oci_identity_domains_setting

This resource provides the Setting resource in Oracle Cloud Infrastructure Identity Domains service.

Replace Settings

Example Usage

resource "oci_identity_domains_setting" "test_setting" {
    #Required
    csr_access = var.setting_csr_access
    idcs_endpoint = data.oci_identity_domain.test_domain.url
    schemas = ["urn:ietf:params:scim:schemas:oracle:idcs:Settings"]
    setting_id = "Settings"

    #Optional
    account_always_trust_scope = var.setting_account_always_trust_scope
    allowed_domains = ["test.com"]
    allowed_forgot_password_flow_return_urls = var.setting_allowed_forgot_password_flow_return_urls
    allowed_notification_redirect_urls = var.setting_allowed_notification_redirect_urls
    attribute_sets = ["all"]
    attributes = ""
    audit_event_retention_period = var.setting_audit_event_retention_period
    authorization = var.setting_authorization
    certificate_validation {

        #Optional
        crl_check_on_ocsp_failure_enabled = var.setting_certificate_validation_crl_check_on_ocsp_failure_enabled
        crl_enabled = var.setting_certificate_validation_crl_enabled
        crl_location = var.setting_certificate_validation_crl_location
        crl_refresh_interval = var.setting_certificate_validation_crl_refresh_interval
        ocsp_enabled = var.setting_certificate_validation_ocsp_enabled
        ocsp_responder_url = var.setting_certificate_validation_ocsp_responder_url
        ocsp_settings_responder_url_preferred = var.setting_certificate_validation_ocsp_settings_responder_url_preferred
        ocsp_signing_certificate_alias = var.setting_certificate_validation_ocsp_signing_certificate_alias
        ocsp_timeout_duration = var.setting_certificate_validation_ocsp_timeout_duration
        ocsp_unknown_response_status_allowed = var.setting_certificate_validation_ocsp_unknown_response_status_allowed
    }
    cloud_gate_cors_settings {

        #Optional
        cloud_gate_cors_allow_null_origin = var.setting_cloud_gate_cors_settings_cloud_gate_cors_allow_null_origin
        cloud_gate_cors_allowed_origins = ["https://test.com"]
        cloud_gate_cors_enabled = var.setting_cloud_gate_cors_settings_cloud_gate_cors_enabled
        cloud_gate_cors_exposed_headers = var.setting_cloud_gate_cors_settings_cloud_gate_cors_exposed_headers
        cloud_gate_cors_max_age = var.setting_cloud_gate_cors_settings_cloud_gate_cors_max_age
    }
    cloud_migration_custom_url = var.setting_cloud_migration_custom_url
    cloud_migration_url_enabled = var.setting_cloud_migration_url_enabled
    company_names {
        #Required
        locale = var.setting_company_names_locale
        value = var.setting_company_names_value
    }
    contact_emails = ["contactEmails@test.com"]
    custom_branding = var.setting_custom_branding
    custom_css_location = var.setting_custom_css_location
    custom_html_location = var.setting_custom_html_location
    custom_translation = var.setting_custom_translation
    default_trust_scope = var.setting_default_trust_scope
    diagnostic_level = var.setting_diagnostic_level
    diagnostic_record_for_search_identifies_returned_resources = var.setting_diagnostic_record_for_search_identifies_returned_resources
    enable_terms_of_use = var.setting_enable_terms_of_use
    external_id = "externalId"
    iam_upst_session_expiry = var.setting_iam_upst_session_expiry
    id = var.setting_id
    images {
        #Required
        type = var.setting_images_type
        value = var.setting_images_value

        #Optional
        display = var.setting_images_display
    }
    is_hosted_page = var.setting_is_hosted_page
    issuer = var.setting_issuer
    locale = var.setting_locale
    login_texts {
        #Required
        locale = var.setting_login_texts_locale
        value = var.setting_login_texts_value
    }
    max_no_of_app_cmva_to_return = var.setting_max_no_of_app_cmva_to_return
    max_no_of_app_role_members_to_return = var.setting_max_no_of_app_role_members_to_return
    ocid = var.setting_ocid
    preferred_language = var.setting_preferred_language
    prev_issuer = var.setting_prev_issuer
    privacy_policy_url = var.setting_privacy_policy_url
    purge_configs {
        #Required
        resource_name = "resourceName"
        retention_period = var.setting_purge_configs_retention_period
    }
    re_auth_factor = ["password"]
    re_auth_when_changing_my_authentication_factors = var.setting_re_auth_when_changing_my_authentication_factors
    resource_type_schema_version = var.setting_resource_type_schema_version
    service_admin_cannot_list_other_users = var.setting_service_admin_cannot_list_other_users
    signing_cert_public_access = var.setting_signing_cert_public_access
    sub_mapping_attr = var.setting_sub_mapping_attr
    tags {
        #Required
        key = var.setting_tags_key
        value = var.setting_tags_value
    }
    tenant_custom_claims {
        #Required
        all_scopes = var.setting_tenant_custom_claims_all_scopes
        expression = var.setting_tenant_custom_claims_expression
        mode = var.setting_tenant_custom_claims_mode
        name = var.setting_tenant_custom_claims_name
        token_type = var.setting_tenant_custom_claims_token_type
        value = var.setting_tenant_custom_claims_value

        #Optional
        scopes = ["scopes"]
    }
    terms_of_use_url = var.setting_terms_of_use_url
    timezone = var.setting_timezone
}

Argument Reference

The following arguments are supported:

* IMPORTANT * Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values

Attributes Reference

The following attributes are exported:

Timeouts

The timeouts block allows you to specify timeouts for certain operations: * create - (Defaults to 20 minutes), when creating the Setting * update - (Defaults to 20 minutes), when updating the Setting * delete - (Defaults to 20 minutes), when destroying the Setting

Import

Settings can be imported using the id, e.g.

$ terraform import oci_identity_domains_setting.test_setting "idcsEndpoint/{idcsEndpoint}/settings/{settingId}"