@pulumi/okta 6.2.2 → 6.2.3
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/app/federatedClaim.d.ts +151 -0
- package/app/federatedClaim.js +138 -0
- package/app/federatedClaim.js.map +1 -0
- package/app/getFederatedClaim.d.ts +148 -0
- package/app/getFederatedClaim.js +122 -0
- package/app/getFederatedClaim.js.map +1 -0
- package/app/index.d.ts +6 -0
- package/app/index.js +9 -1
- package/app/index.js.map +1 -1
- package/app/oauth.d.ts +66 -9
- package/app/oauth.js +57 -0
- package/app/oauth.js.map +1 -1
- package/package.json +3 -3
- package/principalRateLimits.d.ts +12 -0
- package/principalRateLimits.js +2 -0
- package/principalRateLimits.js.map +1 -1
- package/user/getUser.d.ts +3 -0
- package/user/getUser.js.map +1 -1
|
@@ -0,0 +1,151 @@
|
|
|
1
|
+
import * as pulumi from "@pulumi/pulumi";
|
|
2
|
+
/**
|
|
3
|
+
* Manages a federated claim for an Okta application.
|
|
4
|
+
*
|
|
5
|
+
* Federated claims allow you to pass user information from Okta to your app integrations.
|
|
6
|
+
*
|
|
7
|
+
* ## Example Usage
|
|
8
|
+
*
|
|
9
|
+
* ```typescript
|
|
10
|
+
* import * as pulumi from "@pulumi/pulumi";
|
|
11
|
+
* import * as okta from "@pulumi/okta";
|
|
12
|
+
*
|
|
13
|
+
* const testApp = new okta.app.Saml("test_app", {
|
|
14
|
+
* label: "example",
|
|
15
|
+
* ssoUrl: "https://example.com",
|
|
16
|
+
* recipient: "https://example.com",
|
|
17
|
+
* destination: "https://example.com",
|
|
18
|
+
* audience: "https://example.com/audience",
|
|
19
|
+
* subjectNameIdTemplate: "${user.userName}",
|
|
20
|
+
* subjectNameIdFormat: "urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress",
|
|
21
|
+
* responseSigned: true,
|
|
22
|
+
* signatureAlgorithm: "RSA_SHA256",
|
|
23
|
+
* digestAlgorithm: "SHA256",
|
|
24
|
+
* });
|
|
25
|
+
* const example = new okta.app.FederatedClaim("example", {
|
|
26
|
+
* appId: testApp.id,
|
|
27
|
+
* name: "role_last_name",
|
|
28
|
+
* expression: "user.profile.lastName",
|
|
29
|
+
* });
|
|
30
|
+
* ```
|
|
31
|
+
*
|
|
32
|
+
* ### Multiple Claims Example
|
|
33
|
+
*
|
|
34
|
+
* ```typescript
|
|
35
|
+
* import * as pulumi from "@pulumi/pulumi";
|
|
36
|
+
* import * as okta from "@pulumi/okta";
|
|
37
|
+
*
|
|
38
|
+
* const testApp = new okta.app.Saml("test_app", {
|
|
39
|
+
* label: "example",
|
|
40
|
+
* ssoUrl: "https://example.com",
|
|
41
|
+
* recipient: "https://example.com",
|
|
42
|
+
* destination: "https://example.com",
|
|
43
|
+
* audience: "https://example.com/audience",
|
|
44
|
+
* subjectNameIdTemplate: "${user.userName}",
|
|
45
|
+
* subjectNameIdFormat: "urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress",
|
|
46
|
+
* responseSigned: true,
|
|
47
|
+
* signatureAlgorithm: "RSA_SHA256",
|
|
48
|
+
* digestAlgorithm: "SHA256",
|
|
49
|
+
* });
|
|
50
|
+
* const lastName = new okta.app.FederatedClaim("last_name", {
|
|
51
|
+
* appId: testApp.id,
|
|
52
|
+
* name: "lastName",
|
|
53
|
+
* expression: "user.profile.lastName",
|
|
54
|
+
* });
|
|
55
|
+
* const firstName = new okta.app.FederatedClaim("first_name", {
|
|
56
|
+
* appId: testApp.id,
|
|
57
|
+
* name: "firstName",
|
|
58
|
+
* expression: "user.profile.firstName",
|
|
59
|
+
* });
|
|
60
|
+
* const department = new okta.app.FederatedClaim("department", {
|
|
61
|
+
* appId: testApp.id,
|
|
62
|
+
* name: "department",
|
|
63
|
+
* expression: "user.profile.department",
|
|
64
|
+
* });
|
|
65
|
+
* ```
|
|
66
|
+
*
|
|
67
|
+
* ## Import
|
|
68
|
+
*
|
|
69
|
+
* An app federated claim can be imported using the format `app_id/id`:
|
|
70
|
+
*
|
|
71
|
+
* ```sh
|
|
72
|
+
* $ pulumi import okta:app/federatedClaim:FederatedClaim example <app_id>/<id>
|
|
73
|
+
* ```
|
|
74
|
+
*
|
|
75
|
+
* Example:
|
|
76
|
+
*
|
|
77
|
+
* ```sh
|
|
78
|
+
* $ pulumi import okta:app/federatedClaim:FederatedClaim example 0oa1234567890abcdef/clm1234567890abcdef
|
|
79
|
+
* ```
|
|
80
|
+
*/
|
|
81
|
+
export declare class FederatedClaim extends pulumi.CustomResource {
|
|
82
|
+
/**
|
|
83
|
+
* Get an existing FederatedClaim resource's state with the given name, ID, and optional extra
|
|
84
|
+
* properties used to qualify the lookup.
|
|
85
|
+
*
|
|
86
|
+
* @param name The _unique_ name of the resulting resource.
|
|
87
|
+
* @param id The _unique_ provider ID of the resource to lookup.
|
|
88
|
+
* @param state Any extra arguments used during the lookup.
|
|
89
|
+
* @param opts Optional settings to control the behavior of the CustomResource.
|
|
90
|
+
*/
|
|
91
|
+
static get(name: string, id: pulumi.Input<pulumi.ID>, state?: FederatedClaimState, opts?: pulumi.CustomResourceOptions): FederatedClaim;
|
|
92
|
+
/**
|
|
93
|
+
* Returns true if the given object is an instance of FederatedClaim. This is designed to work even
|
|
94
|
+
* when multiple copies of the Pulumi SDK have been loaded into the same process.
|
|
95
|
+
*/
|
|
96
|
+
static isInstance(obj: any): obj is FederatedClaim;
|
|
97
|
+
/**
|
|
98
|
+
* The ID of the application to add the federated claim to.
|
|
99
|
+
*/
|
|
100
|
+
readonly appId: pulumi.Output<string>;
|
|
101
|
+
/**
|
|
102
|
+
* The Okta Expression Language expression to be evaluated at runtime. See [Okta Expression Language](https://developer.okta.com/docs/reference/okta-expression-language/) for more information.
|
|
103
|
+
*/
|
|
104
|
+
readonly expression: pulumi.Output<string>;
|
|
105
|
+
/**
|
|
106
|
+
* The name of the claim to be used in the produced token.
|
|
107
|
+
*/
|
|
108
|
+
readonly name: pulumi.Output<string>;
|
|
109
|
+
/**
|
|
110
|
+
* Create a FederatedClaim resource with the given unique name, arguments, and options.
|
|
111
|
+
*
|
|
112
|
+
* @param name The _unique_ name of the resource.
|
|
113
|
+
* @param args The arguments to use to populate this resource's properties.
|
|
114
|
+
* @param opts A bag of options that control this resource's behavior.
|
|
115
|
+
*/
|
|
116
|
+
constructor(name: string, args: FederatedClaimArgs, opts?: pulumi.CustomResourceOptions);
|
|
117
|
+
}
|
|
118
|
+
/**
|
|
119
|
+
* Input properties used for looking up and filtering FederatedClaim resources.
|
|
120
|
+
*/
|
|
121
|
+
export interface FederatedClaimState {
|
|
122
|
+
/**
|
|
123
|
+
* The ID of the application to add the federated claim to.
|
|
124
|
+
*/
|
|
125
|
+
appId?: pulumi.Input<string>;
|
|
126
|
+
/**
|
|
127
|
+
* The Okta Expression Language expression to be evaluated at runtime. See [Okta Expression Language](https://developer.okta.com/docs/reference/okta-expression-language/) for more information.
|
|
128
|
+
*/
|
|
129
|
+
expression?: pulumi.Input<string>;
|
|
130
|
+
/**
|
|
131
|
+
* The name of the claim to be used in the produced token.
|
|
132
|
+
*/
|
|
133
|
+
name?: pulumi.Input<string>;
|
|
134
|
+
}
|
|
135
|
+
/**
|
|
136
|
+
* The set of arguments for constructing a FederatedClaim resource.
|
|
137
|
+
*/
|
|
138
|
+
export interface FederatedClaimArgs {
|
|
139
|
+
/**
|
|
140
|
+
* The ID of the application to add the federated claim to.
|
|
141
|
+
*/
|
|
142
|
+
appId: pulumi.Input<string>;
|
|
143
|
+
/**
|
|
144
|
+
* The Okta Expression Language expression to be evaluated at runtime. See [Okta Expression Language](https://developer.okta.com/docs/reference/okta-expression-language/) for more information.
|
|
145
|
+
*/
|
|
146
|
+
expression: pulumi.Input<string>;
|
|
147
|
+
/**
|
|
148
|
+
* The name of the claim to be used in the produced token.
|
|
149
|
+
*/
|
|
150
|
+
name?: pulumi.Input<string>;
|
|
151
|
+
}
|
|
@@ -0,0 +1,138 @@
|
|
|
1
|
+
"use strict";
|
|
2
|
+
// *** WARNING: this file was generated by pulumi-language-nodejs. ***
|
|
3
|
+
// *** Do not edit by hand unless you're certain you know what you are doing! ***
|
|
4
|
+
Object.defineProperty(exports, "__esModule", { value: true });
|
|
5
|
+
exports.FederatedClaim = void 0;
|
|
6
|
+
const pulumi = require("@pulumi/pulumi");
|
|
7
|
+
const utilities = require("../utilities");
|
|
8
|
+
/**
|
|
9
|
+
* Manages a federated claim for an Okta application.
|
|
10
|
+
*
|
|
11
|
+
* Federated claims allow you to pass user information from Okta to your app integrations.
|
|
12
|
+
*
|
|
13
|
+
* ## Example Usage
|
|
14
|
+
*
|
|
15
|
+
* ```typescript
|
|
16
|
+
* import * as pulumi from "@pulumi/pulumi";
|
|
17
|
+
* import * as okta from "@pulumi/okta";
|
|
18
|
+
*
|
|
19
|
+
* const testApp = new okta.app.Saml("test_app", {
|
|
20
|
+
* label: "example",
|
|
21
|
+
* ssoUrl: "https://example.com",
|
|
22
|
+
* recipient: "https://example.com",
|
|
23
|
+
* destination: "https://example.com",
|
|
24
|
+
* audience: "https://example.com/audience",
|
|
25
|
+
* subjectNameIdTemplate: "${user.userName}",
|
|
26
|
+
* subjectNameIdFormat: "urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress",
|
|
27
|
+
* responseSigned: true,
|
|
28
|
+
* signatureAlgorithm: "RSA_SHA256",
|
|
29
|
+
* digestAlgorithm: "SHA256",
|
|
30
|
+
* });
|
|
31
|
+
* const example = new okta.app.FederatedClaim("example", {
|
|
32
|
+
* appId: testApp.id,
|
|
33
|
+
* name: "role_last_name",
|
|
34
|
+
* expression: "user.profile.lastName",
|
|
35
|
+
* });
|
|
36
|
+
* ```
|
|
37
|
+
*
|
|
38
|
+
* ### Multiple Claims Example
|
|
39
|
+
*
|
|
40
|
+
* ```typescript
|
|
41
|
+
* import * as pulumi from "@pulumi/pulumi";
|
|
42
|
+
* import * as okta from "@pulumi/okta";
|
|
43
|
+
*
|
|
44
|
+
* const testApp = new okta.app.Saml("test_app", {
|
|
45
|
+
* label: "example",
|
|
46
|
+
* ssoUrl: "https://example.com",
|
|
47
|
+
* recipient: "https://example.com",
|
|
48
|
+
* destination: "https://example.com",
|
|
49
|
+
* audience: "https://example.com/audience",
|
|
50
|
+
* subjectNameIdTemplate: "${user.userName}",
|
|
51
|
+
* subjectNameIdFormat: "urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress",
|
|
52
|
+
* responseSigned: true,
|
|
53
|
+
* signatureAlgorithm: "RSA_SHA256",
|
|
54
|
+
* digestAlgorithm: "SHA256",
|
|
55
|
+
* });
|
|
56
|
+
* const lastName = new okta.app.FederatedClaim("last_name", {
|
|
57
|
+
* appId: testApp.id,
|
|
58
|
+
* name: "lastName",
|
|
59
|
+
* expression: "user.profile.lastName",
|
|
60
|
+
* });
|
|
61
|
+
* const firstName = new okta.app.FederatedClaim("first_name", {
|
|
62
|
+
* appId: testApp.id,
|
|
63
|
+
* name: "firstName",
|
|
64
|
+
* expression: "user.profile.firstName",
|
|
65
|
+
* });
|
|
66
|
+
* const department = new okta.app.FederatedClaim("department", {
|
|
67
|
+
* appId: testApp.id,
|
|
68
|
+
* name: "department",
|
|
69
|
+
* expression: "user.profile.department",
|
|
70
|
+
* });
|
|
71
|
+
* ```
|
|
72
|
+
*
|
|
73
|
+
* ## Import
|
|
74
|
+
*
|
|
75
|
+
* An app federated claim can be imported using the format `app_id/id`:
|
|
76
|
+
*
|
|
77
|
+
* ```sh
|
|
78
|
+
* $ pulumi import okta:app/federatedClaim:FederatedClaim example <app_id>/<id>
|
|
79
|
+
* ```
|
|
80
|
+
*
|
|
81
|
+
* Example:
|
|
82
|
+
*
|
|
83
|
+
* ```sh
|
|
84
|
+
* $ pulumi import okta:app/federatedClaim:FederatedClaim example 0oa1234567890abcdef/clm1234567890abcdef
|
|
85
|
+
* ```
|
|
86
|
+
*/
|
|
87
|
+
class FederatedClaim extends pulumi.CustomResource {
|
|
88
|
+
/**
|
|
89
|
+
* Get an existing FederatedClaim resource's state with the given name, ID, and optional extra
|
|
90
|
+
* properties used to qualify the lookup.
