From 50f3eddecfcbcaf292408d9fdf8e933a494ef41f Mon Sep 17 00:00:00 2001
From: hcornet <hcornet@tips-of-mine.fr>
Date: Thu, 20 Nov 2025 12:48:42 +0100
Subject: [PATCH] update : authentik_oidc

---
 Integrations-Identity_providers.tf | 6 +++---
 variables.auto.tfvars              | 2 +-
 variables.tf                       | 2 +-
 3 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/Integrations-Identity_providers.tf b/Integrations-Identity_providers.tf
index c1ab398..6d3340a 100644
--- a/Integrations-Identity_providers.tf
+++ b/Integrations-Identity_providers.tf
@@ -24,13 +24,13 @@ resource "cloudflare_zero_trust_access_identity_provider" "authentik_oidc" {
   zone_id    = local.cloudflare_zone_id
 
   config = {
-    auth_url         = "https://authentik.${local.cloudflare_zone_id}/application/o/authorize/"
-    certs_url        = "https://authentik.${local.cloudflare_zone_id}/application/o/cloudflare-access/jwks/"
+    auth_url         = "https://authentik.${local.cloudflare_email_domain}/application/o/authorize/"
+    certs_url        = "https://authentik.${local.cloudflare_email_domain}/application/o/cloudflare-access/jwks/"
     claims           = ["given_name", "preferred_username", "nickname", "groups", "role"]
     client_id        = local.authentik_oidc_client_id_cloudflare
     client_secret    = local.authentik_oidc_secret_cloudflare
     email_claim_name = "email"
     scopes           = ["openid", "email", "profile"]
-    token_url        = "https://authentik.${local.cloudflare_zone_id}/application/o/token/"
+    token_url        = "https://authentik.${local.cloudflare_email_domain}/application/o/token/"
   }
 }
diff --git a/variables.auto.tfvars b/variables.auto.tfvars
index 0693e3e..1060512 100644
--- a/variables.auto.tfvars
+++ b/variables.auto.tfvars
@@ -129,7 +129,7 @@ cloudflare_macos_posture_id   = "6d64ff80-1308-4462-********"
 cloudflare_ios_posture_id     = "56454654-1245-8564-********"
 cloudflare_windows_posture_id = "67b05735-3b9b-4bcc-********"
 cloudflare_linux_posture_id   = "ed5639c7-3305-4a91-********"
-cloudflare_device_os                   = "mac"                              # Options: "linux", "windows", "mac"
+cloudflare_device_os          = "mac"                              # Options: "linux", "windows", "mac"
 
 # WARP CGNAT Routes
 cloudflare_custom_cgnat_routes = [
diff --git a/variables.tf b/variables.tf
index 6420e98..91324dc 100644
--- a/variables.tf
+++ b/variables.tf
@@ -539,4 +539,4 @@ variable "cloudflare_intranet_web_app_name" {
 variable "cloudflare_browser_rdp_app_name" {
   description = "Name of the RDP windows browser rendered App in Cloudflare"
   type        = string
-}
\ No newline at end of file
+}