Azure Components
Reference for every Azure offer in the Fractal Cloud catalogue. Parameters and their required flags are sourced from the agent param contract (FRA-2955); each offer includes a fully-parameterized JSON example.
APIManagement
APIManagement.CaaS.Ambassador
Ambassador is an open-source API gateway and ingress controller deployed in a Kubernetes cluster.
| Parameter | Description | Example / possible values | Required |
|---|---|---|---|
host | string parameter | (empty string) | No |
hostOwnerEmail | string parameter | (string value) | Yes |
acmeProviderAuthority | string parameter | (string value) | Yes |
tlsSecretName | string parameter | (string value) | Yes |
licenseKey | string parameter | (empty string) | No |
namespace | string parameter | (string value) | Yes |
Example (fully parameterized):
{
"type": "APIManagement.CaaS.Ambassador",
"parameters": {
"host": "",
"hostOwnerEmail": "example-value",
"acmeProviderAuthority": "example-value",
"tlsSecretName": "example-value",
"licenseKey": "",
"namespace": "example-value"
}
}
APIManagement.CaaS.Traefik
Traefik is a modern reverse proxy and load balancer for Kubernetes, providing routing, TLS termination, and API gateway features.
| Parameter | Description | Example / possible values | Required |
|---|---|---|---|
entryPoints | list parameter | [] (array) | Yes |
hostname | string parameter | (empty string) | No |
loadbalancerIp | string parameter | (empty string) | No |
oidcIssuerUrl | string parameter | (string value) | Conditional — part of the all-or-nothing OIDC config group |
oidcClientId | string parameter | (string value) | Conditional — part of the all-or-nothing OIDC config group |
oidcClientSecretId | string parameter | (string value) | Conditional — part of the all-or-nothing OIDC config group |
forwardAuthSecretId | string parameter | (string value) | Conditional — part of the all-or-nothing OIDC config group |
securityHeadersSettings | map parameter | {} | No |
tlsCertificates | list parameter | [] | No |
tlsSettings | map parameter | {} | No |
tracing | map parameter | {} | No |
namespace | string parameter | (string value) | Yes |
Example (fully parameterized):
{
"type": "APIManagement.CaaS.Traefik",
"parameters": {
"entryPoints": [],
"hostname": "",
"loadbalancerIp": "",
"oidcIssuerUrl": "example-value",
"oidcClientId": "example-value",
"oidcClientSecretId": "example-value",
"forwardAuthSecretId": "example-value",
"securityHeadersSettings": {},
"tlsCertificates": [],
"tlsSettings": {},
"tracing": {},
"namespace": "example-value"
}
}
APIManagement.PaaS.ApiManagement
Azure API Management is a fully managed service for publishing, managing, and securing APIs.
| Parameter | Description | Example / possible values | Required |
|---|---|---|---|
publisherName | string parameter | Platform Team | No |
publisherEmail | string parameter | platform@fractal.cloud | No |
skuName | string parameter | Developer_1 | No |
publicNetworkAccessEnabled | boolean parameter | True | No |
identity | map parameter | {} | No |
Example (fully parameterized):
{
"type": "APIManagement.PaaS.ApiManagement",
"parameters": {
"publisherName": "Platform Team",
"publisherEmail": "platform@fractal.cloud",
"skuName": "Developer_1",
"publicNetworkAccessEnabled": true,
"identity": {}
}
}
APIManagement.SaaS.Unmanaged
External API management service with custom configuration supplied via secret.
| Parameter | Description | Example / possible values | Required |
|---|---|---|---|
secretName | string parameter | (empty string) | No |
secretValue | string parameter | (string value) | Yes |
Example (fully parameterized):
{
"type": "APIManagement.SaaS.Unmanaged",
"parameters": {
"secretName": "",
"secretValue": "example-value"
}
}
BigData
BigData.CaaS.MinioTenant
MinIO is a Kubernetes-hosted S3-compatible object storage system.
| Parameter | Description | Example / possible values | Required |
|---|---|---|---|
minioVersion | string parameter | RELEASE.2025-03-12T18-04-18Z | No |
servers | integer parameter | 4 | No |
volumesPerServer | integer parameter | 4 | No |
volumeSize | string parameter | 100Gi | No |
storageClass | string parameter | (empty string) | No |
cpuRequest | string parameter | 500m | No |
cpuLimit | string parameter | 2 | No |
memoryRequest | string parameter | 1Gi | No |
memoryLimit | string parameter | 4Gi | No |
requestAutoCert | boolean parameter | True | No |
namespace | string parameter | (string value) | Yes |
Example (fully parameterized):
{
"type": "BigData.CaaS.MinioTenant",
"parameters": {
"minioVersion": "RELEASE.2025-03-12T18-04-18Z",
"servers": 4,
"volumesPerServer": 4,
"volumeSize": "100Gi",
"storageClass": "",
"cpuRequest": "500m",
"cpuLimit": "2",
"memoryRequest": "1Gi",
"memoryLimit": "4Gi",
"requestAutoCert": true,
"namespace": "example-value"
}
}
BigData.CaaS.SparkCluster
Apache Spark cluster deployed on Kubernetes for distributed data processing.
| Parameter | Description | Example / possible values | Required |
|---|---|---|---|
sparkVersion | string parameter | 3.5.3 | No |
image | string parameter | apache/spark:3.5.3 | No |
driverCores | string parameter | 1 | No |
driverMemory | string parameter | 1g | No |
executorCores | string parameter | 2 | No |
executorMemory | string parameter | 2g | No |
executorInstances | integer parameter | 2 | No |
sparkOperatorName | string parameter | (string value) | Yes |
namespace | string parameter | (string value) | Yes |
Example (fully parameterized):
{
"type": "BigData.CaaS.SparkCluster",
"parameters": {
"sparkVersion": "3.5.3",
"image": "apache/spark:3.5.3",
"driverCores": "1",
"driverMemory": "1g",
"executorCores": "2",
"executorMemory": "2g",
"executorInstances": 2,
"sparkOperatorName": "example-value",
"namespace": "example-value"
}
}
BigData.CaaS.SparkJob
Spark job that runs on a SparkApplication custom resource in a Kubernetes cluster.
| Parameter | Description | Example / possible values | Required |
|---|---|---|---|
type | string parameter | Java | No |
mode | string parameter | cluster | No |
image | string parameter | apache/spark:3.5.3 | No |
mainClass | string parameter | (empty string) | No |
mainApplicationFile | string parameter | (empty string) | No |
arguments | list parameter | [] | No |
sparkVersion | string parameter | 3.5.3 | No |
sparkConf | map parameter | {} | No |
driverCores | string parameter | 1 | No |
driverMemory | string parameter | 1g | No |
executorCores | string parameter | 2 | No |
executorMemory | string parameter | 2g | No |
executorInstances | integer parameter | 2 | No |
restartPolicy | string parameter | Never | No |
maxRetries | integer parameter | 3 | No |
schedule | string parameter | (empty string) | No |
concurrencyPolicy | string parameter | Forbid | No |
sparkOperatorName | string parameter | (string value) | Yes |
namespace | string parameter | (string value) | Yes |
Example (fully parameterized):
{
"type": "BigData.CaaS.SparkJob",
"parameters": {
"type": "Java",
"mode": "cluster",
"image": "apache/spark:3.5.3",
"mainClass": "",
"mainApplicationFile": "",
"arguments": [],
"sparkVersion": "3.5.3",
"sparkConf": {},
"driverCores": "1",
"driverMemory": "1g",
"executorCores": "2",
"executorMemory": "2g",
"executorInstances": 2,
"restartPolicy": "Never",
"maxRetries": 3,
"schedule": "",
"concurrencyPolicy": "Forbid",
"sparkOperatorName": "example-value",
"namespace": "example-value"
}
}
BigData.CaaS.SparkMlExperiment
MLflow experiment server deployed in Kubernetes for machine learning experiment tracking.
