Marketplace
BrowsePublish
Marketplace
You are viewing an outdated version of provider-azure.Go to Latest
upbound/provider-azure@v0.42.1
ApplicationGateway
network.azure.upbound.io
ApplicationGateway
upbound/provider-azure@v0.42.1network.azure.upbound.io

ApplicationGateway is the Schema for the ApplicationGateways API. Manages an Application Gateway.

Type

CRD

Group

network.azure.upbound.io

Version

v1beta1

apiVersion: network.azure.upbound.io/v1beta1

kind: ApplicationGateway

API Documentation
apiVersion
string
kind
string
metadata
object
spec
object
object

ApplicationGatewaySpec defines the desired state of ApplicationGateway

forProvider
requiredobject
requiredobject

No description provided.

array

One or more authentication_certificate blocks as defined below.

dataSecretRef
requiredobject
requiredobject

The contents of the Authentication Certificate which should be used.

key
requiredstring
name
requiredstring
namespace
requiredstring
name
string
array

A autoscale_configuration block as defined below.

array

One or more backend_address_pool blocks as defined below.

fqdns
array
array

A list of FQDN's which should be part of the Backend Address Pool.

array

A list of IP Addresses which should be part of the Backend Address Pool.

name
string
array

One or more backend_http_settings blocks as defined below.

array

One or more authentication_certificate blocks as defined below.

name
string
array

A connection_draining block as defined below.

hostName
string
name
string
path
string
port
number
probeName
string
protocol
string
array

A list of trusted_root_certificate names.

array

One or more custom_error_configuration blocks as defined below.

array

One or more frontend_ip_configuration blocks as defined below.

name
string
object

Reference to a PublicIP to populate publicIpAddressId.

name
requiredstring
policy
object
object

Policies for referencing.

resolve
string
object

Selector for a PublicIP to populate publicIpAddressId.

policy
object
object

Policies for selection.

resolve
string
subnetId
string
object

Reference to a Subnet to populate subnetId.

name
requiredstring
policy
object
object

Policies for referencing.

resolve
string
object

Selector for a Subnet to populate subnetId.

policy
object
object

Policies for selection.

resolve
string
array

One or more frontend_port blocks as defined below.

name
string
port
number
array

One or more gateway_ip_configuration blocks as defined below.

name
string
subnetId
string
object

Reference to a Subnet in network to populate subnetId.

name
requiredstring
policy
object
object

Policies for referencing.

resolve
string
object

Selector for a Subnet in network to populate subnetId.

policy
object
object

Policies for selection.

resolve
string
global
array
array

A global block as defined below.

array

One or more http_listener blocks as defined below.

array

One or more custom_error_configuration blocks as defined below.

hostName
string
array

A list of Hostname(s) should be used for this HTTP Listener. It allows special wildcard characters.

name
string
protocol
string
requireSni
boolean
array

An identity block as defined below.

array

Specifies a list of User Assigned Managed Identity IDs to be assigned to this Application Gateway.

type
string
location
string
array

One or more private_link_configuration blocks as defined below.

array

One or more ip_configuration blocks as defined below.

name
string
primary
boolean
subnetId
string
object

Reference to a Subnet to populate subnetId.

name
requiredstring
policy
object
object

Policies for referencing.

resolve
string
object

Selector for a Subnet to populate subnetId.

policy
object
object

Policies for selection.

resolve
string
name
string
probe
array
array

One or more probe blocks as defined below.

host
string
interval
number
match
array
array

A match block as defined above.

body
string
array

A list of allowed status codes for this Health Probe.

name
string
path
string
port
number
protocol
string
timeout
number
array

One or more redirect_configuration blocks as defined below.

array

One or more request_routing_rule blocks as defined below.

object

Reference to a ResourceGroup in azure to populate resourceGroupName.

name
requiredstring
policy
object
object

Policies for referencing.

resolve
string
object

Selector for a ResourceGroup in azure to populate resourceGroupName.

policy
object
object

Policies for selection.

