This commit is contained in:
@@ -50,14 +50,14 @@ resource "cloudflare_zero_trust_access_application" "cloudflare_aws_app_ssh_infr
|
|||||||
include = [
|
include = [
|
||||||
{
|
{
|
||||||
saml = {
|
saml = {
|
||||||
identity_provider_id = var.cloudflare_okta_identity_provider_id
|
identity_provider_id = cloudflare_zero_trust_access_identity_provider.authentik_oidc.id
|
||||||
attribute_name = "groups"
|
attribute_name = "groups"
|
||||||
attribute_value = var.okta_infra_admin_saml_group_name
|
attribute_value = var.okta_infra_admin_saml_group_name
|
||||||
}
|
}
|
||||||
},
|
},
|
||||||
{
|
{
|
||||||
saml = {
|
saml = {
|
||||||
identity_provider_id = var.cloudflare_okta_identity_provider_id
|
identity_provider_id = cloudflare_zero_trust_access_identity_provider.authentik_oidc.id
|
||||||
attribute_name = "groups"
|
attribute_name = "groups"
|
||||||
attribute_value = var.okta_contractors_saml_group_name
|
attribute_value = var.okta_contractors_saml_group_name
|
||||||
}
|
}
|
||||||
|
|||||||
@@ -140,8 +140,8 @@ cloudflare_intranet_app_port = 8181
|
|||||||
cloudflare_domain_controller_rdp_port = 3389
|
cloudflare_domain_controller_rdp_port = 3389
|
||||||
|
|
||||||
# Identity Providers - Sensitive: manually retrieved from Cloudflare dashboard
|
# Identity Providers - Sensitive: manually retrieved from Cloudflare dashboard
|
||||||
#cloudflare_okta_identity_provider_id = "2af2b24b-f850-4e04-95f6-04a651c71f7a"
|
cloudflare_okta_identity_provider_id = "2af2b24b-f850-4e04-95f6-04a651c71f7a"
|
||||||
#cloudflare_otp_identity_provider_id = "0f818053-eafb-458f-90c2-0ff2d4b5d69c"
|
cloudflare_otp_identity_provider_id = "0f818053-eafb-458f-90c2-0ff2d4b5d69c"
|
||||||
#cloudflare_azure_identity_provider_id = "8c593fe8-aee3-4075-33333333"
|
#cloudflare_azure_identity_provider_id = "8c593fe8-aee3-4075-33333333"
|
||||||
#cloudflare_azure_admin_rule_group_id = "5f253130-a400-4215-44444444"
|
#cloudflare_azure_admin_rule_group_id = "5f253130-a400-4215-44444444"
|
||||||
|
|
||||||
|
|||||||
20
variables.tf
20
variables.tf
@@ -172,17 +172,17 @@ variable "dns_proxied" {
|
|||||||
#======================================================
|
#======================================================
|
||||||
# IDENTITY PROVIDERS
|
# IDENTITY PROVIDERS
|
||||||
#======================================================
|
#======================================================
|
||||||
#variable "cloudflare_okta_identity_provider_id" {
|
variable "cloudflare_okta_identity_provider_id" {
|
||||||
# description = "Okta Identity Provider ID in Cloudflare"
|
description = "Okta Identity Provider ID in Cloudflare"
|
||||||
# type = string
|
type = string
|
||||||
# sensitive = true
|
sensitive = true
|
||||||
#}
|
}
|
||||||
|
|
||||||
#variable "cloudflare_otp_identity_provider_id" {
|
variable "cloudflare_otp_identity_provider_id" {
|
||||||
# description = "OneTime PIN identity provider ID in Cloudflare"
|
description = "OneTime PIN identity provider ID in Cloudflare"
|
||||||
# type = string
|
type = string
|
||||||
# sensitive = true
|
sensitive = true
|
||||||
#}
|
}
|
||||||
|
|
||||||
#variable "cloudflare_azure_identity_provider_id" {
|
#variable "cloudflare_azure_identity_provider_id" {
|
||||||
# description = "Azure Entra ID identity provider ID in Cloudflare"
|
# description = "Azure Entra ID identity provider ID in Cloudflare"
|
||||||
|
|||||||
Reference in New Issue
Block a user