| Parameter | Description | Example / possible values | Required |
|---|---|---|---|
mlflowVersion | string parameter | 2.21.3 | No |
backendStoreUri | string parameter | sqlite:///mlflow/mlflow.db | No |
artifactRoot | string parameter | /mlflow/artifacts | No |
replicas | integer parameter | 2 | No |
cpuRequest | string parameter | 250m | No |
cpuLimit | string parameter | 1 | No |
memoryRequest | string parameter | 512Mi | No |
memoryLimit | string parameter | 1Gi | No |
servicePort | integer parameter | 5000 | No |
namespace | string parameter | (string value) | Yes |
Example (fully parameterized):
{
"type": "BigData.CaaS.SparkMlExperiment",
"parameters": {
"mlflowVersion": "2.21.3",
"backendStoreUri": "sqlite:///mlflow/mlflow.db",
"artifactRoot": "/mlflow/artifacts",
"replicas": 2,
"cpuRequest": "250m",
"cpuLimit": "1",
"memoryRequest": "512Mi",
"memoryLimit": "1Gi",
"servicePort": 5000,
"namespace": "example-value"
}
}
BigData.CaaS.SparkOperator
Spark Operator controller enabling native Spark job submission in Kubernetes.
| Parameter | Description | Example / possible values | Required |
|---|---|---|---|
operatorVersion | string parameter | 2.5.0 | No |
sparkVersion | string parameter | 3.5.3 | No |
enableWebhook | boolean parameter | True | No |
enableMetrics | boolean parameter | True | No |
namespace | string parameter | (string value) | Yes |
Example (fully parameterized):
{
"type": "BigData.CaaS.SparkOperator",
"parameters": {
"operatorVersion": "2.5.0",
"sparkVersion": "3.5.3",
"enableWebhook": true,
"enableMetrics": true,
"namespace": "example-value"
}
}
BigData.CaaS.SparkUnityCatalog
Unity Catalog server for governing data and AI assets in a Spark ecosystem.
| Parameter | Description | Example / possible values | Required |
|---|---|---|---|
unityCatalogVersion | string parameter | 0.3.0 | No |
replicas | integer parameter | 2 | No |
cpuRequest | string parameter | 250m | No |
cpuLimit | string parameter | 1 | No |
memoryRequest | string parameter | 512Mi | No |
memoryLimit | string parameter | 1Gi | No |
namespace | string parameter | (string value) | Yes |
Example (fully parameterized):
{
"type": "BigData.CaaS.SparkUnityCatalog",
"parameters": {
"unityCatalogVersion": "0.3.0",
"replicas": 2,
"cpuRequest": "250m",
"cpuLimit": "1",
"memoryRequest": "512Mi",
"memoryLimit": "1Gi",
"namespace": "example-value"
}
}
BigData.PaaS.Databricks
Azure Databricks is a managed Apache Spark platform for big data analytics and machine learning.
| Parameter | Description | Example / possible values | Required |
|---|---|---|---|
pricingTier | string parameter | premium | No |
managedResourceGroupName | string parameter | (empty string) | No |
enableNoPublicIp | boolean parameter | False | No |
Example (fully parameterized):
{
"type": "BigData.PaaS.Databricks",
"parameters": {
"pricingTier": "premium",
"managedResourceGroupName": "",
"enableNoPublicIp": false
}
}
BigData.PaaS.DatabricksCluster
Compute cluster in Databricks for running workloads, notebooks, and jobs.
| Parameter | Description | Example / possible values | Required |
|---|---|---|---|
clusterName | string parameter | (empty string) | No |
sparkVersion | string parameter | (empty string) | No |
nodeTypeId | string parameter | (empty string) | No |
numWorkers | integer parameter | 2 | No |
minWorkers | integer parameter | 1 | No |
maxWorkers | integer parameter | 8 | No |
sparkConf | map parameter | {} | No |
pypiLibraries | list parameter | [] | No |
mavenLibraries | list parameter | [] | No |
autoTerminationMinutes | integer parameter | 60 | No |
dataSecurityMode | string parameter | SINGLE_USER | No |
Example (fully parameterized):
{
"type": "BigData.PaaS.DatabricksCluster",
"parameters": {
"clusterName": "",
"sparkVersion": "",
"nodeTypeId": "",
"numWorkers": 2,
"minWorkers": 1,
"maxWorkers": 8,
"sparkConf": {},
"pypiLibraries": [],
"mavenLibraries": [],
"autoTerminationMinutes": 60,
"dataSecurityMode": "SINGLE_USER"
}
}
BigData.PaaS.DatabricksJob
Job in Databricks that executes notebooks, Python files, or JAR tasks on schedule or on-demand.
| Parameter | Description | Example / possible values | Required |
|---|---|---|---|
jobName | string parameter | (empty string) | No |
taskType | string parameter | (empty string) | No |
notebookPath | string parameter | (string value) | Conditional — required when taskType=NOTEBOOK |
pythonFile | string parameter | (string value) | Conditional — required when taskType=PYTHON |
mainClassName | string parameter | (string value) | Conditional — required when taskType=SPARK_JAR |
jarUri | string parameter | (empty string) | No |
parameters | list parameter | [] | No |
cronSchedule | string parameter | (empty string) | No |
maxRetries | integer parameter | 0 | No |
existingCluster | boolean parameter | False | No |
artifactType | string parameter | (empty string) | No |
artifactUri | string parameter | (empty string) | No |
packageName | string parameter | (empty string) | No |
entryPoint | string parameter | (string value) | Conditional — required for a python_wheel task |
entryPointArgs | list parameter | [] | No |
Example (fully parameterized):
{
"type": "BigData.PaaS.DatabricksJob",
"parameters": {
"jobName": "",
"taskType": "",
"notebookPath": "example-value",
"pythonFile": "example-value",
"mainClassName": "example-value",
"jarUri": "",
"parameters": [],
"cronSchedule": "",
"maxRetries": 0,
"existingCluster": false,
"artifactType": "",
"artifactUri": "",
"packageName": "",
"entryPoint": "example-value",
"entryPointArgs": []
}
}
BigData.PaaS.DatabricksMlflowExperiment
MLflow experiment in Databricks for tracking and managing machine learning experiments.
| Parameter | Description | Example / possible values | Required |
|---|---|---|---|
experimentName | string parameter | (string value) | Yes |
artifactLocation | string parameter | (empty string) | No |
Example (fully parameterized):
{
"type": "BigData.PaaS.DatabricksMlflowExperiment",
"parameters": {
"experimentName": "example-value",
"artifactLocation": ""
}
}
BigData.PaaS.StorageAccount
Azure Storage Account for storing blobs, files, queues, and tables.
| Parameter | Description | Example / possible values | Required |
|---|---|---|---|
kind | string parameter | StorageV2 | No |
azureRegion | string parameter | westeurope | No |
sku | string parameter | Standard_LRS | No |
extendedLocation | map parameter | {} (object) | No |
identity | map parameter | {} (object) | No |
accessTier | string parameter | Hot | No |
allowBlobPublicAccess | boolean parameter | False | No |
allowCrossTenantReplication | boolean parameter | False | No |
allowSharedKeyAccess | boolean parameter | True | No |
allowedCopyScope | string parameter | (string value) | No |
azureFilesIdentityBasedAuthentication | map parameter | {} (object) | No |
customDomain | map parameter | {} (object) | No |
defaultToOAuthAuthentication | boolean parameter | False | No |
dnsEndpointType | string parameter | Standard | No |
encryption | map parameter | {} (object) | No |
immutableStorageWithVersioning | map parameter | {} (object) | No |
isHnsEnabled | boolean parameter | true or false | No |
isLocalUserEnabled | boolean parameter | true or false | No |
isNfsV3Enabled | boolean parameter | true or false | No |
isSftpEnabled | boolean parameter | true or false | No |
keyPolicy | map parameter | {} (object) | No |
largeFileSharesState | string parameter | (string value) | No |
minimumTlsVersion | string parameter | TLS1_2 | No |
networkRuleSet | map parameter | {} (object) | No |
publicNetworkAccess | string parameter | Enabled | No |
routingPreference | map parameter | {} (object) | No |
sasPolicy | map parameter | {} (object) | No |
supportsHttpsTrafficOnly | boolean parameter | True | No |
fileService | map parameter | {} (object) | No |
backup | map parameter | {} (object) | No |
Example (fully parameterized):
{
"type": "BigData.PaaS.StorageAccount",
"parameters": {
"kind": "StorageV2",
"azureRegion": "westeurope",
"sku": "Standard_LRS",
"extendedLocation": {},
"identity": {},
"accessTier": "Hot",
"allowBlobPublicAccess": false,
"allowCrossTenantReplication": false,
"allowSharedKeyAccess": true,
"allowedCopyScope": "example-value",
"azureFilesIdentityBasedAuthentication": {},
"customDomain": {},
"defaultToOAuthAuthentication": false,
"dnsEndpointType": "Standard",
"encryption": {},
"immutableStorageWithVersioning": {},
"isHnsEnabled": true,
"isLocalUserEnabled": true,
"isNfsV3Enabled": true,
"isSftpEnabled": true,
"keyPolicy": {},
"largeFileSharesState": "example-value",
"minimumTlsVersion": "TLS1_2",
"networkRuleSet": {},
"publicNetworkAccess": "Enabled",
"routingPreference": {},
"sasPolicy": {},
"supportsHttpsTrafficOnly": true,
"fileService": {},
"backup": {}
}
}
BigData.SaaS.Unmanaged
External big data service with custom configuration supplied via secret.
