FusionAuth v2.17.0, Mar 24 23
FusionAuth v2.17.0, Mar 24 23
fusionauth.FusionAuthIdpApple
Explore with Pulumi AI
# Apple Identity Provider Resource
The Apple identity provider type will use the Sign in with Apple APIs and will provide a Sign with Apple button on FusionAuth’s login page that will either redirect to an Apple sign in page or leverage native controls when using Safari on macOS or iOS. Additionally, this identity provider will call Apples’s /auth/token API to load additional details about the user and store them in FusionAuth.
FusionAuth will also store the Apple refresh_token that is returned from the /auth/token endpoint in the UserRegistration object inside the tokens Map. This Map stores the tokens from the various identity providers so that you can use them in your application to call their APIs.
Example Usage
using System.Collections.Generic;
using Pulumi;
using Fusionauth = theogravity.Fusionauth;
return await Deployment.RunAsync(() =>
{
var apple = new Fusionauth.FusionAuthIdpApple("apple", new()
{
ApplicationConfigurations = new[]
{
new Fusionauth.Inputs.FusionAuthIdpAppleApplicationConfigurationArgs
{
ApplicationId = "1c212e59-0d0e-6b1a-ad48-f4f92793be32",
CreateRegistration = true,
Enabled = true,
},
},
ButtonText = "Sign in with Apple",
Debug = false,
Enabled = true,
KeyId = "2f81529c-4d39-4ce2-982e-cf5fbb1325f6",
Scope = "email name",
ServicesId = "com.piedpiper.webapp",
TeamId = "R4NQ1P4UEB",
});
});
package main
import (
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
"github.com/theogravity/pulumi-fusionauth/sdk/v2/go/fusionauth"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := fusionauth.NewFusionAuthIdpApple(ctx, "apple", &fusionauth.FusionAuthIdpAppleArgs{
ApplicationConfigurations: fusionauth.FusionAuthIdpAppleApplicationConfigurationArray{
&fusionauth.FusionAuthIdpAppleApplicationConfigurationArgs{
ApplicationId: pulumi.String("1c212e59-0d0e-6b1a-ad48-f4f92793be32"),
CreateRegistration: pulumi.Bool(true),
Enabled: pulumi.Bool(true),
},
},
ButtonText: pulumi.String("Sign in with Apple"),
Debug: pulumi.Bool(false),
Enabled: pulumi.Bool(true),
KeyId: pulumi.String("2f81529c-4d39-4ce2-982e-cf5fbb1325f6"),
Scope: pulumi.String("email name"),
ServicesId: pulumi.String("com.piedpiper.webapp"),
TeamId: pulumi.String("R4NQ1P4UEB"),
})
if err != nil {
return err
}
return nil
})
}
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.fusionauth.FusionAuthIdpApple;
import com.pulumi.fusionauth.FusionAuthIdpAppleArgs;
import com.pulumi.fusionauth.inputs.FusionAuthIdpAppleApplicationConfigurationArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var apple = new FusionAuthIdpApple("apple", FusionAuthIdpAppleArgs.builder()
.applicationConfigurations(FusionAuthIdpAppleApplicationConfigurationArgs.builder()
.applicationId("1c212e59-0d0e-6b1a-ad48-f4f92793be32")
.createRegistration(true)
.enabled(true)
.build())
.buttonText("Sign in with Apple")
.debug(false)
.enabled(true)
.keyId("2f81529c-4d39-4ce2-982e-cf5fbb1325f6")
.scope("email name")
.servicesId("com.piedpiper.webapp")
.teamId("R4NQ1P4UEB")
.build());
}
}
import pulumi
import theogravity_pulumi-fusionauth as fusionauth
apple = fusionauth.FusionAuthIdpApple("apple",
application_configurations=[fusionauth.FusionAuthIdpAppleApplicationConfigurationArgs(
application_id="1c212e59-0d0e-6b1a-ad48-f4f92793be32",
create_registration=True,
enabled=True,
)],
button_text="Sign in with Apple",
debug=False,
enabled=True,
key_id="2f81529c-4d39-4ce2-982e-cf5fbb1325f6",
scope="email name",
services_id="com.piedpiper.webapp",
team_id="R4NQ1P4UEB")
