@pulumi/auth0 2.6.0 → 2.7.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/action.d.ts +49 -21
- package/action.js +23 -4
- package/action.js.map +1 -1
- package/branding.d.ts +13 -4
- package/branding.js +4 -1
- package/branding.js.map +1 -1
- package/client.d.ts +30 -0
- package/client.js +11 -0
- package/client.js.map +1 -1
- package/clientGrant.d.ts +10 -8
- package/clientGrant.js +10 -8
- package/clientGrant.js.map +1 -1
- package/config/vars.d.ts +1 -0
- package/config/vars.js +6 -0
- package/config/vars.js.map +1 -1
- package/connection.d.ts +16 -5
- package/connection.js +13 -2
- package/connection.js.map +1 -1
- package/customDomain.d.ts +18 -7
- package/customDomain.js +10 -2
- package/customDomain.js.map +1 -1
- package/customDomainVerification.d.ts +13 -0
- package/customDomainVerification.js +13 -0
- package/customDomainVerification.js.map +1 -1
- package/email.d.ts +11 -1
- package/email.js +11 -1
- package/email.js.map +1 -1
- package/emailTemplate.d.ts +14 -4
- package/emailTemplate.js +11 -1
- package/emailTemplate.js.map +1 -1
- package/getClient.d.ts +95 -0
- package/getClient.js +41 -0
- package/getClient.js.map +1 -0
- package/getGlobalClient.d.ts +99 -0
- package/getGlobalClient.js +36 -0
- package/getGlobalClient.js.map +1 -0
- package/globalClient.d.ts +40 -0
- package/globalClient.js +33 -0
- package/globalClient.js.map +1 -1
- package/guardian.d.ts +23 -8
- package/guardian.js +13 -2
- package/guardian.js.map +1 -1
- package/hook.d.ts +31 -19
- package/hook.js +10 -1
- package/hook.js.map +1 -1
- package/index.d.ts +2 -0
- package/index.js +2 -0
- package/index.js.map +1 -1
- package/logStream.d.ts +1 -1
- package/logStream.js +1 -1
- package/organization.d.ts +8 -0
- package/organization.js +8 -0
- package/organization.js.map +1 -1
- package/package.json +2 -2
- package/package.json.dev +2 -2
- package/prompt.d.ts +14 -3
- package/prompt.js +8 -0
- package/prompt.js.map +1 -1
- package/promptCustomText.d.ts +1 -1
- package/promptCustomText.js +1 -1
- package/provider.d.ts +6 -4
- package/provider.js +1 -6
- package/provider.js.map +1 -1
- package/resourceServer.d.ts +17 -9
- package/resourceServer.js +8 -0
- package/resourceServer.js.map +1 -1
- package/role.d.ts +29 -16
- package/role.js +23 -13
- package/role.js.map +1 -1
- package/rule.d.ts +11 -1
- package/rule.js +11 -1
- package/rule.js.map +1 -1
- package/ruleConfig.d.ts +11 -1
- package/ruleConfig.js +11 -1
- package/ruleConfig.js.map +1 -1
- package/tenant.d.ts +24 -13
- package/tenant.js +24 -13
- package/tenant.js.map +1 -1
- package/types/input.d.ts +12 -16
- package/types/output.d.ts +314 -16
- package/user.d.ts +22 -13
- package/user.js +10 -1
- package/user.js.map +1 -1
package/tenant.js
CHANGED
|
@@ -6,44 +6,55 @@ exports.Tenant = void 0;
|
|
|
6
6
|
const pulumi = require("@pulumi/pulumi");
|
|
7
7
|
const utilities = require("./utilities");
|
|
8
8
|
/**
|
|
9
|
-
* With this resource, you can manage Auth0 tenants, including setting logos and support contact information, setting error
|
|
9
|
+
* With this resource, you can manage Auth0 tenants, including setting logos and support contact information, setting error
|
|
10
|
+
* pages, and configuring default tenant behaviors.
|
|
10
11
|
*
|
|
11
|
-
* > Auth0 does not currently support creating tenants through the Management API. Therefore this resource can only
|
|
12
|
+
* > Auth0 does not currently support creating tenants through the Management API. Therefore, this resource can only
|
|
13
|
+
* manage an existing tenant created through the Auth0 dashboard.
|
|
12
14
|
*
|
|
13
|
-
* Auth0 does not currently support adding/removing extensions on tenants through their API. The Auth0 dashboard must be
|
|
15
|
+
* Auth0 does not currently support adding/removing extensions on tenants through their API. The Auth0 dashboard must be
|
|
16
|
+
* used to add/remove extensions.
