The highest tagged major version is
README
¶
snowflake_external_oauth_integration
Refer to the Terraform Registory for docs: snowflake_external_oauth_integration.
Documentation
¶
Index ¶
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
func ExternalOauthIntegration_IsConstruct ¶
func ExternalOauthIntegration_IsConstruct(x interface{}) *bool
Checks if `x` is a construct.
Use this method instead of `instanceof` to properly detect `Construct` instances, even when the construct library is symlinked.
Explanation: in JavaScript, multiple copies of the `constructs` library on disk are seen as independent, completely different libraries. As a consequence, the class `Construct` in each copy of the `constructs` library is seen as a different class, and an instance of one class will not test as `instanceof` the other class. `npm install` will not create installations like this, but users may manually symlink construct libraries together or use a monorepo tool: in those cases, multiple copies of the `constructs` library can be accidentally installed, and `instanceof` will behave unpredictably. It is safest to avoid using `instanceof`, and using this type-testing method instead.
Returns: true if `x` is an object created from a class which extends `Construct`.
func ExternalOauthIntegration_TfResourceType ¶
func ExternalOauthIntegration_TfResourceType() *string
func NewExternalOauthIntegration_Override ¶
func NewExternalOauthIntegration_Override(e ExternalOauthIntegration, scope constructs.Construct, id *string, config *ExternalOauthIntegrationConfig)
Create a new {@link https://www.terraform.io/docs/providers/snowflake/r/external_oauth_integration snowflake_external_oauth_integration} Resource.
Types ¶
type ExternalOauthIntegration ¶
type ExternalOauthIntegration interface {
cdktf.TerraformResource
AllowedRoles() *[]*string
SetAllowedRoles(val *[]*string)
AllowedRolesInput() *[]*string
AnyRoleMode() *string
SetAnyRoleMode(val *string)
AnyRoleModeInput() *string
AudienceUrls() *[]*string
SetAudienceUrls(val *[]*string)
AudienceUrlsInput() *[]*string
BlockedRoles() *[]*string
SetBlockedRoles(val *[]*string)
BlockedRolesInput() *[]*string
// Experimental.
CdktfStack() cdktf.TerraformStack
Comment() *string
SetComment(val *string)
CommentInput() *string
// Experimental.
Connection() interface{}
// Experimental.
SetConnection(val interface{})
// Experimental.
ConstructNodeMetadata() *map[string]interface{}
// Experimental.
Count() *float64
// Experimental.
SetCount(val *float64)
CreatedOn() *string
// Experimental.
DependsOn() *[]*string
// Experimental.
SetDependsOn(val *[]*string)
Enabled() interface{}
SetEnabled(val interface{})
EnabledInput() interface{}
// Experimental.
ForEach() cdktf.ITerraformIterator
// Experimental.
SetForEach(val cdktf.ITerraformIterator)
// Experimental.
Fqn() *string
// Experimental.
FriendlyUniqueId() *string
Id() *string
SetId(val *string)
IdInput() *string
Issuer() *string
SetIssuer(val *string)
IssuerInput() *string
JwsKeysUrls() *[]*string
SetJwsKeysUrls(val *[]*string)
JwsKeysUrlsInput() *[]*string
// Experimental.
Lifecycle() *cdktf.TerraformResourceLifecycle
// Experimental.
SetLifecycle(val *cdktf.TerraformResourceLifecycle)
Name() *string
SetName(val *string)
NameInput() *string
// The tree node.
Node() constructs.Node
// Experimental.
Provider() cdktf.TerraformProvider
// Experimental.
SetProvider(val cdktf.TerraformProvider)
// Experimental.
Provisioners() *[]interface{}
// Experimental.
SetProvisioners(val *[]interface{})
// Experimental.
RawOverrides() interface{}
RsaPublicKey() *string
SetRsaPublicKey(val *string)
RsaPublicKey2() *string
SetRsaPublicKey2(val *string)
RsaPublicKey2Input() *string
RsaPublicKeyInput() *string
ScopeDelimiter() *string
SetScopeDelimiter(val *string)
ScopeDelimiterInput() *string
SnowflakeUserMappingAttribute() *string
SetSnowflakeUserMappingAttribute(val *string)
SnowflakeUserMappingAttributeInput() *string
// Experimental.
TerraformGeneratorMetadata() *cdktf.TerraformProviderGeneratorMetadata
// Experimental.
TerraformMetaArguments() *map[string]interface{}
// Experimental.
TerraformResourceType() *string
TokenUserMappingClaims() *[]*string
SetTokenUserMappingClaims(val *[]*string)
TokenUserMappingClaimsInput() *[]*string
Type() *string
SetType(val *string)
TypeInput() *string
// Experimental.
AddOverride(path *string, value interface{})
// Experimental.
