mongodbatlas.FederatedSettingsOrgConfig
Explore with Pulumi AI
# Resource: mongodbatlas.FederatedSettingsOrgConfig
mongodbatlas.FederatedSettingsOrgConfig
provides an Federated Settings Identity Providers datasource. Atlas Cloud Federated Settings Identity Providers provides federated settings outputs for the configured Identity Providers.
Example Usage
IMPORTANT You MUST import this resource before you can manage it with this provider.
import * as pulumi from "@pulumi/pulumi";
import * as mongodbatlas from "@pulumi/mongodbatlas";
const orgConnection = new mongodbatlas.FederatedSettingsOrgConfig("org_connection", {
federationSettingsId: "627a9687f7f7f7f774de306f14",
orgId: "627a9683ea7ff7f74de306f14",
dataAccessIdentityProviderIds: ["64d613677e1ad50839cce4db"],
domainRestrictionEnabled: false,
domainAllowLists: ["mydomain.com"],
postAuthRoleGrants: ["ORG_MEMBER"],
identityProviderId: "0oaqyt9fc2ySTWnA0357",
});
const orgConfigsDs = mongodbatlas.getFederatedSettingsOrgConfigs({
federationSettingsId: orgConnectionMongodbatlasFederatedSettingsOrgConfig.id,
});
import pulumi
import pulumi_mongodbatlas as mongodbatlas
org_connection = mongodbatlas.FederatedSettingsOrgConfig("org_connection",
federation_settings_id="627a9687f7f7f7f774de306f14",
org_id="627a9683ea7ff7f74de306f14",
data_access_identity_provider_ids=["64d613677e1ad50839cce4db"],
domain_restriction_enabled=False,
domain_allow_lists=["mydomain.com"],
post_auth_role_grants=["ORG_MEMBER"],
identity_provider_id="0oaqyt9fc2ySTWnA0357")
org_configs_ds = mongodbatlas.get_federated_settings_org_configs(federation_settings_id=org_connection_mongodbatlas_federated_settings_org_config["id"])
package main
import (
"github.com/pulumi/pulumi-mongodbatlas/sdk/v3/go/mongodbatlas"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := mongodbatlas.NewFederatedSettingsOrgConfig(ctx, "org_connection", &mongodbatlas.FederatedSettingsOrgConfigArgs{
FederationSettingsId: pulumi.String("627a9687f7f7f7f774de306f14"),
OrgId: pulumi.String("627a9683ea7ff7f74de306f14"),
DataAccessIdentityProviderIds: pulumi.StringArray{
pulumi.String("64d613677e1ad50839cce4db"),
},
DomainRestrictionEnabled: pulumi.Bool(false),
DomainAllowLists: pulumi.StringArray{
pulumi.String("mydomain.com"),
},
PostAuthRoleGrants: pulumi.StringArray{
pulumi.String("ORG_MEMBER"),
},
IdentityProviderId: pulumi.String("0oaqyt9fc2ySTWnA0357"),
})
if err != nil {
return err
}
_, err = mongodbatlas.LookupFederatedSettingsOrgConfigs(ctx, &mongodbatlas.LookupFederatedSettingsOrgConfigsArgs{
FederationSettingsId: orgConnectionMongodbatlasFederatedSettingsOrgConfig.Id,
}, nil)
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Mongodbatlas = Pulumi.Mongodbatlas;
return await Deployment.RunAsync(() =>
{
var orgConnection = new Mongodbatlas.FederatedSettingsOrgConfig("org_connection", new()
{
FederationSettingsId = "627a9687f7f7f7f774de306f14",
OrgId = "627a9683ea7ff7f74de306f14",
DataAccessIdentityProviderIds = new[]
{
"64d613677e1ad50839cce4db",
},
DomainRestrictionEnabled = false,
DomainAllowLists = new[]
{
"mydomain.com",
},
PostAuthRoleGrants = new[]
{
"ORG_MEMBER",
},
IdentityProviderId = "0oaqyt9fc2ySTWnA0357",
});
var orgConfigsDs = Mongodbatlas.GetFederatedSettingsOrgConfigs.Invoke(new()
{
FederationSettingsId = orgConnectionMongodbatlasFederatedSettingsOrgConfig.Id,
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.mongodbatlas.FederatedSettingsOrgConfig;
import com.pulumi.mongodbatlas.FederatedSettingsOrgConfigArgs;
import com.pulumi.mongodbatlas.MongodbatlasFunctions;
import com.pulumi.mongodbatlas.inputs.GetFederatedSettingsOrgConfigsArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var orgConnection = new FederatedSettingsOrgConfig("orgConnection", FederatedSettingsOrgConfigArgs.builder()
.federationSettingsId("627a9687f7f7f7f774de306f14")
.orgId("627a9683ea7ff7f74de306f14")
.dataAccessIdentityProviderIds("64d613677e1ad50839cce4db")
.domainRestrictionEnabled(false)
