@pulumi/okta 4.9.0-alpha.1718344922 → 4.9.0-alpha.1718755579
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/adminRoleCustom.d.ts +105 -107
- package/adminRoleCustom.js +3 -5
- package/adminRoleCustom.js.map +1 -1
- package/adminRoleCustomAssignments.d.ts +12 -18
- package/adminRoleCustomAssignments.js +3 -6
- package/adminRoleCustomAssignments.js.map +1 -1
- package/adminRoleTargets.d.ts +14 -16
- package/adminRoleTargets.js +0 -2
- package/adminRoleTargets.js.map +1 -1
- package/app/accessPolicyAssignment.d.ts +23 -2
- package/app/accessPolicyAssignment.js +23 -2
- package/app/accessPolicyAssignment.js.map +1 -1
- package/app/autoLogin.d.ts +63 -97
- package/app/autoLogin.js +3 -37
- package/app/autoLogin.js.map +1 -1
- package/app/basicAuth.d.ts +30 -33
- package/app/basicAuth.js +4 -7
- package/app/basicAuth.js.map +1 -1
- package/app/bookmark.d.ts +30 -33
- package/app/bookmark.js +3 -6
- package/app/bookmark.js.map +1 -1
- package/app/getApp.d.ts +58 -25
- package/app/getApp.js +2 -2
- package/app/getApp.js.map +1 -1
- package/app/getMetadataSaml.d.ts +11 -5
- package/app/getMetadataSaml.js +2 -2
- package/app/getMetadataSaml.js.map +1 -1
- package/app/getOauth.d.ts +62 -34
- package/app/getOauth.js +2 -2
- package/app/getOauth.js.map +1 -1
- package/app/getSaml.d.ts +75 -56
- package/app/getSaml.js +2 -2
- package/app/getSaml.js.map +1 -1
- package/app/groupAssignment.d.ts +23 -9
- package/app/groupAssignment.js +17 -3
- package/app/groupAssignment.js.map +1 -1
- package/app/oauth.d.ts +135 -273
- package/app/oauth.js +6 -60
- package/app/oauth.js.map +1 -1
- package/app/oauthPostLogoutRedirectUri.d.ts +4 -6
- package/app/oauthPostLogoutRedirectUri.js +1 -3
- package/app/oauthPostLogoutRedirectUri.js.map +1 -1
- package/app/oauthRedirectUri.d.ts +4 -6
- package/app/oauthRedirectUri.js +1 -3
- package/app/oauthRedirectUri.js.map +1 -1
- package/app/oauthRoleAssignment.d.ts +4 -29
- package/app/oauthRoleAssignment.js +4 -29
- package/app/oauthRoleAssignment.js.map +1 -1
- package/app/saml.d.ts +161 -289
- package/app/saml.js +6 -152
- package/app/saml.js.map +1 -1
- package/app/securePasswordStore.d.ts +79 -80
- package/app/securePasswordStore.js +6 -7
- package/app/securePasswordStore.js.map +1 -1
- package/app/swa.d.ts +70 -71
- package/app/swa.js +4 -5
- package/app/swa.js.map +1 -1
- package/app/threeField.d.ts +74 -76
- package/app/threeField.js +5 -7
- package/app/threeField.js.map +1 -1
- package/app/user.d.ts +12 -17
- package/app/user.js +0 -2
- package/app/user.js.map +1 -1
- package/appGroupAssignments.d.ts +6 -8
- package/appGroupAssignments.js +3 -5
- package/appGroupAssignments.js.map +1 -1
- package/appOauthApiScope.d.ts +5 -7
- package/appOauthApiScope.js +2 -4
- package/appOauthApiScope.js.map +1 -1
- package/appSamlAppSettings.d.ts +6 -7
- package/appSamlAppSettings.js +3 -4
- package/appSamlAppSettings.js.map +1 -1
- package/appSharedCredentials.d.ts +61 -63
- package/appSharedCredentials.js +4 -6
- package/appSharedCredentials.js.map +1 -1
- package/appSignonPolicy.d.ts +3 -39
- package/appSignonPolicy.js +3 -39
- package/appSignonPolicy.js.map +1 -1
- package/appSignonPolicyRule.d.ts +69 -361
- package/appSignonPolicyRule.js +1 -278
- package/appSignonPolicyRule.js.map +1 -1
- package/appUserBaseSchemaProperty.d.ts +25 -29
- package/appUserBaseSchemaProperty.js +1 -5
- package/appUserBaseSchemaProperty.js.map +1 -1
- package/appUserSchemaProperty.d.ts +51 -41
- package/appUserSchemaProperty.js +0 -2
- package/appUserSchemaProperty.js.map +1 -1
- package/auth/getServer.d.ts +11 -11
- package/auth/getServer.js +2 -2
- package/auth/getServerPolicy.d.ts +15 -9
- package/auth/getServerPolicy.js +2 -2
- package/auth/getServerPolicy.js.map +1 -1
- package/auth/getServerScopes.d.ts +8 -5
- package/auth/getServerScopes.js +2 -2
- package/auth/getServerScopes.js.map +1 -1
- package/auth/server.d.ts +15 -19
- package/auth/server.js +1 -5
- package/auth/server.js.map +1 -1
- package/auth/serverClaim.d.ts +13 -17
- package/auth/serverClaim.js +1 -5
- package/auth/serverClaim.js.map +1 -1
- package/auth/serverPolicy.d.ts +10 -14
- package/auth/serverPolicy.js +1 -5
- package/auth/serverPolicy.js.map +1 -1
- package/auth/serverPolicyClaim.d.ts +50 -66
- package/auth/serverPolicyClaim.js +0 -25
- package/auth/serverPolicyClaim.js.map +1 -1
- package/auth/serverPolicyRule.d.ts +32 -43
- package/auth/serverPolicyRule.js +0 -2
- package/auth/serverPolicyRule.js.map +1 -1
- package/auth/serverScope.d.ts +16 -20
- package/auth/serverScope.js +1 -5
- package/auth/serverScope.js.map +1 -1
- package/authServerClaimDefault.d.ts +10 -25
- package/authServerClaimDefault.js +0 -9
- package/authServerClaimDefault.js.map +1 -1
- package/authServerDefault.d.ts +15 -19
- package/authServerDefault.js +1 -5
- package/authServerDefault.js.map +1 -1
- package/authenticator.d.ts +53 -61
- package/authenticator.js +11 -11
- package/authenticator.js.map +1 -1
- package/behaviour.d.ts +21 -41
- package/behaviour.js +0 -2
- package/behaviour.js.map +1 -1
- package/brand.d.ts +23 -22
- package/brand.js +8 -4
- package/brand.js.map +1 -1
- package/captcha.d.ts +15 -17
- package/captcha.js +3 -5
- package/captcha.js.map +1 -1
- package/captchaOrgWideSettings.d.ts +8 -43
- package/captchaOrgWideSettings.js +2 -37
