forked from oci-landing-zones/terraform-oci-modules-iam
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathvariables.tf
122 lines (112 loc) · 4.54 KB
/
variables.tf
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
# Copyright (c) 2023 Oracle and/or its affiliates.
# Licensed under the Universal Permissive License v 1.0 as shown at https://oss.oracle.com/licenses/upl.
variable "tenancy_ocid" {
type = string
description = "The OCID of the tenancy."
}
variable "identity_domains_configuration" {
description = "The identity domains configuration."
type = object({
default_compartment_id = optional(string)
default_defined_tags = optional(map(string))
default_freeform_tags = optional(map(string))
identity_domains = map(object({
compartment_id = optional(string),
display_name = string,
description = string,
home_region = optional(string),
license_type = string,
admin_email = optional(string),
admin_first_name = optional(string),
admin_last_name = optional(string),
admin_user_name = optional(string),
is_hidden_on_login = optional(bool),
is_notification_bypassed = optional(bool),
is_primary_email_required = optional(bool),
defined_tags = optional(map(string)),
freeform_tags = optional(map(string))
}))
})
default = null
}
variable "identity_domain_groups_configuration" {
description = "The identity domain groups configuration."
type = object({
default_identity_domain_id = optional(string)
default_defined_tags = optional(map(string))
default_freeform_tags = optional(map(string))
groups = map(object({
identity_domain_id = optional(string),
name = string,
description = optional(string),
requestable = optional(bool),
members = optional(list(string)),
defined_tags = optional(map(string)),
freeform_tags = optional(map(string))
}))
})
default = null
}
variable "identity_domain_dynamic_groups_configuration" {
description = "The identity domain dynamic groups configuration."
type = object({
default_identity_domain_id = optional(string)
default_defined_tags = optional(map(string))
default_freeform_tags = optional(map(string))
dynamic_groups = map(object({
identity_domain_id = optional(string),
name = string,
description = optional(string),
matching_rule = string,
defined_tags = optional(map(string)),
freeform_tags = optional(map(string))
}))
})
default = null
}
variable "identity_domain_identity_providers_configuration" {
description = "The identity domain identity providers configuration."
type = object({
default_identity_domain_id = optional(string)
#default_defined_tags = optional(map(string))
#default_freeform_tags = optional(map(string))
identity_providers = map(object({
identity_domain_id = optional(string),
name = string,
description = optional(string),
icon_file = optional(string),
enabled = bool,
name_id_format = optional(string),
user_mapping_method = optional(string),
user_mapping_store_attribute = optional(string),
assertion_attribute = optional(string),
idp_metadata_file = optional(string),
idp_issuer_uri = optional(string),
sso_service_url = optional(string),
sso_service_binding = optional(string),
idp_signing_certificate = optional(string),
idp_encryption_certificate = optional(string),
enable_global_logout = optional(bool),
idp_logout_request_url = optional(string),
idp_logout_response_url = optional(string),
idp_logout_binding = optional(string),
signature_hash_algorithm = optional(string),
send_signing_certificate = optional(bool),
#defined_tags = optional(map(string)),
#freeform_tags = optional(map(string))
}))
})
default = null
}
variable "module_name" {
description = "The module name."
type = string
default = "iam-identity-domains"
}
variable "compartments_dependency" {
description = "A map of objects containing the externally managed compartments this module may depend on. All map objects must have the same type and must contain at least an 'id' attribute (representing the compartment OCID) of string type."
type = map(object({
id = string
}))
default = null
}