oci_identity_domains_identity_setting

This resource provides the Identity Setting resource in Oracle Cloud Infrastructure Identity Domains service.

Replace an Identity setting.

Example Usage

resource "oci_identity_domains_identity_setting" "test_identity_setting" {
    #Required
    idcs_endpoint = data.oci_identity_domain.test_domain.url
    identity_setting_id = oci_identity_domains_identity_setting.test_identity_setting.id
    schemas = ["urn:ietf:params:scim:schemas:oracle:idcs:IdentitySettings"]

    #Optional
    posix_gid {

        #Optional
        manual_assignment_ends_at = var.identity_setting_posix_gid_manual_assignment_ends_at
        manual_assignment_starts_from = var.identity_setting_posix_gid_manual_assignment_starts_from
    }
    posix_uid {

        #Optional
        manual_assignment_ends_at = var.identity_setting_posix_uid_manual_assignment_ends_at
        manual_assignment_starts_from = var.identity_setting_posix_uid_manual_assignment_starts_from
    }
    attribute_sets = ["all"]
    attributes = ""
    authorization = var.identity_setting_authorization
    emit_locked_message_when_user_is_locked = var.identity_setting_emit_locked_message_when_user_is_locked
    external_id = "externalId"
    id = var.identity_setting_id
    my_profile {

        #Optional
        allow_end_users_to_change_their_password = true
        allow_end_users_to_link_their_support_account = true
        allow_end_users_to_manage_their_capabilities = true
        allow_end_users_to_update_their_security_settings = true
    }
    ocid = var.identity_setting_ocid
    primary_email_required = var.identity_setting_primary_email_required
    resource_type_schema_version = var.identity_setting_resource_type_schema_version
    return_inactive_over_locked_message = var.identity_setting_return_inactive_over_locked_message
    tags {
        #Required
        key = var.identity_setting_tags_key
        value = var.identity_setting_tags_value
    }
    tokens {
        #Required
        type = var.identity_setting_tokens_type

        #Optional
        expires_after = var.identity_setting_tokens_expires_after
    }
    user_allowed_to_set_recovery_email = var.identity_setting_user_allowed_to_set_recovery_email
}

Argument Reference

The following arguments are supported:

* IMPORTANT * Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values

Attributes Reference

The following attributes are exported:

Timeouts

The timeouts block allows you to specify timeouts for certain operations: * create - (Defaults to 20 minutes), when creating the Identity Setting * update - (Defaults to 20 minutes), when updating the Identity Setting * delete - (Defaults to 20 minutes), when destroying the Identity Setting

Import

IdentitySettings can be imported using the id, e.g.

$ terraform import oci_identity_domains_identity_setting.test_identity_setting "idcsEndpoint/{idcsEndpoint}/identitySettings/{identitySettingId}"