azuread/service_principal¶

Overview¶

This page documents the Terraform module implementation, key configuration surfaces, and how it integrates with CAF.

Dependency diagram (Mermaid)¶

graph TD azuread_service_principal.app["azuread_service_principal.app"] null_resource.grant_admin_consent["null_resource.grant_admin_consent"] time_sleep.propagate_to_azuread["time_sleep.propagate_to_azuread"] null_resource.grant_admin_consent --> azuread_service_principal.app null_resource.grant_admin_consent --> time_sleep.propagate_to_azuread time_sleep.propagate_to_azuread --> azuread_service_principal.app

Module Reference¶

Category: azuread
Path: modules/azuread/service_principal
Azure Resources: azuread_service_principal, null_resource, time_sleep

Inputs¶

Name	Description	Type	Required	Default	Validation
`"global_settings"`		`any`	no	`{}`	-
`"settings"`		`any`	no	`{}`	-
`"client_config"`	"Client configuration object (see module README.md)."	`any`	yes	`-`	-
`"client_id"`	"Client ID of the service principal to create."	`any`	yes	`-`	-
`"azuread_api_permissions"`		`any`	no	`{}`	-
`"user_type"`		`any`	no	`-`	-

Outputs¶

Name	Description	Sensitive	Value
`"tenant_id"`		-	`var.client_config.tenant_id`
`"id"`		-	`azuread_service_principal.app.id`
`"client_id"`		-	`azuread_service_principal.app.client_id`
`"object_id"`		-	`azuread_service_principal.app.object_id`
`"display_name"`		-	`azuread_service_principal.app.object_id`
`"rbac_id"`	"This attribute is used to set the role assignment"	-	`azuread_service_principal.app.object_id`

Sources¶

modules/azuread/service_principal/grant_api_permissions.tf
modules/azuread/service_principal/module.tf
modules/azuread/service_principal/outputs.tf
modules/azuread/service_principal/variables.tf