fusionauth logo
FusionAuth v2.17.0, Mar 24 23

fusionauth.FusionAuthIdpGoogle

Explore with Pulumi AI

# Google Identity Provider Resource

The Google identity provider type will use the Google OAuth v2.0 login API. it will provide a Login with Google button on FusionAuth’s login page that will leverage the Google login pop-up dialog. Additionally, this identity provider will call Google’s /oauth2/v3/tokeninfo API to load additional details about the user and store them in FusionAuth.

The email address returned by the Google Token info API will be used to create or lookup the existing user. Additional claims returned by Google can be used to reconcile the User to FusionAuth by using a Google Reconcile Lambda. Unless you assign a reconcile lambda to this provider, on the email address will be used from the available claims returned by Google.

FusionAuth will also store the Google access_token that is returned from the login pop-up dialog in the UserRegistration object inside the tokens Map. This Map stores the tokens from the various identity providers so that you can use them in your application to call their APIs.

Google Identity Providers API

Example Usage

using System.Collections.Generic;
using Pulumi;
using Fusionauth = theogravity.Fusionauth;

return await Deployment.RunAsync(() => 
{
    var google = new Fusionauth.FusionAuthIdpGoogle("google", new()
    {
        ApplicationConfigurations = new[]
        {
            new Fusionauth.Inputs.FusionAuthIdpGoogleApplicationConfigurationArgs
            {
                ApplicationId = fusionauth_application.Myapp.Id,
                CreateRegistration = true,
                Enabled = true,
            },
        },
        ButtonText = "Login with Google",
        Debug = false,
        ClientId = "254311943570-8e2i2hds0qdnee4124socceeh2q2mtjl.apps.googleusercontent.com",
        ClientSecret = "BRr7x7xz_-cXxIFznBDIdxF1",
        Scope = "profile",
    });

});
package main

import (
	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
	"github.com/theogravity/pulumi-fusionauth/sdk/v2/go/fusionauth"
)

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := fusionauth.NewFusionAuthIdpGoogle(ctx, "google", &fusionauth.FusionAuthIdpGoogleArgs{
			ApplicationConfigurations: fusionauth.FusionAuthIdpGoogleApplicationConfigurationArray{
				&fusionauth.FusionAuthIdpGoogleApplicationConfigurationArgs{
					ApplicationId:      pulumi.Any(fusionauth_application.Myapp.Id),
					CreateRegistration: pulumi.Bool(true),
					Enabled:            pulumi.Bool(true),
				},
			},
			ButtonText:   pulumi.String("Login with Google"),
			Debug:        pulumi.Bool(false),
			ClientId:     pulumi.String("254311943570-8e2i2hds0qdnee4124socceeh2q2mtjl.apps.googleusercontent.com"),
			ClientSecret: pulumi.String("BRr7x7xz_-cXxIFznBDIdxF1"),
			Scope:        pulumi.String("profile"),
		})
		if err != nil {
			return err
		}
		return nil
	})
}
package generated_program;

import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.fusionauth.FusionAuthIdpGoogle;
import com.pulumi.fusionauth.FusionAuthIdpGoogleArgs;
import com.pulumi.fusionauth.inputs.FusionAuthIdpGoogleApplicationConfigurationArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;

public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }

    public static void stack(Context ctx) {
        var google = new FusionAuthIdpGoogle("google", FusionAuthIdpGoogleArgs.builder()        
            .applicationConfigurations(FusionAuthIdpGoogleApplicationConfigurationArgs.builder()
                .applicationId(fusionauth_application.myapp().id())
                .createRegistration(true)
                .enabled(true)
                .build())
            .buttonText("Login with Google")
            .debug(false)
            .clientId("254311943570-8e2i2hds0qdnee4124socceeh2q2mtjl.apps.googleusercontent.com")
            .clientSecret("BRr7x7xz_-cXxIFznBDIdxF1")
            .scope("profile")
            .build());

