idpOidc.go.md

idpOidc Submodule

Constructs

IdpOidc

Represents a {@link https://registry.terraform.io/providers/okta/okta/4.8.1/docs/resources/idp_oidc okta_idp_oidc}.

Initializers

import "github.com/cdktf/cdktf-provider-okta-go/okta/v13/idpoidc"

idpoidc.NewIdpOidc(scope Construct, id *string, config IdpOidcConfig) IdpOidc

Name	Type	Description
scope	github.com/aws/constructs-go/constructs/v10.Construct	The scope in which to define this construct.
id	*string	The scoped construct ID.
config	IdpOidcConfig	No description.

---

scope^Required

• Type: github.com/aws/constructs-go/constructs/v10.Construct

The scope in which to define this construct.

---

id^Required

• Type: *string

The scoped construct ID.

Must be unique amongst siblings in the same scope

---

config^Required

• Type: IdpOidcConfig

---

Methods

Name	Description
ToString	Returns a string representation of this construct.
AddOverride	No description.
OverrideLogicalId	Overrides the auto-generated logical ID with a specific ID.
ResetOverrideLogicalId	Resets a previously passed logical Id to use the auto-generated logical id again.
ToHclTerraform	No description.
ToMetadata	No description.
ToTerraform	Adds this resource to the terraform JSON output.
AddMoveTarget	Adds a user defined moveTarget string to this resource to be later used in .moveTo(moveTarget) to resolve the location of the move.
GetAnyMapAttribute	No description.
GetBooleanAttribute	No description.
GetBooleanMapAttribute	No description.
GetListAttribute	No description.
GetNumberAttribute	No description.
GetNumberListAttribute	No description.
GetNumberMapAttribute	No description.
GetStringAttribute	No description.
GetStringMapAttribute	No description.
HasResourceMove	No description.
ImportFrom	No description.
InterpolationForAttribute	No description.
MoveFromId	Move the resource corresponding to "id" to this resource.
MoveTo	Moves this resource to the target resource given by moveTarget.
MoveToId	Moves this resource to the resource corresponding to "id".
ResetAccountLinkAction	No description.
ResetAccountLinkGroupInclude	No description.
ResetDeprovisionedAction	No description.
ResetGroupsAction	No description.
ResetGroupsAssignment	No description.
ResetGroupsAttribute	No description.
ResetGroupsFilter	No description.
ResetId	No description.
ResetIssuerMode	No description.
ResetMaxClockSkew	No description.
ResetProfileMaster	No description.
ResetProtocolType	No description.
ResetProvisioningAction	No description.
ResetRequestSignatureAlgorithm	No description.
ResetRequestSignatureScope	No description.
ResetStatus	No description.
ResetSubjectMatchAttribute	No description.
ResetSubjectMatchType	No description.
ResetSuspendedAction	No description.
ResetUserInfoBinding	No description.
ResetUserInfoUrl	No description.
ResetUsernameTemplate	No description.

---

ToString

func ToString() *string

Returns a string representation of this construct.

AddOverride

func AddOverride(path *string, value interface{})

path^Required

• Type: *string

---

value^Required

• Type: interface{}

---

OverrideLogicalId

func OverrideLogicalId(newLogicalId *string)

Overrides the auto-generated logical ID with a specific ID.

newLogicalId^Required

• Type: *string

The new logical ID to use for this stack element.

---

ResetOverrideLogicalId

func ResetOverrideLogicalId()

Resets a previously passed logical Id to use the auto-generated logical id again.

ToHclTerraform

func ToHclTerraform() interface{}

ToMetadata

func ToMetadata() interface{}

ToTerraform

func ToTerraform() interface{}

Adds this resource to the terraform JSON output.

AddMoveTarget

func AddMoveTarget(moveTarget *string)

Adds a user defined moveTarget string to this resource to be later used in .moveTo(moveTarget) to resolve the location of the move.

moveTarget^Required

• Type: *string

The string move target that will correspond to this resource.

---

GetAnyMapAttribute

func GetAnyMapAttribute(terraformAttribute *string) *map[string]interface{}

terraformAttribute^Required

• Type: *string

---

GetBooleanAttribute

func GetBooleanAttribute(terraformAttribute *string) IResolvable

terraformAttribute^Required

• Type: *string

---

GetBooleanMapAttribute

func GetBooleanMapAttribute(terraformAttribute *string) *map[string]*bool

terraformAttribute^Required

• Type: *string

---

GetListAttribute

func GetListAttribute(terraformAttribute *string) *[]*string

terraformAttribute^Required

• Type: *string

---

GetNumberAttribute

func GetNumberAttribute(terraformAttribute *string) *f64

terraformAttribute^Required

• Type: *string

---

GetNumberListAttribute

func GetNumberListAttribute(terraformAttribute *string) *[]*f64

terraformAttribute^Required

• Type: *string

---

GetNumberMapAttribute

func GetNumberMapAttribute(terraformAttribute *string) *map[string]*f64

terraformAttribute^Required

• Type: *string

---

GetStringAttribute

func GetStringAttribute(terraformAttribute *string) *string

terraformAttribute^Required

• Type: *string

---

GetStringMapAttribute

func GetStringMapAttribute(terraformAttribute *string) *map[string]*string

terraformAttribute^Required

• Type: *string

---

HasResourceMove

func HasResourceMove() interface{}

ImportFrom

func ImportFrom(id *string, provider TerraformProvider)

id^Required

• Type: *string

---

provider^Optional

• Type: github.com/hashicorp/terraform-cdk-go/cdktf.TerraformProvider

---

InterpolationForAttribute

func InterpolationForAttribute(terraformAttribute *string) IResolvable

terraformAttribute^Required

• Type: *string

---

MoveFromId

func MoveFromId(id *string)

Move the resource corresponding to "id" to this resource.

