Identity Provider - Create Or Update
Creates or Updates the IdentityProvider configuration.
PUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.ApiManagement/service/{serviceName}/identityProviders/{identityProviderName}?api-version=2024-05-01URI Parameters
| Name | In | Required | Type | Description |
|---|---|---|---|---|
|
identity
|
path | True |
Identity Provider Type identifier. |
|
|
resource
|
path | True |
string |
The name of the resource group. The name is case insensitive. |
|
service
|
path | True |
string |
The name of the API Management service. Regex pattern: |
|
subscription
|
path | True |
string uuid |
The ID of the target subscription. The value must be an UUID. |
|
api-version
|
query | True |
string |
The API version to use for this operation. |
Request Header
| Name | Required | Type | Description |
|---|---|---|---|
| If-Match |
string |
ETag of the Entity. Not required when creating an entity, but required when updating an entity. |
Request Body
| Name | Required | Type | Description |
|---|---|---|---|
| properties.clientId | True |
string |
Client Id of the Application in the external Identity Provider. It is App ID for Facebook login, Client ID for Google login, App ID for Microsoft. |
| properties.clientSecret | True |
string |
Client secret of the Application in external Identity Provider, used to authenticate login request. For example, it is App Secret for Facebook login, API Key for Google login, Public Key for Microsoft. This property will not be filled on 'GET' operations! Use '/listSecrets' POST request to get the value. |
| properties.allowedTenants |
string[] |
List of Allowed Tenants when configuring Azure Active Directory login. |
|
| properties.authority |
string |
OpenID Connect discovery endpoint hostname for AAD or AAD B2C. |
|
| properties.clientLibrary |
string |
The client library to be used in the developer portal. Only applies to AAD and AAD B2C Identity Provider. |
|
| properties.passwordResetPolicyName |
string |
Password Reset Policy Name. Only applies to AAD B2C Identity Provider. |
|
| properties.profileEditingPolicyName |
string |
Profile Editing Policy Name. Only applies to AAD B2C Identity Provider. |
|
| properties.signinPolicyName |
string |
Signin Policy Name. Only applies to AAD B2C Identity Provider. |
|
| properties.signinTenant |
string |
The TenantId to use instead of Common when logging into Active Directory |
|
| properties.signupPolicyName |
string |
Signup Policy Name. Only applies to AAD B2C Identity Provider. |
|
| properties.type |
Identity Provider Type identifier. |
Responses
| Name | Type | Description |
|---|---|---|
| 200 OK |
The existing Identity Provider was successfully updated. Headers ETag: string |
|
| 201 Created |
IdentityProvider configuration were successfully created. Headers ETag: string |
|
| Other Status Codes |
Error response describing why the operation failed. |
Security
azure_auth
Azure Active Directory OAuth2 Flow.
Type:
oauth2
Flow:
implicit
Authorization URL:
https://login.microsoftonline.com/common/oauth2/authorize
Scopes
| Name | Description |
|---|---|
| user_impersonation | impersonate your user account |
Examples
ApiManagementCreateIdentityProvider
Sample request
PUT https://management.azure.com/subscriptions/00000000-0000-0000-0000-000000000000/resourceGroups/rg1/providers/Microsoft.ApiManagement/service/apimService1/identityProviders/facebook?api-version=2024-05-01
{
"properties": {
"clientId": "facebookid",
"clientSecret": "facebookapplicationsecret"
}
}
Sample response
{
"id": "/subscriptions/00000000-0000-0000-0000-000000000000/resourceGroups/rg1/providers/Microsoft.ApiManagement/service/apimService1/identityProviders/Facebook",
"type": "Microsoft.ApiManagement/service/identityProviders",
"name": "Facebook",
"properties": {
"clientId": "facebookid",
"type": "facebook"
}
}{
"id": "/subscriptions/00000000-0000-0000-0000-000000000000/resourceGroups/rg1/providers/Microsoft.ApiManagement/service/apimService1/identityProviders/Facebook",
"type": "Microsoft.ApiManagement/service/identityProviders",
"name": "Facebook",
"properties": {
"clientId": "facebookid",
"type": "facebook"
}
}Definitions
| Name | Description |
|---|---|
|
Error |
The resource management error additional info. |
|
Error |
The error detail. |
|
Error |
Error response |
|
Identity |
Identity Provider details. |
|
Identity |
Identity Provider details. |
|
Identity |
Identity Provider Type identifier. |
ErrorAdditionalInfo
The resource management error additional info.