.domainAllowLists("mydomain.com")
.postAuthRoleGrants("ORG_MEMBER")
.identityProviderId("0oaqyt9fc2ySTWnA0357")
.build());
final var orgConfigsDs = MongodbatlasFunctions.getFederatedSettingsOrgConfigs(GetFederatedSettingsOrgConfigsArgs.builder()
.federationSettingsId(orgConnectionMongodbatlasFederatedSettingsOrgConfig.id())
.build());
}
}
resources:
orgConnection:
type: mongodbatlas:FederatedSettingsOrgConfig
name: org_connection
properties:
federationSettingsId: 627a9687f7f7f7f774de306f14
orgId: 627a9683ea7ff7f74de306f14
dataAccessIdentityProviderIds:
- 64d613677e1ad50839cce4db
domainRestrictionEnabled: false
domainAllowLists:
- mydomain.com
postAuthRoleGrants:
- ORG_MEMBER
identityProviderId: 0oaqyt9fc2ySTWnA0357
variables:
orgConfigsDs:
fn::invoke:
Function: mongodbatlas:getFederatedSettingsOrgConfigs
Arguments:
federationSettingsId: ${orgConnectionMongodbatlasFederatedSettingsOrgConfig.id}
Create FederatedSettingsOrgConfig Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new FederatedSettingsOrgConfig(name: string, args: FederatedSettingsOrgConfigArgs, opts?: CustomResourceOptions);
@overload
def FederatedSettingsOrgConfig(resource_name: str,
args: FederatedSettingsOrgConfigArgs,
opts: Optional[ResourceOptions] = None)
@overload
def FederatedSettingsOrgConfig(resource_name: str,
opts: Optional[ResourceOptions] = None,
domain_restriction_enabled: Optional[bool] = None,
federation_settings_id: Optional[str] = None,
org_id: Optional[str] = None,
data_access_identity_provider_ids: Optional[Sequence[str]] = None,
domain_allow_lists: Optional[Sequence[str]] = None,
identity_provider_id: Optional[str] = None,
post_auth_role_grants: Optional[Sequence[str]] = None)
func NewFederatedSettingsOrgConfig(ctx *Context, name string, args FederatedSettingsOrgConfigArgs, opts ...ResourceOption) (*FederatedSettingsOrgConfig, error)
public FederatedSettingsOrgConfig(string name, FederatedSettingsOrgConfigArgs args, CustomResourceOptions? opts = null)
public FederatedSettingsOrgConfig(String name, FederatedSettingsOrgConfigArgs args)
public FederatedSettingsOrgConfig(String name, FederatedSettingsOrgConfigArgs args, CustomResourceOptions options)
type: mongodbatlas:FederatedSettingsOrgConfig
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args FederatedSettingsOrgConfigArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args FederatedSettingsOrgConfigArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args FederatedSettingsOrgConfigArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args FederatedSettingsOrgConfigArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args FederatedSettingsOrgConfigArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var federatedSettingsOrgConfigResource = new Mongodbatlas.FederatedSettingsOrgConfig("federatedSettingsOrgConfigResource", new()
{
DomainRestrictionEnabled = false,
FederationSettingsId = "string",
OrgId = "string",
DataAccessIdentityProviderIds = new[]
{
"string",
},
DomainAllowLists = new[]
{
"string",
},
IdentityProviderId = "string",
PostAuthRoleGrants = new[]
{
"string",
},
});
example, err := mongodbatlas.NewFederatedSettingsOrgConfig(ctx, "federatedSettingsOrgConfigResource", &mongodbatlas.FederatedSettingsOrgConfigArgs{
DomainRestrictionEnabled: pulumi.Bool(false),
FederationSettingsId: pulumi.String("string"),
OrgId: pulumi.String("string"),
DataAccessIdentityProviderIds: pulumi.StringArray{
pulumi.String("string"),
},
DomainAllowLists: pulumi.StringArray{
pulumi.String("string"),
},
IdentityProviderId: pulumi.String("string"),
PostAuthRoleGrants: pulumi.StringArray{
pulumi.String("string"),
},
})
var federatedSettingsOrgConfigResource = new FederatedSettingsOrgConfig("federatedSettingsOrgConfigResource", FederatedSettingsOrgConfigArgs.builder()
.domainRestrictionEnabled(false)
.federationSettingsId("string")
.orgId("string")
.dataAccessIdentityProviderIds("string")
.domainAllowLists("string")
.identityProviderId("string")