import * as pulumi from "@pulumi/pulumi";
import * as fusionauth from "pulumi-fusionauth";
const apple = new fusionauth.FusionAuthIdpApple("apple", {
applicationConfigurations: [{
applicationId: "1c212e59-0d0e-6b1a-ad48-f4f92793be32",
createRegistration: true,
enabled: true,
}],
buttonText: "Sign in with Apple",
debug: false,
enabled: true,
keyId: "2f81529c-4d39-4ce2-982e-cf5fbb1325f6",
scope: "email name",
servicesId: "com.piedpiper.webapp",
teamId: "R4NQ1P4UEB",
});
resources:
apple:
type: fusionauth:FusionAuthIdpApple
properties:
applicationConfigurations:
- applicationId: 1c212e59-0d0e-6b1a-ad48-f4f92793be32
createRegistration: true
enabled: true
buttonText: Sign in with Apple
debug: false
enabled: true
keyId: 2f81529c-4d39-4ce2-982e-cf5fbb1325f6
scope: email name
servicesId: com.piedpiper.webapp
teamId: R4NQ1P4UEB
Create FusionAuthIdpApple Resource
new FusionAuthIdpApple(name: string, args: FusionAuthIdpAppleArgs, opts?: CustomResourceOptions);
@overload
def FusionAuthIdpApple(resource_name: str,
opts: Optional[ResourceOptions] = None,
application_configurations: Optional[Sequence[FusionAuthIdpAppleApplicationConfigurationArgs]] = None,
button_text: Optional[str] = None,
debug: Optional[bool] = None,
enabled: Optional[bool] = None,
key_id: Optional[str] = None,
lambda_reconcile_id: Optional[str] = None,
linking_strategy: Optional[str] = None,
scope: Optional[str] = None,
services_id: Optional[str] = None,
team_id: Optional[str] = None,
tenant_configurations: Optional[Sequence[FusionAuthIdpAppleTenantConfigurationArgs]] = None)
@overload
def FusionAuthIdpApple(resource_name: str,
args: FusionAuthIdpAppleArgs,
opts: Optional[ResourceOptions] = None)
func NewFusionAuthIdpApple(ctx *Context, name string, args FusionAuthIdpAppleArgs, opts ...ResourceOption) (*FusionAuthIdpApple, error)
public FusionAuthIdpApple(string name, FusionAuthIdpAppleArgs args, CustomResourceOptions? opts = null)
public FusionAuthIdpApple(String name, FusionAuthIdpAppleArgs args)
public FusionAuthIdpApple(String name, FusionAuthIdpAppleArgs args, CustomResourceOptions options)
type: fusionauth:FusionAuthIdpApple
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args FusionAuthIdpAppleArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args FusionAuthIdpAppleArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args FusionAuthIdpAppleArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args FusionAuthIdpAppleArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args FusionAuthIdpAppleArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
FusionAuthIdpApple Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
The FusionAuthIdpApple resource accepts the following input properties:
- string
The top-level button text to use on the FusionAuth login page for this Identity Provider.
- Key
Id string The unique Id of the private key downloaded from Apple and imported into Key Master that will be used to sign the client secret.
- Services
Id string The unique Id of the private key downloaded from Apple and imported into Key Master that will be used to sign the client secret.
- Team
Id string The Apple App ID Prefix, or Team ID found in your Apple Developer Account which has been configured for Sign in with Apple.
- Application
Configurations List<theogravity.Fusionauth. Inputs. Fusion Auth Idp Apple Application Configuration Args> The configuration for each Application that the identity provider is enabled for.
- Debug bool
Determines if debug is enabled for this provider. When enabled, each time this provider is invoked to reconcile a login an Event Log will be created.
