fusionauth.FusionAuthIdpGoogle
Explore with Pulumi AI
# Google Identity Provider Resource
The Google identity provider type will use the Google OAuth v2.0 login API. it will provide a Login with Google button on FusionAuth’s login page that will leverage the Google login pop-up dialog. Additionally, this identity provider will call Google’s /oauth2/v3/tokeninfo API to load additional details about the user and store them in FusionAuth.
The email address returned by the Google Token info API will be used to create or lookup the existing user. Additional claims returned by Google can be used to reconcile the User to FusionAuth by using a Google Reconcile Lambda. Unless you assign a reconcile lambda to this provider, on the email address will be used from the available claims returned by Google.
FusionAuth will also store the Google access_token that is returned from the login pop-up dialog in the UserRegistration object inside the tokens Map. This Map stores the tokens from the various identity providers so that you can use them in your application to call their APIs.
Example Usage
import * as pulumi from "@pulumi/pulumi";
import * as fusionauth from "pulumi-fusionauth";
const google = new fusionauth.FusionAuthIdpGoogle("google", {
applicationConfigurations: [{
applicationId: fusionauth_application.myapp.id,
createRegistration: true,
enabled: true,
}],
buttonText: "Login with Google",
debug: false,
clientId: "254311943570-8e2i2hds0qdnee4124socceeh2q2mtjl.apps.googleusercontent.com",
clientSecret: "BRr7x7xz_-cXxIFznBDIdxF1",
scope: "profile",
});
import pulumi
import theogravity_pulumi_fusionauth as fusionauth
google = fusionauth.FusionAuthIdpGoogle("google",
application_configurations=[fusionauth.FusionAuthIdpGoogleApplicationConfigurationArgs(
application_id=fusionauth_application["myapp"]["id"],
create_registration=True,
enabled=True,
)],
button_text="Login with Google",
debug=False,
client_id="254311943570-8e2i2hds0qdnee4124socceeh2q2mtjl.apps.googleusercontent.com",
client_secret="BRr7x7xz_-cXxIFznBDIdxF1",
scope="profile")
package main
import (
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
"github.com/theogravity/pulumi-fusionauth/sdk/go/fusionauth"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := fusionauth.NewFusionAuthIdpGoogle(ctx, "google", &fusionauth.FusionAuthIdpGoogleArgs{
ApplicationConfigurations: fusionauth.FusionAuthIdpGoogleApplicationConfigurationArray{
&fusionauth.FusionAuthIdpGoogleApplicationConfigurationArgs{
ApplicationId: pulumi.Any(fusionauth_application.Myapp.Id),
CreateRegistration: pulumi.Bool(true),
Enabled: pulumi.Bool(true),
},
},
ButtonText: pulumi.String("Login with Google"),
Debug: pulumi.Bool(false),
ClientId: pulumi.String("254311943570-8e2i2hds0qdnee4124socceeh2q2mtjl.apps.googleusercontent.com"),
ClientSecret: pulumi.String("BRr7x7xz_-cXxIFznBDIdxF1"),
Scope: pulumi.String("profile"),
})
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Fusionauth = theogravity.Fusionauth;
return await Deployment.RunAsync(() =>
{
var google = new Fusionauth.FusionAuthIdpGoogle("google", new()
{
ApplicationConfigurations = new[]
{
new Fusionauth.Inputs.FusionAuthIdpGoogleApplicationConfigurationArgs
{
ApplicationId = fusionauth_application.Myapp.Id,
CreateRegistration = true,
Enabled = true,
},
},
ButtonText = "Login with Google",
Debug = false,
ClientId = "254311943570-8e2i2hds0qdnee4124socceeh2q2mtjl.apps.googleusercontent.com",
ClientSecret = "BRr7x7xz_-cXxIFznBDIdxF1",
Scope = "profile",
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.fusionauth.FusionAuthIdpGoogle;
import com.pulumi.fusionauth.FusionAuthIdpGoogleArgs;
import com.pulumi.fusionauth.inputs.FusionAuthIdpGoogleApplicationConfigurationArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var google = new FusionAuthIdpGoogle("google", FusionAuthIdpGoogleArgs.builder()
.applicationConfigurations(FusionAuthIdpGoogleApplicationConfigurationArgs.builder()
.applicationId(fusionauth_application.myapp().id())
.createRegistration(true)
.enabled(true)
.build())