.postAuthRoleGrants("string")
.build());
federated_settings_org_config_resource = mongodbatlas.FederatedSettingsOrgConfig("federatedSettingsOrgConfigResource",
domain_restriction_enabled=False,
federation_settings_id="string",
org_id="string",
data_access_identity_provider_ids=["string"],
domain_allow_lists=["string"],
identity_provider_id="string",
post_auth_role_grants=["string"])
const federatedSettingsOrgConfigResource = new mongodbatlas.FederatedSettingsOrgConfig("federatedSettingsOrgConfigResource", {
domainRestrictionEnabled: false,
federationSettingsId: "string",
orgId: "string",
dataAccessIdentityProviderIds: ["string"],
domainAllowLists: ["string"],
identityProviderId: "string",
postAuthRoleGrants: ["string"],
});
type: mongodbatlas:FederatedSettingsOrgConfig
properties:
dataAccessIdentityProviderIds:
- string
domainAllowLists:
- string
domainRestrictionEnabled: false
federationSettingsId: string
identityProviderId: string
orgId: string
postAuthRoleGrants:
- string
FederatedSettingsOrgConfig Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The FederatedSettingsOrgConfig resource accepts the following input properties:
- Domain
Restriction boolEnabled - Flag that indicates whether domain restriction is enabled for the connected organization.
- Federation
Settings stringId - Unique 24-hexadecimal digit string that identifies the federated authentication configuration.
- Org
Id string - Unique 24-hexadecimal digit string that identifies the organization that contains your projects.
- Data
Access List<string>Identity Provider Ids - The collection of unique ids representing the identity providers that can be used for data access in this organization.
- Domain
Allow List<string>Lists - List that contains the approved domains from which organization users can log in.
- Identity
Provider stringId - Legacy 20-hexadecimal digit string that identifies the SAML access identity provider that this connected org config is associated with. Removing the attribute or providing the value
""
will detach/remove the SAML identity provider. This id can be found in two ways:- Within the Federation Management UI in Atlas in the Identity Providers tab by clicking the info icon in the IdP ID row of a configured SAML identity provider
okta_idp_id
on themongodbatlas.FederatedSettingsIdentityProvider
resource
- Post
Auth List<string>Role Grants - List that contains the default roles granted to users who authenticate through the IdP in a connected organization.
- Domain
Restriction boolEnabled - Flag that indicates whether domain restriction is enabled for the connected organization.
- Federation
Settings stringId - Unique 24-hexadecimal digit string that identifies the federated authentication configuration.
- Org
Id string - Unique 24-hexadecimal digit string that identifies the organization that contains your projects.
- Data
Access []stringIdentity Provider Ids - The collection of unique ids representing the identity providers that can be used for data access in this organization.
- Domain
Allow []stringLists - List that contains the approved domains from which organization users can log in.
- Identity
Provider stringId - Legacy 20-hexadecimal digit string that identifies the SAML access identity provider that this connected org config is associated with. Removing the attribute or providing the value
""
will detach/remove the SAML identity provider. This id can be found in two ways:- Within the Federation Management UI in Atlas in the Identity Providers tab by clicking the info icon in the IdP ID row of a configured SAML identity provider
okta_idp_id
on themongodbatlas.FederatedSettingsIdentityProvider
resource
- Post
Auth []stringRole Grants - List that contains the default roles granted to users who authenticate through the IdP in a connected organization.
- domain
Restriction BooleanEnabled - Flag that indicates whether domain restriction is enabled for the connected organization.