| Parameter | Description | Example / possible values | Required |
|---|---|---|---|
secretName | string parameter | (empty string) | No |
secretValue | string parameter | (string value) | Yes |
Example (fully parameterized):
{
"type": "BigData.SaaS.Unmanaged",
"parameters": {
"secretName": "",
"secretValue": "example-value"
}
}
CustomWorkloads
CustomWorkloads.CaaS.KubernetesWorkload
Generic Kubernetes workload deployed from a GitOps repository.
| Parameter | Description | Example / possible values | Required |
|---|---|---|---|
sshRepositoryURI | string parameter | (string value) | Yes |
repoId | string parameter | (string value) | Yes |
branchName | string parameter | (string value) | Yes |
privateSSHKeySecretId | string parameter | (empty string) | No |
privateSSHKeyEnvironmentSecretShortName | string parameter | (empty string) | No |
privateSSHKeyPassphraseSecretId | string parameter | (empty string) | No |
privateSSHKeyPassphraseEnvironmentSecretShortName | string parameter | (empty string) | No |
ciCdProfileShortName | string parameter | (empty string) | No |
environmentSecretShortNames | list parameter | [] | No |
roles | list parameter | [] | No |
workloadSecretIdKey | string parameter | (empty string) | No |
workloadSecretPasswordKey | string parameter | (empty string) | No |
workloadIdentityEnabled | boolean parameter | True | No |
namespace | string parameter | (string value) | Yes |
Example (fully parameterized):
{
"type": "CustomWorkloads.CaaS.KubernetesWorkload",
"parameters": {
"sshRepositoryURI": "example-value",
"repoId": "example-value",
"branchName": "example-value",
"privateSSHKeySecretId": "",
"privateSSHKeyEnvironmentSecretShortName": "",
"privateSSHKeyPassphraseSecretId": "",
"privateSSHKeyPassphraseEnvironmentSecretShortName": "",
"ciCdProfileShortName": "",
"environmentSecretShortNames": [],
"roles": [],
"workloadSecretIdKey": "",
"workloadSecretPasswordKey": "",
"workloadIdentityEnabled": true,
"namespace": "example-value"
}
}
CustomWorkloads.FaaS.AzureFunction
Serverless function hosted in Azure Functions runtime.
| Parameter | Description | Example / possible values | Required |
|---|---|---|---|
configuration | map parameter | {} | No |
appSettings | map parameter | {} | No |
identity | map parameter | {} | No |
appServicePlan | map parameter | {} | No |
storageAccountConnectionString | string parameter | (empty string) | No |
sourceArtifact | string parameter | (empty string) | No |
packageType | string parameter | (empty string) | No |
Example (fully parameterized):
{
"type": "CustomWorkloads.FaaS.AzureFunction",
"parameters": {
"configuration": {},
"appSettings": {},
"identity": {},
"appServicePlan": {},
"storageAccountConnectionString": "",
"sourceArtifact": "",
"packageType": ""
}
}
CustomWorkloads.PaaS.AzureContainerApp
Container application managed by Azure Container Apps, a serverless container hosting service.
| Parameter | Description | Example / possible values | Required |
|---|---|---|---|
image | string parameter | (empty string) | No |
cpu | number parameter | 0.5 | No |
memory | string parameter | 1Gi | No |
port | integer parameter | 8080 | No |
externalIngress | boolean parameter | True | No |
minReplicas | integer parameter | 0 | No |
maxReplicas | integer parameter | 10 | No |
location | string parameter | (empty string) | No |
resourceGroup | string parameter | (empty string) | No |
Example (fully parameterized):
{
"type": "CustomWorkloads.PaaS.AzureContainerApp",
"parameters": {
"image": "",
"cpu": 0.5,
"memory": "1Gi",
"port": 8080,
"externalIngress": true,
"minReplicas": 0,
"maxReplicas": 10,
"location": "",
"resourceGroup": ""
}
}
CustomWorkloads.PaaS.AzureContainerInstance
Container instance managed by Azure Container Instances for quick, serverless deployment.
| Parameter | Description | Example / possible values | Required |
|---|---|---|---|
image | string parameter | (empty string) | No |
cpu | number parameter | 1.0 | No |
memoryInGB | number parameter | 1.5 | No |
port | integer parameter | 8080 | No |
restartPolicy | string parameter | Always | No |
publicIp | boolean parameter | False | No |
dnsNameLabel | string parameter | (empty string) | No |
location | string parameter | (empty string) | No |
resourceGroup | string parameter | (empty string) | No |
Example (fully parameterized):
{
"type": "CustomWorkloads.PaaS.AzureContainerInstance",
"parameters": {
"image": "",
"cpu": 1.0,
"memoryInGB": 1.5,
"port": 8080,
"restartPolicy": "Always",
"publicIp": false,
"dnsNameLabel": "",
"location": "",
"resourceGroup": ""
}
}
CustomWorkloads.PaaS.WebApp
Azure App Service web application for hosting web apps and APIs.
| Parameter | Description | Example / possible values | Required |
|---|---|---|---|
azureRegion | string parameter | (empty string) | No |
containerSize | integer parameter | 0 | No |
certificates | list parameter | [] | No |
customDomains | list parameter | [] | No |
appServicePlan | map parameter | {} | No |
configuration | map parameter | {} | No |
cloningInfo | map parameter | {} | No |
clientAffinityEnabled | boolean parameter | False | No |
clientCertEnabled | boolean parameter | False | No |
clientCertExclusionPaths | string parameter | (empty string) | No |
clientCertMode | string parameter | (empty string) | No |
customDomainVerificationId | string parameter | (empty string) | No |
hostingEnvironmentProfileId | string parameter | (empty string) | No |
redundancyMode | string parameter | (empty string) | No |
virtualNetworkSubnetId | string parameter | (empty string) | No |
publishingUsername | string parameter | Fractal Cloud | No |
httpsOnly | boolean parameter | True | No |
enabled | boolean parameter | False | No |
hostNamesDisabled | boolean parameter | False | No |
hyperV | boolean parameter | False | No |
reserved | boolean parameter | False | No |
scmSiteAlsoStopped | boolean parameter | False | No |
storageAccountRequired | boolean parameter | False | No |
dailyMemoryTimeQuota | integer parameter | 0 | No |
repoId | string parameter | (empty string) | No |
branchName | string parameter | (empty string) | No |
sshRepositoryURI | string parameter | (empty string) | No |
privateSSHKeySecretId | string parameter | (empty string) | No |
privateSSHKeyPassphraseSecretId | string parameter | (empty string) | No |
ciCdProfileShortName | string parameter | (empty string) | No |
roles | list parameter | [] | No |
workloadSecretIdKey | string parameter | (empty string) | No |
workloadSecretPasswordKey | string parameter | (empty string) | No |
Example (fully parameterized):
{
"type": "CustomWorkloads.PaaS.WebApp",
"parameters": {
"azureRegion": "",
"containerSize": 0,
"certificates": [],
"customDomains": [],
"appServicePlan": {},
"configuration": {},
"cloningInfo": {},
"clientAffinityEnabled": false,
"clientCertEnabled": false,
"clientCertExclusionPaths": "",
"clientCertMode": "",
"customDomainVerificationId": "",
"hostingEnvironmentProfileId": "",
"redundancyMode": "",
"virtualNetworkSubnetId": "",
"publishingUsername": "Fractal Cloud",
"httpsOnly": true,
"enabled": false,
"hostNamesDisabled": false,
"hyperV": false,
"reserved": false,
"scmSiteAlsoStopped": false,
"storageAccountRequired": false,
"dailyMemoryTimeQuota": 0,
"repoId": "",
"branchName": "",
"sshRepositoryURI": "",
"privateSSHKeySecretId": "",
"privateSSHKeyPassphraseSecretId": "",
"ciCdProfileShortName": "",
"roles": [],
"workloadSecretIdKey": "",
"workloadSecretPasswordKey": ""
}
}
CustomWorkloads.SaaS.Unmanaged
External custom workload service with custom configuration supplied via secret.