Note that the resource being moved from must be marked as moved using it's instance function.

id^Required

• Type: *string

Full id of resource being moved from, e.g. "aws_s3_bucket.example".

---

MoveTo

func MoveTo(moveTarget *string, index interface{})

Moves this resource to the target resource given by moveTarget.

moveTarget^Required

• Type: *string

The previously set user defined string set by .addMoveTarget() corresponding to the resource to move to.

---

index^Optional

• Type: interface{}

Optional The index corresponding to the key the resource is to appear in the foreach of a resource to move to.

---

MoveToId

func MoveToId(id *string)

Moves this resource to the resource corresponding to "id".

id^Required

• Type: *string

Full id of resource to move to, e.g. "aws_s3_bucket.example".

---

ResetAccountLinkAction

func ResetAccountLinkAction()

ResetAccountLinkGroupInclude

func ResetAccountLinkGroupInclude()

ResetDeprovisionedAction

func ResetDeprovisionedAction()

ResetGroupsAction

func ResetGroupsAction()

ResetGroupsAssignment

func ResetGroupsAssignment()

ResetGroupsAttribute

func ResetGroupsAttribute()

ResetGroupsFilter

func ResetGroupsFilter()

ResetId

func ResetId()

ResetIssuerMode

func ResetIssuerMode()

ResetMaxClockSkew

func ResetMaxClockSkew()

ResetProfileMaster

func ResetProfileMaster()

ResetProtocolType

func ResetProtocolType()

ResetProvisioningAction

func ResetProvisioningAction()

ResetRequestSignatureAlgorithm

func ResetRequestSignatureAlgorithm()

ResetRequestSignatureScope

func ResetRequestSignatureScope()

ResetStatus

func ResetStatus()

ResetSubjectMatchAttribute

func ResetSubjectMatchAttribute()

ResetSubjectMatchType

func ResetSubjectMatchType()

ResetSuspendedAction

func ResetSuspendedAction()

ResetUserInfoBinding

func ResetUserInfoBinding()

ResetUserInfoUrl

func ResetUserInfoUrl()

ResetUsernameTemplate

func ResetUsernameTemplate()

Static Functions

Name	Description
IsConstruct	Checks if x is a construct.
IsTerraformElement	No description.
IsTerraformResource	No description.
GenerateConfigForImport	Generates CDKTF code for importing a IdpOidc resource upon running "cdktf plan ".

---

IsConstruct

import "github.com/cdktf/cdktf-provider-okta-go/okta/v13/idpoidc"

idpoidc.IdpOidc_IsConstruct(x interface{}) *bool

Checks if x is a construct.

Use this method instead of instanceof to properly detect Construct instances, even when the construct library is symlinked.

Explanation: in JavaScript, multiple copies of the constructs library on disk are seen as independent, completely different libraries. As a consequence, the class Construct in each copy of the constructs library is seen as a different class, and an instance of one class will not test as instanceof the other class. npm install will not create installations like this, but users may manually symlink construct libraries together or use a monorepo tool: in those cases, multiple copies of the constructs library can be accidentally installed, and instanceof will behave unpredictably. It is safest to avoid using instanceof, and using this type-testing method instead.

x^Required

• Type: interface{}

Any object.

---

IsTerraformElement

import "github.com/cdktf/cdktf-provider-okta-go/okta/v13/idpoidc"

idpoidc.IdpOidc_IsTerraformElement(x interface{}) *bool

x^Required

• Type: interface{}

---

IsTerraformResource

import "github.com/cdktf/cdktf-provider-okta-go/okta/v13/idpoidc"

idpoidc.IdpOidc_IsTerraformResource(x interface{}) *bool

x^Required

• Type: interface{}

---

GenerateConfigForImport

import "github.com/cdktf/cdktf-provider-okta-go/okta/v13/idpoidc"

idpoidc.IdpOidc_GenerateConfigForImport(scope Construct, importToId *string, importFromId *string, provider TerraformProvider) ImportableResource

Generates CDKTF code for importing a IdpOidc resource upon running "cdktf plan ".

scope^Required

• Type: github.com/aws/constructs-go/constructs/v10.Construct

The scope in which to define this construct.

---

importToId^Required

• Type: *string

The construct id used in the generated config for the IdpOidc to import.

---

importFromId^Required

• Type: *string

The id of the existing IdpOidc that should be imported.