- federation
Settings StringId - Unique 24-hexadecimal digit string that identifies the federated authentication configuration.
- org
Id String - Unique 24-hexadecimal digit string that identifies the organization that contains your projects.
- data
Access List<String>Identity Provider Ids - The collection of unique ids representing the identity providers that can be used for data access in this organization.
- domain
Allow List<String>Lists - List that contains the approved domains from which organization users can log in.
- identity
Provider StringId - Legacy 20-hexadecimal digit string that identifies the SAML access identity provider that this connected org config is associated with. Removing the attribute or providing the value
""
will detach/remove the SAML identity provider. This id can be found in two ways:- Within the Federation Management UI in Atlas in the Identity Providers tab by clicking the info icon in the IdP ID row of a configured SAML identity provider
okta_idp_id
on themongodbatlas.FederatedSettingsIdentityProvider
resource
- post
Auth List<String>Role Grants - List that contains the default roles granted to users who authenticate through the IdP in a connected organization.
- domain
Restriction booleanEnabled - Flag that indicates whether domain restriction is enabled for the connected organization.
- federation
Settings stringId - Unique 24-hexadecimal digit string that identifies the federated authentication configuration.
- org
Id string - Unique 24-hexadecimal digit string that identifies the organization that contains your projects.
- data
Access string[]Identity Provider Ids - The collection of unique ids representing the identity providers that can be used for data access in this organization.
- domain
Allow string[]Lists - List that contains the approved domains from which organization users can log in.
- identity
Provider stringId - Legacy 20-hexadecimal digit string that identifies the SAML access identity provider that this connected org config is associated with. Removing the attribute or providing the value
""
will detach/remove the SAML identity provider. This id can be found in two ways:- Within the Federation Management UI in Atlas in the Identity Providers tab by clicking the info icon in the IdP ID row of a configured SAML identity provider
okta_idp_id
on themongodbatlas.FederatedSettingsIdentityProvider
resource
- post
Auth string[]Role Grants - List that contains the default roles granted to users who authenticate through the IdP in a connected organization.
- domain_
restriction_ boolenabled - Flag that indicates whether domain restriction is enabled for the connected organization.
- federation_
settings_ strid - Unique 24-hexadecimal digit string that identifies the federated authentication configuration.
- org_
id str - Unique 24-hexadecimal digit string that identifies the organization that contains your projects.
- data_
access_ Sequence[str]identity_ provider_ ids - The collection of unique ids representing the identity providers that can be used for data access in this organization.
- domain_
allow_ Sequence[str]lists - List that contains the approved domains from which organization users can log in.
- identity_
provider_ strid - Legacy 20-hexadecimal digit string that identifies the SAML access identity provider that this connected org config is associated with. Removing the attribute or providing the value
""
will detach/remove the SAML identity provider. This id can be found in two ways:- Within the Federation Management UI in Atlas in the Identity Providers tab by clicking the info icon in the IdP ID row of a configured SAML identity provider
okta_idp_id
on themongodbatlas.FederatedSettingsIdentityProvider
resource
- post_
auth_ Sequence[str]role_ grants - List that contains the default roles granted to users who authenticate through the IdP in a connected organization.
- domain
Restriction BooleanEnabled - Flag that indicates whether domain restriction is enabled for the connected organization.
- federation
Settings StringId - Unique 24-hexadecimal digit string that identifies the federated authentication configuration.
- org
Id String - Unique 24-hexadecimal digit string that identifies the organization that contains your projects.
- data
Access List<String>Identity Provider Ids - The collection of unique ids representing the identity providers that can be used for data access in this organization.
- domain
Allow List<String>Lists - List that contains the approved domains from which organization users can log in.
- identity
Provider StringId - Legacy 20-hexadecimal digit string that identifies the SAML access identity provider that this connected org config is associated with. Removing the attribute or providing the value
""
will detach/remove the SAML identity provider. This id can be found in two ways:- Within the Federation Management UI in Atlas in the Identity Providers tab by clicking the info icon in the IdP ID row of a configured SAML identity provider
okta_idp_id
on themongodbatlas.FederatedSettingsIdentityProvider
resource
- post
Auth List<String>Role Grants - List that contains the default roles granted to users who authenticate through the IdP in a connected organization.
Outputs
All input properties are implicitly available as output properties. Additionally, the FederatedSettingsOrgConfig resource produces the following output properties:
- Id string
- The provider-assigned unique ID for this managed resource.