.buttonText("Login with Google")
.debug(false)
.clientId("254311943570-8e2i2hds0qdnee4124socceeh2q2mtjl.apps.googleusercontent.com")
.clientSecret("BRr7x7xz_-cXxIFznBDIdxF1")
.scope("profile")
.build());
}
}
resources:
google:
type: fusionauth:FusionAuthIdpGoogle
properties:
applicationConfigurations:
- applicationId: ${fusionauth_application.myapp.id}
createRegistration: true
enabled: true
buttonText: Login with Google
debug: false
clientId: 254311943570-8e2i2hds0qdnee4124socceeh2q2mtjl.apps.googleusercontent.com
clientSecret: BRr7x7xz_-cXxIFznBDIdxF1
scope: profile
Create FusionAuthIdpGoogle Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new FusionAuthIdpGoogle(name: string, args: FusionAuthIdpGoogleArgs, opts?: CustomResourceOptions);
@overload
def FusionAuthIdpGoogle(resource_name: str,
args: FusionAuthIdpGoogleArgs,
opts: Optional[ResourceOptions] = None)
@overload
def FusionAuthIdpGoogle(resource_name: str,
opts: Optional[ResourceOptions] = None,
button_text: Optional[str] = None,
client_id: Optional[str] = None,
application_configurations: Optional[Sequence[FusionAuthIdpGoogleApplicationConfigurationArgs]] = None,
client_secret: Optional[str] = None,
debug: Optional[bool] = None,
enabled: Optional[bool] = None,
lambda_reconcile_id: Optional[str] = None,
linking_strategy: Optional[str] = None,
login_method: Optional[str] = None,
scope: Optional[str] = None,
tenant_configurations: Optional[Sequence[FusionAuthIdpGoogleTenantConfigurationArgs]] = None)
func NewFusionAuthIdpGoogle(ctx *Context, name string, args FusionAuthIdpGoogleArgs, opts ...ResourceOption) (*FusionAuthIdpGoogle, error)
public FusionAuthIdpGoogle(string name, FusionAuthIdpGoogleArgs args, CustomResourceOptions? opts = null)
public FusionAuthIdpGoogle(String name, FusionAuthIdpGoogleArgs args)
public FusionAuthIdpGoogle(String name, FusionAuthIdpGoogleArgs args, CustomResourceOptions options)
type: fusionauth:FusionAuthIdpGoogle
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args FusionAuthIdpGoogleArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args FusionAuthIdpGoogleArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args FusionAuthIdpGoogleArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args FusionAuthIdpGoogleArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args FusionAuthIdpGoogleArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var fusionAuthIdpGoogleResource = new Fusionauth.FusionAuthIdpGoogle("fusionAuthIdpGoogleResource", new()
{
ButtonText = "string",
ClientId = "string",
ApplicationConfigurations = new[]
{
new Fusionauth.Inputs.FusionAuthIdpGoogleApplicationConfigurationArgs
{
ApplicationId = "string",
ButtonText = "string",
ClientId = "string",
ClientSecret = "string",
CreateRegistration = false,
Enabled = false,
Scope = "string",
},
},
ClientSecret = "string",
Debug = false,
Enabled = false,
LambdaReconcileId = "string",
LinkingStrategy = "string",
LoginMethod = "string",
Scope = "string",
TenantConfigurations = new[]
{
new Fusionauth.Inputs.FusionAuthIdpGoogleTenantConfigurationArgs
{
LimitUserLinkCountEnabled = false,
LimitUserLinkCountMaximumLinks = 0,
TenantId = "string",
},
},
});
example, err := fusionauth.NewFusionAuthIdpGoogle(ctx, "fusionAuthIdpGoogleResource", &fusionauth.FusionAuthIdpGoogleArgs{
ButtonText: pulumi.String("string"),
ClientId: pulumi.String("string"),
ApplicationConfigurations: fusionauth.FusionAuthIdpGoogleApplicationConfigurationArray{
&fusionauth.FusionAuthIdpGoogleApplicationConfigurationArgs{
ApplicationId: pulumi.String("string"),
ButtonText: pulumi.String("string"),
ClientId: pulumi.String("string"),
ClientSecret: pulumi.String("string"),
CreateRegistration: pulumi.Bool(false),
Enabled: pulumi.Bool(false),
Scope: pulumi.String("string"),
},
},
ClientSecret: pulumi.String("string"),
Debug: pulumi.Bool(false),
Enabled: pulumi.Bool(false),
LambdaReconcileId: pulumi.String("string"),
LinkingStrategy: pulumi.String("string"),
LoginMethod: pulumi.String("string"),
Scope: pulumi.String("string"),