Refer to the {@link https://registry.terraform.io/providers/okta/okta/4.8.1/docs/resources/idp_oidc#import import section} in the documentation of this resource for the id to use

---

provider^Optional

• Type: github.com/hashicorp/terraform-cdk-go/cdktf.TerraformProvider

? Optional instance of the provider where the IdpOidc to import is found.

---

Properties

Name	Type	Description
Node	github.com/aws/constructs-go/constructs/v10.Node	The tree node.
CdktfStack	github.com/hashicorp/terraform-cdk-go/cdktf.TerraformStack	No description.
Fqn	*string	No description.
FriendlyUniqueId	*string	No description.
TerraformMetaArguments	*map[string]interface{}	No description.
TerraformResourceType	*string	No description.
TerraformGeneratorMetadata	github.com/hashicorp/terraform-cdk-go/cdktf.TerraformProviderGeneratorMetadata	No description.
Connection	interface{}	No description.
Count	interface{}	No description.
DependsOn	*[]*string	No description.
ForEach	github.com/hashicorp/terraform-cdk-go/cdktf.ITerraformIterator	No description.
Lifecycle	github.com/hashicorp/terraform-cdk-go/cdktf.TerraformResourceLifecycle	No description.
Provider	github.com/hashicorp/terraform-cdk-go/cdktf.TerraformProvider	No description.
Provisioners	*[]interface{}	No description.
Type	*string	No description.
UserTypeId	*string	No description.
AccountLinkActionInput	*string	No description.
AccountLinkGroupIncludeInput	*[]*string	No description.
AuthorizationBindingInput	*string	No description.
AuthorizationUrlInput	*string	No description.
ClientIdInput	*string	No description.
ClientSecretInput	*string	No description.
DeprovisionedActionInput	*string	No description.
GroupsActionInput	*string	No description.
GroupsAssignmentInput	*[]*string	No description.
GroupsAttributeInput	*string	No description.
GroupsFilterInput	*[]*string	No description.
IdInput	*string	No description.
IssuerModeInput	*string	No description.
IssuerUrlInput	*string	No description.
JwksBindingInput	*string	No description.
JwksUrlInput	*string	No description.
MaxClockSkewInput	*f64	No description.
NameInput	*string	No description.
ProfileMasterInput	interface{}	No description.
ProtocolTypeInput	*string	No description.
ProvisioningActionInput	*string	No description.
RequestSignatureAlgorithmInput	*string	No description.
RequestSignatureScopeInput	*string	No description.
ScopesInput	*[]*string	No description.
StatusInput	*string	No description.
SubjectMatchAttributeInput	*string	No description.
SubjectMatchTypeInput	*string	No description.
SuspendedActionInput	*string	No description.
TokenBindingInput	*string	No description.
TokenUrlInput	*string	No description.
UserInfoBindingInput	*string	No description.
UserInfoUrlInput	*string	No description.
UsernameTemplateInput	*string	No description.
AccountLinkAction	*string	No description.
AccountLinkGroupInclude	*[]*string	No description.
AuthorizationBinding	*string	No description.
AuthorizationUrl	*string	No description.
ClientId	*string	No description.
ClientSecret	*string	No description.
DeprovisionedAction	*string	No description.
GroupsAction	*string	No description.
GroupsAssignment	*[]*string	No description.
GroupsAttribute	*string	No description.
GroupsFilter	*[]*string	No description.
Id	*string	No description.
IssuerMode	*string	No description.
IssuerUrl	*string	No description.
JwksBinding	*string	No description.
JwksUrl	*string	No description.
MaxClockSkew	*f64	No description.
Name	*string	No description.
ProfileMaster	interface{}	No description.
ProtocolType	*string	No description.
ProvisioningAction	*string	No description.
RequestSignatureAlgorithm	*string	No description.
RequestSignatureScope	*string	No description.
Scopes	*[]*string	No description.
Status	*string	No description.
SubjectMatchAttribute	*string	No description.
SubjectMatchType	*string	No description.
SuspendedAction	*string	No description.
TokenBinding	*string	No description.
TokenUrl	*string	No description.
UserInfoBinding	*string	No description.
UserInfoUrl	*string	No description.
UsernameTemplate	*string	No description.

---

Node^Required

func Node() Node

• Type: github.com/aws/constructs-go/constructs/v10.Node

The tree node.

---

CdktfStack^Required

func CdktfStack() TerraformStack

• Type: github.com/hashicorp/terraform-cdk-go/cdktf.TerraformStack

---

Fqn^Required

func Fqn() *string

• Type: *string

---

FriendlyUniqueId^Required

func FriendlyUniqueId() *string

• Type: *string

---

TerraformMetaArguments^Required

func TerraformMetaArguments() *map[string]interface{}

• Type: *map[string]interface{}

---

TerraformResourceType^Required

func TerraformResourceType() *string

• Type: *string

---

TerraformGeneratorMetadata^Optional

func TerraformGeneratorMetadata() TerraformProviderGeneratorMetadata

• Type: github.com/hashicorp/terraform-cdk-go/cdktf.TerraformProviderGeneratorMetadata