|
|
91
|
+
*
|
|
92
|
+
* @param name The _unique_ name of the resulting resource.
|
|
93
|
+
* @param id The _unique_ provider ID of the resource to lookup.
|
|
94
|
+
* @param state Any extra arguments used during the lookup.
|
|
95
|
+
* @param opts Optional settings to control the behavior of the CustomResource.
|
|
96
|
+
*/
|
|
97
|
+
static get(name, id, state, opts) {
|
|
98
|
+
return new FederatedClaim(name, state, { ...opts, id: id });
|
|
99
|
+
}
|
|
100
|
+
/**
|
|
101
|
+
* Returns true if the given object is an instance of FederatedClaim. This is designed to work even
|
|
102
|
+
* when multiple copies of the Pulumi SDK have been loaded into the same process.
|
|
103
|
+
*/
|
|
104
|
+
static isInstance(obj) {
|
|
105
|
+
if (obj === undefined || obj === null) {
|
|
106
|
+
return false;
|
|
107
|
+
}
|
|
108
|
+
return obj['__pulumiType'] === FederatedClaim.__pulumiType;
|
|
109
|
+
}
|
|
110
|
+
constructor(name, argsOrState, opts) {
|
|
111
|
+
let resourceInputs = {};
|
|
112
|
+
opts = opts || {};
|
|
113
|
+
if (opts.id) {
|
|
114
|
+
const state = argsOrState;
|
|
115
|
+
resourceInputs["appId"] = state?.appId;
|
|
116
|
+
resourceInputs["expression"] = state?.expression;
|
|
117
|
+
resourceInputs["name"] = state?.name;
|
|
118
|
+
}
|
|
119
|
+
else {
|
|
120
|
+
const args = argsOrState;
|
|
121
|
+
if (args?.appId === undefined && !opts.urn) {
|
|
122
|
+
throw new Error("Missing required property 'appId'");
|
|
123
|
+
}
|
|
124
|
+
if (args?.expression === undefined && !opts.urn) {
|
|
125
|
+
throw new Error("Missing required property 'expression'");
|
|
126
|
+
}
|
|
127
|
+
resourceInputs["appId"] = args?.appId;
|
|
128
|
+
resourceInputs["expression"] = args?.expression;
|
|
129
|
+
resourceInputs["name"] = args?.name;
|
|
130
|
+
}
|
|
131
|
+
opts = pulumi.mergeOptions(utilities.resourceOptsDefaults(), opts);
|
|
132
|
+
super(FederatedClaim.__pulumiType, name, resourceInputs, opts);
|
|
133
|
+
}
|
|
134
|
+
}
|
|
135
|
+
exports.FederatedClaim = FederatedClaim;
|
|
136
|
+
/** @internal */
|
|
137
|
+
FederatedClaim.__pulumiType = 'okta:app/federatedClaim:FederatedClaim';
|
|
138
|
+
//# sourceMappingURL=federatedClaim.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"federatedClaim.js","sourceRoot":"","sources":["../../app/federatedClaim.ts"],"names":[],"mappings":";AAAA,sEAAsE;AACtE,iFAAiF;;;AAEjF,yCAAyC;AACzC,0CAA0C;AAE1C;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA8EG;AACH,MAAa,cAAe,SAAQ,MAAM,CAAC,cAAc;IACrD;;;;;;;;OAQG;IACI,MAAM,CAAC,GAAG,CAAC,IAAY,EAAE,EAA2B,EAAE,KAA2B,EAAE,IAAmC;QACzH,OAAO,IAAI,cAAc,CAAC,IAAI,EAAO,KAAK,EAAE,EAAE,GAAG,IAAI,EAAE,EAAE,EAAE,EAAE,EAAE,CAAC,CAAC;IACrE,CAAC;IAKD;;;OAGG;IACI,MAAM,CAAC,UAAU,CAAC,GAAQ;QAC7B,IAAI,GAAG,KAAK,SAAS,IAAI,GAAG,KAAK,IAAI,EAAE;YACnC,OAAO,KAAK,CAAC;SAChB;QACD,OAAO,GAAG,CAAC,cAAc,CAAC,KAAK,cAAc,CAAC,YAAY,CAAC;IAC/D,CAAC;IAuBD,YAAY,IAAY,EAAE,WAAsD,EAAE,IAAmC;QACjH,IAAI,cAAc,GAAkB,EAAE,CAAC;QACvC,IAAI,GAAG,IAAI,IAAI,EAAE,CAAC;QAClB,IAAI,IAAI,CAAC,EAAE,EAAE;YACT,MAAM,KAAK,GAAG,WAA8C,CAAC;YAC7D,cAAc,CAAC,OAAO,CAAC,GAAG,KAAK,EAAE,KAAK,CAAC;YACvC,cAAc,CAAC,YAAY,CAAC,GAAG,KAAK,EAAE,UAAU,CAAC;YACjD,cAAc,CAAC,MAAM,CAAC,GAAG,KAAK,EAAE,IAAI,CAAC;SACxC;aAAM;YACH,MAAM,IAAI,GAAG,WAA6C,CAAC;YAC3D,IAAI,IAAI,EAAE,KAAK,KAAK,SAAS,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBACxC,MAAM,IAAI,KAAK,CAAC,mCAAmC,CAAC,CAAC;aACxD;YACD,IAAI,IAAI,EAAE,UAAU,KAAK,SAAS,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBAC7C,MAAM,IAAI,KAAK,CAAC,wCAAwC,CAAC,CAAC;aAC7D;YACD,cAAc,CAAC,OAAO,CAAC,GAAG,IAAI,EAAE,KAAK,CAAC;YACtC,cAAc,CAAC,YAAY,CAAC,GAAG,IAAI,EAAE,UAAU,CAAC;YAChD,cAAc,CAAC,MAAM,CAAC,GAAG,IAAI,EAAE,IAAI,CAAC;SACvC;QACD,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,CAAC,CAAC;QACnE,KAAK,CAAC,cAAc,CAAC,YAAY,EAAE,IAAI,EAAE,cAAc,EAAE,IAAI,CAAC,CAAC;IACnE,CAAC;;AAvEL,wCAwEC;AA1DG,gBAAgB;AACO,2BAAY,GAAG,wCAAwC,CAAC"}
|
|
@@ -0,0 +1,148 @@
|
|
|
1
|
+
import * as pulumi from "@pulumi/pulumi";
|
|
2
|
+
/**
|
|
3
|
+
* Get a federated claim for an Okta application.
|
|
4
|
+
*
|
|
5
|
+
* Use this data source to retrieve information about a federated claim that has been configured for an application. Federated claims add custom claims to tokens produced for an application using Okta Expression Language.
|
|
6
|
+
*
|
|
7
|
+
* ## Example Usage
|
|
8
|
+
*
|
|
9
|
+
* ```typescript
|
|
10
|
+
* import * as pulumi from "@pulumi/pulumi";
|
|
11
|
+
* import * as okta from "@pulumi/okta";
|
|
12
|
+
*
|
|
13
|
+
* const example = okta.app.getFederatedClaim({
|
|
14
|
+
* appId: "0oa1234567890abcdef",
|
|
15
|
+
* id: "ofcu234567890abcdef",
|
|
16
|
+
* });
|
|
17
|
+
* export const claimExpression = example.then(example => example.expression);
|
|
18
|
+
* ```
|
|
19
|
+
*
|
|
20
|
+
* ### Using with a Resource
|
|
21
|
+
*
|
|
22
|
+
* ```typescript
|
|
23
|
+
* import * as pulumi from "@pulumi/pulumi";
|
|
24
|
+
* import * as okta from "@pulumi/okta";
|
|
25
|
+
*
|
|
26
|
+
* const testApp = new okta.app.Saml("test_app", {
|
|
27
|
+
* label: "example",
|
|
28
|
+
* ssoUrl: "https://example.com",
|
|
29
|
+
* recipient: "https://example.com",
|
|
30
|
+
* destination: "https://example.com",
|
|
31
|
+
* audience: "https://example.com/audience",
|
|
32
|
+
* subjectNameIdTemplate: "${user.userName}",
|
|
33
|
+
* subjectNameIdFormat: "urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress",
|
|
34
|
+
* responseSigned: true,
|
|
35
|
+
* signatureAlgorithm: "RSA_SHA256",
|
|
36
|
+
* digestAlgorithm: "SHA256",
|
|
37
|
+
* });
|
|
38
|
+
* const exampleFederatedClaim = new okta.app.FederatedClaim("example", {
|
|
39
|
+
* appId: testApp.id,
|
|
40
|
+
* name: "role_last_name",
|
|
41
|
+
* expression: "user.profile.lastName",
|
|
42
|
+
* });
|
|
43
|
+
* const example = okta.app.getFederatedClaimOutput({
|
|
44
|
+
* appId: testApp.id,
|
|
45
|
+
* id: exampleFederatedClaim.id,
|
|
46
|
+
* });
|
|
47
|
+
* export const claimName = example.apply(example => example.name);
|
|
48
|
+
* export const claimExpression = example.apply(example => example.expression);
|
|
49
|
+
* ```
|
|
50
|
+
*/
|
|
51
|
+
export declare function getFederatedClaim(args: GetFederatedClaimArgs, opts?: pulumi.InvokeOptions): Promise<GetFederatedClaimResult>;
|
|
52
|
+
/**
|
|
53
|
+
* A collection of arguments for invoking getFederatedClaim.
|
|
54
|
+
*/
|
|
55
|
+
export interface GetFederatedClaimArgs {
|
|
56
|
+
/**
|
|
57
|
+
* The ID of the application that the federated claim belongs to.
|
|
58
|
+
*/
|
|
59
|
+
appId: string;
|
|
60
|
+
/**
|
|
61
|
+
* The unique identifier for the federated claim.
|
|
62
|
+
*/
|
|
63
|
+
id: string;
|
|
64
|
+
}
|
|
65
|
+
/**
|
|
66
|
+
* A collection of values returned by getFederatedClaim.
|
|
67
|
+
*/
|
|
68
|
+
export interface GetFederatedClaimResult {
|
|
69
|
+
/**
|
|
70
|
+
* The ID of the application that the federated claim belongs to.
|
|
71
|
+
*/
|
|
72
|
+
readonly appId: string;
|
|
73
|
+
/**
|
|
74
|
+
* The Okta Expression Language expression to be evaluated at runtime.
|
|
75
|
+
*/
|
|
76
|
+
readonly expression: string;
|
|
77
|
+
/**
|
|
78
|
+
* The unique identifier for the federated claim.
|
|
79
|
+
*/
|
|
80
|
+
readonly id: string;
|
|
81
|
+
/**
|
|
82
|
+
* The name of the claim to be used in the produced token.
|
|
83
|
+
*/
|
|
84
|
+
readonly name: string;
|
|
85
|
+
}
|
|
86
|
+
/**
|
|
87
|
+
* Get a federated claim for an Okta application.
|
|
88
|
+
*
|
|
89
|
+
* Use this data source to retrieve information about a federated claim that has been configured for an application. Federated claims add custom claims to tokens produced for an application using Okta Expression Language.
