app

package
v4.6.3 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Jan 26, 2024 License: Apache-2.0 Imports: 7 Imported by: 0

Documentation

Index

Constants

This section is empty.

Variables

This section is empty.

Functions

This section is empty.

Types

type AccessPolicyAssignment added in v4.4.0 

type AccessPolicyAssignment struct {
	pulumi.CustomResourceState

	// The application ID; this value is immutable and can not be updated.
	AppId pulumi.StringOutput `pulumi:"appId"`
	// The access policy ID.
	PolicyId pulumi.StringOutput `pulumi:"policyId"`
}

Assigns an access policy (colloquially known as a sign-on policy and/or an authentication policy) to an application. This resource does not perform true delete as it will not delete an application and the app's access policy can't be removed; it can only be changed to a different access policy. This resource is only logical within the context of an application therefore `appId` is immutable once set. Use this resource to manage assigning an access policy to an application. It will assign the given `policyId` to the application at creation and during update.

> Inside the product a sign-on policy is referenced as an _authentication policy_, in the public API the policy is of type [`ACCESS_POLICY`](https://developer.okta.com/docs/reference/api/policy/#policy-object).

## Import

An Okta App's Access Policy Assignment can be imported via its associated Application ID.

```sh 

$ pulumi import okta:app/accessPolicyAssignment:AccessPolicyAssignment example <app id>

```

func GetAccessPolicyAssignment added in v4.4.0 

func GetAccessPolicyAssignment(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *AccessPolicyAssignmentState, opts ...pulumi.ResourceOption) (*AccessPolicyAssignment, error)

GetAccessPolicyAssignment gets an existing AccessPolicyAssignment resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewAccessPolicyAssignment added in v4.4.0 

func NewAccessPolicyAssignment(ctx *pulumi.Context,
	name string, args *AccessPolicyAssignmentArgs, opts ...pulumi.ResourceOption) (*AccessPolicyAssignment, error)

NewAccessPolicyAssignment registers a new resource with the given unique name, arguments, and options.

func (*AccessPolicyAssignment) ElementType added in v4.4.0 

func (*AccessPolicyAssignment) ElementType() reflect.Type

func (*AccessPolicyAssignment) ToAccessPolicyAssignmentOutput added in v4.4.0 

func (i *AccessPolicyAssignment) ToAccessPolicyAssignmentOutput() AccessPolicyAssignmentOutput

func (*AccessPolicyAssignment) ToAccessPolicyAssignmentOutputWithContext added in v4.4.0 

func (i *AccessPolicyAssignment) ToAccessPolicyAssignmentOutputWithContext(ctx context.Context) AccessPolicyAssignmentOutput

type AccessPolicyAssignmentArgs added in v4.4.0 

type AccessPolicyAssignmentArgs struct {
	// The application ID; this value is immutable and can not be updated.
	AppId pulumi.StringInput
	// The access policy ID.
	PolicyId pulumi.StringInput
}

The set of arguments for constructing a AccessPolicyAssignment resource.

func (AccessPolicyAssignmentArgs) ElementType added in v4.4.0 

func (AccessPolicyAssignmentArgs) ElementType() reflect.Type

type AccessPolicyAssignmentArray added in v4.4.0 

type AccessPolicyAssignmentArray []AccessPolicyAssignmentInput

func (AccessPolicyAssignmentArray) ElementType added in v4.4.0 

func (AccessPolicyAssignmentArray) ElementType() reflect.Type

func (AccessPolicyAssignmentArray) ToAccessPolicyAssignmentArrayOutput added in v4.4.0 

func (i AccessPolicyAssignmentArray) ToAccessPolicyAssignmentArrayOutput() AccessPolicyAssignmentArrayOutput

func (AccessPolicyAssignmentArray) ToAccessPolicyAssignmentArrayOutputWithContext added in v4.4.0 

func (i AccessPolicyAssignmentArray) ToAccessPolicyAssignmentArrayOutputWithContext(ctx context.Context) AccessPolicyAssignmentArrayOutput

type AccessPolicyAssignmentArrayInput added in v4.4.0 

type AccessPolicyAssignmentArrayInput interface {
	pulumi.Input

	ToAccessPolicyAssignmentArrayOutput() AccessPolicyAssignmentArrayOutput
	ToAccessPolicyAssignmentArrayOutputWithContext(context.Context) AccessPolicyAssignmentArrayOutput
}

AccessPolicyAssignmentArrayInput is an input type that accepts AccessPolicyAssignmentArray and AccessPolicyAssignmentArrayOutput values. You can construct a concrete instance of `AccessPolicyAssignmentArrayInput` via: 

AccessPolicyAssignmentArray{ AccessPolicyAssignmentArgs{...} }

type AccessPolicyAssignmentArrayOutput added in v4.4.0 

type AccessPolicyAssignmentArrayOutput struct{ *pulumi.OutputState }

func (AccessPolicyAssignmentArrayOutput) ElementType added in v4.4.0 

func (AccessPolicyAssignmentArrayOutput) ElementType() reflect.Type

func (AccessPolicyAssignmentArrayOutput) Index added in v4.4.0 

func (o AccessPolicyAssignmentArrayOutput) Index(i pulumi.IntInput) AccessPolicyAssignmentOutput

func (AccessPolicyAssignmentArrayOutput) ToAccessPolicyAssignmentArrayOutput added in v4.4.0 

func (o AccessPolicyAssignmentArrayOutput) ToAccessPolicyAssignmentArrayOutput() AccessPolicyAssignmentArrayOutput

func (AccessPolicyAssignmentArrayOutput) ToAccessPolicyAssignmentArrayOutputWithContext added in v4.4.0 

func (o AccessPolicyAssignmentArrayOutput) ToAccessPolicyAssignmentArrayOutputWithContext(ctx context.Context) AccessPolicyAssignmentArrayOutput

type AccessPolicyAssignmentInput added in v4.4.0 

type AccessPolicyAssignmentInput interface {
	pulumi.Input

	ToAccessPolicyAssignmentOutput() AccessPolicyAssignmentOutput
	ToAccessPolicyAssignmentOutputWithContext(ctx context.Context) AccessPolicyAssignmentOutput
}

type AccessPolicyAssignmentMap added in v4.4.0 

type AccessPolicyAssignmentMap map[string]AccessPolicyAssignmentInput

func (AccessPolicyAssignmentMap) ElementType added in v4.4.0 

func (AccessPolicyAssignmentMap) ElementType() reflect.Type

func (AccessPolicyAssignmentMap) ToAccessPolicyAssignmentMapOutput added in v4.4.0 

func (i AccessPolicyAssignmentMap) ToAccessPolicyAssignmentMapOutput() AccessPolicyAssignmentMapOutput

func (AccessPolicyAssignmentMap) ToAccessPolicyAssignmentMapOutputWithContext added in v4.4.0 

func (i AccessPolicyAssignmentMap) ToAccessPolicyAssignmentMapOutputWithContext(ctx context.Context) AccessPolicyAssignmentMapOutput

type AccessPolicyAssignmentMapInput added in v4.4.0 

type AccessPolicyAssignmentMapInput interface {
	pulumi.Input

	ToAccessPolicyAssignmentMapOutput() AccessPolicyAssignmentMapOutput
	ToAccessPolicyAssignmentMapOutputWithContext(context.Context) AccessPolicyAssignmentMapOutput
}

AccessPolicyAssignmentMapInput is an input type that accepts AccessPolicyAssignmentMap and AccessPolicyAssignmentMapOutput values. You can construct a concrete instance of `AccessPolicyAssignmentMapInput` via: 

AccessPolicyAssignmentMap{ "key": AccessPolicyAssignmentArgs{...} }

type AccessPolicyAssignmentMapOutput added in v4.4.0 

type AccessPolicyAssignmentMapOutput struct{ *pulumi.OutputState }

func (AccessPolicyAssignmentMapOutput) ElementType added in v4.4.0 

func (AccessPolicyAssignmentMapOutput) ElementType() reflect.Type

func (AccessPolicyAssignmentMapOutput) MapIndex added in v4.4.0 

func (o AccessPolicyAssignmentMapOutput) MapIndex(k pulumi.StringInput) AccessPolicyAssignmentOutput

func (AccessPolicyAssignmentMapOutput) ToAccessPolicyAssignmentMapOutput added in v4.4.0 

func (o AccessPolicyAssignmentMapOutput) ToAccessPolicyAssignmentMapOutput() AccessPolicyAssignmentMapOutput

func (AccessPolicyAssignmentMapOutput) ToAccessPolicyAssignmentMapOutputWithContext added in v4.4.0 

func (o AccessPolicyAssignmentMapOutput) ToAccessPolicyAssignmentMapOutputWithContext(ctx context.Context) AccessPolicyAssignmentMapOutput

type AccessPolicyAssignmentOutput added in v4.4.0 

type AccessPolicyAssignmentOutput struct{ *pulumi.OutputState }

func (AccessPolicyAssignmentOutput) AppId added in v4.4.0 

func (o AccessPolicyAssignmentOutput) AppId() pulumi.StringOutput

The application ID; this value is immutable and can not be updated.

func (AccessPolicyAssignmentOutput) ElementType added in v4.4.0 

func (AccessPolicyAssignmentOutput) ElementType() reflect.Type

func (AccessPolicyAssignmentOutput) PolicyId added in v4.4.0 

func (o AccessPolicyAssignmentOutput) PolicyId() pulumi.StringOutput

The access policy ID.

func (AccessPolicyAssignmentOutput) ToAccessPolicyAssignmentOutput added in v4.4.0 

func (o AccessPolicyAssignmentOutput) ToAccessPolicyAssignmentOutput() AccessPolicyAssignmentOutput

func (AccessPolicyAssignmentOutput) ToAccessPolicyAssignmentOutputWithContext added in v4.4.0 

func (o AccessPolicyAssignmentOutput) ToAccessPolicyAssignmentOutputWithContext(ctx context.Context) AccessPolicyAssignmentOutput

type AccessPolicyAssignmentState added in v4.4.0 

type AccessPolicyAssignmentState struct {
	// The application ID; this value is immutable and can not be updated.
	AppId pulumi.StringPtrInput
	// The access policy ID.
	PolicyId pulumi.StringPtrInput
}

func (AccessPolicyAssignmentState) ElementType added in v4.4.0 

func (AccessPolicyAssignmentState) ElementType() reflect.Type

type AutoLogin 

type AutoLogin struct {
	pulumi.CustomResourceState

	// Custom error page URL.
	AccessibilityErrorRedirectUrl pulumi.StringPtrOutput `pulumi:"accessibilityErrorRedirectUrl"`
	// Custom login page for this application.
	AccessibilityLoginRedirectUrl pulumi.StringPtrOutput `pulumi:"accessibilityLoginRedirectUrl"`
	// Enable self-service. By default, it is `false`.
	AccessibilitySelfService pulumi.BoolPtrOutput `pulumi:"accessibilitySelfService"`
	// Application notes for admins.
	AdminNote pulumi.StringPtrOutput `pulumi:"adminNote"`
	// Displays specific appLinks for the app. The value for each application link should be boolean.
	AppLinksJson pulumi.StringPtrOutput `pulumi:"appLinksJson"`
	// Application settings in JSON format.
	AppSettingsJson pulumi.StringPtrOutput `pulumi:"appSettingsJson"`
	// Display auto submit toolbar.
	AutoSubmitToolbar pulumi.BoolPtrOutput `pulumi:"autoSubmitToolbar"`
	// One of: `"EDIT_USERNAME_AND_PASSWORD"`, `"ADMIN_SETS_CREDENTIALS"`, `"EDIT_PASSWORD_ONLY"`, `"EXTERNAL_PASSWORD_SYNC"`, or `"SHARED_USERNAME_AND_PASSWORD"`.
	CredentialsScheme pulumi.StringPtrOutput `pulumi:"credentialsScheme"`
	// Application notes for end users.
	EnduserNote pulumi.StringPtrOutput `pulumi:"enduserNote"`
	// Do not display application icon on mobile app.
	HideIos pulumi.BoolPtrOutput `pulumi:"hideIos"`
	// Do not display application icon to users.
	HideWeb pulumi.BoolPtrOutput `pulumi:"hideWeb"`
	// The Application's display name.
	Label pulumi.StringOutput `pulumi:"label"`
	Logo pulumi.StringPtrOutput `pulumi:"logo"`
	// Direct link of application logo.
	LogoUrl pulumi.StringOutput `pulumi:"logoUrl"`
	// Name assigned to the application by Okta.
	Name pulumi.StringOutput `pulumi:"name"`
	// Tells Okta to use an existing application in their application catalog, as opposed to a custom application.
	PreconfiguredApp pulumi.StringPtrOutput `pulumi:"preconfiguredApp"`
	// Allow user to reveal password. It can not be set to `true` if `credentialsScheme` is `"ADMIN_SETS_CREDENTIALS"`, `"SHARED_USERNAME_AND_PASSWORD"` or `"EXTERNAL_PASSWORD_SYNC"`.
	RevealPassword pulumi.BoolPtrOutput `pulumi:"revealPassword"`
	// Shared password, required for certain schemes
	SharedPassword pulumi.StringPtrOutput `pulumi:"sharedPassword"`
	// Shared username, required for certain schemes
	SharedUsername pulumi.StringPtrOutput `pulumi:"sharedUsername"`
	// Sign-on mode of the application.
	SignOnMode pulumi.StringOutput `pulumi:"signOnMode"`
	// Redirect URL; if going to the login page URL redirects to another page, then enter that URL here
	SignOnRedirectUrl pulumi.StringPtrOutput `pulumi:"signOnRedirectUrl"`
	// App login page URL
	SignOnUrl pulumi.StringPtrOutput `pulumi:"signOnUrl"`
	// The status of the application, by default, it is `"ACTIVE"`.
	Status pulumi.StringPtrOutput `pulumi:"status"`
	// Username template. Default: `"${source.login}"`
	UserNameTemplate pulumi.StringPtrOutput `pulumi:"userNameTemplate"`
	// Push username on update. Valid values: `"PUSH"` and `"DONT_PUSH"`.
	UserNameTemplatePushStatus pulumi.StringPtrOutput `pulumi:"userNameTemplatePushStatus"`
	// Username template suffix.
	UserNameTemplateSuffix pulumi.StringPtrOutput `pulumi:"userNameTemplateSuffix"`
	// Username template type. Default: `"BUILT_IN"`.
	UserNameTemplateType pulumi.StringPtrOutput `pulumi:"userNameTemplateType"`
}

This resource allows you to create and configure an Auto Login Okta Application.

> During an apply if there is change in `status` the app will first be activated or deactivated in accordance with the `status` change. Then, all other arguments that changed will be applied.

## Example Usage

```go package main

import ( 

"github.com/pulumi/pulumi-okta/sdk/v4/go/okta/app"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"

) 

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := app.NewAutoLogin(ctx, "example", &app.AutoLoginArgs{
			CredentialsScheme: pulumi.String("EDIT_USERNAME_AND_PASSWORD"),
			Label:             pulumi.String("Example App"),
			RevealPassword:    pulumi.Bool(true),
			SignOnRedirectUrl: pulumi.String("https://example.com"),
			SignOnUrl:         pulumi.String("https://example.com/login.html"),
		})
		if err != nil {
			return err
		}
		return nil
	})
}

``` ### Pre-configured application ```go package main

import ( 

"github.com/pulumi/pulumi-okta/sdk/v4/go/okta/app"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"

) 

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := app.NewAutoLogin(ctx, "example", &app.AutoLoginArgs{
			AppSettingsJson:  pulumi.String("{\n    \"domain\": \"okta\",\n    \"afwOnly\": false\n}\n\n"),
			Label:            pulumi.String("Google Example App"),
			PreconfiguredApp: pulumi.String("google"),
			Status:           pulumi.String("ACTIVE"),
		})
		if err != nil {
			return err
		}
		return nil
	})
}

```

## Import

Okta Auto Login App can be imported via the Okta ID.

```sh 

$ pulumi import okta:app/autoLogin:AutoLogin example <app id>

```

func GetAutoLogin 

func GetAutoLogin(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *AutoLoginState, opts ...pulumi.ResourceOption) (*AutoLogin, error)

GetAutoLogin gets an existing AutoLogin resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewAutoLogin 

func NewAutoLogin(ctx *pulumi.Context,
	name string, args *AutoLoginArgs, opts ...pulumi.ResourceOption) (*AutoLogin, error)

NewAutoLogin registers a new resource with the given unique name, arguments, and options.

func (*AutoLogin) ElementType 

func (*AutoLogin) ElementType() reflect.Type

func (*AutoLogin) ToAutoLoginOutput 

func (i *AutoLogin) ToAutoLoginOutput() AutoLoginOutput

func (*AutoLogin) ToAutoLoginOutputWithContext 

func (i *AutoLogin) ToAutoLoginOutputWithContext(ctx context.Context) AutoLoginOutput

type AutoLoginArgs 

type AutoLoginArgs struct {
	// Custom error page URL.
	AccessibilityErrorRedirectUrl pulumi.StringPtrInput
	// Custom login page for this application.
	AccessibilityLoginRedirectUrl pulumi.StringPtrInput
	// Enable self-service. By default, it is `false`.
	AccessibilitySelfService pulumi.BoolPtrInput
	// Application notes for admins.
	AdminNote pulumi.StringPtrInput
	// Displays specific appLinks for the app. The value for each application link should be boolean.
	AppLinksJson pulumi.StringPtrInput
	// Application settings in JSON format.
	AppSettingsJson pulumi.StringPtrInput
	// Display auto submit toolbar.
	AutoSubmitToolbar pulumi.BoolPtrInput
	// One of: `"EDIT_USERNAME_AND_PASSWORD"`, `"ADMIN_SETS_CREDENTIALS"`, `"EDIT_PASSWORD_ONLY"`, `"EXTERNAL_PASSWORD_SYNC"`, or `"SHARED_USERNAME_AND_PASSWORD"`.
	CredentialsScheme pulumi.StringPtrInput
	// Application notes for end users.
	EnduserNote pulumi.StringPtrInput
	// Do not display application icon on mobile app.
	HideIos pulumi.BoolPtrInput
	// Do not display application icon to users.
	HideWeb pulumi.BoolPtrInput
	// The Application's display name.
	Label pulumi.StringInput
	Logo pulumi.StringPtrInput
	// Tells Okta to use an existing application in their application catalog, as opposed to a custom application.
	PreconfiguredApp pulumi.StringPtrInput
	// Allow user to reveal password. It can not be set to `true` if `credentialsScheme` is `"ADMIN_SETS_CREDENTIALS"`, `"SHARED_USERNAME_AND_PASSWORD"` or `"EXTERNAL_PASSWORD_SYNC"`.
	RevealPassword pulumi.BoolPtrInput
	// Shared password, required for certain schemes
	SharedPassword pulumi.StringPtrInput
	// Shared username, required for certain schemes
	SharedUsername pulumi.StringPtrInput
	// Redirect URL; if going to the login page URL redirects to another page, then enter that URL here
	SignOnRedirectUrl pulumi.StringPtrInput
	// App login page URL
	SignOnUrl pulumi.StringPtrInput
	// The status of the application, by default, it is `"ACTIVE"`.
	Status pulumi.StringPtrInput
	// Username template. Default: `"${source.login}"`
	UserNameTemplate pulumi.StringPtrInput
	// Push username on update. Valid values: `"PUSH"` and `"DONT_PUSH"`.
	UserNameTemplatePushStatus pulumi.StringPtrInput
	// Username template suffix.
	UserNameTemplateSuffix pulumi.StringPtrInput
	// Username template type. Default: `"BUILT_IN"`.
	UserNameTemplateType pulumi.StringPtrInput
}

The set of arguments for constructing a AutoLogin resource.

func (AutoLoginArgs) ElementType 

func (AutoLoginArgs) ElementType() reflect.Type

type AutoLoginArray 

type AutoLoginArray []AutoLoginInput

func (AutoLoginArray) ElementType 

func (AutoLoginArray) ElementType() reflect.Type

func (AutoLoginArray) ToAutoLoginArrayOutput 

func (i AutoLoginArray) ToAutoLoginArrayOutput() AutoLoginArrayOutput

func (AutoLoginArray) ToAutoLoginArrayOutputWithContext 

func (i AutoLoginArray) ToAutoLoginArrayOutputWithContext(ctx context.Context) AutoLoginArrayOutput

type AutoLoginArrayInput 

type AutoLoginArrayInput interface {
	pulumi.Input

	ToAutoLoginArrayOutput() AutoLoginArrayOutput
	ToAutoLoginArrayOutputWithContext(context.Context) AutoLoginArrayOutput
}

AutoLoginArrayInput is an input type that accepts AutoLoginArray and AutoLoginArrayOutput values. You can construct a concrete instance of `AutoLoginArrayInput` via: 

AutoLoginArray{ AutoLoginArgs{...} }

type AutoLoginArrayOutput 

type AutoLoginArrayOutput struct{ *pulumi.OutputState }

func (AutoLoginArrayOutput) ElementType 

func (AutoLoginArrayOutput) ElementType() reflect.Type

func (AutoLoginArrayOutput) Index 

func (o AutoLoginArrayOutput) Index(i pulumi.IntInput) AutoLoginOutput

func (AutoLoginArrayOutput) ToAutoLoginArrayOutput 

func (o AutoLoginArrayOutput) ToAutoLoginArrayOutput() AutoLoginArrayOutput

func (AutoLoginArrayOutput) ToAutoLoginArrayOutputWithContext 

func (o AutoLoginArrayOutput) ToAutoLoginArrayOutputWithContext(ctx context.Context) AutoLoginArrayOutput

type AutoLoginInput 

type AutoLoginInput interface {
	pulumi.Input

	ToAutoLoginOutput() AutoLoginOutput
	ToAutoLoginOutputWithContext(ctx context.Context) AutoLoginOutput
}

type AutoLoginMap 

type AutoLoginMap map[string]AutoLoginInput

func (AutoLoginMap) ElementType 

func (AutoLoginMap) ElementType() reflect.Type

func (AutoLoginMap) ToAutoLoginMapOutput 

func (i AutoLoginMap) ToAutoLoginMapOutput() AutoLoginMapOutput

func (AutoLoginMap) ToAutoLoginMapOutputWithContext 

func (i AutoLoginMap) ToAutoLoginMapOutputWithContext(ctx context.Context) AutoLoginMapOutput

type AutoLoginMapInput 

type AutoLoginMapInput interface {
	pulumi.Input

	ToAutoLoginMapOutput() AutoLoginMapOutput
	ToAutoLoginMapOutputWithContext(context.Context) AutoLoginMapOutput
}

AutoLoginMapInput is an input type that accepts AutoLoginMap and AutoLoginMapOutput values. You can construct a concrete instance of `AutoLoginMapInput` via: 

AutoLoginMap{ "key": AutoLoginArgs{...} }

type AutoLoginMapOutput 

type AutoLoginMapOutput struct{ *pulumi.OutputState }

func (AutoLoginMapOutput) ElementType 

func (AutoLoginMapOutput) ElementType() reflect.Type

func (AutoLoginMapOutput) MapIndex 

func (o AutoLoginMapOutput) MapIndex(k pulumi.StringInput) AutoLoginOutput

func (AutoLoginMapOutput) ToAutoLoginMapOutput 

func (o AutoLoginMapOutput) ToAutoLoginMapOutput() AutoLoginMapOutput

func (AutoLoginMapOutput) ToAutoLoginMapOutputWithContext 

func (o AutoLoginMapOutput) ToAutoLoginMapOutputWithContext(ctx context.Context) AutoLoginMapOutput

type AutoLoginOutput 

type AutoLoginOutput struct{ *pulumi.OutputState }

func (AutoLoginOutput) AccessibilityErrorRedirectUrl 

func (o AutoLoginOutput) AccessibilityErrorRedirectUrl() pulumi.StringPtrOutput

Custom error page URL.

func (AutoLoginOutput) AccessibilityLoginRedirectUrl 

func (o AutoLoginOutput) AccessibilityLoginRedirectUrl() pulumi.StringPtrOutput

Custom login page for this application.

func (AutoLoginOutput) AccessibilitySelfService 

func (o AutoLoginOutput) AccessibilitySelfService() pulumi.BoolPtrOutput

Enable self-service. By default, it is `false`.

func (AutoLoginOutput) AdminNote 

func (o AutoLoginOutput) AdminNote() pulumi.StringPtrOutput

Application notes for admins.

func (AutoLoginOutput) AppLinksJson 

func (o AutoLoginOutput) AppLinksJson() pulumi.StringPtrOutput

Displays specific appLinks for the app. The value for each application link should be boolean.

func (AutoLoginOutput) AppSettingsJson 

func (o AutoLoginOutput) AppSettingsJson() pulumi.StringPtrOutput

Application settings in JSON format.

func (AutoLoginOutput) AutoSubmitToolbar 

func (o AutoLoginOutput) AutoSubmitToolbar() pulumi.BoolPtrOutput

Display auto submit toolbar.

func (AutoLoginOutput) CredentialsScheme 

func (o AutoLoginOutput) CredentialsScheme() pulumi.StringPtrOutput

One of: `"EDIT_USERNAME_AND_PASSWORD"`, `"ADMIN_SETS_CREDENTIALS"`, `"EDIT_PASSWORD_ONLY"`, `"EXTERNAL_PASSWORD_SYNC"`, or `"SHARED_USERNAME_AND_PASSWORD"`.

func (AutoLoginOutput) ElementType 

func (AutoLoginOutput) ElementType() reflect.Type

func (AutoLoginOutput) EnduserNote 

func (o AutoLoginOutput) EnduserNote() pulumi.StringPtrOutput

Application notes for end users.

func (AutoLoginOutput) HideIos 

func (o AutoLoginOutput) HideIos() pulumi.BoolPtrOutput

Do not display application icon on mobile app.

func (AutoLoginOutput) HideWeb 

func (o AutoLoginOutput) HideWeb() pulumi.BoolPtrOutput

Do not display application icon to users.

func (AutoLoginOutput) Label 

func (o AutoLoginOutput) Label() pulumi.StringOutput

The Application's display name. 

func (o AutoLoginOutput) Logo() pulumi.StringPtrOutput

Local file path to the logo. The file must be in PNG, JPG, or GIF format, and less than 1 MB in size.

func (AutoLoginOutput) LogoUrl 

func (o AutoLoginOutput) LogoUrl() pulumi.StringOutput

Direct link of application logo.

func (AutoLoginOutput) Name 

func (o AutoLoginOutput) Name() pulumi.StringOutput

Name assigned to the application by Okta.

func (AutoLoginOutput) PreconfiguredApp 

func (o AutoLoginOutput) PreconfiguredApp() pulumi.StringPtrOutput

Tells Okta to use an existing application in their application catalog, as opposed to a custom application.

func (AutoLoginOutput) RevealPassword 

func (o AutoLoginOutput) RevealPassword() pulumi.BoolPtrOutput

Allow user to reveal password. It can not be set to `true` if `credentialsScheme` is `"ADMIN_SETS_CREDENTIALS"`, `"SHARED_USERNAME_AND_PASSWORD"` or `"EXTERNAL_PASSWORD_SYNC"`.

func (AutoLoginOutput) SharedPassword 

func (o AutoLoginOutput) SharedPassword() pulumi.StringPtrOutput

Shared password, required for certain schemes

func (AutoLoginOutput) SharedUsername 

func (o AutoLoginOutput) SharedUsername() pulumi.StringPtrOutput

Shared username, required for certain schemes

func (AutoLoginOutput) SignOnMode 

func (o AutoLoginOutput) SignOnMode() pulumi.StringOutput

Sign-on mode of the application.

func (AutoLoginOutput) SignOnRedirectUrl 

func (o AutoLoginOutput) SignOnRedirectUrl() pulumi.StringPtrOutput

Redirect URL; if going to the login page URL redirects to another page, then enter that URL here

func (AutoLoginOutput) SignOnUrl 

func (o AutoLoginOutput) SignOnUrl() pulumi.StringPtrOutput

App login page URL

func (AutoLoginOutput) Status 

func (o AutoLoginOutput) Status() pulumi.StringPtrOutput

The status of the application, by default, it is `"ACTIVE"`.

func (AutoLoginOutput) ToAutoLoginOutput 

func (o AutoLoginOutput) ToAutoLoginOutput() AutoLoginOutput

func (AutoLoginOutput) ToAutoLoginOutputWithContext 

func (o AutoLoginOutput) ToAutoLoginOutputWithContext(ctx context.Context) AutoLoginOutput

func (AutoLoginOutput) UserNameTemplate 

func (o AutoLoginOutput) UserNameTemplate() pulumi.StringPtrOutput

Username template. Default: `"${source.login}"`

func (AutoLoginOutput) UserNameTemplatePushStatus 

func (o AutoLoginOutput) UserNameTemplatePushStatus() pulumi.StringPtrOutput

Push username on update. Valid values: `"PUSH"` and `"DONT_PUSH"`.

func (AutoLoginOutput) UserNameTemplateSuffix 

func (o AutoLoginOutput) UserNameTemplateSuffix() pulumi.StringPtrOutput

Username template suffix.

func (AutoLoginOutput) UserNameTemplateType 

func (o AutoLoginOutput) UserNameTemplateType() pulumi.StringPtrOutput

Username template type. Default: `"BUILT_IN"`.

type AutoLoginState 

type AutoLoginState struct {
	// Custom error page URL.
	AccessibilityErrorRedirectUrl pulumi.StringPtrInput
	// Custom login page for this application.
	AccessibilityLoginRedirectUrl pulumi.StringPtrInput
	// Enable self-service. By default, it is `false`.
	AccessibilitySelfService pulumi.BoolPtrInput
	// Application notes for admins.
	AdminNote pulumi.StringPtrInput
	// Displays specific appLinks for the app. The value for each application link should be boolean.
	AppLinksJson pulumi.StringPtrInput
	// Application settings in JSON format.
	AppSettingsJson pulumi.StringPtrInput
	// Display auto submit toolbar.
	AutoSubmitToolbar pulumi.BoolPtrInput
	// One of: `"EDIT_USERNAME_AND_PASSWORD"`, `"ADMIN_SETS_CREDENTIALS"`, `"EDIT_PASSWORD_ONLY"`, `"EXTERNAL_PASSWORD_SYNC"`, or `"SHARED_USERNAME_AND_PASSWORD"`.
	CredentialsScheme pulumi.StringPtrInput
	// Application notes for end users.
	EnduserNote pulumi.StringPtrInput
	// Do not display application icon on mobile app.
	HideIos pulumi.BoolPtrInput
	// Do not display application icon to users.
	HideWeb pulumi.BoolPtrInput
	// The Application's display name.
	Label pulumi.StringPtrInput
	Logo pulumi.StringPtrInput
	// Direct link of application logo.
	LogoUrl pulumi.StringPtrInput
	// Name assigned to the application by Okta.
	Name pulumi.StringPtrInput
	// Tells Okta to use an existing application in their application catalog, as opposed to a custom application.
	PreconfiguredApp pulumi.StringPtrInput
	// Allow user to reveal password. It can not be set to `true` if `credentialsScheme` is `"ADMIN_SETS_CREDENTIALS"`, `"SHARED_USERNAME_AND_PASSWORD"` or `"EXTERNAL_PASSWORD_SYNC"`.
	RevealPassword pulumi.BoolPtrInput
	// Shared password, required for certain schemes
	SharedPassword pulumi.StringPtrInput
	// Shared username, required for certain schemes
	SharedUsername pulumi.StringPtrInput
	// Sign-on mode of the application.
	SignOnMode pulumi.StringPtrInput
	// Redirect URL; if going to the login page URL redirects to another page, then enter that URL here
	SignOnRedirectUrl pulumi.StringPtrInput
	// App login page URL
	SignOnUrl pulumi.StringPtrInput
	// The status of the application, by default, it is `"ACTIVE"`.
	Status pulumi.StringPtrInput
	// Username template. Default: `"${source.login}"`
	UserNameTemplate pulumi.StringPtrInput
	// Push username on update. Valid values: `"PUSH"` and `"DONT_PUSH"`.
	UserNameTemplatePushStatus pulumi.StringPtrInput
	// Username template suffix.
	UserNameTemplateSuffix pulumi.StringPtrInput
	// Username template type. Default: `"BUILT_IN"`.
	UserNameTemplateType pulumi.StringPtrInput
}

func (AutoLoginState) ElementType 

func (AutoLoginState) ElementType() reflect.Type

type BasicAuth 

type BasicAuth struct {
	pulumi.CustomResourceState

	// Custom error page URL.
	AccessibilityErrorRedirectUrl pulumi.StringPtrOutput `pulumi:"accessibilityErrorRedirectUrl"`
	// Custom login page for this application.
	AccessibilityLoginRedirectUrl pulumi.StringPtrOutput `pulumi:"accessibilityLoginRedirectUrl"`
	// Enable self-service. By default, it is `false`.
	AccessibilitySelfService pulumi.BoolPtrOutput `pulumi:"accessibilitySelfService"`
	// Application notes for admins.
	AdminNote pulumi.StringPtrOutput `pulumi:"adminNote"`
	// Displays specific appLinks for the app. The value for each application link should be boolean.
	AppLinksJson pulumi.StringPtrOutput `pulumi:"appLinksJson"`
	// The URL of the authenticating site for this app.
	AuthUrl pulumi.StringOutput `pulumi:"authUrl"`
	// Display auto submit toolbar.
	AutoSubmitToolbar pulumi.BoolPtrOutput `pulumi:"autoSubmitToolbar"`
	// Application notes for end users.
	EnduserNote pulumi.StringPtrOutput `pulumi:"enduserNote"`
	// Do not display application icon on mobile app.
	HideIos pulumi.BoolPtrOutput `pulumi:"hideIos"`
	// Do not display application icon to users.
	HideWeb pulumi.BoolPtrOutput `pulumi:"hideWeb"`
	// The Application's display name.
	Label pulumi.StringOutput `pulumi:"label"`
	Logo pulumi.StringPtrOutput `pulumi:"logo"`
	// Direct link of application logo.
	LogoUrl pulumi.StringOutput `pulumi:"logoUrl"`
	// Name of the app.
	Name pulumi.StringOutput `pulumi:"name"`
	// Sign on mode of application.
	SignOnMode pulumi.StringOutput `pulumi:"signOnMode"`
	// Status of application. (`"ACTIVE"` or `"INACTIVE"`).
	Status pulumi.StringPtrOutput `pulumi:"status"`
	// The URL of the sign-in page for this app.
	Url pulumi.StringOutput `pulumi:"url"`
}

This resource allows you to create and configure a Basic Auth Application.

> During an apply if there is change in `status` the app will first be activated or deactivated in accordance with the `status` change. Then, all other arguments that changed will be applied.

## Example Usage

```go package main

import ( 

"github.com/pulumi/pulumi-okta/sdk/v4/go/okta/app"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"

) 

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := app.NewBasicAuth(ctx, "example", &app.BasicAuthArgs{
			AuthUrl: pulumi.String("https://example.com/auth.html"),
			Label:   pulumi.String("Example"),
			Url:     pulumi.String("https://example.com/login.html"),
		})
		if err != nil {
			return err
		}
		return nil
	})
}

```

## Import

A Basic Auth App can be imported via the Okta ID.

```sh 

$ pulumi import okta:app/basicAuth:BasicAuth example <app id>

```

func GetBasicAuth 

func GetBasicAuth(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *BasicAuthState, opts ...pulumi.ResourceOption) (*BasicAuth, error)

GetBasicAuth gets an existing BasicAuth resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewBasicAuth 

func NewBasicAuth(ctx *pulumi.Context,
	name string, args *BasicAuthArgs, opts ...pulumi.ResourceOption) (*BasicAuth, error)

NewBasicAuth registers a new resource with the given unique name, arguments, and options.

func (*BasicAuth) ElementType 

func (*BasicAuth) ElementType() reflect.Type

func (*BasicAuth) ToBasicAuthOutput 

func (i *BasicAuth) ToBasicAuthOutput() BasicAuthOutput

func (*BasicAuth) ToBasicAuthOutputWithContext 

func (i *BasicAuth) ToBasicAuthOutputWithContext(ctx context.Context) BasicAuthOutput

type BasicAuthArgs 

type BasicAuthArgs struct {
	// Custom error page URL.
	AccessibilityErrorRedirectUrl pulumi.StringPtrInput
	// Custom login page for this application.
	AccessibilityLoginRedirectUrl pulumi.StringPtrInput
	// Enable self-service. By default, it is `false`.
	AccessibilitySelfService pulumi.BoolPtrInput
	// Application notes for admins.
	AdminNote pulumi.StringPtrInput
	// Displays specific appLinks for the app. The value for each application link should be boolean.
	AppLinksJson pulumi.StringPtrInput
	// The URL of the authenticating site for this app.
	AuthUrl pulumi.StringInput
	// Display auto submit toolbar.
	AutoSubmitToolbar pulumi.BoolPtrInput
	// Application notes for end users.
	EnduserNote pulumi.StringPtrInput
	// Do not display application icon on mobile app.
	HideIos pulumi.BoolPtrInput
	// Do not display application icon to users.
	HideWeb pulumi.BoolPtrInput
	// The Application's display name.
	Label pulumi.StringInput
	Logo pulumi.StringPtrInput
	// Status of application. (`"ACTIVE"` or `"INACTIVE"`).
	Status pulumi.StringPtrInput
	// The URL of the sign-in page for this app.
	Url pulumi.StringInput
}

The set of arguments for constructing a BasicAuth resource.

func (BasicAuthArgs) ElementType 

func (BasicAuthArgs) ElementType() reflect.Type

type BasicAuthArray 

type BasicAuthArray []BasicAuthInput

func (BasicAuthArray) ElementType 

func (BasicAuthArray) ElementType() reflect.Type

func (BasicAuthArray) ToBasicAuthArrayOutput 

func (i BasicAuthArray) ToBasicAuthArrayOutput() BasicAuthArrayOutput

func (BasicAuthArray) ToBasicAuthArrayOutputWithContext 

func (i BasicAuthArray) ToBasicAuthArrayOutputWithContext(ctx context.Context) BasicAuthArrayOutput

type BasicAuthArrayInput 

type BasicAuthArrayInput interface {
	pulumi.Input

	ToBasicAuthArrayOutput() BasicAuthArrayOutput
	ToBasicAuthArrayOutputWithContext(context.Context) BasicAuthArrayOutput
}

BasicAuthArrayInput is an input type that accepts BasicAuthArray and BasicAuthArrayOutput values. You can construct a concrete instance of `BasicAuthArrayInput` via: 

BasicAuthArray{ BasicAuthArgs{...} }

type BasicAuthArrayOutput 

type BasicAuthArrayOutput struct{ *pulumi.OutputState }

func (BasicAuthArrayOutput) ElementType 

func (BasicAuthArrayOutput) ElementType() reflect.Type

func (BasicAuthArrayOutput) Index 

func (o BasicAuthArrayOutput) Index(i pulumi.IntInput) BasicAuthOutput

func (BasicAuthArrayOutput) ToBasicAuthArrayOutput 

func (o BasicAuthArrayOutput) ToBasicAuthArrayOutput() BasicAuthArrayOutput

func (BasicAuthArrayOutput) ToBasicAuthArrayOutputWithContext 

func (o BasicAuthArrayOutput) ToBasicAuthArrayOutputWithContext(ctx context.Context) BasicAuthArrayOutput

type BasicAuthInput 

type BasicAuthInput interface {
	pulumi.Input

	ToBasicAuthOutput() BasicAuthOutput
	ToBasicAuthOutputWithContext(ctx context.Context) BasicAuthOutput
}

type BasicAuthMap 

type BasicAuthMap map[string]BasicAuthInput

func (BasicAuthMap) ElementType 

func (BasicAuthMap) ElementType() reflect.Type

func (BasicAuthMap) ToBasicAuthMapOutput 

func (i BasicAuthMap) ToBasicAuthMapOutput() BasicAuthMapOutput

func (BasicAuthMap) ToBasicAuthMapOutputWithContext 

func (i BasicAuthMap) ToBasicAuthMapOutputWithContext(ctx context.Context) BasicAuthMapOutput

type BasicAuthMapInput 

type BasicAuthMapInput interface {
	pulumi.Input

	ToBasicAuthMapOutput() BasicAuthMapOutput
	ToBasicAuthMapOutputWithContext(context.Context) BasicAuthMapOutput
}

BasicAuthMapInput is an input type that accepts BasicAuthMap and BasicAuthMapOutput values. You can construct a concrete instance of `BasicAuthMapInput` via: 

BasicAuthMap{ "key": BasicAuthArgs{...} }

type BasicAuthMapOutput 

type BasicAuthMapOutput struct{ *pulumi.OutputState }

func (BasicAuthMapOutput) ElementType 

func (BasicAuthMapOutput) ElementType() reflect.Type

func (BasicAuthMapOutput) MapIndex 

func (o BasicAuthMapOutput) MapIndex(k pulumi.StringInput) BasicAuthOutput

func (BasicAuthMapOutput) ToBasicAuthMapOutput 

func (o BasicAuthMapOutput) ToBasicAuthMapOutput() BasicAuthMapOutput

func (BasicAuthMapOutput) ToBasicAuthMapOutputWithContext 

func (o BasicAuthMapOutput) ToBasicAuthMapOutputWithContext(ctx context.Context) BasicAuthMapOutput

type BasicAuthOutput 

type BasicAuthOutput struct{ *pulumi.OutputState }

func (BasicAuthOutput) AccessibilityErrorRedirectUrl 

func (o BasicAuthOutput) AccessibilityErrorRedirectUrl() pulumi.StringPtrOutput

Custom error page URL.

func (BasicAuthOutput) AccessibilityLoginRedirectUrl 

func (o BasicAuthOutput) AccessibilityLoginRedirectUrl() pulumi.StringPtrOutput

Custom login page for this application.

func (BasicAuthOutput) AccessibilitySelfService 

func (o BasicAuthOutput) AccessibilitySelfService() pulumi.BoolPtrOutput

Enable self-service. By default, it is `false`.

func (BasicAuthOutput) AdminNote 

func (o BasicAuthOutput) AdminNote() pulumi.StringPtrOutput

Application notes for admins.

func (BasicAuthOutput) AppLinksJson 

func (o BasicAuthOutput) AppLinksJson() pulumi.StringPtrOutput

Displays specific appLinks for the app. The value for each application link should be boolean.

func (BasicAuthOutput) AuthUrl 

func (o BasicAuthOutput) AuthUrl() pulumi.StringOutput

The URL of the authenticating site for this app.

func (BasicAuthOutput) AutoSubmitToolbar 

func (o BasicAuthOutput) AutoSubmitToolbar() pulumi.BoolPtrOutput

Display auto submit toolbar.

func (BasicAuthOutput) ElementType 

func (BasicAuthOutput) ElementType() reflect.Type

func (BasicAuthOutput) EnduserNote 

func (o BasicAuthOutput) EnduserNote() pulumi.StringPtrOutput

Application notes for end users.

func (BasicAuthOutput) HideIos 

func (o BasicAuthOutput) HideIos() pulumi.BoolPtrOutput

Do not display application icon on mobile app.

func (BasicAuthOutput) HideWeb 

func (o BasicAuthOutput) HideWeb() pulumi.BoolPtrOutput

Do not display application icon to users.

func (BasicAuthOutput) Label 

func (o BasicAuthOutput) Label() pulumi.StringOutput

The Application's display name. 

func (o BasicAuthOutput) Logo() pulumi.StringPtrOutput

Local path to the logo. The file must be in PNG, JPG, or GIF format, and less than 1 MB in size.

func (BasicAuthOutput) LogoUrl 

func (o BasicAuthOutput) LogoUrl() pulumi.StringOutput

Direct link of application logo.

func (BasicAuthOutput) Name 

func (o BasicAuthOutput) Name() pulumi.StringOutput

Name of the app.

func (BasicAuthOutput) SignOnMode 

func (o BasicAuthOutput) SignOnMode() pulumi.StringOutput

Sign on mode of application.

func (BasicAuthOutput) Status 

func (o BasicAuthOutput) Status() pulumi.StringPtrOutput

Status of application. (`"ACTIVE"` or `"INACTIVE"`).

func (BasicAuthOutput) ToBasicAuthOutput 

func (o BasicAuthOutput) ToBasicAuthOutput() BasicAuthOutput

func (BasicAuthOutput) ToBasicAuthOutputWithContext 

func (o BasicAuthOutput) ToBasicAuthOutputWithContext(ctx context.Context) BasicAuthOutput

func (BasicAuthOutput) Url 

func (o BasicAuthOutput) Url() pulumi.StringOutput

The URL of the sign-in page for this app.

type BasicAuthState 

type BasicAuthState struct {
	// Custom error page URL.
	AccessibilityErrorRedirectUrl pulumi.StringPtrInput
	// Custom login page for this application.
	AccessibilityLoginRedirectUrl pulumi.StringPtrInput
	// Enable self-service. By default, it is `false`.
	AccessibilitySelfService pulumi.BoolPtrInput
	// Application notes for admins.
	AdminNote pulumi.StringPtrInput
	// Displays specific appLinks for the app. The value for each application link should be boolean.
	AppLinksJson pulumi.StringPtrInput
	// The URL of the authenticating site for this app.
	AuthUrl pulumi.StringPtrInput
	// Display auto submit toolbar.
	AutoSubmitToolbar pulumi.BoolPtrInput
	// Application notes for end users.
	EnduserNote pulumi.StringPtrInput
	// Do not display application icon on mobile app.
	HideIos pulumi.BoolPtrInput
	// Do not display application icon to users.
	HideWeb pulumi.BoolPtrInput
	// The Application's display name.
	Label pulumi.StringPtrInput
	Logo pulumi.StringPtrInput
	// Direct link of application logo.
	LogoUrl pulumi.StringPtrInput
	// Name of the app.
	Name pulumi.StringPtrInput
	// Sign on mode of application.
	SignOnMode pulumi.StringPtrInput
	// Status of application. (`"ACTIVE"` or `"INACTIVE"`).
	Status pulumi.StringPtrInput
	// The URL of the sign-in page for this app.
	Url pulumi.StringPtrInput
}

func (BasicAuthState) ElementType 

func (BasicAuthState) ElementType() reflect.Type

type Bookmark 

type Bookmark struct {
	pulumi.CustomResourceState

	// Custom error page URL.
	AccessibilityErrorRedirectUrl pulumi.StringPtrOutput `pulumi:"accessibilityErrorRedirectUrl"`
	// Custom login page for this application.
	AccessibilityLoginRedirectUrl pulumi.StringPtrOutput `pulumi:"accessibilityLoginRedirectUrl"`
	// Enable self-service. By default, it is `false`.
	AccessibilitySelfService pulumi.BoolPtrOutput `pulumi:"accessibilitySelfService"`
	// Application notes for admins.
	AdminNote pulumi.StringPtrOutput `pulumi:"adminNote"`
	// Displays specific appLinks for the app. The value for each application link should be boolean.
	AppLinksJson pulumi.StringPtrOutput `pulumi:"appLinksJson"`
	// The ID of the associated `appSignonPolicy`. If this property is removed from the application the `default` sign-on-policy will be associated with this application.
	AuthenticationPolicy pulumi.StringPtrOutput `pulumi:"authenticationPolicy"`
	// Display auto submit toolbar.
	AutoSubmitToolbar pulumi.BoolPtrOutput `pulumi:"autoSubmitToolbar"`
	// Application notes for end users.
	EnduserNote pulumi.StringPtrOutput `pulumi:"enduserNote"`
	// Do not display application icon on mobile app.
	HideIos pulumi.BoolPtrOutput `pulumi:"hideIos"`
	// Do not display application icon to users.
	HideWeb pulumi.BoolPtrOutput `pulumi:"hideWeb"`
	// The Application's display name.
	Label pulumi.StringOutput `pulumi:"label"`
	Logo pulumi.StringPtrOutput `pulumi:"logo"`
	// Direct link of application logo.
	LogoUrl pulumi.StringOutput `pulumi:"logoUrl"`
	// Name of the app.
	Name pulumi.StringOutput `pulumi:"name"`
	// Would you like Okta to add an integration for this app?
	RequestIntegration pulumi.BoolPtrOutput `pulumi:"requestIntegration"`
	// Sign on mode of application.
	SignOnMode pulumi.StringOutput `pulumi:"signOnMode"`
	// Status of application. (`"ACTIVE"` or `"INACTIVE"`).
	Status pulumi.StringPtrOutput `pulumi:"status"`
	// The URL of the bookmark.
	Url pulumi.StringOutput `pulumi:"url"`
}

This resource allows you to create and configure a Bookmark Application.

> During an apply if there is change in `status` the app will first be activated or deactivated in accordance with the `status` change. Then, all other arguments that changed will be applied.

## Example Usage

