_groups.py +71 -51
pulumi_azuread/get_named_location.py +47 -22
pulumi_azuread/get_service_principal.py +108 -90
pulumi_azuread/get_service_principals.py +60 -64
pulumi_azuread/get_user.py +186 -118
pulumi_azuread/get_users.py +96 -53
pulumi_azuread/group.py +622 -464
pulumi_azuread/group_member.py +56 -50
pulumi_azuread/group_role_management_policy.py +544 -0
pulumi_azuread/group_without_members.py +1610 -0
pulumi_azuread/invitation.py +126 -120
pulumi_azuread/named_location.py +90 -76
pulumi_azuread/outputs.py +2844 -1308
pulumi_azuread/privileged_access_group_assignment_schedule.py +695 -0
pulumi_azuread/privileged_access_group_eligibility_schedule.py +695 -0
pulumi_azuread/provider.py +292 -246
pulumi_azuread/pulumi-plugin.json +2 -1
pulumi_azuread/service_principal.py +400 -461
pulumi_azuread/service_principal_certificate.py +230 -145
pulumi_azuread/service_principal_claims_mapping_policy_assignment.py +53 -47
pulumi_azuread/service_principal_delegated_permission_grant.py +146 -140
pulumi_azuread/service_principal_password.py +156 -141
pulumi_azuread/service_principal_token_signing_certificate.py +119 -124
pulumi_azuread/synchronization_job.py +105 -111
pulumi_azuread/synchronization_job_provision_on_demand.py +396 -0
pulumi_azuread/synchronization_secret.py +64 -70
pulumi_azuread/user.py +776 -730
pulumi_azuread/user_flow_attribute.py +76 -70
{pulumi_azuread-5.48.0a1706744699.dist-info → pulumi_azuread-6.8.0a1766208344.dist-info}/METADATA +21 -20
pulumi_azuread-6.8.0a1766208344.dist-info/RECORD +87 -0
{pulumi_azuread-5.48.0a1706744699.dist-info → pulumi_azuread-6.8.0a1766208344.dist-info}/WHEEL +1 -1
pulumi_azuread-5.48.0a1706744699.dist-info/RECORD +0 -81
{pulumi_azuread-5.48.0a1706744699.dist-info → pulumi_azuread-6.8.0a1766208344.dist-info}/top_level.txt +0 -0

pulumi_azuread/service_principal_delegated_permission_grant.py CHANGED Viewed

@@ -1,12 +1,17 @@
 # coding=utf-8
-# *** WARNING: this file was generated by the Pulumi Terraform Bridge (tfgen) Tool. ***
+# *** WARNING: this file was generated by pulumi-language-python. ***
 # *** Do not edit by hand unless you're certain you know what you are doing! ***
-import copy
+import builtins as _builtins
 import warnings
+import sys
 import pulumi
 import pulumi.runtime
 from typing import Any, Mapping, Optional, Sequence, Union, overload
+if sys.version_info >= (3, 11):
+    from typing import NotRequired, TypedDict, TypeAlias
+else:
+    from typing_extensions import NotRequired, TypedDict, TypeAlias
 from . import _utilities
 __all__ = ['ServicePrincipalDelegatedPermissionGrantArgs', 'ServicePrincipalDelegatedPermissionGrant']
@@ -14,16 +19,16 @@ __all__ = ['ServicePrincipalDelegatedPermissionGrantArgs', 'ServicePrincipalDele
 @pulumi.input_type
 class ServicePrincipalDelegatedPermissionGrantArgs:
     def __init__(__self__, *,
-                 claim_values: pulumi.Input[Sequence[pulumi.Input[str]]],
-                 resource_service_principal_object_id: pulumi.Input[str],
-                 service_principal_object_id: pulumi.Input[str],
-                 user_object_id: Optional[pulumi.Input[str]] = None):
+                 claim_values: pulumi.Input[Sequence[pulumi.Input[_builtins.str]]],
+                 resource_service_principal_object_id: pulumi.Input[_builtins.str],
+                 service_principal_object_id: pulumi.Input[_builtins.str],
+                 user_object_id: Optional[pulumi.Input[_builtins.str]] = None):
         """
         The set of arguments for constructing a ServicePrincipalDelegatedPermissionGrant resource.