    }
}
import pulumi
import theogravity_pulumi-fusionauth as fusionauth

google = fusionauth.FusionAuthIdpGoogle("google",
    application_configurations=[fusionauth.FusionAuthIdpGoogleApplicationConfigurationArgs(
        application_id=fusionauth_application["myapp"]["id"],
        create_registration=True,
        enabled=True,
    )],
    button_text="Login with Google",
    debug=False,
    client_id="254311943570-8e2i2hds0qdnee4124socceeh2q2mtjl.apps.googleusercontent.com",
    client_secret="BRr7x7xz_-cXxIFznBDIdxF1",
    scope="profile")
import * as pulumi from "@pulumi/pulumi";
import * as fusionauth from "pulumi-fusionauth";

const google = new fusionauth.FusionAuthIdpGoogle("google", {
    applicationConfigurations: [{
        applicationId: fusionauth_application.myapp.id,
        createRegistration: true,
        enabled: true,
    }],
    buttonText: "Login with Google",
    debug: false,
    clientId: "254311943570-8e2i2hds0qdnee4124socceeh2q2mtjl.apps.googleusercontent.com",
    clientSecret: "BRr7x7xz_-cXxIFznBDIdxF1",
    scope: "profile",
});
resources:
  google:
    type: fusionauth:FusionAuthIdpGoogle
    properties:
      applicationConfigurations:
        - applicationId: ${fusionauth_application.myapp.id}
          createRegistration: true
          enabled: true
      buttonText: Login with Google
      debug: false
      clientId: 254311943570-8e2i2hds0qdnee4124socceeh2q2mtjl.apps.googleusercontent.com
      clientSecret: BRr7x7xz_-cXxIFznBDIdxF1
      scope: profile

Create FusionAuthIdpGoogle Resource

new FusionAuthIdpGoogle(name: string, args: FusionAuthIdpGoogleArgs, opts?: CustomResourceOptions);
@overload
def FusionAuthIdpGoogle(resource_name: str,
                        opts: Optional[ResourceOptions] = None,
                        application_configurations: Optional[Sequence[FusionAuthIdpGoogleApplicationConfigurationArgs]] = None,
                        button_text: Optional[str] = None,
                        client_id: Optional[str] = None,
                        client_secret: Optional[str] = None,
                        debug: Optional[bool] = None,
                        enabled: Optional[bool] = None,
                        lambda_reconcile_id: Optional[str] = None,
                        linking_strategy: Optional[str] = None,
                        login_method: Optional[str] = None,
                        scope: Optional[str] = None,
                        tenant_configurations: Optional[Sequence[FusionAuthIdpGoogleTenantConfigurationArgs]] = None)
@overload
def FusionAuthIdpGoogle(resource_name: str,
                        args: FusionAuthIdpGoogleArgs,
                        opts: Optional[ResourceOptions] = None)
func NewFusionAuthIdpGoogle(ctx *Context, name string, args FusionAuthIdpGoogleArgs, opts ...ResourceOption) (*FusionAuthIdpGoogle, error)
public FusionAuthIdpGoogle(string name, FusionAuthIdpGoogleArgs args, CustomResourceOptions? opts = null)
public FusionAuthIdpGoogle(String name, FusionAuthIdpGoogleArgs args)
public FusionAuthIdpGoogle(String name, FusionAuthIdpGoogleArgs args, CustomResourceOptions options)
type: fusionauth:FusionAuthIdpGoogle
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.

name string
The unique name of the resource.
args FusionAuthIdpGoogleArgs
The arguments to resource properties.
opts CustomResourceOptions
Bag of options to control resource's behavior.
resource_name str
The unique name of the resource.
args FusionAuthIdpGoogleArgs
The arguments to resource properties.
opts ResourceOptions
Bag of options to control resource's behavior.
ctx Context
Context object for the current deployment.
name string
The unique name of the resource.
args FusionAuthIdpGoogleArgs
The arguments to resource properties.
opts ResourceOption
Bag of options to control resource's behavior.
name string
The unique name of the resource.
args FusionAuthIdpGoogleArgs
The arguments to resource properties.
opts CustomResourceOptions
Bag of options to control resource's behavior.
name String
The unique name of the resource.
args FusionAuthIdpGoogleArgs
The arguments to resource properties.
options CustomResourceOptions
Bag of options to control resource's behavior.