- package/captchaOrgWideSettings.js.map +1 -1
- package/domain.d.ts +13 -21
- package/domain.js +0 -2
- package/domain.js.map +1 -1
- package/domainCertificate.d.ts +17 -24
- package/domainCertificate.js +2 -9
- package/domainCertificate.js.map +1 -1
- package/domainVerification.d.ts +4 -10
- package/domainVerification.js +1 -7
- package/domainVerification.js.map +1 -1
- package/emailCustomization.d.ts +38 -222
- package/emailCustomization.js +29 -33
- package/emailCustomization.js.map +1 -1
- package/emailDomain.d.ts +4 -8
- package/emailDomain.js +0 -4
- package/emailDomain.js.map +1 -1
- package/emailDomainVerification.d.ts +3 -7
- package/emailDomainVerification.js +0 -4
- package/emailDomainVerification.js.map +1 -1
- package/emailSender.d.ts +15 -17
- package/emailSender.js +2 -4
- package/emailSender.js.map +1 -1
- package/emailSenderVerification.d.ts +5 -9
- package/emailSenderVerification.js +2 -6
- package/emailSenderVerification.js.map +1 -1
- package/eventHook.d.ts +16 -11
- package/eventHook.js +1 -5
- package/eventHook.js.map +1 -1
- package/eventHookVerification.d.ts +4 -10
- package/eventHookVerification.js +1 -7
- package/eventHookVerification.js.map +1 -1
- package/factor/factor.d.ts +4 -9
- package/factor/factor.js +1 -3
- package/factor/factor.js.map +1 -1
- package/factorTotp.d.ts +12 -21
- package/factorTotp.js +3 -3
- package/factorTotp.js.map +1 -1
- package/getAppGroupAssignments.d.ts +6 -6
- package/getAppGroupAssignments.js +2 -2
- package/getAppSignonPolicy.d.ts +16 -6
- package/getAppSignonPolicy.js +8 -4
- package/getAppSignonPolicy.js.map +1 -1
- package/getAppUserAssignments.d.ts +6 -6
- package/getAppUserAssignments.js +2 -2
- package/getAuthServerClaim.d.ts +15 -12
- package/getAuthServerClaim.js +2 -2
- package/getAuthServerClaim.js.map +1 -1
- package/getAuthServerClaims.d.ts +8 -5
- package/getAuthServerClaims.js +2 -2
- package/getAuthServerClaims.js.map +1 -1
- package/getAuthenticator.d.ts +24 -26
- package/getAuthenticator.js +14 -22
- package/getAuthenticator.js.map +1 -1
- package/getBehaviour.d.ts +6 -8
- package/getBehaviour.js +2 -2
- package/getBehaviour.js.map +1 -1
- package/getBehaviours.d.ts +7 -7
- package/getBehaviours.js +2 -2
- package/getBrand.d.ts +9 -6
- package/getBrand.js +2 -2
- package/getBrand.js.map +1 -1
- package/getBrands.d.ts +2 -2
- package/getBrands.js +2 -2
- package/getDomain.d.ts +11 -14
- package/getDomain.js +2 -8
- package/getDomain.js.map +1 -1
- package/getEmailCustomization.d.ts +14 -9
- package/getEmailCustomization.js +2 -6
- package/getEmailCustomization.js.map +1 -1
- package/getEmailCustomizations.d.ts +11 -9
- package/getEmailCustomizations.js +2 -6
- package/getEmailCustomizations.js.map +1 -1
- package/getGroups.d.ts +11 -25
- package/getGroups.js +2 -2
- package/getGroups.js.map +1 -1
- package/getLogStream.d.ts +8 -39
- package/getLogStream.js +2 -24
- package/getLogStream.js.map +1 -1
- package/getNetworkZone.d.ts +12 -12
- package/getNetworkZone.js +2 -2
- package/getOrgMetadata.d.ts +0 -22
- package/getOrgMetadata.js +0 -22
- package/getOrgMetadata.js.map +1 -1
- package/getRoleSubscription.d.ts +13 -35
- package/getRoleSubscription.js +2 -2
- package/getRoleSubscription.js.map +1 -1
- package/getTemplate.d.ts +10 -8
- package/getTemplate.js +2 -6
- package/getTemplate.js.map +1 -1
- package/getTemplates.d.ts +6 -7
- package/getTemplates.js +2 -6
- package/getTemplates.js.map +1 -1
- package/getTheme.d.ts +14 -12
- package/getTheme.js +2 -6
- package/getTheme.js.map +1 -1
- package/getThemes.d.ts +6 -7
- package/getThemes.js +2 -6
- package/getThemes.js.map +1 -1
- package/getTrustedOrigins.d.ts +7 -4
- package/getTrustedOrigins.js +2 -2
- package/getTrustedOrigins.js.map +1 -1
- package/getUserSecurityQuestions.d.ts +4 -8
- package/getUserSecurityQuestions.js +0 -4
- package/getUserSecurityQuestions.js.map +1 -1
- package/group/getEveryoneGroup.d.ts +10 -5
- package/group/getEveryoneGroup.js +4 -2
- package/group/getEveryoneGroup.js.map +1 -1
- package/group/getGroup.d.ts +17 -26
- package/group/getGroup.js +2 -2
- package/group/getGroup.js.map +1 -1
- package/group/getRule.d.ts +9 -9
- package/group/getRule.js +2 -2
- package/group/group.d.ts +4 -36
- package/group/group.js +1 -33
- package/group/group.js.map +1 -1
- package/group/role.d.ts +37 -81
- package/group/role.js +1 -6
- package/group/role.js.map +1 -1
- package/group/rule.d.ts +12 -20
- package/group/rule.js +0 -2
- package/group/rule.js.map +1 -1
- package/groupMemberships.d.ts +8 -10
- package/groupMemberships.js +2 -4
- package/groupMemberships.js.map +1 -1
- package/groupSchemaProperty.d.ts +57 -59
- package/groupSchemaProperty.js +0 -2
- package/groupSchemaProperty.js.map +1 -1
- package/idp/getMetadataSaml.d.ts +9 -6
- package/idp/getMetadataSaml.js +2 -2
- package/idp/getMetadataSaml.js.map +1 -1
- package/idp/getOidc.d.ts +9 -9
- package/idp/getOidc.js +2 -2
- package/idp/getSaml.d.ts +16 -13
- package/idp/getSaml.js +2 -2
- package/idp/getSaml.js.map +1 -1
- package/idp/getSocial.d.ts +8 -2
- package/idp/getSocial.js +2 -2
- package/idp/getSocial.js.map +1 -1
- package/idp/oidc.d.ts +70 -62
- package/idp/oidc.js +3 -5
- package/idp/oidc.js.map +1 -1
- package/idp/saml.d.ts +64 -86
- package/idp/saml.js +1 -5
- package/idp/saml.js.map +1 -1
- package/idp/samlKey.d.ts +3 -5
