Support for OpenID auth_settings in azurerm_app_service

[schmocker]

Community Note

• Please vote on this issue by adding a 👍 reaction to the original issue to help the community and maintainers prioritize this request
• Please do not leave "+1" or "me too" comments, they generate extra noise for issue followers and do not help prioritize the request
• If you are interested in working on this issue or have submitted a pull request, please leave a comment

Description

OpenID is available as Identity Provider in the Azure Portal for App Service under Authentication but not with Terraform. Please provide the corresponding settings.

This would be very helpful while using App Services with external Identity Providers like KeyCloak.

New or Affected Resource(s)

• azurerm_app_service

Potential Terraform Configuration

resource "azurerm_app_service" "app" {
  name = "myapp-as"
  ...

  auth_settings {
     enabled = true
     openid {
       metadata_url = "..."
       issuer_url = "..."
       authorization_endpoint = "..."
       token_endpoint = "..."
       client_id = "..."
       client_secret = "..."
       ...
     }
     unauthenticated_client_action = "RedirectToLoginPage"
     default_provider = "OpenId"
  }
}

References

• https://registry.terraform.io/providers/hashicorp/azurerm/latest/docs/resources/app_service

[schmocker]

now the same issue for the new azurerm_linux_web_app @manicminer: any plans to prioritise this feature? It's on Azure quite a while and I really like the idea of supporting OpenID besides company based auth methods...