@pulumi/okta 4.9.0-alpha.1718431198 → 4.9.0

package/adminRoleCustom.d.ts

@@ -1,8 +1,8 @@
 import * as pulumi from "@pulumi/pulumi";
 /**
- * These operations allow the creation and manipulation of custom roles as custom collections of permissions.
+ * Resource to manage administrative Role assignments for a User
  *
- * > **NOTE:** This an `Early Access` feature.
+ * These operations allow the creation and manipulation of custom roles as custom collections of permissions.
  *
  * ## Example Usage
  *
@@ -19,10 +19,8 @@ import * as pulumi from "@pulumi/pulumi";
  *
  * ## Import
  *
- * Okta Custom Admin Role can be imported via the Okta ID.
- *
  * ```sh
- * $ pulumi import okta:index/adminRoleCustom:AdminRoleCustom example <custom role id>
+ * $ pulumi import okta:index/adminRoleCustom:AdminRoleCustom example <custom role id&#62
  * ```
  */
 export declare class AdminRoleCustom extends pulumi.CustomResource {
@@ -42,47 +40,47 @@ export declare class AdminRoleCustom extends pulumi.CustomResource {
      */
     static isInstance(obj: any): obj is AdminRoleCustom;
     /**
-     * A human-readable description of the new Role.
+     * A human-readable description of the new Role
      */
     readonly description: pulumi.Output<string>;
     /**
-     * The name given to the new Role.
+     * The name given to the new Role
      */
     readonly label: pulumi.Output<string>;
     /**
      * The permissions that the new Role grants. At least one
-     * permission must be specified when creating custom role. Valid values: `"okta.authzServers.manage"`,
-     * `"okta.authzServers.read"`,
-     * `"okta.apps.assignment.manage"`,
-     * `"okta.apps.manage"`,
-     * `"okta.apps.read"`,
-     * `"okta.customizations.manage"`,
-     * `"okta.customizations.read"`,
-     * `"okta.groups.appAssignment.manage"`,
-     * `"okta.groups.create"`,
-     * `"okta.groups.manage"`,
-     * `"okta.groups.members.manage"`,
-     * `"okta.groups.read"`,
-     * `"okta.profilesources.import.run"`,
-     * `"okta.users.appAssignment.manage"`,
-     * `"okta.users.create"`,
-     * `"okta.users.credentials.expirePassword"`,
-     * `"okta.users.credentials.manage"`,
-     * `"okta.users.credentials.resetFactors"`,
-     * `"okta.users.credentials.resetPassword"`,
-     * `"okta.users.groupMembership.manage"`,
-     * `"okta.users.lifecycle.activate"`,
-     * `"okta.users.lifecycle.clearSessions"`,
-     * `"okta.users.lifecycle.deactivate"`,
-     * `"okta.users.lifecycle.delete"`,
-     * `"okta.users.lifecycle.manage"`,
-     * `"okta.users.lifecycle.suspend"`,
-     * `"okta.users.lifecycle.unlock"`,
-     * `"okta.users.lifecycle.unsuspend"`,
-     * `"okta.users.manage"`,
-     * `"okta.users.read"`,
-     * `"okta.users.userprofile.manage"`,
-     * `"okta.workflows.invoke"`.,
+     * 			permission must be specified when creating custom role. Valid values: "okta.authzServers.manage",
+     * 		  "okta.authzServers.read",
+     * 		  "okta.apps.assignment.manage",
+     * 		  "okta.apps.manage",
+     * 		  "okta.apps.read",
+     * 		  "okta.customizations.manage",
+     * 		  "okta.customizations.read",
+     * 		  "okta.groups.appAssignment.manage",
+     * 		  "okta.groups.create",
+     * 		  "okta.groups.manage",
+     * 		  "okta.groups.members.manage",
+     * 		  "okta.groups.read",
+     * 		  "okta.profilesources.import.run",
+     * 		  "okta.users.appAssignment.manage",
+     * 		  "okta.users.create",
+     * 		  "okta.users.credentials.expirePassword",
+     * 		  "okta.users.credentials.manage",
+     * 		  "okta.users.credentials.resetFactors",
+     * 		  "okta.users.credentials.resetPassword",
+     * 		  "okta.users.groupMembership.manage",
+     * 		  "okta.users.lifecycle.activate",
+     * 		  "okta.users.lifecycle.clearSessions",
+     * 		  "okta.users.lifecycle.deactivate",
+     * 		  "okta.users.lifecycle.delete",
+     * 		  "okta.users.lifecycle.manage",
+     * 		  "okta.users.lifecycle.suspend",
+     * 		  "okta.users.lifecycle.unlock",
+     * 		  "okta.users.lifecycle.unsuspend",
+     * 		  "okta.users.manage",
+     * 		  "okta.users.read",
+     * 		  "okta.users.userprofile.manage",
+     * 		  "okta.workflows.invoke".,
      */
     readonly permissions: pulumi.Output<string[] | undefined>;
     /**
@@ -99,47 +97,47 @@ export declare class AdminRoleCustom extends pulumi.CustomResource {
  */
 export interface AdminRoleCustomState {
     /**
-     * A human-readable description of the new Role.
+     * A human-readable description of the new Role
      */
     description?: pulumi.Input<string>;
     /**
-     * The name given to the new Role.
+     * The name given to the new Role
      */
     label?: pulumi.Input<string>;
     /**
      * The permissions that the new Role grants. At least one
-     * permission must be specified when creating custom role. Valid values: `"okta.authzServers.manage"`,
-     * `"okta.authzServers.read"`,
-     * `"okta.apps.assignment.manage"`,
-     * `"okta.apps.manage"`,
-     * `"okta.apps.read"`,
-     * `"okta.customizations.manage"`,
-     * `"okta.customizations.read"`,
-     * `"okta.groups.appAssignment.manage"`,
-     * `"okta.groups.create"`,
-     * `"okta.groups.manage"`,
-     * `"okta.groups.members.manage"`,
-     * `"okta.groups.read"`,
-     * `"okta.profilesources.import.run"`,
-     * `"okta.users.appAssignment.manage"`,
-     * `"okta.users.create"`,
-     * `"okta.users.credentials.expirePassword"`,
-     * `"okta.users.credentials.manage"`,
-     * `"okta.users.credentials.resetFactors"`,
-     * `"okta.users.credentials.resetPassword"`,
-     * `"okta.users.groupMembership.manage"`,
-     * `"okta.users.lifecycle.activate"`,
-     * `"okta.users.lifecycle.clearSessions"`,
-     * `"okta.users.lifecycle.deactivate"`,
-     * `"okta.users.lifecycle.delete"`,
-     * `"okta.users.lifecycle.manage"`,
-     * `"okta.users.lifecycle.suspend"`,
-     * `"okta.users.lifecycle.unlock"`,
-     * `"okta.users.lifecycle.unsuspend"`,
-     * `"okta.users.manage"`,
-     * `"okta.users.read"`,
-     * `"okta.users.userprofile.manage"`,
-     * `"okta.workflows.invoke"`.,
+     * 			permission must be specified when creating custom role. Valid values: "okta.authzServers.manage",
+     * 		  "okta.authzServers.read",
+     * 		  "okta.apps.assignment.manage",
+     * 		  "okta.apps.manage",
+     * 		  "okta.apps.read",
+     * 		  "okta.customizations.manage",
+     * 		  "okta.customizations.read",
+     * 		  "okta.groups.appAssignment.manage",
+     * 		  "okta.groups.create",
+     * 		  "okta.groups.manage",
+     * 		  "okta.groups.members.manage",
+     * 		  "okta.groups.read",
+     * 		  "okta.profilesources.import.run",
+     * 		  "okta.users.appAssignment.manage",
+     * 		  "okta.users.create",
+     * 		  "okta.users.credentials.expirePassword",
+     * 		  "okta.users.credentials.manage",
+     * 		  "okta.users.credentials.resetFactors",
+     * 		  "okta.users.credentials.resetPassword",
+     * 		  "okta.users.groupMembership.manage",
+     * 		  "okta.users.lifecycle.activate",
+     * 		  "okta.users.lifecycle.clearSessions",
+     * 		  "okta.users.lifecycle.deactivate",
+     * 		  "okta.users.lifecycle.delete",
+     * 		  "okta.users.lifecycle.manage",
+     * 		  "okta.users.lifecycle.suspend",
+     * 		  "okta.users.lifecycle.unlock",
+     * 		  "okta.users.lifecycle.unsuspend",
+     * 		  "okta.users.manage",
+     * 		  "okta.users.read",
+     * 		  "okta.users.userprofile.manage",
+     * 		  "okta.workflows.invoke".,
      */
     permissions?: pulumi.Input<pulumi.Input<string>[]>;
 }
@@ -148,47 +146,47 @@ export interface AdminRoleCustomState {
  */
 export interface AdminRoleCustomArgs {
     /**
-     * A human-readable description of the new Role.
+     * A human-readable description of the new Role
      */
     description: pulumi.Input<string>;
     /**
-     * The name given to the new Role.
+     * The name given to the new Role
      */
     label: pulumi.Input<string>;
     /**
      * The permissions that the new Role grants. At least one
-     * permission must be specified when creating custom role. Valid values: `"okta.authzServers.manage"`,
-     * `"okta.authzServers.read"`,
-     * `"okta.apps.assignment.manage"`,
-     * `"okta.apps.manage"`,
-     * `"okta.apps.read"`,
-     * `"okta.customizations.manage"`,
-     * `"okta.customizations.read"`,
-     * `"okta.groups.appAssignment.manage"`,
-     * `"okta.groups.create"`,
-     * `"okta.groups.manage"`,
-     * `"okta.groups.members.manage"`,
-     * `"okta.groups.read"`,
-     * `"okta.profilesources.import.run"`,
-     * `"okta.users.appAssignment.manage"`,
-     * `"okta.users.create"`,
-     * `"okta.users.credentials.expirePassword"`,
-     * `"okta.users.credentials.manage"`,
-     * `"okta.users.credentials.resetFactors"`,
-     * `"okta.users.credentials.resetPassword"`,
-     * `"okta.users.groupMembership.manage"`,
-     * `"okta.users.lifecycle.activate"`,
-     * `"okta.users.lifecycle.clearSessions"`,
-     * `"okta.users.lifecycle.deactivate"`,
-     * `"okta.users.lifecycle.delete"`,
-     * `"okta.users.lifecycle.manage"`,
-     * `"okta.users.lifecycle.suspend"`,
-     * `"okta.users.lifecycle.unlock"`,
-     * `"okta.users.lifecycle.unsuspend"`,
-     * `"okta.users.manage"`,
-     * `"okta.users.read"`,
-     * `"okta.users.userprofile.manage"`,
-     * `"okta.workflows.invoke"`.,
+     * 			permission must be specified when creating custom role. Valid values: "okta.authzServers.manage",
+     * 		  "okta.authzServers.read",
+     * 		  "okta.apps.assignment.manage",
+     * 		  "okta.apps.manage",
+     * 		  "okta.apps.read",
+     * 		  "okta.customizations.manage",
+     * 		  "okta.customizations.read",
+     * 		  "okta.groups.appAssignment.manage",
+     * 		  "okta.groups.create",
+     * 		  "okta.groups.manage",
+     * 		  "okta.groups.members.manage",
+     * 		  "okta.groups.read",
+     * 		  "okta.profilesources.import.run",
+     * 		  "okta.users.appAssignment.manage",
+     * 		  "okta.users.create",
+     * 		  "okta.users.credentials.expirePassword",
+     * 		  "okta.users.credentials.manage",
+     * 		  "okta.users.credentials.resetFactors",
+     * 		  "okta.users.credentials.resetPassword",
+     * 		  "okta.users.groupMembership.manage",
+     * 		  "okta.users.lifecycle.activate",
+     * 		  "okta.users.lifecycle.clearSessions",
+     * 		  "okta.users.lifecycle.deactivate",
+     * 		  "okta.users.lifecycle.delete",
+     * 		  "okta.users.lifecycle.manage",
+     * 		  "okta.users.lifecycle.suspend",
+     * 		  "okta.users.lifecycle.unlock",
+     * 		  "okta.users.lifecycle.unsuspend",
+     * 		  "okta.users.manage",
+     * 		  "okta.users.read",
+     * 		  "okta.users.userprofile.manage",
+     * 		  "okta.workflows.invoke".,
      */
     permissions?: pulumi.Input<pulumi.Input<string>[]>;
 }

