1. Packages
  2. Azure Classic
  3. API Docs
  4. appservice
  5. WindowsFunctionApp

We recommend using Azure Native.

Azure v6.10.0 published on Tuesday, Nov 19, 2024 by Pulumi

azure.appservice.WindowsFunctionApp

Explore with Pulumi AI

azure logo

We recommend using Azure Native.

Azure v6.10.0 published on Tuesday, Nov 19, 2024 by Pulumi

    Manages a Windows Function App.

    Example Usage

    import * as pulumi from "@pulumi/pulumi";
    import * as azure from "@pulumi/azure";
    
    const example = new azure.core.ResourceGroup("example", {
        name: "example-resources",
        location: "West Europe",
    });
    const exampleAccount = new azure.storage.Account("example", {
        name: "windowsfunctionappsa",
        resourceGroupName: example.name,
        location: example.location,
        accountTier: "Standard",
        accountReplicationType: "LRS",
    });
    const exampleServicePlan = new azure.appservice.ServicePlan("example", {
        name: "example-app-service-plan",
        resourceGroupName: example.name,
        location: example.location,
        osType: "Windows",
        skuName: "Y1",
    });
    const exampleWindowsFunctionApp = new azure.appservice.WindowsFunctionApp("example", {
        name: "example-windows-function-app",
        resourceGroupName: example.name,
        location: example.location,
        storageAccountName: exampleAccount.name,
        storageAccountAccessKey: exampleAccount.primaryAccessKey,
        servicePlanId: exampleServicePlan.id,
        siteConfig: {},
    });
    
    import pulumi
    import pulumi_azure as azure
    
    example = azure.core.ResourceGroup("example",
        name="example-resources",
        location="West Europe")
    example_account = azure.storage.Account("example",
        name="windowsfunctionappsa",
        resource_group_name=example.name,
        location=example.location,
        account_tier="Standard",
        account_replication_type="LRS")
    example_service_plan = azure.appservice.ServicePlan("example",
        name="example-app-service-plan",
        resource_group_name=example.name,
        location=example.location,
        os_type="Windows",
        sku_name="Y1")
    example_windows_function_app = azure.appservice.WindowsFunctionApp("example",
        name="example-windows-function-app",
        resource_group_name=example.name,
        location=example.location,
        storage_account_name=example_account.name,
        storage_account_access_key=example_account.primary_access_key,
        service_plan_id=example_service_plan.id,
        site_config={})
    
    package main
    
    import (
    	"github.com/pulumi/pulumi-azure/sdk/v6/go/azure/appservice"
    	"github.com/pulumi/pulumi-azure/sdk/v6/go/azure/core"
    	"github.com/pulumi/pulumi-azure/sdk/v6/go/azure/storage"
    	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
    )
    
    func main() {
    	pulumi.Run(func(ctx *pulumi.Context) error {
    		example, err := core.NewResourceGroup(ctx, "example", &core.ResourceGroupArgs{
    			Name:     pulumi.String("example-resources"),
    			Location: pulumi.String("West Europe"),
    		})
    		if err != nil {
    			return err
    		}
    		exampleAccount, err := storage.NewAccount(ctx, "example", &storage.AccountArgs{
    			Name:                   pulumi.String("windowsfunctionappsa"),
    			ResourceGroupName:      example.Name,
    			Location:               example.Location,
    			AccountTier:            pulumi.String("Standard"),
    			AccountReplicationType: pulumi.String("LRS"),
    		})
    		if err != nil {
    			return err
    		}
    		exampleServicePlan, err := appservice.NewServicePlan(ctx, "example", &appservice.ServicePlanArgs{
    			Name:              pulumi.String("example-app-service-plan"),
    			ResourceGroupName: example.Name,
    			Location:          example.Location,
    			OsType:            pulumi.String("Windows"),
    			SkuName:           pulumi.String("Y1"),
    		})
    		if err != nil {
    			return err
    		}
    		_, err = appservice.NewWindowsFunctionApp(ctx, "example", &appservice.WindowsFunctionAppArgs{
    			Name:                    pulumi.String("example-windows-function-app"),
    			ResourceGroupName:       example.Name,
    			Location:                example.Location,
    			StorageAccountName:      exampleAccount.Name,
    			StorageAccountAccessKey: exampleAccount.PrimaryAccessKey,
    			ServicePlanId:           exampleServicePlan.ID(),
    			SiteConfig:              &appservice.WindowsFunctionAppSiteConfigArgs{},
    		})
    		if err != nil {
    			return err
    		}
    		return nil
    	})
    }
    
    using System.Collections.Generic;
    using System.Linq;
    using Pulumi;
    using Azure = Pulumi.Azure;
    
    return await Deployment.RunAsync(() => 
    {
        var example = new Azure.Core.ResourceGroup("example", new()
        {
            Name = "example-resources",
            Location = "West Europe",
        });
    
        var exampleAccount = new Azure.Storage.Account("example", new()
        {
            Name = "windowsfunctionappsa",
            ResourceGroupName = example.Name,
            Location = example.Location,
            AccountTier = "Standard",
            AccountReplicationType = "LRS",
        });
    
        var exampleServicePlan = new Azure.AppService.ServicePlan("example", new()
        {
            Name = "example-app-service-plan",
            ResourceGroupName = example.Name,
            Location = example.Location,
            OsType = "Windows",
            SkuName = "Y1",
        });
    
        var exampleWindowsFunctionApp = new Azure.AppService.WindowsFunctionApp("example", new()
        {
            Name = "example-windows-function-app",
            ResourceGroupName = example.Name,
            Location = example.Location,
            StorageAccountName = exampleAccount.Name,
            StorageAccountAccessKey = exampleAccount.PrimaryAccessKey,
            ServicePlanId = exampleServicePlan.Id,
            SiteConfig = null,
        });
    
    });
    
    package generated_program;
    
    import com.pulumi.Context;
    import com.pulumi.Pulumi;
    import com.pulumi.core.Output;
    import com.pulumi.azure.core.ResourceGroup;
    import com.pulumi.azure.core.ResourceGroupArgs;
    import com.pulumi.azure.storage.Account;
    import com.pulumi.azure.storage.AccountArgs;
    import com.pulumi.azure.appservice.ServicePlan;
    import com.pulumi.azure.appservice.ServicePlanArgs;
    import com.pulumi.azure.appservice.WindowsFunctionApp;
    import com.pulumi.azure.appservice.WindowsFunctionAppArgs;
    import com.pulumi.azure.appservice.inputs.WindowsFunctionAppSiteConfigArgs;
    import java.util.List;
    import java.util.ArrayList;
    import java.util.Map;
    import java.io.File;
    import java.nio.file.Files;
    import java.nio.file.Paths;
    
    public class App {
        public static void main(String[] args) {
            Pulumi.run(App::stack);
        }
    
        public static void stack(Context ctx) {
            var example = new ResourceGroup("example", ResourceGroupArgs.builder()
                .name("example-resources")
                .location("West Europe")
                .build());
    
            var exampleAccount = new Account("exampleAccount", AccountArgs.builder()
                .name("windowsfunctionappsa")
                .resourceGroupName(example.name())
                .location(example.location())
                .accountTier("Standard")
                .accountReplicationType("LRS")
                .build());
    
            var exampleServicePlan = new ServicePlan("exampleServicePlan", ServicePlanArgs.builder()
                .name("example-app-service-plan")
                .resourceGroupName(example.name())
                .location(example.location())
                .osType("Windows")
                .skuName("Y1")
                .build());
    
            var exampleWindowsFunctionApp = new WindowsFunctionApp("exampleWindowsFunctionApp", WindowsFunctionAppArgs.builder()
                .name("example-windows-function-app")
                .resourceGroupName(example.name())
                .location(example.location())
                .storageAccountName(exampleAccount.name())
                .storageAccountAccessKey(exampleAccount.primaryAccessKey())
                .servicePlanId(exampleServicePlan.id())
                .siteConfig()
                .build());
    
        }
    }
    
    resources:
      example:
        type: azure:core:ResourceGroup
        properties:
          name: example-resources
          location: West Europe
      exampleAccount:
        type: azure:storage:Account
        name: example
        properties:
          name: windowsfunctionappsa
          resourceGroupName: ${example.name}
          location: ${example.location}
          accountTier: Standard
          accountReplicationType: LRS
      exampleServicePlan:
        type: azure:appservice:ServicePlan
        name: example
        properties:
          name: example-app-service-plan
          resourceGroupName: ${example.name}
          location: ${example.location}
          osType: Windows
          skuName: Y1
      exampleWindowsFunctionApp:
        type: azure:appservice:WindowsFunctionApp
        name: example
        properties:
          name: example-windows-function-app
          resourceGroupName: ${example.name}
          location: ${example.location}
          storageAccountName: ${exampleAccount.name}
          storageAccountAccessKey: ${exampleAccount.primaryAccessKey}
          servicePlanId: ${exampleServicePlan.id}
          siteConfig: {}
    

    Create WindowsFunctionApp Resource

    Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.

    Constructor syntax

    new WindowsFunctionApp(name: string, args: WindowsFunctionAppArgs, opts?: CustomResourceOptions);
    @overload
    def WindowsFunctionApp(resource_name: str,
                           args: WindowsFunctionAppArgs,
                           opts: Optional[ResourceOptions] = None)
    
    @overload
    def WindowsFunctionApp(resource_name: str,
                           opts: Optional[ResourceOptions] = None,
                           resource_group_name: Optional[str] = None,
                           site_config: Optional[WindowsFunctionAppSiteConfigArgs] = None,
                           service_plan_id: Optional[str] = None,
                           key_vault_reference_identity_id: Optional[str] = None,
                           zip_deploy_file: Optional[str] = None,
                           location: Optional[str] = None,
                           client_certificate_exclusion_paths: Optional[str] = None,
                           client_certificate_mode: Optional[str] = None,
                           connection_strings: Optional[Sequence[WindowsFunctionAppConnectionStringArgs]] = None,
                           content_share_force_disabled: Optional[bool] = None,
                           daily_memory_time_quota: Optional[int] = None,
                           enabled: Optional[bool] = None,
                           ftp_publish_basic_authentication_enabled: Optional[bool] = None,
                           functions_extension_version: Optional[str] = None,
                           https_only: Optional[bool] = None,
                           identity: Optional[WindowsFunctionAppIdentityArgs] = None,
                           app_settings: Optional[Mapping[str, str]] = None,
                           client_certificate_enabled: Optional[bool] = None,
                           public_network_access_enabled: Optional[bool] = None,
                           builtin_logging_enabled: Optional[bool] = None,
                           backup: Optional[WindowsFunctionAppBackupArgs] = None,
                           auth_settings_v2: Optional[WindowsFunctionAppAuthSettingsV2Args] = None,
                           auth_settings: Optional[WindowsFunctionAppAuthSettingsArgs] = None,
                           sticky_settings: Optional[WindowsFunctionAppStickySettingsArgs] = None,
                           storage_account_access_key: Optional[str] = None,
                           storage_account_name: Optional[str] = None,
                           storage_accounts: Optional[Sequence[WindowsFunctionAppStorageAccountArgs]] = None,
                           storage_key_vault_secret_id: Optional[str] = None,
                           storage_uses_managed_identity: Optional[bool] = None,
                           tags: Optional[Mapping[str, str]] = None,
                           virtual_network_subnet_id: Optional[str] = None,
                           vnet_image_pull_enabled: Optional[bool] = None,
                           webdeploy_publish_basic_authentication_enabled: Optional[bool] = None,
                           name: Optional[str] = None)
    func NewWindowsFunctionApp(ctx *Context, name string, args WindowsFunctionAppArgs, opts ...ResourceOption) (*WindowsFunctionApp, error)
    public WindowsFunctionApp(string name, WindowsFunctionAppArgs args, CustomResourceOptions? opts = null)
    public WindowsFunctionApp(String name, WindowsFunctionAppArgs args)
    public WindowsFunctionApp(String name, WindowsFunctionAppArgs args, CustomResourceOptions options)
    
    type: azure:appservice:WindowsFunctionApp
    properties: # The arguments to resource properties.
    options: # Bag of options to control resource's behavior.
    
    

    Parameters

    name string
    The unique name of the resource.
    args WindowsFunctionAppArgs
    The arguments to resource properties.
    opts CustomResourceOptions
    Bag of options to control resource's behavior.
    resource_name str
    The unique name of the resource.
    args WindowsFunctionAppArgs
    The arguments to resource properties.
    opts ResourceOptions
    Bag of options to control resource's behavior.
    ctx Context
    Context object for the current deployment.
    name string
    The unique name of the resource.
    args WindowsFunctionAppArgs
    The arguments to resource properties.
    opts ResourceOption
    Bag of options to control resource's behavior.
    name string
    The unique name of the resource.
    args WindowsFunctionAppArgs
    The arguments to resource properties.
    opts CustomResourceOptions
    Bag of options to control resource's behavior.
    name String
    The unique name of the resource.
    args WindowsFunctionAppArgs
    The arguments to resource properties.
    options CustomResourceOptions
    Bag of options to control resource's behavior.

    Constructor example

    The following reference example uses placeholder values for all input properties.

    var windowsFunctionAppResource = new Azure.AppService.WindowsFunctionApp("windowsFunctionAppResource", new()
    {
        ResourceGroupName = "string",
        SiteConfig = new Azure.AppService.Inputs.WindowsFunctionAppSiteConfigArgs
        {
            AlwaysOn = false,
            ApiDefinitionUrl = "string",
            ApiManagementApiId = "string",
            AppCommandLine = "string",
            AppScaleLimit = 0,
            AppServiceLogs = new Azure.AppService.Inputs.WindowsFunctionAppSiteConfigAppServiceLogsArgs
            {
                DiskQuotaMb = 0,
                RetentionPeriodDays = 0,
            },
            ApplicationInsightsConnectionString = "string",
            ApplicationInsightsKey = "string",
            ApplicationStack = new Azure.AppService.Inputs.WindowsFunctionAppSiteConfigApplicationStackArgs
            {
                DotnetVersion = "string",
                JavaVersion = "string",
                NodeVersion = "string",
                PowershellCoreVersion = "string",
                UseCustomRuntime = false,
                UseDotnetIsolatedRuntime = false,
            },
            Cors = new Azure.AppService.Inputs.WindowsFunctionAppSiteConfigCorsArgs
            {
                AllowedOrigins = new[]
                {
                    "string",
                },
                SupportCredentials = false,
            },
            DefaultDocuments = new[]
            {
                "string",
            },
            DetailedErrorLoggingEnabled = false,
            ElasticInstanceMinimum = 0,
            FtpsState = "string",
            HealthCheckEvictionTimeInMin = 0,
            HealthCheckPath = "string",
            Http2Enabled = false,
            IpRestrictionDefaultAction = "string",
            IpRestrictions = new[]
            {
                new Azure.AppService.Inputs.WindowsFunctionAppSiteConfigIpRestrictionArgs
                {
                    Action = "string",
                    Description = "string",
                    Headers = new Azure.AppService.Inputs.WindowsFunctionAppSiteConfigIpRestrictionHeadersArgs
                    {
                        XAzureFdids = new[]
                        {
                            "string",
                        },
                        XFdHealthProbe = "string",
                        XForwardedFors = new[]
                        {
                            "string",
                        },
                        XForwardedHosts = new[]
                        {
                            "string",
                        },
                    },
                    IpAddress = "string",
                    Name = "string",
                    Priority = 0,
                    ServiceTag = "string",
                    VirtualNetworkSubnetId = "string",
                },
            },
            LoadBalancingMode = "string",
            ManagedPipelineMode = "string",
            MinimumTlsVersion = "string",
            PreWarmedInstanceCount = 0,
            RemoteDebuggingEnabled = false,
            RemoteDebuggingVersion = "string",
            RuntimeScaleMonitoringEnabled = false,
            ScmIpRestrictionDefaultAction = "string",
            ScmIpRestrictions = new[]
            {
                new Azure.AppService.Inputs.WindowsFunctionAppSiteConfigScmIpRestrictionArgs
                {
                    Action = "string",
                    Description = "string",
                    Headers = new Azure.AppService.Inputs.WindowsFunctionAppSiteConfigScmIpRestrictionHeadersArgs
                    {
                        XAzureFdids = new[]
                        {
                            "string",
                        },
                        XFdHealthProbe = "string",
                        XForwardedFors = new[]
                        {
                            "string",
                        },
                        XForwardedHosts = new[]
                        {
                            "string",
                        },
                    },
                    IpAddress = "string",
                    Name = "string",
                    Priority = 0,
                    ServiceTag = "string",
                    VirtualNetworkSubnetId = "string",
                },
            },
            ScmMinimumTlsVersion = "string",
            ScmType = "string",
            ScmUseMainIpRestriction = false,
            Use32BitWorker = false,
            VnetRouteAllEnabled = false,
            WebsocketsEnabled = false,
            WindowsFxVersion = "string",
            WorkerCount = 0,
        },
        ServicePlanId = "string",
        KeyVaultReferenceIdentityId = "string",
        ZipDeployFile = "string",
        Location = "string",
        ClientCertificateExclusionPaths = "string",
        ClientCertificateMode = "string",
        ConnectionStrings = new[]
        {
            new Azure.AppService.Inputs.WindowsFunctionAppConnectionStringArgs
            {
                Name = "string",
                Type = "string",
                Value = "string",
            },
        },
        ContentShareForceDisabled = false,
        DailyMemoryTimeQuota = 0,
        Enabled = false,
        FtpPublishBasicAuthenticationEnabled = false,
        FunctionsExtensionVersion = "string",
        HttpsOnly = false,
        Identity = new Azure.AppService.Inputs.WindowsFunctionAppIdentityArgs
        {
            Type = "string",
            IdentityIds = new[]
            {
                "string",
            },
            PrincipalId = "string",
            TenantId = "string",
        },
        AppSettings = 
        {
            { "string", "string" },
        },
        ClientCertificateEnabled = false,
        PublicNetworkAccessEnabled = false,
        BuiltinLoggingEnabled = false,
        Backup = new Azure.AppService.Inputs.WindowsFunctionAppBackupArgs
        {
            Name = "string",
            Schedule = new Azure.AppService.Inputs.WindowsFunctionAppBackupScheduleArgs
            {
                FrequencyInterval = 0,
                FrequencyUnit = "string",
                KeepAtLeastOneBackup = false,
                LastExecutionTime = "string",
                RetentionPeriodDays = 0,
                StartTime = "string",
            },
            StorageAccountUrl = "string",
            Enabled = false,
        },
        AuthSettingsV2 = new Azure.AppService.Inputs.WindowsFunctionAppAuthSettingsV2Args
        {
            Login = new Azure.AppService.Inputs.WindowsFunctionAppAuthSettingsV2LoginArgs
            {
                AllowedExternalRedirectUrls = new[]
                {
                    "string",
                },
                CookieExpirationConvention = "string",
                CookieExpirationTime = "string",
                LogoutEndpoint = "string",
                NonceExpirationTime = "string",
                PreserveUrlFragmentsForLogins = false,
                TokenRefreshExtensionTime = 0,
                TokenStoreEnabled = false,
                TokenStorePath = "string",
                TokenStoreSasSettingName = "string",
                ValidateNonce = false,
            },
            CustomOidcV2s = new[]
            {
                new Azure.AppService.Inputs.WindowsFunctionAppAuthSettingsV2CustomOidcV2Args
                {
                    ClientId = "string",
                    Name = "string",
                    OpenidConfigurationEndpoint = "string",
                    AuthorisationEndpoint = "string",
                    CertificationUri = "string",
                    ClientCredentialMethod = "string",
                    ClientSecretSettingName = "string",
                    IssuerEndpoint = "string",
                    NameClaimType = "string",
                    Scopes = new[]
                    {
                        "string",
                    },
                    TokenEndpoint = "string",
                },
            },
            ActiveDirectoryV2 = new Azure.AppService.Inputs.WindowsFunctionAppAuthSettingsV2ActiveDirectoryV2Args
            {
                ClientId = "string",
                TenantAuthEndpoint = "string",
                AllowedApplications = new[]
                {
                    "string",
                },
                AllowedAudiences = new[]
                {
                    "string",
                },
                AllowedGroups = new[]
                {
                    "string",
                },
                AllowedIdentities = new[]
                {
                    "string",
                },
                ClientSecretCertificateThumbprint = "string",
                ClientSecretSettingName = "string",
                JwtAllowedClientApplications = new[]
                {
                    "string",
                },
                JwtAllowedGroups = new[]
                {
                    "string",
                },
                LoginParameters = 
                {
                    { "string", "string" },
                },
                WwwAuthenticationDisabled = false,
            },
            ForwardProxyCustomSchemeHeaderName = "string",
            GoogleV2 = new Azure.AppService.Inputs.WindowsFunctionAppAuthSettingsV2GoogleV2Args
            {
                ClientId = "string",
                ClientSecretSettingName = "string",
                AllowedAudiences = new[]
                {
                    "string",
                },
                LoginScopes = new[]
                {
                    "string",
                },
            },
            GithubV2 = new Azure.AppService.Inputs.WindowsFunctionAppAuthSettingsV2GithubV2Args
            {
                ClientId = "string",
                ClientSecretSettingName = "string",
                LoginScopes = new[]
                {
                    "string",
                },
            },
            DefaultProvider = "string",
            ExcludedPaths = new[]
            {
                "string",
            },
            FacebookV2 = new Azure.AppService.Inputs.WindowsFunctionAppAuthSettingsV2FacebookV2Args
            {
                AppId = "string",
                AppSecretSettingName = "string",
                GraphApiVersion = "string",
                LoginScopes = new[]
                {
                    "string",
                },
            },
            ForwardProxyConvention = "string",
            ForwardProxyCustomHostHeaderName = "string",
            AzureStaticWebAppV2 = new Azure.AppService.Inputs.WindowsFunctionAppAuthSettingsV2AzureStaticWebAppV2Args
            {
                ClientId = "string",
            },
            AuthEnabled = false,
            ConfigFilePath = "string",
            HttpRouteApiPrefix = "string",
            AppleV2 = new Azure.AppService.Inputs.WindowsFunctionAppAuthSettingsV2AppleV2Args
            {
                ClientId = "string",
                ClientSecretSettingName = "string",
                LoginScopes = new[]
                {
                    "string",
                },
            },
            MicrosoftV2 = new Azure.AppService.Inputs.WindowsFunctionAppAuthSettingsV2MicrosoftV2Args
            {
                ClientId = "string",
                ClientSecretSettingName = "string",
                AllowedAudiences = new[]
                {
                    "string",
                },
                LoginScopes = new[]
                {
                    "string",
                },
            },
            RequireAuthentication = false,
            RequireHttps = false,
            RuntimeVersion = "string",
            TwitterV2 = new Azure.AppService.Inputs.WindowsFunctionAppAuthSettingsV2TwitterV2Args
            {
                ConsumerKey = "string",
                ConsumerSecretSettingName = "string",
            },
            UnauthenticatedAction = "string",
        },
        AuthSettings = new Azure.AppService.Inputs.WindowsFunctionAppAuthSettingsArgs
        {
            Enabled = false,
            Github = new Azure.AppService.Inputs.WindowsFunctionAppAuthSettingsGithubArgs
            {
                ClientId = "string",
                ClientSecret = "string",
                ClientSecretSettingName = "string",
                OauthScopes = new[]
                {
                    "string",
                },
            },
            Issuer = "string",
            DefaultProvider = "string",
            AdditionalLoginParameters = 
            {
                { "string", "string" },
            },
            Facebook = new Azure.AppService.Inputs.WindowsFunctionAppAuthSettingsFacebookArgs
            {
                AppId = "string",
                AppSecret = "string",
                AppSecretSettingName = "string",
                OauthScopes = new[]
                {
                    "string",
                },
            },
            ActiveDirectory = new Azure.AppService.Inputs.WindowsFunctionAppAuthSettingsActiveDirectoryArgs
            {
                ClientId = "string",
                AllowedAudiences = new[]
                {
                    "string",
                },
                ClientSecret = "string",
                ClientSecretSettingName = "string",
            },
            Google = new Azure.AppService.Inputs.WindowsFunctionAppAuthSettingsGoogleArgs
            {
                ClientId = "string",
                ClientSecret = "string",
                ClientSecretSettingName = "string",
                OauthScopes = new[]
                {
                    "string",
                },
            },
            AllowedExternalRedirectUrls = new[]
            {
                "string",
            },
            Microsoft = new Azure.AppService.Inputs.WindowsFunctionAppAuthSettingsMicrosoftArgs
            {
                ClientId = "string",
                ClientSecret = "string",
                ClientSecretSettingName = "string",
                OauthScopes = new[]
                {
                    "string",
                },
            },
            RuntimeVersion = "string",
            TokenRefreshExtensionHours = 0,
            TokenStoreEnabled = false,
            Twitter = new Azure.AppService.Inputs.WindowsFunctionAppAuthSettingsTwitterArgs
            {
                ConsumerKey = "string",
                ConsumerSecret = "string",
                ConsumerSecretSettingName = "string",
            },
            UnauthenticatedClientAction = "string",
        },
        StickySettings = new Azure.AppService.Inputs.WindowsFunctionAppStickySettingsArgs
        {
            AppSettingNames = new[]
            {
                "string",
            },
            ConnectionStringNames = new[]
            {
                "string",
            },
        },
        StorageAccountAccessKey = "string",
        StorageAccountName = "string",
        StorageAccounts = new[]
        {
            new Azure.AppService.Inputs.WindowsFunctionAppStorageAccountArgs
            {
                AccessKey = "string",
                AccountName = "string",
                Name = "string",
                ShareName = "string",
                Type = "string",
                MountPath = "string",
            },
        },
        StorageKeyVaultSecretId = "string",
        StorageUsesManagedIdentity = false,
        Tags = 
        {
            { "string", "string" },
        },
        VirtualNetworkSubnetId = "string",
        VnetImagePullEnabled = false,
        WebdeployPublishBasicAuthenticationEnabled = false,
        Name = "string",
    });
    
    example, err := appservice.NewWindowsFunctionApp(ctx, "windowsFunctionAppResource", &appservice.WindowsFunctionAppArgs{
    	ResourceGroupName: pulumi.String("string"),
    	SiteConfig: &appservice.WindowsFunctionAppSiteConfigArgs{
    		AlwaysOn:           pulumi.Bool(false),
    		ApiDefinitionUrl:   pulumi.String("string"),
    		ApiManagementApiId: pulumi.String("string"),
    		AppCommandLine:     pulumi.String("string"),
    		AppScaleLimit:      pulumi.Int(0),
    		AppServiceLogs: &appservice.WindowsFunctionAppSiteConfigAppServiceLogsArgs{
    			DiskQuotaMb:         pulumi.Int(0),
    			RetentionPeriodDays: pulumi.Int(0),
    		},
    		ApplicationInsightsConnectionString: pulumi.String("string"),
    		ApplicationInsightsKey:              pulumi.String("string"),
    		ApplicationStack: &appservice.WindowsFunctionAppSiteConfigApplicationStackArgs{
    			DotnetVersion:            pulumi.String("string"),
    			JavaVersion:              pulumi.String("string"),
    			NodeVersion:              pulumi.String("string"),
    			PowershellCoreVersion:    pulumi.String("string"),
    			UseCustomRuntime:         pulumi.Bool(false),
    			UseDotnetIsolatedRuntime: pulumi.Bool(false),
    		},
    		Cors: &appservice.WindowsFunctionAppSiteConfigCorsArgs{
    			AllowedOrigins: pulumi.StringArray{
    				pulumi.String("string"),
    			},
    			SupportCredentials: pulumi.Bool(false),
    		},
    		DefaultDocuments: pulumi.StringArray{
    			pulumi.String("string"),
    		},
    		DetailedErrorLoggingEnabled:  pulumi.Bool(false),
    		ElasticInstanceMinimum:       pulumi.Int(0),
    		FtpsState:                    pulumi.String("string"),
    		HealthCheckEvictionTimeInMin: pulumi.Int(0),
    		HealthCheckPath:              pulumi.String("string"),
    		Http2Enabled:                 pulumi.Bool(false),
    		IpRestrictionDefaultAction:   pulumi.String("string"),
    		IpRestrictions: appservice.WindowsFunctionAppSiteConfigIpRestrictionArray{
    			&appservice.WindowsFunctionAppSiteConfigIpRestrictionArgs{
    				Action:      pulumi.String("string"),
    				Description: pulumi.String("string"),
    				Headers: &appservice.WindowsFunctionAppSiteConfigIpRestrictionHeadersArgs{
    					XAzureFdids: pulumi.StringArray{
    						pulumi.String("string"),
    					},
    					XFdHealthProbe: pulumi.String("string"),
    					XForwardedFors: pulumi.StringArray{
    						pulumi.String("string"),
    					},
    					XForwardedHosts: pulumi.StringArray{
    						pulumi.String("string"),
    					},
    				},
    				IpAddress:              pulumi.String("string"),
    				Name:                   pulumi.String("string"),
    				Priority:               pulumi.Int(0),
    				ServiceTag:             pulumi.String("string"),
    				VirtualNetworkSubnetId: pulumi.String("string"),
    			},
    		},
    		LoadBalancingMode:             pulumi.String("string"),
    		ManagedPipelineMode:           pulumi.String("string"),
    		MinimumTlsVersion:             pulumi.String("string"),
    		PreWarmedInstanceCount:        pulumi.Int(0),
    		RemoteDebuggingEnabled:        pulumi.Bool(false),
    		RemoteDebuggingVersion:        pulumi.String("string"),
    		RuntimeScaleMonitoringEnabled: pulumi.Bool(false),
    		ScmIpRestrictionDefaultAction: pulumi.String("string"),
    		ScmIpRestrictions: appservice.WindowsFunctionAppSiteConfigScmIpRestrictionArray{
    			&appservice.WindowsFunctionAppSiteConfigScmIpRestrictionArgs{
    				Action:      pulumi.String("string"),
    				Description: pulumi.String("string"),
    				Headers: &appservice.WindowsFunctionAppSiteConfigScmIpRestrictionHeadersArgs{
    					XAzureFdids: pulumi.StringArray{
    						pulumi.String("string"),
    					},
    					XFdHealthProbe: pulumi.String("string"),
    					XForwardedFors: pulumi.StringArray{
    						pulumi.String("string"),
    					},
    					XForwardedHosts: pulumi.StringArray{
    						pulumi.String("string"),
    					},
    				},
    				IpAddress:              pulumi.String("string"),
    				Name:                   pulumi.String("string"),
    				Priority:               pulumi.Int(0),
    				ServiceTag:             pulumi.String("string"),
    				VirtualNetworkSubnetId: pulumi.String("string"),
    			},
    		},
    		ScmMinimumTlsVersion:    pulumi.String("string"),
    		ScmType:                 pulumi.String("string"),
    		ScmUseMainIpRestriction: pulumi.Bool(false),
    		Use32BitWorker:          pulumi.Bool(false),
    		VnetRouteAllEnabled:     pulumi.Bool(false),
    		WebsocketsEnabled:       pulumi.Bool(false),
    		WindowsFxVersion:        pulumi.String("string"),
    		WorkerCount:             pulumi.Int(0),
    	},
    	ServicePlanId:                   pulumi.String("string"),
    	KeyVaultReferenceIdentityId:     pulumi.String("string"),
    	ZipDeployFile:                   pulumi.String("string"),
    	Location:                        pulumi.String("string"),
    	ClientCertificateExclusionPaths: pulumi.String("string"),
    	ClientCertificateMode:           pulumi.String("string"),
    	ConnectionStrings: appservice.WindowsFunctionAppConnectionStringArray{
    		&appservice.WindowsFunctionAppConnectionStringArgs{
    			Name:  pulumi.String("string"),
    			Type:  pulumi.String("string"),
    			Value: pulumi.String("string"),
    		},
    	},
    	ContentShareForceDisabled:            pulumi.Bool(false),
    	DailyMemoryTimeQuota:                 pulumi.Int(0),
    	Enabled:                              pulumi.Bool(false),
    	FtpPublishBasicAuthenticationEnabled: pulumi.Bool(false),
    	FunctionsExtensionVersion:            pulumi.String("string"),
    	HttpsOnly:                            pulumi.Bool(false),
    	Identity: &appservice.WindowsFunctionAppIdentityArgs{
    		Type: pulumi.String("string"),
    		IdentityIds: pulumi.StringArray{
    			pulumi.String("string"),
    		},
    		PrincipalId: pulumi.String("string"),
    		TenantId:    pulumi.String("string"),
    	},
    	AppSettings: pulumi.StringMap{
    		"string": pulumi.String("string"),
    	},
    	ClientCertificateEnabled:   pulumi.Bool(false),
    	PublicNetworkAccessEnabled: pulumi.Bool(false),
    	BuiltinLoggingEnabled:      pulumi.Bool(false),
    	Backup: &appservice.WindowsFunctionAppBackupArgs{
    		Name: pulumi.String("string"),
    		Schedule: &appservice.WindowsFunctionAppBackupScheduleArgs{
    			FrequencyInterval:    pulumi.Int(0),
    			FrequencyUnit:        pulumi.String("string"),
    			KeepAtLeastOneBackup: pulumi.Bool(false),
    			LastExecutionTime:    pulumi.String("string"),
    			RetentionPeriodDays:  pulumi.Int(0),
    			StartTime:            pulumi.String("string"),
    		},
    		StorageAccountUrl: pulumi.String("string"),
    		Enabled:           pulumi.Bool(false),
    	},
    	AuthSettingsV2: &appservice.WindowsFunctionAppAuthSettingsV2Args{
    		Login: &appservice.WindowsFunctionAppAuthSettingsV2LoginArgs{
    			AllowedExternalRedirectUrls: pulumi.StringArray{
    				pulumi.String("string"),
    			},
    			CookieExpirationConvention:    pulumi.String("string"),
    			CookieExpirationTime:          pulumi.String("string"),
    			LogoutEndpoint:                pulumi.String("string"),
    			NonceExpirationTime:           pulumi.String("string"),
    			PreserveUrlFragmentsForLogins: pulumi.Bool(false),
    			TokenRefreshExtensionTime:     pulumi.Float64(0),
    			TokenStoreEnabled:             pulumi.Bool(false),
    			TokenStorePath:                pulumi.String("string"),
    			TokenStoreSasSettingName:      pulumi.String("string"),
    			ValidateNonce:                 pulumi.Bool(false),
    		},
    		CustomOidcV2s: appservice.WindowsFunctionAppAuthSettingsV2CustomOidcV2Array{
    			&appservice.WindowsFunctionAppAuthSettingsV2CustomOidcV2Args{
    				ClientId:                    pulumi.String("string"),
    				Name:                        pulumi.String("string"),
    				OpenidConfigurationEndpoint: pulumi.String("string"),
    				AuthorisationEndpoint:       pulumi.String("string"),
    				CertificationUri:            pulumi.String("string"),
    				ClientCredentialMethod:      pulumi.String("string"),
    				ClientSecretSettingName:     pulumi.String("string"),
    				IssuerEndpoint:              pulumi.String("string"),
    				NameClaimType:               pulumi.String("string"),
    				Scopes: pulumi.StringArray{
    					pulumi.String("string"),
    				},
    				TokenEndpoint: pulumi.String("string"),
    			},
    		},
    		ActiveDirectoryV2: &appservice.WindowsFunctionAppAuthSettingsV2ActiveDirectoryV2Args{
    			ClientId:           pulumi.String("string"),
    			TenantAuthEndpoint: pulumi.String("string"),
    			AllowedApplications: pulumi.StringArray{
    				pulumi.String("string"),
    			},
    			AllowedAudiences: pulumi.StringArray{
    				pulumi.String("string"),
    			},
    			AllowedGroups: pulumi.StringArray{
    				pulumi.String("string"),
    			},
    			AllowedIdentities: pulumi.StringArray{
    				pulumi.String("string"),
    			},
    			ClientSecretCertificateThumbprint: pulumi.String("string"),
    			ClientSecretSettingName:           pulumi.String("string"),
    			JwtAllowedClientApplications: pulumi.StringArray{
    				pulumi.String("string"),
    			},
    			JwtAllowedGroups: pulumi.StringArray{
    				pulumi.String("string"),
    			},
    			LoginParameters: pulumi.StringMap{
    				"string": pulumi.String("string"),
    			},
    			WwwAuthenticationDisabled: pulumi.Bool(false),
    		},
    		ForwardProxyCustomSchemeHeaderName: pulumi.String("string"),
    		GoogleV2: &appservice.WindowsFunctionAppAuthSettingsV2GoogleV2Args{
    			ClientId:                pulumi.String("string"),
    			ClientSecretSettingName: pulumi.String("string"),
    			AllowedAudiences: pulumi.StringArray{
    				pulumi.String("string"),
    			},
    			LoginScopes: pulumi.StringArray{
    				pulumi.String("string"),
    			},
    		},
    		GithubV2: &appservice.WindowsFunctionAppAuthSettingsV2GithubV2Args{
    			ClientId:                pulumi.String("string"),
    			ClientSecretSettingName: pulumi.String("string"),
    			LoginScopes: pulumi.StringArray{
    				pulumi.String("string"),
    			},
    		},
    		DefaultProvider: pulumi.String("string"),
    		ExcludedPaths: pulumi.StringArray{
    			pulumi.String("string"),
    		},
    		FacebookV2: &appservice.WindowsFunctionAppAuthSettingsV2FacebookV2Args{
    			AppId:                pulumi.String("string"),
    			AppSecretSettingName: pulumi.String("string"),
    			GraphApiVersion:      pulumi.String("string"),
    			LoginScopes: pulumi.StringArray{
    				pulumi.String("string"),
    			},
    		},
    		ForwardProxyConvention:           pulumi.String("string"),
    		ForwardProxyCustomHostHeaderName: pulumi.String("string"),
    		AzureStaticWebAppV2: &appservice.WindowsFunctionAppAuthSettingsV2AzureStaticWebAppV2Args{
    			ClientId: pulumi.String("string"),
    		},
    		AuthEnabled:        pulumi.Bool(false),
    		ConfigFilePath:     pulumi.String("string"),
    		HttpRouteApiPrefix: pulumi.String("string"),
    		AppleV2: &appservice.WindowsFunctionAppAuthSettingsV2AppleV2Args{
    			ClientId:                pulumi.String("string"),
    			ClientSecretSettingName: pulumi.String("string"),
    			LoginScopes: pulumi.StringArray{
    				pulumi.String("string"),
    			},
    		},
    		MicrosoftV2: &appservice.WindowsFunctionAppAuthSettingsV2MicrosoftV2Args{
    			ClientId:                pulumi.String("string"),
    			ClientSecretSettingName: pulumi.String("string"),
    			AllowedAudiences: pulumi.StringArray{
    				pulumi.String("string"),
    			},
    			LoginScopes: pulumi.StringArray{
    				pulumi.String("string"),
    			},
    		},
    		RequireAuthentication: pulumi.Bool(false),
    		RequireHttps:          pulumi.Bool(false),
    		RuntimeVersion:        pulumi.String("string"),
    		TwitterV2: &appservice.WindowsFunctionAppAuthSettingsV2TwitterV2Args{
    			ConsumerKey:               pulumi.String("string"),
    			ConsumerSecretSettingName: pulumi.String("string"),
    		},
    		UnauthenticatedAction: pulumi.String("string"),
    	},
    	AuthSettings: &appservice.WindowsFunctionAppAuthSettingsArgs{
    		Enabled: pulumi.Bool(false),
    		Github: &appservice.WindowsFunctionAppAuthSettingsGithubArgs{
    			ClientId:                pulumi.String("string"),
    			ClientSecret:            pulumi.String("string"),
    			ClientSecretSettingName: pulumi.String("string"),
    			OauthScopes: pulumi.StringArray{
    				pulumi.String("string"),
    			},
    		},
    		Issuer:          pulumi.String("string"),
    		DefaultProvider: pulumi.String("string"),
    		AdditionalLoginParameters: pulumi.StringMap{
    			"string": pulumi.String("string"),
    		},
    		Facebook: &appservice.WindowsFunctionAppAuthSettingsFacebookArgs{
    			AppId:                pulumi.String("string"),
    			AppSecret:            pulumi.String("string"),
    			AppSecretSettingName: pulumi.String("string"),
    			OauthScopes: pulumi.StringArray{
    				pulumi.String("string"),
    			},
    		},
    		ActiveDirectory: &appservice.WindowsFunctionAppAuthSettingsActiveDirectoryArgs{
    			ClientId: pulumi.String("string"),
    			AllowedAudiences: pulumi.StringArray{
    				pulumi.String("string"),
    			},
    			ClientSecret:            pulumi.String("string"),
    			ClientSecretSettingName: pulumi.String("string"),
    		},
    		Google: &appservice.WindowsFunctionAppAuthSettingsGoogleArgs{
    			ClientId:                pulumi.String("string"),
    			ClientSecret:            pulumi.String("string"),
    			ClientSecretSettingName: pulumi.String("string"),
    			OauthScopes: pulumi.StringArray{
    				pulumi.String("string"),
    			},
    		},
    		AllowedExternalRedirectUrls: pulumi.StringArray{
    			pulumi.String("string"),
    		},
    		Microsoft: &appservice.WindowsFunctionAppAuthSettingsMicrosoftArgs{
    			ClientId:                pulumi.String("string"),
    			ClientSecret:            pulumi.String("string"),
    			ClientSecretSettingName: pulumi.String("string"),
    			OauthScopes: pulumi.StringArray{
    				pulumi.String("string"),
    			},
    		},
    		RuntimeVersion:             pulumi.String("string"),
    		TokenRefreshExtensionHours: pulumi.Float64(0),
    		TokenStoreEnabled:          pulumi.Bool(false),
    		Twitter: &appservice.WindowsFunctionAppAuthSettingsTwitterArgs{
    			ConsumerKey:               pulumi.String("string"),
    			ConsumerSecret:            pulumi.String("string"),
    			ConsumerSecretSettingName: pulumi.String("string"),
    		},
    		UnauthenticatedClientAction: pulumi.String("string"),
    	},
    	StickySettings: &appservice.WindowsFunctionAppStickySettingsArgs{
    		AppSettingNames: pulumi.StringArray{
    			pulumi.String("string"),
    		},
    		ConnectionStringNames: pulumi.StringArray{
    			pulumi.String("string"),
    		},
    	},
    	StorageAccountAccessKey: pulumi.String("string"),
    	StorageAccountName:      pulumi.String("string"),
    	StorageAccounts: appservice.WindowsFunctionAppStorageAccountArray{
    		&appservice.WindowsFunctionAppStorageAccountArgs{
    			AccessKey:   pulumi.String("string"),
    			AccountName: pulumi.String("string"),
    			Name:        pulumi.String("string"),
    			ShareName:   pulumi.String("string"),
    			Type:        pulumi.String("string"),
    			MountPath:   pulumi.String("string"),
    		},
    	},
    	StorageKeyVaultSecretId:    pulumi.String("string"),
    	StorageUsesManagedIdentity: pulumi.Bool(false),
    	Tags: pulumi.StringMap{
    		"string": pulumi.String("string"),
    	},
    	VirtualNetworkSubnetId:                     pulumi.String("string"),
    	VnetImagePullEnabled:                       pulumi.Bool(false),
    	WebdeployPublishBasicAuthenticationEnabled: pulumi.Bool(false),
    	Name: pulumi.String("string"),
    })
    