FusionAuthIdpGoogle Resource Properties

To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

Inputs

The FusionAuthIdpGoogle resource accepts the following input properties:

ButtonText string

The top-level button text to use on the FusionAuth login page for this Identity Provider.

ClientId string

The top-level Google client id for your Application. This value is retrieved from the Google developer website when you setup your Google developer account.

ApplicationConfigurations List<theogravity.Fusionauth.Inputs.FusionAuthIdpGoogleApplicationConfigurationArgs>

The configuration for each Application that the identity provider is enabled for.

ClientSecret string

The top-level client secret to use with the Google Identity Provider when retrieving the long-lived token. This value is retrieved from the Google developer website when you setup your Google developer account.

Debug bool

Determines if debug is enabled for this provider. When enabled, each time this provider is invoked to reconcile a login an Event Log will be created.

Enabled bool

Determines if this provider is enabled. If it is false then it will be disabled globally.

LambdaReconcileId string

The unique Id of the lambda to used during the user reconcile process to map custom claims from the external identity provider to the FusionAuth user.

LinkingStrategy string

The linking strategy to use when creating the link between the {idp_display_name} Identity Provider and the user.

LoginMethod string

The login method to use for this Identity Provider.

Scope string

The top-level scope that you are requesting from Google.

TenantConfigurations List<theogravity.Fusionauth.Inputs.FusionAuthIdpGoogleTenantConfigurationArgs>

The configuration for each Tenant that limits the number of links a user may have for a particular identity provider.

ButtonText string

The top-level button text to use on the FusionAuth login page for this Identity Provider.

ClientId string

The top-level Google client id for your Application. This value is retrieved from the Google developer website when you setup your Google developer account.

ApplicationConfigurations []FusionAuthIdpGoogleApplicationConfigurationArgs

The configuration for each Application that the identity provider is enabled for.

ClientSecret string

The top-level client secret to use with the Google Identity Provider when retrieving the long-lived token. This value is retrieved from the Google developer website when you setup your Google developer account.

Debug bool

Determines if debug is enabled for this provider. When enabled, each time this provider is invoked to reconcile a login an Event Log will be created.

Enabled bool

Determines if this provider is enabled. If it is false then it will be disabled globally.

LambdaReconcileId string

The unique Id of the lambda to used during the user reconcile process to map custom claims from the external identity provider to the FusionAuth user.

LinkingStrategy string

The linking strategy to use when creating the link between the {idp_display_name} Identity Provider and the user.

LoginMethod string

The login method to use for this Identity Provider.

Scope string

The top-level scope that you are requesting from Google.

TenantConfigurations []FusionAuthIdpGoogleTenantConfigurationArgs

The configuration for each Tenant that limits the number of links a user may have for a particular identity provider.

buttonText String

The top-level button text to use on the FusionAuth login page for this Identity Provider.

clientId String

The top-level Google client id for your Application. This value is retrieved from the Google developer website when you setup your Google developer account.

applicationConfigurations List<FusionAuthIdpGoogleApplicationConfigurationArgs>

The configuration for each Application that the identity provider is enabled for.

clientSecret String

The top-level client secret to use with the Google Identity Provider when retrieving the long-lived token. This value is retrieved from the Google developer website when you setup your Google developer account.

debug Boolean

Determines if debug is enabled for this provider. When enabled, each time this provider is invoked to reconcile a login an Event Log will be created.

enabled Boolean

Determines if this provider is enabled. If it is false then it will be disabled globally.

lambdaReconcileId String

The unique Id of the lambda to used during the user reconcile process to map custom claims from the external identity provider to the FusionAuth user.

linkingStrategy String

The linking strategy to use when creating the link between the {idp_display_name} Identity Provider and the user.

loginMethod String

The login method to use for this Identity Provider.

scope String

The top-level scope that you are requesting from Google.

tenantConfigurations List<FusionAuthIdpGoogleTenantConfigurationArgs>

The configuration for each Tenant that limits the number of links a user may have for a particular identity provider.