package/adminRoleCustom.js

@@ -6,9 +6,9 @@ exports.AdminRoleCustom = void 0;
 const pulumi = require("@pulumi/pulumi");
 const utilities = require("./utilities");
 /**
- * These operations allow the creation and manipulation of custom roles as custom collections of permissions.
+ * Resource to manage administrative Role assignments for a User
  *
- * > **NOTE:** This an `Early Access` feature.
+ * These operations allow the creation and manipulation of custom roles as custom collections of permissions.
  *
  * ## Example Usage
  *
@@ -25,10 +25,8 @@ const utilities = require("./utilities");
  *
  * ## Import
  *
- * Okta Custom Admin Role can be imported via the Okta ID.
- *
  * ```sh
- * $ pulumi import okta:index/adminRoleCustom:AdminRoleCustom example <custom role id>
+ * $ pulumi import okta:index/adminRoleCustom:AdminRoleCustom example <custom role id&#62
  * ```
  */
 class AdminRoleCustom extends pulumi.CustomResource {

package/adminRoleCustom.js.map

@@ -1 +1 @@
-{"version":3,"file":"adminRoleCustom.js","sourceRoot":"","sources":["../adminRoleCustom.ts"],"names":[],"mappings":";AAAA,wFAAwF;AACxF,iFAAiF;;;AAEjF,yCAAyC;AACzC,yCAAyC;AAEzC;;;;;;;;;;;;;;;;;;;;;;;;;GAyBG;AACH,MAAa,eAAgB,SAAQ,MAAM,CAAC,cAAc;IACtD;;;;;;;;OAQG;IACI,MAAM,CAAC,GAAG,CAAC,IAAY,EAAE,EAA2B,EAAE,KAA4B,EAAE,IAAmC;QAC1H,OAAO,IAAI,eAAe,CAAC,IAAI,EAAO,KAAK,kCAAO,IAAI,KAAE,EAAE,EAAE,EAAE,IAAG,CAAC;IACtE,CAAC;IAKD;;;OAGG;IACI,MAAM,CAAC,UAAU,CAAC,GAAQ;QAC7B,IAAI,GAAG,KAAK,SAAS,IAAI,GAAG,KAAK,IAAI,EAAE;YACnC,OAAO,KAAK,CAAC;SAChB;QACD,OAAO,GAAG,CAAC,cAAc,CAAC,KAAK,eAAe,CAAC,YAAY,CAAC;IAChE,CAAC;IAuDD,YAAY,IAAY,EAAE,WAAwD,EAAE,IAAmC;QACnH,IAAI,cAAc,GAAkB,EAAE,CAAC;QACvC,IAAI,GAAG,IAAI,IAAI,EAAE,CAAC;QAClB,IAAI,IAAI,CAAC,EAAE,EAAE;YACT,MAAM,KAAK,GAAG,WAA+C,CAAC;YAC9D,cAAc,CAAC,aAAa,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,WAAW,CAAC,CAAC,CAAC,SAAS,CAAC;YACtE,cAAc,CAAC,OAAO,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1D,cAAc,CAAC,aAAa,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,WAAW,CAAC,CAAC,CAAC,SAAS,CAAC;SACzE;aAAM;YACH,MAAM,IAAI,GAAG,WAA8C,CAAC;YAC5D,IAAI,CAAC,CAAC,IAAI,IAAI,IAAI,CAAC,WAAW,KAAK,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBACxD,MAAM,IAAI,KAAK,CAAC,yCAAyC,CAAC,CAAC;aAC9D;YACD,IAAI,CAAC,CAAC,IAAI,IAAI,IAAI,CAAC,KAAK,KAAK,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBAClD,MAAM,IAAI,KAAK,CAAC,mCAAmC,CAAC,CAAC;aACxD;YACD,cAAc,CAAC,aAAa,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC,CAAC,SAAS,CAAC;YACpE,cAAc,CAAC,OAAO,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC;YACxD,cAAc,CAAC,aAAa,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC,CAAC,SAAS,CAAC;SACvE;QACD,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,CAAC,CAAC;QACnE,KAAK,CAAC,eAAe,CAAC,YAAY,EAAE,IAAI,EAAE,cAAc,EAAE,IAAI,CAAC,CAAC;IACpE,CAAC;;AAvGL,0CAwGC;AA1FG,gBAAgB;AACO,4BAAY,GAAG,4CAA4C,CAAC"}
+{"version":3,"file":"adminRoleCustom.js","sourceRoot":"","sources":["../adminRoleCustom.ts"],"names":[],"mappings":";AAAA,wFAAwF;AACxF,iFAAiF;;;AAEjF,yCAAyC;AACzC,yCAAyC;AAEzC;;;;;;;;;;;;;;;;;;;;;;;GAuBG;AACH,MAAa,eAAgB,SAAQ,MAAM,CAAC,cAAc;IACtD;;;;;;;;OAQG;IACI,MAAM,CAAC,GAAG,CAAC,IAAY,EAAE,EAA2B,EAAE,KAA4B,EAAE,IAAmC;QAC1H,OAAO,IAAI,eAAe,CAAC,IAAI,EAAO,KAAK,kCAAO,IAAI,KAAE,EAAE,EAAE,EAAE,IAAG,CAAC;IACtE,CAAC;IAKD;;;OAGG;IACI,MAAM,CAAC,UAAU,CAAC,GAAQ;QAC7B,IAAI,GAAG,KAAK,SAAS,IAAI,GAAG,KAAK,IAAI,EAAE;YACnC,OAAO,KAAK,CAAC;SAChB;QACD,OAAO,GAAG,CAAC,cAAc,CAAC,KAAK,eAAe,CAAC,YAAY,CAAC;IAChE,CAAC;IAuDD,YAAY,IAAY,EAAE,WAAwD,EAAE,IAAmC;QACnH,IAAI,cAAc,GAAkB,EAAE,CAAC;QACvC,IAAI,GAAG,IAAI,IAAI,EAAE,CAAC;QAClB,IAAI,IAAI,CAAC,EAAE,EAAE;YACT,MAAM,KAAK,GAAG,WAA+C,CAAC;YAC9D,cAAc,CAAC,aAAa,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,WAAW,CAAC,CAAC,CAAC,SAAS,CAAC;YACtE,cAAc,CAAC,OAAO,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1D,cAAc,CAAC,aAAa,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,WAAW,CAAC,CAAC,CAAC,SAAS,CAAC;SACzE;aAAM;YACH,MAAM,IAAI,GAAG,WAA8C,CAAC;YAC5D,IAAI,CAAC,CAAC,IAAI,IAAI,IAAI,CAAC,WAAW,KAAK,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBACxD,MAAM,IAAI,KAAK,CAAC,yCAAyC,CAAC,CAAC;aAC9D;YACD,IAAI,CAAC,CAAC,IAAI,IAAI,IAAI,CAAC,KAAK,KAAK,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBAClD,MAAM,IAAI,KAAK,CAAC,mCAAmC,CAAC,CAAC;aACxD;YACD,cAAc,CAAC,aAAa,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC,CAAC,SAAS,CAAC;YACpE,cAAc,CAAC,OAAO,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC;YACxD,cAAc,CAAC,aAAa,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC,CAAC,SAAS,CAAC;SACvE;QACD,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,CAAC,CAAC;QACnE,KAAK,CAAC,eAAe,CAAC,YAAY,EAAE,IAAI,EAAE,cAAc,EAAE,IAAI,CAAC,CAAC;IACpE,CAAC;;AAvGL,0CAwGC;AA1FG,gBAAgB;AACO,4BAAY,GAAG,4CAA4C,CAAC"}