---

Connection^Optional

func Connection() interface{}

• Type: interface{}

---

Count^Optional

func Count() interface{}

• Type: interface{}

---

DependsOn^Optional

func DependsOn() *[]*string

• Type: *[]*string

---

ForEach^Optional

func ForEach() ITerraformIterator

• Type: github.com/hashicorp/terraform-cdk-go/cdktf.ITerraformIterator

---

Lifecycle^Optional

func Lifecycle() TerraformResourceLifecycle

• Type: github.com/hashicorp/terraform-cdk-go/cdktf.TerraformResourceLifecycle

---

Provider^Optional

func Provider() TerraformProvider

• Type: github.com/hashicorp/terraform-cdk-go/cdktf.TerraformProvider

---

Provisioners^Optional

func Provisioners() *[]interface{}

• Type: *[]interface{}

---

Type^Required

func Type() *string

• Type: *string

---

UserTypeId^Required

func UserTypeId() *string

• Type: *string

---

AccountLinkActionInput^Optional

func AccountLinkActionInput() *string

• Type: *string

---

AccountLinkGroupIncludeInput^Optional

func AccountLinkGroupIncludeInput() *[]*string

• Type: *[]*string

---

AuthorizationBindingInput^Optional

func AuthorizationBindingInput() *string

• Type: *string

---

AuthorizationUrlInput^Optional

func AuthorizationUrlInput() *string

• Type: *string

---

ClientIdInput^Optional

func ClientIdInput() *string

• Type: *string

---

ClientSecretInput^Optional

func ClientSecretInput() *string

• Type: *string

---

DeprovisionedActionInput^Optional

func DeprovisionedActionInput() *string

• Type: *string

---

GroupsActionInput^Optional

func GroupsActionInput() *string

• Type: *string

---

GroupsAssignmentInput^Optional

func GroupsAssignmentInput() *[]*string

• Type: *[]*string

---

GroupsAttributeInput^Optional

func GroupsAttributeInput() *string

• Type: *string

---

GroupsFilterInput^Optional

func GroupsFilterInput() *[]*string

• Type: *[]*string

---

IdInput^Optional

func IdInput() *string

• Type: *string

---

IssuerModeInput^Optional

func IssuerModeInput() *string

• Type: *string

---

IssuerUrlInput^Optional

func IssuerUrlInput() *string

• Type: *string

---

JwksBindingInput^Optional

func JwksBindingInput() *string

• Type: *string

---

JwksUrlInput^Optional

func JwksUrlInput() *string

• Type: *string

---

MaxClockSkewInput^Optional

func MaxClockSkewInput() *f64

• Type: *f64

---

NameInput^Optional

func NameInput() *string

• Type: *string

---

ProfileMasterInput^Optional

func ProfileMasterInput() interface{}

• Type: interface{}

---

ProtocolTypeInput^Optional

func ProtocolTypeInput() *string

• Type: *string

---

ProvisioningActionInput^Optional

func ProvisioningActionInput() *string

• Type: *string

---

RequestSignatureAlgorithmInput^Optional

func RequestSignatureAlgorithmInput() *string

• Type: *string

---

RequestSignatureScopeInput^Optional

func RequestSignatureScopeInput() *string

• Type: *string

---

ScopesInput^Optional

func ScopesInput() *[]*string

• Type: *[]*string

---

StatusInput^Optional

func StatusInput() *string

• Type: *string

---

SubjectMatchAttributeInput^Optional

func SubjectMatchAttributeInput() *string

• Type: *string

---

SubjectMatchTypeInput^Optional

func SubjectMatchTypeInput() *string

• Type: *string

---

SuspendedActionInput^Optional

func SuspendedActionInput() *string

• Type: *string

---

TokenBindingInput^Optional

func TokenBindingInput() *string

• Type: *string

---

TokenUrlInput^Optional

func TokenUrlInput() *string

• Type: *string

---

UserInfoBindingInput^Optional

func UserInfoBindingInput() *string

• Type: *string

---

UserInfoUrlInput^Optional

func UserInfoUrlInput() *string

• Type: *string

---

UsernameTemplateInput^Optional

func UsernameTemplateInput() *string

• Type: *string

---

AccountLinkAction^Required

func AccountLinkAction() *string

• Type: *string

---

AccountLinkGroupInclude^Required

func AccountLinkGroupInclude() *[]*string

• Type: *[]*string

