@pulumi/okta 6.0.0-alpha.1759992240 → 6.0.0-alpha.1768025445

package/auth/getServerClients.js

@@ -0,0 +1,58 @@
+"use strict";
+// *** WARNING: this file was generated by pulumi-language-nodejs. ***
+// *** Do not edit by hand unless you're certain you know what you are doing! ***
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.getServerClientsOutput = exports.getServerClients = void 0;
+const pulumi = require("@pulumi/pulumi");
+const utilities = require("../utilities");
+/**
+ * Get OAuth 2.0 refresh token information for an authorization server client from Okta.
+ *
+ * ## Example Usage
+ *
+ * ```typescript
+ * import * as pulumi from "@pulumi/pulumi";
+ * import * as okta from "@pulumi/okta";
+ *
+ * const example = okta.auth.getServerClients({
+ *     id: "oar123456abcdefghijklm",
+ *     authServerId: "aus123456abcdefghijklm",
+ *     clientId: "0oa123456abcdefghijklm",
+ * });
+ * ```
+ */
+function getServerClients(args, opts) {
+    opts = pulumi.mergeOptions(utilities.resourceOptsDefaults(), opts || {});
+    return pulumi.runtime.invoke("okta:auth/getServerClients:getServerClients", {
+        "authServerId": args.authServerId,
+        "clientId": args.clientId,
+        "id": args.id,
+    }, opts);
+}
+exports.getServerClients = getServerClients;
+/**
+ * Get OAuth 2.0 refresh token information for an authorization server client from Okta.
+ *
+ * ## Example Usage
+ *
+ * ```typescript
+ * import * as pulumi from "@pulumi/pulumi";
+ * import * as okta from "@pulumi/okta";
+ *
+ * const example = okta.auth.getServerClients({
+ *     id: "oar123456abcdefghijklm",
+ *     authServerId: "aus123456abcdefghijklm",
+ *     clientId: "0oa123456abcdefghijklm",
+ * });
+ * ```
+ */
+function getServerClientsOutput(args, opts) {
+    opts = pulumi.mergeOptions(utilities.resourceOptsDefaults(), opts || {});
+    return pulumi.runtime.invokeOutput("okta:auth/getServerClients:getServerClients", {
+        "authServerId": args.authServerId,
+        "clientId": args.clientId,
+        "id": args.id,
+    }, opts);
+}
+exports.getServerClientsOutput = getServerClientsOutput;
+//# sourceMappingURL=getServerClients.js.map

package/auth/getServerClients.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"getServerClients.js","sourceRoot":"","sources":["../../auth/getServerClients.ts"],"names":[],"mappings":";AAAA,sEAAsE;AACtE,iFAAiF;;;AAEjF,yCAAyC;AACzC,0CAA0C;AAE1C;;;;;;;;;;;;;;;GAeG;AACH,SAAgB,gBAAgB,CAAC,IAA0B,EAAE,IAA2B;IACpF,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,IAAI,EAAE,CAAC,CAAC;IACzE,OAAO,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,6CAA6C,EAAE;QACxE,cAAc,EAAE,IAAI,CAAC,YAAY;QACjC,UAAU,EAAE,IAAI,CAAC,QAAQ;QACzB,IAAI,EAAE,IAAI,CAAC,EAAE;KAChB,EAAE,IAAI,CAAC,CAAC;AACb,CAAC;AAPD,4CAOC;AAiED;;;;;;;;;;;;;;;GAeG;AACH,SAAgB,sBAAsB,CAAC,IAAgC,EAAE,IAAiC;IACtG,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,IAAI,EAAE,CAAC,CAAC;IACzE,OAAO,MAAM,CAAC,OAAO,CAAC,YAAY,CAAC,6CAA6C,EAAE;QAC9E,cAAc,EAAE,IAAI,CAAC,YAAY;QACjC,UAAU,EAAE,IAAI,CAAC,QAAQ;QACzB,IAAI,EAAE,IAAI,CAAC,EAAE;KAChB,EAAE,IAAI,CAAC,CAAC;AACb,CAAC;AAPD,wDAOC"}

package/auth/getServerKeys.d.ts

@@ -0,0 +1,113 @@
+import * as pulumi from "@pulumi/pulumi";
+/**
+ * Get a specific authorization server credential key from Okta. Authorization server keys are JSON Web Keys (JWK) used for signing tokens issued by the authorization server.
+ *
+ * This data source allows you to retrieve information about a specific key used by an authorization server for token signing operations.
+ *
+ * ## Example Usage
+ *
+ * ```typescript
+ * import * as pulumi from "@pulumi/pulumi";
+ * import * as okta from "@pulumi/okta";
+ *
+ * const example = okta.auth.getServerKeys({
+ *     authServerId: "aus123456789abcdefgh",
+ *     keyId: "abcdefghijk0123456789",
+ * });
+ * ```
+ *
+ * ## Notes
+ *
+ * - To find available key IDs for an authorization server, you can use the Okta Admin Console or make a direct API call to `/api/v1/authorizationServers/{authServerId}/credentials/keys`
+ * - The key ID (`kid`) is automatically generated by Okta and is unique within the authorization server
+ * - This data source is useful for retrieving key information for verification purposes or to reference in other configurations
+ */
+export declare function getServerKeys(args: GetServerKeysArgs, opts?: pulumi.InvokeOptions): Promise<GetServerKeysResult>;
+/**
+ * A collection of arguments for invoking getServerKeys.
+ */
+export interface GetServerKeysArgs {
+    /**
+     * The ID of the authorization server.
+     */
+    authServerId: string;
+    /**
+     * The ID of the certificate key.
+     */
+    keyId: string;
+}
+/**
+ * A collection of values returned by getServerKeys.
+ */
+export interface GetServerKeysResult {
+    /**
+     * The algorithm used with the Key. Typically "RS256" for RSA keys.
+     */
+    readonly alg: string;
+    /**
+     * The ID of the authorization server.
+     */
+    readonly authServerId: string;
+    /**
+     * RSA key value (public exponent) for Key binding. Typically "AQAB".
+     */
+    readonly e: string;
+    readonly id: string;
+    /**
+     * The ID of the certificate key.
+     */
+    readonly keyId: string;
+    /**
+     * Unique identifier for the key (Key ID).
+     */
+    readonly kid: string;
+    /**
+     * RSA modulus value that is used by both the public and private keys and provides a link between them.
+     */
+    readonly n: string;
+    /**
+     * The status of the key. An ACTIVE key is used to sign tokens issued by the authorization server. Supported values: `ACTIVE`, `NEXT`, or `EXPIRED`. A NEXT key is the next key that the authorization server uses to sign tokens when keys are rotated. The NEXT key might not be listed if it hasn't been generated. An EXPIRED key is the previous key that the authorization server used to sign tokens. The EXPIRED key might not be listed if no key has expired or the expired key was deleted.
+     */
+    readonly status: string;
+    /**
+     * Acceptable use of the key. Typically "sig" for signature operations.
+     */
+    readonly use: string;
+}
+/**
+ * Get a specific authorization server credential key from Okta. Authorization server keys are JSON Web Keys (JWK) used for signing tokens issued by the authorization server.
+ *
+ * This data source allows you to retrieve information about a specific key used by an authorization server for token signing operations.
+ *
+ * ## Example Usage
+ *
+ * ```typescript
+ * import * as pulumi from "@pulumi/pulumi";
+ * import * as okta from "@pulumi/okta";
+ *
+ * const example = okta.auth.getServerKeys({
+ *     authServerId: "aus123456789abcdefgh",
+ *     keyId: "abcdefghijk0123456789",
+ * });
+ * ```
+ *
+ * ## Notes
+ *
+ * - To find available key IDs for an authorization server, you can use the Okta Admin Console or make a direct API call to `/api/v1/authorizationServers/{authServerId}/credentials/keys`
+ * - The key ID (`kid`) is automatically generated by Okta and is unique within the authorization server
+ * - This data source is useful for retrieving key information for verification purposes or to reference in other configurations
+ */
+export declare function getServerKeysOutput(args: GetServerKeysOutputArgs, opts?: pulumi.InvokeOutputOptions): pulumi.Output<GetServerKeysResult>;
+/**
+ * A collection of arguments for invoking getServerKeys.
+ */
+export interface GetServerKeysOutputArgs {
+    /**
+     * The ID of the authorization server.
+     */
+    authServerId: pulumi.Input<string>;
+    /**
+     * The ID of the certificate key.
+     */
+    keyId: pulumi.Input<string>;
+}