| Parameter | Description | Example / possible values | Required |
|---|---|---|---|
secretName | string parameter | (empty string) | No |
secretValue | string parameter | (string value) | Yes |
Example (fully parameterized):
{
"type": "CustomWorkloads.SaaS.Unmanaged",
"parameters": {
"secretName": "",
"secretValue": "example-value"
}
}
Messaging
Messaging.CaaS.Kafka
Apache Kafka cluster deployed on Kubernetes for event streaming.
| Parameter | Description | Example / possible values | Required |
|---|---|---|---|
replicas | integer parameter | 5 | No |
kafkaVersion | string parameter | 4.2.0 | No |
memoryRequest | string parameter | 16Gi | No |
memoryLimit | string parameter | 32Gi | No |
cpuRequest | string parameter | 4 | No |
cpuLimit | string parameter | 8 | No |
storageSize | string parameter | 1Ti | No |
namespace | string parameter | (string value) | Yes |
Example (fully parameterized):
{
"type": "Messaging.CaaS.Kafka",
"parameters": {
"replicas": 5,
"kafkaVersion": "4.2.0",
"memoryRequest": "16Gi",
"memoryLimit": "32Gi",
"cpuRequest": "4",
"cpuLimit": "8",
"storageSize": "1Ti",
"namespace": "example-value"
}
}
Messaging.CaaS.KafkaTopic
Topic in a Kafka cluster for publishing and consuming messages.
| Parameter | Description | Example / possible values | Required |
|---|---|---|---|
partitions | integer parameter | 50 | No |
replicas | integer parameter | 2 | No |
retentionMs | integer parameter | 172800000 | No |
clusterName | string parameter | (string value) | Yes |
namespace | string parameter | (string value) | Yes |
Example (fully parameterized):
{
"type": "Messaging.CaaS.KafkaTopic",
"parameters": {
"partitions": 50,
"replicas": 2,
"retentionMs": 172800000,
"clusterName": "example-value",
"namespace": "example-value"
}
}
Messaging.CaaS.KafkaUser
Kafka user with ACLs for secure access to Kafka cluster topics.
| Parameter | Description | Example / possible values | Required |
|---|---|---|---|
acls | list parameter | [] | No |
clusterName | string parameter | (string value) | Yes |
namespace | string parameter | (string value) | Yes |
Example (fully parameterized):
{
"type": "Messaging.CaaS.KafkaUser",
"parameters": {
"acls": [],
"clusterName": "example-value",
"namespace": "example-value"
}
}
Messaging.PaaS.EventHubInstance
Event hub instance in Azure Event Hubs for capturing event streams.
| Parameter | Description | Example / possible values | Required |
|---|---|---|---|
partitionCount | integer parameter | 1 | No |
messageRetentionInDays | integer parameter | 1 | No |
userMetadata | string parameter | (empty string) | No |
retention | map parameter | {"cleanupPolicy": "Compact", "tombstoneTimeInHours": 12, "timeInHours": 12} | No |
Example (fully parameterized):
{
"type": "Messaging.PaaS.EventHubInstance",
"parameters": {
"partitionCount": 1,
"messageRetentionInDays": 1,
"userMetadata": "",
"retention": {
"cleanupPolicy": "Compact",
"tombstoneTimeInHours": 12,
"timeInHours": 12
}
}
}
Messaging.PaaS.EventHubNamespace
Namespace in Azure Event Hubs containing event hubs and related infrastructure.
| Parameter | Description | Example / possible values | Required |
|---|---|---|---|
kafkaEnabled | boolean parameter | True | No |
alternateName | string parameter | (empty string) | No |
diableLocalAuth | boolean parameter | False | No |
autoInflateEnabled | boolean parameter | True | No |
maximumThroughputUnits | integer parameter | 20 | No |
minimumTlsVersion | string parameter | 1.2 | No |
publicNetworkAccess | string parameter | Disabled | No |
sku | map parameter | {"tier": "Standard", "name": "Standard", "capacity": 1} | No |
zoneRedundant | boolean parameter | False | No |
Example (fully parameterized):
{
"type": "Messaging.PaaS.EventHubNamespace",
"parameters": {
"kafkaEnabled": true,
"alternateName": "",
"diableLocalAuth": false,
"autoInflateEnabled": true,
"maximumThroughputUnits": 20,
"minimumTlsVersion": "1.2",
"publicNetworkAccess": "Disabled",
"sku": {
"tier": "Standard",
"name": "Standard",
"capacity": 1
},
"zoneRedundant": false
}
}
Messaging.PaaS.Relay
Azure Relay service for secure communication across network boundaries.
No configurable parameters.
Example (fully parameterized):
{
"type": "Messaging.PaaS.Relay",
"parameters": {}
}
Messaging.PaaS.ServiceBus
Azure Service Bus namespace for messaging, queues, topics, and subscriptions.
| Parameter | Description | Example / possible values | Required |
|---|---|---|---|
sku | map parameter | {} | No |
skuTier | string parameter | (empty string) | No |
identity | string parameter | SystemAssigned | No |
encryption | map parameter | {} | No |
disableLocalAuth | boolean parameter | False | No |
zoneRedundant | boolean parameter | False | No |
Example (fully parameterized):
{
"type": "Messaging.PaaS.ServiceBus",
"parameters": {
"sku": {},
"skuTier": "",
"identity": "SystemAssigned",
"encryption": {},
"disableLocalAuth": false,
"zoneRedundant": false
}
}
Messaging.PaaS.ServiceBusQueue
Message queue in Azure Service Bus for reliable message delivery.
| Parameter | Description | Example / possible values | Required |
|---|---|---|---|
autoDeleteOnIdle | string parameter | PT5M | No |
deadLetteringOnMessageExpiration | boolean parameter | False | No |
defaultMessageTimeToLive | string parameter | PT5M | No |
duplicateDetectionHistoryTimeWindow | string parameter | PT5M | No |
enableExpress | boolean parameter | False | No |
enableBatchedOperations | boolean parameter | False | No |
enablePartitioning | boolean parameter | False | No |
forwardTo | string parameter | (empty string) | No |
forwardDeadLetteredMessagesTo | string parameter | (empty string) | No |
lockDuration | string parameter | PT5M | No |
maxDeliveryCount | integer parameter | 1 | No |
maxSizeInMegabytes | integer parameter | 1024 | No |
maxMessageSizeInKilobytes | integer parameter | 256 | No |
requiresSession | boolean parameter | False | No |
requiresDuplicateDetection | boolean parameter | False | No |
status | string parameter | Unknown | No |
Example (fully parameterized):
{
"type": "Messaging.PaaS.ServiceBusQueue",
"parameters": {
"autoDeleteOnIdle": "PT5M",
"deadLetteringOnMessageExpiration": false,
"defaultMessageTimeToLive": "PT5M",
"duplicateDetectionHistoryTimeWindow": "PT5M",
"enableExpress": false,
"enableBatchedOperations": false,
"enablePartitioning": false,
"forwardTo": "",
"forwardDeadLetteredMessagesTo": "",
"lockDuration": "PT5M",
"maxDeliveryCount": 1,
"maxSizeInMegabytes": 1024,
"maxMessageSizeInKilobytes": 256,
"requiresSession": false,
"requiresDuplicateDetection": false,
"status": "Unknown"
}
}
Messaging.PaaS.ServiceBusTopic
Topic in Azure Service Bus for pub/sub messaging patterns.