-        :param pulumi.Input[Sequence[pulumi.Input[str]]] claim_values: A set of claim values for delegated permission scopes which should be included in access tokens for the resource.
-        :param pulumi.Input[str] resource_service_principal_object_id: The object ID of the service principal representing the resource to be accessed. Changing this forces a new resource to be created.
-        :param pulumi.Input[str] service_principal_object_id: The object ID of the service principal for which this delegated permission grant should be created. Changing this forces a new resource to be created.
-        :param pulumi.Input[str] user_object_id: The object ID of the user on behalf of whom the service principal is authorized to access the resource. When omitted, the delegated permission grant will be consented for all users. Changing this forces a new resource to be created.
+        :param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] claim_values: A set of claim values for delegated permission scopes which should be included in access tokens for the resource.
+        :param pulumi.Input[_builtins.str] resource_service_principal_object_id: The object ID of the service principal representing the resource to be accessed. Changing this forces a new resource to be created.
+        :param pulumi.Input[_builtins.str] service_principal_object_id: The object ID of the service principal for which this delegated permission grant should be created. Changing this forces a new resource to be created.
+        :param pulumi.Input[_builtins.str] user_object_id: The object ID of the user on behalf of whom the service principal is authorized to access the resource. When omitted, the delegated permission grant will be consented for all users. Changing this forces a new resource to be created.
                > **Granting Admin Consent** To grant admin consent for the service principal to impersonate all users, just omit the `user_object_id` property.
         """
@@ -33,45 +38,45 @@ class ServicePrincipalDelegatedPermissionGrantArgs:
         if user_object_id is not None:
             pulumi.set(__self__, "user_object_id", user_object_id)
-    @property
+    @_builtins.property
     @pulumi.getter(name="claimValues")
-    def claim_values(self) -> pulumi.Input[Sequence[pulumi.Input[str]]]:
+    def claim_values(self) -> pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]:
         """
         A set of claim values for delegated permission scopes which should be included in access tokens for the resource.
         """
         return pulumi.get(self, "claim_values")
     @claim_values.setter
-    def claim_values(self, value: pulumi.Input[Sequence[pulumi.Input[str]]]):
+    def claim_values(self, value: pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]):
         pulumi.set(self, "claim_values", value)
-    @property
+    @_builtins.property
     @pulumi.getter(name="resourceServicePrincipalObjectId")
-    def resource_service_principal_object_id(self) -> pulumi.Input[str]:
+    def resource_service_principal_object_id(self) -> pulumi.Input[_builtins.str]:
         """
         The object ID of the service principal representing the resource to be accessed. Changing this forces a new resource to be created.
         """
         return pulumi.get(self, "resource_service_principal_object_id")
     @resource_service_principal_object_id.setter
-    def resource_service_principal_object_id(self, value: pulumi.Input[str]):
+    def resource_service_principal_object_id(self, value: pulumi.Input[_builtins.str]):
         pulumi.set(self, "resource_service_principal_object_id", value)
-    @property
+    @_builtins.property
     @pulumi.getter(name="servicePrincipalObjectId")
-    def service_principal_object_id(self) -> pulumi.Input[str]:
+    def service_principal_object_id(self) -> pulumi.Input[_builtins.str]:
         """
         The object ID of the service principal for which this delegated permission grant should be created. Changing this forces a new resource to be created.
         """
         return pulumi.get(self, "service_principal_object_id")
     @service_principal_object_id.setter
-    def service_principal_object_id(self, value: pulumi.Input[str]):
+    def service_principal_object_id(self, value: pulumi.Input[_builtins.str]):
         pulumi.set(self, "service_principal_object_id", value)
-    @property
+    @_builtins.property
     @pulumi.getter(name="userObjectId")
-    def user_object_id(self) -> Optional[pulumi.Input[str]]:
+    def user_object_id(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         The object ID of the user on behalf of whom the service principal is authorized to access the resource. When omitted, the delegated permission grant will be consented for all users. Changing this forces a new resource to be created.