```go package main

import ( 

"github.com/pulumi/pulumi-okta/sdk/v4/go/okta/app"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"

) 

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := app.NewBookmark(ctx, "example", &app.BookmarkArgs{
			Label: pulumi.String("Example"),
			Url:   pulumi.String("https://example.com"),
		})
		if err != nil {
			return err
		}
		return nil
	})
}

```

## Import

A Bookmark App can be imported via the Okta ID.

```sh 

$ pulumi import okta:app/bookmark:Bookmark example <app id>

```

func GetBookmark 

func GetBookmark(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *BookmarkState, opts ...pulumi.ResourceOption) (*Bookmark, error)

GetBookmark gets an existing Bookmark resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewBookmark 

func NewBookmark(ctx *pulumi.Context,
	name string, args *BookmarkArgs, opts ...pulumi.ResourceOption) (*Bookmark, error)

NewBookmark registers a new resource with the given unique name, arguments, and options.

func (*Bookmark) ElementType 

func (*Bookmark) ElementType() reflect.Type

func (*Bookmark) ToBookmarkOutput 

func (i *Bookmark) ToBookmarkOutput() BookmarkOutput

func (*Bookmark) ToBookmarkOutputWithContext 

func (i *Bookmark) ToBookmarkOutputWithContext(ctx context.Context) BookmarkOutput

type BookmarkArgs 

type BookmarkArgs struct {
	// Custom error page URL.
	AccessibilityErrorRedirectUrl pulumi.StringPtrInput
	// Custom login page for this application.
	AccessibilityLoginRedirectUrl pulumi.StringPtrInput
	// Enable self-service. By default, it is `false`.
	AccessibilitySelfService pulumi.BoolPtrInput
	// Application notes for admins.
	AdminNote pulumi.StringPtrInput
	// Displays specific appLinks for the app. The value for each application link should be boolean.
	AppLinksJson pulumi.StringPtrInput
	// The ID of the associated `appSignonPolicy`. If this property is removed from the application the `default` sign-on-policy will be associated with this application.
	AuthenticationPolicy pulumi.StringPtrInput
	// Display auto submit toolbar.
	AutoSubmitToolbar pulumi.BoolPtrInput
	// Application notes for end users.
	EnduserNote pulumi.StringPtrInput
	// Do not display application icon on mobile app.
	HideIos pulumi.BoolPtrInput
	// Do not display application icon to users.
	HideWeb pulumi.BoolPtrInput
	// The Application's display name.
	Label pulumi.StringInput
	Logo pulumi.StringPtrInput
	// Would you like Okta to add an integration for this app?
	RequestIntegration pulumi.BoolPtrInput
	// Status of application. (`"ACTIVE"` or `"INACTIVE"`).
	Status pulumi.StringPtrInput
	// The URL of the bookmark.
	Url pulumi.StringInput
}

The set of arguments for constructing a Bookmark resource.

func (BookmarkArgs) ElementType 

func (BookmarkArgs) ElementType() reflect.Type

type BookmarkArray 

type BookmarkArray []BookmarkInput

func (BookmarkArray) ElementType 

func (BookmarkArray) ElementType() reflect.Type

func (BookmarkArray) ToBookmarkArrayOutput 

func (i BookmarkArray) ToBookmarkArrayOutput() BookmarkArrayOutput

func (BookmarkArray) ToBookmarkArrayOutputWithContext 

func (i BookmarkArray) ToBookmarkArrayOutputWithContext(ctx context.Context) BookmarkArrayOutput

type BookmarkArrayInput 

type BookmarkArrayInput interface {
	pulumi.Input

	ToBookmarkArrayOutput() BookmarkArrayOutput
	ToBookmarkArrayOutputWithContext(context.Context) BookmarkArrayOutput
}

BookmarkArrayInput is an input type that accepts BookmarkArray and BookmarkArrayOutput values. You can construct a concrete instance of `BookmarkArrayInput` via: 

BookmarkArray{ BookmarkArgs{...} }

type BookmarkArrayOutput 

type BookmarkArrayOutput struct{ *pulumi.OutputState }

func (BookmarkArrayOutput) ElementType 

func (BookmarkArrayOutput) ElementType() reflect.Type

func (BookmarkArrayOutput) Index 

func (o BookmarkArrayOutput) Index(i pulumi.IntInput) BookmarkOutput

func (BookmarkArrayOutput) ToBookmarkArrayOutput 

func (o BookmarkArrayOutput) ToBookmarkArrayOutput() BookmarkArrayOutput

func (BookmarkArrayOutput) ToBookmarkArrayOutputWithContext 

func (o BookmarkArrayOutput) ToBookmarkArrayOutputWithContext(ctx context.Context) BookmarkArrayOutput

type BookmarkInput 

type BookmarkInput interface {
	pulumi.Input

	ToBookmarkOutput() BookmarkOutput
	ToBookmarkOutputWithContext(ctx context.Context) BookmarkOutput
}

type BookmarkMap 

type BookmarkMap map[string]BookmarkInput

func (BookmarkMap) ElementType 

func (BookmarkMap) ElementType() reflect.Type

func (BookmarkMap) ToBookmarkMapOutput 

func (i BookmarkMap) ToBookmarkMapOutput() BookmarkMapOutput

func (BookmarkMap) ToBookmarkMapOutputWithContext 

func (i BookmarkMap) ToBookmarkMapOutputWithContext(ctx context.Context) BookmarkMapOutput

type BookmarkMapInput 

type BookmarkMapInput interface {
	pulumi.Input

	ToBookmarkMapOutput() BookmarkMapOutput
	ToBookmarkMapOutputWithContext(context.Context) BookmarkMapOutput
}

BookmarkMapInput is an input type that accepts BookmarkMap and BookmarkMapOutput values. You can construct a concrete instance of `BookmarkMapInput` via: 

BookmarkMap{ "key": BookmarkArgs{...} }

type BookmarkMapOutput 

type BookmarkMapOutput struct{ *pulumi.OutputState }

func (BookmarkMapOutput) ElementType 

func (BookmarkMapOutput) ElementType() reflect.Type

func (BookmarkMapOutput) MapIndex 

func (o BookmarkMapOutput) MapIndex(k pulumi.StringInput) BookmarkOutput

func (BookmarkMapOutput) ToBookmarkMapOutput 

func (o BookmarkMapOutput) ToBookmarkMapOutput() BookmarkMapOutput

func (BookmarkMapOutput) ToBookmarkMapOutputWithContext 

func (o BookmarkMapOutput) ToBookmarkMapOutputWithContext(ctx context.Context) BookmarkMapOutput

type BookmarkOutput 

type BookmarkOutput struct{ *pulumi.OutputState }

func (BookmarkOutput) AccessibilityErrorRedirectUrl 

func (o BookmarkOutput) AccessibilityErrorRedirectUrl() pulumi.StringPtrOutput

Custom error page URL.

func (BookmarkOutput) AccessibilityLoginRedirectUrl 

func (o BookmarkOutput) AccessibilityLoginRedirectUrl() pulumi.StringPtrOutput

Custom login page for this application.

func (BookmarkOutput) AccessibilitySelfService 

func (o BookmarkOutput) AccessibilitySelfService() pulumi.BoolPtrOutput

Enable self-service. By default, it is `false`.

func (BookmarkOutput) AdminNote 

func (o BookmarkOutput) AdminNote() pulumi.StringPtrOutput

Application notes for admins.

func (BookmarkOutput) AppLinksJson 

func (o BookmarkOutput) AppLinksJson() pulumi.StringPtrOutput

Displays specific appLinks for the app. The value for each application link should be boolean.

func (BookmarkOutput) AuthenticationPolicy 

func (o BookmarkOutput) AuthenticationPolicy() pulumi.StringPtrOutput

The ID of the associated `appSignonPolicy`. If this property is removed from the application the `default` sign-on-policy will be associated with this application.

func (BookmarkOutput) AutoSubmitToolbar 

func (o BookmarkOutput) AutoSubmitToolbar() pulumi.BoolPtrOutput

Display auto submit toolbar.

func (BookmarkOutput) ElementType 

func (BookmarkOutput) ElementType() reflect.Type

func (BookmarkOutput) EnduserNote 

func (o BookmarkOutput) EnduserNote() pulumi.StringPtrOutput

Application notes for end users.

func (BookmarkOutput) HideIos 

func (o BookmarkOutput) HideIos() pulumi.BoolPtrOutput

Do not display application icon on mobile app.

func (BookmarkOutput) HideWeb 

func (o BookmarkOutput) HideWeb() pulumi.BoolPtrOutput

Do not display application icon to users.

func (BookmarkOutput) Label 

func (o BookmarkOutput) Label() pulumi.StringOutput

The Application's display name. 

func (o BookmarkOutput) Logo() pulumi.StringPtrOutput

Local file path to the logo. The file must be in PNG, JPG, or GIF format, and less than 1 MB in size.

func (BookmarkOutput) LogoUrl 

func (o BookmarkOutput) LogoUrl() pulumi.StringOutput

Direct link of application logo.

func (BookmarkOutput) Name 

func (o BookmarkOutput) Name() pulumi.StringOutput

Name of the app.

func (BookmarkOutput) RequestIntegration 

func (o BookmarkOutput) RequestIntegration() pulumi.BoolPtrOutput

Would you like Okta to add an integration for this app?

func (BookmarkOutput) SignOnMode 

func (o BookmarkOutput) SignOnMode() pulumi.StringOutput

Sign on mode of application.

func (BookmarkOutput) Status 

func (o BookmarkOutput) Status() pulumi.StringPtrOutput

Status of application. (`"ACTIVE"` or `"INACTIVE"`).

func (BookmarkOutput) ToBookmarkOutput 

func (o BookmarkOutput) ToBookmarkOutput() BookmarkOutput

func (BookmarkOutput) ToBookmarkOutputWithContext 

func (o BookmarkOutput) ToBookmarkOutputWithContext(ctx context.Context) BookmarkOutput

func (BookmarkOutput) Url 

func (o BookmarkOutput) Url() pulumi.StringOutput

The URL of the bookmark.

type BookmarkState 

type BookmarkState struct {
	// Custom error page URL.
	AccessibilityErrorRedirectUrl pulumi.StringPtrInput
	// Custom login page for this application.
	AccessibilityLoginRedirectUrl pulumi.StringPtrInput
	// Enable self-service. By default, it is `false`.
	AccessibilitySelfService pulumi.BoolPtrInput
	// Application notes for admins.
	AdminNote pulumi.StringPtrInput
	// Displays specific appLinks for the app. The value for each application link should be boolean.
	AppLinksJson pulumi.StringPtrInput
	// The ID of the associated `appSignonPolicy`. If this property is removed from the application the `default` sign-on-policy will be associated with this application.
	AuthenticationPolicy pulumi.StringPtrInput
	// Display auto submit toolbar.
	AutoSubmitToolbar pulumi.BoolPtrInput
	// Application notes for end users.
	EnduserNote pulumi.StringPtrInput
	// Do not display application icon on mobile app.
	HideIos pulumi.BoolPtrInput
	// Do not display application icon to users.
	HideWeb pulumi.BoolPtrInput
	// The Application's display name.
	Label pulumi.StringPtrInput
	Logo pulumi.StringPtrInput
	// Direct link of application logo.
	LogoUrl pulumi.StringPtrInput
	// Name of the app.
	Name pulumi.StringPtrInput
	// Would you like Okta to add an integration for this app?
	RequestIntegration pulumi.BoolPtrInput
	// Sign on mode of application.
	SignOnMode pulumi.StringPtrInput
	// Status of application. (`"ACTIVE"` or `"INACTIVE"`).
	Status pulumi.StringPtrInput
	// The URL of the bookmark.
	Url pulumi.StringPtrInput
}

func (BookmarkState) ElementType 

func (BookmarkState) ElementType() reflect.Type

type GetAppArgs 

type GetAppArgs struct {
	// tells the provider to query for only `ACTIVE` applications.
	ActiveOnly *bool `pulumi:"activeOnly"`
	// `id` of application to retrieve, conflicts with `label` and `labelPrefix`.
	Id *string `pulumi:"id"`
	// The label of the app to retrieve, conflicts with `labelPrefix` and `id`. Label uses
	// the `?q=<label>` query parameter exposed by Okta's API. It should be noted that at this time the API searches both `name`
	// and `label` with a [starts with query](https://developer.okta.com/docs/reference/api/apps/#list-applications) which
	// may result in multiple apps being returned for the query. The data source further inspects the lables looking for
	// an exact match.
	Label *string `pulumi:"label"`
	// Label prefix of the app to retrieve, conflicts with `label` and `id`. This will tell the
	// provider to do a `starts with` query as opposed to an `equals` query.
	LabelPrefix *string `pulumi:"labelPrefix"`
	// Deprecated: Because groups has been removed, this attribute is a no op and will be removed
	SkipGroups *bool `pulumi:"skipGroups"`
	// Deprecated: Because users has been removed, this attribute is a no op and will be removed
	SkipUsers *bool `pulumi:"skipUsers"`
}

A collection of arguments for invoking getApp.

type GetAppOutputArgs 

type GetAppOutputArgs struct {
	// tells the provider to query for only `ACTIVE` applications.
	ActiveOnly pulumi.BoolPtrInput `pulumi:"activeOnly"`
	// `id` of application to retrieve, conflicts with `label` and `labelPrefix`.
	Id pulumi.StringPtrInput `pulumi:"id"`
	// The label of the app to retrieve, conflicts with `labelPrefix` and `id`. Label uses
	// the `?q=<label>` query parameter exposed by Okta's API. It should be noted that at this time the API searches both `name`
	// and `label` with a [starts with query](https://developer.okta.com/docs/reference/api/apps/#list-applications) which
	// may result in multiple apps being returned for the query. The data source further inspects the lables looking for
	// an exact match.
	Label pulumi.StringPtrInput `pulumi:"label"`
	// Label prefix of the app to retrieve, conflicts with `label` and `id`. This will tell the
	// provider to do a `starts with` query as opposed to an `equals` query.
	LabelPrefix pulumi.StringPtrInput `pulumi:"labelPrefix"`
	// Deprecated: Because groups has been removed, this attribute is a no op and will be removed
	SkipGroups pulumi.BoolPtrInput `pulumi:"skipGroups"`
	// Deprecated: Because users has been removed, this attribute is a no op and will be removed
	SkipUsers pulumi.BoolPtrInput `pulumi:"skipUsers"`
}

A collection of arguments for invoking getApp.

func (GetAppOutputArgs) ElementType 

func (GetAppOutputArgs) ElementType() reflect.Type

type GetAppResult 

type GetAppResult struct {
	ActiveOnly *bool `pulumi:"activeOnly"`
	// Deprecated: The `groups` field is now deprecated for the data source `okta_app`, please replace all uses of this with: `okta_app_group_assignments`
	Groups []string `pulumi:"groups"`
	// Application ID.
	Id *string `pulumi:"id"`
	// Application label.
	Label       *string `pulumi:"label"`
	LabelPrefix *string `pulumi:"labelPrefix"`
	// Generic JSON containing discoverable resources related to the app.
	Links string `pulumi:"links"`
	// Application name.
	Name string `pulumi:"name"`
	// Deprecated: Because groups has been removed, this attribute is a no op and will be removed
	SkipGroups *bool `pulumi:"skipGroups"`
	// Deprecated: Because users has been removed, this attribute is a no op and will be removed
	SkipUsers *bool `pulumi:"skipUsers"`
	// Application status.
	Status string `pulumi:"status"`
	// Deprecated: The `users` field is now deprecated for the data source `okta_app`, please replace all uses of this with: `okta_app_user_assignments`
	Users []string `pulumi:"users"`
}

A collection of values returned by getApp.

func GetApp 

func GetApp(ctx *pulumi.Context, args *GetAppArgs, opts ...pulumi.InvokeOption) (*GetAppResult, error)

Use this data source to retrieve an application from Okta.

## Example Usage

```go package main

import ( 

"github.com/pulumi/pulumi-okta/sdk/v4/go/okta/app"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"

) 

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := app.GetApp(ctx, &app.GetAppArgs{
			Label: pulumi.StringRef("Example App"),
		}, nil)
		if err != nil {
			return err
		}
		return nil
	})
}

```

type GetAppResultOutput 

type GetAppResultOutput struct{ *pulumi.OutputState }

A collection of values returned by getApp.

func GetAppOutput 

func GetAppOutput(ctx *pulumi.Context, args GetAppOutputArgs, opts ...pulumi.InvokeOption) GetAppResultOutput

func (GetAppResultOutput) ActiveOnly 

func (o GetAppResultOutput) ActiveOnly() pulumi.BoolPtrOutput

func (GetAppResultOutput) ElementType 

func (GetAppResultOutput) ElementType() reflect.Type

func (GetAppResultOutput) Groups deprecated 

func (o GetAppResultOutput) Groups() pulumi.StringArrayOutput

Deprecated: The `groups` field is now deprecated for the data source `okta_app`, please replace all uses of this with: `okta_app_group_assignments`

func (GetAppResultOutput) Id 

func (o GetAppResultOutput) Id() pulumi.StringPtrOutput

Application ID.

func (GetAppResultOutput) Label 

func (o GetAppResultOutput) Label() pulumi.StringPtrOutput

Application label.

func (GetAppResultOutput) LabelPrefix 

func (o GetAppResultOutput) LabelPrefix() pulumi.StringPtrOutput
func (o GetAppResultOutput) Links() pulumi.StringOutput

Generic JSON containing discoverable resources related to the app.

func (GetAppResultOutput) Name 

func (o GetAppResultOutput) Name() pulumi.StringOutput

Application name.

func (GetAppResultOutput) SkipGroups deprecated added in v4.0.2 

func (o GetAppResultOutput) SkipGroups() pulumi.BoolPtrOutput

Deprecated: Because groups has been removed, this attribute is a no op and will be removed

func (GetAppResultOutput) SkipUsers deprecated added in v4.0.2 

func (o GetAppResultOutput) SkipUsers() pulumi.BoolPtrOutput

Deprecated: Because users has been removed, this attribute is a no op and will be removed

func (GetAppResultOutput) Status 

func (o GetAppResultOutput) Status() pulumi.StringOutput

Application status.

func (GetAppResultOutput) ToGetAppResultOutput 

func (o GetAppResultOutput) ToGetAppResultOutput() GetAppResultOutput

func (GetAppResultOutput) ToGetAppResultOutputWithContext 

func (o GetAppResultOutput) ToGetAppResultOutputWithContext(ctx context.Context) GetAppResultOutput

func (GetAppResultOutput) Users deprecated 

func (o GetAppResultOutput) Users() pulumi.StringArrayOutput

Deprecated: The `users` field is now deprecated for the data source `okta_app`, please replace all uses of this with: `okta_app_user_assignments`

type GetMetadataSamlArgs 

type GetMetadataSamlArgs struct {
	// The application ID.
	AppId string `pulumi:"appId"`
	// Certificate Key ID.
	KeyId *string `pulumi:"keyId"`
}

A collection of arguments for invoking getMetadataSaml.

type GetMetadataSamlOutputArgs 

type GetMetadataSamlOutputArgs struct {
	// The application ID.
	AppId pulumi.StringInput `pulumi:"appId"`
	// Certificate Key ID.
	KeyId pulumi.StringPtrInput `pulumi:"keyId"`
}

A collection of arguments for invoking getMetadataSaml.

func (GetMetadataSamlOutputArgs) ElementType 

func (GetMetadataSamlOutputArgs) ElementType() reflect.Type

type GetMetadataSamlResult 

type GetMetadataSamlResult struct {
	AppId string `pulumi:"appId"`
	// public certificate from application metadata.
	Certificate string `pulumi:"certificate"`
	// Entity URL for instance `https://www.okta.com/saml2/service-provider/sposcfdmlybtwkdcgtuf`.
	EntityId string `pulumi:"entityId"`
	// urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Post location from the SAML metadata.
	HttpPostBinding string `pulumi:"httpPostBinding"`
	// urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect location from the SAML metadata.
	HttpRedirectBinding string `pulumi:"httpRedirectBinding"`
	// The provider-assigned unique ID for this managed resource.
	Id    string  `pulumi:"id"`
	KeyId *string `pulumi:"keyId"`
	// raw metadata of application.
	Metadata string `pulumi:"metadata"`
	// Whether authn requests are signed.
	WantAuthnRequestsSigned bool `pulumi:"wantAuthnRequestsSigned"`
}

A collection of values returned by getMetadataSaml.

func GetMetadataSaml 

func GetMetadataSaml(ctx *pulumi.Context, args *GetMetadataSamlArgs, opts ...pulumi.InvokeOption) (*GetMetadataSamlResult, error)

Use this data source to retrieve the metadata for SAML application from Okta.

## Example Usage

```go package main

import ( 

"github.com/pulumi/pulumi-okta/sdk/v4/go/okta/app"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"

) 

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := app.GetMetadataSaml(ctx, &app.GetMetadataSamlArgs{
			AppId: "<app id>",
			KeyId: pulumi.StringRef("<cert key id>"),
		}, nil)
		if err != nil {
			return err
		}
		return nil
	})
}

```

type GetMetadataSamlResultOutput 

type GetMetadataSamlResultOutput struct{ *pulumi.OutputState }

A collection of values returned by getMetadataSaml.

func GetMetadataSamlOutput 

func GetMetadataSamlOutput(ctx *pulumi.Context, args GetMetadataSamlOutputArgs, opts ...pulumi.InvokeOption) GetMetadataSamlResultOutput

func (GetMetadataSamlResultOutput) AppId 

func (o GetMetadataSamlResultOutput) AppId() pulumi.StringOutput

func (GetMetadataSamlResultOutput) Certificate 

func (o GetMetadataSamlResultOutput) Certificate() pulumi.StringOutput

public certificate from application metadata.

func (GetMetadataSamlResultOutput) ElementType 

func (GetMetadataSamlResultOutput) ElementType() reflect.Type

func (GetMetadataSamlResultOutput) EntityId 

func (o GetMetadataSamlResultOutput) EntityId() pulumi.StringOutput

Entity URL for instance `https://www.okta.com/saml2/service-provider/sposcfdmlybtwkdcgtuf`.

func (GetMetadataSamlResultOutput) HttpPostBinding 

func (o GetMetadataSamlResultOutput) HttpPostBinding() pulumi.StringOutput

urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Post location from the SAML metadata.

func (GetMetadataSamlResultOutput) HttpRedirectBinding 

func (o GetMetadataSamlResultOutput) HttpRedirectBinding() pulumi.StringOutput

urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect location from the SAML metadata.

func (GetMetadataSamlResultOutput) Id 

func (o GetMetadataSamlResultOutput) Id() pulumi.StringOutput

The provider-assigned unique ID for this managed resource.

func (GetMetadataSamlResultOutput) KeyId 

func (o GetMetadataSamlResultOutput) KeyId() pulumi.StringPtrOutput

func (GetMetadataSamlResultOutput) Metadata 

func (o GetMetadataSamlResultOutput) Metadata() pulumi.StringOutput

raw metadata of application.

func (GetMetadataSamlResultOutput) ToGetMetadataSamlResultOutput 

func (o GetMetadataSamlResultOutput) ToGetMetadataSamlResultOutput() GetMetadataSamlResultOutput

func (GetMetadataSamlResultOutput) ToGetMetadataSamlResultOutputWithContext 

func (o GetMetadataSamlResultOutput) ToGetMetadataSamlResultOutputWithContext(ctx context.Context) GetMetadataSamlResultOutput

func (GetMetadataSamlResultOutput) WantAuthnRequestsSigned 

func (o GetMetadataSamlResultOutput) WantAuthnRequestsSigned() pulumi.BoolOutput

Whether authn requests are signed.

type GetOauthArgs 

type GetOauthArgs struct {
	// tells the provider to query for only `ACTIVE` applications.
	ActiveOnly *bool `pulumi:"activeOnly"`
	// `id` of application to retrieve, conflicts with `label` and `labelPrefix`.
	Id *string `pulumi:"id"`
	// The label of the app to retrieve, conflicts with
	// `labelPrefix` and `id`. Label uses the `?q=<label>` query parameter exposed by
	// Okta's List Apps API. The API will search both `name` and `label` using that
	// query. Therefore similarily named and labeled apps may be returned in the query
	// and have the unitended result of associating the wrong app with this data
	// source. See:
	// https://developer.okta.com/docs/reference/api/apps/#list-applications
	Label *string `pulumi:"label"`
	// Label prefix of the app to retrieve, conflicts with `label` and `id`. This will tell the
	// provider to do a `starts with` query as opposed to an `equals` query.
	LabelPrefix *string `pulumi:"labelPrefix"`
	// Deprecated: Because groups has been removed, this attribute is a no op and will be removed
	SkipGroups *bool `pulumi:"skipGroups"`
	// Deprecated: Because users has been removed, this attribute is a no op and will be removed
	SkipUsers *bool `pulumi:"skipUsers"`
}

A collection of arguments for invoking getOauth.

type GetOauthOutputArgs 

type GetOauthOutputArgs struct {
	// tells the provider to query for only `ACTIVE` applications.
	ActiveOnly pulumi.BoolPtrInput `pulumi:"activeOnly"`
	// `id` of application to retrieve, conflicts with `label` and `labelPrefix`.
	Id pulumi.StringPtrInput `pulumi:"id"`
	// The label of the app to retrieve, conflicts with
	// `labelPrefix` and `id`. Label uses the `?q=<label>` query parameter exposed by
	// Okta's List Apps API. The API will search both `name` and `label` using that
	// query. Therefore similarily named and labeled apps may be returned in the query
	// and have the unitended result of associating the wrong app with this data
	// source. See:
	// https://developer.okta.com/docs/reference/api/apps/#list-applications
	Label pulumi.StringPtrInput `pulumi:"label"`
	// Label prefix of the app to retrieve, conflicts with `label` and `id`. This will tell the
	// provider to do a `starts with` query as opposed to an `equals` query.
	LabelPrefix pulumi.StringPtrInput `pulumi:"labelPrefix"`
	// Deprecated: Because groups has been removed, this attribute is a no op and will be removed
	SkipGroups pulumi.BoolPtrInput `pulumi:"skipGroups"`
	// Deprecated: Because users has been removed, this attribute is a no op and will be removed
	SkipUsers pulumi.BoolPtrInput `pulumi:"skipUsers"`
}

A collection of arguments for invoking getOauth.

func (GetOauthOutputArgs) ElementType 

func (GetOauthOutputArgs) ElementType() reflect.Type

type GetOauthResult 

type GetOauthResult struct {
	ActiveOnly *bool `pulumi:"activeOnly"`
	// Display auto submit toolbar.
	AutoSubmitToolbar bool `pulumi:"autoSubmitToolbar"`
	// OAuth client ID. If set during creation, app is created with this id.
	ClientId string `pulumi:"clientId"`
	// The latest active client secret of the application. See: https://developer.okta.com/docs/reference/api/apps/#oauth-credential-object
	ClientSecret string `pulumi:"clientSecret"`
	// URI to a web page providing information about the client.
	ClientUri string `pulumi:"clientUri"`
	// List of OAuth 2.0 grant types.
	GrantTypes []string `pulumi:"grantTypes"`
	// Do not display application icon on mobile app.
	HideIos bool `pulumi:"hideIos"`
	// Do not display application icon to users.
	HideWeb bool `pulumi:"hideWeb"`
	// ID of application.
	Id *string `pulumi:"id"`
	// Label of application.
	Label       *string `pulumi:"label"`
	LabelPrefix *string `pulumi:"labelPrefix"`
	// generic JSON containing discoverable resources related to the app
	Links string `pulumi:"links"`
	// The type of Idp-Initiated login that the client supports, if any.
	LoginMode string `pulumi:"loginMode"`
	// List of scopes to use for the request.
	LoginScopes []string `pulumi:"loginScopes"`
	// URI that initiates login.
	LoginUri string `pulumi:"loginUri"`
	// URI that references a logo for the client.
	LogoUri string `pulumi:"logoUri"`
	// Name of application.
	Name string `pulumi:"name"`
	// URI to web page providing client policy document.
	PolicyUri string `pulumi:"policyUri"`
	// List of URIs for redirection after logout.
	PostLogoutRedirectUris []string `pulumi:"postLogoutRedirectUris"`
	// List of URIs for use in the redirect-based flow.
	RedirectUris []string `pulumi:"redirectUris"`
	// List of OAuth 2.0 response type strings.
	ResponseTypes []string `pulumi:"responseTypes"`
	// Deprecated: Because groups has been removed, this attribute is a no op and will be removed
	SkipGroups *bool `pulumi:"skipGroups"`
	// Deprecated: Because users has been removed, this attribute is a no op and will be removed
	SkipUsers *bool `pulumi:"skipUsers"`
	// Status of application.
	Status string `pulumi:"status"`
	// The type of OAuth application.
	Type             string `pulumi:"type"`
	WildcardRedirect string `pulumi:"wildcardRedirect"`
}

A collection of values returned by getOauth.

func GetOauth 

func GetOauth(ctx *pulumi.Context, args *GetOauthArgs, opts ...pulumi.InvokeOption) (*GetOauthResult, error)

Use this data source to retrieve an OIDC application from Okta.

## Example Usage

```go package main

import ( 

"github.com/pulumi/pulumi-okta/sdk/v4/go/okta/app"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"

) 

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := app.GetOauth(ctx, &app.GetOauthArgs{
			Label: pulumi.StringRef("Example App"),
		}, nil)
		if err != nil {
			return err
		}
		return nil
	})
}

```

type GetOauthResultOutput 

type GetOauthResultOutput struct{ *pulumi.OutputState }

A collection of values returned by getOauth.

func GetOauthOutput 

func GetOauthOutput(ctx *pulumi.Context, args GetOauthOutputArgs, opts ...pulumi.InvokeOption) GetOauthResultOutput

func (GetOauthResultOutput) ActiveOnly 

func (o GetOauthResultOutput) ActiveOnly() pulumi.BoolPtrOutput

func (GetOauthResultOutput) AutoSubmitToolbar 

func (o GetOauthResultOutput) AutoSubmitToolbar() pulumi.BoolOutput

Display auto submit toolbar.

func (GetOauthResultOutput) ClientId 

func (o GetOauthResultOutput) ClientId() pulumi.StringOutput

OAuth client ID. If set during creation, app is created with this id.

func (GetOauthResultOutput) ClientSecret 

func (o GetOauthResultOutput) ClientSecret() pulumi.StringOutput

The latest active client secret of the application. See: https://developer.okta.com/docs/reference/api/apps/#oauth-credential-object

func (GetOauthResultOutput) ClientUri 

func (o GetOauthResultOutput) ClientUri() pulumi.StringOutput

URI to a web page providing information about the client.

func (GetOauthResultOutput) ElementType 

func (GetOauthResultOutput) ElementType() reflect.Type

func (GetOauthResultOutput) GrantTypes 

func (o GetOauthResultOutput) GrantTypes() pulumi.StringArrayOutput

List of OAuth 2.0 grant types.

func (GetOauthResultOutput) HideIos 

func (o GetOauthResultOutput) HideIos() pulumi.BoolOutput

Do not display application icon on mobile app.

func (GetOauthResultOutput) HideWeb 

func (o GetOauthResultOutput) HideWeb() pulumi.BoolOutput

Do not display application icon to users.

func (GetOauthResultOutput) Id 

func (o GetOauthResultOutput) Id() pulumi.StringPtrOutput

ID of application.

func (GetOauthResultOutput) Label 

func (o GetOauthResultOutput) Label() pulumi.StringPtrOutput

Label of application.

func (GetOauthResultOutput) LabelPrefix 

func (o GetOauthResultOutput) LabelPrefix() pulumi.StringPtrOutput
func (o GetOauthResultOutput) Links() pulumi.StringOutput

generic JSON containing discoverable resources related to the app

func (GetOauthResultOutput) LoginMode 

func (o GetOauthResultOutput) LoginMode() pulumi.StringOutput

The type of Idp-Initiated login that the client supports, if any.

func (GetOauthResultOutput) LoginScopes 

func (o GetOauthResultOutput) LoginScopes() pulumi.StringArrayOutput

List of scopes to use for the request.

func (GetOauthResultOutput) LoginUri 

func (o GetOauthResultOutput) LoginUri() pulumi.StringOutput

URI that initiates login.

func (GetOauthResultOutput) LogoUri 

func (o GetOauthResultOutput) LogoUri() pulumi.StringOutput

URI that references a logo for the client.

func (GetOauthResultOutput) Name 

func (o GetOauthResultOutput) Name() pulumi.StringOutput

Name of application.

func (GetOauthResultOutput) PolicyUri 

func (o GetOauthResultOutput) PolicyUri() pulumi.StringOutput

URI to web page providing client policy document.

func (GetOauthResultOutput) PostLogoutRedirectUris 

func (o GetOauthResultOutput) PostLogoutRedirectUris() pulumi.StringArrayOutput

List of URIs for redirection after logout.

func (GetOauthResultOutput) RedirectUris 

func (o GetOauthResultOutput) RedirectUris() pulumi.StringArrayOutput

List of URIs for use in the redirect-based flow.

func (GetOauthResultOutput) ResponseTypes 

func (o GetOauthResultOutput) ResponseTypes() pulumi.StringArrayOutput

List of OAuth 2.0 response type strings.

func (GetOauthResultOutput) SkipGroups deprecated added in v4.0.2 

func (o GetOauthResultOutput) SkipGroups() pulumi.BoolPtrOutput

Deprecated: Because groups has been removed, this attribute is a no op and will be removed

func (GetOauthResultOutput) SkipUsers deprecated added in v4.0.2 

func (o GetOauthResultOutput) SkipUsers() pulumi.BoolPtrOutput

Deprecated: Because users has been removed, this attribute is a no op and will be removed

func (GetOauthResultOutput) Status 

func (o GetOauthResultOutput) Status() pulumi.StringOutput

Status of application.

func (GetOauthResultOutput) ToGetOauthResultOutput 

func (o GetOauthResultOutput) ToGetOauthResultOutput() GetOauthResultOutput

func (GetOauthResultOutput) ToGetOauthResultOutputWithContext 

func (o GetOauthResultOutput) ToGetOauthResultOutputWithContext(ctx context.Context) GetOauthResultOutput

func (GetOauthResultOutput) Type 

func (o GetOauthResultOutput) Type() pulumi.StringOutput

The type of OAuth application.

func (GetOauthResultOutput) WildcardRedirect 

func (o GetOauthResultOutput) WildcardRedirect() pulumi.StringOutput

type GetSamlAttributeStatement 

type GetSamlAttributeStatement struct {
	// Type of group attribute filter.
	FilterType string `pulumi:"filterType"`
	// Filter value to use.
	FilterValue string `pulumi:"filterValue"`
	// name of application.
	Name string `pulumi:"name"`
	// The attribute namespace.
	Namespace string `pulumi:"namespace"`
	// The type of attribute statement value.
	Type string `pulumi:"type"`
	// Array of values to use.
	Values []string `pulumi:"values"`
}

type GetSamlAttributeStatementArgs 

type GetSamlAttributeStatementArgs struct {
	// Type of group attribute filter.
	FilterType pulumi.StringInput `pulumi:"filterType"`
	// Filter value to use.
	FilterValue pulumi.StringInput `pulumi:"filterValue"`
	// name of application.
	Name pulumi.StringInput `pulumi:"name"`
	// The attribute namespace.
	Namespace pulumi.StringInput `pulumi:"namespace"`
	// The type of attribute statement value.
	Type pulumi.StringInput `pulumi:"type"`
	// Array of values to use.
	Values pulumi.StringArrayInput `pulumi:"values"`
}

func (GetSamlAttributeStatementArgs) ElementType 

func (GetSamlAttributeStatementArgs) ElementType() reflect.Type

func (GetSamlAttributeStatementArgs) ToGetSamlAttributeStatementOutput 

func (i GetSamlAttributeStatementArgs) ToGetSamlAttributeStatementOutput() GetSamlAttributeStatementOutput

func (GetSamlAttributeStatementArgs) ToGetSamlAttributeStatementOutputWithContext 

func (i GetSamlAttributeStatementArgs) ToGetSamlAttributeStatementOutputWithContext(ctx context.Context) GetSamlAttributeStatementOutput

type GetSamlAttributeStatementArray 

type GetSamlAttributeStatementArray []GetSamlAttributeStatementInput

func (GetSamlAttributeStatementArray) ElementType 

func (GetSamlAttributeStatementArray) ElementType() reflect.Type

func (GetSamlAttributeStatementArray) ToGetSamlAttributeStatementArrayOutput 

func (i GetSamlAttributeStatementArray) ToGetSamlAttributeStatementArrayOutput() GetSamlAttributeStatementArrayOutput

func (GetSamlAttributeStatementArray) ToGetSamlAttributeStatementArrayOutputWithContext 

func (i GetSamlAttributeStatementArray) ToGetSamlAttributeStatementArrayOutputWithContext(ctx context.Context) GetSamlAttributeStatementArrayOutput

type GetSamlAttributeStatementArrayInput 

type GetSamlAttributeStatementArrayInput interface {
	pulumi.Input

	ToGetSamlAttributeStatementArrayOutput() GetSamlAttributeStatementArrayOutput
	ToGetSamlAttributeStatementArrayOutputWithContext(context.Context) GetSamlAttributeStatementArrayOutput
}

GetSamlAttributeStatementArrayInput is an input type that accepts GetSamlAttributeStatementArray and GetSamlAttributeStatementArrayOutput values. You can construct a concrete instance of `GetSamlAttributeStatementArrayInput` via: 

GetSamlAttributeStatementArray{ GetSamlAttributeStatementArgs{...} }

type GetSamlAttributeStatementArrayOutput 

type GetSamlAttributeStatementArrayOutput struct{ *pulumi.OutputState }

func (GetSamlAttributeStatementArrayOutput) ElementType 

func (GetSamlAttributeStatementArrayOutput) ElementType() reflect.Type

func (GetSamlAttributeStatementArrayOutput) Index 

func (o GetSamlAttributeStatementArrayOutput) Index(i pulumi.IntInput) GetSamlAttributeStatementOutput

func (GetSamlAttributeStatementArrayOutput) ToGetSamlAttributeStatementArrayOutput 

func (o GetSamlAttributeStatementArrayOutput) ToGetSamlAttributeStatementArrayOutput() GetSamlAttributeStatementArrayOutput

func (GetSamlAttributeStatementArrayOutput) ToGetSamlAttributeStatementArrayOutputWithContext 

func (o GetSamlAttributeStatementArrayOutput) ToGetSamlAttributeStatementArrayOutputWithContext(ctx context.Context) GetSamlAttributeStatementArrayOutput

type GetSamlAttributeStatementInput 

type GetSamlAttributeStatementInput interface {
	pulumi.Input

	ToGetSamlAttributeStatementOutput() GetSamlAttributeStatementOutput
	ToGetSamlAttributeStatementOutputWithContext(context.Context) GetSamlAttributeStatementOutput
}

GetSamlAttributeStatementInput is an input type that accepts GetSamlAttributeStatementArgs and GetSamlAttributeStatementOutput values. You can construct a concrete instance of `GetSamlAttributeStatementInput` via: 

GetSamlAttributeStatementArgs{...}

type GetSamlAttributeStatementOutput 

type GetSamlAttributeStatementOutput struct{ *pulumi.OutputState }

func (GetSamlAttributeStatementOutput) ElementType 

func (GetSamlAttributeStatementOutput) ElementType() reflect.Type

func (GetSamlAttributeStatementOutput) FilterType 

func (o GetSamlAttributeStatementOutput) FilterType() pulumi.StringOutput

Type of group attribute filter.

func (GetSamlAttributeStatementOutput) FilterValue 

func (o GetSamlAttributeStatementOutput) FilterValue() pulumi.StringOutput

Filter value to use.

func (GetSamlAttributeStatementOutput) Name 

func (o GetSamlAttributeStatementOutput) Name() pulumi.StringOutput

name of application.

func (GetSamlAttributeStatementOutput) Namespace 

func (o GetSamlAttributeStatementOutput) Namespace() pulumi.StringOutput

The attribute namespace.

func (GetSamlAttributeStatementOutput) ToGetSamlAttributeStatementOutput 

func (o GetSamlAttributeStatementOutput) ToGetSamlAttributeStatementOutput() GetSamlAttributeStatementOutput

func (GetSamlAttributeStatementOutput) ToGetSamlAttributeStatementOutputWithContext 

func (o GetSamlAttributeStatementOutput) ToGetSamlAttributeStatementOutputWithContext(ctx context.Context) GetSamlAttributeStatementOutput

func (GetSamlAttributeStatementOutput) Type 

func (o GetSamlAttributeStatementOutput) Type() pulumi.StringOutput

The type of attribute statement value.

func (GetSamlAttributeStatementOutput) Values 

func (o GetSamlAttributeStatementOutput) Values() pulumi.StringArrayOutput

Array of values to use.

type GroupAssignment 

type GroupAssignment struct {
	pulumi.CustomResourceState

	// The ID of the application to assign a group to.
	AppId pulumi.StringOutput `pulumi:"appId"`
	// The ID of the group to assign the app to.
	GroupId pulumi.StringOutput `pulumi:"groupId"`
	// Priority of group assignment.
	Priority pulumi.IntPtrOutput `pulumi:"priority"`
	// JSON document containing [application profile](https://developer.okta.com/docs/reference/api/apps/#profile-object)
	Profile pulumi.StringPtrOutput `pulumi:"profile"`
	// Retain the group assignment on destroy. If set to true, the resource will be removed from state but not from the Okta app.
	RetainAssignment pulumi.BoolPtrOutput `pulumi:"retainAssignment"`
}

## Import

An application group assignment can be imported via the `app_id` and the `group_id`.

