Auth0

Pulumi Official
Package maintained by Pulumi
v2.9.0 published on Thursday, May 26, 2022 by Pulumi

Tenant

With this resource, you can manage Auth0 tenants, including setting logos and support contact information, setting error pages, and configuring default tenant behaviors.

Auth0 does not currently support creating tenants through the Management API. Therefore, this resource can only manage an existing tenant created through the Auth0 dashboard.

Auth0 does not currently support adding/removing extensions on tenants through their API. The Auth0 dashboard must be used to add/remove extensions.

Example Usage

using System.IO;
using Pulumi;
using Auth0 = Pulumi.Auth0;

class MyStack : Stack
{
    public MyStack()
    {
        var tenant = new Auth0.Tenant("tenant", new Auth0.TenantArgs
        {
            ChangePassword = new Auth0.Inputs.TenantChangePasswordArgs
            {
                Enabled = true,
                Html = File.ReadAllText("./password_reset.html"),
            },
            GuardianMfaPage = new Auth0.Inputs.TenantGuardianMfaPageArgs
            {
                Enabled = true,
                Html = File.ReadAllText("./guardian_multifactor.html"),
            },
            DefaultAudience = "<client_id>",
            DefaultDirectory = "Connection-Name",
            ErrorPage = new Auth0.Inputs.TenantErrorPageArgs
            {
                Html = File.ReadAllText("./error.html"),
                ShowLogLink = true,
                Url = "http://mysite/errors",
            },
            FriendlyName = "Tenant Name",
            PictureUrl = "http://mysite/logo.png",
            SupportEmail = "support@mysite",
            SupportUrl = "http://mysite/support",
            AllowedLogoutUrls = 
            {
                "http://mysite/logout",
            },
            SessionLifetime = 46000,
            SandboxVersion = "8",
        });
    }

}
package main

import (
	"io/ioutil"

	"github.com/pulumi/pulumi-auth0/sdk/v2/go/auth0"
	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)

func readFileOrPanic(path string) pulumi.StringPtrInput {
	data, err := ioutil.ReadFile(path)
	if err != nil {
		panic(err.Error())
	}
	return pulumi.String(string(data))
}

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := auth0.NewTenant(ctx, "tenant", &auth0.TenantArgs{
			ChangePassword: &TenantChangePasswordArgs{
				Enabled: pulumi.Bool(true),
				Html:    readFileOrPanic("./password_reset.html"),
			},
			GuardianMfaPage: &TenantGuardianMfaPageArgs{
				Enabled: pulumi.Bool(true),
				Html:    readFileOrPanic("./guardian_multifactor.html"),
			},
			DefaultAudience:  pulumi.String("<client_id>"),
			DefaultDirectory: pulumi.String("Connection-Name"),
			ErrorPage: &TenantErrorPageArgs{
				Html:        readFileOrPanic("./error.html"),
				ShowLogLink: pulumi.Bool(true),
				Url:         pulumi.String("http://mysite/errors"),
			},
			FriendlyName: pulumi.String("Tenant Name"),
			PictureUrl:   pulumi.String("http://mysite/logo.png"),
			SupportEmail: pulumi.String("support@mysite"),
			SupportUrl:   pulumi.String("http://mysite/support"),
			AllowedLogoutUrls: pulumi.StringArray{
				pulumi.String("http://mysite/logout"),
			},
			SessionLifetime: pulumi.Float64(46000),
			SandboxVersion:  pulumi.String("8"),
		})
		if err != nil {
			return err
		}
		return nil
	})
}
package generated_program;

import java.util.*;
import java.io.*;
import java.nio.*;
import com.pulumi.*;

public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }

    public static void stack(Context ctx) {
        var tenant = new Tenant("tenant", TenantArgs.builder()        
            .changePassword(TenantChangePasswordArgs.builder()
                .enabled(true)
                .html(Files.readString("./password_reset.html"))
                .build())
            .guardianMfaPage(TenantGuardianMfaPageArgs.builder()
                .enabled(true)
                .html(Files.readString("./guardian_multifactor.html"))
                .build())
            .defaultAudience("<client_id>")
            .defaultDirectory("Connection-Name")
            .errorPage(TenantErrorPageArgs.builder()
                .html(Files.readString("./error.html"))
                .showLogLink(true)
                .url("http://mysite/errors")
                .build())
            .friendlyName("Tenant Name")
            .pictureUrl("http://mysite/logo.png")
            .supportEmail("support@mysite")
            .supportUrl("http://mysite/support")
            .allowedLogoutUrls("http://mysite/logout")
            .sessionLifetime(46000)
            .sandboxVersion("8")
            .build());

    }
}
import pulumi
import pulumi_auth0 as auth0

tenant = auth0.Tenant("tenant",
    change_password=auth0.TenantChangePasswordArgs(
        enabled=True,
        html=(lambda path: open(path).read())("./password_reset.html"),
    ),
    guardian_mfa_page=auth0.TenantGuardianMfaPageArgs(
        enabled=True,
        html=(lambda path: open(path).read())("./guardian_multifactor.html"),
    ),
    default_audience="<client_id>",
    default_directory="Connection-Name",
    error_page=auth0.TenantErrorPageArgs(
        html=(lambda path: open(path).read())("./error.html"),
        show_log_link=True,
        url="http://mysite/errors",
    ),
    friendly_name="Tenant Name",
    picture_url="http://mysite/logo.png",
    support_email="support@mysite",
    support_url="http://mysite/support",
    allowed_logout_urls=["http://mysite/logout"],
    session_lifetime=46000,
    sandbox_version="8")
import * as pulumi from "@pulumi/pulumi";
import * as auth0 from "@pulumi/auth0";
import * from "fs";