---

AuthorizationBinding^Required

func AuthorizationBinding() *string

• Type: *string

---

AuthorizationUrl^Required

func AuthorizationUrl() *string

• Type: *string

---

ClientId^Required

func ClientId() *string

• Type: *string

---

ClientSecret^Required

func ClientSecret() *string

• Type: *string

---

DeprovisionedAction^Required

func DeprovisionedAction() *string

• Type: *string

---

GroupsAction^Required

func GroupsAction() *string

• Type: *string

---

GroupsAssignment^Required

func GroupsAssignment() *[]*string

• Type: *[]*string

---

GroupsAttribute^Required

func GroupsAttribute() *string

• Type: *string

---

GroupsFilter^Required

func GroupsFilter() *[]*string

• Type: *[]*string

---

Id^Required

func Id() *string

• Type: *string

---

IssuerMode^Required

func IssuerMode() *string

• Type: *string

---

IssuerUrl^Required

func IssuerUrl() *string

• Type: *string

---

JwksBinding^Required

func JwksBinding() *string

• Type: *string

---

JwksUrl^Required

func JwksUrl() *string

• Type: *string

---

MaxClockSkew^Required

func MaxClockSkew() *f64

• Type: *f64

---

Name^Required

func Name() *string

• Type: *string

---

ProfileMaster^Required

func ProfileMaster() interface{}

• Type: interface{}

---

ProtocolType^Required

func ProtocolType() *string

• Type: *string

---

ProvisioningAction^Required

func ProvisioningAction() *string

• Type: *string

---

RequestSignatureAlgorithm^Required

func RequestSignatureAlgorithm() *string

• Type: *string

---

RequestSignatureScope^Required

func RequestSignatureScope() *string

• Type: *string

---

Scopes^Required

func Scopes() *[]*string

• Type: *[]*string

---

Status^Required

func Status() *string

• Type: *string

---

SubjectMatchAttribute^Required

func SubjectMatchAttribute() *string

• Type: *string

---

SubjectMatchType^Required

func SubjectMatchType() *string

• Type: *string

---

SuspendedAction^Required

func SuspendedAction() *string

• Type: *string

---

TokenBinding^Required

func TokenBinding() *string

• Type: *string

---

TokenUrl^Required

func TokenUrl() *string

• Type: *string

---

UserInfoBinding^Required

func UserInfoBinding() *string

• Type: *string

---

UserInfoUrl^Required

func UserInfoUrl() *string

• Type: *string

---

UsernameTemplate^Required

func UsernameTemplate() *string

• Type: *string

---

Constants

Name	Type	Description
TfResourceType	*string	No description.

---

TfResourceType^Required

func TfResourceType() *string

• Type: *string

---

Structs

IdpOidcConfig

Initializer

import "github.com/cdktf/cdktf-provider-okta-go/okta/v13/idpoidc"

&idpoidc.IdpOidcConfig {
	Connection: interface{},
	Count: interface{},
	DependsOn: *[]github.com/hashicorp/terraform-cdk-go/cdktf.ITerraformDependable,
	ForEach: github.com/hashicorp/terraform-cdk-go/cdktf.ITerraformIterator,
	Lifecycle: github.com/hashicorp/terraform-cdk-go/cdktf.TerraformResourceLifecycle,
	Provider: github.com/hashicorp/terraform-cdk-go/cdktf.TerraformProvider,
	Provisioners: *[]interface{},
	AuthorizationBinding: *string,
	AuthorizationUrl: *string,
	ClientId: *string,
	ClientSecret: *string,
	IssuerUrl: *string,
	JwksBinding: *string,
	JwksUrl: *string,
	Name: *string,
	Scopes: *[]*string,
	TokenBinding: *string,
	TokenUrl: *string,
	AccountLinkAction: *string,
	AccountLinkGroupInclude: *[]*string,
	DeprovisionedAction: *string,
	GroupsAction: *string,
	GroupsAssignment: *[]*string,
	GroupsAttribute: *string,
	GroupsFilter: *[]*string,
	Id: *string,
	IssuerMode: *string,
	MaxClockSkew: *f64,
	ProfileMaster: interface{},
	ProtocolType: *string,
	ProvisioningAction: *string,
	RequestSignatureAlgorithm: *string,
	RequestSignatureScope: *string,
	Status: *string,
	SubjectMatchAttribute: *string,
	SubjectMatchType: *string,
	SuspendedAction: *string,
	UserInfoBinding: *string,
	UserInfoUrl: *string,
	UsernameTemplate: *string,
}