@@ -80,23 +85,23 @@ class ServicePrincipalDelegatedPermissionGrantArgs:
         return pulumi.get(self, "user_object_id")
     @user_object_id.setter
-    def user_object_id(self, value: Optional[pulumi.Input[str]]):
+    def user_object_id(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "user_object_id", value)
 @pulumi.input_type
 class _ServicePrincipalDelegatedPermissionGrantState:
     def __init__(__self__, *,
-                 claim_values: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
-                 resource_service_principal_object_id: Optional[pulumi.Input[str]] = None,
-                 service_principal_object_id: Optional[pulumi.Input[str]] = None,
-                 user_object_id: Optional[pulumi.Input[str]] = None):
+                 claim_values: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
+                 resource_service_principal_object_id: Optional[pulumi.Input[_builtins.str]] = None,
+                 service_principal_object_id: Optional[pulumi.Input[_builtins.str]] = None,
+                 user_object_id: Optional[pulumi.Input[_builtins.str]] = None):
         """
         Input properties used for looking up and filtering ServicePrincipalDelegatedPermissionGrant resources.
-        :param pulumi.Input[Sequence[pulumi.Input[str]]] claim_values: A set of claim values for delegated permission scopes which should be included in access tokens for the resource.
-        :param pulumi.Input[str] resource_service_principal_object_id: The object ID of the service principal representing the resource to be accessed. Changing this forces a new resource to be created.
-        :param pulumi.Input[str] service_principal_object_id: The object ID of the service principal for which this delegated permission grant should be created. Changing this forces a new resource to be created.
-        :param pulumi.Input[str] user_object_id: The object ID of the user on behalf of whom the service principal is authorized to access the resource. When omitted, the delegated permission grant will be consented for all users. Changing this forces a new resource to be created.
+        :param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] claim_values: A set of claim values for delegated permission scopes which should be included in access tokens for the resource.
+        :param pulumi.Input[_builtins.str] resource_service_principal_object_id: The object ID of the service principal representing the resource to be accessed. Changing this forces a new resource to be created.
+        :param pulumi.Input[_builtins.str] service_principal_object_id: The object ID of the service principal for which this delegated permission grant should be created. Changing this forces a new resource to be created.
+        :param pulumi.Input[_builtins.str] user_object_id: The object ID of the user on behalf of whom the service principal is authorized to access the resource. When omitted, the delegated permission grant will be consented for all users. Changing this forces a new resource to be created.
                > **Granting Admin Consent** To grant admin consent for the service principal to impersonate all users, just omit the `user_object_id` property.
         """
@@ -109,45 +114,45 @@ class _ServicePrincipalDelegatedPermissionGrantState:
         if user_object_id is not None:
             pulumi.set(__self__, "user_object_id", user_object_id)
-    @property
+    @_builtins.property
     @pulumi.getter(name="claimValues")
-    def claim_values(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
+    def claim_values(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]:
         """
         A set of claim values for delegated permission scopes which should be included in access tokens for the resource.
         """
         return pulumi.get(self, "claim_values")
     @claim_values.setter
-    def claim_values(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
+    def claim_values(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]):
         pulumi.set(self, "claim_values", value)
-    @property
+    @_builtins.property
     @pulumi.getter(name="resourceServicePrincipalObjectId")
-    def resource_service_principal_object_id(self) -> Optional[pulumi.Input[str]]:
+    def resource_service_principal_object_id(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         The object ID of the service principal representing the resource to be accessed. Changing this forces a new resource to be created.
         """
         return pulumi.get(self, "resource_service_principal_object_id")
     @resource_service_principal_object_id.setter
-    def resource_service_principal_object_id(self, value: Optional[pulumi.Input[str]]):
+    def resource_service_principal_object_id(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "resource_service_principal_object_id", value)
-    @property
+    @_builtins.property
     @pulumi.getter(name="servicePrincipalObjectId")
-    def service_principal_object_id(self) -> Optional[pulumi.Input[str]]:
+    def service_principal_object_id(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         The object ID of the service principal for which this delegated permission grant should be created. Changing this forces a new resource to be created.