- User
Conflicts List<FederatedSettings Org Config User Conflict> - List that contains the users who have an email address that doesn't match any domain on the allowed list. See below
- Id string
- The provider-assigned unique ID for this managed resource.
- User
Conflicts []FederatedSettings Org Config User Conflict - List that contains the users who have an email address that doesn't match any domain on the allowed list. See below
- id String
- The provider-assigned unique ID for this managed resource.
- user
Conflicts List<FederatedSettings Org Config User Conflict> - List that contains the users who have an email address that doesn't match any domain on the allowed list. See below
- id string
- The provider-assigned unique ID for this managed resource.
- user
Conflicts FederatedSettings Org Config User Conflict[] - List that contains the users who have an email address that doesn't match any domain on the allowed list. See below
- id str
- The provider-assigned unique ID for this managed resource.
- user_
conflicts Sequence[FederatedSettings Org Config User Conflict] - List that contains the users who have an email address that doesn't match any domain on the allowed list. See below
- id String
- The provider-assigned unique ID for this managed resource.
- user
Conflicts List<Property Map> - List that contains the users who have an email address that doesn't match any domain on the allowed list. See below
Look up Existing FederatedSettingsOrgConfig Resource
Get an existing FederatedSettingsOrgConfig resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: FederatedSettingsOrgConfigState, opts?: CustomResourceOptions): FederatedSettingsOrgConfig
@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
data_access_identity_provider_ids: Optional[Sequence[str]] = None,
domain_allow_lists: Optional[Sequence[str]] = None,
domain_restriction_enabled: Optional[bool] = None,
federation_settings_id: Optional[str] = None,
identity_provider_id: Optional[str] = None,
org_id: Optional[str] = None,
post_auth_role_grants: Optional[Sequence[str]] = None,
user_conflicts: Optional[Sequence[FederatedSettingsOrgConfigUserConflictArgs]] = None) -> FederatedSettingsOrgConfig
func GetFederatedSettingsOrgConfig(ctx *Context, name string, id IDInput, state *FederatedSettingsOrgConfigState, opts ...ResourceOption) (*FederatedSettingsOrgConfig, error)
public static FederatedSettingsOrgConfig Get(string name, Input<string> id, FederatedSettingsOrgConfigState? state, CustomResourceOptions? opts = null)
public static FederatedSettingsOrgConfig get(String name, Output<String> id, FederatedSettingsOrgConfigState state, CustomResourceOptions options)
Resource lookup is not supported in YAML
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- Data
Access List<string>Identity Provider Ids - The collection of unique ids representing the identity providers that can be used for data access in this organization.
- Domain
Allow List<string>Lists - List that contains the approved domains from which organization users can log in.
- Domain
Restriction boolEnabled - Flag that indicates whether domain restriction is enabled for the connected organization.
- Federation
Settings stringId - Unique 24-hexadecimal digit string that identifies the federated authentication configuration.
- Identity
Provider stringId - Legacy 20-hexadecimal digit string that identifies the SAML access identity provider that this connected org config is associated with. Removing the attribute or providing the value
""
will detach/remove the SAML identity provider. This id can be found in two ways:- Within the Federation Management UI in Atlas in the Identity Providers tab by clicking the info icon in the IdP ID row of a configured SAML identity provider
okta_idp_id
on themongodbatlas.FederatedSettingsIdentityProvider
resource
- Org
Id string - Unique 24-hexadecimal digit string that identifies the organization that contains your projects.
- Post
Auth List<string>Role Grants - List that contains the default roles granted to users who authenticate through the IdP in a connected organization.
- User
Conflicts List<FederatedSettings Org Config User Conflict> - List that contains the users who have an email address that doesn't match any domain on the allowed list. See below
- Data
Access []stringIdentity Provider Ids - The collection of unique ids representing the identity providers that can be used for data access in this organization.
- Domain
Allow []stringLists - List that contains the approved domains from which organization users can log in.
- Domain
Restriction boolEnabled - Flag that indicates whether domain restriction is enabled for the connected organization.
- Federation
Settings stringId - Unique 24-hexadecimal digit string that identifies the federated authentication configuration.