- package/idp/samlKey.js +0 -2
- package/idp/samlKey.js.map +1 -1
- package/idp/social.d.ts +99 -69
- package/idp/social.js +11 -5
- package/idp/social.js.map +1 -1
- package/inline/hook.d.ts +4 -26
- package/inline/hook.js +1 -5
- package/inline/hook.js.map +1 -1
- package/linkDefinition.d.ts +2 -3
- package/linkDefinition.js +2 -3
- package/linkDefinition.js.map +1 -1
- package/linkValue.d.ts +7 -9
- package/linkValue.js +1 -3
- package/linkValue.js.map +1 -1
- package/logStream.d.ts +32 -27
- package/logStream.js +23 -9
- package/logStream.js.map +1 -1
- package/network/zone.d.ts +25 -66
- package/network/zone.js +1 -39
- package/network/zone.js.map +1 -1
- package/orgConfiguration.d.ts +4 -9
- package/orgConfiguration.js +1 -3
- package/orgConfiguration.js.map +1 -1
- package/orgSupport.d.ts +4 -7
- package/orgSupport.js +1 -4
- package/orgSupport.js.map +1 -1
- package/package.json +3 -3
- package/policy/getDefaultPolicy.d.ts +9 -7
- package/policy/getDefaultPolicy.js +6 -2
- package/policy/getDefaultPolicy.js.map +1 -1
- package/policy/getPolicy.d.ts +11 -26
- package/policy/getPolicy.js +2 -2
- package/policy/getPolicy.js.map +1 -1
- package/policy/mfa.d.ts +18 -220
- package/policy/mfa.js +0 -10
- package/policy/mfa.js.map +1 -1
- package/policy/password.d.ts +91 -95
- package/policy/password.js +1 -5
- package/policy/password.js.map +1 -1
- package/policy/ruleIdpDiscovery.d.ts +111 -93
- package/policy/ruleIdpDiscovery.js +48 -57
- package/policy/ruleIdpDiscovery.js.map +1 -1
- package/policy/ruleMfa.d.ts +40 -30
- package/policy/ruleMfa.js +1 -3
- package/policy/ruleMfa.js.map +1 -1
- package/policy/rulePassword.d.ts +34 -38
- package/policy/rulePassword.js +1 -5
- package/policy/rulePassword.js.map +1 -1
- package/policy/ruleSignon.d.ts +94 -85
- package/policy/ruleSignon.js +1 -4
- package/policy/ruleSignon.js.map +1 -1
- package/policy/signon.d.ts +16 -20
- package/policy/signon.js +1 -5
- package/policy/signon.js.map +1 -1
- package/policyMfaDefault.d.ts +15 -214
- package/policyMfaDefault.js +2 -9
- package/policyMfaDefault.js.map +1 -1
- package/policyPasswordDefault.d.ts +85 -101
- package/policyPasswordDefault.js +1 -5
- package/policyPasswordDefault.js.map +1 -1
- package/policyProfileEnrollment.d.ts +8 -9
- package/policyProfileEnrollment.js +2 -3
- package/policyProfileEnrollment.js.map +1 -1
- package/policyProfileEnrollmentApps.d.ts +8 -11
- package/policyProfileEnrollmentApps.js +3 -6
- package/policyProfileEnrollmentApps.js.map +1 -1
- package/policyRuleProfileEnrollment.d.ts +42 -31
- package/policyRuleProfileEnrollment.js +2 -3
- package/policyRuleProfileEnrollment.js.map +1 -1
- package/profile/mapping.d.ts +19 -34
- package/profile/mapping.js +4 -4
- package/profile/mapping.js.map +1 -1
- package/rateLimiting.d.ts +8 -17
- package/rateLimiting.js +2 -5
- package/rateLimiting.js.map +1 -1
- package/resourceSet.d.ts +18 -26
- package/resourceSet.js +9 -14
- package/resourceSet.js.map +1 -1
- package/roleSubscription.d.ts +35 -86
- package/roleSubscription.js +2 -2
- package/roleSubscription.js.map +1 -1
- package/securityNotificationEmails.d.ts +4 -7
- package/securityNotificationEmails.js +4 -7
- package/securityNotificationEmails.js.map +1 -1
- package/templateSms.d.ts +4 -8
- package/templateSms.js +1 -5
- package/templateSms.js.map +1 -1
- package/theme.d.ts +46 -46
- package/theme.js +2 -2
- package/threatInsightSettings.d.ts +7 -27
- package/threatInsightSettings.js +1 -3
- package/threatInsightSettings.js.map +1 -1
- package/trustedorigin/origin.d.ts +13 -17
- package/trustedorigin/origin.js +1 -5
- package/trustedorigin/origin.js.map +1 -1
- package/types/input.d.ts +65 -162
- package/types/output.d.ts +75 -275
- package/user/getUser.d.ts +32 -104
- package/user/getUser.js +2 -2
- package/user/getUser.js.map +1 -1
- package/user/getUserProfileMappingSource.d.ts +9 -7
- package/user/getUserProfileMappingSource.js +6 -4
- package/user/getUserProfileMappingSource.js.map +1 -1
- package/user/getUserType.d.ts +7 -7
- package/user/getUserType.js +2 -2
- package/user/getUsers.d.ts +95 -37
- package/user/getUsers.js +64 -24
- package/user/getUsers.js.map +1 -1
- package/user/user.d.ts +160 -209
- package/user/user.js +43 -65
- package/user/user.js.map +1 -1
- package/user/userType.d.ts +1 -5
- package/user/userType.js +1 -5
- package/user/userType.js.map +1 -1
- package/userAdminRoles.d.ts +10 -17
- package/userAdminRoles.js +1 -5
- package/userAdminRoles.js.map +1 -1
- package/userBaseSchemaProperty.d.ts +26 -34
- package/userBaseSchemaProperty.js +2 -10
- package/userBaseSchemaProperty.js.map +1 -1
- package/userFactorQuestion.d.ts +1 -5
- package/userFactorQuestion.js +1 -5
- package/userFactorQuestion.js.map +1 -1
- package/userGroupMemberships.d.ts +3 -3
- package/userSchemaProperty.d.ts +57 -56
- package/userSchemaProperty.js +0 -8
- package/userSchemaProperty.js.map +1 -1
package/policy/ruleMfa.d.ts
CHANGED
|
@@ -2,12 +2,10 @@ import * as pulumi from "@pulumi/pulumi";
|
|
|
2
2
|
import * as inputs from "../types/input";
|
|
3
3
|
import * as outputs from "../types/output";
|
|
4
4
|
/**
|
|
5
|
-
* This resource allows you to create and configure an MFA Policy Rule.
|
|
5
|
+
* Creates an MFA Policy Rule. This resource allows you to create and configure an MFA Policy Rule.