GetAnyMapAttribute(terraformAttribute *string) *map[string]interface{}
// Experimental.
GetBooleanAttribute(terraformAttribute *string) cdktf.IResolvable
// Experimental.
GetBooleanMapAttribute(terraformAttribute *string) *map[string]*bool
// Experimental.
GetListAttribute(terraformAttribute *string) *[]*string
// Experimental.
GetNumberAttribute(terraformAttribute *string) *float64
// Experimental.
GetNumberListAttribute(terraformAttribute *string) *[]*float64
// Experimental.
GetNumberMapAttribute(terraformAttribute *string) *map[string]*float64
// Experimental.
GetStringAttribute(terraformAttribute *string) *string
// Experimental.
GetStringMapAttribute(terraformAttribute *string) *map[string]*string
// Experimental.
InterpolationForAttribute(terraformAttribute *string) cdktf.IResolvable
// Overrides the auto-generated logical ID with a specific ID.
// Experimental.
OverrideLogicalId(newLogicalId *string)
ResetAllowedRoles()
ResetAnyRoleMode()
ResetAudienceUrls()
ResetBlockedRoles()
ResetComment()
ResetId()
ResetJwsKeysUrls()
// Resets a previously passed logical Id to use the auto-generated logical id again.
// Experimental.
ResetOverrideLogicalId()
ResetRsaPublicKey()
ResetRsaPublicKey2()
ResetScopeDelimiter()
SynthesizeAttributes() *map[string]interface{}
// Experimental.
ToMetadata() interface{}
// Returns a string representation of this construct.
ToString() *string
// Adds this resource to the terraform JSON output.
// Experimental.
ToTerraform() interface{}
}
Represents a {@link https://www.terraform.io/docs/providers/snowflake/r/external_oauth_integration snowflake_external_oauth_integration}.
func NewExternalOauthIntegration ¶
func NewExternalOauthIntegration(scope constructs.Construct, id *string, config *ExternalOauthIntegrationConfig) ExternalOauthIntegration
Create a new {@link https://www.terraform.io/docs/providers/snowflake/r/external_oauth_integration snowflake_external_oauth_integration} Resource.
type ExternalOauthIntegrationConfig ¶
type ExternalOauthIntegrationConfig struct {
// Experimental.
Connection interface{} `field:"optional" json:"connection" yaml:"connection"`
// Experimental.
Count *float64 `field:"optional" json:"count" yaml:"count"`
// Experimental.
DependsOn *[]cdktf.ITerraformDependable `field:"optional" json:"dependsOn" yaml:"dependsOn"`
// Experimental.
ForEach cdktf.ITerraformIterator `field:"optional" json:"forEach" yaml:"forEach"`
// Experimental.
Lifecycle *cdktf.TerraformResourceLifecycle `field:"optional" json:"lifecycle" yaml:"lifecycle"`
// Experimental.
Provider cdktf.TerraformProvider `field:"optional" json:"provider" yaml:"provider"`
// Experimental.
Provisioners *[]interface{} `field:"optional" json:"provisioners" yaml:"provisioners"`
// Specifies whether to initiate operation of the integration or suspend it.
//
// Docs at Terraform Registry: {@link https://www.terraform.io/docs/providers/snowflake/r/external_oauth_integration#enabled ExternalOauthIntegration#enabled}
Enabled interface{} `field:"required" json:"enabled" yaml:"enabled"`
// Specifies the URL to define the OAuth 2.0 authorization server.
//
// Docs at Terraform Registry: {@link https://www.terraform.io/docs/providers/snowflake/r/external_oauth_integration#issuer ExternalOauthIntegration#issuer}
Issuer *string `field:"required" json:"issuer" yaml:"issuer"`
// Specifies the name of the External Oath integration.
//
// This name follows the rules for Object Identifiers. The name should be unique among security integrations in your account.
//
// Docs at Terraform Registry: {@link https://www.terraform.io/docs/providers/snowflake/r/external_oauth_integration#name ExternalOauthIntegration#name}
Name *string `field:"required" json:"name" yaml:"name"`
// Indicates which Snowflake user record attribute should be used to map the access token to a Snowflake user record.
//
// Docs at Terraform Registry: {@link https://www.terraform.io/docs/providers/snowflake/r/external_oauth_integration#snowflake_user_mapping_attribute ExternalOauthIntegration#snowflake_user_mapping_attribute}
SnowflakeUserMappingAttribute *string `field:"required" json:"snowflakeUserMappingAttribute" yaml:"snowflakeUserMappingAttribute"`
// Specifies the access token claim or claims that can be used to map the access token to a Snowflake user record.