- Enabled bool
Determines if this provider is enabled. If it is false then it will be disabled globally.
- Lambda
Reconcile stringId The unique Id of the lambda to used during the user reconcile process to map custom claims from the external identity provider to the FusionAuth user.
- Linking
Strategy string The linking strategy to use when creating the link between the {idp_display_name} Identity Provider and the user.
- Scope string
The top-level space separated scope that you are requesting from Apple.
- Tenant
Configurations List<theogravity.Fusionauth. Inputs. Fusion Auth Idp Apple Tenant Configuration Args> The configuration for each Tenant that limits the number of links a user may have for a particular identity provider.
- string
The top-level button text to use on the FusionAuth login page for this Identity Provider.
- Key
Id string The unique Id of the private key downloaded from Apple and imported into Key Master that will be used to sign the client secret.
- Services
Id string The unique Id of the private key downloaded from Apple and imported into Key Master that will be used to sign the client secret.
- Team
Id string The Apple App ID Prefix, or Team ID found in your Apple Developer Account which has been configured for Sign in with Apple.
- Application
Configurations []FusionAuth Idp Apple Application Configuration Args The configuration for each Application that the identity provider is enabled for.
- Debug bool
Determines if debug is enabled for this provider. When enabled, each time this provider is invoked to reconcile a login an Event Log will be created.
- Enabled bool
Determines if this provider is enabled. If it is false then it will be disabled globally.
- Lambda
Reconcile stringId The unique Id of the lambda to used during the user reconcile process to map custom claims from the external identity provider to the FusionAuth user.
- Linking
Strategy string The linking strategy to use when creating the link between the {idp_display_name} Identity Provider and the user.
- Scope string
The top-level space separated scope that you are requesting from Apple.
- Tenant
Configurations []FusionAuth Idp Apple Tenant Configuration Args The configuration for each Tenant that limits the number of links a user may have for a particular identity provider.
- String
The top-level button text to use on the FusionAuth login page for this Identity Provider.
- key
Id String The unique Id of the private key downloaded from Apple and imported into Key Master that will be used to sign the client secret.
- services
Id String The unique Id of the private key downloaded from Apple and imported into Key Master that will be used to sign the client secret.
- team
Id String The Apple App ID Prefix, or Team ID found in your Apple Developer Account which has been configured for Sign in with Apple.
- application
Configurations List<FusionAuth Idp Apple Application Configuration Args> The configuration for each Application that the identity provider is enabled for.
- debug Boolean
Determines if debug is enabled for this provider. When enabled, each time this provider is invoked to reconcile a login an Event Log will be created.
- enabled Boolean
Determines if this provider is enabled. If it is false then it will be disabled globally.
- lambda
Reconcile StringId The unique Id of the lambda to used during the user reconcile process to map custom claims from the external identity provider to the FusionAuth user.
- linking
Strategy String The linking strategy to use when creating the link between the {idp_display_name} Identity Provider and the user.
- scope String
The top-level space separated scope that you are requesting from Apple.
- tenant
Configurations List<FusionAuth Idp Apple Tenant Configuration Args> The configuration for each Tenant that limits the number of links a user may have for a particular identity provider.
- string
The top-level button text to use on the FusionAuth login page for this Identity Provider.
- key
Id string The unique Id of the private key downloaded from Apple and imported into Key Master that will be used to sign the client secret.
- services
Id string The unique Id of the private key downloaded from Apple and imported into Key Master that will be used to sign the client secret.
- team
Id string The Apple App ID Prefix, or Team ID found in your Apple Developer Account which has been configured for Sign in with Apple.
- application
Configurations FusionAuth Idp Apple Application Configuration Args[] The configuration for each Application that the identity provider is enabled for.
- debug boolean
Determines if debug is enabled for this provider. When enabled, each time this provider is invoked to reconcile a login an Event Log will be created.
- enabled boolean
Determines if this provider is enabled. If it is false then it will be disabled globally.