         """
         return pulumi.get(self, "service_principal_object_id")
     @service_principal_object_id.setter
-    def service_principal_object_id(self, value: Optional[pulumi.Input[str]]):
+    def service_principal_object_id(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "service_principal_object_id", value)
-    @property
+    @_builtins.property
     @pulumi.getter(name="userObjectId")
-    def user_object_id(self) -> Optional[pulumi.Input[str]]:
+    def user_object_id(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         The object ID of the user on behalf of whom the service principal is authorized to access the resource. When omitted, the delegated permission grant will be consented for all users. Changing this forces a new resource to be created.
@@ -156,19 +161,20 @@ class _ServicePrincipalDelegatedPermissionGrantState:
         return pulumi.get(self, "user_object_id")
     @user_object_id.setter
-    def user_object_id(self, value: Optional[pulumi.Input[str]]):
+    def user_object_id(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "user_object_id", value)
+@pulumi.type_token("azuread:index/servicePrincipalDelegatedPermissionGrant:ServicePrincipalDelegatedPermissionGrant")
 class ServicePrincipalDelegatedPermissionGrant(pulumi.CustomResource):
     @overload
     def __init__(__self__,
                  resource_name: str,
                  opts: Optional[pulumi.ResourceOptions] = None,
-                 claim_values: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
-                 resource_service_principal_object_id: Optional[pulumi.Input[str]] = None,
-                 service_principal_object_id: Optional[pulumi.Input[str]] = None,
-                 user_object_id: Optional[pulumi.Input[str]] = None,
+                 claim_values: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
+                 resource_service_principal_object_id: Optional[pulumi.Input[_builtins.str]] = None,
+                 service_principal_object_id: Optional[pulumi.Input[_builtins.str]] = None,
+                 user_object_id: Optional[pulumi.Input[_builtins.str]] = None,
                  __props__=None):
         """
         Manages a delegated permission grant for a service principal, on behalf of a single user, or all users.
@@ -191,25 +197,25 @@ class ServicePrincipalDelegatedPermissionGrant(pulumi.CustomResource):
         well_known = azuread.get_application_published_app_ids()
         msgraph = azuread.ServicePrincipal("msgraph",
-            application_id=well_known.result["MicrosoftGraph"],
+            client_id=well_known.result["microsoftGraph"],
             use_existing=True)
-        example_application = azuread.Application("exampleApplication",
+        example = azuread.Application("example",
             display_name="example",
-            required_resource_accesses=[azuread.ApplicationRequiredResourceAccessArgs(
-                resource_app_id=well_known.result["MicrosoftGraph"],
-                resource_accesses=[
-                    azuread.ApplicationRequiredResourceAccessResourceAccessArgs(
-                        id=msgraph.oauth2_permission_scope_ids["openid"],
-                        type="Scope",
-                    ),
-                    azuread.ApplicationRequiredResourceAccessResourceAccessArgs(
-                        id=msgraph.oauth2_permission_scope_ids["User.Read"],
-                        type="Scope",
-                    ),
+            required_resource_accesses=[{
+                "resource_app_id": well_known.result["microsoftGraph"],
+                "resource_accesses": [
+                    {
+                        "id": msgraph.oauth2_permission_scope_ids["openid"],
+                        "type": "Scope",
+                    },
+                    {
+                        "id": msgraph.oauth2_permission_scope_ids["User.Read"],
+                        "type": "Scope",
+                    },
                 ],
-            )])
-        example_service_principal = azuread.ServicePrincipal("exampleServicePrincipal", application_id=example_application.application_id)
-        example_service_principal_delegated_permission_grant = azuread.ServicePrincipalDelegatedPermissionGrant("exampleServicePrincipalDelegatedPermissionGrant",
+            }])
+        example_service_principal = azuread.ServicePrincipal("example", client_id=example.client_id)
+        example_service_principal_delegated_permission_grant = azuread.ServicePrincipalDelegatedPermissionGrant("example",