    var windowsFunctionAppResource = new WindowsFunctionApp("windowsFunctionAppResource", WindowsFunctionAppArgs.builder()
        .resourceGroupName("string")
        .siteConfig(WindowsFunctionAppSiteConfigArgs.builder()
            .alwaysOn(false)
            .apiDefinitionUrl("string")
            .apiManagementApiId("string")
            .appCommandLine("string")
            .appScaleLimit(0)
            .appServiceLogs(WindowsFunctionAppSiteConfigAppServiceLogsArgs.builder()
                .diskQuotaMb(0)
                .retentionPeriodDays(0)
                .build())
            .applicationInsightsConnectionString("string")
            .applicationInsightsKey("string")
            .applicationStack(WindowsFunctionAppSiteConfigApplicationStackArgs.builder()
                .dotnetVersion("string")
                .javaVersion("string")
                .nodeVersion("string")
                .powershellCoreVersion("string")
                .useCustomRuntime(false)
                .useDotnetIsolatedRuntime(false)
                .build())
            .cors(WindowsFunctionAppSiteConfigCorsArgs.builder()
                .allowedOrigins("string")
                .supportCredentials(false)
                .build())
            .defaultDocuments("string")
            .detailedErrorLoggingEnabled(false)
            .elasticInstanceMinimum(0)
            .ftpsState("string")
            .healthCheckEvictionTimeInMin(0)
            .healthCheckPath("string")
            .http2Enabled(false)
            .ipRestrictionDefaultAction("string")
            .ipRestrictions(WindowsFunctionAppSiteConfigIpRestrictionArgs.builder()
                .action("string")
                .description("string")
                .headers(WindowsFunctionAppSiteConfigIpRestrictionHeadersArgs.builder()
                    .xAzureFdids("string")
                    .xFdHealthProbe("string")
                    .xForwardedFors("string")
                    .xForwardedHosts("string")
                    .build())
                .ipAddress("string")
                .name("string")
                .priority(0)
                .serviceTag("string")
                .virtualNetworkSubnetId("string")
                .build())
            .loadBalancingMode("string")
            .managedPipelineMode("string")
            .minimumTlsVersion("string")
            .preWarmedInstanceCount(0)
            .remoteDebuggingEnabled(false)
            .remoteDebuggingVersion("string")
            .runtimeScaleMonitoringEnabled(false)
            .scmIpRestrictionDefaultAction("string")
            .scmIpRestrictions(WindowsFunctionAppSiteConfigScmIpRestrictionArgs.builder()
                .action("string")
                .description("string")
                .headers(WindowsFunctionAppSiteConfigScmIpRestrictionHeadersArgs.builder()
                    .xAzureFdids("string")
                    .xFdHealthProbe("string")
                    .xForwardedFors("string")
                    .xForwardedHosts("string")
                    .build())
                .ipAddress("string")
                .name("string")
                .priority(0)
                .serviceTag("string")
                .virtualNetworkSubnetId("string")
                .build())
            .scmMinimumTlsVersion("string")
            .scmType("string")
            .scmUseMainIpRestriction(false)
            .use32BitWorker(false)
            .vnetRouteAllEnabled(false)
            .websocketsEnabled(false)
            .windowsFxVersion("string")
            .workerCount(0)
            .build())
        .servicePlanId("string")
        .keyVaultReferenceIdentityId("string")
        .zipDeployFile("string")
        .location("string")
        .clientCertificateExclusionPaths("string")
        .clientCertificateMode("string")
        .connectionStrings(WindowsFunctionAppConnectionStringArgs.builder()
            .name("string")
            .type("string")
            .value("string")
            .build())
        .contentShareForceDisabled(false)
        .dailyMemoryTimeQuota(0)
        .enabled(false)
        .ftpPublishBasicAuthenticationEnabled(false)
        .functionsExtensionVersion("string")
        .httpsOnly(false)
        .identity(WindowsFunctionAppIdentityArgs.builder()
            .type("string")
            .identityIds("string")
            .principalId("string")
            .tenantId("string")
            .build())
        .appSettings(Map.of("string", "string"))
        .clientCertificateEnabled(false)
        .publicNetworkAccessEnabled(false)
        .builtinLoggingEnabled(false)
        .backup(WindowsFunctionAppBackupArgs.builder()
            .name("string")
            .schedule(WindowsFunctionAppBackupScheduleArgs.builder()
                .frequencyInterval(0)
                .frequencyUnit("string")
                .keepAtLeastOneBackup(false)
                .lastExecutionTime("string")
                .retentionPeriodDays(0)
                .startTime("string")
                .build())
            .storageAccountUrl("string")
            .enabled(false)
            .build())
        .authSettingsV2(WindowsFunctionAppAuthSettingsV2Args.builder()
            .login(WindowsFunctionAppAuthSettingsV2LoginArgs.builder()
                .allowedExternalRedirectUrls("string")
                .cookieExpirationConvention("string")
                .cookieExpirationTime("string")
                .logoutEndpoint("string")
                .nonceExpirationTime("string")
                .preserveUrlFragmentsForLogins(false)
                .tokenRefreshExtensionTime(0)
                .tokenStoreEnabled(false)
                .tokenStorePath("string")
                .tokenStoreSasSettingName("string")
                .validateNonce(false)
                .build())
            .customOidcV2s(WindowsFunctionAppAuthSettingsV2CustomOidcV2Args.builder()
                .clientId("string")
                .name("string")
                .openidConfigurationEndpoint("string")
                .authorisationEndpoint("string")
                .certificationUri("string")
                .clientCredentialMethod("string")
                .clientSecretSettingName("string")
                .issuerEndpoint("string")
                .nameClaimType("string")
                .scopes("string")
                .tokenEndpoint("string")
                .build())
            .activeDirectoryV2(WindowsFunctionAppAuthSettingsV2ActiveDirectoryV2Args.builder()
                .clientId("string")
                .tenantAuthEndpoint("string")
                .allowedApplications("string")
                .allowedAudiences("string")
                .allowedGroups("string")
                .allowedIdentities("string")
                .clientSecretCertificateThumbprint("string")
                .clientSecretSettingName("string")
                .jwtAllowedClientApplications("string")
                .jwtAllowedGroups("string")
                .loginParameters(Map.of("string", "string"))
                .wwwAuthenticationDisabled(false)
                .build())
            .forwardProxyCustomSchemeHeaderName("string")
            .googleV2(WindowsFunctionAppAuthSettingsV2GoogleV2Args.builder()
                .clientId("string")
                .clientSecretSettingName("string")
                .allowedAudiences("string")
                .loginScopes("string")
                .build())
            .githubV2(WindowsFunctionAppAuthSettingsV2GithubV2Args.builder()
                .clientId("string")
                .clientSecretSettingName("string")
                .loginScopes("string")
                .build())
            .defaultProvider("string")
            .excludedPaths("string")
            .facebookV2(WindowsFunctionAppAuthSettingsV2FacebookV2Args.builder()
                .appId("string")
                .appSecretSettingName("string")
                .graphApiVersion("string")
                .loginScopes("string")
                .build())
            .forwardProxyConvention("string")
            .forwardProxyCustomHostHeaderName("string")
            .azureStaticWebAppV2(WindowsFunctionAppAuthSettingsV2AzureStaticWebAppV2Args.builder()
                .clientId("string")
                .build())
            .authEnabled(false)
            .configFilePath("string")
            .httpRouteApiPrefix("string")
            .appleV2(WindowsFunctionAppAuthSettingsV2AppleV2Args.builder()
                .clientId("string")
                .clientSecretSettingName("string")
                .loginScopes("string")
                .build())
            .microsoftV2(WindowsFunctionAppAuthSettingsV2MicrosoftV2Args.builder()
                .clientId("string")
                .clientSecretSettingName("string")
                .allowedAudiences("string")
                .loginScopes("string")
                .build())
            .requireAuthentication(false)
            .requireHttps(false)
            .runtimeVersion("string")
            .twitterV2(WindowsFunctionAppAuthSettingsV2TwitterV2Args.builder()
                .consumerKey("string")
                .consumerSecretSettingName("string")
                .build())
            .unauthenticatedAction("string")
            .build())
        .authSettings(WindowsFunctionAppAuthSettingsArgs.builder()
            .enabled(false)
            .github(WindowsFunctionAppAuthSettingsGithubArgs.builder()
                .clientId("string")
                .clientSecret("string")
                .clientSecretSettingName("string")
                .oauthScopes("string")
                .build())
            .issuer("string")
            .defaultProvider("string")
            .additionalLoginParameters(Map.of("string", "string"))
            .facebook(WindowsFunctionAppAuthSettingsFacebookArgs.builder()
                .appId("string")
                .appSecret("string")
                .appSecretSettingName("string")
                .oauthScopes("string")
                .build())
            .activeDirectory(WindowsFunctionAppAuthSettingsActiveDirectoryArgs.builder()
                .clientId("string")
                .allowedAudiences("string")
                .clientSecret("string")
                .clientSecretSettingName("string")
                .build())
            .google(WindowsFunctionAppAuthSettingsGoogleArgs.builder()
                .clientId("string")
                .clientSecret("string")
                .clientSecretSettingName("string")
                .oauthScopes("string")
                .build())
            .allowedExternalRedirectUrls("string")
            .microsoft(WindowsFunctionAppAuthSettingsMicrosoftArgs.builder()
                .clientId("string")
                .clientSecret("string")
                .clientSecretSettingName("string")
                .oauthScopes("string")
                .build())
            .runtimeVersion("string")
            .tokenRefreshExtensionHours(0)
            .tokenStoreEnabled(false)
            .twitter(WindowsFunctionAppAuthSettingsTwitterArgs.builder()
                .consumerKey("string")
                .consumerSecret("string")
                .consumerSecretSettingName("string")
                .build())
            .unauthenticatedClientAction("string")
            .build())
        .stickySettings(WindowsFunctionAppStickySettingsArgs.builder()
            .appSettingNames("string")
            .connectionStringNames("string")
            .build())
        .storageAccountAccessKey("string")
        .storageAccountName("string")
        .storageAccounts(WindowsFunctionAppStorageAccountArgs.builder()
            .accessKey("string")
            .accountName("string")
            .name("string")
            .shareName("string")
            .type("string")
            .mountPath("string")
            .build())
        .storageKeyVaultSecretId("string")
        .storageUsesManagedIdentity(false)
        .tags(Map.of("string", "string"))
        .virtualNetworkSubnetId("string")
        .vnetImagePullEnabled(false)
        .webdeployPublishBasicAuthenticationEnabled(false)
        .name("string")
        .build());
    
    windows_function_app_resource = azure.appservice.WindowsFunctionApp("windowsFunctionAppResource",
        resource_group_name="string",
        site_config={
            "always_on": False,
            "api_definition_url": "string",
            "api_management_api_id": "string",
            "app_command_line": "string",
            "app_scale_limit": 0,
            "app_service_logs": {
                "disk_quota_mb": 0,
                "retention_period_days": 0,
            },
            "application_insights_connection_string": "string",
            "application_insights_key": "string",
            "application_stack": {
                "dotnet_version": "string",
                "java_version": "string",
                "node_version": "string",
                "powershell_core_version": "string",
                "use_custom_runtime": False,
                "use_dotnet_isolated_runtime": False,
            },
            "cors": {
                "allowed_origins": ["string"],
                "support_credentials": False,
            },
            "default_documents": ["string"],
            "detailed_error_logging_enabled": False,
            "elastic_instance_minimum": 0,
            "ftps_state": "string",
            "health_check_eviction_time_in_min": 0,
            "health_check_path": "string",
            "http2_enabled": False,
            "ip_restriction_default_action": "string",
            "ip_restrictions": [{
                "action": "string",
                "description": "string",
                "headers": {
                    "x_azure_fdids": ["string"],
                    "x_fd_health_probe": "string",
                    "x_forwarded_fors": ["string"],
                    "x_forwarded_hosts": ["string"],
                },
                "ip_address": "string",
                "name": "string",
                "priority": 0,
                "service_tag": "string",
                "virtual_network_subnet_id": "string",
            }],
            "load_balancing_mode": "string",
            "managed_pipeline_mode": "string",
            "minimum_tls_version": "string",
            "pre_warmed_instance_count": 0,
            "remote_debugging_enabled": False,
            "remote_debugging_version": "string",
            "runtime_scale_monitoring_enabled": False,
            "scm_ip_restriction_default_action": "string",
            "scm_ip_restrictions": [{
                "action": "string",
                "description": "string",
                "headers": {
                    "x_azure_fdids": ["string"],
                    "x_fd_health_probe": "string",
                    "x_forwarded_fors": ["string"],
                    "x_forwarded_hosts": ["string"],
                },
                "ip_address": "string",
                "name": "string",
                "priority": 0,
                "service_tag": "string",
                "virtual_network_subnet_id": "string",
            }],
            "scm_minimum_tls_version": "string",
            "scm_type": "string",
            "scm_use_main_ip_restriction": False,
            "use32_bit_worker": False,
            "vnet_route_all_enabled": False,
            "websockets_enabled": False,
            "windows_fx_version": "string",
            "worker_count": 0,
        },
        service_plan_id="string",
        key_vault_reference_identity_id="string",
        zip_deploy_file="string",
        location="string",
        client_certificate_exclusion_paths="string",
        client_certificate_mode="string",
        connection_strings=[{
            "name": "string",
            "type": "string",
            "value": "string",
        }],
        content_share_force_disabled=False,
        daily_memory_time_quota=0,
        enabled=False,
        ftp_publish_basic_authentication_enabled=False,
        functions_extension_version="string",
        https_only=False,
        identity={
            "type": "string",
            "identity_ids": ["string"],
            "principal_id": "string",
            "tenant_id": "string",
        },
        app_settings={
            "string": "string",
        },
        client_certificate_enabled=False,
        public_network_access_enabled=False,
        builtin_logging_enabled=False,
        backup={
            "name": "string",
            "schedule": {
                "frequency_interval": 0,
                "frequency_unit": "string",
                "keep_at_least_one_backup": False,
                "last_execution_time": "string",
                "retention_period_days": 0,
                "start_time": "string",
            },
            "storage_account_url": "string",
            "enabled": False,
        },
        auth_settings_v2={
            "login": {
                "allowed_external_redirect_urls": ["string"],
                "cookie_expiration_convention": "string",
                "cookie_expiration_time": "string",
                "logout_endpoint": "string",
                "nonce_expiration_time": "string",
                "preserve_url_fragments_for_logins": False,
                "token_refresh_extension_time": 0,
                "token_store_enabled": False,
                "token_store_path": "string",
                "token_store_sas_setting_name": "string",
                "validate_nonce": False,
            },
            "custom_oidc_v2s": [{
                "client_id": "string",
                "name": "string",
                "openid_configuration_endpoint": "string",
                "authorisation_endpoint": "string",
                "certification_uri": "string",
                "client_credential_method": "string",
                "client_secret_setting_name": "string",
                "issuer_endpoint": "string",
                "name_claim_type": "string",
                "scopes": ["string"],
                "token_endpoint": "string",
            }],
            "active_directory_v2": {
                "client_id": "string",
                "tenant_auth_endpoint": "string",
                "allowed_applications": ["string"],
                "allowed_audiences": ["string"],
                "allowed_groups": ["string"],
                "allowed_identities": ["string"],
                "client_secret_certificate_thumbprint": "string",
                "client_secret_setting_name": "string",
                "jwt_allowed_client_applications": ["string"],
                "jwt_allowed_groups": ["string"],
                "login_parameters": {
                    "string": "string",
                },
                "www_authentication_disabled": False,
            },
            "forward_proxy_custom_scheme_header_name": "string",
            "google_v2": {
                "client_id": "string",
                "client_secret_setting_name": "string",
                "allowed_audiences": ["string"],
                "login_scopes": ["string"],
            },
            "github_v2": {
                "client_id": "string",
                "client_secret_setting_name": "string",
                "login_scopes": ["string"],
            },
            "default_provider": "string",
            "excluded_paths": ["string"],
            "facebook_v2": {
                "app_id": "string",
                "app_secret_setting_name": "string",
                "graph_api_version": "string",
                "login_scopes": ["string"],
            },
            "forward_proxy_convention": "string",
            "forward_proxy_custom_host_header_name": "string",
            "azure_static_web_app_v2": {
                "client_id": "string",
            },
            "auth_enabled": False,
            "config_file_path": "string",
            "http_route_api_prefix": "string",
            "apple_v2": {
                "client_id": "string",
                "client_secret_setting_name": "string",
                "login_scopes": ["string"],
            },
            "microsoft_v2": {
                "client_id": "string",
                "client_secret_setting_name": "string",
                "allowed_audiences": ["string"],
                "login_scopes": ["string"],
            },
            "require_authentication": False,
            "require_https": False,
            "runtime_version": "string",
            "twitter_v2": {
                "consumer_key": "string",
                "consumer_secret_setting_name": "string",
            },
            "unauthenticated_action": "string",
        },
        auth_settings={
            "enabled": False,
            "github": {
                "client_id": "string",
                "client_secret": "string",
                "client_secret_setting_name": "string",
                "oauth_scopes": ["string"],
            },
            "issuer": "string",
            "default_provider": "string",
            "additional_login_parameters": {
                "string": "string",
            },
            "facebook": {
                "app_id": "string",
                "app_secret": "string",
                "app_secret_setting_name": "string",
                "oauth_scopes": ["string"],
            },
            "active_directory": {
                "client_id": "string",
                "allowed_audiences": ["string"],
                "client_secret": "string",
                "client_secret_setting_name": "string",
            },
            "google": {
                "client_id": "string",
                "client_secret": "string",
                "client_secret_setting_name": "string",
                "oauth_scopes": ["string"],
            },
            "allowed_external_redirect_urls": ["string"],
            "microsoft": {
                "client_id": "string",
                "client_secret": "string",
                "client_secret_setting_name": "string",
                "oauth_scopes": ["string"],
            },
            "runtime_version": "string",
            "token_refresh_extension_hours": 0,
            "token_store_enabled": False,
            "twitter": {
                "consumer_key": "string",
                "consumer_secret": "string",
                "consumer_secret_setting_name": "string",
            },
            "unauthenticated_client_action": "string",
        },
        sticky_settings={
            "app_setting_names": ["string"],
            "connection_string_names": ["string"],
        },
        storage_account_access_key="string",
        storage_account_name="string",
        storage_accounts=[{
            "access_key": "string",
            "account_name": "string",
            "name": "string",
            "share_name": "string",
            "type": "string",
            "mount_path": "string",
        }],
        storage_key_vault_secret_id="string",
        storage_uses_managed_identity=False,
        tags={
            "string": "string",
        },
        virtual_network_subnet_id="string",
        vnet_image_pull_enabled=False,
        webdeploy_publish_basic_authentication_enabled=False,
        name="string")
    
    const windowsFunctionAppResource = new azure.appservice.WindowsFunctionApp("windowsFunctionAppResource", {
        resourceGroupName: "string",
        siteConfig: {
            alwaysOn: false,
            apiDefinitionUrl: "string",
            apiManagementApiId: "string",
            appCommandLine: "string",
            appScaleLimit: 0,
            appServiceLogs: {
                diskQuotaMb: 0,
                retentionPeriodDays: 0,
            },
            applicationInsightsConnectionString: "string",
            applicationInsightsKey: "string",
            applicationStack: {
                dotnetVersion: "string",
                javaVersion: "string",
                nodeVersion: "string",
                powershellCoreVersion: "string",
                useCustomRuntime: false,
                useDotnetIsolatedRuntime: false,
            },
            cors: {
                allowedOrigins: ["string"],
                supportCredentials: false,
            },
            defaultDocuments: ["string"],
            detailedErrorLoggingEnabled: false,
            elasticInstanceMinimum: 0,
            ftpsState: "string",
            healthCheckEvictionTimeInMin: 0,
            healthCheckPath: "string",
            http2Enabled: false,
            ipRestrictionDefaultAction: "string",
            ipRestrictions: [{
                action: "string",
                description: "string",
                headers: {
                    xAzureFdids: ["string"],
                    xFdHealthProbe: "string",
                    xForwardedFors: ["string"],
                    xForwardedHosts: ["string"],
                },
                ipAddress: "string",
                name: "string",
                priority: 0,
                serviceTag: "string",
                virtualNetworkSubnetId: "string",
            }],
            loadBalancingMode: "string",
            managedPipelineMode: "string",
            minimumTlsVersion: "string",
            preWarmedInstanceCount: 0,
            remoteDebuggingEnabled: false,
            remoteDebuggingVersion: "string",
            runtimeScaleMonitoringEnabled: false,
            scmIpRestrictionDefaultAction: "string",
            scmIpRestrictions: [{
                action: "string",
                description: "string",
                headers: {
                    xAzureFdids: ["string"],
                    xFdHealthProbe: "string",
                    xForwardedFors: ["string"],
                    xForwardedHosts: ["string"],
                },
                ipAddress: "string",
                name: "string",
                priority: 0,
                serviceTag: "string",
                virtualNetworkSubnetId: "string",
            }],
            scmMinimumTlsVersion: "string",
            scmType: "string",
            scmUseMainIpRestriction: false,
            use32BitWorker: false,
            vnetRouteAllEnabled: false,
            websocketsEnabled: false,
            windowsFxVersion: "string",
            workerCount: 0,
        },
        servicePlanId: "string",
        keyVaultReferenceIdentityId: "string",
        zipDeployFile: "string",
        location: "string",
        clientCertificateExclusionPaths: "string",
        clientCertificateMode: "string",
        connectionStrings: [{
            name: "string",
            type: "string",
            value: "string",
        }],
        contentShareForceDisabled: false,
        dailyMemoryTimeQuota: 0,
        enabled: false,
        ftpPublishBasicAuthenticationEnabled: false,
        functionsExtensionVersion: "string",
        httpsOnly: false,
        identity: {
            type: "string",
            identityIds: ["string"],
            principalId: "string",
            tenantId: "string",
        },
        appSettings: {
            string: "string",
        },
        clientCertificateEnabled: false,
        publicNetworkAccessEnabled: false,
        builtinLoggingEnabled: false,
        backup: {
            name: "string",
            schedule: {
                frequencyInterval: 0,
                frequencyUnit: "string",
                keepAtLeastOneBackup: false,
                lastExecutionTime: "string",
                retentionPeriodDays: 0,
                startTime: "string",
            },
            storageAccountUrl: "string",
            enabled: false,
        },
        authSettingsV2: {
            login: {
                allowedExternalRedirectUrls: ["string"],
                cookieExpirationConvention: "string",
                cookieExpirationTime: "string",
                logoutEndpoint: "string",
                nonceExpirationTime: "string",
                preserveUrlFragmentsForLogins: false,
                tokenRefreshExtensionTime: 0,
                tokenStoreEnabled: false,
                tokenStorePath: "string",
                tokenStoreSasSettingName: "string",
                validateNonce: false,
            },
            customOidcV2s: [{
                clientId: "string",
                name: "string",
                openidConfigurationEndpoint: "string",
                authorisationEndpoint: "string",
                certificationUri: "string",
                clientCredentialMethod: "string",
                clientSecretSettingName: "string",
                issuerEndpoint: "string",
                nameClaimType: "string",
                scopes: ["string"],
                tokenEndpoint: "string",
            }],
            activeDirectoryV2: {
                clientId: "string",
                tenantAuthEndpoint: "string",
                allowedApplications: ["string"],
                allowedAudiences: ["string"],
                allowedGroups: ["string"],
                allowedIdentities: ["string"],
                clientSecretCertificateThumbprint: "string",
                clientSecretSettingName: "string",
                jwtAllowedClientApplications: ["string"],
                jwtAllowedGroups: ["string"],
                loginParameters: {
                    string: "string",
                },
                wwwAuthenticationDisabled: false,
            },
            forwardProxyCustomSchemeHeaderName: "string",
            googleV2: {
                clientId: "string",
                clientSecretSettingName: "string",
                allowedAudiences: ["string"],
                loginScopes: ["string"],
            },
            githubV2: {
                clientId: "string",
                clientSecretSettingName: "string",
                loginScopes: ["string"],
            },
            defaultProvider: "string",
            excludedPaths: ["string"],
            facebookV2: {
                appId: "string",
                appSecretSettingName: "string",
                graphApiVersion: "string",
                loginScopes: ["string"],
            },
            forwardProxyConvention: "string",
            forwardProxyCustomHostHeaderName: "string",
            azureStaticWebAppV2: {
                clientId: "string",
            },
            authEnabled: false,
            configFilePath: "string",
            httpRouteApiPrefix: "string",
            appleV2: {
                clientId: "string",
                clientSecretSettingName: "string",
                loginScopes: ["string"],
            },
            microsoftV2: {
                clientId: "string",
                clientSecretSettingName: "string",
                allowedAudiences: ["string"],
                loginScopes: ["string"],
            },
            requireAuthentication: false,
            requireHttps: false,
            runtimeVersion: "string",
            twitterV2: {
                consumerKey: "string",
                consumerSecretSettingName: "string",
            },
            unauthenticatedAction: "string",
        },
        authSettings: {
            enabled: false,
            github: {
                clientId: "string",
                clientSecret: "string",
                clientSecretSettingName: "string",
                oauthScopes: ["string"],
            },
            issuer: "string",
            defaultProvider: "string",
            additionalLoginParameters: {
                string: "string",
            },
            facebook: {
                appId: "string",
                appSecret: "string",
                appSecretSettingName: "string",
                oauthScopes: ["string"],
            },
            activeDirectory: {
                clientId: "string",
                allowedAudiences: ["string"],
                clientSecret: "string",
                clientSecretSettingName: "string",
            },
            google: {
                clientId: "string",
                clientSecret: "string",
                clientSecretSettingName: "string",
                oauthScopes: ["string"],
            },
            allowedExternalRedirectUrls: ["string"],
            microsoft: {
                clientId: "string",
                clientSecret: "string",
                clientSecretSettingName: "string",
                oauthScopes: ["string"],
            },
            runtimeVersion: "string",
            tokenRefreshExtensionHours: 0,
            tokenStoreEnabled: false,
            twitter: {
                consumerKey: "string",
                consumerSecret: "string",
                consumerSecretSettingName: "string",
            },
            unauthenticatedClientAction: "string",
        },
        stickySettings: {
            appSettingNames: ["string"],
            connectionStringNames: ["string"],
        },
        storageAccountAccessKey: "string",
        storageAccountName: "string",
        storageAccounts: [{
            accessKey: "string",
            accountName: "string",
            name: "string",
            shareName: "string",
            type: "string",
            mountPath: "string",
        }],
        storageKeyVaultSecretId: "string",
        storageUsesManagedIdentity: false,
        tags: {
            string: "string",
        },
        virtualNetworkSubnetId: "string",
        vnetImagePullEnabled: false,
        webdeployPublishBasicAuthenticationEnabled: false,
        name: "string",
    });
    
    type: azure:appservice:WindowsFunctionApp
    properties:
        appSettings:
            string: string
        authSettings:
            activeDirectory:
                allowedAudiences:
                    - string
                clientId: string
                clientSecret: string
                clientSecretSettingName: string
            additionalLoginParameters:
                string: string
            allowedExternalRedirectUrls:
                - string
            defaultProvider: string
            enabled: false
            facebook:
                appId: string
                appSecret: string
                appSecretSettingName: string
                oauthScopes:
                    - string
            github:
                clientId: string
                clientSecret: string
                clientSecretSettingName: string
                oauthScopes:
                    - string
            google:
                clientId: string
                clientSecret: string
                clientSecretSettingName: string
                oauthScopes:
                    - string
            issuer: string
            microsoft:
                clientId: string
                clientSecret: string
                clientSecretSettingName: string
                oauthScopes:
                    - string
            runtimeVersion: string
            tokenRefreshExtensionHours: 0
            tokenStoreEnabled: false
            twitter:
                consumerKey: string
                consumerSecret: string
                consumerSecretSettingName: string
            unauthenticatedClientAction: string
        authSettingsV2:
            activeDirectoryV2:
                allowedApplications:
                    - string
                allowedAudiences:
                    - string
                allowedGroups:
                    - string
                allowedIdentities:
                    - string
                clientId: string
                clientSecretCertificateThumbprint: string
                clientSecretSettingName: string
                jwtAllowedClientApplications:
                    - string
                jwtAllowedGroups:
                    - string
                loginParameters:
                    string: string
                tenantAuthEndpoint: string
                wwwAuthenticationDisabled: false
            appleV2:
                clientId: string
                clientSecretSettingName: string
                loginScopes:
                    - string
            authEnabled: false
            azureStaticWebAppV2:
                clientId: string
            configFilePath: string
            customOidcV2s:
                - authorisationEndpoint: string
                  certificationUri: string
                  clientCredentialMethod: string
                  clientId: string
                  clientSecretSettingName: string
                  issuerEndpoint: string
                  name: string
                  nameClaimType: string
                  openidConfigurationEndpoint: string
                  scopes:
                    - string
                  tokenEndpoint: string
            defaultProvider: string
            excludedPaths:
                - string
            facebookV2:
                appId: string
                appSecretSettingName: string
                graphApiVersion: string
                loginScopes:
                    - string
            forwardProxyConvention: string
            forwardProxyCustomHostHeaderName: string
            forwardProxyCustomSchemeHeaderName: string
            githubV2:
                clientId: string
                clientSecretSettingName: string
                loginScopes:
                    - string
            googleV2:
                allowedAudiences:
                    - string
                clientId: string
                clientSecretSettingName: string
                loginScopes:
                    - string
            httpRouteApiPrefix: string
            login:
                allowedExternalRedirectUrls:
                    - string
                cookieExpirationConvention: string
                cookieExpirationTime: string
                logoutEndpoint: string
                nonceExpirationTime: string
                preserveUrlFragmentsForLogins: false
                tokenRefreshExtensionTime: 0
                tokenStoreEnabled: false
                tokenStorePath: string
                tokenStoreSasSettingName: string
                validateNonce: false
            microsoftV2:
                allowedAudiences:
                    - string
                clientId: string
                clientSecretSettingName: string
                loginScopes:
                    - string
            requireAuthentication: false
            requireHttps: false
            runtimeVersion: string
            twitterV2:
                consumerKey: string
                consumerSecretSettingName: string
            unauthenticatedAction: string
        backup:
            enabled: false
            name: string
            schedule:
                frequencyInterval: 0
                frequencyUnit: string
                keepAtLeastOneBackup: false
                lastExecutionTime: string
                retentionPeriodDays: 0
                startTime: string
            storageAccountUrl: string
        builtinLoggingEnabled: false
        clientCertificateEnabled: false
        clientCertificateExclusionPaths: string
        clientCertificateMode: string
        connectionStrings:
            - name: string
              type: string
              value: string
        contentShareForceDisabled: false
        dailyMemoryTimeQuota: 0
        enabled: false
        ftpPublishBasicAuthenticationEnabled: false
        functionsExtensionVersion: string
        httpsOnly: false
        identity:
            identityIds:
                - string
            principalId: string
            tenantId: string
            type: string
        keyVaultReferenceIdentityId: string
        location: string
        name: string
        publicNetworkAccessEnabled: false
        resourceGroupName: string
        servicePlanId: string
        siteConfig:
            alwaysOn: false
            apiDefinitionUrl: string
            apiManagementApiId: string
            appCommandLine: string
            appScaleLimit: 0
            appServiceLogs:
                diskQuotaMb: 0
                retentionPeriodDays: 0
            applicationInsightsConnectionString: string
            applicationInsightsKey: string
            applicationStack:
                dotnetVersion: string
                javaVersion: string
                nodeVersion: string
                powershellCoreVersion: string
                useCustomRuntime: false
                useDotnetIsolatedRuntime: false
            cors:
                allowedOrigins:
                    - string
                supportCredentials: false
            defaultDocuments:
                - string
            detailedErrorLoggingEnabled: false
            elasticInstanceMinimum: 0
            ftpsState: string
            healthCheckEvictionTimeInMin: 0
            healthCheckPath: string
            http2Enabled: false
            ipRestrictionDefaultAction: string
            ipRestrictions:
                - action: string
                  description: string
                  headers:
                    xAzureFdids:
                        - string
                    xFdHealthProbe: string
                    xForwardedFors:
                        - string
                    xForwardedHosts:
                        - string
                  ipAddress: string
                  name: string
                  priority: 0
                  serviceTag: string
                  virtualNetworkSubnetId: string
            loadBalancingMode: string
            managedPipelineMode: string
            minimumTlsVersion: string
            preWarmedInstanceCount: 0
            remoteDebuggingEnabled: false
            remoteDebuggingVersion: string
            runtimeScaleMonitoringEnabled: false
            scmIpRestrictionDefaultAction: string
            scmIpRestrictions:
                - action: string
                  description: string
                  headers:
                    xAzureFdids:
                        - string
                    xFdHealthProbe: string
                    xForwardedFors:
                        - string
                    xForwardedHosts:
                        - string
                  ipAddress: string
                  name: string
                  priority: 0
                  serviceTag: string
                  virtualNetworkSubnetId: string
            scmMinimumTlsVersion: string
            scmType: string
            scmUseMainIpRestriction: false
            use32BitWorker: false
            vnetRouteAllEnabled: false
            websocketsEnabled: false
            windowsFxVersion: string
            workerCount: 0
        stickySettings:
            appSettingNames:
                - string
            connectionStringNames:
                - string
        storageAccountAccessKey: string
        storageAccountName: string
        storageAccounts:
            - accessKey: string
              accountName: string
              mountPath: string
              name: string
              shareName: string
              type: string
        storageKeyVaultSecretId: string
        storageUsesManagedIdentity: false
        tags:
            string: string
        virtualNetworkSubnetId: string
        vnetImagePullEnabled: false
        webdeployPublishBasicAuthenticationEnabled: false
        zipDeployFile: string
    

    WindowsFunctionApp Resource Properties

    To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

    Inputs

    In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.