resolve
string
array

One or more rewrite_rule_set blocks as defined below. Only valid for v2 SKUs.

name
string
array

One or more rewrite_rule blocks as defined above.

array

One or more condition blocks as defined above.

ignoreCase
boolean
negate
boolean
pattern
string
variable
string
name
string
array

One or more request_header_configuration blocks as defined above.

array

One or more response_header_configuration blocks as defined above.

url
array
array

One url block as defined below

path
string
reroute
boolean
sku
array
array

A sku block as defined below.

capacity
number
name
string
tier
string
array

One or more ssl_certificate blocks as defined below.

object

The base64-encoded PFX certificate data. Required if key_vault_secret_id is not set.

key
requiredstring
name
requiredstring
namespace
requiredstring
name
string
object

Password for the pfx file specified in data. Required if data is set.

key
requiredstring
name
requiredstring
namespace
requiredstring
array

a ssl_policy block as defined below.

array

A List of accepted cipher suites. Possible values are: TLS_DHE_DSS_WITH_3DES_EDE_CBC_SHA, TLS_DHE_DSS_WITH_AES_128_CBC_SHA, TLS_DHE_DSS_WITH_AES_128_CBC_SHA256, TLS_DHE_DSS_WITH_AES_256_CBC_SHA, TLS_DHE_DSS_WITH_AES_256_CBC_SHA256, TLS_DHE_RSA_WITH_AES_128_CBC_SHA, TLS_DHE_RSA_WITH_AES_128_GCM_SHA256, TLS_DHE_RSA_WITH_AES_256_CBC_SHA, TLS_DHE_RSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA, TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256, TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA, TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384, TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256, TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384, TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384, TLS_RSA_WITH_3DES_EDE_CBC_SHA, TLS_RSA_WITH_AES_128_CBC_SHA, TLS_RSA_WITH_AES_128_CBC_SHA256, TLS_RSA_WITH_AES_128_GCM_SHA256, TLS_RSA_WITH_AES_256_CBC_SHA, TLS_RSA_WITH_AES_256_CBC_SHA256 and TLS_RSA_WITH_AES_256_GCM_SHA384.

array

A list of SSL Protocols which should be disabled on this Application Gateway. Possible values are TLSv1_0, TLSv1_1, TLSv1_2 and TLSv1_3.

array

One or more ssl_profile blocks as defined below.

name
string
array

a ssl_policy block as defined below.

array

A List of accepted cipher suites. Possible values are: TLS_DHE_DSS_WITH_3DES_EDE_CBC_SHA, TLS_DHE_DSS_WITH_AES_128_CBC_SHA, TLS_DHE_DSS_WITH_AES_128_CBC_SHA256, TLS_DHE_DSS_WITH_AES_256_CBC_SHA, TLS_DHE_DSS_WITH_AES_256_CBC_SHA256, TLS_DHE_RSA_WITH_AES_128_CBC_SHA, TLS_DHE_RSA_WITH_AES_128_GCM_SHA256, TLS_DHE_RSA_WITH_AES_256_CBC_SHA, TLS_DHE_RSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA, TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256, TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA, TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384, TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256, TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384, TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384, TLS_RSA_WITH_3DES_EDE_CBC_SHA, TLS_RSA_WITH_AES_128_CBC_SHA, TLS_RSA_WITH_AES_128_CBC_SHA256, TLS_RSA_WITH_AES_128_GCM_SHA256, TLS_RSA_WITH_AES_256_CBC_SHA, TLS_RSA_WITH_AES_256_CBC_SHA256 and TLS_RSA_WITH_AES_256_GCM_SHA384.

array

A list of SSL Protocols which should be disabled on this Application Gateway. Possible values are TLSv1_0, TLSv1_1, TLSv1_2 and TLSv1_3.

array

The name of the Trusted Client Certificate that will be used to authenticate requests from clients.

tags
object
array

One or more trusted_client_certificate blocks as defined below.

dataSecretRef
requiredobject
requiredobject

The base-64 encoded certificate.