package/auth/getServerKeys.js

@@ -0,0 +1,70 @@
+"use strict";
+// *** WARNING: this file was generated by pulumi-language-nodejs. ***
+// *** Do not edit by hand unless you're certain you know what you are doing! ***
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.getServerKeysOutput = exports.getServerKeys = void 0;
+const pulumi = require("@pulumi/pulumi");
+const utilities = require("../utilities");
+/**
+ * Get a specific authorization server credential key from Okta. Authorization server keys are JSON Web Keys (JWK) used for signing tokens issued by the authorization server.
+ *
+ * This data source allows you to retrieve information about a specific key used by an authorization server for token signing operations.
+ *
+ * ## Example Usage
+ *
+ * ```typescript
+ * import * as pulumi from "@pulumi/pulumi";
+ * import * as okta from "@pulumi/okta";
+ *
+ * const example = okta.auth.getServerKeys({
+ *     authServerId: "aus123456789abcdefgh",
+ *     keyId: "abcdefghijk0123456789",
+ * });
+ * ```
+ *
+ * ## Notes
+ *
+ * - To find available key IDs for an authorization server, you can use the Okta Admin Console or make a direct API call to `/api/v1/authorizationServers/{authServerId}/credentials/keys`
+ * - The key ID (`kid`) is automatically generated by Okta and is unique within the authorization server
+ * - This data source is useful for retrieving key information for verification purposes or to reference in other configurations
+ */
+function getServerKeys(args, opts) {
+    opts = pulumi.mergeOptions(utilities.resourceOptsDefaults(), opts || {});
+    return pulumi.runtime.invoke("okta:auth/getServerKeys:getServerKeys", {
+        "authServerId": args.authServerId,
+        "keyId": args.keyId,
+    }, opts);
+}
+exports.getServerKeys = getServerKeys;
+/**
+ * Get a specific authorization server credential key from Okta. Authorization server keys are JSON Web Keys (JWK) used for signing tokens issued by the authorization server.
+ *
+ * This data source allows you to retrieve information about a specific key used by an authorization server for token signing operations.
+ *
+ * ## Example Usage
+ *
+ * ```typescript
+ * import * as pulumi from "@pulumi/pulumi";
+ * import * as okta from "@pulumi/okta";
+ *
+ * const example = okta.auth.getServerKeys({
+ *     authServerId: "aus123456789abcdefgh",
+ *     keyId: "abcdefghijk0123456789",
+ * });
+ * ```
+ *
+ * ## Notes
+ *
+ * - To find available key IDs for an authorization server, you can use the Okta Admin Console or make a direct API call to `/api/v1/authorizationServers/{authServerId}/credentials/keys`
+ * - The key ID (`kid`) is automatically generated by Okta and is unique within the authorization server
+ * - This data source is useful for retrieving key information for verification purposes or to reference in other configurations
+ */
+function getServerKeysOutput(args, opts) {
+    opts = pulumi.mergeOptions(utilities.resourceOptsDefaults(), opts || {});
+    return pulumi.runtime.invokeOutput("okta:auth/getServerKeys:getServerKeys", {
+        "authServerId": args.authServerId,
+        "keyId": args.keyId,
+    }, opts);
+}
+exports.getServerKeysOutput = getServerKeysOutput;
+//# sourceMappingURL=getServerKeys.js.map

package/auth/getServerKeys.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"getServerKeys.js","sourceRoot":"","sources":["../../auth/getServerKeys.ts"],"names":[],"mappings":";AAAA,sEAAsE;AACtE,iFAAiF;;;AAEjF,yCAAyC;AACzC,0CAA0C;AAE1C;;;;;;;;;;;;;;;;;;;;;;GAsBG;AACH,SAAgB,aAAa,CAAC,IAAuB,EAAE,IAA2B;IAC9E,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,IAAI,EAAE,CAAC,CAAC;IACzE,OAAO,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,uCAAuC,EAAE;QAClE,cAAc,EAAE,IAAI,CAAC,YAAY;QACjC,OAAO,EAAE,IAAI,CAAC,KAAK;KACtB,EAAE,IAAI,CAAC,CAAC;AACb,CAAC;AAND,sCAMC;AAsDD;;;;;;;;;;;;;;;;;;;;;;GAsBG;AACH,SAAgB,mBAAmB,CAAC,IAA6B,EAAE,IAAiC;IAChG,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,IAAI,EAAE,CAAC,CAAC;IACzE,OAAO,MAAM,CAAC,OAAO,CAAC,YAAY,CAAC,uCAAuC,EAAE;QACxE,cAAc,EAAE,IAAI,CAAC,YAAY;QACjC,OAAO,EAAE,IAAI,CAAC,KAAK;KACtB,EAAE,IAAI,CAAC,CAAC;AACb,CAAC;AAND,kDAMC"}

package/auth/index.d.ts

@@ -1,6 +1,12 @@
 export { GetServerArgs, GetServerResult, GetServerOutputArgs } from "./getServer";
 export declare const getServer: typeof import("./getServer").getServer;
 export declare const getServerOutput: typeof import("./getServer").getServerOutput;
+export { GetServerClientsArgs, GetServerClientsResult, GetServerClientsOutputArgs } from "./getServerClients";
+export declare const getServerClients: typeof import("./getServerClients").getServerClients;
+export declare const getServerClientsOutput: typeof import("./getServerClients").getServerClientsOutput;
+export { GetServerKeysArgs, GetServerKeysResult, GetServerKeysOutputArgs } from "./getServerKeys";
+export declare const getServerKeys: typeof import("./getServerKeys").getServerKeys;
+export declare const getServerKeysOutput: typeof import("./getServerKeys").getServerKeysOutput;
 export { GetServerPolicyArgs, GetServerPolicyResult, GetServerPolicyOutputArgs } from "./getServerPolicy";
 export declare const getServerPolicy: typeof import("./getServerPolicy").getServerPolicy;
 export declare const getServerPolicyOutput: typeof import("./getServerPolicy").getServerPolicyOutput;

package/auth/index.js

@@ -2,12 +2,18 @@
 // *** WARNING: this file was generated by pulumi-language-nodejs. ***
 // *** Do not edit by hand unless you're certain you know what you are doing! ***
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.ServerScope = exports.ServerPolicyRule = exports.ServerPolicy = exports.ServerClaim = exports.Server = exports.getServerScopesOutput = exports.getServerScopes = exports.getServerPolicyOutput = exports.getServerPolicy = exports.getServerOutput = exports.getServer = void 0;
+exports.ServerScope = exports.ServerPolicyRule = exports.ServerPolicy = exports.ServerClaim = exports.Server = exports.getServerScopesOutput = exports.getServerScopes = exports.getServerPolicyOutput = exports.getServerPolicy = exports.getServerKeysOutput = exports.getServerKeys = exports.getServerClientsOutput = exports.getServerClients = exports.getServerOutput = exports.getServer = void 0;
 const pulumi = require("@pulumi/pulumi");
 const utilities = require("../utilities");
 exports.getServer = null;
 exports.getServerOutput = null;
 utilities.lazyLoad(exports, ["getServer", "getServerOutput"], () => require("./getServer"));
+exports.getServerClients = null;
+exports.getServerClientsOutput = null;
+utilities.lazyLoad(exports, ["getServerClients", "getServerClientsOutput"], () => require("./getServerClients"));
+exports.getServerKeys = null;
+exports.getServerKeysOutput = null;
+utilities.lazyLoad(exports, ["getServerKeys", "getServerKeysOutput"], () => require("./getServerKeys"));
 exports.getServerPolicy = null;
 exports.getServerPolicyOutput = null;
 utilities.lazyLoad(exports, ["getServerPolicy", "getServerPolicyOutput"], () => require("./getServerPolicy"));

