Microsoft.ContainerRegistry registries/tokens template reference

Template format

To create a Microsoft.ContainerRegistry/registries/tokens resource, add the following JSON to the resources section of your template.

{
  "name": "string",
  "type": "Microsoft.ContainerRegistry/registries/tokens",
  "apiVersion": "2019-05-01-preview",
  "properties": {
    "scopeMapId": "string",
    "credentials": {
      "activeDirectoryObject": {
        "objectId": "string",
        "tenantId": "string"
      },
      "certificates": [
        {
          "name": "string",
          "expiry": "string",
          "thumbprint": "string",
          "encodedPemCertificate": "string"
        }
      ],
      "passwords": [
        {
          "creationTime": "string",
          "expiry": "string",
          "name": "string"
        }
      ]
    },
    "status": "string"
  }
}

Property values

The following tables describe the values you need to set in the schema.

Microsoft.ContainerRegistry/registries/tokens object

Name Type Required Value
name string Yes The name of the token.
type enum Yes tokens
-or-
Microsoft.ContainerRegistry/registries/tokens

See Set name and type for child resources.
apiVersion enum Yes 2019-05-01-preview
properties object Yes The properties of the token. - TokenProperties object

TokenProperties object

Name Type Required Value
scopeMapId string No The resource ID of the scope map to which the token will be associated with.
credentials object No The credentials that can be used for authenticating the token. - TokenCredentialsProperties object
status enum No The status of the token example enabled or disabled. - enabled or disabled

TokenCredentialsProperties object

Name Type Required Value
activeDirectoryObject object No ActiveDirectoryObject object
certificates array No TokenCertificate object
passwords array No TokenPassword object

ActiveDirectoryObject object

Name Type Required Value
objectId string No The user/group/application object ID for Active Directory Object that will be used for authenticating the token of a container registry.
tenantId string No The tenant ID of user/group/application object Active Directory Object that will be used for authenticating the token of a container registry.

TokenCertificate object

Name Type Required Value
name enum No certificate1 or certificate2
expiry string No The expiry datetime of the certificate.
thumbprint string No The thumbprint of the certificate.
encodedPemCertificate string No Base 64 encoded string of the public certificate1 in PEM format that will be used for authenticating the token.

TokenPassword object

Name Type Required Value
creationTime string No The creation datetime of the password.
expiry string No The expiry datetime of the password.
name enum No The password name "password1" or "password2". - password1 or password2