| Name | Type | Description |
|---|---|---|
| info |
object |
The additional info. |
| type |
string |
The additional info type. |
ErrorDetail
The error detail.
| Name | Type | Description |
|---|---|---|
| additionalInfo |
The error additional info. |
|
| code |
string |
The error code. |
| details |
The error details. |
|
| message |
string |
The error message. |
| target |
string |
The error target. |
ErrorResponse
Error response
| Name | Type | Description |
|---|---|---|
| error |
The error object. |
IdentityProviderContract
Identity Provider details.
| Name | Type | Description |
|---|---|---|
| id |
string |
Fully qualified resource ID for the resource. Ex - /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/{resourceProviderNamespace}/{resourceType}/{resourceName} |
| name |
string |
The name of the resource |
| properties.allowedTenants |
string[] |
List of Allowed Tenants when configuring Azure Active Directory login. |
| properties.authority |
string |
OpenID Connect discovery endpoint hostname for AAD or AAD B2C. |
| properties.clientId |
string |
Client Id of the Application in the external Identity Provider. It is App ID for Facebook login, Client ID for Google login, App ID for Microsoft. |
| properties.clientLibrary |
string |
The client library to be used in the developer portal. Only applies to AAD and AAD B2C Identity Provider. |
| properties.clientSecret |
string |
Client secret of the Application in external Identity Provider, used to authenticate login request. For example, it is App Secret for Facebook login, API Key for Google login, Public Key for Microsoft. This property will not be filled on 'GET' operations! Use '/listSecrets' POST request to get the value. |
| properties.passwordResetPolicyName |
string |
Password Reset Policy Name. Only applies to AAD B2C Identity Provider. |
| properties.profileEditingPolicyName |
string |
Profile Editing Policy Name. Only applies to AAD B2C Identity Provider. |
| properties.signinPolicyName |
string |
Signin Policy Name. Only applies to AAD B2C Identity Provider. |
| properties.signinTenant |
string |
The TenantId to use instead of Common when logging into Active Directory |
| properties.signupPolicyName |
string |
Signup Policy Name. Only applies to AAD B2C Identity Provider. |
| properties.type |
Identity Provider Type identifier. |
|
| type |
string |
The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts" |
IdentityProviderCreateContract
Identity Provider details.
| Name | Type | Description |
|---|---|---|
| id |
string |
Fully qualified resource ID for the resource. Ex - /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/{resourceProviderNamespace}/{resourceType}/{resourceName} |
| name |
string |
The name of the resource |
| properties.allowedTenants |
string[] |
List of Allowed Tenants when configuring Azure Active Directory login. |
| properties.authority |
string |
OpenID Connect discovery endpoint hostname for AAD or AAD B2C. |
| properties.clientId |
string |
Client Id of the Application in the external Identity Provider. It is App ID for Facebook login, Client ID for Google login, App ID for Microsoft. |
| properties.clientLibrary |
string |
The client library to be used in the developer portal. Only applies to AAD and AAD B2C Identity Provider. |
| properties.clientSecret |
string |
Client secret of the Application in external Identity Provider, used to authenticate login request. For example, it is App Secret for Facebook login, API Key for Google login, Public Key for Microsoft. This property will not be filled on 'GET' operations! Use '/listSecrets' POST request to get the value. |
| properties.passwordResetPolicyName |
string |
Password Reset Policy Name. Only applies to AAD B2C Identity Provider. |
| properties.profileEditingPolicyName |
string |
Profile Editing Policy Name. Only applies to AAD B2C Identity Provider. |
| properties.signinPolicyName |
string |
Signin Policy Name. Only applies to AAD B2C Identity Provider. |
| properties.signinTenant |
string |
The TenantId to use instead of Common when logging into Active Directory |
| properties.signupPolicyName |
string |
Signup Policy Name. Only applies to AAD B2C Identity Provider. |
| properties.type |
Identity Provider Type identifier. |
|
| type |
string |
The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts" |
IdentityProviderType
Identity Provider Type identifier.
| Name | Type | Description |
|---|---|---|
| aad |
string |
Azure Active Directory as Identity provider. |
| aadB2C |
string |
Azure Active Directory B2C as Identity provider. |
|
string |
Facebook as Identity provider. |
|
|
string |
Google as Identity provider. |
|
| microsoft |
string |
Microsoft Live as Identity provider. |
|
string |
Twitter as Identity provider. |