- lambda
Reconcile stringId The unique Id of the lambda to used during the user reconcile process to map custom claims from the external identity provider to the FusionAuth user.
- linking
Strategy string The linking strategy to use when creating the link between the {idp_display_name} Identity Provider and the user.
- scope string
The top-level space separated scope that you are requesting from Apple.
- tenant
Configurations FusionAuth Idp Apple Tenant Configuration Args[] The configuration for each Tenant that limits the number of links a user may have for a particular identity provider.
- str
The top-level button text to use on the FusionAuth login page for this Identity Provider.
- key_
id str The unique Id of the private key downloaded from Apple and imported into Key Master that will be used to sign the client secret.
- services_
id str The unique Id of the private key downloaded from Apple and imported into Key Master that will be used to sign the client secret.
- team_
id str The Apple App ID Prefix, or Team ID found in your Apple Developer Account which has been configured for Sign in with Apple.
- application_
configurations Sequence[FusionAuth Idp Apple Application Configuration Args] The configuration for each Application that the identity provider is enabled for.
- debug bool
Determines if debug is enabled for this provider. When enabled, each time this provider is invoked to reconcile a login an Event Log will be created.
- enabled bool
Determines if this provider is enabled. If it is false then it will be disabled globally.
- lambda_
reconcile_ strid The unique Id of the lambda to used during the user reconcile process to map custom claims from the external identity provider to the FusionAuth user.
- linking_
strategy str The linking strategy to use when creating the link between the {idp_display_name} Identity Provider and the user.
- scope str
The top-level space separated scope that you are requesting from Apple.
- tenant_
configurations Sequence[FusionAuth Idp Apple Tenant Configuration Args] The configuration for each Tenant that limits the number of links a user may have for a particular identity provider.
- String
The top-level button text to use on the FusionAuth login page for this Identity Provider.
- key
Id String The unique Id of the private key downloaded from Apple and imported into Key Master that will be used to sign the client secret.
- services
Id String The unique Id of the private key downloaded from Apple and imported into Key Master that will be used to sign the client secret.
- team
Id String The Apple App ID Prefix, or Team ID found in your Apple Developer Account which has been configured for Sign in with Apple.
- application
Configurations List<Property Map> The configuration for each Application that the identity provider is enabled for.
- debug Boolean
Determines if debug is enabled for this provider. When enabled, each time this provider is invoked to reconcile a login an Event Log will be created.
- enabled Boolean
Determines if this provider is enabled. If it is false then it will be disabled globally.
- lambda
Reconcile StringId The unique Id of the lambda to used during the user reconcile process to map custom claims from the external identity provider to the FusionAuth user.
- linking
Strategy String The linking strategy to use when creating the link between the {idp_display_name} Identity Provider and the user.
- scope String
The top-level space separated scope that you are requesting from Apple.
- tenant
Configurations List<Property Map> The configuration for each Tenant that limits the number of links a user may have for a particular identity provider.
Outputs
All input properties are implicitly available as output properties. Additionally, the FusionAuthIdpApple resource produces the following output properties:
- Id string
The provider-assigned unique ID for this managed resource.
- Id string
The provider-assigned unique ID for this managed resource.
- id String
The provider-assigned unique ID for this managed resource.
- id string
The provider-assigned unique ID for this managed resource.
- id str
The provider-assigned unique ID for this managed resource.
- id String
The provider-assigned unique ID for this managed resource.
