A terraform module that handles Azure AD resources like (applications, users, groups, service principals, role definitions and role assignments)
Name |
Version |
terraform |
>= 0.13.04 |
azurerm |
=2.20.0 |
Name |
Version |
azuread |
n/a |
azurerm |
=2.20.0 |
random |
n/a |
Name |
Description |
Type |
Default |
Required |
applications |
Applications to be registered |
map(object({ homepage : string identifier_uris : list(string) reply_urls : list(string) available_to_other_tenants : bool oauth2_allow_implicit_flow : bool type : string })) |
n/a |
yes |
groups |
Azure AD groups |
map(object({ description : string members : list(string) owners : list(string) })) |
n/a |
yes |
role_definitions |
Custom role definitions |
map(object({ scope : string description : string permissions : object({ actions : list(string) not_actions : list(string) }) assignable_scopes : list(string) })) |
n/a |
yes |
service_principals |
Service principals to be created |
map(object({ description : string application_name : string app_role_assignment_required : bool end_date : string tags : list(string) })) |
n/a |
yes |
service_principals_role_assignments |
Role assignments for service principals |
map(object({ scope : string role_name : string principal_name : string })) |
n/a |
yes |
users |
Azure Active Directory users |
map(object({ display_name : string email : string mail_nickname : string force_password_change : bool account_enabled : bool })) |
n/a |
yes |
users_role_assignments |
Role assignments for ad users |
map(object({ scope : string role_name : string principal_name : string })) |
n/a |
yes |
Name |
Description |
applications |
n/a |
groups |
n/a |
role_definitions |
n/a |
service_principals |
n/a |
service_principals_role_assignments |
n/a |
users |
n/a |
users_role_assignments |
n/a |