TenantConfigurations: fusionauth.FusionAuthIdpGoogleTenantConfigurationArray{
&fusionauth.FusionAuthIdpGoogleTenantConfigurationArgs{
LimitUserLinkCountEnabled: pulumi.Bool(false),
LimitUserLinkCountMaximumLinks: pulumi.Int(0),
TenantId: pulumi.String("string"),
},
},
})
var fusionAuthIdpGoogleResource = new FusionAuthIdpGoogle("fusionAuthIdpGoogleResource", FusionAuthIdpGoogleArgs.builder()
.buttonText("string")
.clientId("string")
.applicationConfigurations(FusionAuthIdpGoogleApplicationConfigurationArgs.builder()
.applicationId("string")
.buttonText("string")
.clientId("string")
.clientSecret("string")
.createRegistration(false)
.enabled(false)
.scope("string")
.build())
.clientSecret("string")
.debug(false)
.enabled(false)
.lambdaReconcileId("string")
.linkingStrategy("string")
.loginMethod("string")
.scope("string")
.tenantConfigurations(FusionAuthIdpGoogleTenantConfigurationArgs.builder()
.limitUserLinkCountEnabled(false)
.limitUserLinkCountMaximumLinks(0)
.tenantId("string")
.build())
.build());
fusion_auth_idp_google_resource = fusionauth.FusionAuthIdpGoogle("fusionAuthIdpGoogleResource",
button_text="string",
client_id="string",
application_configurations=[{
"application_id": "string",
"button_text": "string",
"client_id": "string",
"client_secret": "string",
"create_registration": False,
"enabled": False,
"scope": "string",
}],
client_secret="string",
debug=False,
enabled=False,
lambda_reconcile_id="string",
linking_strategy="string",
login_method="string",
scope="string",
tenant_configurations=[{
"limit_user_link_count_enabled": False,
"limit_user_link_count_maximum_links": 0,
"tenant_id": "string",
}])
const fusionAuthIdpGoogleResource = new fusionauth.FusionAuthIdpGoogle("fusionAuthIdpGoogleResource", {
buttonText: "string",
clientId: "string",
applicationConfigurations: [{
applicationId: "string",
buttonText: "string",
clientId: "string",
clientSecret: "string",
createRegistration: false,
enabled: false,
scope: "string",
}],
clientSecret: "string",
debug: false,
enabled: false,
lambdaReconcileId: "string",
linkingStrategy: "string",
loginMethod: "string",
scope: "string",
tenantConfigurations: [{
limitUserLinkCountEnabled: false,
limitUserLinkCountMaximumLinks: 0,
tenantId: "string",
}],
});
type: fusionauth:FusionAuthIdpGoogle
properties:
applicationConfigurations:
- applicationId: string
buttonText: string
clientId: string
clientSecret: string
createRegistration: false
enabled: false
scope: string
buttonText: string
clientId: string
clientSecret: string
debug: false
enabled: false
lambdaReconcileId: string
linkingStrategy: string
loginMethod: string
scope: string
tenantConfigurations:
- limitUserLinkCountEnabled: false
limitUserLinkCountMaximumLinks: 0
tenantId: string
FusionAuthIdpGoogle Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The FusionAuthIdpGoogle resource accepts the following input properties:
- string
- The top-level button text to use on the FusionAuth login page for this Identity Provider.
- Client
Id string - The top-level Google client id for your Application. This value is retrieved from the Google developer website when you setup your Google developer account.
- Application
Configurations List<theogravity.Fusionauth. Inputs. Fusion Auth Idp Google Application Configuration> - The configuration for each Application that the identity provider is enabled for.
- Client
Secret string - The top-level client secret to use with the Google Identity Provider when retrieving the long-lived token. This value is retrieved from the Google developer website when you setup your Google developer account.
- Debug bool
- Determines if debug is enabled for this provider. When enabled, each time this provider is invoked to reconcile a login an Event Log will be created.
- Enabled bool
- Determines if this provider is enabled. If it is false then it will be disabled globally.
- Lambda
Reconcile stringId - The unique Id of the lambda to used during the user reconcile process to map custom claims from the external identity provider to the FusionAuth user.