|
|
6
6
|
*
|
|
7
7
|
* ## Import
|
|
8
8
|
*
|
|
9
|
-
* A Policy Rule can be imported via the Policy and Rule ID.
|
|
10
|
-
*
|
|
11
9
|
* ```sh
|
|
12
10
|
* $ pulumi import okta:policy/ruleMfa:RuleMfa example <policy id>/<rule id>
|
|
13
11
|
* ```
|
|
@@ -36,39 +34,43 @@ export declare class RuleMfa extends pulumi.CustomResource {
|
|
|
36
34
|
*/
|
|
37
35
|
readonly appExcludes: pulumi.Output<outputs.policy.RuleMfaAppExclude[] | undefined>;
|
|
38
36
|
/**
|
|
39
|
-
* Applications to include in discovery rule. **IMPORTANT**: this field is only available in Classic Organizations.
|
|
37
|
+
* Applications to include in discovery rule. **IMPORTANT**: this field is only available in Classic Organizations. - 'id'
|
|
38
|
+
* - (Optional) Use if 'type' is 'APP' to indicate the application id to include. - 'name' - (Optional) Use if the 'type'
|
|
39
|
+
* is 'APP_TYPE' to indicate the type of application(s) to include in instances where an entire group (i.e. 'yahoo_mail')
|
|
40
|
+
* of applications should be included. - 'type' - (Required) One of: 'APP', 'APP_TYPE'
|
|
40
41
|
*/
|
|
41
42
|
readonly appIncludes: pulumi.Output<outputs.policy.RuleMfaAppInclude[] | undefined>;
|
|
42
43
|
/**
|
|
43
|
-
* When a user should be prompted for MFA. It can be `
|
|
44
|
+
* When a user should be prompted for MFA. It can be `CHALLENGE`, `LOGIN`, or `NEVER`.
|
|
44
45
|
*/
|
|
45
46
|
readonly enroll: pulumi.Output<string | undefined>;
|
|
46
47
|
/**
|
|
47
|
-
* Policy Rule Name
|
|
48
|
+
* Policy Rule Name
|
|
48
49
|
*/
|
|
49
50
|
readonly name: pulumi.Output<string>;
|
|
50
51
|
/**
|
|
51
|
-
* Network selection mode: `
|
|
52
|
+
* Network selection mode: `ANYWHERE`, `ZONE`, `ON_NETWORK`, or `OFF_NETWORK`. Default: `ANYWHERE`
|
|
52
53
|
*/
|
|
53
54
|
readonly networkConnection: pulumi.Output<string | undefined>;
|
|
54
55
|
/**
|
|
55
|
-
*
|
|
56
|
+
* Required if `networkConnection` = `ZONE`. Indicates the network zones to exclude.
|
|
56
57
|
*/
|
|
57
58
|
readonly networkExcludes: pulumi.Output<string[] | undefined>;
|
|
58
59
|
/**
|
|
59
|
-
*
|
|
60
|
+
* Required if `networkConnection` = `ZONE`. Indicates the network zones to include.
|
|
60
61
|
*/
|
|
61
62
|
readonly networkIncludes: pulumi.Output<string[] | undefined>;
|
|
62
63
|
/**
|
|
63
|
-
* Policy ID
|
|
64
|
+
* Policy ID of the Rule
|
|
64
65
|
*/
|
|
65
66
|
readonly policyId: pulumi.Output<string | undefined>;
|
|
66
67
|
/**
|
|
67
|
-
*
|
|
68
|
+
* Rule priority. This attribute can be set to a valid priority. To avoid an endless diff situation an error is thrown if
|
|
69
|
+
* an invalid property is provided. The Okta API defaults to the last (lowest) if not provided.
|
|
68
70
|
*/
|
|
69
71
|
readonly priority: pulumi.Output<number | undefined>;
|
|
70
72
|
/**
|
|
71
|
-
* Policy Rule Status: `
|
|
73
|
+
* Policy Rule Status: `ACTIVE` or `INACTIVE`. Default: `ACTIVE`
|
|
72
74
|
*/
|
|
73
75
|
readonly status: pulumi.Output<string | undefined>;
|
|
74
76
|
/**
|
|
@@ -96,39 +98,43 @@ export interface RuleMfaState {
|
|
|
96
98
|
*/
|
|
97
99
|
appExcludes?: pulumi.Input<pulumi.Input<inputs.policy.RuleMfaAppExclude>[]>;
|
|
98
100
|
/**
|
|
99
|
-
* Applications to include in discovery rule. **IMPORTANT**: this field is only available in Classic Organizations.
|
|
101
|
+
* Applications to include in discovery rule. **IMPORTANT**: this field is only available in Classic Organizations. - 'id'
|
|
102
|
+
* - (Optional) Use if 'type' is 'APP' to indicate the application id to include. - 'name' - (Optional) Use if the 'type'
|
|
103
|
+
* is 'APP_TYPE' to indicate the type of application(s) to include in instances where an entire group (i.e. 'yahoo_mail')
|
|
104
|
+
* of applications should be included. - 'type' - (Required) One of: 'APP', 'APP_TYPE'
|
|
100
105
|
*/
|
|
101
106
|
appIncludes?: pulumi.Input<pulumi.Input<inputs.policy.RuleMfaAppInclude>[]>;
|
|
102
107
|
/**
|
|
103
|
-
* When a user should be prompted for MFA. It can be `
|
|
108
|
+
* When a user should be prompted for MFA. It can be `CHALLENGE`, `LOGIN`, or `NEVER`.
|
|
104
109
|
*/
|
|
105
110
|
enroll?: pulumi.Input<string>;
|
|
106
111
|
/**
|
|
107
|
-
* Policy Rule Name
|
|
112
|
+
* Policy Rule Name
|
|
108
113
|
*/
|
|
109
114
|
name?: pulumi.Input<string>;
|
|
110
115
|
/**
|
|
111
|
-
* Network selection mode: `
|
|
116
|
+
* Network selection mode: `ANYWHERE`, `ZONE`, `ON_NETWORK`, or `OFF_NETWORK`. Default: `ANYWHERE`
|
|
112
117
|
*/
|
|
113
118
|
networkConnection?: pulumi.Input<string>;
|
|
114
119
|
/**
|
|
115
|
-
*
|
|
120
|
+
* Required if `networkConnection` = `ZONE`. Indicates the network zones to exclude.
|
|
116
121
|
*/
|
|
117
122
|
networkExcludes?: pulumi.Input<pulumi.Input<string>[]>;
|
|
118
123
|
/**
|
|
119
|
-
*
|
|
124
|
+
* Required if `networkConnection` = `ZONE`. Indicates the network zones to include.