```sh 

$ pulumi import okta:app/groupAssignment:GroupAssignment example &#60;app_id&#62;/&#60;group_id&#62;

```

func GetGroupAssignment 

func GetGroupAssignment(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *GroupAssignmentState, opts ...pulumi.ResourceOption) (*GroupAssignment, error)

GetGroupAssignment gets an existing GroupAssignment resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewGroupAssignment 

func NewGroupAssignment(ctx *pulumi.Context,
	name string, args *GroupAssignmentArgs, opts ...pulumi.ResourceOption) (*GroupAssignment, error)

NewGroupAssignment registers a new resource with the given unique name, arguments, and options.

func (*GroupAssignment) ElementType 

func (*GroupAssignment) ElementType() reflect.Type

func (*GroupAssignment) ToGroupAssignmentOutput 

func (i *GroupAssignment) ToGroupAssignmentOutput() GroupAssignmentOutput

func (*GroupAssignment) ToGroupAssignmentOutputWithContext 

func (i *GroupAssignment) ToGroupAssignmentOutputWithContext(ctx context.Context) GroupAssignmentOutput

type GroupAssignmentArgs 

type GroupAssignmentArgs struct {
	// The ID of the application to assign a group to.
	AppId pulumi.StringInput
	// The ID of the group to assign the app to.
	GroupId pulumi.StringInput
	// Priority of group assignment.
	Priority pulumi.IntPtrInput
	// JSON document containing [application profile](https://developer.okta.com/docs/reference/api/apps/#profile-object)
	Profile pulumi.StringPtrInput
	// Retain the group assignment on destroy. If set to true, the resource will be removed from state but not from the Okta app.
	RetainAssignment pulumi.BoolPtrInput
}

The set of arguments for constructing a GroupAssignment resource.

func (GroupAssignmentArgs) ElementType 

func (GroupAssignmentArgs) ElementType() reflect.Type

type GroupAssignmentArray 

type GroupAssignmentArray []GroupAssignmentInput

func (GroupAssignmentArray) ElementType 

func (GroupAssignmentArray) ElementType() reflect.Type

func (GroupAssignmentArray) ToGroupAssignmentArrayOutput 

func (i GroupAssignmentArray) ToGroupAssignmentArrayOutput() GroupAssignmentArrayOutput

func (GroupAssignmentArray) ToGroupAssignmentArrayOutputWithContext 

func (i GroupAssignmentArray) ToGroupAssignmentArrayOutputWithContext(ctx context.Context) GroupAssignmentArrayOutput

type GroupAssignmentArrayInput 

type GroupAssignmentArrayInput interface {
	pulumi.Input

	ToGroupAssignmentArrayOutput() GroupAssignmentArrayOutput
	ToGroupAssignmentArrayOutputWithContext(context.Context) GroupAssignmentArrayOutput
}

GroupAssignmentArrayInput is an input type that accepts GroupAssignmentArray and GroupAssignmentArrayOutput values. You can construct a concrete instance of `GroupAssignmentArrayInput` via: 

GroupAssignmentArray{ GroupAssignmentArgs{...} }

type GroupAssignmentArrayOutput 

type GroupAssignmentArrayOutput struct{ *pulumi.OutputState }

func (GroupAssignmentArrayOutput) ElementType 

func (GroupAssignmentArrayOutput) ElementType() reflect.Type

func (GroupAssignmentArrayOutput) Index 

func (o GroupAssignmentArrayOutput) Index(i pulumi.IntInput) GroupAssignmentOutput

func (GroupAssignmentArrayOutput) ToGroupAssignmentArrayOutput 

func (o GroupAssignmentArrayOutput) ToGroupAssignmentArrayOutput() GroupAssignmentArrayOutput

func (GroupAssignmentArrayOutput) ToGroupAssignmentArrayOutputWithContext 

func (o GroupAssignmentArrayOutput) ToGroupAssignmentArrayOutputWithContext(ctx context.Context) GroupAssignmentArrayOutput

type GroupAssignmentInput 

type GroupAssignmentInput interface {
	pulumi.Input

	ToGroupAssignmentOutput() GroupAssignmentOutput
	ToGroupAssignmentOutputWithContext(ctx context.Context) GroupAssignmentOutput
}

type GroupAssignmentMap 

type GroupAssignmentMap map[string]GroupAssignmentInput

func (GroupAssignmentMap) ElementType 

func (GroupAssignmentMap) ElementType() reflect.Type

func (GroupAssignmentMap) ToGroupAssignmentMapOutput 

func (i GroupAssignmentMap) ToGroupAssignmentMapOutput() GroupAssignmentMapOutput

func (GroupAssignmentMap) ToGroupAssignmentMapOutputWithContext 

func (i GroupAssignmentMap) ToGroupAssignmentMapOutputWithContext(ctx context.Context) GroupAssignmentMapOutput

type GroupAssignmentMapInput 

type GroupAssignmentMapInput interface {
	pulumi.Input

	ToGroupAssignmentMapOutput() GroupAssignmentMapOutput
	ToGroupAssignmentMapOutputWithContext(context.Context) GroupAssignmentMapOutput
}

GroupAssignmentMapInput is an input type that accepts GroupAssignmentMap and GroupAssignmentMapOutput values. You can construct a concrete instance of `GroupAssignmentMapInput` via: 

GroupAssignmentMap{ "key": GroupAssignmentArgs{...} }

type GroupAssignmentMapOutput 

type GroupAssignmentMapOutput struct{ *pulumi.OutputState }

func (GroupAssignmentMapOutput) ElementType 

func (GroupAssignmentMapOutput) ElementType() reflect.Type

func (GroupAssignmentMapOutput) MapIndex 

func (o GroupAssignmentMapOutput) MapIndex(k pulumi.StringInput) GroupAssignmentOutput

func (GroupAssignmentMapOutput) ToGroupAssignmentMapOutput 

func (o GroupAssignmentMapOutput) ToGroupAssignmentMapOutput() GroupAssignmentMapOutput

func (GroupAssignmentMapOutput) ToGroupAssignmentMapOutputWithContext 

func (o GroupAssignmentMapOutput) ToGroupAssignmentMapOutputWithContext(ctx context.Context) GroupAssignmentMapOutput

type GroupAssignmentOutput 

type GroupAssignmentOutput struct{ *pulumi.OutputState }

func (GroupAssignmentOutput) AppId 

func (o GroupAssignmentOutput) AppId() pulumi.StringOutput

The ID of the application to assign a group to.

func (GroupAssignmentOutput) ElementType 

func (GroupAssignmentOutput) ElementType() reflect.Type

func (GroupAssignmentOutput) GroupId 

func (o GroupAssignmentOutput) GroupId() pulumi.StringOutput

The ID of the group to assign the app to.

func (GroupAssignmentOutput) Priority 

func (o GroupAssignmentOutput) Priority() pulumi.IntPtrOutput

Priority of group assignment.

func (GroupAssignmentOutput) Profile 

func (o GroupAssignmentOutput) Profile() pulumi.StringPtrOutput

JSON document containing [application profile](https://developer.okta.com/docs/reference/api/apps/#profile-object)

func (GroupAssignmentOutput) RetainAssignment 

func (o GroupAssignmentOutput) RetainAssignment() pulumi.BoolPtrOutput

Retain the group assignment on destroy. If set to true, the resource will be removed from state but not from the Okta app.

func (GroupAssignmentOutput) ToGroupAssignmentOutput 

func (o GroupAssignmentOutput) ToGroupAssignmentOutput() GroupAssignmentOutput

func (GroupAssignmentOutput) ToGroupAssignmentOutputWithContext 

func (o GroupAssignmentOutput) ToGroupAssignmentOutputWithContext(ctx context.Context) GroupAssignmentOutput

type GroupAssignmentState 

type GroupAssignmentState struct {
	// The ID of the application to assign a group to.
	AppId pulumi.StringPtrInput
	// The ID of the group to assign the app to.
	GroupId pulumi.StringPtrInput
	// Priority of group assignment.
	Priority pulumi.IntPtrInput
	// JSON document containing [application profile](https://developer.okta.com/docs/reference/api/apps/#profile-object)
	Profile pulumi.StringPtrInput
	// Retain the group assignment on destroy. If set to true, the resource will be removed from state but not from the Okta app.
	RetainAssignment pulumi.BoolPtrInput
}

func (GroupAssignmentState) ElementType 

func (GroupAssignmentState) ElementType() reflect.Type

type LookupSamlArgs 

type LookupSamlArgs struct {
	// tells the provider to query for only `ACTIVE` applications.
	ActiveOnly *bool `pulumi:"activeOnly"`
	// `id` of application to retrieve, conflicts with `label` and `labelPrefix`.
	Id *string `pulumi:"id"`
	// The label of the app to retrieve, conflicts with `labelPrefix` and `id`. Label uses
	// the `?q=<label>` query parameter exposed by Okta's API. It should be noted that at this time this searches both `name`
	// and `label`. This is used to avoid paginating through all applications.
	Label *string `pulumi:"label"`
	// Label prefix of the app to retrieve, conflicts with `label` and `id`. This will tell the
	// provider to do a `starts with` query as opposed to an `equals` query.
	LabelPrefix *string `pulumi:"labelPrefix"`
	// Denotes whether the request is compressed or not.
	RequestCompressed *bool `pulumi:"requestCompressed"`
	// Deprecated: Because groups has been removed, this attribute is a no op and will be removed
	SkipGroups *bool `pulumi:"skipGroups"`
	// Deprecated: Because users has been removed, this attribute is a no op and will be removed
	SkipUsers *bool `pulumi:"skipUsers"`
}

A collection of arguments for invoking getSaml.

type LookupSamlOutputArgs 

type LookupSamlOutputArgs struct {
	// tells the provider to query for only `ACTIVE` applications.
	ActiveOnly pulumi.BoolPtrInput `pulumi:"activeOnly"`
	// `id` of application to retrieve, conflicts with `label` and `labelPrefix`.
	Id pulumi.StringPtrInput `pulumi:"id"`
	// The label of the app to retrieve, conflicts with `labelPrefix` and `id`. Label uses
	// the `?q=<label>` query parameter exposed by Okta's API. It should be noted that at this time this searches both `name`
	// and `label`. This is used to avoid paginating through all applications.
	Label pulumi.StringPtrInput `pulumi:"label"`
	// Label prefix of the app to retrieve, conflicts with `label` and `id`. This will tell the
	// provider to do a `starts with` query as opposed to an `equals` query.
	LabelPrefix pulumi.StringPtrInput `pulumi:"labelPrefix"`
	// Denotes whether the request is compressed or not.
	RequestCompressed pulumi.BoolPtrInput `pulumi:"requestCompressed"`
	// Deprecated: Because groups has been removed, this attribute is a no op and will be removed
	SkipGroups pulumi.BoolPtrInput `pulumi:"skipGroups"`
	// Deprecated: Because users has been removed, this attribute is a no op and will be removed
	SkipUsers pulumi.BoolPtrInput `pulumi:"skipUsers"`
}

A collection of arguments for invoking getSaml.

func (LookupSamlOutputArgs) ElementType 

func (LookupSamlOutputArgs) ElementType() reflect.Type

type LookupSamlResult 

type LookupSamlResult struct {
	// Custom error page URL.
	AccessibilityErrorRedirectUrl string `pulumi:"accessibilityErrorRedirectUrl"`
	// Custom login page URL.
	AccessibilityLoginRedirectUrl string `pulumi:"accessibilityLoginRedirectUrl"`
	// Enable self-service.
	AccessibilitySelfService bool `pulumi:"accessibilitySelfService"`
	// An array of ACS endpoints. You can configure a maximum of 100 endpoints.
	AcsEndpoints []string `pulumi:"acsEndpoints"`
	ActiveOnly   *bool    `pulumi:"activeOnly"`
	// Application settings in JSON format.
	AppSettingsJson string `pulumi:"appSettingsJson"`
	// Determines whether the SAML assertion is digitally signed.
	AssertionSigned bool `pulumi:"assertionSigned"`
	// List of SAML Attribute statements.
	AttributeStatements []GetSamlAttributeStatement `pulumi:"attributeStatements"`
	// Audience restriction.
	Audience string `pulumi:"audience"`
	// Identifies the SAML authentication context class for the assertion’s authentication statement.
	AuthnContextClassRef string `pulumi:"authnContextClassRef"`
	// Display auto submit toolbar.
	AutoSubmitToolbar bool `pulumi:"autoSubmitToolbar"`
	// Identifies a specific application resource in an IDP initiated SSO scenario.
	DefaultRelayState string `pulumi:"defaultRelayState"`
	// Identifies the location where the SAML response is intended to be sent inside the SAML assertion.
	Destination string `pulumi:"destination"`
	// Determines the digest algorithm used to digitally sign the SAML assertion and response.
	DigestAlgorithm string `pulumi:"digestAlgorithm"`
	// features enabled.
	Features []string `pulumi:"features"`
	// List of groups IDs assigned to the application.
	//
	// Deprecated: The `groups` field is now deprecated for the data source `okta_app_saml`, please replace all uses of this with: `okta_app_group_assignments`
	Groups []string `pulumi:"groups"`
	// Do not display application icon on mobile app.
	HideIos bool `pulumi:"hideIos"`
	// Do not display application icon to users
	HideWeb bool `pulumi:"hideWeb"`
	// Prompt user to re-authenticate if SP asks for it.
	HonorForceAuthn bool `pulumi:"honorForceAuthn"`
	// id of application.
	Id *string `pulumi:"id"`
	// SAML issuer ID.
	IdpIssuer string `pulumi:"idpIssuer"`
	// Saml Inline Hook associated with the application.
	InlineHookId string `pulumi:"inlineHookId"`
	// Certificate key ID.
	KeyId string `pulumi:"keyId"`
	// label of application.
	Label       *string `pulumi:"label"`
	LabelPrefix *string `pulumi:"labelPrefix"`
	// Generic JSON containing discoverable resources related to the app.
	Links string `pulumi:"links"`
	// name of application.
	Name string `pulumi:"name"`
	// The location where the app may present the SAML assertion.
	Recipient string `pulumi:"recipient"`
	// Denotes whether the request is compressed or not.
	RequestCompressed *bool `pulumi:"requestCompressed"`
	// Determines whether the SAML auth response message is digitally signed.
	ResponseSigned bool `pulumi:"responseSigned"`
	// SAML Signed Request enabled
	SamlSignedRequestEnabled bool `pulumi:"samlSignedRequestEnabled"`
	// Signature algorithm used ot digitally sign the assertion and response.
	SignatureAlgorithm string `pulumi:"signatureAlgorithm"`
	// x509 encoded certificate that the Service Provider uses to sign Single Logout requests.
	SingleLogoutCertificate string `pulumi:"singleLogoutCertificate"`
	// The issuer of the Service Provider that generates the Single Logout request.
	SingleLogoutIssuer string `pulumi:"singleLogoutIssuer"`
	// The location where the logout response is sent.
	SingleLogoutUrl string `pulumi:"singleLogoutUrl"`
	// Deprecated: Because groups has been removed, this attribute is a no op and will be removed
	SkipGroups *bool `pulumi:"skipGroups"`
	// Deprecated: Because users has been removed, this attribute is a no op and will be removed
	SkipUsers *bool `pulumi:"skipUsers"`
	// SAML service provider issuer.
	SpIssuer string `pulumi:"spIssuer"`
	// Single Sign-on Url.
	SsoUrl string `pulumi:"ssoUrl"`
	// status of application.
	Status string `pulumi:"status"`
	// Identifies the SAML processing rules.
	SubjectNameIdFormat string `pulumi:"subjectNameIdFormat"`
	// Template for app user's username when a user is assigned to the app.
	SubjectNameIdTemplate string `pulumi:"subjectNameIdTemplate"`
	// Username template.
	UserNameTemplate string `pulumi:"userNameTemplate"`
	// Push username on update.
	UserNameTemplatePushStatus string `pulumi:"userNameTemplatePushStatus"`
	// Username template suffix.
	UserNameTemplateSuffix string `pulumi:"userNameTemplateSuffix"`
	// Username template type.
	UserNameTemplateType string `pulumi:"userNameTemplateType"`
	// Deprecated: The `users` field is now deprecated for the data source `okta_app_saml`, please replace all uses of this with: `okta_app_user_assignments`
	Users []string `pulumi:"users"`
}

A collection of values returned by getSaml.

func LookupSaml 

func LookupSaml(ctx *pulumi.Context, args *LookupSamlArgs, opts ...pulumi.InvokeOption) (*LookupSamlResult, error)

Use this data source to retrieve an SAML application from Okta.

## Example Usage

```go package main

import ( 

"github.com/pulumi/pulumi-okta/sdk/v4/go/okta/app"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"

) 

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := app.LookupSaml(ctx, &app.LookupSamlArgs{
			Label: pulumi.StringRef("Example App"),
		}, nil)
		if err != nil {
			return err
		}
		return nil
	})
}

```

type LookupSamlResultOutput 

type LookupSamlResultOutput struct{ *pulumi.OutputState }

A collection of values returned by getSaml.

func LookupSamlOutput 

func LookupSamlOutput(ctx *pulumi.Context, args LookupSamlOutputArgs, opts ...pulumi.InvokeOption) LookupSamlResultOutput

func (LookupSamlResultOutput) AccessibilityErrorRedirectUrl 

func (o LookupSamlResultOutput) AccessibilityErrorRedirectUrl() pulumi.StringOutput

Custom error page URL.

func (LookupSamlResultOutput) AccessibilityLoginRedirectUrl 

func (o LookupSamlResultOutput) AccessibilityLoginRedirectUrl() pulumi.StringOutput

Custom login page URL.

func (LookupSamlResultOutput) AccessibilitySelfService 

func (o LookupSamlResultOutput) AccessibilitySelfService() pulumi.BoolOutput

Enable self-service.

func (LookupSamlResultOutput) AcsEndpoints 

func (o LookupSamlResultOutput) AcsEndpoints() pulumi.StringArrayOutput

An array of ACS endpoints. You can configure a maximum of 100 endpoints.

func (LookupSamlResultOutput) ActiveOnly 

func (o LookupSamlResultOutput) ActiveOnly() pulumi.BoolPtrOutput

func (LookupSamlResultOutput) AppSettingsJson 

func (o LookupSamlResultOutput) AppSettingsJson() pulumi.StringOutput

Application settings in JSON format.

func (LookupSamlResultOutput) AssertionSigned 

func (o LookupSamlResultOutput) AssertionSigned() pulumi.BoolOutput

Determines whether the SAML assertion is digitally signed.

func (LookupSamlResultOutput) AttributeStatements 

func (o LookupSamlResultOutput) AttributeStatements() GetSamlAttributeStatementArrayOutput

List of SAML Attribute statements.

func (LookupSamlResultOutput) Audience 

func (o LookupSamlResultOutput) Audience() pulumi.StringOutput

Audience restriction.

func (LookupSamlResultOutput) AuthnContextClassRef 

func (o LookupSamlResultOutput) AuthnContextClassRef() pulumi.StringOutput

Identifies the SAML authentication context class for the assertion’s authentication statement.

func (LookupSamlResultOutput) AutoSubmitToolbar 

func (o LookupSamlResultOutput) AutoSubmitToolbar() pulumi.BoolOutput

Display auto submit toolbar.

func (LookupSamlResultOutput) DefaultRelayState 

func (o LookupSamlResultOutput) DefaultRelayState() pulumi.StringOutput

Identifies a specific application resource in an IDP initiated SSO scenario.

func (LookupSamlResultOutput) Destination 

func (o LookupSamlResultOutput) Destination() pulumi.StringOutput

Identifies the location where the SAML response is intended to be sent inside the SAML assertion.

func (LookupSamlResultOutput) DigestAlgorithm 

func (o LookupSamlResultOutput) DigestAlgorithm() pulumi.StringOutput

Determines the digest algorithm used to digitally sign the SAML assertion and response.

func (LookupSamlResultOutput) ElementType 

func (LookupSamlResultOutput) ElementType() reflect.Type

func (LookupSamlResultOutput) Features 

func (o LookupSamlResultOutput) Features() pulumi.StringArrayOutput

features enabled.

func (LookupSamlResultOutput) Groups deprecated 

func (o LookupSamlResultOutput) Groups() pulumi.StringArrayOutput

List of groups IDs assigned to the application.

Deprecated: The `groups` field is now deprecated for the data source `okta_app_saml`, please replace all uses of this with: `okta_app_group_assignments`

func (LookupSamlResultOutput) HideIos 

func (o LookupSamlResultOutput) HideIos() pulumi.BoolOutput

Do not display application icon on mobile app.

func (LookupSamlResultOutput) HideWeb 

func (o LookupSamlResultOutput) HideWeb() pulumi.BoolOutput

Do not display application icon to users

func (LookupSamlResultOutput) HonorForceAuthn 

func (o LookupSamlResultOutput) HonorForceAuthn() pulumi.BoolOutput

Prompt user to re-authenticate if SP asks for it.

func (LookupSamlResultOutput) Id 

func (o LookupSamlResultOutput) Id() pulumi.StringPtrOutput

id of application.

func (LookupSamlResultOutput) IdpIssuer 

func (o LookupSamlResultOutput) IdpIssuer() pulumi.StringOutput

SAML issuer ID.

func (LookupSamlResultOutput) InlineHookId 

func (o LookupSamlResultOutput) InlineHookId() pulumi.StringOutput

Saml Inline Hook associated with the application.

func (LookupSamlResultOutput) KeyId 

func (o LookupSamlResultOutput) KeyId() pulumi.StringOutput

Certificate key ID.

func (LookupSamlResultOutput) Label 

func (o LookupSamlResultOutput) Label() pulumi.StringPtrOutput

label of application.

func (LookupSamlResultOutput) LabelPrefix 

func (o LookupSamlResultOutput) LabelPrefix() pulumi.StringPtrOutput
func (o LookupSamlResultOutput) Links() pulumi.StringOutput

Generic JSON containing discoverable resources related to the app.

func (LookupSamlResultOutput) Name 

func (o LookupSamlResultOutput) Name() pulumi.StringOutput

name of application.

func (LookupSamlResultOutput) Recipient 

func (o LookupSamlResultOutput) Recipient() pulumi.StringOutput

The location where the app may present the SAML assertion.

func (LookupSamlResultOutput) RequestCompressed 

func (o LookupSamlResultOutput) RequestCompressed() pulumi.BoolPtrOutput

Denotes whether the request is compressed or not.

func (LookupSamlResultOutput) ResponseSigned 

func (o LookupSamlResultOutput) ResponseSigned() pulumi.BoolOutput

Determines whether the SAML auth response message is digitally signed.

func (LookupSamlResultOutput) SamlSignedRequestEnabled 

func (o LookupSamlResultOutput) SamlSignedRequestEnabled() pulumi.BoolOutput

SAML Signed Request enabled

func (LookupSamlResultOutput) SignatureAlgorithm 

func (o LookupSamlResultOutput) SignatureAlgorithm() pulumi.StringOutput

Signature algorithm used ot digitally sign the assertion and response.

func (LookupSamlResultOutput) SingleLogoutCertificate 

func (o LookupSamlResultOutput) SingleLogoutCertificate() pulumi.StringOutput

x509 encoded certificate that the Service Provider uses to sign Single Logout requests.

func (LookupSamlResultOutput) SingleLogoutIssuer 

func (o LookupSamlResultOutput) SingleLogoutIssuer() pulumi.StringOutput

The issuer of the Service Provider that generates the Single Logout request.

func (LookupSamlResultOutput) SingleLogoutUrl 

func (o LookupSamlResultOutput) SingleLogoutUrl() pulumi.StringOutput

The location where the logout response is sent.

func (LookupSamlResultOutput) SkipGroups deprecated added in v4.0.2 

func (o LookupSamlResultOutput) SkipGroups() pulumi.BoolPtrOutput

Deprecated: Because groups has been removed, this attribute is a no op and will be removed

func (LookupSamlResultOutput) SkipUsers deprecated added in v4.0.2 

func (o LookupSamlResultOutput) SkipUsers() pulumi.BoolPtrOutput

Deprecated: Because users has been removed, this attribute is a no op and will be removed

func (LookupSamlResultOutput) SpIssuer 

func (o LookupSamlResultOutput) SpIssuer() pulumi.StringOutput

SAML service provider issuer.

func (LookupSamlResultOutput) SsoUrl 

func (o LookupSamlResultOutput) SsoUrl() pulumi.StringOutput

Single Sign-on Url.

func (LookupSamlResultOutput) Status 

func (o LookupSamlResultOutput) Status() pulumi.StringOutput

status of application.

func (LookupSamlResultOutput) SubjectNameIdFormat 

func (o LookupSamlResultOutput) SubjectNameIdFormat() pulumi.StringOutput

Identifies the SAML processing rules.

func (LookupSamlResultOutput) SubjectNameIdTemplate 

func (o LookupSamlResultOutput) SubjectNameIdTemplate() pulumi.StringOutput

Template for app user's username when a user is assigned to the app.

func (LookupSamlResultOutput) ToLookupSamlResultOutput 

func (o LookupSamlResultOutput) ToLookupSamlResultOutput() LookupSamlResultOutput

func (LookupSamlResultOutput) ToLookupSamlResultOutputWithContext 

func (o LookupSamlResultOutput) ToLookupSamlResultOutputWithContext(ctx context.Context) LookupSamlResultOutput

func (LookupSamlResultOutput) UserNameTemplate 

func (o LookupSamlResultOutput) UserNameTemplate() pulumi.StringOutput

Username template.

func (LookupSamlResultOutput) UserNameTemplatePushStatus 

func (o LookupSamlResultOutput) UserNameTemplatePushStatus() pulumi.StringOutput

Push username on update.

func (LookupSamlResultOutput) UserNameTemplateSuffix 

func (o LookupSamlResultOutput) UserNameTemplateSuffix() pulumi.StringOutput

Username template suffix.

func (LookupSamlResultOutput) UserNameTemplateType 

func (o LookupSamlResultOutput) UserNameTemplateType() pulumi.StringOutput

Username template type.

func (LookupSamlResultOutput) Users deprecated 

func (o LookupSamlResultOutput) Users() pulumi.StringArrayOutput

Deprecated: The `users` field is now deprecated for the data source `okta_app_saml`, please replace all uses of this with: `okta_app_user_assignments`

type OAuth 

type OAuth struct {
	pulumi.CustomResourceState

	// Custom error page URL.
	AccessibilityErrorRedirectUrl pulumi.StringPtrOutput `pulumi:"accessibilityErrorRedirectUrl"`
	// Custom login page for this application.
	AccessibilityLoginRedirectUrl pulumi.StringPtrOutput `pulumi:"accessibilityLoginRedirectUrl"`
	// Enable self-service. By default, it is `false`.
	AccessibilitySelfService pulumi.BoolPtrOutput `pulumi:"accessibilitySelfService"`
	// Application notes for admins.
	AdminNote pulumi.StringPtrOutput `pulumi:"adminNote"`
	// Displays specific appLinks for the app. The value for each application link should be boolean.
	AppLinksJson pulumi.StringPtrOutput `pulumi:"appLinksJson"`
	// Application settings in JSON format.
	AppSettingsJson pulumi.StringPtrOutput `pulumi:"appSettingsJson"`
	// The ID of the associated `appSignonPolicy`. If this property is removed from the application the `default` sign-on-policy will be associated with this application.
	AuthenticationPolicy pulumi.StringPtrOutput `pulumi:"authenticationPolicy"`
	// Requested key rotation mode.  If
	// `autoKeyRotation` isn't specified, the client automatically opts in for Okta's
	// key rotation. You can update this property via the API or via the administrator
	// UI.
	// See: https://developer.okta.com/docs/reference/api/apps/#oauth-credential-object
	AutoKeyRotation pulumi.BoolPtrOutput `pulumi:"autoKeyRotation"`
	// Display auto submit toolbar.
	AutoSubmitToolbar pulumi.BoolPtrOutput `pulumi:"autoSubmitToolbar"`
	// OAuth client secret key, this can be set when `tokenEndpointAuthMethod` is `"clientSecretBasic"`.
	ClientBasicSecret pulumi.StringPtrOutput `pulumi:"clientBasicSecret"`
	// OAuth client ID. If set during creation, app is created with this id. See: https://developer.okta.com/docs/reference/api/apps/#oauth-credential-object
	ClientId pulumi.StringOutput `pulumi:"clientId"`
	// The client secret of the application. See: https://developer.okta.com/docs/reference/api/apps/#oauth-credential-object
	ClientSecret pulumi.StringOutput `pulumi:"clientSecret"`
	// URI to a web page providing information about the client.
	ClientUri pulumi.StringPtrOutput `pulumi:"clientUri"`
	// Indicates whether user consent is required or implicit. Valid values: `"REQUIRED"`, `"TRUSTED"`. Default value is `"TRUSTED"`.
	ConsentMethod pulumi.StringPtrOutput `pulumi:"consentMethod"`
	// Application notes for end users.
	EnduserNote pulumi.StringPtrOutput `pulumi:"enduserNote"`
	// List of OAuth 2.0 grant types. Conditional validation params found [here](https://developer.okta.com/docs/api/resources/apps#credentials-settings-details).
	// Defaults to minimum requirements per app type. Valid values: `"authorizationCode"`, `"implicit"`, `"password"`, `"refreshToken"`, `"clientCredentials"`,
	// `"urn:ietf:params:oauth:grant-type:saml2-bearer"` (*Early Access Property*), `"urn:ietf:params:oauth:grant-type:token-exchange"` (*Early Access Property*),
	// `"interactionCode"` (*OIE only*).
	GrantTypes pulumi.StringArrayOutput `pulumi:"grantTypes"`
	// Groups claim for an OpenID Connect client application. **IMPORTANT**: this argument is ignored when Okta API authentication is done with OAuth 2.0 credentials
	GroupsClaim OAuthGroupsClaimPtrOutput `pulumi:"groupsClaim"`
	// Do not display application icon on mobile app.
	HideIos pulumi.BoolPtrOutput `pulumi:"hideIos"`
	// Do not display application icon to users.
	HideWeb pulumi.BoolPtrOutput `pulumi:"hideWeb"`
	// *Early Access Property*. Enables [Federation Broker Mode](https://help.okta.com/en/prod/Content/Topics/Apps/apps-fbm-enable.htm). When this mode is enabled, `users` and `groups` arguments are ignored.
	ImplicitAssignment pulumi.BoolPtrOutput `pulumi:"implicitAssignment"`
	// Indicates whether the Okta Authorization Server uses the original Okta org domain URL or a custom domain URL as the issuer of ID token for this client.
	// Valid values: `"CUSTOM_URL"`,`"ORG_URL"` or `"DYNAMIC"`. Default is `"ORG_URL"`.
	IssuerMode pulumi.StringPtrOutput `pulumi:"issuerMode"`
	// JSON Web Key set. Multiple jwks are supported[Admin Console JWK Reference](https://developer.okta.com/docs/guides/implement-oauth-for-okta-serviceapp/main/#generate-the-jwk-in-the-admin-console). Use kty=RSA e=[value] n=[value] for RSA jwks, and kty=EC x=[value] y=[value] for EC jwks
	Jwks OAuthJwkArrayOutput `pulumi:"jwks"`
	// URL of the custom authorization server's JSON Web Key Set document.
	JwksUri pulumi.StringPtrOutput `pulumi:"jwksUri"`
	// The Application's display name.
	Label pulumi.StringOutput `pulumi:"label"`
	// The type of Idp-Initiated login that the client supports, if any. Valid values: `"DISABLED"`, `"SPEC"`, `"OKTA"`. Default is `"DISABLED"`.
	LoginMode pulumi.StringPtrOutput `pulumi:"loginMode"`
	// List of scopes to use for the request. Valid values: `"openid"`, `"profile"`, `"email"`, `"address"`, `"phone"`. Required when `loginMode` is NOT `DISABLED`.
	LoginScopes pulumi.StringArrayOutput `pulumi:"loginScopes"`
	// URI that initiates login. Required when `loginMode` is NOT `DISABLED`.
	LoginUri pulumi.StringPtrOutput `pulumi:"loginUri"`
	Logo pulumi.StringPtrOutput `pulumi:"logo"`
	// URI that references a logo for the client.
	LogoUri pulumi.StringPtrOutput `pulumi:"logoUri"`
	// Direct link of application logo.
	LogoUrl pulumi.StringOutput `pulumi:"logoUrl"`
	// Name of the claim that will be used in the token.
	Name pulumi.StringOutput `pulumi:"name"`
	// This tells the provider not to persist the application's secret to state. Your app's `clientSecret` will be recreated if this ever changes from true => false.
	OmitSecret pulumi.BoolPtrOutput `pulumi:"omitSecret"`
	// Require Proof Key for Code Exchange (PKCE) for
	// additional verification.  If `pkceRequired` isn't specified when adding a new
	// application, Okta sets it to `true` by default for `"browser"` and `"native"`
	// application types.
	// See https://developer.okta.com/docs/reference/api/apps/#oauth-credential-object
	PkceRequired pulumi.BoolPtrOutput `pulumi:"pkceRequired"`
	// URI to web page providing client policy document.
	PolicyUri pulumi.StringPtrOutput `pulumi:"policyUri"`
	// List of URIs for redirection after logout.
	PostLogoutRedirectUris pulumi.StringArrayOutput `pulumi:"postLogoutRedirectUris"`
	// Custom JSON that represents an OAuth application's profile.
	Profile pulumi.StringPtrOutput `pulumi:"profile"`
	// List of URIs for use in the redirect-based flow. This is required for all application types except service.
	RedirectUris pulumi.StringArrayOutput `pulumi:"redirectUris"`
	// Grace period for token rotation. Valid values: 0 to 60 seconds.
	RefreshTokenLeeway pulumi.IntPtrOutput `pulumi:"refreshTokenLeeway"`
	// Refresh token rotation behavior. Valid values: `"STATIC"` or `"ROTATE"`.
	RefreshTokenRotation pulumi.StringPtrOutput `pulumi:"refreshTokenRotation"`
	// List of OAuth 2.0 response type strings. Array
	// values of `"code"`, `"token"`, `"idToken"`. The `grantTypes` and `responseTypes`
	// values described are partially orthogonal, as they refer to arguments
	// passed to different endpoints in the OAuth 2.0 protocol (opens new window).
	// However, they are related in that the `grantTypes` available to a client
	// influence the `responseTypes` that the client is allowed to use, and vice versa.
	// For instance, a grantTypes value that includes authorizationCode implies a
	// `responseTypes` value that includes code, as both values are defined as part of
	// the OAuth 2.0 authorization code grant.
	// See: https://developer.okta.com/docs/reference/api/apps/#add-oauth-2-0-client-application
	ResponseTypes pulumi.StringArrayOutput `pulumi:"responseTypes"`
	// Sign-on mode of application.
	SignOnMode pulumi.StringOutput `pulumi:"signOnMode"`
	// The status of the application, by default, it is `"ACTIVE"`.
	Status pulumi.StringPtrOutput `pulumi:"status"`
	// Requested authentication method for
	// the token endpoint. It can be set to `"none"`, `"clientSecretPost"`,
	// `"clientSecretBasic"`, `"clientSecretJwt"`, `"privateKeyJwt"`.  Use
	// `pkceRequired` to require PKCE for your confidential clients using the
	// Authorization Code flow. If `"tokenEndpointAuthMethod"` is `"none"`,
	// `pkceRequired` needs to be `true`. If `pkceRequired` isn't specified when
	// adding a new application, Okta sets it to `true` by default for `"browser"` and
	// `"native"` application types.
	// See https://developer.okta.com/docs/reference/api/apps/#oauth-credential-object
	TokenEndpointAuthMethod pulumi.StringPtrOutput `pulumi:"tokenEndpointAuthMethod"`
	// URI to web page providing client tos (terms of service).
	TosUri pulumi.StringPtrOutput `pulumi:"tosUri"`
	// The type of OAuth application. Valid values: `"web"`, `"native"`, `"browser"`, `"service"`. For SPA apps use `browser`.
	Type pulumi.StringOutput `pulumi:"type"`
	// Username template. Default: `"${source.login}"`
	UserNameTemplate pulumi.StringPtrOutput `pulumi:"userNameTemplate"`
	// Push username on update. Valid values: `"PUSH"` and `"DONT_PUSH"`.
	UserNameTemplatePushStatus pulumi.StringPtrOutput `pulumi:"userNameTemplatePushStatus"`
	// Username template suffix.
	UserNameTemplateSuffix pulumi.StringPtrOutput `pulumi:"userNameTemplateSuffix"`
	// Username template type. Default: `"BUILT_IN"`.
	UserNameTemplateType pulumi.StringPtrOutput `pulumi:"userNameTemplateType"`
	// *Early Access Property*. Indicates if the client is allowed to use wildcard matching of `redirectUris`. Valid values: `"DISABLED"`, `"SUBDOMAIN"`. Default value is `"DISABLED"`.
	WildcardRedirect pulumi.StringPtrOutput `pulumi:"wildcardRedirect"`
}

This resource allows you to create and configure an OIDC Application.

> During an apply if there is change in `status` the app will first be activated or deactivated in accordance with the `status` change. Then, all other arguments that changed will be applied.

## Example Usage

```go package main

import ( 

"github.com/pulumi/pulumi-okta/sdk/v4/go/okta/app"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"

) 

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := app.NewOAuth(ctx, "example", &app.OAuthArgs{
			GrantTypes: pulumi.StringArray{
				pulumi.String("authorization_code"),
			},
			Label: pulumi.String("example"),
			RedirectUris: pulumi.StringArray{
				pulumi.String("https://example.com/"),
			},
			ResponseTypes: pulumi.StringArray{
				pulumi.String("code"),
			},
			Type: pulumi.String("web"),
		})
		if err != nil {
			return err
		}
		return nil
	})
}

``` ### With JWKS value

See also Advanced PEM secrets and JWKS example.