|
|
14
17
|
*
|
|
15
18
|
* ## Example Usage
|
|
16
19
|
*
|
|
17
20
|
* ```typescript
|
|
18
21
|
* import * as pulumi from "@pulumi/pulumi";
|
|
19
22
|
* import * as auth0 from "@pulumi/auth0";
|
|
20
|
-
* import *
|
|
23
|
+
* import * from "fs";
|
|
21
24
|
*
|
|
22
25
|
* const tenant = new auth0.Tenant("tenant", {
|
|
23
|
-
* allowedLogoutUrls: ["http://mysite/logout"],
|
|
24
26
|
* changePassword: {
|
|
25
27
|
* enabled: true,
|
|
26
|
-
* html: fs.readFileSync("./password_reset.html"
|
|
28
|
+
* html: fs.readFileSync("./password_reset.html"),
|
|
29
|
+
* },
|
|
30
|
+
* guardianMfaPage: {
|
|
31
|
+
* enabled: true,
|
|
32
|
+
* html: fs.readFileSync("./guardian_multifactor.html"),
|
|
27
33
|
* },
|
|
28
34
|
* defaultAudience: "<client_id>",
|
|
29
35
|
* defaultDirectory: "Connection-Name",
|
|
30
36
|
* errorPage: {
|
|
31
|
-
* html: fs.readFileSync("./error.html"
|
|
37
|
+
* html: fs.readFileSync("./error.html"),
|
|
32
38
|
* showLogLink: true,
|
|
33
39
|
* url: "http://mysite/errors",
|
|
34
40
|
* },
|
|
35
41
|
* friendlyName: "Tenant Name",
|
|
36
|
-
* guardianMfaPage: {
|
|
37
|
-
* enabled: true,
|
|
38
|
-
* html: fs.readFileSync("./guardian_multifactor.html", "utf-8"),
|
|
39
|
-
* },
|
|
40
42
|
* pictureUrl: "http://mysite/logo.png",
|
|
41
|
-
* sandboxVersion: "8",
|
|
42
|
-
* sessionLifetime: 46000,
|
|
43
43
|
* supportEmail: "support@mysite",
|
|
44
44
|
* supportUrl: "http://mysite/support",
|
|
45
|
+
* allowedLogoutUrls: ["http://mysite/logout"],
|
|
46
|
+
* sessionLifetime: 46000,
|
|
47
|
+
* sandboxVersion: "8",
|
|
45
48
|
* });
|
|
46
49
|
* ```
|
|
50
|
+
*
|
|
51
|
+
* ## Import
|
|
52
|
+
*
|
|
53
|
+
* As this is not a resource identifiable by an ID within the Auth0 Management API, tenant can be imported using a random string. We recommend [Version 4 UUID](https://www.uuidgenerator.net/version4) e.g.
|
|
54
|
+
*
|
|
55
|
+
* ```sh
|
|
56
|
+
* $ pulumi import auth0:index/tenant:Tenant tenant 82f4f21b-017a-319d-92e7-2291c1ca36c4
|
|
57
|
+
* ```
|
|
47
58
|
*/
|
|
48
59
|
class Tenant extends pulumi.CustomResource {
|
|
49
60
|
constructor(name, argsOrState, opts) {
|
package/tenant.js.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"tenant.js","sourceRoot":"","sources":["../tenant.ts"],"names":[],"mappings":";AAAA,wFAAwF;AACxF,iFAAiF;;;AAEjF,yCAAyC;AAEzC,yCAAyC;AAEzC
|
|
1
|
+
{"version":3,"file":"tenant.js","sourceRoot":"","sources":["../tenant.ts"],"names":[],"mappings":";AAAA,wFAAwF;AACxF,iFAAiF;;;AAEjF,yCAAyC;AAEzC,yCAAyC;AAEzC;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAkDG;AACH,MAAa,MAAO,SAAQ,MAAM,CAAC,cAAc;IAyG7C,YAAY,IAAY,EAAE,WAAsC,EAAE,IAAmC;QACjG,IAAI,cAAc,GAAkB,EAAE,CAAC;QACvC,IAAI,GAAG,IAAI,IAAI,EAAE,CAAC;QAClB,IAAI,IAAI,CAAC,EAAE,EAAE;YACT,MAAM,KAAK,GAAG,WAAsC,CAAC;YACrD,cAAc,CAAC,mBAAmB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,iBAAiB,CAAC,CAAC,CAAC,SAAS,CAAC;YAClF,cAAc,CAAC,gBAAgB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,cAAc,CAAC,CAAC,CAAC,SAAS,CAAC;YAC5E,cAAc,CAAC,iBAAiB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,eAAe,CAAC,CAAC,CAAC,SAAS,CAAC;YAC9E,cAAc,CAAC,kBAAkB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,gBAAgB,CAAC,CAAC,CAAC,SAAS,CAAC;YAChF,cAAc,CAAC,uBAAuB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,qBAAqB,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1F,cAAc,CAAC,gBAAgB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,cAAc,CAAC,CAAC,CAAC,SAAS,CAAC;YAC5E,cAAc,CAAC,WAAW,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC;YAClE,cAAc,CAAC,OAAO,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1D,cAAc,CAAC,cAAc,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,YAAY,CAAC,CAAC,CAAC,SAAS,CAAC;YACxE,cAAc,CAAC,iBAAiB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,eAAe,CAAC,CAAC,CAAC,SAAS,CAAC;YAC9E,cAAc,CAAC,qBAAqB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,mBAAmB,CAAC,CAAC,CAAC,SAAS,CAAC;YACtF,cAAc,CAAC,YAAY,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,UAAU,CAAC,CAAC,CAAC,SAAS,CAAC;YACpE,cAAc,CAAC,gBAAgB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,cAAc,CAAC,CAAC,CAAC,SAAS,CAAC;YAC5E,cAAc,CAAC,iBAAiB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,eAAe,CAAC,CAAC,CAAC,SAAS,CAAC;YAC9E,cAAc,CAAC,cAAc,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,YAAY,CAAC,CAAC,CAAC,SAAS,CAAC;YACxE,cAAc,CAAC,YAAY,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,UAAU,CAAC,CAAC,CAAC,SAAS,CAAC;YACpE,cAAc,CAAC,gBAAgB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,cAAc,CAAC,CAAC,CAAC,SAAS,CAAC;SAC/E;aAAM;YACH,MAAM,IAAI,GAAG,WAAqC,CAAC;YACnD,cAAc,CAAC,mBAAmB