|
|
90
|
+
*
|
|
91
|
+
* ## Example Usage
|
|
92
|
+
*
|
|
93
|
+
* ```typescript
|
|
94
|
+
* import * as pulumi from "@pulumi/pulumi";
|
|
95
|
+
* import * as okta from "@pulumi/okta";
|
|
96
|
+
*
|
|
97
|
+
* const example = okta.app.getFederatedClaim({
|
|
98
|
+
* appId: "0oa1234567890abcdef",
|
|
99
|
+
* id: "ofcu234567890abcdef",
|
|
100
|
+
* });
|
|
101
|
+
* export const claimExpression = example.then(example => example.expression);
|
|
102
|
+
* ```
|
|
103
|
+
*
|
|
104
|
+
* ### Using with a Resource
|
|
105
|
+
*
|
|
106
|
+
* ```typescript
|
|
107
|
+
* import * as pulumi from "@pulumi/pulumi";
|
|
108
|
+
* import * as okta from "@pulumi/okta";
|
|
109
|
+
*
|
|
110
|
+
* const testApp = new okta.app.Saml("test_app", {
|
|
111
|
+
* label: "example",
|
|
112
|
+
* ssoUrl: "https://example.com",
|
|
113
|
+
* recipient: "https://example.com",
|
|
114
|
+
* destination: "https://example.com",
|
|
115
|
+
* audience: "https://example.com/audience",
|
|
116
|
+
* subjectNameIdTemplate: "${user.userName}",
|
|
117
|
+
* subjectNameIdFormat: "urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress",
|
|
118
|
+
* responseSigned: true,
|
|
119
|
+
* signatureAlgorithm: "RSA_SHA256",
|
|
120
|
+
* digestAlgorithm: "SHA256",
|
|
121
|
+
* });
|
|
122
|
+
* const exampleFederatedClaim = new okta.app.FederatedClaim("example", {
|
|
123
|
+
* appId: testApp.id,
|
|
124
|
+
* name: "role_last_name",
|
|
125
|
+
* expression: "user.profile.lastName",
|
|
126
|
+
* });
|
|
127
|
+
* const example = okta.app.getFederatedClaimOutput({
|
|
128
|
+
* appId: testApp.id,
|
|
129
|
+
* id: exampleFederatedClaim.id,
|
|
130
|
+
* });
|
|
131
|
+
* export const claimName = example.apply(example => example.name);
|
|
132
|
+
* export const claimExpression = example.apply(example => example.expression);
|
|
133
|
+
* ```
|
|
134
|
+
*/
|
|
135
|
+
export declare function getFederatedClaimOutput(args: GetFederatedClaimOutputArgs, opts?: pulumi.InvokeOutputOptions): pulumi.Output<GetFederatedClaimResult>;
|
|
136
|
+
/**
|
|
137
|
+
* A collection of arguments for invoking getFederatedClaim.
|
|
138
|
+
*/
|
|
139
|
+
export interface GetFederatedClaimOutputArgs {
|
|
140
|
+
/**
|
|
141
|
+
* The ID of the application that the federated claim belongs to.
|
|
142
|
+
*/
|
|
143
|
+
appId: pulumi.Input<string>;
|
|
144
|
+
/**
|
|
145
|
+
* The unique identifier for the federated claim.
|
|
146
|
+
*/
|
|
147
|
+
id: pulumi.Input<string>;
|
|
148
|
+
}
|
|
@@ -0,0 +1,122 @@
|
|
|
1
|
+
"use strict";
|
|
2
|
+
// *** WARNING: this file was generated by pulumi-language-nodejs. ***
|
|
3
|
+
// *** Do not edit by hand unless you're certain you know what you are doing! ***
|
|
4
|
+
Object.defineProperty(exports, "__esModule", { value: true });
|
|
5
|
+
exports.getFederatedClaimOutput = exports.getFederatedClaim = void 0;
|
|
6
|
+
const pulumi = require("@pulumi/pulumi");
|
|
7
|
+
const utilities = require("../utilities");
|
|
8
|
+
/**
|
|
9
|
+
* Get a federated claim for an Okta application.
|
|
10
|
+
*
|
|
11
|
+
* Use this data source to retrieve information about a federated claim that has been configured for an application. Federated claims add custom claims to tokens produced for an application using Okta Expression Language.
|
|
12
|
+
*
|
|
13
|
+
* ## Example Usage
|
|
14
|
+
*
|
|
15
|
+
* ```typescript
|
|
16
|
+
* import * as pulumi from "@pulumi/pulumi";
|
|
17
|
+
* import * as okta from "@pulumi/okta";
|
|
18
|
+
*
|
|
19
|
+
* const example = okta.app.getFederatedClaim({
|
|
20
|
+
* appId: "0oa1234567890abcdef",
|
|
21
|
+
* id: "ofcu234567890abcdef",
|
|
22
|
+
* });
|
|
23
|
+
* export const claimExpression = example.then(example => example.expression);
|
|
24
|
+
* ```
|
|
25
|
+
*
|
|
26
|
+
* ### Using with a Resource
|
|
27
|
+
*
|
|
28
|
+
* ```typescript
|
|
29
|
+
* import * as pulumi from "@pulumi/pulumi";
|
|
30
|
+
* import * as okta from "@pulumi/okta";
|
|
31
|
+
*
|
|
32
|
+
* const testApp = new okta.app.Saml("test_app", {
|
|
33
|
+
* label: "example",
|
|
34
|
+
* ssoUrl: "https://example.com",
|
|
35
|
+
* recipient: "https://example.com",
|
|
36
|
+
* destination: "https://example.com",
|
|
37
|
+
* audience: "https://example.com/audience",
|
|
38
|
+
* subjectNameIdTemplate: "${user.userName}",
|
|
39
|
+
* subjectNameIdFormat: "urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress",
|
|
40
|
+
* responseSigned: true,
|
|
41
|
+
* signatureAlgorithm: "RSA_SHA256",
|
|
42
|
+
* digestAlgorithm: "SHA256",
|
|
43
|
+
* });
|
|
44
|
+
* const exampleFederatedClaim = new okta.app.FederatedClaim("example", {
|
|
45
|
+
* appId: testApp.id,
|
|
46
|
+
* name: "role_last_name",
|
|
47
|
+
* expression: "user.profile.lastName",
|
|
48
|
+
* });
|
|
49
|
+
* const example = okta.app.getFederatedClaimOutput({
|
|
50
|
+
* appId: testApp.id,
|
|
51
|
+
* id: exampleFederatedClaim.id,
|
|
52
|
+
* });
|
|
53
|
+
* export const claimName = example.apply(example => example.name);
|
|
54
|
+
* export const claimExpression = example.apply(example => example.expression);
|
|
55
|
+
* ```
|
|
56
|
+
*/
|
|
57
|
+
function getFederatedClaim(args, opts) {
|
|
58
|
+
opts = pulumi.mergeOptions(utilities.resourceOptsDefaults(), opts || {});
|
|
59
|
+
return pulumi.runtime.invoke("okta:app/getFederatedClaim:getFederatedClaim", {
|
|
60
|
+
"appId": args.appId,
|
|
61
|
+
"id": args.id,
|
|
62
|
+
}, opts);
|
|
63
|
+
}
|
|
64
|
+
exports.getFederatedClaim = getFederatedClaim;
|
|
65
|
+
/**
|
|
66
|
+
* Get a federated claim for an Okta application.
|
|
67
|
+
*
|
|
68
|
+
* Use this data source to retrieve information about a federated claim that has been configured for an application. Federated claims add custom claims to tokens produced for an application using Okta Expression Language.
|
|
69
|
+
*
|
|
70
|
+
* ## Example Usage
|
|
71
|
+
*
|
|
72
|
+
* ```typescript
|
|
73
|
+
* import * as pulumi from "@pulumi/pulumi";
|
|
74
|
+
* import * as okta from "@pulumi/okta";
|
|
75
|
+
*
|
|
76
|
+
* const example = okta.app.getFederatedClaim({
|
|
77
|
+
* appId: "0oa1234567890abcdef",
|
|
78
|
+
* id: "ofcu234567890abcdef",
|
|
79
|
+
* });
|
|
80
|
+
* export const claimExpression = example.then(example => example.expression);
|
|
81
|
+
* ```
|
|
82
|
+
*
|
|
83
|
+
* ### Using with a Resource
|
|
84
|
+
*
|
|
85
|
+
* ```typescript
|
|
86
|
+
* import * as pulumi from "@pulumi/pulumi";
|
|
87
|
+
* import * as okta from "@pulumi/okta";
|
|
88
|
+
*
|
|
89
|
+
* const testApp = new okta.app.Saml("test_app", {
|
|
90
|
+
* label: "example",
|
|
91
|
+
* ssoUrl: "https://example.com",
|
|
92
|
+
* recipient: "https://example.com",
|
|
93
|
+
* destination: "https://example.com",
|
|
94
|
+
* audience: "https://example.com/audience",
|
|
95
|
+
* subjectNameIdTemplate: "${user.userName}",
|
|
96
|
+
* subjectNameIdFormat: "urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress",
|
|
97
|
+
* responseSigned: true,
|
|
98
|
+
* signatureAlgorithm: "RSA_SHA256",
|
|
99
|
+
* digestAlgorithm: "SHA256",
|
|
100
|
+
* });
|
|
101
|
+
* const exampleFederatedClaim = new okta.app.FederatedClaim("example", {
|
|
102
|
+
* appId: testApp.id,
|
|
103
|
+
* name: "role_last_name",
|
|
104
|
+
* expression: "user.profile.lastName",
|
|
105
|
+
* });
|
|
106
|
+
* const example = okta.app.getFederatedClaimOutput({
|
|
107
|
+
* appId: testApp.id,
|
|
108
|
+
* id: exampleFederatedClaim.id,
|
|
109
|
+
* });
|
|
110
|
+
* export const claimName = example.apply(example => example.name);
|
|
111
|
+
* export const claimExpression = example.apply(example => example.expression);
|
|
112
|
+
* ```
|
|
113
|
+
*/
|
|
114
|
+
function getFederatedClaimOutput(args, opts) {
|
|
115
|
+
opts = pulumi.mergeOptions(utilities.resourceOptsDefaults(), opts || {});
|
|
116
|
+
return pulumi.runtime.invokeOutput("okta:app/getFederatedClaim:getFederatedClaim", {
|
|
117
|
+
"appId": args.appId,
|
|
118
|
+
"id": args.id,
|
|
119
|
+
}, opts);
|
|
120
|
+
}
|
|
121
|
+
exports.getFederatedClaimOutput = getFederatedClaimOutput;
|
|
122
|
+
//# sourceMappingURL=getFederatedClaim.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"getFederatedClaim.js","sourceRoot":"","sources":["../../app/getFederatedClaim.ts"],"names":[],"mappings":";AAAA,sEAAsE;AACtE,iFAAiF;;;AAEjF,yCAAyC;AACzC,0CAA0C;AAE1C;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAgDG;AACH,SAAgB,iBAAiB,CAAC,IAA2B,EAAE,IAA2B;IACtF,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,IAAI,EAAE,CAAC,CAAC;IACzE,OAAO,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,8CAA8C,EAAE;QACzE,OAAO,EAAE,IAAI,CAAC,KAAK;QACnB,IAAI,EAAE,IAAI,CAAC,EAAE;KAChB,EAAE,IAAI,CAAC,CAAC;AACb,CAAC;AAND,8CAMC;AAqCD;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAgDG;AACH,SAAgB,uBAAuB,CAAC,IAAiC,EAAE,IAAiC;IACxG,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,IAAI,EAAE,CAAC,CAAC;IACzE,OAAO,MAAM,CAAC,OAAO,CAAC,YAAY,CAAC,8CAA8C,EAAE;QAC/E,OAAO,EAAE,IAAI,CAAC,KAAK;QACnB,IAAI,EAAE,IAAI,CAAC,EAAE;KAChB,EAAE,IAAI,CAAC,CAAC;AACb,CAAC;AAND,0DAMC"}
|
package/app/index.d.ts
CHANGED
|
@@ -16,6 +16,9 @@ export declare const Connection: typeof import("./connection").Connection;
|
|
|
16
16
|
export { FeaturesArgs, FeaturesState } from "./features";
|
|
17
17
|
export type Features = import("./features").Features;
|
|
18
18
|
export declare const Features: typeof import("./features").Features;
|
|
19
|
+
export { FederatedClaimArgs, FederatedClaimState } from "./federatedClaim";
|
|
20
|
+
export type FederatedClaim = import("./federatedClaim").FederatedClaim;