```go package main

import ( 

"github.com/pulumi/pulumi-okta/sdk/v4/go/okta/app"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"

) 

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := app.NewOAuth(ctx, "example", &app.OAuthArgs{
			GrantTypes: pulumi.StringArray{
				pulumi.String("client_credentials"),
			},
			Jwks: app.OAuthJwkArray{
				&app.OAuthJwkArgs{
					E:   pulumi.String("AQAB"),
					Kid: pulumi.String("SIGNING_KEY_RSA"),
					Kty: pulumi.String("RSA"),
					N:   pulumi.String("xyz"),
				},
				&app.OAuthJwkArgs{
					Kid: pulumi.String("SIGNING_KEY_EC"),
					Kty: pulumi.String("EC"),
					X:   pulumi.String("K37X78mXJHHldZYMzrwipjKR-YZUS2SMye0KindHp6I"),
					Y:   pulumi.String("8IfvsvXWzbFWOZoVOMwgF5p46mUj3kbOVf9Fk0vVVHo"),
				},
			},
			Label: pulumi.String("example"),
			ResponseTypes: pulumi.StringArray{
				pulumi.String("token"),
			},
			TokenEndpointAuthMethod: pulumi.String("private_key_jwt"),
			Type:                    pulumi.String("service"),
		})
		if err != nil {
			return err
		}
		return nil
	})
}

``` ## Etc.

### Resetting client secret

If the client secret needs to be reset run an apply with `omitSecret` set to true in the resource. This causes `clientSecret` to be set to blank. Remove `omitSecret` and run apply again. The resource will set a new `clientSecret` for the app.

### Private Keys

The private key format that an Okta OAuth app expects is PKCS#8 (unencrypted). The operator either uploads their own private key or Okta can generate one in the Admin UI Panel under the apps Client Credentials. PKCS#8 format can be identified by a header that starts with `-----BEGIN PRIVATE KEY-----`. If the operator has a PKCS#1 (unencrypted) format private key (the header starts with `-----BEGIN RSA PRIVATE KEY-----`) they can generate a PKCS#8 format key with `openssl`:

```go package main

import ( 

"github.com/pulumi/pulumi/sdk/v3/go/pulumi"

) 

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		return nil
	})
}

```

## Import

An OIDC Application can be imported via the Okta ID.

```sh 

$ pulumi import okta:app/oAuth:OAuth example &#60;app id&#62;

```

func GetOAuth 

func GetOAuth(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *OAuthState, opts ...pulumi.ResourceOption) (*OAuth, error)

GetOAuth gets an existing OAuth resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewOAuth 

func NewOAuth(ctx *pulumi.Context,
	name string, args *OAuthArgs, opts ...pulumi.ResourceOption) (*OAuth, error)

NewOAuth registers a new resource with the given unique name, arguments, and options.

func (*OAuth) ElementType 

func (*OAuth) ElementType() reflect.Type

func (*OAuth) ToOAuthOutput 

func (i *OAuth) ToOAuthOutput() OAuthOutput

func (*OAuth) ToOAuthOutputWithContext 

func (i *OAuth) ToOAuthOutputWithContext(ctx context.Context) OAuthOutput

type OAuthArgs 

type OAuthArgs struct {
	// Custom error page URL.
	AccessibilityErrorRedirectUrl pulumi.StringPtrInput
	// Custom login page for this application.
	AccessibilityLoginRedirectUrl pulumi.StringPtrInput
	// Enable self-service. By default, it is `false`.
	AccessibilitySelfService pulumi.BoolPtrInput
	// Application notes for admins.
	AdminNote pulumi.StringPtrInput
	// Displays specific appLinks for the app. The value for each application link should be boolean.
	AppLinksJson pulumi.StringPtrInput
	// Application settings in JSON format.
	AppSettingsJson pulumi.StringPtrInput
	// The ID of the associated `appSignonPolicy`. If this property is removed from the application the `default` sign-on-policy will be associated with this application.
	AuthenticationPolicy pulumi.StringPtrInput
	// Requested key rotation mode.  If
	// `autoKeyRotation` isn't specified, the client automatically opts in for Okta's
	// key rotation. You can update this property via the API or via the administrator
	// UI.
	// See: https://developer.okta.com/docs/reference/api/apps/#oauth-credential-object
	AutoKeyRotation pulumi.BoolPtrInput
	// Display auto submit toolbar.
	AutoSubmitToolbar pulumi.BoolPtrInput
	// OAuth client secret key, this can be set when `tokenEndpointAuthMethod` is `"clientSecretBasic"`.
	ClientBasicSecret pulumi.StringPtrInput
	// OAuth client ID. If set during creation, app is created with this id. See: https://developer.okta.com/docs/reference/api/apps/#oauth-credential-object
	ClientId pulumi.StringPtrInput
	// URI to a web page providing information about the client.
	ClientUri pulumi.StringPtrInput
	// Indicates whether user consent is required or implicit. Valid values: `"REQUIRED"`, `"TRUSTED"`. Default value is `"TRUSTED"`.
	ConsentMethod pulumi.StringPtrInput
	// Application notes for end users.
	EnduserNote pulumi.StringPtrInput
	// List of OAuth 2.0 grant types. Conditional validation params found [here](https://developer.okta.com/docs/api/resources/apps#credentials-settings-details).
	// Defaults to minimum requirements per app type. Valid values: `"authorizationCode"`, `"implicit"`, `"password"`, `"refreshToken"`, `"clientCredentials"`,
	// `"urn:ietf:params:oauth:grant-type:saml2-bearer"` (*Early Access Property*), `"urn:ietf:params:oauth:grant-type:token-exchange"` (*Early Access Property*),
	// `"interactionCode"` (*OIE only*).
	GrantTypes pulumi.StringArrayInput
	// Groups claim for an OpenID Connect client application. **IMPORTANT**: this argument is ignored when Okta API authentication is done with OAuth 2.0 credentials
	GroupsClaim OAuthGroupsClaimPtrInput
	// Do not display application icon on mobile app.
	HideIos pulumi.BoolPtrInput
	// Do not display application icon to users.
	HideWeb pulumi.BoolPtrInput
	// *Early Access Property*. Enables [Federation Broker Mode](https://help.okta.com/en/prod/Content/Topics/Apps/apps-fbm-enable.htm). When this mode is enabled, `users` and `groups` arguments are ignored.
	ImplicitAssignment pulumi.BoolPtrInput
	// Indicates whether the Okta Authorization Server uses the original Okta org domain URL or a custom domain URL as the issuer of ID token for this client.
	// Valid values: `"CUSTOM_URL"`,`"ORG_URL"` or `"DYNAMIC"`. Default is `"ORG_URL"`.
	IssuerMode pulumi.StringPtrInput
	// JSON Web Key set. Multiple jwks are supported[Admin Console JWK Reference](https://developer.okta.com/docs/guides/implement-oauth-for-okta-serviceapp/main/#generate-the-jwk-in-the-admin-console). Use kty=RSA e=[value] n=[value] for RSA jwks, and kty=EC x=[value] y=[value] for EC jwks
	Jwks OAuthJwkArrayInput
	// URL of the custom authorization server's JSON Web Key Set document.
	JwksUri pulumi.StringPtrInput
	// The Application's display name.
	Label pulumi.StringInput
	// The type of Idp-Initiated login that the client supports, if any. Valid values: `"DISABLED"`, `"SPEC"`, `"OKTA"`. Default is `"DISABLED"`.
	LoginMode pulumi.StringPtrInput
	// List of scopes to use for the request. Valid values: `"openid"`, `"profile"`, `"email"`, `"address"`, `"phone"`. Required when `loginMode` is NOT `DISABLED`.
	LoginScopes pulumi.StringArrayInput
	// URI that initiates login. Required when `loginMode` is NOT `DISABLED`.
	LoginUri pulumi.StringPtrInput
	Logo pulumi.StringPtrInput
	// URI that references a logo for the client.
	LogoUri pulumi.StringPtrInput
	// This tells the provider not to persist the application's secret to state. Your app's `clientSecret` will be recreated if this ever changes from true => false.
	OmitSecret pulumi.BoolPtrInput
	// Require Proof Key for Code Exchange (PKCE) for
	// additional verification.  If `pkceRequired` isn't specified when adding a new
	// application, Okta sets it to `true` by default for `"browser"` and `"native"`
	// application types.
	// See https://developer.okta.com/docs/reference/api/apps/#oauth-credential-object
	PkceRequired pulumi.BoolPtrInput
	// URI to web page providing client policy document.
	PolicyUri pulumi.StringPtrInput
	// List of URIs for redirection after logout.
	PostLogoutRedirectUris pulumi.StringArrayInput
	// Custom JSON that represents an OAuth application's profile.
	Profile pulumi.StringPtrInput
	// List of URIs for use in the redirect-based flow. This is required for all application types except service.
	RedirectUris pulumi.StringArrayInput
	// Grace period for token rotation. Valid values: 0 to 60 seconds.
	RefreshTokenLeeway pulumi.IntPtrInput
	// Refresh token rotation behavior. Valid values: `"STATIC"` or `"ROTATE"`.
	RefreshTokenRotation pulumi.StringPtrInput
	// List of OAuth 2.0 response type strings. Array
	// values of `"code"`, `"token"`, `"idToken"`. The `grantTypes` and `responseTypes`
	// values described are partially orthogonal, as they refer to arguments
	// passed to different endpoints in the OAuth 2.0 protocol (opens new window).
	// However, they are related in that the `grantTypes` available to a client
	// influence the `responseTypes` that the client is allowed to use, and vice versa.
	// For instance, a grantTypes value that includes authorizationCode implies a
	// `responseTypes` value that includes code, as both values are defined as part of
	// the OAuth 2.0 authorization code grant.
	// See: https://developer.okta.com/docs/reference/api/apps/#add-oauth-2-0-client-application
	ResponseTypes pulumi.StringArrayInput
	// The status of the application, by default, it is `"ACTIVE"`.
	Status pulumi.StringPtrInput
	// Requested authentication method for
	// the token endpoint. It can be set to `"none"`, `"clientSecretPost"`,
	// `"clientSecretBasic"`, `"clientSecretJwt"`, `"privateKeyJwt"`.  Use
	// `pkceRequired` to require PKCE for your confidential clients using the
	// Authorization Code flow. If `"tokenEndpointAuthMethod"` is `"none"`,
	// `pkceRequired` needs to be `true`. If `pkceRequired` isn't specified when
	// adding a new application, Okta sets it to `true` by default for `"browser"` and
	// `"native"` application types.
	// See https://developer.okta.com/docs/reference/api/apps/#oauth-credential-object
	TokenEndpointAuthMethod pulumi.StringPtrInput
	// URI to web page providing client tos (terms of service).
	TosUri pulumi.StringPtrInput
	// The type of OAuth application. Valid values: `"web"`, `"native"`, `"browser"`, `"service"`. For SPA apps use `browser`.
	Type pulumi.StringInput
	// Username template. Default: `"${source.login}"`
	UserNameTemplate pulumi.StringPtrInput
	// Push username on update. Valid values: `"PUSH"` and `"DONT_PUSH"`.
	UserNameTemplatePushStatus pulumi.StringPtrInput
	// Username template suffix.
	UserNameTemplateSuffix pulumi.StringPtrInput
	// Username template type. Default: `"BUILT_IN"`.
	UserNameTemplateType pulumi.StringPtrInput
	// *Early Access Property*. Indicates if the client is allowed to use wildcard matching of `redirectUris`. Valid values: `"DISABLED"`, `"SUBDOMAIN"`. Default value is `"DISABLED"`.
	WildcardRedirect pulumi.StringPtrInput
}

The set of arguments for constructing a OAuth resource.

func (OAuthArgs) ElementType 

func (OAuthArgs) ElementType() reflect.Type

type OAuthArray 

type OAuthArray []OAuthInput

func (OAuthArray) ElementType 

func (OAuthArray) ElementType() reflect.Type

func (OAuthArray) ToOAuthArrayOutput 

func (i OAuthArray) ToOAuthArrayOutput() OAuthArrayOutput

func (OAuthArray) ToOAuthArrayOutputWithContext 

func (i OAuthArray) ToOAuthArrayOutputWithContext(ctx context.Context) OAuthArrayOutput

type OAuthArrayInput 

type OAuthArrayInput interface {
	pulumi.Input

	ToOAuthArrayOutput() OAuthArrayOutput
	ToOAuthArrayOutputWithContext(context.Context) OAuthArrayOutput
}

OAuthArrayInput is an input type that accepts OAuthArray and OAuthArrayOutput values. You can construct a concrete instance of `OAuthArrayInput` via: 

OAuthArray{ OAuthArgs{...} }

type OAuthArrayOutput 

type OAuthArrayOutput struct{ *pulumi.OutputState }

func (OAuthArrayOutput) ElementType 

func (OAuthArrayOutput) ElementType() reflect.Type

func (OAuthArrayOutput) Index 

func (o OAuthArrayOutput) Index(i pulumi.IntInput) OAuthOutput

func (OAuthArrayOutput) ToOAuthArrayOutput 

func (o OAuthArrayOutput) ToOAuthArrayOutput() OAuthArrayOutput

func (OAuthArrayOutput) ToOAuthArrayOutputWithContext 

func (o OAuthArrayOutput) ToOAuthArrayOutputWithContext(ctx context.Context) OAuthArrayOutput

type OAuthGroupsClaim 

type OAuthGroupsClaim struct {
	// Groups claim filter. Can only be set if type is `"FILTER"`. Valid values: `"EQUALS"`, `"STARTS_WITH"`, `"CONTAINS"`, `"REGEX"`.
	FilterType *string `pulumi:"filterType"`
	// Indicates whether the Okta Authorization Server uses the original Okta org domain URL or a custom domain URL as the issuer of ID token for this client.
	// Valid values: `"CUSTOM_URL"`,`"ORG_URL"` or `"DYNAMIC"`. Default is `"ORG_URL"`.
	IssuerMode *string `pulumi:"issuerMode"`
	// Name of the claim that will be used in the token.
	Name string `pulumi:"name"`
	// The type of OAuth application. Valid values: `"web"`, `"native"`, `"browser"`, `"service"`. For SPA apps use `browser`.
	Type string `pulumi:"type"`
	// Value of the claim. Can be an Okta Expression Language statement that evaluates at the time the token is minted.
	Value string `pulumi:"value"`
}

type OAuthGroupsClaimArgs 

type OAuthGroupsClaimArgs struct {
	// Groups claim filter. Can only be set if type is `"FILTER"`. Valid values: `"EQUALS"`, `"STARTS_WITH"`, `"CONTAINS"`, `"REGEX"`.
	FilterType pulumi.StringPtrInput `pulumi:"filterType"`
	// Indicates whether the Okta Authorization Server uses the original Okta org domain URL or a custom domain URL as the issuer of ID token for this client.
	// Valid values: `"CUSTOM_URL"`,`"ORG_URL"` or `"DYNAMIC"`. Default is `"ORG_URL"`.
	IssuerMode pulumi.StringPtrInput `pulumi:"issuerMode"`
	// Name of the claim that will be used in the token.
	Name pulumi.StringInput `pulumi:"name"`
	// The type of OAuth application. Valid values: `"web"`, `"native"`, `"browser"`, `"service"`. For SPA apps use `browser`.
	Type pulumi.StringInput `pulumi:"type"`
	// Value of the claim. Can be an Okta Expression Language statement that evaluates at the time the token is minted.
	Value pulumi.StringInput `pulumi:"value"`
}

func (OAuthGroupsClaimArgs) ElementType 

func (OAuthGroupsClaimArgs) ElementType() reflect.Type

func (OAuthGroupsClaimArgs) ToOAuthGroupsClaimOutput 

func (i OAuthGroupsClaimArgs) ToOAuthGroupsClaimOutput() OAuthGroupsClaimOutput

func (OAuthGroupsClaimArgs) ToOAuthGroupsClaimOutputWithContext 

func (i OAuthGroupsClaimArgs) ToOAuthGroupsClaimOutputWithContext(ctx context.Context) OAuthGroupsClaimOutput

func (OAuthGroupsClaimArgs) ToOAuthGroupsClaimPtrOutput 

func (i OAuthGroupsClaimArgs) ToOAuthGroupsClaimPtrOutput() OAuthGroupsClaimPtrOutput

func (OAuthGroupsClaimArgs) ToOAuthGroupsClaimPtrOutputWithContext 

func (i OAuthGroupsClaimArgs) ToOAuthGroupsClaimPtrOutputWithContext(ctx context.Context) OAuthGroupsClaimPtrOutput

type OAuthGroupsClaimInput 

type OAuthGroupsClaimInput interface {
	pulumi.Input

	ToOAuthGroupsClaimOutput() OAuthGroupsClaimOutput
	ToOAuthGroupsClaimOutputWithContext(context.Context) OAuthGroupsClaimOutput
}

OAuthGroupsClaimInput is an input type that accepts OAuthGroupsClaimArgs and OAuthGroupsClaimOutput values. You can construct a concrete instance of `OAuthGroupsClaimInput` via: 

OAuthGroupsClaimArgs{...}

type OAuthGroupsClaimOutput 

type OAuthGroupsClaimOutput struct{ *pulumi.OutputState }

func (OAuthGroupsClaimOutput) ElementType 

func (OAuthGroupsClaimOutput) ElementType() reflect.Type

func (OAuthGroupsClaimOutput) FilterType 

func (o OAuthGroupsClaimOutput) FilterType() pulumi.StringPtrOutput

Groups claim filter. Can only be set if type is `"FILTER"`. Valid values: `"EQUALS"`, `"STARTS_WITH"`, `"CONTAINS"`, `"REGEX"`.

func (OAuthGroupsClaimOutput) IssuerMode 

func (o OAuthGroupsClaimOutput) IssuerMode() pulumi.StringPtrOutput

Indicates whether the Okta Authorization Server uses the original Okta org domain URL or a custom domain URL as the issuer of ID token for this client. Valid values: `"CUSTOM_URL"`,`"ORG_URL"` or `"DYNAMIC"`. Default is `"ORG_URL"`.

func (OAuthGroupsClaimOutput) Name 

func (o OAuthGroupsClaimOutput) Name() pulumi.StringOutput

Name of the claim that will be used in the token.

func (OAuthGroupsClaimOutput) ToOAuthGroupsClaimOutput 

func (o OAuthGroupsClaimOutput) ToOAuthGroupsClaimOutput() OAuthGroupsClaimOutput

func (OAuthGroupsClaimOutput) ToOAuthGroupsClaimOutputWithContext 

func (o OAuthGroupsClaimOutput) ToOAuthGroupsClaimOutputWithContext(ctx context.Context) OAuthGroupsClaimOutput

func (OAuthGroupsClaimOutput) ToOAuthGroupsClaimPtrOutput 

func (o OAuthGroupsClaimOutput) ToOAuthGroupsClaimPtrOutput() OAuthGroupsClaimPtrOutput

func (OAuthGroupsClaimOutput) ToOAuthGroupsClaimPtrOutputWithContext 

func (o OAuthGroupsClaimOutput) ToOAuthGroupsClaimPtrOutputWithContext(ctx context.Context) OAuthGroupsClaimPtrOutput

func (OAuthGroupsClaimOutput) Type 

func (o OAuthGroupsClaimOutput) Type() pulumi.StringOutput

The type of OAuth application. Valid values: `"web"`, `"native"`, `"browser"`, `"service"`. For SPA apps use `browser`.

func (OAuthGroupsClaimOutput) Value 

func (o OAuthGroupsClaimOutput) Value() pulumi.StringOutput

Value of the claim. Can be an Okta Expression Language statement that evaluates at the time the token is minted.

type OAuthGroupsClaimPtrInput 

type OAuthGroupsClaimPtrInput interface {
	pulumi.Input

	ToOAuthGroupsClaimPtrOutput() OAuthGroupsClaimPtrOutput
	ToOAuthGroupsClaimPtrOutputWithContext(context.Context) OAuthGroupsClaimPtrOutput
}

OAuthGroupsClaimPtrInput is an input type that accepts OAuthGroupsClaimArgs, OAuthGroupsClaimPtr and OAuthGroupsClaimPtrOutput values. You can construct a concrete instance of `OAuthGroupsClaimPtrInput` via: 

        OAuthGroupsClaimArgs{...}

or:

        nil

func OAuthGroupsClaimPtr 

func OAuthGroupsClaimPtr(v *OAuthGroupsClaimArgs) OAuthGroupsClaimPtrInput

type OAuthGroupsClaimPtrOutput 

type OAuthGroupsClaimPtrOutput struct{ *pulumi.OutputState }

func (OAuthGroupsClaimPtrOutput) Elem 

func (o OAuthGroupsClaimPtrOutput) Elem() OAuthGroupsClaimOutput

func (OAuthGroupsClaimPtrOutput) ElementType 

func (OAuthGroupsClaimPtrOutput) ElementType() reflect.Type

func (OAuthGroupsClaimPtrOutput) FilterType 

func (o OAuthGroupsClaimPtrOutput) FilterType() pulumi.StringPtrOutput

Groups claim filter. Can only be set if type is `"FILTER"`. Valid values: `"EQUALS"`, `"STARTS_WITH"`, `"CONTAINS"`, `"REGEX"`.

func (OAuthGroupsClaimPtrOutput) IssuerMode 

func (o OAuthGroupsClaimPtrOutput) IssuerMode() pulumi.StringPtrOutput

Indicates whether the Okta Authorization Server uses the original Okta org domain URL or a custom domain URL as the issuer of ID token for this client. Valid values: `"CUSTOM_URL"`,`"ORG_URL"` or `"DYNAMIC"`. Default is `"ORG_URL"`.

func (OAuthGroupsClaimPtrOutput) Name 

func (o OAuthGroupsClaimPtrOutput) Name() pulumi.StringPtrOutput

Name of the claim that will be used in the token.

func (OAuthGroupsClaimPtrOutput) ToOAuthGroupsClaimPtrOutput 

func (o OAuthGroupsClaimPtrOutput) ToOAuthGroupsClaimPtrOutput() OAuthGroupsClaimPtrOutput

func (OAuthGroupsClaimPtrOutput) ToOAuthGroupsClaimPtrOutputWithContext 

func (o OAuthGroupsClaimPtrOutput) ToOAuthGroupsClaimPtrOutputWithContext(ctx context.Context) OAuthGroupsClaimPtrOutput

func (OAuthGroupsClaimPtrOutput) Type 

func (o OAuthGroupsClaimPtrOutput) Type() pulumi.StringPtrOutput

The type of OAuth application. Valid values: `"web"`, `"native"`, `"browser"`, `"service"`. For SPA apps use `browser`.

func (OAuthGroupsClaimPtrOutput) Value 

func (o OAuthGroupsClaimPtrOutput) Value() pulumi.StringPtrOutput

Value of the claim. Can be an Okta Expression Language statement that evaluates at the time the token is minted.

type OAuthInput 

type OAuthInput interface {
	pulumi.Input

	ToOAuthOutput() OAuthOutput
	ToOAuthOutputWithContext(ctx context.Context) OAuthOutput
}

type OAuthJwk 

type OAuthJwk struct {
	E   *string `pulumi:"e"`
	Kid string  `pulumi:"kid"`
	Kty string  `pulumi:"kty"`
	N   *string `pulumi:"n"`
	X   *string `pulumi:"x"`
	Y   *string `pulumi:"y"`
}

type OAuthJwkArgs 

type OAuthJwkArgs struct {
	E   pulumi.StringPtrInput `pulumi:"e"`
	Kid pulumi.StringInput    `pulumi:"kid"`
	Kty pulumi.StringInput    `pulumi:"kty"`
	N   pulumi.StringPtrInput `pulumi:"n"`
	X   pulumi.StringPtrInput `pulumi:"x"`
	Y   pulumi.StringPtrInput `pulumi:"y"`
}

func (OAuthJwkArgs) ElementType 

func (OAuthJwkArgs) ElementType() reflect.Type

func (OAuthJwkArgs) ToOAuthJwkOutput 

func (i OAuthJwkArgs) ToOAuthJwkOutput() OAuthJwkOutput

func (OAuthJwkArgs) ToOAuthJwkOutputWithContext 

func (i OAuthJwkArgs) ToOAuthJwkOutputWithContext(ctx context.Context) OAuthJwkOutput

type OAuthJwkArray 

type OAuthJwkArray []OAuthJwkInput

func (OAuthJwkArray) ElementType 

func (OAuthJwkArray) ElementType() reflect.Type

func (OAuthJwkArray) ToOAuthJwkArrayOutput 

func (i OAuthJwkArray) ToOAuthJwkArrayOutput() OAuthJwkArrayOutput

func (OAuthJwkArray) ToOAuthJwkArrayOutputWithContext 

func (i OAuthJwkArray) ToOAuthJwkArrayOutputWithContext(ctx context.Context) OAuthJwkArrayOutput

type OAuthJwkArrayInput 

type OAuthJwkArrayInput interface {
	pulumi.Input

	ToOAuthJwkArrayOutput() OAuthJwkArrayOutput
	ToOAuthJwkArrayOutputWithContext(context.Context) OAuthJwkArrayOutput
}

OAuthJwkArrayInput is an input type that accepts OAuthJwkArray and OAuthJwkArrayOutput values. You can construct a concrete instance of `OAuthJwkArrayInput` via: 

OAuthJwkArray{ OAuthJwkArgs{...} }

type OAuthJwkArrayOutput 

type OAuthJwkArrayOutput struct{ *pulumi.OutputState }

func (OAuthJwkArrayOutput) ElementType 

func (OAuthJwkArrayOutput) ElementType() reflect.Type

func (OAuthJwkArrayOutput) Index 

func (o OAuthJwkArrayOutput) Index(i pulumi.IntInput) OAuthJwkOutput

func (OAuthJwkArrayOutput) ToOAuthJwkArrayOutput 

func (o OAuthJwkArrayOutput) ToOAuthJwkArrayOutput() OAuthJwkArrayOutput

func (OAuthJwkArrayOutput) ToOAuthJwkArrayOutputWithContext 

func (o OAuthJwkArrayOutput) ToOAuthJwkArrayOutputWithContext(ctx context.Context) OAuthJwkArrayOutput

type OAuthJwkInput 

type OAuthJwkInput interface {
	pulumi.Input

	ToOAuthJwkOutput() OAuthJwkOutput
	ToOAuthJwkOutputWithContext(context.Context) OAuthJwkOutput
}

OAuthJwkInput is an input type that accepts OAuthJwkArgs and OAuthJwkOutput values. You can construct a concrete instance of `OAuthJwkInput` via: 

OAuthJwkArgs{...}

type OAuthJwkOutput 

type OAuthJwkOutput struct{ *pulumi.OutputState }

func (OAuthJwkOutput) E 

func (o OAuthJwkOutput) E() pulumi.StringPtrOutput

func (OAuthJwkOutput) ElementType 

func (OAuthJwkOutput) ElementType() reflect.Type

func (OAuthJwkOutput) Kid 

func (o OAuthJwkOutput) Kid() pulumi.StringOutput

func (OAuthJwkOutput) Kty 

func (o OAuthJwkOutput) Kty() pulumi.StringOutput

func (OAuthJwkOutput) N 

func (o OAuthJwkOutput) N() pulumi.StringPtrOutput

func (OAuthJwkOutput) ToOAuthJwkOutput 

func (o OAuthJwkOutput) ToOAuthJwkOutput() OAuthJwkOutput

func (OAuthJwkOutput) ToOAuthJwkOutputWithContext 

func (o OAuthJwkOutput) ToOAuthJwkOutputWithContext(ctx context.Context) OAuthJwkOutput

func (OAuthJwkOutput) X added in v4.4.0 

func (o OAuthJwkOutput) X() pulumi.StringPtrOutput

func (OAuthJwkOutput) Y added in v4.4.0 

func (o OAuthJwkOutput) Y() pulumi.StringPtrOutput

type OAuthMap 

type OAuthMap map[string]OAuthInput

func (OAuthMap) ElementType 

func (OAuthMap) ElementType() reflect.Type

func (OAuthMap) ToOAuthMapOutput 

func (i OAuthMap) ToOAuthMapOutput() OAuthMapOutput

func (OAuthMap) ToOAuthMapOutputWithContext 

func (i OAuthMap) ToOAuthMapOutputWithContext(ctx context.Context) OAuthMapOutput

type OAuthMapInput 

type OAuthMapInput interface {
	pulumi.Input

	ToOAuthMapOutput() OAuthMapOutput
	ToOAuthMapOutputWithContext(context.Context) OAuthMapOutput
}

OAuthMapInput is an input type that accepts OAuthMap and OAuthMapOutput values. You can construct a concrete instance of `OAuthMapInput` via: 

OAuthMap{ "key": OAuthArgs{...} }

type OAuthMapOutput 

type OAuthMapOutput struct{ *pulumi.OutputState }

func (OAuthMapOutput) ElementType 

func (OAuthMapOutput) ElementType() reflect.Type

func (OAuthMapOutput) MapIndex 

func (o OAuthMapOutput) MapIndex(k pulumi.StringInput) OAuthOutput

func (OAuthMapOutput) ToOAuthMapOutput 

func (o OAuthMapOutput) ToOAuthMapOutput() OAuthMapOutput

func (OAuthMapOutput) ToOAuthMapOutputWithContext 

func (o OAuthMapOutput) ToOAuthMapOutputWithContext(ctx context.Context) OAuthMapOutput

type OAuthOutput 

type OAuthOutput struct{ *pulumi.OutputState }

func (OAuthOutput) AccessibilityErrorRedirectUrl 

func (o OAuthOutput) AccessibilityErrorRedirectUrl() pulumi.StringPtrOutput

Custom error page URL.

func (OAuthOutput) AccessibilityLoginRedirectUrl 

func (o OAuthOutput) AccessibilityLoginRedirectUrl() pulumi.StringPtrOutput

Custom login page for this application.

func (OAuthOutput) AccessibilitySelfService 

func (o OAuthOutput) AccessibilitySelfService() pulumi.BoolPtrOutput

Enable self-service. By default, it is `false`.

func (OAuthOutput) AdminNote 

func (o OAuthOutput) AdminNote() pulumi.StringPtrOutput

Application notes for admins.

func (OAuthOutput) AppLinksJson 

func (o OAuthOutput) AppLinksJson() pulumi.StringPtrOutput

Displays specific appLinks for the app. The value for each application link should be boolean.

func (OAuthOutput) AppSettingsJson 

func (o OAuthOutput) AppSettingsJson() pulumi.StringPtrOutput

Application settings in JSON format.

func (OAuthOutput) AuthenticationPolicy 

func (o OAuthOutput) AuthenticationPolicy() pulumi.StringPtrOutput

The ID of the associated `appSignonPolicy`. If this property is removed from the application the `default` sign-on-policy will be associated with this application.

func (OAuthOutput) AutoKeyRotation 

func (o OAuthOutput) AutoKeyRotation() pulumi.BoolPtrOutput

Requested key rotation mode. If `autoKeyRotation` isn't specified, the client automatically opts in for Okta's key rotation. You can update this property via the API or via the administrator UI. See: https://developer.okta.com/docs/reference/api/apps/#oauth-credential-object

func (OAuthOutput) AutoSubmitToolbar 

func (o OAuthOutput) AutoSubmitToolbar() pulumi.BoolPtrOutput

Display auto submit toolbar.

func (OAuthOutput) ClientBasicSecret 

func (o OAuthOutput) ClientBasicSecret() pulumi.StringPtrOutput

OAuth client secret key, this can be set when `tokenEndpointAuthMethod` is `"clientSecretBasic"`.

func (OAuthOutput) ClientId 

func (o OAuthOutput) ClientId() pulumi.StringOutput

OAuth client ID. If set during creation, app is created with this id. See: https://developer.okta.com/docs/reference/api/apps/#oauth-credential-object

func (OAuthOutput) ClientSecret 

func (o OAuthOutput) ClientSecret() pulumi.StringOutput

The client secret of the application. See: https://developer.okta.com/docs/reference/api/apps/#oauth-credential-object

func (OAuthOutput) ClientUri 

func (o OAuthOutput) ClientUri() pulumi.StringPtrOutput

URI to a web page providing information about the client.

func (OAuthOutput) ConsentMethod 

func (o OAuthOutput) ConsentMethod() pulumi.StringPtrOutput

Indicates whether user consent is required or implicit. Valid values: `"REQUIRED"`, `"TRUSTED"`. Default value is `"TRUSTED"`.

func (OAuthOutput) ElementType 

func (OAuthOutput) ElementType() reflect.Type

func (OAuthOutput) EnduserNote 

func (o OAuthOutput) EnduserNote() pulumi.StringPtrOutput

Application notes for end users.

func (OAuthOutput) GrantTypes 

func (o OAuthOutput) GrantTypes() pulumi.StringArrayOutput

List of OAuth 2.0 grant types. Conditional validation params found [here](https://developer.okta.com/docs/api/resources/apps#credentials-settings-details). Defaults to minimum requirements per app type. Valid values: `"authorizationCode"`, `"implicit"`, `"password"`, `"refreshToken"`, `"clientCredentials"`, `"urn:ietf:params:oauth:grant-type:saml2-bearer"` (*Early Access Property*), `"urn:ietf:params:oauth:grant-type:token-exchange"` (*Early Access Property*), `"interactionCode"` (*OIE only*).

func (OAuthOutput) GroupsClaim 

func (o OAuthOutput) GroupsClaim() OAuthGroupsClaimPtrOutput

Groups claim for an OpenID Connect client application. **IMPORTANT**: this argument is ignored when Okta API authentication is done with OAuth 2.0 credentials

func (OAuthOutput) HideIos 

func (o OAuthOutput) HideIos() pulumi.BoolPtrOutput

Do not display application icon on mobile app.

func (OAuthOutput) HideWeb 

func (o OAuthOutput) HideWeb() pulumi.BoolPtrOutput

Do not display application icon to users.

func (OAuthOutput) ImplicitAssignment 

func (o OAuthOutput) ImplicitAssignment() pulumi.BoolPtrOutput

*Early Access Property*. Enables [Federation Broker Mode](https://help.okta.com/en/prod/Content/Topics/Apps/apps-fbm-enable.htm). When this mode is enabled, `users` and `groups` arguments are ignored.

func (OAuthOutput) IssuerMode 

func (o OAuthOutput) IssuerMode() pulumi.StringPtrOutput

Indicates whether the Okta Authorization Server uses the original Okta org domain URL or a custom domain URL as the issuer of ID token for this client. Valid values: `"CUSTOM_URL"`,`"ORG_URL"` or `"DYNAMIC"`. Default is `"ORG_URL"`.

func (OAuthOutput) Jwks 

func (o OAuthOutput) Jwks() OAuthJwkArrayOutput

JSON Web Key set. Multiple jwks are supported[Admin Console JWK Reference](https://developer.okta.com/docs/guides/implement-oauth-for-okta-serviceapp/main/#generate-the-jwk-in-the-admin-console). Use kty=RSA e=[value] n=[value] for RSA jwks, and kty=EC x=[value] y=[value] for EC jwks

func (OAuthOutput) JwksUri added in v4.0.5 

func (o OAuthOutput) JwksUri() pulumi.StringPtrOutput

URL of the custom authorization server's JSON Web Key Set document.

func (OAuthOutput) Label 

func (o OAuthOutput) Label() pulumi.StringOutput

The Application's display name.

func (OAuthOutput) LoginMode 

func (o OAuthOutput) LoginMode() pulumi.StringPtrOutput

The type of Idp-Initiated login that the client supports, if any. Valid values: `"DISABLED"`, `"SPEC"`, `"OKTA"`. Default is `"DISABLED"`.

func (OAuthOutput) LoginScopes 

func (o OAuthOutput) LoginScopes() pulumi.StringArrayOutput

List of scopes to use for the request. Valid values: `"openid"`, `"profile"`, `"email"`, `"address"`, `"phone"`. Required when `loginMode` is NOT `DISABLED`.

func (OAuthOutput) LoginUri 

func (o OAuthOutput) LoginUri() pulumi.StringPtrOutput

URI that initiates login. Required when `loginMode` is NOT `DISABLED`. 

func (o OAuthOutput) Logo() pulumi.StringPtrOutput

Local file path to the logo. The file must be in PNG, JPG, or GIF format, and less than 1 MB in size.

func (OAuthOutput) LogoUri 

func (o OAuthOutput) LogoUri() pulumi.StringPtrOutput

URI that references a logo for the client.

func (OAuthOutput) LogoUrl 

func (o OAuthOutput) LogoUrl() pulumi.StringOutput

Direct link of application logo.

func (OAuthOutput) Name 

func (o OAuthOutput) Name() pulumi.StringOutput

Name of the claim that will be used in the token.

func (OAuthOutput) OmitSecret 

func (o OAuthOutput) OmitSecret() pulumi.BoolPtrOutput

This tells the provider not to persist the application's secret to state. Your app's `clientSecret` will be recreated if this ever changes from true => false.

func (OAuthOutput) PkceRequired 

func (o OAuthOutput) PkceRequired() pulumi.BoolPtrOutput

Require Proof Key for Code Exchange (PKCE) for additional verification. If `pkceRequired` isn't specified when adding a new application, Okta sets it to `true` by default for `"browser"` and `"native"` application types. See https://developer.okta.com/docs/reference/api/apps/#oauth-credential-object

func (OAuthOutput) PolicyUri 

func (o OAuthOutput) PolicyUri() pulumi.StringPtrOutput

URI to web page providing client policy document.

func (OAuthOutput) PostLogoutRedirectUris 

func (o OAuthOutput) PostLogoutRedirectUris() pulumi.StringArrayOutput

List of URIs for redirection after logout.

func (OAuthOutput) Profile 

func (o OAuthOutput) Profile() pulumi.StringPtrOutput

Custom JSON that represents an OAuth application's profile.

func (OAuthOutput) RedirectUris 

func (o OAuthOutput) RedirectUris() pulumi.StringArrayOutput

List of URIs for use in the redirect-based flow. This is required for all application types except service.

func (OAuthOutput) RefreshTokenLeeway 

func (o OAuthOutput) RefreshTokenLeeway() pulumi.IntPtrOutput

Grace period for token rotation. Valid values: 0 to 60 seconds.

func (OAuthOutput) RefreshTokenRotation 

func (o OAuthOutput) RefreshTokenRotation() pulumi.StringPtrOutput

Refresh token rotation behavior. Valid values: `"STATIC"` or `"ROTATE"`.

func (OAuthOutput) ResponseTypes 

func (o OAuthOutput) ResponseTypes() pulumi.StringArrayOutput

List of OAuth 2.0 response type strings. Array values of `"code"`, `"token"`, `"idToken"`. The `grantTypes` and `responseTypes` values described are partially orthogonal, as they refer to arguments passed to different endpoints in the OAuth 2.0 protocol (opens new window). However, they are related in that the `grantTypes` available to a client influence the `responseTypes` that the client is allowed to use, and vice versa. For instance, a grantTypes value that includes authorizationCode implies a `responseTypes` value that includes code, as both values are defined as part of the OAuth 2.0 authorization code grant. See: https://developer.okta.com/docs/reference/api/apps/#add-oauth-2-0-client-application

func (OAuthOutput) SignOnMode 

func (o OAuthOutput) SignOnMode() pulumi.StringOutput

Sign-on mode of application.

func (OAuthOutput) Status 

func (o OAuthOutput) Status() pulumi.StringPtrOutput

The status of the application, by default, it is `"ACTIVE"`.

func (OAuthOutput) ToOAuthOutput 

func (o OAuthOutput) ToOAuthOutput() OAuthOutput

func (OAuthOutput) ToOAuthOutputWithContext 

func (o OAuthOutput) ToOAuthOutputWithContext(ctx context.Context) OAuthOutput

func (OAuthOutput) TokenEndpointAuthMethod 

func (o OAuthOutput) TokenEndpointAuthMethod() pulumi.StringPtrOutput

Requested authentication method for the token endpoint. It can be set to `"none"`, `"clientSecretPost"`, `"clientSecretBasic"`, `"clientSecretJwt"`, `"privateKeyJwt"`. Use `pkceRequired` to require PKCE for your confidential clients using the Authorization Code flow. If `"tokenEndpointAuthMethod"` is `"none"`, `pkceRequired` needs to be `true`. If `pkceRequired` isn't specified when adding a new application, Okta sets it to `true` by default for `"browser"` and `"native"` application types. See https://developer.okta.com/docs/reference/api/apps/#oauth-credential-object

func (OAuthOutput) TosUri 

func (o OAuthOutput) TosUri() pulumi.StringPtrOutput

URI to web page providing client tos (terms of service).

func (OAuthOutput) Type 

func (o OAuthOutput) Type() pulumi.StringOutput

The type of OAuth application. Valid values: `"web"`, `"native"`, `"browser"`, `"service"`. For SPA apps use `browser`.

func (OAuthOutput) UserNameTemplate 

func (o OAuthOutput) UserNameTemplate() pulumi.StringPtrOutput

Username template. Default: `"${source.login}"`

func (OAuthOutput) UserNameTemplatePushStatus 

func (o OAuthOutput) UserNameTemplatePushStatus() pulumi.StringPtrOutput

Push username on update. Valid values: `"PUSH"` and `"DONT_PUSH"`.

func (OAuthOutput) UserNameTemplateSuffix 

func (o OAuthOutput) UserNameTemplateSuffix() pulumi.StringPtrOutput

Username template suffix.

func (OAuthOutput) UserNameTemplateType 

func (o OAuthOutput) UserNameTemplateType() pulumi.StringPtrOutput

Username template type. Default: `"BUILT_IN"`.

func (OAuthOutput) WildcardRedirect 

func (o OAuthOutput) WildcardRedirect() pulumi.StringPtrOutput

*Early Access Property*. Indicates if the client is allowed to use wildcard matching of `redirectUris`. Valid values: `"DISABLED"`, `"SUBDOMAIN"`. Default value is `"DISABLED"`.

type OAuthPostLogoutRedirectUri 

type OAuthPostLogoutRedirectUri struct {
	pulumi.CustomResourceState

	// OAuth application ID. Note: `appId` can not be changed once set.
	AppId pulumi.StringOutput `pulumi:"appId"`
	// Post Logout Redirect URI to append to Okta OIDC application.
	Uri pulumi.StringOutput `pulumi:"uri"`
}

This resource allows you to manage post logout redirection URI for use in redirect-based flows.

> `app.OAuthPostLogoutRedirectUri` has been marked deprecated and will be removed in the v5 release of the provider. Operators should manage the post logout redirect URIs for an oauth app directly on that resource.

## Example Usage

```go package main

import ( 

"github.com/pulumi/pulumi-okta/sdk/v4/go/okta/app"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"

) 

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		testOAuth, err := app.NewOAuth(ctx, "testOAuth", &app.OAuthArgs{
			Label: pulumi.String("testAcc_replace_with_uuid"),
			Type:  pulumi.String("web"),
			GrantTypes: pulumi.StringArray{
				pulumi.String("authorization_code"),
			},
			ResponseTypes: pulumi.StringArray{
				pulumi.String("code"),
			},
			RedirectUris: pulumi.StringArray{
				pulumi.String("myapp://callback"),
			},
			PostLogoutRedirectUris: pulumi.StringArray{
				pulumi.String("https://www.example.com"),
			},
		})
		if err != nil {
			return err
		}
		_, err = app.NewOAuthPostLogoutRedirectUri(ctx, "testOAuthPostLogoutRedirectUri", &app.OAuthPostLogoutRedirectUriArgs{
			AppId: testOAuth.ID(),
			Uri:   pulumi.String("https://www.example.com"),
		})
		if err != nil {
			return err
		}
		return nil
	})
}

```

## Import

A post logout redirect URI can be imported via the Okta ID.