Properties

Name	Type	Description
Connection	interface{}	No description.
Count	interface{}	No description.
DependsOn	*[]github.com/hashicorp/terraform-cdk-go/cdktf.ITerraformDependable	No description.
ForEach	github.com/hashicorp/terraform-cdk-go/cdktf.ITerraformIterator	No description.
Lifecycle	github.com/hashicorp/terraform-cdk-go/cdktf.TerraformResourceLifecycle	No description.
Provider	github.com/hashicorp/terraform-cdk-go/cdktf.TerraformProvider	No description.
Provisioners	*[]interface{}	No description.
AuthorizationBinding	*string	The method of making an authorization request. It can be set to HTTP-POST or HTTP-REDIRECT.
AuthorizationUrl	*string	IdP Authorization Server (AS) endpoint to request consent from the user and obtain an authorization code grant.
ClientId	*string	Unique identifier issued by AS for the Okta IdP instance.
ClientSecret	*string	Client secret issued by AS for the Okta IdP instance.
IssuerUrl	*string	URI that identifies the issuer.
JwksBinding	*string	The method of making a request for the OIDC JWKS. It can be set to HTTP-POST or HTTP-REDIRECT.
JwksUrl	*string	Endpoint where the keys signer publishes its keys in a JWK Set.
Name	*string	Name of the IdP.
Scopes	*[]*string	The scopes of the IdP.
TokenBinding	*string	The method of making a token request. It can be set to HTTP-POST or HTTP-REDIRECT.
TokenUrl	*string	IdP Authorization Server (AS) endpoint to exchange the authorization code grant for an access token.
AccountLinkAction	*string	Specifies the account linking action for an IdP user. Default: AUTO.
AccountLinkGroupInclude	*[]*string	Group memberships to determine link candidates.
DeprovisionedAction	*string	Action for a previously deprovisioned IdP user during authentication. Can be NONE or REACTIVATE. Default: NONE.
GroupsAction	*string	Provisioning action for IdP user's group memberships. It can be NONE, SYNC, APPEND, or ASSIGN. Default: NONE.
GroupsAssignment	*[]*string	List of Okta Group IDs to add an IdP user as a member with the ASSIGN groups_action.
GroupsAttribute	*string	IdP user profile attribute name (case-insensitive) for an array value that contains group memberships.
GroupsFilter	*[]*string	Whitelist of Okta Group identifiers that are allowed for the APPEND or SYNC groups_action.
Id	*string	Docs at Terraform Registry: {@link https://registry.terraform.io/providers/okta/okta/4.8.1/docs/resources/idp_oidc#id IdpOidc#id}.
IssuerMode	*string	Indicates whether Okta uses the original Okta org domain URL, a custom domain URL, or dynamic.
MaxClockSkew	*f64	Maximum allowable clock-skew when processing messages from the IdP.
ProfileMaster	interface{}	Determines if the IdP should act as a source of truth for user profile attributes.
ProtocolType	*string	The type of protocol to use. It can be OIDC or OAUTH2. Default: OIDC.
ProvisioningAction	*string	Provisioning action for an IdP user during authentication. Default: AUTO.
RequestSignatureAlgorithm	*string	The HMAC Signature Algorithm used when signing an authorization request.
RequestSignatureScope	*string	Specifies whether to digitally sign an AuthnRequest messages to the IdP.
Status	*string	Default to ACTIVE.
SubjectMatchAttribute	*string	Okta user profile attribute for matching transformed IdP username. Only for matchType CUSTOM_ATTRIBUTE.
SubjectMatchType	*string	Determines the Okta user profile attribute match conditions for account linking and authentication of the transformed IdP username.
SuspendedAction	*string	Action for a previously suspended IdP user during authentication. Can be NONE or REACTIVATE. Default: NONE.
UserInfoBinding	*string	Docs at Terraform Registry: {@link https://registry.terraform.io/providers/okta/okta/4.8.1/docs/resources/idp_oidc#user_info_binding IdpOidc#user_info_binding}.
UserInfoUrl	*string	Protected resource endpoint that returns claims about the authenticated user.
UsernameTemplate	*string	Okta EL Expression to generate or transform a unique username for the IdP user. Default: idpuser.email.

---

Connection^Optional

Connection interface{}

• Type: interface{}

---

Count^Optional

Count interface{}

• Type: interface{}

---

DependsOn^Optional

DependsOn *[]ITerraformDependable

• Type: *[]github.com/hashicorp/terraform-cdk-go/cdktf.ITerraformDependable

---

ForEach^Optional

ForEach ITerraformIterator

• Type: github.com/hashicorp/terraform-cdk-go/cdktf.ITerraformIterator

---

Lifecycle^Optional

Lifecycle TerraformResourceLifecycle

• Type: github.com/hashicorp/terraform-cdk-go/cdktf.TerraformResourceLifecycle

---

Provider^Optional

Provider TerraformProvider

• Type: github.com/hashicorp/terraform-cdk-go/cdktf.TerraformProvider

---

Provisioners^Optional

Provisioners *[]interface{}

• Type: *[]interface{}

---

AuthorizationBinding^Required

AuthorizationBinding *string

• Type: *string

The method of making an authorization request. It can be set to HTTP-POST or HTTP-REDIRECT.

Docs at Terraform Registry: {@link https://registry.terraform.io/providers/okta/okta/4.8.1/docs/resources/idp_oidc#authorization_binding IdpOidc#authorization_binding}

---

AuthorizationUrl^Required

AuthorizationUrl *string

• Type: *string

IdP Authorization Server (AS) endpoint to request consent from the user and obtain an authorization code grant.

Docs at Terraform Registry: {@link https://registry.terraform.io/providers/okta/okta/4.8.1/docs/resources/idp_oidc#authorization_url IdpOidc#authorization_url}

---

ClientId^Required

ClientId *string

• Type: *string

Unique identifier issued by AS for the Okta IdP instance.

Docs at Terraform Registry: {@link https://registry.terraform.io/providers/okta/okta/4.8.1/docs/resources/idp_oidc#client_id IdpOidc#client_id}

---

ClientSecret^Required

ClientSecret *string

• Type: *string

Client secret issued by AS for the Okta IdP instance.

Docs at Terraform Registry: {@link https://registry.terraform.io/providers/okta/okta/4.8.1/docs/resources/idp_oidc#client_secret IdpOidc#client_secret}

---

IssuerUrl^Required

IssuerUrl *string

• Type: *string

URI that identifies the issuer.