Look up Existing FusionAuthIdpApple Resource
Get an existing FusionAuthIdpApple resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: FusionAuthIdpAppleState, opts?: CustomResourceOptions): FusionAuthIdpApple
@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
application_configurations: Optional[Sequence[FusionAuthIdpAppleApplicationConfigurationArgs]] = None,
button_text: Optional[str] = None,
debug: Optional[bool] = None,
enabled: Optional[bool] = None,
key_id: Optional[str] = None,
lambda_reconcile_id: Optional[str] = None,
linking_strategy: Optional[str] = None,
scope: Optional[str] = None,
services_id: Optional[str] = None,
team_id: Optional[str] = None,
tenant_configurations: Optional[Sequence[FusionAuthIdpAppleTenantConfigurationArgs]] = None) -> FusionAuthIdpApple
func GetFusionAuthIdpApple(ctx *Context, name string, id IDInput, state *FusionAuthIdpAppleState, opts ...ResourceOption) (*FusionAuthIdpApple, error)
public static FusionAuthIdpApple Get(string name, Input<string> id, FusionAuthIdpAppleState? state, CustomResourceOptions? opts = null)
public static FusionAuthIdpApple get(String name, Output<String> id, FusionAuthIdpAppleState state, CustomResourceOptions options)
Resource lookup is not supported in YAML
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- Application
Configurations List<theogravity.Fusionauth. Inputs. Fusion Auth Idp Apple Application Configuration Args> The configuration for each Application that the identity provider is enabled for.
- string
The top-level button text to use on the FusionAuth login page for this Identity Provider.
- Debug bool
Determines if debug is enabled for this provider. When enabled, each time this provider is invoked to reconcile a login an Event Log will be created.
- Enabled bool
Determines if this provider is enabled. If it is false then it will be disabled globally.
- Key
Id string The unique Id of the private key downloaded from Apple and imported into Key Master that will be used to sign the client secret.
- Lambda
Reconcile stringId The unique Id of the lambda to used during the user reconcile process to map custom claims from the external identity provider to the FusionAuth user.
- Linking
Strategy string The linking strategy to use when creating the link between the {idp_display_name} Identity Provider and the user.
- Scope string
The top-level space separated scope that you are requesting from Apple.
- Services
Id string The unique Id of the private key downloaded from Apple and imported into Key Master that will be used to sign the client secret.
- Team
Id string The Apple App ID Prefix, or Team ID found in your Apple Developer Account which has been configured for Sign in with Apple.
- Tenant
Configurations List<theogravity.Fusionauth. Inputs. Fusion Auth Idp Apple Tenant Configuration Args> The configuration for each Tenant that limits the number of links a user may have for a particular identity provider.
- Application
Configurations []FusionAuth Idp Apple Application Configuration Args The configuration for each Application that the identity provider is enabled for.
- string
The top-level button text to use on the FusionAuth login page for this Identity Provider.
- Debug bool
Determines if debug is enabled for this provider. When enabled, each time this provider is invoked to reconcile a login an Event Log will be created.
- Enabled bool
Determines if this provider is enabled. If it is false then it will be disabled globally.
- Key
Id string The unique Id of the private key downloaded from Apple and imported into Key Master that will be used to sign the client secret.
- Lambda
Reconcile stringId The unique Id of the lambda to used during the user reconcile process to map custom claims from the external identity provider to the FusionAuth user.
- Linking
Strategy string The linking strategy to use when creating the link between the {idp_display_name} Identity Provider and the user.
- Scope string
The top-level space separated scope that you are requesting from Apple.
- Services
Id string The unique Id of the private key downloaded from Apple and imported into Key Master that will be used to sign the client secret.
- Team
Id string The Apple App ID Prefix, or Team ID found in your Apple Developer Account which has been configured for Sign in with Apple.
- Tenant
Configurations []FusionAuth Idp Apple Tenant Configuration Args The configuration for each Tenant that limits the number of links a user may have for a particular identity provider.
- application
Configurations List<FusionAuth Idp Apple Application Configuration Args> The configuration for each Application that the identity provider is enabled for.
- String
The top-level button text to use on the FusionAuth login page for this Identity Provider.
- debug Boolean
Determines if debug is enabled for this provider. When enabled, each time this provider is invoked to reconcile a login an Event Log will be created.
- enabled Boolean
Determines if this provider is enabled. If it is false then it will be disabled globally.
- key
Id String The unique Id of the private key downloaded from Apple and imported into Key Master that will be used to sign the client secret.