buttonText string

The top-level button text to use on the FusionAuth login page for this Identity Provider.

clientId string

The top-level Google client id for your Application. This value is retrieved from the Google developer website when you setup your Google developer account.

applicationConfigurations FusionAuthIdpGoogleApplicationConfigurationArgs[]

The configuration for each Application that the identity provider is enabled for.

clientSecret string

The top-level client secret to use with the Google Identity Provider when retrieving the long-lived token. This value is retrieved from the Google developer website when you setup your Google developer account.

debug boolean

Determines if debug is enabled for this provider. When enabled, each time this provider is invoked to reconcile a login an Event Log will be created.

enabled boolean

Determines if this provider is enabled. If it is false then it will be disabled globally.

lambdaReconcileId string

The unique Id of the lambda to used during the user reconcile process to map custom claims from the external identity provider to the FusionAuth user.

linkingStrategy string

The linking strategy to use when creating the link between the {idp_display_name} Identity Provider and the user.

loginMethod string

The login method to use for this Identity Provider.

scope string

The top-level scope that you are requesting from Google.

tenantConfigurations FusionAuthIdpGoogleTenantConfigurationArgs[]

The configuration for each Tenant that limits the number of links a user may have for a particular identity provider.

button_text str

The top-level button text to use on the FusionAuth login page for this Identity Provider.

client_id str

The top-level Google client id for your Application. This value is retrieved from the Google developer website when you setup your Google developer account.

application_configurations Sequence[FusionAuthIdpGoogleApplicationConfigurationArgs]

The configuration for each Application that the identity provider is enabled for.

client_secret str

The top-level client secret to use with the Google Identity Provider when retrieving the long-lived token. This value is retrieved from the Google developer website when you setup your Google developer account.

debug bool

Determines if debug is enabled for this provider. When enabled, each time this provider is invoked to reconcile a login an Event Log will be created.

enabled bool

Determines if this provider is enabled. If it is false then it will be disabled globally.

lambda_reconcile_id str

The unique Id of the lambda to used during the user reconcile process to map custom claims from the external identity provider to the FusionAuth user.

linking_strategy str

The linking strategy to use when creating the link between the {idp_display_name} Identity Provider and the user.

login_method str

The login method to use for this Identity Provider.

scope str

The top-level scope that you are requesting from Google.

tenant_configurations Sequence[FusionAuthIdpGoogleTenantConfigurationArgs]

The configuration for each Tenant that limits the number of links a user may have for a particular identity provider.

buttonText String

The top-level button text to use on the FusionAuth login page for this Identity Provider.

clientId String

The top-level Google client id for your Application. This value is retrieved from the Google developer website when you setup your Google developer account.

applicationConfigurations List<Property Map>

The configuration for each Application that the identity provider is enabled for.

clientSecret String

The top-level client secret to use with the Google Identity Provider when retrieving the long-lived token. This value is retrieved from the Google developer website when you setup your Google developer account.

debug Boolean

Determines if debug is enabled for this provider. When enabled, each time this provider is invoked to reconcile a login an Event Log will be created.

enabled Boolean

Determines if this provider is enabled. If it is false then it will be disabled globally.

lambdaReconcileId String

The unique Id of the lambda to used during the user reconcile process to map custom claims from the external identity provider to the FusionAuth user.

linkingStrategy String

The linking strategy to use when creating the link between the {idp_display_name} Identity Provider and the user.

loginMethod String

The login method to use for this Identity Provider.

scope String

The top-level scope that you are requesting from Google.

tenantConfigurations List<Property Map>

The configuration for each Tenant that limits the number of links a user may have for a particular identity provider.

Outputs

All input properties are implicitly available as output properties. Additionally, the FusionAuthIdpGoogle resource produces the following output properties:

Id string

The provider-assigned unique ID for this managed resource.

Id string

The provider-assigned unique ID for this managed resource.

id String

The provider-assigned unique ID for this managed resource.

id string

The provider-assigned unique ID for this managed resource.

id str

The provider-assigned unique ID for this managed resource.

id String

The provider-assigned unique ID for this managed resource.