|
|
120
125
|
*/
|
|
121
126
|
networkIncludes?: pulumi.Input<pulumi.Input<string>[]>;
|
|
122
127
|
/**
|
|
123
|
-
* Policy ID
|
|
128
|
+
* Policy ID of the Rule
|
|
124
129
|
*/
|
|
125
130
|
policyId?: pulumi.Input<string>;
|
|
126
131
|
/**
|
|
127
|
-
*
|
|
132
|
+
* Rule priority. This attribute can be set to a valid priority. To avoid an endless diff situation an error is thrown if
|
|
133
|
+
* an invalid property is provided. The Okta API defaults to the last (lowest) if not provided.
|
|
128
134
|
*/
|
|
129
135
|
priority?: pulumi.Input<number>;
|
|
130
136
|
/**
|
|
131
|
-
* Policy Rule Status: `
|
|
137
|
+
* Policy Rule Status: `ACTIVE` or `INACTIVE`. Default: `ACTIVE`
|
|
132
138
|
*/
|
|
133
139
|
status?: pulumi.Input<string>;
|
|
134
140
|
/**
|
|
@@ -148,39 +154,43 @@ export interface RuleMfaArgs {
|
|
|
148
154
|
*/
|
|
149
155
|
appExcludes?: pulumi.Input<pulumi.Input<inputs.policy.RuleMfaAppExclude>[]>;
|
|
150
156
|
/**
|
|
151
|
-
* Applications to include in discovery rule. **IMPORTANT**: this field is only available in Classic Organizations.
|
|
157
|
+
* Applications to include in discovery rule. **IMPORTANT**: this field is only available in Classic Organizations. - 'id'
|
|
158
|
+
* - (Optional) Use if 'type' is 'APP' to indicate the application id to include. - 'name' - (Optional) Use if the 'type'
|
|
159
|
+
* is 'APP_TYPE' to indicate the type of application(s) to include in instances where an entire group (i.e. 'yahoo_mail')
|
|
160
|
+
* of applications should be included. - 'type' - (Required) One of: 'APP', 'APP_TYPE'
|
|
152
161
|
*/
|
|
153
162
|
appIncludes?: pulumi.Input<pulumi.Input<inputs.policy.RuleMfaAppInclude>[]>;
|
|
154
163
|
/**
|
|
155
|
-
* When a user should be prompted for MFA. It can be `
|
|
164
|
+
* When a user should be prompted for MFA. It can be `CHALLENGE`, `LOGIN`, or `NEVER`.
|
|
156
165
|
*/
|
|
157
166
|
enroll?: pulumi.Input<string>;
|
|
158
167
|
/**
|
|
159
|
-
* Policy Rule Name
|
|
168
|
+
* Policy Rule Name
|
|
160
169
|
*/
|
|
161
170
|
name?: pulumi.Input<string>;
|
|
162
171
|
/**
|
|
163
|
-
* Network selection mode: `
|
|
172
|
+
* Network selection mode: `ANYWHERE`, `ZONE`, `ON_NETWORK`, or `OFF_NETWORK`. Default: `ANYWHERE`
|
|
164
173
|
*/
|
|
165
174
|
networkConnection?: pulumi.Input<string>;
|
|
166
175
|
/**
|
|
167
|
-
*
|
|
176
|
+
* Required if `networkConnection` = `ZONE`. Indicates the network zones to exclude.
|
|
168
177
|
*/
|
|
169
178
|
networkExcludes?: pulumi.Input<pulumi.Input<string>[]>;
|
|
170
179
|
/**
|
|
171
|
-
*
|
|
180
|
+
* Required if `networkConnection` = `ZONE`. Indicates the network zones to include.
|
|
172
181
|
*/
|
|
173
182
|
networkIncludes?: pulumi.Input<pulumi.Input<string>[]>;
|
|
174
183
|
/**
|
|
175
|
-
* Policy ID
|
|
184
|
+
* Policy ID of the Rule
|
|
176
185
|
*/
|
|
177
186
|
policyId?: pulumi.Input<string>;
|
|
178
187
|
/**
|
|
179
|
-
*
|
|
188
|
+
* Rule priority. This attribute can be set to a valid priority. To avoid an endless diff situation an error is thrown if
|
|
189
|
+
* an invalid property is provided. The Okta API defaults to the last (lowest) if not provided.
|
|
180
190
|
*/
|
|
181
191
|
priority?: pulumi.Input<number>;
|
|
182
192
|
/**
|
|
183
|
-
* Policy Rule Status: `
|
|
193
|
+
* Policy Rule Status: `ACTIVE` or `INACTIVE`. Default: `ACTIVE`
|
|
184
194
|
*/
|
|
185
195
|
status?: pulumi.Input<string>;
|
|
186
196
|
/**
|
package/policy/ruleMfa.js
CHANGED
|
@@ -6,12 +6,10 @@ exports.RuleMfa = void 0;
|
|
|
6
6
|
const pulumi = require("@pulumi/pulumi");
|
|
7
7
|
const utilities = require("../utilities");
|
|
8
8
|
/**
|
|
9
|
-
* This resource allows you to create and configure an MFA Policy Rule.
|
|
9
|
+
* Creates an MFA Policy Rule. This resource allows you to create and configure an MFA Policy Rule.
|
|
10
10
|
*
|
|
11
11
|
* ## Import
|
|
12
12
|
*
|
|
13
|
-
* A Policy Rule can be imported via the Policy and Rule ID.