```sh 

$ pulumi import okta:app/oAuthPostLogoutRedirectUri:OAuthPostLogoutRedirectUri example &#60;app id&#62;/&#60;uri&#62;

```

func GetOAuthPostLogoutRedirectUri 

func GetOAuthPostLogoutRedirectUri(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *OAuthPostLogoutRedirectUriState, opts ...pulumi.ResourceOption) (*OAuthPostLogoutRedirectUri, error)

GetOAuthPostLogoutRedirectUri gets an existing OAuthPostLogoutRedirectUri resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewOAuthPostLogoutRedirectUri 

func NewOAuthPostLogoutRedirectUri(ctx *pulumi.Context,
	name string, args *OAuthPostLogoutRedirectUriArgs, opts ...pulumi.ResourceOption) (*OAuthPostLogoutRedirectUri, error)

NewOAuthPostLogoutRedirectUri registers a new resource with the given unique name, arguments, and options.

func (*OAuthPostLogoutRedirectUri) ElementType 

func (*OAuthPostLogoutRedirectUri) ElementType() reflect.Type

func (*OAuthPostLogoutRedirectUri) ToOAuthPostLogoutRedirectUriOutput 

func (i *OAuthPostLogoutRedirectUri) ToOAuthPostLogoutRedirectUriOutput() OAuthPostLogoutRedirectUriOutput

func (*OAuthPostLogoutRedirectUri) ToOAuthPostLogoutRedirectUriOutputWithContext 

func (i *OAuthPostLogoutRedirectUri) ToOAuthPostLogoutRedirectUriOutputWithContext(ctx context.Context) OAuthPostLogoutRedirectUriOutput

type OAuthPostLogoutRedirectUriArgs 

type OAuthPostLogoutRedirectUriArgs struct {
	// OAuth application ID. Note: `appId` can not be changed once set.
	AppId pulumi.StringInput
	// Post Logout Redirect URI to append to Okta OIDC application.
	Uri pulumi.StringInput
}

The set of arguments for constructing a OAuthPostLogoutRedirectUri resource.

func (OAuthPostLogoutRedirectUriArgs) ElementType 

func (OAuthPostLogoutRedirectUriArgs) ElementType() reflect.Type

type OAuthPostLogoutRedirectUriArray 

type OAuthPostLogoutRedirectUriArray []OAuthPostLogoutRedirectUriInput

func (OAuthPostLogoutRedirectUriArray) ElementType 

func (OAuthPostLogoutRedirectUriArray) ElementType() reflect.Type

func (OAuthPostLogoutRedirectUriArray) ToOAuthPostLogoutRedirectUriArrayOutput 

func (i OAuthPostLogoutRedirectUriArray) ToOAuthPostLogoutRedirectUriArrayOutput() OAuthPostLogoutRedirectUriArrayOutput

func (OAuthPostLogoutRedirectUriArray) ToOAuthPostLogoutRedirectUriArrayOutputWithContext 

func (i OAuthPostLogoutRedirectUriArray) ToOAuthPostLogoutRedirectUriArrayOutputWithContext(ctx context.Context) OAuthPostLogoutRedirectUriArrayOutput

type OAuthPostLogoutRedirectUriArrayInput 

type OAuthPostLogoutRedirectUriArrayInput interface {
	pulumi.Input

	ToOAuthPostLogoutRedirectUriArrayOutput() OAuthPostLogoutRedirectUriArrayOutput
	ToOAuthPostLogoutRedirectUriArrayOutputWithContext(context.Context) OAuthPostLogoutRedirectUriArrayOutput
}

OAuthPostLogoutRedirectUriArrayInput is an input type that accepts OAuthPostLogoutRedirectUriArray and OAuthPostLogoutRedirectUriArrayOutput values. You can construct a concrete instance of `OAuthPostLogoutRedirectUriArrayInput` via: 

OAuthPostLogoutRedirectUriArray{ OAuthPostLogoutRedirectUriArgs{...} }

type OAuthPostLogoutRedirectUriArrayOutput 

type OAuthPostLogoutRedirectUriArrayOutput struct{ *pulumi.OutputState }

func (OAuthPostLogoutRedirectUriArrayOutput) ElementType 

func (OAuthPostLogoutRedirectUriArrayOutput) ElementType() reflect.Type

func (OAuthPostLogoutRedirectUriArrayOutput) Index 

func (o OAuthPostLogoutRedirectUriArrayOutput) Index(i pulumi.IntInput) OAuthPostLogoutRedirectUriOutput

func (OAuthPostLogoutRedirectUriArrayOutput) ToOAuthPostLogoutRedirectUriArrayOutput 

func (o OAuthPostLogoutRedirectUriArrayOutput) ToOAuthPostLogoutRedirectUriArrayOutput() OAuthPostLogoutRedirectUriArrayOutput

func (OAuthPostLogoutRedirectUriArrayOutput) ToOAuthPostLogoutRedirectUriArrayOutputWithContext 

func (o OAuthPostLogoutRedirectUriArrayOutput) ToOAuthPostLogoutRedirectUriArrayOutputWithContext(ctx context.Context) OAuthPostLogoutRedirectUriArrayOutput

type OAuthPostLogoutRedirectUriInput 

type OAuthPostLogoutRedirectUriInput interface {
	pulumi.Input

	ToOAuthPostLogoutRedirectUriOutput() OAuthPostLogoutRedirectUriOutput
	ToOAuthPostLogoutRedirectUriOutputWithContext(ctx context.Context) OAuthPostLogoutRedirectUriOutput
}

type OAuthPostLogoutRedirectUriMap 

type OAuthPostLogoutRedirectUriMap map[string]OAuthPostLogoutRedirectUriInput

func (OAuthPostLogoutRedirectUriMap) ElementType 

func (OAuthPostLogoutRedirectUriMap) ElementType() reflect.Type

func (OAuthPostLogoutRedirectUriMap) ToOAuthPostLogoutRedirectUriMapOutput 

func (i OAuthPostLogoutRedirectUriMap) ToOAuthPostLogoutRedirectUriMapOutput() OAuthPostLogoutRedirectUriMapOutput

func (OAuthPostLogoutRedirectUriMap) ToOAuthPostLogoutRedirectUriMapOutputWithContext 

func (i OAuthPostLogoutRedirectUriMap) ToOAuthPostLogoutRedirectUriMapOutputWithContext(ctx context.Context) OAuthPostLogoutRedirectUriMapOutput

type OAuthPostLogoutRedirectUriMapInput 

type OAuthPostLogoutRedirectUriMapInput interface {
	pulumi.Input

	ToOAuthPostLogoutRedirectUriMapOutput() OAuthPostLogoutRedirectUriMapOutput
	ToOAuthPostLogoutRedirectUriMapOutputWithContext(context.Context) OAuthPostLogoutRedirectUriMapOutput
}

OAuthPostLogoutRedirectUriMapInput is an input type that accepts OAuthPostLogoutRedirectUriMap and OAuthPostLogoutRedirectUriMapOutput values. You can construct a concrete instance of `OAuthPostLogoutRedirectUriMapInput` via: 

OAuthPostLogoutRedirectUriMap{ "key": OAuthPostLogoutRedirectUriArgs{...} }

type OAuthPostLogoutRedirectUriMapOutput 

type OAuthPostLogoutRedirectUriMapOutput struct{ *pulumi.OutputState }

func (OAuthPostLogoutRedirectUriMapOutput) ElementType 

func (OAuthPostLogoutRedirectUriMapOutput) ElementType() reflect.Type

func (OAuthPostLogoutRedirectUriMapOutput) MapIndex 

func (o OAuthPostLogoutRedirectUriMapOutput) MapIndex(k pulumi.StringInput) OAuthPostLogoutRedirectUriOutput

func (OAuthPostLogoutRedirectUriMapOutput) ToOAuthPostLogoutRedirectUriMapOutput 

func (o OAuthPostLogoutRedirectUriMapOutput) ToOAuthPostLogoutRedirectUriMapOutput() OAuthPostLogoutRedirectUriMapOutput

func (OAuthPostLogoutRedirectUriMapOutput) ToOAuthPostLogoutRedirectUriMapOutputWithContext 

func (o OAuthPostLogoutRedirectUriMapOutput) ToOAuthPostLogoutRedirectUriMapOutputWithContext(ctx context.Context) OAuthPostLogoutRedirectUriMapOutput

type OAuthPostLogoutRedirectUriOutput 

type OAuthPostLogoutRedirectUriOutput struct{ *pulumi.OutputState }

func (OAuthPostLogoutRedirectUriOutput) AppId 

func (o OAuthPostLogoutRedirectUriOutput) AppId() pulumi.StringOutput

OAuth application ID. Note: `appId` can not be changed once set.

func (OAuthPostLogoutRedirectUriOutput) ElementType 

func (OAuthPostLogoutRedirectUriOutput) ElementType() reflect.Type

func (OAuthPostLogoutRedirectUriOutput) ToOAuthPostLogoutRedirectUriOutput 

func (o OAuthPostLogoutRedirectUriOutput) ToOAuthPostLogoutRedirectUriOutput() OAuthPostLogoutRedirectUriOutput

func (OAuthPostLogoutRedirectUriOutput) ToOAuthPostLogoutRedirectUriOutputWithContext 

func (o OAuthPostLogoutRedirectUriOutput) ToOAuthPostLogoutRedirectUriOutputWithContext(ctx context.Context) OAuthPostLogoutRedirectUriOutput

func (OAuthPostLogoutRedirectUriOutput) Uri 

func (o OAuthPostLogoutRedirectUriOutput) Uri() pulumi.StringOutput

Post Logout Redirect URI to append to Okta OIDC application.

type OAuthPostLogoutRedirectUriState 

type OAuthPostLogoutRedirectUriState struct {
	// OAuth application ID. Note: `appId` can not be changed once set.
	AppId pulumi.StringPtrInput
	// Post Logout Redirect URI to append to Okta OIDC application.
	Uri pulumi.StringPtrInput
}

func (OAuthPostLogoutRedirectUriState) ElementType 

func (OAuthPostLogoutRedirectUriState) ElementType() reflect.Type

type OAuthRedirectUri 

type OAuthRedirectUri struct {
	pulumi.CustomResourceState

	// OAuth application ID. Note: `appId` can not be changed once set.
	AppId pulumi.StringOutput `pulumi:"appId"`
	// Redirect URI to append to Okta OIDC application.
	Uri pulumi.StringOutput `pulumi:"uri"`
}

This resource allows you to manage redirection URI for use in redirect-based flows.

> `app.OAuthRedirectUri` has been marked deprecated and will be removed in the v5 release of the provider. Operators should manage the redirect URIs for an oauth app directly on that resource.

## Example Usage

```go package main

import ( 

"github.com/pulumi/pulumi-okta/sdk/v4/go/okta/app"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"

) 

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		testOAuth, err := app.NewOAuth(ctx, "testOAuth", &app.OAuthArgs{
			Label: pulumi.String("testAcc_replace_with_uuid"),
			Type:  pulumi.String("web"),
			GrantTypes: pulumi.StringArray{
				pulumi.String("authorization_code"),
			},
			ResponseTypes: pulumi.StringArray{
				pulumi.String("code"),
			},
			RedirectUris: pulumi.StringArray{
				pulumi.String("myapp://callback"),
			},
		})
		if err != nil {
			return err
		}
		_, err = app.NewOAuthRedirectUri(ctx, "testOAuthRedirectUri", &app.OAuthRedirectUriArgs{
			AppId: testOAuth.ID(),
			Uri:   pulumi.String("http://google.com"),
		})
		if err != nil {
			return err
		}
		return nil
	})
}

```

## Import

A redirect URI can be imported via the Okta ID.

```sh 

$ pulumi import okta:app/oAuthRedirectUri:OAuthRedirectUri example &#60;app id&#62;/&#60;uri&#62;

```

func GetOAuthRedirectUri 

func GetOAuthRedirectUri(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *OAuthRedirectUriState, opts ...pulumi.ResourceOption) (*OAuthRedirectUri, error)

GetOAuthRedirectUri gets an existing OAuthRedirectUri resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewOAuthRedirectUri 

func NewOAuthRedirectUri(ctx *pulumi.Context,
	name string, args *OAuthRedirectUriArgs, opts ...pulumi.ResourceOption) (*OAuthRedirectUri, error)

NewOAuthRedirectUri registers a new resource with the given unique name, arguments, and options.

func (*OAuthRedirectUri) ElementType 

func (*OAuthRedirectUri) ElementType() reflect.Type

func (*OAuthRedirectUri) ToOAuthRedirectUriOutput 

func (i *OAuthRedirectUri) ToOAuthRedirectUriOutput() OAuthRedirectUriOutput

func (*OAuthRedirectUri) ToOAuthRedirectUriOutputWithContext 

func (i *OAuthRedirectUri) ToOAuthRedirectUriOutputWithContext(ctx context.Context) OAuthRedirectUriOutput

type OAuthRedirectUriArgs 

type OAuthRedirectUriArgs struct {
	// OAuth application ID. Note: `appId` can not be changed once set.
	AppId pulumi.StringInput
	// Redirect URI to append to Okta OIDC application.
	Uri pulumi.StringInput
}

The set of arguments for constructing a OAuthRedirectUri resource.

func (OAuthRedirectUriArgs) ElementType 

func (OAuthRedirectUriArgs) ElementType() reflect.Type

type OAuthRedirectUriArray 

type OAuthRedirectUriArray []OAuthRedirectUriInput

func (OAuthRedirectUriArray) ElementType 

func (OAuthRedirectUriArray) ElementType() reflect.Type

func (OAuthRedirectUriArray) ToOAuthRedirectUriArrayOutput 

func (i OAuthRedirectUriArray) ToOAuthRedirectUriArrayOutput() OAuthRedirectUriArrayOutput

func (OAuthRedirectUriArray) ToOAuthRedirectUriArrayOutputWithContext 

func (i OAuthRedirectUriArray) ToOAuthRedirectUriArrayOutputWithContext(ctx context.Context) OAuthRedirectUriArrayOutput

type OAuthRedirectUriArrayInput 

type OAuthRedirectUriArrayInput interface {
	pulumi.Input

	ToOAuthRedirectUriArrayOutput() OAuthRedirectUriArrayOutput
	ToOAuthRedirectUriArrayOutputWithContext(context.Context) OAuthRedirectUriArrayOutput
}

OAuthRedirectUriArrayInput is an input type that accepts OAuthRedirectUriArray and OAuthRedirectUriArrayOutput values. You can construct a concrete instance of `OAuthRedirectUriArrayInput` via: 

OAuthRedirectUriArray{ OAuthRedirectUriArgs{...} }

type OAuthRedirectUriArrayOutput 

type OAuthRedirectUriArrayOutput struct{ *pulumi.OutputState }

func (OAuthRedirectUriArrayOutput) ElementType 

func (OAuthRedirectUriArrayOutput) ElementType() reflect.Type

func (OAuthRedirectUriArrayOutput) Index 

func (o OAuthRedirectUriArrayOutput) Index(i pulumi.IntInput) OAuthRedirectUriOutput

func (OAuthRedirectUriArrayOutput) ToOAuthRedirectUriArrayOutput 

func (o OAuthRedirectUriArrayOutput) ToOAuthRedirectUriArrayOutput() OAuthRedirectUriArrayOutput

func (OAuthRedirectUriArrayOutput) ToOAuthRedirectUriArrayOutputWithContext 

func (o OAuthRedirectUriArrayOutput) ToOAuthRedirectUriArrayOutputWithContext(ctx context.Context) OAuthRedirectUriArrayOutput

type OAuthRedirectUriInput 

type OAuthRedirectUriInput interface {
	pulumi.Input

	ToOAuthRedirectUriOutput() OAuthRedirectUriOutput
	ToOAuthRedirectUriOutputWithContext(ctx context.Context) OAuthRedirectUriOutput
}

type OAuthRedirectUriMap 

type OAuthRedirectUriMap map[string]OAuthRedirectUriInput

func (OAuthRedirectUriMap) ElementType 

func (OAuthRedirectUriMap) ElementType() reflect.Type

func (OAuthRedirectUriMap) ToOAuthRedirectUriMapOutput 

func (i OAuthRedirectUriMap) ToOAuthRedirectUriMapOutput() OAuthRedirectUriMapOutput

func (OAuthRedirectUriMap) ToOAuthRedirectUriMapOutputWithContext 

func (i OAuthRedirectUriMap) ToOAuthRedirectUriMapOutputWithContext(ctx context.Context) OAuthRedirectUriMapOutput

type OAuthRedirectUriMapInput 

type OAuthRedirectUriMapInput interface {
	pulumi.Input

	ToOAuthRedirectUriMapOutput() OAuthRedirectUriMapOutput
	ToOAuthRedirectUriMapOutputWithContext(context.Context) OAuthRedirectUriMapOutput
}

OAuthRedirectUriMapInput is an input type that accepts OAuthRedirectUriMap and OAuthRedirectUriMapOutput values. You can construct a concrete instance of `OAuthRedirectUriMapInput` via: 

OAuthRedirectUriMap{ "key": OAuthRedirectUriArgs{...} }

type OAuthRedirectUriMapOutput 

type OAuthRedirectUriMapOutput struct{ *pulumi.OutputState }

func (OAuthRedirectUriMapOutput) ElementType 

func (OAuthRedirectUriMapOutput) ElementType() reflect.Type

func (OAuthRedirectUriMapOutput) MapIndex 

func (o OAuthRedirectUriMapOutput) MapIndex(k pulumi.StringInput) OAuthRedirectUriOutput

func (OAuthRedirectUriMapOutput) ToOAuthRedirectUriMapOutput 

func (o OAuthRedirectUriMapOutput) ToOAuthRedirectUriMapOutput() OAuthRedirectUriMapOutput

func (OAuthRedirectUriMapOutput) ToOAuthRedirectUriMapOutputWithContext 

func (o OAuthRedirectUriMapOutput) ToOAuthRedirectUriMapOutputWithContext(ctx context.Context) OAuthRedirectUriMapOutput

type OAuthRedirectUriOutput 

type OAuthRedirectUriOutput struct{ *pulumi.OutputState }

func (OAuthRedirectUriOutput) AppId 

func (o OAuthRedirectUriOutput) AppId() pulumi.StringOutput

OAuth application ID. Note: `appId` can not be changed once set.

func (OAuthRedirectUriOutput) ElementType 

func (OAuthRedirectUriOutput) ElementType() reflect.Type

func (OAuthRedirectUriOutput) ToOAuthRedirectUriOutput 

func (o OAuthRedirectUriOutput) ToOAuthRedirectUriOutput() OAuthRedirectUriOutput

func (OAuthRedirectUriOutput) ToOAuthRedirectUriOutputWithContext 

func (o OAuthRedirectUriOutput) ToOAuthRedirectUriOutputWithContext(ctx context.Context) OAuthRedirectUriOutput

func (OAuthRedirectUriOutput) Uri 

func (o OAuthRedirectUriOutput) Uri() pulumi.StringOutput

Redirect URI to append to Okta OIDC application.

type OAuthRedirectUriState 

type OAuthRedirectUriState struct {
	// OAuth application ID. Note: `appId` can not be changed once set.
	AppId pulumi.StringPtrInput
	// Redirect URI to append to Okta OIDC application.
	Uri pulumi.StringPtrInput
}

func (OAuthRedirectUriState) ElementType 

func (OAuthRedirectUriState) ElementType() reflect.Type

type OAuthState 

type OAuthState struct {
	// Custom error page URL.
	AccessibilityErrorRedirectUrl pulumi.StringPtrInput
	// Custom login page for this application.
	AccessibilityLoginRedirectUrl pulumi.StringPtrInput
	// Enable self-service. By default, it is `false`.
	AccessibilitySelfService pulumi.BoolPtrInput
	// Application notes for admins.
	AdminNote pulumi.StringPtrInput
	// Displays specific appLinks for the app. The value for each application link should be boolean.
	AppLinksJson pulumi.StringPtrInput
	// Application settings in JSON format.
	AppSettingsJson pulumi.StringPtrInput
	// The ID of the associated `appSignonPolicy`. If this property is removed from the application the `default` sign-on-policy will be associated with this application.
	AuthenticationPolicy pulumi.StringPtrInput
	// Requested key rotation mode.  If
	// `autoKeyRotation` isn't specified, the client automatically opts in for Okta's
	// key rotation. You can update this property via the API or via the administrator
	// UI.
	// See: https://developer.okta.com/docs/reference/api/apps/#oauth-credential-object
	AutoKeyRotation pulumi.BoolPtrInput
	// Display auto submit toolbar.
	AutoSubmitToolbar pulumi.BoolPtrInput
	// OAuth client secret key, this can be set when `tokenEndpointAuthMethod` is `"clientSecretBasic"`.
	ClientBasicSecret pulumi.StringPtrInput
	// OAuth client ID. If set during creation, app is created with this id. See: https://developer.okta.com/docs/reference/api/apps/#oauth-credential-object
	ClientId pulumi.StringPtrInput
	// The client secret of the application. See: https://developer.okta.com/docs/reference/api/apps/#oauth-credential-object
	ClientSecret pulumi.StringPtrInput
	// URI to a web page providing information about the client.
	ClientUri pulumi.StringPtrInput
	// Indicates whether user consent is required or implicit. Valid values: `"REQUIRED"`, `"TRUSTED"`. Default value is `"TRUSTED"`.
	ConsentMethod pulumi.StringPtrInput
	// Application notes for end users.
	EnduserNote pulumi.StringPtrInput
	// List of OAuth 2.0 grant types. Conditional validation params found [here](https://developer.okta.com/docs/api/resources/apps#credentials-settings-details).
	// Defaults to minimum requirements per app type. Valid values: `"authorizationCode"`, `"implicit"`, `"password"`, `"refreshToken"`, `"clientCredentials"`,
	// `"urn:ietf:params:oauth:grant-type:saml2-bearer"` (*Early Access Property*), `"urn:ietf:params:oauth:grant-type:token-exchange"` (*Early Access Property*),
	// `"interactionCode"` (*OIE only*).
	GrantTypes pulumi.StringArrayInput
	// Groups claim for an OpenID Connect client application. **IMPORTANT**: this argument is ignored when Okta API authentication is done with OAuth 2.0 credentials
	GroupsClaim OAuthGroupsClaimPtrInput
	// Do not display application icon on mobile app.
	HideIos pulumi.BoolPtrInput
	// Do not display application icon to users.
	HideWeb pulumi.BoolPtrInput
	// *Early Access Property*. Enables [Federation Broker Mode](https://help.okta.com/en/prod/Content/Topics/Apps/apps-fbm-enable.htm). When this mode is enabled, `users` and `groups` arguments are ignored.
	ImplicitAssignment pulumi.BoolPtrInput
	// Indicates whether the Okta Authorization Server uses the original Okta org domain URL or a custom domain URL as the issuer of ID token for this client.
	// Valid values: `"CUSTOM_URL"`,`"ORG_URL"` or `"DYNAMIC"`. Default is `"ORG_URL"`.
	IssuerMode pulumi.StringPtrInput
	// JSON Web Key set. Multiple jwks are supported[Admin Console JWK Reference](https://developer.okta.com/docs/guides/implement-oauth-for-okta-serviceapp/main/#generate-the-jwk-in-the-admin-console). Use kty=RSA e=[value] n=[value] for RSA jwks, and kty=EC x=[value] y=[value] for EC jwks
	Jwks OAuthJwkArrayInput
	// URL of the custom authorization server's JSON Web Key Set document.
	JwksUri pulumi.StringPtrInput
	// The Application's display name.
	Label pulumi.StringPtrInput
	// The type of Idp-Initiated login that the client supports, if any. Valid values: `"DISABLED"`, `"SPEC"`, `"OKTA"`. Default is `"DISABLED"`.
	LoginMode pulumi.StringPtrInput
	// List of scopes to use for the request. Valid values: `"openid"`, `"profile"`, `"email"`, `"address"`, `"phone"`. Required when `loginMode` is NOT `DISABLED`.
	LoginScopes pulumi.StringArrayInput
	// URI that initiates login. Required when `loginMode` is NOT `DISABLED`.
	LoginUri pulumi.StringPtrInput
	Logo pulumi.StringPtrInput
	// URI that references a logo for the client.
	LogoUri pulumi.StringPtrInput
	// Direct link of application logo.
	LogoUrl pulumi.StringPtrInput
	// Name of the claim that will be used in the token.
	Name pulumi.StringPtrInput
	// This tells the provider not to persist the application's secret to state. Your app's `clientSecret` will be recreated if this ever changes from true => false.
	OmitSecret pulumi.BoolPtrInput
	// Require Proof Key for Code Exchange (PKCE) for
	// additional verification.  If `pkceRequired` isn't specified when adding a new
	// application, Okta sets it to `true` by default for `"browser"` and `"native"`
	// application types.
	// See https://developer.okta.com/docs/reference/api/apps/#oauth-credential-object
	PkceRequired pulumi.BoolPtrInput
	// URI to web page providing client policy document.
	PolicyUri pulumi.StringPtrInput
	// List of URIs for redirection after logout.
	PostLogoutRedirectUris pulumi.StringArrayInput
	// Custom JSON that represents an OAuth application's profile.
	Profile pulumi.StringPtrInput
	// List of URIs for use in the redirect-based flow. This is required for all application types except service.
	RedirectUris pulumi.StringArrayInput
	// Grace period for token rotation. Valid values: 0 to 60 seconds.
	RefreshTokenLeeway pulumi.IntPtrInput
	// Refresh token rotation behavior. Valid values: `"STATIC"` or `"ROTATE"`.
	RefreshTokenRotation pulumi.StringPtrInput
	// List of OAuth 2.0 response type strings. Array
	// values of `"code"`, `"token"`, `"idToken"`. The `grantTypes` and `responseTypes`
	// values described are partially orthogonal, as they refer to arguments
	// passed to different endpoints in the OAuth 2.0 protocol (opens new window).
	// However, they are related in that the `grantTypes` available to a client
	// influence the `responseTypes` that the client is allowed to use, and vice versa.
	// For instance, a grantTypes value that includes authorizationCode implies a
	// `responseTypes` value that includes code, as both values are defined as part of
	// the OAuth 2.0 authorization code grant.
	// See: https://developer.okta.com/docs/reference/api/apps/#add-oauth-2-0-client-application
	ResponseTypes pulumi.StringArrayInput
	// Sign-on mode of application.
	SignOnMode pulumi.StringPtrInput
	// The status of the application, by default, it is `"ACTIVE"`.
	Status pulumi.StringPtrInput
	// Requested authentication method for
	// the token endpoint. It can be set to `"none"`, `"clientSecretPost"`,
	// `"clientSecretBasic"`, `"clientSecretJwt"`, `"privateKeyJwt"`.  Use
	// `pkceRequired` to require PKCE for your confidential clients using the
	// Authorization Code flow. If `"tokenEndpointAuthMethod"` is `"none"`,
	// `pkceRequired` needs to be `true`. If `pkceRequired` isn't specified when
	// adding a new application, Okta sets it to `true` by default for `"browser"` and
	// `"native"` application types.
	// See https://developer.okta.com/docs/reference/api/apps/#oauth-credential-object
	TokenEndpointAuthMethod pulumi.StringPtrInput
	// URI to web page providing client tos (terms of service).
	TosUri pulumi.StringPtrInput
	// The type of OAuth application. Valid values: `"web"`, `"native"`, `"browser"`, `"service"`. For SPA apps use `browser`.
	Type pulumi.StringPtrInput
	// Username template. Default: `"${source.login}"`
	UserNameTemplate pulumi.StringPtrInput
	// Push username on update. Valid values: `"PUSH"` and `"DONT_PUSH"`.
	UserNameTemplatePushStatus pulumi.StringPtrInput
	// Username template suffix.
	UserNameTemplateSuffix pulumi.StringPtrInput
	// Username template type. Default: `"BUILT_IN"`.
	UserNameTemplateType pulumi.StringPtrInput
	// *Early Access Property*. Indicates if the client is allowed to use wildcard matching of `redirectUris`. Valid values: `"DISABLED"`, `"SUBDOMAIN"`. Default value is `"DISABLED"`.
	WildcardRedirect pulumi.StringPtrInput
}

func (OAuthState) ElementType 

func (OAuthState) ElementType() reflect.Type

type OauthRoleAssignment added in v4.5.0 

type OauthRoleAssignment struct {
	pulumi.CustomResourceState

	// Client ID for the role to be assigned to
	ClientId pulumi.StringOutput `pulumi:"clientId"`
	// Label of the role assignment
	Label pulumi.StringOutput `pulumi:"label"`
	// Resource set for the custom role to assign, must be the ID of the created resource set.
	ResourceSet pulumi.StringPtrOutput `pulumi:"resourceSet"`
	// Custom Role ID
	Role pulumi.StringPtrOutput `pulumi:"role"`
	// Status of the role assignment
	Status pulumi.StringOutput `pulumi:"status"`
	// Role type to assign. This can be one of the standard Okta roles, such as `HELP_DESK_ADMIN`, or `CUSTOM`. Using custom requires the `resourceSet` and `role` attributes to be set.
	Type pulumi.StringOutput `pulumi:"type"`
}

Manages assignment of an admin role to an OAuth application.

This resource allows you to assign an Okta admin role to a OAuth service application. This requires the Okta tenant feature flag for this function to be enabled.

## Import

OAuth Role assignment can be imported by passing the Client ID and Role Assignment ID for the specific client role.

```sh 

$ pulumi import okta:app/oauthRoleAssignment:OauthRoleAssignment test <clientID>/<roleAssignmentID>`

```

func GetOauthRoleAssignment added in v4.5.0 

func GetOauthRoleAssignment(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *OauthRoleAssignmentState, opts ...pulumi.ResourceOption) (*OauthRoleAssignment, error)

GetOauthRoleAssignment gets an existing OauthRoleAssignment resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewOauthRoleAssignment added in v4.5.0 

func NewOauthRoleAssignment(ctx *pulumi.Context,
	name string, args *OauthRoleAssignmentArgs, opts ...pulumi.ResourceOption) (*OauthRoleAssignment, error)

NewOauthRoleAssignment registers a new resource with the given unique name, arguments, and options.

func (*OauthRoleAssignment) ElementType added in v4.5.0 

func (*OauthRoleAssignment) ElementType() reflect.Type

func (*OauthRoleAssignment) ToOauthRoleAssignmentOutput added in v4.5.0 

func (i *OauthRoleAssignment) ToOauthRoleAssignmentOutput() OauthRoleAssignmentOutput

func (*OauthRoleAssignment) ToOauthRoleAssignmentOutputWithContext added in v4.5.0 

func (i *OauthRoleAssignment) ToOauthRoleAssignmentOutputWithContext(ctx context.Context) OauthRoleAssignmentOutput

type OauthRoleAssignmentArgs added in v4.5.0 

type OauthRoleAssignmentArgs struct {
	// Client ID for the role to be assigned to
	ClientId pulumi.StringInput
	// Resource set for the custom role to assign, must be the ID of the created resource set.
	ResourceSet pulumi.StringPtrInput
	// Custom Role ID
	Role pulumi.StringPtrInput
	// Role type to assign. This can be one of the standard Okta roles, such as `HELP_DESK_ADMIN`, or `CUSTOM`. Using custom requires the `resourceSet` and `role` attributes to be set.
	Type pulumi.StringInput
}

The set of arguments for constructing a OauthRoleAssignment resource.

func (OauthRoleAssignmentArgs) ElementType added in v4.5.0 

func (OauthRoleAssignmentArgs) ElementType() reflect.Type

type OauthRoleAssignmentArray added in v4.5.0 

type OauthRoleAssignmentArray []OauthRoleAssignmentInput

func (OauthRoleAssignmentArray) ElementType added in v4.5.0 

func (OauthRoleAssignmentArray) ElementType() reflect.Type

func (OauthRoleAssignmentArray) ToOauthRoleAssignmentArrayOutput added in v4.5.0 

func (i OauthRoleAssignmentArray) ToOauthRoleAssignmentArrayOutput() OauthRoleAssignmentArrayOutput

func (OauthRoleAssignmentArray) ToOauthRoleAssignmentArrayOutputWithContext added in v4.5.0 

func (i OauthRoleAssignmentArray) ToOauthRoleAssignmentArrayOutputWithContext(ctx context.Context) OauthRoleAssignmentArrayOutput

type OauthRoleAssignmentArrayInput added in v4.5.0 

type OauthRoleAssignmentArrayInput interface {
	pulumi.Input

	ToOauthRoleAssignmentArrayOutput() OauthRoleAssignmentArrayOutput
	ToOauthRoleAssignmentArrayOutputWithContext(context.Context) OauthRoleAssignmentArrayOutput
}

OauthRoleAssignmentArrayInput is an input type that accepts OauthRoleAssignmentArray and OauthRoleAssignmentArrayOutput values. You can construct a concrete instance of `OauthRoleAssignmentArrayInput` via: 

OauthRoleAssignmentArray{ OauthRoleAssignmentArgs{...} }

type OauthRoleAssignmentArrayOutput added in v4.5.0 

type OauthRoleAssignmentArrayOutput struct{ *pulumi.OutputState }

func (OauthRoleAssignmentArrayOutput) ElementType added in v4.5.0 

func (OauthRoleAssignmentArrayOutput) ElementType() reflect.Type

func (OauthRoleAssignmentArrayOutput) Index added in v4.5.0 

func (o OauthRoleAssignmentArrayOutput) Index(i pulumi.IntInput) OauthRoleAssignmentOutput

func (OauthRoleAssignmentArrayOutput) ToOauthRoleAssignmentArrayOutput added in v4.5.0 

func (o OauthRoleAssignmentArrayOutput) ToOauthRoleAssignmentArrayOutput() OauthRoleAssignmentArrayOutput

func (OauthRoleAssignmentArrayOutput) ToOauthRoleAssignmentArrayOutputWithContext added in v4.5.0 

func (o OauthRoleAssignmentArrayOutput) ToOauthRoleAssignmentArrayOutputWithContext(ctx context.Context) OauthRoleAssignmentArrayOutput

type OauthRoleAssignmentInput added in v4.5.0 

type OauthRoleAssignmentInput interface {
	pulumi.Input

	ToOauthRoleAssignmentOutput() OauthRoleAssignmentOutput
	ToOauthRoleAssignmentOutputWithContext(ctx context.Context) OauthRoleAssignmentOutput
}

type OauthRoleAssignmentMap added in v4.5.0 

type OauthRoleAssignmentMap map[string]OauthRoleAssignmentInput

func (OauthRoleAssignmentMap) ElementType added in v4.5.0 

func (OauthRoleAssignmentMap) ElementType() reflect.Type

func (OauthRoleAssignmentMap) ToOauthRoleAssignmentMapOutput added in v4.5.0 

func (i OauthRoleAssignmentMap) ToOauthRoleAssignmentMapOutput() OauthRoleAssignmentMapOutput

func (OauthRoleAssignmentMap) ToOauthRoleAssignmentMapOutputWithContext added in v4.5.0 

func (i OauthRoleAssignmentMap) ToOauthRoleAssignmentMapOutputWithContext(ctx context.Context) OauthRoleAssignmentMapOutput

type OauthRoleAssignmentMapInput added in v4.5.0 

type OauthRoleAssignmentMapInput interface {
	pulumi.Input

	ToOauthRoleAssignmentMapOutput() OauthRoleAssignmentMapOutput
	ToOauthRoleAssignmentMapOutputWithContext(context.Context) OauthRoleAssignmentMapOutput
}

OauthRoleAssignmentMapInput is an input type that accepts OauthRoleAssignmentMap and OauthRoleAssignmentMapOutput values. You can construct a concrete instance of `OauthRoleAssignmentMapInput` via: 

OauthRoleAssignmentMap{ "key": OauthRoleAssignmentArgs{...} }

type OauthRoleAssignmentMapOutput added in v4.5.0 

type OauthRoleAssignmentMapOutput struct{ *pulumi.OutputState }

func (OauthRoleAssignmentMapOutput) ElementType added in v4.5.0 

func (OauthRoleAssignmentMapOutput) ElementType() reflect.Type

func (OauthRoleAssignmentMapOutput) MapIndex added in v4.5.0 

func (o OauthRoleAssignmentMapOutput) MapIndex(k pulumi.StringInput) OauthRoleAssignmentOutput

func (OauthRoleAssignmentMapOutput) ToOauthRoleAssignmentMapOutput added in v4.5.0 

func (o OauthRoleAssignmentMapOutput) ToOauthRoleAssignmentMapOutput() OauthRoleAssignmentMapOutput

func (OauthRoleAssignmentMapOutput) ToOauthRoleAssignmentMapOutputWithContext added in v4.5.0 

func (o OauthRoleAssignmentMapOutput) ToOauthRoleAssignmentMapOutputWithContext(ctx context.Context) OauthRoleAssignmentMapOutput

type OauthRoleAssignmentOutput added in v4.5.0 

type OauthRoleAssignmentOutput struct{ *pulumi.OutputState }

func (OauthRoleAssignmentOutput) ClientId added in v4.5.0 

func (o OauthRoleAssignmentOutput) ClientId() pulumi.StringOutput

Client ID for the role to be assigned to

func (OauthRoleAssignmentOutput) ElementType added in v4.5.0 

func (OauthRoleAssignmentOutput) ElementType() reflect.Type

func (OauthRoleAssignmentOutput) Label added in v4.5.0 

func (o OauthRoleAssignmentOutput) Label() pulumi.StringOutput

Label of the role assignment

func (OauthRoleAssignmentOutput) ResourceSet added in v4.5.0 

func (o OauthRoleAssignmentOutput) ResourceSet() pulumi.StringPtrOutput

Resource set for the custom role to assign, must be the ID of the created resource set.

func (OauthRoleAssignmentOutput) Role added in v4.5.0 

func (o OauthRoleAssignmentOutput) Role() pulumi.StringPtrOutput

Custom Role ID

func (OauthRoleAssignmentOutput) Status added in v4.5.0 

func (o OauthRoleAssignmentOutput) Status() pulumi.StringOutput

Status of the role assignment

func (OauthRoleAssignmentOutput) ToOauthRoleAssignmentOutput added in v4.5.0 

func (o OauthRoleAssignmentOutput) ToOauthRoleAssignmentOutput() OauthRoleAssignmentOutput

func (OauthRoleAssignmentOutput) ToOauthRoleAssignmentOutputWithContext added in v4.5.0 

func (o OauthRoleAssignmentOutput) ToOauthRoleAssignmentOutputWithContext(ctx context.Context) OauthRoleAssignmentOutput

func (OauthRoleAssignmentOutput) Type added in v4.5.0 

func (o OauthRoleAssignmentOutput) Type() pulumi.StringOutput

Role type to assign. This can be one of the standard Okta roles, such as `HELP_DESK_ADMIN`, or `CUSTOM`. Using custom requires the `resourceSet` and `role` attributes to be set.

type OauthRoleAssignmentState added in v4.5.0 

type OauthRoleAssignmentState struct {
	// Client ID for the role to be assigned to
	ClientId pulumi.StringPtrInput
	// Label of the role assignment
	Label pulumi.StringPtrInput
	// Resource set for the custom role to assign, must be the ID of the created resource set.
	ResourceSet pulumi.StringPtrInput
	// Custom Role ID
	Role pulumi.StringPtrInput
	// Status of the role assignment
	Status pulumi.StringPtrInput
	// Role type to assign. This can be one of the standard Okta roles, such as `HELP_DESK_ADMIN`, or `CUSTOM`. Using custom requires the `resourceSet` and `role` attributes to be set.
	Type pulumi.StringPtrInput
}

func (OauthRoleAssignmentState) ElementType added in v4.5.0 

func (OauthRoleAssignmentState) ElementType() reflect.Type

type Saml 

type Saml struct {
	pulumi.CustomResourceState

	// Custom error page URL.
	AccessibilityErrorRedirectUrl pulumi.StringPtrOutput `pulumi:"accessibilityErrorRedirectUrl"`
	// Custom login page for this application.
	AccessibilityLoginRedirectUrl pulumi.StringPtrOutput `pulumi:"accessibilityLoginRedirectUrl"`
	// Enable self-service. Default is: `false`.
	AccessibilitySelfService pulumi.BoolPtrOutput `pulumi:"accessibilitySelfService"`
	// An array of ACS endpoints. You can configure a maximum of 100 endpoints.
	AcsEndpoints pulumi.StringArrayOutput `pulumi:"acsEndpoints"`
	// Application notes for admins.
	AdminNote pulumi.StringPtrOutput `pulumi:"adminNote"`
	// Displays specific appLinks for the app. The value for each application link should be boolean.
	AppLinksJson pulumi.StringPtrOutput `pulumi:"appLinksJson"`
	// Application settings in JSON format.
	AppSettingsJson pulumi.StringPtrOutput `pulumi:"appSettingsJson"`
	// Determines whether the SAML assertion is digitally signed.
	AssertionSigned pulumi.BoolPtrOutput `pulumi:"assertionSigned"`
	// List of SAML Attribute statements.
	AttributeStatements SamlAttributeStatementArrayOutput `pulumi:"attributeStatements"`
	// Audience Restriction
	Audience pulumi.StringPtrOutput `pulumi:"audience"`
	// The ID of the associated `appSignonPolicy`. If this property is removed from the application the `default` sign-on-policy will be associated with this application.
	AuthenticationPolicy pulumi.StringPtrOutput `pulumi:"authenticationPolicy"`
	// Identifies the SAML authentication context class for the assertion’s authentication statement
	AuthnContextClassRef pulumi.StringPtrOutput `pulumi:"authnContextClassRef"`
	// Display auto submit toolbar. Default is: `false`
	AutoSubmitToolbar pulumi.BoolPtrOutput `pulumi:"autoSubmitToolbar"`
	// The raw signing certificate.
	Certificate pulumi.StringOutput `pulumi:"certificate"`
	// Identifies a specific application resource in an IDP initiated SSO scenario.
	DefaultRelayState pulumi.StringPtrOutput `pulumi:"defaultRelayState"`
	// Identifies the location where the SAML response is intended to be sent inside of the SAML assertion
	Destination pulumi.StringPtrOutput `pulumi:"destination"`
	// Determines the digest algorithm used to digitally sign the SAML assertion and response
	DigestAlgorithm pulumi.StringPtrOutput `pulumi:"digestAlgorithm"`
	// Url that can be used to embed this application into another portal.
	EmbedUrl pulumi.StringOutput `pulumi:"embedUrl"`
	// Application notes for end users.
	EnduserNote pulumi.StringPtrOutput `pulumi:"enduserNote"`
	// Entity ID, the ID portion of the `entityUrl`.
	EntityKey pulumi.StringOutput `pulumi:"entityKey"`
	// Entity URL for instance [http://www.okta.com/exk1fcia6d6EMsf331d8](http://www.okta.com/exk1fcia6d6EMsf331d8).
	EntityUrl pulumi.StringOutput `pulumi:"entityUrl"`
	// features enabled. Notice: you can't currently configure provisioning features via the API.
	Features pulumi.StringArrayOutput `pulumi:"features"`
	// Do not display application icon on mobile app. Default is: `false`
	HideIos pulumi.BoolPtrOutput `pulumi:"hideIos"`
	// Do not display application icon to users. Default is: `false`
	HideWeb pulumi.BoolPtrOutput `pulumi:"hideWeb"`
	// Prompt user to re-authenticate if SP asks for it. Default is: `false`
	HonorForceAuthn pulumi.BoolPtrOutput `pulumi:"honorForceAuthn"`
	// `urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Post` location from the SAML metadata.
	HttpPostBinding pulumi.StringOutput `pulumi:"httpPostBinding"`
	// `urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect` location from the SAML metadata.
	HttpRedirectBinding pulumi.StringOutput `pulumi:"httpRedirectBinding"`
	// SAML issuer ID.
	IdpIssuer pulumi.StringPtrOutput `pulumi:"idpIssuer"`
	// _Early Access Property_. Enables [Federation Broker Mode](https://help.okta.com/en/prod/Content/Topics/Apps/apps-fbm-enable.htm).
	ImplicitAssignment pulumi.BoolPtrOutput `pulumi:"implicitAssignment"`
	// Saml Inline Hook associated with the application.
	InlineHookId pulumi.StringPtrOutput `pulumi:"inlineHookId"`
	// Certificate key ID.
	KeyId pulumi.StringOutput `pulumi:"keyId"`
	// Certificate name. This modulates the rotation of keys. New name == new key. Required to be set with `keyYearsValid`.
	KeyName pulumi.StringPtrOutput `pulumi:"keyName"`
	// Number of years the certificate is valid (2 - 10 years).
	KeyYearsValid pulumi.IntPtrOutput `pulumi:"keyYearsValid"`
	// An array of all key credentials for the application. Format of each entry is as follows:
	Keys SamlKeyArrayOutput `pulumi:"keys"`
	// label of application.
	Label pulumi.StringOutput `pulumi:"label"`
	Logo pulumi.StringPtrOutput `pulumi:"logo"`
	// Direct link of application logo.
	LogoUrl pulumi.StringOutput `pulumi:"logoUrl"`
	// The raw SAML metadata in XML.
	Metadata pulumi.StringOutput `pulumi:"metadata"`
	// SAML xml metadata URL.
	MetadataUrl pulumi.StringOutput `pulumi:"metadataUrl"`
	// The name of the attribute statement.
	Name pulumi.StringOutput `pulumi:"name"`
	// name of application from the Okta Integration Network, if not included a custom app will be created.  If not provided the following arguments are required:
	PreconfiguredApp pulumi.StringPtrOutput `pulumi:"preconfiguredApp"`
	// The location where the app may present the SAML assertion.
	Recipient pulumi.StringPtrOutput `pulumi:"recipient"`
	// Denotes whether the request is compressed or not.
	RequestCompressed pulumi.BoolPtrOutput `pulumi:"requestCompressed"`
	// Determines whether the SAML auth response message is digitally signed.
	ResponseSigned pulumi.BoolPtrOutput `pulumi:"responseSigned"`
	// SAML Signed Request enabled
	SamlSignedRequestEnabled pulumi.BoolPtrOutput `pulumi:"samlSignedRequestEnabled"`
	// SAML version for the app's sign-on mode. Valid values are: `"2.0"` or `"1.1"`. Default is `"2.0"`.
	SamlVersion pulumi.StringPtrOutput `pulumi:"samlVersion"`
	// Sign-on mode of application.
	SignOnMode pulumi.StringOutput `pulumi:"signOnMode"`
	// Signature algorithm used ot digitally sign the assertion and response.
	SignatureAlgorithm pulumi.StringPtrOutput `pulumi:"signatureAlgorithm"`
	// x509 encoded certificate that the Service Provider uses to sign Single Logout requests.  Note: should be provided without `-----BEGIN CERTIFICATE-----` and `-----END CERTIFICATE-----`, see [official documentation](https://developer.okta.com/docs/reference/api/apps/#service-provider-certificate).
	SingleLogoutCertificate pulumi.StringPtrOutput `pulumi:"singleLogoutCertificate"`
	// The issuer of the Service Provider that generates the Single Logout request.
	SingleLogoutIssuer pulumi.StringPtrOutput `pulumi:"singleLogoutIssuer"`
	// The location where the logout response is sent.
	SingleLogoutUrl pulumi.StringPtrOutput `pulumi:"singleLogoutUrl"`
	// SAML service provider issuer.
	SpIssuer pulumi.StringPtrOutput `pulumi:"spIssuer"`
	// Single Sign-on Url.
	SsoUrl pulumi.StringPtrOutput `pulumi:"ssoUrl"`
	// status of application.
	Status pulumi.StringPtrOutput `pulumi:"status"`
	// Identifies the SAML processing rules.
	SubjectNameIdFormat pulumi.StringPtrOutput `pulumi:"subjectNameIdFormat"`
	// Template for app user's username when a user is assigned to the app.
	SubjectNameIdTemplate pulumi.StringPtrOutput `pulumi:"subjectNameIdTemplate"`
	// Username template. Default is: `"${source.login}"`
	UserNameTemplate pulumi.StringPtrOutput `pulumi:"userNameTemplate"`
	// Push username on update. Valid values: `"PUSH"` and `"DONT_PUSH"`.
	UserNameTemplatePushStatus pulumi.StringPtrOutput `pulumi:"userNameTemplatePushStatus"`
	// Username template suffix.
	UserNameTemplateSuffix pulumi.StringPtrOutput `pulumi:"userNameTemplateSuffix"`
	// Username template type. Default is: `"BUILT_IN"`.
	UserNameTemplateType pulumi.StringPtrOutput `pulumi:"userNameTemplateType"`
}

This resource allows you to create and configure a SAML Application.

> During an apply if there is change in `status` the app will first be activated or deactivated in accordance with the `status` change. Then, all other arguments that changed will be applied.

> If you receive the error `You do not have permission to access the feature you are requesting` contact support and request feature flag `ADVANCED_SSO` be applied to your org.

## Example Usage