- Identity
Provider stringId - Legacy 20-hexadecimal digit string that identifies the SAML access identity provider that this connected org config is associated with. Removing the attribute or providing the value
""
will detach/remove the SAML identity provider. This id can be found in two ways:- Within the Federation Management UI in Atlas in the Identity Providers tab by clicking the info icon in the IdP ID row of a configured SAML identity provider
okta_idp_id
on themongodbatlas.FederatedSettingsIdentityProvider
resource
- Org
Id string - Unique 24-hexadecimal digit string that identifies the organization that contains your projects.
- Post
Auth []stringRole Grants - List that contains the default roles granted to users who authenticate through the IdP in a connected organization.
- User
Conflicts []FederatedSettings Org Config User Conflict Args - List that contains the users who have an email address that doesn't match any domain on the allowed list. See below
- data
Access List<String>Identity Provider Ids - The collection of unique ids representing the identity providers that can be used for data access in this organization.
- domain
Allow List<String>Lists - List that contains the approved domains from which organization users can log in.
- domain
Restriction BooleanEnabled - Flag that indicates whether domain restriction is enabled for the connected organization.
- federation
Settings StringId - Unique 24-hexadecimal digit string that identifies the federated authentication configuration.
- identity
Provider StringId - Legacy 20-hexadecimal digit string that identifies the SAML access identity provider that this connected org config is associated with. Removing the attribute or providing the value
""
will detach/remove the SAML identity provider. This id can be found in two ways:- Within the Federation Management UI in Atlas in the Identity Providers tab by clicking the info icon in the IdP ID row of a configured SAML identity provider
okta_idp_id
on themongodbatlas.FederatedSettingsIdentityProvider
resource
- org
Id String - Unique 24-hexadecimal digit string that identifies the organization that contains your projects.
- post
Auth List<String>Role Grants - List that contains the default roles granted to users who authenticate through the IdP in a connected organization.
- user
Conflicts List<FederatedSettings Org Config User Conflict> - List that contains the users who have an email address that doesn't match any domain on the allowed list. See below
- data
Access string[]Identity Provider Ids - The collection of unique ids representing the identity providers that can be used for data access in this organization.
- domain
Allow string[]Lists - List that contains the approved domains from which organization users can log in.
- domain
Restriction booleanEnabled - Flag that indicates whether domain restriction is enabled for the connected organization.
- federation
Settings stringId - Unique 24-hexadecimal digit string that identifies the federated authentication configuration.
- identity
Provider stringId - Legacy 20-hexadecimal digit string that identifies the SAML access identity provider that this connected org config is associated with. Removing the attribute or providing the value
""
will detach/remove the SAML identity provider. This id can be found in two ways:- Within the Federation Management UI in Atlas in the Identity Providers tab by clicking the info icon in the IdP ID row of a configured SAML identity provider
okta_idp_id
on themongodbatlas.FederatedSettingsIdentityProvider
resource
- org
Id string - Unique 24-hexadecimal digit string that identifies the organization that contains your projects.
- post
Auth string[]Role Grants - List that contains the default roles granted to users who authenticate through the IdP in a connected organization.
- user
Conflicts FederatedSettings Org Config User Conflict[] - List that contains the users who have an email address that doesn't match any domain on the allowed list. See below
- data_
access_ Sequence[str]identity_ provider_ ids - The collection of unique ids representing the identity providers that can be used for data access in this organization.
- domain_
allow_ Sequence[str]lists - List that contains the approved domains from which organization users can log in.
- domain_
restriction_ boolenabled - Flag that indicates whether domain restriction is enabled for the connected organization.
- federation_
settings_ strid - Unique 24-hexadecimal digit string that identifies the federated authentication configuration.
- identity_
provider_ strid - Legacy 20-hexadecimal digit string that identifies the SAML access identity provider that this connected org config is associated with. Removing the attribute or providing the value
""
will detach/remove the SAML identity provider. This id can be found in two ways:- Within the Federation Management UI in Atlas in the Identity Providers tab by clicking the info icon in the IdP ID row of a configured SAML identity provider
okta_idp_id
on themongodbatlas.FederatedSettingsIdentityProvider
resource
- org_
id str - Unique 24-hexadecimal digit string that identifies the organization that contains your projects.
- post_
auth_ Sequence[str]role_ grants - List that contains the default roles granted to users who authenticate through the IdP in a connected organization.