|
|
14
|
-
*
|
|
15
13
|
* ```sh
|
|
16
14
|
* $ pulumi import okta:policy/ruleMfa:RuleMfa example <policy id>/<rule id>
|
|
17
15
|
* ```
|
package/policy/ruleMfa.js.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"ruleMfa.js","sourceRoot":"","sources":["../../policy/ruleMfa.ts"],"names":[],"mappings":";AAAA,wFAAwF;AACxF,iFAAiF;;;AAEjF,yCAAyC;AAGzC,0CAA0C;AAE1C
|
|
1
|
+
{"version":3,"file":"ruleMfa.js","sourceRoot":"","sources":["../../policy/ruleMfa.ts"],"names":[],"mappings":";AAAA,wFAAwF;AACxF,iFAAiF;;;AAEjF,yCAAyC;AAGzC,0CAA0C;AAE1C;;;;;;;;GAQG;AACH,MAAa,OAAQ,SAAQ,MAAM,CAAC,cAAc;IAC9C;;;;;;;;OAQG;IACI,MAAM,CAAC,GAAG,CAAC,IAAY,EAAE,EAA2B,EAAE,KAAoB,EAAE,IAAmC;QAClH,OAAO,IAAI,OAAO,CAAC,IAAI,EAAO,KAAK,kCAAO,IAAI,KAAE,EAAE,EAAE,EAAE,IAAG,CAAC;IAC9D,CAAC;IAKD;;;OAGG;IACI,MAAM,CAAC,UAAU,CAAC,GAAQ;QAC7B,IAAI,GAAG,KAAK,SAAS,IAAI,GAAG,KAAK,IAAI,EAAE;YACnC,OAAO,KAAK,CAAC;SAChB;QACD,OAAO,GAAG,CAAC,cAAc,CAAC,KAAK,OAAO,CAAC,YAAY,CAAC;IACxD,CAAC;IA8DD,YAAY,IAAY,EAAE,WAAwC,EAAE,IAAmC;QACnG,IAAI,cAAc,GAAkB,EAAE,CAAC;QACvC,IAAI,GAAG,IAAI,IAAI,EAAE,CAAC;QAClB,IAAI,IAAI,CAAC,EAAE,EAAE;YACT,MAAM,KAAK,GAAG,WAAuC,CAAC;YACtD,cAAc,CAAC,aAAa,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,WAAW,CAAC,CAAC,CAAC,SAAS,CAAC;YACtE,cAAc,CAAC,aAAa,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,WAAW,CAAC,CAAC,CAAC,SAAS,CAAC;YACtE,cAAc,CAAC,QAAQ,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC;YAC5D,cAAc,CAAC,MAAM,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,SAAS,CAAC;YACxD,cAAc,CAAC,mBAAmB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,iBAAiB,CAAC,CAAC,CAAC,SAAS,CAAC;YAClF,cAAc,CAAC,iBAAiB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,eAAe,CAAC,CAAC,CAAC,SAAS,CAAC;YAC9E,cAAc,CAAC,iBAAiB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,eAAe,CAAC,CAAC,CAAC,SAAS,CAAC;YAC9E,cAAc,CAAC,UAAU,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAC,CAAC,SAAS,CAAC;YAChE,cAAc,CAAC,UAAU,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAC,CAAC,SAAS,CAAC;YAChE,cAAc,CAAC,QAAQ,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC;YAC5D,cAAc,CAAC,gBAAgB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,cAAc,CAAC,CAAC,CAAC,SAAS,CAAC;SAC/E;aAAM;YACH,MAAM,IAAI,GAAG,WAAsC,CAAC;YACpD,cAAc,CAAC,aAAa,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC,CAAC,SAAS,CAAC;YACpE,cAAc,CAAC,aAAa,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC,CAAC,SAAS,CAAC;YACpE,cAAc,CAAC,QAAQ,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1D,cAAc,CAAC,MAAM,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC,SAAS,CAAC;YACtD,cAAc,CAAC,mBAAmB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,iBAAiB,CAAC,CAAC,CAAC,SAAS,CAAC;YAChF,cAAc,CAAC,iBAAiB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,eAAe,CAAC,CAAC,CAAC,SAAS,CAAC;YAC5E,cAAc,CAAC,iBAAiB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,eAAe,CAAC,CAAC,CAAC,SAAS,CAAC;YAC5E,cAAc,CAAC,UAAU,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC,CAAC,SAAS,CAAC;YAC9D,cAAc,CAAC,UAAU,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC,CAAC,SAAS,CAAC;YAC9D,cAAc,CAAC,QAAQ,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1D,cAAc,CAAC,gBAAgB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC,CAAC,SAAS,CAAC;SAC7E;QACD,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,CAAC,CAAC;QACnE,KAAK,CAAC,OAAO,CAAC,YAAY,EAAE,IAAI,EAAE,cAAc,EAAE,IAAI,CAAC,CAAC;IAC5D,CAAC;;AAxHL,0BAyHC;AA3GG,gBAAgB;AACO,oBAAY,GAAG,6BAA6B,CAAC"}
|
package/policy/rulePassword.d.ts
CHANGED
|
@@ -1,13 +1,9 @@
|
|
|
1
1
|
import * as pulumi from "@pulumi/pulumi";
|
|
2
2
|
/**
|
|
3
|
-
* Creates a Password Policy Rule.
|
|
4
|
-
*
|
|
5
|
-
* This resource allows you to create and configure a Password Policy Rule.
|
|
3
|
+
* Creates a Password Policy Rule. This resource allows you to create and configure a Password Policy Rule.
|
|
6
4
|
*
|
|
7
5
|
* ## Import
|
|
8
6
|
*
|
|
9
|
-
* A Policy Rule can be imported via the Policy and Rule ID.
|
|
10
|
-
*
|
|
11
7
|
* ```sh
|
|
12
8
|
* $ pulumi import okta:policy/rulePassword:RulePassword example <policy id>/<rule id>
|
|
13
9
|
* ```
|
|
@@ -29,47 +25,47 @@ export declare class RulePassword extends pulumi.CustomResource {
|
|
|
29
25
|
*/
|
|
30
26
|
static isInstance(obj: any): obj is RulePassword;
|
|
31
27
|
/**
|
|
32
|
-
* Policy Rule Name
|
|
28
|
+
* Policy Rule Name
|
|
33
29
|
*/
|
|
34
30
|
readonly name: pulumi.Output<string>;
|
|
35
31
|
/**
|
|
36
|
-
* Network selection mode: `
|
|
32
|
+
* Network selection mode: `ANYWHERE`, `ZONE`, `ON_NETWORK`, or `OFF_NETWORK`. Default: `ANYWHERE`
|
|
37
33
|
*/
|
|
38
34
|
readonly networkConnection: pulumi.Output<string | undefined>;
|
|
39
35
|
/**
|
|
40
|
-
*
|
|
36
|
+
* Required if `networkConnection` = `ZONE`. Indicates the network zones to exclude.
|
|
41
37
|
*/
|
|
42
38
|
readonly networkExcludes: pulumi.Output<string[] | undefined>;
|
|
43
39
|
/**
|
|
44
|
-
*
|
|
40
|
+
* Required if `networkConnection` = `ZONE`. Indicates the network zones to include.
|
|
45
41
|
*/
|
|
46
42
|
readonly networkIncludes: pulumi.Output<string[] | undefined>;
|
|
47
43
|
/**
|
|
48
|
-
* Allow or deny a user to change their password: `
|
|
44
|
+
* Allow or deny a user to change their password: `ALLOW` or `DENY`. Default: `ALLOW`
|
|
49
45
|
*/
|
|
50
46
|
readonly passwordChange: pulumi.Output<string | undefined>;
|
|
51
47
|
/**
|
|
52
|
-
* Allow or deny a user to reset their password: `
|
|
48
|
+
* Allow or deny a user to reset their password: `ALLOW` or `DENY`. Default: `ALLOW`
|
|
53
49
|
*/
|
|
54
50
|
readonly passwordReset: pulumi.Output<string | undefined>;
|
|
55
51
|
/**
|
|
56
|
-
* Allow or deny a user to unlock: `
|
|
52
|
+
* Allow or deny a user to unlock. Default: `DENY`
|
|
57
53
|
*/
|
|
58
54
|
readonly passwordUnlock: pulumi.Output<string | undefined>;
|
|
59
55
|
/**
|
|
60
|
-
* Policy ID
|
|
56
|
+
* Policy ID of the Rule
|
|
61
57
|
*/
|
|
62
58
|
readonly policyId: pulumi.Output<string | undefined>;
|
|
63
59
|
/**
|
|
64
|
-
*
|
|
60
|
+
* Rule priority. This attribute can be set to a valid priority. To avoid an endless diff situation an error is thrown if an invalid property is provided. The Okta API defaults to the last (lowest) if not provided.