package/auth/index.js.map

@@ -1 +1 @@
-{"version":3,"file":"index.js","sourceRoot":"","sources":["../../auth/index.ts"],"names":[],"mappings":";AAAA,sEAAsE;AACtE,iFAAiF;;;AAEjF,yCAAyC;AACzC,0CAA0C;AAI7B,QAAA,SAAS,GAA2C,IAAW,CAAC;AAChE,QAAA,eAAe,GAAiD,IAAW,CAAC;AACzF,SAAS,CAAC,QAAQ,CAAC,OAAO,EAAE,CAAC,WAAW,EAAC,iBAAiB,CAAC,EAAE,GAAG,EAAE,CAAC,OAAO,CAAC,aAAa,CAAC,CAAC,CAAC;AAG9E,QAAA,eAAe,GAAuD,IAAW,CAAC;AAClF,QAAA,qBAAqB,GAA6D,IAAW,CAAC;AAC3G,SAAS,CAAC,QAAQ,CAAC,OAAO,EAAE,CAAC,iBAAiB,EAAC,uBAAuB,CAAC,EAAE,GAAG,EAAE,CAAC,OAAO,CAAC,mBAAmB,CAAC,CAAC,CAAC;AAGhG,QAAA,eAAe,GAAuD,IAAW,CAAC;AAClF,QAAA,qBAAqB,GAA6D,IAAW,CAAC;AAC3G,SAAS,CAAC,QAAQ,CAAC,OAAO,EAAE,CAAC,iBAAiB,EAAC,uBAAuB,CAAC,EAAE,GAAG,EAAE,CAAC,OAAO,CAAC,mBAAmB,CAAC,CAAC,CAAC;AAIhG,QAAA,MAAM,GAAqC,IAAW,CAAC;AACpE,SAAS,CAAC,QAAQ,CAAC,OAAO,EAAE,CAAC,QAAQ,CAAC,EAAE,GAAG,EAAE,CAAC,OAAO,CAAC,UAAU,CAAC,CAAC,CAAC;AAItD,QAAA,WAAW,GAA+C,IAAW,CAAC;AACnF,SAAS,CAAC,QAAQ,CAAC,OAAO,EAAE,CAAC,aAAa,CAAC,EAAE,GAAG,EAAE,CAAC,OAAO,CAAC,eAAe,CAAC,CAAC,CAAC;AAIhE,QAAA,YAAY,GAAiD,IAAW,CAAC;AACtF,SAAS,CAAC,QAAQ,CAAC,OAAO,EAAE,CAAC,cAAc,CAAC,EAAE,GAAG,EAAE,CAAC,OAAO,CAAC,gBAAgB,CAAC,CAAC,CAAC;AAIlE,QAAA,gBAAgB,GAAyD,IAAW,CAAC;AAClG,SAAS,CAAC,QAAQ,CAAC,OAAO,EAAE,CAAC,kBAAkB,CAAC,EAAE,GAAG,EAAE,CAAC,OAAO,CAAC,oBAAoB,CAAC,CAAC,CAAC;AAI1E,QAAA,WAAW,GAA+C,IAAW,CAAC;AACnF,SAAS,CAAC,QAAQ,CAAC,OAAO,EAAE,CAAC,aAAa,CAAC,EAAE,GAAG,EAAE,CAAC,OAAO,CAAC,eAAe,CAAC,CAAC,CAAC;AAG7E,MAAM,OAAO,GAAG;IACZ,OAAO,EAAE,SAAS,CAAC,UAAU,EAAE;IAC/B,SAAS,EAAE,CAAC,IAAY,EAAE,IAAY,EAAE,GAAW,EAAmB,EAAE;QACpE,QAAQ,IAAI,EAAE;YACV,KAAK,yBAAyB;gBAC1B,OAAO,IAAI,cAAM,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YACpD,KAAK,mCAAmC;gBACpC,OAAO,IAAI,mBAAW,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YACzD,KAAK,qCAAqC;gBACtC,OAAO,IAAI,oBAAY,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YAC1D,KAAK,6CAA6C;gBAC9C,OAAO,IAAI,wBAAgB,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YAC9D,KAAK,mCAAmC;gBACpC,OAAO,IAAI,mBAAW,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YACzD;gBACI,MAAM,IAAI,KAAK,CAAC,yBAAyB,IAAI,EAAE,CAAC,CAAC;SACxD;IACL,CAAC;CACJ,CAAC;AACF,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,MAAM,EAAE,aAAa,EAAE,OAAO,CAAC,CAAA;AACrE,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,MAAM,EAAE,kBAAkB,EAAE,OAAO,CAAC,CAAA;AAC1E,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,MAAM,EAAE,mBAAmB,EAAE,OAAO,CAAC,CAAA;AAC3E,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,MAAM,EAAE,uBAAuB,EAAE,OAAO,CAAC,CAAA;AAC/E,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,MAAM,EAAE,kBAAkB,EAAE,OAAO,CAAC,CAAA"}
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../auth/index.ts"],"names":[],"mappings":";AAAA,sEAAsE;AACtE,iFAAiF;;;AAEjF,yCAAyC;AACzC,0CAA0C;AAI7B,QAAA,SAAS,GAA2C,IAAW,CAAC;AAChE,QAAA,eAAe,GAAiD,IAAW,CAAC;AACzF,SAAS,CAAC,QAAQ,CAAC,OAAO,EAAE,CAAC,WAAW,EAAC,iBAAiB,CAAC,EAAE,GAAG,EAAE,CAAC,OAAO,CAAC,aAAa,CAAC,CAAC,CAAC;AAG9E,QAAA,gBAAgB,GAAyD,IAAW,CAAC;AACrF,QAAA,sBAAsB,GAA+D,IAAW,CAAC;AAC9G,SAAS,CAAC,QAAQ,CAAC,OAAO,EAAE,CAAC,kBAAkB,EAAC,wBAAwB,CAAC,EAAE,GAAG,EAAE,CAAC,OAAO,CAAC,oBAAoB,CAAC,CAAC,CAAC;AAGnG,QAAA,aAAa,GAAmD,IAAW,CAAC;AAC5E,QAAA,mBAAmB,GAAyD,IAAW,CAAC;AACrG,SAAS,CAAC,QAAQ,CAAC,OAAO,EAAE,CAAC,eAAe,EAAC,qBAAqB,CAAC,EAAE,GAAG,EAAE,CAAC,OAAO,CAAC,iBAAiB,CAAC,CAAC,CAAC;AAG1F,QAAA,eAAe,GAAuD,IAAW,CAAC;AAClF,QAAA,qBAAqB,GAA6D,IAAW,CAAC;AAC3G,SAAS,CAAC,QAAQ,CAAC,OAAO,EAAE,CAAC,iBAAiB,EAAC,uBAAuB,CAAC,EAAE,GAAG,EAAE,CAAC,OAAO,CAAC,mBAAmB,CAAC,CAAC,CAAC;AAGhG,QAAA,eAAe,GAAuD,IAAW,CAAC;AAClF,QAAA,qBAAqB,GAA6D,IAAW,CAAC;AAC3G,SAAS,CAAC,QAAQ,CAAC,OAAO,EAAE,CAAC,iBAAiB,EAAC,uBAAuB,CAAC,EAAE,GAAG,EAAE,CAAC,OAAO,CAAC,mBAAmB,CAAC,CAAC,CAAC;AAIhG,QAAA,MAAM,GAAqC,IAAW,CAAC;AACpE,SAAS,CAAC,QAAQ,CAAC,OAAO,EAAE,CAAC,QAAQ,CAAC,EAAE,GAAG,EAAE,CAAC,OAAO,CAAC,UAAU,CAAC,CAAC,CAAC;AAItD,QAAA,WAAW,GAA+C,IAAW,CAAC;AACnF,SAAS,CAAC,QAAQ,CAAC,OAAO,EAAE,CAAC,aAAa,CAAC,EAAE,GAAG,EAAE,CAAC,OAAO,CAAC,eAAe,CAAC,CAAC,CAAC;AAIhE,QAAA,YAAY,GAAiD,IAAW,CAAC;AACtF,SAAS,CAAC,QAAQ,CAAC,OAAO,EAAE,CAAC,cAAc,CAAC,EAAE,GAAG,EAAE,CAAC,OAAO,CAAC,gBAAgB,CAAC,CAAC,CAAC;AAIlE,QAAA,gBAAgB,GAAyD,IAAW,CAAC;AAClG,SAAS,CAAC,QAAQ,CAAC,OAAO,EAAE,CAAC,kBAAkB,CAAC,EAAE,GAAG,EAAE,CAAC,OAAO,CAAC,oBAAoB,CAAC,CAAC,CAAC;AAI1E,QAAA,WAAW,GAA+C,IAAW,CAAC;AACnF,SAAS,CAAC,QAAQ,CAAC,OAAO,EAAE,CAAC,aAAa,CAAC,EAAE,GAAG,EAAE,CAAC,OAAO,CAAC,eAAe,CAAC,CAAC,CAAC;AAG7E,MAAM,OAAO,GAAG;IACZ,OAAO,EAAE,SAAS,CAAC,UAAU,EAAE;IAC/B,SAAS,EAAE,CAAC,IAAY,EAAE,IAAY,EAAE,GAAW,EAAmB,EAAE;QACpE,QAAQ,IAAI,EAAE;YACV,KAAK,yBAAyB;gBAC1B,OAAO,IAAI,cAAM,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YACpD,KAAK,mCAAmC;gBACpC,OAAO,IAAI,mBAAW,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YACzD,KAAK,qCAAqC;gBACtC,OAAO,IAAI,oBAAY,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YAC1D,KAAK,6CAA6C;gBAC9C,OAAO,IAAI,wBAAgB,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YAC9D,KAAK,mCAAmC;gBACpC,OAAO,IAAI,mBAAW,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YACzD;gBACI,MAAM,IAAI,KAAK,CAAC,yBAAyB,IAAI,EAAE,CAAC,CAAC;SACxD;IACL,CAAC;CACJ,CAAC;AACF,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,MAAM,EAAE,aAAa,EAAE,OAAO,CAAC,CAAA;AACrE,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,MAAM,EAAE,kBAAkB,EAAE,OAAO,CAAC,CAAA;AAC1E,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,MAAM,EAAE,mBAAmB,EAAE,OAAO,CAAC,CAAA;AAC3E,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,MAAM,EAAE,uBAAuB,EAAE,OAAO,CAAC,CAAA;AAC/E,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,MAAM,EAAE,kBAAkB,EAAE,OAAO,CAAC,CAAA"}

