Manages an Azure SignalR Custom Certificate.
data "azurerm_client_config" "current" {}
resource "azurerm_resource_group" "example" {
name = "example-resources"
location = "West Europe"
}
resource "azurerm_signalr_service" "example" {
name = "example-signalr"
location = azurerm_resource_group.test.location
resource_group_name = azurerm_resource_group.test.name
sku {
name = "Premium_P1"
capacity = 1
}
identity {
type = "SystemAssigned"
}
}
resource "azurerm_key_vault" "example" {
name = "example-keyvault"
location = azurerm_resource_group.example.location
resource_group_name = azurerm_resource_group.example.name
tenant_id = data.azurerm_client_config.current.tenant_id
sku_name = "premium"
access_policy {
tenant_id = data.azurerm_client_config.current.tenant_id
object_id = data.azurerm_client_config.current.object_id
certificate_permissions = [
"Create",
"Get",
"List",
]
secret_permissions = [
"Get",
"List",
]
}
access_policy {
tenant_id = data.azurerm_client_config.current.tenant_id
object_id = azurerm_signalr_service.test.identity[0].principal_id
certificate_permissions = [
"Create",
"Get",
"List",
]
secret_permissions = [
"Get",
"List",
]
}
}
resource "azurerm_key_vault_certificate" "example" {
name = "imported-cert"
key_vault_id = azurerm_key_vault.example.id
certificate {
contents = filebase64("certificate-to-import.pfx")
password = ""
}
}
resource "azurerm_signalr_service_custom_certificate" "test" {
name = "example-cert"
signalr_service_id = azurerm_signalr_service.example.id
custom_certificate_id = azurerm_key_vault_certificate.example.id
depends_on = [azurerm_key_vault_access_policy.example]
}
The following arguments are supported:
name
- (Required) The name of the SignalR Custom Certificate. Changing this forces a new resource to be created.
signalr_service_id
- (Required) The SignalR ID of the SignalR Custom Certificate. Changing this forces a new resource to be created.
custom_certificate_id
- (Required) The certificate id of the SignalR Custom Certificate service. Changing this forces a new resource to be created.The following attributes are exported:
id
- The ID of the SignalR Custom Certificate.
certificate_version
- The certificate version of the SignalR Custom Certificate service.
The timeouts
block allows you to specify timeouts for certain actions:
create
- (Defaults to 30 minutes) Used when creating the Custom Certificate of the SignalR serviceread
- (Defaults to 5 minutes) Used when retrieving the Custom Certificate of the SignalR servicedelete
- (Defaults to 30 minutes) Used when deleting the Custom Certificate of the SignalR serviceCustom Certificate for a SignalR service can be imported using the resource id
, e.g.
terraform import azurerm_signalr_service_custom_certificate.example /subscriptions/00000000-0000-0000-0000-000000000000/resourceGroups/group1/providers/Microsoft.SignalRService/signalR/signalr1/customCertificates/cert1