Feature Request: In App Services (Web Apps) provide ability to set Certificate exclusion paths

Community Note

Please vote on this issue by adding a 👍 reaction to the original issue to help the community and maintainers prioritize this request
Please do not leave "+1" or "me too" comments, they generate extra noise for issue followers and do not help prioritize the request
If you are interested in working on this issue or have submitted a pull request, please leave a comment

Description

In Azure App Services (Web Apps), please provide ability to set Certificate exclusion paths. This allows our Azure Traffic Manager Endpoint to communicate to our Web Apps without a certificate for health check endpoints. Here is a screenshot from the Azure portal: Here is an excerpt from the Azure App Service (Web App) Export Template: "clientCertExclusionPaths": "/foo;/bar;/hello;/world", Here is an example Azure CLI command that I tested out: az webapp update --set clientCertExclusionPaths="/foo;/bar;/hello;/world" --name myWebapp --resource-group myResourceGroup

Note that the current work around my group uses to automate this setting is to use the above mentioned azure cli command after applying Terraform. Also we prefer to avoid using the ARM templates deployment resource script as much as possible. Thanks.

New or Affected Resource(s)

azurerm_app_service

Potential Terraform Configuration

resource "azurerm_app_service" "example" {
  name                = "example-app-service"
  location            = azurerm_resource_group.example.location
  resource_group_name = azurerm_resource_group.example.name
  app_service_plan_id = azurerm_app_service_plan.example.id

  client_affinity_enabled = false
  client_cert_enabled = true
  client_cert_exclusion_paths =  "/foo;/bar;/hello;/world"  # This is the property setting to add the certificate exclusion paths.

  app_settings = {
    "SOME_KEY" = "some-value"
  }
}

References

Below is a similar issue but for function apps only:

6243

hashicorp / terraform-provider-azurerm