az containerapp auth microsoft
Manage containerapp authentication and authorization of the Microsoft identity provider.
Commands
Name | Description | Type | Status |
---|---|---|---|
az containerapp auth microsoft show |
Show the authentication settings for the Azure Active Directory identity provider. |
Core | GA |
az containerapp auth microsoft update |
Update the client id and client secret for the Azure Active Directory identity provider. |
Core | GA |
az containerapp auth microsoft show
Show the authentication settings for the Azure Active Directory identity provider.
az containerapp auth microsoft show [--ids]
[--name]
[--resource-group]
[--subscription]
Examples
Show the authentication settings for the Azure Active Directory identity provider.
az containerapp auth microsoft show --name my-containerapp --resource-group MyResourceGroup
Optional Parameters
One or more resource IDs (space-delimited). It should be a complete resource ID containing all information of 'Resource Id' arguments. You should provide either --ids or other 'Resource Id' arguments.
The name of the Containerapp. A name must consist of lower case alphanumeric characters or '-', start with a letter, end with an alphanumeric character, cannot have '--', and must be less than 32 characters.
Name of resource group. You can configure the default group using az configure --defaults group=<name>
.
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID
.
Global Parameters
Increase logging verbosity to show all debug logs.
Show this help message and exit.
Only show errors, suppressing warnings.
Output format.
JMESPath query string. See http://jmespath.org/ for more information and examples.
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID
.
Increase logging verbosity. Use --debug for full debug logs.
az containerapp auth microsoft update
Update the client id and client secret for the Azure Active Directory identity provider.
az containerapp auth microsoft update [--allowed-audiences]
[--certificate-issuer]
[--client-id]
[--client-secret]
[--client-secret-certificate-san]
[--client-secret-certificate-thumbprint]
[--client-secret-name]
[--ids]
[--issuer]
[--name]
[--resource-group]
[--subscription]
[--tenant-id]
[--yes]
Examples
Update the open id issuer, client id and client secret for the Azure Active Directory identity provider.
az containerapp auth microsoft update -g myResourceGroup --name my-containerapp \
--client-id my-client-id --client-secret very_secret_password \
--issuer https://sts.windows.net/54826b22-38d6-4fb2-bad9-b7983a3e9c5a/
Optional Parameters
The configuration settings of the allowed list of audiences from which to validate the JWT token.
Alternative to AAD Client Secret and thumbprint, issuer of a certificate used for signing purposes.
The Client ID of the app used for login.
The client secret.
Alternative to AAD Client Secret and thumbprint, subject alternative name of a certificate used for signing purposes.
Alternative to AAD Client Secret, thumbprint of a certificate used for signing purposes.
The app secret name that contains the client secret of the relying party application.
One or more resource IDs (space-delimited). It should be a complete resource ID containing all information of 'Resource Id' arguments. You should provide either --ids or other 'Resource Id' arguments.
The OpenID Connect Issuer URI that represents the entity which issues access tokens for this application.
The name of the Containerapp. A name must consist of lower case alphanumeric characters or '-', start with a letter, end with an alphanumeric character, cannot have '--', and must be less than 32 characters.
Name of resource group. You can configure the default group using az configure --defaults group=<name>
.
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID
.
The tenant id of the application.
Do not prompt for confirmation.
Global Parameters
Increase logging verbosity to show all debug logs.
Show this help message and exit.
Only show errors, suppressing warnings.
Output format.
JMESPath query string. See http://jmespath.org/ for more information and examples.
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID
.
Increase logging verbosity. Use --debug for full debug logs.