你当前正在访问 Microsoft Azure Global Edition 技术文档网站。 如果需要访问由世纪互联运营的 Microsoft Azure 中国技术文档网站,请访问 https://docs.azure.cn。
New-AzContainerAppIdentityProviderObject
为 IdentityProviders 创建内存中对象。
语法
New-AzContainerAppIdentityProviderObject
[-AllowedPrincipalGroup <String[]>]
[-AllowedPrincipalIdentity <String[]>]
[-AppleEnabled <Boolean>]
[-AppleLoginScope <String[]>]
[-AppleRegistrationClientId <String>]
[-AppleRegistrationClientSecretSettingName <String>]
[-AzureActiveDirectoryEnabled <Boolean>]
[-AzureActiveDirectoryIsAutoProvisioned <Boolean>]
[-AzureActiveDirectoryRegistrationClientId <String>]
[-AzureActiveDirectoryRegistrationClientSecretSettingName <String>]
[-AzureActiveDirectoryValidationAllowedAudience <String[]>]
[-AzureStaticWebAppEnabled <Boolean>]
[-AzureStaticWebAppsRegistrationClientId <String>]
[-CustomOpenIdConnectProvider <IIdentityProvidersCustomOpenIdConnectProviders>]
[-DefaultAuthorizationPolicyAllowedApplication <String[]>]
[-FacebookEnabled <Boolean>]
[-FacebookGraphApiVersion <String>]
[-FacebookLoginScope <String[]>]
[-GitHubEnabled <Boolean>]
[-GitHubLoginScope <String[]>]
[-GitHubRegistrationClientId <String>]
[-GitHubRegistrationClientSecretSettingName <String>]
[-GoogleEnabled <Boolean>]
[-GoogleLoginScope <String[]>]
[-GoogleRegistrationClientId <String>]
[-GoogleRegistrationClientSecretSettingName <String>]
[-GoogleValidationAllowedAudience <String[]>]
[-JwtClaimCheckAllowedClientApplication <String[]>]
[-JwtClaimCheckAllowedGroup <String[]>]
[-LoginDisableWwwAuthenticate <Boolean>]
[-LoginParameter <String[]>]
[-RegistrationAppId <String>]
[-RegistrationAppSecretSettingName <String>]
[-RegistrationClientSecretCertificateIssuer <String>]
[-RegistrationClientSecretCertificateSubjectAlternativeName <String>]
[-RegistrationClientSecretCertificateThumbprint <String>]
[-RegistrationConsumerKey <String>]
[-RegistrationConsumerSecretSettingName <String>]
[-RegistrationOpenIdIssuer <String>]
[-TwitterEnabled <Boolean>]
[<CommonParameters>]
说明
为 IdentityProviders 创建内存中对象。
示例
示例 1:为 AuthConfig 创建 IdentityProviders 对象。
New-AzContainerAppIdentityProviderObject -RegistrationAppId xxxxxx@xxx.com -RegistrationAppSecretSettingName redis-secret
... : ...
RegistrationAppId : xxxxxx@xxx.com
RegistrationAppSecretSettingName : redis-secret
... : ...
为 AuthConfig 创建 IdentityProviders 对象。
参数
-AllowedPrincipalGroup
允许的组的列表。
Type: | String[] |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-AllowedPrincipalIdentity
允许的标识的列表。
Type: | String[] |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-AppleEnabled
<如果尽管设置了注册,但不应启用 Apple 提供程序,则为 code false/code>;否则为 <>true</code>。<>
Type: | Boolean |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-AppleLoginScope
身份验证时应请求的范围列表。
Type: | String[] |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-AppleRegistrationClientId
用于登录的应用的客户端 ID。
Type: | String |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-AppleRegistrationClientSecretSettingName
包含客户端密码的应用设置名称。
Type: | String |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-AzureActiveDirectoryEnabled
<如果不应启用 Azure Active Directory 提供程序(尽管设置了注册)则为 false>/code>;否则为>< true</code>。<
Type: | Boolean |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-AzureActiveDirectoryIsAutoProvisioned
获取一个值,该值指示是否使用第一方工具自动预配 Azure AD 配置。 这是一个内部标志,主要用于支持 Azure 管理门户。 用户不应读取或写入此属性。
Type: | Boolean |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-AzureActiveDirectoryRegistrationClientId
此信赖方应用程序的客户端 ID,称为client_id。 若要使用 Azure Active Directory 或其他第三方 OpenID 连接 提供程序启用 OpenID 连接身份验证,则需要此设置。 有关 OpenID 连接的详细信息:http://openid.net/specs/openid-connect-core-1_0.html.