const tenant = new auth0.Tenant("tenant", {
    changePassword: {
        enabled: true,
        html: fs.readFileSync("./password_reset.html"),
    },
    guardianMfaPage: {
        enabled: true,
        html: fs.readFileSync("./guardian_multifactor.html"),
    },
    defaultAudience: "<client_id>",
    defaultDirectory: "Connection-Name",
    errorPage: {
        html: fs.readFileSync("./error.html"),
        showLogLink: true,
        url: "http://mysite/errors",
    },
    friendlyName: "Tenant Name",
    pictureUrl: "http://mysite/logo.png",
    supportEmail: "support@mysite",
    supportUrl: "http://mysite/support",
    allowedLogoutUrls: ["http://mysite/logout"],
    sessionLifetime: 46000,
    sandboxVersion: "8",
});

Coming soon!

Create a Tenant Resource

new Tenant(name: string, args?: TenantArgs, opts?: CustomResourceOptions);
@overload
def Tenant(resource_name: str,
           opts: Optional[ResourceOptions] = None,
           allowed_logout_urls: Optional[Sequence[str]] = None,
           change_password: Optional[TenantChangePasswordArgs] = None,
           default_audience: Optional[str] = None,
           default_directory: Optional[str] = None,
           default_redirection_uri: Optional[str] = None,
           enabled_locales: Optional[Sequence[str]] = None,
           error_page: Optional[TenantErrorPageArgs] = None,
           flags: Optional[TenantFlagsArgs] = None,
           friendly_name: Optional[str] = None,
           guardian_mfa_page: Optional[TenantGuardianMfaPageArgs] = None,
           idle_session_lifetime: Optional[float] = None,
           picture_url: Optional[str] = None,
           sandbox_version: Optional[str] = None,
           session_lifetime: Optional[float] = None,
           support_email: Optional[str] = None,
           support_url: Optional[str] = None,
           universal_login: Optional[TenantUniversalLoginArgs] = None)
@overload
def Tenant(resource_name: str,
           args: Optional[TenantArgs] = None,
           opts: Optional[ResourceOptions] = None)
func NewTenant(ctx *Context, name string, args *TenantArgs, opts ...ResourceOption) (*Tenant, error)
public Tenant(string name, TenantArgs? args = null, CustomResourceOptions? opts = null)
public Tenant(String name, TenantArgs args)
public Tenant(String name, TenantArgs args, CustomResourceOptions options)
type: auth0:Tenant
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.

name string
The unique name of the resource.
args TenantArgs
The arguments to resource properties.
opts CustomResourceOptions
Bag of options to control resource's behavior.
resource_name str
The unique name of the resource.
args TenantArgs
The arguments to resource properties.
opts ResourceOptions
Bag of options to control resource's behavior.
ctx Context
Context object for the current deployment.
name string
The unique name of the resource.
args TenantArgs
The arguments to resource properties.
opts ResourceOption
Bag of options to control resource's behavior.
name string
The unique name of the resource.
args TenantArgs
The arguments to resource properties.
opts CustomResourceOptions
Bag of options to control resource's behavior.
name String
The unique name of the resource.
args TenantArgs
The arguments to resource properties.
options CustomResourceOptions
Bag of options to control resource's behavior.

Tenant Resource Properties

To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

Inputs

The Tenant resource accepts the following input properties:

AllowedLogoutUrls List<string>

List(String). URLs that Auth0 may redirect to after logout.

ChangePassword TenantChangePasswordArgs

List(Resource). Configuration settings for change passsword page. For details, see Change Password Page.

DefaultAudience string

String. API Audience to use by default for API Authorization flows. This setting is equivalent to appending the audience to every authorization request made to the tenant for every application.

DefaultDirectory string

String. Name of the connection to be used for Password Grant exchanges. Options include auth0-adldap, ad, auth0, email, sms, waad, and adfs.

DefaultRedirectionUri string

String. The default absolute redirection uri, must be https and cannot contain a fragment.

EnabledLocales List<string>

List(String). Supported locales for the user interface. The first locale in the list will be used to set the default locale.

ErrorPage TenantErrorPageArgs

List(Resource). Configuration settings for error pages. For details, see Error Page.

Flags TenantFlagsArgs

List(Resource). Configuration settings for tenant flags. For details, see Flags.

FriendlyName string

String. Friendly name for the tenant.

GuardianMfaPage TenantGuardianMfaPageArgs

List(Resource). Configuration settings for the Guardian MFA page. For details, see Guardian MFA Page.

IdleSessionLifetime double

Integer. Number of hours during which a session can be inactive before the user must log in again.

PictureUrl string

. String URL of logo to be shown for the tenant. Recommended size is 150px x 150px. If no URL is provided, the Auth0 logo will be used.

SandboxVersion string

String. Selected sandbox version for the extensibility environment, which allows you to use custom scripts to extend parts of Auth0's functionality.

SessionLifetime double

Integer. Number of hours during which a session will stay valid.

SupportEmail string

String. Support email address for authenticating users.

SupportUrl string

String. Support URL for authenticating users.

UniversalLogin TenantUniversalLoginArgs

List(Resource). Configuration settings for Universal Login. For details, see Universal Login.

AllowedLogoutUrls []string

List(String). URLs that Auth0 may redirect to after logout.

ChangePassword TenantChangePasswordArgs

List(Resource). Configuration settings for change passsword page. For details, see Change Password Page.

DefaultAudience string

String. API Audience to use by default for API Authorization flows. This setting is equivalent to appending the audience to every authorization request made to the tenant for every application.