    The WindowsFunctionApp resource accepts the following input properties:

    ResourceGroupName string
    The name of the Resource Group where the Windows Function App should exist. Changing this forces a new Windows Function App to be created.
    ServicePlanId string
    The ID of the App Service Plan within which to create this Function App.
    SiteConfig WindowsFunctionAppSiteConfig
    A site_config block as defined below.
    AppSettings Dictionary<string, string>
    A map of key-value pairs for App Settings and custom values.
    AuthSettings WindowsFunctionAppAuthSettings
    A auth_settings block as defined below.
    AuthSettingsV2 WindowsFunctionAppAuthSettingsV2
    A auth_settings_v2 block as defined below.
    Backup WindowsFunctionAppBackup
    A backup block as defined below.
    BuiltinLoggingEnabled bool
    Should built in logging be enabled. Configures AzureWebJobsDashboard app setting based on the configured storage setting. Defaults to true.
    ClientCertificateEnabled bool
    Should the function app use Client Certificates.
    ClientCertificateExclusionPaths string
    Paths to exclude when using client certificates, separated by ;
    ClientCertificateMode string
    The mode of the Function App's client certificates requirement for incoming requests. Possible values are Required, Optional, and OptionalInteractiveUser. Defaults to Optional.
    ConnectionStrings List<WindowsFunctionAppConnectionString>
    One or more connection_string blocks as defined below.
    ContentShareForceDisabled bool
    Should Content Share Settings be disabled. Defaults to false.
    DailyMemoryTimeQuota int
    The amount of memory in gigabyte-seconds that your application is allowed to consume per day. Setting this value only affects function apps under the consumption plan. Defaults to 0.
    Enabled bool
    Is the Function App enabled? Defaults to true.
    FtpPublishBasicAuthenticationEnabled bool
    Should the default FTP Basic Authentication publishing profile be enabled. Defaults to true.
    FunctionsExtensionVersion string
    The runtime version associated with the Function App. Defaults to ~4.
    HttpsOnly bool
    Can the Function App only be accessed via HTTPS?. Defaults to false.
    Identity WindowsFunctionAppIdentity
    A identity block as defined below.
    KeyVaultReferenceIdentityId string
    The User Assigned Identity ID used for accessing KeyVault secrets. The identity must be assigned to the application in the identity block. For more information see - Access vaults with a user-assigned identity
    Location string
    The Azure Region where the Windows Function App should exist. Changing this forces a new Windows Function App to be created.
    Name string
    The name which should be used for this Windows Function App. Changing this forces a new Windows Function App to be created. Limit the function name to 32 characters to avoid naming collisions. For more information about Function App naming rule and Host ID Collisions
    PublicNetworkAccessEnabled bool
    Should public network access be enabled for the Function App. Defaults to true.
    StickySettings WindowsFunctionAppStickySettings
    A sticky_settings block as defined below.
    StorageAccountAccessKey string
    The access key which will be used to access the backend storage account for the Function App. Conflicts with storage_uses_managed_identity.
    StorageAccountName string
    The backend storage account name which will be used by this Function App.
    StorageAccounts List<WindowsFunctionAppStorageAccount>
    One or more storage_account blocks as defined below.
    StorageKeyVaultSecretId string

    The Key Vault Secret ID, optionally including version, that contains the Connection String to connect to the storage account for this Function App.

    NOTE: storage_key_vault_secret_id cannot be used with storage_account_name.

    NOTE: storage_key_vault_secret_id used without a version will use the latest version of the secret, however, the service can take up to 24h to pick up a rotation of the latest version. See the official docs for more information.

    StorageUsesManagedIdentity bool

    Should the Function App use Managed Identity to access the storage account. Conflicts with storage_account_access_key.

    NOTE: One of storage_account_access_key or storage_uses_managed_identity must be specified when using storage_account_name.

    Tags Dictionary<string, string>
    A mapping of tags which should be assigned to the Windows Function App.
    VirtualNetworkSubnetId string
    VnetImagePullEnabled bool
    Is container image pull over virtual network enabled? Defaults to false.
    WebdeployPublishBasicAuthenticationEnabled bool

    Should the default WebDeploy Basic Authentication publishing credentials enabled. Defaults to true.

    NOTE: Setting this value to true will disable the ability to use zip_deploy_file which currently relies on the default publishing profile.

    ZipDeployFile string

    The local path and filename of the Zip packaged application to deploy to this Windows Function App.

    Note: Using this value requires WEBSITE_RUN_FROM_PACKAGE=1 to be set on the App in app_settings. Refer to the Azure docs for further details.

    ResourceGroupName string
    The name of the Resource Group where the Windows Function App should exist. Changing this forces a new Windows Function App to be created.
    ServicePlanId string
    The ID of the App Service Plan within which to create this Function App.
    SiteConfig WindowsFunctionAppSiteConfigArgs
    A site_config block as defined below.
    AppSettings map[string]string
    A map of key-value pairs for App Settings and custom values.
    AuthSettings WindowsFunctionAppAuthSettingsArgs
    A auth_settings block as defined below.
    AuthSettingsV2 WindowsFunctionAppAuthSettingsV2Args
    A auth_settings_v2 block as defined below.
    Backup WindowsFunctionAppBackupArgs
    A backup block as defined below.
    BuiltinLoggingEnabled bool
    Should built in logging be enabled. Configures AzureWebJobsDashboard app setting based on the configured storage setting. Defaults to true.
    ClientCertificateEnabled bool
    Should the function app use Client Certificates.
    ClientCertificateExclusionPaths string
    Paths to exclude when using client certificates, separated by ;
    ClientCertificateMode string
    The mode of the Function App's client certificates requirement for incoming requests. Possible values are Required, Optional, and OptionalInteractiveUser. Defaults to Optional.
    ConnectionStrings []WindowsFunctionAppConnectionStringArgs
    One or more connection_string blocks as defined below.
    ContentShareForceDisabled bool
    Should Content Share Settings be disabled. Defaults to false.
    DailyMemoryTimeQuota int
    The amount of memory in gigabyte-seconds that your application is allowed to consume per day. Setting this value only affects function apps under the consumption plan. Defaults to 0.
    Enabled bool
    Is the Function App enabled? Defaults to true.
    FtpPublishBasicAuthenticationEnabled bool
    Should the default FTP Basic Authentication publishing profile be enabled. Defaults to true.
    FunctionsExtensionVersion string
    The runtime version associated with the Function App. Defaults to ~4.
    HttpsOnly bool
    Can the Function App only be accessed via HTTPS?. Defaults to false.
    Identity WindowsFunctionAppIdentityArgs
    A identity block as defined below.
    KeyVaultReferenceIdentityId string
    The User Assigned Identity ID used for accessing KeyVault secrets. The identity must be assigned to the application in the identity block. For more information see - Access vaults with a user-assigned identity
    Location string
    The Azure Region where the Windows Function App should exist. Changing this forces a new Windows Function App to be created.
    Name string
    The name which should be used for this Windows Function App. Changing this forces a new Windows Function App to be created. Limit the function name to 32 characters to avoid naming collisions. For more information about Function App naming rule and Host ID Collisions
    PublicNetworkAccessEnabled bool
    Should public network access be enabled for the Function App. Defaults to true.
    StickySettings WindowsFunctionAppStickySettingsArgs
    A sticky_settings block as defined below.
    StorageAccountAccessKey string
    The access key which will be used to access the backend storage account for the Function App. Conflicts with storage_uses_managed_identity.
    StorageAccountName string
    The backend storage account name which will be used by this Function App.
    StorageAccounts []WindowsFunctionAppStorageAccountArgs
    One or more storage_account blocks as defined below.
    StorageKeyVaultSecretId string

    The Key Vault Secret ID, optionally including version, that contains the Connection String to connect to the storage account for this Function App.

    NOTE: storage_key_vault_secret_id cannot be used with storage_account_name.

    NOTE: storage_key_vault_secret_id used without a version will use the latest version of the secret, however, the service can take up to 24h to pick up a rotation of the latest version. See the official docs for more information.

    StorageUsesManagedIdentity bool

    Should the Function App use Managed Identity to access the storage account. Conflicts with storage_account_access_key.

    NOTE: One of storage_account_access_key or storage_uses_managed_identity must be specified when using storage_account_name.

    Tags map[string]string
    A mapping of tags which should be assigned to the Windows Function App.
    VirtualNetworkSubnetId string
    VnetImagePullEnabled bool
    Is container image pull over virtual network enabled? Defaults to false.
    WebdeployPublishBasicAuthenticationEnabled bool

    Should the default WebDeploy Basic Authentication publishing credentials enabled. Defaults to true.

    NOTE: Setting this value to true will disable the ability to use zip_deploy_file which currently relies on the default publishing profile.

    ZipDeployFile string

    The local path and filename of the Zip packaged application to deploy to this Windows Function App.

    Note: Using this value requires WEBSITE_RUN_FROM_PACKAGE=1 to be set on the App in app_settings. Refer to the Azure docs for further details.

    resourceGroupName String
    The name of the Resource Group where the Windows Function App should exist. Changing this forces a new Windows Function App to be created.
    servicePlanId String
    The ID of the App Service Plan within which to create this Function App.
    siteConfig WindowsFunctionAppSiteConfig
    A site_config block as defined below.
    appSettings Map<String,String>
    A map of key-value pairs for App Settings and custom values.
    authSettings WindowsFunctionAppAuthSettings
    A auth_settings block as defined below.
    authSettingsV2 WindowsFunctionAppAuthSettingsV2
    A auth_settings_v2 block as defined below.
    backup WindowsFunctionAppBackup
    A backup block as defined below.
    builtinLoggingEnabled Boolean
    Should built in logging be enabled. Configures AzureWebJobsDashboard app setting based on the configured storage setting. Defaults to true.
    clientCertificateEnabled Boolean
    Should the function app use Client Certificates.
    clientCertificateExclusionPaths String
    Paths to exclude when using client certificates, separated by ;
    clientCertificateMode String
    The mode of the Function App's client certificates requirement for incoming requests. Possible values are Required, Optional, and OptionalInteractiveUser. Defaults to Optional.
    connectionStrings List<WindowsFunctionAppConnectionString>
    One or more connection_string blocks as defined below.
    contentShareForceDisabled Boolean
    Should Content Share Settings be disabled. Defaults to false.
    dailyMemoryTimeQuota Integer
    The amount of memory in gigabyte-seconds that your application is allowed to consume per day. Setting this value only affects function apps under the consumption plan. Defaults to 0.
    enabled Boolean
    Is the Function App enabled? Defaults to true.
    ftpPublishBasicAuthenticationEnabled Boolean
    Should the default FTP Basic Authentication publishing profile be enabled. Defaults to true.
    functionsExtensionVersion String
    The runtime version associated with the Function App. Defaults to ~4.
    httpsOnly Boolean
    Can the Function App only be accessed via HTTPS?. Defaults to false.
    identity WindowsFunctionAppIdentity
    A identity block as defined below.
    keyVaultReferenceIdentityId String
    The User Assigned Identity ID used for accessing KeyVault secrets. The identity must be assigned to the application in the identity block. For more information see - Access vaults with a user-assigned identity
    location String
    The Azure Region where the Windows Function App should exist. Changing this forces a new Windows Function App to be created.
    name String
    The name which should be used for this Windows Function App. Changing this forces a new Windows Function App to be created. Limit the function name to 32 characters to avoid naming collisions. For more information about Function App naming rule and Host ID Collisions
    publicNetworkAccessEnabled Boolean
    Should public network access be enabled for the Function App. Defaults to true.
    stickySettings WindowsFunctionAppStickySettings
    A sticky_settings block as defined below.
    storageAccountAccessKey String
    The access key which will be used to access the backend storage account for the Function App. Conflicts with storage_uses_managed_identity.
    storageAccountName String
    The backend storage account name which will be used by this Function App.
    storageAccounts List<WindowsFunctionAppStorageAccount>
    One or more storage_account blocks as defined below.
    storageKeyVaultSecretId String

    The Key Vault Secret ID, optionally including version, that contains the Connection String to connect to the storage account for this Function App.

    NOTE: storage_key_vault_secret_id cannot be used with storage_account_name.

    NOTE: storage_key_vault_secret_id used without a version will use the latest version of the secret, however, the service can take up to 24h to pick up a rotation of the latest version. See the official docs for more information.

    storageUsesManagedIdentity Boolean

    Should the Function App use Managed Identity to access the storage account. Conflicts with storage_account_access_key.

    NOTE: One of storage_account_access_key or storage_uses_managed_identity must be specified when using storage_account_name.

    tags Map<String,String>
    A mapping of tags which should be assigned to the Windows Function App.
    virtualNetworkSubnetId String
    vnetImagePullEnabled Boolean
    Is container image pull over virtual network enabled? Defaults to false.
    webdeployPublishBasicAuthenticationEnabled Boolean

    Should the default WebDeploy Basic Authentication publishing credentials enabled. Defaults to true.

    NOTE: Setting this value to true will disable the ability to use zip_deploy_file which currently relies on the default publishing profile.

    zipDeployFile String

    The local path and filename of the Zip packaged application to deploy to this Windows Function App.

    Note: Using this value requires WEBSITE_RUN_FROM_PACKAGE=1 to be set on the App in app_settings. Refer to the Azure docs for further details.

    resourceGroupName string
    The name of the Resource Group where the Windows Function App should exist. Changing this forces a new Windows Function App to be created.
    servicePlanId string
    The ID of the App Service Plan within which to create this Function App.
    siteConfig WindowsFunctionAppSiteConfig
    A site_config block as defined below.
    appSettings {[key: string]: string}
    A map of key-value pairs for App Settings and custom values.
    authSettings WindowsFunctionAppAuthSettings
    A auth_settings block as defined below.
    authSettingsV2 WindowsFunctionAppAuthSettingsV2
    A auth_settings_v2 block as defined below.
    backup WindowsFunctionAppBackup
    A backup block as defined below.
    builtinLoggingEnabled boolean
    Should built in logging be enabled. Configures AzureWebJobsDashboard app setting based on the configured storage setting. Defaults to true.
    clientCertificateEnabled boolean
    Should the function app use Client Certificates.
    clientCertificateExclusionPaths string
    Paths to exclude when using client certificates, separated by ;
    clientCertificateMode string
    The mode of the Function App's client certificates requirement for incoming requests. Possible values are Required, Optional, and OptionalInteractiveUser. Defaults to Optional.
    connectionStrings WindowsFunctionAppConnectionString[]
    One or more connection_string blocks as defined below.
    contentShareForceDisabled boolean
    Should Content Share Settings be disabled. Defaults to false.
    dailyMemoryTimeQuota number
    The amount of memory in gigabyte-seconds that your application is allowed to consume per day. Setting this value only affects function apps under the consumption plan. Defaults to 0.
    enabled boolean
    Is the Function App enabled? Defaults to true.
    ftpPublishBasicAuthenticationEnabled boolean
    Should the default FTP Basic Authentication publishing profile be enabled. Defaults to true.
    functionsExtensionVersion string
    The runtime version associated with the Function App. Defaults to ~4.
    httpsOnly boolean
    Can the Function App only be accessed via HTTPS?. Defaults to false.
    identity WindowsFunctionAppIdentity
    A identity block as defined below.
    keyVaultReferenceIdentityId string
    The User Assigned Identity ID used for accessing KeyVault secrets. The identity must be assigned to the application in the identity block. For more information see - Access vaults with a user-assigned identity
    location string
    The Azure Region where the Windows Function App should exist. Changing this forces a new Windows Function App to be created.
    name string
    The name which should be used for this Windows Function App. Changing this forces a new Windows Function App to be created. Limit the function name to 32 characters to avoid naming collisions. For more information about Function App naming rule and Host ID Collisions
    publicNetworkAccessEnabled boolean
    Should public network access be enabled for the Function App. Defaults to true.
    stickySettings WindowsFunctionAppStickySettings
    A sticky_settings block as defined below.
    storageAccountAccessKey string
    The access key which will be used to access the backend storage account for the Function App. Conflicts with storage_uses_managed_identity.
    storageAccountName string
    The backend storage account name which will be used by this Function App.
    storageAccounts WindowsFunctionAppStorageAccount[]
    One or more storage_account blocks as defined below.
    storageKeyVaultSecretId string

    The Key Vault Secret ID, optionally including version, that contains the Connection String to connect to the storage account for this Function App.

    NOTE: storage_key_vault_secret_id cannot be used with storage_account_name.

    NOTE: storage_key_vault_secret_id used without a version will use the latest version of the secret, however, the service can take up to 24h to pick up a rotation of the latest version. See the official docs for more information.

    storageUsesManagedIdentity boolean

    Should the Function App use Managed Identity to access the storage account. Conflicts with storage_account_access_key.

    NOTE: One of storage_account_access_key or storage_uses_managed_identity must be specified when using storage_account_name.

    tags {[key: string]: string}
    A mapping of tags which should be assigned to the Windows Function App.
    virtualNetworkSubnetId string
    vnetImagePullEnabled boolean
    Is container image pull over virtual network enabled? Defaults to false.
    webdeployPublishBasicAuthenticationEnabled boolean

    Should the default WebDeploy Basic Authentication publishing credentials enabled. Defaults to true.

    NOTE: Setting this value to true will disable the ability to use zip_deploy_file which currently relies on the default publishing profile.

    zipDeployFile string

    The local path and filename of the Zip packaged application to deploy to this Windows Function App.

    Note: Using this value requires WEBSITE_RUN_FROM_PACKAGE=1 to be set on the App in app_settings. Refer to the Azure docs for further details.

    resource_group_name str
    The name of the Resource Group where the Windows Function App should exist. Changing this forces a new Windows Function App to be created.
    service_plan_id str
    The ID of the App Service Plan within which to create this Function App.
    site_config WindowsFunctionAppSiteConfigArgs
    A site_config block as defined below.
    app_settings Mapping[str, str]
    A map of key-value pairs for App Settings and custom values.
    auth_settings WindowsFunctionAppAuthSettingsArgs
    A auth_settings block as defined below.
    auth_settings_v2 WindowsFunctionAppAuthSettingsV2Args
    A auth_settings_v2 block as defined below.
    backup WindowsFunctionAppBackupArgs
    A backup block as defined below.
    builtin_logging_enabled bool
    Should built in logging be enabled. Configures AzureWebJobsDashboard app setting based on the configured storage setting. Defaults to true.
    client_certificate_enabled bool
    Should the function app use Client Certificates.
    client_certificate_exclusion_paths str
    Paths to exclude when using client certificates, separated by ;
    client_certificate_mode str
    The mode of the Function App's client certificates requirement for incoming requests. Possible values are Required, Optional, and OptionalInteractiveUser. Defaults to Optional.
    connection_strings Sequence[WindowsFunctionAppConnectionStringArgs]
    One or more connection_string blocks as defined below.
    content_share_force_disabled bool
    Should Content Share Settings be disabled. Defaults to false.
    daily_memory_time_quota int
    The amount of memory in gigabyte-seconds that your application is allowed to consume per day. Setting this value only affects function apps under the consumption plan. Defaults to 0.
    enabled bool
    Is the Function App enabled? Defaults to true.
    ftp_publish_basic_authentication_enabled bool
    Should the default FTP Basic Authentication publishing profile be enabled. Defaults to true.
    functions_extension_version str
    The runtime version associated with the Function App. Defaults to ~4.
    https_only bool
    Can the Function App only be accessed via HTTPS?. Defaults to false.
    identity WindowsFunctionAppIdentityArgs
    A identity block as defined below.
    key_vault_reference_identity_id str
    The User Assigned Identity ID used for accessing KeyVault secrets. The identity must be assigned to the application in the identity block. For more information see - Access vaults with a user-assigned identity
    location str
    The Azure Region where the Windows Function App should exist. Changing this forces a new Windows Function App to be created.
    name str
    The name which should be used for this Windows Function App. Changing this forces a new Windows Function App to be created. Limit the function name to 32 characters to avoid naming collisions. For more information about Function App naming rule and Host ID Collisions
    public_network_access_enabled bool
    Should public network access be enabled for the Function App. Defaults to true.
    sticky_settings WindowsFunctionAppStickySettingsArgs
    A sticky_settings block as defined below.
    storage_account_access_key str
    The access key which will be used to access the backend storage account for the Function App. Conflicts with storage_uses_managed_identity.
    storage_account_name str
    The backend storage account name which will be used by this Function App.
    storage_accounts Sequence[WindowsFunctionAppStorageAccountArgs]
    One or more storage_account blocks as defined below.
    storage_key_vault_secret_id str

    The Key Vault Secret ID, optionally including version, that contains the Connection String to connect to the storage account for this Function App.

    NOTE: storage_key_vault_secret_id cannot be used with storage_account_name.

    NOTE: storage_key_vault_secret_id used without a version will use the latest version of the secret, however, the service can take up to 24h to pick up a rotation of the latest version. See the official docs for more information.

    storage_uses_managed_identity bool

    Should the Function App use Managed Identity to access the storage account. Conflicts with storage_account_access_key.

    NOTE: One of storage_account_access_key or storage_uses_managed_identity must be specified when using storage_account_name.

    tags Mapping[str, str]
    A mapping of tags which should be assigned to the Windows Function App.
    virtual_network_subnet_id str
    vnet_image_pull_enabled bool
    Is container image pull over virtual network enabled? Defaults to false.
    webdeploy_publish_basic_authentication_enabled bool

    Should the default WebDeploy Basic Authentication publishing credentials enabled. Defaults to true.

    NOTE: Setting this value to true will disable the ability to use zip_deploy_file which currently relies on the default publishing profile.

    zip_deploy_file str

    The local path and filename of the Zip packaged application to deploy to this Windows Function App.

    Note: Using this value requires WEBSITE_RUN_FROM_PACKAGE=1 to be set on the App in app_settings. Refer to the Azure docs for further details.

    resourceGroupName String
    The name of the Resource Group where the Windows Function App should exist. Changing this forces a new Windows Function App to be created.
    servicePlanId String
    The ID of the App Service Plan within which to create this Function App.
    siteConfig Property Map
    A site_config block as defined below.
    appSettings Map<String>
    A map of key-value pairs for App Settings and custom values.
    authSettings Property Map
    A auth_settings block as defined below.
    authSettingsV2 Property Map
    A auth_settings_v2 block as defined below.
    backup Property Map
    A backup block as defined below.
    builtinLoggingEnabled Boolean
    Should built in logging be enabled. Configures AzureWebJobsDashboard app setting based on the configured storage setting. Defaults to true.
    clientCertificateEnabled Boolean
    Should the function app use Client Certificates.
    clientCertificateExclusionPaths String
    Paths to exclude when using client certificates, separated by ;
    clientCertificateMode String
    The mode of the Function App's client certificates requirement for incoming requests. Possible values are Required, Optional, and OptionalInteractiveUser. Defaults to Optional.
    connectionStrings List<Property Map>
    One or more connection_string blocks as defined below.
    contentShareForceDisabled Boolean
    Should Content Share Settings be disabled. Defaults to false.
    dailyMemoryTimeQuota Number
    The amount of memory in gigabyte-seconds that your application is allowed to consume per day. Setting this value only affects function apps under the consumption plan. Defaults to 0.
    enabled Boolean
    Is the Function App enabled? Defaults to true.
    ftpPublishBasicAuthenticationEnabled Boolean
    Should the default FTP Basic Authentication publishing profile be enabled. Defaults to true.
    functionsExtensionVersion String
    The runtime version associated with the Function App. Defaults to ~4.
    httpsOnly Boolean
    Can the Function App only be accessed via HTTPS?. Defaults to false.
    identity Property Map
    A identity block as defined below.
    keyVaultReferenceIdentityId String
    The User Assigned Identity ID used for accessing KeyVault secrets. The identity must be assigned to the application in the identity block. For more information see - Access vaults with a user-assigned identity
    location String
    The Azure Region where the Windows Function App should exist. Changing this forces a new Windows Function App to be created.
    name String
    The name which should be used for this Windows Function App. Changing this forces a new Windows Function App to be created. Limit the function name to 32 characters to avoid naming collisions. For more information about Function App naming rule and Host ID Collisions
    publicNetworkAccessEnabled Boolean
    Should public network access be enabled for the Function App. Defaults to true.
    stickySettings Property Map
    A sticky_settings block as defined below.
    storageAccountAccessKey String
    The access key which will be used to access the backend storage account for the Function App. Conflicts with storage_uses_managed_identity.
    storageAccountName String
    The backend storage account name which will be used by this Function App.
    storageAccounts List<Property Map>
    One or more storage_account blocks as defined below.
    storageKeyVaultSecretId String

    The Key Vault Secret ID, optionally including version, that contains the Connection String to connect to the storage account for this Function App.

    NOTE: storage_key_vault_secret_id cannot be used with storage_account_name.

    NOTE: storage_key_vault_secret_id used without a version will use the latest version of the secret, however, the service can take up to 24h to pick up a rotation of the latest version. See the official docs for more information.

    storageUsesManagedIdentity Boolean

    Should the Function App use Managed Identity to access the storage account. Conflicts with storage_account_access_key.

    NOTE: One of storage_account_access_key or storage_uses_managed_identity must be specified when using storage_account_name.

    tags Map<String>
    A mapping of tags which should be assigned to the Windows Function App.
    virtualNetworkSubnetId String
    vnetImagePullEnabled Boolean
    Is container image pull over virtual network enabled? Defaults to false.
    webdeployPublishBasicAuthenticationEnabled Boolean

    Should the default WebDeploy Basic Authentication publishing credentials enabled. Defaults to true.

    NOTE: Setting this value to true will disable the ability to use zip_deploy_file which currently relies on the default publishing profile.

    zipDeployFile String

    The local path and filename of the Zip packaged application to deploy to this Windows Function App.

    Note: Using this value requires WEBSITE_RUN_FROM_PACKAGE=1 to be set on the App in app_settings. Refer to the Azure docs for further details.

    Outputs

    All input properties are implicitly available as output properties. Additionally, the WindowsFunctionApp resource produces the following output properties:

    CustomDomainVerificationId string
    The identifier used by App Service to perform domain ownership verification via DNS TXT record.
    DefaultHostname string
    The default hostname of the Windows Function App.
    HostingEnvironmentId string
    The ID of the App Service Environment used by Function App.
    Id string
    The provider-assigned unique ID for this managed resource.
    Kind string
    The Kind value for this Windows Function App.
    OutboundIpAddressLists List<string>
    A list of outbound IP addresses. For example ["52.23.25.3", "52.143.43.12"]
    OutboundIpAddresses string
    A comma separated list of outbound IP addresses as a string. For example 52.23.25.3,52.143.43.12.
    PossibleOutboundIpAddressLists List<string>
    A list of possible outbound IP addresses, not all of which are necessarily in use. This is a superset of outbound_ip_address_list. For example ["52.23.25.3", "52.143.43.12"].
    PossibleOutboundIpAddresses string
    A comma separated list of possible outbound IP addresses as a string. For example 52.23.25.3,52.143.43.12,52.143.43.17. This is a superset of outbound_ip_addresses.
    SiteCredentials List<WindowsFunctionAppSiteCredential>
    A site_credential block as defined below.
    CustomDomainVerificationId string
    The identifier used by App Service to perform domain ownership verification via DNS TXT record.
    DefaultHostname string
    The default hostname of the Windows Function App.
    HostingEnvironmentId string
    The ID of the App Service Environment used by Function App.
    Id string
    The provider-assigned unique ID for this managed resource.
    Kind string
    The Kind value for this Windows Function App.
    OutboundIpAddressLists []string
    A list of outbound IP addresses. For example ["52.23.25.3", "52.143.43.12"]
    OutboundIpAddresses string
    A comma separated list of outbound IP addresses as a string. For example 52.23.25.3,52.143.43.12.
    PossibleOutboundIpAddressLists []string
    A list of possible outbound IP addresses, not all of which are necessarily in use. This is a superset of outbound_ip_address_list. For example ["52.23.25.3", "52.143.43.12"].
    PossibleOutboundIpAddresses string
    A comma separated list of possible outbound IP addresses as a string. For example 52.23.25.3,52.143.43.12,52.143.43.17. This is a superset of outbound_ip_addresses.
    SiteCredentials []WindowsFunctionAppSiteCredential
    A site_credential block as defined below.
    customDomainVerificationId String
    The identifier used by App Service to perform domain ownership verification via DNS TXT record.
    defaultHostname String
    The default hostname of the Windows Function App.
    hostingEnvironmentId String
    The ID of the App Service Environment used by Function App.
    id String
    The provider-assigned unique ID for this managed resource.
    kind String
    The Kind value for this Windows Function App.
    outboundIpAddressLists List<String>
    A list of outbound IP addresses. For example ["52.23.25.3", "52.143.43.12"]
    outboundIpAddresses String
    A comma separated list of outbound IP addresses as a string. For example 52.23.25.3,52.143.43.12.
    possibleOutboundIpAddressLists List<String>
    A list of possible outbound IP addresses, not all of which are necessarily in use. This is a superset of outbound_ip_address_list. For example ["52.23.25.3", "52.143.43.12"].
    possibleOutboundIpAddresses String
    A comma separated list of possible outbound IP addresses as a string. For example 52.23.25.3,52.143.43.12,52.143.43.17. This is a superset of outbound_ip_addresses.
    siteCredentials List<WindowsFunctionAppSiteCredential>
    A site_credential block as defined below.
    customDomainVerificationId string
    The identifier used by App Service to perform domain ownership verification via DNS TXT record.
    defaultHostname string
    The default hostname of the Windows Function App.
    hostingEnvironmentId string
    The ID of the App Service Environment used by Function App.
    id string
    The provider-assigned unique ID for this managed resource.
    kind string
    The Kind value for this Windows Function App.
    outboundIpAddressLists string[]
    A list of outbound IP addresses. For example ["52.23.25.3", "52.143.43.12"]
    outboundIpAddresses string
    A comma separated list of outbound IP addresses as a string. For example 52.23.25.3,52.143.43.12.
    possibleOutboundIpAddressLists string[]
    A list of possible outbound IP addresses, not all of which are necessarily in use. This is a superset of outbound_ip_address_list. For example ["52.23.25.3", "52.143.43.12"].
    possibleOutboundIpAddresses string
    A comma separated list of possible outbound IP addresses as a string. For example 52.23.25.3,52.143.43.12,52.143.43.17. This is a superset of outbound_ip_addresses.
    siteCredentials WindowsFunctionAppSiteCredential[]
    A site_credential block as defined below.
    custom_domain_verification_id str
    The identifier used by App Service to perform domain ownership verification via DNS TXT record.
    default_hostname str
    The default hostname of the Windows Function App.
    hosting_environment_id str
    The ID of the App Service Environment used by Function App.
    id str
    The provider-assigned unique ID for this managed resource.
    kind str
    The Kind value for this Windows Function App.
    outbound_ip_address_lists Sequence[str]
    A list of outbound IP addresses. For example ["52.23.25.3", "52.143.43.12"]
    outbound_ip_addresses str
    A comma separated list of outbound IP addresses as a string. For example 52.23.25.3,52.143.43.12.
    possible_outbound_ip_address_lists Sequence[str]
    A list of possible outbound IP addresses, not all of which are necessarily in use. This is a superset of outbound_ip_address_list. For example ["52.23.25.3", "52.143.43.12"].
    possible_outbound_ip_addresses str
    A comma separated list of possible outbound IP addresses as a string. For example 52.23.25.3,52.143.43.12,52.143.43.17. This is a superset of outbound_ip_addresses.
    site_credentials Sequence[WindowsFunctionAppSiteCredential]
    A site_credential block as defined below.
    customDomainVerificationId String
    The identifier used by App Service to perform domain ownership verification via DNS TXT record.
    defaultHostname String
    The default hostname of the Windows Function App.
    hostingEnvironmentId String
    The ID of the App Service Environment used by Function App.
    id String
    The provider-assigned unique ID for this managed resource.
    kind String
    The Kind value for this Windows Function App.
    outboundIpAddressLists List<String>
    A list of outbound IP addresses. For example ["52.23.25.3", "52.143.43.12"]
    outboundIpAddresses String
    A comma separated list of outbound IP addresses as a string. For example 52.23.25.3,52.143.43.12.
    possibleOutboundIpAddressLists List<String>
    A list of possible outbound IP addresses, not all of which are necessarily in use. This is a superset of outbound_ip_address_list. For example ["52.23.25.3", "52.143.43.12"].
    possibleOutboundIpAddresses String
    A comma separated list of possible outbound IP addresses as a string. For example 52.23.25.3,52.143.43.12,52.143.43.17. This is a superset of outbound_ip_addresses.
    siteCredentials List<Property Map>
    A site_credential block as defined below.