- Linking
Strategy string - The linking strategy to use when creating the link between the {idp_display_name} Identity Provider and the user.
- Login
Method string - The login method to use for this Identity Provider.
- Scope string
- The top-level scope that you are requesting from Google.
- Tenant
Configurations List<theogravity.Fusionauth. Inputs. Fusion Auth Idp Google Tenant Configuration> - The configuration for each Tenant that limits the number of links a user may have for a particular identity provider.
- string
- The top-level button text to use on the FusionAuth login page for this Identity Provider.
- Client
Id string - The top-level Google client id for your Application. This value is retrieved from the Google developer website when you setup your Google developer account.
- Application
Configurations []FusionAuth Idp Google Application Configuration Args - The configuration for each Application that the identity provider is enabled for.
- Client
Secret string - The top-level client secret to use with the Google Identity Provider when retrieving the long-lived token. This value is retrieved from the Google developer website when you setup your Google developer account.
- Debug bool
- Determines if debug is enabled for this provider. When enabled, each time this provider is invoked to reconcile a login an Event Log will be created.
- Enabled bool
- Determines if this provider is enabled. If it is false then it will be disabled globally.
- Lambda
Reconcile stringId - The unique Id of the lambda to used during the user reconcile process to map custom claims from the external identity provider to the FusionAuth user.
- Linking
Strategy string - The linking strategy to use when creating the link between the {idp_display_name} Identity Provider and the user.
- Login
Method string - The login method to use for this Identity Provider.
- Scope string
- The top-level scope that you are requesting from Google.
- Tenant
Configurations []FusionAuth Idp Google Tenant Configuration Args - The configuration for each Tenant that limits the number of links a user may have for a particular identity provider.
- String
- The top-level button text to use on the FusionAuth login page for this Identity Provider.
- client
Id String - The top-level Google client id for your Application. This value is retrieved from the Google developer website when you setup your Google developer account.
- application
Configurations List<FusionAuth Idp Google Application Configuration> - The configuration for each Application that the identity provider is enabled for.
- client
Secret String - The top-level client secret to use with the Google Identity Provider when retrieving the long-lived token. This value is retrieved from the Google developer website when you setup your Google developer account.
- debug Boolean
- Determines if debug is enabled for this provider. When enabled, each time this provider is invoked to reconcile a login an Event Log will be created.
- enabled Boolean
- Determines if this provider is enabled. If it is false then it will be disabled globally.
- lambda
Reconcile StringId - The unique Id of the lambda to used during the user reconcile process to map custom claims from the external identity provider to the FusionAuth user.
- linking
Strategy String - The linking strategy to use when creating the link between the {idp_display_name} Identity Provider and the user.
- login
Method String - The login method to use for this Identity Provider.
- scope String
- The top-level scope that you are requesting from Google.
- tenant
Configurations List<FusionAuth Idp Google Tenant Configuration> - The configuration for each Tenant that limits the number of links a user may have for a particular identity provider.
- string
- The top-level button text to use on the FusionAuth login page for this Identity Provider.
- client
Id string - The top-level Google client id for your Application. This value is retrieved from the Google developer website when you setup your Google developer account.
- application
Configurations FusionAuth Idp Google Application Configuration[] - The configuration for each Application that the identity provider is enabled for.
- client
Secret string - The top-level client secret to use with the Google Identity Provider when retrieving the long-lived token. This value is retrieved from the Google developer website when you setup your Google developer account.
- debug boolean
- Determines if debug is enabled for this provider. When enabled, each time this provider is invoked to reconcile a login an Event Log will be created.
- enabled boolean
- Determines if this provider is enabled. If it is false then it will be disabled globally.
- lambda
Reconcile stringId - The unique Id of the lambda to used during the user reconcile process to map custom claims from the external identity provider to the FusionAuth user.
- linking
Strategy string - The linking strategy to use when creating the link between the {idp_display_name} Identity Provider and the user.
- login
Method string - The login method to use for this Identity Provider.
- scope string
- The top-level scope that you are requesting from Google.
- tenant
Configurations FusionAuth Idp Google Tenant Configuration[] - The configuration for each Tenant that limits the number of links a user may have for a particular identity provider.
- str
- The top-level button text to use on the FusionAuth login page for this Identity Provider.
- client_
id str - The top-level Google client id for your Application. This value is retrieved from the Google developer website when you setup your Google developer account.