- user_
conflicts Sequence[FederatedSettings Org Config User Conflict Args] - List that contains the users who have an email address that doesn't match any domain on the allowed list. See below
- data
Access List<String>Identity Provider Ids - The collection of unique ids representing the identity providers that can be used for data access in this organization.
- domain
Allow List<String>Lists - List that contains the approved domains from which organization users can log in.
- domain
Restriction BooleanEnabled - Flag that indicates whether domain restriction is enabled for the connected organization.
- federation
Settings StringId - Unique 24-hexadecimal digit string that identifies the federated authentication configuration.
- identity
Provider StringId - Legacy 20-hexadecimal digit string that identifies the SAML access identity provider that this connected org config is associated with. Removing the attribute or providing the value
""
will detach/remove the SAML identity provider. This id can be found in two ways:- Within the Federation Management UI in Atlas in the Identity Providers tab by clicking the info icon in the IdP ID row of a configured SAML identity provider
okta_idp_id
on themongodbatlas.FederatedSettingsIdentityProvider
resource
- org
Id String - Unique 24-hexadecimal digit string that identifies the organization that contains your projects.
- post
Auth List<String>Role Grants - List that contains the default roles granted to users who authenticate through the IdP in a connected organization.
- user
Conflicts List<Property Map> - List that contains the users who have an email address that doesn't match any domain on the allowed list. See below
Supporting Types
FederatedSettingsOrgConfigUserConflict, FederatedSettingsOrgConfigUserConflictArgs
- Email
Address string - Email address of the the user that conflicts with selected domains.
- Federation
Settings stringId - Unique 24-hexadecimal digit string that identifies the federated authentication configuration.
- First
Name string - First name of the the user that conflicts with selected domains.
- Last
Name string - Last name of the the user that conflicts with selected domains.
- User
Id string - Name of the Atlas user that conflicts with selected domains.
- Email
Address string - Email address of the the user that conflicts with selected domains.
- Federation
Settings stringId - Unique 24-hexadecimal digit string that identifies the federated authentication configuration.
- First
Name string - First name of the the user that conflicts with selected domains.
- Last
Name string - Last name of the the user that conflicts with selected domains.
- User
Id string - Name of the Atlas user that conflicts with selected domains.
- email
Address String - Email address of the the user that conflicts with selected domains.
- federation
Settings StringId - Unique 24-hexadecimal digit string that identifies the federated authentication configuration.
- first
Name String - First name of the the user that conflicts with selected domains.
- last
Name String - Last name of the the user that conflicts with selected domains.
- user
Id String - Name of the Atlas user that conflicts with selected domains.
- email
Address string - Email address of the the user that conflicts with selected domains.
- federation
Settings stringId - Unique 24-hexadecimal digit string that identifies the federated authentication configuration.
- first
Name string - First name of the the user that conflicts with selected domains.
- last
Name string - Last name of the the user that conflicts with selected domains.
- user
Id string - Name of the Atlas user that conflicts with selected domains.
- email_
address str - Email address of the the user that conflicts with selected domains.
- federation_
settings_ strid - Unique 24-hexadecimal digit string that identifies the federated authentication configuration.
- first_
name str - First name of the the user that conflicts with selected domains.
- last_
name str - Last name of the the user that conflicts with selected domains.
- user_
id str - Name of the Atlas user that conflicts with selected domains.
- email
Address String - Email address of the the user that conflicts with selected domains.
- federation
Settings StringId - Unique 24-hexadecimal digit string that identifies the federated authentication configuration.
- first
Name String - First name of the the user that conflicts with selected domains.
- last
Name String - Last name of the the user that conflicts with selected domains.
- user
Id String - Name of the Atlas user that conflicts with selected domains.
Import
FederatedSettingsOrgConfig must be imported using federation_settings_id-org_id, e.g.
$ pulumi import mongodbatlas:index/federatedSettingsOrgConfig:FederatedSettingsOrgConfig org_connection 627a9687f7f7f7f774de306f14-627a9683ea7ff7f74de306f14
For more information see: MongoDB Atlas API Reference.
To learn more about importing existing cloud resources, see Importing resources.
Package Details
- Repository
- MongoDB Atlas pulumi/pulumi-mongodbatlas
- License
- Apache-2.0
- Notes
- This Pulumi package is based on the
mongodbatlas
Terraform Provider.