    Look up Existing WindowsFunctionApp Resource

    Get an existing WindowsFunctionApp resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

    public static get(name: string, id: Input<ID>, state?: WindowsFunctionAppState, opts?: CustomResourceOptions): WindowsFunctionApp
    @staticmethod
    def get(resource_name: str,
            id: str,
            opts: Optional[ResourceOptions] = None,
            app_settings: Optional[Mapping[str, str]] = None,
            auth_settings: Optional[WindowsFunctionAppAuthSettingsArgs] = None,
            auth_settings_v2: Optional[WindowsFunctionAppAuthSettingsV2Args] = None,
            backup: Optional[WindowsFunctionAppBackupArgs] = None,
            builtin_logging_enabled: Optional[bool] = None,
            client_certificate_enabled: Optional[bool] = None,
            client_certificate_exclusion_paths: Optional[str] = None,
            client_certificate_mode: Optional[str] = None,
            connection_strings: Optional[Sequence[WindowsFunctionAppConnectionStringArgs]] = None,
            content_share_force_disabled: Optional[bool] = None,
            custom_domain_verification_id: Optional[str] = None,
            daily_memory_time_quota: Optional[int] = None,
            default_hostname: Optional[str] = None,
            enabled: Optional[bool] = None,
            ftp_publish_basic_authentication_enabled: Optional[bool] = None,
            functions_extension_version: Optional[str] = None,
            hosting_environment_id: Optional[str] = None,
            https_only: Optional[bool] = None,
            identity: Optional[WindowsFunctionAppIdentityArgs] = None,
            key_vault_reference_identity_id: Optional[str] = None,
            kind: Optional[str] = None,
            location: Optional[str] = None,
            name: Optional[str] = None,
            outbound_ip_address_lists: Optional[Sequence[str]] = None,
            outbound_ip_addresses: Optional[str] = None,
            possible_outbound_ip_address_lists: Optional[Sequence[str]] = None,
            possible_outbound_ip_addresses: Optional[str] = None,
            public_network_access_enabled: Optional[bool] = None,
            resource_group_name: Optional[str] = None,
            service_plan_id: Optional[str] = None,
            site_config: Optional[WindowsFunctionAppSiteConfigArgs] = None,
            site_credentials: Optional[Sequence[WindowsFunctionAppSiteCredentialArgs]] = None,
            sticky_settings: Optional[WindowsFunctionAppStickySettingsArgs] = None,
            storage_account_access_key: Optional[str] = None,
            storage_account_name: Optional[str] = None,
            storage_accounts: Optional[Sequence[WindowsFunctionAppStorageAccountArgs]] = None,
            storage_key_vault_secret_id: Optional[str] = None,
            storage_uses_managed_identity: Optional[bool] = None,
            tags: Optional[Mapping[str, str]] = None,
            virtual_network_subnet_id: Optional[str] = None,
            vnet_image_pull_enabled: Optional[bool] = None,
            webdeploy_publish_basic_authentication_enabled: Optional[bool] = None,
            zip_deploy_file: Optional[str] = None) -> WindowsFunctionApp
    func GetWindowsFunctionApp(ctx *Context, name string, id IDInput, state *WindowsFunctionAppState, opts ...ResourceOption) (*WindowsFunctionApp, error)
    public static WindowsFunctionApp Get(string name, Input<string> id, WindowsFunctionAppState? state, CustomResourceOptions? opts = null)
    public static WindowsFunctionApp get(String name, Output<String> id, WindowsFunctionAppState state, CustomResourceOptions options)
    Resource lookup is not supported in YAML
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    resource_name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    The following state arguments are supported:
    AppSettings Dictionary<string, string>
    A map of key-value pairs for App Settings and custom values.
    AuthSettings WindowsFunctionAppAuthSettings
    A auth_settings block as defined below.
    AuthSettingsV2 WindowsFunctionAppAuthSettingsV2
    A auth_settings_v2 block as defined below.
    Backup WindowsFunctionAppBackup
    A backup block as defined below.
    BuiltinLoggingEnabled bool
    Should built in logging be enabled. Configures AzureWebJobsDashboard app setting based on the configured storage setting. Defaults to true.
    ClientCertificateEnabled bool
    Should the function app use Client Certificates.
    ClientCertificateExclusionPaths string
    Paths to exclude when using client certificates, separated by ;
    ClientCertificateMode string
    The mode of the Function App's client certificates requirement for incoming requests. Possible values are Required, Optional, and OptionalInteractiveUser. Defaults to Optional.
    ConnectionStrings List<WindowsFunctionAppConnectionString>
    One or more connection_string blocks as defined below.
    ContentShareForceDisabled bool
    Should Content Share Settings be disabled. Defaults to false.
    CustomDomainVerificationId string
    The identifier used by App Service to perform domain ownership verification via DNS TXT record.
    DailyMemoryTimeQuota int
    The amount of memory in gigabyte-seconds that your application is allowed to consume per day. Setting this value only affects function apps under the consumption plan. Defaults to 0.
    DefaultHostname string
    The default hostname of the Windows Function App.
    Enabled bool
    Is the Function App enabled? Defaults to true.
    FtpPublishBasicAuthenticationEnabled bool
    Should the default FTP Basic Authentication publishing profile be enabled. Defaults to true.
    FunctionsExtensionVersion string
    The runtime version associated with the Function App. Defaults to ~4.
    HostingEnvironmentId string
    The ID of the App Service Environment used by Function App.
    HttpsOnly bool
    Can the Function App only be accessed via HTTPS?. Defaults to false.
    Identity WindowsFunctionAppIdentity
    A identity block as defined below.
    KeyVaultReferenceIdentityId string
    The User Assigned Identity ID used for accessing KeyVault secrets. The identity must be assigned to the application in the identity block. For more information see - Access vaults with a user-assigned identity
    Kind string
    The Kind value for this Windows Function App.
    Location string
    The Azure Region where the Windows Function App should exist. Changing this forces a new Windows Function App to be created.
    Name string
    The name which should be used for this Windows Function App. Changing this forces a new Windows Function App to be created. Limit the function name to 32 characters to avoid naming collisions. For more information about Function App naming rule and Host ID Collisions
    OutboundIpAddressLists List<string>
    A list of outbound IP addresses. For example ["52.23.25.3", "52.143.43.12"]
    OutboundIpAddresses string
    A comma separated list of outbound IP addresses as a string. For example 52.23.25.3,52.143.43.12.
    PossibleOutboundIpAddressLists List<string>
    A list of possible outbound IP addresses, not all of which are necessarily in use. This is a superset of outbound_ip_address_list. For example ["52.23.25.3", "52.143.43.12"].
    PossibleOutboundIpAddresses string
    A comma separated list of possible outbound IP addresses as a string. For example 52.23.25.3,52.143.43.12,52.143.43.17. This is a superset of outbound_ip_addresses.
    PublicNetworkAccessEnabled bool
    Should public network access be enabled for the Function App. Defaults to true.
    ResourceGroupName string
    The name of the Resource Group where the Windows Function App should exist. Changing this forces a new Windows Function App to be created.
    ServicePlanId string
    The ID of the App Service Plan within which to create this Function App.
    SiteConfig WindowsFunctionAppSiteConfig
    A site_config block as defined below.
    SiteCredentials List<WindowsFunctionAppSiteCredential>
    A site_credential block as defined below.
    StickySettings WindowsFunctionAppStickySettings
    A sticky_settings block as defined below.
    StorageAccountAccessKey string
    The access key which will be used to access the backend storage account for the Function App. Conflicts with storage_uses_managed_identity.
    StorageAccountName string
    The backend storage account name which will be used by this Function App.
    StorageAccounts List<WindowsFunctionAppStorageAccount>
    One or more storage_account blocks as defined below.
    StorageKeyVaultSecretId string

    The Key Vault Secret ID, optionally including version, that contains the Connection String to connect to the storage account for this Function App.

    NOTE: storage_key_vault_secret_id cannot be used with storage_account_name.

    NOTE: storage_key_vault_secret_id used without a version will use the latest version of the secret, however, the service can take up to 24h to pick up a rotation of the latest version. See the official docs for more information.

    StorageUsesManagedIdentity bool

    Should the Function App use Managed Identity to access the storage account. Conflicts with storage_account_access_key.

    NOTE: One of storage_account_access_key or storage_uses_managed_identity must be specified when using storage_account_name.

    Tags Dictionary<string, string>
    A mapping of tags which should be assigned to the Windows Function App.
    VirtualNetworkSubnetId string
    VnetImagePullEnabled bool
    Is container image pull over virtual network enabled? Defaults to false.
    WebdeployPublishBasicAuthenticationEnabled bool

    Should the default WebDeploy Basic Authentication publishing credentials enabled. Defaults to true.

    NOTE: Setting this value to true will disable the ability to use zip_deploy_file which currently relies on the default publishing profile.

    ZipDeployFile string

    The local path and filename of the Zip packaged application to deploy to this Windows Function App.

    Note: Using this value requires WEBSITE_RUN_FROM_PACKAGE=1 to be set on the App in app_settings. Refer to the Azure docs for further details.

    AppSettings map[string]string
    A map of key-value pairs for App Settings and custom values.
    AuthSettings WindowsFunctionAppAuthSettingsArgs
    A auth_settings block as defined below.
    AuthSettingsV2 WindowsFunctionAppAuthSettingsV2Args
    A auth_settings_v2 block as defined below.
    Backup WindowsFunctionAppBackupArgs
    A backup block as defined below.
    BuiltinLoggingEnabled bool
    Should built in logging be enabled. Configures AzureWebJobsDashboard app setting based on the configured storage setting. Defaults to true.
    ClientCertificateEnabled bool
    Should the function app use Client Certificates.
    ClientCertificateExclusionPaths string
    Paths to exclude when using client certificates, separated by ;
    ClientCertificateMode string
    The mode of the Function App's client certificates requirement for incoming requests. Possible values are Required, Optional, and OptionalInteractiveUser. Defaults to Optional.
    ConnectionStrings []WindowsFunctionAppConnectionStringArgs
    One or more connection_string blocks as defined below.
    ContentShareForceDisabled bool
    Should Content Share Settings be disabled. Defaults to false.
    CustomDomainVerificationId string
    The identifier used by App Service to perform domain ownership verification via DNS TXT record.
    DailyMemoryTimeQuota int
    The amount of memory in gigabyte-seconds that your application is allowed to consume per day. Setting this value only affects function apps under the consumption plan. Defaults to 0.
    DefaultHostname string
    The default hostname of the Windows Function App.
    Enabled bool
    Is the Function App enabled? Defaults to true.
    FtpPublishBasicAuthenticationEnabled bool
    Should the default FTP Basic Authentication publishing profile be enabled. Defaults to true.
    FunctionsExtensionVersion string
    The runtime version associated with the Function App. Defaults to ~4.
    HostingEnvironmentId string
    The ID of the App Service Environment used by Function App.
    HttpsOnly bool
    Can the Function App only be accessed via HTTPS?. Defaults to false.
    Identity WindowsFunctionAppIdentityArgs
    A identity block as defined below.
    KeyVaultReferenceIdentityId string
    The User Assigned Identity ID used for accessing KeyVault secrets. The identity must be assigned to the application in the identity block. For more information see - Access vaults with a user-assigned identity
    Kind string
    The Kind value for this Windows Function App.
    Location string
    The Azure Region where the Windows Function App should exist. Changing this forces a new Windows Function App to be created.
    Name string
    The name which should be used for this Windows Function App. Changing this forces a new Windows Function App to be created. Limit the function name to 32 characters to avoid naming collisions. For more information about Function App naming rule and Host ID Collisions
    OutboundIpAddressLists []string
    A list of outbound IP addresses. For example ["52.23.25.3", "52.143.43.12"]
    OutboundIpAddresses string
    A comma separated list of outbound IP addresses as a string. For example 52.23.25.3,52.143.43.12.
    PossibleOutboundIpAddressLists []string
    A list of possible outbound IP addresses, not all of which are necessarily in use. This is a superset of outbound_ip_address_list. For example ["52.23.25.3", "52.143.43.12"].
    PossibleOutboundIpAddresses string
    A comma separated list of possible outbound IP addresses as a string. For example 52.23.25.3,52.143.43.12,52.143.43.17. This is a superset of outbound_ip_addresses.
    PublicNetworkAccessEnabled bool
    Should public network access be enabled for the Function App. Defaults to true.
    ResourceGroupName string
    The name of the Resource Group where the Windows Function App should exist. Changing this forces a new Windows Function App to be created.
    ServicePlanId string
    The ID of the App Service Plan within which to create this Function App.
    SiteConfig WindowsFunctionAppSiteConfigArgs
    A site_config block as defined below.
    SiteCredentials []WindowsFunctionAppSiteCredentialArgs
    A site_credential block as defined below.
    StickySettings WindowsFunctionAppStickySettingsArgs
    A sticky_settings block as defined below.
    StorageAccountAccessKey string
    The access key which will be used to access the backend storage account for the Function App. Conflicts with storage_uses_managed_identity.
    StorageAccountName string
    The backend storage account name which will be used by this Function App.
    StorageAccounts []WindowsFunctionAppStorageAccountArgs
    One or more storage_account blocks as defined below.
    StorageKeyVaultSecretId string

    The Key Vault Secret ID, optionally including version, that contains the Connection String to connect to the storage account for this Function App.

    NOTE: storage_key_vault_secret_id cannot be used with storage_account_name.

    NOTE: storage_key_vault_secret_id used without a version will use the latest version of the secret, however, the service can take up to 24h to pick up a rotation of the latest version. See the official docs for more information.

    StorageUsesManagedIdentity bool

    Should the Function App use Managed Identity to access the storage account. Conflicts with storage_account_access_key.

    NOTE: One of storage_account_access_key or storage_uses_managed_identity must be specified when using storage_account_name.

    Tags map[string]string
    A mapping of tags which should be assigned to the Windows Function App.
    VirtualNetworkSubnetId string
    VnetImagePullEnabled bool
    Is container image pull over virtual network enabled? Defaults to false.
    WebdeployPublishBasicAuthenticationEnabled bool

    Should the default WebDeploy Basic Authentication publishing credentials enabled. Defaults to true.

    NOTE: Setting this value to true will disable the ability to use zip_deploy_file which currently relies on the default publishing profile.

    ZipDeployFile string

    The local path and filename of the Zip packaged application to deploy to this Windows Function App.

    Note: Using this value requires WEBSITE_RUN_FROM_PACKAGE=1 to be set on the App in app_settings. Refer to the Azure docs for further details.

    appSettings Map<String,String>
    A map of key-value pairs for App Settings and custom values.
    authSettings WindowsFunctionAppAuthSettings
    A auth_settings block as defined below.
    authSettingsV2 WindowsFunctionAppAuthSettingsV2
    A auth_settings_v2 block as defined below.
    backup WindowsFunctionAppBackup
    A backup block as defined below.
    builtinLoggingEnabled Boolean
    Should built in logging be enabled. Configures AzureWebJobsDashboard app setting based on the configured storage setting. Defaults to true.
    clientCertificateEnabled Boolean
    Should the function app use Client Certificates.
    clientCertificateExclusionPaths String
    Paths to exclude when using client certificates, separated by ;
    clientCertificateMode String
    The mode of the Function App's client certificates requirement for incoming requests. Possible values are Required, Optional, and OptionalInteractiveUser. Defaults to Optional.
    connectionStrings List<WindowsFunctionAppConnectionString>
    One or more connection_string blocks as defined below.
    contentShareForceDisabled Boolean
    Should Content Share Settings be disabled. Defaults to false.
    customDomainVerificationId String
    The identifier used by App Service to perform domain ownership verification via DNS TXT record.
    dailyMemoryTimeQuota Integer
    The amount of memory in gigabyte-seconds that your application is allowed to consume per day. Setting this value only affects function apps under the consumption plan. Defaults to 0.
    defaultHostname String
    The default hostname of the Windows Function App.
    enabled Boolean
    Is the Function App enabled? Defaults to true.
    ftpPublishBasicAuthenticationEnabled Boolean
    Should the default FTP Basic Authentication publishing profile be enabled. Defaults to true.
    functionsExtensionVersion String
    The runtime version associated with the Function App. Defaults to ~4.
    hostingEnvironmentId String
    The ID of the App Service Environment used by Function App.
    httpsOnly Boolean
    Can the Function App only be accessed via HTTPS?. Defaults to false.
    identity WindowsFunctionAppIdentity
    A identity block as defined below.
    keyVaultReferenceIdentityId String
    The User Assigned Identity ID used for accessing KeyVault secrets. The identity must be assigned to the application in the identity block. For more information see - Access vaults with a user-assigned identity
    kind String
    The Kind value for this Windows Function App.
    location String
    The Azure Region where the Windows Function App should exist. Changing this forces a new Windows Function App to be created.
    name String
    The name which should be used for this Windows Function App. Changing this forces a new Windows Function App to be created. Limit the function name to 32 characters to avoid naming collisions. For more information about Function App naming rule and Host ID Collisions
    outboundIpAddressLists List<String>
    A list of outbound IP addresses. For example ["52.23.25.3", "52.143.43.12"]
    outboundIpAddresses String
    A comma separated list of outbound IP addresses as a string. For example 52.23.25.3,52.143.43.12.
    possibleOutboundIpAddressLists List<String>
    A list of possible outbound IP addresses, not all of which are necessarily in use. This is a superset of outbound_ip_address_list. For example ["52.23.25.3", "52.143.43.12"].
    possibleOutboundIpAddresses String
    A comma separated list of possible outbound IP addresses as a string. For example 52.23.25.3,52.143.43.12,52.143.43.17. This is a superset of outbound_ip_addresses.
    publicNetworkAccessEnabled Boolean
    Should public network access be enabled for the Function App. Defaults to true.
    resourceGroupName String
    The name of the Resource Group where the Windows Function App should exist. Changing this forces a new Windows Function App to be created.
    servicePlanId String
    The ID of the App Service Plan within which to create this Function App.
    siteConfig WindowsFunctionAppSiteConfig
    A site_config block as defined below.
    siteCredentials List<WindowsFunctionAppSiteCredential>
    A site_credential block as defined below.
    stickySettings WindowsFunctionAppStickySettings
    A sticky_settings block as defined below.
    storageAccountAccessKey String
    The access key which will be used to access the backend storage account for the Function App. Conflicts with storage_uses_managed_identity.
    storageAccountName String
    The backend storage account name which will be used by this Function App.
    storageAccounts List<WindowsFunctionAppStorageAccount>
    One or more storage_account blocks as defined below.
    storageKeyVaultSecretId String

    The Key Vault Secret ID, optionally including version, that contains the Connection String to connect to the storage account for this Function App.

    NOTE: storage_key_vault_secret_id cannot be used with storage_account_name.

    NOTE: storage_key_vault_secret_id used without a version will use the latest version of the secret, however, the service can take up to 24h to pick up a rotation of the latest version. See the official docs for more information.

    storageUsesManagedIdentity Boolean

    Should the Function App use Managed Identity to access the storage account. Conflicts with storage_account_access_key.

    NOTE: One of storage_account_access_key or storage_uses_managed_identity must be specified when using storage_account_name.

    tags Map<String,String>
    A mapping of tags which should be assigned to the Windows Function App.
    virtualNetworkSubnetId String
    vnetImagePullEnabled Boolean
    Is container image pull over virtual network enabled? Defaults to false.
    webdeployPublishBasicAuthenticationEnabled Boolean

    Should the default WebDeploy Basic Authentication publishing credentials enabled. Defaults to true.

    NOTE: Setting this value to true will disable the ability to use zip_deploy_file which currently relies on the default publishing profile.

    zipDeployFile String

    The local path and filename of the Zip packaged application to deploy to this Windows Function App.

    Note: Using this value requires WEBSITE_RUN_FROM_PACKAGE=1 to be set on the App in app_settings. Refer to the Azure docs for further details.

    appSettings {[key: string]: string}
    A map of key-value pairs for App Settings and custom values.
    authSettings WindowsFunctionAppAuthSettings
    A auth_settings block as defined below.
    authSettingsV2 WindowsFunctionAppAuthSettingsV2
    A auth_settings_v2 block as defined below.
    backup WindowsFunctionAppBackup
    A backup block as defined below.
    builtinLoggingEnabled boolean
    Should built in logging be enabled. Configures AzureWebJobsDashboard app setting based on the configured storage setting. Defaults to true.
    clientCertificateEnabled boolean
    Should the function app use Client Certificates.
    clientCertificateExclusionPaths string
    Paths to exclude when using client certificates, separated by ;
    clientCertificateMode string
    The mode of the Function App's client certificates requirement for incoming requests. Possible values are Required, Optional, and OptionalInteractiveUser. Defaults to Optional.
    connectionStrings WindowsFunctionAppConnectionString[]
    One or more connection_string blocks as defined below.
    contentShareForceDisabled boolean
    Should Content Share Settings be disabled. Defaults to false.
    customDomainVerificationId string
    The identifier used by App Service to perform domain ownership verification via DNS TXT record.
    dailyMemoryTimeQuota number
    The amount of memory in gigabyte-seconds that your application is allowed to consume per day. Setting this value only affects function apps under the consumption plan. Defaults to 0.
    defaultHostname string
    The default hostname of the Windows Function App.
    enabled boolean
    Is the Function App enabled? Defaults to true.
    ftpPublishBasicAuthenticationEnabled boolean
    Should the default FTP Basic Authentication publishing profile be enabled. Defaults to true.
    functionsExtensionVersion string
    The runtime version associated with the Function App. Defaults to ~4.
    hostingEnvironmentId string
    The ID of the App Service Environment used by Function App.
    httpsOnly boolean
    Can the Function App only be accessed via HTTPS?. Defaults to false.
    identity WindowsFunctionAppIdentity
    A identity block as defined below.
    keyVaultReferenceIdentityId string
    The User Assigned Identity ID used for accessing KeyVault secrets. The identity must be assigned to the application in the identity block. For more information see - Access vaults with a user-assigned identity
    kind string
    The Kind value for this Windows Function App.
    location string
    The Azure Region where the Windows Function App should exist. Changing this forces a new Windows Function App to be created.
    name string
    The name which should be used for this Windows Function App. Changing this forces a new Windows Function App to be created. Limit the function name to 32 characters to avoid naming collisions. For more information about Function App naming rule and Host ID Collisions
    outboundIpAddressLists string[]
    A list of outbound IP addresses. For example ["52.23.25.3", "52.143.43.12"]
    outboundIpAddresses string
    A comma separated list of outbound IP addresses as a string. For example 52.23.25.3,52.143.43.12.
    possibleOutboundIpAddressLists string[]
    A list of possible outbound IP addresses, not all of which are necessarily in use. This is a superset of outbound_ip_address_list. For example ["52.23.25.3", "52.143.43.12"].
    possibleOutboundIpAddresses string
    A comma separated list of possible outbound IP addresses as a string. For example 52.23.25.3,52.143.43.12,52.143.43.17. This is a superset of outbound_ip_addresses.
    publicNetworkAccessEnabled boolean
    Should public network access be enabled for the Function App. Defaults to true.
    resourceGroupName string
    The name of the Resource Group where the Windows Function App should exist. Changing this forces a new Windows Function App to be created.
    servicePlanId string
    The ID of the App Service Plan within which to create this Function App.
    siteConfig WindowsFunctionAppSiteConfig
    A site_config block as defined below.
    siteCredentials WindowsFunctionAppSiteCredential[]
    A site_credential block as defined below.
    stickySettings WindowsFunctionAppStickySettings
    A sticky_settings block as defined below.
    storageAccountAccessKey string
    The access key which will be used to access the backend storage account for the Function App. Conflicts with storage_uses_managed_identity.
    storageAccountName string
    The backend storage account name which will be used by this Function App.
    storageAccounts WindowsFunctionAppStorageAccount[]
    One or more storage_account blocks as defined below.
    storageKeyVaultSecretId string

    The Key Vault Secret ID, optionally including version, that contains the Connection String to connect to the storage account for this Function App.

    NOTE: storage_key_vault_secret_id cannot be used with storage_account_name.

    NOTE: storage_key_vault_secret_id used without a version will use the latest version of the secret, however, the service can take up to 24h to pick up a rotation of the latest version. See the official docs for more information.

    storageUsesManagedIdentity boolean

    Should the Function App use Managed Identity to access the storage account. Conflicts with storage_account_access_key.

    NOTE: One of storage_account_access_key or storage_uses_managed_identity must be specified when using storage_account_name.

    tags {[key: string]: string}
    A mapping of tags which should be assigned to the Windows Function App.
    virtualNetworkSubnetId string
    vnetImagePullEnabled boolean
    Is container image pull over virtual network enabled? Defaults to false.
    webdeployPublishBasicAuthenticationEnabled boolean

    Should the default WebDeploy Basic Authentication publishing credentials enabled. Defaults to true.

    NOTE: Setting this value to true will disable the ability to use zip_deploy_file which currently relies on the default publishing profile.

    zipDeployFile string

    The local path and filename of the Zip packaged application to deploy to this Windows Function App.

    Note: Using this value requires WEBSITE_RUN_FROM_PACKAGE=1 to be set on the App in app_settings. Refer to the Azure docs for further details.

    app_settings Mapping[str, str]
    A map of key-value pairs for App Settings and custom values.
    auth_settings WindowsFunctionAppAuthSettingsArgs
    A auth_settings block as defined below.
    auth_settings_v2 WindowsFunctionAppAuthSettingsV2Args
    A auth_settings_v2 block as defined below.
    backup WindowsFunctionAppBackupArgs
    A backup block as defined below.
    builtin_logging_enabled bool
    Should built in logging be enabled. Configures AzureWebJobsDashboard app setting based on the configured storage setting. Defaults to true.
    client_certificate_enabled bool
    Should the function app use Client Certificates.
    client_certificate_exclusion_paths str
    Paths to exclude when using client certificates, separated by ;
    client_certificate_mode str
    The mode of the Function App's client certificates requirement for incoming requests. Possible values are Required, Optional, and OptionalInteractiveUser. Defaults to Optional.
    connection_strings Sequence[WindowsFunctionAppConnectionStringArgs]
    One or more connection_string blocks as defined below.
    content_share_force_disabled bool
    Should Content Share Settings be disabled. Defaults to false.
    custom_domain_verification_id str
    The identifier used by App Service to perform domain ownership verification via DNS TXT record.
    daily_memory_time_quota int
    The amount of memory in gigabyte-seconds that your application is allowed to consume per day. Setting this value only affects function apps under the consumption plan. Defaults to 0.
    default_hostname str
    The default hostname of the Windows Function App.
    enabled bool
    Is the Function App enabled? Defaults to true.
    ftp_publish_basic_authentication_enabled bool
    Should the default FTP Basic Authentication publishing profile be enabled. Defaults to true.
    functions_extension_version str
    The runtime version associated with the Function App. Defaults to ~4.
    hosting_environment_id str
    The ID of the App Service Environment used by Function App.
    https_only bool
    Can the Function App only be accessed via HTTPS?. Defaults to false.
    identity WindowsFunctionAppIdentityArgs
    A identity block as defined below.
    key_vault_reference_identity_id str
    The User Assigned Identity ID used for accessing KeyVault secrets. The identity must be assigned to the application in the identity block. For more information see - Access vaults with a user-assigned identity
    kind str
    The Kind value for this Windows Function App.
    location str
    The Azure Region where the Windows Function App should exist. Changing this forces a new Windows Function App to be created.
    name str
    The name which should be used for this Windows Function App. Changing this forces a new Windows Function App to be created. Limit the function name to 32 characters to avoid naming collisions. For more information about Function App naming rule and Host ID Collisions
    outbound_ip_address_lists Sequence[str]
    A list of outbound IP addresses. For example ["52.23.25.3", "52.143.43.12"]
    outbound_ip_addresses str
    A comma separated list of outbound IP addresses as a string. For example 52.23.25.3,52.143.43.12.
    possible_outbound_ip_address_lists Sequence[str]
    A list of possible outbound IP addresses, not all of which are necessarily in use. This is a superset of outbound_ip_address_list. For example ["52.23.25.3", "52.143.43.12"].
    possible_outbound_ip_addresses str
    A comma separated list of possible outbound IP addresses as a string. For example 52.23.25.3,52.143.43.12,52.143.43.17. This is a superset of outbound_ip_addresses.
    public_network_access_enabled bool
    Should public network access be enabled for the Function App. Defaults to true.
    resource_group_name str
    The name of the Resource Group where the Windows Function App should exist. Changing this forces a new Windows Function App to be created.
    service_plan_id str
    The ID of the App Service Plan within which to create this Function App.
    site_config WindowsFunctionAppSiteConfigArgs
    A site_config block as defined below.
    site_credentials Sequence[WindowsFunctionAppSiteCredentialArgs]
    A site_credential block as defined below.
    sticky_settings WindowsFunctionAppStickySettingsArgs
    A sticky_settings block as defined below.
    storage_account_access_key str
    The access key which will be used to access the backend storage account for the Function App. Conflicts with storage_uses_managed_identity.
    storage_account_name str
    The backend storage account name which will be used by this Function App.
    storage_accounts Sequence[WindowsFunctionAppStorageAccountArgs]
    One or more storage_account blocks as defined below.
    storage_key_vault_secret_id str

    The Key Vault Secret ID, optionally including version, that contains the Connection String to connect to the storage account for this Function App.

    NOTE: storage_key_vault_secret_id cannot be used with storage_account_name.

    NOTE: storage_key_vault_secret_id used without a version will use the latest version of the secret, however, the service can take up to 24h to pick up a rotation of the latest version. See the official docs for more information.

    storage_uses_managed_identity bool

    Should the Function App use Managed Identity to access the storage account. Conflicts with storage_account_access_key.

    NOTE: One of storage_account_access_key or storage_uses_managed_identity must be specified when using storage_account_name.

    tags Mapping[str, str]
    A mapping of tags which should be assigned to the Windows Function App.
    virtual_network_subnet_id str
    vnet_image_pull_enabled bool
    Is container image pull over virtual network enabled? Defaults to false.
    webdeploy_publish_basic_authentication_enabled bool

    Should the default WebDeploy Basic Authentication publishing credentials enabled. Defaults to true.

    NOTE: Setting this value to true will disable the ability to use zip_deploy_file which currently relies on the default publishing profile.

    zip_deploy_file str

    The local path and filename of the Zip packaged application to deploy to this Windows Function App.

    Note: Using this value requires WEBSITE_RUN_FROM_PACKAGE=1 to be set on the App in app_settings. Refer to the Azure docs for further details.

    appSettings Map<String>
    A map of key-value pairs for App Settings and custom values.
    authSettings Property Map
    A auth_settings block as defined below.
    authSettingsV2 Property Map
    A auth_settings_v2 block as defined below.
    backup Property Map
    A backup block as defined below.
    builtinLoggingEnabled Boolean
    Should built in logging be enabled. Configures AzureWebJobsDashboard app setting based on the configured storage setting. Defaults to true.
    clientCertificateEnabled Boolean
    Should the function app use Client Certificates.
    clientCertificateExclusionPaths String
    Paths to exclude when using client certificates, separated by ;
    clientCertificateMode String
    The mode of the Function App's client certificates requirement for incoming requests. Possible values are Required, Optional, and OptionalInteractiveUser. Defaults to Optional.
    connectionStrings List<Property Map>
    One or more connection_string blocks as defined below.
    contentShareForceDisabled Boolean
    Should Content Share Settings be disabled. Defaults to false.
    customDomainVerificationId String
    The identifier used by App Service to perform domain ownership verification via DNS TXT record.
    dailyMemoryTimeQuota Number
    The amount of memory in gigabyte-seconds that your application is allowed to consume per day. Setting this value only affects function apps under the consumption plan. Defaults to 0.
    defaultHostname String
    The default hostname of the Windows Function App.
    enabled Boolean
    Is the Function App enabled? Defaults to true.
    ftpPublishBasicAuthenticationEnabled Boolean
    Should the default FTP Basic Authentication publishing profile be enabled. Defaults to true.
    functionsExtensionVersion String
    The runtime version associated with the Function App. Defaults to ~4.
    hostingEnvironmentId String
    The ID of the App Service Environment used by Function App.
    httpsOnly Boolean
    Can the Function App only be accessed via HTTPS?. Defaults to false.
    identity Property Map
    A identity block as defined below.
    keyVaultReferenceIdentityId String
    The User Assigned Identity ID used for accessing KeyVault secrets. The identity must be assigned to the application in the identity block. For more information see - Access vaults with a user-assigned identity
    kind String
    The Kind value for this Windows Function App.
    location String
    The Azure Region where the Windows Function App should exist. Changing this forces a new Windows Function App to be created.
    name String
    The name which should be used for this Windows Function App. Changing this forces a new Windows Function App to be created. Limit the function name to 32 characters to avoid naming collisions. For more information about Function App naming rule and Host ID Collisions
    outboundIpAddressLists List<String>
    A list of outbound IP addresses. For example ["52.23.25.3", "52.143.43.12"]
    outboundIpAddresses String
    A comma separated list of outbound IP addresses as a string. For example 52.23.25.3,52.143.43.12.
    possibleOutboundIpAddressLists List<String>
    A list of possible outbound IP addresses, not all of which are necessarily in use. This is a superset of outbound_ip_address_list. For example ["52.23.25.3", "52.143.43.12"].
    possibleOutboundIpAddresses String
    A comma separated list of possible outbound IP addresses as a string. For example 52.23.25.3,52.143.43.12,52.143.43.17. This is a superset of outbound_ip_addresses.
    publicNetworkAccessEnabled Boolean
    Should public network access be enabled for the Function App. Defaults to true.
    resourceGroupName String
    The name of the Resource Group where the Windows Function App should exist. Changing this forces a new Windows Function App to be created.
    servicePlanId String
    The ID of the App Service Plan within which to create this Function App.
    siteConfig Property Map
    A site_config block as defined below.
    siteCredentials List<Property Map>
    A site_credential block as defined below.
    stickySettings Property Map
    A sticky_settings block as defined below.
    storageAccountAccessKey String
    The access key which will be used to access the backend storage account for the Function App. Conflicts with storage_uses_managed_identity.
    storageAccountName String
    The backend storage account name which will be used by this Function App.
    storageAccounts List<Property Map>
    One or more storage_account blocks as defined below.
    storageKeyVaultSecretId String

    The Key Vault Secret ID, optionally including version, that contains the Connection String to connect to the storage account for this Function App.

    NOTE: storage_key_vault_secret_id cannot be used with storage_account_name.

    NOTE: storage_key_vault_secret_id used without a version will use the latest version of the secret, however, the service can take up to 24h to pick up a rotation of the latest version. See the official docs for more information.

    storageUsesManagedIdentity Boolean

    Should the Function App use Managed Identity to access the storage account. Conflicts with storage_account_access_key.

    NOTE: One of storage_account_access_key or storage_uses_managed_identity must be specified when using storage_account_name.

    tags Map<String>
    A mapping of tags which should be assigned to the Windows Function App.
    virtualNetworkSubnetId String
    vnetImagePullEnabled Boolean
    Is container image pull over virtual network enabled? Defaults to false.
    webdeployPublishBasicAuthenticationEnabled Boolean

    Should the default WebDeploy Basic Authentication publishing credentials enabled. Defaults to true.

    NOTE: Setting this value to true will disable the ability to use zip_deploy_file which currently relies on the default publishing profile.

    zipDeployFile String

    The local path and filename of the Zip packaged application to deploy to this Windows Function App.

    Note: Using this value requires WEBSITE_RUN_FROM_PACKAGE=1 to be set on the App in app_settings. Refer to the Azure docs for further details.

    Supporting Types

    WindowsFunctionAppAuthSettings, WindowsFunctionAppAuthSettingsArgs

    Enabled bool
    Should the Authentication / Authorization feature be enabled for the Windows Function App?
    ActiveDirectory WindowsFunctionAppAuthSettingsActiveDirectory
    An active_directory block as defined above.
    AdditionalLoginParameters Dictionary<string, string>
    Specifies a map of login Parameters to send to the OpenID Connect authorization endpoint when a user logs in.
    AllowedExternalRedirectUrls List<string>
    Specifies a list of External URLs that can be redirected to as part of logging in or logging out of the Windows Function App.
    DefaultProvider string

    The default authentication provider to use when multiple providers are configured. Possible values include: AzureActiveDirectory, Facebook, Google, MicrosoftAccount, Twitter, Github

    NOTE: This setting is only needed if multiple providers are configured, and the unauthenticated_client_action is set to "RedirectToLoginPage".

    Facebook WindowsFunctionAppAuthSettingsFacebook
    A facebook block as defined below.
    Github WindowsFunctionAppAuthSettingsGithub
    A github block as defined below.
    Google WindowsFunctionAppAuthSettingsGoogle
    A google block as defined below.
    Issuer string

    The OpenID Connect Issuer URI that represents the entity which issues access tokens for this Windows Function App.

    NOTE: When using Azure Active Directory, this value is the URI of the directory tenant, e.g. https://sts.windows.net/{tenant-guid}/.

    Microsoft WindowsFunctionAppAuthSettingsMicrosoft
    A microsoft block as defined below.
    RuntimeVersion string
    The Runtime Version of the Authentication / Authorization feature in use for the Windows Function App.
    TokenRefreshExtensionHours double
    The number of hours after session token expiration that a session token can be used to call the token refresh API. Defaults to 72 hours.
    TokenStoreEnabled bool
    Should the Windows Function App durably store platform-specific security tokens that are obtained during login flows? Defaults to false.
    Twitter WindowsFunctionAppAuthSettingsTwitter
    A twitter block as defined below.
    UnauthenticatedClientAction string
    The action to take when an unauthenticated client attempts to access the app. Possible values include: RedirectToLoginPage, AllowAnonymous.
    Enabled bool
    Should the Authentication / Authorization feature be enabled for the Windows Function App?
    ActiveDirectory WindowsFunctionAppAuthSettingsActiveDirectory
    An active_directory block as defined above.
    AdditionalLoginParameters map[string]string
    Specifies a map of login Parameters to send to the OpenID Connect authorization endpoint when a user logs in.
    AllowedExternalRedirectUrls []string
    Specifies a list of External URLs that can be redirected to as part of logging in or logging out of the Windows Function App.
    DefaultProvider string

    The default authentication provider to use when multiple providers are configured. Possible values include: AzureActiveDirectory, Facebook, Google, MicrosoftAccount, Twitter, Github

    NOTE: This setting is only needed if multiple providers are configured, and the unauthenticated_client_action is set to "RedirectToLoginPage".

    Facebook WindowsFunctionAppAuthSettingsFacebook
    A facebook block as defined below.
    Github WindowsFunctionAppAuthSettingsGithub
    A github block as defined below.
    Google WindowsFunctionAppAuthSettingsGoogle
    A google block as defined below.
    Issuer string

    The OpenID Connect Issuer URI that represents the entity which issues access tokens for this Windows Function App.