DefaultDirectory string

String. Name of the connection to be used for Password Grant exchanges. Options include auth0-adldap, ad, auth0, email, sms, waad, and adfs.

DefaultRedirectionUri string

String. The default absolute redirection uri, must be https and cannot contain a fragment.

EnabledLocales []string

List(String). Supported locales for the user interface. The first locale in the list will be used to set the default locale.

ErrorPage TenantErrorPageArgs

List(Resource). Configuration settings for error pages. For details, see Error Page.

Flags TenantFlagsArgs

List(Resource). Configuration settings for tenant flags. For details, see Flags.

FriendlyName string

String. Friendly name for the tenant.

GuardianMfaPage TenantGuardianMfaPageArgs

List(Resource). Configuration settings for the Guardian MFA page. For details, see Guardian MFA Page.

IdleSessionLifetime float64

Integer. Number of hours during which a session can be inactive before the user must log in again.

PictureUrl string

. String URL of logo to be shown for the tenant. Recommended size is 150px x 150px. If no URL is provided, the Auth0 logo will be used.

SandboxVersion string

String. Selected sandbox version for the extensibility environment, which allows you to use custom scripts to extend parts of Auth0's functionality.

SessionLifetime float64

Integer. Number of hours during which a session will stay valid.

SupportEmail string

String. Support email address for authenticating users.

SupportUrl string

String. Support URL for authenticating users.

UniversalLogin TenantUniversalLoginArgs

List(Resource). Configuration settings for Universal Login. For details, see Universal Login.

allowedLogoutUrls List<String>

List(String). URLs that Auth0 may redirect to after logout.

changePassword TenantChangePasswordArgs

List(Resource). Configuration settings for change passsword page. For details, see Change Password Page.

defaultAudience String

String. API Audience to use by default for API Authorization flows. This setting is equivalent to appending the audience to every authorization request made to the tenant for every application.

defaultDirectory String

String. Name of the connection to be used for Password Grant exchanges. Options include auth0-adldap, ad, auth0, email, sms, waad, and adfs.

defaultRedirectionUri String

String. The default absolute redirection uri, must be https and cannot contain a fragment.

enabledLocales List<String>

List(String). Supported locales for the user interface. The first locale in the list will be used to set the default locale.

errorPage TenantErrorPageArgs

List(Resource). Configuration settings for error pages. For details, see Error Page.

flags TenantFlagsArgs

List(Resource). Configuration settings for tenant flags. For details, see Flags.

friendlyName String

String. Friendly name for the tenant.

guardianMfaPage TenantGuardianMfaPageArgs

List(Resource). Configuration settings for the Guardian MFA page. For details, see Guardian MFA Page.

idleSessionLifetime Double

Integer. Number of hours during which a session can be inactive before the user must log in again.

pictureUrl String

. String URL of logo to be shown for the tenant. Recommended size is 150px x 150px. If no URL is provided, the Auth0 logo will be used.

sandboxVersion String

String. Selected sandbox version for the extensibility environment, which allows you to use custom scripts to extend parts of Auth0's functionality.

sessionLifetime Double

Integer. Number of hours during which a session will stay valid.

supportEmail String

String. Support email address for authenticating users.

supportUrl String

String. Support URL for authenticating users.

universalLogin TenantUniversalLoginArgs

List(Resource). Configuration settings for Universal Login. For details, see Universal Login.

allowedLogoutUrls string[]

List(String). URLs that Auth0 may redirect to after logout.

changePassword TenantChangePasswordArgs

List(Resource). Configuration settings for change passsword page. For details, see Change Password Page.

defaultAudience string

String. API Audience to use by default for API Authorization flows. This setting is equivalent to appending the audience to every authorization request made to the tenant for every application.

defaultDirectory string

String. Name of the connection to be used for Password Grant exchanges. Options include auth0-adldap, ad, auth0, email, sms, waad, and adfs.

defaultRedirectionUri string

String. The default absolute redirection uri, must be https and cannot contain a fragment.

enabledLocales string[]

List(String). Supported locales for the user interface. The first locale in the list will be used to set the default locale.

errorPage TenantErrorPageArgs

List(Resource). Configuration settings for error pages. For details, see Error Page.

flags TenantFlagsArgs

List(Resource). Configuration settings for tenant flags. For details, see Flags.

friendlyName string

String. Friendly name for the tenant.

guardianMfaPage TenantGuardianMfaPageArgs

List(Resource). Configuration settings for the Guardian MFA page. For details, see Guardian MFA Page.

idleSessionLifetime number

Integer. Number of hours during which a session can be inactive before the user must log in again.

pictureUrl string

. String URL of logo to be shown for the tenant. Recommended size is 150px x 150px. If no URL is provided, the Auth0 logo will be used.

sandboxVersion string

String. Selected sandbox version for the extensibility environment, which allows you to use custom scripts to extend parts of Auth0's functionality.

sessionLifetime number

Integer. Number of hours during which a session will stay valid.

supportEmail string

String. Support email address for authenticating users.

supportUrl string

String. Support URL for authenticating users.

universalLogin TenantUniversalLoginArgs

List(Resource). Configuration settings for Universal Login. For details, see Universal Login.

allowed_logout_urls Sequence[str]

List(String). URLs that Auth0 may redirect to after logout.

change_password TenantChangePasswordArgs

List(Resource). Configuration settings for change passsword page. For details, see Change Password Page.

default_audience str

String. API Audience to use by default for API Authorization flows. This setting is equivalent to appending the audience to every authorization request made to the tenant for every application.

default_directory str

String. Name of the connection to be used for Password Grant exchanges. Options include auth0-adldap, ad, auth0, email, sms, waad, and adfs.

default_redirection_uri str

String. The default absolute redirection uri, must be https and cannot contain a fragment.

enabled_locales Sequence[str]

List(String). Supported locales for the user interface. The first locale in the list will be used to set the default locale.

error_page TenantErrorPageArgs

List(Resource). Configuration settings for error pages. For details, see Error Page.

flags TenantFlagsArgs

List(Resource). Configuration settings for tenant flags. For details, see Flags.

friendly_name str

String. Friendly name for the tenant.

guardian_mfa_page TenantGuardianMfaPageArgs

List(Resource). Configuration settings for the Guardian MFA page. For details, see Guardian MFA Page.

idle_session_lifetime float

Integer. Number of hours during which a session can be inactive before the user must log in again.

picture_url str

. String URL of logo to be shown for the tenant. Recommended size is 150px x 150px. If no URL is provided, the Auth0 logo will be used.

sandbox_version str

String. Selected sandbox version for the extensibility environment, which allows you to use custom scripts to extend parts of Auth0's functionality.

session_lifetime float

Integer. Number of hours during which a session will stay valid.

support_email str

String. Support email address for authenticating users.

support_url str

String. Support URL for authenticating users.

universal_login TenantUniversalLoginArgs

List(Resource). Configuration settings for Universal Login. For details, see Universal Login.

allowedLogoutUrls List<String>

List(String). URLs that Auth0 may redirect to after logout.

changePassword Property Map

List(Resource). Configuration settings for change passsword page. For details, see Change Password Page.

defaultAudience String

String. API Audience to use by default for API Authorization flows. This setting is equivalent to appending the audience to every authorization request made to the tenant for every application.

defaultDirectory String

String. Name of the connection to be used for Password Grant exchanges. Options include auth0-adldap, ad, auth0, email, sms, waad, and adfs.

defaultRedirectionUri String

String. The default absolute redirection uri, must be https and cannot contain a fragment.

enabledLocales List<String>

List(String). Supported locales for the user interface. The first locale in the list will be used to set the default locale.

errorPage Property Map

List(Resource). Configuration settings for error pages. For details, see Error Page.

flags Property Map

List(Resource). Configuration settings for tenant flags. For details, see Flags.

friendlyName String

String. Friendly name for the tenant.

guardianMfaPage Property Map

List(Resource). Configuration settings for the Guardian MFA page. For details, see Guardian MFA Page.

idleSessionLifetime Number

Integer. Number of hours during which a session can be inactive before the user must log in again.

pictureUrl String

. String URL of logo to be shown for the tenant. Recommended size is 150px x 150px. If no URL is provided, the Auth0 logo will be used.

sandboxVersion String

String. Selected sandbox version for the extensibility environment, which allows you to use custom scripts to extend parts of Auth0's functionality.

sessionLifetime Number

Integer. Number of hours during which a session will stay valid.

supportEmail String

String. Support email address for authenticating users.

supportUrl String

String. Support URL for authenticating users.

universalLogin Property Map

List(Resource). Configuration settings for Universal Login. For details, see Universal Login.

Outputs

All input properties are implicitly available as output properties. Additionally, the Tenant resource produces the following output properties:

Id string

The provider-assigned unique ID for this managed resource.

Id string

The provider-assigned unique ID for this managed resource.

id String

The provider-assigned unique ID for this managed resource.

id string

The provider-assigned unique ID for this managed resource.

id str

The provider-assigned unique ID for this managed resource.

id String

The provider-assigned unique ID for this managed resource.

Look up an Existing Tenant Resource

Get an existing Tenant resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

public static get(name: string, id: Input<ID>, state?: TenantState, opts?: CustomResourceOptions): Tenant
@staticmethod
def get(resource_name: str,
        id: str,
        opts: Optional[ResourceOptions] = None,
        allowed_logout_urls: Optional[Sequence[str]] = None,
        change_password: Optional[TenantChangePasswordArgs] = None,
        default_audience: Optional[str] = None,
        default_directory: Optional[str] = None,
        default_redirection_uri: Optional[str] = None,
        enabled_locales: Optional[Sequence[str]] = None,
        error_page: Optional[TenantErrorPageArgs] = None,
        flags: Optional[TenantFlagsArgs] = None,
        friendly_name: Optional[str] = None,
        guardian_mfa_page: Optional[TenantGuardianMfaPageArgs] = None,
        idle_session_lifetime: Optional[float] = None,
        picture_url: Optional[str] = None,
        sandbox_version: Optional[str] = None,
        session_lifetime: Optional[float] = None,
        support_email: Optional[str] = None,
        support_url: Optional[str] = None,
        universal_login: Optional[TenantUniversalLoginArgs] = None) -> Tenant
func GetTenant(ctx *Context, name string, id IDInput, state *TenantState, opts ...ResourceOption) (*Tenant, error)
public static Tenant Get(string name, Input<string> id, TenantState? state, CustomResourceOptions? opts = null)
public static Tenant get(String name, Output<String> id, TenantState state, CustomResourceOptions options)
Resource lookup is not supported in YAML
name
The unique name of the resulting resource.
id
The unique provider ID of the resource to lookup.
state
Any extra arguments used during the lookup.
opts
A bag of options that control this resource's behavior.
resource_name
The unique name of the resulting resource.
id
The unique provider ID of the resource to lookup.
name
The unique name of the resulting resource.
id
The unique provider ID of the resource to lookup.
state
Any extra arguments used during the lookup.
opts
A bag of options that control this resource's behavior.
name
The unique name of the resulting resource.
id
The unique provider ID of the resource to lookup.
state
Any extra arguments used during the lookup.
opts
A bag of options that control this resource's behavior.
name
The unique name of the resulting resource.
id
The unique provider ID of the resource to lookup.
state
Any extra arguments used during the lookup.
opts
A bag of options that control this resource's behavior.
The following state arguments are supported:
AllowedLogoutUrls List<string>

List(String). URLs that Auth0 may redirect to after logout.

ChangePassword TenantChangePasswordArgs

List(Resource). Configuration settings for change passsword page. For details, see Change Password Page.

DefaultAudience string

String. API Audience to use by default for API Authorization flows. This setting is equivalent to appending the audience to every authorization request made to the tenant for every application.

DefaultDirectory string

String. Name of the connection to be used for Password Grant exchanges. Options include auth0-adldap, ad, auth0, email, sms, waad, and adfs.

DefaultRedirectionUri string

String. The default absolute redirection uri, must be https and cannot contain a fragment.

EnabledLocales List<string>

List(String). Supported locales for the user interface. The first locale in the list will be used to set the default locale.

ErrorPage TenantErrorPageArgs

List(Resource). Configuration settings for error pages. For details, see Error Page.

Flags TenantFlagsArgs

List(Resource). Configuration settings for tenant flags. For details, see Flags.

FriendlyName string

String. Friendly name for the tenant.

GuardianMfaPage TenantGuardianMfaPageArgs

List(Resource). Configuration settings for the Guardian MFA page. For details, see Guardian MFA Page.

IdleSessionLifetime double

Integer. Number of hours during which a session can be inactive before the user must log in again.

PictureUrl string

. String URL of logo to be shown for the tenant. Recommended size is 150px x 150px. If no URL is provided, the Auth0 logo will be used.

SandboxVersion string

String. Selected sandbox version for the extensibility environment, which allows you to use custom scripts to extend parts of Auth0's functionality.

SessionLifetime double

Integer. Number of hours during which a session will stay valid.

SupportEmail string

String. Support email address for authenticating users.

SupportUrl string

String. Support URL for authenticating users.

UniversalLogin TenantUniversalLoginArgs

List(Resource). Configuration settings for Universal Login. For details, see Universal Login.

AllowedLogoutUrls []string

List(String). URLs that Auth0 may redirect to after logout.

ChangePassword TenantChangePasswordArgs

List(Resource). Configuration settings for change passsword page. For details, see Change Password Page.

DefaultAudience string

String. API Audience to use by default for API Authorization flows. This setting is equivalent to appending the audience to every authorization request made to the tenant for every application.

DefaultDirectory string

String. Name of the connection to be used for Password Grant exchanges. Options include auth0-adldap, ad, auth0, email, sms, waad, and adfs.

DefaultRedirectionUri string

String. The default absolute redirection uri, must be https and cannot contain a fragment.

EnabledLocales []string

List(String). Supported locales for the user interface. The first locale in the list will be used to set the default locale.

ErrorPage TenantErrorPageArgs

List(Resource). Configuration settings for error pages. For details, see Error Page.

Flags TenantFlagsArgs

List(Resource). Configuration settings for tenant flags. For details, see Flags.

FriendlyName string

String. Friendly name for the tenant.

GuardianMfaPage TenantGuardianMfaPageArgs

List(Resource). Configuration settings for the Guardian MFA page. For details, see Guardian MFA Page.

IdleSessionLifetime float64

Integer. Number of hours during which a session can be inactive before the user must log in again.

PictureUrl string

. String URL of logo to be shown for the tenant. Recommended size is 150px x 150px. If no URL is provided, the Auth0 logo will be used.

SandboxVersion string

String. Selected sandbox version for the extensibility environment, which allows you to use custom scripts to extend parts of Auth0's functionality.

SessionLifetime float64

Integer. Number of hours during which a session will stay valid.

SupportEmail string

String. Support email address for authenticating users.

SupportUrl string

String. Support URL for authenticating users.

UniversalLogin TenantUniversalLoginArgs

List(Resource). Configuration settings for Universal Login. For details, see Universal Login.

allowedLogoutUrls List<String>

List(String). URLs that Auth0 may redirect to after logout.

changePassword TenantChangePasswordArgs

List(Resource). Configuration settings for change passsword page. For details, see Change Password Page.

defaultAudience String

String. API Audience to use by default for API Authorization flows. This setting is equivalent to appending the audience to every authorization request made to the tenant for every application.

defaultDirectory String

String. Name of the connection to be used for Password Grant exchanges. Options include auth0-adldap, ad, auth0, email, sms, waad, and adfs.

defaultRedirectionUri String

String. The default absolute redirection uri, must be https and cannot contain a fragment.

enabledLocales List<String>

List(String). Supported locales for the user interface. The first locale in the list will be used to set the default locale.

errorPage TenantErrorPageArgs

List(Resource). Configuration settings for error pages. For details, see Error Page.

flags TenantFlagsArgs

List(Resource). Configuration settings for tenant flags. For details, see Flags.

friendlyName String

String. Friendly name for the tenant.

guardianMfaPage TenantGuardianMfaPageArgs

List(Resource). Configuration settings for the Guardian MFA page. For details, see Guardian MFA Page.

idleSessionLifetime Double

Integer. Number of hours during which a session can be inactive before the user must log in again.

pictureUrl String

. String URL of logo to be shown for the tenant. Recommended size is 150px x 150px. If no URL is provided, the Auth0 logo will be used.

sandboxVersion String

String. Selected sandbox version for the extensibility environment, which allows you to use custom scripts to extend parts of Auth0's functionality.

sessionLifetime Double

Integer. Number of hours during which a session will stay valid.

supportEmail String

String. Support email address for authenticating users.

supportUrl String

String. Support URL for authenticating users.

universalLogin TenantUniversalLoginArgs

List(Resource). Configuration settings for Universal Login. For details, see Universal Login.

allowedLogoutUrls string[]

List(String). URLs that Auth0 may redirect to after logout.

changePassword TenantChangePasswordArgs

List(Resource). Configuration settings for change passsword page. For details, see Change Password Page.

defaultAudience string

String. API Audience to use by default for API Authorization flows. This setting is equivalent to appending the audience to every authorization request made to the tenant for every application.

defaultDirectory string

String. Name of the connection to be used for Password Grant exchanges. Options include auth0-adldap, ad, auth0, email, sms, waad, and adfs.

defaultRedirectionUri string

String. The default absolute redirection uri, must be https and cannot contain a fragment.

enabledLocales string[]

List(String). Supported locales for the user interface. The first locale in the list will be used to set the default locale.

errorPage TenantErrorPageArgs

List(Resource). Configuration settings for error pages. For details, see Error Page.

flags TenantFlagsArgs

List(Resource). Configuration settings for tenant flags. For details, see Flags.

friendlyName string

String. Friendly name for the tenant.

guardianMfaPage TenantGuardianMfaPageArgs

List(Resource). Configuration settings for the Guardian MFA page. For details, see Guardian MFA Page.

idleSessionLifetime number

Integer. Number of hours during which a session can be inactive before the user must log in again.

pictureUrl string

. String URL of logo to be shown for the tenant. Recommended size is 150px x 150px. If no URL is provided, the Auth0 logo will be used.

sandboxVersion string

String. Selected sandbox version for the extensibility environment, which allows you to use custom scripts to extend parts of Auth0's functionality.

sessionLifetime number

Integer. Number of hours during which a session will stay valid.

supportEmail string

String. Support email address for authenticating users.

supportUrl string

String. Support URL for authenticating users.

universalLogin TenantUniversalLoginArgs

List(Resource). Configuration settings for Universal Login. For details, see Universal Login.

allowed_logout_urls Sequence[str]

List(String). URLs that Auth0 may redirect to after logout.

change_password TenantChangePasswordArgs

List(Resource). Configuration settings for change passsword page. For details, see Change Password Page.

default_audience str

String. API Audience to use by default for API Authorization flows. This setting is equivalent to appending the audience to every authorization request made to the tenant for every application.

default_directory str

String. Name of the connection to be used for Password Grant exchanges. Options include auth0-adldap, ad, auth0, email, sms, waad, and adfs.

default_redirection_uri str

String. The default absolute redirection uri, must be https and cannot contain a fragment.

enabled_locales Sequence[str]

List(String). Supported locales for the user interface. The first locale in the list will be used to set the default locale.

error_page TenantErrorPageArgs

List(Resource). Configuration settings for error pages. For details, see Error Page.

flags TenantFlagsArgs

List(Resource). Configuration settings for tenant flags. For details, see Flags.

friendly_name str

String. Friendly name for the tenant.

guardian_mfa_page TenantGuardianMfaPageArgs

List(Resource). Configuration settings for the Guardian MFA page. For details, see Guardian MFA Page.

idle_session_lifetime float

Integer. Number of hours during which a session can be inactive before the user must log in again.

picture_url str

. String URL of logo to be shown for the tenant. Recommended size is 150px x 150px. If no URL is provided, the Auth0 logo will be used.

sandbox_version str

String. Selected sandbox version for the extensibility environment, which allows you to use custom scripts to extend parts of Auth0's functionality.

session_lifetime float

Integer. Number of hours during which a session will stay valid.

support_email str

String. Support email address for authenticating users.

support_url str

String. Support URL for authenticating users.

universal_login TenantUniversalLoginArgs

List(Resource). Configuration settings for Universal Login. For details, see Universal Login.

allowedLogoutUrls List<String>

List(String). URLs that Auth0 may redirect to after logout.

changePassword Property Map

List(Resource). Configuration settings for change passsword page. For details, see Change Password Page.

defaultAudience String

String. API Audience to use by default for API Authorization flows. This setting is equivalent to appending the audience to every authorization request made to the tenant for every application.

defaultDirectory String

String. Name of the connection to be used for Password Grant exchanges. Options include auth0-adldap, ad, auth0, email, sms, waad, and adfs.

defaultRedirectionUri String

String. The default absolute redirection uri, must be https and cannot contain a fragment.

enabledLocales List<String>

List(String). Supported locales for the user interface. The first locale in the list will be used to set the default locale.

errorPage Property Map

List(Resource). Configuration settings for error pages. For details, see Error Page.

flags Property Map

List(Resource). Configuration settings for tenant flags. For details, see Flags.

friendlyName String

String. Friendly name for the tenant.

guardianMfaPage Property Map

List(Resource). Configuration settings for the Guardian MFA page. For details, see Guardian MFA Page.

idleSessionLifetime Number

Integer. Number of hours during which a session can be inactive before the user must log in again.

pictureUrl String

. String URL of logo to be shown for the tenant. Recommended size is 150px x 150px. If no URL is provided, the Auth0 logo will be used.

sandboxVersion String

String. Selected sandbox version for the extensibility environment, which allows you to use custom scripts to extend parts of Auth0's functionality.

sessionLifetime Number

Integer. Number of hours during which a session will stay valid.

supportEmail String

String. Support email address for authenticating users.

supportUrl String

String. Support URL for authenticating users.

universalLogin Property Map

List(Resource). Configuration settings for Universal Login. For details, see Universal Login.

Supporting Types

TenantChangePassword

Enabled bool

Boolean. Indicates whether to use the custom change password page.

Html string

String, HTML format with supported Liquid syntax. Customized content of the change password page.

Enabled bool

Boolean. Indicates whether to use the custom change password page.

Html string

String, HTML format with supported Liquid syntax. Customized content of the change password page.

enabled Boolean

Boolean. Indicates whether to use the custom change password page.

html String

String, HTML format with supported Liquid syntax. Customized content of the change password page.

enabled boolean

Boolean. Indicates whether to use the custom change password page.

html string

String, HTML format with supported Liquid syntax. Customized content of the change password page.

enabled bool

Boolean. Indicates whether to use the custom change password page.

html str

String, HTML format with supported Liquid syntax. Customized content of the change password page.

enabled Boolean

Boolean. Indicates whether to use the custom change password page.

html String

String, HTML format with supported Liquid syntax. Customized content of the change password page.

TenantErrorPage

Html string

String, HTML format with supported Liquid syntax. Customized content of the error page.

ShowLogLink bool

Boolean. Indicates whether to show the link to logs as part of the default error page.

Url string

String. URL to redirect to when an error occurs rather than showing the default error page.

Html string

String, HTML format with supported Liquid syntax. Customized content of the error page.

ShowLogLink bool

Boolean. Indicates whether to show the link to logs as part of the default error page.

Url string

String. URL to redirect to when an error occurs rather than showing the default error page.

html String

String, HTML format with supported Liquid syntax. Customized content of the error page.

showLogLink Boolean

Boolean. Indicates whether to show the link to logs as part of the default error page.

url String

String. URL to redirect to when an error occurs rather than showing the default error page.

html string

String, HTML format with supported Liquid syntax. Customized content of the error page.

showLogLink boolean

Boolean. Indicates whether to show the link to logs as part of the default error page.

url string

String. URL to redirect to when an error occurs rather than showing the default error page.

html str

String, HTML format with supported Liquid syntax. Customized content of the error page.

show_log_link bool

Boolean. Indicates whether to show the link to logs as part of the default error page.

url str

String. URL to redirect to when an error occurs rather than showing the default error page.

html String

String, HTML format with supported Liquid syntax. Customized content of the error page.

showLogLink Boolean

Boolean. Indicates whether to show the link to logs as part of the default error page.

url String

String. URL to redirect to when an error occurs rather than showing the default error page.

TenantFlags

DisableClickjackProtectionHeaders bool

Boolean. Indicated whether classic Universal Login prompts include additional security headers to prevent clickjacking.

EnableApisSection bool

Boolean. Indicates whether the APIs section is enabled for the tenant.

EnableClientConnections bool

Boolean. Indicates whether all current connections should be enabled when a new client is created.

EnableCustomDomainInEmails bool

Boolean. Indicates whether the tenant allows custom domains in emails.

EnableDynamicClientRegistration bool

Boolean. Indicates whether the tenant allows dynamic client registration.

EnableLegacyLogsSearchV2 bool

Boolean. Indicates whether to use the older v2 legacy logs search.

EnablePipeline2 bool

Boolean. Indicates whether advanced API Authorization scenarios are enabled.

EnablePublicSignupUserExistsError bool

Boolean. Indicates whether the public sign up process shows a user_exists error if the user already exists.

UniversalLogin bool

Boolean. Indicates whether the tenant uses universal login.

UseScopeDescriptionsForConsent bool
DisableClickjackProtectionHeaders bool

Boolean. Indicated whether classic Universal Login prompts include additional security headers to prevent clickjacking.

EnableApisSection bool

Boolean. Indicates whether the APIs section is enabled for the tenant.

EnableClientConnections bool

Boolean. Indicates whether all current connections should be enabled when a new client is created.

EnableCustomDomainInEmails bool

Boolean. Indicates whether the tenant allows custom domains in emails.

EnableDynamicClientRegistration bool

Boolean. Indicates whether the tenant allows dynamic client registration.

EnableLegacyLogsSearchV2 bool

Boolean. Indicates whether to use the older v2 legacy logs search.

EnablePipeline2 bool

Boolean. Indicates whether advanced API Authorization scenarios are enabled.

EnablePublicSignupUserExistsError bool

Boolean. Indicates whether the public sign up process shows a user_exists error if the user already exists.

UniversalLogin bool

Boolean. Indicates whether the tenant uses universal login.

UseScopeDescriptionsForConsent bool
disableClickjackProtectionHeaders Boolean

Boolean. Indicated whether classic Universal Login prompts include additional security headers to prevent clickjacking.

enableApisSection Boolean

Boolean. Indicates whether the APIs section is enabled for the tenant.

enableClientConnections Boolean

Boolean. Indicates whether all current connections should be enabled when a new client is created.

enableCustomDomainInEmails Boolean

Boolean. Indicates whether the tenant allows custom domains in emails.

enableDynamicClientRegistration Boolean

Boolean. Indicates whether the tenant allows dynamic client registration.

enableLegacyLogsSearchV2 Boolean

Boolean. Indicates whether to use the older v2 legacy logs search.

enablePipeline2 Boolean

Boolean. Indicates whether advanced API Authorization scenarios are enabled.

enablePublicSignupUserExistsError Boolean

Boolean. Indicates whether the public sign up process shows a user_exists error if the user already exists.

universalLogin Boolean

Boolean. Indicates whether the tenant uses universal login.

useScopeDescriptionsForConsent Boolean
disableClickjackProtectionHeaders boolean

Boolean. Indicated whether classic Universal Login prompts include additional security headers to prevent clickjacking.

enableApisSection boolean

Boolean. Indicates whether the APIs section is enabled for the tenant.

enableClientConnections boolean

Boolean. Indicates whether all current connections should be enabled when a new client is created.

enableCustomDomainInEmails boolean

Boolean. Indicates whether the tenant allows custom domains in emails.

enableDynamicClientRegistration boolean

Boolean. Indicates whether the tenant allows dynamic client registration.

enableLegacyLogsSearchV2 boolean

Boolean. Indicates whether to use the older v2 legacy logs search.

enablePipeline2 boolean

Boolean. Indicates whether advanced API Authorization scenarios are enabled.

enablePublicSignupUserExistsError boolean

Boolean. Indicates whether the public sign up process shows a user_exists error if the user already exists.

universalLogin boolean

Boolean. Indicates whether the tenant uses universal login.

useScopeDescriptionsForConsent boolean
disable_clickjack_protection_headers bool

Boolean. Indicated whether classic Universal Login prompts include additional security headers to prevent clickjacking.

enable_apis_section bool

Boolean. Indicates whether the APIs section is enabled for the tenant.

enable_client_connections bool

Boolean. Indicates whether all current connections should be enabled when a new client is created.

enable_custom_domain_in_emails bool

Boolean. Indicates whether the tenant allows custom domains in emails.

enable_dynamic_client_registration bool

Boolean. Indicates whether the tenant allows dynamic client registration.

enable_legacy_logs_search_v2 bool

Boolean. Indicates whether to use the older v2 legacy logs search.

enable_pipeline2 bool

Boolean. Indicates whether advanced API Authorization scenarios are enabled.

enable_public_signup_user_exists_error bool

Boolean. Indicates whether the public sign up process shows a user_exists error if the user already exists.

universal_login bool

Boolean. Indicates whether the tenant uses universal login.

use_scope_descriptions_for_consent bool
disableClickjackProtectionHeaders Boolean

Boolean. Indicated whether classic Universal Login prompts include additional security headers to prevent clickjacking.

enableApisSection Boolean

Boolean. Indicates whether the APIs section is enabled for the tenant.

enableClientConnections Boolean

Boolean. Indicates whether all current connections should be enabled when a new client is created.

enableCustomDomainInEmails Boolean

Boolean. Indicates whether the tenant allows custom domains in emails.

enableDynamicClientRegistration Boolean

Boolean. Indicates whether the tenant allows dynamic client registration.

enableLegacyLogsSearchV2 Boolean

Boolean. Indicates whether to use the older v2 legacy logs search.

enablePipeline2 Boolean

Boolean. Indicates whether advanced API Authorization scenarios are enabled.

enablePublicSignupUserExistsError Boolean

Boolean. Indicates whether the public sign up process shows a user_exists error if the user already exists.

universalLogin Boolean

Boolean. Indicates whether the tenant uses universal login.

useScopeDescriptionsForConsent Boolean

TenantGuardianMfaPage

Enabled bool

Boolean. Indicates whether to use the custom Guardian page.

Html string

String, HTML format with supported Liquid syntax. Customized content of the Guardian page.

Enabled bool

Boolean. Indicates whether to use the custom Guardian page.

Html string

String, HTML format with supported Liquid syntax. Customized content of the Guardian page.

enabled Boolean

Boolean. Indicates whether to use the custom Guardian page.

html String

String, HTML format with supported Liquid syntax. Customized content of the Guardian page.

enabled boolean

Boolean. Indicates whether to use the custom Guardian page.

html string

String, HTML format with supported Liquid syntax. Customized content of the Guardian page.

enabled bool

Boolean. Indicates whether to use the custom Guardian page.

html str

String, HTML format with supported Liquid syntax. Customized content of the Guardian page.

enabled Boolean

Boolean. Indicates whether to use the custom Guardian page.

html String

String, HTML format with supported Liquid syntax. Customized content of the Guardian page.

TenantUniversalLogin

Colors TenantUniversalLoginColors

List(Resource). Configuration settings for Universal Login colors. See Universal Login - Colors.

Colors TenantUniversalLoginColors

List(Resource). Configuration settings for Universal Login colors. See Universal Login - Colors.

colors TenantUniversalLoginColors

List(Resource). Configuration settings for Universal Login colors. See Universal Login - Colors.

colors TenantUniversalLoginColors

List(Resource). Configuration settings for Universal Login colors. See Universal Login - Colors.

colors TenantUniversalLoginColors

List(Resource). Configuration settings for Universal Login colors. See Universal Login - Colors.

colors Property Map

List(Resource). Configuration settings for Universal Login colors. See Universal Login - Colors.

TenantUniversalLoginColors

PageBackground string

String, Hexadecimal. Background color of login pages.

Primary string

String, Hexadecimal. Primary button background color.

PageBackground string

String, Hexadecimal. Background color of login pages.

Primary string

String, Hexadecimal. Primary button background color.

pageBackground String

String, Hexadecimal. Background color of login pages.

primary String

String, Hexadecimal. Primary button background color.

pageBackground string

String, Hexadecimal. Background color of login pages.

primary string

String, Hexadecimal. Primary button background color.

page_background str

String, Hexadecimal. Background color of login pages.

primary str

String, Hexadecimal. Primary button background color.

pageBackground String

String, Hexadecimal. Background color of login pages.

primary String

String, Hexadecimal. Primary button background color.

Import

As this is not a resource identifiable by an ID within the Auth0 Management API, tenant can be imported using a random string. We recommend Version 4 UUID e.g.

 $ pulumi import auth0:index/tenant:Tenant tenant 82f4f21b-017a-319d-92e7-2291c1ca36c4

Package Details

Repository
https://github.com/pulumi/pulumi-auth0
License
Apache-2.0
Notes

This Pulumi package is based on the auth0 Terraform Provider.