//
// Docs at Terraform Registry: {@link https://www.terraform.io/docs/providers/snowflake/r/external_oauth_integration#token_user_mapping_claims ExternalOauthIntegration#token_user_mapping_claims}
TokenUserMappingClaims *[]*string `field:"required" json:"tokenUserMappingClaims" yaml:"tokenUserMappingClaims"`
// Specifies the OAuth 2.0 authorization server to be Okta, Microsoft Azure AD, Ping Identity PingFederate, or a Custom OAuth 2.0 authorization server.
//
// Docs at Terraform Registry: {@link https://www.terraform.io/docs/providers/snowflake/r/external_oauth_integration#type ExternalOauthIntegration#type}
Type *string `field:"required" json:"type" yaml:"type"`
// Specifies the list of roles that the client can set as the primary role.
//
// Docs at Terraform Registry: {@link https://www.terraform.io/docs/providers/snowflake/r/external_oauth_integration#allowed_roles ExternalOauthIntegration#allowed_roles}
AllowedRoles *[]*string `field:"optional" json:"allowedRoles" yaml:"allowedRoles"`
// Specifies whether the OAuth client or user can use a role that is not defined in the OAuth access token.
//
// Docs at Terraform Registry: {@link https://www.terraform.io/docs/providers/snowflake/r/external_oauth_integration#any_role_mode ExternalOauthIntegration#any_role_mode}
AnyRoleMode *string `field:"optional" json:"anyRoleMode" yaml:"anyRoleMode"`
// Specifies additional values that can be used for the access token's audience validation on top of using the Customer's Snowflake Account URL.
//
// Docs at Terraform Registry: {@link https://www.terraform.io/docs/providers/snowflake/r/external_oauth_integration#audience_urls ExternalOauthIntegration#audience_urls}
AudienceUrls *[]*string `field:"optional" json:"audienceUrls" yaml:"audienceUrls"`
// Specifies the list of roles that a client cannot set as the primary role.
//
// Do not include ACCOUNTADMIN, ORGADMIN or SECURITYADMIN as they are already implicitly enforced and will cause in-place updates.
//
// Docs at Terraform Registry: {@link https://www.terraform.io/docs/providers/snowflake/r/external_oauth_integration#blocked_roles ExternalOauthIntegration#blocked_roles}
BlockedRoles *[]*string `field:"optional" json:"blockedRoles" yaml:"blockedRoles"`
// Specifies a comment for the OAuth integration.
//
// Docs at Terraform Registry: {@link https://www.terraform.io/docs/providers/snowflake/r/external_oauth_integration#comment ExternalOauthIntegration#comment}
Comment *string `field:"optional" json:"comment" yaml:"comment"`
// Docs at Terraform Registry: {@link https://www.terraform.io/docs/providers/snowflake/r/external_oauth_integration#id ExternalOauthIntegration#id}.
//
// Please be aware that the id field is automatically added to all resources in Terraform providers using a Terraform provider SDK version below 2.
// If you experience problems setting this value it might not be settable. Please take a look at the provider documentation to ensure it should be settable.
Id *string `field:"optional" json:"id" yaml:"id"`
// Specifies the endpoint or a list of endpoints from which to download public keys or certificates to validate an External OAuth access token.
//
// The maximum number of URLs that can be specified in the list is 3.
//
// Docs at Terraform Registry: {@link https://www.terraform.io/docs/providers/snowflake/r/external_oauth_integration#jws_keys_urls ExternalOauthIntegration#jws_keys_urls}
JwsKeysUrls *[]*string `field:"optional" json:"jwsKeysUrls" yaml:"jwsKeysUrls"`
// Specifies a Base64-encoded RSA public key, without the -----BEGIN PUBLIC KEY----- and -----END PUBLIC KEY----- headers.
//
// Docs at Terraform Registry: {@link https://www.terraform.io/docs/providers/snowflake/r/external_oauth_integration#rsa_public_key ExternalOauthIntegration#rsa_public_key}
RsaPublicKey *string `field:"optional" json:"rsaPublicKey" yaml:"rsaPublicKey"`
// Specifies a second RSA public key, without the -----BEGIN PUBLIC KEY----- and -----END PUBLIC KEY----- headers.
//
// Used for key rotation.
//
// Docs at Terraform Registry: {@link https://www.terraform.io/docs/providers/snowflake/r/external_oauth_integration#rsa_public_key_2 ExternalOauthIntegration#rsa_public_key_2}
RsaPublicKey2 *string `field:"optional" json:"rsaPublicKey2" yaml:"rsaPublicKey2"`
// Specifies the scope delimiter in the authorization token.
//
// Docs at Terraform Registry: {@link https://www.terraform.io/docs/providers/snowflake/r/external_oauth_integration#scope_delimiter ExternalOauthIntegration#scope_delimiter}
ScopeDelimiter *string `field:"optional" json:"scopeDelimiter" yaml:"scopeDelimiter"`
}
Source Files
¶
Directories
Click to show internal directories.
Click to hide internal directories.