package/adminRoleCustomAssignments.d.ts

@@ -1,15 +1,12 @@
 import * as pulumi from "@pulumi/pulumi";
 /**
- * This resource allows the assignment and unassignment of Custom Roles. The `members` field supports these type of resources:
- *  - Groups
- *  - Users
+ * Resource to manage the assignment and unassignment of Custom Roles
+ * These operations allow the creation and manipulation of custom roles as custom collections of permissions.
  *
- * > **NOTE:** This an `Early Access` feature.
+ * > **NOTE:** This an Early Access feature.
  *
  * ## Import
  *
- * Okta Custom Admin Role Assignments can be imported via the Okta ID.
- *
  * ```sh
  * $ pulumi import okta:index/adminRoleCustomAssignments:AdminRoleCustomAssignments example <resource_set_id>/<custom_role_id>
  * ```
@@ -31,16 +28,15 @@ export declare class AdminRoleCustomAssignments extends pulumi.CustomResource {
      */
     static isInstance(obj: any): obj is AdminRoleCustomAssignments;
     /**
-     * ID of the Custom Role.
+     * ID of the Custom Role
      */
     readonly customRoleId: pulumi.Output<string>;
     /**
-     * The hrefs that point to User(s) and/or Group(s) that receive the Role. At least one
-     * permission must be specified when creating custom role.
+     * The hrefs that point to User(s) and/or Group(s) that receive the Role
      */
     readonly members: pulumi.Output<string[] | undefined>;
     /**
-     * ID of the target Resource Set.
+     * ID of the target Resource Set
      */
     readonly resourceSetId: pulumi.Output<string>;
     /**
@@ -57,16 +53,15 @@ export declare class AdminRoleCustomAssignments extends pulumi.CustomResource {
  */
 export interface AdminRoleCustomAssignmentsState {
     /**
-     * ID of the Custom Role.
+     * ID of the Custom Role
      */
     customRoleId?: pulumi.Input<string>;
     /**
-     * The hrefs that point to User(s) and/or Group(s) that receive the Role. At least one
-     * permission must be specified when creating custom role.
+     * The hrefs that point to User(s) and/or Group(s) that receive the Role
      */
     members?: pulumi.Input<pulumi.Input<string>[]>;
     /**
-     * ID of the target Resource Set.
+     * ID of the target Resource Set
      */
     resourceSetId?: pulumi.Input<string>;
 }
@@ -75,16 +70,15 @@ export interface AdminRoleCustomAssignmentsState {
  */
 export interface AdminRoleCustomAssignmentsArgs {
     /**
-     * ID of the Custom Role.
+     * ID of the Custom Role
      */
     customRoleId: pulumi.Input<string>;
     /**
-     * The hrefs that point to User(s) and/or Group(s) that receive the Role. At least one
-     * permission must be specified when creating custom role.
+     * The hrefs that point to User(s) and/or Group(s) that receive the Role
      */
     members?: pulumi.Input<pulumi.Input<string>[]>;
     /**
-     * ID of the target Resource Set.
+     * ID of the target Resource Set
      */
     resourceSetId: pulumi.Input<string>;
 }

package/adminRoleCustomAssignments.js

@@ -6,16 +6,13 @@ exports.AdminRoleCustomAssignments = void 0;
 const pulumi = require("@pulumi/pulumi");
 const utilities = require("./utilities");
 /**
- * This resource allows the assignment and unassignment of Custom Roles. The `members` field supports these type of resources:
- *  - Groups
- *  - Users
+ * Resource to manage the assignment and unassignment of Custom Roles
+ * These operations allow the creation and manipulation of custom roles as custom collections of permissions.
  *
- * > **NOTE:** This an `Early Access` feature.
+ * > **NOTE:** This an Early Access feature.
  *
  * ## Import
  *
- * Okta Custom Admin Role Assignments can be imported via the Okta ID.
- *
  * ```sh
  * $ pulumi import okta:index/adminRoleCustomAssignments:AdminRoleCustomAssignments example <resource_set_id>/<custom_role_id>
  * ```