```go package main

import ( 

"github.com/pulumi/pulumi-okta/sdk/v4/go/okta/app"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"

) 

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := app.NewSaml(ctx, "example", &app.SamlArgs{
			AttributeStatements: app.SamlAttributeStatementArray{
				&app.SamlAttributeStatementArgs{
					FilterType:  pulumi.String("REGEX"),
					FilterValue: pulumi.String(".*"),
					Name:        pulumi.String("groups"),
					Type:        pulumi.String("GROUP"),
				},
			},
			Audience:              pulumi.String("https://example.com/audience"),
			AuthnContextClassRef:  pulumi.String("urn:oasis:names:tc:SAML:2.0:ac:classes:PasswordProtectedTransport"),
			Destination:           pulumi.String("https://example.com"),
			DigestAlgorithm:       pulumi.String("SHA256"),
			HonorForceAuthn:       pulumi.Bool(false),
			Label:                 pulumi.String("example"),
			Recipient:             pulumi.String("https://example.com"),
			ResponseSigned:        pulumi.Bool(true),
			SignatureAlgorithm:    pulumi.String("RSA_SHA256"),
			SsoUrl:                pulumi.String("https://example.com"),
			SubjectNameIdFormat:   pulumi.String("urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress"),
			SubjectNameIdTemplate: pulumi.String("${user.userName}"),
		})
		if err != nil {
			return err
		}
		return nil
	})
}

``` ### With inline hook

```go package main

import ( 

"github.com/pulumi/pulumi-okta/sdk/v4/go/okta/app"
"github.com/pulumi/pulumi-okta/sdk/v4/go/okta/inline"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"

) 

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		testHook, err := inline.NewHook(ctx, "testHook", &inline.HookArgs{
			Status:  pulumi.String("ACTIVE"),
			Type:    pulumi.String("com.okta.saml.tokens.transform"),
			Version: pulumi.String("1.0.2"),
			Channel: pulumi.StringMap{
				"type":    pulumi.String("HTTP"),
				"version": pulumi.String("1.0.0"),
				"uri":     pulumi.String("https://example.com/test1"),
				"method":  pulumi.String("POST"),
			},
			Auth: pulumi.StringMap{
				"key":   pulumi.String("Authorization"),
				"type":  pulumi.String("HEADER"),
				"value": pulumi.String("secret"),
			},
		})
		if err != nil {
			return err
		}
		_, err = app.NewSaml(ctx, "testSaml", &app.SamlArgs{
			Label:                 pulumi.String("testAcc_replace_with_uuid"),
			SsoUrl:                pulumi.String("https://google.com"),
			Recipient:             pulumi.String("https://here.com"),
			Destination:           pulumi.String("https://its-about-the-journey.com"),
			Audience:              pulumi.String("https://audience.com"),
			SubjectNameIdTemplate: pulumi.String("${user.userName}"),
			SubjectNameIdFormat:   pulumi.String("urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress"),
			ResponseSigned:        pulumi.Bool(true),
			SignatureAlgorithm:    pulumi.String("RSA_SHA256"),
			DigestAlgorithm:       pulumi.String("SHA256"),
			HonorForceAuthn:       pulumi.Bool(false),
			AuthnContextClassRef:  pulumi.String("urn:oasis:names:tc:SAML:2.0:ac:classes:PasswordProtectedTransport"),
			InlineHookId:          testHook.ID(),
			AttributeStatements: app.SamlAttributeStatementArray{
				&app.SamlAttributeStatementArgs{
					Type:        pulumi.String("GROUP"),
					Name:        pulumi.String("groups"),
					FilterType:  pulumi.String("REGEX"),
					FilterValue: pulumi.String(".*"),
				},
			},
		}, pulumi.DependsOn([]pulumi.Resource{
			testHook,
		}))
		if err != nil {
			return err
		}
		return nil
	})
}

``` ### Pre-configured app with SAML 1.1 sign-on mode

```go package main

import ( 

"github.com/pulumi/pulumi-okta/sdk/v4/go/okta/app"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"

) 

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := app.NewSaml(ctx, "test", &app.SamlArgs{
			AppSettingsJson: pulumi.String(`{
    "groupFilter": "app1.*",
    "siteURL": "https://www.okta.com"
}

`), 

			Label:                pulumi.String("SharePoint (On-Premise)"),
			PreconfiguredApp:     pulumi.String("sharepoint_onpremise"),
			SamlVersion:          pulumi.String("1.1"),
			Status:               pulumi.String("ACTIVE"),
			UserNameTemplate:     pulumi.String("${source.login}"),
			UserNameTemplateType: pulumi.String("BUILT_IN"),
		})
		if err != nil {
			return err
		}
		return nil
	})
}

``` ### Pre-configured app with SAML 1.1 sign-on mode, `appSettingsJson` and `appLinksJson`

```go package main

import ( 

"github.com/pulumi/pulumi-okta/sdk/v4/go/okta/app"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"

) 

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := app.NewSaml(ctx, "office365", &app.SamlArgs{
			AppLinksJson: pulumi.String(`  {
      "calendar": false,
      "crm": false,
      "delve": false,
      "excel": false,
      "forms": false,
      "mail": false,
      "newsfeed": false,
      "onedrive": false,
      "people": false,
      "planner": false,
      "powerbi": false,
      "powerpoint": false,
      "sites": false,
      "sway": false,
      "tasks": false,
      "teams": false,
      "video": false,
      "word": false,
      "yammer": false,
      "login": true
  }

`), 

			AppSettingsJson: pulumi.String(`    {
       "wsFedConfigureType": "AUTO",
       "windowsTransportEnabled": false,
       "domain": "okta.com",
       "msftTenant": "okta",
       "domains": [],
       "requireAdminConsent": false
    }

`), 

			Label:            pulumi.String("Microsoft Office 365"),
			PreconfiguredApp: pulumi.String("office365"),
			SamlVersion:      pulumi.String("1.1"),
			Status:           pulumi.String("ACTIVE"),
		})
		if err != nil {
			return err
		}
		return nil
	})
}

```

## Import

A SAML App can be imported via the Okta ID.

```sh 

$ pulumi import okta:app/saml:Saml example &#60;app id&#62;

```

func GetSaml 

func GetSaml(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *SamlState, opts ...pulumi.ResourceOption) (*Saml, error)

GetSaml gets an existing Saml resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewSaml 

func NewSaml(ctx *pulumi.Context,
	name string, args *SamlArgs, opts ...pulumi.ResourceOption) (*Saml, error)

NewSaml registers a new resource with the given unique name, arguments, and options.

func (*Saml) ElementType 

func (*Saml) ElementType() reflect.Type

func (*Saml) ToSamlOutput 

func (i *Saml) ToSamlOutput() SamlOutput

func (*Saml) ToSamlOutputWithContext 

func (i *Saml) ToSamlOutputWithContext(ctx context.Context) SamlOutput

type SamlArgs 

type SamlArgs struct {
	// Custom error page URL.
	AccessibilityErrorRedirectUrl pulumi.StringPtrInput
	// Custom login page for this application.
	AccessibilityLoginRedirectUrl pulumi.StringPtrInput
	// Enable self-service. Default is: `false`.
	AccessibilitySelfService pulumi.BoolPtrInput
	// An array of ACS endpoints. You can configure a maximum of 100 endpoints.
	AcsEndpoints pulumi.StringArrayInput
	// Application notes for admins.
	AdminNote pulumi.StringPtrInput
	// Displays specific appLinks for the app. The value for each application link should be boolean.
	AppLinksJson pulumi.StringPtrInput
	// Application settings in JSON format.
	AppSettingsJson pulumi.StringPtrInput
	// Determines whether the SAML assertion is digitally signed.
	AssertionSigned pulumi.BoolPtrInput
	// List of SAML Attribute statements.
	AttributeStatements SamlAttributeStatementArrayInput
	// Audience Restriction
	Audience pulumi.StringPtrInput
	// The ID of the associated `appSignonPolicy`. If this property is removed from the application the `default` sign-on-policy will be associated with this application.
	AuthenticationPolicy pulumi.StringPtrInput
	// Identifies the SAML authentication context class for the assertion’s authentication statement
	AuthnContextClassRef pulumi.StringPtrInput
	// Display auto submit toolbar. Default is: `false`
	AutoSubmitToolbar pulumi.BoolPtrInput
	// Identifies a specific application resource in an IDP initiated SSO scenario.
	DefaultRelayState pulumi.StringPtrInput
	// Identifies the location where the SAML response is intended to be sent inside of the SAML assertion
	Destination pulumi.StringPtrInput
	// Determines the digest algorithm used to digitally sign the SAML assertion and response
	DigestAlgorithm pulumi.StringPtrInput
	// Application notes for end users.
	EnduserNote pulumi.StringPtrInput
	// Do not display application icon on mobile app. Default is: `false`
	HideIos pulumi.BoolPtrInput
	// Do not display application icon to users. Default is: `false`
	HideWeb pulumi.BoolPtrInput
	// Prompt user to re-authenticate if SP asks for it. Default is: `false`
	HonorForceAuthn pulumi.BoolPtrInput
	// SAML issuer ID.
	IdpIssuer pulumi.StringPtrInput
	// _Early Access Property_. Enables [Federation Broker Mode](https://help.okta.com/en/prod/Content/Topics/Apps/apps-fbm-enable.htm).
	ImplicitAssignment pulumi.BoolPtrInput
	// Saml Inline Hook associated with the application.
	InlineHookId pulumi.StringPtrInput
	// Certificate name. This modulates the rotation of keys. New name == new key. Required to be set with `keyYearsValid`.
	KeyName pulumi.StringPtrInput
	// Number of years the certificate is valid (2 - 10 years).
	KeyYearsValid pulumi.IntPtrInput
	// label of application.
	Label pulumi.StringInput
	Logo pulumi.StringPtrInput
	// name of application from the Okta Integration Network, if not included a custom app will be created.  If not provided the following arguments are required:
	PreconfiguredApp pulumi.StringPtrInput
	// The location where the app may present the SAML assertion.
	Recipient pulumi.StringPtrInput
	// Denotes whether the request is compressed or not.
	RequestCompressed pulumi.BoolPtrInput
	// Determines whether the SAML auth response message is digitally signed.
	ResponseSigned pulumi.BoolPtrInput
	// SAML Signed Request enabled
	SamlSignedRequestEnabled pulumi.BoolPtrInput
	// SAML version for the app's sign-on mode. Valid values are: `"2.0"` or `"1.1"`. Default is `"2.0"`.
	SamlVersion pulumi.StringPtrInput
	// Signature algorithm used ot digitally sign the assertion and response.
	SignatureAlgorithm pulumi.StringPtrInput
	// x509 encoded certificate that the Service Provider uses to sign Single Logout requests.  Note: should be provided without `-----BEGIN CERTIFICATE-----` and `-----END CERTIFICATE-----`, see [official documentation](https://developer.okta.com/docs/reference/api/apps/#service-provider-certificate).
	SingleLogoutCertificate pulumi.StringPtrInput
	// The issuer of the Service Provider that generates the Single Logout request.
	SingleLogoutIssuer pulumi.StringPtrInput
	// The location where the logout response is sent.
	SingleLogoutUrl pulumi.StringPtrInput
	// SAML service provider issuer.
	SpIssuer pulumi.StringPtrInput
	// Single Sign-on Url.
	SsoUrl pulumi.StringPtrInput
	// status of application.
	Status pulumi.StringPtrInput
	// Identifies the SAML processing rules.
	SubjectNameIdFormat pulumi.StringPtrInput
	// Template for app user's username when a user is assigned to the app.
	SubjectNameIdTemplate pulumi.StringPtrInput
	// Username template. Default is: `"${source.login}"`
	UserNameTemplate pulumi.StringPtrInput
	// Push username on update. Valid values: `"PUSH"` and `"DONT_PUSH"`.
	UserNameTemplatePushStatus pulumi.StringPtrInput
	// Username template suffix.
	UserNameTemplateSuffix pulumi.StringPtrInput
	// Username template type. Default is: `"BUILT_IN"`.
	UserNameTemplateType pulumi.StringPtrInput
}

The set of arguments for constructing a Saml resource.

func (SamlArgs) ElementType 

func (SamlArgs) ElementType() reflect.Type

type SamlArray 

type SamlArray []SamlInput

func (SamlArray) ElementType 

func (SamlArray) ElementType() reflect.Type

func (SamlArray) ToSamlArrayOutput 

func (i SamlArray) ToSamlArrayOutput() SamlArrayOutput

func (SamlArray) ToSamlArrayOutputWithContext 

func (i SamlArray) ToSamlArrayOutputWithContext(ctx context.Context) SamlArrayOutput

type SamlArrayInput 

type SamlArrayInput interface {
	pulumi.Input

	ToSamlArrayOutput() SamlArrayOutput
	ToSamlArrayOutputWithContext(context.Context) SamlArrayOutput
}

SamlArrayInput is an input type that accepts SamlArray and SamlArrayOutput values. You can construct a concrete instance of `SamlArrayInput` via: 

SamlArray{ SamlArgs{...} }

type SamlArrayOutput 

type SamlArrayOutput struct{ *pulumi.OutputState }

func (SamlArrayOutput) ElementType 

func (SamlArrayOutput) ElementType() reflect.Type

func (SamlArrayOutput) Index 

func (o SamlArrayOutput) Index(i pulumi.IntInput) SamlOutput

func (SamlArrayOutput) ToSamlArrayOutput 

func (o SamlArrayOutput) ToSamlArrayOutput() SamlArrayOutput

func (SamlArrayOutput) ToSamlArrayOutputWithContext 

func (o SamlArrayOutput) ToSamlArrayOutputWithContext(ctx context.Context) SamlArrayOutput

type SamlAttributeStatement 

type SamlAttributeStatement struct {
	// Type of group attribute filter. Valid values are: `"STARTS_WITH"`, `"EQUALS"`, `"CONTAINS"`, or `"REGEX"`
	FilterType *string `pulumi:"filterType"`
	// Filter value to use.
	FilterValue *string `pulumi:"filterValue"`
	// The name of the attribute statement.
	Name string `pulumi:"name"`
	// The attribute namespace. It can be set to `"urn:oasis:names:tc:SAML:2.0:attrname-format:unspecified"`, `"urn:oasis:names:tc:SAML:2.0:attrname-format:uri"`, or `"urn:oasis:names:tc:SAML:2.0:attrname-format:basic"`.
	Namespace *string `pulumi:"namespace"`
	// The type of attribute statement value. Valid values are: `"EXPRESSION"` or `"GROUP"`. Default is `"EXPRESSION"`.
	Type *string `pulumi:"type"`
	// Array of values to use.
	Values []string `pulumi:"values"`
}

type SamlAttributeStatementArgs 

type SamlAttributeStatementArgs struct {
	// Type of group attribute filter. Valid values are: `"STARTS_WITH"`, `"EQUALS"`, `"CONTAINS"`, or `"REGEX"`
	FilterType pulumi.StringPtrInput `pulumi:"filterType"`
	// Filter value to use.
	FilterValue pulumi.StringPtrInput `pulumi:"filterValue"`
	// The name of the attribute statement.
	Name pulumi.StringInput `pulumi:"name"`
	// The attribute namespace. It can be set to `"urn:oasis:names:tc:SAML:2.0:attrname-format:unspecified"`, `"urn:oasis:names:tc:SAML:2.0:attrname-format:uri"`, or `"urn:oasis:names:tc:SAML:2.0:attrname-format:basic"`.
	Namespace pulumi.StringPtrInput `pulumi:"namespace"`
	// The type of attribute statement value. Valid values are: `"EXPRESSION"` or `"GROUP"`. Default is `"EXPRESSION"`.
	Type pulumi.StringPtrInput `pulumi:"type"`
	// Array of values to use.
	Values pulumi.StringArrayInput `pulumi:"values"`
}

func (SamlAttributeStatementArgs) ElementType 

func (SamlAttributeStatementArgs) ElementType() reflect.Type

func (SamlAttributeStatementArgs) ToSamlAttributeStatementOutput 

func (i SamlAttributeStatementArgs) ToSamlAttributeStatementOutput() SamlAttributeStatementOutput

func (SamlAttributeStatementArgs) ToSamlAttributeStatementOutputWithContext 

func (i SamlAttributeStatementArgs) ToSamlAttributeStatementOutputWithContext(ctx context.Context) SamlAttributeStatementOutput

type SamlAttributeStatementArray 

type SamlAttributeStatementArray []SamlAttributeStatementInput

func (SamlAttributeStatementArray) ElementType 

func (SamlAttributeStatementArray) ElementType() reflect.Type

func (SamlAttributeStatementArray) ToSamlAttributeStatementArrayOutput 

func (i SamlAttributeStatementArray) ToSamlAttributeStatementArrayOutput() SamlAttributeStatementArrayOutput

func (SamlAttributeStatementArray) ToSamlAttributeStatementArrayOutputWithContext 

func (i SamlAttributeStatementArray) ToSamlAttributeStatementArrayOutputWithContext(ctx context.Context) SamlAttributeStatementArrayOutput

type SamlAttributeStatementArrayInput 

type SamlAttributeStatementArrayInput interface {
	pulumi.Input

	ToSamlAttributeStatementArrayOutput() SamlAttributeStatementArrayOutput
	ToSamlAttributeStatementArrayOutputWithContext(context.Context) SamlAttributeStatementArrayOutput
}

SamlAttributeStatementArrayInput is an input type that accepts SamlAttributeStatementArray and SamlAttributeStatementArrayOutput values. You can construct a concrete instance of `SamlAttributeStatementArrayInput` via: 

SamlAttributeStatementArray{ SamlAttributeStatementArgs{...} }

type SamlAttributeStatementArrayOutput 

type SamlAttributeStatementArrayOutput struct{ *pulumi.OutputState }

func (SamlAttributeStatementArrayOutput) ElementType 

func (SamlAttributeStatementArrayOutput) ElementType() reflect.Type

func (SamlAttributeStatementArrayOutput) Index 

func (o SamlAttributeStatementArrayOutput) Index(i pulumi.IntInput) SamlAttributeStatementOutput

func (SamlAttributeStatementArrayOutput) ToSamlAttributeStatementArrayOutput 

func (o SamlAttributeStatementArrayOutput) ToSamlAttributeStatementArrayOutput() SamlAttributeStatementArrayOutput

func (SamlAttributeStatementArrayOutput) ToSamlAttributeStatementArrayOutputWithContext 

func (o SamlAttributeStatementArrayOutput) ToSamlAttributeStatementArrayOutputWithContext(ctx context.Context) SamlAttributeStatementArrayOutput

type SamlAttributeStatementInput 

type SamlAttributeStatementInput interface {
	pulumi.Input

	ToSamlAttributeStatementOutput() SamlAttributeStatementOutput
	ToSamlAttributeStatementOutputWithContext(context.Context) SamlAttributeStatementOutput
}

SamlAttributeStatementInput is an input type that accepts SamlAttributeStatementArgs and SamlAttributeStatementOutput values. You can construct a concrete instance of `SamlAttributeStatementInput` via: 

SamlAttributeStatementArgs{...}

type SamlAttributeStatementOutput 

type SamlAttributeStatementOutput struct{ *pulumi.OutputState }

func (SamlAttributeStatementOutput) ElementType 

func (SamlAttributeStatementOutput) ElementType() reflect.Type

func (SamlAttributeStatementOutput) FilterType 

func (o SamlAttributeStatementOutput) FilterType() pulumi.StringPtrOutput

Type of group attribute filter. Valid values are: `"STARTS_WITH"`, `"EQUALS"`, `"CONTAINS"`, or `"REGEX"`

func (SamlAttributeStatementOutput) FilterValue 

func (o SamlAttributeStatementOutput) FilterValue() pulumi.StringPtrOutput

Filter value to use.

func (SamlAttributeStatementOutput) Name 

func (o SamlAttributeStatementOutput) Name() pulumi.StringOutput

The name of the attribute statement.

func (SamlAttributeStatementOutput) Namespace 

func (o SamlAttributeStatementOutput) Namespace() pulumi.StringPtrOutput

The attribute namespace. It can be set to `"urn:oasis:names:tc:SAML:2.0:attrname-format:unspecified"`, `"urn:oasis:names:tc:SAML:2.0:attrname-format:uri"`, or `"urn:oasis:names:tc:SAML:2.0:attrname-format:basic"`.

func (SamlAttributeStatementOutput) ToSamlAttributeStatementOutput 

func (o SamlAttributeStatementOutput) ToSamlAttributeStatementOutput() SamlAttributeStatementOutput

func (SamlAttributeStatementOutput) ToSamlAttributeStatementOutputWithContext 

func (o SamlAttributeStatementOutput) ToSamlAttributeStatementOutputWithContext(ctx context.Context) SamlAttributeStatementOutput

func (SamlAttributeStatementOutput) Type 

func (o SamlAttributeStatementOutput) Type() pulumi.StringPtrOutput

The type of attribute statement value. Valid values are: `"EXPRESSION"` or `"GROUP"`. Default is `"EXPRESSION"`.

func (SamlAttributeStatementOutput) Values 

func (o SamlAttributeStatementOutput) Values() pulumi.StringArrayOutput

Array of values to use.

type SamlInput 

type SamlInput interface {
	pulumi.Input

	ToSamlOutput() SamlOutput
	ToSamlOutputWithContext(ctx context.Context) SamlOutput
}

type SamlKey 

type SamlKey struct {
	// Date created.
	Created *string `pulumi:"created"`
	// RSA exponent.
	E *string `pulumi:"e"`
	// Date the key expires.
	ExpiresAt *string `pulumi:"expiresAt"`
	// Key ID.
	Kid *string `pulumi:"kid"`
	// Identifies the cryptographic algorithm family used with the key.
	Kty *string `pulumi:"kty"`
	// Date the key was last updated.
	LastUpdated *string `pulumi:"lastUpdated"`
	// RSA modulus.
	N *string `pulumi:"n"`
	// Intended use of the public key.
	Use *string `pulumi:"use"`
	// X.509 certificate chain.
	X5cs []string `pulumi:"x5cs"`
	// X.509 certificate SHA-256 thumbprint.
	X5tS256 *string `pulumi:"x5tS256"`
}

type SamlKeyArgs 

type SamlKeyArgs struct {
	// Date created.
	Created pulumi.StringPtrInput `pulumi:"created"`
	// RSA exponent.
	E pulumi.StringPtrInput `pulumi:"e"`
	// Date the key expires.
	ExpiresAt pulumi.StringPtrInput `pulumi:"expiresAt"`
	// Key ID.
	Kid pulumi.StringPtrInput `pulumi:"kid"`
	// Identifies the cryptographic algorithm family used with the key.
	Kty pulumi.StringPtrInput `pulumi:"kty"`
	// Date the key was last updated.
	LastUpdated pulumi.StringPtrInput `pulumi:"lastUpdated"`
	// RSA modulus.
	N pulumi.StringPtrInput `pulumi:"n"`
	// Intended use of the public key.
	Use pulumi.StringPtrInput `pulumi:"use"`
	// X.509 certificate chain.
	X5cs pulumi.StringArrayInput `pulumi:"x5cs"`
	// X.509 certificate SHA-256 thumbprint.
	X5tS256 pulumi.StringPtrInput `pulumi:"x5tS256"`
}

func (SamlKeyArgs) ElementType 

func (SamlKeyArgs) ElementType() reflect.Type

func (SamlKeyArgs) ToSamlKeyOutput 

func (i SamlKeyArgs) ToSamlKeyOutput() SamlKeyOutput

func (SamlKeyArgs) ToSamlKeyOutputWithContext 

func (i SamlKeyArgs) ToSamlKeyOutputWithContext(ctx context.Context) SamlKeyOutput

type SamlKeyArray 

type SamlKeyArray []SamlKeyInput

func (SamlKeyArray) ElementType 

func (SamlKeyArray) ElementType() reflect.Type

func (SamlKeyArray) ToSamlKeyArrayOutput 

func (i SamlKeyArray) ToSamlKeyArrayOutput() SamlKeyArrayOutput

func (SamlKeyArray) ToSamlKeyArrayOutputWithContext 

func (i SamlKeyArray) ToSamlKeyArrayOutputWithContext(ctx context.Context) SamlKeyArrayOutput

type SamlKeyArrayInput 

type SamlKeyArrayInput interface {
	pulumi.Input

	ToSamlKeyArrayOutput() SamlKeyArrayOutput
	ToSamlKeyArrayOutputWithContext(context.Context) SamlKeyArrayOutput
}

SamlKeyArrayInput is an input type that accepts SamlKeyArray and SamlKeyArrayOutput values. You can construct a concrete instance of `SamlKeyArrayInput` via: 

SamlKeyArray{ SamlKeyArgs{...} }

type SamlKeyArrayOutput 

type SamlKeyArrayOutput struct{ *pulumi.OutputState }

func (SamlKeyArrayOutput) ElementType 

func (SamlKeyArrayOutput) ElementType() reflect.Type

func (SamlKeyArrayOutput) Index 

func (o SamlKeyArrayOutput) Index(i pulumi.IntInput) SamlKeyOutput

func (SamlKeyArrayOutput) ToSamlKeyArrayOutput 

func (o SamlKeyArrayOutput) ToSamlKeyArrayOutput() SamlKeyArrayOutput

func (SamlKeyArrayOutput) ToSamlKeyArrayOutputWithContext 

func (o SamlKeyArrayOutput) ToSamlKeyArrayOutputWithContext(ctx context.Context) SamlKeyArrayOutput

type SamlKeyInput 

type SamlKeyInput interface {
	pulumi.Input

	ToSamlKeyOutput() SamlKeyOutput
	ToSamlKeyOutputWithContext(context.Context) SamlKeyOutput
}

SamlKeyInput is an input type that accepts SamlKeyArgs and SamlKeyOutput values. You can construct a concrete instance of `SamlKeyInput` via: 

SamlKeyArgs{...}

type SamlKeyOutput 

type SamlKeyOutput struct{ *pulumi.OutputState }

func (SamlKeyOutput) Created 

func (o SamlKeyOutput) Created() pulumi.StringPtrOutput

Date created.

func (SamlKeyOutput) E 

func (o SamlKeyOutput) E() pulumi.StringPtrOutput

RSA exponent.

func (SamlKeyOutput) ElementType 

func (SamlKeyOutput) ElementType() reflect.Type

func (SamlKeyOutput) ExpiresAt 

func (o SamlKeyOutput) ExpiresAt() pulumi.StringPtrOutput

Date the key expires.

func (SamlKeyOutput) Kid 

func (o SamlKeyOutput) Kid() pulumi.StringPtrOutput

Key ID.

func (SamlKeyOutput) Kty 

func (o SamlKeyOutput) Kty() pulumi.StringPtrOutput

Identifies the cryptographic algorithm family used with the key.

func (SamlKeyOutput) LastUpdated 

func (o SamlKeyOutput) LastUpdated() pulumi.StringPtrOutput

Date the key was last updated.

func (SamlKeyOutput) N 

func (o SamlKeyOutput) N() pulumi.StringPtrOutput

RSA modulus.

func (SamlKeyOutput) ToSamlKeyOutput 

func (o SamlKeyOutput) ToSamlKeyOutput() SamlKeyOutput

func (SamlKeyOutput) ToSamlKeyOutputWithContext 

func (o SamlKeyOutput) ToSamlKeyOutputWithContext(ctx context.Context) SamlKeyOutput

func (SamlKeyOutput) Use 

func (o SamlKeyOutput) Use() pulumi.StringPtrOutput

Intended use of the public key.

func (SamlKeyOutput) X5cs 

func (o SamlKeyOutput) X5cs() pulumi.StringArrayOutput

X.509 certificate chain.

func (SamlKeyOutput) X5tS256 

func (o SamlKeyOutput) X5tS256() pulumi.StringPtrOutput

X.509 certificate SHA-256 thumbprint.

type SamlMap 

type SamlMap map[string]SamlInput

func (SamlMap) ElementType 

func (SamlMap) ElementType() reflect.Type

func (SamlMap) ToSamlMapOutput 

func (i SamlMap) ToSamlMapOutput() SamlMapOutput

func (SamlMap) ToSamlMapOutputWithContext 

func (i SamlMap) ToSamlMapOutputWithContext(ctx context.Context) SamlMapOutput

type SamlMapInput 

type SamlMapInput interface {
	pulumi.Input

	ToSamlMapOutput() SamlMapOutput
	ToSamlMapOutputWithContext(context.Context) SamlMapOutput
}

SamlMapInput is an input type that accepts SamlMap and SamlMapOutput values. You can construct a concrete instance of `SamlMapInput` via: 

SamlMap{ "key": SamlArgs{...} }

type SamlMapOutput 

type SamlMapOutput struct{ *pulumi.OutputState }

func (SamlMapOutput) ElementType 

func (SamlMapOutput) ElementType() reflect.Type

func (SamlMapOutput) MapIndex 

func (o SamlMapOutput) MapIndex(k pulumi.StringInput) SamlOutput

func (SamlMapOutput) ToSamlMapOutput 

func (o SamlMapOutput) ToSamlMapOutput() SamlMapOutput

func (SamlMapOutput) ToSamlMapOutputWithContext 

func (o SamlMapOutput) ToSamlMapOutputWithContext(ctx context.Context) SamlMapOutput

type SamlOutput 

type SamlOutput struct{ *pulumi.OutputState }

func (SamlOutput) AccessibilityErrorRedirectUrl 

func (o SamlOutput) AccessibilityErrorRedirectUrl() pulumi.StringPtrOutput

Custom error page URL.

func (SamlOutput) AccessibilityLoginRedirectUrl 

func (o SamlOutput) AccessibilityLoginRedirectUrl() pulumi.StringPtrOutput

Custom login page for this application.

func (SamlOutput) AccessibilitySelfService 

func (o SamlOutput) AccessibilitySelfService() pulumi.BoolPtrOutput

Enable self-service. Default is: `false`.

func (SamlOutput) AcsEndpoints 

func (o SamlOutput) AcsEndpoints() pulumi.StringArrayOutput

An array of ACS endpoints. You can configure a maximum of 100 endpoints.

func (SamlOutput) AdminNote 

func (o SamlOutput) AdminNote() pulumi.StringPtrOutput

Application notes for admins.

func (SamlOutput) AppLinksJson 

func (o SamlOutput) AppLinksJson() pulumi.StringPtrOutput

Displays specific appLinks for the app. The value for each application link should be boolean.

func (SamlOutput) AppSettingsJson 

func (o SamlOutput) AppSettingsJson() pulumi.StringPtrOutput

Application settings in JSON format.

func (SamlOutput) AssertionSigned 

func (o SamlOutput) AssertionSigned() pulumi.BoolPtrOutput

Determines whether the SAML assertion is digitally signed.

func (SamlOutput) AttributeStatements 

func (o SamlOutput) AttributeStatements() SamlAttributeStatementArrayOutput

List of SAML Attribute statements.

func (SamlOutput) Audience 

func (o SamlOutput) Audience() pulumi.StringPtrOutput

Audience Restriction

func (SamlOutput) AuthenticationPolicy 

func (o SamlOutput) AuthenticationPolicy() pulumi.StringPtrOutput

The ID of the associated `appSignonPolicy`. If this property is removed from the application the `default` sign-on-policy will be associated with this application.

func (SamlOutput) AuthnContextClassRef 

func (o SamlOutput) AuthnContextClassRef() pulumi.StringPtrOutput

Identifies the SAML authentication context class for the assertion’s authentication statement

func (SamlOutput) AutoSubmitToolbar 

func (o SamlOutput) AutoSubmitToolbar() pulumi.BoolPtrOutput

Display auto submit toolbar. Default is: `false`

func (SamlOutput) Certificate 

func (o SamlOutput) Certificate() pulumi.StringOutput

The raw signing certificate.

func (SamlOutput) DefaultRelayState 

func (o SamlOutput) DefaultRelayState() pulumi.StringPtrOutput

Identifies a specific application resource in an IDP initiated SSO scenario.

func (SamlOutput) Destination 

func (o SamlOutput) Destination() pulumi.StringPtrOutput

Identifies the location where the SAML response is intended to be sent inside of the SAML assertion

func (SamlOutput) DigestAlgorithm 

func (o SamlOutput) DigestAlgorithm() pulumi.StringPtrOutput

Determines the digest algorithm used to digitally sign the SAML assertion and response

func (SamlOutput) ElementType 

func (SamlOutput) ElementType() reflect.Type

func (SamlOutput) EmbedUrl 

func (o SamlOutput) EmbedUrl() pulumi.StringOutput

Url that can be used to embed this application into another portal.

func (SamlOutput) EnduserNote 

func (o SamlOutput) EnduserNote() pulumi.StringPtrOutput

Application notes for end users.

func (SamlOutput) EntityKey 

func (o SamlOutput) EntityKey() pulumi.StringOutput

Entity ID, the ID portion of the `entityUrl`.

func (SamlOutput) EntityUrl 

func (o SamlOutput) EntityUrl() pulumi.StringOutput

Entity URL for instance [http://www.okta.com/exk1fcia6d6EMsf331d8](http://www.okta.com/exk1fcia6d6EMsf331d8).

func (SamlOutput) Features 

func (o SamlOutput) Features() pulumi.StringArrayOutput

features enabled. Notice: you can't currently configure provisioning features via the API.

func (SamlOutput) HideIos 

func (o SamlOutput) HideIos() pulumi.BoolPtrOutput

Do not display application icon on mobile app. Default is: `false`

func (SamlOutput) HideWeb 

func (o SamlOutput) HideWeb() pulumi.BoolPtrOutput

Do not display application icon to users. Default is: `false`

func (SamlOutput) HonorForceAuthn 

func (o SamlOutput) HonorForceAuthn() pulumi.BoolPtrOutput

Prompt user to re-authenticate if SP asks for it. Default is: `false`

func (SamlOutput) HttpPostBinding 

func (o SamlOutput) HttpPostBinding() pulumi.StringOutput

`urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Post` location from the SAML metadata.

func (SamlOutput) HttpRedirectBinding 

func (o SamlOutput) HttpRedirectBinding() pulumi.StringOutput

`urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect` location from the SAML metadata.

func (SamlOutput) IdpIssuer 

func (o SamlOutput) IdpIssuer() pulumi.StringPtrOutput

SAML issuer ID.

func (SamlOutput) ImplicitAssignment 

func (o SamlOutput) ImplicitAssignment() pulumi.BoolPtrOutput

_Early Access Property_. Enables [Federation Broker Mode](https://help.okta.com/en/prod/Content/Topics/Apps/apps-fbm-enable.htm).

func (SamlOutput) InlineHookId 

func (o SamlOutput) InlineHookId() pulumi.StringPtrOutput

Saml Inline Hook associated with the application.

func (SamlOutput) KeyId 

func (o SamlOutput) KeyId() pulumi.StringOutput

Certificate key ID.

func (SamlOutput) KeyName 

func (o SamlOutput) KeyName() pulumi.StringPtrOutput

Certificate name. This modulates the rotation of keys. New name == new key. Required to be set with `keyYearsValid`.

func (SamlOutput) KeyYearsValid 

func (o SamlOutput) KeyYearsValid() pulumi.IntPtrOutput

Number of years the certificate is valid (2 - 10 years).

func (SamlOutput) Keys 

func (o SamlOutput) Keys() SamlKeyArrayOutput

An array of all key credentials for the application. Format of each entry is as follows:

func (SamlOutput) Label 

func (o SamlOutput) Label() pulumi.StringOutput

label of application. 

func (o SamlOutput) Logo() pulumi.StringPtrOutput

Local file path to the logo. The file must be in PNG, JPG, or GIF format, and less than 1 MB in size.

func (SamlOutput) LogoUrl 

func (o SamlOutput) LogoUrl() pulumi.StringOutput

Direct link of application logo.

func (SamlOutput) Metadata 

func (o SamlOutput) Metadata() pulumi.StringOutput

The raw SAML metadata in XML.

func (SamlOutput) MetadataUrl 

func (o SamlOutput) MetadataUrl() pulumi.StringOutput

SAML xml metadata URL.

func (SamlOutput) Name 

func (o SamlOutput) Name() pulumi.StringOutput

The name of the attribute statement.

func (SamlOutput) PreconfiguredApp 

func (o SamlOutput) PreconfiguredApp() pulumi.StringPtrOutput

name of application from the Okta Integration Network, if not included a custom app will be created. If not provided the following arguments are required:

func (SamlOutput) Recipient 

func (o SamlOutput) Recipient() pulumi.StringPtrOutput

The location where the app may present the SAML assertion.

func (SamlOutput) RequestCompressed 

func (o SamlOutput) RequestCompressed() pulumi.BoolPtrOutput

Denotes whether the request is compressed or not.

func (SamlOutput) ResponseSigned 

func (o SamlOutput) ResponseSigned() pulumi.BoolPtrOutput

Determines whether the SAML auth response message is digitally signed.

func (SamlOutput) SamlSignedRequestEnabled 

func (o SamlOutput) SamlSignedRequestEnabled() pulumi.BoolPtrOutput

SAML Signed Request enabled

func (SamlOutput) SamlVersion 

func (o SamlOutput) SamlVersion() pulumi.StringPtrOutput

SAML version for the app's sign-on mode. Valid values are: `"2.0"` or `"1.1"`. Default is `"2.0"`.

func (SamlOutput) SignOnMode 

func (o SamlOutput) SignOnMode() pulumi.StringOutput

Sign-on mode of application.

func (SamlOutput) SignatureAlgorithm 

func (o SamlOutput) SignatureAlgorithm() pulumi.StringPtrOutput

Signature algorithm used ot digitally sign the assertion and response.

func (SamlOutput) SingleLogoutCertificate 

func (o SamlOutput) SingleLogoutCertificate() pulumi.StringPtrOutput

x509 encoded certificate that the Service Provider uses to sign Single Logout requests. Note: should be provided without `-----BEGIN CERTIFICATE-----` and `-----END CERTIFICATE-----`, see [official documentation](https://developer.okta.com/docs/reference/api/apps/#service-provider-certificate).

func (SamlOutput) SingleLogoutIssuer 

func (o SamlOutput) SingleLogoutIssuer() pulumi.StringPtrOutput

The issuer of the Service Provider that generates the Single Logout request.

func (SamlOutput) SingleLogoutUrl 

func (o SamlOutput) SingleLogoutUrl() pulumi.StringPtrOutput

The location where the logout response is sent.

func (SamlOutput) SpIssuer 

func (o SamlOutput) SpIssuer() pulumi.StringPtrOutput

SAML service provider issuer.

func (SamlOutput) SsoUrl 

func (o SamlOutput) SsoUrl() pulumi.StringPtrOutput

Single Sign-on Url.

func (SamlOutput) Status 

func (o SamlOutput) Status() pulumi.StringPtrOutput

status of application.

func (SamlOutput) SubjectNameIdFormat 

func (o SamlOutput) SubjectNameIdFormat() pulumi.StringPtrOutput

Identifies the SAML processing rules.

func (SamlOutput) SubjectNameIdTemplate 

func (o SamlOutput) SubjectNameIdTemplate() pulumi.StringPtrOutput

Template for app user's username when a user is assigned to the app.

func (SamlOutput) ToSamlOutput 

func (o SamlOutput) ToSamlOutput() SamlOutput

func (SamlOutput) ToSamlOutputWithContext 

func (o SamlOutput) ToSamlOutputWithContext(ctx context.Context) SamlOutput

func (SamlOutput) UserNameTemplate 

func (o SamlOutput) UserNameTemplate() pulumi.StringPtrOutput

Username template. Default is: `"${source.login}"`

func (SamlOutput) UserNameTemplatePushStatus 

func (o SamlOutput) UserNameTemplatePushStatus() pulumi.StringPtrOutput

Push username on update. Valid values: `"PUSH"` and `"DONT_PUSH"`.

func (SamlOutput) UserNameTemplateSuffix 

func (o SamlOutput) UserNameTemplateSuffix() pulumi.StringPtrOutput

Username template suffix.

func (SamlOutput) UserNameTemplateType 

func (o SamlOutput) UserNameTemplateType() pulumi.StringPtrOutput

Username template type. Default is: `"BUILT_IN"`.

type SamlState 

type SamlState struct {
	// Custom error page URL.
	AccessibilityErrorRedirectUrl pulumi.StringPtrInput
	// Custom login page for this application.
	AccessibilityLoginRedirectUrl pulumi.StringPtrInput
	// Enable self-service. Default is: `false`.
	AccessibilitySelfService pulumi.BoolPtrInput
	// An array of ACS endpoints. You can configure a maximum of 100 endpoints.
	AcsEndpoints pulumi.StringArrayInput
	// Application notes for admins.
	AdminNote pulumi.StringPtrInput
	// Displays specific appLinks for the app. The value for each application link should be boolean.
	AppLinksJson pulumi.StringPtrInput
	// Application settings in JSON format.
	AppSettingsJson pulumi.StringPtrInput
	// Determines whether the SAML assertion is digitally signed.
	AssertionSigned pulumi.BoolPtrInput
	// List of SAML Attribute statements.
	AttributeStatements SamlAttributeStatementArrayInput
	// Audience Restriction
	Audience pulumi.StringPtrInput
	// The ID of the associated `appSignonPolicy`. If this property is removed from the application the `default` sign-on-policy will be associated with this application.
	AuthenticationPolicy pulumi.StringPtrInput
	// Identifies the SAML authentication context class for the assertion’s authentication statement
	AuthnContextClassRef pulumi.StringPtrInput
	// Display auto submit toolbar. Default is: `false`
	AutoSubmitToolbar pulumi.BoolPtrInput
	// The raw signing certificate.
	Certificate pulumi.StringPtrInput
	// Identifies a specific application resource in an IDP initiated SSO scenario.
	DefaultRelayState pulumi.StringPtrInput
	// Identifies the location where the SAML response is intended to be sent inside of the SAML assertion
	Destination pulumi.StringPtrInput
	// Determines the digest algorithm used to digitally sign the SAML assertion and response
	DigestAlgorithm pulumi.StringPtrInput
	// Url that can be used to embed this application into another portal.
	EmbedUrl pulumi.StringPtrInput
	// Application notes for end users.
	EnduserNote pulumi.StringPtrInput
	// Entity ID, the ID portion of the `entityUrl`.
	EntityKey pulumi.StringPtrInput
	// Entity URL for instance [http://www.okta.com/exk1fcia6d6EMsf331d8](http://www.okta.com/exk1fcia6d6EMsf331d8).
	EntityUrl pulumi.StringPtrInput
	// features enabled. Notice: you can't currently configure provisioning features via the API.
	Features pulumi.StringArrayInput
	// Do not display application icon on mobile app. Default is: `false`
	HideIos pulumi.BoolPtrInput
	// Do not display application icon to users. Default is: `false`
	HideWeb pulumi.BoolPtrInput
	// Prompt user to re-authenticate if SP asks for it. Default is: `false`
	HonorForceAuthn pulumi.BoolPtrInput
	// `urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Post` location from the SAML metadata.
	HttpPostBinding pulumi.StringPtrInput
	// `urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect` location from the SAML metadata.
	HttpRedirectBinding pulumi.StringPtrInput
	// SAML issuer ID.
	IdpIssuer pulumi.StringPtrInput
	// _Early Access Property_. Enables [Federation Broker Mode](https://help.okta.com/en/prod/Content/Topics/Apps/apps-fbm-enable.htm).
	ImplicitAssignment pulumi.BoolPtrInput
	// Saml Inline Hook associated with the application.
	InlineHookId pulumi.StringPtrInput
	// Certificate key ID.
	KeyId pulumi.StringPtrInput
	// Certificate name. This modulates the rotation of keys. New name == new key. Required to be set with `keyYearsValid`.
	KeyName pulumi.StringPtrInput
	// Number of years the certificate is valid (2 - 10 years).
	KeyYearsValid pulumi.IntPtrInput
	// An array of all key credentials for the application. Format of each entry is as follows:
	Keys SamlKeyArrayInput
	// label of application.
	Label pulumi.StringPtrInput
	Logo pulumi.StringPtrInput
	// Direct link of application logo.
	LogoUrl pulumi.StringPtrInput
	// The raw SAML metadata in XML.
	Metadata pulumi.StringPtrInput
	// SAML xml metadata URL.
	MetadataUrl pulumi.StringPtrInput
	// The name of the attribute statement.
	Name pulumi.StringPtrInput
	// name of application from the Okta Integration Network, if not included a custom app will be created.  If not provided the following arguments are required:
	PreconfiguredApp pulumi.StringPtrInput
	// The location where the app may present the SAML assertion.
	Recipient pulumi.StringPtrInput
	// Denotes whether the request is compressed or not.
	RequestCompressed pulumi.BoolPtrInput
	// Determines whether the SAML auth response message is digitally signed.
	ResponseSigned pulumi.BoolPtrInput
	// SAML Signed Request enabled
	SamlSignedRequestEnabled pulumi.BoolPtrInput
	// SAML version for the app's sign-on mode. Valid values are: `"2.0"` or `"1.1"`. Default is `"2.0"`.
	SamlVersion pulumi.StringPtrInput
	// Sign-on mode of application.
	SignOnMode pulumi.StringPtrInput
	// Signature algorithm used ot digitally sign the assertion and response.
	SignatureAlgorithm pulumi.StringPtrInput
	// x509 encoded certificate that the Service Provider uses to sign Single Logout requests.  Note: should be provided without `-----BEGIN CERTIFICATE-----` and `-----END CERTIFICATE-----`, see [official documentation](https://developer.okta.com/docs/reference/api/apps/#service-provider-certificate).
	SingleLogoutCertificate pulumi.StringPtrInput
	// The issuer of the Service Provider that generates the Single Logout request.
	SingleLogoutIssuer pulumi.StringPtrInput
	// The location where the logout response is sent.
	SingleLogoutUrl pulumi.StringPtrInput
	// SAML service provider issuer.
	SpIssuer pulumi.StringPtrInput
	// Single Sign-on Url.
	SsoUrl pulumi.StringPtrInput
	// status of application.
	Status pulumi.StringPtrInput
	// Identifies the SAML processing rules.
	SubjectNameIdFormat pulumi.StringPtrInput
	// Template for app user's username when a user is assigned to the app.
	SubjectNameIdTemplate pulumi.StringPtrInput
	// Username template. Default is: `"${source.login}"`
	UserNameTemplate pulumi.StringPtrInput
	// Push username on update. Valid values: `"PUSH"` and `"DONT_PUSH"`.
	UserNameTemplatePushStatus pulumi.StringPtrInput
	// Username template suffix.
	UserNameTemplateSuffix pulumi.StringPtrInput
	// Username template type. Default is: `"BUILT_IN"`.
	UserNameTemplateType pulumi.StringPtrInput
}

func (SamlState) ElementType 

func (SamlState) ElementType() reflect.Type

type SecurePasswordStore 

type SecurePasswordStore struct {
	pulumi.CustomResourceState

	// Custom error page URL.
	AccessibilityErrorRedirectUrl pulumi.StringPtrOutput `pulumi:"accessibilityErrorRedirectUrl"`
	// Custom login page for this application.
	AccessibilityLoginRedirectUrl pulumi.StringPtrOutput `pulumi:"accessibilityLoginRedirectUrl"`
	// Enable self-service. By default, it is `false`.
	AccessibilitySelfService pulumi.BoolPtrOutput `pulumi:"accessibilitySelfService"`
	// Application notes for admins.
	AdminNote pulumi.StringPtrOutput `pulumi:"adminNote"`
	// Displays specific appLinks for the app. The value for each application link should be boolean.
	AppLinksJson pulumi.StringPtrOutput `pulumi:"appLinksJson"`
	// Display auto submit toolbar.
	AutoSubmitToolbar pulumi.BoolPtrOutput `pulumi:"autoSubmitToolbar"`
	// Application credentials scheme. Can be set to `"EDIT_USERNAME_AND_PASSWORD"`, `"ADMIN_SETS_CREDENTIALS"`, `"EDIT_PASSWORD_ONLY"`, `"EXTERNAL_PASSWORD_SYNC"`, or `"SHARED_USERNAME_AND_PASSWORD"`.
	CredentialsScheme pulumi.StringPtrOutput `pulumi:"credentialsScheme"`
	// Application notes for end users.
	EnduserNote pulumi.StringPtrOutput `pulumi:"enduserNote"`
	// Do not display application icon on mobile app.
	HideIos pulumi.BoolPtrOutput `pulumi:"hideIos"`
	// Do not display application icon to users.
	HideWeb pulumi.BoolPtrOutput `pulumi:"hideWeb"`
	// The display name of the Application.
	Label pulumi.StringOutput `pulumi:"label"`
	Logo pulumi.StringPtrOutput `pulumi:"logo"`
	// URL of the application's logo
	LogoUrl pulumi.StringOutput `pulumi:"logoUrl"`
	// Name assigned to the application by Okta.
	Name pulumi.StringOutput `pulumi:"name"`
	// Name of optional param in the login form.
	OptionalField1 pulumi.StringPtrOutput `pulumi:"optionalField1"`
	// Name of optional value in the login form.
	OptionalField1Value pulumi.StringPtrOutput `pulumi:"optionalField1Value"`
	// Name of optional param in the login form.
	OptionalField2 pulumi.StringPtrOutput `pulumi:"optionalField2"`
	// Name of optional value in the login form.
	OptionalField2Value pulumi.StringPtrOutput `pulumi:"optionalField2Value"`
	// Name of optional param in the login form.
	OptionalField3 pulumi.StringPtrOutput `pulumi:"optionalField3"`
	// Name of optional value in the login form.
	OptionalField3Value pulumi.StringPtrOutput `pulumi:"optionalField3Value"`
	// Login password field.
	PasswordField pulumi.StringOutput `pulumi:"passwordField"`
	// Allow user to reveal password. It can not be set to `true` if `credentialsScheme` is `"ADMIN_SETS_CREDENTIALS"`, `"SHARED_USERNAME_AND_PASSWORD"` or `"EXTERNAL_PASSWORD_SYNC"`.
	RevealPassword pulumi.BoolPtrOutput `pulumi:"revealPassword"`
	// Shared password, required for certain schemes.
	SharedPassword pulumi.StringPtrOutput `pulumi:"sharedPassword"`
	// Shared username, required for certain schemes.
	SharedUsername pulumi.StringPtrOutput `pulumi:"sharedUsername"`
	// Sign-on mode of application.
	SignOnMode pulumi.StringOutput `pulumi:"signOnMode"`
	// Status of application. By default, it is `"ACTIVE"`.
	Status pulumi.StringPtrOutput `pulumi:"status"`
	// Login URL.
	Url pulumi.StringOutput `pulumi:"url"`
	// Username template. Default: `"${source.login}"`
	UserNameTemplate pulumi.StringPtrOutput `pulumi:"userNameTemplate"`
	// Push username on update. Valid values: `"PUSH"` and `"DONT_PUSH"`.
	UserNameTemplatePushStatus pulumi.StringPtrOutput `pulumi:"userNameTemplatePushStatus"`
	// Username template suffix.
	UserNameTemplateSuffix pulumi.StringPtrOutput `pulumi:"userNameTemplateSuffix"`
	// Username template type. Default: `"BUILT_IN"`.
	UserNameTemplateType pulumi.StringPtrOutput `pulumi:"userNameTemplateType"`
	// Login username field.
	UsernameField pulumi.StringOutput `pulumi:"usernameField"`
}

This resource allows you to create and configure a Secure Password Store Application.

> During an apply if there is change in `status` the app will first be activated or deactivated in accordance with the `status` change. Then, all other arguments that changed will be applied.

## Example Usage