- lambda
Reconcile StringId The unique Id of the lambda to used during the user reconcile process to map custom claims from the external identity provider to the FusionAuth user.
- linking
Strategy String The linking strategy to use when creating the link between the {idp_display_name} Identity Provider and the user.
- scope String
The top-level space separated scope that you are requesting from Apple.
- services
Id String The unique Id of the private key downloaded from Apple and imported into Key Master that will be used to sign the client secret.
- team
Id String The Apple App ID Prefix, or Team ID found in your Apple Developer Account which has been configured for Sign in with Apple.
- tenant
Configurations List<FusionAuth Idp Apple Tenant Configuration Args> The configuration for each Tenant that limits the number of links a user may have for a particular identity provider.
- application
Configurations FusionAuth Idp Apple Application Configuration Args[] The configuration for each Application that the identity provider is enabled for.
- string
The top-level button text to use on the FusionAuth login page for this Identity Provider.
- debug boolean
Determines if debug is enabled for this provider. When enabled, each time this provider is invoked to reconcile a login an Event Log will be created.
- enabled boolean
Determines if this provider is enabled. If it is false then it will be disabled globally.
- key
Id string The unique Id of the private key downloaded from Apple and imported into Key Master that will be used to sign the client secret.
- lambda
Reconcile stringId The unique Id of the lambda to used during the user reconcile process to map custom claims from the external identity provider to the FusionAuth user.
- linking
Strategy string The linking strategy to use when creating the link between the {idp_display_name} Identity Provider and the user.
- scope string
The top-level space separated scope that you are requesting from Apple.
- services
Id string The unique Id of the private key downloaded from Apple and imported into Key Master that will be used to sign the client secret.
- team
Id string The Apple App ID Prefix, or Team ID found in your Apple Developer Account which has been configured for Sign in with Apple.
- tenant
Configurations FusionAuth Idp Apple Tenant Configuration Args[] The configuration for each Tenant that limits the number of links a user may have for a particular identity provider.
- application_
configurations Sequence[FusionAuth Idp Apple Application Configuration Args] The configuration for each Application that the identity provider is enabled for.
- str
The top-level button text to use on the FusionAuth login page for this Identity Provider.
- debug bool
Determines if debug is enabled for this provider. When enabled, each time this provider is invoked to reconcile a login an Event Log will be created.
- enabled bool
Determines if this provider is enabled. If it is false then it will be disabled globally.
- key_
id str The unique Id of the private key downloaded from Apple and imported into Key Master that will be used to sign the client secret.
- lambda_
reconcile_ strid The unique Id of the lambda to used during the user reconcile process to map custom claims from the external identity provider to the FusionAuth user.
- linking_
strategy str The linking strategy to use when creating the link between the {idp_display_name} Identity Provider and the user.
- scope str
The top-level space separated scope that you are requesting from Apple.
- services_
id str The unique Id of the private key downloaded from Apple and imported into Key Master that will be used to sign the client secret.
- team_
id str The Apple App ID Prefix, or Team ID found in your Apple Developer Account which has been configured for Sign in with Apple.
- tenant_
configurations Sequence[FusionAuth Idp Apple Tenant Configuration Args] The configuration for each Tenant that limits the number of links a user may have for a particular identity provider.
- application
Configurations List<Property Map> The configuration for each Application that the identity provider is enabled for.
- String
The top-level button text to use on the FusionAuth login page for this Identity Provider.
- debug Boolean
Determines if debug is enabled for this provider. When enabled, each time this provider is invoked to reconcile a login an Event Log will be created.
- enabled Boolean
Determines if this provider is enabled. If it is false then it will be disabled globally.
- key
Id String The unique Id of the private key downloaded from Apple and imported into Key Master that will be used to sign the client secret.
- lambda
Reconcile StringId The unique Id of the lambda to used during the user reconcile process to map custom claims from the external identity provider to the FusionAuth user.
- linking
Strategy String The linking strategy to use when creating the link between the {idp_display_name} Identity Provider and the user.
- scope String
The top-level space separated scope that you are requesting from Apple.
- services
Id String The unique Id of the private key downloaded from Apple and imported into Key Master that will be used to sign the client secret.
- team
Id String The Apple App ID Prefix, or Team ID found in your Apple Developer Account which has been configured for Sign in with Apple.
- tenant
Configurations List<Property Map> The configuration for each Tenant that limits the number of links a user may have for a particular identity provider.
Supporting Types
FusionAuthIdpAppleApplicationConfiguration
- Application
Id string ID of the Application to apply this configuration to.
- string
The top-level button text to use on the FusionAuth login page for this Identity Provider.
- Create
Registration bool Determines if a UserRegistration is created for the User automatically or not. If a user doesn’t exist in FusionAuth and logs in through an identity provider, this boolean controls whether or not FusionAuth creates a registration for the User in the Application they are logging into.
- Enabled bool
Determines if this provider is enabled. If it is false then it will be disabled globally.
- Key
Id string The unique Id of the private key downloaded from Apple and imported into Key Master that will be used to sign the client secret.
- Scope string
The top-level space separated scope that you are requesting from Apple.
- Services
Id string The unique Id of the private key downloaded from Apple and imported into Key Master that will be used to sign the client secret.
- Team
Id string The Apple App ID Prefix, or Team ID found in your Apple Developer Account which has been configured for Sign in with Apple.
- Application
Id string ID of the Application to apply this configuration to.
- string
The top-level button text to use on the FusionAuth login page for this Identity Provider.
- Create
Registration bool Determines if a UserRegistration is created for the User automatically or not. If a user doesn’t exist in FusionAuth and logs in through an identity provider, this boolean controls whether or not FusionAuth creates a registration for the User in the Application they are logging into.
- Enabled bool
Determines if this provider is enabled. If it is false then it will be disabled globally.
- Key
Id string The unique Id of the private key downloaded from Apple and imported into Key Master that will be used to sign the client secret.
- Scope string
The top-level space separated scope that you are requesting from Apple.
- Services
Id string The unique Id of the private key downloaded from Apple and imported into Key Master that will be used to sign the client secret.
- Team
Id string The Apple App ID Prefix, or Team ID found in your Apple Developer Account which has been configured for Sign in with Apple.
- application
Id String ID of the Application to apply this configuration to.
- String
The top-level button text to use on the FusionAuth login page for this Identity Provider.
- create
Registration Boolean Determines if a UserRegistration is created for the User automatically or not. If a user doesn’t exist in FusionAuth and logs in through an identity provider, this boolean controls whether or not FusionAuth creates a registration for the User in the Application they are logging into.
- enabled Boolean
Determines if this provider is enabled. If it is false then it will be disabled globally.
- key
Id String The unique Id of the private key downloaded from Apple and imported into Key Master that will be used to sign the client secret.
- scope String
The top-level space separated scope that you are requesting from Apple.
- services
Id String The unique Id of the private key downloaded from Apple and imported into Key Master that will be used to sign the client secret.
- team
Id String The Apple App ID Prefix, or Team ID found in your Apple Developer Account which has been configured for Sign in with Apple.
- application
Id string ID of the Application to apply this configuration to.
- string
The top-level button text to use on the FusionAuth login page for this Identity Provider.
- create
Registration boolean Determines if a UserRegistration is created for the User automatically or not. If a user doesn’t exist in FusionAuth and logs in through an identity provider, this boolean controls whether or not FusionAuth creates a registration for the User in the Application they are logging into.
- enabled boolean
Determines if this provider is enabled. If it is false then it will be disabled globally.
- key
Id string The unique Id of the private key downloaded from Apple and imported into Key Master that will be used to sign the client secret.
- scope string
The top-level space separated scope that you are requesting from Apple.
- services
Id string The unique Id of the private key downloaded from Apple and imported into Key Master that will be used to sign the client secret.
