From 80798405857d1fafb06f4d74acf329736cbbd608 Mon Sep 17 00:00:00 2001
From: Tom Bamford <tom@bamford.io>
Date: Sat, 28 Jan 2023 17:12:56 +0200
Subject: [PATCH] azuread_application: document `description` property, add to
 data source

---
 docs/data-sources/application.md                          | 1 +
 docs/resources/application.md                             | 1 +
 internal/services/applications/application_data_source.go | 6 ++++++
 3 files changed, 8 insertions(+)

diff --git a/docs/data-sources/application.md b/docs/data-sources/application.md
index aa8fa4245b..ad81e6ed9a 100644
--- a/docs/data-sources/application.md
+++ b/docs/data-sources/application.md
@@ -44,6 +44,7 @@ The following attributes are exported:
 * `app_role_ids` - A mapping of app role values to app role IDs, intended to be useful when referencing app roles in other resources in your configuration.
 * `app_roles` - A collection of `app_role` blocks as documented below. For more information see [official documentation on Application Roles](https://docs.microsoft.com/en-us/azure/architecture/multitenant-identity/app-roles).
 * `application_id` - The Application ID (also called Client ID).
+* `description` - A description of the application, as shown to end users.
 * `device_only_auth_enabled` - Specifies whether this application supports device authentication without a user.
 * `disabled_by_microsoft` - Whether Microsoft has disabled the registered application. If the application is disabled, this will be a string indicating the status/reason, e.g. `DisabledDueToViolationOfServicesAgreement`
 * `display_name` - The display name for the application.
diff --git a/docs/resources/application.md b/docs/resources/application.md
index edbd3e3da1..0ea2c15399 100644
--- a/docs/resources/application.md
+++ b/docs/resources/application.md
@@ -164,6 +164,7 @@ The following arguments are supported:
 
 * `api` - (Optional) An `api` block as documented below, which configures API related settings for this application.
 * `app_role` - (Optional) A collection of `app_role` blocks as documented below. For more information see [official documentation on Application Roles](https://docs.microsoft.com/en-us/azure/architecture/multitenant-identity/app-roles).
+* `description` - (Optional) A description of the application, as shown to end users.
 * `device_only_auth_enabled` - (Optional) Specifies whether this application supports device authentication without a user. Defaults to `false`.
 * `display_name` - (Required) The display name for the application.
 * `fallback_public_client_enabled` - (Optional) Specifies whether the application is a public client. Appropriate for apps using token grant flows that don't use a redirect URI. Defaults to `false`.
diff --git a/internal/services/applications/application_data_source.go b/internal/services/applications/application_data_source.go
index ba597ff781..a7d545bfa4 100644
--- a/internal/services/applications/application_data_source.go
+++ b/internal/services/applications/application_data_source.go
@@ -203,6 +203,12 @@ func applicationDataSource() *schema.Resource {
 				},
 			},
 
+			"description": {
+				Description: "Description of the application as shown to end users",
+				Type:        schema.TypeString,
+				Computed:    true,
+			},
+
 			"device_only_auth_enabled": {
 				Description: "Specifies whether this application supports device authentication without a user.",
 				Type:        schema.TypeBool,