    NOTE: When using Azure Active Directory, this value is the URI of the directory tenant, e.g. https://sts.windows.net/{tenant-guid}/.

    Microsoft WindowsFunctionAppAuthSettingsMicrosoft
    A microsoft block as defined below.
    RuntimeVersion string
    The Runtime Version of the Authentication / Authorization feature in use for the Windows Function App.
    TokenRefreshExtensionHours float64
    The number of hours after session token expiration that a session token can be used to call the token refresh API. Defaults to 72 hours.
    TokenStoreEnabled bool
    Should the Windows Function App durably store platform-specific security tokens that are obtained during login flows? Defaults to false.
    Twitter WindowsFunctionAppAuthSettingsTwitter
    A twitter block as defined below.
    UnauthenticatedClientAction string
    The action to take when an unauthenticated client attempts to access the app. Possible values include: RedirectToLoginPage, AllowAnonymous.
    enabled Boolean
    Should the Authentication / Authorization feature be enabled for the Windows Function App?
    activeDirectory WindowsFunctionAppAuthSettingsActiveDirectory
    An active_directory block as defined above.
    additionalLoginParameters Map<String,String>
    Specifies a map of login Parameters to send to the OpenID Connect authorization endpoint when a user logs in.
    allowedExternalRedirectUrls List<String>
    Specifies a list of External URLs that can be redirected to as part of logging in or logging out of the Windows Function App.
    defaultProvider String

    The default authentication provider to use when multiple providers are configured. Possible values include: AzureActiveDirectory, Facebook, Google, MicrosoftAccount, Twitter, Github

    NOTE: This setting is only needed if multiple providers are configured, and the unauthenticated_client_action is set to "RedirectToLoginPage".

    facebook WindowsFunctionAppAuthSettingsFacebook
    A facebook block as defined below.
    github WindowsFunctionAppAuthSettingsGithub
    A github block as defined below.
    google WindowsFunctionAppAuthSettingsGoogle
    A google block as defined below.
    issuer String

    The OpenID Connect Issuer URI that represents the entity which issues access tokens for this Windows Function App.

    NOTE: When using Azure Active Directory, this value is the URI of the directory tenant, e.g. https://sts.windows.net/{tenant-guid}/.

    microsoft WindowsFunctionAppAuthSettingsMicrosoft
    A microsoft block as defined below.
    runtimeVersion String
    The Runtime Version of the Authentication / Authorization feature in use for the Windows Function App.
    tokenRefreshExtensionHours Double
    The number of hours after session token expiration that a session token can be used to call the token refresh API. Defaults to 72 hours.
    tokenStoreEnabled Boolean
    Should the Windows Function App durably store platform-specific security tokens that are obtained during login flows? Defaults to false.
    twitter WindowsFunctionAppAuthSettingsTwitter
    A twitter block as defined below.
    unauthenticatedClientAction String
    The action to take when an unauthenticated client attempts to access the app. Possible values include: RedirectToLoginPage, AllowAnonymous.
    enabled boolean
    Should the Authentication / Authorization feature be enabled for the Windows Function App?
    activeDirectory WindowsFunctionAppAuthSettingsActiveDirectory
    An active_directory block as defined above.
    additionalLoginParameters {[key: string]: string}
    Specifies a map of login Parameters to send to the OpenID Connect authorization endpoint when a user logs in.
    allowedExternalRedirectUrls string[]
    Specifies a list of External URLs that can be redirected to as part of logging in or logging out of the Windows Function App.
    defaultProvider string

    The default authentication provider to use when multiple providers are configured. Possible values include: AzureActiveDirectory, Facebook, Google, MicrosoftAccount, Twitter, Github

    NOTE: This setting is only needed if multiple providers are configured, and the unauthenticated_client_action is set to "RedirectToLoginPage".

    facebook WindowsFunctionAppAuthSettingsFacebook
    A facebook block as defined below.
    github WindowsFunctionAppAuthSettingsGithub
    A github block as defined below.
    google WindowsFunctionAppAuthSettingsGoogle
    A google block as defined below.
    issuer string

    The OpenID Connect Issuer URI that represents the entity which issues access tokens for this Windows Function App.

    NOTE: When using Azure Active Directory, this value is the URI of the directory tenant, e.g. https://sts.windows.net/{tenant-guid}/.

    microsoft WindowsFunctionAppAuthSettingsMicrosoft
    A microsoft block as defined below.
    runtimeVersion string
    The Runtime Version of the Authentication / Authorization feature in use for the Windows Function App.
    tokenRefreshExtensionHours number
    The number of hours after session token expiration that a session token can be used to call the token refresh API. Defaults to 72 hours.
    tokenStoreEnabled boolean
    Should the Windows Function App durably store platform-specific security tokens that are obtained during login flows? Defaults to false.
    twitter WindowsFunctionAppAuthSettingsTwitter
    A twitter block as defined below.
    unauthenticatedClientAction string
    The action to take when an unauthenticated client attempts to access the app. Possible values include: RedirectToLoginPage, AllowAnonymous.
    enabled bool
    Should the Authentication / Authorization feature be enabled for the Windows Function App?
    active_directory WindowsFunctionAppAuthSettingsActiveDirectory
    An active_directory block as defined above.
    additional_login_parameters Mapping[str, str]
    Specifies a map of login Parameters to send to the OpenID Connect authorization endpoint when a user logs in.
    allowed_external_redirect_urls Sequence[str]
    Specifies a list of External URLs that can be redirected to as part of logging in or logging out of the Windows Function App.
    default_provider str

    The default authentication provider to use when multiple providers are configured. Possible values include: AzureActiveDirectory, Facebook, Google, MicrosoftAccount, Twitter, Github

    NOTE: This setting is only needed if multiple providers are configured, and the unauthenticated_client_action is set to "RedirectToLoginPage".

    facebook WindowsFunctionAppAuthSettingsFacebook
    A facebook block as defined below.
    github WindowsFunctionAppAuthSettingsGithub
    A github block as defined below.
    google WindowsFunctionAppAuthSettingsGoogle
    A google block as defined below.
    issuer str

    The OpenID Connect Issuer URI that represents the entity which issues access tokens for this Windows Function App.

    NOTE: When using Azure Active Directory, this value is the URI of the directory tenant, e.g. https://sts.windows.net/{tenant-guid}/.

    microsoft WindowsFunctionAppAuthSettingsMicrosoft
    A microsoft block as defined below.
    runtime_version str
    The Runtime Version of the Authentication / Authorization feature in use for the Windows Function App.
    token_refresh_extension_hours float
    The number of hours after session token expiration that a session token can be used to call the token refresh API. Defaults to 72 hours.
    token_store_enabled bool
    Should the Windows Function App durably store platform-specific security tokens that are obtained during login flows? Defaults to false.
    twitter WindowsFunctionAppAuthSettingsTwitter
    A twitter block as defined below.
    unauthenticated_client_action str
    The action to take when an unauthenticated client attempts to access the app. Possible values include: RedirectToLoginPage, AllowAnonymous.
    enabled Boolean
    Should the Authentication / Authorization feature be enabled for the Windows Function App?
    activeDirectory Property Map
    An active_directory block as defined above.
    additionalLoginParameters Map<String>
    Specifies a map of login Parameters to send to the OpenID Connect authorization endpoint when a user logs in.
    allowedExternalRedirectUrls List<String>
    Specifies a list of External URLs that can be redirected to as part of logging in or logging out of the Windows Function App.
    defaultProvider String

    The default authentication provider to use when multiple providers are configured. Possible values include: AzureActiveDirectory, Facebook, Google, MicrosoftAccount, Twitter, Github

    NOTE: This setting is only needed if multiple providers are configured, and the unauthenticated_client_action is set to "RedirectToLoginPage".

    facebook Property Map
    A facebook block as defined below.
    github Property Map
    A github block as defined below.
    google Property Map
    A google block as defined below.
    issuer String

    The OpenID Connect Issuer URI that represents the entity which issues access tokens for this Windows Function App.

    NOTE: When using Azure Active Directory, this value is the URI of the directory tenant, e.g. https://sts.windows.net/{tenant-guid}/.

    microsoft Property Map
    A microsoft block as defined below.
    runtimeVersion String
    The Runtime Version of the Authentication / Authorization feature in use for the Windows Function App.
    tokenRefreshExtensionHours Number
    The number of hours after session token expiration that a session token can be used to call the token refresh API. Defaults to 72 hours.
    tokenStoreEnabled Boolean
    Should the Windows Function App durably store platform-specific security tokens that are obtained during login flows? Defaults to false.
    twitter Property Map
    A twitter block as defined below.
    unauthenticatedClientAction String
    The action to take when an unauthenticated client attempts to access the app. Possible values include: RedirectToLoginPage, AllowAnonymous.

    WindowsFunctionAppAuthSettingsActiveDirectory, WindowsFunctionAppAuthSettingsActiveDirectoryArgs

    ClientId string
    The ID of the Client to use to authenticate with Azure Active Directory.
    AllowedAudiences List<string>

    Specifies a list of Allowed audience values to consider when validating JWTs issued by Azure Active Directory.

    Note: The client_id value is always considered an allowed audience.

    ClientSecret string
    The Client Secret for the Client ID. Cannot be used with client_secret_setting_name.
    ClientSecretSettingName string
    The App Setting name that contains the client secret of the Client. Cannot be used with client_secret.
    ClientId string
    The ID of the Client to use to authenticate with Azure Active Directory.
    AllowedAudiences []string

    Specifies a list of Allowed audience values to consider when validating JWTs issued by Azure Active Directory.

    Note: The client_id value is always considered an allowed audience.

    ClientSecret string
    The Client Secret for the Client ID. Cannot be used with client_secret_setting_name.
    ClientSecretSettingName string
    The App Setting name that contains the client secret of the Client. Cannot be used with client_secret.
    clientId String
    The ID of the Client to use to authenticate with Azure Active Directory.
    allowedAudiences List<String>

    Specifies a list of Allowed audience values to consider when validating JWTs issued by Azure Active Directory.

    Note: The client_id value is always considered an allowed audience.

    clientSecret String
    The Client Secret for the Client ID. Cannot be used with client_secret_setting_name.
    clientSecretSettingName String
    The App Setting name that contains the client secret of the Client. Cannot be used with client_secret.
    clientId string
    The ID of the Client to use to authenticate with Azure Active Directory.
    allowedAudiences string[]

    Specifies a list of Allowed audience values to consider when validating JWTs issued by Azure Active Directory.

    Note: The client_id value is always considered an allowed audience.

    clientSecret string
    The Client Secret for the Client ID. Cannot be used with client_secret_setting_name.
    clientSecretSettingName string
    The App Setting name that contains the client secret of the Client. Cannot be used with client_secret.
    client_id str
    The ID of the Client to use to authenticate with Azure Active Directory.
    allowed_audiences Sequence[str]

    Specifies a list of Allowed audience values to consider when validating JWTs issued by Azure Active Directory.

    Note: The client_id value is always considered an allowed audience.

    client_secret str
    The Client Secret for the Client ID. Cannot be used with client_secret_setting_name.
    client_secret_setting_name str
    The App Setting name that contains the client secret of the Client. Cannot be used with client_secret.
    clientId String
    The ID of the Client to use to authenticate with Azure Active Directory.
    allowedAudiences List<String>

    Specifies a list of Allowed audience values to consider when validating JWTs issued by Azure Active Directory.

    Note: The client_id value is always considered an allowed audience.

    clientSecret String
    The Client Secret for the Client ID. Cannot be used with client_secret_setting_name.
    clientSecretSettingName String
    The App Setting name that contains the client secret of the Client. Cannot be used with client_secret.

    WindowsFunctionAppAuthSettingsFacebook, WindowsFunctionAppAuthSettingsFacebookArgs

    AppId string
    The App ID of the Facebook app used for login.
    AppSecret string
    The App Secret of the Facebook app used for Facebook login. Cannot be specified with app_secret_setting_name.
    AppSecretSettingName string
    The app setting name that contains the app_secret value used for Facebook login. Cannot be specified with app_secret.
    OauthScopes List<string>
    Specifies a list of OAuth 2.0 scopes to be requested as part of Facebook login authentication.
    AppId string
    The App ID of the Facebook app used for login.
    AppSecret string
    The App Secret of the Facebook app used for Facebook login. Cannot be specified with app_secret_setting_name.
    AppSecretSettingName string
    The app setting name that contains the app_secret value used for Facebook login. Cannot be specified with app_secret.
    OauthScopes []string
    Specifies a list of OAuth 2.0 scopes to be requested as part of Facebook login authentication.
    appId String
    The App ID of the Facebook app used for login.
    appSecret String
    The App Secret of the Facebook app used for Facebook login. Cannot be specified with app_secret_setting_name.
    appSecretSettingName String
    The app setting name that contains the app_secret value used for Facebook login. Cannot be specified with app_secret.
    oauthScopes List<String>
    Specifies a list of OAuth 2.0 scopes to be requested as part of Facebook login authentication.
    appId string
    The App ID of the Facebook app used for login.
    appSecret string
    The App Secret of the Facebook app used for Facebook login. Cannot be specified with app_secret_setting_name.
    appSecretSettingName string
    The app setting name that contains the app_secret value used for Facebook login. Cannot be specified with app_secret.
    oauthScopes string[]
    Specifies a list of OAuth 2.0 scopes to be requested as part of Facebook login authentication.
    app_id str
    The App ID of the Facebook app used for login.
    app_secret str
    The App Secret of the Facebook app used for Facebook login. Cannot be specified with app_secret_setting_name.
    app_secret_setting_name str
    The app setting name that contains the app_secret value used for Facebook login. Cannot be specified with app_secret.
    oauth_scopes Sequence[str]
    Specifies a list of OAuth 2.0 scopes to be requested as part of Facebook login authentication.
    appId String
    The App ID of the Facebook app used for login.
    appSecret String
    The App Secret of the Facebook app used for Facebook login. Cannot be specified with app_secret_setting_name.
    appSecretSettingName String
    The app setting name that contains the app_secret value used for Facebook login. Cannot be specified with app_secret.
    oauthScopes List<String>
    Specifies a list of OAuth 2.0 scopes to be requested as part of Facebook login authentication.

    WindowsFunctionAppAuthSettingsGithub, WindowsFunctionAppAuthSettingsGithubArgs

    ClientId string
    The ID of the GitHub app used for login.
    ClientSecret string
    The Client Secret of the GitHub app used for GitHub login. Cannot be specified with client_secret_setting_name.
    ClientSecretSettingName string
    The app setting name that contains the client_secret value used for GitHub login. Cannot be specified with client_secret.
    OauthScopes List<string>
    Specifies a list of OAuth 2.0 scopes that will be requested as part of GitHub login authentication.
    ClientId string
    The ID of the GitHub app used for login.
    ClientSecret string
    The Client Secret of the GitHub app used for GitHub login. Cannot be specified with client_secret_setting_name.
    ClientSecretSettingName string
    The app setting name that contains the client_secret value used for GitHub login. Cannot be specified with client_secret.
    OauthScopes []string
    Specifies a list of OAuth 2.0 scopes that will be requested as part of GitHub login authentication.
    clientId String
    The ID of the GitHub app used for login.
    clientSecret String
    The Client Secret of the GitHub app used for GitHub login. Cannot be specified with client_secret_setting_name.
    clientSecretSettingName String
    The app setting name that contains the client_secret value used for GitHub login. Cannot be specified with client_secret.
    oauthScopes List<String>
    Specifies a list of OAuth 2.0 scopes that will be requested as part of GitHub login authentication.
    clientId string
    The ID of the GitHub app used for login.
    clientSecret string
    The Client Secret of the GitHub app used for GitHub login. Cannot be specified with client_secret_setting_name.
    clientSecretSettingName string
    The app setting name that contains the client_secret value used for GitHub login. Cannot be specified with client_secret.
    oauthScopes string[]
    Specifies a list of OAuth 2.0 scopes that will be requested as part of GitHub login authentication.
    client_id str
    The ID of the GitHub app used for login.
    client_secret str
    The Client Secret of the GitHub app used for GitHub login. Cannot be specified with client_secret_setting_name.
    client_secret_setting_name str
    The app setting name that contains the client_secret value used for GitHub login. Cannot be specified with client_secret.
    oauth_scopes Sequence[str]
    Specifies a list of OAuth 2.0 scopes that will be requested as part of GitHub login authentication.
    clientId String
    The ID of the GitHub app used for login.
    clientSecret String
    The Client Secret of the GitHub app used for GitHub login. Cannot be specified with client_secret_setting_name.
    clientSecretSettingName String
    The app setting name that contains the client_secret value used for GitHub login. Cannot be specified with client_secret.
    oauthScopes List<String>
    Specifies a list of OAuth 2.0 scopes that will be requested as part of GitHub login authentication.

    WindowsFunctionAppAuthSettingsGoogle, WindowsFunctionAppAuthSettingsGoogleArgs

    ClientId string
    The OpenID Connect Client ID for the Google web application.
    ClientSecret string
    The client secret associated with the Google web application. Cannot be specified with client_secret_setting_name.
    ClientSecretSettingName string
    The app setting name that contains the client_secret value used for Google login. Cannot be specified with client_secret.
    OauthScopes List<string>
    Specifies a list of OAuth 2.0 scopes that will be requested as part of Google Sign-In authentication. If not specified, openid, profile, and email are used as default scopes.
    ClientId string
    The OpenID Connect Client ID for the Google web application.
    ClientSecret string
    The client secret associated with the Google web application. Cannot be specified with client_secret_setting_name.
    ClientSecretSettingName string
    The app setting name that contains the client_secret value used for Google login. Cannot be specified with client_secret.
    OauthScopes []string
    Specifies a list of OAuth 2.0 scopes that will be requested as part of Google Sign-In authentication. If not specified, openid, profile, and email are used as default scopes.
    clientId String
    The OpenID Connect Client ID for the Google web application.
    clientSecret String
    The client secret associated with the Google web application. Cannot be specified with client_secret_setting_name.
    clientSecretSettingName String
    The app setting name that contains the client_secret value used for Google login. Cannot be specified with client_secret.
    oauthScopes List<String>
    Specifies a list of OAuth 2.0 scopes that will be requested as part of Google Sign-In authentication. If not specified, openid, profile, and email are used as default scopes.
    clientId string
    The OpenID Connect Client ID for the Google web application.
    clientSecret string
    The client secret associated with the Google web application. Cannot be specified with client_secret_setting_name.
    clientSecretSettingName string
    The app setting name that contains the client_secret value used for Google login. Cannot be specified with client_secret.
    oauthScopes string[]
    Specifies a list of OAuth 2.0 scopes that will be requested as part of Google Sign-In authentication. If not specified, openid, profile, and email are used as default scopes.
    client_id str
    The OpenID Connect Client ID for the Google web application.
    client_secret str
    The client secret associated with the Google web application. Cannot be specified with client_secret_setting_name.
    client_secret_setting_name str
    The app setting name that contains the client_secret value used for Google login. Cannot be specified with client_secret.
    oauth_scopes Sequence[str]
    Specifies a list of OAuth 2.0 scopes that will be requested as part of Google Sign-In authentication. If not specified, openid, profile, and email are used as default scopes.
    clientId String
    The OpenID Connect Client ID for the Google web application.
    clientSecret String
    The client secret associated with the Google web application. Cannot be specified with client_secret_setting_name.
    clientSecretSettingName String
    The app setting name that contains the client_secret value used for Google login. Cannot be specified with client_secret.
    oauthScopes List<String>
    Specifies a list of OAuth 2.0 scopes that will be requested as part of Google Sign-In authentication. If not specified, openid, profile, and email are used as default scopes.

    WindowsFunctionAppAuthSettingsMicrosoft, WindowsFunctionAppAuthSettingsMicrosoftArgs

    ClientId string
    The OAuth 2.0 client ID that was created for the app used for authentication.
    ClientSecret string
    The OAuth 2.0 client secret that was created for the app used for authentication. Cannot be specified with client_secret_setting_name.
    ClientSecretSettingName string
    The app setting name containing the OAuth 2.0 client secret that was created for the app used for authentication. Cannot be specified with client_secret.
    OauthScopes List<string>
    Specifies a list of OAuth 2.0 scopes that will be requested as part of Microsoft Account authentication. If not specified, wl.basic is used as the default scope.
    ClientId string
    The OAuth 2.0 client ID that was created for the app used for authentication.
    ClientSecret string
    The OAuth 2.0 client secret that was created for the app used for authentication. Cannot be specified with client_secret_setting_name.
    ClientSecretSettingName string
    The app setting name containing the OAuth 2.0 client secret that was created for the app used for authentication. Cannot be specified with client_secret.
    OauthScopes []string
    Specifies a list of OAuth 2.0 scopes that will be requested as part of Microsoft Account authentication. If not specified, wl.basic is used as the default scope.
    clientId String
    The OAuth 2.0 client ID that was created for the app used for authentication.
    clientSecret String
    The OAuth 2.0 client secret that was created for the app used for authentication. Cannot be specified with client_secret_setting_name.
    clientSecretSettingName String
    The app setting name containing the OAuth 2.0 client secret that was created for the app used for authentication. Cannot be specified with client_secret.
    oauthScopes List<String>
    Specifies a list of OAuth 2.0 scopes that will be requested as part of Microsoft Account authentication. If not specified, wl.basic is used as the default scope.
    clientId string
    The OAuth 2.0 client ID that was created for the app used for authentication.
    clientSecret string
    The OAuth 2.0 client secret that was created for the app used for authentication. Cannot be specified with client_secret_setting_name.
    clientSecretSettingName string
    The app setting name containing the OAuth 2.0 client secret that was created for the app used for authentication. Cannot be specified with client_secret.
    oauthScopes string[]
    Specifies a list of OAuth 2.0 scopes that will be requested as part of Microsoft Account authentication. If not specified, wl.basic is used as the default scope.
    client_id str
    The OAuth 2.0 client ID that was created for the app used for authentication.
    client_secret str
    The OAuth 2.0 client secret that was created for the app used for authentication. Cannot be specified with client_secret_setting_name.
    client_secret_setting_name str
    The app setting name containing the OAuth 2.0 client secret that was created for the app used for authentication. Cannot be specified with client_secret.
    oauth_scopes Sequence[str]
    Specifies a list of OAuth 2.0 scopes that will be requested as part of Microsoft Account authentication. If not specified, wl.basic is used as the default scope.
    clientId String
    The OAuth 2.0 client ID that was created for the app used for authentication.
    clientSecret String
    The OAuth 2.0 client secret that was created for the app used for authentication. Cannot be specified with client_secret_setting_name.
    clientSecretSettingName String
    The app setting name containing the OAuth 2.0 client secret that was created for the app used for authentication. Cannot be specified with client_secret.
    oauthScopes List<String>
    Specifies a list of OAuth 2.0 scopes that will be requested as part of Microsoft Account authentication. If not specified, wl.basic is used as the default scope.

    WindowsFunctionAppAuthSettingsTwitter, WindowsFunctionAppAuthSettingsTwitterArgs

    ConsumerKey string
    The OAuth 1.0a consumer key of the Twitter application used for sign-in.
    ConsumerSecret string
    The OAuth 1.0a consumer secret of the Twitter application used for sign-in. Cannot be specified with consumer_secret_setting_name.
    ConsumerSecretSettingName string
    The app setting name that contains the OAuth 1.0a consumer secret of the Twitter application used for sign-in. Cannot be specified with consumer_secret.
    ConsumerKey string
    The OAuth 1.0a consumer key of the Twitter application used for sign-in.
    ConsumerSecret string
    The OAuth 1.0a consumer secret of the Twitter application used for sign-in. Cannot be specified with consumer_secret_setting_name.
    ConsumerSecretSettingName string
    The app setting name that contains the OAuth 1.0a consumer secret of the Twitter application used for sign-in. Cannot be specified with consumer_secret.
    consumerKey String
    The OAuth 1.0a consumer key of the Twitter application used for sign-in.
    consumerSecret String
    The OAuth 1.0a consumer secret of the Twitter application used for sign-in. Cannot be specified with consumer_secret_setting_name.
    consumerSecretSettingName String
    The app setting name that contains the OAuth 1.0a consumer secret of the Twitter application used for sign-in. Cannot be specified with consumer_secret.
    consumerKey string
    The OAuth 1.0a consumer key of the Twitter application used for sign-in.
    consumerSecret string
    The OAuth 1.0a consumer secret of the Twitter application used for sign-in. Cannot be specified with consumer_secret_setting_name.
    consumerSecretSettingName string
    The app setting name that contains the OAuth 1.0a consumer secret of the Twitter application used for sign-in. Cannot be specified with consumer_secret.
    consumer_key str
    The OAuth 1.0a consumer key of the Twitter application used for sign-in.
    consumer_secret str
    The OAuth 1.0a consumer secret of the Twitter application used for sign-in. Cannot be specified with consumer_secret_setting_name.
    consumer_secret_setting_name str
    The app setting name that contains the OAuth 1.0a consumer secret of the Twitter application used for sign-in. Cannot be specified with consumer_secret.
    consumerKey String
    The OAuth 1.0a consumer key of the Twitter application used for sign-in.
    consumerSecret String
    The OAuth 1.0a consumer secret of the Twitter application used for sign-in. Cannot be specified with consumer_secret_setting_name.
    consumerSecretSettingName String
    The app setting name that contains the OAuth 1.0a consumer secret of the Twitter application used for sign-in. Cannot be specified with consumer_secret.

    WindowsFunctionAppAuthSettingsV2, WindowsFunctionAppAuthSettingsV2Args

    Login WindowsFunctionAppAuthSettingsV2Login
    A login block as defined below.
    ActiveDirectoryV2 WindowsFunctionAppAuthSettingsV2ActiveDirectoryV2
    An active_directory_v2 block as defined below.
    AppleV2 WindowsFunctionAppAuthSettingsV2AppleV2
    An apple_v2 block as defined below.
    AuthEnabled bool
    Should the AuthV2 Settings be enabled. Defaults to false.
    AzureStaticWebAppV2 WindowsFunctionAppAuthSettingsV2AzureStaticWebAppV2
    An azure_static_web_app_v2 block as defined below.
    ConfigFilePath string

    The path to the App Auth settings.

    Note: Relative Paths are evaluated from the Site Root directory.

    CustomOidcV2s List<WindowsFunctionAppAuthSettingsV2CustomOidcV2>
    Zero or more custom_oidc_v2 blocks as defined below.
    DefaultProvider string

    The Default Authentication Provider to use when the unauthenticated_action is set to RedirectToLoginPage. Possible values include: apple, azureactivedirectory, facebook, github, google, twitter and the name of your custom_oidc_v2 provider.

    NOTE: Whilst any value will be accepted by the API for default_provider, it can leave the app in an unusable state if this value does not correspond to the name of a known provider (either built-in value, or custom_oidc name) as it is used to build the auth endpoint URI.

    ExcludedPaths List<string>

    The paths which should be excluded from the unauthenticated_action when it is set to RedirectToLoginPage.

    NOTE: This list should be used instead of setting WEBSITE_WARMUP_PATH in app_settings as it takes priority.

    FacebookV2 WindowsFunctionAppAuthSettingsV2FacebookV2
    A facebook_v2 block as defined below.
    ForwardProxyConvention string
    The convention used to determine the url of the request made. Possible values include NoProxy, Standard, Custom. Defaults to NoProxy.
    ForwardProxyCustomHostHeaderName string
    The name of the custom header containing the host of the request.
    ForwardProxyCustomSchemeHeaderName string
    The name of the custom header containing the scheme of the request.
    GithubV2 WindowsFunctionAppAuthSettingsV2GithubV2
    A github_v2 block as defined below.
    GoogleV2 WindowsFunctionAppAuthSettingsV2GoogleV2
    A google_v2 block as defined below.
    HttpRouteApiPrefix string
    The prefix that should precede all the authentication and authorisation paths. Defaults to /.auth.
    MicrosoftV2 WindowsFunctionAppAuthSettingsV2MicrosoftV2
    A microsoft_v2 block as defined below.
    RequireAuthentication bool
    Should the authentication flow be used for all requests.
    RequireHttps bool
    Should HTTPS be required on connections? Defaults to true.
    RuntimeVersion string
    The Runtime Version of the Authentication and Authorisation feature of this App. Defaults to ~1.
    TwitterV2 WindowsFunctionAppAuthSettingsV2TwitterV2
    A twitter_v2 block as defined below.
    UnauthenticatedAction string
    The action to take for requests made without authentication. Possible values include RedirectToLoginPage, AllowAnonymous, Return401, and Return403. Defaults to RedirectToLoginPage.
    Login WindowsFunctionAppAuthSettingsV2Login
    A login block as defined below.
    ActiveDirectoryV2 WindowsFunctionAppAuthSettingsV2ActiveDirectoryV2
    An active_directory_v2 block as defined below.
    AppleV2 WindowsFunctionAppAuthSettingsV2AppleV2
    An apple_v2 block as defined below.
    AuthEnabled bool
    Should the AuthV2 Settings be enabled. Defaults to false.
    AzureStaticWebAppV2 WindowsFunctionAppAuthSettingsV2AzureStaticWebAppV2
    An azure_static_web_app_v2 block as defined below.
    ConfigFilePath string

    The path to the App Auth settings.

    Note: Relative Paths are evaluated from the Site Root directory.

    CustomOidcV2s []WindowsFunctionAppAuthSettingsV2CustomOidcV2
    Zero or more custom_oidc_v2 blocks as defined below.
    DefaultProvider string

    The Default Authentication Provider to use when the unauthenticated_action is set to RedirectToLoginPage. Possible values include: apple, azureactivedirectory, facebook, github, google, twitter and the name of your custom_oidc_v2 provider.

    NOTE: Whilst any value will be accepted by the API for default_provider, it can leave the app in an unusable state if this value does not correspond to the name of a known provider (either built-in value, or custom_oidc name) as it is used to build the auth endpoint URI.

    ExcludedPaths []string

    The paths which should be excluded from the unauthenticated_action when it is set to RedirectToLoginPage.

    NOTE: This list should be used instead of setting WEBSITE_WARMUP_PATH in app_settings as it takes priority.

    FacebookV2 WindowsFunctionAppAuthSettingsV2FacebookV2
    A facebook_v2 block as defined below.
    ForwardProxyConvention string
    The convention used to determine the url of the request made. Possible values include NoProxy, Standard, Custom. Defaults to NoProxy.
    ForwardProxyCustomHostHeaderName string
    The name of the custom header containing the host of the request.
    ForwardProxyCustomSchemeHeaderName string
    The name of the custom header containing the scheme of the request.
    GithubV2 WindowsFunctionAppAuthSettingsV2GithubV2
    A github_v2 block as defined below.
    GoogleV2 WindowsFunctionAppAuthSettingsV2GoogleV2
    A google_v2 block as defined below.
    HttpRouteApiPrefix string
    The prefix that should precede all the authentication and authorisation paths. Defaults to /.auth.
    MicrosoftV2 WindowsFunctionAppAuthSettingsV2MicrosoftV2
    A microsoft_v2 block as defined below.
    RequireAuthentication bool
    Should the authentication flow be used for all requests.
    RequireHttps bool
    Should HTTPS be required on connections? Defaults to true.
    RuntimeVersion string
    The Runtime Version of the Authentication and Authorisation feature of this App. Defaults to ~1.
    TwitterV2 WindowsFunctionAppAuthSettingsV2TwitterV2
    A twitter_v2 block as defined below.
    UnauthenticatedAction string
    The action to take for requests made without authentication. Possible values include RedirectToLoginPage, AllowAnonymous, Return401, and Return403. Defaults to RedirectToLoginPage.
    login WindowsFunctionAppAuthSettingsV2Login
    A login block as defined below.
    activeDirectoryV2 WindowsFunctionAppAuthSettingsV2ActiveDirectoryV2
    An active_directory_v2 block as defined below.
    appleV2 WindowsFunctionAppAuthSettingsV2AppleV2
    An apple_v2 block as defined below.
    authEnabled Boolean
    Should the AuthV2 Settings be enabled. Defaults to false.
    azureStaticWebAppV2 WindowsFunctionAppAuthSettingsV2AzureStaticWebAppV2
    An azure_static_web_app_v2 block as defined below.
    configFilePath String

    The path to the App Auth settings.

    Note: Relative Paths are evaluated from the Site Root directory.

    customOidcV2s List<WindowsFunctionAppAuthSettingsV2CustomOidcV2>
    Zero or more custom_oidc_v2 blocks as defined below.
    defaultProvider String

    The Default Authentication Provider to use when the unauthenticated_action is set to RedirectToLoginPage. Possible values include: apple, azureactivedirectory, facebook, github, google, twitter and the name of your custom_oidc_v2 provider.

    NOTE: Whilst any value will be accepted by the API for default_provider, it can leave the app in an unusable state if this value does not correspond to the name of a known provider (either built-in value, or custom_oidc name) as it is used to build the auth endpoint URI.

    excludedPaths List<String>

    The paths which should be excluded from the unauthenticated_action when it is set to RedirectToLoginPage.

    NOTE: This list should be used instead of setting WEBSITE_WARMUP_PATH in app_settings as it takes priority.

    facebookV2 WindowsFunctionAppAuthSettingsV2FacebookV2
    A facebook_v2 block as defined below.
    forwardProxyConvention String
    The convention used to determine the url of the request made. Possible values include NoProxy, Standard, Custom. Defaults to NoProxy.
    forwardProxyCustomHostHeaderName String
    The name of the custom header containing the host of the request.
    forwardProxyCustomSchemeHeaderName String
    The name of the custom header containing the scheme of the request.
    githubV2 WindowsFunctionAppAuthSettingsV2GithubV2
    A github_v2 block as defined below.
    googleV2 WindowsFunctionAppAuthSettingsV2GoogleV2
    A google_v2 block as defined below.
    httpRouteApiPrefix String
    The prefix that should precede all the authentication and authorisation paths. Defaults to /.auth.
    microsoftV2 WindowsFunctionAppAuthSettingsV2MicrosoftV2
    A microsoft_v2 block as defined below.
    requireAuthentication Boolean
    Should the authentication flow be used for all requests.
    requireHttps Boolean
    Should HTTPS be required on connections? Defaults to true.
    runtimeVersion String
    The Runtime Version of the Authentication and Authorisation feature of this App. Defaults to ~1.
    twitterV2 WindowsFunctionAppAuthSettingsV2TwitterV2
    A twitter_v2 block as defined below.
    unauthenticatedAction String
    The action to take for requests made without authentication. Possible values include RedirectToLoginPage, AllowAnonymous, Return401, and Return403. Defaults to RedirectToLoginPage.
    login WindowsFunctionAppAuthSettingsV2Login
    A login block as defined below.
    activeDirectoryV2 WindowsFunctionAppAuthSettingsV2ActiveDirectoryV2
    An active_directory_v2 block as defined below.
    appleV2 WindowsFunctionAppAuthSettingsV2AppleV2
    An apple_v2 block as defined below.
    authEnabled boolean
    Should the AuthV2 Settings be enabled. Defaults to false.
    azureStaticWebAppV2 WindowsFunctionAppAuthSettingsV2AzureStaticWebAppV2
    An azure_static_web_app_v2 block as defined below.
    configFilePath string

    The path to the App Auth settings.

    Note: Relative Paths are evaluated from the Site Root directory.

    customOidcV2s WindowsFunctionAppAuthSettingsV2CustomOidcV2[]
    Zero or more custom_oidc_v2 blocks as defined below.
    defaultProvider string

    The Default Authentication Provider to use when the unauthenticated_action is set to RedirectToLoginPage. Possible values include: apple, azureactivedirectory, facebook, github, google, twitter and the name of your custom_oidc_v2 provider.

    NOTE: Whilst any value will be accepted by the API for default_provider, it can leave the app in an unusable state if this value does not correspond to the name of a known provider (either built-in value, or custom_oidc name) as it is used to build the auth endpoint URI.

    excludedPaths string[]

    The paths which should be excluded from the unauthenticated_action when it is set to RedirectToLoginPage.

