Resource: azuread_application_identifier_uri

Manages a single Identifier URI for an application registration.

This resource is analogous to the identifier_uris property in the azuread_application resource. When using these resources together, you should use the ignore_changes lifecycle meta-argument (see example below).

API Permissions

The following API permissions are required in order to use this resource.

When authenticated with a service principal, this resource requires one of the following application roles: Application.ReadWrite.OwnedBy or Application.ReadWrite.All

When authenticated with a user principal, this resource may require one of the following directory roles: Application Administrator or Global Administrator

Example Usage

resource "azuread_application_registration" "example" {
  display_name = "example"
}

resource "azuread_application_identifier_uri" "example" {
  application_id = azuread_application_registration.example.id
  identifier_uri = "https://app.hashitown.com"
}

Usage with azuread_application resource

resource "azuread_application" "example" {
  display_name = "example"

  lifecycle {
    ignore_changes = [
      identifier_uris,
    ]
  }
}

resource "azuread_application_identifier_uri" "example" {
  application_id = azuread_application.example.id
  # ...
}

Argument Reference

The following arguments are supported:

Attributes Reference

No additional attributes are exported.

Import

Application Identifier URIs can be imported using the object ID of the application and the base64-encoded identifier URI, in the following format.

terraform import azuread_application_identifier_uri.example /applications/00000000-0000-0000-0000-000000000000/identifierUris/aHR0cHM6Ly9leGFtcGxlLm5ldC8=