application: support for setting oauth2_permissions #252
Conversation
* Fix up tests * Ensure back compatibility * Allow setting zero or more scopes * Handle default `user_impersonation` scope created by AAD
|
@manicminer - would it make sense to include a flag |
|
Hi @katbyte, thinking this over a few ways I'm not sure that would work. I can see two options:
Just adding my 2c, as an administrator my personal preference is to be explicit about my application scopes. |
|
Tests pass
|
|
Is there an expected date for the 0.10.0? Because I need exactly this feature for my current project :) @manicminer |
|
Hi @imbatman4711, we're planning on releasing this week which will include this change. |
|
This has been released in version 0.10.0 of the provider. Please see the Terraform documentation on provider versioning or reach out if you need any assistance upgrading. As an example: provider "azuread" {
version = "~> 0.10.0"
}
# ... other configuration ... |
|
Can you provide a sample or better documentation of an empty value? I tried setting oauth2_permissions = [] but it does not seem to work for me and I see values in the manifest. resource "azuread_application" "Chatbot-adapp" { |
|
Hi @nephinj, I'm observing some extreme delays at the moment with changes reflecting in the portal for applications. I've just ran a few tests myself - setting and then deleting oauth2_permissions - and the correct updates are being made (and accepted by the API), but it's been over 10 minutes with updates not yet reflecting. |
|
I'm going to lock this issue because it has been closed for 30 days ⏳. This helps our maintainers find and focus on the active issues. If you feel this issue should be reopened, we encourage creating a new issue linking back to this one for added context. If you feel I made an error 🤖 🙉 , please reach out to my human friends 👉 hashibot-feedback@hashicorp.com. Thanks! |
ghost
locked and limited conversation to collaborators
|
I'm going to lock this issue because it has been closed for 30 days ⏳. This helps our maintainers find and focus on the active issues. If you feel this issue should be reopened, we encourage creating a new issue linking back to this one for added context. If you feel I made an error 🤖 🙉 , please reach out to my human friends 👉 hashibot-feedback@hashicorp.com. Thanks! |
|
I'm going to lock this issue because it has been closed for 30 days ⏳. This helps our maintainers find and focus on the active issues. If you feel this issue should be reopened, we encourage creating a new issue linking back to this one for added context. If you feel I made an error 🤖 🙉 , please reach out to my human friends 👉 hashibot-feedback@hashicorp.com. Thanks! |
ghost
locked and limited conversation to collaborators
Enable setting OAuth 2.0 permission scopes for an AAD application.
If omitted, will be computed from scopes defined out of band.
If specified, will replace any existing scopes configured for an application.
If specified as empty value, will remove any existing scopes from an application.
Thanks to @jorgecarleitao for initial work on #187
Fixes: #73, #162
Replaces: #187