|
|
21
|
+
export declare const FederatedClaim: typeof import("./federatedClaim").FederatedClaim;
|
|
19
22
|
export { GetAppArgs, GetAppResult, GetAppOutputArgs } from "./getApp";
|
|
20
23
|
export declare const getApp: typeof import("./getApp").getApp;
|
|
21
24
|
export declare const getAppOutput: typeof import("./getApp").getAppOutput;
|
|
@@ -25,6 +28,9 @@ export declare const getConnectionOutput: typeof import("./getConnection").getCo
|
|
|
25
28
|
export { GetFeaturesArgs, GetFeaturesResult, GetFeaturesOutputArgs } from "./getFeatures";
|
|
26
29
|
export declare const getFeatures: typeof import("./getFeatures").getFeatures;
|
|
27
30
|
export declare const getFeaturesOutput: typeof import("./getFeatures").getFeaturesOutput;
|
|
31
|
+
export { GetFederatedClaimArgs, GetFederatedClaimResult, GetFederatedClaimOutputArgs } from "./getFederatedClaim";
|
|
32
|
+
export declare const getFederatedClaim: typeof import("./getFederatedClaim").getFederatedClaim;
|
|
33
|
+
export declare const getFederatedClaimOutput: typeof import("./getFederatedClaim").getFederatedClaimOutput;
|
|
28
34
|
export { GetMetadataSamlArgs, GetMetadataSamlResult, GetMetadataSamlOutputArgs } from "./getMetadataSaml";
|
|
29
35
|
export declare const getMetadataSaml: typeof import("./getMetadataSaml").getMetadataSaml;
|
|
30
36
|
export declare const getMetadataSamlOutput: typeof import("./getMetadataSaml").getMetadataSamlOutput;
|
package/app/index.js
CHANGED
|
@@ -2,7 +2,7 @@
|
|
|
2
2
|
// *** WARNING: this file was generated by pulumi-language-nodejs. ***
|
|
3
3
|
// *** Do not edit by hand unless you're certain you know what you are doing! ***
|
|
4
4
|
Object.defineProperty(exports, "__esModule", { value: true });
|
|
5
|
-
exports.User = exports.Token = exports.ThreeField = exports.Swa = exports.SecurePasswordStore = exports.Saml = exports.OauthRoleAssignment = exports.OAuthRedirectUri = exports.OAuthPostLogoutRedirectUri = exports.OAuth = exports.GroupAssignment = exports.getTokenOutput = exports.getToken = exports.getSamlOutput = exports.getSaml = exports.getOauthOutput = exports.getOauth = exports.getMetadataSamlOutput = exports.getMetadataSaml = exports.getFeaturesOutput = exports.getFeatures = exports.getConnectionOutput = exports.getConnection = exports.getAppOutput = exports.getApp = exports.Features = exports.Connection = exports.Bookmark = exports.BasicAuth = exports.AutoLogin = exports.AccessPolicyAssignment = void 0;
|
|
5
|
+
exports.User = exports.Token = exports.ThreeField = exports.Swa = exports.SecurePasswordStore = exports.Saml = exports.OauthRoleAssignment = exports.OAuthRedirectUri = exports.OAuthPostLogoutRedirectUri = exports.OAuth = exports.GroupAssignment = exports.getTokenOutput = exports.getToken = exports.getSamlOutput = exports.getSaml = exports.getOauthOutput = exports.getOauth = exports.getMetadataSamlOutput = exports.getMetadataSaml = exports.getFederatedClaimOutput = exports.getFederatedClaim = exports.getFeaturesOutput = exports.getFeatures = exports.getConnectionOutput = exports.getConnection = exports.getAppOutput = exports.getApp = exports.FederatedClaim = exports.Features = exports.Connection = exports.Bookmark = exports.BasicAuth = exports.AutoLogin = exports.AccessPolicyAssignment = void 0;
|
|
6
6
|
const pulumi = require("@pulumi/pulumi");
|
|
7
7
|
const utilities = require("../utilities");
|
|
8
8
|
exports.AccessPolicyAssignment = null;
|
|
@@ -17,6 +17,8 @@ exports.Connection = null;
|
|
|
17
17
|
utilities.lazyLoad(exports, ["Connection"], () => require("./connection"));
|
|
18
18
|
exports.Features = null;
|
|
19
19
|
utilities.lazyLoad(exports, ["Features"], () => require("./features"));
|
|
20
|
+
exports.FederatedClaim = null;
|
|
21
|
+
utilities.lazyLoad(exports, ["FederatedClaim"], () => require("./federatedClaim"));
|
|
20
22
|
exports.getApp = null;
|
|
21
23
|
exports.getAppOutput = null;
|
|
22
24
|
utilities.lazyLoad(exports, ["getApp", "getAppOutput"], () => require("./getApp"));
|
|
@@ -26,6 +28,9 @@ utilities.lazyLoad(exports, ["getConnection", "getConnectionOutput"], () => requ
|
|
|
26
28
|
exports.getFeatures = null;
|
|
27
29
|
exports.getFeaturesOutput = null;
|
|
28
30
|
utilities.lazyLoad(exports, ["getFeatures", "getFeaturesOutput"], () => require("./getFeatures"));
|
|
31
|
+
exports.getFederatedClaim = null;
|
|
32
|
+
exports.getFederatedClaimOutput = null;
|
|
33
|
+
utilities.lazyLoad(exports, ["getFederatedClaim", "getFederatedClaimOutput"], () => require("./getFederatedClaim"));
|
|
29
34
|
exports.getMetadataSaml = null;
|
|
30
35
|
exports.getMetadataSamlOutput = null;
|
|
31
36
|
utilities.lazyLoad(exports, ["getMetadataSaml", "getMetadataSamlOutput"], () => require("./getMetadataSaml"));
|
|
@@ -76,6 +81,8 @@ const _module = {
|
|
|
76
81
|
return new exports.Connection(name, undefined, { urn });
|
|
77
82
|
case "okta:app/features:Features":
|
|
78
83
|
return new exports.Features(name, undefined, { urn });
|
|
84
|
+
case "okta:app/federatedClaim:FederatedClaim":
|
|
85
|
+
return new exports.FederatedClaim(name, undefined, { urn });
|
|
79
86
|
case "okta:app/groupAssignment:GroupAssignment":
|
|
80
87
|
return new exports.GroupAssignment(name, undefined, { urn });
|
|
81
88
|
case "okta:app/oAuth:OAuth":
|
|
@@ -109,6 +116,7 @@ pulumi.runtime.registerResourceModule("okta", "app/basicAuth", _module);
|
|
|
109
116
|
pulumi.runtime.registerResourceModule("okta", "app/bookmark", _module);
|
|
110
117
|
pulumi.runtime.registerResourceModule("okta", "app/connection", _module);
|
|
111
118
|
pulumi.runtime.registerResourceModule("okta", "app/features", _module);
|
|
119
|
+
pulumi.runtime.registerResourceModule("okta", "app/federatedClaim", _module);
|
|
112
120
|
pulumi.runtime.registerResourceModule("okta", "app/groupAssignment", _module);
|
|
113
121
|
pulumi.runtime.registerResourceModule("okta", "app/oAuth", _module);
|
|
114
122
|
pulumi.runtime.registerResourceModule("okta", "app/oAuthPostLogoutRedirectUri", _module);
|
package/app/index.js.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"index.js","sourceRoot":"","sources":["../../app/index.ts"],"names":[],"mappings":";AAAA,sEAAsE;AACtE,iFAAiF;;;AAEjF,yCAAyC;AACzC,0CAA0C;AAK7B,QAAA,sBAAsB,GAAqE,IAAW,CAAC;AACpH,SAAS,CAAC,QAAQ,CAAC,OAAO,EAAE,CAAC,wBAAwB,CAAC,EAAE,GAAG,EAAE,CAAC,OAAO,CAAC,0BAA0B,CAAC,CAAC,CAAC;AAItF,QAAA,SAAS,GAA2C,IAAW,CAAC;AAC7E,SAAS,CAAC,QAAQ,CAAC,OAAO,EAAE,CAAC,WAAW,CAAC,EAAE,GAAG,EAAE,CAAC,OAAO,CAAC,aAAa,CAAC,CAAC,CAAC;AAI5D,QAAA,SAAS,GAA2C,IAAW,CAAC;AAC7E,SAAS,CAAC,QAAQ,CAAC,OAAO,EAAE,CAAC,WAAW,CAAC,EAAE,GAAG,EAAE,CAAC,OAAO,CAAC,aAAa,CAAC,CAAC,CAAC;AAI5D,QAAA,QAAQ,GAAyC,IAAW,CAAC;AAC1E,SAAS,CAAC,QAAQ,CAAC,OAAO,EAAE,CAAC,UAAU,CAAC,EAAE,GAAG,EAAE,CAAC,OAAO,CAAC,YAAY,CAAC,CAAC,CAAC;AAI1D,QAAA,UAAU,GAA6C,IAAW,CAAC;AAChF,SAAS,CAAC,QAAQ,CAAC,OAAO,EAAE,CAAC,YAAY,CAAC,EAAE,GAAG,EAAE,CAAC,OAAO,CAAC,cAAc,CAAC,CAAC,CAAC;AAI9D,QAAA,QAAQ,GAAyC,IAAW,CAAC;AAC1E,SAAS,CAAC,QAAQ,CAAC,OAAO,EAAE,CAAC,UAAU,CAAC,EAAE,GAAG,EAAE,CAAC,OAAO,CAAC,YAAY,CAAC,CAAC,CAAC;
|
|
1
|
+
{"version":3,"file":"index.js","sourceRoot":"","sources":["../../app/index.ts"],"names":[],"mappings":";AAAA,sEAAsE;AACtE,iFAAiF;;;AAEjF,yCAAyC;AACzC,0CAA0C;AAK7B,QAAA,sBAAsB,GAAqE,IAAW,CAAC;AACpH,SAAS,CAAC,QAAQ,CAAC,OAAO,EAAE,CAAC,wBAAwB,CAAC,EAAE,GAAG,EAAE,CAAC,OAAO,CAAC,0BAA0B,CAAC,CAAC,CAAC;AAItF,QAAA,SAAS,GAA2C,IAAW,CAAC;AAC7E,SAAS,CAAC,QAAQ,CAAC,OAAO,EAAE,CAAC,WAAW,CAAC,EAAE,GAAG,EAAE,CAAC,OAAO,CAAC,aAAa,CAAC,CAAC,CAAC;AAI5D,QAAA,SAAS,GAA2C,IAAW,CAAC;AAC7E,SAAS,CAAC,QAAQ,CAAC,OAAO,EAAE,CAAC,WAAW,CAAC,EAAE,GAAG,EAAE,CAAC,OAAO,CAAC,aAAa,CAAC,CAAC,CAAC;AAI5D,QAAA,QAAQ,GAAyC,IAAW,CAAC;AAC1E,SAAS,CAAC,QAAQ,CAAC,OAAO,EAAE,CAAC,UAAU,CAAC,EAAE,GAAG,EAAE,CAAC,OAAO,CAAC,YAAY,CAAC,CAAC,CAAC;AAI1D,QAAA,UAAU,GAA6C,IAAW,CAAC;AAChF,SAAS,CAAC,QAAQ,CAAC,OAAO,EAAE,CAAC,YAAY,CAAC,EAAE,GAAG,EAAE,CAAC,OAAO,CAAC,cAAc,CAAC,CAAC,CAAC;AAI9D,QAAA,QAAQ,GAAyC,IAAW,CAAC;AAC1E,SAAS,CAAC,QAAQ,CAAC,OAAO,EAAE,CAAC,UAAU,CAAC,EAAE,GAAG,EAAE,CAAC,OAAO,CAAC,YAAY,CAAC,CAAC,CAAC;AAI1D,QAAA,cAAc,GAAqD,IAAW,CAAC;AAC5F,SAAS,CAAC,QAAQ,CAAC,OAAO,EAAE,CAAC,gBAAgB,CAAC,EAAE,GAAG,EAAE,CAAC,OAAO,CAAC,kBAAkB,CAAC,CAAC,CAAC;AAGtE,QAAA,MAAM,GAAqC,IAAW,CAAC;AACvD,QAAA,YAAY,GAA2C,IAAW,CAAC;AAChF,SAAS,CAAC,QAAQ,CAAC,OAAO,EAAE,CAAC,QAAQ,EAAC,cAAc,CAAC,EAAE,GAAG,EAAE,CAAC,OAAO,CAAC,UAAU,CAAC,CAAC,CAAC;AAGrE,QAAA,aAAa,GAAmD,IAAW,CAAC;AAC5E,QAAA,mBAAmB,GAAyD,IAAW,CAAC;AACrG,SAAS,CAAC,QAAQ,CAAC,OAAO,EAAE,CAAC,eAAe,EAAC,qBAAqB,CAAC,EAAE,GAAG,EAAE,CAAC,OAAO,CAAC,iBAAiB,CAAC,CAAC,CAAC;AAG1F,QAAA,WAAW,GAA+C,IAAW,CAAC;AACtE,QAAA,iBAAiB,GAAqD,IAAW,CAAC;AAC/F,SAAS,CAAC,QAAQ,CAAC,OAAO,EAAE,CAAC,aAAa,EAAC,mBAAmB,CAAC,EAAE,GAAG,EAAE,CAAC,OAAO,CAAC,eAAe,CAAC,CAAC,CAAC;AAGpF,QAAA,iBAAiB,GAA2D,IAAW,CAAC;AACxF,QAAA,uBAAuB,GAAiE,IAAW,CAAC;AACjH,SAAS,CAAC,QAAQ,CAAC,OAAO,EAAE,CAAC,mBAAmB,EAAC,yBAAyB,CAAC,EAAE,GAAG,EAAE,CAAC,OAAO,CAAC,qBAAqB,CAAC,CAAC,CAAC;AAGtG,QAAA,eAAe,GAAuD,IAAW,CAAC;AAClF,QAAA,qBAAqB,GAA6D,IAAW,CAAC;AAC3G,SAAS,CAAC,QAAQ,CAAC,OAAO,EAAE,CAAC,iBAAiB,EAAC,uBAAuB,CAAC,EAAE,GAAG,EAAE,CAAC,OAAO,CAAC,mBAAmB,CAAC,CAAC,CAAC;AAGhG,QAAA,QAAQ,GAAyC,IAAW,CAAC;AAC7D,QAAA,cAAc,GAA+C,IAAW,CAAC;AACtF,SAAS,CAAC,QAAQ,CAAC,OAAO,EAAE,CAAC,UAAU,EAAC,gBAAgB,CAAC,EAAE,GAAG,EAAE,CAAC,OAAO,CAAC,YAAY,CAAC,CAAC,CAAC;AAG3E,QAAA,OAAO,GAAuC,IAAW,CAAC;AAC1D,QAAA,aAAa,GAA6C,IAAW,CAAC;AACnF,SAAS,CAAC,QAAQ,CAAC,OAAO,EAAE,CAAC,SAAS,EAAC,eAAe,CAAC,EAAE,GAAG,EAAE,CAAC,OAAO,CAAC,WAAW,CAAC,CAAC,CAAC;AAGxE,QAAA,QAAQ,GAAyC,IAAW,CAAC;AAC7D,QAAA,cAAc,GAA+C,IAAW,CAAC;AACtF,SAAS,CAAC,QAAQ,CAAC,OAAO,EAAE,CAAC,UAAU,EAAC,gBAAgB,CAAC,EAAE,GAAG,EAAE,CAAC,OAAO,CAAC,YAAY,CAAC,CAAC,CAAC;AAI3E,QAAA,eAAe,GAAuD,IAAW,CAAC;AAC/F,SAAS,CAAC,QAAQ,CAAC,OAAO,EAAE,CAAC,iBAAiB,CAAC,EAAE,GAAG,EAAE,CAAC,OAAO,CAAC,mBAAmB,CAAC,CAAC,CAAC;AAIxE,QAAA,KAAK,GAAmC,IAAW,CAAC;AACjE,SAAS,CAAC,QAAQ,CAAC,OAAO,EAAE,CAAC,OAAO,CAAC,EAAE,GAAG,EAAE,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC,CAAC;AAIpD,QAAA,0BAA0B,GAA6E,IAAW,CAAC;AAChI,SAAS,CAAC,QAAQ,CAAC,OAAO,EAAE,CAAC,4BAA4B,CAAC,EAAE,GAAG,EAAE,CAAC,OAAO,CAAC,8BAA8B,CAAC,CAAC,CAAC;AAI9F,QAAA,gBAAgB,GAAyD,IAAW,CAAC;AAClG,SAAS,CAAC,QAAQ,CAAC,OAAO,EAAE,CAAC,kBAAkB,CAAC,EAAE,GAAG,EAAE,CAAC,OAAO,CAAC,oBAAoB,CAAC,CAAC,CAAC;AAI1E,QAAA,mBAAmB,GAA+D,IAAW,CAAC;AAC3G,SAAS,CAAC,QAAQ,CAAC,OAAO,EAAE,CAAC,qBAAqB,CAAC,EAAE,GAAG,EAAE,CAAC,OAAO,CAAC,uBAAuB,CAAC,CAAC,CAAC;AAIhF,QAAA,IAAI,GAAiC,IAAW,CAAC;AAC9D,SAAS,CAAC,QAAQ,CAAC,OAAO,EAAE,CAAC,MAAM,CAAC,EAAE,GAAG,EAAE,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC,CAAC;AAIlD,QAAA,mBAAmB,GAA+D,IAAW,CAAC;AAC3G,SAAS,CAAC,QAAQ,CAAC,OAAO,EAAE,CAAC,qBAAqB,CAAC,EAAE,GAAG,EAAE,CAAC,OAAO,CAAC,uBAAuB,CAAC,CAAC,CAAC;AAIhF,QAAA,GAAG,GAA+B,IAAW,CAAC;AAC3D,SAAS,CAAC,QAAQ,CAAC,OAAO,EAAE,CAAC,KAAK,CAAC,EAAE,GAAG,EAAE,CAAC,OAAO,CAAC,OAAO,CAAC,CAAC,CAAC;AAIhD,QAAA,UAAU,GAA6C,IAAW,CAAC;AAChF,SAAS,CAAC,QAAQ,CAAC,OAAO,EAAE,CAAC,YAAY,CAAC,EAAE,GAAG,EAAE,CAAC,OAAO,CAAC,cAAc,CAAC,CAAC,CAAC;AAI9D,QAAA,KAAK,GAAmC,IAAW,CAAC;AACjE,SAAS,CAAC,QAAQ,CAAC,OAAO,EAAE,CAAC,OAAO,CAAC,EAAE,GAAG,EAAE,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC,CAAC;AAIpD,QAAA,IAAI,GAAiC,IAAW,CAAC;AAC9D,SAAS,CAAC,QAAQ,CAAC,OAAO,EAAE,CAAC,MAAM,CAAC,EAAE,GAAG,EAAE,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC,CAAC;AAG/D,MAAM,OAAO,GAAG;IACZ,OAAO,EAAE,SAAS,CAAC,UAAU,EAAE;IAC/B,SAAS,EAAE,CAAC,IAAY,EAAE,IAAY,EAAE,GAAW,EAAmB,EAAE;QACpE,QAAQ,IAAI,EAAE;YACV,KAAK,wDAAwD;gBACzD,OAAO,IAAI,8BAAsB,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YACpE,KAAK,8BAA8B;gBAC/B,OAAO,IAAI,iBAAS,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YACvD,KAAK,8BAA8B;gBAC/B,OAAO,IAAI,iBAAS,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YACvD,KAAK,4BAA4B;gBAC7B,OAAO,IAAI,gBAAQ,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YACtD,KAAK,gCAAgC;gBACjC,OAAO,IAAI,kBAAU,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YACxD,KAAK,4BAA4B;gBAC7B,OAAO,IAAI,gBAAQ,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YACtD,KAAK,wCAAwC;gBACzC,OAAO,IAAI,sBAAc,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YAC5D,KAAK,0CAA0C;gBAC3C,OAAO,IAAI,uBAAe,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YAC7D,KAAK,sBAAsB;gBACvB,OAAO,IAAI,aAAK,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YACnD,KAAK,gEAAgE;gBACjE,OAAO,IAAI,kCAA0B,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YACxE,KAAK,4CAA4C;gBAC7C,OAAO,IAAI,wBAAgB,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YAC9D,KAAK,kDAAkD;gBACnD,OAAO,IAAI,2BAAmB,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YACjE,KAAK,oBAAoB;gBACrB,OAAO,IAAI,YAAI,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YAClD,KAAK,kDAAkD;gBACnD,OAAO,IAAI,2BAAmB,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YACjE,KAAK,kBAAkB;gBACnB,OAAO,IAAI,WAAG,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YACjD,KAAK,gCAAgC;gBACjC,OAAO,IAAI,kBAAU,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YACxD,KAAK,sBAAsB;gBACvB,OAAO,IAAI,aAAK,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YACnD,KAAK,oBAAoB;gBACrB,OAAO,IAAI,YAAI,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YAClD;gBACI,MAAM,IAAI,KAAK,CAAC,yBAAyB,IAAI,EAAE,CAAC,CAAC;SACxD;IACL,CAAC;CACJ,CAAC;AACF,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,MAAM,EAAE,4BAA4B,EAAE,OAAO,CAAC,CAAA;AACpF,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,MAAM,EAAE,eAAe,EAAE,OAAO,CAAC,CAAA;AACvE,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,MAAM,EAAE,eAAe,EAAE,OAAO,CAAC,CAAA;AACvE,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,MAAM,EAAE,cAAc,EAAE,OAAO,CAAC,CAAA;AACtE,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,MAAM,EAAE,gBAAgB,EAAE,OAAO,CAAC,CAAA;AACxE,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,MAAM,EAAE,cAAc,EAAE,OAAO,CAAC,CAAA;AACtE,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,MAAM,EAAE,oBAAoB,EAAE,OAAO,CAAC,CAAA;AAC5E,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,MAAM,EAAE,qBAAqB,EAAE,OAAO,CAAC,CAAA;AAC7E,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,MAAM,EAAE,WAAW,EAAE,OAAO,CAAC,CAAA;AACnE,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,MAAM,EAAE,gCAAgC,EAAE,OAAO,CAAC,CAAA;AACxF,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,MAAM,EAAE,sBAAsB,EAAE,OAAO,CAAC,CAAA;AAC9E,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,MAAM,EAAE,yBAAyB,EAAE,OAAO,CAAC,CAAA;AACjF,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,MAAM,EAAE,UAAU,EAAE,OAAO,CAAC,CAAA;AAClE,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,MAAM,EAAE,yBAAyB,EAAE,OAAO,CAAC,CAAA;AACjF,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,MAAM,EAAE,SAAS,EAAE,OAAO,CAAC,CAAA;AACjE,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,MAAM,EAAE,gBAAgB,EAAE,OAAO,CAAC,CAAA;AACxE,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,MAAM,EAAE,WAAW,EAAE,OAAO,CAAC,CAAA;AACnE,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,MAAM,EAAE,UAAU,EAAE,OAAO,CAAC,CAAA"}
|
package/app/oauth.d.ts
CHANGED
|
@@ -21,6 +21,63 @@ import * as outputs from "../types/output";
|
|
|
21
21
|
* `-----BEGIN RSA PRIVATE KEY-----`) they can generate a PKCS#8 format
|
|
22
22
|
* key with `openssl`:
|
|
23
23
|
*
|
|
24
|
+
* ### Advanced PEM and JWKS example
|
|
25
|
+
*
|
|
26
|
+
* ```typescript
|
|
27
|
+
* import * as pulumi from "@pulumi/pulumi";
|
|
28
|
+
* import * as jwks from "@pulumi/jwks";
|
|
29
|
+
* import * as okta from "@pulumi/okta";
|
|
30
|
+
* import * as std from "@pulumi/std";
|
|
31
|
+
* import * as tls from "@pulumi/tls";
|
|
32
|
+
*
|
|
33
|
+
* // NOTE: Example to generate a PEM easily as a tool. These secrets will be saved
|
|
34
|
+
* // to the state file and shouldn't be persisted. Instead, save the secrets into
|
|
35
|
+
* // a secrets manager to be reused.
|
|
36
|
+
* // https://registry.terraform.io/providers/hashicorp/tls/latest/docs/resources/private_key
|
|
37
|
+
* //
|
|
38
|
+
* // NOTE: Even though tls is a Hashicorp provider you should still audit its code
|
|
39
|
+
* // to be satisfied with its security.
|
|
40
|
+
* // https://github.com/hashicorp/terraform-provider-tls
|
|
41
|
+
* //
|
|
42
|
+
* const rsa = new tls.index.PrivateKey("rsa", {
|
|
43
|
+
* algorithm: "RSA",
|
|
44
|
+
* rsaBits: 4096,
|
|
45
|
+
* });
|
|
46
|
+
* //
|
|
47
|
+
* // Pretty print a PEM with TF show and jq
|
|
48
|
+
* // terraform show -json | jq -r '.values.root_module.resources[] | select(.address == "tls_private_key.rsa").values.private_key_pem'
|
|
49
|
+
* //
|
|
50
|
+
* // Delete the secrets explicitly or just remove them from the config and run
|
|
51
|
+
* // apply again.
|
|
52
|
+
* // pulumi up -destroy -auto-approve -target=tls_private_key.rsa
|
|
53
|
+
* // NOTE: Even though the iwarapter/jwks is listed in the registry you should
|
|
54
|
+
* // still audit its code to be satisfied with its security.
|
|
55
|
+
* // https://registry.terraform.io/providers/iwarapter/jwks/latest/docs/data-sources/from_key
|
|
56
|
+
* // https://github.com/iwarapter/terraform-provider-jwks
|
|
57
|
+
* //
|
|
58
|
+
* const jwksFromKey = jwks.index.FromKey({
|
|
59
|
+
* key: rsa.privateKeyPem,
|
|
60
|
+
* kid: "my-kid",
|
|
61
|
+
* });
|
|
62
|
+
* const jwks = std.index.jsondecode({
|
|
63
|
+
* input: jwksFromKey.jwks,
|
|
64
|
+
* }).result;
|
|
65
|
+
* // https://registry.terraform.io/providers/okta/okta/latest/docs/resources/app_oauth
|
|
66
|
+
* const app = new okta.app.OAuth("app", {
|
|
67
|
+
* label: "My OAuth App",
|
|
68
|
+
* type: "service",
|
|
69
|
+
* responseTypes: ["token"],
|
|
70
|
+
* grantTypes: ["client_credentials"],
|
|
71
|
+
* tokenEndpointAuthMethod: "private_key_jwt",
|
|
72
|
+
* jwks: [{
|
|
73
|
+
* kty: jwks.kty,
|
|
74
|
+
* kid: jwks.kid,
|
|
75
|
+
* e: jwks.e,
|
|
76
|
+
* n: jwks.n,
|
|
77
|
+
* }],
|
|
78
|
+
* });
|
|
79
|
+
* ```
|
|
80
|
+
*
|
|
24
81
|
* ## Import
|
|
25
82
|
*
|
|
26
83
|
* ```sh
|
|
@@ -100,7 +157,7 @@ export declare class OAuth extends pulumi.CustomResource {
|
|
|
100
157
|
*/
|
|
101
158
|
readonly clientUri: pulumi.Output<string | undefined>;
|
|
102
159
|
/**
|
|
103
|
-
* *Early Access Property*. Indicates whether user consent is required or implicit. Valid values: REQUIRED, TRUSTED. Default value is TRUSTED
|
|
160
|
+
* *Early Access Property*. Indicates whether user consent is required or implicit. Valid values: REQUIRED, TRUSTED. Default value is TRUSTED. Note: Enable `API_ACCESS_MANAGEMENT`, `API_ACCESS_MANAGEMENT_CONSENT` feature flags in your org to use this property.
|
|
104
161
|
*/
|
|
105
162
|
readonly consentMethod: pulumi.Output<string | undefined>;
|
|
106
163
|
/**
|
|
@@ -186,7 +243,7 @@ export declare class OAuth extends pulumi.CustomResource {
|
|
|
186
243
|
*/
|
|
187
244
|
readonly omitSecret: pulumi.Output<boolean | undefined>;
|
|
188
245
|
/**
|
|
189
|
-
* *Early Access Property*. Allows the app to participate in front-channel Single Logout. Note: You can only enable
|
|
246
|
+
* *Early Access Property*. Allows the app to participate in front-channel Single Logout. Note: You can only enable participate*slo for web and browser application types. When set to true, frontchannel*logout_uri must also be provided. Enable `SINGLE_LOGOUT_SUPPORT` feature flag in your org to use this property.