Look up Existing FusionAuthIdpGoogle Resource

Get an existing FusionAuthIdpGoogle resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

public static get(name: string, id: Input<ID>, state?: FusionAuthIdpGoogleState, opts?: CustomResourceOptions): FusionAuthIdpGoogle
@staticmethod
def get(resource_name: str,
        id: str,
        opts: Optional[ResourceOptions] = None,
        application_configurations: Optional[Sequence[FusionAuthIdpGoogleApplicationConfigurationArgs]] = None,
        button_text: Optional[str] = None,
        client_id: Optional[str] = None,
        client_secret: Optional[str] = None,
        debug: Optional[bool] = None,
        enabled: Optional[bool] = None,
        lambda_reconcile_id: Optional[str] = None,
        linking_strategy: Optional[str] = None,
        login_method: Optional[str] = None,
        scope: Optional[str] = None,
        tenant_configurations: Optional[Sequence[FusionAuthIdpGoogleTenantConfigurationArgs]] = None) -> FusionAuthIdpGoogle
func GetFusionAuthIdpGoogle(ctx *Context, name string, id IDInput, state *FusionAuthIdpGoogleState, opts ...ResourceOption) (*FusionAuthIdpGoogle, error)
public static FusionAuthIdpGoogle Get(string name, Input<string> id, FusionAuthIdpGoogleState? state, CustomResourceOptions? opts = null)
public static FusionAuthIdpGoogle get(String name, Output<String> id, FusionAuthIdpGoogleState state, CustomResourceOptions options)
Resource lookup is not supported in YAML
name
The unique name of the resulting resource.
id
The unique provider ID of the resource to lookup.
state
Any extra arguments used during the lookup.
opts
A bag of options that control this resource's behavior.
resource_name
The unique name of the resulting resource.
id
The unique provider ID of the resource to lookup.
name
The unique name of the resulting resource.
id
The unique provider ID of the resource to lookup.
state
Any extra arguments used during the lookup.
opts
A bag of options that control this resource's behavior.
name
The unique name of the resulting resource.
id
The unique provider ID of the resource to lookup.
state
Any extra arguments used during the lookup.
opts
A bag of options that control this resource's behavior.
name
The unique name of the resulting resource.
id
The unique provider ID of the resource to lookup.
state
Any extra arguments used during the lookup.
opts
A bag of options that control this resource's behavior.
The following state arguments are supported:
ApplicationConfigurations List<theogravity.Fusionauth.Inputs.FusionAuthIdpGoogleApplicationConfigurationArgs>

The configuration for each Application that the identity provider is enabled for.

ButtonText string

The top-level button text to use on the FusionAuth login page for this Identity Provider.

ClientId string

The top-level Google client id for your Application. This value is retrieved from the Google developer website when you setup your Google developer account.

ClientSecret string

The top-level client secret to use with the Google Identity Provider when retrieving the long-lived token. This value is retrieved from the Google developer website when you setup your Google developer account.

Debug bool

Determines if debug is enabled for this provider. When enabled, each time this provider is invoked to reconcile a login an Event Log will be created.

Enabled bool

Determines if this provider is enabled. If it is false then it will be disabled globally.

LambdaReconcileId string

The unique Id of the lambda to used during the user reconcile process to map custom claims from the external identity provider to the FusionAuth user.

LinkingStrategy string

The linking strategy to use when creating the link between the {idp_display_name} Identity Provider and the user.

LoginMethod string

The login method to use for this Identity Provider.

Scope string

The top-level scope that you are requesting from Google.

TenantConfigurations List<theogravity.Fusionauth.Inputs.FusionAuthIdpGoogleTenantConfigurationArgs>

The configuration for each Tenant that limits the number of links a user may have for a particular identity provider.

ApplicationConfigurations []FusionAuthIdpGoogleApplicationConfigurationArgs

The configuration for each Application that the identity provider is enabled for.

ButtonText string

The top-level button text to use on the FusionAuth login page for this Identity Provider.

ClientId string

The top-level Google client id for your Application. This value is retrieved from the Google developer website when you setup your Google developer account.

