| 1234567891011121314151617181920212223242526272829303132333435 |
- #Thanks to https://github.com/onetwopunch/terraform-vault-okta/blob/master/main.tf for the code.
- variable "roles" {
- type = map
- default = {}
- description = <<EOF
- Map of Vault role names to their bound groups and token policies. Structure looks like this:
- ```
- roles = {
- okta_admin = {
- token_policies = ["admin"]
- bound_groups = ["vault_admins"]
- },
- okta_devs = {
- token_policies = ["devs"]
- bound_groups = ["vault_devs"]
- }
- }
- ```
- EOF
- }
- variable "okta_oidc_client_id" {
- type = string
- description = "Okta Vault OIDC app client ID"
- }
- variable "okta_oidc_client_secret" {
- type = string
- description = "Okta Vault OIDC app client secret"
- }
- variable "okta_api_token" {
- type = string
- description = "Okta Vault api secret"
- }
|