             service_principal_object_id=example_service_principal.object_id,
             resource_service_principal_object_id=msgraph.object_id,
             claim_values=[
@@ -226,30 +232,30 @@ class ServicePrincipalDelegatedPermissionGrant(pulumi.CustomResource):
         well_known = azuread.get_application_published_app_ids()
         msgraph = azuread.ServicePrincipal("msgraph",
-            application_id=well_known.result["MicrosoftGraph"],
+            client_id=well_known.result["microsoftGraph"],
             use_existing=True)
-        example_application = azuread.Application("exampleApplication",
+        example = azuread.Application("example",
             display_name="example",
-            required_resource_accesses=[azuread.ApplicationRequiredResourceAccessArgs(
-                resource_app_id=well_known.result["MicrosoftGraph"],
-                resource_accesses=[
-                    azuread.ApplicationRequiredResourceAccessResourceAccessArgs(
-                        id=msgraph.oauth2_permission_scope_ids["openid"],
-                        type="Scope",
-                    ),
-                    azuread.ApplicationRequiredResourceAccessResourceAccessArgs(
-                        id=msgraph.oauth2_permission_scope_ids["User.Read"],
-                        type="Scope",
-                    ),
+            required_resource_accesses=[{
+                "resource_app_id": well_known.result["microsoftGraph"],
+                "resource_accesses": [
+                    {
+                        "id": msgraph.oauth2_permission_scope_ids["openid"],
+                        "type": "Scope",
+                    },
+                    {
+                        "id": msgraph.oauth2_permission_scope_ids["User.Read"],
+                        "type": "Scope",
+                    },
                 ],
-            )])
-        example_service_principal = azuread.ServicePrincipal("exampleServicePrincipal", application_id=example_application.application_id)
-        example_user = azuread.User("exampleUser",
+            }])
+        example_service_principal = azuread.ServicePrincipal("example", client_id=example.client_id)
+        example_user = azuread.User("example",
             display_name="J. Doe",
-            user_principal_name="jdoe@hashicorp.com",
+            user_principal_name="jdoe@example.com",
             mail_nickname="jdoe",
             password="SecretP@sswd99!")
-        example_service_principal_delegated_permission_grant = azuread.ServicePrincipalDelegatedPermissionGrant("exampleServicePrincipalDelegatedPermissionGrant",
+        example_service_principal_delegated_permission_grant = azuread.ServicePrincipalDelegatedPermissionGrant("example",
             service_principal_object_id=example_service_principal.object_id,
             resource_service_principal_object_id=msgraph.object_id,
             claim_values=[
@@ -264,15 +270,15 @@ class ServicePrincipalDelegatedPermissionGrant(pulumi.CustomResource):
         Delegated permission grants can be imported using their ID, e.g.
         ```sh
-         $ pulumi import azuread:index/servicePrincipalDelegatedPermissionGrant:ServicePrincipalDelegatedPermissionGrant example aaBBcDDeFG6h5JKLMN2PQrrssTTUUvWWxxxxxyyyzzz
+        $ pulumi import azuread:index/servicePrincipalDelegatedPermissionGrant:ServicePrincipalDelegatedPermissionGrant example /oauth2PermissionGrants/aaBBcDDeFG6h5JKLMN2PQrrssTTUUvWWxxxxxyyyzzz
         ```
         :param str resource_name: The name of the resource.
         :param pulumi.ResourceOptions opts: Options for the resource.
-        :param pulumi.Input[Sequence[pulumi.Input[str]]] claim_values: A set of claim values for delegated permission scopes which should be included in access tokens for the resource.
-        :param pulumi.Input[str] resource_service_principal_object_id: The object ID of the service principal representing the resource to be accessed. Changing this forces a new resource to be created.
-        :param pulumi.Input[str] service_principal_object_id: The object ID of the service principal for which this delegated permission grant should be created. Changing this forces a new resource to be created.
-        :param pulumi.Input[str] user_object_id: The object ID of the user on behalf of whom the service principal is authorized to access the resource. When omitted, the delegated permission grant will be consented for all users. Changing this forces a new resource to be created.