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,iBAAiB,CAAC,CAAC,CAAC,SAAS,CAAC;YAChF,cAAc,CAAC,gBAAgB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1E,cAAc,CAAC,iBAAiB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,eAAe,CAAC,CAAC,CAAC,SAAS,CAAC;YAC5E,cAAc,CAAC,kBAAkB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,gBAAgB,CAAC,CAAC,CAAC,SAAS,CAAC;YAC9E,cAAc,CAAC,uBAAuB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,qBAAqB,CAAC,CAAC,CAAC,SAAS,CAAC;YACxF,cAAc,CAAC,gBAAgB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1E,cAAc,CAAC,WAAW,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC;YAChE,cAAc,CAAC,OAAO,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC;YACxD,cAAc,CAAC,cAAc,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC,CAAC,SAAS,CAAC;YACtE,cAAc,CAAC,iBAAiB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,eAAe,CAAC,CAAC,CAAC,SAAS,CAAC;YAC5E,cAAc,CAAC,qBAAqB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,mBAAmB,CAAC,CAAC,CAAC,SAAS,CAAC;YACpF,cAAc,CAAC,YAAY,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC,CAAC,SAAS,CAAC;YAClE,cAAc,CAAC,gBAAgB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1E,cAAc,CAAC,iBAAiB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,eAAe,CAAC,CAAC,CAAC,SAAS,CAAC;YAC5E,cAAc,CAAC,cAAc,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC,CAAC,SAAS,CAAC;YACtE,cAAc,CAAC,YAAY,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC,CAAC,SAAS,CAAC;YAClE,cAAc,CAAC,gBAAgB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC,CAAC,SAAS,CAAC;SAC7E;QACD,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,CAAC,CAAC;QACnE,KAAK,CAAC,MAAM,CAAC,YAAY,EAAE,IAAI,EAAE,cAAc,EAAE,IAAI,CAAC,CAAC;IAC3D,CAAC;IApJD;;;;;;;;OAQG;IACI,MAAM,CAAC,GAAG,CAAC,IAAY,EAAE,EAA2B,EAAE,KAAmB,EAAE,IAAmC;QACjH,OAAO,IAAI,MAAM,CAAC,IAAI,EAAO,KAAK,kCAAO,IAAI,KAAE,EAAE,EAAE,EAAE,IAAG,CAAC;IAC7D,CAAC;IAKD;;;OAGG;IACI,MAAM,CAAC,UAAU,CAAC,GAAQ;QAC7B,IAAI,GAAG,KAAK,SAAS,IAAI,GAAG,KAAK,IAAI,EAAE;YACnC,OAAO,KAAK,CAAC;SAChB;QACD,OAAO,GAAG,CAAC,cAAc,CAAC,KAAK,MAAM,CAAC,YAAY,CAAC;IACvD,CAAC;;AA1BL,wBAsJC;AAxIG,gBAAgB;AACO,mBAAY,GAAG,2BAA2B,CAAC"}
|
package/types/input.d.ts
CHANGED
|
@@ -1102,7 +1102,7 @@ export interface RolePermission {
|
|
|
1102
1102
|
}
|
|
1103
1103
|
export interface TenantChangePassword {
|
|
1104
1104
|
/**
|
|
1105
|
-
* Boolean. Indicates whether
|
|
1105
|
+
* Boolean. Indicates whether to use the custom change password page.
|
|
1106
1106
|
*/
|
|
1107
1107
|
enabled: pulumi.Input<boolean>;
|
|
1108
1108
|
/**
|
|
@@ -1116,7 +1116,7 @@ export interface TenantErrorPage {
|
|
|
1116
1116
|
*/
|
|
1117
1117
|
html: pulumi.Input<string>;
|
|
1118
1118
|
/**
|
|
1119
|
-
* Boolean. Indicates whether
|
|
1119
|
+
* Boolean. Indicates whether to show the link to logs as part of the default error page.
|
|
1120
1120
|
*/
|
|
1121
1121
|
showLogLink: pulumi.Input<boolean>;
|
|
1122
1122
|
/**
|
|
@@ -1126,50 +1126,46 @@ export interface TenantErrorPage {
|
|
|
1126
1126
|
}
|
|
1127
1127
|
export interface TenantFlags {
|
|
1128
1128
|
/**
|
|
1129
|
-
* Boolean.
|
|
1130
|
-
*/
|
|
1131
|
-
changePwdFlowV1?: pulumi.Input<boolean>;
|
|
1132
|
-
/**
|
|
1133
|
-
* Boolean. Indicated whether or not classic Universal Login prompts include additional security headers to prevent clickjacking.
|
|
1129
|
+
* Boolean. Indicated whether classic Universal Login prompts include additional security headers to prevent clickjacking.
|
|
1134
1130
|
*/
|
|
1135
1131
|
disableClickjackProtectionHeaders?: pulumi.Input<boolean>;
|
|
1136
1132
|
/**
|
|
1137
|
-
* Boolean. Indicates whether
|
|
1133
|
+
* Boolean. Indicates whether the APIs section is enabled for the tenant.
|
|
1138
1134
|
*/
|
|
1139
1135
|
enableApisSection?: pulumi.Input<boolean>;
|
|
1140
1136
|
/**
|
|
1141
|
-
* Boolean. Indicates whether
|
|
1137
|
+
* Boolean. Indicates whether all current connections should be enabled when a new client is created.
|
|
1142
1138
|
*/
|
|
1143
1139
|
enableClientConnections?: pulumi.Input<boolean>;
|
|
1144
1140
|
/**
|
|
1145
|
-
* Boolean. Indicates whether
|
|
1141
|
+
* Boolean. Indicates whether the tenant allows custom domains in emails.
|
|
1146
1142
|
*/
|
|
1147
1143
|
enableCustomDomainInEmails?: pulumi.Input<boolean>;
|
|
1148
1144
|
/**
|
|
1149
|
-
* Boolean. Indicates whether
|
|
1145
|
+
* Boolean. Indicates whether the tenant allows dynamic client registration.
|
|
1150
1146
|
*/
|
|
1151
1147
|
enableDynamicClientRegistration?: pulumi.Input<boolean>;
|
|
1152
1148
|
/**
|
|
1153
|
-
* Boolean. Indicates whether
|
|
1149
|
+
* Boolean. Indicates whether to use the older v2 legacy logs search.