Docs at Terraform Registry: {@link https://registry.terraform.io/providers/okta/okta/4.8.1/docs/resources/idp_oidc#issuer_url IdpOidc#issuer_url}

---

JwksBinding^Required

JwksBinding *string

• Type: *string

The method of making a request for the OIDC JWKS. It can be set to HTTP-POST or HTTP-REDIRECT.

Docs at Terraform Registry: {@link https://registry.terraform.io/providers/okta/okta/4.8.1/docs/resources/idp_oidc#jwks_binding IdpOidc#jwks_binding}

---

JwksUrl^Required

JwksUrl *string

• Type: *string

Endpoint where the keys signer publishes its keys in a JWK Set.

Docs at Terraform Registry: {@link https://registry.terraform.io/providers/okta/okta/4.8.1/docs/resources/idp_oidc#jwks_url IdpOidc#jwks_url}

---

Name^Required

Name *string

• Type: *string

Name of the IdP.

Docs at Terraform Registry: {@link https://registry.terraform.io/providers/okta/okta/4.8.1/docs/resources/idp_oidc#name IdpOidc#name}

---

Scopes^Required

Scopes *[]*string

• Type: *[]*string

The scopes of the IdP.

Docs at Terraform Registry: {@link https://registry.terraform.io/providers/okta/okta/4.8.1/docs/resources/idp_oidc#scopes IdpOidc#scopes}

---

TokenBinding^Required

TokenBinding *string

• Type: *string

The method of making a token request. It can be set to HTTP-POST or HTTP-REDIRECT.

Docs at Terraform Registry: {@link https://registry.terraform.io/providers/okta/okta/4.8.1/docs/resources/idp_oidc#token_binding IdpOidc#token_binding}

---

TokenUrl^Required

TokenUrl *string

• Type: *string

IdP Authorization Server (AS) endpoint to exchange the authorization code grant for an access token.

Docs at Terraform Registry: {@link https://registry.terraform.io/providers/okta/okta/4.8.1/docs/resources/idp_oidc#token_url IdpOidc#token_url}

---

AccountLinkAction^Optional

AccountLinkAction *string

• Type: *string

Specifies the account linking action for an IdP user. Default: AUTO.

Docs at Terraform Registry: {@link https://registry.terraform.io/providers/okta/okta/4.8.1/docs/resources/idp_oidc#account_link_action IdpOidc#account_link_action}

---

AccountLinkGroupInclude^Optional

AccountLinkGroupInclude *[]*string

• Type: *[]*string

Group memberships to determine link candidates.

Docs at Terraform Registry: {@link https://registry.terraform.io/providers/okta/okta/4.8.1/docs/resources/idp_oidc#account_link_group_include IdpOidc#account_link_group_include}

---

DeprovisionedAction^Optional

DeprovisionedAction *string

• Type: *string

Action for a previously deprovisioned IdP user during authentication. Can be NONE or REACTIVATE. Default: NONE.

Docs at Terraform Registry: {@link https://registry.terraform.io/providers/okta/okta/4.8.1/docs/resources/idp_oidc#deprovisioned_action IdpOidc#deprovisioned_action}

---

GroupsAction^Optional

GroupsAction *string

• Type: *string

Provisioning action for IdP user's group memberships. It can be NONE, SYNC, APPEND, or ASSIGN. Default: NONE.

Docs at Terraform Registry: {@link https://registry.terraform.io/providers/okta/okta/4.8.1/docs/resources/idp_oidc#groups_action IdpOidc#groups_action}

---

GroupsAssignment^Optional

GroupsAssignment *[]*string

• Type: *[]*string

List of Okta Group IDs to add an IdP user as a member with the ASSIGN groups_action.

Docs at Terraform Registry: {@link https://registry.terraform.io/providers/okta/okta/4.8.1/docs/resources/idp_oidc#groups_assignment IdpOidc#groups_assignment}

---

GroupsAttribute^Optional

GroupsAttribute *string

• Type: *string

IdP user profile attribute name (case-insensitive) for an array value that contains group memberships.

Docs at Terraform Registry: {@link https://registry.terraform.io/providers/okta/okta/4.8.1/docs/resources/idp_oidc#groups_attribute IdpOidc#groups_attribute}

---

GroupsFilter^Optional

GroupsFilter *[]*string

• Type: *[]*string

Whitelist of Okta Group identifiers that are allowed for the APPEND or SYNC groups_action.

Docs at Terraform Registry: {@link https://registry.terraform.io/providers/okta/okta/4.8.1/docs/resources/idp_oidc#groups_filter IdpOidc#groups_filter}

---

Id^Optional

Id *string

• Type: *string

Docs at Terraform Registry: {@link https://registry.terraform.io/providers/okta/okta/4.8.1/docs/resources/idp_oidc#id IdpOidc#id}.

Please be aware that the id field is automatically added to all resources in Terraform providers using a Terraform provider SDK version below 2. If you experience problems setting this value it might not be settable. Please take a look at the provider documentation to ensure it should be settable.

---

IssuerMode^Optional

IssuerMode *string

• Type: *string

Indicates whether Okta uses the original Okta org domain URL, a custom domain URL, or dynamic.