package/authenticator.d.ts

@@ -9,10 +9,11 @@ import * as pulumi from "@pulumi/pulumi";
  * create the authenticator (hard create) will be performed. Thereafter, that
  * authenticator is never deleted, it is only deactivated (soft delete). Therefore,
  * if the authenticator already exists create is just a soft import of an existing
- * authenticator. This does not apply to customOtp authenticator. There can be
- * multiple customOtp authenticator. To create new customOtp authenticator, a new
- * name and key = customOtp is required. If an old name is used, it will simply
- * reactivate the old customOtp authenticator
+ * authenticator. This does not apply to customOtp and customApp authenticators.
+ * There can be multiple customOtp authenticators. To create new customOtp
+ * authenticator, a new name and key = customOtp is required. If an old name is
+ * used, it will simply reactivate the old customOtp authenticator. For customApp
+ * authenticators, legacyIgnoreName must be set to false.
  *
  * > **Update:** customOtp authenticator cannot be updated
  *
@@ -47,6 +48,25 @@ import * as pulumi from "@pulumi/pulumi";
  *     }),
  *     legacyIgnoreName: false,
  * });
+ * const customApp = new okta.Authenticator("custom_app", {
+ *     key: "custom_app",
+ *     name: "Custom Push Auth",
+ *     status: "ACTIVE",
+ *     agreeToTerms: true,
+ *     legacyIgnoreName: false,
+ *     settings: JSON.stringify({
+ *         userVerification: "REQUIRED",
+ *         appInstanceId: "0oasontedmcepr0Uf1d7",
+ *     }),
+ *     providerJson: JSON.stringify({
+ *         type: "PUSH",
+ *         configuration: {
+ *             fcm: {
+ *                 id: "ppcrb12345678ABCDEF",
+ *             },
+ *         },
+ *     }),
+ * });
  * ```
  *
  * ## Import
@@ -72,11 +92,15 @@ export declare class Authenticator extends pulumi.CustomResource {
      */
     static isInstance(obj: any): obj is Authenticator;
     /**
-     * A human-readable string that identifies the authenticator. Some authenticators are available by feature flag on the organization. Possible values inclue: `duo`, `externalIdp`, `googleOtp`, `oktaEmail`, `oktaPassword`, `oktaVerify`, `onpremMfa`, `phoneNumber`, `rsaToken`, `securityQuestion`, `webauthn`
+     * A value of true indicates that the administrator accepts the terms for creating a new authenticator. Okta requires that you accept the terms when creating a new customApp authenticator. Other authenticators don't require this field.
+     */
+    readonly agreeToTerms: pulumi.Output<boolean | undefined>;
+    /**
+     * A human-readable string that identifies the authenticator. Some authenticators are available by feature flag on the organization. Possible values inclue: `customApp`, `customOtp`, `duo`, `externalIdp`, `googleOtp`, `oktaEmail`, `oktaPassword`, `oktaVerify`, `onpremMfa`, `phoneNumber`, `rsaToken`, `securityQuestion`, `webauthn`
      */
     readonly key: pulumi.Output<string>;
     /**
-     * Name does not trigger change detection (legacy behavior)
+     * Name does not trigger change detection (legacy behavior). Must be set to false for customApp authenticators.
      */
     readonly legacyIgnoreName: pulumi.Output<boolean | undefined>;
     /**
@@ -149,11 +173,15 @@ export declare class Authenticator extends pulumi.CustomResource {
  */
 export interface AuthenticatorState {
     /**
-     * A human-readable string that identifies the authenticator. Some authenticators are available by feature flag on the organization. Possible values inclue: `duo`, `externalIdp`, `googleOtp`, `oktaEmail`, `oktaPassword`, `oktaVerify`, `onpremMfa`, `phoneNumber`, `rsaToken`, `securityQuestion`, `webauthn`
+     * A value of true indicates that the administrator accepts the terms for creating a new authenticator. Okta requires that you accept the terms when creating a new customApp authenticator. Other authenticators don't require this field.
+     */
+    agreeToTerms?: pulumi.Input<boolean>;
+    /**
+     * A human-readable string that identifies the authenticator. Some authenticators are available by feature flag on the organization. Possible values inclue: `customApp`, `customOtp`, `duo`, `externalIdp`, `googleOtp`, `oktaEmail`, `oktaPassword`, `oktaVerify`, `onpremMfa`, `phoneNumber`, `rsaToken`, `securityQuestion`, `webauthn`
      */
     key?: pulumi.Input<string>;
     /**
-     * Name does not trigger change detection (legacy behavior)
+     * Name does not trigger change detection (legacy behavior). Must be set to false for customApp authenticators.
      */
     legacyIgnoreName?: pulumi.Input<boolean>;
     /**
@@ -218,11 +246,15 @@ export interface AuthenticatorState {
  */
 export interface AuthenticatorArgs {
     /**
-     * A human-readable string that identifies the authenticator. Some authenticators are available by feature flag on the organization. Possible values inclue: `duo`, `externalIdp`, `googleOtp`, `oktaEmail`, `oktaPassword`, `oktaVerify`, `onpremMfa`, `phoneNumber`, `rsaToken`, `securityQuestion`, `webauthn`
+     * A value of true indicates that the administrator accepts the terms for creating a new authenticator. Okta requires that you accept the terms when creating a new customApp authenticator. Other authenticators don't require this field.
+     */
+    agreeToTerms?: pulumi.Input<boolean>;
+    /**
+     * A human-readable string that identifies the authenticator. Some authenticators are available by feature flag on the organization. Possible values inclue: `customApp`, `customOtp`, `duo`, `externalIdp`, `googleOtp`, `oktaEmail`, `oktaPassword`, `oktaVerify`, `onpremMfa`, `phoneNumber`, `rsaToken`, `securityQuestion`, `webauthn`
      */
     key: pulumi.Input<string>;
     /**
-     * Name does not trigger change detection (legacy behavior)
+     * Name does not trigger change detection (legacy behavior). Must be set to false for customApp authenticators.
      */
     legacyIgnoreName?: pulumi.Input<boolean>;
     /**

package/authenticator.js

@@ -15,10 +15,11 @@ const utilities = require("./utilities");
  * create the authenticator (hard create) will be performed. Thereafter, that
  * authenticator is never deleted, it is only deactivated (soft delete). Therefore,
  * if the authenticator already exists create is just a soft import of an existing
- * authenticator. This does not apply to customOtp authenticator. There can be
- * multiple customOtp authenticator. To create new customOtp authenticator, a new
- * name and key = customOtp is required. If an old name is used, it will simply
- * reactivate the old customOtp authenticator
+ * authenticator. This does not apply to customOtp and customApp authenticators.
+ * There can be multiple customOtp authenticators. To create new customOtp
+ * authenticator, a new name and key = customOtp is required. If an old name is
+ * used, it will simply reactivate the old customOtp authenticator. For customApp
+ * authenticators, legacyIgnoreName must be set to false.
  *
  * > **Update:** customOtp authenticator cannot be updated
  *
@@ -53,6 +54,25 @@ const utilities = require("./utilities");
  *     }),
  *     legacyIgnoreName: false,
  * });
+ * const customApp = new okta.Authenticator("custom_app", {
+ *     key: "custom_app",
+ *     name: "Custom Push Auth",
+ *     status: "ACTIVE",
+ *     agreeToTerms: true,
+ *     legacyIgnoreName: false,
+ *     settings: JSON.stringify({
+ *         userVerification: "REQUIRED",
+ *         appInstanceId: "0oasontedmcepr0Uf1d7",
+ *     }),
+ *     providerJson: JSON.stringify({
+ *         type: "PUSH",
+ *         configuration: {
+ *             fcm: {
+ *                 id: "ppcrb12345678ABCDEF",
+ *             },
+ *         },
+ *     }),
+ * });
  * ```
  *
  * ## Import
@@ -89,6 +109,7 @@ class Authenticator extends pulumi.CustomResource {
         opts = opts || {};
         if (opts.id) {
             const state = argsOrState;
+            resourceInputs["agreeToTerms"] = state?.agreeToTerms;
             resourceInputs["key"] = state?.key;
             resourceInputs["legacyIgnoreName"] = state?.legacyIgnoreName;
             resourceInputs["name"] = state?.name;
@@ -111,6 +132,7 @@ class Authenticator extends pulumi.CustomResource {
             if (args?.key === undefined && !opts.urn) {
                 throw new Error("Missing required property 'key'");
             }
+            resourceInputs["agreeToTerms"] = args?.agreeToTerms;
             resourceInputs["key"] = args?.key;
             resourceInputs["legacyIgnoreName"] = args?.legacyIgnoreName;
             resourceInputs["name"] = args?.name;

