Compare commits
8 Commits
4a2e9675b7
..
main
| Author | SHA1 | Date | |
|---|---|---|---|
| 4dadd1f4ab | |||
| a6dca8eb96 | |||
| 3af322dff3 | |||
| c62fdb574a | |||
| 1fc0b70e1a | |||
| 5faa2f84f6 | |||
| 58b200c512 | |||
| 7636d45f21 |
@@ -3,7 +3,7 @@ resource "authentik_group" "this" {
|
||||
|
||||
name = each.value.name
|
||||
is_superuser = each.value.is_superuser
|
||||
parents = each.value.parents != null ? [for p in each.value.parents : authentik_group.this[p].id] : []
|
||||
parents = each.value.parents
|
||||
attributes = jsonencode(each.value.attributes)
|
||||
}
|
||||
|
||||
|
||||
@@ -2,6 +2,8 @@ variable "groups" {
|
||||
type = map(object({
|
||||
name = string
|
||||
is_superuser = optional(bool, false)
|
||||
# PKs of existing parent groups. These must be literal group PKs, not keys
|
||||
# into this map: authentik_group cannot reference itself.
|
||||
parents = optional(list(string), null)
|
||||
attributes = optional(map(string), {})
|
||||
}))
|
||||
@@ -38,9 +40,12 @@ variable "providers_oauth2" {
|
||||
# Managed identifiers of scope property mappings (e.g.
|
||||
# goauthentik.io/providers/oauth2/scope-openid). Resolved to ids.
|
||||
scope_mappings = optional(list(string), [])
|
||||
# allowed_redirect_uris is list(map(string)); the API always stores a
|
||||
# redirect_uri_type key, so it must be set here or every plan drifts.
|
||||
redirect_uris = optional(list(object({
|
||||
matching_mode = optional(string, "strict")
|
||||
url = string
|
||||
redirect_uri_type = optional(string, "authorization")
|
||||
})), [])
|
||||
signing_key = optional(string, null)
|
||||
access_token_validity = optional(string, "minutes=10")
|
||||
|
||||
Reference in New Issue
Block a user