key
requiredstring
name
requiredstring
namespace
requiredstring
name
string
array

One or more trusted_root_certificate blocks as defined below.

object

The contents of the Trusted Root Certificate which should be used. Required if key_vault_secret_id is not set.

key
requiredstring
name
requiredstring
namespace
requiredstring
name
string
array

One or more url_path_map blocks as defined below.

name
string
array

One or more path_rule blocks as defined above.

name
string
paths
array
array

A list of Paths used in this Path Rule.

array

A waf_configuration block as defined below.

array

one or more disabled_rule_group blocks as defined below.

rules
array
array

A list of rules which should be disabled in that group. Disables all rules in the specified group if rules is not specified.

enabled
boolean
array

one or more exclusion blocks as defined below.

zones
array
array

Specifies a list of Availability Zones in which this Application Gateway should be located. Changing this forces a new Application Gateway to be created.

object

THIS IS A BETA FIELD. It will be honored unless the Management Policies feature flag is disabled. InitProvider holds the same fields as ForProvider, with the exception of Identifier and other resource reference fields. The fields that are in InitProvider are merged into ForProvider when the resource is created. The same fields are also added to the terraform ignore_changes hook, to avoid updating them after creation. This is useful for fields that are required on creation, but we do not desire to update them after creation, for example because of an external controller is managing them, like an autoscaler.

array

One or more authentication_certificate blocks as defined below.

name
string
array

A autoscale_configuration block as defined below.

array

One or more backend_address_pool blocks as defined below.

fqdns
array
array

A list of FQDN's which should be part of the Backend Address Pool.

array

A list of IP Addresses which should be part of the Backend Address Pool.

name
string
array

One or more backend_http_settings blocks as defined below.

array

One or more authentication_certificate blocks as defined below.

name
string
array

A connection_draining block as defined below.

hostName
string
name
string
path
string
port
number
probeName
string
protocol
string
array

A list of trusted_root_certificate names.

array

One or more custom_error_configuration blocks as defined below.

array

One or more frontend_ip_configuration blocks as defined below.

name
string
object

Reference to a PublicIP to populate publicIpAddressId.

name
requiredstring
policy
object
object

Policies for referencing.

resolve
string
object

Selector for a PublicIP to populate publicIpAddressId.

policy
object
object

Policies for selection.

resolve
string
subnetId
string
object

Reference to a Subnet to populate subnetId.

name
requiredstring
policy
object
object

Policies for referencing.

resolve
string
object

Selector for a Subnet to populate subnetId.

policy
object
object

Policies for selection.

resolve
string
array

One or more frontend_port blocks as defined below.

name
string
port
number
array

One or more gateway_ip_configuration blocks as defined below.

name
string
subnetId
string
object

Reference to a Subnet in network to populate subnetId.

name
requiredstring
policy
object
object

Policies for referencing.

resolve
string
object

Selector for a Subnet in network to populate subnetId.

policy
object
object

Policies for selection.

resolve
string
global
array
array

A global block as defined below.

array

One or more http_listener blocks as defined below.

array

One or more custom_error_configuration blocks as defined below.

hostName
string
array

A list of Hostname(s) should be used for this HTTP Listener. It allows special wildcard characters.

name
string
protocol
string
requireSni
boolean
array

An identity block as defined below.

array

Specifies a list of User Assigned Managed Identity IDs to be assigned to this Application Gateway.

type
string
location
string
array

One or more private_link_configuration blocks as defined below.

array

One or more ip_configuration blocks as defined below.

name
string
primary
boolean
subnetId
string
object

Reference to a Subnet to populate subnetId.

name
requiredstring
policy
object
object

Policies for referencing.

resolve
string
object

Selector for a Subnet to populate subnetId.

policy
object
object

Policies for selection.

resolve
string
name
string
probe
array
array

One or more probe blocks as defined below.

host
string
interval
number
match
array
array

A match block as defined above.

body
string
array

A list of allowed status codes for this Health Probe.