|
|
190
247
|
*/
|
|
191
248
|
readonly participateSlo: pulumi.Output<boolean | undefined>;
|
|
192
249
|
/**
|
|
@@ -258,7 +315,7 @@ export declare class OAuth extends pulumi.CustomResource {
|
|
|
258
315
|
*/
|
|
259
316
|
readonly userNameTemplateType: pulumi.Output<string | undefined>;
|
|
260
317
|
/**
|
|
261
|
-
* *Early Access Property*. Indicates if the client is allowed to use wildcard matching of redirect_uris
|
|
318
|
+
* *Early Access Property*. Indicates if the client is allowed to use wildcard matching of redirect_uris.
|
|
262
319
|
*/
|
|
263
320
|
readonly wildcardRedirect: pulumi.Output<string | undefined>;
|
|
264
321
|
/**
|
|
@@ -331,7 +388,7 @@ export interface OAuthState {
|
|
|
331
388
|
*/
|
|
332
389
|
clientUri?: pulumi.Input<string>;
|
|
333
390
|
/**
|
|
334
|
-
* *Early Access Property*. Indicates whether user consent is required or implicit. Valid values: REQUIRED, TRUSTED. Default value is TRUSTED
|
|
391
|
+
* *Early Access Property*. Indicates whether user consent is required or implicit. Valid values: REQUIRED, TRUSTED. Default value is TRUSTED. Note: Enable `API_ACCESS_MANAGEMENT`, `API_ACCESS_MANAGEMENT_CONSENT` feature flags in your org to use this property.
|
|
335
392
|
*/
|
|
336
393
|
consentMethod?: pulumi.Input<string>;
|
|
337
394
|
/**
|
|
@@ -417,7 +474,7 @@ export interface OAuthState {
|
|
|
417
474
|
*/
|
|
418
475
|
omitSecret?: pulumi.Input<boolean>;
|
|
419
476
|
/**
|
|
420
|
-
* *Early Access Property*. Allows the app to participate in front-channel Single Logout. Note: You can only enable
|
|
477
|
+
* *Early Access Property*. Allows the app to participate in front-channel Single Logout. Note: You can only enable participate*slo for web and browser application types. When set to true, frontchannel*logout_uri must also be provided. Enable `SINGLE_LOGOUT_SUPPORT` feature flag in your org to use this property.
|
|
421
478
|
*/
|
|
422
479
|
participateSlo?: pulumi.Input<boolean>;
|
|
423
480
|
/**
|
|
@@ -489,7 +546,7 @@ export interface OAuthState {
|
|
|
489
546
|
*/
|
|
490
547
|
userNameTemplateType?: pulumi.Input<string>;
|
|
491
548
|
/**
|
|
492
|
-
* *Early Access Property*. Indicates if the client is allowed to use wildcard matching of redirect_uris
|
|
549
|
+
* *Early Access Property*. Indicates if the client is allowed to use wildcard matching of redirect_uris.
|
|
493
550
|
*/
|
|
494
551
|
wildcardRedirect?: pulumi.Input<string>;
|
|
495
552
|
}
|
|
@@ -550,7 +607,7 @@ export interface OAuthArgs {
|
|
|
550
607
|
*/
|
|
551
608
|
clientUri?: pulumi.Input<string>;
|
|
552
609
|
/**
|
|
553
|
-
* *Early Access Property*. Indicates whether user consent is required or implicit. Valid values: REQUIRED, TRUSTED. Default value is TRUSTED
|
|
610
|
+
* *Early Access Property*. Indicates whether user consent is required or implicit. Valid values: REQUIRED, TRUSTED. Default value is TRUSTED. Note: Enable `API_ACCESS_MANAGEMENT`, `API_ACCESS_MANAGEMENT_CONSENT` feature flags in your org to use this property.
|
|
554
611
|
*/
|
|
555
612
|
consentMethod?: pulumi.Input<string>;
|
|
556
613
|
/**
|
|
@@ -628,7 +685,7 @@ export interface OAuthArgs {
|
|
|
628
685
|
*/
|
|
629
686
|
omitSecret?: pulumi.Input<boolean>;
|
|
630
687
|
/**
|
|
631
|
-
* *Early Access Property*. Allows the app to participate in front-channel Single Logout. Note: You can only enable
|
|
688
|
+
* *Early Access Property*. Allows the app to participate in front-channel Single Logout. Note: You can only enable participate*slo for web and browser application types. When set to true, frontchannel*logout_uri must also be provided. Enable `SINGLE_LOGOUT_SUPPORT` feature flag in your org to use this property.
|
|
632
689
|
*/
|
|
633
690
|
participateSlo?: pulumi.Input<boolean>;
|
|
634
691
|
/**
|
|
@@ -696,7 +753,7 @@ export interface OAuthArgs {
|
|
|
696
753
|
*/
|
|
697
754
|
userNameTemplateType?: pulumi.Input<string>;
|
|
698
755
|
/**
|
|
699
|
-
* *Early Access Property*. Indicates if the client is allowed to use wildcard matching of redirect_uris
|
|
756
|
+
* *Early Access Property*. Indicates if the client is allowed to use wildcard matching of redirect_uris.
|
|
700
757
|
*/
|
|
701
758
|
wildcardRedirect?: pulumi.Input<string>;
|
|
702
759
|
}
|
package/app/oauth.js
CHANGED
|
@@ -25,6 +25,63 @@ const utilities = require("../utilities");
|
|
|
25
25
|
* `-----BEGIN RSA PRIVATE KEY-----`) they can generate a PKCS#8 format
|
|
26
26
|
* key with `openssl`:
|
|
27
27
|
*
|
|
28
|
+
* ### Advanced PEM and JWKS example
|
|
29
|
+
*
|
|
30
|
+
* ```typescript
|
|
31
|
+
* import * as pulumi from "@pulumi/pulumi";
|
|
32
|
+
* import * as jwks from "@pulumi/jwks";
|
|
33
|
+
* import * as okta from "@pulumi/okta";
|
|
34
|
+
* import * as std from "@pulumi/std";
|
|
35
|
+
* import * as tls from "@pulumi/tls";
|
|
36
|
+
*
|
|
37
|
+
* // NOTE: Example to generate a PEM easily as a tool. These secrets will be saved
|
|
38
|
+
* // to the state file and shouldn't be persisted. Instead, save the secrets into
|
|
39
|
+
* // a secrets manager to be reused.
|
|
40
|
+
* // https://registry.terraform.io/providers/hashicorp/tls/latest/docs/resources/private_key
|
|
41
|
+
* //
|
|
42
|
+
* // NOTE: Even though tls is a Hashicorp provider you should still audit its code
|
|
43
|
+
* // to be satisfied with its security.
|
|
44
|
+
* // https://github.com/hashicorp/terraform-provider-tls
|
|
45
|
+
* //
|
|
46
|
+
* const rsa = new tls.index.PrivateKey("rsa", {
|
|
47
|
+
* algorithm: "RSA",
|
|
48
|
+
* rsaBits: 4096,
|
|
49
|
+
* });
|
|
50
|
+
* //
|
|
51
|
+
* // Pretty print a PEM with TF show and jq
|
|
52
|
+
* // terraform show -json | jq -r '.values.root_module.resources[] | select(.address == "tls_private_key.rsa").values.private_key_pem'
|
|
53
|
+
* //
|
|
54
|
+
* // Delete the secrets explicitly or just remove them from the config and run
|
|
55
|
+
* // apply again.
|
|
56
|
+
* // pulumi up -destroy -auto-approve -target=tls_private_key.rsa
|
|
57
|
+
* // NOTE: Even though the iwarapter/jwks is listed in the registry you should
|
|
58
|
+
* // still audit its code to be satisfied with its security.
|
|
59
|
+
* // https://registry.terraform.io/providers/iwarapter/jwks/latest/docs/data-sources/from_key
|
|
60
|
+
* // https://github.com/iwarapter/terraform-provider-jwks
|
|
61
|
+
* //
|
|
62
|
+
* const jwksFromKey = jwks.index.FromKey({
|
|
63
|
+
* key: rsa.privateKeyPem,
|
|
64
|
+
* kid: "my-kid",
|
|
65
|
+
* });
|
|
66
|
+
* const jwks = std.index.jsondecode({
|
|
67
|
+
* input: jwksFromKey.jwks,
|
|
68
|
+
* }).result;
|
|
69
|
+
* // https://registry.terraform.io/providers/okta/okta/latest/docs/resources/app_oauth
|
|
70
|
+
* const app = new okta.app.OAuth("app", {
|
|
71
|
+
* label: "My OAuth App",
|
|
72
|
+
* type: "service",
|
|
73
|
+
* responseTypes: ["token"],
|
|
74
|
+
* grantTypes: ["client_credentials"],
|
|
75
|
+
* tokenEndpointAuthMethod: "private_key_jwt",
|
|
76
|
+
* jwks: [{
|
|
77
|
+
* kty: jwks.kty,
|
|
78
|
+
* kid: jwks.kid,
|
|
79
|
+
* e: jwks.e,
|
|
80
|
+
* n: jwks.n,
|
|
81
|
+
* }],
|
|
82
|
+
* });
|
|
83
|
+
* ```
|
|
84
|
+
*
|
|
28
85
|
* ## Import
|
|
29
86
|
*
|
|
30
87
|
* ```sh
|
package/app/oauth.js.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"oauth.js","sourceRoot":"","sources":["../../app/oauth.ts"],"names":[],"mappings":";AAAA,sEAAsE;AACtE,iFAAiF;;;AAEjF,yCAAyC;AAGzC,0CAA0C;AAE1C
|
|
1
|
+