|
|
1154
1150
|
*/
|
|
1155
1151
|
enableLegacyLogsSearchV2?: pulumi.Input<boolean>;
|
|
1156
1152
|
/**
|
|
1157
|
-
* Boolean. Indicates whether
|
|
1153
|
+
* Boolean. Indicates whether advanced API Authorization scenarios are enabled.
|
|
1158
1154
|
*/
|
|
1159
1155
|
enablePipeline2?: pulumi.Input<boolean>;
|
|
1160
1156
|
/**
|
|
1161
|
-
* Boolean. Indicates whether
|
|
1157
|
+
* Boolean. Indicates whether the public sign up process shows a userExists error if the user already exists.
|
|
1162
1158
|
*/
|
|
1163
1159
|
enablePublicSignupUserExistsError?: pulumi.Input<boolean>;
|
|
1164
1160
|
/**
|
|
1165
|
-
* Boolean. Indicates whether
|
|
1161
|
+
* Boolean. Indicates whether the tenant uses universal login.
|
|
1166
1162
|
*/
|
|
1167
1163
|
universalLogin?: pulumi.Input<boolean>;
|
|
1168
1164
|
useScopeDescriptionsForConsent?: pulumi.Input<boolean>;
|
|
1169
1165
|
}
|
|
1170
1166
|
export interface TenantGuardianMfaPage {
|
|
1171
1167
|
/**
|
|
1172
|
-
* Boolean. Indicates whether
|
|
1168
|
+
* Boolean. Indicates whether to use the custom Guardian page.
|
|
1173
1169
|
*/
|
|
1174
1170
|
enabled: pulumi.Input<boolean>;
|
|
1175
1171
|
/**
|
package/types/output.d.ts
CHANGED
|
@@ -787,6 +787,308 @@ export interface EmailCredentials {
|
|
|
787
787
|
*/
|
|
788
788
|
smtpUser?: string;
|
|
789
789
|
}
|
|
790
|
+
export interface GetClientAddon {
|
|
791
|
+
aws: {
|
|
792
|
+
[key: string]: any;
|
|
793
|
+
};
|
|
794
|
+
azureBlob: {
|
|
795
|
+
[key: string]: any;
|
|
796
|
+
};
|
|
797
|
+
azureSb: {
|
|
798
|
+
[key: string]: any;
|
|
799
|
+
};
|
|
800
|
+
box: {
|
|
801
|
+
[key: string]: any;
|
|
802
|
+
};
|
|
803
|
+
cloudbees: {
|
|
804
|
+
[key: string]: any;
|
|
805
|
+
};
|
|
806
|
+
concur: {
|
|
807
|
+
[key: string]: any;
|
|
808
|
+
};
|
|
809
|
+
dropbox: {
|
|
810
|
+
[key: string]: any;
|
|
811
|
+
};
|
|
812
|
+
echosign: {
|
|
813
|
+
[key: string]: any;
|
|
814
|
+
};
|
|
815
|
+
egnyte: {
|
|
816
|
+
[key: string]: any;
|
|
817
|
+
};
|
|
818
|
+
firebase: {
|
|
819
|
+
[key: string]: any;
|
|
820
|
+
};
|
|
821
|
+
layer: {
|
|
822
|
+
[key: string]: any;
|
|
823
|
+
};
|
|
824
|
+
mscrm: {
|
|
825
|
+
[key: string]: any;
|
|
826
|
+
};
|
|
827
|
+
newrelic: {
|
|
828
|
+
[key: string]: any;
|
|
829
|
+
};
|
|
830
|
+
office365: {
|
|
831
|
+
[key: string]: any;
|
|
832
|
+
};
|
|
833
|
+
rms: {
|
|
834
|
+
[key: string]: any;
|
|
835
|
+
};
|
|
836
|
+
salesforce: {
|
|
837
|
+
[key: string]: any;
|
|
838
|
+
};
|
|
839
|
+
salesforceApi: {
|
|
840
|
+
[key: string]: any;
|
|
841
|
+
};
|
|
842
|
+
salesforceSandboxApi: {
|
|
843
|
+
[key: string]: any;
|
|
844
|
+
};
|
|
845
|
+
samlps: outputs.GetClientAddonSamlp[];
|
|
846
|
+
sapApi: {
|
|
847
|
+
[key: string]: any;
|
|
848
|
+
};
|
|
849
|
+
sentry: {
|
|
850
|
+
[key: string]: any;
|
|
851
|
+
};
|
|
852
|
+
sharepoint: {
|
|
853
|
+
[key: string]: any;
|
|
854
|
+
};
|
|
855
|
+
slack: {
|
|
856
|
+
[key: string]: any;
|
|
857
|
+
};
|
|
858
|
+
springcm: {
|
|
859
|
+
[key: string]: any;
|
|
860
|
+
};
|
|
861
|
+
wams: {
|
|
862
|
+
[key: string]: any;
|
|
863
|
+
};
|
|
864
|
+
wsfed: {
|
|
865
|
+
[key: string]: any;
|
|
866
|
+
};
|
|
867
|
+
zendesk: {
|
|
868
|
+
[key: string]: any;
|
|
869
|
+
};
|
|
870
|
+
zoom: {
|
|
871
|
+
[key: string]: any;
|
|
872
|
+
};
|
|
873
|
+
}
|
|
874
|
+
export interface GetClientAddonSamlp {
|
|
875
|
+
audience: string;
|
|
876
|
+
authnContextClassRef: string;
|
|
877
|
+
binding: string;
|
|
878
|
+
createUpnClaim: boolean;
|
|
879
|
+
destination: string;
|
|
880
|
+
digestAlgorithm: string;
|
|
881
|
+
includeAttributeNameFormat: boolean;
|
|
882
|
+
lifetimeInSeconds: number;
|
|
883
|
+
logout: outputs.GetClientAddonSamlpLogout;