```go package main

import ( 

"github.com/pulumi/pulumi-okta/sdk/v4/go/okta/app"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"

) 

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := app.NewSecurePasswordStore(ctx, "example", &app.SecurePasswordStoreArgs{
			CredentialsScheme: pulumi.String("ADMIN_SETS_CREDENTIALS"),
			Label:             pulumi.String("example"),
			PasswordField:     pulumi.String("pass"),
			Url:               pulumi.String("https://test.com"),
			UsernameField:     pulumi.String("user"),
		})
		if err != nil {
			return err
		}
		return nil
	})
}

```

## Import

Secure Password Store Application can be imported via the Okta ID.

```sh 

$ pulumi import okta:app/securePasswordStore:SecurePasswordStore example &#60;app id&#62;

```

func GetSecurePasswordStore 

func GetSecurePasswordStore(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *SecurePasswordStoreState, opts ...pulumi.ResourceOption) (*SecurePasswordStore, error)

GetSecurePasswordStore gets an existing SecurePasswordStore resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewSecurePasswordStore 

func NewSecurePasswordStore(ctx *pulumi.Context,
	name string, args *SecurePasswordStoreArgs, opts ...pulumi.ResourceOption) (*SecurePasswordStore, error)

NewSecurePasswordStore registers a new resource with the given unique name, arguments, and options.

func (*SecurePasswordStore) ElementType 

func (*SecurePasswordStore) ElementType() reflect.Type

func (*SecurePasswordStore) ToSecurePasswordStoreOutput 

func (i *SecurePasswordStore) ToSecurePasswordStoreOutput() SecurePasswordStoreOutput

func (*SecurePasswordStore) ToSecurePasswordStoreOutputWithContext 

func (i *SecurePasswordStore) ToSecurePasswordStoreOutputWithContext(ctx context.Context) SecurePasswordStoreOutput

type SecurePasswordStoreArgs 

type SecurePasswordStoreArgs struct {
	// Custom error page URL.
	AccessibilityErrorRedirectUrl pulumi.StringPtrInput
	// Custom login page for this application.
	AccessibilityLoginRedirectUrl pulumi.StringPtrInput
	// Enable self-service. By default, it is `false`.
	AccessibilitySelfService pulumi.BoolPtrInput
	// Application notes for admins.
	AdminNote pulumi.StringPtrInput
	// Displays specific appLinks for the app. The value for each application link should be boolean.
	AppLinksJson pulumi.StringPtrInput
	// Display auto submit toolbar.
	AutoSubmitToolbar pulumi.BoolPtrInput
	// Application credentials scheme. Can be set to `"EDIT_USERNAME_AND_PASSWORD"`, `"ADMIN_SETS_CREDENTIALS"`, `"EDIT_PASSWORD_ONLY"`, `"EXTERNAL_PASSWORD_SYNC"`, or `"SHARED_USERNAME_AND_PASSWORD"`.
	CredentialsScheme pulumi.StringPtrInput
	// Application notes for end users.
	EnduserNote pulumi.StringPtrInput
	// Do not display application icon on mobile app.
	HideIos pulumi.BoolPtrInput
	// Do not display application icon to users.
	HideWeb pulumi.BoolPtrInput
	// The display name of the Application.
	Label pulumi.StringInput
	Logo pulumi.StringPtrInput
	// Name of optional param in the login form.
	OptionalField1 pulumi.StringPtrInput
	// Name of optional value in the login form.
	OptionalField1Value pulumi.StringPtrInput
	// Name of optional param in the login form.
	OptionalField2 pulumi.StringPtrInput
	// Name of optional value in the login form.
	OptionalField2Value pulumi.StringPtrInput
	// Name of optional param in the login form.
	OptionalField3 pulumi.StringPtrInput
	// Name of optional value in the login form.
	OptionalField3Value pulumi.StringPtrInput
	// Login password field.
	PasswordField pulumi.StringInput
	// Allow user to reveal password. It can not be set to `true` if `credentialsScheme` is `"ADMIN_SETS_CREDENTIALS"`, `"SHARED_USERNAME_AND_PASSWORD"` or `"EXTERNAL_PASSWORD_SYNC"`.
	RevealPassword pulumi.BoolPtrInput
	// Shared password, required for certain schemes.
	SharedPassword pulumi.StringPtrInput
	// Shared username, required for certain schemes.
	SharedUsername pulumi.StringPtrInput
	// Status of application. By default, it is `"ACTIVE"`.
	Status pulumi.StringPtrInput
	// Login URL.
	Url pulumi.StringInput
	// Username template. Default: `"${source.login}"`
	UserNameTemplate pulumi.StringPtrInput
	// Push username on update. Valid values: `"PUSH"` and `"DONT_PUSH"`.
	UserNameTemplatePushStatus pulumi.StringPtrInput
	// Username template suffix.
	UserNameTemplateSuffix pulumi.StringPtrInput
	// Username template type. Default: `"BUILT_IN"`.
	UserNameTemplateType pulumi.StringPtrInput
	// Login username field.
	UsernameField pulumi.StringInput
}

The set of arguments for constructing a SecurePasswordStore resource.

func (SecurePasswordStoreArgs) ElementType 

func (SecurePasswordStoreArgs) ElementType() reflect.Type

type SecurePasswordStoreArray 

type SecurePasswordStoreArray []SecurePasswordStoreInput

func (SecurePasswordStoreArray) ElementType 

func (SecurePasswordStoreArray) ElementType() reflect.Type

func (SecurePasswordStoreArray) ToSecurePasswordStoreArrayOutput 

func (i SecurePasswordStoreArray) ToSecurePasswordStoreArrayOutput() SecurePasswordStoreArrayOutput

func (SecurePasswordStoreArray) ToSecurePasswordStoreArrayOutputWithContext 

func (i SecurePasswordStoreArray) ToSecurePasswordStoreArrayOutputWithContext(ctx context.Context) SecurePasswordStoreArrayOutput

type SecurePasswordStoreArrayInput 

type SecurePasswordStoreArrayInput interface {
	pulumi.Input

	ToSecurePasswordStoreArrayOutput() SecurePasswordStoreArrayOutput
	ToSecurePasswordStoreArrayOutputWithContext(context.Context) SecurePasswordStoreArrayOutput
}

SecurePasswordStoreArrayInput is an input type that accepts SecurePasswordStoreArray and SecurePasswordStoreArrayOutput values. You can construct a concrete instance of `SecurePasswordStoreArrayInput` via: 

SecurePasswordStoreArray{ SecurePasswordStoreArgs{...} }

type SecurePasswordStoreArrayOutput 

type SecurePasswordStoreArrayOutput struct{ *pulumi.OutputState }

func (SecurePasswordStoreArrayOutput) ElementType 

func (SecurePasswordStoreArrayOutput) ElementType() reflect.Type

func (SecurePasswordStoreArrayOutput) Index 

func (o SecurePasswordStoreArrayOutput) Index(i pulumi.IntInput) SecurePasswordStoreOutput

func (SecurePasswordStoreArrayOutput) ToSecurePasswordStoreArrayOutput 

func (o SecurePasswordStoreArrayOutput) ToSecurePasswordStoreArrayOutput() SecurePasswordStoreArrayOutput

func (SecurePasswordStoreArrayOutput) ToSecurePasswordStoreArrayOutputWithContext 

func (o SecurePasswordStoreArrayOutput) ToSecurePasswordStoreArrayOutputWithContext(ctx context.Context) SecurePasswordStoreArrayOutput

type SecurePasswordStoreInput 

type SecurePasswordStoreInput interface {
	pulumi.Input

	ToSecurePasswordStoreOutput() SecurePasswordStoreOutput
	ToSecurePasswordStoreOutputWithContext(ctx context.Context) SecurePasswordStoreOutput
}

type SecurePasswordStoreMap 

type SecurePasswordStoreMap map[string]SecurePasswordStoreInput

func (SecurePasswordStoreMap) ElementType 

func (SecurePasswordStoreMap) ElementType() reflect.Type

func (SecurePasswordStoreMap) ToSecurePasswordStoreMapOutput 

func (i SecurePasswordStoreMap) ToSecurePasswordStoreMapOutput() SecurePasswordStoreMapOutput

func (SecurePasswordStoreMap) ToSecurePasswordStoreMapOutputWithContext 

func (i SecurePasswordStoreMap) ToSecurePasswordStoreMapOutputWithContext(ctx context.Context) SecurePasswordStoreMapOutput

type SecurePasswordStoreMapInput 

type SecurePasswordStoreMapInput interface {
	pulumi.Input

	ToSecurePasswordStoreMapOutput() SecurePasswordStoreMapOutput
	ToSecurePasswordStoreMapOutputWithContext(context.Context) SecurePasswordStoreMapOutput
}

SecurePasswordStoreMapInput is an input type that accepts SecurePasswordStoreMap and SecurePasswordStoreMapOutput values. You can construct a concrete instance of `SecurePasswordStoreMapInput` via: 

SecurePasswordStoreMap{ "key": SecurePasswordStoreArgs{...} }

type SecurePasswordStoreMapOutput 

type SecurePasswordStoreMapOutput struct{ *pulumi.OutputState }

func (SecurePasswordStoreMapOutput) ElementType 

func (SecurePasswordStoreMapOutput) ElementType() reflect.Type

func (SecurePasswordStoreMapOutput) MapIndex 

func (o SecurePasswordStoreMapOutput) MapIndex(k pulumi.StringInput) SecurePasswordStoreOutput

func (SecurePasswordStoreMapOutput) ToSecurePasswordStoreMapOutput 

func (o SecurePasswordStoreMapOutput) ToSecurePasswordStoreMapOutput() SecurePasswordStoreMapOutput

func (SecurePasswordStoreMapOutput) ToSecurePasswordStoreMapOutputWithContext 

func (o SecurePasswordStoreMapOutput) ToSecurePasswordStoreMapOutputWithContext(ctx context.Context) SecurePasswordStoreMapOutput

type SecurePasswordStoreOutput 

type SecurePasswordStoreOutput struct{ *pulumi.OutputState }

func (SecurePasswordStoreOutput) AccessibilityErrorRedirectUrl 

func (o SecurePasswordStoreOutput) AccessibilityErrorRedirectUrl() pulumi.StringPtrOutput

Custom error page URL.

func (SecurePasswordStoreOutput) AccessibilityLoginRedirectUrl 

func (o SecurePasswordStoreOutput) AccessibilityLoginRedirectUrl() pulumi.StringPtrOutput

Custom login page for this application.

func (SecurePasswordStoreOutput) AccessibilitySelfService 

func (o SecurePasswordStoreOutput) AccessibilitySelfService() pulumi.BoolPtrOutput

Enable self-service. By default, it is `false`.

func (SecurePasswordStoreOutput) AdminNote 

func (o SecurePasswordStoreOutput) AdminNote() pulumi.StringPtrOutput

Application notes for admins.

func (SecurePasswordStoreOutput) AppLinksJson 

func (o SecurePasswordStoreOutput) AppLinksJson() pulumi.StringPtrOutput

Displays specific appLinks for the app. The value for each application link should be boolean.

func (SecurePasswordStoreOutput) AutoSubmitToolbar 

func (o SecurePasswordStoreOutput) AutoSubmitToolbar() pulumi.BoolPtrOutput

Display auto submit toolbar.

func (SecurePasswordStoreOutput) CredentialsScheme 

func (o SecurePasswordStoreOutput) CredentialsScheme() pulumi.StringPtrOutput

Application credentials scheme. Can be set to `"EDIT_USERNAME_AND_PASSWORD"`, `"ADMIN_SETS_CREDENTIALS"`, `"EDIT_PASSWORD_ONLY"`, `"EXTERNAL_PASSWORD_SYNC"`, or `"SHARED_USERNAME_AND_PASSWORD"`.

func (SecurePasswordStoreOutput) ElementType 

func (SecurePasswordStoreOutput) ElementType() reflect.Type

func (SecurePasswordStoreOutput) EnduserNote 

func (o SecurePasswordStoreOutput) EnduserNote() pulumi.StringPtrOutput

Application notes for end users.

func (SecurePasswordStoreOutput) HideIos 

func (o SecurePasswordStoreOutput) HideIos() pulumi.BoolPtrOutput

Do not display application icon on mobile app.

func (SecurePasswordStoreOutput) HideWeb 

func (o SecurePasswordStoreOutput) HideWeb() pulumi.BoolPtrOutput

Do not display application icon to users.

func (SecurePasswordStoreOutput) Label 

func (o SecurePasswordStoreOutput) Label() pulumi.StringOutput

The display name of the Application. 

func (o SecurePasswordStoreOutput) Logo() pulumi.StringPtrOutput

Local file path to the logo. The file must be in PNG, JPG, or GIF format, and less than 1 MB in size.

func (SecurePasswordStoreOutput) LogoUrl 

func (o SecurePasswordStoreOutput) LogoUrl() pulumi.StringOutput

URL of the application's logo

func (SecurePasswordStoreOutput) Name 

func (o SecurePasswordStoreOutput) Name() pulumi.StringOutput

Name assigned to the application by Okta.

func (SecurePasswordStoreOutput) OptionalField1 

func (o SecurePasswordStoreOutput) OptionalField1() pulumi.StringPtrOutput

Name of optional param in the login form.

func (SecurePasswordStoreOutput) OptionalField1Value 

func (o SecurePasswordStoreOutput) OptionalField1Value() pulumi.StringPtrOutput

Name of optional value in the login form.

func (SecurePasswordStoreOutput) OptionalField2 

func (o SecurePasswordStoreOutput) OptionalField2() pulumi.StringPtrOutput

Name of optional param in the login form.

func (SecurePasswordStoreOutput) OptionalField2Value 

func (o SecurePasswordStoreOutput) OptionalField2Value() pulumi.StringPtrOutput

Name of optional value in the login form.

func (SecurePasswordStoreOutput) OptionalField3 

func (o SecurePasswordStoreOutput) OptionalField3() pulumi.StringPtrOutput

Name of optional param in the login form.

func (SecurePasswordStoreOutput) OptionalField3Value 

func (o SecurePasswordStoreOutput) OptionalField3Value() pulumi.StringPtrOutput

Name of optional value in the login form.

func (SecurePasswordStoreOutput) PasswordField 

func (o SecurePasswordStoreOutput) PasswordField() pulumi.StringOutput

Login password field.

func (SecurePasswordStoreOutput) RevealPassword 

func (o SecurePasswordStoreOutput) RevealPassword() pulumi.BoolPtrOutput

Allow user to reveal password. It can not be set to `true` if `credentialsScheme` is `"ADMIN_SETS_CREDENTIALS"`, `"SHARED_USERNAME_AND_PASSWORD"` or `"EXTERNAL_PASSWORD_SYNC"`.

func (SecurePasswordStoreOutput) SharedPassword 

func (o SecurePasswordStoreOutput) SharedPassword() pulumi.StringPtrOutput

Shared password, required for certain schemes.

func (SecurePasswordStoreOutput) SharedUsername 

func (o SecurePasswordStoreOutput) SharedUsername() pulumi.StringPtrOutput

Shared username, required for certain schemes.

func (SecurePasswordStoreOutput) SignOnMode 

func (o SecurePasswordStoreOutput) SignOnMode() pulumi.StringOutput

Sign-on mode of application.

func (SecurePasswordStoreOutput) Status 

func (o SecurePasswordStoreOutput) Status() pulumi.StringPtrOutput

Status of application. By default, it is `"ACTIVE"`.

func (SecurePasswordStoreOutput) ToSecurePasswordStoreOutput 

func (o SecurePasswordStoreOutput) ToSecurePasswordStoreOutput() SecurePasswordStoreOutput

func (SecurePasswordStoreOutput) ToSecurePasswordStoreOutputWithContext 

func (o SecurePasswordStoreOutput) ToSecurePasswordStoreOutputWithContext(ctx context.Context) SecurePasswordStoreOutput

func (SecurePasswordStoreOutput) Url 

func (o SecurePasswordStoreOutput) Url() pulumi.StringOutput

Login URL.

func (SecurePasswordStoreOutput) UserNameTemplate 

func (o SecurePasswordStoreOutput) UserNameTemplate() pulumi.StringPtrOutput

Username template. Default: `"${source.login}"`

func (SecurePasswordStoreOutput) UserNameTemplatePushStatus 

func (o SecurePasswordStoreOutput) UserNameTemplatePushStatus() pulumi.StringPtrOutput

Push username on update. Valid values: `"PUSH"` and `"DONT_PUSH"`.

func (SecurePasswordStoreOutput) UserNameTemplateSuffix 

func (o SecurePasswordStoreOutput) UserNameTemplateSuffix() pulumi.StringPtrOutput

Username template suffix.

func (SecurePasswordStoreOutput) UserNameTemplateType 

func (o SecurePasswordStoreOutput) UserNameTemplateType() pulumi.StringPtrOutput

Username template type. Default: `"BUILT_IN"`.

func (SecurePasswordStoreOutput) UsernameField 

func (o SecurePasswordStoreOutput) UsernameField() pulumi.StringOutput

Login username field.

type SecurePasswordStoreState 

type SecurePasswordStoreState struct {
	// Custom error page URL.
	AccessibilityErrorRedirectUrl pulumi.StringPtrInput
	// Custom login page for this application.
	AccessibilityLoginRedirectUrl pulumi.StringPtrInput
	// Enable self-service. By default, it is `false`.
	AccessibilitySelfService pulumi.BoolPtrInput
	// Application notes for admins.
	AdminNote pulumi.StringPtrInput
	// Displays specific appLinks for the app. The value for each application link should be boolean.
	AppLinksJson pulumi.StringPtrInput
	// Display auto submit toolbar.
	AutoSubmitToolbar pulumi.BoolPtrInput
	// Application credentials scheme. Can be set to `"EDIT_USERNAME_AND_PASSWORD"`, `"ADMIN_SETS_CREDENTIALS"`, `"EDIT_PASSWORD_ONLY"`, `"EXTERNAL_PASSWORD_SYNC"`, or `"SHARED_USERNAME_AND_PASSWORD"`.
	CredentialsScheme pulumi.StringPtrInput
	// Application notes for end users.
	EnduserNote pulumi.StringPtrInput
	// Do not display application icon on mobile app.
	HideIos pulumi.BoolPtrInput
	// Do not display application icon to users.
	HideWeb pulumi.BoolPtrInput
	// The display name of the Application.
	Label pulumi.StringPtrInput
	Logo pulumi.StringPtrInput
	// URL of the application's logo
	LogoUrl pulumi.StringPtrInput
	// Name assigned to the application by Okta.
	Name pulumi.StringPtrInput
	// Name of optional param in the login form.
	OptionalField1 pulumi.StringPtrInput
	// Name of optional value in the login form.
	OptionalField1Value pulumi.StringPtrInput
	// Name of optional param in the login form.
	OptionalField2 pulumi.StringPtrInput
	// Name of optional value in the login form.
	OptionalField2Value pulumi.StringPtrInput
	// Name of optional param in the login form.
	OptionalField3 pulumi.StringPtrInput
	// Name of optional value in the login form.
	OptionalField3Value pulumi.StringPtrInput
	// Login password field.
	PasswordField pulumi.StringPtrInput
	// Allow user to reveal password. It can not be set to `true` if `credentialsScheme` is `"ADMIN_SETS_CREDENTIALS"`, `"SHARED_USERNAME_AND_PASSWORD"` or `"EXTERNAL_PASSWORD_SYNC"`.
	RevealPassword pulumi.BoolPtrInput
	// Shared password, required for certain schemes.
	SharedPassword pulumi.StringPtrInput
	// Shared username, required for certain schemes.
	SharedUsername pulumi.StringPtrInput
	// Sign-on mode of application.
	SignOnMode pulumi.StringPtrInput
	// Status of application. By default, it is `"ACTIVE"`.
	Status pulumi.StringPtrInput
	// Login URL.
	Url pulumi.StringPtrInput
	// Username template. Default: `"${source.login}"`
	UserNameTemplate pulumi.StringPtrInput
	// Push username on update. Valid values: `"PUSH"` and `"DONT_PUSH"`.
	UserNameTemplatePushStatus pulumi.StringPtrInput
	// Username template suffix.
	UserNameTemplateSuffix pulumi.StringPtrInput
	// Username template type. Default: `"BUILT_IN"`.
	UserNameTemplateType pulumi.StringPtrInput
	// Login username field.
	UsernameField pulumi.StringPtrInput
}

func (SecurePasswordStoreState) ElementType 

func (SecurePasswordStoreState) ElementType() reflect.Type

type Swa 

type Swa struct {
	pulumi.CustomResourceState

	// Custom error page URL.
	AccessibilityErrorRedirectUrl pulumi.StringPtrOutput `pulumi:"accessibilityErrorRedirectUrl"`
	// Custom login page for this application.
	AccessibilityLoginRedirectUrl pulumi.StringPtrOutput `pulumi:"accessibilityLoginRedirectUrl"`
	// Enable self-service. By default, it is `false`.
	AccessibilitySelfService pulumi.BoolPtrOutput `pulumi:"accessibilitySelfService"`
	// Application notes for admins.
	AdminNote pulumi.StringPtrOutput `pulumi:"adminNote"`
	// Displays specific appLinks for the app. The value for each application link should be boolean.
	AppLinksJson pulumi.StringPtrOutput `pulumi:"appLinksJson"`
	// Display auto submit toolbar.
	AutoSubmitToolbar pulumi.BoolPtrOutput `pulumi:"autoSubmitToolbar"`
	// Login button field.
	ButtonField pulumi.StringPtrOutput `pulumi:"buttonField"`
	// CSS selector for the checkbox.
	Checkbox pulumi.StringPtrOutput `pulumi:"checkbox"`
	// Application notes for end users.
	EnduserNote pulumi.StringPtrOutput `pulumi:"enduserNote"`
	// Do not display application icon on mobile app.
	HideIos pulumi.BoolPtrOutput `pulumi:"hideIos"`
	// Do not display application icon to users.
	HideWeb pulumi.BoolPtrOutput `pulumi:"hideWeb"`
	// The display name of the Application.
	Label pulumi.StringOutput `pulumi:"label"`
	Logo pulumi.StringPtrOutput `pulumi:"logo"`
	// Direct link of application logo.
	LogoUrl pulumi.StringOutput `pulumi:"logoUrl"`
	// Name assigned to the application by Okta.
	Name pulumi.StringOutput `pulumi:"name"`
	// Login password field.
	PasswordField pulumi.StringPtrOutput `pulumi:"passwordField"`
	// name of application from the Okta Integration Network, if not included a custom app will be created.
	PreconfiguredApp pulumi.StringPtrOutput `pulumi:"preconfiguredApp"`
	// Redirect URL. If going to the login page URL redirects to another page, then enter that URL here.
	RedirectUrl pulumi.StringPtrOutput `pulumi:"redirectUrl"`
	// Sign-on mode of application.
	SignOnMode pulumi.StringOutput `pulumi:"signOnMode"`
	// Status of application. By default, it is `"ACTIVE"`.
	Status pulumi.StringPtrOutput `pulumi:"status"`
	// The URL of the sign-in page for this app.
	Url pulumi.StringPtrOutput `pulumi:"url"`
	// A regular expression that further restricts url to the specified regular expression.
	UrlRegex pulumi.StringPtrOutput `pulumi:"urlRegex"`
	// Username template. Default: `"${source.login}"`
	UserNameTemplate pulumi.StringPtrOutput `pulumi:"userNameTemplate"`
	// Push username on update. Valid values: `"PUSH"` and `"DONT_PUSH"`.
	UserNameTemplatePushStatus pulumi.StringPtrOutput `pulumi:"userNameTemplatePushStatus"`
	// Username template suffix.
	UserNameTemplateSuffix pulumi.StringPtrOutput `pulumi:"userNameTemplateSuffix"`
	// Username template type. Default: `"BUILT_IN"`.
	UserNameTemplateType pulumi.StringPtrOutput `pulumi:"userNameTemplateType"`
	// Login username field.
	UsernameField pulumi.StringPtrOutput `pulumi:"usernameField"`
}

This resource allows you to create and configure a SWA Application.

> During an apply if there is change in `status` the app will first be activated or deactivated in accordance with the `status` change. Then, all other arguments that changed will be applied.

## Example Usage

```go package main

import ( 

"github.com/pulumi/pulumi-okta/sdk/v4/go/okta/app"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"

) 

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := app.NewSwa(ctx, "example", &app.SwaArgs{
			ButtonField:   pulumi.String("btn-login"),
			Label:         pulumi.String("example"),
			PasswordField: pulumi.String("txtbox-password"),
			Url:           pulumi.String("https://example.com/login.html"),
			UsernameField: pulumi.String("txtbox-username"),
		})
		if err != nil {
			return err
		}
		return nil
	})
}

```

## Import

Okta SWA App can be imported via the Okta ID.