package/adminRoleCustomAssignments.js.map

@@ -1 +1 @@
-{"version":3,"file":"adminRoleCustomAssignments.js","sourceRoot":"","sources":["../adminRoleCustomAssignments.ts"],"names":[],"mappings":";AAAA,wFAAwF;AACxF,iFAAiF;;;AAEjF,yCAAyC;AACzC,yCAAyC;AAEzC;;;;;;;;;;;;;;GAcG;AACH,MAAa,0BAA2B,SAAQ,MAAM,CAAC,cAAc;IACjE;;;;;;;;OAQG;IACI,MAAM,CAAC,GAAG,CAAC,IAAY,EAAE,EAA2B,EAAE,KAAuC,EAAE,IAAmC;QACrI,OAAO,IAAI,0BAA0B,CAAC,IAAI,EAAO,KAAK,kCAAO,IAAI,KAAE,EAAE,EAAE,EAAE,IAAG,CAAC;IACjF,CAAC;IAKD;;;OAGG;IACI,MAAM,CAAC,UAAU,CAAC,GAAQ;QAC7B,IAAI,GAAG,KAAK,SAAS,IAAI,GAAG,KAAK,IAAI,EAAE;YACnC,OAAO,KAAK,CAAC;SAChB;QACD,OAAO,GAAG,CAAC,cAAc,CAAC,KAAK,0BAA0B,CAAC,YAAY,CAAC;IAC3E,CAAC;IAwBD,YAAY,IAAY,EAAE,WAA8E,EAAE,IAAmC;QACzI,IAAI,cAAc,GAAkB,EAAE,CAAC;QACvC,IAAI,GAAG,IAAI,IAAI,EAAE,CAAC;QAClB,IAAI,IAAI,CAAC,EAAE,EAAE;YACT,MAAM,KAAK,GAAG,WAA0D,CAAC;YACzE,cAAc,CAAC,cAAc,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,YAAY,CAAC,CAAC,CAAC,SAAS,CAAC;YACxE,cAAc,CAAC,SAAS,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,SAAS,CAAC;YAC9D,cAAc,CAAC,eAAe,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,aAAa,CAAC,CAAC,CAAC,SAAS,CAAC;SAC7E;aAAM;YACH,MAAM,IAAI,GAAG,WAAyD,CAAC;YACvE,IAAI,CAAC,CAAC,IAAI,IAAI,IAAI,CAAC,YAAY,KAAK,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBACzD,MAAM,IAAI,KAAK,CAAC,0CAA0C,CAAC,CAAC;aAC/D;YACD,IAAI,CAAC,CAAC,IAAI,IAAI,IAAI,CAAC,aAAa,KAAK,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBAC1D,MAAM,IAAI,KAAK,CAAC,2CAA2C,CAAC,CAAC;aAChE;YACD,cAAc,CAAC,cAAc,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC,CAAC,SAAS,CAAC;YACtE,cAAc,CAAC,SAAS,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,CAAC,SAAS,CAAC;YAC5D,cAAc,CAAC,eAAe,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,aAAa,CAAC,CAAC,CAAC,SAAS,CAAC;SAC3E;QACD,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,CAAC,CAAC;QACnE,KAAK,CAAC,0BAA0B,CAAC,YAAY,EAAE,IAAI,EAAE,cAAc,EAAE,IAAI,CAAC,CAAC;IAC/E,CAAC;;AAxEL,gEAyEC;AA3DG,gBAAgB;AACO,uCAAY,GAAG,kEAAkE,CAAC"}
+{"version":3,"file":"adminRoleCustomAssignments.js","sourceRoot":"","sources":["../adminRoleCustomAssignments.ts"],"names":[],"mappings":";AAAA,wFAAwF;AACxF,iFAAiF;;;AAEjF,yCAAyC;AACzC,yCAAyC;AAEzC;;;;;;;;;;;GAWG;AACH,MAAa,0BAA2B,SAAQ,MAAM,CAAC,cAAc;IACjE;;;;;;;;OAQG;IACI,MAAM,CAAC,GAAG,CAAC,IAAY,EAAE,EAA2B,EAAE,KAAuC,EAAE,IAAmC;QACrI,OAAO,IAAI,0BAA0B,CAAC,IAAI,EAAO,KAAK,kCAAO,IAAI,KAAE,EAAE,EAAE,EAAE,IAAG,CAAC;IACjF,CAAC;IAKD;;;OAGG;IACI,MAAM,CAAC,UAAU,CAAC,GAAQ;QAC7B,IAAI,GAAG,KAAK,SAAS,IAAI,GAAG,KAAK,IAAI,EAAE;YACnC,OAAO,KAAK,CAAC;SAChB;QACD,OAAO,GAAG,CAAC,cAAc,CAAC,KAAK,0BAA0B,CAAC,YAAY,CAAC;IAC3E,CAAC;IAuBD,YAAY,IAAY,EAAE,WAA8E,EAAE,IAAmC;QACzI,IAAI,cAAc,GAAkB,EAAE,CAAC;QACvC,IAAI,GAAG,IAAI,IAAI,EAAE,CAAC;QAClB,IAAI,IAAI,CAAC,EAAE,EAAE;YACT,MAAM,KAAK,GAAG,WAA0D,CAAC;YACzE,cAAc,CAAC,cAAc,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,YAAY,CAAC,CAAC,CAAC,SAAS,CAAC;YACxE,cAAc,CAAC,SAAS,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,SAAS,CAAC;YAC9D,cAAc,CAAC,eAAe,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,aAAa,CAAC,CAAC,CAAC,SAAS,CAAC;SAC7E;aAAM;YACH,MAAM,IAAI,GAAG,WAAyD,CAAC;YACvE,IAAI,CAAC,CAAC,IAAI,IAAI,IAAI,CAAC,YAAY,KAAK,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBACzD,MAAM,IAAI,KAAK,CAAC,0CAA0C,CAAC,CAAC;aAC/D;YACD,IAAI,CAAC,CAAC,IAAI,IAAI,IAAI,CAAC,aAAa,KAAK,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBAC1D,MAAM,IAAI,KAAK,CAAC,2CAA2C,CAAC,CAAC;aAChE;YACD,cAAc,CAAC,cAAc,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC,CAAC,SAAS,CAAC;YACtE,cAAc,CAAC,SAAS,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,CAAC,SAAS,CAAC;YAC5D,cAAc,CAAC,eAAe,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,aAAa,CAAC,CAAC,CAAC,SAAS,CAAC;SAC3E;QACD,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,CAAC,CAAC;QACnE,KAAK,CAAC,0BAA0B,CAAC,YAAY,EAAE,IAAI,EAAE,cAAc,EAAE,IAAI,CAAC,CAAC;IAC/E,CAAC;;AAvEL,gEAwEC;AA1DG,gBAAgB;AACO,uCAAY,GAAG,kEAAkE,CAAC"}