    NOTE: This list should be used instead of setting WEBSITE_WARMUP_PATH in app_settings as it takes priority.

    facebookV2 WindowsFunctionAppAuthSettingsV2FacebookV2
    A facebook_v2 block as defined below.
    forwardProxyConvention string
    The convention used to determine the url of the request made. Possible values include NoProxy, Standard, Custom. Defaults to NoProxy.
    forwardProxyCustomHostHeaderName string
    The name of the custom header containing the host of the request.
    forwardProxyCustomSchemeHeaderName string
    The name of the custom header containing the scheme of the request.
    githubV2 WindowsFunctionAppAuthSettingsV2GithubV2
    A github_v2 block as defined below.
    googleV2 WindowsFunctionAppAuthSettingsV2GoogleV2
    A google_v2 block as defined below.
    httpRouteApiPrefix string
    The prefix that should precede all the authentication and authorisation paths. Defaults to /.auth.
    microsoftV2 WindowsFunctionAppAuthSettingsV2MicrosoftV2
    A microsoft_v2 block as defined below.
    requireAuthentication boolean
    Should the authentication flow be used for all requests.
    requireHttps boolean
    Should HTTPS be required on connections? Defaults to true.
    runtimeVersion string
    The Runtime Version of the Authentication and Authorisation feature of this App. Defaults to ~1.
    twitterV2 WindowsFunctionAppAuthSettingsV2TwitterV2
    A twitter_v2 block as defined below.
    unauthenticatedAction string
    The action to take for requests made without authentication. Possible values include RedirectToLoginPage, AllowAnonymous, Return401, and Return403. Defaults to RedirectToLoginPage.
    login WindowsFunctionAppAuthSettingsV2Login
    A login block as defined below.
    active_directory_v2 WindowsFunctionAppAuthSettingsV2ActiveDirectoryV2
    An active_directory_v2 block as defined below.
    apple_v2 WindowsFunctionAppAuthSettingsV2AppleV2
    An apple_v2 block as defined below.
    auth_enabled bool
    Should the AuthV2 Settings be enabled. Defaults to false.
    azure_static_web_app_v2 WindowsFunctionAppAuthSettingsV2AzureStaticWebAppV2
    An azure_static_web_app_v2 block as defined below.
    config_file_path str

    The path to the App Auth settings.

    Note: Relative Paths are evaluated from the Site Root directory.

    custom_oidc_v2s Sequence[WindowsFunctionAppAuthSettingsV2CustomOidcV2]
    Zero or more custom_oidc_v2 blocks as defined below.
    default_provider str

    The Default Authentication Provider to use when the unauthenticated_action is set to RedirectToLoginPage. Possible values include: apple, azureactivedirectory, facebook, github, google, twitter and the name of your custom_oidc_v2 provider.

    NOTE: Whilst any value will be accepted by the API for default_provider, it can leave the app in an unusable state if this value does not correspond to the name of a known provider (either built-in value, or custom_oidc name) as it is used to build the auth endpoint URI.

    excluded_paths Sequence[str]

    The paths which should be excluded from the unauthenticated_action when it is set to RedirectToLoginPage.

    NOTE: This list should be used instead of setting WEBSITE_WARMUP_PATH in app_settings as it takes priority.

    facebook_v2 WindowsFunctionAppAuthSettingsV2FacebookV2
    A facebook_v2 block as defined below.
    forward_proxy_convention str
    The convention used to determine the url of the request made. Possible values include NoProxy, Standard, Custom. Defaults to NoProxy.
    forward_proxy_custom_host_header_name str
    The name of the custom header containing the host of the request.
    forward_proxy_custom_scheme_header_name str
    The name of the custom header containing the scheme of the request.
    github_v2 WindowsFunctionAppAuthSettingsV2GithubV2
    A github_v2 block as defined below.
    google_v2 WindowsFunctionAppAuthSettingsV2GoogleV2
    A google_v2 block as defined below.
    http_route_api_prefix str
    The prefix that should precede all the authentication and authorisation paths. Defaults to /.auth.
    microsoft_v2 WindowsFunctionAppAuthSettingsV2MicrosoftV2
    A microsoft_v2 block as defined below.
    require_authentication bool
    Should the authentication flow be used for all requests.
    require_https bool
    Should HTTPS be required on connections? Defaults to true.
    runtime_version str
    The Runtime Version of the Authentication and Authorisation feature of this App. Defaults to ~1.
    twitter_v2 WindowsFunctionAppAuthSettingsV2TwitterV2
    A twitter_v2 block as defined below.
    unauthenticated_action str
    The action to take for requests made without authentication. Possible values include RedirectToLoginPage, AllowAnonymous, Return401, and Return403. Defaults to RedirectToLoginPage.
    login Property Map
    A login block as defined below.
    activeDirectoryV2 Property Map
    An active_directory_v2 block as defined below.
    appleV2 Property Map
    An apple_v2 block as defined below.
    authEnabled Boolean
    Should the AuthV2 Settings be enabled. Defaults to false.
    azureStaticWebAppV2 Property Map
    An azure_static_web_app_v2 block as defined below.
    configFilePath String

    The path to the App Auth settings.

    Note: Relative Paths are evaluated from the Site Root directory.

    customOidcV2s List<Property Map>
    Zero or more custom_oidc_v2 blocks as defined below.
    defaultProvider String

    The Default Authentication Provider to use when the unauthenticated_action is set to RedirectToLoginPage. Possible values include: apple, azureactivedirectory, facebook, github, google, twitter and the name of your custom_oidc_v2 provider.

    NOTE: Whilst any value will be accepted by the API for default_provider, it can leave the app in an unusable state if this value does not correspond to the name of a known provider (either built-in value, or custom_oidc name) as it is used to build the auth endpoint URI.

    excludedPaths List<String>

    The paths which should be excluded from the unauthenticated_action when it is set to RedirectToLoginPage.

    NOTE: This list should be used instead of setting WEBSITE_WARMUP_PATH in app_settings as it takes priority.

    facebookV2 Property Map
    A facebook_v2 block as defined below.
    forwardProxyConvention String
    The convention used to determine the url of the request made. Possible values include NoProxy, Standard, Custom. Defaults to NoProxy.
    forwardProxyCustomHostHeaderName String
    The name of the custom header containing the host of the request.
    forwardProxyCustomSchemeHeaderName String
    The name of the custom header containing the scheme of the request.
    githubV2 Property Map
    A github_v2 block as defined below.
    googleV2 Property Map
    A google_v2 block as defined below.
    httpRouteApiPrefix String
    The prefix that should precede all the authentication and authorisation paths. Defaults to /.auth.
    microsoftV2 Property Map
    A microsoft_v2 block as defined below.
    requireAuthentication Boolean
    Should the authentication flow be used for all requests.
    requireHttps Boolean
    Should HTTPS be required on connections? Defaults to true.
    runtimeVersion String
    The Runtime Version of the Authentication and Authorisation feature of this App. Defaults to ~1.
    twitterV2 Property Map
    A twitter_v2 block as defined below.
    unauthenticatedAction String
    The action to take for requests made without authentication. Possible values include RedirectToLoginPage, AllowAnonymous, Return401, and Return403. Defaults to RedirectToLoginPage.

    WindowsFunctionAppAuthSettingsV2ActiveDirectoryV2, WindowsFunctionAppAuthSettingsV2ActiveDirectoryV2Args

    ClientId string
    The ID of the Client to use to authenticate with Azure Active Directory.
    TenantAuthEndpoint string

    The Azure Tenant Endpoint for the Authenticating Tenant. e.g. https://login.microsoftonline.com/{tenant-guid}/v2.0/

    NOTE: Here is a list of possible authentication endpoints based on the cloud environment. Here is more information to better understand how to configure authentication for Azure App Service or Azure Functions.

    AllowedApplications List<string>
    The list of allowed Applications for the Default Authorisation Policy.
    AllowedAudiences List<string>

    Specifies a list of Allowed audience values to consider when validating JWTs issued by Azure Active Directory.

    NOTE: This is configured on the Authentication Provider side and is Read Only here.

    AllowedGroups List<string>
    The list of allowed Group Names for the Default Authorisation Policy.
    AllowedIdentities List<string>
    The list of allowed Identities for the Default Authorisation Policy.
    ClientSecretCertificateThumbprint string
    The thumbprint of the certificate used for signing purposes.
    ClientSecretSettingName string

    The App Setting name that contains the client secret of the Client.

    !> NOTE: A setting with this name must exist in app_settings to function correctly.

    JwtAllowedClientApplications List<string>
    A list of Allowed Client Applications in the JWT Claim.
    JwtAllowedGroups List<string>
    A list of Allowed Groups in the JWT Claim.
    LoginParameters Dictionary<string, string>
    A map of key-value pairs to send to the Authorisation Endpoint when a user logs in.
    WwwAuthenticationDisabled bool
    Should the www-authenticate provider should be omitted from the request? Defaults to false.
    ClientId string
    The ID of the Client to use to authenticate with Azure Active Directory.
    TenantAuthEndpoint string

    The Azure Tenant Endpoint for the Authenticating Tenant. e.g. https://login.microsoftonline.com/{tenant-guid}/v2.0/

    NOTE: Here is a list of possible authentication endpoints based on the cloud environment. Here is more information to better understand how to configure authentication for Azure App Service or Azure Functions.

    AllowedApplications []string
    The list of allowed Applications for the Default Authorisation Policy.
    AllowedAudiences []string

    Specifies a list of Allowed audience values to consider when validating JWTs issued by Azure Active Directory.

    NOTE: This is configured on the Authentication Provider side and is Read Only here.

    AllowedGroups []string
    The list of allowed Group Names for the Default Authorisation Policy.
    AllowedIdentities []string
    The list of allowed Identities for the Default Authorisation Policy.
    ClientSecretCertificateThumbprint string
    The thumbprint of the certificate used for signing purposes.
    ClientSecretSettingName string

    The App Setting name that contains the client secret of the Client.

    !> NOTE: A setting with this name must exist in app_settings to function correctly.

    JwtAllowedClientApplications []string
    A list of Allowed Client Applications in the JWT Claim.
    JwtAllowedGroups []string
    A list of Allowed Groups in the JWT Claim.
    LoginParameters map[string]string
    A map of key-value pairs to send to the Authorisation Endpoint when a user logs in.
    WwwAuthenticationDisabled bool
    Should the www-authenticate provider should be omitted from the request? Defaults to false.
    clientId String
    The ID of the Client to use to authenticate with Azure Active Directory.
    tenantAuthEndpoint String

    The Azure Tenant Endpoint for the Authenticating Tenant. e.g. https://login.microsoftonline.com/{tenant-guid}/v2.0/

    NOTE: Here is a list of possible authentication endpoints based on the cloud environment. Here is more information to better understand how to configure authentication for Azure App Service or Azure Functions.

    allowedApplications List<String>
    The list of allowed Applications for the Default Authorisation Policy.
    allowedAudiences List<String>

    Specifies a list of Allowed audience values to consider when validating JWTs issued by Azure Active Directory.

    NOTE: This is configured on the Authentication Provider side and is Read Only here.

    allowedGroups List<String>
    The list of allowed Group Names for the Default Authorisation Policy.
    allowedIdentities List<String>
    The list of allowed Identities for the Default Authorisation Policy.
    clientSecretCertificateThumbprint String
    The thumbprint of the certificate used for signing purposes.
    clientSecretSettingName String

    The App Setting name that contains the client secret of the Client.

    !> NOTE: A setting with this name must exist in app_settings to function correctly.

    jwtAllowedClientApplications List<String>
    A list of Allowed Client Applications in the JWT Claim.
    jwtAllowedGroups List<String>
    A list of Allowed Groups in the JWT Claim.
    loginParameters Map<String,String>
    A map of key-value pairs to send to the Authorisation Endpoint when a user logs in.
    wwwAuthenticationDisabled Boolean
    Should the www-authenticate provider should be omitted from the request? Defaults to false.
    clientId string
    The ID of the Client to use to authenticate with Azure Active Directory.
    tenantAuthEndpoint string

    The Azure Tenant Endpoint for the Authenticating Tenant. e.g. https://login.microsoftonline.com/{tenant-guid}/v2.0/

    NOTE: Here is a list of possible authentication endpoints based on the cloud environment. Here is more information to better understand how to configure authentication for Azure App Service or Azure Functions.

    allowedApplications string[]
    The list of allowed Applications for the Default Authorisation Policy.
    allowedAudiences string[]

    Specifies a list of Allowed audience values to consider when validating JWTs issued by Azure Active Directory.

    NOTE: This is configured on the Authentication Provider side and is Read Only here.

    allowedGroups string[]
    The list of allowed Group Names for the Default Authorisation Policy.
    allowedIdentities string[]
    The list of allowed Identities for the Default Authorisation Policy.
    clientSecretCertificateThumbprint string
    The thumbprint of the certificate used for signing purposes.
    clientSecretSettingName string

    The App Setting name that contains the client secret of the Client.

    !> NOTE: A setting with this name must exist in app_settings to function correctly.

    jwtAllowedClientApplications string[]
    A list of Allowed Client Applications in the JWT Claim.
    jwtAllowedGroups string[]
    A list of Allowed Groups in the JWT Claim.
    loginParameters {[key: string]: string}
    A map of key-value pairs to send to the Authorisation Endpoint when a user logs in.
    wwwAuthenticationDisabled boolean
    Should the www-authenticate provider should be omitted from the request? Defaults to false.
    client_id str
    The ID of the Client to use to authenticate with Azure Active Directory.
    tenant_auth_endpoint str

    The Azure Tenant Endpoint for the Authenticating Tenant. e.g. https://login.microsoftonline.com/{tenant-guid}/v2.0/

    NOTE: Here is a list of possible authentication endpoints based on the cloud environment. Here is more information to better understand how to configure authentication for Azure App Service or Azure Functions.

    allowed_applications Sequence[str]
    The list of allowed Applications for the Default Authorisation Policy.
    allowed_audiences Sequence[str]

    Specifies a list of Allowed audience values to consider when validating JWTs issued by Azure Active Directory.

    NOTE: This is configured on the Authentication Provider side and is Read Only here.

    allowed_groups Sequence[str]
    The list of allowed Group Names for the Default Authorisation Policy.
    allowed_identities Sequence[str]
    The list of allowed Identities for the Default Authorisation Policy.
    client_secret_certificate_thumbprint str
    The thumbprint of the certificate used for signing purposes.
    client_secret_setting_name str

    The App Setting name that contains the client secret of the Client.

    !> NOTE: A setting with this name must exist in app_settings to function correctly.

    jwt_allowed_client_applications Sequence[str]
    A list of Allowed Client Applications in the JWT Claim.
    jwt_allowed_groups Sequence[str]
    A list of Allowed Groups in the JWT Claim.
    login_parameters Mapping[str, str]
    A map of key-value pairs to send to the Authorisation Endpoint when a user logs in.
    www_authentication_disabled bool
    Should the www-authenticate provider should be omitted from the request? Defaults to false.
    clientId String
    The ID of the Client to use to authenticate with Azure Active Directory.
    tenantAuthEndpoint String

    The Azure Tenant Endpoint for the Authenticating Tenant. e.g. https://login.microsoftonline.com/{tenant-guid}/v2.0/

    NOTE: Here is a list of possible authentication endpoints based on the cloud environment. Here is more information to better understand how to configure authentication for Azure App Service or Azure Functions.

    allowedApplications List<String>
    The list of allowed Applications for the Default Authorisation Policy.
    allowedAudiences List<String>

    Specifies a list of Allowed audience values to consider when validating JWTs issued by Azure Active Directory.

    NOTE: This is configured on the Authentication Provider side and is Read Only here.

    allowedGroups List<String>
    The list of allowed Group Names for the Default Authorisation Policy.
    allowedIdentities List<String>
    The list of allowed Identities for the Default Authorisation Policy.
    clientSecretCertificateThumbprint String
    The thumbprint of the certificate used for signing purposes.
    clientSecretSettingName String

    The App Setting name that contains the client secret of the Client.

    !> NOTE: A setting with this name must exist in app_settings to function correctly.

    jwtAllowedClientApplications List<String>
    A list of Allowed Client Applications in the JWT Claim.
    jwtAllowedGroups List<String>
    A list of Allowed Groups in the JWT Claim.
    loginParameters Map<String>
    A map of key-value pairs to send to the Authorisation Endpoint when a user logs in.
    wwwAuthenticationDisabled Boolean
    Should the www-authenticate provider should be omitted from the request? Defaults to false.

    WindowsFunctionAppAuthSettingsV2AppleV2, WindowsFunctionAppAuthSettingsV2AppleV2Args

    ClientId string
    The OpenID Connect Client ID for the Apple web application.
    ClientSecretSettingName string

    The app setting name that contains the client_secret value used for Apple Login.

    !> NOTE: A setting with this name must exist in app_settings to function correctly.

    LoginScopes List<string>

    A list of Login Scopes provided by this Authentication Provider.

    NOTE: This is configured on the Authentication Provider side and is Read Only here.

    ClientId string
    The OpenID Connect Client ID for the Apple web application.
    ClientSecretSettingName string

    The app setting name that contains the client_secret value used for Apple Login.

    !> NOTE: A setting with this name must exist in app_settings to function correctly.

    LoginScopes []string

    A list of Login Scopes provided by this Authentication Provider.

    NOTE: This is configured on the Authentication Provider side and is Read Only here.

    clientId String
    The OpenID Connect Client ID for the Apple web application.
    clientSecretSettingName String

    The app setting name that contains the client_secret value used for Apple Login.

    !> NOTE: A setting with this name must exist in app_settings to function correctly.

    loginScopes List<String>

    A list of Login Scopes provided by this Authentication Provider.

    NOTE: This is configured on the Authentication Provider side and is Read Only here.

    clientId string
    The OpenID Connect Client ID for the Apple web application.
    clientSecretSettingName string

    The app setting name that contains the client_secret value used for Apple Login.

    !> NOTE: A setting with this name must exist in app_settings to function correctly.

    loginScopes string[]

    A list of Login Scopes provided by this Authentication Provider.

    NOTE: This is configured on the Authentication Provider side and is Read Only here.

    client_id str
    The OpenID Connect Client ID for the Apple web application.
    client_secret_setting_name str

    The app setting name that contains the client_secret value used for Apple Login.

    !> NOTE: A setting with this name must exist in app_settings to function correctly.

    login_scopes Sequence[str]

    A list of Login Scopes provided by this Authentication Provider.

    NOTE: This is configured on the Authentication Provider side and is Read Only here.

    clientId String
    The OpenID Connect Client ID for the Apple web application.
    clientSecretSettingName String

    The app setting name that contains the client_secret value used for Apple Login.

    !> NOTE: A setting with this name must exist in app_settings to function correctly.

    loginScopes List<String>

    A list of Login Scopes provided by this Authentication Provider.

    NOTE: This is configured on the Authentication Provider side and is Read Only here.

    WindowsFunctionAppAuthSettingsV2AzureStaticWebAppV2, WindowsFunctionAppAuthSettingsV2AzureStaticWebAppV2Args

    ClientId string
    The ID of the Client to use to authenticate with Azure Static Web App Authentication.
    ClientId string
    The ID of the Client to use to authenticate with Azure Static Web App Authentication.
    clientId String
    The ID of the Client to use to authenticate with Azure Static Web App Authentication.
    clientId string
    The ID of the Client to use to authenticate with Azure Static Web App Authentication.
    client_id str
    The ID of the Client to use to authenticate with Azure Static Web App Authentication.
    clientId String
    The ID of the Client to use to authenticate with Azure Static Web App Authentication.

    WindowsFunctionAppAuthSettingsV2CustomOidcV2, WindowsFunctionAppAuthSettingsV2CustomOidcV2Args

    ClientId string
    The ID of the Client to use to authenticate with the Custom OIDC.
    Name string

    The name of the Custom OIDC Authentication Provider.

    NOTE: An app_setting matching this value in upper case with the suffix of _PROVIDER_AUTHENTICATION_SECRET is required. e.g. MYOIDC_PROVIDER_AUTHENTICATION_SECRET for a value of myoidc.

    OpenidConfigurationEndpoint string
    The app setting name that contains the client_secret value used for the Custom OIDC Login.
    AuthorisationEndpoint string
    The endpoint to make the Authorisation Request as supplied by openid_configuration_endpoint response.
    CertificationUri string
    The endpoint that provides the keys necessary to validate the token as supplied by openid_configuration_endpoint response.
    ClientCredentialMethod string
    The Client Credential Method used.
    ClientSecretSettingName string
    The App Setting name that contains the secret for this Custom OIDC Client. This is generated from name above and suffixed with _PROVIDER_AUTHENTICATION_SECRET.
    IssuerEndpoint string
    The endpoint that issued the Token as supplied by openid_configuration_endpoint response.
    NameClaimType string
    The name of the claim that contains the users name.
    Scopes List<string>
    The list of the scopes that should be requested while authenticating.
    TokenEndpoint string
    The endpoint used to request a Token as supplied by openid_configuration_endpoint response.
    ClientId string
    The ID of the Client to use to authenticate with the Custom OIDC.
    Name string

    The name of the Custom OIDC Authentication Provider.

    NOTE: An app_setting matching this value in upper case with the suffix of _PROVIDER_AUTHENTICATION_SECRET is required. e.g. MYOIDC_PROVIDER_AUTHENTICATION_SECRET for a value of myoidc.

    OpenidConfigurationEndpoint string
    The app setting name that contains the client_secret value used for the Custom OIDC Login.
    AuthorisationEndpoint string
    The endpoint to make the Authorisation Request as supplied by openid_configuration_endpoint response.
    CertificationUri string
    The endpoint that provides the keys necessary to validate the token as supplied by openid_configuration_endpoint response.
    ClientCredentialMethod string
    The Client Credential Method used.
    ClientSecretSettingName string
    The App Setting name that contains the secret for this Custom OIDC Client. This is generated from name above and suffixed with _PROVIDER_AUTHENTICATION_SECRET.
    IssuerEndpoint string
    The endpoint that issued the Token as supplied by openid_configuration_endpoint response.
    NameClaimType string
    The name of the claim that contains the users name.
    Scopes []string
    The list of the scopes that should be requested while authenticating.
    TokenEndpoint string
    The endpoint used to request a Token as supplied by openid_configuration_endpoint response.
    clientId String
    The ID of the Client to use to authenticate with the Custom OIDC.
    name String

    The name of the Custom OIDC Authentication Provider.

    NOTE: An app_setting matching this value in upper case with the suffix of _PROVIDER_AUTHENTICATION_SECRET is required. e.g. MYOIDC_PROVIDER_AUTHENTICATION_SECRET for a value of myoidc.

    openidConfigurationEndpoint String
    The app setting name that contains the client_secret value used for the Custom OIDC Login.
    authorisationEndpoint String
    The endpoint to make the Authorisation Request as supplied by openid_configuration_endpoint response.
    certificationUri String
    The endpoint that provides the keys necessary to validate the token as supplied by openid_configuration_endpoint response.
    clientCredentialMethod String
    The Client Credential Method used.
    clientSecretSettingName String
    The App Setting name that contains the secret for this Custom OIDC Client. This is generated from name above and suffixed with _PROVIDER_AUTHENTICATION_SECRET.
    issuerEndpoint String
    The endpoint that issued the Token as supplied by openid_configuration_endpoint response.
    nameClaimType String
    The name of the claim that contains the users name.
    scopes List<String>
    The list of the scopes that should be requested while authenticating.
    tokenEndpoint String
    The endpoint used to request a Token as supplied by openid_configuration_endpoint response.
    clientId string
    The ID of the Client to use to authenticate with the Custom OIDC.
    name string

    The name of the Custom OIDC Authentication Provider.

    NOTE: An app_setting matching this value in upper case with the suffix of _PROVIDER_AUTHENTICATION_SECRET is required. e.g. MYOIDC_PROVIDER_AUTHENTICATION_SECRET for a value of myoidc.

    openidConfigurationEndpoint string
    The app setting name that contains the client_secret value used for the Custom OIDC Login.
    authorisationEndpoint string
    The endpoint to make the Authorisation Request as supplied by openid_configuration_endpoint response.
    certificationUri string
    The endpoint that provides the keys necessary to validate the token as supplied by openid_configuration_endpoint response.
    clientCredentialMethod string
    The Client Credential Method used.
    clientSecretSettingName string
    The App Setting name that contains the secret for this Custom OIDC Client. This is generated from name above and suffixed with _PROVIDER_AUTHENTICATION_SECRET.
    issuerEndpoint string
    The endpoint that issued the Token as supplied by openid_configuration_endpoint response.
    nameClaimType string
    The name of the claim that contains the users name.
    scopes string[]
    The list of the scopes that should be requested while authenticating.
    tokenEndpoint string
    The endpoint used to request a Token as supplied by openid_configuration_endpoint response.
    client_id str
    The ID of the Client to use to authenticate with the Custom OIDC.
    name str

    The name of the Custom OIDC Authentication Provider.

    NOTE: An app_setting matching this value in upper case with the suffix of _PROVIDER_AUTHENTICATION_SECRET is required. e.g. MYOIDC_PROVIDER_AUTHENTICATION_SECRET for a value of myoidc.

    openid_configuration_endpoint str
    The app setting name that contains the client_secret value used for the Custom OIDC Login.
    authorisation_endpoint str
    The endpoint to make the Authorisation Request as supplied by openid_configuration_endpoint response.
    certification_uri str
    The endpoint that provides the keys necessary to validate the token as supplied by openid_configuration_endpoint response.
    client_credential_method str
    The Client Credential Method used.
    client_secret_setting_name str
    The App Setting name that contains the secret for this Custom OIDC Client. This is generated from name above and suffixed with _PROVIDER_AUTHENTICATION_SECRET.
    issuer_endpoint str
    The endpoint that issued the Token as supplied by openid_configuration_endpoint response.
    name_claim_type str
    The name of the claim that contains the users name.
    scopes Sequence[str]
    The list of the scopes that should be requested while authenticating.
    token_endpoint str
    The endpoint used to request a Token as supplied by openid_configuration_endpoint response.
    clientId String
    The ID of the Client to use to authenticate with the Custom OIDC.
    name String

    The name of the Custom OIDC Authentication Provider.

    NOTE: An app_setting matching this value in upper case with the suffix of _PROVIDER_AUTHENTICATION_SECRET is required. e.g. MYOIDC_PROVIDER_AUTHENTICATION_SECRET for a value of myoidc.

    openidConfigurationEndpoint String
    The app setting name that contains the client_secret value used for the Custom OIDC Login.
    authorisationEndpoint String
    The endpoint to make the Authorisation Request as supplied by openid_configuration_endpoint response.
    certificationUri String
    The endpoint that provides the keys necessary to validate the token as supplied by openid_configuration_endpoint response.
    clientCredentialMethod String
    The Client Credential Method used.
    clientSecretSettingName String
    The App Setting name that contains the secret for this Custom OIDC Client. This is generated from name above and suffixed with _PROVIDER_AUTHENTICATION_SECRET.
    issuerEndpoint String
    The endpoint that issued the Token as supplied by openid_configuration_endpoint response.
    nameClaimType String
    The name of the claim that contains the users name.
    scopes List<String>
    The list of the scopes that should be requested while authenticating.
    tokenEndpoint String
    The endpoint used to request a Token as supplied by openid_configuration_endpoint response.

    WindowsFunctionAppAuthSettingsV2FacebookV2, WindowsFunctionAppAuthSettingsV2FacebookV2Args

    AppId string
    The App ID of the Facebook app used for login.
    AppSecretSettingName string

    The app setting name that contains the app_secret value used for Facebook Login.

    !> NOTE: A setting with this name must exist in app_settings to function correctly.

    GraphApiVersion string
    The version of the Facebook API to be used while logging in.
    LoginScopes List<string>
    The list of scopes that should be requested as part of Facebook Login authentication.
    AppId string
    The App ID of the Facebook app used for login.
    AppSecretSettingName string

    The app setting name that contains the app_secret value used for Facebook Login.

    !> NOTE: A setting with this name must exist in app_settings to function correctly.

    GraphApiVersion string
    The version of the Facebook API to be used while logging in.
    LoginScopes []string
    The list of scopes that should be requested as part of Facebook Login authentication.
    appId String
    The App ID of the Facebook app used for login.
    appSecretSettingName String

    The app setting name that contains the app_secret value used for Facebook Login.

    !> NOTE: A setting with this name must exist in app_settings to function correctly.

    graphApiVersion String
    The version of the Facebook API to be used while logging in.
    loginScopes List<String>
    The list of scopes that should be requested as part of Facebook Login authentication.
    appId string
    The App ID of the Facebook app used for login.
    appSecretSettingName string

    The app setting name that contains the app_secret value used for Facebook Login.

    !> NOTE: A setting with this name must exist in app_settings to function correctly.

    graphApiVersion string
    The version of the Facebook API to be used while logging in.
    loginScopes string[]
    The list of scopes that should be requested as part of Facebook Login authentication.
    app_id str
    The App ID of the Facebook app used for login.
    app_secret_setting_name str

    The app setting name that contains the app_secret value used for Facebook Login.

    !> NOTE: A setting with this name must exist in app_settings to function correctly.

    graph_api_version str
    The version of the Facebook API to be used while logging in.
    login_scopes Sequence[str]
    The list of scopes that should be requested as part of Facebook Login authentication.
    appId String
    The App ID of the Facebook app used for login.
    appSecretSettingName String

    The app setting name that contains the app_secret value used for Facebook Login.

    !> NOTE: A setting with this name must exist in app_settings to function correctly.

    graphApiVersion String
    The version of the Facebook API to be used while logging in.
    loginScopes List<String>
    The list of scopes that should be requested as part of Facebook Login authentication.

    WindowsFunctionAppAuthSettingsV2GithubV2, WindowsFunctionAppAuthSettingsV2GithubV2Args

    ClientId string
    The ID of the GitHub app used for login..
    ClientSecretSettingName string

    The app setting name that contains the client_secret value used for GitHub Login.

    !> NOTE: A setting with this name must exist in app_settings to function correctly.

    LoginScopes List<string>
    The list of OAuth 2.0 scopes that should be requested as part of GitHub Login authentication.
    ClientId string
    The ID of the GitHub app used for login..
    ClientSecretSettingName string

    The app setting name that contains the client_secret value used for GitHub Login.

    !> NOTE: A setting with this name must exist in app_settings to function correctly.

    LoginScopes []string
    The list of OAuth 2.0 scopes that should be requested as part of GitHub Login authentication.
    clientId String
    The ID of the GitHub app used for login..
    clientSecretSettingName String

    The app setting name that contains the client_secret value used for GitHub Login.

    !> NOTE: A setting with this name must exist in app_settings to function correctly.

    loginScopes List<String>
    The list of OAuth 2.0 scopes that should be requested as part of GitHub Login authentication.
    clientId string
    The ID of the GitHub app used for login..
    clientSecretSettingName string

    The app setting name that contains the client_secret value used for GitHub Login.

    !> NOTE: A setting with this name must exist in app_settings to function correctly.

    loginScopes string[]
    The list of OAuth 2.0 scopes that should be requested as part of GitHub Login authentication.
    client_id str
    The ID of the GitHub app used for login..
    client_secret_setting_name str

    The app setting name that contains the client_secret value used for GitHub Login.

    !> NOTE: A setting with this name must exist in app_settings to function correctly.

    login_scopes Sequence[str]
    The list of OAuth 2.0 scopes that should be requested as part of GitHub Login authentication.
    clientId String
    The ID of the GitHub app used for login..
    clientSecretSettingName String

    The app setting name that contains the client_secret value used for GitHub Login.

    !> NOTE: A setting with this name must exist in app_settings to function correctly.

    loginScopes List<String>
    The list of OAuth 2.0 scopes that should be requested as part of GitHub Login authentication.

    WindowsFunctionAppAuthSettingsV2GoogleV2, WindowsFunctionAppAuthSettingsV2GoogleV2Args

    ClientId string
    The OpenID Connect Client ID for the Google web application.
    ClientSecretSettingName string

    The app setting name that contains the client_secret value used for Google Login.

    !> NOTE: A setting with this name must exist in app_settings to function correctly.

    AllowedAudiences List<string>
    Specifies a list of Allowed Audiences that should be requested as part of Google Sign-In authentication.
    LoginScopes List<string>
    The list of OAuth 2.0 scopes that should be requested as part of Google Sign-In authentication.
    ClientId string
    The OpenID Connect Client ID for the Google web application.
    ClientSecretSettingName string

    The app setting name that contains the client_secret value used for Google Login.

    !> NOTE: A setting with this name must exist in app_settings to function correctly.

    AllowedAudiences []string
    Specifies a list of Allowed Audiences that should be requested as part of Google Sign-In authentication.
    LoginScopes []string
    The list of OAuth 2.0 scopes that should be requested as part of Google Sign-In authentication.
    clientId String
    The OpenID Connect Client ID for the Google web application.
    clientSecretSettingName String

    The app setting name that contains the client_secret value used for Google Login.

    !> NOTE: A setting with this name must exist in app_settings to function correctly.

    allowedAudiences List<String>
    Specifies a list of Allowed Audiences that should be requested as part of Google Sign-In authentication.
    loginScopes List<String>
    The list of OAuth 2.0 scopes that should be requested as part of Google Sign-In authentication.
    clientId string
    The OpenID Connect Client ID for the Google web application.
    clientSecretSettingName string

    The app setting name that contains the client_secret value used for Google Login.

    !> NOTE: A setting with this name must exist in app_settings to function correctly.

    allowedAudiences string[]
    Specifies a list of Allowed Audiences that should be requested as part of Google Sign-In authentication.
    loginScopes string[]
    The list of OAuth 2.0 scopes that should be requested as part of Google Sign-In authentication.
    client_id str
    The OpenID Connect Client ID for the Google web application.
    client_secret_setting_name str

    The app setting name that contains the client_secret value used for Google Login.

    !> NOTE: A setting with this name must exist in app_settings to function correctly.

    allowed_audiences Sequence[str]
    Specifies a list of Allowed Audiences that should be requested as part of Google Sign-In authentication.
    login_scopes Sequence[str]
    The list of OAuth 2.0 scopes that should be requested as part of Google Sign-In authentication.
    clientId String
    The OpenID Connect Client ID for the Google web application.
    clientSecretSettingName String

    The app setting name that contains the client_secret value used for Google Login.

    !> NOTE: A setting with this name must exist in app_settings to function correctly.

    allowedAudiences List<String>
    Specifies a list of Allowed Audiences that should be requested as part of Google Sign-In authentication.
    loginScopes List<String>
    The list of OAuth 2.0 scopes that should be requested as part of Google Sign-In authentication.

    WindowsFunctionAppAuthSettingsV2Login, WindowsFunctionAppAuthSettingsV2LoginArgs

    AllowedExternalRedirectUrls List<string>

    External URLs that can be redirected to as part of logging in or logging out of the app. This is an advanced setting typically only needed by Windows Store application backends.

    Note: URLs within the current domain are always implicitly allowed.

    CookieExpirationConvention string
    The method by which cookies expire. Possible values include: FixedTime, and IdentityProviderDerived. Defaults to FixedTime.
    CookieExpirationTime string
    The time after the request is made when the session cookie should expire. Defaults to 08:00:00.
    LogoutEndpoint string
    The endpoint to which logout requests should be made.
    NonceExpirationTime string
    The time after the request is made when the nonce should expire. Defaults to 00:05:00.
    PreserveUrlFragmentsForLogins bool
    Should the fragments from the request be preserved after the login request is made. Defaults to false.
    TokenRefreshExtensionTime double
    The number of hours after session token expiration that a session token can be used to call the token refresh API. Defaults to 72 hours.
    TokenStoreEnabled bool
    Should the Token Store configuration Enabled. Defaults to false
    TokenStorePath string
    The directory path in the App Filesystem in which the tokens will be stored.
    TokenStoreSasSettingName string
    The name of the app setting which contains the SAS URL of the blob storage containing the tokens.
    ValidateNonce bool
    Should the nonce be validated while completing the login flow. Defaults to true.
    AllowedExternalRedirectUrls []string

    External URLs that can be redirected to as part of logging in or logging out of the app. This is an advanced setting typically only needed by Windows Store application backends.

    Note: URLs within the current domain are always implicitly allowed.

    CookieExpirationConvention string
    The method by which cookies expire. Possible values include: FixedTime, and IdentityProviderDerived. Defaults to FixedTime.
    CookieExpirationTime string
    The time after the request is made when the session cookie should expire. Defaults to 08:00:00.
    LogoutEndpoint string
    The endpoint to which logout requests should be made.
    NonceExpirationTime string
    The time after the request is made when the nonce should expire. Defaults to 00:05:00.
    PreserveUrlFragmentsForLogins bool
    Should the fragments from the request be preserved after the login request is made. Defaults to false.
    TokenRefreshExtensionTime float64
    The number of hours after session token expiration that a session token can be used to call the token refresh API. Defaults to 72 hours.
    TokenStoreEnabled bool
    Should the Token Store configuration Enabled. Defaults to false
    TokenStorePath string
    The directory path in the App Filesystem in which the tokens will be stored.
    TokenStoreSasSettingName string
    The name of the app setting which contains the SAS URL of the blob storage containing the tokens.
    ValidateNonce bool
    Should the nonce be validated while completing the login flow. Defaults to true.
    allowedExternalRedirectUrls List<String>

    External URLs that can be redirected to as part of logging in or logging out of the app. This is an advanced setting typically only needed by Windows Store application backends.

    Note: URLs within the current domain are always implicitly allowed.

    cookieExpirationConvention String
    The method by which cookies expire. Possible values include: FixedTime, and IdentityProviderDerived. Defaults to FixedTime.
    cookieExpirationTime String
    The time after the request is made when the session cookie should expire. Defaults to 08:00:00.
    logoutEndpoint String
    The endpoint to which logout requests should be made.
    nonceExpirationTime String
    The time after the request is made when the nonce should expire. Defaults to 00:05:00.
    preserveUrlFragmentsForLogins Boolean
    Should the fragments from the request be preserved after the login request is made. Defaults to false.
    tokenRefreshExtensionTime Double
    The number of hours after session token expiration that a session token can be used to call the token refresh API. Defaults to 72 hours.
    tokenStoreEnabled Boolean
    Should the Token Store configuration Enabled. Defaults to false
    tokenStorePath String
    The directory path in the App Filesystem in which the tokens will be stored.
    tokenStoreSasSettingName String
    The name of the app setting which contains the SAS URL of the blob storage containing the tokens.
    validateNonce Boolean
    Should the nonce be validated while completing the login flow. Defaults to true.
    allowedExternalRedirectUrls string[]

    External URLs that can be redirected to as part of logging in or logging out of the app. This is an advanced setting typically only needed by Windows Store application backends.

