confluent_identity_provider
provides an Identity Provider resource that enables creating, editing, and deleting identity providers on Confluent Cloud.
resource "confluent_identity_provider" "azure" {
display_name = "My OIDC Provider: Azure AD"
description = "My description"
issuer = "https://login.microsoftonline.com/{tenant_id}/v2.0"
jwks_uri = "https://login.microsoftonline.com/common/discovery/v2.0/keys"
}
resource "confluent_identity_provider" "okta" {
display_name = "My OIDC Provider: Okta"
description = "My description"
issuer = "https://mycompany.okta.com/oauth2/default"
jwks_uri = "https://mycompany.okta.com/oauth2/default/v1/keys"
}
The following arguments are supported:
display_name
- (Required String) A human-readable name for the Identity Provider.description
- (Required String) A description for the Identity Provider.issuer
- (Required String) A publicly reachable issuer URI for the Identity Provider. The unique issuer URI string represents the entity for issuing tokens.jwks_uri
- (Required String) A publicly reachable JSON Web Key Set (JWKS) URI for the Identity Provider. A JSON Web Key Set (JWKS) provides a set of keys containing the public keys used to verify any JSON Web Token (JWT) issued by your OAuth 2.0 identity provider.In addition to the preceding arguments, the following attributes are exported:
id
- (Required String) The ID of the Identity Provider, for example, op-abc123
.You can import an Identity Provider by using Identity Provider ID, for example:
$ export CONFLUENT_CLOUD_API_KEY="<cloud_api_key>"
$ export CONFLUENT_CLOUD_API_SECRET="<cloud_api_secret>"
$ terraform import confluent_identity_provider.example op-abc123