-
Notifications
You must be signed in to change notification settings - Fork 204
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Feature Request: okta_apps data source #1528
Comments
Thanks @sgal-dm the apps data source makes sense to me but I'm not clear on how useful it would be. For example, in the example the data "okta_app_metadata_saml" "some_app" {
count = length(data.okta_apps.some_app.apps) > 0 ? 1 : 0
app_id = data.okta_apps.some_app.apps[0].id
provider = okta.workforce
} |
An okta apps data source would be useful for resource sets imo |
Also, the Okta Management API is going to be improving the apps endpoint for interacting with Okta Integration Network (OIN) apps. Need to take that into consideration. @exitcode0 can you give me a concrete example? |
Granting read only admin to a list of apps that all share a given name prefix I personally don't have a usecase for this right now, but I could see it being useful to me in future I know the default roles give the ability to scope app admin to a given oin app type, but resource sets would likely end up being more flexible I could see us having a usecase for granting group membership admin to all groups under a set of apps with a given name prefix , but I'm not sure if the contained resources functionality works with groups assigned to apps |
This issue is stale because it has been open 60 days with no activity. Remove stale label or comment or this will be closed in 5 days |
This issue is stale because it has been open 60 days with no activity. Comment or this will be closed in 5 days |
@monde I think this one closed out when Stalebot ran next after my most recent PRs - Could we re open this one and remove the stale label? |
Commenting here to bump this and maybe remove the |
This issue is stale because it has been open 60 days with no activity. Comment or this will be closed in 5 days |
Not stale |
Okta internal reference: https://oktainc.atlassian.net/browse/OKTA-660500 This would be an easy data source to implement. If anyone in the community wants to try their hand at golang, if they haven't already, I'd be more than happy to give some 1-1 pair time to the effort. |
I wrote it along with two other data sources during some travel downtime earlier this month. |
@steveAG send me an email and I can give you some tips and tricks if you like. mike.mondragon@okta.com |
@monde I'd like to use a data source like this to have the saml app metadata for every app defined in the org output when terraform is applied, rather than what I'm currently doing which is maintaining a list of all the apps I have defined:
I'm aware of patterns such as using for_each for defining the resources (which would let me then reference the collection of resources), but I don't want to build that abstraction layer right now. |
Community Note
Description
Create an
okta_apps
data source to retrieve multiple apps, with no error if there is no result, similar to theokta_groups
data source.I've run into a need for this twice in the last week:
resource_set
that contains multiple similar applications.a. That integration requires a circular reference between an
okta_saml_app
resource and anokta_saml_idp
resource because each resource needs to reference metadata attributes from the other to set the correct IdP and SP metadata.b. The existing
okta_app
/okta_saml_idp
data sources can't be used to decouple these resources, because the data sources throw an error if no result is found, and making it dependent on the resource doesn't decouple them, resulting in the same Terraform circular reference error.c. Having the ability to search for an app and not receive an error if it does not exist (similar to
okta_groups
) would remove the need to change a variable between applies one and two or to rely on another resource type as the condition for replacing the temporary values with the correct metadata.New or Affected Resource(s)
Potential Terraform Configuration
Example scenario 1:
Example scenario 2:
The text was updated successfully, but these errors were encountered: