Auth0 v3.3.1, Mar 14 24

Auth0 v3.3.1 published on Thursday, Mar 14, 2024 by Pulumi

auth0.getTenant

Explore with Pulumi AI

Auth0 v3.3.1 published on Thursday, Mar 14, 2024 by Pulumi

Example Usage

import * as pulumi from "@pulumi/pulumi";
import * as auth0 from "@pulumi/auth0";

const myTenant = auth0.getTenant({});

import pulumi
import pulumi_auth0 as auth0

my_tenant = auth0.get_tenant()

package main

import (
	"github.com/pulumi/pulumi-auth0/sdk/v3/go/auth0"
	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := auth0.LookupTenant(ctx, nil, nil)
		if err != nil {
			return err
		}
		return nil
	})
}

using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Auth0 = Pulumi.Auth0;

return await Deployment.RunAsync(() => 
{
    var myTenant = Auth0.GetTenant.Invoke();

});

package generated_program;

import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.auth0.Auth0Functions;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;

public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }

    public static void stack(Context ctx) {
        final var myTenant = Auth0Functions.getTenant();

    }
}

variables:
  myTenant:
    fn::invoke:
      Function: auth0:getTenant
      Arguments: {}

Using getTenant

Two invocation forms are available. The direct form accepts plain arguments and either blocks until the result value is available, or returns a Promise-wrapped result. The output form accepts Input-wrapped arguments and returns an Output-wrapped result.

function getTenant(opts?: InvokeOptions): Promise<GetTenantResult>
function getTenantOutput(opts?: InvokeOptions): Output<GetTenantResult>

def get_tenant(opts: Optional[InvokeOptions] = None) -> GetTenantResult
def get_tenant_output(opts: Optional[InvokeOptions] = None) -> Output[GetTenantResult]

func LookupTenant(ctx *Context, opts ...InvokeOption) (*LookupTenantResult, error)
func LookupTenantOutput(ctx *Context, opts ...InvokeOption) LookupTenantResultOutput

> Note: This function is named LookupTenant in the Go SDK.

public static class GetTenant 
{
    public static Task<GetTenantResult> InvokeAsync(InvokeOptions? opts = null)
    public static Output<GetTenantResult> Invoke(InvokeOptions? opts = null)
}

public static CompletableFuture<GetTenantResult> getTenant(InvokeOptions options)
// Output-based functions aren't available in Java yet

fn::invoke:
  function: auth0:index/getTenant:getTenant
  arguments:
    # arguments dictionary

getTenant Result

The following output properties are available:

AllowOrganizationNameInAuthenticationApi bool: Whether to accept an organization name instead of an ID on auth endpoints.
AllowedLogoutUrls List<string>: URLs that Auth0 may redirect to after logout.
CustomizeMfaInPostloginAction bool: Whether to enable flexible factors for MFA in the PostLogin action.
DefaultAudience string: API Audience to use by default for API Authorization flows. This setting is equivalent to appending the audience to every authorization request made to the tenant for every application.
DefaultDirectory string: Name of the connection to be used for Password Grant exchanges. Options include auth0-adldap, ad, auth0, email, sms, waad, and adfs.
DefaultRedirectionUri string: The default absolute redirection URI. Must be HTTPS or an empty string.
Domain string: Your Auth0 domain name.
EnabledLocales List<string>: Supported locales for the user interface. The first locale in the list will be used to set the default locale.
Flags List<GetTenantFlag>: Configuration settings for tenant flags.
FriendlyName string: Friendly name for the tenant.
Id string: The provider-assigned unique ID for this managed resource.
IdleSessionLifetime double: Number of hours during which a session can be inactive before the user must log in again.
ManagementApiIdentifier string: The identifier value of the built-in Management API resource server, which can be used as an audience when configuring client grants.
PictureUrl string: URL of logo to be shown for the tenant. Recommended size is 150px x 150px. If no URL is provided, the Auth0 logo will be used.
SandboxVersion string: Selected sandbox version for the extensibility environment, which allows you to use custom scripts to extend parts of Auth0's functionality.
SessionCookies List<GetTenantSessionCooky>: Alters behavior of tenant's session cookie. Contains a single mode property.
SessionLifetime double: Number of hours during which a session will stay valid.
Sessions List<GetTenantSession>: Sessions related settings for the tenant.
SupportEmail string: Support email address for authenticating users.
SupportUrl string: Support URL for authenticating users.

AllowOrganizationNameInAuthenticationApi bool: Whether to accept an organization name instead of an ID on auth endpoints.
AllowedLogoutUrls []string: URLs that Auth0 may redirect to after logout.
CustomizeMfaInPostloginAction bool: Whether to enable flexible factors for MFA in the PostLogin action.
DefaultAudience string: API Audience to use by default for API Authorization flows. This setting is equivalent to appending the audience to every authorization request made to the tenant for every application.
DefaultDirectory string: Name of the connection to be used for Password Grant exchanges. Options include auth0-adldap, ad, auth0, email, sms, waad, and adfs.
DefaultRedirectionUri string: The default absolute redirection URI. Must be HTTPS or an empty string.
Domain string: Your Auth0 domain name.
EnabledLocales []string: Supported locales for the user interface. The first locale in the list will be used to set the default locale.
Flags []GetTenantFlag: Configuration settings for tenant flags.
FriendlyName string: Friendly name for the tenant.
Id string: The provider-assigned unique ID for this managed resource.
IdleSessionLifetime float64: Number of hours during which a session can be inactive before the user must log in again.
ManagementApiIdentifier string: The identifier value of the built-in Management API resource server, which can be used as an audience when configuring client grants.
PictureUrl string: URL of logo to be shown for the tenant. Recommended size is 150px x 150px. If no URL is provided, the Auth0 logo will be used.
SandboxVersion string: Selected sandbox version for the extensibility environment, which allows you to use custom scripts to extend parts of Auth0's functionality.
SessionCookies []GetTenantSessionCooky: Alters behavior of tenant's session cookie. Contains a single mode property.
SessionLifetime float64: Number of hours during which a session will stay valid.
Sessions []GetTenantSession: Sessions related settings for the tenant.
SupportEmail string: Support email address for authenticating users.
SupportUrl string: Support URL for authenticating users.

allowOrganizationNameInAuthenticationApi Boolean: Whether to accept an organization name instead of an ID on auth endpoints.
allowedLogoutUrls List<String>: URLs that Auth0 may redirect to after logout.
customizeMfaInPostloginAction Boolean: Whether to enable flexible factors for MFA in the PostLogin action.
defaultAudience String: API Audience to use by default for API Authorization flows. This setting is equivalent to appending the audience to every authorization request made to the tenant for every application.
defaultDirectory String: Name of the connection to be used for Password Grant exchanges. Options include auth0-adldap, ad, auth0, email, sms, waad, and adfs.
defaultRedirectionUri String: The default absolute redirection URI. Must be HTTPS or an empty string.
domain String: Your Auth0 domain name.
enabledLocales List<String>: Supported locales for the user interface. The first locale in the list will be used to set the default locale.
flags List<GetTenantFlag>: Configuration settings for tenant flags.
friendlyName String: Friendly name for the tenant.
id String: The provider-assigned unique ID for this managed resource.
idleSessionLifetime Double: Number of hours during which a session can be inactive before the user must log in again.
managementApiIdentifier String: The identifier value of the built-in Management API resource server, which can be used as an audience when configuring client grants.
pictureUrl String: URL of logo to be shown for the tenant. Recommended size is 150px x 150px. If no URL is provided, the Auth0 logo will be used.
sandboxVersion String: Selected sandbox version for the extensibility environment, which allows you to use custom scripts to extend parts of Auth0's functionality.
sessionCookies List<GetTenantSessionCooky>: Alters behavior of tenant's session cookie. Contains a single mode property.
sessionLifetime Double: Number of hours during which a session will stay valid.
sessions List<GetTenantSession>: Sessions related settings for the tenant.
supportEmail String: Support email address for authenticating users.
supportUrl String: Support URL for authenticating users.

allowOrganizationNameInAuthenticationApi boolean: Whether to accept an organization name instead of an ID on auth endpoints.
allowedLogoutUrls string[]: URLs that Auth0 may redirect to after logout.
customizeMfaInPostloginAction boolean: Whether to enable flexible factors for MFA in the PostLogin action.
defaultAudience string: API Audience to use by default for API Authorization flows. This setting is equivalent to appending the audience to every authorization request made to the tenant for every application.
defaultDirectory string: Name of the connection to be used for Password Grant exchanges. Options include auth0-adldap, ad, auth0, email, sms, waad, and adfs.
defaultRedirectionUri string: The default absolute redirection URI. Must be HTTPS or an empty string.
domain string: Your Auth0 domain name.
enabledLocales string[]: Supported locales for the user interface. The first locale in the list will be used to set the default locale.
flags GetTenantFlag[]: Configuration settings for tenant flags.
friendlyName string: Friendly name for the tenant.
id string: The provider-assigned unique ID for this managed resource.
idleSessionLifetime number: Number of hours during which a session can be inactive before the user must log in again.
managementApiIdentifier string: The identifier value of the built-in Management API resource server, which can be used as an audience when configuring client grants.
pictureUrl string: URL of logo to be shown for the tenant. Recommended size is 150px x 150px. If no URL is provided, the Auth0 logo will be used.
sandboxVersion string: Selected sandbox version for the extensibility environment, which allows you to use custom scripts to extend parts of Auth0's functionality.
sessionCookies GetTenantSessionCooky[]: Alters behavior of tenant's session cookie. Contains a single mode property.
sessionLifetime number: Number of hours during which a session will stay valid.
sessions GetTenantSession[]: Sessions related settings for the tenant.
supportEmail string: Support email address for authenticating users.
supportUrl string: Support URL for authenticating users.

allow_organization_name_in_authentication_api bool: Whether to accept an organization name instead of an ID on auth endpoints.
allowed_logout_urls Sequence[str]: URLs that Auth0 may redirect to after logout.
customize_mfa_in_postlogin_action bool: Whether to enable flexible factors for MFA in the PostLogin action.
default_audience str: API Audience to use by default for API Authorization flows. This setting is equivalent to appending the audience to every authorization request made to the tenant for every application.
default_directory str: Name of the connection to be used for Password Grant exchanges. Options include auth0-adldap, ad, auth0, email, sms, waad, and adfs.
default_redirection_uri str: The default absolute redirection URI. Must be HTTPS or an empty string.
domain str: Your Auth0 domain name.
enabled_locales Sequence[str]: Supported locales for the user interface. The first locale in the list will be used to set the default locale.
flags Sequence[GetTenantFlag]: Configuration settings for tenant flags.
friendly_name str: Friendly name for the tenant.
id str: The provider-assigned unique ID for this managed resource.
idle_session_lifetime float: Number of hours during which a session can be inactive before the user must log in again.
management_api_identifier str: The identifier value of the built-in Management API resource server, which can be used as an audience when configuring client grants.
picture_url str: URL of logo to be shown for the tenant. Recommended size is 150px x 150px. If no URL is provided, the Auth0 logo will be used.
sandbox_version str: Selected sandbox version for the extensibility environment, which allows you to use custom scripts to extend parts of Auth0's functionality.
session_cookies Sequence[GetTenantSessionCooky]: Alters behavior of tenant's session cookie. Contains a single mode property.
session_lifetime float: Number of hours during which a session will stay valid.
sessions Sequence[GetTenantSession]: Sessions related settings for the tenant.
support_email str: Support email address for authenticating users.
support_url str: Support URL for authenticating users.

allowOrganizationNameInAuthenticationApi Boolean: Whether to accept an organization name instead of an ID on auth endpoints.
allowedLogoutUrls List<String>: URLs that Auth0 may redirect to after logout.
customizeMfaInPostloginAction Boolean: Whether to enable flexible factors for MFA in the PostLogin action.
defaultAudience String: API Audience to use by default for API Authorization flows. This setting is equivalent to appending the audience to every authorization request made to the tenant for every application.
defaultDirectory String: Name of the connection to be used for Password Grant exchanges. Options include auth0-adldap, ad, auth0, email, sms, waad, and adfs.
defaultRedirectionUri String: The default absolute redirection URI. Must be HTTPS or an empty string.
domain String: Your Auth0 domain name.
enabledLocales List<String>: Supported locales for the user interface. The first locale in the list will be used to set the default locale.
flags List<Property Map>: Configuration settings for tenant flags.
friendlyName String: Friendly name for the tenant.
id String: The provider-assigned unique ID for this managed resource.
idleSessionLifetime Number: Number of hours during which a session can be inactive before the user must log in again.
managementApiIdentifier String: The identifier value of the built-in Management API resource server, which can be used as an audience when configuring client grants.
pictureUrl String: URL of logo to be shown for the tenant. Recommended size is 150px x 150px. If no URL is provided, the Auth0 logo will be used.
sandboxVersion String: Selected sandbox version for the extensibility environment, which allows you to use custom scripts to extend parts of Auth0's functionality.
sessionCookies List<Property Map>: Alters behavior of tenant's session cookie. Contains a single mode property.
sessionLifetime Number: Number of hours during which a session will stay valid.
sessions List<Property Map>: Sessions related settings for the tenant.
supportEmail String: Support email address for authenticating users.
supportUrl String: Support URL for authenticating users.

Supporting Types

GetTenantFlag

AllowLegacyDelegationGrantTypes bool: Whether the legacy delegation endpoint will be enabled for your account (true) or not available (false).
AllowLegacyRoGrantTypes bool: Whether the legacy auth/ro endpoint (used with resource owner password and passwordless features) will be enabled for your account (true) or not available (false).
AllowLegacyTokeninfoEndpoint bool: If enabled, customers can use Tokeninfo Endpoint, otherwise they can not use it.
DashboardInsightsView bool: Enables new insights activity page view.
DashboardLogStreamsNext bool: Enables beta access to log streaming changes.
DisableClickjackProtectionHeaders bool: Indicates whether classic Universal Login prompts include additional security headers to prevent clickjacking.
DisableFieldsMapFix bool: Disables SAML fields map fix for bad mappings with repeated attributes.
DisableManagementApiSmsObfuscation bool: If true, SMS phone numbers will not be obfuscated in Management API GET calls.
EnableAdfsWaadEmailVerification bool: If enabled, users will be presented with an email verification prompt during their first login when using Azure AD or ADFS connections.
EnableApisSection bool: Indicates whether the APIs section is enabled for the tenant.
EnableClientConnections bool: Indicates whether all current connections should be enabled when a new client is created.
EnableCustomDomainInEmails bool: Indicates whether the tenant allows custom domains in emails. Before enabling this flag, you must have a custom domain with status: ready.
EnableDynamicClientRegistration bool: Indicates whether the tenant allows dynamic client registration.
EnableIdtokenApi2 bool: Whether ID tokens can be used to authorize some types of requests to API v2 (true) or not (false).
EnableLegacyLogsSearchV2 bool: Indicates whether to use the older v2 legacy logs search.
EnableLegacyProfile bool: Whether ID tokens and the userinfo endpoint includes a complete user profile (true) or only OpenID Connect claims (false).
EnablePipeline2 bool: Indicates whether advanced API Authorization scenarios are enabled.
EnablePublicSignupUserExistsError bool: Indicates whether the public sign up process shows a user_exists error if the user already exists.
MfaShowFactorListOnEnrollment bool: Used to allow users to pick which factor to enroll with from the list of available MFA factors.
NoDiscloseEnterpriseConnections bool: Do not Publish Enterprise Connections Information with IdP domains on the lock configuration file.
RequirePushedAuthorizationRequests bool: Makes the use of Pushed Authorization Requests mandatory for all clients across the tenant. This feature currently needs to be enabled on the tenant in order to make use of it.
RevokeRefreshTokenGrant bool: Delete underlying grant when a refresh token is revoked via the Authentication API.
UseScopeDescriptionsForConsent bool: Indicates whether to use scope descriptions for consent.

AllowLegacyDelegationGrantTypes bool: Whether the legacy delegation endpoint will be enabled for your account (true) or not available (false).
AllowLegacyRoGrantTypes bool: Whether the legacy auth/ro endpoint (used with resource owner password and passwordless features) will be enabled for your account (true) or not available (false).
AllowLegacyTokeninfoEndpoint bool: If enabled, customers can use Tokeninfo Endpoint, otherwise they can not use it.
DashboardInsightsView bool: Enables new insights activity page view.
DashboardLogStreamsNext bool: Enables beta access to log streaming changes.
DisableClickjackProtectionHeaders bool: Indicates whether classic Universal Login prompts include additional security headers to prevent clickjacking.
DisableFieldsMapFix bool: Disables SAML fields map fix for bad mappings with repeated attributes.
DisableManagementApiSmsObfuscation bool: If true, SMS phone numbers will not be obfuscated in Management API GET calls.
EnableAdfsWaadEmailVerification bool: If enabled, users will be presented with an email verification prompt during their first login when using Azure AD or ADFS connections.
EnableApisSection bool: Indicates whether the APIs section is enabled for the tenant.
EnableClientConnections bool: Indicates whether all current connections should be enabled when a new client is created.
EnableCustomDomainInEmails bool: Indicates whether the tenant allows custom domains in emails. Before enabling this flag, you must have a custom domain with status: ready.
EnableDynamicClientRegistration bool: Indicates whether the tenant allows dynamic client registration.
EnableIdtokenApi2 bool: Whether ID tokens can be used to authorize some types of requests to API v2 (true) or not (false).
EnableLegacyLogsSearchV2 bool: Indicates whether to use the older v2 legacy logs search.
EnableLegacyProfile bool: Whether ID tokens and the userinfo endpoint includes a complete user profile (true) or only OpenID Connect claims (false).
EnablePipeline2 bool: Indicates whether advanced API Authorization scenarios are enabled.
EnablePublicSignupUserExistsError bool: Indicates whether the public sign up process shows a user_exists error if the user already exists.
MfaShowFactorListOnEnrollment bool: Used to allow users to pick which factor to enroll with from the list of available MFA factors.
NoDiscloseEnterpriseConnections bool: Do not Publish Enterprise Connections Information with IdP domains on the lock configuration file.
RequirePushedAuthorizationRequests bool: Makes the use of Pushed Authorization Requests mandatory for all clients across the tenant. This feature currently needs to be enabled on the tenant in order to make use of it.
RevokeRefreshTokenGrant bool: Delete underlying grant when a refresh token is revoked via the Authentication API.
UseScopeDescriptionsForConsent bool: Indicates whether to use scope descriptions for consent.

allowLegacyDelegationGrantTypes Boolean: Whether the legacy delegation endpoint will be enabled for your account (true) or not available (false).
allowLegacyRoGrantTypes Boolean: Whether the legacy auth/ro endpoint (used with resource owner password and passwordless features) will be enabled for your account (true) or not available (false).
allowLegacyTokeninfoEndpoint Boolean: If enabled, customers can use Tokeninfo Endpoint, otherwise they can not use it.
dashboardInsightsView Boolean: Enables new insights activity page view.
dashboardLogStreamsNext Boolean: Enables beta access to log streaming changes.
disableClickjackProtectionHeaders Boolean: Indicates whether classic Universal Login prompts include additional security headers to prevent clickjacking.
disableFieldsMapFix Boolean: Disables SAML fields map fix for bad mappings with repeated attributes.
disableManagementApiSmsObfuscation Boolean: If true, SMS phone numbers will not be obfuscated in Management API GET calls.
enableAdfsWaadEmailVerification Boolean: If enabled, users will be presented with an email verification prompt during their first login when using Azure AD or ADFS connections.
enableApisSection Boolean: Indicates whether the APIs section is enabled for the tenant.
enableClientConnections Boolean: Indicates whether all current connections should be enabled when a new client is created.
enableCustomDomainInEmails Boolean: Indicates whether the tenant allows custom domains in emails. Before enabling this flag, you must have a custom domain with status: ready.
enableDynamicClientRegistration Boolean: Indicates whether the tenant allows dynamic client registration.
enableIdtokenApi2 Boolean: Whether ID tokens can be used to authorize some types of requests to API v2 (true) or not (false).
enableLegacyLogsSearchV2 Boolean: Indicates whether to use the older v2 legacy logs search.
enableLegacyProfile Boolean: Whether ID tokens and the userinfo endpoint includes a complete user profile (true) or only OpenID Connect claims (false).
enablePipeline2 Boolean: Indicates whether advanced API Authorization scenarios are enabled.
enablePublicSignupUserExistsError Boolean: Indicates whether the public sign up process shows a user_exists error if the user already exists.
mfaShowFactorListOnEnrollment Boolean: Used to allow users to pick which factor to enroll with from the list of available MFA factors.
noDiscloseEnterpriseConnections Boolean: Do not Publish Enterprise Connections Information with IdP domains on the lock configuration file.
requirePushedAuthorizationRequests Boolean: Makes the use of Pushed Authorization Requests mandatory for all clients across the tenant. This feature currently needs to be enabled on the tenant in order to make use of it.
revokeRefreshTokenGrant Boolean: Delete underlying grant when a refresh token is revoked via the Authentication API.
useScopeDescriptionsForConsent Boolean: Indicates whether to use scope descriptions for consent.

allowLegacyDelegationGrantTypes boolean: Whether the legacy delegation endpoint will be enabled for your account (true) or not available (false).
allowLegacyRoGrantTypes boolean: Whether the legacy auth/ro endpoint (used with resource owner password and passwordless features) will be enabled for your account (true) or not available (false).
allowLegacyTokeninfoEndpoint boolean: If enabled, customers can use Tokeninfo Endpoint, otherwise they can not use it.
dashboardInsightsView boolean: Enables new insights activity page view.
dashboardLogStreamsNext boolean: Enables beta access to log streaming changes.
disableClickjackProtectionHeaders boolean: Indicates whether classic Universal Login prompts include additional security headers to prevent clickjacking.
disableFieldsMapFix boolean: Disables SAML fields map fix for bad mappings with repeated attributes.
disableManagementApiSmsObfuscation boolean: If true, SMS phone numbers will not be obfuscated in Management API GET calls.
enableAdfsWaadEmailVerification boolean: If enabled, users will be presented with an email verification prompt during their first login when using Azure AD or ADFS connections.
enableApisSection boolean: Indicates whether the APIs section is enabled for the tenant.
enableClientConnections boolean: Indicates whether all current connections should be enabled when a new client is created.
enableCustomDomainInEmails boolean: Indicates whether the tenant allows custom domains in emails. Before enabling this flag, you must have a custom domain with status: ready.
enableDynamicClientRegistration boolean: Indicates whether the tenant allows dynamic client registration.
enableIdtokenApi2 boolean: Whether ID tokens can be used to authorize some types of requests to API v2 (true) or not (false).
enableLegacyLogsSearchV2 boolean: Indicates whether to use the older v2 legacy logs search.
enableLegacyProfile boolean: Whether ID tokens and the userinfo endpoint includes a complete user profile (true) or only OpenID Connect claims (false).
enablePipeline2 boolean: Indicates whether advanced API Authorization scenarios are enabled.
enablePublicSignupUserExistsError boolean: Indicates whether the public sign up process shows a user_exists error if the user already exists.
mfaShowFactorListOnEnrollment boolean: Used to allow users to pick which factor to enroll with from the list of available MFA factors.
noDiscloseEnterpriseConnections boolean: Do not Publish Enterprise Connections Information with IdP domains on the lock configuration file.
requirePushedAuthorizationRequests boolean: Makes the use of Pushed Authorization Requests mandatory for all clients across the tenant. This feature currently needs to be enabled on the tenant in order to make use of it.
revokeRefreshTokenGrant boolean: Delete underlying grant when a refresh token is revoked via the Authentication API.
useScopeDescriptionsForConsent boolean: Indicates whether to use scope descriptions for consent.

allow_legacy_delegation_grant_types bool: Whether the legacy delegation endpoint will be enabled for your account (true) or not available (false).
allow_legacy_ro_grant_types bool: Whether the legacy auth/ro endpoint (used with resource owner password and passwordless features) will be enabled for your account (true) or not available (false).
allow_legacy_tokeninfo_endpoint bool: If enabled, customers can use Tokeninfo Endpoint, otherwise they can not use it.
dashboard_insights_view bool: Enables new insights activity page view.
dashboard_log_streams_next bool: Enables beta access to log streaming changes.
disable_clickjack_protection_headers bool: Indicates whether classic Universal Login prompts include additional security headers to prevent clickjacking.
disable_fields_map_fix bool: Disables SAML fields map fix for bad mappings with repeated attributes.
disable_management_api_sms_obfuscation bool: If true, SMS phone numbers will not be obfuscated in Management API GET calls.
enable_adfs_waad_email_verification bool: If enabled, users will be presented with an email verification prompt during their first login when using Azure AD or ADFS connections.
enable_apis_section bool: Indicates whether the APIs section is enabled for the tenant.
enable_client_connections bool: Indicates whether all current connections should be enabled when a new client is created.
enable_custom_domain_in_emails bool: Indicates whether the tenant allows custom domains in emails. Before enabling this flag, you must have a custom domain with status: ready.
enable_dynamic_client_registration bool: Indicates whether the tenant allows dynamic client registration.
enable_idtoken_api2 bool: Whether ID tokens can be used to authorize some types of requests to API v2 (true) or not (false).
enable_legacy_logs_search_v2 bool: Indicates whether to use the older v2 legacy logs search.
enable_legacy_profile bool: Whether ID tokens and the userinfo endpoint includes a complete user profile (true) or only OpenID Connect claims (false).
enable_pipeline2 bool: Indicates whether advanced API Authorization scenarios are enabled.
enable_public_signup_user_exists_error bool: Indicates whether the public sign up process shows a user_exists error if the user already exists.
mfa_show_factor_list_on_enrollment bool: Used to allow users to pick which factor to enroll with from the list of available MFA factors.
no_disclose_enterprise_connections bool: Do not Publish Enterprise Connections Information with IdP domains on the lock configuration file.
require_pushed_authorization_requests bool: Makes the use of Pushed Authorization Requests mandatory for all clients across the tenant. This feature currently needs to be enabled on the tenant in order to make use of it.
revoke_refresh_token_grant bool: Delete underlying grant when a refresh token is revoked via the Authentication API.
use_scope_descriptions_for_consent bool: Indicates whether to use scope descriptions for consent.

allowLegacyDelegationGrantTypes Boolean: Whether the legacy delegation endpoint will be enabled for your account (true) or not available (false).
allowLegacyRoGrantTypes Boolean: Whether the legacy auth/ro endpoint (used with resource owner password and passwordless features) will be enabled for your account (true) or not available (false).
allowLegacyTokeninfoEndpoint Boolean: If enabled, customers can use Tokeninfo Endpoint, otherwise they can not use it.
dashboardInsightsView Boolean: Enables new insights activity page view.
dashboardLogStreamsNext Boolean: Enables beta access to log streaming changes.
disableClickjackProtectionHeaders Boolean: Indicates whether classic Universal Login prompts include additional security headers to prevent clickjacking.
disableFieldsMapFix Boolean: Disables SAML fields map fix for bad mappings with repeated attributes.
disableManagementApiSmsObfuscation Boolean: If true, SMS phone numbers will not be obfuscated in Management API GET calls.
enableAdfsWaadEmailVerification Boolean: If enabled, users will be presented with an email verification prompt during their first login when using Azure AD or ADFS connections.
enableApisSection Boolean: Indicates whether the APIs section is enabled for the tenant.
enableClientConnections Boolean: Indicates whether all current connections should be enabled when a new client is created.
enableCustomDomainInEmails Boolean: Indicates whether the tenant allows custom domains in emails. Before enabling this flag, you must have a custom domain with status: ready.
enableDynamicClientRegistration Boolean: Indicates whether the tenant allows dynamic client registration.
enableIdtokenApi2 Boolean: Whether ID tokens can be used to authorize some types of requests to API v2 (true) or not (false).
enableLegacyLogsSearchV2 Boolean: Indicates whether to use the older v2 legacy logs search.
enableLegacyProfile Boolean: Whether ID tokens and the userinfo endpoint includes a complete user profile (true) or only OpenID Connect claims (false).
enablePipeline2 Boolean: Indicates whether advanced API Authorization scenarios are enabled.
enablePublicSignupUserExistsError Boolean: Indicates whether the public sign up process shows a user_exists error if the user already exists.
mfaShowFactorListOnEnrollment Boolean: Used to allow users to pick which factor to enroll with from the list of available MFA factors.
noDiscloseEnterpriseConnections Boolean: Do not Publish Enterprise Connections Information with IdP domains on the lock configuration file.
requirePushedAuthorizationRequests Boolean: Makes the use of Pushed Authorization Requests mandatory for all clients across the tenant. This feature currently needs to be enabled on the tenant in order to make use of it.
revokeRefreshTokenGrant Boolean: Delete underlying grant when a refresh token is revoked via the Authentication API.
useScopeDescriptionsForConsent Boolean: Indicates whether to use scope descriptions for consent.

GetTenantSession

OidcLogoutPromptEnabled bool: When active, users will be presented with a consent prompt to confirm the logout request if the request is not trustworthy. Turn off the consent prompt to bypass user confirmation.

OidcLogoutPromptEnabled bool: When active, users will be presented with a consent prompt to confirm the logout request if the request is not trustworthy. Turn off the consent prompt to bypass user confirmation.

oidcLogoutPromptEnabled Boolean: When active, users will be presented with a consent prompt to confirm the logout request if the request is not trustworthy. Turn off the consent prompt to bypass user confirmation.

oidcLogoutPromptEnabled boolean: When active, users will be presented with a consent prompt to confirm the logout request if the request is not trustworthy. Turn off the consent prompt to bypass user confirmation.

oidc_logout_prompt_enabled bool: When active, users will be presented with a consent prompt to confirm the logout request if the request is not trustworthy. Turn off the consent prompt to bypass user confirmation.

oidcLogoutPromptEnabled Boolean: When active, users will be presented with a consent prompt to confirm the logout request if the request is not trustworthy. Turn off the consent prompt to bypass user confirmation.

GetTenantSessionCooky

Mode string: Behavior of tenant session cookie. Accepts either "persistent" or "non-persistent".

Mode string: Behavior of tenant session cookie. Accepts either "persistent" or "non-persistent".

mode String: Behavior of tenant session cookie. Accepts either "persistent" or "non-persistent".

mode string: Behavior of tenant session cookie. Accepts either "persistent" or "non-persistent".

mode str: Behavior of tenant session cookie. Accepts either "persistent" or "non-persistent".

mode String: Behavior of tenant session cookie. Accepts either "persistent" or "non-persistent".

Package Details

Repository: Auth0 pulumi/pulumi-auth0
License: Apache-2.0
Notes: This Pulumi package is based on the auth0 Terraform Provider.

Auth0 v3.3.1 published on Thursday, Mar 14, 2024 by Pulumi

pulumi/pulumi-auth0

auth0.getTenant

On this page

On this page

Example Usage

Using getTenant

getTenant Result

Supporting Types

GetTenantFlag

GetTenantSession

GetTenantSessionCooky

Package Details

On this page

On this page