{"version":3,"file":"oauth.js","sourceRoot":"","sources":["../../app/oauth.ts"],"names":[],"mappings":";AAAA,sEAAsE;AACtE,iFAAiF;;;AAEjF,yCAAyC;AAGzC,0CAA0C;AAE1C;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAkFG;AACH,MAAa,KAAM,SAAQ,MAAM,CAAC,cAAc;IAC5C;;;;;;;;OAQG;IACI,MAAM,CAAC,GAAG,CAAC,IAAY,EAAE,EAA2B,EAAE,KAAkB,EAAE,IAAmC;QAChH,OAAO,IAAI,KAAK,CAAC,IAAI,EAAO,KAAK,EAAE,EAAE,GAAG,IAAI,EAAE,EAAE,EAAE,EAAE,EAAE,CAAC,CAAC;IAC5D,CAAC;IAKD;;;OAGG;IACI,MAAM,CAAC,UAAU,CAAC,GAAQ;QAC7B,IAAI,GAAG,KAAK,SAAS,IAAI,GAAG,KAAK,IAAI,EAAE;YACnC,OAAO,KAAK,CAAC;SAChB;QACD,OAAO,GAAG,CAAC,cAAc,CAAC,KAAK,KAAK,CAAC,YAAY,CAAC;IACtD,CAAC;IAqOD,YAAY,IAAY,EAAE,WAAoC,EAAE,IAAmC;QAC/F,IAAI,cAAc,GAAkB,EAAE,CAAC;QACvC,IAAI,GAAG,IAAI,IAAI,EAAE,CAAC;QAClB,IAAI,IAAI,CAAC,EAAE,EAAE;YACT,MAAM,KAAK,GAAG,WAAqC,CAAC;YACpD,cAAc,CAAC,+BAA+B,CAAC,GAAG,KAAK,EAAE,6BAA6B,CAAC;YACvF,cAAc,CAAC,+BAA+B,CAAC,GAAG,KAAK,EAAE,6BAA6B,CAAC;YACvF,cAAc,CAAC,0BAA0B,CAAC,GAAG,KAAK,EAAE,wBAAwB,CAAC;YAC7E,cAAc,CAAC,WAAW,CAAC,GAAG,KAAK,EAAE,SAAS,CAAC;YAC/C,cAAc,CAAC,cAAc,CAAC,GAAG,KAAK,EAAE,YAAY,CAAC;YACrD,cAAc,CAAC,iBAAiB,CAAC,GAAG,KAAK,EAAE,eAAe,CAAC;YAC3D,cAAc,CAAC,sBAAsB,CAAC,GAAG,KAAK,EAAE,oBAAoB,CAAC;YACrE,cAAc,CAAC,iBAAiB,CAAC,GAAG,KAAK,EAAE,eAAe,CAAC;YAC3D,cAAc,CAAC,mBAAmB,CAAC,GAAG,KAAK,EAAE,iBAAiB,CAAC;YAC/D,cAAc,CAAC,mBAAmB,CAAC,GAAG,KAAK,EAAE,iBAAiB,CAAC;YAC/D,cAAc,CAAC,UAAU,CAAC,GAAG,KAAK,EAAE,QAAQ,CAAC;YAC7C,cAAc,CAAC,cAAc,CAAC,GAAG,KAAK,EAAE,YAAY,CAAC;YACrD,cAAc,CAAC,WAAW,CAAC,GAAG,KAAK,EAAE,SAAS,CAAC;YAC/C,cAAc,CAAC,eAAe,CAAC,GAAG,KAAK,EAAE,aAAa,CAAC;YACvD,cAAc,CAAC,aAAa,CAAC,GAAG,KAAK,EAAE,WAAW,CAAC;YACnD,cAAc,CAAC,mCAAmC,CAAC,GAAG,KAAK,EAAE,iCAAiC,CAAC;YAC/F,cAAc,CAAC,uBAAuB,CAAC,GAAG,KAAK,EAAE,qBAAqB,CAAC;YACvE,cAAc,CAAC,YAAY,CAAC,GAAG,KAAK,EAAE,UAAU,CAAC;YACjD,cAAc,CAAC,aAAa,CAAC,GAAG,KAAK,EAAE,WAAW,CAAC;YACnD,cAAc,CAAC,SAAS,CAAC,GAAG,KAAK,EAAE,OAAO,CAAC;YAC3C,cAAc,CAAC,SAAS,CAAC,GAAG,KAAK,EAAE,OAAO,CAAC;YAC3C,cAAc,CAAC,oBAAoB,CAAC,GAAG,KAAK,EAAE,kBAAkB,CAAC;YACjE,cAAc,CAAC,YAAY,CAAC,GAAG,KAAK,EAAE,UAAU,CAAC;YACjD,cAAc,CAAC,MAAM,CAAC,GAAG,KAAK,EAAE,IAAI,CAAC;YACrC,cAAc,CAAC,SAAS,CAAC,GAAG,KAAK,EAAE,OAAO,CAAC;YAC3C,cAAc,CAAC,OAAO,CAAC,GAAG,KAAK,EAAE,KAAK,CAAC;YACvC,cAAc,CAAC,WAAW,CAAC,GAAG,KAAK,EAAE,SAAS,CAAC;YAC/C,cAAc,CAAC,aAAa,CAAC,GAAG,KAAK,EAAE,WAAW,CAAC;YACnD,cAAc,CAAC,UAAU,CAAC,GAAG,KAAK,EAAE,QAAQ,CAAC;YAC7C,cAAc,CAAC,MAAM,CAAC,GAAG,KAAK,EAAE,IAAI,CAAC;YACrC,cAAc,CAAC,SAAS,CAAC,GAAG,KAAK,EAAE,OAAO,CAAC;YAC3C,cAAc,CAAC,SAAS,CAAC,GAAG,KAAK,EAAE,OAAO,CAAC;YAC3C,cAAc,CAAC,MAAM,CAAC,GAAG,KAAK,EAAE,IAAI,CAAC;YACrC,cAAc,CAAC,YAAY,CAAC,GAAG,KAAK,EAAE,UAAU,CAAC;YACjD,cAAc,CAAC,gBAAgB,CAAC,GAAG,KAAK,EAAE,cAAc,CAAC;YACzD,cAAc,CAAC,cAAc,CAAC,GAAG,KAAK,EAAE,YAAY,CAAC;YACrD,cAAc,CAAC,WAAW,CAAC,GAAG,KAAK,EAAE,SAAS,CAAC;YAC/C,cAAc,CAAC,wBAAwB,CAAC,GAAG,KAAK,EAAE,sBAAsB,CAAC;YACzE,cAAc,CAAC,SAAS,CAAC,GAAG,KAAK,EAAE,OAAO,CAAC;YAC3C,cAAc,CAAC,cAAc,CAAC,GAAG,KAAK,EAAE,YAAY,CAAC;YACrD,cAAc,CAAC,oBAAoB,CAAC,GAAG,KAAK,EAAE,kBAAkB,CAAC;YACjE,cAAc,CAAC,sBAAsB,CAAC,GAAG,KAAK,EAAE,oBAAoB,CAAC;YACrE,cAAc,CAAC,eAAe,CAAC,GAAG,KAAK,EAAE,aAAa,CAAC;YACvD,cAAc,CAAC,YAAY,CAAC,GAAG,KAAK,EAAE,UAAU,CAAC;YACjD,cAAc,CAAC,QAAQ,CAAC,GAAG,KAAK,EAAE,MAAM,CAAC;YACzC,cAAc,CAAC,yBAAyB,CAAC,GAAG,KAAK,EAAE,uBAAuB,CAAC;YAC3E,cAAc,CAAC,QAAQ,CAAC,GAAG,KAAK,EAAE,MAAM,CAAC;YACzC,cAAc,CAAC,MAAM,CAAC,GAAG,KAAK,EAAE,IAAI,CAAC;YACrC,cAAc,CAAC,kBAAkB,CAAC,GAAG,KAAK,EAAE,gBAAgB,CAAC;YAC7D,cAAc,CAAC,4BAA4B,CAAC,GAAG,KAAK,EAAE,0BAA0B,CAAC;YACjF,cAAc,CAAC,wBAAwB,CAAC,GAAG,KAAK,EAAE,sBAAsB,CAAC;YACzE,cAAc,CAAC,sBAAsB,CAAC,GAAG,KAAK,EAAE,oBAAoB,CAAC;YACrE,cAAc,CAAC,kBAAkB,CAAC,GAAG,KAAK,EAAE,gBAAgB,CAAC;SAChE;aAAM;YACH,MAAM,IAAI,GAAG,WAAoC,CAAC;YAClD,IAAI,IAAI,EAAE,KAAK,KAAK,SAAS,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBACxC,MAAM,IAAI,KAAK,CAAC,mCAAmC,CAAC,CAAC;aACxD;YACD,IAAI,IAAI,EAAE,IAAI,KAAK,SAAS,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBACvC,MAAM,IAAI,KAAK,CAAC,kCAAkC,CAAC,CAAC;aACvD;YACD,cAAc,CAAC,+BAA+B,CAAC,GAAG,IAAI,EAAE,6BAA6B,CAAC;YACtF,cAAc,CAAC,+BAA+B,CAAC,GAAG,IAAI,EAAE,6BAA6B,CAAC;YACtF,cAAc,CAAC,0BAA0B,CAAC,GAAG,IAAI,EAAE,wBAAwB,CAAC;YAC5E,cAAc,CAAC,WAAW,CAAC,GAAG,IAAI,EAAE,SAAS,CAAC;YAC9C,cAAc,CAAC,cAAc,CAAC,GAAG,IAAI,EAAE,YAAY,CAAC;YACpD,cAAc,CAAC,iBAAiB,CAAC,GAAG,IAAI,EAAE,eAAe,CAAC;YAC1D,cAAc,CAAC,sBAAsB,CAAC,GAAG,IAAI,EAAE,oBAAoB,CAAC;YACpE,cAAc,CAAC,iBAAiB,CAAC,GAAG,IAAI,EAAE,eAAe,CAAC;YAC1D,cAAc,CAAC,mBAAmB,CAAC,GAAG,IAAI,EAAE,iBAAiB,CAAC;YAC9D,cAAc,CAAC,mBAAmB,CAAC,GAAG,IAAI,EAAE,iBAAiB,CAAC,CAAC,CAAC,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,iBAAiB,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC;YAClH,cAAc,CAAC,UAAU,CAAC,GAAG,IAAI,EAAE,QAAQ,CAAC;YAC5C,cAAc,CAAC,WAAW,CAAC,GAAG,IAAI,EAAE,SAAS,CAAC;YAC9C,cAAc,CAAC,eAAe,CAAC,GAAG,IAAI,EAAE,aAAa,CAAC;YACtD,cAAc,CAAC,aAAa,CAAC,GAAG,IAAI,EAAE,WAAW,CAAC;YAClD,cAAc,CAAC,mCAAmC,CAAC,GAAG,IAAI,EAAE,iCAAiC,CAAC;YAC9F,cAAc,CAAC,uBAAuB,CAAC,GAAG,IAAI,EAAE,qBAAqB,CAAC;YACtE,cAAc,CAAC,YAAY,CAAC,GAAG,IAAI,EAAE,UAAU,CAAC;YAChD,cAAc,CAAC,aAAa,CAAC,GAAG,IAAI,EAAE,WAAW,CAAC;YAClD,cAAc,CAAC,SAAS,CAAC,GAAG,IAAI,EAAE,OAAO,CAAC;YAC1C,cAAc,CAAC,SAAS,CAAC,GAAG,IAAI,EAAE,OAAO,CAAC;YAC1C,cAAc,CAAC,oBAAoB,CAAC,GAAG,IAAI,EAAE,kBAAkB,CAAC;YAChE,cAAc,CAAC,YAAY,CAAC,GAAG,IAAI,EAAE,UAAU,CAAC;YAChD,cAAc,CAAC,MAAM,CAAC,GAAG,IAAI,EAAE,IAAI,CAAC;YACpC,cAAc,CAAC,SAAS,CAAC,GAAG,IAAI,EAAE,OAAO,CAAC;YAC1C,cAAc,CAAC,OAAO,CAAC,GAAG,IAAI,EAAE,KAAK,CAAC;YACtC,cAAc,CAAC,WAAW,CAAC,GAAG,IAAI,EAAE,SAAS,CAAC;YAC9C,cAAc,CAAC,aAAa,CAAC,GAAG,IAAI,EAAE,WAAW,CAAC;YAClD,cAAc,CAAC,UAAU,CAAC,GAAG,IAAI,EAAE,QAAQ,CAAC;YAC5C,cAAc,CAAC,MAAM,CAAC,GAAG,IAAI,EAAE,IAAI,CAAC;YACpC,cAAc,CAAC,SAAS,CAAC,GAAG,IAAI,EAAE,OAAO,CAAC;YAC1C,cAAc,CAAC,YAAY,CAAC,GAAG,IAAI,EAAE,UAAU,CAAC;YAChD,cAAc,CAAC,gBAAgB,CAAC,GAAG,IAAI,EAAE,cAAc,CAAC;YACxD,cAAc,CAAC,cAAc,CAAC,GAAG,IAAI,EAAE,YAAY,CAAC;YACpD,cAAc,CAAC,WAAW,CAAC,GAAG,IAAI,EAAE,SAAS,CAAC;YAC9C,cAAc,CAAC,wBAAwB,CAAC,GAAG,IAAI,EAAE,sBAAsB,CAAC;YACxE,cAAc,CAAC,SAAS,CAAC,GAAG,IAAI,EAAE,OAAO,CAAC;YAC1C,cAAc,CAAC,cAAc,CAAC,GAAG,IAAI,EAAE,YAAY,CAAC;YACpD,cAAc,CAAC,oBAAoB,CAAC,GAAG,IAAI,EAAE,kBAAkB,CAAC;YAChE,cAAc,CAAC,sBAAsB,CAAC,GAAG,IAAI,EAAE,oBAAoB,CAAC;YACpE,cAAc,CAAC,eAAe,CAAC,GAAG,IAAI,EAAE,aAAa,CAAC;YACtD,cAAc,CAAC,QAAQ,CAAC,GAAG,IAAI,EAAE,MAAM,CAAC;YACxC,cAAc,CAAC,yBAAyB,CAAC,GAAG,IAAI,EAAE,uBAAuB,CAAC;YAC1E,cAAc,CAAC,QAAQ,CAAC,GAAG,IAAI,EAAE,MAAM,CAAC;YACxC,cAAc,CAAC,MAAM,CAAC,GAAG,IAAI,EAAE,IAAI,CAAC;YACpC,cAAc,CAAC,kBAAkB,CAAC,GAAG,IAAI,EAAE,gBAAgB,CAAC;YAC5D,cAAc,CAAC,4BAA4B,CAAC,GAAG,IAAI,EAAE,0BAA0B,CAAC;YAChF,cAAc,CAAC,wBAAwB,CAAC,GAAG,IAAI,EAAE,sBAAsB,CAAC;YACxE,cAAc,CAAC,sBAAsB,CAAC,GAAG,IAAI,EAAE,oBAAoB,CAAC;YACpE,cAAc,CAAC,kBAAkB,CAAC,GAAG,IAAI,EAAE,gBAAgB,CAAC;YAC5D,cAAc,CAAC,cAAc,CAAC,GAAG,SAAS,CAAC,OAAO,CAAC;YACnD,cAAc,CAAC,SAAS,CAAC,GAAG,SAAS,CAAC,OAAO,CAAC;YAC9C,cAAc,CAAC,MAAM,CAAC,GAAG,SAAS,CAAC,OAAO,CAAC;YAC3C,cAAc,CAAC,YAAY,CAAC,GAAG,SAAS,CAAC,OAAO,CAAC;SACpD;QACD,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,CAAC,CAAC;QACnE,MAAM,UAAU,GAAG,EAAE,uBAAuB,EAAE,CAAC,mBAAmB,EAAE,cAAc,CAAC,EAAE,CAAC;QACtF,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,IAAI,EAAE,UAAU,CAAC,CAAC;QAC7C,KAAK,CAAC,KAAK,CAAC,YAAY,EAAE,IAAI,EAAE,cAAc,EAAE,IAAI,CAAC,CAAC;IAC1D,CAAC;;AA3XL,sBA4XC;AA9WG,gBAAgB;AACO,kBAAY,GAAG,sBAAsB,CAAC"}
|
package/package.json
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
{
|
|
2
2
|
"name": "@pulumi/okta",
|
|
3
|
-
"version": "6.2.
|
|
4
|
-
"description": "A Pulumi package for creating and managing okta resources.. Based on terraform-provider-okta: version v6.5.
|
|
3
|
+
"version": "6.2.3",
|
|
4
|
+
"description": "A Pulumi package for creating and managing okta resources.. Based on terraform-provider-okta: version v6.5.5",
|
|
5
5
|
"keywords": [
|
|
6
6
|
"pulumi",
|
|
7
7
|
"okta"
|
|
@@ -23,6 +23,6 @@
|
|
|
23
23
|
"pulumi": {
|
|
24
24
|
"resource": true,
|
|
25
25
|
"name": "okta",
|
|
26
|
-
"version": "6.2.
|
|
26
|
+
"version": "6.2.3"
|
|
27
27
|
}
|
|
28
28
|
}
|
package/principalRateLimits.d.ts
CHANGED
|
@@ -31,6 +31,10 @@ export declare class PrincipalRateLimits extends pulumi.CustomResource {
|
|
|
31
31
|
* The default percentage of a given rate limit threshold that the owning principal can consume.
