Resource Type: azure_application

Defined in:: lib/puppet/type/azure_application.rb

Providers:: arm

Overview

Active Directory application information.

Properties

allow_guests_sign_in

A property on the application to indicate if the application accepts other IDPs or not or partially accepts.
allow_passthrough_users

Indicates that the application supports pass through users who have no presence in the resource tenant.
app_id

The application ID.
app_logo_url

The url for the application logo image stored in a CDN.
app_permissions

The application permissions.
app_roles

The collection of application roles that an application may declare. These roles can be assigned to users, groups or service principals.
available_to_other_tenants

Whether the application is available to other tenants.
deletion_timestamp

The time at which the directory object was deleted.
ensure (defaults to: present)

The basic property that the resource should be in.
Supported values:
- present
- absent
error_url

A URL provided by the author of the application to report errors when using the application.
group_membership_claims

Configures the groups claim issued in a user or OAuth 2.0 access token that the app expects.
homepage

The home page of the application.
identifier_uris

A collection of URIs for the application.
informational_urls

URLs with more information about the application.
is_device_only_auth_supported

Specifies whether this application supports device authentication without a user. The default is false.
key_credentials

A collection of KeyCredential objects.
known_client_applications

Client applications that are tied to this resource application. Consent to any of the known client applications will result in implicit consent to the resource application through a combined consent dialog (showing the OAuth permission scopes required by the client and the resource).
logout_url

the url of the logout page
oauth2_allow_implicit_flow

Whether to allow implicit grant flow for OAuth2
oauth2_allow_url_path_matching

Specifies whether during a token Request Azure AD will allow path matching of the redirect URI against the applications collection of replyURLs. The default is false.
oauth2_permissions

The collection of OAuth 2.0 permission scopes that the web API (resource) application exposes to client applications. These permission scopes may be granted to client applications during consent.
oauth2_require_post_response

Specifies whether, as part of OAuth 2.0 token requests, Azure AD will allow POST requests, as opposed to GET requests. The default is false, which specifies that only GET requests will be allowed.
object_id

The object ID.
object_type

The object type.
optional_claims

“”
org_restrictions

A list of tenants allowed to access application.
password_credentials

A collection of PasswordCredential objects
pre_authorized_applications

list of pre-authorized applications.
public_client

Specifies whether this application is a public client (such as an installed application running on a mobile device). Default is false.
publisher_domain

Reliable domain which can be used to identify an application.
reply_urls

A collection of reply URLs for the application.
required_resource_access

Specifies resources that this application requires access to and the set of OAuth permission scopes and application roles that it needs under each of those resources. This pre-configuration of required resource access drives the consent experience.
saml_metadata_url

The URL to the SAML metadata for the application.
sign_in_audience

Audience for signing in to the application (AzureADMyOrganization, AzureADAllOrganizations, AzureADAndMicrosoftAccounts).
www_homepage

The primary Web page.

Parameters

api_version

Client API version.
display_name (namevar)

The display name of the application.
parameters

The parameters for creating an application.
provider

The specific backend to use for this ‘azure_application` resource. You will seldom need to specify this — Puppet will usually discover the appropriate provider for your platform.
tenant_id

The tenant ID.