+        :param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] claim_values: A set of claim values for delegated permission scopes which should be included in access tokens for the resource.
+        :param pulumi.Input[_builtins.str] resource_service_principal_object_id: The object ID of the service principal representing the resource to be accessed. Changing this forces a new resource to be created.
+        :param pulumi.Input[_builtins.str] service_principal_object_id: The object ID of the service principal for which this delegated permission grant should be created. Changing this forces a new resource to be created.
+        :param pulumi.Input[_builtins.str] user_object_id: The object ID of the user on behalf of whom the service principal is authorized to access the resource. When omitted, the delegated permission grant will be consented for all users. Changing this forces a new resource to be created.
                > **Granting Admin Consent** To grant admin consent for the service principal to impersonate all users, just omit the `user_object_id` property.
         """
@@ -303,25 +309,25 @@ class ServicePrincipalDelegatedPermissionGrant(pulumi.CustomResource):
         well_known = azuread.get_application_published_app_ids()
         msgraph = azuread.ServicePrincipal("msgraph",
-            application_id=well_known.result["MicrosoftGraph"],
+            client_id=well_known.result["microsoftGraph"],
             use_existing=True)
-        example_application = azuread.Application("exampleApplication",
+        example = azuread.Application("example",
             display_name="example",
-            required_resource_accesses=[azuread.ApplicationRequiredResourceAccessArgs(
-                resource_app_id=well_known.result["MicrosoftGraph"],
-                resource_accesses=[
-                    azuread.ApplicationRequiredResourceAccessResourceAccessArgs(
-                        id=msgraph.oauth2_permission_scope_ids["openid"],
-                        type="Scope",
-                    ),
-                    azuread.ApplicationRequiredResourceAccessResourceAccessArgs(
-                        id=msgraph.oauth2_permission_scope_ids["User.Read"],
-                        type="Scope",
-                    ),
+            required_resource_accesses=[{
+                "resource_app_id": well_known.result["microsoftGraph"],
+                "resource_accesses": [
+                    {
+                        "id": msgraph.oauth2_permission_scope_ids["openid"],
+                        "type": "Scope",
+                    },
+                    {
+                        "id": msgraph.oauth2_permission_scope_ids["User.Read"],
+                        "type": "Scope",
+                    },
                 ],
-            )])
-        example_service_principal = azuread.ServicePrincipal("exampleServicePrincipal", application_id=example_application.application_id)
-        example_service_principal_delegated_permission_grant = azuread.ServicePrincipalDelegatedPermissionGrant("exampleServicePrincipalDelegatedPermissionGrant",
+            }])
+        example_service_principal = azuread.ServicePrincipal("example", client_id=example.client_id)
+        example_service_principal_delegated_permission_grant = azuread.ServicePrincipalDelegatedPermissionGrant("example",
             service_principal_object_id=example_service_principal.object_id,
             resource_service_principal_object_id=msgraph.object_id,
             claim_values=[
@@ -338,30 +344,30 @@ class ServicePrincipalDelegatedPermissionGrant(pulumi.CustomResource):
         well_known = azuread.get_application_published_app_ids()
         msgraph = azuread.ServicePrincipal("msgraph",
-            application_id=well_known.result["MicrosoftGraph"],
+            client_id=well_known.result["microsoftGraph"],
             use_existing=True)
-        example_application = azuread.Application("exampleApplication",
+        example = azuread.Application("example",
             display_name="example",
-            required_resource_accesses=[azuread.ApplicationRequiredResourceAccessArgs(
-                resource_app_id=well_known.result["MicrosoftGraph"],
-                resource_accesses=[
-                    azuread.ApplicationRequiredResourceAccessResourceAccessArgs(
-                        id=msgraph.oauth2_permission_scope_ids["openid"],
-                        type="Scope",
-                    ),
-                    azuread.ApplicationRequiredResourceAccessResourceAccessArgs(
-                        id=msgraph.oauth2_permission_scope_ids["User.Read"],
-                        type="Scope",
-                    ),
+            required_resource_accesses=[{
+                "resource_app_id": well_known.result["microsoftGraph"],
+                "resource_accesses": [
+                    {
+                        "id": msgraph.oauth2_permission_scope_ids["openid"],
+                        "type": "Scope",
+                    },
+                    {
+                        "id": msgraph.oauth2_permission_scope_ids["User.Read"],
+                        "type": "Scope",
+                    },
                 ],
-            )])
-        example_service_principal = azuread.ServicePrincipal("exampleServicePrincipal", application_id=example_application.application_id)
-        example_user = azuread.User("exampleUser",
+            }])
+        example_service_principal = azuread.ServicePrincipal("example", client_id=example.client_id)
+        example_user = azuread.User("example",
             display_name="J. Doe",
-            user_principal_name="jdoe@hashicorp.com",
+            user_principal_name="jdoe@example.com",
             mail_nickname="jdoe",
             password="SecretP@sswd99!")