Type: | String |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-AzureActiveDirectoryRegistrationClientSecretSettingName
包含信赖方应用程序的客户端密码的应用设置名称。
Type: | String |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-AzureActiveDirectoryValidationAllowedAudience
可以成功进行身份验证/授权请求的访问群体列表。
Type: | String[] |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-AzureStaticWebAppEnabled
<>><如果不应启用 Azure Static Web 应用 提供程序(尽管设置了注册);否则为 true/code。>否则为 <true</code>。
Type: | Boolean |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-AzureStaticWebAppsRegistrationClientId
用于登录的应用的客户端 ID。
Type: | String |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-CustomOpenIdConnectProvider
每个自定义 Open ID 连接 提供程序的别名的名称映射到自定义 Open ID 连接 提供程序的配置设置。 若要构造,请参阅 CUSTOMOPENIDCONNECTPROVIDER 属性的 NOTES 部分并创建哈希表。
Type: | IIdentityProvidersCustomOpenIdConnectProviders |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-DefaultAuthorizationPolicyAllowedApplication
Azure Active Directory 允许的应用程序的配置设置。
Type: | String[] |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-FacebookEnabled
<如果尽管设置了注册,但 Facebook 提供程序不应启用代码 false/code>;否则为 <>true</code>。<>
Type: | Boolean |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-FacebookGraphApiVersion
登录时要使用的 Facebook API 版本。
Type: | String |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-FacebookLoginScope
身份验证时应请求的范围列表。
Type: | String[] |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-GitHubEnabled
<如果尽管设置了注册,但不应启用 GitHub 提供程序,则为 code false/code>;否则为 <>true</code>。<>
Type: | Boolean |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-GitHubLoginScope
身份验证时应请求的范围列表。
Type: | String[] |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-GitHubRegistrationClientId
用于登录的应用的客户端 ID。
Type: | String |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-GitHubRegistrationClientSecretSettingName
包含客户端密码的应用设置名称。
Type: | String |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-GoogleEnabled
<如果尽管设置了注册,但 Google 提供程序不应启用代码 false/code>,则为><
Type: | Boolean |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-GoogleLoginScope
身份验证时应请求的范围列表。
Type: | String[] |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-GoogleRegistrationClientId
用于登录的应用的客户端 ID。
Type: | String |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-GoogleRegistrationClientSecretSettingName
包含客户端密码的应用设置名称。
Type: | String |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-GoogleValidationAllowedAudience
要从中验证 JWT 令牌的允许访问群体列表的配置设置。
Type: | String[] |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-JwtClaimCheckAllowedClientApplication
允许的客户端应用程序列表。
Type: | String[] |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-JwtClaimCheckAllowedGroup
允许的组的列表。
Type: | String[] |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-LoginDisableWwwAuthenticate
<如果应从请求中省略 www-authenticate 提供程序,则为 code>true/code>;否则<为>false</code><。
Type: | Boolean |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-LoginParameter
用户登录时要发送到 OpenID 连接授权终结点的登录参数。 每个参数必须采用“key=value”格式。
Type: | String[] |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-RegistrationAppId
用于登录的应用的应用 ID。
Type: | String |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-RegistrationAppSecretSettingName
包含应用机密的应用设置名称。
Type: | String |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-RegistrationClientSecretCertificateIssuer
客户端机密指纹的替代方法,它是用于签名的证书的颁发者。 此属性充当客户端机密证书指纹的替代项。 它也是可选的。
Type: | String |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-RegistrationClientSecretCertificateSubjectAlternativeName
客户端机密指纹的替代方法,它是用于签名的证书的使用者可选名称。 此属性充当客户端机密证书指纹的替代项。 它也是可选的。
Type: | String |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-RegistrationClientSecretCertificateThumbprint
客户端机密的替代方法,即用于签名的证书的指纹。 此属性充当客户端机密的替代项。 它也是可选的。
Type: | String |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-RegistrationConsumerKey
用于登录的 Twitter 应用程序的 OAuth 1.0a 使用者密钥。 启用 Twitter 登录需要此设置。 Twitter 登录文档: https://dev.twitter.com/web/sign-in。
Type: | String |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-RegistrationConsumerSecretSettingName
包含用于登录的 Twitter 应用程序的 OAuth 1.0a 使用者机密的应用设置名称。
Type: | String |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-RegistrationOpenIdIssuer
OpenID 连接颁发者 URI,表示颁发此应用程序的访问令牌的实体。
使用 Azure Active Directory 时,此值是目录租户的 URI,例如 https://login.microsoftonline.com/v2.0/{tenant-guid}/
。
此 URI 是令牌颁发者的区分大小写的标识符。
有关 OpenID 连接 发现的详细信息:http://openid.net/specs/openid-connect-discovery-1_0.html。
Type: | String |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-TwitterEnabled
<如果尽管设置了注册,但不应启用 Twitter 提供程序,则为 false>/code>;否则为>< true</code>。<
Type: | Boolean |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | False |
Accept wildcard characters: | False |
输出
反馈
https://aka.ms/ContentUserFeedback。
即将发布:在整个 2024 年,我们将逐步淘汰作为内容反馈机制的“GitHub 问题”,并将其取代为新的反馈系统。 有关详细信息,请参阅:提交和查看相关反馈