ClientSecret string

The top-level client secret to use with the Google Identity Provider when retrieving the long-lived token. This value is retrieved from the Google developer website when you setup your Google developer account.

Debug bool

Determines if debug is enabled for this provider. When enabled, each time this provider is invoked to reconcile a login an Event Log will be created.

Enabled bool

Determines if this provider is enabled. If it is false then it will be disabled globally.

LambdaReconcileId string

The unique Id of the lambda to used during the user reconcile process to map custom claims from the external identity provider to the FusionAuth user.

LinkingStrategy string

The linking strategy to use when creating the link between the {idp_display_name} Identity Provider and the user.

LoginMethod string

The login method to use for this Identity Provider.

Scope string

The top-level scope that you are requesting from Google.

TenantConfigurations []FusionAuthIdpGoogleTenantConfigurationArgs

The configuration for each Tenant that limits the number of links a user may have for a particular identity provider.

applicationConfigurations List<FusionAuthIdpGoogleApplicationConfigurationArgs>

The configuration for each Application that the identity provider is enabled for.

buttonText String

The top-level button text to use on the FusionAuth login page for this Identity Provider.

clientId String

The top-level Google client id for your Application. This value is retrieved from the Google developer website when you setup your Google developer account.

clientSecret String

The top-level client secret to use with the Google Identity Provider when retrieving the long-lived token. This value is retrieved from the Google developer website when you setup your Google developer account.

debug Boolean

Determines if debug is enabled for this provider. When enabled, each time this provider is invoked to reconcile a login an Event Log will be created.

enabled Boolean

Determines if this provider is enabled. If it is false then it will be disabled globally.

lambdaReconcileId String

The unique Id of the lambda to used during the user reconcile process to map custom claims from the external identity provider to the FusionAuth user.

linkingStrategy String

The linking strategy to use when creating the link between the {idp_display_name} Identity Provider and the user.

loginMethod String

The login method to use for this Identity Provider.

scope String

The top-level scope that you are requesting from Google.

tenantConfigurations List<FusionAuthIdpGoogleTenantConfigurationArgs>

The configuration for each Tenant that limits the number of links a user may have for a particular identity provider.

applicationConfigurations FusionAuthIdpGoogleApplicationConfigurationArgs[]

The configuration for each Application that the identity provider is enabled for.

buttonText string

The top-level button text to use on the FusionAuth login page for this Identity Provider.

clientId string

The top-level Google client id for your Application. This value is retrieved from the Google developer website when you setup your Google developer account.

clientSecret string

The top-level client secret to use with the Google Identity Provider when retrieving the long-lived token. This value is retrieved from the Google developer website when you setup your Google developer account.

debug boolean

Determines if debug is enabled for this provider. When enabled, each time this provider is invoked to reconcile a login an Event Log will be created.

enabled boolean

Determines if this provider is enabled. If it is false then it will be disabled globally.

lambdaReconcileId string

The unique Id of the lambda to used during the user reconcile process to map custom claims from the external identity provider to the FusionAuth user.

linkingStrategy string

The linking strategy to use when creating the link between the {idp_display_name} Identity Provider and the user.

loginMethod string

The login method to use for this Identity Provider.

scope string

The top-level scope that you are requesting from Google.

tenantConfigurations FusionAuthIdpGoogleTenantConfigurationArgs[]

The configuration for each Tenant that limits the number of links a user may have for a particular identity provider.

application_configurations Sequence[FusionAuthIdpGoogleApplicationConfigurationArgs]

The configuration for each Application that the identity provider is enabled for.

button_text str

The top-level button text to use on the FusionAuth login page for this Identity Provider.

client_id str

The top-level Google client id for your Application. This value is retrieved from the Google developer website when you setup your Google developer account.

client_secret str

The top-level client secret to use with the Google Identity Provider when retrieving the long-lived token. This value is retrieved from the Google developer website when you setup your Google developer account.

debug bool

Determines if debug is enabled for this provider. When enabled, each time this provider is invoked to reconcile a login an Event Log will be created.

enabled bool

Determines if this provider is enabled. If it is false then it will be disabled globally.