package/authenticator.js.map

@@ -1 +1 @@
-{"version":3,"file":"authenticator.js","sourceRoot":"","sources":["../authenticator.ts"],"names":[],"mappings":";AAAA,sEAAsE;AACtE,iFAAiF;;;AAEjF,yCAAyC;AACzC,yCAAyC;AAEzC;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAuDG;AACH,MAAa,aAAc,SAAQ,MAAM,CAAC,cAAc;IACpD;;;;;;;;OAQG;IACI,MAAM,CAAC,GAAG,CAAC,IAAY,EAAE,EAA2B,EAAE,KAA0B,EAAE,IAAmC;QACxH,OAAO,IAAI,aAAa,CAAC,IAAI,EAAO,KAAK,EAAE,EAAE,GAAG,IAAI,EAAE,EAAE,EAAE,EAAE,EAAE,CAAC,CAAC;IACpE,CAAC;IAKD;;;OAGG;IACI,MAAM,CAAC,UAAU,CAAC,GAAQ;QAC7B,IAAI,GAAG,KAAK,SAAS,IAAI,GAAG,KAAK,IAAI,EAAE;YACnC,OAAO,KAAK,CAAC;SAChB;QACD,OAAO,GAAG,CAAC,cAAc,CAAC,KAAK,aAAa,CAAC,YAAY,CAAC;IAC9D,CAAC;IA2ED,YAAY,IAAY,EAAE,WAAoD,EAAE,IAAmC;QAC/G,IAAI,cAAc,GAAkB,EAAE,CAAC;QACvC,IAAI,GAAG,IAAI,IAAI,EAAE,CAAC;QAClB,IAAI,IAAI,CAAC,EAAE,EAAE;YACT,MAAM,KAAK,GAAG,WAA6C,CAAC;YAC5D,cAAc,CAAC,KAAK,CAAC,GAAG,KAAK,EAAE,GAAG,CAAC;YACnC,cAAc,CAAC,kBAAkB,CAAC,GAAG,KAAK,EAAE,gBAAgB,CAAC;YAC7D,cAAc,CAAC,MAAM,CAAC,GAAG,KAAK,EAAE,IAAI,CAAC;YACrC,cAAc,CAAC,kBAAkB,CAAC,GAAG,KAAK,EAAE,gBAAgB,CAAC;YAC7D,cAAc,CAAC,cAAc,CAAC,GAAG,KAAK,EAAE,YAAY,CAAC;YACrD,cAAc,CAAC,kBAAkB,CAAC,GAAG,KAAK,EAAE,gBAAgB,CAAC;YAC7D,cAAc,CAAC,oBAAoB,CAAC,GAAG,KAAK,EAAE,kBAAkB,CAAC;YACjE,cAAc,CAAC,wBAAwB,CAAC,GAAG,KAAK,EAAE,sBAAsB,CAAC;YACzE,cAAc,CAAC,cAAc,CAAC,GAAG,KAAK,EAAE,YAAY,CAAC;YACrD,cAAc,CAAC,mBAAmB,CAAC,GAAG,KAAK,EAAE,iBAAiB,CAAC;YAC/D,cAAc,CAAC,sBAAsB,CAAC,GAAG,KAAK,EAAE,oBAAoB,CAAC;YACrE,cAAc,CAAC,cAAc,CAAC,GAAG,KAAK,EAAE,YAAY,CAAC;YACrD,cAAc,CAAC,0BAA0B,CAAC,GAAG,KAAK,EAAE,wBAAwB,CAAC;YAC7E,cAAc,CAAC,UAAU,CAAC,GAAG,KAAK,EAAE,QAAQ,CAAC;YAC7C,cAAc,CAAC,QAAQ,CAAC,GAAG,KAAK,EAAE,MAAM,CAAC;YACzC,cAAc,CAAC,MAAM,CAAC,GAAG,KAAK,EAAE,IAAI,CAAC;SACxC;aAAM;YACH,MAAM,IAAI,GAAG,WAA4C,CAAC;YAC1D,IAAI,IAAI,EAAE,GAAG,KAAK,SAAS,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBACtC,MAAM,IAAI,KAAK,CAAC,iCAAiC,CAAC,CAAC;aACtD;YACD,cAAc,CAAC,KAAK,CAAC,GAAG,IAAI,EAAE,GAAG,CAAC;YAClC,cAAc,CAAC,kBAAkB,CAAC,GAAG,IAAI,EAAE,gBAAgB,CAAC;YAC5D,cAAc,CAAC,MAAM,CAAC,GAAG,IAAI,EAAE,IAAI,CAAC;YACpC,cAAc,CAAC,kBAAkB,CAAC,GAAG,IAAI,EAAE,gBAAgB,CAAC;YAC5D,cAAc,CAAC,cAAc,CAAC,GAAG,IAAI,EAAE,YAAY,CAAC;YACpD,cAAc,CAAC,kBAAkB,CAAC,GAAG,IAAI,EAAE,gBAAgB,CAAC;YAC5D,cAAc,CAAC,wBAAwB,CAAC,GAAG,IAAI,EAAE,sBAAsB,CAAC;YACxE,cAAc,CAAC,cAAc,CAAC,GAAG,IAAI,EAAE,YAAY,CAAC;YACpD,cAAc,CAAC,mBAAmB,CAAC,GAAG,IAAI,EAAE,iBAAiB,CAAC;YAC9D,cAAc,CAAC,sBAAsB,CAAC,GAAG,IAAI,EAAE,oBAAoB,CAAC,CAAC,CAAC,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,oBAAoB,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC;YAC3H,cAAc,CAAC,0BAA0B,CAAC,GAAG,IAAI,EAAE,wBAAwB,CAAC;YAC5E,cAAc,CAAC,UAAU,CAAC,GAAG,IAAI,EAAE,QAAQ,CAAC;YAC5C,cAAc,CAAC,QAAQ,CAAC,GAAG,IAAI,EAAE,MAAM,CAAC;YACxC,cAAc,CAAC,oBAAoB,CAAC,GAAG,SAAS,CAAC,OAAO,CAAC;YACzD,cAAc,CAAC,cAAc,CAAC,GAAG,SAAS,CAAC,OAAO,CAAC;YACnD,cAAc,CAAC,MAAM,CAAC,GAAG,SAAS,CAAC,OAAO,CAAC;SAC9C;QACD,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,CAAC,CAAC;QACnE,MAAM,UAAU,GAAG,EAAE,uBAAuB,EAAE,CAAC,sBAAsB,CAAC,EAAE,CAAC;QACzE,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,IAAI,EAAE,UAAU,CAAC,CAAC;QAC7C,KAAK,CAAC,aAAa,CAAC,YAAY,EAAE,IAAI,EAAE,cAAc,EAAE,IAAI,CAAC,CAAC;IAClE,CAAC;;AApJL,sCAqJC;AAvIG,gBAAgB;AACO,0BAAY,GAAG,wCAAwC,CAAC"}