| Parameter | Description | Example / possible values | Required |
|---|---|---|---|
autoDeleteOnIdle | string parameter | PT5M | No |
defaultMessageTimeToLive | string parameter | PT5M | No |
duplicateDetectionHistoryTimeWindow | string parameter | PT5M | No |
enableExpress | boolean parameter | False | No |
enableBatchedOperations | boolean parameter | False | No |
enablePartitioning | boolean parameter | False | No |
maxSizeInMegabytes | integer parameter | 1024 | No |
maxMessageSizeInKilobytes | integer parameter | 256 | No |
requiresDuplicateDetection | boolean parameter | False | No |
status | string parameter | Unknown | No |
supportOrdering | boolean parameter | False | No |
Example (fully parameterized):
{
"type": "Messaging.PaaS.ServiceBusTopic",
"parameters": {
"autoDeleteOnIdle": "PT5M",
"defaultMessageTimeToLive": "PT5M",
"duplicateDetectionHistoryTimeWindow": "PT5M",
"enableExpress": false,
"enableBatchedOperations": false,
"enablePartitioning": false,
"maxSizeInMegabytes": 1024,
"maxMessageSizeInKilobytes": 256,
"requiresDuplicateDetection": false,
"status": "Unknown",
"supportOrdering": false
}
}
Messaging.SaaS.Unmanaged
External messaging service with custom configuration supplied via secret.
| Parameter | Description | Example / possible values | Required |
|---|---|---|---|
secretName | string parameter | (empty string) | No |
secretValue | string parameter | (string value) | Yes |
Example (fully parameterized):
{
"type": "Messaging.SaaS.Unmanaged",
"parameters": {
"secretName": "",
"secretValue": "example-value"
}
}
NetworkAndCompute
NetworkAndCompute.IaaS.AzureLoadBalancer
Azure Load Balancer distributes incoming traffic across backend resources.
| Parameter | Description | Example / possible values | Required |
|---|---|---|---|
lbType | string parameter | Standard | No |
lbScheme | string parameter | internal | No |
Example (fully parameterized):
{
"type": "NetworkAndCompute.IaaS.AzureLoadBalancer",
"parameters": {
"lbType": "Standard",
"lbScheme": "internal"
}
}
NetworkAndCompute.IaaS.AzureNetworkSecurityGroup
Network Security Group controls inbound and outbound traffic with security rules.
| Parameter | Description | Example / possible values | Required |
|---|---|---|---|
description | string parameter | (empty string) | No |
ingressRules | list parameter | [] | No |
Example (fully parameterized):
{
"type": "NetworkAndCompute.IaaS.AzureNetworkSecurityGroup",
"parameters": {
"description": "",
"ingressRules": []
}
}
NetworkAndCompute.IaaS.AzureSecurityGroup
Network security group for controlling traffic flow to and from resources.
| Parameter | Description | Example / possible values | Required |
|---|---|---|---|
description | string parameter | (empty string) | No |
ingressRules | list parameter | [] | No |
Example (fully parameterized):
{
"type": "NetworkAndCompute.IaaS.AzureSecurityGroup",
"parameters": {
"description": "",
"ingressRules": []
}
}
NetworkAndCompute.IaaS.AzureSubnet
Subnet within a virtual network for grouping and isolating resources.
| Parameter | Description | Example / possible values | Required |
|---|---|---|---|
cidrBlock | string parameter | (empty string) | No |
vnetName | string parameter | (empty string) | No |
Example (fully parameterized):
{
"type": "NetworkAndCompute.IaaS.AzureSubnet",
"parameters": {
"cidrBlock": "",
"vnetName": ""
}
}
NetworkAndCompute.IaaS.AzureVirtualMachine
Virtual machine in Azure for computing workloads.
| Parameter | Description | Example / possible values | Required |
|---|---|---|---|
instanceType | string parameter | Standard_B1s | No |
imageId | string parameter | Canonical:UbuntuServer:18.04-LTS:latest | No |
keyName | string parameter | (empty string) | No |
userData | string parameter | (empty string) | No |
associatePublicIp | boolean parameter | False | No |
Example (fully parameterized):
{
"type": "NetworkAndCompute.IaaS.AzureVirtualMachine",
"parameters": {
"instanceType": "Standard_B1s",
"imageId": "Canonical:UbuntuServer:18.04-LTS:latest",
"keyName": "",
"userData": "",
"associatePublicIp": false
}
}
NetworkAndCompute.IaaS.AzureVirtualNetwork
Virtual network in Azure providing isolated network environment.
| Parameter | Description | Example / possible values | Required |
|---|---|---|---|
cidrBlock | string parameter | (empty string) | No |
Example (fully parameterized):
{
"type": "NetworkAndCompute.IaaS.AzureVirtualNetwork",
"parameters": {
"cidrBlock": ""
}
}
NetworkAndCompute.IaaS.SecurityGroup
Network security group for controlling inbound and outbound traffic.
| Parameter | Description | Example / possible values | Required |
|---|---|---|---|
description | string parameter | (empty string) | No |
ingressRules | list parameter | [] | No |
Example (fully parameterized):
{
"type": "NetworkAndCompute.IaaS.SecurityGroup",
"parameters": {
"description": "",
"ingressRules": []
}
}
NetworkAndCompute.IaaS.VNet
Virtual network providing isolated networking and connectivity for Azure resources.
| Parameter | Description | Example / possible values | Required |
|---|---|---|---|
cidrBlock | string parameter | (empty string) | No |
Example (fully parameterized):
{
"type": "NetworkAndCompute.IaaS.VNet",
"parameters": {
"cidrBlock": ""
}
}
NetworkAndCompute.PaaS.AKS
Azure Kubernetes Service — managed Kubernetes cluster in Azure.
| Parameter | Description | Example / possible values | Required |
|---|---|---|---|
managedClusterSkuTier | string parameter | Free | No |
azureActiveDirectoryProfile | map parameter | {} | No |
outboundIps | list parameter | [] | No |
cidrBlock | string parameter | (empty string) | No |
vnetSubnetAddressIpRange | string parameter | (empty string) | No |
podIpRange | string parameter | (empty string) | No |
serviceIpRange | string parameter | (empty string) | No |
Example (fully parameterized):
{
"type": "NetworkAndCompute.PaaS.AKS",
"parameters": {
"managedClusterSkuTier": "Free",
"azureActiveDirectoryProfile": {},
"outboundIps": [],
"cidrBlock": "",
"vnetSubnetAddressIpRange": "",
"podIpRange": "",
"serviceIpRange": ""
}
}
NetworkAndCompute.PaaS.AzureAppService
Shared compute infrastructure for running App Service apps.
No configurable parameters.
Example (fully parameterized):
{
"type": "NetworkAndCompute.PaaS.AzureAppService",
"parameters": {}
}
NetworkAndCompute.PaaS.AzureContainerAppsEnvironment
Container Apps Environment providing container runtime and networking.
| Parameter | Description | Example / possible values | Required |
|---|---|---|---|
location | string parameter | (empty string) | No |
resourceGroup | string parameter | (empty string) | No |
logAnalyticsWorkspaceId | string parameter | (empty string) | No |
logAnalyticsSharedKey | string parameter | (empty string) | No |
Example (fully parameterized):
{
"type": "NetworkAndCompute.PaaS.AzureContainerAppsEnvironment",
"parameters": {
"location": "",
"resourceGroup": "",
"logAnalyticsWorkspaceId": "",
"logAnalyticsSharedKey": ""
}
}
NetworkAndCompute.PaaS.AzureContainerInstanceService
Service for running containers on Azure Container Instances.
No configurable parameters.
Example (fully parameterized):
{
"type": "NetworkAndCompute.PaaS.AzureContainerInstanceService",
"parameters": {}
}
NetworkAndCompute.PaaS.DnsZone
DNS zone for managing DNS records and domain resolution.
| Parameter | Description | Example / possible values | Required |
|---|---|---|---|
isPrivate | boolean parameter | True | No |
Example (fully parameterized):
{
"type": "NetworkAndCompute.PaaS.DnsZone",
"parameters": {
"isPrivate": true
}
}
NetworkAndCompute.PaaS.Kubernetes
Managed Kubernetes cluster in Azure (alias for AKS).
| Parameter | Description | Example / possible values | Required |
|---|---|---|---|
managedClusterSkuTier | string parameter | Free | No |
azureActiveDirectoryProfile | map parameter | {} | No |
outboundIps | list parameter | [] | No |
cidrBlock | string parameter | (empty string) | No |
vnetSubnetAddressIpRange | string parameter | (empty string) | No |
podIpRange | string parameter | (empty string) | No |
serviceIpRange | string parameter | (empty string) | No |
Example (fully parameterized):
{
"type": "NetworkAndCompute.PaaS.Kubernetes",
"parameters": {
"managedClusterSkuTier": "Free",
"azureActiveDirectoryProfile": {},
"outboundIps": [],
"cidrBlock": "",
"vnetSubnetAddressIpRange": "",
"podIpRange": "",
"serviceIpRange": ""
}
}
NetworkAndCompute.SaaS.Unmanaged
External network/compute service with custom configuration supplied via secret.