    Note: URLs within the current domain are always implicitly allowed.

    cookieExpirationConvention string
    The method by which cookies expire. Possible values include: FixedTime, and IdentityProviderDerived. Defaults to FixedTime.
    cookieExpirationTime string
    The time after the request is made when the session cookie should expire. Defaults to 08:00:00.
    logoutEndpoint string
    The endpoint to which logout requests should be made.
    nonceExpirationTime string
    The time after the request is made when the nonce should expire. Defaults to 00:05:00.
    preserveUrlFragmentsForLogins boolean
    Should the fragments from the request be preserved after the login request is made. Defaults to false.
    tokenRefreshExtensionTime number
    The number of hours after session token expiration that a session token can be used to call the token refresh API. Defaults to 72 hours.
    tokenStoreEnabled boolean
    Should the Token Store configuration Enabled. Defaults to false
    tokenStorePath string
    The directory path in the App Filesystem in which the tokens will be stored.
    tokenStoreSasSettingName string
    The name of the app setting which contains the SAS URL of the blob storage containing the tokens.
    validateNonce boolean
    Should the nonce be validated while completing the login flow. Defaults to true.
    allowed_external_redirect_urls Sequence[str]

    External URLs that can be redirected to as part of logging in or logging out of the app. This is an advanced setting typically only needed by Windows Store application backends.

    Note: URLs within the current domain are always implicitly allowed.

    cookie_expiration_convention str
    The method by which cookies expire. Possible values include: FixedTime, and IdentityProviderDerived. Defaults to FixedTime.
    cookie_expiration_time str
    The time after the request is made when the session cookie should expire. Defaults to 08:00:00.
    logout_endpoint str
    The endpoint to which logout requests should be made.
    nonce_expiration_time str
    The time after the request is made when the nonce should expire. Defaults to 00:05:00.
    preserve_url_fragments_for_logins bool
    Should the fragments from the request be preserved after the login request is made. Defaults to false.
    token_refresh_extension_time float
    The number of hours after session token expiration that a session token can be used to call the token refresh API. Defaults to 72 hours.
    token_store_enabled bool
    Should the Token Store configuration Enabled. Defaults to false
    token_store_path str
    The directory path in the App Filesystem in which the tokens will be stored.
    token_store_sas_setting_name str
    The name of the app setting which contains the SAS URL of the blob storage containing the tokens.
    validate_nonce bool
    Should the nonce be validated while completing the login flow. Defaults to true.
    allowedExternalRedirectUrls List<String>

    External URLs that can be redirected to as part of logging in or logging out of the app. This is an advanced setting typically only needed by Windows Store application backends.

    Note: URLs within the current domain are always implicitly allowed.

    cookieExpirationConvention String
    The method by which cookies expire. Possible values include: FixedTime, and IdentityProviderDerived. Defaults to FixedTime.
    cookieExpirationTime String
    The time after the request is made when the session cookie should expire. Defaults to 08:00:00.
    logoutEndpoint String
    The endpoint to which logout requests should be made.
    nonceExpirationTime String
    The time after the request is made when the nonce should expire. Defaults to 00:05:00.
    preserveUrlFragmentsForLogins Boolean
    Should the fragments from the request be preserved after the login request is made. Defaults to false.
    tokenRefreshExtensionTime Number
    The number of hours after session token expiration that a session token can be used to call the token refresh API. Defaults to 72 hours.
    tokenStoreEnabled Boolean
    Should the Token Store configuration Enabled. Defaults to false
    tokenStorePath String
    The directory path in the App Filesystem in which the tokens will be stored.
    tokenStoreSasSettingName String
    The name of the app setting which contains the SAS URL of the blob storage containing the tokens.
    validateNonce Boolean
    Should the nonce be validated while completing the login flow. Defaults to true.

    WindowsFunctionAppAuthSettingsV2MicrosoftV2, WindowsFunctionAppAuthSettingsV2MicrosoftV2Args

    ClientId string
    The OAuth 2.0 client ID that was created for the app used for authentication.
    ClientSecretSettingName string

    The app setting name containing the OAuth 2.0 client secret that was created for the app used for authentication.

    !> NOTE: A setting with this name must exist in app_settings to function correctly.

    AllowedAudiences List<string>
    Specifies a list of Allowed Audiences that will be requested as part of Microsoft Sign-In authentication.
    LoginScopes List<string>
    The list of Login scopes that should be requested as part of Microsoft Account authentication.
    ClientId string
    The OAuth 2.0 client ID that was created for the app used for authentication.
    ClientSecretSettingName string

    The app setting name containing the OAuth 2.0 client secret that was created for the app used for authentication.

    !> NOTE: A setting with this name must exist in app_settings to function correctly.

    AllowedAudiences []string
    Specifies a list of Allowed Audiences that will be requested as part of Microsoft Sign-In authentication.
    LoginScopes []string
    The list of Login scopes that should be requested as part of Microsoft Account authentication.
    clientId String
    The OAuth 2.0 client ID that was created for the app used for authentication.
    clientSecretSettingName String

    The app setting name containing the OAuth 2.0 client secret that was created for the app used for authentication.

    !> NOTE: A setting with this name must exist in app_settings to function correctly.

    allowedAudiences List<String>
    Specifies a list of Allowed Audiences that will be requested as part of Microsoft Sign-In authentication.
    loginScopes List<String>
    The list of Login scopes that should be requested as part of Microsoft Account authentication.
    clientId string
    The OAuth 2.0 client ID that was created for the app used for authentication.
    clientSecretSettingName string

    The app setting name containing the OAuth 2.0 client secret that was created for the app used for authentication.

    !> NOTE: A setting with this name must exist in app_settings to function correctly.

    allowedAudiences string[]
    Specifies a list of Allowed Audiences that will be requested as part of Microsoft Sign-In authentication.
    loginScopes string[]
    The list of Login scopes that should be requested as part of Microsoft Account authentication.
    client_id str
    The OAuth 2.0 client ID that was created for the app used for authentication.
    client_secret_setting_name str

    The app setting name containing the OAuth 2.0 client secret that was created for the app used for authentication.

    !> NOTE: A setting with this name must exist in app_settings to function correctly.

    allowed_audiences Sequence[str]
    Specifies a list of Allowed Audiences that will be requested as part of Microsoft Sign-In authentication.
    login_scopes Sequence[str]
    The list of Login scopes that should be requested as part of Microsoft Account authentication.
    clientId String
    The OAuth 2.0 client ID that was created for the app used for authentication.
    clientSecretSettingName String

    The app setting name containing the OAuth 2.0 client secret that was created for the app used for authentication.

    !> NOTE: A setting with this name must exist in app_settings to function correctly.

    allowedAudiences List<String>
    Specifies a list of Allowed Audiences that will be requested as part of Microsoft Sign-In authentication.
    loginScopes List<String>
    The list of Login scopes that should be requested as part of Microsoft Account authentication.

    WindowsFunctionAppAuthSettingsV2TwitterV2, WindowsFunctionAppAuthSettingsV2TwitterV2Args

    ConsumerKey string
    The OAuth 1.0a consumer key of the Twitter application used for sign-in.
    ConsumerSecretSettingName string

    The app setting name that contains the OAuth 1.0a consumer secret of the Twitter application used for sign-in.

    !> NOTE: A setting with this name must exist in app_settings to function correctly.

    ConsumerKey string
    The OAuth 1.0a consumer key of the Twitter application used for sign-in.
    ConsumerSecretSettingName string

    The app setting name that contains the OAuth 1.0a consumer secret of the Twitter application used for sign-in.

    !> NOTE: A setting with this name must exist in app_settings to function correctly.

    consumerKey String
    The OAuth 1.0a consumer key of the Twitter application used for sign-in.
    consumerSecretSettingName String

    The app setting name that contains the OAuth 1.0a consumer secret of the Twitter application used for sign-in.

    !> NOTE: A setting with this name must exist in app_settings to function correctly.

    consumerKey string
    The OAuth 1.0a consumer key of the Twitter application used for sign-in.
    consumerSecretSettingName string

    The app setting name that contains the OAuth 1.0a consumer secret of the Twitter application used for sign-in.

    !> NOTE: A setting with this name must exist in app_settings to function correctly.

    consumer_key str
    The OAuth 1.0a consumer key of the Twitter application used for sign-in.
    consumer_secret_setting_name str

    The app setting name that contains the OAuth 1.0a consumer secret of the Twitter application used for sign-in.

    !> NOTE: A setting with this name must exist in app_settings to function correctly.

    consumerKey String
    The OAuth 1.0a consumer key of the Twitter application used for sign-in.
    consumerSecretSettingName String

    The app setting name that contains the OAuth 1.0a consumer secret of the Twitter application used for sign-in.

    !> NOTE: A setting with this name must exist in app_settings to function correctly.

    WindowsFunctionAppBackup, WindowsFunctionAppBackupArgs

    Name string
    The name which should be used for this Backup.
    Schedule WindowsFunctionAppBackupSchedule
    A schedule block as defined below.
    StorageAccountUrl string
    The SAS URL to the container.
    Enabled bool
    Should this backup job be enabled? Defaults to true.
    Name string
    The name which should be used for this Backup.
    Schedule WindowsFunctionAppBackupSchedule
    A schedule block as defined below.
    StorageAccountUrl string
    The SAS URL to the container.
    Enabled bool
    Should this backup job be enabled? Defaults to true.
    name String
    The name which should be used for this Backup.
    schedule WindowsFunctionAppBackupSchedule
    A schedule block as defined below.
    storageAccountUrl String
    The SAS URL to the container.
    enabled Boolean
    Should this backup job be enabled? Defaults to true.
    name string
    The name which should be used for this Backup.
    schedule WindowsFunctionAppBackupSchedule
    A schedule block as defined below.
    storageAccountUrl string
    The SAS URL to the container.
    enabled boolean
    Should this backup job be enabled? Defaults to true.
    name str
    The name which should be used for this Backup.
    schedule WindowsFunctionAppBackupSchedule
    A schedule block as defined below.
    storage_account_url str
    The SAS URL to the container.
    enabled bool
    Should this backup job be enabled? Defaults to true.
    name String
    The name which should be used for this Backup.
    schedule Property Map
    A schedule block as defined below.
    storageAccountUrl String
    The SAS URL to the container.
    enabled Boolean
    Should this backup job be enabled? Defaults to true.

    WindowsFunctionAppBackupSchedule, WindowsFunctionAppBackupScheduleArgs

    FrequencyInterval int

    How often the backup should be executed (e.g. for weekly backup, this should be set to 7 and frequency_unit should be set to Day).

    NOTE: Not all intervals are supported on all Windows Function App SKUs. Please refer to the official documentation for appropriate values.

    FrequencyUnit string
    The unit of time for how often the backup should take place. Possible values include: Day and Hour.
    KeepAtLeastOneBackup bool
    Should the service keep at least one backup, regardless of age of backup. Defaults to false.
    LastExecutionTime string
    The time the backup was last attempted.
    RetentionPeriodDays int
    After how many days backups should be deleted. Defaults to 30.
    StartTime string
    When the schedule should start working in RFC-3339 format.
    FrequencyInterval int

    How often the backup should be executed (e.g. for weekly backup, this should be set to 7 and frequency_unit should be set to Day).

    NOTE: Not all intervals are supported on all Windows Function App SKUs. Please refer to the official documentation for appropriate values.

    FrequencyUnit string
    The unit of time for how often the backup should take place. Possible values include: Day and Hour.
    KeepAtLeastOneBackup bool
    Should the service keep at least one backup, regardless of age of backup. Defaults to false.
    LastExecutionTime string
    The time the backup was last attempted.
    RetentionPeriodDays int
    After how many days backups should be deleted. Defaults to 30.
    StartTime string
    When the schedule should start working in RFC-3339 format.
    frequencyInterval Integer

    How often the backup should be executed (e.g. for weekly backup, this should be set to 7 and frequency_unit should be set to Day).

    NOTE: Not all intervals are supported on all Windows Function App SKUs. Please refer to the official documentation for appropriate values.

    frequencyUnit String
    The unit of time for how often the backup should take place. Possible values include: Day and Hour.
    keepAtLeastOneBackup Boolean
    Should the service keep at least one backup, regardless of age of backup. Defaults to false.
    lastExecutionTime String
    The time the backup was last attempted.
    retentionPeriodDays Integer
    After how many days backups should be deleted. Defaults to 30.
    startTime String
    When the schedule should start working in RFC-3339 format.
    frequencyInterval number

    How often the backup should be executed (e.g. for weekly backup, this should be set to 7 and frequency_unit should be set to Day).

    NOTE: Not all intervals are supported on all Windows Function App SKUs. Please refer to the official documentation for appropriate values.

    frequencyUnit string
    The unit of time for how often the backup should take place. Possible values include: Day and Hour.
    keepAtLeastOneBackup boolean
    Should the service keep at least one backup, regardless of age of backup. Defaults to false.
    lastExecutionTime string
    The time the backup was last attempted.
    retentionPeriodDays number
    After how many days backups should be deleted. Defaults to 30.
    startTime string
    When the schedule should start working in RFC-3339 format.
    frequency_interval int

    How often the backup should be executed (e.g. for weekly backup, this should be set to 7 and frequency_unit should be set to Day).

    NOTE: Not all intervals are supported on all Windows Function App SKUs. Please refer to the official documentation for appropriate values.

    frequency_unit str
    The unit of time for how often the backup should take place. Possible values include: Day and Hour.
    keep_at_least_one_backup bool
    Should the service keep at least one backup, regardless of age of backup. Defaults to false.
    last_execution_time str
    The time the backup was last attempted.
    retention_period_days int
    After how many days backups should be deleted. Defaults to 30.
    start_time str
    When the schedule should start working in RFC-3339 format.
    frequencyInterval Number

    How often the backup should be executed (e.g. for weekly backup, this should be set to 7 and frequency_unit should be set to Day).

    NOTE: Not all intervals are supported on all Windows Function App SKUs. Please refer to the official documentation for appropriate values.

    frequencyUnit String
    The unit of time for how often the backup should take place. Possible values include: Day and Hour.
    keepAtLeastOneBackup Boolean
    Should the service keep at least one backup, regardless of age of backup. Defaults to false.
    lastExecutionTime String
    The time the backup was last attempted.
    retentionPeriodDays Number
    After how many days backups should be deleted. Defaults to 30.
    startTime String
    When the schedule should start working in RFC-3339 format.

    WindowsFunctionAppConnectionString, WindowsFunctionAppConnectionStringArgs

    Name string
    The name which should be used for this Connection.
    Type string
    Type of database. Possible values include: APIHub, Custom, DocDb, EventHub, MySQL, NotificationHub, PostgreSQL, RedisCache, ServiceBus, SQLAzure, and SQLServer.
    Value string
    The connection string value.
    Name string
    The name which should be used for this Connection.
    Type string
    Type of database. Possible values include: APIHub, Custom, DocDb, EventHub, MySQL, NotificationHub, PostgreSQL, RedisCache, ServiceBus, SQLAzure, and SQLServer.
    Value string
    The connection string value.
    name String
    The name which should be used for this Connection.
    type String
    Type of database. Possible values include: APIHub, Custom, DocDb, EventHub, MySQL, NotificationHub, PostgreSQL, RedisCache, ServiceBus, SQLAzure, and SQLServer.
    value String
    The connection string value.
    name string
    The name which should be used for this Connection.
    type string
    Type of database. Possible values include: APIHub, Custom, DocDb, EventHub, MySQL, NotificationHub, PostgreSQL, RedisCache, ServiceBus, SQLAzure, and SQLServer.
    value string
    The connection string value.
    name str
    The name which should be used for this Connection.
    type str
    Type of database. Possible values include: APIHub, Custom, DocDb, EventHub, MySQL, NotificationHub, PostgreSQL, RedisCache, ServiceBus, SQLAzure, and SQLServer.
    value str
    The connection string value.
    name String
    The name which should be used for this Connection.
    type String
    Type of database. Possible values include: APIHub, Custom, DocDb, EventHub, MySQL, NotificationHub, PostgreSQL, RedisCache, ServiceBus, SQLAzure, and SQLServer.
    value String
    The connection string value.

    WindowsFunctionAppIdentity, WindowsFunctionAppIdentityArgs

    Type string
    Specifies the type of Managed Service Identity that should be configured on this Windows Function App. Possible values are SystemAssigned, UserAssigned, SystemAssigned, UserAssigned (to enable both).
    IdentityIds List<string>

    A list of User Assigned Managed Identity IDs to be assigned to this Windows Function App.

    NOTE: This is required when type is set to UserAssigned or SystemAssigned, UserAssigned.

    PrincipalId string
    The Principal ID associated with this Managed Service Identity.
    TenantId string
    The Tenant ID associated with this Managed Service Identity.
    Type string
    Specifies the type of Managed Service Identity that should be configured on this Windows Function App. Possible values are SystemAssigned, UserAssigned, SystemAssigned, UserAssigned (to enable both).
    IdentityIds []string

    A list of User Assigned Managed Identity IDs to be assigned to this Windows Function App.

    NOTE: This is required when type is set to UserAssigned or SystemAssigned, UserAssigned.

    PrincipalId string
    The Principal ID associated with this Managed Service Identity.
    TenantId string
    The Tenant ID associated with this Managed Service Identity.
    type String
    Specifies the type of Managed Service Identity that should be configured on this Windows Function App. Possible values are SystemAssigned, UserAssigned, SystemAssigned, UserAssigned (to enable both).
    identityIds List<String>

    A list of User Assigned Managed Identity IDs to be assigned to this Windows Function App.

    NOTE: This is required when type is set to UserAssigned or SystemAssigned, UserAssigned.

    principalId String
    The Principal ID associated with this Managed Service Identity.
    tenantId String
    The Tenant ID associated with this Managed Service Identity.
    type string
    Specifies the type of Managed Service Identity that should be configured on this Windows Function App. Possible values are SystemAssigned, UserAssigned, SystemAssigned, UserAssigned (to enable both).
    identityIds string[]

    A list of User Assigned Managed Identity IDs to be assigned to this Windows Function App.

    NOTE: This is required when type is set to UserAssigned or SystemAssigned, UserAssigned.

    principalId string
    The Principal ID associated with this Managed Service Identity.
    tenantId string
    The Tenant ID associated with this Managed Service Identity.
    type str
    Specifies the type of Managed Service Identity that should be configured on this Windows Function App. Possible values are SystemAssigned, UserAssigned, SystemAssigned, UserAssigned (to enable both).
    identity_ids Sequence[str]

    A list of User Assigned Managed Identity IDs to be assigned to this Windows Function App.

    NOTE: This is required when type is set to UserAssigned or SystemAssigned, UserAssigned.

    principal_id str
    The Principal ID associated with this Managed Service Identity.
    tenant_id str
    The Tenant ID associated with this Managed Service Identity.
    type String
    Specifies the type of Managed Service Identity that should be configured on this Windows Function App. Possible values are SystemAssigned, UserAssigned, SystemAssigned, UserAssigned (to enable both).
    identityIds List<String>

    A list of User Assigned Managed Identity IDs to be assigned to this Windows Function App.

    NOTE: This is required when type is set to UserAssigned or SystemAssigned, UserAssigned.

    principalId String
    The Principal ID associated with this Managed Service Identity.
    tenantId String
    The Tenant ID associated with this Managed Service Identity.

    WindowsFunctionAppSiteConfig, WindowsFunctionAppSiteConfigArgs

    AlwaysOn bool

    If this Windows Function App is Always On enabled. Defaults to false.

    NOTE: when running in a Consumption or Premium Plan, always_on feature should be turned off. Please turn it off before upgrading the service plan from standard to premium.

    ApiDefinitionUrl string
    The URL of the API definition that describes this Windows Function App.
    ApiManagementApiId string
    The ID of the API Management API for this Windows Function App.
    AppCommandLine string
    The App command line to launch.
    AppScaleLimit int
    The number of workers this function app can scale out to. Only applicable to apps on the Consumption and Premium plan.
    AppServiceLogs WindowsFunctionAppSiteConfigAppServiceLogs
    An app_service_logs block as defined above.
    ApplicationInsightsConnectionString string
    The Connection String for linking the Windows Function App to Application Insights.
    ApplicationInsightsKey string
    The Instrumentation Key for connecting the Windows Function App to Application Insights.
    ApplicationStack WindowsFunctionAppSiteConfigApplicationStack

    An application_stack block as defined above.

    Note: If this is set, there must not be an application setting FUNCTIONS_WORKER_RUNTIME.

    Cors WindowsFunctionAppSiteConfigCors
    A cors block as defined above.
    DefaultDocuments List<string>
    Specifies a list of Default Documents for the Windows Function App.
    DetailedErrorLoggingEnabled bool
    Is detailed error logging enabled
    ElasticInstanceMinimum int
    The number of minimum instances for this Windows Function App. Only affects apps on Elastic Premium plans.
    FtpsState string
    State of FTP / FTPS service for this Windows Function App. Possible values include: AllAllowed, FtpsOnly and Disabled. Defaults to Disabled.
    HealthCheckEvictionTimeInMin int
    The amount of time in minutes that a node can be unhealthy before being removed from the load balancer. Possible values are between 2 and 10. Only valid in conjunction with health_check_path.
    HealthCheckPath string
    The path to be checked for this Windows Function App health.
    Http2Enabled bool
    Specifies if the HTTP2 protocol should be enabled. Defaults to false.
    IpRestrictionDefaultAction string
    The Default action for traffic that does not match any ip_restriction rule. possible values include Allow and Deny. Defaults to Allow.
    IpRestrictions List<WindowsFunctionAppSiteConfigIpRestriction>
    One or more ip_restriction blocks as defined above.
    LoadBalancingMode string
    The Site load balancing mode. Possible values include: WeightedRoundRobin, LeastRequests, LeastResponseTime, WeightedTotalTraffic, RequestHash, PerSiteRoundRobin. Defaults to LeastRequests if omitted.
    ManagedPipelineMode string
    Managed pipeline mode. Possible values include: Integrated, Classic. Defaults to Integrated.
    MinimumTlsVersion string
    Configures the minimum version of TLS required for SSL requests. Possible values include: 1.0, 1.1, 1.2 and 1.3. Defaults to 1.2.
    PreWarmedInstanceCount int
    The number of pre-warmed instances for this Windows Function App. Only affects apps on an Elastic Premium plan.
    RemoteDebuggingEnabled bool
    Should Remote Debugging be enabled. Defaults to false.
    RemoteDebuggingVersion string
    The Remote Debugging Version. Possible values include VS2017, VS2019, and VS2022.
    RuntimeScaleMonitoringEnabled bool

    Should Scale Monitoring of the Functions Runtime be enabled?

    NOTE: Functions runtime scale monitoring can only be enabled for Elastic Premium Function Apps or Workflow Standard Logic Apps and requires a minimum prewarmed instance count of 1.

    ScmIpRestrictionDefaultAction string
    The Default action for traffic that does not match any scm_ip_restriction rule. possible values include Allow and Deny. Defaults to Allow.
    ScmIpRestrictions List<WindowsFunctionAppSiteConfigScmIpRestriction>
    One or more scm_ip_restriction blocks as defined above.
    ScmMinimumTlsVersion string
    Configures the minimum version of TLS required for SSL requests to the SCM site. Possible values include: 1.0, 1.1, and 1.2. Defaults to 1.2.
    ScmType string
    The SCM Type in use by the Windows Function App.
    ScmUseMainIpRestriction bool
    Should the Windows Function App ip_restriction configuration be used for the SCM also.
    Use32BitWorker bool
    Should the Windows Function App use a 32-bit worker process. Defaults to true.
    VnetRouteAllEnabled bool
    Should all outbound traffic to have NAT Gateways, Network Security Groups and User Defined Routes applied? Defaults to false.
    WebsocketsEnabled bool
    Should Web Sockets be enabled. Defaults to false.
    WindowsFxVersion string
    The Windows FX Version string.
    WorkerCount int
    The number of Workers for this Windows Function App.
    AlwaysOn bool

    If this Windows Function App is Always On enabled. Defaults to false.

    NOTE: when running in a Consumption or Premium Plan, always_on feature should be turned off. Please turn it off before upgrading the service plan from standard to premium.

    ApiDefinitionUrl string
    The URL of the API definition that describes this Windows Function App.
    ApiManagementApiId string
    The ID of the API Management API for this Windows Function App.
    AppCommandLine string
    The App command line to launch.
    AppScaleLimit int
    The number of workers this function app can scale out to. Only applicable to apps on the Consumption and Premium plan.
    AppServiceLogs WindowsFunctionAppSiteConfigAppServiceLogs
    An app_service_logs block as defined above.
    ApplicationInsightsConnectionString string
    The Connection String for linking the Windows Function App to Application Insights.
    ApplicationInsightsKey string
    The Instrumentation Key for connecting the Windows Function App to Application Insights.
    ApplicationStack WindowsFunctionAppSiteConfigApplicationStack

    An application_stack block as defined above.

    Note: If this is set, there must not be an application setting FUNCTIONS_WORKER_RUNTIME.

    Cors WindowsFunctionAppSiteConfigCors
    A cors block as defined above.
    DefaultDocuments []string
    Specifies a list of Default Documents for the Windows Function App.
    DetailedErrorLoggingEnabled bool
    Is detailed error logging enabled
    ElasticInstanceMinimum int
    The number of minimum instances for this Windows Function App. Only affects apps on Elastic Premium plans.
    FtpsState string
    State of FTP / FTPS service for this Windows Function App. Possible values include: AllAllowed, FtpsOnly and Disabled. Defaults to Disabled.
    HealthCheckEvictionTimeInMin int
    The amount of time in minutes that a node can be unhealthy before being removed from the load balancer. Possible values are between 2 and 10. Only valid in conjunction with health_check_path.
    HealthCheckPath string
    The path to be checked for this Windows Function App health.
    Http2Enabled bool
    Specifies if the HTTP2 protocol should be enabled. Defaults to false.
    IpRestrictionDefaultAction string
    The Default action for traffic that does not match any ip_restriction rule. possible values include Allow and Deny. Defaults to Allow.
    IpRestrictions []WindowsFunctionAppSiteConfigIpRestriction
    One or more ip_restriction blocks as defined above.
    LoadBalancingMode string
    The Site load balancing mode. Possible values include: WeightedRoundRobin, LeastRequests, LeastResponseTime, WeightedTotalTraffic, RequestHash, PerSiteRoundRobin. Defaults to LeastRequests if omitted.
    ManagedPipelineMode string
    Managed pipeline mode. Possible values include: Integrated, Classic. Defaults to Integrated.
    MinimumTlsVersion string
    Configures the minimum version of TLS required for SSL requests. Possible values include: 1.0, 1.1, 1.2 and 1.3. Defaults to 1.2.
    PreWarmedInstanceCount int
    The number of pre-warmed instances for this Windows Function App. Only affects apps on an Elastic Premium plan.
    RemoteDebuggingEnabled bool
    Should Remote Debugging be enabled. Defaults to false.
    RemoteDebuggingVersion string
    The Remote Debugging Version. Possible values include VS2017, VS2019, and VS2022.
    RuntimeScaleMonitoringEnabled bool

    Should Scale Monitoring of the Functions Runtime be enabled?

    NOTE: Functions runtime scale monitoring can only be enabled for Elastic Premium Function Apps or Workflow Standard Logic Apps and requires a minimum prewarmed instance count of 1.

    ScmIpRestrictionDefaultAction string
    The Default action for traffic that does not match any scm_ip_restriction rule. possible values include Allow and Deny. Defaults to Allow.
    ScmIpRestrictions []WindowsFunctionAppSiteConfigScmIpRestriction
    One or more scm_ip_restriction blocks as defined above.
    ScmMinimumTlsVersion string
    Configures the minimum version of TLS required for SSL requests to the SCM site. Possible values include: 1.0, 1.1, and 1.2. Defaults to 1.2.
    ScmType string
    The SCM Type in use by the Windows Function App.
    ScmUseMainIpRestriction bool
    Should the Windows Function App ip_restriction configuration be used for the SCM also.
    Use32BitWorker bool
    Should the Windows Function App use a 32-bit worker process. Defaults to true.
    VnetRouteAllEnabled bool
    Should all outbound traffic to have NAT Gateways, Network Security Groups and User Defined Routes applied? Defaults to false.
    WebsocketsEnabled bool
    Should Web Sockets be enabled. Defaults to false.
    WindowsFxVersion string
    The Windows FX Version string.
    WorkerCount int
    The number of Workers for this Windows Function App.
    alwaysOn Boolean

    If this Windows Function App is Always On enabled. Defaults to false.

    NOTE: when running in a Consumption or Premium Plan, always_on feature should be turned off. Please turn it off before upgrading the service plan from standard to premium.

    apiDefinitionUrl String
    The URL of the API definition that describes this Windows Function App.
    apiManagementApiId String
    The ID of the API Management API for this Windows Function App.
    appCommandLine String
    The App command line to launch.
    appScaleLimit Integer
    The number of workers this function app can scale out to. Only applicable to apps on the Consumption and Premium plan.
    appServiceLogs WindowsFunctionAppSiteConfigAppServiceLogs
    An app_service_logs block as defined above.
    applicationInsightsConnectionString String
    The Connection String for linking the Windows Function App to Application Insights.
    applicationInsightsKey String
    The Instrumentation Key for connecting the Windows Function App to Application Insights.
    applicationStack WindowsFunctionAppSiteConfigApplicationStack

    An application_stack block as defined above.

    Note: If this is set, there must not be an application setting FUNCTIONS_WORKER_RUNTIME.

    cors WindowsFunctionAppSiteConfigCors
    A cors block as defined above.
    defaultDocuments List<String>
    Specifies a list of Default Documents for the Windows Function App.
    detailedErrorLoggingEnabled Boolean
    Is detailed error logging enabled
    elasticInstanceMinimum Integer
    The number of minimum instances for this Windows Function App. Only affects apps on Elastic Premium plans.
    ftpsState String
    State of FTP / FTPS service for this Windows Function App. Possible values include: AllAllowed, FtpsOnly and Disabled. Defaults to Disabled.
    healthCheckEvictionTimeInMin Integer
    The amount of time in minutes that a node can be unhealthy before being removed from the load balancer. Possible values are between 2 and 10. Only valid in conjunction with health_check_path.
    healthCheckPath String
    The path to be checked for this Windows Function App health.
    http2Enabled Boolean
    Specifies if the HTTP2 protocol should be enabled. Defaults to false.
    ipRestrictionDefaultAction String
    The Default action for traffic that does not match any ip_restriction rule. possible values include Allow and Deny. Defaults to Allow.
    ipRestrictions List<WindowsFunctionAppSiteConfigIpRestriction>
    One or more ip_restriction blocks as defined above.
    loadBalancingMode String
    The Site load balancing mode. Possible values include: WeightedRoundRobin, LeastRequests, LeastResponseTime, WeightedTotalTraffic, RequestHash, PerSiteRoundRobin. Defaults to LeastRequests if omitted.
    managedPipelineMode String
    Managed pipeline mode. Possible values include: Integrated, Classic. Defaults to Integrated.
    minimumTlsVersion String
    Configures the minimum version of TLS required for SSL requests. Possible values include: 1.0, 1.1, 1.2 and 1.3. Defaults to 1.2.
    preWarmedInstanceCount Integer
    The number of pre-warmed instances for this Windows Function App. Only affects apps on an Elastic Premium plan.
    remoteDebuggingEnabled Boolean
    Should Remote Debugging be enabled. Defaults to false.
    remoteDebuggingVersion String
    The Remote Debugging Version. Possible values include VS2017, VS2019, and VS2022.
    runtimeScaleMonitoringEnabled Boolean

    Should Scale Monitoring of the Functions Runtime be enabled?

    NOTE: Functions runtime scale monitoring can only be enabled for Elastic Premium Function Apps or Workflow Standard Logic Apps and requires a minimum prewarmed instance count of 1.

    scmIpRestrictionDefaultAction String
    The Default action for traffic that does not match any scm_ip_restriction rule. possible values include Allow and Deny. Defaults to Allow.
    scmIpRestrictions List<WindowsFunctionAppSiteConfigScmIpRestriction>
    One or more scm_ip_restriction blocks as defined above.
    scmMinimumTlsVersion String
    Configures the minimum version of TLS required for SSL requests to the SCM site. Possible values include: 1.0, 1.1, and 1.2. Defaults to 1.2.
    scmType String
    The SCM Type in use by the Windows Function App.
    scmUseMainIpRestriction Boolean
    Should the Windows Function App ip_restriction configuration be used for the SCM also.
    use32BitWorker Boolean
    Should the Windows Function App use a 32-bit worker process. Defaults to true.
    vnetRouteAllEnabled Boolean
    Should all outbound traffic to have NAT Gateways, Network Security Groups and User Defined Routes applied? Defaults to false.
    websocketsEnabled Boolean
    Should Web Sockets be enabled. Defaults to false.
    windowsFxVersion String
    The Windows FX Version string.
    workerCount Integer
    The number of Workers for this Windows Function App.
    alwaysOn boolean

    If this Windows Function App is Always On enabled. Defaults to false.

    NOTE: when running in a Consumption or Premium Plan, always_on feature should be turned off. Please turn it off before upgrading the service plan from standard to premium.

    apiDefinitionUrl string
    The URL of the API definition that describes this Windows Function App.
    apiManagementApiId string
    The ID of the API Management API for this Windows Function App.
    appCommandLine string
    The App command line to launch.
    appScaleLimit number
    The number of workers this function app can scale out to. Only applicable to apps on the Consumption and Premium plan.
    appServiceLogs WindowsFunctionAppSiteConfigAppServiceLogs
    An app_service_logs block as defined above.
    applicationInsightsConnectionString string
    The Connection String for linking the Windows Function App to Application Insights.
    applicationInsightsKey string
    The Instrumentation Key for connecting the Windows Function App to Application Insights.
    applicationStack WindowsFunctionAppSiteConfigApplicationStack

    An application_stack block as defined above.

    Note: If this is set, there must not be an application setting FUNCTIONS_WORKER_RUNTIME.

    cors WindowsFunctionAppSiteConfigCors
    A cors block as defined above.
    defaultDocuments string[]
    Specifies a list of Default Documents for the Windows Function App.
    detailedErrorLoggingEnabled boolean
    Is detailed error logging enabled
    elasticInstanceMinimum number
    The number of minimum instances for this Windows Function App. Only affects apps on Elastic Premium plans.
    ftpsState string
    State of FTP / FTPS service for this Windows Function App. Possible values include: AllAllowed, FtpsOnly and Disabled. Defaults to Disabled.
    healthCheckEvictionTimeInMin number
    The amount of time in minutes that a node can be unhealthy before being removed from the load balancer. Possible values are between 2 and 10. Only valid in conjunction with health_check_path.
    healthCheckPath string
    The path to be checked for this Windows Function App health.
    http2Enabled boolean
    Specifies if the HTTP2 protocol should be enabled. Defaults to false.
    ipRestrictionDefaultAction string
    The Default action for traffic that does not match any ip_restriction rule. possible values include Allow and Deny. Defaults to Allow.
    ipRestrictions WindowsFunctionAppSiteConfigIpRestriction[]
    One or more ip_restriction blocks as defined above.
    loadBalancingMode string
    The Site load balancing mode. Possible values include: WeightedRoundRobin, LeastRequests, LeastResponseTime, WeightedTotalTraffic, RequestHash, PerSiteRoundRobin. Defaults to LeastRequests if omitted.
    managedPipelineMode string
    Managed pipeline mode. Possible values include: Integrated, Classic. Defaults to Integrated.
    minimumTlsVersion string
    Configures the minimum version of TLS required for SSL requests. Possible values include: 1.0, 1.1, 1.2 and 1.3. Defaults to 1.2.
    preWarmedInstanceCount number
    The number of pre-warmed instances for this Windows Function App. Only affects apps on an Elastic Premium plan.
    remoteDebuggingEnabled boolean
    Should Remote Debugging be enabled. Defaults to false.
    remoteDebuggingVersion string
    The Remote Debugging Version. Possible values include VS2017, VS2019, and VS2022.
    runtimeScaleMonitoringEnabled boolean

    Should Scale Monitoring of the Functions Runtime be enabled?

