oci_identity_domains_setting

This resource provides the Setting resource in Oracle Cloud Infrastructure Identity Domains service.

Replace Settings

Example Usage

resource "oci_identity_domains_setting" "test_setting" {
	#Required
	csr_access = var.setting_csr_access
	idcs_endpoint = data.oci_identity_domain.test_domain.url
	schemas = ["urn:ietf:params:scim:schemas:oracle:idcs:Settings"]
	setting_id = "Settings"

	#Optional
	account_always_trust_scope = var.setting_account_always_trust_scope
	allowed_domains = ["test.com"]
	allowed_forgot_password_flow_return_urls = var.setting_allowed_forgot_password_flow_return_urls
	allowed_notification_redirect_urls = var.setting_allowed_notification_redirect_urls
	attribute_sets = ["all"]
	attributes = ""
	audit_event_retention_period = var.setting_audit_event_retention_period
	authorization = var.setting_authorization
	certificate_validation {

		#Optional
		crl_check_on_ocsp_failure_enabled = var.setting_certificate_validation_crl_check_on_ocsp_failure_enabled
		crl_enabled = var.setting_certificate_validation_crl_enabled
		crl_location = var.setting_certificate_validation_crl_location
		crl_refresh_interval = var.setting_certificate_validation_crl_refresh_interval
		ocsp_enabled = var.setting_certificate_validation_ocsp_enabled
		ocsp_responder_url = var.setting_certificate_validation_ocsp_responder_url
		ocsp_settings_responder_url_preferred = var.setting_certificate_validation_ocsp_settings_responder_url_preferred
		ocsp_signing_certificate_alias = var.setting_certificate_validation_ocsp_signing_certificate_alias
		ocsp_timeout_duration = var.setting_certificate_validation_ocsp_timeout_duration
		ocsp_unknown_response_status_allowed = var.setting_certificate_validation_ocsp_unknown_response_status_allowed
	}
	cloud_gate_cors_settings {

		#Optional
		cloud_gate_cors_allow_null_origin = var.setting_cloud_gate_cors_settings_cloud_gate_cors_allow_null_origin
		cloud_gate_cors_allowed_origins = ["https://test.com"]
		cloud_gate_cors_enabled = var.setting_cloud_gate_cors_settings_cloud_gate_cors_enabled
		cloud_gate_cors_exposed_headers = var.setting_cloud_gate_cors_settings_cloud_gate_cors_exposed_headers
		cloud_gate_cors_max_age = var.setting_cloud_gate_cors_settings_cloud_gate_cors_max_age
	}
	cloud_migration_custom_url = var.setting_cloud_migration_custom_url
	cloud_migration_url_enabled = var.setting_cloud_migration_url_enabled
	company_names {
		#Required
		locale = var.setting_company_names_locale
		value = var.setting_company_names_value
	}
	contact_emails = ["contactEmails@test.com"]
	custom_branding = var.setting_custom_branding
	custom_css_location = var.setting_custom_css_location
	custom_html_location = var.setting_custom_html_location
	custom_translation = var.setting_custom_translation
	default_trust_scope = var.setting_default_trust_scope
	diagnostic_level = var.setting_diagnostic_level
	diagnostic_record_for_search_identifies_returned_resources = var.setting_diagnostic_record_for_search_identifies_returned_resources
	enable_terms_of_use = var.setting_enable_terms_of_use
	external_id = "externalId"
	iam_upst_session_expiry = var.setting_iam_upst_session_expiry
	id = var.setting_id
	images {
		#Required
		type = var.setting_images_type
		value = var.setting_images_value

		#Optional
		display = var.setting_images_display
	}
	is_hosted_page = var.setting_is_hosted_page
	issuer = var.setting_issuer
	locale = var.setting_locale
	login_texts {
		#Required
		locale = var.setting_login_texts_locale
		value = var.setting_login_texts_value
	}
	max_no_of_app_cmva_to_return = var.setting_max_no_of_app_cmva_to_return
	max_no_of_app_role_members_to_return = var.setting_max_no_of_app_role_members_to_return
	ocid = var.setting_ocid
	preferred_language = var.setting_preferred_language
	prev_issuer = var.setting_prev_issuer
	privacy_policy_url = var.setting_privacy_policy_url
	purge_configs {
		#Required
		resource_name = "resourceName"
		retention_period = var.setting_purge_configs_retention_period
	}
	re_auth_factor = ["password"]
	re_auth_when_changing_my_authentication_factors = var.setting_re_auth_when_changing_my_authentication_factors
	resource_type_schema_version = var.setting_resource_type_schema_version
	service_admin_cannot_list_other_users = var.setting_service_admin_cannot_list_other_users
	signing_cert_public_access = var.setting_signing_cert_public_access
	sub_mapping_attr = var.setting_sub_mapping_attr
	tags {
		#Required
		key = var.setting_tags_key
		value = var.setting_tags_value
	}
	tenant_custom_claims {
		#Required
		all_scopes = var.setting_tenant_custom_claims_all_scopes
		expression = var.setting_tenant_custom_claims_expression
		mode = var.setting_tenant_custom_claims_mode
		name = var.setting_tenant_custom_claims_name
		token_type = var.setting_tenant_custom_claims_token_type
		value = var.setting_tenant_custom_claims_value

		#Optional
		scopes = ["scopes"]
	}
	terms_of_use_url = var.setting_terms_of_use_url
	timezone = var.setting_timezone
}

Argument Reference

The following arguments are supported:

** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values

Attributes Reference

The following attributes are exported:

Timeouts

The timeouts block allows you to specify timeouts for certain operations: * create - (Defaults to 20 minutes), when creating the Setting * update - (Defaults to 20 minutes), when updating the Setting * delete - (Defaults to 20 minutes), when destroying the Setting

Import

Settings can be imported using the id, e.g.

$ terraform import oci_identity_domains_setting.test_setting "idcsEndpoint/{idcsEndpoint}/settings/{settingId}"