Tips-Of-Mine/terraform-cloudflare-tunnel-zone-org
2
0
Fork 0
Code Issues 1 Pull Requests Actions Packages Projects Releases Wiki Activity
Files
7849148f3cdab27f03839c0016fe35fd6be5bada
terraform-cloudflare-tunnel…/Integrations-Identity_providers.tf
hcornet 7849148f3c
Some checks failed
Terraform Apply / Terraform Apply (push) Failing after 1m16s
Details
test variable replacement by creation ID
2025-11-24 12:41:56 +01:00

44 lines
1.6 KiB
HCL
Raw Blame History

# =============================================================================
# CLOUDFLARE : Integrations : Identity Providers
# =============================================================================
#
resource "cloudflare_zero_trust_access_identity_provider" "gmail" {
account_id = local.cloudflare_account_id
name = "Gmail"
type = "google"
zone_id = local.cloudflare_zone_id
config = {
client_id = "<google_client_id>"
client_secret = "<google_secret>"
email_claim_name = "email"
}
}
#
resource "cloudflare_zero_trust_access_identity_provider" "authentik_oidc" {
account_id = local.cloudflare_account_id
name = "Authentik OIDC"
type = "oidc"
zone_id = local.cloudflare_zone_id
config = {
auth_url = "https://authentik.${var.cloudflare_authentik_domain}/application/o/authorize/"
certs_url = "https://authentik.${var.cloudflare_authentik_domain}/application/o/cloudflare-access/jwks/"
claims = ["given_name", "preferred_username", "nickname", "groups", "role"]
client_id = local.authentik_oidc_client_id_cloudflare
client_secret = local.authentik_oidc_secret_cloudflare
email_claim_name = "email"
scopes = ["openid", "email", "profile"]
token_url = "https://authentik.${var.cloudflare_authentik_domain}/application/o/token/"
}
}
data "cloudflare_zero_trust_access_identity_provider" "gmail" {
account_id = local.cloudflare_account_id
identity_provider_id = "f174e90a-fafe-4643-bbbc-4a0ed4fc8415"
zone_id = "zone_id"
}
Reference in New Issue View Git Blame Copy Permalink