lambda_reconcile_id str

The unique Id of the lambda to used during the user reconcile process to map custom claims from the external identity provider to the FusionAuth user.

linking_strategy str

The linking strategy to use when creating the link between the {idp_display_name} Identity Provider and the user.

login_method str

The login method to use for this Identity Provider.

scope str

The top-level scope that you are requesting from Google.

tenant_configurations Sequence[FusionAuthIdpGoogleTenantConfigurationArgs]

The configuration for each Tenant that limits the number of links a user may have for a particular identity provider.

applicationConfigurations List<Property Map>

The configuration for each Application that the identity provider is enabled for.

buttonText String

The top-level button text to use on the FusionAuth login page for this Identity Provider.

clientId String

The top-level Google client id for your Application. This value is retrieved from the Google developer website when you setup your Google developer account.

clientSecret String

The top-level client secret to use with the Google Identity Provider when retrieving the long-lived token. This value is retrieved from the Google developer website when you setup your Google developer account.

debug Boolean

Determines if debug is enabled for this provider. When enabled, each time this provider is invoked to reconcile a login an Event Log will be created.

enabled Boolean

Determines if this provider is enabled. If it is false then it will be disabled globally.

lambdaReconcileId String

The unique Id of the lambda to used during the user reconcile process to map custom claims from the external identity provider to the FusionAuth user.

linkingStrategy String

The linking strategy to use when creating the link between the {idp_display_name} Identity Provider and the user.

loginMethod String

The login method to use for this Identity Provider.

scope String

The top-level scope that you are requesting from Google.

tenantConfigurations List<Property Map>

The configuration for each Tenant that limits the number of links a user may have for a particular identity provider.

Supporting Types

FusionAuthIdpGoogleApplicationConfiguration

ApplicationId string

ID of the Application to apply this configuration to.

ButtonText string

The top-level button text to use on the FusionAuth login page for this Identity Provider.

ClientId string

The top-level Google client id for your Application. This value is retrieved from the Google developer website when you setup your Google developer account.

ClientSecret string

The top-level client secret to use with the Google Identity Provider when retrieving the long-lived token. This value is retrieved from the Google developer website when you setup your Google developer account.

CreateRegistration bool

Determines if a UserRegistration is created for the User automatically or not. If a user doesn’t exist in FusionAuth and logs in through an identity provider, this boolean controls whether or not FusionAuth creates a registration for the User in the Application they are logging into.

Enabled bool

Determines if this provider is enabled. If it is false then it will be disabled globally.

Scope string

The top-level scope that you are requesting from Google.

ApplicationId string

ID of the Application to apply this configuration to.

ButtonText string

The top-level button text to use on the FusionAuth login page for this Identity Provider.

ClientId string

The top-level Google client id for your Application. This value is retrieved from the Google developer website when you setup your Google developer account.

ClientSecret string

The top-level client secret to use with the Google Identity Provider when retrieving the long-lived token. This value is retrieved from the Google developer website when you setup your Google developer account.

CreateRegistration bool

Determines if a UserRegistration is created for the User automatically or not. If a user doesn’t exist in FusionAuth and logs in through an identity provider, this boolean controls whether or not FusionAuth creates a registration for the User in the Application they are logging into.

Enabled bool

Determines if this provider is enabled. If it is false then it will be disabled globally.

Scope string

The top-level scope that you are requesting from Google.

applicationId String

ID of the Application to apply this configuration to.

buttonText String

The top-level button text to use on the FusionAuth login page for this Identity Provider.

clientId String

The top-level Google client id for your Application. This value is retrieved from the Google developer website when you setup your Google developer account.

clientSecret String

The top-level client secret to use with the Google Identity Provider when retrieving the long-lived token. This value is retrieved from the Google developer website when you setup your Google developer account.

createRegistration Boolean

Determines if a UserRegistration is created for the User automatically or not. If a user doesn’t exist in FusionAuth and logs in through an identity provider, this boolean controls whether or not FusionAuth creates a registration for the User in the Application they are logging into.

enabled Boolean

Determines if this provider is enabled. If it is false then it will be disabled globally.

scope String

The top-level scope that you are requesting from Google.