- application_
configurations Sequence[FusionAuth Idp Google Application Configuration Args] - The configuration for each Application that the identity provider is enabled for.
- client_
secret str - The top-level client secret to use with the Google Identity Provider when retrieving the long-lived token. This value is retrieved from the Google developer website when you setup your Google developer account.
- debug bool
- Determines if debug is enabled for this provider. When enabled, each time this provider is invoked to reconcile a login an Event Log will be created.
- enabled bool
- Determines if this provider is enabled. If it is false then it will be disabled globally.
- lambda_
reconcile_ strid - The unique Id of the lambda to used during the user reconcile process to map custom claims from the external identity provider to the FusionAuth user.
- linking_
strategy str - The linking strategy to use when creating the link between the {idp_display_name} Identity Provider and the user.
- login_
method str - The login method to use for this Identity Provider.
- scope str
- The top-level scope that you are requesting from Google.
- tenant_
configurations Sequence[FusionAuth Idp Google Tenant Configuration Args] - The configuration for each Tenant that limits the number of links a user may have for a particular identity provider.
- String
- The top-level button text to use on the FusionAuth login page for this Identity Provider.
- client
Id String - The top-level Google client id for your Application. This value is retrieved from the Google developer website when you setup your Google developer account.
- application
Configurations List<Property Map> - The configuration for each Application that the identity provider is enabled for.
- client
Secret String - The top-level client secret to use with the Google Identity Provider when retrieving the long-lived token. This value is retrieved from the Google developer website when you setup your Google developer account.
- debug Boolean
- Determines if debug is enabled for this provider. When enabled, each time this provider is invoked to reconcile a login an Event Log will be created.
- enabled Boolean
- Determines if this provider is enabled. If it is false then it will be disabled globally.
- lambda
Reconcile StringId - The unique Id of the lambda to used during the user reconcile process to map custom claims from the external identity provider to the FusionAuth user.
- linking
Strategy String - The linking strategy to use when creating the link between the {idp_display_name} Identity Provider and the user.
- login
Method String - The login method to use for this Identity Provider.
- scope String
- The top-level scope that you are requesting from Google.
- tenant
Configurations List<Property Map> - The configuration for each Tenant that limits the number of links a user may have for a particular identity provider.
Outputs
All input properties are implicitly available as output properties. Additionally, the FusionAuthIdpGoogle resource produces the following output properties:
- Id string
- The provider-assigned unique ID for this managed resource.
- Id string
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
- id string
- The provider-assigned unique ID for this managed resource.
- id str
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
Look up Existing FusionAuthIdpGoogle Resource
Get an existing FusionAuthIdpGoogle resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: FusionAuthIdpGoogleState, opts?: CustomResourceOptions): FusionAuthIdpGoogle
@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
application_configurations: Optional[Sequence[FusionAuthIdpGoogleApplicationConfigurationArgs]] = None,
button_text: Optional[str] = None,
client_id: Optional[str] = None,
client_secret: Optional[str] = None,
debug: Optional[bool] = None,
enabled: Optional[bool] = None,
lambda_reconcile_id: Optional[str] = None,
linking_strategy: Optional[str] = None,
login_method: Optional[str] = None,
scope: Optional[str] = None,
tenant_configurations: Optional[Sequence[FusionAuthIdpGoogleTenantConfigurationArgs]] = None) -> FusionAuthIdpGoogle
func GetFusionAuthIdpGoogle(ctx *Context, name string, id IDInput, state *FusionAuthIdpGoogleState, opts ...ResourceOption) (*FusionAuthIdpGoogle, error)
public static FusionAuthIdpGoogle Get(string name, Input<string> id, FusionAuthIdpGoogleState? state, CustomResourceOptions? opts = null)
public static FusionAuthIdpGoogle get(String name, Output<String> id, FusionAuthIdpGoogleState state, CustomResourceOptions options)
Resource lookup is not supported in YAML
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- Application
Configurations List<theogravity.Fusionauth. Inputs. Fusion Auth Idp Google Application Configuration> - The configuration for each Application that the identity provider is enabled for.
- string
- The top-level button text to use on the FusionAuth login page for this Identity Provider.
- Client
Id string - The top-level Google client id for your Application. This value is retrieved from the Google developer website when you setup your Google developer account.
- Client
Secret string - The top-level client secret to use with the Google Identity Provider when retrieving the long-lived token. This value is retrieved from the Google developer website when you setup your Google developer account.