```sh 

$ pulumi import okta:app/swa:Swa example &#60;app id&#62;

```

func GetSwa 

func GetSwa(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *SwaState, opts ...pulumi.ResourceOption) (*Swa, error)

GetSwa gets an existing Swa resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewSwa 

func NewSwa(ctx *pulumi.Context,
	name string, args *SwaArgs, opts ...pulumi.ResourceOption) (*Swa, error)

NewSwa registers a new resource with the given unique name, arguments, and options.

func (*Swa) ElementType 

func (*Swa) ElementType() reflect.Type

func (*Swa) ToSwaOutput 

func (i *Swa) ToSwaOutput() SwaOutput

func (*Swa) ToSwaOutputWithContext 

func (i *Swa) ToSwaOutputWithContext(ctx context.Context) SwaOutput

type SwaArgs 

type SwaArgs struct {
	// Custom error page URL.
	AccessibilityErrorRedirectUrl pulumi.StringPtrInput
	// Custom login page for this application.
	AccessibilityLoginRedirectUrl pulumi.StringPtrInput
	// Enable self-service. By default, it is `false`.
	AccessibilitySelfService pulumi.BoolPtrInput
	// Application notes for admins.
	AdminNote pulumi.StringPtrInput
	// Displays specific appLinks for the app. The value for each application link should be boolean.
	AppLinksJson pulumi.StringPtrInput
	// Display auto submit toolbar.
	AutoSubmitToolbar pulumi.BoolPtrInput
	// Login button field.
	ButtonField pulumi.StringPtrInput
	// CSS selector for the checkbox.
	Checkbox pulumi.StringPtrInput
	// Application notes for end users.
	EnduserNote pulumi.StringPtrInput
	// Do not display application icon on mobile app.
	HideIos pulumi.BoolPtrInput
	// Do not display application icon to users.
	HideWeb pulumi.BoolPtrInput
	// The display name of the Application.
	Label pulumi.StringInput
	Logo pulumi.StringPtrInput
	// Login password field.
	PasswordField pulumi.StringPtrInput
	// name of application from the Okta Integration Network, if not included a custom app will be created.
	PreconfiguredApp pulumi.StringPtrInput
	// Redirect URL. If going to the login page URL redirects to another page, then enter that URL here.
	RedirectUrl pulumi.StringPtrInput
	// Status of application. By default, it is `"ACTIVE"`.
	Status pulumi.StringPtrInput
	// The URL of the sign-in page for this app.
	Url pulumi.StringPtrInput
	// A regular expression that further restricts url to the specified regular expression.
	UrlRegex pulumi.StringPtrInput
	// Username template. Default: `"${source.login}"`
	UserNameTemplate pulumi.StringPtrInput
	// Push username on update. Valid values: `"PUSH"` and `"DONT_PUSH"`.
	UserNameTemplatePushStatus pulumi.StringPtrInput
	// Username template suffix.
	UserNameTemplateSuffix pulumi.StringPtrInput
	// Username template type. Default: `"BUILT_IN"`.
	UserNameTemplateType pulumi.StringPtrInput
	// Login username field.
	UsernameField pulumi.StringPtrInput
}

The set of arguments for constructing a Swa resource.

func (SwaArgs) ElementType 

func (SwaArgs) ElementType() reflect.Type

type SwaArray 

type SwaArray []SwaInput

func (SwaArray) ElementType 

func (SwaArray) ElementType() reflect.Type

func (SwaArray) ToSwaArrayOutput 

func (i SwaArray) ToSwaArrayOutput() SwaArrayOutput

func (SwaArray) ToSwaArrayOutputWithContext 

func (i SwaArray) ToSwaArrayOutputWithContext(ctx context.Context) SwaArrayOutput

type SwaArrayInput 

type SwaArrayInput interface {
	pulumi.Input

	ToSwaArrayOutput() SwaArrayOutput
	ToSwaArrayOutputWithContext(context.Context) SwaArrayOutput
}

SwaArrayInput is an input type that accepts SwaArray and SwaArrayOutput values. You can construct a concrete instance of `SwaArrayInput` via: 

SwaArray{ SwaArgs{...} }

type SwaArrayOutput 

type SwaArrayOutput struct{ *pulumi.OutputState }

func (SwaArrayOutput) ElementType 

func (SwaArrayOutput) ElementType() reflect.Type

func (SwaArrayOutput) Index 

func (o SwaArrayOutput) Index(i pulumi.IntInput) SwaOutput

func (SwaArrayOutput) ToSwaArrayOutput 

func (o SwaArrayOutput) ToSwaArrayOutput() SwaArrayOutput

func (SwaArrayOutput) ToSwaArrayOutputWithContext 

func (o SwaArrayOutput) ToSwaArrayOutputWithContext(ctx context.Context) SwaArrayOutput

type SwaInput 

type SwaInput interface {
	pulumi.Input

	ToSwaOutput() SwaOutput
	ToSwaOutputWithContext(ctx context.Context) SwaOutput
}

type SwaMap 

type SwaMap map[string]SwaInput

func (SwaMap) ElementType 

func (SwaMap) ElementType() reflect.Type

func (SwaMap) ToSwaMapOutput 

func (i SwaMap) ToSwaMapOutput() SwaMapOutput

func (SwaMap) ToSwaMapOutputWithContext 

func (i SwaMap) ToSwaMapOutputWithContext(ctx context.Context) SwaMapOutput

type SwaMapInput 

type SwaMapInput interface {
	pulumi.Input

	ToSwaMapOutput() SwaMapOutput
	ToSwaMapOutputWithContext(context.Context) SwaMapOutput
}

SwaMapInput is an input type that accepts SwaMap and SwaMapOutput values. You can construct a concrete instance of `SwaMapInput` via: 

SwaMap{ "key": SwaArgs{...} }

type SwaMapOutput 

type SwaMapOutput struct{ *pulumi.OutputState }

func (SwaMapOutput) ElementType 

func (SwaMapOutput) ElementType() reflect.Type

func (SwaMapOutput) MapIndex 

func (o SwaMapOutput) MapIndex(k pulumi.StringInput) SwaOutput

func (SwaMapOutput) ToSwaMapOutput 

func (o SwaMapOutput) ToSwaMapOutput() SwaMapOutput

func (SwaMapOutput) ToSwaMapOutputWithContext 

func (o SwaMapOutput) ToSwaMapOutputWithContext(ctx context.Context) SwaMapOutput

type SwaOutput 

type SwaOutput struct{ *pulumi.OutputState }

func (SwaOutput) AccessibilityErrorRedirectUrl 

func (o SwaOutput) AccessibilityErrorRedirectUrl() pulumi.StringPtrOutput

Custom error page URL.

func (SwaOutput) AccessibilityLoginRedirectUrl 

func (o SwaOutput) AccessibilityLoginRedirectUrl() pulumi.StringPtrOutput

Custom login page for this application.

func (SwaOutput) AccessibilitySelfService 

func (o SwaOutput) AccessibilitySelfService() pulumi.BoolPtrOutput

Enable self-service. By default, it is `false`.

func (SwaOutput) AdminNote 

func (o SwaOutput) AdminNote() pulumi.StringPtrOutput

Application notes for admins.

func (SwaOutput) AppLinksJson 

func (o SwaOutput) AppLinksJson() pulumi.StringPtrOutput

Displays specific appLinks for the app. The value for each application link should be boolean.

func (SwaOutput) AutoSubmitToolbar 

func (o SwaOutput) AutoSubmitToolbar() pulumi.BoolPtrOutput

Display auto submit toolbar.

func (SwaOutput) ButtonField 

func (o SwaOutput) ButtonField() pulumi.StringPtrOutput

Login button field.

func (SwaOutput) Checkbox 

func (o SwaOutput) Checkbox() pulumi.StringPtrOutput

CSS selector for the checkbox.

func (SwaOutput) ElementType 

func (SwaOutput) ElementType() reflect.Type

func (SwaOutput) EnduserNote 

func (o SwaOutput) EnduserNote() pulumi.StringPtrOutput

Application notes for end users.

func (SwaOutput) HideIos 

func (o SwaOutput) HideIos() pulumi.BoolPtrOutput

Do not display application icon on mobile app.

func (SwaOutput) HideWeb 

func (o SwaOutput) HideWeb() pulumi.BoolPtrOutput

Do not display application icon to users.

func (SwaOutput) Label 

func (o SwaOutput) Label() pulumi.StringOutput

The display name of the Application. 

func (o SwaOutput) Logo() pulumi.StringPtrOutput

Local file path to the logo. The file must be in PNG, JPG, or GIF format, and less than 1 MB in size.

func (SwaOutput) LogoUrl 

func (o SwaOutput) LogoUrl() pulumi.StringOutput

Direct link of application logo.

func (SwaOutput) Name 

func (o SwaOutput) Name() pulumi.StringOutput

Name assigned to the application by Okta.

func (SwaOutput) PasswordField 

func (o SwaOutput) PasswordField() pulumi.StringPtrOutput

Login password field.

func (SwaOutput) PreconfiguredApp 

func (o SwaOutput) PreconfiguredApp() pulumi.StringPtrOutput

name of application from the Okta Integration Network, if not included a custom app will be created.

func (SwaOutput) RedirectUrl 

func (o SwaOutput) RedirectUrl() pulumi.StringPtrOutput

Redirect URL. If going to the login page URL redirects to another page, then enter that URL here.

func (SwaOutput) SignOnMode 

func (o SwaOutput) SignOnMode() pulumi.StringOutput

Sign-on mode of application.

func (SwaOutput) Status 

func (o SwaOutput) Status() pulumi.StringPtrOutput

Status of application. By default, it is `"ACTIVE"`.

func (SwaOutput) ToSwaOutput 

func (o SwaOutput) ToSwaOutput() SwaOutput

func (SwaOutput) ToSwaOutputWithContext 

func (o SwaOutput) ToSwaOutputWithContext(ctx context.Context) SwaOutput

func (SwaOutput) Url 

func (o SwaOutput) Url() pulumi.StringPtrOutput

The URL of the sign-in page for this app.

func (SwaOutput) UrlRegex 

func (o SwaOutput) UrlRegex() pulumi.StringPtrOutput

A regular expression that further restricts url to the specified regular expression.

func (SwaOutput) UserNameTemplate 

func (o SwaOutput) UserNameTemplate() pulumi.StringPtrOutput

Username template. Default: `"${source.login}"`

func (SwaOutput) UserNameTemplatePushStatus 

func (o SwaOutput) UserNameTemplatePushStatus() pulumi.StringPtrOutput

Push username on update. Valid values: `"PUSH"` and `"DONT_PUSH"`.

func (SwaOutput) UserNameTemplateSuffix 

func (o SwaOutput) UserNameTemplateSuffix() pulumi.StringPtrOutput

Username template suffix.

func (SwaOutput) UserNameTemplateType 

func (o SwaOutput) UserNameTemplateType() pulumi.StringPtrOutput

Username template type. Default: `"BUILT_IN"`.

func (SwaOutput) UsernameField 

func (o SwaOutput) UsernameField() pulumi.StringPtrOutput

Login username field.

type SwaState 

type SwaState struct {
	// Custom error page URL.
	AccessibilityErrorRedirectUrl pulumi.StringPtrInput
	// Custom login page for this application.
	AccessibilityLoginRedirectUrl pulumi.StringPtrInput
	// Enable self-service. By default, it is `false`.
	AccessibilitySelfService pulumi.BoolPtrInput
	// Application notes for admins.
	AdminNote pulumi.StringPtrInput
	// Displays specific appLinks for the app. The value for each application link should be boolean.
	AppLinksJson pulumi.StringPtrInput
	// Display auto submit toolbar.
	AutoSubmitToolbar pulumi.BoolPtrInput
	// Login button field.
	ButtonField pulumi.StringPtrInput
	// CSS selector for the checkbox.
	Checkbox pulumi.StringPtrInput
	// Application notes for end users.
	EnduserNote pulumi.StringPtrInput
	// Do not display application icon on mobile app.
	HideIos pulumi.BoolPtrInput
	// Do not display application icon to users.
	HideWeb pulumi.BoolPtrInput
	// The display name of the Application.
	Label pulumi.StringPtrInput
	Logo pulumi.StringPtrInput
	// Direct link of application logo.
	LogoUrl pulumi.StringPtrInput
	// Name assigned to the application by Okta.
	Name pulumi.StringPtrInput
	// Login password field.
	PasswordField pulumi.StringPtrInput
	// name of application from the Okta Integration Network, if not included a custom app will be created.
	PreconfiguredApp pulumi.StringPtrInput
	// Redirect URL. If going to the login page URL redirects to another page, then enter that URL here.
	RedirectUrl pulumi.StringPtrInput
	// Sign-on mode of application.
	SignOnMode pulumi.StringPtrInput
	// Status of application. By default, it is `"ACTIVE"`.
	Status pulumi.StringPtrInput
	// The URL of the sign-in page for this app.
	Url pulumi.StringPtrInput
	// A regular expression that further restricts url to the specified regular expression.
	UrlRegex pulumi.StringPtrInput
	// Username template. Default: `"${source.login}"`
	UserNameTemplate pulumi.StringPtrInput
	// Push username on update. Valid values: `"PUSH"` and `"DONT_PUSH"`.
	UserNameTemplatePushStatus pulumi.StringPtrInput
	// Username template suffix.
	UserNameTemplateSuffix pulumi.StringPtrInput
	// Username template type. Default: `"BUILT_IN"`.
	UserNameTemplateType pulumi.StringPtrInput
	// Login username field.
	UsernameField pulumi.StringPtrInput
}

func (SwaState) ElementType 

func (SwaState) ElementType() reflect.Type

type ThreeField 

type ThreeField struct {
	pulumi.CustomResourceState

	// Custom error page URL.
	AccessibilityErrorRedirectUrl pulumi.StringPtrOutput `pulumi:"accessibilityErrorRedirectUrl"`
	// Custom login page for this application.
	AccessibilityLoginRedirectUrl pulumi.StringPtrOutput `pulumi:"accessibilityLoginRedirectUrl"`
	// Enable self-service. By default, it is `false`.
	AccessibilitySelfService pulumi.BoolPtrOutput `pulumi:"accessibilitySelfService"`
	// Application notes for admins.
	AdminNote pulumi.StringPtrOutput `pulumi:"adminNote"`
	// Displays specific appLinks for the app
	AppLinksJson pulumi.StringPtrOutput `pulumi:"appLinksJson"`
	// Display auto submit toolbar.
	AutoSubmitToolbar pulumi.BoolPtrOutput `pulumi:"autoSubmitToolbar"`
	// Login button field CSS selector.
	ButtonSelector pulumi.StringOutput `pulumi:"buttonSelector"`
	// Application credentials scheme. Can be set to `"EDIT_USERNAME_AND_PASSWORD"`, `"ADMIN_SETS_CREDENTIALS"`, `"EDIT_PASSWORD_ONLY"`, `"EXTERNAL_PASSWORD_SYNC"`, or `"SHARED_USERNAME_AND_PASSWORD"`.
	CredentialsScheme pulumi.StringPtrOutput `pulumi:"credentialsScheme"`
	// Application notes for end users.
	EnduserNote pulumi.StringPtrOutput `pulumi:"enduserNote"`
	// Extra field CSS selector.
	ExtraFieldSelector pulumi.StringOutput `pulumi:"extraFieldSelector"`
	// Value for extra form field.
	ExtraFieldValue pulumi.StringOutput `pulumi:"extraFieldValue"`
	// Do not display application icon on mobile app.
	HideIos pulumi.BoolPtrOutput `pulumi:"hideIos"`
	// Do not display application icon to users.
	HideWeb pulumi.BoolPtrOutput `pulumi:"hideWeb"`
	// The display name of the Application.
	Label pulumi.StringOutput `pulumi:"label"`
	Logo pulumi.StringPtrOutput `pulumi:"logo"`
	// Direct link of application logo.
	LogoUrl pulumi.StringOutput `pulumi:"logoUrl"`
	// Name assigned to the application by Okta.
	Name pulumi.StringOutput `pulumi:"name"`
	// Login password field CSS selector.
	PasswordSelector pulumi.StringOutput `pulumi:"passwordSelector"`
	// Allow user to reveal password. It can not be set to `true` if `credentialsScheme` is `"ADMIN_SETS_CREDENTIALS"`, `"SHARED_USERNAME_AND_PASSWORD"` or `"EXTERNAL_PASSWORD_SYNC"`.
	RevealPassword pulumi.BoolPtrOutput `pulumi:"revealPassword"`
	// Shared password, required for certain schemes.
	SharedPassword pulumi.StringPtrOutput `pulumi:"sharedPassword"`
	// Shared username, required for certain schemes.
	SharedUsername pulumi.StringPtrOutput `pulumi:"sharedUsername"`
	// Sign-on mode of application.
	SignOnMode pulumi.StringOutput `pulumi:"signOnMode"`
	// Status of application. By default, it is `"ACTIVE"`.
	Status pulumi.StringPtrOutput `pulumi:"status"`
	// Login URL.
	Url pulumi.StringOutput `pulumi:"url"`
	// A regex that further restricts URL to the specified regex.
	UrlRegex pulumi.StringPtrOutput `pulumi:"urlRegex"`
	// Username template. Default: `"${source.login}"`
	UserNameTemplate pulumi.StringPtrOutput `pulumi:"userNameTemplate"`
	// Push username on update. Valid values: `"PUSH"` and `"DONT_PUSH"`.
	UserNameTemplatePushStatus pulumi.StringPtrOutput `pulumi:"userNameTemplatePushStatus"`
	// Username template suffix.
	UserNameTemplateSuffix pulumi.StringPtrOutput `pulumi:"userNameTemplateSuffix"`
	// Username template type. Default: `"BUILT_IN"`.
	UserNameTemplateType pulumi.StringPtrOutput `pulumi:"userNameTemplateType"`
	// Login username field CSS selector.
	UsernameSelector pulumi.StringOutput `pulumi:"usernameSelector"`
}

This resource allows you to create and configure a Three Field Application.

> During an apply if there is change in `status` the app will first be activated or deactivated in accordance with the `status` change. Then, all other arguments that changed will be applied.

## Import

A Three Field App can be imported via the Okta ID.

```sh 

$ pulumi import okta:app/threeField:ThreeField example &#60;app id&#62;

```

func GetThreeField 

func GetThreeField(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *ThreeFieldState, opts ...pulumi.ResourceOption) (*ThreeField, error)

GetThreeField gets an existing ThreeField resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewThreeField 

func NewThreeField(ctx *pulumi.Context,
	name string, args *ThreeFieldArgs, opts ...pulumi.ResourceOption) (*ThreeField, error)

NewThreeField registers a new resource with the given unique name, arguments, and options.

func (*ThreeField) ElementType 

func (*ThreeField) ElementType() reflect.Type

func (*ThreeField) ToThreeFieldOutput 

func (i *ThreeField) ToThreeFieldOutput() ThreeFieldOutput

func (*ThreeField) ToThreeFieldOutputWithContext 

func (i *ThreeField) ToThreeFieldOutputWithContext(ctx context.Context) ThreeFieldOutput

type ThreeFieldArgs 

type ThreeFieldArgs struct {
	// Custom error page URL.
	AccessibilityErrorRedirectUrl pulumi.StringPtrInput
	// Custom login page for this application.
	AccessibilityLoginRedirectUrl pulumi.StringPtrInput
	// Enable self-service. By default, it is `false`.
	AccessibilitySelfService pulumi.BoolPtrInput
	// Application notes for admins.
	AdminNote pulumi.StringPtrInput
	// Displays specific appLinks for the app
	AppLinksJson pulumi.StringPtrInput
	// Display auto submit toolbar.
	AutoSubmitToolbar pulumi.BoolPtrInput
	// Login button field CSS selector.
	ButtonSelector pulumi.StringInput
	// Application credentials scheme. Can be set to `"EDIT_USERNAME_AND_PASSWORD"`, `"ADMIN_SETS_CREDENTIALS"`, `"EDIT_PASSWORD_ONLY"`, `"EXTERNAL_PASSWORD_SYNC"`, or `"SHARED_USERNAME_AND_PASSWORD"`.
	CredentialsScheme pulumi.StringPtrInput
	// Application notes for end users.
	EnduserNote pulumi.StringPtrInput
	// Extra field CSS selector.
	ExtraFieldSelector pulumi.StringInput
	// Value for extra form field.
	ExtraFieldValue pulumi.StringInput
	// Do not display application icon on mobile app.
	HideIos pulumi.BoolPtrInput
	// Do not display application icon to users.
	HideWeb pulumi.BoolPtrInput
	// The display name of the Application.
	Label pulumi.StringInput
	Logo pulumi.StringPtrInput
	// Login password field CSS selector.
	PasswordSelector pulumi.StringInput
	// Allow user to reveal password. It can not be set to `true` if `credentialsScheme` is `"ADMIN_SETS_CREDENTIALS"`, `"SHARED_USERNAME_AND_PASSWORD"` or `"EXTERNAL_PASSWORD_SYNC"`.
	RevealPassword pulumi.BoolPtrInput
	// Shared password, required for certain schemes.
	SharedPassword pulumi.StringPtrInput
	// Shared username, required for certain schemes.
	SharedUsername pulumi.StringPtrInput
	// Status of application. By default, it is `"ACTIVE"`.
	Status pulumi.StringPtrInput
	// Login URL.
	Url pulumi.StringInput
	// A regex that further restricts URL to the specified regex.
	UrlRegex pulumi.StringPtrInput
	// Username template. Default: `"${source.login}"`
	UserNameTemplate pulumi.StringPtrInput
	// Push username on update. Valid values: `"PUSH"` and `"DONT_PUSH"`.
	UserNameTemplatePushStatus pulumi.StringPtrInput
	// Username template suffix.
	UserNameTemplateSuffix pulumi.StringPtrInput
	// Username template type. Default: `"BUILT_IN"`.
	UserNameTemplateType pulumi.StringPtrInput
	// Login username field CSS selector.
	UsernameSelector pulumi.StringInput
}

The set of arguments for constructing a ThreeField resource.

func (ThreeFieldArgs) ElementType 

func (ThreeFieldArgs) ElementType() reflect.Type

type ThreeFieldArray 

type ThreeFieldArray []ThreeFieldInput

func (ThreeFieldArray) ElementType 

func (ThreeFieldArray) ElementType() reflect.Type

func (ThreeFieldArray) ToThreeFieldArrayOutput 

func (i ThreeFieldArray) ToThreeFieldArrayOutput() ThreeFieldArrayOutput

func (ThreeFieldArray) ToThreeFieldArrayOutputWithContext 

func (i ThreeFieldArray) ToThreeFieldArrayOutputWithContext(ctx context.Context) ThreeFieldArrayOutput

type ThreeFieldArrayInput 

type ThreeFieldArrayInput interface {
	pulumi.Input

	ToThreeFieldArrayOutput() ThreeFieldArrayOutput
	ToThreeFieldArrayOutputWithContext(context.Context) ThreeFieldArrayOutput
}

ThreeFieldArrayInput is an input type that accepts ThreeFieldArray and ThreeFieldArrayOutput values. You can construct a concrete instance of `ThreeFieldArrayInput` via: 

ThreeFieldArray{ ThreeFieldArgs{...} }

type ThreeFieldArrayOutput 

type ThreeFieldArrayOutput struct{ *pulumi.OutputState }

func (ThreeFieldArrayOutput) ElementType 

func (ThreeFieldArrayOutput) ElementType() reflect.Type

func (ThreeFieldArrayOutput) Index 

func (o ThreeFieldArrayOutput) Index(i pulumi.IntInput) ThreeFieldOutput

func (ThreeFieldArrayOutput) ToThreeFieldArrayOutput 

func (o ThreeFieldArrayOutput) ToThreeFieldArrayOutput() ThreeFieldArrayOutput

func (ThreeFieldArrayOutput) ToThreeFieldArrayOutputWithContext 

func (o ThreeFieldArrayOutput) ToThreeFieldArrayOutputWithContext(ctx context.Context) ThreeFieldArrayOutput

type ThreeFieldInput 

type ThreeFieldInput interface {
	pulumi.Input

	ToThreeFieldOutput() ThreeFieldOutput
	ToThreeFieldOutputWithContext(ctx context.Context) ThreeFieldOutput
}

type ThreeFieldMap 

type ThreeFieldMap map[string]ThreeFieldInput

func (ThreeFieldMap) ElementType 

func (ThreeFieldMap) ElementType() reflect.Type

func (ThreeFieldMap) ToThreeFieldMapOutput 

func (i ThreeFieldMap) ToThreeFieldMapOutput() ThreeFieldMapOutput

func (ThreeFieldMap) ToThreeFieldMapOutputWithContext 

func (i ThreeFieldMap) ToThreeFieldMapOutputWithContext(ctx context.Context) ThreeFieldMapOutput

type ThreeFieldMapInput 

type ThreeFieldMapInput interface {
	pulumi.Input

	ToThreeFieldMapOutput() ThreeFieldMapOutput
	ToThreeFieldMapOutputWithContext(context.Context) ThreeFieldMapOutput
}

ThreeFieldMapInput is an input type that accepts ThreeFieldMap and ThreeFieldMapOutput values. You can construct a concrete instance of `ThreeFieldMapInput` via: 

ThreeFieldMap{ "key": ThreeFieldArgs{...} }

type ThreeFieldMapOutput 

type ThreeFieldMapOutput struct{ *pulumi.OutputState }

func (ThreeFieldMapOutput) ElementType 

func (ThreeFieldMapOutput) ElementType() reflect.Type

func (ThreeFieldMapOutput) MapIndex 

func (o ThreeFieldMapOutput) MapIndex(k pulumi.StringInput) ThreeFieldOutput

func (ThreeFieldMapOutput) ToThreeFieldMapOutput 

func (o ThreeFieldMapOutput) ToThreeFieldMapOutput() ThreeFieldMapOutput

func (ThreeFieldMapOutput) ToThreeFieldMapOutputWithContext 

func (o ThreeFieldMapOutput) ToThreeFieldMapOutputWithContext(ctx context.Context) ThreeFieldMapOutput

type ThreeFieldOutput 

type ThreeFieldOutput struct{ *pulumi.OutputState }

func (ThreeFieldOutput) AccessibilityErrorRedirectUrl 

func (o ThreeFieldOutput) AccessibilityErrorRedirectUrl() pulumi.StringPtrOutput

Custom error page URL.

func (ThreeFieldOutput) AccessibilityLoginRedirectUrl 

func (o ThreeFieldOutput) AccessibilityLoginRedirectUrl() pulumi.StringPtrOutput

Custom login page for this application.

func (ThreeFieldOutput) AccessibilitySelfService 

func (o ThreeFieldOutput) AccessibilitySelfService() pulumi.BoolPtrOutput

Enable self-service. By default, it is `false`.

func (ThreeFieldOutput) AdminNote 

func (o ThreeFieldOutput) AdminNote() pulumi.StringPtrOutput

Application notes for admins.

func (ThreeFieldOutput) AppLinksJson 

func (o ThreeFieldOutput) AppLinksJson() pulumi.StringPtrOutput

Displays specific appLinks for the app

func (ThreeFieldOutput) AutoSubmitToolbar 

func (o ThreeFieldOutput) AutoSubmitToolbar() pulumi.BoolPtrOutput

Display auto submit toolbar.

func (ThreeFieldOutput) ButtonSelector 

func (o ThreeFieldOutput) ButtonSelector() pulumi.StringOutput

Login button field CSS selector.

func (ThreeFieldOutput) CredentialsScheme 

func (o ThreeFieldOutput) CredentialsScheme() pulumi.StringPtrOutput

Application credentials scheme. Can be set to `"EDIT_USERNAME_AND_PASSWORD"`, `"ADMIN_SETS_CREDENTIALS"`, `"EDIT_PASSWORD_ONLY"`, `"EXTERNAL_PASSWORD_SYNC"`, or `"SHARED_USERNAME_AND_PASSWORD"`.

func (ThreeFieldOutput) ElementType 

func (ThreeFieldOutput) ElementType() reflect.Type

func (ThreeFieldOutput) EnduserNote 

func (o ThreeFieldOutput) EnduserNote() pulumi.StringPtrOutput

Application notes for end users.

func (ThreeFieldOutput) ExtraFieldSelector 

func (o ThreeFieldOutput) ExtraFieldSelector() pulumi.StringOutput

Extra field CSS selector.

func (ThreeFieldOutput) ExtraFieldValue 

func (o ThreeFieldOutput) ExtraFieldValue() pulumi.StringOutput

Value for extra form field.

func (ThreeFieldOutput) HideIos 

func (o ThreeFieldOutput) HideIos() pulumi.BoolPtrOutput

Do not display application icon on mobile app.

func (ThreeFieldOutput) HideWeb 

func (o ThreeFieldOutput) HideWeb() pulumi.BoolPtrOutput

Do not display application icon to users.

func (ThreeFieldOutput) Label 

func (o ThreeFieldOutput) Label() pulumi.StringOutput

The display name of the Application. 

func (o ThreeFieldOutput) Logo() pulumi.StringPtrOutput

Local file path to the logo. The file must be in PNG, JPG, or GIF format, and less than 1 MB in size.

func (ThreeFieldOutput) LogoUrl 

func (o ThreeFieldOutput) LogoUrl() pulumi.StringOutput

Direct link of application logo.

func (ThreeFieldOutput) Name 

func (o ThreeFieldOutput) Name() pulumi.StringOutput

Name assigned to the application by Okta.

func (ThreeFieldOutput) PasswordSelector 

func (o ThreeFieldOutput) PasswordSelector() pulumi.StringOutput

Login password field CSS selector.

func (ThreeFieldOutput) RevealPassword 

func (o ThreeFieldOutput) RevealPassword() pulumi.BoolPtrOutput

Allow user to reveal password. It can not be set to `true` if `credentialsScheme` is `"ADMIN_SETS_CREDENTIALS"`, `"SHARED_USERNAME_AND_PASSWORD"` or `"EXTERNAL_PASSWORD_SYNC"`.

func (ThreeFieldOutput) SharedPassword 

func (o ThreeFieldOutput) SharedPassword() pulumi.StringPtrOutput

Shared password, required for certain schemes.

func (ThreeFieldOutput) SharedUsername 

func (o ThreeFieldOutput) SharedUsername() pulumi.StringPtrOutput

Shared username, required for certain schemes.

func (ThreeFieldOutput) SignOnMode 

func (o ThreeFieldOutput) SignOnMode() pulumi.StringOutput

Sign-on mode of application.

func (ThreeFieldOutput) Status 

func (o ThreeFieldOutput) Status() pulumi.StringPtrOutput

Status of application. By default, it is `"ACTIVE"`.

func (ThreeFieldOutput) ToThreeFieldOutput 

func (o ThreeFieldOutput) ToThreeFieldOutput() ThreeFieldOutput

func (ThreeFieldOutput) ToThreeFieldOutputWithContext 

func (o ThreeFieldOutput) ToThreeFieldOutputWithContext(ctx context.Context) ThreeFieldOutput

func (ThreeFieldOutput) Url 

func (o ThreeFieldOutput) Url() pulumi.StringOutput

Login URL.

func (ThreeFieldOutput) UrlRegex 

func (o ThreeFieldOutput) UrlRegex() pulumi.StringPtrOutput

A regex that further restricts URL to the specified regex.

func (ThreeFieldOutput) UserNameTemplate 

func (o ThreeFieldOutput) UserNameTemplate() pulumi.StringPtrOutput

Username template. Default: `"${source.login}"`

func (ThreeFieldOutput) UserNameTemplatePushStatus 

func (o ThreeFieldOutput) UserNameTemplatePushStatus() pulumi.StringPtrOutput

Push username on update. Valid values: `"PUSH"` and `"DONT_PUSH"`.

func (ThreeFieldOutput) UserNameTemplateSuffix 

func (o ThreeFieldOutput) UserNameTemplateSuffix() pulumi.StringPtrOutput

Username template suffix.

func (ThreeFieldOutput) UserNameTemplateType 

func (o ThreeFieldOutput) UserNameTemplateType() pulumi.StringPtrOutput

Username template type. Default: `"BUILT_IN"`.

func (ThreeFieldOutput) UsernameSelector 

func (o ThreeFieldOutput) UsernameSelector() pulumi.StringOutput

Login username field CSS selector.

type ThreeFieldState 

type ThreeFieldState struct {
	// Custom error page URL.
	AccessibilityErrorRedirectUrl pulumi.StringPtrInput
	// Custom login page for this application.
	AccessibilityLoginRedirectUrl pulumi.StringPtrInput
	// Enable self-service. By default, it is `false`.
	AccessibilitySelfService pulumi.BoolPtrInput
	// Application notes for admins.
	AdminNote pulumi.StringPtrInput
	// Displays specific appLinks for the app
	AppLinksJson pulumi.StringPtrInput
	// Display auto submit toolbar.
	AutoSubmitToolbar pulumi.BoolPtrInput
	// Login button field CSS selector.
	ButtonSelector pulumi.StringPtrInput
	// Application credentials scheme. Can be set to `"EDIT_USERNAME_AND_PASSWORD"`, `"ADMIN_SETS_CREDENTIALS"`, `"EDIT_PASSWORD_ONLY"`, `"EXTERNAL_PASSWORD_SYNC"`, or `"SHARED_USERNAME_AND_PASSWORD"`.
	CredentialsScheme pulumi.StringPtrInput
	// Application notes for end users.
	EnduserNote pulumi.StringPtrInput
	// Extra field CSS selector.
	ExtraFieldSelector pulumi.StringPtrInput
	// Value for extra form field.
	ExtraFieldValue pulumi.StringPtrInput
	// Do not display application icon on mobile app.
	HideIos pulumi.BoolPtrInput
	// Do not display application icon to users.
	HideWeb pulumi.BoolPtrInput
	// The display name of the Application.
	Label pulumi.StringPtrInput
	Logo pulumi.StringPtrInput
	// Direct link of application logo.
	LogoUrl pulumi.StringPtrInput
	// Name assigned to the application by Okta.
	Name pulumi.StringPtrInput
	// Login password field CSS selector.
	PasswordSelector pulumi.StringPtrInput
	// Allow user to reveal password. It can not be set to `true` if `credentialsScheme` is `"ADMIN_SETS_CREDENTIALS"`, `"SHARED_USERNAME_AND_PASSWORD"` or `"EXTERNAL_PASSWORD_SYNC"`.
	RevealPassword pulumi.BoolPtrInput
	// Shared password, required for certain schemes.
	SharedPassword pulumi.StringPtrInput
	// Shared username, required for certain schemes.
	SharedUsername pulumi.StringPtrInput
	// Sign-on mode of application.
	SignOnMode pulumi.StringPtrInput
	// Status of application. By default, it is `"ACTIVE"`.
	Status pulumi.StringPtrInput
	// Login URL.
	Url pulumi.StringPtrInput
	// A regex that further restricts URL to the specified regex.
	UrlRegex pulumi.StringPtrInput
	// Username template. Default: `"${source.login}"`
	UserNameTemplate pulumi.StringPtrInput
	// Push username on update. Valid values: `"PUSH"` and `"DONT_PUSH"`.
	UserNameTemplatePushStatus pulumi.StringPtrInput
	// Username template suffix.
	UserNameTemplateSuffix pulumi.StringPtrInput
	// Username template type. Default: `"BUILT_IN"`.
	UserNameTemplateType pulumi.StringPtrInput
	// Login username field CSS selector.
	UsernameSelector pulumi.StringPtrInput
}

func (ThreeFieldState) ElementType 

func (ThreeFieldState) ElementType() reflect.Type

type User 

type User struct {
	pulumi.CustomResourceState

	// App to associate user with.
	AppId             pulumi.StringOutput `pulumi:"appId"`
	HasSharedUsername pulumi.BoolOutput   `pulumi:"hasSharedUsername"`
	// The password to use.
	Password pulumi.StringPtrOutput `pulumi:"password"`
	// The JSON profile of the App User.
	Profile pulumi.StringPtrOutput `pulumi:"profile"`
	// Retain the user association on destroy. If set to true, the resource will be removed from state but not from the Okta app.
	RetainAssignment pulumi.BoolPtrOutput `pulumi:"retainAssignment"`
	// User to associate the application with.
	UserId pulumi.StringOutput `pulumi:"userId"`
	// The username to use for the app user. In case the user is assigned to the app with
	// 'SHARED_USERNAME_AND_PASSWORD' credentials scheme, this field will be computed and should not be set.
	Username pulumi.StringPtrOutput `pulumi:"username"`
}

## Example Usage

```go package main

import ( 

"github.com/pulumi/pulumi-okta/sdk/v4/go/okta/app"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"

) 

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := app.NewUser(ctx, "example", &app.UserArgs{
			AppId:    pulumi.String("<app_id>"),
			UserId:   pulumi.String("<user id>"),
			Username: pulumi.String("example"),
		})
		if err != nil {
			return err
		}
		return nil
	})
}

```

## Import

An Application User can be imported via the Okta ID.

```sh 

$ pulumi import okta:app/user:User example &#60;app id&#62;/&#60;user id&#62;

```

func GetUser 

func GetUser(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *UserState, opts ...pulumi.ResourceOption) (*User, error)

GetUser gets an existing User resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewUser 

func NewUser(ctx *pulumi.Context,
	name string, args *UserArgs, opts ...pulumi.ResourceOption) (*User, error)

NewUser registers a new resource with the given unique name, arguments, and options.

func (*User) ElementType 

func (*User) ElementType() reflect.Type

func (*User) ToUserOutput 

func (i *User) ToUserOutput() UserOutput

func (*User) ToUserOutputWithContext 

func (i *User) ToUserOutputWithContext(ctx context.Context) UserOutput

type UserArgs 

type UserArgs struct {
	// App to associate user with.
	AppId pulumi.StringInput
	// The password to use.
	Password pulumi.StringPtrInput
	// The JSON profile of the App User.
	Profile pulumi.StringPtrInput
	// Retain the user association on destroy. If set to true, the resource will be removed from state but not from the Okta app.
	RetainAssignment pulumi.BoolPtrInput
	// User to associate the application with.
	UserId pulumi.StringInput
	// The username to use for the app user. In case the user is assigned to the app with
	// 'SHARED_USERNAME_AND_PASSWORD' credentials scheme, this field will be computed and should not be set.
	Username pulumi.StringPtrInput
}

The set of arguments for constructing a User resource.

func (UserArgs) ElementType 

func (UserArgs) ElementType() reflect.Type

type UserArray 

type UserArray []UserInput

func (UserArray) ElementType 

func (UserArray) ElementType() reflect.Type

func (UserArray) ToUserArrayOutput 

func (i UserArray) ToUserArrayOutput() UserArrayOutput

func (UserArray) ToUserArrayOutputWithContext 

func (i UserArray) ToUserArrayOutputWithContext(ctx context.Context) UserArrayOutput

type UserArrayInput 

type UserArrayInput interface {
	pulumi.Input

	ToUserArrayOutput() UserArrayOutput
	ToUserArrayOutputWithContext(context.Context) UserArrayOutput
}

UserArrayInput is an input type that accepts UserArray and UserArrayOutput values. You can construct a concrete instance of `UserArrayInput` via: 

UserArray{ UserArgs{...} }

type UserArrayOutput 

type UserArrayOutput struct{ *pulumi.OutputState }

func (UserArrayOutput) ElementType 

func (UserArrayOutput) ElementType() reflect.Type

func (UserArrayOutput) Index 

func (o UserArrayOutput) Index(i pulumi.IntInput) UserOutput

func (UserArrayOutput) ToUserArrayOutput 

func (o UserArrayOutput) ToUserArrayOutput() UserArrayOutput

func (UserArrayOutput) ToUserArrayOutputWithContext 

func (o UserArrayOutput) ToUserArrayOutputWithContext(ctx context.Context) UserArrayOutput

type UserInput 

type UserInput interface {
	pulumi.Input

	ToUserOutput() UserOutput
	ToUserOutputWithContext(ctx context.Context) UserOutput
}

type UserMap 

type UserMap map[string]UserInput

func (UserMap) ElementType 

func (UserMap) ElementType() reflect.Type

func (UserMap) ToUserMapOutput 

func (i UserMap) ToUserMapOutput() UserMapOutput

func (UserMap) ToUserMapOutputWithContext 

func (i UserMap) ToUserMapOutputWithContext(ctx context.Context) UserMapOutput

type UserMapInput 

type UserMapInput interface {
	pulumi.Input

	ToUserMapOutput() UserMapOutput
	ToUserMapOutputWithContext(context.Context) UserMapOutput
}

UserMapInput is an input type that accepts UserMap and UserMapOutput values. You can construct a concrete instance of `UserMapInput` via: 

UserMap{ "key": UserArgs{...} }

type UserMapOutput 

type UserMapOutput struct{ *pulumi.OutputState }

func (UserMapOutput) ElementType 

func (UserMapOutput) ElementType() reflect.Type

func (UserMapOutput) MapIndex 

func (o UserMapOutput) MapIndex(k pulumi.StringInput) UserOutput

func (UserMapOutput) ToUserMapOutput 

func (o UserMapOutput) ToUserMapOutput() UserMapOutput

func (UserMapOutput) ToUserMapOutputWithContext 

func (o UserMapOutput) ToUserMapOutputWithContext(ctx context.Context) UserMapOutput

type UserOutput 

type UserOutput struct{ *pulumi.OutputState }

func (UserOutput) AppId 

func (o UserOutput) AppId() pulumi.StringOutput

App to associate user with.

func (UserOutput) ElementType 

func (UserOutput) ElementType() reflect.Type

func (UserOutput) HasSharedUsername 

func (o UserOutput) HasSharedUsername() pulumi.BoolOutput

func (UserOutput) Password 

func (o UserOutput) Password() pulumi.StringPtrOutput

The password to use.

func (UserOutput) Profile 

func (o UserOutput) Profile() pulumi.StringPtrOutput

The JSON profile of the App User.

func (UserOutput) RetainAssignment 

func (o UserOutput) RetainAssignment() pulumi.BoolPtrOutput

Retain the user association on destroy. If set to true, the resource will be removed from state but not from the Okta app.

func (UserOutput) ToUserOutput 

func (o UserOutput) ToUserOutput() UserOutput

func (UserOutput) ToUserOutputWithContext 

func (o UserOutput) ToUserOutputWithContext(ctx context.Context) UserOutput

func (UserOutput) UserId 

func (o UserOutput) UserId() pulumi.StringOutput

User to associate the application with.

func (UserOutput) Username 

func (o UserOutput) Username() pulumi.StringPtrOutput

The username to use for the app user. In case the user is assigned to the app with 'SHARED_USERNAME_AND_PASSWORD' credentials scheme, this field will be computed and should not be set.

type UserState 

type UserState struct {
	// App to associate user with.
	AppId             pulumi.StringPtrInput
	HasSharedUsername pulumi.BoolPtrInput
	// The password to use.
	Password pulumi.StringPtrInput
	// The JSON profile of the App User.
	Profile pulumi.StringPtrInput
	// Retain the user association on destroy. If set to true, the resource will be removed from state but not from the Okta app.
	RetainAssignment pulumi.BoolPtrInput
	// User to associate the application with.
	UserId pulumi.StringPtrInput
	// The username to use for the app user. In case the user is assigned to the app with
	// 'SHARED_USERNAME_AND_PASSWORD' credentials scheme, this field will be computed and should not be set.
	Username pulumi.StringPtrInput
}

func (UserState) ElementType 

func (UserState) ElementType() reflect.Type

Source Files

View all Source files

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.