-        example_service_principal_delegated_permission_grant = azuread.ServicePrincipalDelegatedPermissionGrant("exampleServicePrincipalDelegatedPermissionGrant",
+        example_service_principal_delegated_permission_grant = azuread.ServicePrincipalDelegatedPermissionGrant("example",
             service_principal_object_id=example_service_principal.object_id,
             resource_service_principal_object_id=msgraph.object_id,
             claim_values=[
@@ -376,7 +382,7 @@ class ServicePrincipalDelegatedPermissionGrant(pulumi.CustomResource):
         Delegated permission grants can be imported using their ID, e.g.
         ```sh
-         $ pulumi import azuread:index/servicePrincipalDelegatedPermissionGrant:ServicePrincipalDelegatedPermissionGrant example aaBBcDDeFG6h5JKLMN2PQrrssTTUUvWWxxxxxyyyzzz
+        $ pulumi import azuread:index/servicePrincipalDelegatedPermissionGrant:ServicePrincipalDelegatedPermissionGrant example /oauth2PermissionGrants/aaBBcDDeFG6h5JKLMN2PQrrssTTUUvWWxxxxxyyyzzz
         ```
         :param str resource_name: The name of the resource.
@@ -394,10 +400,10 @@ class ServicePrincipalDelegatedPermissionGrant(pulumi.CustomResource):
     def _internal_init(__self__,
                  resource_name: str,
                  opts: Optional[pulumi.ResourceOptions] = None,
-                 claim_values: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
-                 resource_service_principal_object_id: Optional[pulumi.Input[str]] = None,
-                 service_principal_object_id: Optional[pulumi.Input[str]] = None,
-                 user_object_id: Optional[pulumi.Input[str]] = None,
+                 claim_values: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
+                 resource_service_principal_object_id: Optional[pulumi.Input[_builtins.str]] = None,
+                 service_principal_object_id: Optional[pulumi.Input[_builtins.str]] = None,
+                 user_object_id: Optional[pulumi.Input[_builtins.str]] = None,
                  __props__=None):
         opts = pulumi.ResourceOptions.merge(_utilities.get_resource_opts_defaults(), opts)
         if not isinstance(opts, pulumi.ResourceOptions):
@@ -427,10 +433,10 @@ class ServicePrincipalDelegatedPermissionGrant(pulumi.CustomResource):
     def get(resource_name: str,
             id: pulumi.Input[str],
             opts: Optional[pulumi.ResourceOptions] = None,
-            claim_values: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
-            resource_service_principal_object_id: Optional[pulumi.Input[str]] = None,
-            service_principal_object_id: Optional[pulumi.Input[str]] = None,
-            user_object_id: Optional[pulumi.Input[str]] = None) -> 'ServicePrincipalDelegatedPermissionGrant':
+            claim_values: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
+            resource_service_principal_object_id: Optional[pulumi.Input[_builtins.str]] = None,
+            service_principal_object_id: Optional[pulumi.Input[_builtins.str]] = None,
+            user_object_id: Optional[pulumi.Input[_builtins.str]] = None) -> 'ServicePrincipalDelegatedPermissionGrant':
         """
         Get an existing ServicePrincipalDelegatedPermissionGrant resource's state with the given name, id, and optional extra
         properties used to qualify the lookup.
@@ -438,10 +444,10 @@ class ServicePrincipalDelegatedPermissionGrant(pulumi.CustomResource):
         :param str resource_name: The unique name of the resulting resource.
         :param pulumi.Input[str] id: The unique provider ID of the resource to lookup.
         :param pulumi.ResourceOptions opts: Options for the resource.
-        :param pulumi.Input[Sequence[pulumi.Input[str]]] claim_values: A set of claim values for delegated permission scopes which should be included in access tokens for the resource.
-        :param pulumi.Input[str] resource_service_principal_object_id: The object ID of the service principal representing the resource to be accessed. Changing this forces a new resource to be created.
-        :param pulumi.Input[str] service_principal_object_id: The object ID of the service principal for which this delegated permission grant should be created. Changing this forces a new resource to be created.
-        :param pulumi.Input[str] user_object_id: The object ID of the user on behalf of whom the service principal is authorized to access the resource. When omitted, the delegated permission grant will be consented for all users. Changing this forces a new resource to be created.
+        :param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] claim_values: A set of claim values for delegated permission scopes which should be included in access tokens for the resource.
+        :param pulumi.Input[_builtins.str] resource_service_principal_object_id: The object ID of the service principal representing the resource to be accessed. Changing this forces a new resource to be created.
+        :param pulumi.Input[_builtins.str] service_principal_object_id: The object ID of the service principal for which this delegated permission grant should be created. Changing this forces a new resource to be created.
+        :param pulumi.Input[_builtins.str] user_object_id: The object ID of the user on behalf of whom the service principal is authorized to access the resource. When omitted, the delegated permission grant will be consented for all users. Changing this forces a new resource to be created.
                > **Granting Admin Consent** To grant admin consent for the service principal to impersonate all users, just omit the `user_object_id` property.
         """
@@ -455,33 +461,33 @@ class ServicePrincipalDelegatedPermissionGrant(pulumi.CustomResource):
         __props__.__dict__["user_object_id"] = user_object_id
         return ServicePrincipalDelegatedPermissionGrant(resource_name, opts=opts, __props__=__props__)
-    @property
+    @_builtins.property
     @pulumi.getter(name="claimValues")
-    def claim_values(self) -> pulumi.Output[Sequence[str]]:
+    def claim_values(self) -> pulumi.Output[Sequence[_builtins.str]]:
         """
         A set of claim values for delegated permission scopes which should be included in access tokens for the resource.
         """
         return pulumi.get(self, "claim_values")
-    @property
+    @_builtins.property
     @pulumi.getter(name="resourceServicePrincipalObjectId")
-    def resource_service_principal_object_id(self) -> pulumi.Output[str]:
+    def resource_service_principal_object_id(self) -> pulumi.Output[_builtins.str]:
         """
         The object ID of the service principal representing the resource to be accessed. Changing this forces a new resource to be created.
         """
         return pulumi.get(self, "resource_service_principal_object_id")
-    @property
+    @_builtins.property
     @pulumi.getter(name="servicePrincipalObjectId")
-    def service_principal_object_id(self) -> pulumi.Output[str]:
+    def service_principal_object_id(self) -> pulumi.Output[_builtins.str]:
         """
         The object ID of the service principal for which this delegated permission grant should be created. Changing this forces a new resource to be created.
         """
         return pulumi.get(self, "service_principal_object_id")
-    @property
+    @_builtins.property
     @pulumi.getter(name="userObjectId")
-    def user_object_id(self) -> pulumi.Output[Optional[str]]:
+    def user_object_id(self) -> pulumi.Output[Optional[_builtins.str]]:
         """
         The object ID of the user on behalf of whom the service principal is authorized to access the resource. When omitted, the delegated permission grant will be consented for all users. Changing this forces a new resource to be created.

pulumi-azuread 5.48.0a1706744699__py3-none-any.whl → 6.8.0a1766208344__py3-none-any.whl

Potentially problematic release.

pulumi-azuread 5.48.0a1706744699py3-none-any.whl → 6.8.0a1766208344py3-none-any.whl