| Parameter | Description | Example / possible values | Required |
|---|---|---|---|
secretName | string parameter | (empty string) | No |
secretValue | string parameter | (string value) | Yes |
Example (fully parameterized):
{
"type": "NetworkAndCompute.SaaS.Unmanaged",
"parameters": {
"secretName": "",
"secretValue": "example-value"
}
}
Observability
Observability.CaaS.Elastic
Elastic Stack (Elasticsearch + Kibana) deployed on Kubernetes for logging and analytics.
| Parameter | Description | Example / possible values | Required |
|---|---|---|---|
elasticVersion | string parameter | (string value) | Yes |
elasticInstances | integer parameter | 1 (example) | Yes |
storage | string parameter | (string value) | Yes |
storageClassName | string parameter | (empty string) | No |
memory | integer parameter | 8 | No |
cpu | integer parameter | 8 | No |
isApmRequired | boolean parameter | False | No |
isKibanaRequired | boolean parameter | True | No |
secrets | map parameter | {} | No |
namespace | string parameter | (string value) | Yes |
Example (fully parameterized):
{
"type": "Observability.CaaS.Elastic",
"parameters": {
"elasticVersion": "example-value",
"elasticInstances": 1,
"storage": "example-value",
"storageClassName": "",
"memory": 8,
"cpu": 8,
"isApmRequired": false,
"isKibanaRequired": true,
"secrets": {},
"namespace": "example-value"
}
}
Observability.CaaS.Jaeger
Jaeger distributed tracing system deployed on Kubernetes.
| Parameter | Description | Example / possible values | Required |
|---|---|---|---|
storageClassName | string parameter | (empty string) | No |
storageSettings | map parameter | {} | No |
namespace | string parameter | (string value) | Yes |
Example (fully parameterized):
{
"type": "Observability.CaaS.Jaeger",
"parameters": {
"storageClassName": "",
"storageSettings": {},
"namespace": "example-value"
}
}
Observability.CaaS.Prometheus
Prometheus monitoring and alerting system deployed on Kubernetes.
| Parameter | Description | Example / possible values | Required |
|---|---|---|---|
grafanaConfigSecretId | string parameter | (empty string) | No |
namespace | string parameter | (string value) | Yes |
Example (fully parameterized):
{
"type": "Observability.CaaS.Prometheus",
"parameters": {
"grafanaConfigSecretId": "",
"namespace": "example-value"
}
}
Observability.SaaS.Elastic
External Elastic Cloud (hosted Elasticsearch) with custom URI configuration.
| Parameter | Description | Example / possible values | Required |
|---|---|---|---|
kibanaUri | string parameter | (string value) | Yes |
version | string parameter | (string value) | Yes |
operatorVersion | string parameter | (string value) | Yes |
Example (fully parameterized):
{
"type": "Observability.SaaS.Elastic",
"parameters": {
"kibanaUri": "example-value",
"version": "example-value",
"operatorVersion": "example-value"
}
}
Observability.SaaS.Jaeger
External Jaeger instance with custom frontend URI.
| Parameter | Description | Example / possible values | Required |
|---|---|---|---|
frontendUri | string parameter | (string value) | Yes |
version | string parameter | (string value) | Yes |
Example (fully parameterized):
{
"type": "Observability.SaaS.Jaeger",
"parameters": {
"frontendUri": "example-value",
"version": "example-value"
}
}
Observability.SaaS.Prometheus
External Prometheus service with API gateway and authentication.
| Parameter | Description | Example / possible values | Required |
|---|---|---|---|
apiGatewayUrl | string parameter | (string value) | Yes |
grafanaConfigSecretId | string parameter | (string value) | Yes |
Example (fully parameterized):
{
"type": "Observability.SaaS.Prometheus",
"parameters": {
"apiGatewayUrl": "example-value",
"grafanaConfigSecretId": "example-value"
}
}
Security
Security.CaaS.Ocelot
Ocelot API gateway deployed in Kubernetes for authentication and routing.
| Parameter | Description | Example / possible values | Required |
|---|---|---|---|
host | string parameter | (string value) | Yes |
corsOrigins | list parameter | [] | No |
cookieMaxAgeSec | integer parameter | 900 | No |
pathPrefix | string parameter | /* | No |
roles | list parameter | [] | No |
namespace | string parameter | (string value) | Yes |
Example (fully parameterized):
{
"type": "Security.CaaS.Ocelot",
"parameters": {
"host": "example-value",
"corsOrigins": [],
"cookieMaxAgeSec": 900,
"pathPrefix": "/*",
"roles": [],
"namespace": "example-value"
}
}
Security.SaaS.Unmanaged
External security service with custom configuration supplied via secret.
| Parameter | Description | Example / possible values | Required |
|---|---|---|---|
secretName | string parameter | (empty string) | No |
secretValue | string parameter | (string value) | Yes |
Example (fully parameterized):
{
"type": "Security.SaaS.Unmanaged",
"parameters": {
"secretName": "",
"secretValue": "example-value"
}
}
Storage
Storage.CaaS.CnpgCluster
CloudNativePG cluster — PostgreSQL deployed natively on Kubernetes.
| Parameter | Description | Example / possible values | Required |
|---|---|---|---|
instances | integer parameter | 3 | No |
postgresqlVersion | string parameter | 17.2 | No |
storageSize | string parameter | 10Gi | No |
storageClass | string parameter | (empty string) | No |
cpuRequest | string parameter | 500m | No |
cpuLimit | string parameter | 1 | No |
memoryRequest | string parameter | 512Mi | No |
memoryLimit | string parameter | 1Gi | No |
database | string parameter | app | No |
databaseOwner | string parameter | app | No |
enableSuperuserAccess | boolean parameter | False | No |
namespace | string parameter | (string value) | Yes |
Example (fully parameterized):
{
"type": "Storage.CaaS.CnpgCluster",
"parameters": {
"instances": 3,
"postgresqlVersion": "17.2",
"storageSize": "10Gi",
"storageClass": "",
"cpuRequest": "500m",
"cpuLimit": "1",
"memoryRequest": "512Mi",
"memoryLimit": "1Gi",
"database": "app",
"databaseOwner": "app",
"enableSuperuserAccess": false,
"namespace": "example-value"
}
}
Storage.CaaS.CnpgDatabase
Database in a CloudNativePG cluster.
| Parameter | Description | Example / possible values | Required |
|---|---|---|---|
databaseName | string parameter | app | No |
databaseOwner | string parameter | app | No |
encoding | string parameter | UTF8 | No |
localeCollate | string parameter | (empty string) | No |
localeCType | string parameter | (empty string) | No |
cnpgClusterName | string parameter | (string value) | Yes |
namespace | string parameter | (string value) | Yes |
Example (fully parameterized):
{
"type": "Storage.CaaS.CnpgDatabase",
"parameters": {
"databaseName": "app",
"databaseOwner": "app",
"encoding": "UTF8",
"localeCollate": "",
"localeCType": "",
"cnpgClusterName": "example-value",
"namespace": "example-value"
}
}
Storage.CaaS.Elastic
Elastic Stack (Elasticsearch + Kibana) deployed on Kubernetes.
| Parameter | Description | Example / possible values | Required |
|---|---|---|---|
elasticVersion | string parameter | (string value) | Yes |
elasticInstances | integer parameter | 1 (example) | Yes |
storage | string parameter | (string value) | Yes |
storageClassName | string parameter | (empty string) | No |
memory | integer parameter | 8 | No |
cpu | integer parameter | 8 | No |
isApmRequired | boolean parameter | False | No |
isKibanaRequired | boolean parameter | True | No |
secrets | map parameter | {} | No |
namespace | string parameter | (string value) | Yes |
Example (fully parameterized):
{
"type": "Storage.CaaS.Elastic",
"parameters": {
"elasticVersion": "example-value",
"elasticInstances": 1,
"storage": "example-value",
"storageClassName": "",
"memory": 8,
"cpu": 8,
"isApmRequired": false,
"isKibanaRequired": true,
"secrets": {},
"namespace": "example-value"
}
}
Storage.CaaS.MinioTenant
MinIO S3-compatible object storage cluster deployed on Kubernetes.