+{"version":3,"file":"authenticator.js","sourceRoot":"","sources":["../authenticator.ts"],"names":[],"mappings":";AAAA,sEAAsE;AACtE,iFAAiF;;;AAEjF,yCAAyC;AACzC,yCAAyC;AAEzC;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA2EG;AACH,MAAa,aAAc,SAAQ,MAAM,CAAC,cAAc;IACpD;;;;;;;;OAQG;IACI,MAAM,CAAC,GAAG,CAAC,IAAY,EAAE,EAA2B,EAAE,KAA0B,EAAE,IAAmC;QACxH,OAAO,IAAI,aAAa,CAAC,IAAI,EAAO,KAAK,EAAE,EAAE,GAAG,IAAI,EAAE,EAAE,EAAE,EAAE,EAAE,CAAC,CAAC;IACpE,CAAC;IAKD;;;OAGG;IACI,MAAM,CAAC,UAAU,CAAC,GAAQ;QAC7B,IAAI,GAAG,KAAK,SAAS,IAAI,GAAG,KAAK,IAAI,EAAE;YACnC,OAAO,KAAK,CAAC;SAChB;QACD,OAAO,GAAG,CAAC,cAAc,CAAC,KAAK,aAAa,CAAC,YAAY,CAAC;IAC9D,CAAC;IA+ED,YAAY,IAAY,EAAE,WAAoD,EAAE,IAAmC;QAC/G,IAAI,cAAc,GAAkB,EAAE,CAAC;QACvC,IAAI,GAAG,IAAI,IAAI,EAAE,CAAC;QAClB,IAAI,IAAI,CAAC,EAAE,EAAE;YACT,MAAM,KAAK,GAAG,WAA6C,CAAC;YAC5D,cAAc,CAAC,cAAc,CAAC,GAAG,KAAK,EAAE,YAAY,CAAC;YACrD,cAAc,CAAC,KAAK,CAAC,GAAG,KAAK,EAAE,GAAG,CAAC;YACnC,cAAc,CAAC,kBAAkB,CAAC,GAAG,KAAK,EAAE,gBAAgB,CAAC;YAC7D,cAAc,CAAC,MAAM,CAAC,GAAG,KAAK,EAAE,IAAI,CAAC;YACrC,cAAc,CAAC,kBAAkB,CAAC,GAAG,KAAK,EAAE,gBAAgB,CAAC;YAC7D,cAAc,CAAC,cAAc,CAAC,GAAG,KAAK,EAAE,YAAY,CAAC;YACrD,cAAc,CAAC,kBAAkB,CAAC,GAAG,KAAK,EAAE,gBAAgB,CAAC;YAC7D,cAAc,CAAC,oBAAoB,CAAC,GAAG,KAAK,EAAE,kBAAkB,CAAC;YACjE,cAAc,CAAC,wBAAwB,CAAC,GAAG,KAAK,EAAE,sBAAsB,CAAC;YACzE,cAAc,CAAC,cAAc,CAAC,GAAG,KAAK,EAAE,YAAY,CAAC;YACrD,cAAc,CAAC,mBAAmB,CAAC,GAAG,KAAK,EAAE,iBAAiB,CAAC;YAC/D,cAAc,CAAC,sBAAsB,CAAC,GAAG,KAAK,EAAE,oBAAoB,CAAC;YACrE,cAAc,CAAC,cAAc,CAAC,GAAG,KAAK,EAAE,YAAY,CAAC;YACrD,cAAc,CAAC,0BAA0B,CAAC,GAAG,KAAK,EAAE,wBAAwB,CAAC;YAC7E,cAAc,CAAC,UAAU,CAAC,GAAG,KAAK,EAAE,QAAQ,CAAC;YAC7C,cAAc,CAAC,QAAQ,CAAC,GAAG,KAAK,EAAE,MAAM,CAAC;YACzC,cAAc,CAAC,MAAM,CAAC,GAAG,KAAK,EAAE,IAAI,CAAC;SACxC;aAAM;YACH,MAAM,IAAI,GAAG,WAA4C,CAAC;YAC1D,IAAI,IAAI,EAAE,GAAG,KAAK,SAAS,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBACtC,MAAM,IAAI,KAAK,CAAC,iCAAiC,CAAC,CAAC;aACtD;YACD,cAAc,CAAC,cAAc,CAAC,GAAG,IAAI,EAAE,YAAY,CAAC;YACpD,cAAc,CAAC,KAAK,CAAC,GAAG,IAAI,EAAE,GAAG,CAAC;YAClC,cAAc,CAAC,kBAAkB,CAAC,GAAG,IAAI,EAAE,gBAAgB,CAAC;YAC5D,cAAc,CAAC,MAAM,CAAC,GAAG,IAAI,EAAE,IAAI,CAAC;YACpC,cAAc,CAAC,kBAAkB,CAAC,GAAG,IAAI,EAAE,gBAAgB,CAAC;YAC5D,cAAc,CAAC,cAAc,CAAC,GAAG,IAAI,EAAE,YAAY,CAAC;YACpD,cAAc,CAAC,kBAAkB,CAAC,GAAG,IAAI,EAAE,gBAAgB,CAAC;YAC5D,cAAc,CAAC,wBAAwB,CAAC,GAAG,IAAI,EAAE,sBAAsB,CAAC;YACxE,cAAc,CAAC,cAAc,CAAC,GAAG,IAAI,EAAE,YAAY,CAAC;YACpD,cAAc,CAAC,mBAAmB,CAAC,GAAG,IAAI,EAAE,iBAAiB,CAAC;YAC9D,cAAc,CAAC,sBAAsB,CAAC,GAAG,IAAI,EAAE,oBAAoB,CAAC,CAAC,CAAC,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,oBAAoB,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC;YAC3H,cAAc,CAAC,0BAA0B,CAAC,GAAG,IAAI,EAAE,wBAAwB,CAAC;YAC5E,cAAc,CAAC,UAAU,CAAC,GAAG,IAAI,EAAE,QAAQ,CAAC;YAC5C,cAAc,CAAC,QAAQ,CAAC,GAAG,IAAI,EAAE,MAAM,CAAC;YACxC,cAAc,CAAC,oBAAoB,CAAC,GAAG,SAAS,CAAC,OAAO,CAAC;YACzD,cAAc,CAAC,cAAc,CAAC,GAAG,SAAS,CAAC,OAAO,CAAC;YACnD,cAAc,CAAC,MAAM,CAAC,GAAG,SAAS,CAAC,OAAO,CAAC;SAC9C;QACD,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,CAAC,CAAC;QACnE,MAAM,UAAU,GAAG,EAAE,uBAAuB,EAAE,CAAC,sBAAsB,CAAC,EAAE,CAAC;QACzE,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,IAAI,EAAE,UAAU,CAAC,CAAC;QAC7C,KAAK,CAAC,aAAa,CAAC,YAAY,EAAE,IAAI,EAAE,cAAc,EAAE,IAAI,CAAC,CAAC;IAClE,CAAC;;AA1JL,sCA2JC;AA7IG,gBAAgB;AACO,0BAAY,GAAG,wCAAwC,CAAC"}