name
string
path
string
port
number
protocol
string
timeout
number
array

One or more redirect_configuration blocks as defined below.

array

One or more request_routing_rule blocks as defined below.

array

One or more rewrite_rule_set blocks as defined below. Only valid for v2 SKUs.

name
string
array

One or more rewrite_rule blocks as defined above.

array

One or more condition blocks as defined above.

ignoreCase
boolean
negate
boolean
pattern
string
variable
string
name
string
array

One or more request_header_configuration blocks as defined above.

array

One or more response_header_configuration blocks as defined above.

url
array
array

One url block as defined below

path
string
reroute
boolean
sku
array
array

A sku block as defined below.

capacity
number
name
string
tier
string
array

One or more ssl_certificate blocks as defined below.

array

a ssl_policy block as defined below.

array

A List of accepted cipher suites. Possible values are: TLS_DHE_DSS_WITH_3DES_EDE_CBC_SHA, TLS_DHE_DSS_WITH_AES_128_CBC_SHA, TLS_DHE_DSS_WITH_AES_128_CBC_SHA256, TLS_DHE_DSS_WITH_AES_256_CBC_SHA, TLS_DHE_DSS_WITH_AES_256_CBC_SHA256, TLS_DHE_RSA_WITH_AES_128_CBC_SHA, TLS_DHE_RSA_WITH_AES_128_GCM_SHA256, TLS_DHE_RSA_WITH_AES_256_CBC_SHA, TLS_DHE_RSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA, TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256, TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA, TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384, TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256, TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384, TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384, TLS_RSA_WITH_3DES_EDE_CBC_SHA, TLS_RSA_WITH_AES_128_CBC_SHA, TLS_RSA_WITH_AES_128_CBC_SHA256, TLS_RSA_WITH_AES_128_GCM_SHA256, TLS_RSA_WITH_AES_256_CBC_SHA, TLS_RSA_WITH_AES_256_CBC_SHA256 and TLS_RSA_WITH_AES_256_GCM_SHA384.

array

A list of SSL Protocols which should be disabled on this Application Gateway. Possible values are TLSv1_0, TLSv1_1, TLSv1_2 and TLSv1_3.

array

One or more ssl_profile blocks as defined below.

name
string
array

a ssl_policy block as defined below.

array

A List of accepted cipher suites. Possible values are: TLS_DHE_DSS_WITH_3DES_EDE_CBC_SHA, TLS_DHE_DSS_WITH_AES_128_CBC_SHA, TLS_DHE_DSS_WITH_AES_128_CBC_SHA256, TLS_DHE_DSS_WITH_AES_256_CBC_SHA, TLS_DHE_DSS_WITH_AES_256_CBC_SHA256, TLS_DHE_RSA_WITH_AES_128_CBC_SHA, TLS_DHE_RSA_WITH_AES_128_GCM_SHA256, TLS_DHE_RSA_WITH_AES_256_CBC_SHA, TLS_DHE_RSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA, TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256, TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA, TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384, TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256, TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384, TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384, TLS_RSA_WITH_3DES_EDE_CBC_SHA, TLS_RSA_WITH_AES_128_CBC_SHA, TLS_RSA_WITH_AES_128_CBC_SHA256, TLS_RSA_WITH_AES_128_GCM_SHA256, TLS_RSA_WITH_AES_256_CBC_SHA, TLS_RSA_WITH_AES_256_CBC_SHA256 and TLS_RSA_WITH_AES_256_GCM_SHA384.

array

A list of SSL Protocols which should be disabled on this Application Gateway. Possible values are TLSv1_0, TLSv1_1, TLSv1_2 and TLSv1_3.

array

The name of the Trusted Client Certificate that will be used to authenticate requests from clients.

tags
object
array

One or more trusted_client_certificate blocks as defined below.

name
string
array

One or more trusted_root_certificate blocks as defined below.

array

One or more url_path_map blocks as defined below.

name
string
array

One or more path_rule blocks as defined above.