| Parameter | Description | Example / possible values | Required |
|---|---|---|---|
minioVersion | string parameter | RELEASE.2025-03-12T18-04-18Z | No |
servers | integer parameter | 4 | No |
volumesPerServer | integer parameter | 4 | No |
volumeSize | string parameter | 100Gi | No |
storageClass | string parameter | (empty string) | No |
cpuRequest | string parameter | 500m | No |
cpuLimit | string parameter | 2 | No |
memoryRequest | string parameter | 1Gi | No |
memoryLimit | string parameter | 4Gi | No |
requestAutoCert | boolean parameter | True | No |
namespace | string parameter | (string value) | Yes |
Example (fully parameterized):
{
"type": "Storage.CaaS.MinioTenant",
"parameters": {
"minioVersion": "RELEASE.2025-03-12T18-04-18Z",
"servers": 4,
"volumesPerServer": 4,
"volumeSize": "100Gi",
"storageClass": "",
"cpuRequest": "500m",
"cpuLimit": "2",
"memoryRequest": "1Gi",
"memoryLimit": "4Gi",
"requestAutoCert": true,
"namespace": "example-value"
}
}
Storage.PaaS.CosmosDbAccount
Azure Cosmos DB account providing multi-model database service.
| Parameter | Description | Example / possible values | Required |
|---|---|---|---|
maxTotalThroughput | integer parameter | -1 | No |
publicNetworkAccess | string parameter | Disabled | No |
backupPolicy | map parameter | {} | No |
Example (fully parameterized):
{
"type": "Storage.PaaS.CosmosDbAccount",
"parameters": {
"maxTotalThroughput": -1,
"publicNetworkAccess": "Disabled",
"backupPolicy": {}
}
}
Storage.PaaS.CosmosDbCassandra
Cassandra API database in Azure Cosmos DB.
| Parameter | Description | Example / possible values | Required |
|---|---|---|---|
cassandraVersion | string parameter | 3.11 | No |
useCassandraAuthentication | boolean parameter | True | No |
isDeallocated | boolean parameter | False | No |
delegatedManagementSubnetId | string parameter | (empty string) | No |
isCassandraAuditLoggingEnabled | boolean parameter | True | No |
hoursBetweenBackups | integer parameter | 24 | No |
Example (fully parameterized):
{
"type": "Storage.PaaS.CosmosDbCassandra",
"parameters": {
"cassandraVersion": "3.11",
"useCassandraAuthentication": true,
"isDeallocated": false,
"delegatedManagementSubnetId": "",
"isCassandraAuditLoggingEnabled": true,
"hoursBetweenBackups": 24
}
}
Storage.PaaS.CosmosDbGremlinDatabase
Gremlin graph database in Azure Cosmos DB.
| Parameter | Description | Example / possible values | Required |
|---|---|---|---|
throughput | integer parameter | -1 | No |
maxThroughput | integer parameter | 2000 | No |
Example (fully parameterized):
{
"type": "Storage.PaaS.CosmosDbGremlinDatabase",
"parameters": {
"throughput": -1,
"maxThroughput": 2000
}
}
Storage.PaaS.CosmosDbMongoDatabase
MongoDB API database in Azure Cosmos DB.
| Parameter | Description | Example / possible values | Required |
|---|---|---|---|
throughput | integer parameter | -1 | No |
maxThroughput | integer parameter | 2000 | No |
Example (fully parameterized):
{
"type": "Storage.PaaS.CosmosDbMongoDatabase",
"parameters": {
"throughput": -1,
"maxThroughput": 2000
}
}
Storage.PaaS.CosmosDbPostgreSqlDatabase
PostgreSQL database in Azure Cosmos DB.
| Parameter | Description | Example / possible values | Required |
|---|---|---|---|
azureRegion | string parameter | (empty string) | No |
storageAutoGrow | string parameter | Enabled | No |
highAvailabilityMode | string parameter | Disabled | No |
replicationRole | string parameter | Primary | No |
version | string parameter | 18 | No |
isPrivate | boolean parameter | True | No |
firewallRules | list parameter | [] | No |
rootUser | string parameter | fractal | No |
skuName | string parameter | Standard_D4ds_v5 | No |
storageGb | integer parameter | 128 | No |
coordinatorStorageGb | integer parameter | 128 | No |
workerStorageGb | integer parameter | 128 | No |
backupRetentionDays | integer parameter | 10 | No |
coordinatorCores | integer parameter | 2 | No |
workersCores | integer parameter | 4 | No |
nodeCount | integer parameter | 0 | No |
coordinatorServerEdition | string parameter | GeneralPurpose | No |
nodeServerEdition | string parameter | MemoryOptimized | No |
subnetAddressCidr | string parameter | 10.1.1.0/27 | No |
Example (fully parameterized):
{
"type": "Storage.PaaS.CosmosDbPostgreSqlDatabase",
"parameters": {
"azureRegion": "",
"storageAutoGrow": "Enabled",
"highAvailabilityMode": "Disabled",
"replicationRole": "Primary",
"version": "18",
"isPrivate": true,
"firewallRules": [],
"rootUser": "fractal",
"skuName": "Standard_D4ds_v5",
"storageGb": 128,
"coordinatorStorageGb": 128,
"workerStorageGb": 128,
"backupRetentionDays": 10,
"coordinatorCores": 2,
"workersCores": 4,
"nodeCount": 0,
"coordinatorServerEdition": "GeneralPurpose",
"nodeServerEdition": "MemoryOptimized",
"subnetAddressCidr": "10.1.1.0/27"
}
}
Storage.PaaS.CosmosDbPostgresSqlCluster
PostgreSQL cluster in Azure Cosmos DB with distributed compute.
| Parameter | Description | Example / possible values | Required |
|---|---|---|---|
azureRegion | string parameter | (empty string) | No |
storageAutoGrow | string parameter | Enabled | No |
highAvailabilityMode | string parameter | Disabled | No |
replicationRole | string parameter | Primary | No |
version | string parameter | 18 | No |
isPrivate | boolean parameter | True | No |
firewallRules | list parameter | [] | No |
rootUser | string parameter | fractal | No |
skuName | string parameter | Standard_D4ds_v5 | No |
storageGb | integer parameter | 128 | No |
coordinatorStorageGb | integer parameter | 128 | No |
workerStorageGb | integer parameter | 128 | No |
backupRetentionDays | integer parameter | 10 | No |
coordinatorCores | integer parameter | 2 | No |
workersCores | integer parameter | 4 | No |
nodeCount | integer parameter | 0 | No |
coordinatorServerEdition | string parameter | GeneralPurpose | No |
nodeServerEdition | string parameter | MemoryOptimized | No |
subnetAddressCidr | string parameter | 10.1.1.0/27 | No |
Example (fully parameterized):
{
"type": "Storage.PaaS.CosmosDbPostgresSqlCluster",
"parameters": {
"azureRegion": "",
"storageAutoGrow": "Enabled",
"highAvailabilityMode": "Disabled",
"replicationRole": "Primary",
"version": "18",
"isPrivate": true,
"firewallRules": [],
"rootUser": "fractal",
"skuName": "Standard_D4ds_v5",
"storageGb": 128,
"coordinatorStorageGb": 128,
"workerStorageGb": 128,
"backupRetentionDays": 10,
"coordinatorCores": 2,
"workersCores": 4,
"nodeCount": 0,
"coordinatorServerEdition": "GeneralPurpose",
"nodeServerEdition": "MemoryOptimized",
"subnetAddressCidr": "10.1.1.0/27"
}
}
Storage.PaaS.CosmosDbSqlDatabase
SQL API database in Azure Cosmos DB.
| Parameter | Description | Example / possible values | Required |
|---|---|---|---|
throughput | integer parameter | -1 | No |
maxThroughput | integer parameter | 2000 | No |
Example (fully parameterized):
{
"type": "Storage.PaaS.CosmosDbSqlDatabase",
"parameters": {
"throughput": -1,
"maxThroughput": 2000
}
}
Storage.PaaS.CosmosDbTable
Table API database in Azure Cosmos DB.
| Parameter | Description | Example / possible values | Required |
|---|---|---|---|
throughput | integer parameter | -1 | No |
maxThroughput | integer parameter | 2000 | No |
Example (fully parameterized):
{
"type": "Storage.PaaS.CosmosDbTable",
"parameters": {
"throughput": -1,
"maxThroughput": 2000
}
}
Storage.PaaS.FileShare
File share within Azure Storage Account for SMB/NFS access.