|
|
65
61
|
*/
|
|
66
62
|
readonly priority: pulumi.Output<number | undefined>;
|
|
67
63
|
/**
|
|
68
|
-
* Policy Rule Status: `
|
|
64
|
+
* Policy Rule Status: `ACTIVE` or `INACTIVE`. Default: `ACTIVE`
|
|
69
65
|
*/
|
|
70
66
|
readonly status: pulumi.Output<string | undefined>;
|
|
71
67
|
/**
|
|
72
|
-
*
|
|
68
|
+
* Set of User IDs to Exclude
|
|
73
69
|
*/
|
|
74
70
|
readonly usersExcludeds: pulumi.Output<string[] | undefined>;
|
|
75
71
|
/**
|
|
@@ -86,47 +82,47 @@ export declare class RulePassword extends pulumi.CustomResource {
|
|
|
86
82
|
*/
|
|
87
83
|
export interface RulePasswordState {
|
|
88
84
|
/**
|
|
89
|
-
* Policy Rule Name
|
|
85
|
+
* Policy Rule Name
|
|
90
86
|
*/
|
|
91
87
|
name?: pulumi.Input<string>;
|
|
92
88
|
/**
|
|
93
|
-
* Network selection mode: `
|
|
89
|
+
* Network selection mode: `ANYWHERE`, `ZONE`, `ON_NETWORK`, or `OFF_NETWORK`. Default: `ANYWHERE`
|
|
94
90
|
*/
|
|
95
91
|
networkConnection?: pulumi.Input<string>;
|
|
96
92
|
/**
|
|
97
|
-
*
|
|
93
|
+
* Required if `networkConnection` = `ZONE`. Indicates the network zones to exclude.
|
|
98
94
|
*/
|
|
99
95
|
networkExcludes?: pulumi.Input<pulumi.Input<string>[]>;
|
|
100
96
|
/**
|
|
101
|
-
*
|
|
97
|
+
* Required if `networkConnection` = `ZONE`. Indicates the network zones to include.
|
|
102
98
|
*/
|
|
103
99
|
networkIncludes?: pulumi.Input<pulumi.Input<string>[]>;
|
|
104
100
|
/**
|
|
105
|
-
* Allow or deny a user to change their password: `
|
|
101
|
+
* Allow or deny a user to change their password: `ALLOW` or `DENY`. Default: `ALLOW`
|
|
106
102
|
*/
|
|
107
103
|
passwordChange?: pulumi.Input<string>;
|
|
108
104
|
/**
|
|
109
|
-
* Allow or deny a user to reset their password: `
|
|
105
|
+
* Allow or deny a user to reset their password: `ALLOW` or `DENY`. Default: `ALLOW`
|
|
110
106
|
*/
|
|
111
107
|
passwordReset?: pulumi.Input<string>;
|
|
112
108
|
/**
|
|
113
|
-
* Allow or deny a user to unlock: `
|
|
109
|
+
* Allow or deny a user to unlock. Default: `DENY`
|
|
114
110
|
*/
|
|
115
111
|
passwordUnlock?: pulumi.Input<string>;
|
|
116
112
|
/**
|
|
117
|
-
* Policy ID
|
|
113
|
+
* Policy ID of the Rule
|
|
118
114
|
*/
|
|
119
115
|
policyId?: pulumi.Input<string>;
|
|
120
116
|
/**
|
|
121
|
-
*
|
|
117
|
+
* Rule priority. This attribute can be set to a valid priority. To avoid an endless diff situation an error is thrown if an invalid property is provided. The Okta API defaults to the last (lowest) if not provided.
|
|
122
118
|
*/
|
|
123
119
|
priority?: pulumi.Input<number>;
|
|
124
120
|
/**
|
|
125
|
-
* Policy Rule Status: `
|
|
121
|
+
* Policy Rule Status: `ACTIVE` or `INACTIVE`. Default: `ACTIVE`
|
|
126
122
|
*/
|
|
127
123
|
status?: pulumi.Input<string>;
|
|
128
124
|
/**
|
|
129
|
-
*
|
|
125
|
+
* Set of User IDs to Exclude
|
|
130
126
|
*/
|
|
131
127
|
usersExcludeds?: pulumi.Input<pulumi.Input<string>[]>;
|
|
132
128
|
}
|
|
@@ -135,47 +131,47 @@ export interface RulePasswordState {
|
|
|
135
131
|
*/
|
|
136
132
|
export interface RulePasswordArgs {
|
|
137
133
|
/**
|
|
138
|
-
* Policy Rule Name
|
|
134
|
+
* Policy Rule Name
|
|
139
135
|
*/
|
|
140
136
|
name?: pulumi.Input<string>;
|
|
141
137
|
/**
|
|
142
|
-
* Network selection mode: `
|
|
138
|
+
* Network selection mode: `ANYWHERE`, `ZONE`, `ON_NETWORK`, or `OFF_NETWORK`. Default: `ANYWHERE`
|
|
143
139
|
*/
|
|
144
140
|
networkConnection?: pulumi.Input<string>;
|
|
145
141
|
/**
|
|
146
|
-
*
|
|
142
|
+
* Required if `networkConnection` = `ZONE`. Indicates the network zones to exclude.
|
|
147
143
|
*/
|
|
148
144
|
networkExcludes?: pulumi.Input<pulumi.Input<string>[]>;
|
|
149
145
|
/**
|
|
150
|
-
*
|
|
146
|
+
* Required if `networkConnection` = `ZONE`. Indicates the network zones to include.
|
|
151
147
|
*/
|
|
152
148
|
networkIncludes?: pulumi.Input<pulumi.Input<string>[]>;
|
|
153
149
|
/**
|
|
154
|
-
* Allow or deny a user to change their password: `
|
|
150
|
+
* Allow or deny a user to change their password: `ALLOW` or `DENY`. Default: `ALLOW`
|
|
155
151
|
*/
|
|
156
152
|
passwordChange?: pulumi.Input<string>;
|
|
157
153
|
/**
|
|
158
|
-
* Allow or deny a user to reset their password: `
|
|
154
|
+
* Allow or deny a user to reset their password: `ALLOW` or `DENY`. Default: `ALLOW`
|
|
159
155
|
*/
|
|
160
156
|
passwordReset?: pulumi.Input<string>;
|
|
161
157
|
/**
|
|
162
|
-
* Allow or deny a user to unlock: `
|
|
158
|
+
* Allow or deny a user to unlock. Default: `DENY`
|
|
163
159
|
*/
|
|
164
160
|
passwordUnlock?: pulumi.Input<string>;
|
|
165
161
|
/**
|
|
166
|
-
* Policy ID
|
|
162
|
+
* Policy ID of the Rule
|
|
167
163
|
*/
|
|
168
164
|
policyId?: pulumi.Input<string>;
|
|
169
165
|
/**
|
|
170
|
-
*
|
|
166
|
+
* Rule priority. This attribute can be set to a valid priority. To avoid an endless diff situation an error is thrown if an invalid property is provided. The Okta API defaults to the last (lowest) if not provided.