- Debug bool
- Determines if debug is enabled for this provider. When enabled, each time this provider is invoked to reconcile a login an Event Log will be created.
- Enabled bool
- Determines if this provider is enabled. If it is false then it will be disabled globally.
- Lambda
Reconcile stringId - The unique Id of the lambda to used during the user reconcile process to map custom claims from the external identity provider to the FusionAuth user.
- Linking
Strategy string - The linking strategy to use when creating the link between the {idp_display_name} Identity Provider and the user.
- Login
Method string - The login method to use for this Identity Provider.
- Scope string
- The top-level scope that you are requesting from Google.
- Tenant
Configurations List<theogravity.Fusionauth. Inputs. Fusion Auth Idp Google Tenant Configuration> - The configuration for each Tenant that limits the number of links a user may have for a particular identity provider.
- Application
Configurations []FusionAuth Idp Google Application Configuration Args - The configuration for each Application that the identity provider is enabled for.
- string
- The top-level button text to use on the FusionAuth login page for this Identity Provider.
- Client
Id string - The top-level Google client id for your Application. This value is retrieved from the Google developer website when you setup your Google developer account.
- Client
Secret string - The top-level client secret to use with the Google Identity Provider when retrieving the long-lived token. This value is retrieved from the Google developer website when you setup your Google developer account.
- Debug bool
- Determines if debug is enabled for this provider. When enabled, each time this provider is invoked to reconcile a login an Event Log will be created.
- Enabled bool
- Determines if this provider is enabled. If it is false then it will be disabled globally.
- Lambda
Reconcile stringId - The unique Id of the lambda to used during the user reconcile process to map custom claims from the external identity provider to the FusionAuth user.
- Linking
Strategy string - The linking strategy to use when creating the link between the {idp_display_name} Identity Provider and the user.
- Login
Method string - The login method to use for this Identity Provider.
- Scope string
- The top-level scope that you are requesting from Google.
- Tenant
Configurations []FusionAuth Idp Google Tenant Configuration Args - The configuration for each Tenant that limits the number of links a user may have for a particular identity provider.
- application
Configurations List<FusionAuth Idp Google Application Configuration> - The configuration for each Application that the identity provider is enabled for.
- String
- The top-level button text to use on the FusionAuth login page for this Identity Provider.
- client
Id String - The top-level Google client id for your Application. This value is retrieved from the Google developer website when you setup your Google developer account.
- client
Secret String - The top-level client secret to use with the Google Identity Provider when retrieving the long-lived token. This value is retrieved from the Google developer website when you setup your Google developer account.
- debug Boolean
- Determines if debug is enabled for this provider. When enabled, each time this provider is invoked to reconcile a login an Event Log will be created.
- enabled Boolean
- Determines if this provider is enabled. If it is false then it will be disabled globally.
- lambda
Reconcile StringId - The unique Id of the lambda to used during the user reconcile process to map custom claims from the external identity provider to the FusionAuth user.
- linking
Strategy String - The linking strategy to use when creating the link between the {idp_display_name} Identity Provider and the user.
- login
Method String - The login method to use for this Identity Provider.
- scope String
- The top-level scope that you are requesting from Google.
- tenant
Configurations List<FusionAuth Idp Google Tenant Configuration> - The configuration for each Tenant that limits the number of links a user may have for a particular identity provider.
- application
Configurations FusionAuth Idp Google Application Configuration[] - The configuration for each Application that the identity provider is enabled for.
- string
- The top-level button text to use on the FusionAuth login page for this Identity Provider.
- client
Id string - The top-level Google client id for your Application. This value is retrieved from the Google developer website when you setup your Google developer account.
- client
Secret string - The top-level client secret to use with the Google Identity Provider when retrieving the long-lived token. This value is retrieved from the Google developer website when you setup your Google developer account.
- debug boolean
- Determines if debug is enabled for this provider. When enabled, each time this provider is invoked to reconcile a login an Event Log will be created.
- enabled boolean
- Determines if this provider is enabled. If it is false then it will be disabled globally.
- lambda
Reconcile stringId - The unique Id of the lambda to used during the user reconcile process to map custom claims from the external identity provider to the FusionAuth user.
- linking
Strategy string - The linking strategy to use when creating the link between the {idp_display_name} Identity Provider and the user.
- login
Method string - The login method to use for this Identity Provider.
- scope string
- The top-level scope that you are requesting from Google.