package/adminRoleTargets.d.ts

@@ -23,8 +23,6 @@ import * as pulumi from "@pulumi/pulumi";
  *
  * ## Import
  *
- * Okta Admin Role Targets can be imported via the Okta ID.
- *
  * ```sh
  * $ pulumi import okta:index/adminRoleTargets:AdminRoleTargets example <user id>/<role type>
  * ```
@@ -46,23 +44,23 @@ export declare class AdminRoleTargets extends pulumi.CustomResource {
      */
     static isInstance(obj: any): obj is AdminRoleTargets;
     /**
-     * List of app names (name represents set of app instances) or a combination of app name and app instance ID (like 'salesforce' or 'facebook.0oapsqQ6dv19pqyEo0g3').
+     * List of app names (name represents set of app instances) or a combination of app name and app instance ID (like 'salesforce' or 'facebook.0oapsqQ6dv19pqyEo0g3')
      */
     readonly apps: pulumi.Output<string[] | undefined>;
     /**
-     * List of group IDs. Conflicts with `apps`.
+     * List of group IDs. Conflicts with apps
      */
     readonly groups: pulumi.Output<string[] | undefined>;
     /**
-     * Role ID.
+     * ID of a role
      */
     readonly roleId: pulumi.Output<string>;
     /**
-     * Name of the role associated with the user. See [API Docs](https://developer.okta.com/docs/reference/api/roles/#role-types).
+     * Type of the role that is assigned to the user and supports optional targets. See [API Docs](https://developer.okta.com/docs/reference/api/roles/#role-types)
      */
     readonly roleType: pulumi.Output<string>;
     /**
-     * ID of the user.
+     * User associated with the role
      */
     readonly userId: pulumi.Output<string>;
     /**
@@ -79,23 +77,23 @@ export declare class AdminRoleTargets extends pulumi.CustomResource {
  */
 export interface AdminRoleTargetsState {
     /**
-     * List of app names (name represents set of app instances) or a combination of app name and app instance ID (like 'salesforce' or 'facebook.0oapsqQ6dv19pqyEo0g3').
+     * List of app names (name represents set of app instances) or a combination of app name and app instance ID (like 'salesforce' or 'facebook.0oapsqQ6dv19pqyEo0g3')
      */
     apps?: pulumi.Input<pulumi.Input<string>[]>;
     /**
-     * List of group IDs. Conflicts with `apps`.
+     * List of group IDs. Conflicts with apps
      */
     groups?: pulumi.Input<pulumi.Input<string>[]>;
     /**
-     * Role ID.
+     * ID of a role
      */
     roleId?: pulumi.Input<string>;
     /**
-     * Name of the role associated with the user. See [API Docs](https://developer.okta.com/docs/reference/api/roles/#role-types).
+     * Type of the role that is assigned to the user and supports optional targets. See [API Docs](https://developer.okta.com/docs/reference/api/roles/#role-types)
      */
     roleType?: pulumi.Input<string>;
     /**
-     * ID of the user.
+     * User associated with the role
      */
     userId?: pulumi.Input<string>;
 }
@@ -104,19 +102,19 @@ export interface AdminRoleTargetsState {
  */
 export interface AdminRoleTargetsArgs {
     /**
-     * List of app names (name represents set of app instances) or a combination of app name and app instance ID (like 'salesforce' or 'facebook.0oapsqQ6dv19pqyEo0g3').
+     * List of app names (name represents set of app instances) or a combination of app name and app instance ID (like 'salesforce' or 'facebook.0oapsqQ6dv19pqyEo0g3')
      */
     apps?: pulumi.Input<pulumi.Input<string>[]>;
     /**
-     * List of group IDs. Conflicts with `apps`.
+     * List of group IDs. Conflicts with apps
      */
     groups?: pulumi.Input<pulumi.Input<string>[]>;
     /**
-     * Name of the role associated with the user. See [API Docs](https://developer.okta.com/docs/reference/api/roles/#role-types).
+     * Type of the role that is assigned to the user and supports optional targets. See [API Docs](https://developer.okta.com/docs/reference/api/roles/#role-types)
      */
     roleType: pulumi.Input<string>;
     /**
-     * ID of the user.
+     * User associated with the role
      */
     userId: pulumi.Input<string>;
 }

package/adminRoleTargets.js

@@ -29,8 +29,6 @@ const utilities = require("./utilities");
  *
  * ## Import
  *
- * Okta Admin Role Targets can be imported via the Okta ID.
- *
  * ```sh
  * $ pulumi import okta:index/adminRoleTargets:AdminRoleTargets example <user id>/<role type>
  * ```