|
|
32
32
|
*/
|
|
33
33
|
readonly defaultPercentage: pulumi.Output<number>;
|
|
34
|
+
/**
|
|
35
|
+
* The unique identifier of the principle rate limit entity.
|
|
36
|
+
*/
|
|
37
|
+
readonly idProperty: pulumi.Output<string>;
|
|
34
38
|
/**
|
|
35
39
|
* The date and time the principle rate limit entity was last updated.
|
|
36
40
|
*/
|
|
@@ -80,6 +84,10 @@ export interface PrincipalRateLimitsState {
|
|
|
80
84
|
* The default percentage of a given rate limit threshold that the owning principal can consume.
|
|
81
85
|
*/
|
|
82
86
|
defaultPercentage?: pulumi.Input<number>;
|
|
87
|
+
/**
|
|
88
|
+
* The unique identifier of the principle rate limit entity.
|
|
89
|
+
*/
|
|
90
|
+
idProperty?: pulumi.Input<string>;
|
|
83
91
|
/**
|
|
84
92
|
* The date and time the principle rate limit entity was last updated.
|
|
85
93
|
*/
|
|
@@ -113,6 +121,10 @@ export interface PrincipalRateLimitsArgs {
|
|
|
113
121
|
* The default percentage of a given rate limit threshold that the owning principal can consume.
|
|
114
122
|
*/
|
|
115
123
|
defaultPercentage?: pulumi.Input<number>;
|
|
124
|
+
/**
|
|
125
|
+
* The unique identifier of the principle rate limit entity.
|
|
126
|
+
*/
|
|
127
|
+
idProperty?: pulumi.Input<string>;
|
|
116
128
|
/**
|
|
117
129
|
* The unique identifier of the principal. This is the ID of the API token or OAuth 2.0 app.
|
|
118
130
|
*/
|
package/principalRateLimits.js
CHANGED
|
@@ -37,6 +37,7 @@ class PrincipalRateLimits extends pulumi.CustomResource {
|
|
|
37
37
|
resourceInputs["createdDate"] = state?.createdDate;
|
|
38
38
|
resourceInputs["defaultConcurrencyPercentage"] = state?.defaultConcurrencyPercentage;
|
|
39
39
|
resourceInputs["defaultPercentage"] = state?.defaultPercentage;
|
|
40
|
+
resourceInputs["idProperty"] = state?.idProperty;
|
|
40
41
|
resourceInputs["lastUpdate"] = state?.lastUpdate;
|
|
41
42
|
resourceInputs["lastUpdatedBy"] = state?.lastUpdatedBy;
|
|
42
43
|
resourceInputs["orgId"] = state?.orgId;
|
|
@@ -53,6 +54,7 @@ class PrincipalRateLimits extends pulumi.CustomResource {
|
|
|
53
54
|
}
|
|
54
55
|
resourceInputs["defaultConcurrencyPercentage"] = args?.defaultConcurrencyPercentage;
|
|
55
56
|
resourceInputs["defaultPercentage"] = args?.defaultPercentage;
|
|
57
|
+
resourceInputs["idProperty"] = args?.idProperty;
|
|
56
58
|
resourceInputs["principalId"] = args?.principalId;
|
|
57
59
|
resourceInputs["principalType"] = args?.principalType;
|
|
58
60
|
resourceInputs["createdBy"] = undefined /*out*/;
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"principalRateLimits.js","sourceRoot":"","sources":["../principalRateLimits.ts"],"names":[],"mappings":";AAAA,sEAAsE;AACtE,iFAAiF;;;AAEjF,yCAAyC;AACzC,yCAAyC;AAEzC,MAAa,mBAAoB,SAAQ,MAAM,CAAC,cAAc;IAC1D;;;;;;;;OAQG;IACI,MAAM,CAAC,GAAG,CAAC,IAAY,EAAE,EAA2B,EAAE,KAAgC,EAAE,IAAmC;QAC9H,OAAO,IAAI,mBAAmB,CAAC,IAAI,EAAO,KAAK,EAAE,EAAE,GAAG,IAAI,EAAE,EAAE,EAAE,EAAE,EAAE,CAAC,CAAC;IAC1E,CAAC;IAKD;;;OAGG;IACI,MAAM,CAAC,UAAU,CAAC,GAAQ;QAC7B,IAAI,GAAG,KAAK,SAAS,IAAI,GAAG,KAAK,IAAI,EAAE;YACnC,OAAO,KAAK,CAAC;SAChB;QACD,OAAO,GAAG,CAAC,cAAc,CAAC,KAAK,mBAAmB,CAAC,YAAY,CAAC;IACpE,CAAC;
|
|
1
|
+
{"version":3,"file":"principalRateLimits.js","sourceRoot":"","sources":["../principalRateLimits.ts"],"names":[],"mappings":";AAAA,sEAAsE;AACtE,iFAAiF;;;AAEjF,yCAAyC;AACzC,yCAAyC;AAEzC,MAAa,mBAAoB,SAAQ,MAAM,CAAC,cAAc;IAC1D;;;;;;;;OAQG;IACI,MAAM,CAAC,GAAG,CAAC,IAAY,EAAE,EAA2B,EAAE,KAAgC,EAAE,IAAmC;QAC9H,OAAO,IAAI,mBAAmB,CAAC,IAAI,EAAO,KAAK,EAAE,EAAE,GAAG,IAAI,EAAE,EAAE,EAAE,EAAE,EAAE,CAAC,CAAC;IAC1E,CAAC;IAKD;;;OAGG;IACI,MAAM,CAAC,UAAU,CAAC,GAAQ;QAC7B,IAAI,GAAG,KAAK,SAAS,IAAI,GAAG,KAAK,IAAI,EAAE;YACnC,OAAO,KAAK,CAAC;SAChB;QACD,OAAO,GAAG,CAAC,cAAc,CAAC,KAAK,mBAAmB,CAAC,YAAY,CAAC;IACpE,CAAC;IAmDD,YAAY,IAAY,EAAE,WAAgE,EAAE,IAAmC;QAC3H,IAAI,cAAc,GAAkB,EAAE,CAAC;QACvC,IAAI,GAAG,IAAI,IAAI,EAAE,CAAC;QAClB,IAAI,IAAI,CAAC,EAAE,EAAE;YACT,MAAM,KAAK,GAAG,WAAmD,CAAC;YAClE,cAAc,CAAC,WAAW,CAAC,GAAG,KAAK,EAAE,SAAS,CAAC;YAC/C,cAAc,CAAC,aAAa,CAAC,GAAG,KAAK,EAAE,WAAW,CAAC;YACnD,cAAc,CAAC,8BAA8B,CAAC,GAAG,KAAK,EAAE,4BAA4B,CAAC;YACrF,cAAc,CAAC,mBAAmB,CAAC,GAAG,KAAK,EAAE,iBAAiB,CAAC;YAC/D,cAAc,CAAC,YAAY,CAAC,GAAG,KAAK,EAAE,UAAU,CAAC;YACjD,cAAc,CAAC,YAAY,CAAC,GAAG,KAAK,EAAE,UAAU,CAAC;YACjD,cAAc,CAAC,eAAe,CAAC,GAAG,KAAK,EAAE,aAAa,CAAC;YACvD,cAAc,CAAC,OAAO,CAAC,GAAG,KAAK,EAAE,KAAK,CAAC;YACvC,cAAc,CAAC,aAAa,CAAC,GAAG,KAAK,EAAE,WAAW,CAAC;YACnD,cAAc,CAAC,eAAe,CAAC,GAAG,KAAK,EAAE,aAAa,CAAC;SAC1D;aAAM;YACH,MAAM,IAAI,GAAG,WAAkD,CAAC;YAChE,IAAI,IAAI,EAAE,WAAW,KAAK,SAAS,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBAC9C,MAAM,IAAI,KAAK,CAAC,yCAAyC,CAAC,CAAC;aAC9D;YACD,IAAI,IAAI,EAAE,aAAa,KAAK,SAAS,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBAChD,MAAM,IAAI,KAAK,CAAC,2CAA2C,CAAC,CAAC;aAChE;YACD,cAAc,CAAC,8BAA8B,CAAC,GAAG,IAAI,EAAE,4BAA4B,CAAC;YACpF,cAAc,CAAC,mBAAmB,CAAC,GAAG,IAAI,EAAE,iBAAiB,CAAC;YAC9D,cAAc,CAAC,YAAY,CAAC,GAAG,IAAI,EAAE,UAAU,CAAC;YAChD,cAAc,CAAC,aAAa,CAAC,GAAG,IAAI,EAAE,WAAW,CAAC;YAClD,cAAc,CAAC,eAAe,CAAC,GAAG,IAAI,EAAE,aAAa,CAAC;YACtD,cAAc,CAAC,WAAW,CAAC,GAAG,SAAS,CAAC,OAAO,CAAC;YAChD,cAAc,CAAC,aAAa,CAAC,GAAG,SAAS,CAAC,OAAO,CAAC;YAClD,cAAc,CAAC,YAAY,CAAC,GAAG,SAAS,CAAC,OAAO,CAAC;YACjD,cAAc,CAAC,eAAe,CAAC,GAAG,SAAS,CAAC,OAAO,CAAC;YACpD,cAAc,CAAC,OAAO,CAAC,GAAG,SAAS,CAAC,OAAO,CAAC;SAC/C;QACD,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,CAAC,CAAC;QACnE,KAAK,CAAC,mBAAmB,CAAC,YAAY,EAAE,IAAI,EAAE,cAAc,EAAE,IAAI,CAAC,CAAC;IACxE,CAAC;;AAjHL,kDAkHC;AApGG,gBAAgB;AACO,gCAAY,GAAG,oDAAoD,CAAC"}
|
package/user/getUser.d.ts
CHANGED
|
@@ -77,6 +77,9 @@ export interface GetUserResult {
|
|
|
77
77
|
readonly preferredLanguage: string;
|
|
78
78
|
readonly primaryPhone: string;
|
|
79
79
|
readonly profileUrl: string;
|
|
80
|
+
/**
|
|
81
|
+
* The Realm ID associated with the user.
|
|
82
|
+
*/
|
|
80
83
|
readonly realmId: string;
|
|
81
84
|
readonly roles: string[];
|
|
82
85
|
/**
|
package/user/getUser.js.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"getUser.js","sourceRoot":"","sources":["../../user/getUser.ts"],"names":[],"mappings":";AAAA,sEAAsE;AACtE,iFAAiF;;;AAEjF,yCAAyC;AAGzC,0CAA0C;AAE1C;;GAEG;AACH,SAAgB,OAAO,CAAC,IAAkB,EAAE,IAA2B;IACnE,IAAI,GAAG,IAAI,IAAI,EAAE,CAAC;IAClB,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,IAAI,EAAE,CAAC,CAAC;IACzE,OAAO,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,2BAA2B,EAAE;QACtD,wBAAwB,EAAE,IAAI,CAAC,sBAAsB;QACrD,kBAAkB,EAAE,IAAI,CAAC,gBAAgB;QACzC,UAAU,EAAE,IAAI,CAAC,QAAQ;QACzB,YAAY,EAAE,IAAI,CAAC,UAAU;QAC7B,WAAW,EAAE,IAAI,CAAC,SAAS;QAC3B,QAAQ,EAAE,IAAI,CAAC,MAAM;KACxB,EAAE,IAAI,CAAC,CAAC;AACb,CAAC;AAXD,0BAWC;
|
|
1
|
+
{"version":3,"file":"getUser.js","sourceRoot":"","sources":["../../user/getUser.ts"],"names":[],"mappings":";AAAA,sEAAsE;AACtE,iFAAiF;;;AAEjF,yCAAyC;AAGzC,0CAA0C;AAE1C;;GAEG;AACH,SAAgB,OAAO,CAAC,IAAkB,EAAE,IAA2B;IACnE,IAAI,GAAG,IAAI,IAAI,EAAE,CAAC;IAClB,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,IAAI,EAAE,CAAC,CAAC;IACzE,OAAO,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,2BAA2B,EAAE;QACtD,wBAAwB,EAAE,IAAI,CAAC,sBAAsB;QACrD,kBAAkB,EAAE,IAAI,CAAC,gBAAgB;QACzC,UAAU,EAAE,IAAI,CAAC,QAAQ;QACzB,YAAY,EAAE,IAAI,CAAC,UAAU;QAC7B,WAAW,EAAE,IAAI,CAAC,SAAS;QAC3B,QAAQ,EAAE,IAAI,CAAC,MAAM;KACxB,EAAE,IAAI,CAAC,CAAC;AACb,CAAC;AAXD,0BAWC;AAyGD;;GAEG;AACH,SAAgB,aAAa,CAAC,IAAwB,EAAE,IAAiC;IACrF,IAAI,GAAG,IAAI,IAAI,EAAE,CAAC;IAClB,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,IAAI,EAAE,CAAC,CAAC;IACzE,OAAO,MAAM,CAAC,OAAO,CAAC,YAAY,CAAC,2BAA2B,EAAE;QAC5D,wBAAwB,EAAE,IAAI,CAAC,sBAAsB;QACrD,kBAAkB,EAAE,IAAI,CAAC,gBAAgB;QACzC,UAAU,EAAE,IAAI,CAAC,QAAQ;QACzB,YAAY,EAAE,IAAI,CAAC,UAAU;QAC7B,WAAW,EAAE,IAAI,CAAC,SAAS;QAC3B,QAAQ,EAAE,IAAI,CAAC,MAAM;KACxB,EAAE,IAAI,CAAC,CAAC;AACb,CAAC;AAXD,sCAWC"}
|