|
|
171
167
|
*/
|
|
172
168
|
priority?: pulumi.Input<number>;
|
|
173
169
|
/**
|
|
174
|
-
* Policy Rule Status: `
|
|
170
|
+
* Policy Rule Status: `ACTIVE` or `INACTIVE`. Default: `ACTIVE`
|
|
175
171
|
*/
|
|
176
172
|
status?: pulumi.Input<string>;
|
|
177
173
|
/**
|
|
178
|
-
*
|
|
174
|
+
* Set of User IDs to Exclude
|
|
179
175
|
*/
|
|
180
176
|
usersExcludeds?: pulumi.Input<pulumi.Input<string>[]>;
|
|
181
177
|
}
|
package/policy/rulePassword.js
CHANGED
|
@@ -6,14 +6,10 @@ exports.RulePassword = void 0;
|
|
|
6
6
|
const pulumi = require("@pulumi/pulumi");
|
|
7
7
|
const utilities = require("../utilities");
|
|
8
8
|
/**
|
|
9
|
-
* Creates a Password Policy Rule.
|
|
10
|
-
*
|
|
11
|
-
* This resource allows you to create and configure a Password Policy Rule.
|
|
9
|
+
* Creates a Password Policy Rule. This resource allows you to create and configure a Password Policy Rule.
|
|
12
10
|
*
|
|
13
11
|
* ## Import
|
|
14
12
|
*
|
|
15
|
-
* A Policy Rule can be imported via the Policy and Rule ID.
|
|
16
|
-
*
|
|
17
13
|
* ```sh
|
|
18
14
|
* $ pulumi import okta:policy/rulePassword:RulePassword example <policy id>/<rule id>
|
|
19
15
|
* ```
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"rulePassword.js","sourceRoot":"","sources":["../../policy/rulePassword.ts"],"names":[],"mappings":";AAAA,wFAAwF;AACxF,iFAAiF;;;AAEjF,yCAAyC;AACzC,0CAA0C;AAE1C
|
|
1
|
+
{"version":3,"file":"rulePassword.js","sourceRoot":"","sources":["../../policy/rulePassword.ts"],"names":[],"mappings":";AAAA,wFAAwF;AACxF,iFAAiF;;;AAEjF,yCAAyC;AACzC,0CAA0C;AAE1C;;;;;;;;GAQG;AACH,MAAa,YAAa,SAAQ,MAAM,CAAC,cAAc;IACnD;;;;;;;;OAQG;IACI,MAAM,CAAC,GAAG,CAAC,IAAY,EAAE,EAA2B,EAAE,KAAyB,EAAE,IAAmC;QACvH,OAAO,IAAI,YAAY,CAAC,IAAI,EAAO,KAAK,kCAAO,IAAI,KAAE,EAAE,EAAE,EAAE,IAAG,CAAC;IACnE,CAAC;IAKD;;;OAGG;IACI,MAAM,CAAC,UAAU,CAAC,GAAQ;QAC7B,IAAI,GAAG,KAAK,SAAS,IAAI,GAAG,KAAK,IAAI,EAAE;YACnC,OAAO,KAAK,CAAC;SAChB;QACD,OAAO,GAAG,CAAC,cAAc,CAAC,KAAK,YAAY,CAAC,YAAY,CAAC;IAC7D,CAAC;IAuDD,YAAY,IAAY,EAAE,WAAkD,EAAE,IAAmC;QAC7G,IAAI,cAAc,GAAkB,EAAE,CAAC;QACvC,IAAI,GAAG,IAAI,IAAI,EAAE,CAAC;QAClB,IAAI,IAAI,CAAC,EAAE,EAAE;YACT,MAAM,KAAK,GAAG,WAA4C,CAAC;YAC3D,cAAc,CAAC,MAAM,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,SAAS,CAAC;YACxD,cAAc,CAAC,mBAAmB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,iBAAiB,CAAC,CAAC,CAAC,SAAS,CAAC;YAClF,cAAc,CAAC,iBAAiB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,eAAe,CAAC,CAAC,CAAC,SAAS,CAAC;YAC9E,cAAc,CAAC,iBAAiB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,eAAe,CAAC,CAAC,CAAC,SAAS,CAAC;YAC9E,cAAc,CAAC,gBAAgB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,cAAc,CAAC,CAAC,CAAC,SAAS,CAAC;YAC5E,cAAc,CAAC,eAAe,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,aAAa,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1E,cAAc,CAAC,gBAAgB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,cAAc,CAAC,CAAC,CAAC,SAAS,CAAC;YAC5E,cAAc,CAAC,UAAU,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAC,CAAC,SAAS,CAAC;YAChE,cAAc,CAAC,UAAU,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAC,CAAC,SAAS,CAAC;YAChE,cAAc,CAAC,QAAQ,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC;YAC5D,cAAc,CAAC,gBAAgB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,cAAc,CAAC,CAAC,CAAC,SAAS,CAAC;SAC/E;aAAM;YACH,MAAM,IAAI,GAAG,WAA2C,CAAC;YACzD,cAAc,CAAC,MAAM,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC,SAAS,CAAC;YACtD,cAAc,CAAC,mBAAmB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,iBAAiB,CAAC,CAAC,CAAC,SAAS,CAAC;YAChF,cAAc,CAAC,iBAAiB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,eAAe,CAAC,CAAC,CAAC,SAAS,CAAC;YAC5E,cAAc,CAAC,iBAAiB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,eAAe,CAAC,CAAC,CAAC,SAAS,CAAC;YAC5E,cAAc,CAAC,gBAAgB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1E,cAAc,CAAC,eAAe,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,aAAa,CAAC,CAAC,CAAC,SAAS,CAAC;YACxE,cAAc,CAAC,gBAAgB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1E,cAAc,CAAC,UAAU,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC,CAAC,SAAS,CAAC;YAC9D,cAAc,CAAC,UAAU,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC,CAAC,SAAS,CAAC;YAC9D,cAAc,CAAC,QAAQ,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1D,cAAc,CAAC,gBAAgB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC,CAAC,SAAS,CAAC;SAC7E;QACD,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,CAAC,CAAC;QACnE,KAAK,CAAC,YAAY,CAAC,YAAY,EAAE,IAAI,EAAE,cAAc,EAAE,IAAI,CAAC,CAAC;IACjE,CAAC;;AAjHL,oCAkHC;AApGG,gBAAgB;AACO,yBAAY,GAAG,uCAAuC,CAAC"}
|