package/adminRoleTargets.js.map

@@ -1 +1 @@
-{"version":3,"file":"adminRoleTargets.js","sourceRoot":"","sources":["../adminRoleTargets.ts"],"names":[],"mappings":";AAAA,wFAAwF;AACxF,iFAAiF;;;AAEjF,yCAAyC;AACzC,yCAAyC;AAEzC;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA6BG;AACH,MAAa,gBAAiB,SAAQ,MAAM,CAAC,cAAc;IACvD;;;;;;;;OAQG;IACI,MAAM,CAAC,GAAG,CAAC,IAAY,EAAE,EAA2B,EAAE,KAA6B,EAAE,IAAmC;QAC3H,OAAO,IAAI,gBAAgB,CAAC,IAAI,EAAO,KAAK,kCAAO,IAAI,KAAE,EAAE,EAAE,EAAE,IAAG,CAAC;IACvE,CAAC;IAKD;;;OAGG;IACI,MAAM,CAAC,UAAU,CAAC,GAAQ;QAC7B,IAAI,GAAG,KAAK,SAAS,IAAI,GAAG,KAAK,IAAI,EAAE;YACnC,OAAO,KAAK,CAAC;SAChB;QACD,OAAO,GAAG,CAAC,cAAc,CAAC,KAAK,gBAAgB,CAAC,YAAY,CAAC;IACjE,CAAC;IA+BD,YAAY,IAAY,EAAE,WAA0D,EAAE,IAAmC;QACrH,IAAI,cAAc,GAAkB,EAAE,CAAC;QACvC,IAAI,GAAG,IAAI,IAAI,EAAE,CAAC;QAClB,IAAI,IAAI,CAAC,EAAE,EAAE;YACT,MAAM,KAAK,GAAG,WAAgD,CAAC;YAC/D,cAAc,CAAC,MAAM,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,SAAS,CAAC;YACxD,cAAc,CAAC,QAAQ,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC;YAC5D,cAAc,CAAC,QAAQ,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC;YAC5D,cAAc,CAAC,UAAU,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAC,CAAC,SAAS,CAAC;YAChE,cAAc,CAAC,QAAQ,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC;SAC/D;aAAM;YACH,MAAM,IAAI,GAAG,WAA+C,CAAC;YAC7D,IAAI,CAAC,CAAC,IAAI,IAAI,IAAI,CAAC,QAAQ,KAAK,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBACrD,MAAM,IAAI,KAAK,CAAC,sCAAsC,CAAC,CAAC;aAC3D;YACD,IAAI,CAAC,CAAC,IAAI,IAAI,IAAI,CAAC,MAAM,KAAK,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBACnD,MAAM,IAAI,KAAK,CAAC,oCAAoC,CAAC,CAAC;aACzD;YACD,cAAc,CAAC,MAAM,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC,SAAS,CAAC;YACtD,cAAc,CAAC,QAAQ,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1D,cAAc,CAAC,UAAU,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC,CAAC,SAAS,CAAC;YAC9D,cAAc,CAAC,QAAQ,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1D,cAAc,CAAC,QAAQ,CAAC,GAAG,SAAS,CAAC,OAAO,CAAC;SAChD;QACD,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,CAAC,CAAC;QACnE,KAAK,CAAC,gBAAgB,CAAC,YAAY,EAAE,IAAI,EAAE,cAAc,EAAE,IAAI,CAAC,CAAC;IACrE,CAAC;;AAnFL,4CAoFC;AAtEG,gBAAgB;AACO,6BAAY,GAAG,8CAA8C,CAAC"}
+{"version":3,"file":"adminRoleTargets.js","sourceRoot":"","sources":["../adminRoleTargets.ts"],"names":[],"mappings":";AAAA,wFAAwF;AACxF,iFAAiF;;;AAEjF,yCAAyC;AACzC,yCAAyC;AAEzC;;;;;;;;;;;;;;;;;;;;;;;;;;;GA2BG;AACH,MAAa,gBAAiB,SAAQ,MAAM,CAAC,cAAc;IACvD;;;;;;;;OAQG;IACI,MAAM,CAAC,GAAG,CAAC,IAAY,EAAE,EAA2B,EAAE,KAA6B,EAAE,IAAmC;QAC3H,OAAO,IAAI,gBAAgB,CAAC,IAAI,EAAO,KAAK,kCAAO,IAAI,KAAE,EAAE,EAAE,EAAE,IAAG,CAAC;IACvE,CAAC;IAKD;;;OAGG;IACI,MAAM,CAAC,UAAU,CAAC,GAAQ;QAC7B,IAAI,GAAG,KAAK,SAAS,IAAI,GAAG,KAAK,IAAI,EAAE;YACnC,OAAO,KAAK,CAAC;SAChB;QACD,OAAO,GAAG,CAAC,cAAc,CAAC,KAAK,gBAAgB,CAAC,YAAY,CAAC;IACjE,CAAC;IA+BD,YAAY,IAAY,EAAE,WAA0D,EAAE,IAAmC;QACrH,IAAI,cAAc,GAAkB,EAAE,CAAC;QACvC,IAAI,GAAG,IAAI,IAAI,EAAE,CAAC;QAClB,IAAI,IAAI,CAAC,EAAE,EAAE;YACT,MAAM,KAAK,GAAG,WAAgD,CAAC;YAC/D,cAAc,CAAC,MAAM,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,SAAS,CAAC;YACxD,cAAc,CAAC,QAAQ,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC;YAC5D,cAAc,CAAC,QAAQ,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC;YAC5D,cAAc,CAAC,UAAU,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAC,CAAC,SAAS,CAAC;YAChE,cAAc,CAAC,QAAQ,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC;SAC/D;aAAM;YACH,MAAM,IAAI,GAAG,WAA+C,CAAC;YAC7D,IAAI,CAAC,CAAC,IAAI,IAAI,IAAI,CAAC,QAAQ,KAAK,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBACrD,MAAM,IAAI,KAAK,CAAC,sCAAsC,CAAC,CAAC;aAC3D;YACD,IAAI,CAAC,CAAC,IAAI,IAAI,IAAI,CAAC,MAAM,KAAK,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBACnD,MAAM,IAAI,KAAK,CAAC,oCAAoC,CAAC,CAAC;aACzD;YACD,cAAc,CAAC,MAAM,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC,SAAS,CAAC;YACtD,cAAc,CAAC,QAAQ,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1D,cAAc,CAAC,UAAU,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC,CAAC,SAAS,CAAC;YAC9D,cAAc,CAAC,QAAQ,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1D,cAAc,CAAC,QAAQ,CAAC,GAAG,SAAS,CAAC,OAAO,CAAC;SAChD;QACD,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,CAAC,CAAC;QACnE,KAAK,CAAC,gBAAgB,CAAC,YAAY,EAAE,IAAI,EAAE,cAAc,EAAE,IAAI,CAAC,CAAC;IACrE,CAAC;;AAnFL,4CAoFC;AAtEG,gBAAgB;AACO,6BAAY,GAAG,8CAA8C,CAAC"}

package/app/accessPolicyAssignment.d.ts

@@ -1,5 +1,9 @@
 import * as pulumi from "@pulumi/pulumi";
 /**
+ * Manages assignment of Access Policy to an Application.
+ *
+ * **Warning**: do not use as this will update okta_app_*.authentication_policy and vice versa
+ *
  * Assigns an access policy (colloquially known as a sign-on policy and/or an
  * authentication policy) to an application. This resource does not perform true
  * delete as it will not delete an application and the app's access policy can't be
@@ -13,9 +17,26 @@ import * as pulumi from "@pulumi/pulumi";
  * policy_, in the public API the policy is of type
  * [`ACCESS_POLICY`](https://developer.okta.com/docs/reference/api/policy/#policy-object).
  *
- * ## Import
+ * ## Example Usage
+ *
+ * ```typescript
+ * import * as pulumi from "@pulumi/pulumi";
+ * import * as okta from "@pulumi/okta";
  *
- * An Okta App's Access Policy Assignment can be imported via its associated Application ID.
+ * const access = okta.policy.getPolicy({
+ *     name: "Any two factors",
+ *     type: "ACCESS_POLICY",
+ * });
+ * const example = okta.app.getApp({
+ *     label: "Example App",
+ * });
+ * const assignment = new okta.app.AccessPolicyAssignment("assignment", {
+ *     appId: example.then(example => example.id),
+ *     policyId: access.then(access => access.id),
+ * });
+ * ```
+ *
+ * ## Import
  *
  * ```sh
  * $ pulumi import okta:app/accessPolicyAssignment:AccessPolicyAssignment example <app id>

package/app/accessPolicyAssignment.js

@@ -6,6 +6,10 @@ exports.AccessPolicyAssignment = void 0;
 const pulumi = require("@pulumi/pulumi");
 const utilities = require("../utilities");
 /**
+ * Manages assignment of Access Policy to an Application.
+ *
+ * **Warning**: do not use as this will update okta_app_*.authentication_policy and vice versa
+ *
  * Assigns an access policy (colloquially known as a sign-on policy and/or an
  * authentication policy) to an application. This resource does not perform true
  * delete as it will not delete an application and the app's access policy can't be
@@ -19,9 +23,26 @@ const utilities = require("../utilities");
  * policy_, in the public API the policy is of type
  * [`ACCESS_POLICY`](https://developer.okta.com/docs/reference/api/policy/#policy-object).
  *
- * ## Import
+ * ## Example Usage
+ *
+ * ```typescript
+ * import * as pulumi from "@pulumi/pulumi";
+ * import * as okta from "@pulumi/okta";
  *
- * An Okta App's Access Policy Assignment can be imported via its associated Application ID.
+ * const access = okta.policy.getPolicy({
+ *     name: "Any two factors",
+ *     type: "ACCESS_POLICY",
+ * });
+ * const example = okta.app.getApp({
+ *     label: "Example App",
+ * });
+ * const assignment = new okta.app.AccessPolicyAssignment("assignment", {
+ *     appId: example.then(example => example.id),
+ *     policyId: access.then(access => access.id),
+ * });
+ * ```
+ *
+ * ## Import
  *
  * ```sh
  * $ pulumi import okta:app/accessPolicyAssignment:AccessPolicyAssignment example <app id>