- tenant
Configurations FusionAuth Idp Google Tenant Configuration[] - The configuration for each Tenant that limits the number of links a user may have for a particular identity provider.
- application_
configurations Sequence[FusionAuth Idp Google Application Configuration Args] - The configuration for each Application that the identity provider is enabled for.
- str
- The top-level button text to use on the FusionAuth login page for this Identity Provider.
- client_
id str - The top-level Google client id for your Application. This value is retrieved from the Google developer website when you setup your Google developer account.
- client_
secret str - The top-level client secret to use with the Google Identity Provider when retrieving the long-lived token. This value is retrieved from the Google developer website when you setup your Google developer account.
- debug bool
- Determines if debug is enabled for this provider. When enabled, each time this provider is invoked to reconcile a login an Event Log will be created.
- enabled bool
- Determines if this provider is enabled. If it is false then it will be disabled globally.
- lambda_
reconcile_ strid - The unique Id of the lambda to used during the user reconcile process to map custom claims from the external identity provider to the FusionAuth user.
- linking_
strategy str - The linking strategy to use when creating the link between the {idp_display_name} Identity Provider and the user.
- login_
method str - The login method to use for this Identity Provider.
- scope str
- The top-level scope that you are requesting from Google.
- tenant_
configurations Sequence[FusionAuth Idp Google Tenant Configuration Args] - The configuration for each Tenant that limits the number of links a user may have for a particular identity provider.
- application
Configurations List<Property Map> - The configuration for each Application that the identity provider is enabled for.
- String
- The top-level button text to use on the FusionAuth login page for this Identity Provider.
- client
Id String - The top-level Google client id for your Application. This value is retrieved from the Google developer website when you setup your Google developer account.
- client
Secret String - The top-level client secret to use with the Google Identity Provider when retrieving the long-lived token. This value is retrieved from the Google developer website when you setup your Google developer account.
- debug Boolean
- Determines if debug is enabled for this provider. When enabled, each time this provider is invoked to reconcile a login an Event Log will be created.
- enabled Boolean
- Determines if this provider is enabled. If it is false then it will be disabled globally.
- lambda
Reconcile StringId - The unique Id of the lambda to used during the user reconcile process to map custom claims from the external identity provider to the FusionAuth user.
- linking
Strategy String - The linking strategy to use when creating the link between the {idp_display_name} Identity Provider and the user.
- login
Method String - The login method to use for this Identity Provider.
- scope String
- The top-level scope that you are requesting from Google.
- tenant
Configurations List<Property Map> - The configuration for each Tenant that limits the number of links a user may have for a particular identity provider.
Supporting Types
FusionAuthIdpGoogleApplicationConfiguration, FusionAuthIdpGoogleApplicationConfigurationArgs
- Application
Id string - ID of the Application to apply this configuration to.
- string
- This is an optional Application specific override for the top level button text.
- Client
Id string - This is an optional Application specific override for the top level client id.
- Client
Secret string - This is an optional Application specific override for the top level client secret.
- Create
Registration bool - Determines if a UserRegistration is created for the User automatically or not. If a user doesn’t exist in FusionAuth and logs in through an identity provider, this boolean controls whether or not FusionAuth creates a registration for the User in the Application they are logging into.
- Enabled bool
- Determines if this identity provider is enabled for the Application specified by the applicationId key.
- Scope string
- This is an optional Application specific override for for the top level scope.
- Application
Id string - ID of the Application to apply this configuration to.
- string
- This is an optional Application specific override for the top level button text.
- Client
Id string - This is an optional Application specific override for the top level client id.
- Client
Secret string - This is an optional Application specific override for the top level client secret.
- Create
Registration bool - Determines if a UserRegistration is created for the User automatically or not. If a user doesn’t exist in FusionAuth and logs in through an identity provider, this boolean controls whether or not FusionAuth creates a registration for the User in the Application they are logging into.
- Enabled bool
- Determines if this identity provider is enabled for the Application specified by the applicationId key.
- Scope string
- This is an optional Application specific override for for the top level scope.
- application
Id String - ID of the Application to apply this configuration to.
- String
- This is an optional Application specific override for the top level button text.
- client
Id String - This is an optional Application specific override for the top level client id.
- client
Secret String - This is an optional Application specific override for the top level client secret.