|
|
884
|
+
mapIdentities: boolean;
|
|
885
|
+
mapUnknownClaimsAsIs: boolean;
|
|
886
|
+
mappings: {
|
|
887
|
+
[key: string]: any;
|
|
888
|
+
};
|
|
889
|
+
nameIdentifierFormat: string;
|
|
890
|
+
nameIdentifierProbes: string[];
|
|
891
|
+
passthroughClaimsWithNoMapping: boolean;
|
|
892
|
+
recipient: string;
|
|
893
|
+
signResponse: boolean;
|
|
894
|
+
signatureAlgorithm: string;
|
|
895
|
+
signingCert: string;
|
|
896
|
+
typedAttributes: boolean;
|
|
897
|
+
}
|
|
898
|
+
export interface GetClientAddonSamlpLogout {
|
|
899
|
+
callback?: string;
|
|
900
|
+
sloEnabled?: boolean;
|
|
901
|
+
}
|
|
902
|
+
export interface GetClientJwtConfiguration {
|
|
903
|
+
alg: string;
|
|
904
|
+
lifetimeInSeconds: number;
|
|
905
|
+
scopes: {
|
|
906
|
+
[key: string]: string;
|
|
907
|
+
};
|
|
908
|
+
secretEncoded: boolean;
|
|
909
|
+
}
|
|
910
|
+
export interface GetClientMobile {
|
|
911
|
+
androids: outputs.GetClientMobileAndroid[];
|
|
912
|
+
ios: outputs.GetClientMobileIo[];
|
|
913
|
+
}
|
|
914
|
+
export interface GetClientMobileAndroid {
|
|
915
|
+
appPackageName: string;
|
|
916
|
+
sha256CertFingerprints: string[];
|
|
917
|
+
}
|
|
918
|
+
export interface GetClientMobileIo {
|
|
919
|
+
appBundleIdentifier: string;
|
|
920
|
+
teamId: string;
|
|
921
|
+
}
|
|
922
|
+
export interface GetClientNativeSocialLogin {
|
|
923
|
+
apples: outputs.GetClientNativeSocialLoginApple[];
|
|
924
|
+
facebooks: outputs.GetClientNativeSocialLoginFacebook[];
|
|
925
|
+
}
|
|
926
|
+
export interface GetClientNativeSocialLoginApple {
|
|
927
|
+
enabled: boolean;
|
|
928
|
+
}
|
|
929
|
+
export interface GetClientNativeSocialLoginFacebook {
|
|
930
|
+
enabled: boolean;
|
|
931
|
+
}
|
|
932
|
+
export interface GetClientRefreshToken {
|
|
933
|
+
expirationType: string;
|
|
934
|
+
idleTokenLifetime: number;
|
|
935
|
+
infiniteIdleTokenLifetime: boolean;
|
|
936
|
+
infiniteTokenLifetime: boolean;
|
|
937
|
+
leeway: number;
|
|
938
|
+
rotationType: string;
|
|
939
|
+
tokenLifetime: number;
|
|
940
|
+
}
|
|
941
|
+
export interface GetGlobalClientAddon {
|
|
942
|
+
aws: {
|
|
943
|
+
[key: string]: any;
|
|
944
|
+
};
|
|
945
|
+
azureBlob: {
|
|
946
|
+
[key: string]: any;
|
|
947
|
+
};
|
|
948
|
+
azureSb: {
|
|
949
|
+
[key: string]: any;
|
|
950
|
+
};
|
|
951
|
+
box: {
|
|
952
|
+
[key: string]: any;
|
|
953
|
+
};
|
|
954
|
+
cloudbees: {
|
|
955
|
+
[key: string]: any;
|
|
956
|
+
};
|
|
957
|
+
concur: {
|
|
958
|
+
[key: string]: any;
|
|
959
|
+
};
|
|
960
|
+
dropbox: {
|
|
961
|
+
[key: string]: any;
|
|
962
|
+
};
|
|
963
|
+
echosign: {
|
|
964
|
+
[key: string]: any;
|
|
965
|
+
};
|
|
966
|
+
egnyte: {
|
|
967
|
+
[key: string]: any;
|
|
968
|
+
};
|
|
969
|
+
firebase: {
|
|
970
|
+
[key: string]: any;
|
|
971
|
+
};
|
|
972
|
+
layer: {
|
|
973
|
+
[key: string]: any;
|
|
974
|
+
};
|
|
975
|
+
mscrm: {
|
|
976
|
+
[key: string]: any;
|
|
977
|
+
};
|
|
978
|
+
newrelic: {
|
|
979
|
+
[key: string]: any;
|
|
980
|
+
};
|
|
981
|
+
office365: {
|
|
982
|
+
[key: string]: any;
|
|
983
|
+
};
|
|
984
|
+
rms: {
|
|
985
|
+
[key: string]: any;
|
|
986
|
+
};
|
|
987
|
+
salesforce: {
|
|
988
|
+
[key: string]: any;
|
|
989
|
+
};
|
|
990
|
+
salesforceApi: {
|
|
991
|
+
[key: string]: any;
|
|
992
|
+
};
|
|
993
|
+
salesforceSandboxApi: {
|
|
994
|
+
[key: string]: any;
|
|
995
|
+
};
|
|
996
|
+
samlps: outputs.GetGlobalClientAddonSamlp[];
|
|
997
|
+
sapApi: {
|
|
998
|
+
[key: string]: any;
|
|
999
|
+
};
|
|
1000
|
+
sentry: {
|
|
1001
|
+
[key: string]: any;
|
|
1002
|
+
};
|
|
1003
|
+
sharepoint: {
|
|
1004
|
+
[key: string]: any;
|
|
1005
|
+
};
|
|
1006
|
+
slack: {
|
|
1007
|
+
[key: string]: any;
|
|
1008