    NOTE: Functions runtime scale monitoring can only be enabled for Elastic Premium Function Apps or Workflow Standard Logic Apps and requires a minimum prewarmed instance count of 1.

    scmIpRestrictionDefaultAction string
    The Default action for traffic that does not match any scm_ip_restriction rule. possible values include Allow and Deny. Defaults to Allow.
    scmIpRestrictions WindowsFunctionAppSiteConfigScmIpRestriction[]
    One or more scm_ip_restriction blocks as defined above.
    scmMinimumTlsVersion string
    Configures the minimum version of TLS required for SSL requests to the SCM site. Possible values include: 1.0, 1.1, and 1.2. Defaults to 1.2.
    scmType string
    The SCM Type in use by the Windows Function App.
    scmUseMainIpRestriction boolean
    Should the Windows Function App ip_restriction configuration be used for the SCM also.
    use32BitWorker boolean
    Should the Windows Function App use a 32-bit worker process. Defaults to true.
    vnetRouteAllEnabled boolean
    Should all outbound traffic to have NAT Gateways, Network Security Groups and User Defined Routes applied? Defaults to false.
    websocketsEnabled boolean
    Should Web Sockets be enabled. Defaults to false.
    windowsFxVersion string
    The Windows FX Version string.
    workerCount number
    The number of Workers for this Windows Function App.
    always_on bool

    If this Windows Function App is Always On enabled. Defaults to false.

    NOTE: when running in a Consumption or Premium Plan, always_on feature should be turned off. Please turn it off before upgrading the service plan from standard to premium.

    api_definition_url str
    The URL of the API definition that describes this Windows Function App.
    api_management_api_id str
    The ID of the API Management API for this Windows Function App.
    app_command_line str
    The App command line to launch.
    app_scale_limit int
    The number of workers this function app can scale out to. Only applicable to apps on the Consumption and Premium plan.
    app_service_logs WindowsFunctionAppSiteConfigAppServiceLogs
    An app_service_logs block as defined above.
    application_insights_connection_string str
    The Connection String for linking the Windows Function App to Application Insights.
    application_insights_key str
    The Instrumentation Key for connecting the Windows Function App to Application Insights.
    application_stack WindowsFunctionAppSiteConfigApplicationStack

    An application_stack block as defined above.

    Note: If this is set, there must not be an application setting FUNCTIONS_WORKER_RUNTIME.

    cors WindowsFunctionAppSiteConfigCors
    A cors block as defined above.
    default_documents Sequence[str]
    Specifies a list of Default Documents for the Windows Function App.
    detailed_error_logging_enabled bool
    Is detailed error logging enabled
    elastic_instance_minimum int
    The number of minimum instances for this Windows Function App. Only affects apps on Elastic Premium plans.
    ftps_state str
    State of FTP / FTPS service for this Windows Function App. Possible values include: AllAllowed, FtpsOnly and Disabled. Defaults to Disabled.
    health_check_eviction_time_in_min int
    The amount of time in minutes that a node can be unhealthy before being removed from the load balancer. Possible values are between 2 and 10. Only valid in conjunction with health_check_path.
    health_check_path str
    The path to be checked for this Windows Function App health.
    http2_enabled bool
    Specifies if the HTTP2 protocol should be enabled. Defaults to false.
    ip_restriction_default_action str
    The Default action for traffic that does not match any ip_restriction rule. possible values include Allow and Deny. Defaults to Allow.
    ip_restrictions Sequence[WindowsFunctionAppSiteConfigIpRestriction]
    One or more ip_restriction blocks as defined above.
    load_balancing_mode str
    The Site load balancing mode. Possible values include: WeightedRoundRobin, LeastRequests, LeastResponseTime, WeightedTotalTraffic, RequestHash, PerSiteRoundRobin. Defaults to LeastRequests if omitted.
    managed_pipeline_mode str
    Managed pipeline mode. Possible values include: Integrated, Classic. Defaults to Integrated.
    minimum_tls_version str
    Configures the minimum version of TLS required for SSL requests. Possible values include: 1.0, 1.1, 1.2 and 1.3. Defaults to 1.2.
    pre_warmed_instance_count int
    The number of pre-warmed instances for this Windows Function App. Only affects apps on an Elastic Premium plan.
    remote_debugging_enabled bool
    Should Remote Debugging be enabled. Defaults to false.
    remote_debugging_version str
    The Remote Debugging Version. Possible values include VS2017, VS2019, and VS2022.
    runtime_scale_monitoring_enabled bool

    Should Scale Monitoring of the Functions Runtime be enabled?

    NOTE: Functions runtime scale monitoring can only be enabled for Elastic Premium Function Apps or Workflow Standard Logic Apps and requires a minimum prewarmed instance count of 1.

    scm_ip_restriction_default_action str
    The Default action for traffic that does not match any scm_ip_restriction rule. possible values include Allow and Deny. Defaults to Allow.
    scm_ip_restrictions Sequence[WindowsFunctionAppSiteConfigScmIpRestriction]
    One or more scm_ip_restriction blocks as defined above.
    scm_minimum_tls_version str
    Configures the minimum version of TLS required for SSL requests to the SCM site. Possible values include: 1.0, 1.1, and 1.2. Defaults to 1.2.
    scm_type str
    The SCM Type in use by the Windows Function App.
    scm_use_main_ip_restriction bool
    Should the Windows Function App ip_restriction configuration be used for the SCM also.
    use32_bit_worker bool
    Should the Windows Function App use a 32-bit worker process. Defaults to true.
    vnet_route_all_enabled bool
    Should all outbound traffic to have NAT Gateways, Network Security Groups and User Defined Routes applied? Defaults to false.
    websockets_enabled bool
    Should Web Sockets be enabled. Defaults to false.
    windows_fx_version str
    The Windows FX Version string.
    worker_count int
    The number of Workers for this Windows Function App.
    alwaysOn Boolean

    If this Windows Function App is Always On enabled. Defaults to false.

    NOTE: when running in a Consumption or Premium Plan, always_on feature should be turned off. Please turn it off before upgrading the service plan from standard to premium.

    apiDefinitionUrl String
    The URL of the API definition that describes this Windows Function App.
    apiManagementApiId String
    The ID of the API Management API for this Windows Function App.
    appCommandLine String
    The App command line to launch.
    appScaleLimit Number
    The number of workers this function app can scale out to. Only applicable to apps on the Consumption and Premium plan.
    appServiceLogs Property Map
    An app_service_logs block as defined above.
    applicationInsightsConnectionString String
    The Connection String for linking the Windows Function App to Application Insights.
    applicationInsightsKey String
    The Instrumentation Key for connecting the Windows Function App to Application Insights.
    applicationStack Property Map

    An application_stack block as defined above.

    Note: If this is set, there must not be an application setting FUNCTIONS_WORKER_RUNTIME.

    cors Property Map
    A cors block as defined above.
    defaultDocuments List<String>
    Specifies a list of Default Documents for the Windows Function App.
    detailedErrorLoggingEnabled Boolean
    Is detailed error logging enabled
    elasticInstanceMinimum Number
    The number of minimum instances for this Windows Function App. Only affects apps on Elastic Premium plans.
    ftpsState String
    State of FTP / FTPS service for this Windows Function App. Possible values include: AllAllowed, FtpsOnly and Disabled. Defaults to Disabled.
    healthCheckEvictionTimeInMin Number
    The amount of time in minutes that a node can be unhealthy before being removed from the load balancer. Possible values are between 2 and 10. Only valid in conjunction with health_check_path.
    healthCheckPath String
    The path to be checked for this Windows Function App health.
    http2Enabled Boolean
    Specifies if the HTTP2 protocol should be enabled. Defaults to false.
    ipRestrictionDefaultAction String
    The Default action for traffic that does not match any ip_restriction rule. possible values include Allow and Deny. Defaults to Allow.
    ipRestrictions List<Property Map>
    One or more ip_restriction blocks as defined above.
    loadBalancingMode String
    The Site load balancing mode. Possible values include: WeightedRoundRobin, LeastRequests, LeastResponseTime, WeightedTotalTraffic, RequestHash, PerSiteRoundRobin. Defaults to LeastRequests if omitted.
    managedPipelineMode String
    Managed pipeline mode. Possible values include: Integrated, Classic. Defaults to Integrated.
    minimumTlsVersion String
    Configures the minimum version of TLS required for SSL requests. Possible values include: 1.0, 1.1, 1.2 and 1.3. Defaults to 1.2.
    preWarmedInstanceCount Number
    The number of pre-warmed instances for this Windows Function App. Only affects apps on an Elastic Premium plan.
    remoteDebuggingEnabled Boolean
    Should Remote Debugging be enabled. Defaults to false.
    remoteDebuggingVersion String
    The Remote Debugging Version. Possible values include VS2017, VS2019, and VS2022.
    runtimeScaleMonitoringEnabled Boolean

    Should Scale Monitoring of the Functions Runtime be enabled?

    NOTE: Functions runtime scale monitoring can only be enabled for Elastic Premium Function Apps or Workflow Standard Logic Apps and requires a minimum prewarmed instance count of 1.

    scmIpRestrictionDefaultAction String
    The Default action for traffic that does not match any scm_ip_restriction rule. possible values include Allow and Deny. Defaults to Allow.
    scmIpRestrictions List<Property Map>
    One or more scm_ip_restriction blocks as defined above.
    scmMinimumTlsVersion String
    Configures the minimum version of TLS required for SSL requests to the SCM site. Possible values include: 1.0, 1.1, and 1.2. Defaults to 1.2.
    scmType String
    The SCM Type in use by the Windows Function App.
    scmUseMainIpRestriction Boolean
    Should the Windows Function App ip_restriction configuration be used for the SCM also.
    use32BitWorker Boolean
    Should the Windows Function App use a 32-bit worker process. Defaults to true.
    vnetRouteAllEnabled Boolean
    Should all outbound traffic to have NAT Gateways, Network Security Groups and User Defined Routes applied? Defaults to false.
    websocketsEnabled Boolean
    Should Web Sockets be enabled. Defaults to false.
    windowsFxVersion String
    The Windows FX Version string.
    workerCount Number
    The number of Workers for this Windows Function App.

    WindowsFunctionAppSiteConfigAppServiceLogs, WindowsFunctionAppSiteConfigAppServiceLogsArgs

    DiskQuotaMb int
    The amount of disk space to use for logs. Valid values are between 25 and 100. Defaults to 35.
    RetentionPeriodDays int

    The retention period for logs in days. Valid values are between 0 and 99999.(never delete).

    NOTE: This block is not supported on Consumption plans.

    DiskQuotaMb int
    The amount of disk space to use for logs. Valid values are between 25 and 100. Defaults to 35.
    RetentionPeriodDays int

    The retention period for logs in days. Valid values are between 0 and 99999.(never delete).

    NOTE: This block is not supported on Consumption plans.

    diskQuotaMb Integer
    The amount of disk space to use for logs. Valid values are between 25 and 100. Defaults to 35.
    retentionPeriodDays Integer

    The retention period for logs in days. Valid values are between 0 and 99999.(never delete).

    NOTE: This block is not supported on Consumption plans.

    diskQuotaMb number
    The amount of disk space to use for logs. Valid values are between 25 and 100. Defaults to 35.
    retentionPeriodDays number

    The retention period for logs in days. Valid values are between 0 and 99999.(never delete).

    NOTE: This block is not supported on Consumption plans.

    disk_quota_mb int
    The amount of disk space to use for logs. Valid values are between 25 and 100. Defaults to 35.
    retention_period_days int

    The retention period for logs in days. Valid values are between 0 and 99999.(never delete).

    NOTE: This block is not supported on Consumption plans.

    diskQuotaMb Number
    The amount of disk space to use for logs. Valid values are between 25 and 100. Defaults to 35.
    retentionPeriodDays Number

    The retention period for logs in days. Valid values are between 0 and 99999.(never delete).

    NOTE: This block is not supported on Consumption plans.

    WindowsFunctionAppSiteConfigApplicationStack, WindowsFunctionAppSiteConfigApplicationStackArgs

    DotnetVersion string
    The version of .NET to use. Possible values include v3.0, v4.0 v6.0, v7.0, v8.0 and v9.0. Defaults to v4.0.
    JavaVersion string
    The Version of Java to use. Supported versions include 1.8, 11 & 17 (In-Preview).
    NodeVersion string
    The version of Node to run. Possible values include ~12, ~14, ~16, ~18 and ~20.
    PowershellCoreVersion string

    The version of PowerShell Core to run. Possible values are 7, 7.2, and 7.4.

    NOTE: A value of 7 will provide the latest stable version. 7.2 is in preview at the time of writing.

    UseCustomRuntime bool
    Should the Windows Function App use a custom runtime?
    UseDotnetIsolatedRuntime bool
    Should the DotNet process use an isolated runtime. Defaults to false.
    DotnetVersion string
    The version of .NET to use. Possible values include v3.0, v4.0 v6.0, v7.0, v8.0 and v9.0. Defaults to v4.0.
    JavaVersion string
    The Version of Java to use. Supported versions include 1.8, 11 & 17 (In-Preview).
    NodeVersion string
    The version of Node to run. Possible values include ~12, ~14, ~16, ~18 and ~20.
    PowershellCoreVersion string

    The version of PowerShell Core to run. Possible values are 7, 7.2, and 7.4.

    NOTE: A value of 7 will provide the latest stable version. 7.2 is in preview at the time of writing.

    UseCustomRuntime bool
    Should the Windows Function App use a custom runtime?
    UseDotnetIsolatedRuntime bool
    Should the DotNet process use an isolated runtime. Defaults to false.
    dotnetVersion String
    The version of .NET to use. Possible values include v3.0, v4.0 v6.0, v7.0, v8.0 and v9.0. Defaults to v4.0.
    javaVersion String
    The Version of Java to use. Supported versions include 1.8, 11 & 17 (In-Preview).
    nodeVersion String
    The version of Node to run. Possible values include ~12, ~14, ~16, ~18 and ~20.
    powershellCoreVersion String

    The version of PowerShell Core to run. Possible values are 7, 7.2, and 7.4.

    NOTE: A value of 7 will provide the latest stable version. 7.2 is in preview at the time of writing.

    useCustomRuntime Boolean
    Should the Windows Function App use a custom runtime?
    useDotnetIsolatedRuntime Boolean
    Should the DotNet process use an isolated runtime. Defaults to false.
    dotnetVersion string
    The version of .NET to use. Possible values include v3.0, v4.0 v6.0, v7.0, v8.0 and v9.0. Defaults to v4.0.
    javaVersion string
    The Version of Java to use. Supported versions include 1.8, 11 & 17 (In-Preview).
    nodeVersion string
    The version of Node to run. Possible values include ~12, ~14, ~16, ~18 and ~20.
    powershellCoreVersion string

    The version of PowerShell Core to run. Possible values are 7, 7.2, and 7.4.

    NOTE: A value of 7 will provide the latest stable version. 7.2 is in preview at the time of writing.

    useCustomRuntime boolean
    Should the Windows Function App use a custom runtime?
    useDotnetIsolatedRuntime boolean
    Should the DotNet process use an isolated runtime. Defaults to false.
    dotnet_version str
    The version of .NET to use. Possible values include v3.0, v4.0 v6.0, v7.0, v8.0 and v9.0. Defaults to v4.0.
    java_version str
    The Version of Java to use. Supported versions include 1.8, 11 & 17 (In-Preview).
    node_version str
    The version of Node to run. Possible values include ~12, ~14, ~16, ~18 and ~20.
    powershell_core_version str

    The version of PowerShell Core to run. Possible values are 7, 7.2, and 7.4.

    NOTE: A value of 7 will provide the latest stable version. 7.2 is in preview at the time of writing.

    use_custom_runtime bool
    Should the Windows Function App use a custom runtime?
    use_dotnet_isolated_runtime bool
    Should the DotNet process use an isolated runtime. Defaults to false.
    dotnetVersion String
    The version of .NET to use. Possible values include v3.0, v4.0 v6.0, v7.0, v8.0 and v9.0. Defaults to v4.0.
    javaVersion String
    The Version of Java to use. Supported versions include 1.8, 11 & 17 (In-Preview).
    nodeVersion String
    The version of Node to run. Possible values include ~12, ~14, ~16, ~18 and ~20.
    powershellCoreVersion String

    The version of PowerShell Core to run. Possible values are 7, 7.2, and 7.4.

    NOTE: A value of 7 will provide the latest stable version. 7.2 is in preview at the time of writing.

    useCustomRuntime Boolean
    Should the Windows Function App use a custom runtime?
    useDotnetIsolatedRuntime Boolean
    Should the DotNet process use an isolated runtime. Defaults to false.

    WindowsFunctionAppSiteConfigCors, WindowsFunctionAppSiteConfigCorsArgs

    AllowedOrigins List<string>
    Specifies a list of origins that should be allowed to make cross-origin calls.
    SupportCredentials bool
    Are credentials allowed in CORS requests? Defaults to false.
    AllowedOrigins []string
    Specifies a list of origins that should be allowed to make cross-origin calls.
    SupportCredentials bool
    Are credentials allowed in CORS requests? Defaults to false.
    allowedOrigins List<String>
    Specifies a list of origins that should be allowed to make cross-origin calls.
    supportCredentials Boolean
    Are credentials allowed in CORS requests? Defaults to false.
    allowedOrigins string[]
    Specifies a list of origins that should be allowed to make cross-origin calls.
    supportCredentials boolean
    Are credentials allowed in CORS requests? Defaults to false.
    allowed_origins Sequence[str]
    Specifies a list of origins that should be allowed to make cross-origin calls.
    support_credentials bool
    Are credentials allowed in CORS requests? Defaults to false.
    allowedOrigins List<String>
    Specifies a list of origins that should be allowed to make cross-origin calls.
    supportCredentials Boolean
    Are credentials allowed in CORS requests? Defaults to false.

    WindowsFunctionAppSiteConfigIpRestriction, WindowsFunctionAppSiteConfigIpRestrictionArgs

    Action string
    The action to take. Possible values are Allow or Deny. Defaults to Allow.
    Description string
    The Description of this IP Restriction.
    Headers WindowsFunctionAppSiteConfigIpRestrictionHeaders
    A headers block as defined above.
    IpAddress string
    The CIDR notation of the IP or IP Range to match. For example: 10.0.0.0/24 or 192.168.10.1/32
    Name string
    The name which should be used for this ip_restriction.
    Priority int
    The priority value of this ip_restriction. Defaults to 65000.
    ServiceTag string
    The Service Tag used for this IP Restriction.
    VirtualNetworkSubnetId string

    The Virtual Network Subnet ID used for this IP Restriction.

    NOTE: One and only one of ip_address, service_tag or virtual_network_subnet_id must be specified.

    Action string
    The action to take. Possible values are Allow or Deny. Defaults to Allow.
    Description string
    The Description of this IP Restriction.
    Headers WindowsFunctionAppSiteConfigIpRestrictionHeaders
    A headers block as defined above.
    IpAddress string
    The CIDR notation of the IP or IP Range to match. For example: 10.0.0.0/24 or 192.168.10.1/32
    Name string
    The name which should be used for this ip_restriction.
    Priority int
    The priority value of this ip_restriction. Defaults to 65000.
    ServiceTag string
    The Service Tag used for this IP Restriction.
    VirtualNetworkSubnetId string

    The Virtual Network Subnet ID used for this IP Restriction.

    NOTE: One and only one of ip_address, service_tag or virtual_network_subnet_id must be specified.

    action String
    The action to take. Possible values are Allow or Deny. Defaults to Allow.
    description String
    The Description of this IP Restriction.
    headers WindowsFunctionAppSiteConfigIpRestrictionHeaders
    A headers block as defined above.
    ipAddress String
    The CIDR notation of the IP or IP Range to match. For example: 10.0.0.0/24 or 192.168.10.1/32
    name String
    The name which should be used for this ip_restriction.
    priority Integer
    The priority value of this ip_restriction. Defaults to 65000.
    serviceTag String
    The Service Tag used for this IP Restriction.
    virtualNetworkSubnetId String

    The Virtual Network Subnet ID used for this IP Restriction.

    NOTE: One and only one of ip_address, service_tag or virtual_network_subnet_id must be specified.

    action string
    The action to take. Possible values are Allow or Deny. Defaults to Allow.
    description string
    The Description of this IP Restriction.
    headers WindowsFunctionAppSiteConfigIpRestrictionHeaders
    A headers block as defined above.
    ipAddress string
    The CIDR notation of the IP or IP Range to match. For example: 10.0.0.0/24 or 192.168.10.1/32
    name string
    The name which should be used for this ip_restriction.
    priority number
    The priority value of this ip_restriction. Defaults to 65000.
    serviceTag string
    The Service Tag used for this IP Restriction.
    virtualNetworkSubnetId string

    The Virtual Network Subnet ID used for this IP Restriction.

    NOTE: One and only one of ip_address, service_tag or virtual_network_subnet_id must be specified.

    action str
    The action to take. Possible values are Allow or Deny. Defaults to Allow.
    description str
    The Description of this IP Restriction.
    headers WindowsFunctionAppSiteConfigIpRestrictionHeaders
    A headers block as defined above.
    ip_address str
    The CIDR notation of the IP or IP Range to match. For example: 10.0.0.0/24 or 192.168.10.1/32
    name str
    The name which should be used for this ip_restriction.
    priority int
    The priority value of this ip_restriction. Defaults to 65000.
    service_tag str
    The Service Tag used for this IP Restriction.
    virtual_network_subnet_id str

    The Virtual Network Subnet ID used for this IP Restriction.

    NOTE: One and only one of ip_address, service_tag or virtual_network_subnet_id must be specified.

    action String
    The action to take. Possible values are Allow or Deny. Defaults to Allow.
    description String
    The Description of this IP Restriction.
    headers Property Map
    A headers block as defined above.
    ipAddress String
    The CIDR notation of the IP or IP Range to match. For example: 10.0.0.0/24 or 192.168.10.1/32
    name String
    The name which should be used for this ip_restriction.
    priority Number
    The priority value of this ip_restriction. Defaults to 65000.
    serviceTag String
    The Service Tag used for this IP Restriction.
    virtualNetworkSubnetId String

    The Virtual Network Subnet ID used for this IP Restriction.

    NOTE: One and only one of ip_address, service_tag or virtual_network_subnet_id must be specified.

    WindowsFunctionAppSiteConfigIpRestrictionHeaders, WindowsFunctionAppSiteConfigIpRestrictionHeadersArgs

    XAzureFdids List<string>
    Specifies a list of Azure Front Door IDs.
    XFdHealthProbe string
    Specifies if a Front Door Health Probe should be expected. The only possible value is 1.
    XForwardedFors List<string>
    Specifies a list of addresses for which matching should be applied. Omitting this value means allow any.
    XForwardedHosts List<string>
    Specifies a list of Hosts for which matching should be applied.
    XAzureFdids []string
    Specifies a list of Azure Front Door IDs.
    XFdHealthProbe string
    Specifies if a Front Door Health Probe should be expected. The only possible value is 1.
    XForwardedFors []string
    Specifies a list of addresses for which matching should be applied. Omitting this value means allow any.
    XForwardedHosts []string
    Specifies a list of Hosts for which matching should be applied.
    xAzureFdids List<String>
    Specifies a list of Azure Front Door IDs.
    xFdHealthProbe String
    Specifies if a Front Door Health Probe should be expected. The only possible value is 1.
    xForwardedFors List<String>
    Specifies a list of addresses for which matching should be applied. Omitting this value means allow any.
    xForwardedHosts List<String>
    Specifies a list of Hosts for which matching should be applied.
    xAzureFdids string[]
    Specifies a list of Azure Front Door IDs.
    xFdHealthProbe string
    Specifies if a Front Door Health Probe should be expected. The only possible value is 1.
    xForwardedFors string[]
    Specifies a list of addresses for which matching should be applied. Omitting this value means allow any.
    xForwardedHosts string[]
    Specifies a list of Hosts for which matching should be applied.
    x_azure_fdids Sequence[str]
    Specifies a list of Azure Front Door IDs.
    x_fd_health_probe str
    Specifies if a Front Door Health Probe should be expected. The only possible value is 1.
    x_forwarded_fors Sequence[str]
    Specifies a list of addresses for which matching should be applied. Omitting this value means allow any.
    x_forwarded_hosts Sequence[str]
    Specifies a list of Hosts for which matching should be applied.
    xAzureFdids List<String>
    Specifies a list of Azure Front Door IDs.
    xFdHealthProbe String
    Specifies if a Front Door Health Probe should be expected. The only possible value is 1.
    xForwardedFors List<String>
    Specifies a list of addresses for which matching should be applied. Omitting this value means allow any.
    xForwardedHosts List<String>
    Specifies a list of Hosts for which matching should be applied.

    WindowsFunctionAppSiteConfigScmIpRestriction, WindowsFunctionAppSiteConfigScmIpRestrictionArgs

    Action string
    The action to take. Possible values are Allow or Deny. Defaults to Allow.
    Description string
    The Description of this IP Restriction.
    Headers WindowsFunctionAppSiteConfigScmIpRestrictionHeaders
    A headers block as defined above.
    IpAddress string
    The CIDR notation of the IP or IP Range to match. For example: 10.0.0.0/24 or 192.168.10.1/32
    Name string
    The name which should be used for this ip_restriction.
    Priority int
    The priority value of this ip_restriction. Defaults to 65000.
    ServiceTag string
    The Service Tag used for this IP Restriction.
    VirtualNetworkSubnetId string

    The Virtual Network Subnet ID used for this IP Restriction.

    NOTE: One and only one of ip_address, service_tag or virtual_network_subnet_id must be specified.

    Action string
    The action to take. Possible values are Allow or Deny. Defaults to Allow.
    Description string
    The Description of this IP Restriction.
    Headers WindowsFunctionAppSiteConfigScmIpRestrictionHeaders
    A headers block as defined above.
    IpAddress string
    The CIDR notation of the IP or IP Range to match. For example: 10.0.0.0/24 or 192.168.10.1/32
    Name string
    The name which should be used for this ip_restriction.
    Priority int
    The priority value of this ip_restriction. Defaults to 65000.
    ServiceTag string
    The Service Tag used for this IP Restriction.
    VirtualNetworkSubnetId string

    The Virtual Network Subnet ID used for this IP Restriction.

    NOTE: One and only one of ip_address, service_tag or virtual_network_subnet_id must be specified.

    action String
    The action to take. Possible values are Allow or Deny. Defaults to Allow.
    description String
    The Description of this IP Restriction.
    headers WindowsFunctionAppSiteConfigScmIpRestrictionHeaders
    A headers block as defined above.
    ipAddress String
    The CIDR notation of the IP or IP Range to match. For example: 10.0.0.0/24 or 192.168.10.1/32
    name String
    The name which should be used for this ip_restriction.
    priority Integer
    The priority value of this ip_restriction. Defaults to 65000.
    serviceTag String
    The Service Tag used for this IP Restriction.
    virtualNetworkSubnetId String

    The Virtual Network Subnet ID used for this IP Restriction.

    NOTE: One and only one of ip_address, service_tag or virtual_network_subnet_id must be specified.

    action string
    The action to take. Possible values are Allow or Deny. Defaults to Allow.
    description string
    The Description of this IP Restriction.
    headers WindowsFunctionAppSiteConfigScmIpRestrictionHeaders
    A headers block as defined above.
    ipAddress string
    The CIDR notation of the IP or IP Range to match. For example: 10.0.0.0/24 or 192.168.10.1/32
    name string
    The name which should be used for this ip_restriction.
    priority number
    The priority value of this ip_restriction. Defaults to 65000.
    serviceTag string
    The Service Tag used for this IP Restriction.
    virtualNetworkSubnetId string

    The Virtual Network Subnet ID used for this IP Restriction.

    NOTE: One and only one of ip_address, service_tag or virtual_network_subnet_id must be specified.

    action str
    The action to take. Possible values are Allow or Deny. Defaults to Allow.
    description str
    The Description of this IP Restriction.
    headers WindowsFunctionAppSiteConfigScmIpRestrictionHeaders
    A headers block as defined above.
    ip_address str
    The CIDR notation of the IP or IP Range to match. For example: 10.0.0.0/24 or 192.168.10.1/32
    name str
    The name which should be used for this ip_restriction.
    priority int
    The priority value of this ip_restriction. Defaults to 65000.
    service_tag str
    The Service Tag used for this IP Restriction.
    virtual_network_subnet_id str

    The Virtual Network Subnet ID used for this IP Restriction.

    NOTE: One and only one of ip_address, service_tag or virtual_network_subnet_id must be specified.

    action String
    The action to take. Possible values are Allow or Deny. Defaults to Allow.
    description String
    The Description of this IP Restriction.
    headers Property Map
    A headers block as defined above.
    ipAddress String
    The CIDR notation of the IP or IP Range to match. For example: 10.0.0.0/24 or 192.168.10.1/32
    name String
    The name which should be used for this ip_restriction.
    priority Number
    The priority value of this ip_restriction. Defaults to 65000.
    serviceTag String
    The Service Tag used for this IP Restriction.
    virtualNetworkSubnetId String

    The Virtual Network Subnet ID used for this IP Restriction.

    NOTE: One and only one of ip_address, service_tag or virtual_network_subnet_id must be specified.

    WindowsFunctionAppSiteConfigScmIpRestrictionHeaders, WindowsFunctionAppSiteConfigScmIpRestrictionHeadersArgs

    XAzureFdids List<string>
    Specifies a list of Azure Front Door IDs.
    XFdHealthProbe string
    Specifies if a Front Door Health Probe should be expected. The only possible value is 1.
    XForwardedFors List<string>
    Specifies a list of addresses for which matching should be applied. Omitting this value means allow any.
    XForwardedHosts List<string>
    Specifies a list of Hosts for which matching should be applied.
    XAzureFdids []string
    Specifies a list of Azure Front Door IDs.
    XFdHealthProbe string
    Specifies if a Front Door Health Probe should be expected. The only possible value is 1.
    XForwardedFors []string
    Specifies a list of addresses for which matching should be applied. Omitting this value means allow any.
    XForwardedHosts []string
    Specifies a list of Hosts for which matching should be applied.
    xAzureFdids List<String>
    Specifies a list of Azure Front Door IDs.
    xFdHealthProbe String
    Specifies if a Front Door Health Probe should be expected. The only possible value is 1.
    xForwardedFors List<String>
    Specifies a list of addresses for which matching should be applied. Omitting this value means allow any.
    xForwardedHosts List<String>
    Specifies a list of Hosts for which matching should be applied.
    xAzureFdids string[]
    Specifies a list of Azure Front Door IDs.
    xFdHealthProbe string
    Specifies if a Front Door Health Probe should be expected. The only possible value is 1.
    xForwardedFors string[]
    Specifies a list of addresses for which matching should be applied. Omitting this value means allow any.
    xForwardedHosts string[]
    Specifies a list of Hosts for which matching should be applied.
    x_azure_fdids Sequence[str]
    Specifies a list of Azure Front Door IDs.
    x_fd_health_probe str
    Specifies if a Front Door Health Probe should be expected. The only possible value is 1.
    x_forwarded_fors Sequence[str]
    Specifies a list of addresses for which matching should be applied. Omitting this value means allow any.
    x_forwarded_hosts Sequence[str]
    Specifies a list of Hosts for which matching should be applied.
    xAzureFdids List<String>
    Specifies a list of Azure Front Door IDs.
    xFdHealthProbe String
    Specifies if a Front Door Health Probe should be expected. The only possible value is 1.
    xForwardedFors List<String>
    Specifies a list of addresses for which matching should be applied. Omitting this value means allow any.
    xForwardedHosts List<String>
    Specifies a list of Hosts for which matching should be applied.

    WindowsFunctionAppSiteCredential, WindowsFunctionAppSiteCredentialArgs

    Name string
    The name which should be used for this Windows Function App. Changing this forces a new Windows Function App to be created. Limit the function name to 32 characters to avoid naming collisions. For more information about Function App naming rule and Host ID Collisions
    Password string
    The Site Credentials Password used for publishing.
    Name string
    The name which should be used for this Windows Function App. Changing this forces a new Windows Function App to be created. Limit the function name to 32 characters to avoid naming collisions. For more information about Function App naming rule and Host ID Collisions
    Password string
    The Site Credentials Password used for publishing.
    name String
    The name which should be used for this Windows Function App. Changing this forces a new Windows Function App to be created. Limit the function name to 32 characters to avoid naming collisions. For more information about Function App naming rule and Host ID Collisions
    password String
    The Site Credentials Password used for publishing.
    name string
    The name which should be used for this Windows Function App. Changing this forces a new Windows Function App to be created. Limit the function name to 32 characters to avoid naming collisions. For more information about Function App naming rule and Host ID Collisions
    password string
    The Site Credentials Password used for publishing.
    name str
    The name which should be used for this Windows Function App. Changing this forces a new Windows Function App to be created. Limit the function name to 32 characters to avoid naming collisions. For more information about Function App naming rule and Host ID Collisions
    password str
    The Site Credentials Password used for publishing.
    name String
    The name which should be used for this Windows Function App. Changing this forces a new Windows Function App to be created. Limit the function name to 32 characters to avoid naming collisions. For more information about Function App naming rule and Host ID Collisions
    password String
    The Site Credentials Password used for publishing.

    WindowsFunctionAppStickySettings, WindowsFunctionAppStickySettingsArgs

    AppSettingNames List<string>
    A list of app_setting names that the Windows Function App will not swap between Slots when a swap operation is triggered.
    ConnectionStringNames List<string>
    A list of connection_string names that the Windows Function App will not swap between Slots when a swap operation is triggered.
    AppSettingNames []string
    A list of app_setting names that the Windows Function App will not swap between Slots when a swap operation is triggered.
    ConnectionStringNames []string
    A list of connection_string names that the Windows Function App will not swap between Slots when a swap operation is triggered.
    appSettingNames List<String>
    A list of app_setting names that the Windows Function App will not swap between Slots when a swap operation is triggered.
    connectionStringNames List<String>
    A list of connection_string names that the Windows Function App will not swap between Slots when a swap operation is triggered.
    appSettingNames string[]
    A list of app_setting names that the Windows Function App will not swap between Slots when a swap operation is triggered.
    connectionStringNames string[]
    A list of connection_string names that the Windows Function App will not swap between Slots when a swap operation is triggered.
    app_setting_names Sequence[str]
    A list of app_setting names that the Windows Function App will not swap between Slots when a swap operation is triggered.
    connection_string_names Sequence[str]
    A list of connection_string names that the Windows Function App will not swap between Slots when a swap operation is triggered.
    appSettingNames List<String>
    A list of app_setting names that the Windows Function App will not swap between Slots when a swap operation is triggered.
    connectionStringNames List<String>
    A list of connection_string names that the Windows Function App will not swap between Slots when a swap operation is triggered.

    WindowsFunctionAppStorageAccount, WindowsFunctionAppStorageAccountArgs

    AccessKey string
    The Access key for the storage account.
    AccountName string
    The Name of the Storage Account.
    Name string
    The name which should be used for this Storage Account.
    ShareName string
    The Name of the File Share or Container Name for Blob storage.
    Type string
    The Azure Storage Type. Possible values include AzureFiles.
    MountPath string
    The path at which to mount the storage share.
    AccessKey string
    The Access key for the storage account.
    AccountName string
    The Name of the Storage Account.
    Name string
    The name which should be used for this Storage Account.
    ShareName string
    The Name of the File Share or Container Name for Blob storage.
    Type string
    The Azure Storage Type. Possible values include AzureFiles.
    MountPath string
    The path at which to mount the storage share.
    accessKey String
    The Access key for the storage account.
    accountName String
    The Name of the Storage Account.
    name String
    The name which should be used for this Storage Account.
    shareName String
    The Name of the File Share or Container Name for Blob storage.
    type String
    The Azure Storage Type. Possible values include AzureFiles.
    mountPath String
    The path at which to mount the storage share.
    accessKey string
    The Access key for the storage account.
    accountName string
    The Name of the Storage Account.
    name string
    The name which should be used for this Storage Account.
    shareName string
    The Name of the File Share or Container Name for Blob storage.
    type string
    The Azure Storage Type. Possible values include AzureFiles.
    mountPath string
    The path at which to mount the storage share.
    access_key str
    The Access key for the storage account.
    account_name str
    The Name of the Storage Account.
    name str
    The name which should be used for this Storage Account.
    share_name str
    The Name of the File Share or Container Name for Blob storage.
    type str
    The Azure Storage Type. Possible values include AzureFiles.
    mount_path str
    The path at which to mount the storage share.
    accessKey String
    The Access key for the storage account.
    accountName String
    The Name of the Storage Account.
    name String
    The name which should be used for this Storage Account.
    shareName String
    The Name of the File Share or Container Name for Blob storage.
    type String
    The Azure Storage Type. Possible values include AzureFiles.
    mountPath String
    The path at which to mount the storage share.

    Import

    Windows Function Apps can be imported using the resource id, e.g.

    $ pulumi import azure:appservice/windowsFunctionApp:WindowsFunctionApp example /subscriptions/12345678-1234-9876-4563-123456789012/resourceGroups/resGroup1/providers/Microsoft.Web/sites/site1
    

    To learn more about importing existing cloud resources, see Importing resources.

    Package Details

    Repository
    Azure Classic pulumi/pulumi-azure
    License
    Apache-2.0
    Notes
    This Pulumi package is based on the azurerm Terraform Provider.
    azure logo

    We recommend using Azure Native.

    Azure v6.10.0 published on Tuesday, Nov 19, 2024 by Pulumi