package/customizedSigninPage.d.ts

@@ -4,6 +4,74 @@ import * as outputs from "./types/output";
 /**
  * Manage the customized signin page of a brand
  *
+ * ## Example Usage
+ *
+ * ```typescript
+ * import * as pulumi from "@pulumi/pulumi";
+ * import * as okta from "@pulumi/okta";
+ *
+ * const test = new okta.Brand("test", {
+ *     name: "testBrand",
+ *     locale: "en",
+ * });
+ * const testCustomizedSigninPage = new okta.CustomizedSigninPage("test", {
+ *     brandId: oktaBrand.test.id,
+ *     pageContent: `<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR/html4/strict.dtd">
+ * <html>
+ * <head>
+ *     <meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
+ *     <meta name="viewport" content="width=device-width, initial-scale=1.0" />
+ *     <meta name="robots" content="noindex,nofollow" />
+ *     <!-- Styles generated from theme -->
+ *     <link href="{{themedStylesUrl}}" rel="stylesheet" type="text/css">
+ *     <!-- Favicon from theme -->
+ *     <link rel="shortcut icon" href="{{faviconUrl}}" type="image/x-icon"/>
+ *
+ *     <title>{{pageTitle}}</title>
+ *     {{{SignInWidgetResources}}}
+ *
+ *     <style nonce="{{nonceValue}}">
+ *         #login-bg-image-id {
+ *             background-image: {{bgImageUrl}}
+ *         }
+ *     </style>
+ * </head>
+ * <body>
+ *     <div id="login-bg-image-id" class="login-bg-image tb--background"></div>
+ *     <div id="okta-login-container"></div>
+ *
+ *     <!--
+ *         "OktaUtil" defines a global OktaUtil object
+ *         that contains methods used to complete the Okta login flow.
+ *      -->
+ *     {{{OktaUtil}}}
+ *
+ *     <script type="text/javascript" nonce="{{nonceValue}}">
+ *         // "config" object contains default widget configuration
+ *         // with any custom overrides defined in your admin settings.
+ *         var config = OktaUtil.getSignInWidgetConfig();
+ *
+ *         // Render the Okta Sign-In Widget
+ *         var oktaSignIn = new OktaSignIn(config);
+ *         oktaSignIn.renderEl({ el: '#okta-login-container' },
+ *             OktaUtil.completeLogin,
+ *             function(error) {
+ *                 // Logs errors that occur when configuring the widget.
+ *                 // Remove or replace this with your own custom error handler.
+ *                 console.log(error.message, error);
+ *             }
+ *         );
+ *     </script>
+ * </body>
+ * </html>
+ * `,
+ *     widgetVersion: "^6",
+ *     widgetCustomizations: {
+ *         widgetGeneration: "G3",
+ *     },
+ * });
+ * ```
+ *
  * ## Import
  *
  * ```sh

package/customizedSigninPage.js

@@ -8,6 +8,74 @@ const utilities = require("./utilities");
 /**
  * Manage the customized signin page of a brand
  *
+ * ## Example Usage
+ *
+ * ```typescript
+ * import * as pulumi from "@pulumi/pulumi";
+ * import * as okta from "@pulumi/okta";
+ *
+ * const test = new okta.Brand("test", {
+ *     name: "testBrand",
+ *     locale: "en",
+ * });
+ * const testCustomizedSigninPage = new okta.CustomizedSigninPage("test", {
+ *     brandId: oktaBrand.test.id,
+ *     pageContent: `<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR/html4/strict.dtd">
+ * <html>
+ * <head>
+ *     <meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
+ *     <meta name="viewport" content="width=device-width, initial-scale=1.0" />
+ *     <meta name="robots" content="noindex,nofollow" />
+ *     <!-- Styles generated from theme -->
+ *     <link href="{{themedStylesUrl}}" rel="stylesheet" type="text/css">
+ *     <!-- Favicon from theme -->
+ *     <link rel="shortcut icon" href="{{faviconUrl}}" type="image/x-icon"/>
+ *
+ *     <title>{{pageTitle}}</title>
+ *     {{{SignInWidgetResources}}}
+ *
+ *     <style nonce="{{nonceValue}}">
+ *         #login-bg-image-id {
+ *             background-image: {{bgImageUrl}}
+ *         }
+ *     </style>
+ * </head>
+ * <body>
+ *     <div id="login-bg-image-id" class="login-bg-image tb--background"></div>
+ *     <div id="okta-login-container"></div>
+ *
+ *     <!--
+ *         "OktaUtil" defines a global OktaUtil object
+ *         that contains methods used to complete the Okta login flow.
+ *      -->
+ *     {{{OktaUtil}}}
+ *
+ *     <script type="text/javascript" nonce="{{nonceValue}}">
+ *         // "config" object contains default widget configuration
+ *         // with any custom overrides defined in your admin settings.
+ *         var config = OktaUtil.getSignInWidgetConfig();
+ *
+ *         // Render the Okta Sign-In Widget
+ *         var oktaSignIn = new OktaSignIn(config);
+ *         oktaSignIn.renderEl({ el: '#okta-login-container' },
+ *             OktaUtil.completeLogin,
+ *             function(error) {
+ *                 // Logs errors that occur when configuring the widget.
+ *                 // Remove or replace this with your own custom error handler.
+ *                 console.log(error.message, error);
+ *             }
+ *         );
+ *     </script>
+ * </body>
+ * </html>
+ * `,
+ *     widgetVersion: "^6",
+ *     widgetCustomizations: {
+ *         widgetGeneration: "G3",
+ *     },
+ * });
+ * ```
+ *
  * ## Import
  *
  * ```sh

