Skip to content

krzysztoftalar/terraform-azure-service-principal

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

7 Commits

.gitignore

.gitignore

 
 

LICENSE

LICENSE

 
 

README.md

README.md

 
 

locals.tf

locals.tf

 
 

main.tf

main.tf

 
 

outputs.tf

outputs.tf

 
 

variables.tf

variables.tf

 
 

versions.tf

versions.tf

 
 

Repository files navigation

Requirements

Name Version
terraform >= 1.3.5
azuread >= 2.31.0
azurerm >= 3.35.0
time >= 0.9.1

Providers

Name Version
azuread 2.31.0
azurerm 3.35.0
time 0.9.1

Modules

No modules.

Resources

Name Type
azuread_application.this resource
azuread_application_password.this resource
azuread_service_principal.this resource
azurerm_role_assignment.this resource
time_rotating.this resource
azuread_client_config.current data source

Inputs

Name Description Type Default Required
application_display_name (Required) The display name for the application. string n/a yes
assignments (Required) The list of role assignments to the service principal.
assignments = {
scope : "The scope at which the Role Assignment applies to, such as /subscriptions/xxxxx000-0000-0000-0000-xxxx0000xxxx."
role_definition_name : "The name of a built-in Role."
}		 
list(object({
    scope                = string
    role_definition_name = string
  }))
 n/a yes
environment (Required) The name of the environment. string n/a yes
management (Required) A description of how this resource is managed, such as Terraform Cloud - Local, Terraform Cloud - Remote. string n/a yes
owner (Required) Company to which the projects belong. string n/a yes
password_end_date (Optional) The end date until which the password is valid, formatted as an RFC3339 date string (e.g. 2018-01-01T01:02:03Z). Defaults to 1 year (automatically set by Azure). string null no
password_rotation_in_days (Required) Number of days to add to the base timestamp to configure the rotation timestamp. When the current time has passed the rotation timestamp, the resource will trigger recreation. number n/a yes
project (Required) The name of the project. string n/a yes
service_principal_description (Required) A description of the service principal provided for internal end-users. string n/a yes
sign_in_audience (Optional) The Microsoft account types that are supported for the current application. Must be one of AzureADMyOrg, AzureADMultipleOrgs, AzureADandPersonalMicrosoftAccount or PersonalMicrosoftAccount. Defaults to AzureADMyOrg. string "AzureADMyOrg" no

Outputs

Name Description
client_secret Secret password (client_secret) for the Service Principal.

About

Private Terraform module to create a service principal and configure access to Azure resources

Topics

azure terraform service-principal

Resources

Readme

License

MIT license
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

4 tags

Packages

No packages published

Languages