|
+
};
|
|
1009
|
+
springcm: {
|
|
1010
|
+
[key: string]: any;
|
|
1011
|
+
};
|
|
1012
|
+
wams: {
|
|
1013
|
+
[key: string]: any;
|
|
1014
|
+
};
|
|
1015
|
+
wsfed: {
|
|
1016
|
+
[key: string]: any;
|
|
1017
|
+
};
|
|
1018
|
+
zendesk: {
|
|
1019
|
+
[key: string]: any;
|
|
1020
|
+
};
|
|
1021
|
+
zoom: {
|
|
1022
|
+
[key: string]: any;
|
|
1023
|
+
};
|
|
1024
|
+
}
|
|
1025
|
+
export interface GetGlobalClientAddonSamlp {
|
|
1026
|
+
audience: string;
|
|
1027
|
+
authnContextClassRef: string;
|
|
1028
|
+
binding: string;
|
|
1029
|
+
createUpnClaim: boolean;
|
|
1030
|
+
destination: string;
|
|
1031
|
+
digestAlgorithm: string;
|
|
1032
|
+
includeAttributeNameFormat: boolean;
|
|
1033
|
+
lifetimeInSeconds: number;
|
|
1034
|
+
logout: outputs.GetGlobalClientAddonSamlpLogout;
|
|
1035
|
+
mapIdentities: boolean;
|
|
1036
|
+
mapUnknownClaimsAsIs: boolean;
|
|
1037
|
+
mappings: {
|
|
1038
|
+
[key: string]: any;
|
|
1039
|
+
};
|
|
1040
|
+
nameIdentifierFormat: string;
|
|
1041
|
+
nameIdentifierProbes: string[];
|
|
1042
|
+
passthroughClaimsWithNoMapping: boolean;
|
|
1043
|
+
recipient: string;
|
|
1044
|
+
signResponse: boolean;
|
|
1045
|
+
signatureAlgorithm: string;
|
|
1046
|
+
signingCert: string;
|
|
1047
|
+
typedAttributes: boolean;
|
|
1048
|
+
}
|
|
1049
|
+
export interface GetGlobalClientAddonSamlpLogout {
|
|
1050
|
+
callback?: string;
|
|
1051
|
+
sloEnabled?: boolean;
|
|
1052
|
+
}
|
|
1053
|
+
export interface GetGlobalClientJwtConfiguration {
|
|
1054
|
+
alg: string;
|
|
1055
|
+
lifetimeInSeconds: number;
|
|
1056
|
+
scopes: {
|
|
1057
|
+
[key: string]: string;
|
|
1058
|
+
};
|
|
1059
|
+
secretEncoded: boolean;
|
|
1060
|
+
}
|
|
1061
|
+
export interface GetGlobalClientMobile {
|
|
1062
|
+
androids: outputs.GetGlobalClientMobileAndroid[];
|
|
1063
|
+
ios: outputs.GetGlobalClientMobileIo[];
|
|
1064
|
+
}
|
|
1065
|
+
export interface GetGlobalClientMobileAndroid {
|
|
1066
|
+
appPackageName: string;
|
|
1067
|
+
sha256CertFingerprints: string[];
|
|
1068
|
+
}
|
|
1069
|
+
export interface GetGlobalClientMobileIo {
|
|
1070
|
+
appBundleIdentifier: string;
|
|
1071
|
+
teamId: string;
|
|
1072
|
+
}
|
|
1073
|
+
export interface GetGlobalClientNativeSocialLogin {
|
|
1074
|
+
apples: outputs.GetGlobalClientNativeSocialLoginApple[];
|
|
1075
|
+
facebooks: outputs.GetGlobalClientNativeSocialLoginFacebook[];
|
|
1076
|
+
}
|
|
1077
|
+
export interface GetGlobalClientNativeSocialLoginApple {
|
|
1078
|
+
enabled: boolean;
|
|
1079
|
+
}
|
|
1080
|
+
export interface GetGlobalClientNativeSocialLoginFacebook {
|
|
1081
|
+
enabled: boolean;
|
|
1082
|
+
}
|
|
1083
|
+
export interface GetGlobalClientRefreshToken {
|
|
1084
|
+
expirationType: string;
|
|
1085
|
+
idleTokenLifetime: number;
|
|
1086
|
+
infiniteIdleTokenLifetime: boolean;
|
|
1087
|
+
infiniteTokenLifetime: boolean;
|
|
1088
|
+
leeway: number;
|
|
1089
|
+
rotationType: string;
|
|
1090
|
+
tokenLifetime: number;
|
|
1091
|
+
}
|
|
790
1092
|
export interface GlobalClientAddons {
|
|
791
1093
|
aws?: {
|
|
792
1094
|
[key: string]: any;
|
|
@@ -1101,7 +1403,7 @@ export interface RolePermission {
|
|
|
1101
1403
|
}
|
|
1102
1404
|
export interface TenantChangePassword {
|
|
1103
1405
|
/**
|
|
1104
|
-
* Boolean. Indicates whether
|
|
1406
|
+
* Boolean. Indicates whether to use the custom change password page.
|
|
1105
1407
|
*/
|
|
1106
1408
|
enabled: boolean;
|
|
1107
1409
|
/**
|
|
@@ -1115,7 +1417,7 @@ export interface TenantErrorPage {
|
|
|
1115
1417
|
*/
|
|
1116
1418
|
html: string;
|
|
1117
1419
|
/**
|
|
1118
|
-
* Boolean. Indicates whether
|
|
1420
|
+
* Boolean. Indicates whether to show the link to logs as part of the default error page.
|
|
1119
1421
|
*/
|
|
1120
1422
|
showLogLink: boolean;
|
|
1121
1423
|
/**
|
|
@@ -1125,50 +1427,46 @@ export interface TenantErrorPage {
|
|
|
1125
1427
|
}
|
|
1126
1428
|
export interface TenantFlags {
|
|
1127
1429
|
/**
|
|
1128
|
-
* Boolean.
|
|
1129
|
-
*/
|
|
1130
|
-
changePwdFlowV1: boolean;
|
|
1131
|
-
/**
|
|
1132
|
-
* Boolean. Indicated whether or not classic Universal Login prompts include additional security headers to prevent clickjacking.
|
|
1430
|
+
* Boolean. Indicated whether classic Universal Login prompts include additional security headers to prevent clickjacking.
|
|
1133
1431
|
*/
|
|
1134
1432
|
disableClickjackProtectionHeaders: boolean;
|
|
1135
1433
|
/**
|
|
1136
|
-
* Boolean. Indicates whether
|
|
1434
|
+
* Boolean. Indicates whether the APIs section is enabled for the tenant.
|
|
1137
1435
|
*/
|
|
1138
1436
|
enableApisSection: boolean;
|
|
1139
1437
|
/**
|
|
1140
|
-
* Boolean. Indicates whether
|
|
1438
|
+
* Boolean. Indicates whether all current connections should be enabled when a new client is created.
|
|
1141
1439
|
*/
|
|
1142
1440
|
enableClientConnections: boolean;
|
|
1143
1441
|
/**
|
|
1144
|
-
* Boolean. Indicates whether
|
|
1442
|
+
* Boolean. Indicates whether the tenant allows custom domains in emails.
|
|
1145
1443
|
*/
|
|
1146
1444
|
enableCustomDomainInEmails: boolean;
|
|
1147
1445
|
/**
|
|
1148
|
-
* Boolean. Indicates whether
|
|
1446
|
+
* Boolean. Indicates whether the tenant allows dynamic client registration.
|
|
1149
1447
|
*/
|
|
1150
1448
|
enableDynamicClientRegistration: boolean;
|
|
1151
1449
|
/**
|
|
1152
|
-
* Boolean. Indicates whether
|
|
1450
|
+
* Boolean. Indicates whether to use the older v2 legacy logs search.
|
|
1153
1451
|
*/
|
|
1154
1452
|
enableLegacyLogsSearchV2: boolean;
|
|
1155
1453
|
/**
|
|
1156
|
-
* Boolean. Indicates whether
|
|
1454
|
+
* Boolean. Indicates whether advanced API Authorization scenarios are enabled.
|
|
1157
1455
|
*/
|
|
1158
1456
|
enablePipeline2: boolean;
|
|
1159
1457
|
/**
|
|
1160
|
-
* Boolean. Indicates whether
|
|
1458
|
+
* Boolean. Indicates whether the public sign up process shows a userExists error if the user already exists.
|
|
1161
1459
|
*/
|
|
1162
1460
|
enablePublicSignupUserExistsError: boolean;
|
|
1163
1461
|
/**
|
|
1164
|
-
* Boolean. Indicates whether
|
|
1462
|
+
* Boolean. Indicates whether the tenant uses universal login.
|
|
1165
1463
|
*/
|
|
1166
1464
|
universalLogin: boolean;
|
|
1167
1465
|
useScopeDescriptionsForConsent: boolean;
|
|
1168
1466
|
}
|
|
1169
1467
|
export interface TenantGuardianMfaPage {
|
|
1170
1468
|
/**
|
|
1171
|
-
* Boolean. Indicates whether
|
|
1469
|
+
* Boolean. Indicates whether to use the custom Guardian page.
|
|
1172
1470
|
*/
|
|
1173
1471
|
enabled: boolean;
|
|
1174
1472
|
/**
|
package/user.d.ts
CHANGED
|
@@ -1,6 +1,7 @@
|
|
|
1
1
|
import * as pulumi from "@pulumi/pulumi";
|
|
2
2
|
/**
|
|
3
|
-
* With this resource, you can manage user identities, including resetting passwords, and creating, provisioning, blocking,
|
|
3
|
+
* With this resource, you can manage user identities, including resetting passwords, and creating, provisioning, blocking,
|
|
4
|
+
* and deleting users.
|
|
4
5
|
*
|
|
5
6
|
* ## Example Usage
|
|
6
7
|
*
|
|
@@ -22,6 +23,14 @@ import * as pulumi from "@pulumi/pulumi";
|
|
|
22
23
|
* roles: [admin.id],
|
|
23
24
|
* });
|
|
24
25
|
* ```
|
|
26
|
+
*
|
|
27
|
+
* ## Import
|
|
28
|
+
*
|
|
29
|
+
* auth0_user can be imported using the user ID, e.g.
|
|
30
|
+
*
|
|
31
|
+
* ```sh
|
|
32
|
+
* $ pulumi import auth0:index/user:User user auth0|111111111111111111111111
|
|
33
|
+
* ```
|
|
25
34
|
*/
|
|
26
35
|
export declare class User extends pulumi.CustomResource {
|
|
27
36
|
/**
|
|
@@ -53,7 +62,7 @@ export declare class User extends pulumi.CustomResource {
|
|
|
53
62
|
*/
|
|
54
63
|
readonly email: pulumi.Output<string | undefined>;
|
|
55
64
|
/**
|
|
56
|
-
* Boolean. Indicates whether
|
|
65
|
+
* Boolean. Indicates whether the email address has been verified.
|
|
57
66
|
*/
|
|
58
67
|
readonly emailVerified: pulumi.Output<boolean | undefined>;
|
|
59
68
|
readonly familyName: pulumi.Output<string | undefined>;
|
|
@@ -64,7 +73,7 @@ export declare class User extends pulumi.CustomResource {
|
|
|
64
73
|
*/
|
|
65
74
|
readonly nickname: pulumi.Output<string>;
|
|
66
75
|
/**
|
|
67
|
-
* String, Case-sensitive. Initial password for this user.