- create
Registration Boolean - Determines if a UserRegistration is created for the User automatically or not. If a user doesn’t exist in FusionAuth and logs in through an identity provider, this boolean controls whether or not FusionAuth creates a registration for the User in the Application they are logging into.
- enabled Boolean
- Determines if this identity provider is enabled for the Application specified by the applicationId key.
- scope String
- This is an optional Application specific override for for the top level scope.
- application
Id string - ID of the Application to apply this configuration to.
- string
- This is an optional Application specific override for the top level button text.
- client
Id string - This is an optional Application specific override for the top level client id.
- client
Secret string - This is an optional Application specific override for the top level client secret.
- create
Registration boolean - Determines if a UserRegistration is created for the User automatically or not. If a user doesn’t exist in FusionAuth and logs in through an identity provider, this boolean controls whether or not FusionAuth creates a registration for the User in the Application they are logging into.
- enabled boolean
- Determines if this identity provider is enabled for the Application specified by the applicationId key.
- scope string
- This is an optional Application specific override for for the top level scope.
- application_
id str - ID of the Application to apply this configuration to.
- str
- This is an optional Application specific override for the top level button text.
- client_
id str - This is an optional Application specific override for the top level client id.
- client_
secret str - This is an optional Application specific override for the top level client secret.
- create_
registration bool - Determines if a UserRegistration is created for the User automatically or not. If a user doesn’t exist in FusionAuth and logs in through an identity provider, this boolean controls whether or not FusionAuth creates a registration for the User in the Application they are logging into.
- enabled bool
- Determines if this identity provider is enabled for the Application specified by the applicationId key.
- scope str
- This is an optional Application specific override for for the top level scope.
- application
Id String - ID of the Application to apply this configuration to.
- String
- This is an optional Application specific override for the top level button text.
- client
Id String - This is an optional Application specific override for the top level client id.
- client
Secret String - This is an optional Application specific override for the top level client secret.
- create
Registration Boolean - Determines if a UserRegistration is created for the User automatically or not. If a user doesn’t exist in FusionAuth and logs in through an identity provider, this boolean controls whether or not FusionAuth creates a registration for the User in the Application they are logging into.
- enabled Boolean
- Determines if this identity provider is enabled for the Application specified by the applicationId key.
- scope String
- This is an optional Application specific override for for the top level scope.
FusionAuthIdpGoogleTenantConfiguration, FusionAuthIdpGoogleTenantConfigurationArgs
- Limit
User boolLink Count Enabled - When enabled, the number of identity provider links a user may create is enforced by maximumLinks.
- Limit
User intLink Count Maximum Links - Determines if this provider is enabled. If it is false then it will be disabled globally.
- Tenant
Id string - The unique Id of the tenant that this configuration applies to.
- Limit
User boolLink Count Enabled - When enabled, the number of identity provider links a user may create is enforced by maximumLinks.
- Limit
User intLink Count Maximum Links - Determines if this provider is enabled. If it is false then it will be disabled globally.
- Tenant
Id string - The unique Id of the tenant that this configuration applies to.
- limit
User BooleanLink Count Enabled - When enabled, the number of identity provider links a user may create is enforced by maximumLinks.
- limit
User IntegerLink Count Maximum Links - Determines if this provider is enabled. If it is false then it will be disabled globally.
- tenant
Id String - The unique Id of the tenant that this configuration applies to.
- limit
User booleanLink Count Enabled - When enabled, the number of identity provider links a user may create is enforced by maximumLinks.
- limit
User numberLink Count Maximum Links - Determines if this provider is enabled. If it is false then it will be disabled globally.
- tenant
Id string - The unique Id of the tenant that this configuration applies to.
- limit_
user_ boollink_ count_ enabled - When enabled, the number of identity provider links a user may create is enforced by maximumLinks.
- limit_
user_ intlink_ count_ maximum_ links - Determines if this provider is enabled. If it is false then it will be disabled globally.
- tenant_
id str - The unique Id of the tenant that this configuration applies to.
- limit
User BooleanLink Count Enabled - When enabled, the number of identity provider links a user may create is enforced by maximumLinks.
- limit
User NumberLink Count Maximum Links - Determines if this provider is enabled. If it is false then it will be disabled globally.
- tenant
Id String - The unique Id of the tenant that this configuration applies to.
Package Details
- Repository
- fusionauth theogravity/pulumi-fusionauth
- License
- MIT
- Notes
- This Pulumi package is based on the
fusionauth
Terraform Provider.