From 7841ed6aaba6c0817d8533b969905094f7e15952 Mon Sep 17 00:00:00 2001
From: Hubert Cornet <hcornet@noreply@tips-of-mine.fr>
Date: Sun, 16 Nov 2025 12:37:38 +0100
Subject: [PATCH] Update access_service_auth.tf

---
 access_service_auth.tf | 8 ++++++--
 1 file changed, 6 insertions(+), 2 deletions(-)

diff --git a/access_service_auth.tf b/access_service_auth.tf
index 77d107a..a00ad97 100644
--- a/access_service_auth.tf
+++ b/access_service_auth.tf
@@ -7,7 +7,9 @@ resource "cloudflare_zero_trust_access_identity_provider" "gmail" {
   account_id = local.cloudflare_account_id
   name       = "Gmail"
   type       = "google"
-  config {
+  zone_id    = local.cloudflare_zone_id
+
+  config = {
     client_id        = var.google_client_id
     client_secret    = var.google_secret
     email_claim_name = "email"
@@ -19,7 +21,9 @@ resource "cloudflare_zero_trust_access_identity_provider" "authentik_oidc" {
   account_id = local.cloudflare_account_id
   name       = "Authentik OIDC"
   type       = "oidc"
-  config {
+  zone_id    = local.cloudflare_zone_id
+
+  config = {
     auth_url         = "https://authentik.${local.cloudflare_zone_id}/application/o/authorize/"
     certs_url        = "https://authentik.${local.cloudflare_zone_id}/application/o/cloudflare-access/jwks/"
     claims           = ["given_name", "preferred_username", "nickname", "groups", "role"]