|
|
76
|
+
* String, Case-sensitive. Initial password for this user. Required for non-passwordless connections (SMS and email).
|
|
68
77
|
*/
|
|
69
78
|
readonly password: pulumi.Output<string | undefined>;
|
|
70
79
|
/**
|
|
@@ -72,7 +81,7 @@ export declare class User extends pulumi.CustomResource {
|
|
|
72
81
|
*/
|
|
73
82
|
readonly phoneNumber: pulumi.Output<string | undefined>;
|
|
74
83
|
/**
|
|
75
|
-
* Boolean. Indicates whether
|
|
84
|
+
* Boolean. Indicates whether the phone number has been verified.
|
|
76
85
|
*/
|
|
77
86
|
readonly phoneVerified: pulumi.Output<boolean | undefined>;
|
|
78
87
|
readonly picture: pulumi.Output<string>;
|
|
@@ -93,7 +102,7 @@ export declare class User extends pulumi.CustomResource {
|
|
|
93
102
|
*/
|
|
94
103
|
readonly username: pulumi.Output<string | undefined>;
|
|
95
104
|
/**
|
|
96
|
-
* Boolean. Indicates whether
|
|
105
|
+
* Boolean. Indicates whether the user will receive a verification email after creation. Overrides behavior of `emailVerified` parameter.
|
|
97
106
|
*/
|
|
98
107
|
readonly verifyEmail: pulumi.Output<boolean | undefined>;
|
|
99
108
|
/**
|
|
@@ -123,7 +132,7 @@ export interface UserState {
|
|
|
123
132
|
*/
|
|
124
133
|
email?: pulumi.Input<string>;
|
|
125
134
|
/**
|
|
126
|
-
* Boolean. Indicates whether
|
|
135
|
+
* Boolean. Indicates whether the email address has been verified.
|
|
127
136
|
*/
|
|
128
137
|
emailVerified?: pulumi.Input<boolean>;
|
|
129
138
|
familyName?: pulumi.Input<string>;
|
|
@@ -134,7 +143,7 @@ export interface UserState {
|
|
|
134
143
|
*/
|
|
135
144
|
nickname?: pulumi.Input<string>;
|
|
136
145
|
/**
|
|
137
|
-
* String, Case-sensitive. Initial password for this user.
|
|
146
|
+
* String, Case-sensitive. Initial password for this user. Required for non-passwordless connections (SMS and email).
|
|
138
147
|
*/
|
|
139
148
|
password?: pulumi.Input<string>;
|
|
140
149
|
/**
|
|
@@ -142,7 +151,7 @@ export interface UserState {
|
|
|
142
151
|
*/
|
|
143
152
|
phoneNumber?: pulumi.Input<string>;
|
|
144
153
|
/**
|
|
145
|
-
* Boolean. Indicates whether
|
|
154
|
+
* Boolean. Indicates whether the phone number has been verified.
|
|
146
155
|
*/
|
|
147
156
|
phoneVerified?: pulumi.Input<boolean>;
|
|
148
157
|
picture?: pulumi.Input<string>;
|
|
@@ -163,7 +172,7 @@ export interface UserState {
|
|
|
163
172
|
*/
|
|
164
173
|
username?: pulumi.Input<string>;
|
|
165
174
|
/**
|
|
166
|
-
* Boolean. Indicates whether
|
|
175
|
+
* Boolean. Indicates whether the user will receive a verification email after creation. Overrides behavior of `emailVerified` parameter.
|
|
167
176
|
*/
|
|
168
177
|
verifyEmail?: pulumi.Input<boolean>;
|
|
169
178
|
}
|
|
@@ -185,7 +194,7 @@ export interface UserArgs {
|
|
|
185
194
|
*/
|
|
186
195
|
email?: pulumi.Input<string>;
|
|
187
196
|
/**
|
|
188
|
-
* Boolean. Indicates whether
|
|
197
|
+
* Boolean. Indicates whether the email address has been verified.
|
|
189
198
|
*/
|
|
190
199
|
emailVerified?: pulumi.Input<boolean>;
|
|
191
200
|
familyName?: pulumi.Input<string>;
|
|
@@ -196,7 +205,7 @@ export interface UserArgs {
|
|
|
196
205
|
*/
|
|
197
206
|
nickname?: pulumi.Input<string>;
|
|
198
207
|
/**
|
|
199
|
-
* String, Case-sensitive. Initial password for this user.
|
|
208
|
+
* String, Case-sensitive. Initial password for this user. Required for non-passwordless connections (SMS and email).
|
|
200
209
|
*/
|
|
201
210
|
password?: pulumi.Input<string>;
|
|
202
211
|
/**
|
|
@@ -204,7 +213,7 @@ export interface UserArgs {
|
|
|
204
213
|
*/
|
|
205
214
|
phoneNumber?: pulumi.Input<string>;
|
|
206
215
|
/**
|
|
207
|
-
* Boolean. Indicates whether
|
|
216
|
+
* Boolean. Indicates whether the phone number has been verified.
|
|
208
217
|
*/
|
|
209
218
|
phoneVerified?: pulumi.Input<boolean>;
|
|
210
219
|
picture?: pulumi.Input<string>;
|
|
@@ -225,7 +234,7 @@ export interface UserArgs {
|
|
|
225
234
|
*/
|
|
226
235
|
username?: pulumi.Input<string>;
|
|
227
236
|
/**
|
|
228
|
-
* Boolean. Indicates whether
|
|
237
|
+
* Boolean. Indicates whether the user will receive a verification email after creation. Overrides behavior of `emailVerified` parameter.
|
|
229
238
|
*/
|
|
230
239
|
verifyEmail?: pulumi.Input<boolean>;
|
|
231
240
|
}
|