package/app/accessPolicyAssignment.js.map

@@ -1 +1 @@
-{"version":3,"file":"accessPolicyAssignment.js","sourceRoot":"","sources":["../../app/accessPolicyAssignment.ts"],"names":[],"mappings":";AAAA,wFAAwF;AACxF,iFAAiF;;;AAEjF,yCAAyC;AACzC,0CAA0C;AAE1C;;;;;;;;;;;;;;;;;;;;;GAqBG;AACH,MAAa,sBAAuB,SAAQ,MAAM,CAAC,cAAc;IAC7D;;;;;;;;OAQG;IACI,MAAM,CAAC,GAAG,CAAC,IAAY,EAAE,EAA2B,EAAE,KAAmC,EAAE,IAAmC;QACjI,OAAO,IAAI,sBAAsB,CAAC,IAAI,EAAO,KAAK,kCAAO,IAAI,KAAE,EAAE,EAAE,EAAE,IAAG,CAAC;IAC7E,CAAC;IAKD;;;OAGG;IACI,MAAM,CAAC,UAAU,CAAC,GAAQ;QAC7B,IAAI,GAAG,KAAK,SAAS,IAAI,GAAG,KAAK,IAAI,EAAE;YACnC,OAAO,KAAK,CAAC;SAChB;QACD,OAAO,GAAG,CAAC,cAAc,CAAC,KAAK,sBAAsB,CAAC,YAAY,CAAC;IACvE,CAAC;IAmBD,YAAY,IAAY,EAAE,WAAsE,EAAE,IAAmC;QACjI,IAAI,cAAc,GAAkB,EAAE,CAAC;QACvC,IAAI,GAAG,IAAI,IAAI,EAAE,CAAC;QAClB,IAAI,IAAI,CAAC,EAAE,EAAE;YACT,MAAM,KAAK,GAAG,WAAsD,CAAC;YACrE,cAAc,CAAC,OAAO,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1D,cAAc,CAAC,UAAU,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAC,CAAC,SAAS,CAAC;SACnE;aAAM;YACH,MAAM,IAAI,GAAG,WAAqD,CAAC;YACnE,IAAI,CAAC,CAAC,IAAI,IAAI,IAAI,CAAC,KAAK,KAAK,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBAClD,MAAM,IAAI,KAAK,CAAC,mCAAmC,CAAC,CAAC;aACxD;YACD,IAAI,CAAC,CAAC,IAAI,IAAI,IAAI,CAAC,QAAQ,KAAK,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBACrD,MAAM,IAAI,KAAK,CAAC,sCAAsC,CAAC,CAAC;aAC3D;YACD,cAAc,CAAC,OAAO,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC;YACxD,cAAc,CAAC,UAAU,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC,CAAC,SAAS,CAAC;SACjE;QACD,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,CAAC,CAAC;QACnE,KAAK,CAAC,sBAAsB,CAAC,YAAY,EAAE,IAAI,EAAE,cAAc,EAAE,IAAI,CAAC,CAAC;IAC3E,CAAC;;AAjEL,wDAkEC;AApDG,gBAAgB;AACO,mCAAY,GAAG,wDAAwD,CAAC"}
+{"version":3,"file":"accessPolicyAssignment.js","sourceRoot":"","sources":["../../app/accessPolicyAssignment.ts"],"names":[],"mappings":";AAAA,wFAAwF;AACxF,iFAAiF;;;AAEjF,yCAAyC;AACzC,0CAA0C;AAE1C;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA0CG;AACH,MAAa,sBAAuB,SAAQ,MAAM,CAAC,cAAc;IAC7D;;;;;;;;OAQG;IACI,MAAM,CAAC,GAAG,CAAC,IAAY,EAAE,EAA2B,EAAE,KAAmC,EAAE,IAAmC;QACjI,OAAO,IAAI,sBAAsB,CAAC,IAAI,EAAO,KAAK,kCAAO,IAAI,KAAE,EAAE,EAAE,EAAE,IAAG,CAAC;IAC7E,CAAC;IAKD;;;OAGG;IACI,MAAM,CAAC,UAAU,CAAC,GAAQ;QAC7B,IAAI,GAAG,KAAK,SAAS,IAAI,GAAG,KAAK,IAAI,EAAE;YACnC,OAAO,KAAK,CAAC;SAChB;QACD,OAAO,GAAG,CAAC,cAAc,CAAC,KAAK,sBAAsB,CAAC,YAAY,CAAC;IACvE,CAAC;IAmBD,YAAY,IAAY,EAAE,WAAsE,EAAE,IAAmC;QACjI,IAAI,cAAc,GAAkB,EAAE,CAAC;QACvC,IAAI,GAAG,IAAI,IAAI,EAAE,CAAC;QAClB,IAAI,IAAI,CAAC,EAAE,EAAE;YACT,MAAM,KAAK,GAAG,WAAsD,CAAC;YACrE,cAAc,CAAC,OAAO,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1D,cAAc,CAAC,UAAU,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAC,CAAC,SAAS,CAAC;SACnE;aAAM;YACH,MAAM,IAAI,GAAG,WAAqD,CAAC;YACnE,IAAI,CAAC,CAAC,IAAI,IAAI,IAAI,CAAC,KAAK,KAAK,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBAClD,MAAM,IAAI,KAAK,CAAC,mCAAmC,CAAC,CAAC;aACxD;YACD,IAAI,CAAC,CAAC,IAAI,IAAI,IAAI,CAAC,QAAQ,KAAK,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBACrD,MAAM,IAAI,KAAK,CAAC,sCAAsC,CAAC,CAAC;aAC3D;YACD,cAAc,CAAC,OAAO,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC;YACxD,cAAc,CAAC,UAAU,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC,CAAC,SAAS,CAAC;SACjE;QACD,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,CAAC,CAAC;QACnE,KAAK,CAAC,sBAAsB,CAAC,YAAY,EAAE,IAAI,EAAE,cAAc,EAAE,IAAI,CAAC,CAAC;IAC3E,CAAC;;AAjEL,wDAkEC;AApDG,gBAAgB;AACO,mCAAY,GAAG,wDAAwD,CAAC"}