package/customizedSigninPage.js.map

@@ -1 +1 @@
-{"version":3,"file":"customizedSigninPage.js","sourceRoot":"","sources":["../customizedSigninPage.ts"],"names":[],"mappings":";AAAA,sEAAsE;AACtE,iFAAiF;;;AAEjF,yCAAyC;AAGzC,yCAAyC;AAEzC;;;;;;;;GAQG;AACH,MAAa,oBAAqB,SAAQ,MAAM,CAAC,cAAc;IAC3D;;;;;;;;OAQG;IACI,MAAM,CAAC,GAAG,CAAC,IAAY,EAAE,EAA2B,EAAE,KAAiC,EAAE,IAAmC;QAC/H,OAAO,IAAI,oBAAoB,CAAC,IAAI,EAAO,KAAK,EAAE,EAAE,GAAG,IAAI,EAAE,EAAE,EAAE,EAAE,EAAE,CAAC,CAAC;IAC3E,CAAC;IAKD;;;OAGG;IACI,MAAM,CAAC,UAAU,CAAC,GAAQ;QAC7B,IAAI,GAAG,KAAK,SAAS,IAAI,GAAG,KAAK,IAAI,EAAE;YACnC,OAAO,KAAK,CAAC;SAChB;QACD,OAAO,GAAG,CAAC,cAAc,CAAC,KAAK,oBAAoB,CAAC,YAAY,CAAC;IACrE,CAAC;IA8BD,YAAY,IAAY,EAAE,WAAkE,EAAE,IAAmC;QAC7H,IAAI,cAAc,GAAkB,EAAE,CAAC;QACvC,IAAI,GAAG,IAAI,IAAI,EAAE,CAAC;QAClB,IAAI,IAAI,CAAC,EAAE,EAAE;YACT,MAAM,KAAK,GAAG,WAAoD,CAAC;YACnE,cAAc,CAAC,SAAS,CAAC,GAAG,KAAK,EAAE,OAAO,CAAC;YAC3C,cAAc,CAAC,8BAA8B,CAAC,GAAG,KAAK,EAAE,4BAA4B,CAAC;YACrF,cAAc,CAAC,aAAa,CAAC,GAAG,KAAK,EAAE,WAAW,CAAC;YACnD,cAAc,CAAC,sBAAsB,CAAC,GAAG,KAAK,EAAE,oBAAoB,CAAC;YACrE,cAAc,CAAC,eAAe,CAAC,GAAG,KAAK,EAAE,aAAa,CAAC;SAC1D;aAAM;YACH,MAAM,IAAI,GAAG,WAAmD,CAAC;YACjE,IAAI,IAAI,EAAE,OAAO,KAAK,SAAS,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBAC1C,MAAM,IAAI,KAAK,CAAC,qCAAqC,CAAC,CAAC;aAC1D;YACD,IAAI,IAAI,EAAE,WAAW,KAAK,SAAS,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBAC9C,MAAM,IAAI,KAAK,CAAC,yCAAyC,CAAC,CAAC;aAC9D;YACD,IAAI,IAAI,EAAE,aAAa,KAAK,SAAS,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBAChD,MAAM,IAAI,KAAK,CAAC,2CAA2C,CAAC,CAAC;aAChE;YACD,cAAc,CAAC,SAAS,CAAC,GAAG,IAAI,EAAE,OAAO,CAAC;YAC1C,cAAc,CAAC,8BAA8B,CAAC,GAAG,IAAI,EAAE,4BAA4B,CAAC;YACpF,cAAc,CAAC,aAAa,CAAC,GAAG,IAAI,EAAE,WAAW,CAAC;YAClD,cAAc,CAAC,sBAAsB,CAAC,GAAG,IAAI,EAAE,oBAAoB,CAAC;YACpE,cAAc,CAAC,eAAe,CAAC,GAAG,IAAI,EAAE,aAAa,CAAC;SACzD;QACD,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,CAAC,CAAC;QACnE,KAAK,CAAC,oBAAoB,CAAC,YAAY,EAAE,IAAI,EAAE,cAAc,EAAE,IAAI,CAAC,CAAC;IACzE,CAAC;;AArFL,oDAsFC;AAxEG,gBAAgB;AACO,iCAAY,GAAG,sDAAsD,CAAC"}
+{"version":3,"file":"customizedSigninPage.js","sourceRoot":"","sources":["../customizedSigninPage.ts"],"names":[],"mappings":";AAAA,sEAAsE;AACtE,iFAAiF;;;AAEjF,yCAAyC;AAGzC,yCAAyC;AAEzC;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA4EG;AACH,MAAa,oBAAqB,SAAQ,MAAM,CAAC,cAAc;IAC3D;;;;;;;;OAQG;IACI,MAAM,CAAC,GAAG,CAAC,IAAY,EAAE,EAA2B,EAAE,KAAiC,EAAE,IAAmC;QAC/H,OAAO,IAAI,oBAAoB,CAAC,IAAI,EAAO,KAAK,EAAE,EAAE,GAAG,IAAI,EAAE,EAAE,EAAE,EAAE,EAAE,CAAC,CAAC;IAC3E,CAAC;IAKD;;;OAGG;IACI,MAAM,CAAC,UAAU,CAAC,GAAQ;QAC7B,IAAI,GAAG,KAAK,SAAS,IAAI,GAAG,KAAK,IAAI,EAAE;YACnC,OAAO,KAAK,CAAC;SAChB;QACD,OAAO,GAAG,CAAC,cAAc,CAAC,KAAK,oBAAoB,CAAC,YAAY,CAAC;IACrE,CAAC;IA8BD,YAAY,IAAY,EAAE,WAAkE,EAAE,IAAmC;QAC7H,IAAI,cAAc,GAAkB,EAAE,CAAC;QACvC,IAAI,GAAG,IAAI,IAAI,EAAE,CAAC;QAClB,IAAI,IAAI,CAAC,EAAE,EAAE;YACT,MAAM,KAAK,GAAG,WAAoD,CAAC;YACnE,cAAc,CAAC,SAAS,CAAC,GAAG,KAAK,EAAE,OAAO,CAAC;YAC3C,cAAc,CAAC,8BAA8B,CAAC,GAAG,KAAK,EAAE,4BAA4B,CAAC;YACrF,cAAc,CAAC,aAAa,CAAC,GAAG,KAAK,EAAE,WAAW,CAAC;YACnD,cAAc,CAAC,sBAAsB,CAAC,GAAG,KAAK,EAAE,oBAAoB,CAAC;YACrE,cAAc,CAAC,eAAe,CAAC,GAAG,KAAK,EAAE,aAAa,CAAC;SAC1D;aAAM;YACH,MAAM,IAAI,GAAG,WAAmD,CAAC;YACjE,IAAI,IAAI,EAAE,OAAO,KAAK,SAAS,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBAC1C,MAAM,IAAI,KAAK,CAAC,qCAAqC,CAAC,CAAC;aAC1D;YACD,IAAI,IAAI,EAAE,WAAW,KAAK,SAAS,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBAC9C,MAAM,IAAI,KAAK,CAAC,yCAAyC,CAAC,CAAC;aAC9D;YACD,IAAI,IAAI,EAAE,aAAa,KAAK,SAAS,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBAChD,MAAM,IAAI,KAAK,CAAC,2CAA2C,CAAC,CAAC;aAChE;YACD,cAAc,CAAC,SAAS,CAAC,GAAG,IAAI,EAAE,OAAO,CAAC;YAC1C,cAAc,CAAC,8BAA8B,CAAC,GAAG,IAAI,EAAE,4BAA4B,CAAC;YACpF,cAAc,CAAC,aAAa,CAAC,GAAG,IAAI,EAAE,WAAW,CAAC;YAClD,cAAc,CAAC,sBAAsB,CAAC,GAAG,IAAI,EAAE,oBAAoB,CAAC;YACpE,cAAc,CAAC,eAAe,CAAC,GAAG,IAAI,EAAE,aAAa,CAAC;SACzD;QACD,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,CAAC,CAAC;QACnE,KAAK,CAAC,oBAAoB,CAAC,YAAY,EAAE,IAAI,EAAE,cAAc,EAAE,IAAI,CAAC,CAAC;IACzE,CAAC;;AArFL,oDAsFC;AAxEG,gBAAgB;AACO,iCAAY,GAAG,sDAAsD,CAAC"}