-
Notifications
You must be signed in to change notification settings - Fork 0
/
DigicertTest.tf
80 lines (77 loc) · 3.22 KB
/
DigicertTest.tf
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
data "azurerm_key_vault_secret" "DigicertTest-wa-AZURE-MDM-SECRET" {
name = "DigicertTest-wa-AZURE-MDM-SECRET"
key_vault_id = data.azurerm_key_vault.terraformsecrets.id
}
data "azurerm_key_vault_secret" "DigicertTest-wa-DIGICERT-APISECRET" {
name = "DigicertTest-wa-DIGICERT-APISECRET"
key_vault_id = data.azurerm_key_vault.terraformsecrets.id
}
data "azurerm_key_vault_secret" "DigicertTest-wa-MICROSOFT-PROVIDER-AUTHENTICATION-SECRET" {
name = "DigicertTest-wa-MICROSOFT-PROVIDER-AUTHENTICATION-SECRET"
key_vault_id = data.azurerm_key_vault.terraformsecrets.id
}
resource "azurerm_resource_group" "DigicertTest" {
location = "northeurope"
name = "DigicertTest"
}
resource "azurerm_key_vault" "DigicertTest_kv" {
enable_rbac_authorization = true
location = "northeurope"
name = "TommisMadDigicert"
resource_group_name = "DigicertTest"
sku_name = "standard"
tenant_id = "dcc5e94c-873d-4593-940a-ba26b1970342"
depends_on = [
azurerm_resource_group.DigicertTest,
]
}
resource "azurerm_service_plan" "DigicertTest_sp" {
location = "norwayeast"
name = "ASP-DigicertTest-8c5e"
os_type = "Linux"
resource_group_name = "DigicertTest"
sku_name = "B1"
depends_on = [
azurerm_resource_group.DigicertTest,
]
}
resource "azurerm_linux_web_app" "DigicertTest_wa" {
app_settings = {
AZURE_MDM_CLIENT = "4a332128-094d-4f36-9ebd-348edbb79df2"
AZURE_MDM_SECRET = sensitive(data.azurerm_key_vault_secret.DigicertTest-wa-AZURE-MDM-SECRET.value)
DIGICERT_APISECRET = sensitive(data.azurerm_key_vault_secret.DigicertTest-wa-DIGICERT-APISECRET.value)
MICROSOFT_PROVIDER_AUTHENTICATION_SECRET = sensitive(data.azurerm_key_vault_secret.DigicertTest-wa-MICROSOFT-PROVIDER-AUTHENTICATION-SECRET.value)
WEBSITES_ENABLE_APP_SERVICE_STORAGE = "false"
}
location = "norwayeast"
name = "tommismadcertdashboard"
resource_group_name = "DigicertTest"
service_plan_id = "/subscriptions/3846f4f0-152c-49d5-9779-9998df4a2c0c/resourceGroups/DigicertTest/providers/Microsoft.Web/serverFarms/ASP-DigicertTest-8c5e"
auth_settings_v2 {
auth_enabled = true
default_provider = "azureactivedirectory"
require_authentication = true
active_directory_v2 {
allowed_audiences = ["api://87398946-33e4-4b6f-8daf-9f59c58d3d69"]
client_id = "87398946-33e4-4b6f-8daf-9f59c58d3d69"
client_secret_setting_name = "MICROSOFT_PROVIDER_AUTHENTICATION_SECRET"
tenant_auth_endpoint = "https://sts.windows.net/dcc5e94c-873d-4593-940a-ba26b1970342/v2.0"
}
login {
logout_endpoint = "/.auth/logout"
token_store_enabled = true
}
}
site_config {
ftps_state = "FtpsOnly"
http2_enabled = true
ip_restriction_default_action = "Allow"
scm_ip_restriction_default_action = "Allow"
}
sticky_settings {
app_setting_names = ["MICROSOFT_PROVIDER_AUTHENTICATION_SECRET"]
}
depends_on = [
azurerm_service_plan.DigicertTest_sp,
]
}