| Parameter | Description | Example / possible values | Required |
|---|---|---|---|
accessTier | string parameter | TransactionOptimized | No |
enabledProtocols | string parameter | SMB | No |
metadata | map parameter | {} (object) | No |
rootSquash | string parameter | (empty string) | No |
shareQuota | integer parameter | 5120 | No |
signedIdentifiers | list parameter | [] (array) | No |
Example (fully parameterized):
{
"type": "Storage.PaaS.FileShare",
"parameters": {
"accessTier": "TransactionOptimized",
"enabledProtocols": "SMB",
"metadata": {},
"rootSquash": "",
"shareQuota": 5120,
"signedIdentifiers": []
}
}
Storage.PaaS.FileStorage
Premium file storage in Azure.
| Parameter | Description | Example / possible values | Required |
|---|---|---|---|
accessTier | string parameter | TransactionOptimized | No |
enabledProtocols | string parameter | SMB | No |
metadata | map parameter | {} (object) | No |
rootSquash | string parameter | (empty string) | No |
shareQuota | integer parameter | 5120 | No |
signedIdentifiers | list parameter | [] (array) | No |
Example (fully parameterized):
{
"type": "Storage.PaaS.FileStorage",
"parameters": {
"accessTier": "TransactionOptimized",
"enabledProtocols": "SMB",
"metadata": {},
"rootSquash": "",
"shareQuota": 5120,
"signedIdentifiers": []
}
}
Storage.PaaS.PostgreSqlDatabase
Database in an Azure PostgreSQL server.
| Parameter | Description | Example / possible values | Required |
|---|---|---|---|
charset | string parameter | UTF8 | No |
collation | string parameter | en_US.utf8 | No |
Example (fully parameterized):
{
"type": "Storage.PaaS.PostgreSqlDatabase",
"parameters": {
"charset": "UTF8",
"collation": "en_US.utf8"
}
}
Storage.PaaS.PostgreSqlDbms
Azure Database for PostgreSQL server.
| Parameter | Description | Example / possible values | Required |
|---|---|---|---|
azureRegion | string parameter | (empty string) | No |
storageAutoGrow | string parameter | Enabled | No |
highAvailabilityMode | string parameter | Disabled | No |
replicationRole | string parameter | Primary | No |
version | string parameter | 18 | No |
isPrivate | boolean parameter | True | No |
firewallRules | list parameter | [] | No |
rootUser | string parameter | fractal | No |
skuName | string parameter | Standard_D4ds_v5 | No |
storageGb | integer parameter | 128 | No |
coordinatorStorageGb | integer parameter | 128 | No |
workerStorageGb | integer parameter | 128 | No |
backupRetentionDays | integer parameter | 10 | No |
coordinatorCores | integer parameter | 2 | No |
workersCores | integer parameter | 4 | No |
nodeCount | integer parameter | 0 | No |
coordinatorServerEdition | string parameter | GeneralPurpose | No |
nodeServerEdition | string parameter | MemoryOptimized | No |
subnetAddressCidr | string parameter | 10.1.1.0/27 | No |
Example (fully parameterized):
{
"type": "Storage.PaaS.PostgreSqlDbms",
"parameters": {
"azureRegion": "",
"storageAutoGrow": "Enabled",
"highAvailabilityMode": "Disabled",
"replicationRole": "Primary",
"version": "18",
"isPrivate": true,
"firewallRules": [],
"rootUser": "fractal",
"skuName": "Standard_D4ds_v5",
"storageGb": 128,
"coordinatorStorageGb": 128,
"workerStorageGb": 128,
"backupRetentionDays": 10,
"coordinatorCores": 2,
"workersCores": 4,
"nodeCount": 0,
"coordinatorServerEdition": "GeneralPurpose",
"nodeServerEdition": "MemoryOptimized",
"subnetAddressCidr": "10.1.1.0/27"
}
}
Storage.PaaS.StorageAccount
Azure Storage Account for blobs, files, queues, and tables.
| Parameter | Description | Example / possible values | Required |
|---|---|---|---|
kind | string parameter | StorageV2 | No |
azureRegion | string parameter | westeurope | No |
sku | string parameter | Standard_LRS | No |
extendedLocation | map parameter | {} (object) | No |
identity | map parameter | {} (object) | No |
accessTier | string parameter | Hot | No |
allowBlobPublicAccess | boolean parameter | False | No |
allowCrossTenantReplication | boolean parameter | False | No |
allowSharedKeyAccess | boolean parameter | True | No |
allowedCopyScope | string parameter | (string value) | No |
azureFilesIdentityBasedAuthentication | map parameter | {} (object) | No |
customDomain | map parameter | {} (object) | No |
defaultToOAuthAuthentication | boolean parameter | False | No |
dnsEndpointType | string parameter | Standard | No |
encryption | map parameter | {} (object) | No |
immutableStorageWithVersioning | map parameter | {} (object) | No |
isHnsEnabled | boolean parameter | true or false | No |
isLocalUserEnabled | boolean parameter | true or false | No |
isNfsV3Enabled | boolean parameter | true or false | No |
isSftpEnabled | boolean parameter | true or false | No |
keyPolicy | map parameter | {} (object) | No |
largeFileSharesState | string parameter | (string value) | No |
minimumTlsVersion | string parameter | TLS1_2 | No |
networkRuleSet | map parameter | {} (object) | No |
publicNetworkAccess | string parameter | Enabled | No |
routingPreference | map parameter | {} (object) | No |
sasPolicy | map parameter | {} (object) | No |
supportsHttpsTrafficOnly | boolean parameter | True | No |
fileService | map parameter | {} (object) | No |
backup | map parameter | {} (object) | No |
Example (fully parameterized):
{
"type": "Storage.PaaS.StorageAccount",
"parameters": {
"kind": "StorageV2",
"azureRegion": "westeurope",
"sku": "Standard_LRS",
"extendedLocation": {},
"identity": {},
"accessTier": "Hot",
"allowBlobPublicAccess": false,
"allowCrossTenantReplication": false,
"allowSharedKeyAccess": true,
"allowedCopyScope": "example-value",
"azureFilesIdentityBasedAuthentication": {},
"customDomain": {},
"defaultToOAuthAuthentication": false,
"dnsEndpointType": "Standard",
"encryption": {},
"immutableStorageWithVersioning": {},
"isHnsEnabled": true,
"isLocalUserEnabled": true,
"isNfsV3Enabled": true,
"isSftpEnabled": true,
"keyPolicy": {},
"largeFileSharesState": "example-value",
"minimumTlsVersion": "TLS1_2",
"networkRuleSet": {},
"publicNetworkAccess": "Enabled",
"routingPreference": {},
"sasPolicy": {},
"supportsHttpsTrafficOnly": true,
"fileService": {},
"backup": {}
}
}
Storage.PaaS.StorageBlobContainer
Blob container within Azure Storage Account.
| Parameter | Description | Example / possible values | Required |
|---|---|---|---|
defaultEncryptionScope | string parameter | $account-encryption-key | No |
denyEncryptionScopeOverride | boolean parameter | False | No |
enableNfsV3AllSquash | boolean parameter | true or false | No |
enableNfsV3RootSquash | boolean parameter | true or false | No |
immutableStorageWithVersioning | map parameter | {} (object) | No |
metadata | map parameter | {} (object) | No |
publicAccess | string parameter | None | No |
Example (fully parameterized):
{
"type": "Storage.PaaS.StorageBlobContainer",
"parameters": {
"defaultEncryptionScope": "$account-encryption-key",
"denyEncryptionScopeOverride": false,
"enableNfsV3AllSquash": true,
"enableNfsV3RootSquash": true,
"immutableStorageWithVersioning": {},
"metadata": {},
"publicAccess": "None"
}
}
Storage.SaaS.Unmanaged
External storage service with custom configuration supplied via secret.
| Parameter | Description | Example / possible values | Required |
|---|---|---|---|
secretName | string parameter | (empty string) | No |
secretValue | string parameter | (string value) | Yes |
Example (fully parameterized):
{
"type": "Storage.SaaS.Unmanaged",
"parameters": {
"secretName": "",
"secretValue": "example-value"
}
}