- team
Id string The Apple App ID Prefix, or Team ID found in your Apple Developer Account which has been configured for Sign in with Apple.
- application_
id str ID of the Application to apply this configuration to.
- str
The top-level button text to use on the FusionAuth login page for this Identity Provider.
- create_
registration bool Determines if a UserRegistration is created for the User automatically or not. If a user doesn’t exist in FusionAuth and logs in through an identity provider, this boolean controls whether or not FusionAuth creates a registration for the User in the Application they are logging into.
- enabled bool
Determines if this provider is enabled. If it is false then it will be disabled globally.
- key_
id str The unique Id of the private key downloaded from Apple and imported into Key Master that will be used to sign the client secret.
- scope str
The top-level space separated scope that you are requesting from Apple.
- services_
id str The unique Id of the private key downloaded from Apple and imported into Key Master that will be used to sign the client secret.
- team_
id str The Apple App ID Prefix, or Team ID found in your Apple Developer Account which has been configured for Sign in with Apple.
- application
Id String ID of the Application to apply this configuration to.
- String
The top-level button text to use on the FusionAuth login page for this Identity Provider.
- create
Registration Boolean Determines if a UserRegistration is created for the User automatically or not. If a user doesn’t exist in FusionAuth and logs in through an identity provider, this boolean controls whether or not FusionAuth creates a registration for the User in the Application they are logging into.
- enabled Boolean
Determines if this provider is enabled. If it is false then it will be disabled globally.
- key
Id String The unique Id of the private key downloaded from Apple and imported into Key Master that will be used to sign the client secret.
- scope String
The top-level space separated scope that you are requesting from Apple.
- services
Id String The unique Id of the private key downloaded from Apple and imported into Key Master that will be used to sign the client secret.
- team
Id String The Apple App ID Prefix, or Team ID found in your Apple Developer Account which has been configured for Sign in with Apple.
FusionAuthIdpAppleTenantConfiguration
- Limit
User boolLink Count Enabled When enabled, the number of identity provider links a user may create is enforced by maximumLinks.
- Limit
User intLink Count Maximum Links Determines if this provider is enabled. If it is false then it will be disabled globally.
- Tenant
Id string The unique Id of the tenant that this configuration applies to.
- Limit
User boolLink Count Enabled When enabled, the number of identity provider links a user may create is enforced by maximumLinks.
- Limit
User intLink Count Maximum Links Determines if this provider is enabled. If it is false then it will be disabled globally.
- Tenant
Id string The unique Id of the tenant that this configuration applies to.
- limit
User BooleanLink Count Enabled When enabled, the number of identity provider links a user may create is enforced by maximumLinks.
- limit
User IntegerLink Count Maximum Links Determines if this provider is enabled. If it is false then it will be disabled globally.
- tenant
Id String The unique Id of the tenant that this configuration applies to.
- limit
User booleanLink Count Enabled When enabled, the number of identity provider links a user may create is enforced by maximumLinks.
- limit
User numberLink Count Maximum Links Determines if this provider is enabled. If it is false then it will be disabled globally.
- tenant
Id string The unique Id of the tenant that this configuration applies to.
- limit_
user_ boollink_ count_ enabled When enabled, the number of identity provider links a user may create is enforced by maximumLinks.
- limit_
user_ intlink_ count_ maximum_ links Determines if this provider is enabled. If it is false then it will be disabled globally.
- tenant_
id str The unique Id of the tenant that this configuration applies to.
- limit
User BooleanLink Count Enabled When enabled, the number of identity provider links a user may create is enforced by maximumLinks.
- limit
User NumberLink Count Maximum Links Determines if this provider is enabled. If it is false then it will be disabled globally.
- tenant
Id String The unique Id of the tenant that this configuration applies to.
Package Details
- Repository
- fusionauth theogravity/pulumi-fusionauth
- License
- MIT
- Notes
This Pulumi package is based on the
fusionauth
Terraform Provider.