It can be ORG_URL, CUSTOM_URL, or DYNAMIC. Default: ORG_URL

Docs at Terraform Registry: {@link https://registry.terraform.io/providers/okta/okta/4.8.1/docs/resources/idp_oidc#issuer_mode IdpOidc#issuer_mode}

---

MaxClockSkew^Optional

MaxClockSkew *f64

• Type: *f64

Maximum allowable clock-skew when processing messages from the IdP.

Docs at Terraform Registry: {@link https://registry.terraform.io/providers/okta/okta/4.8.1/docs/resources/idp_oidc#max_clock_skew IdpOidc#max_clock_skew}

---

ProfileMaster^Optional

ProfileMaster interface{}

• Type: interface{}

Determines if the IdP should act as a source of truth for user profile attributes.

Docs at Terraform Registry: {@link https://registry.terraform.io/providers/okta/okta/4.8.1/docs/resources/idp_oidc#profile_master IdpOidc#profile_master}

---

ProtocolType^Optional

ProtocolType *string

• Type: *string

The type of protocol to use. It can be OIDC or OAUTH2. Default: OIDC.

Docs at Terraform Registry: {@link https://registry.terraform.io/providers/okta/okta/4.8.1/docs/resources/idp_oidc#protocol_type IdpOidc#protocol_type}

---

ProvisioningAction^Optional

ProvisioningAction *string

• Type: *string

Provisioning action for an IdP user during authentication. Default: AUTO.

Docs at Terraform Registry: {@link https://registry.terraform.io/providers/okta/okta/4.8.1/docs/resources/idp_oidc#provisioning_action IdpOidc#provisioning_action}

---

RequestSignatureAlgorithm^Optional

RequestSignatureAlgorithm *string

• Type: *string

The HMAC Signature Algorithm used when signing an authorization request.

Defaults to HS256. It can be HS256, HS384, HS512, SHA-256. RS256, RS384, or RS512. NOTE: SHA-256 an undocumented legacy value and not continue to be valid. See API docs https://developer.okta.com/docs/reference/api/idps/#oidc-request-signature-algorithm-object

Docs at Terraform Registry: {@link https://registry.terraform.io/providers/okta/okta/4.8.1/docs/resources/idp_oidc#request_signature_algorithm IdpOidc#request_signature_algorithm}

---

RequestSignatureScope^Optional

RequestSignatureScope *string

• Type: *string

Specifies whether to digitally sign an AuthnRequest messages to the IdP.

Defaults to REQUEST. It can be REQUEST or NONE.

Docs at Terraform Registry: {@link https://registry.terraform.io/providers/okta/okta/4.8.1/docs/resources/idp_oidc#request_signature_scope IdpOidc#request_signature_scope}

---

Status^Optional

Status *string

• Type: *string

Default to ACTIVE.

Docs at Terraform Registry: {@link https://registry.terraform.io/providers/okta/okta/4.8.1/docs/resources/idp_oidc#status IdpOidc#status}

---

SubjectMatchAttribute^Optional

SubjectMatchAttribute *string

• Type: *string

Okta user profile attribute for matching transformed IdP username. Only for matchType CUSTOM_ATTRIBUTE.

Docs at Terraform Registry: {@link https://registry.terraform.io/providers/okta/okta/4.8.1/docs/resources/idp_oidc#subject_match_attribute IdpOidc#subject_match_attribute}

---

SubjectMatchType^Optional

SubjectMatchType *string

• Type: *string

Determines the Okta user profile attribute match conditions for account linking and authentication of the transformed IdP username.

By default, it is set to USERNAME. It can be set to USERNAME, EMAIL, USERNAME_OR_EMAIL or CUSTOM_ATTRIBUTE.

Docs at Terraform Registry: {@link https://registry.terraform.io/providers/okta/okta/4.8.1/docs/resources/idp_oidc#subject_match_type IdpOidc#subject_match_type}

---

SuspendedAction^Optional

SuspendedAction *string

• Type: *string

Action for a previously suspended IdP user during authentication. Can be NONE or REACTIVATE. Default: NONE.

Docs at Terraform Registry: {@link https://registry.terraform.io/providers/okta/okta/4.8.1/docs/resources/idp_oidc#suspended_action IdpOidc#suspended_action}

---

UserInfoBinding^Optional

UserInfoBinding *string

• Type: *string

Docs at Terraform Registry: {@link https://registry.terraform.io/providers/okta/okta/4.8.1/docs/resources/idp_oidc#user_info_binding IdpOidc#user_info_binding}.

---

UserInfoUrl^Optional

UserInfoUrl *string

• Type: *string

Protected resource endpoint that returns claims about the authenticated user.

Docs at Terraform Registry: {@link https://registry.terraform.io/providers/okta/okta/4.8.1/docs/resources/idp_oidc#user_info_url IdpOidc#user_info_url}

---

UsernameTemplate^Optional

UsernameTemplate *string

• Type: *string

Okta EL Expression to generate or transform a unique username for the IdP user. Default: idpuser.email.

Docs at Terraform Registry: {@link https://registry.terraform.io/providers/okta/okta/4.8.1/docs/resources/idp_oidc#username_template IdpOidc#username_template}

---