applicationId string

ID of the Application to apply this configuration to.

buttonText string

The top-level button text to use on the FusionAuth login page for this Identity Provider.

clientId string

The top-level Google client id for your Application. This value is retrieved from the Google developer website when you setup your Google developer account.

clientSecret string

The top-level client secret to use with the Google Identity Provider when retrieving the long-lived token. This value is retrieved from the Google developer website when you setup your Google developer account.

createRegistration boolean

Determines if a UserRegistration is created for the User automatically or not. If a user doesn’t exist in FusionAuth and logs in through an identity provider, this boolean controls whether or not FusionAuth creates a registration for the User in the Application they are logging into.

enabled boolean

Determines if this provider is enabled. If it is false then it will be disabled globally.

scope string

The top-level scope that you are requesting from Google.

application_id str

ID of the Application to apply this configuration to.

button_text str

The top-level button text to use on the FusionAuth login page for this Identity Provider.

client_id str

The top-level Google client id for your Application. This value is retrieved from the Google developer website when you setup your Google developer account.

client_secret str

The top-level client secret to use with the Google Identity Provider when retrieving the long-lived token. This value is retrieved from the Google developer website when you setup your Google developer account.

create_registration bool

Determines if a UserRegistration is created for the User automatically or not. If a user doesn’t exist in FusionAuth and logs in through an identity provider, this boolean controls whether or not FusionAuth creates a registration for the User in the Application they are logging into.

enabled bool

Determines if this provider is enabled. If it is false then it will be disabled globally.

scope str

The top-level scope that you are requesting from Google.

applicationId String

ID of the Application to apply this configuration to.

buttonText String

The top-level button text to use on the FusionAuth login page for this Identity Provider.

clientId String

The top-level Google client id for your Application. This value is retrieved from the Google developer website when you setup your Google developer account.

clientSecret String

The top-level client secret to use with the Google Identity Provider when retrieving the long-lived token. This value is retrieved from the Google developer website when you setup your Google developer account.

createRegistration Boolean

Determines if a UserRegistration is created for the User automatically or not. If a user doesn’t exist in FusionAuth and logs in through an identity provider, this boolean controls whether or not FusionAuth creates a registration for the User in the Application they are logging into.

enabled Boolean

Determines if this provider is enabled. If it is false then it will be disabled globally.

scope String

The top-level scope that you are requesting from Google.

FusionAuthIdpGoogleTenantConfiguration

LimitUserLinkCountEnabled bool

When enabled, the number of identity provider links a user may create is enforced by maximumLinks.

LimitUserLinkCountMaximumLinks int

Determines if this provider is enabled. If it is false then it will be disabled globally.

TenantId string

The unique Id of the tenant that this configuration applies to.

LimitUserLinkCountEnabled bool

When enabled, the number of identity provider links a user may create is enforced by maximumLinks.

LimitUserLinkCountMaximumLinks int

Determines if this provider is enabled. If it is false then it will be disabled globally.

TenantId string

The unique Id of the tenant that this configuration applies to.

limitUserLinkCountEnabled Boolean

When enabled, the number of identity provider links a user may create is enforced by maximumLinks.

limitUserLinkCountMaximumLinks Integer

Determines if this provider is enabled. If it is false then it will be disabled globally.

tenantId String

The unique Id of the tenant that this configuration applies to.

limitUserLinkCountEnabled boolean

When enabled, the number of identity provider links a user may create is enforced by maximumLinks.

limitUserLinkCountMaximumLinks number

Determines if this provider is enabled. If it is false then it will be disabled globally.

tenantId string

The unique Id of the tenant that this configuration applies to.

limit_user_link_count_enabled bool

When enabled, the number of identity provider links a user may create is enforced by maximumLinks.

limit_user_link_count_maximum_links int

Determines if this provider is enabled. If it is false then it will be disabled globally.

tenant_id str

The unique Id of the tenant that this configuration applies to.

limitUserLinkCountEnabled Boolean

When enabled, the number of identity provider links a user may create is enforced by maximumLinks.

limitUserLinkCountMaximumLinks Number

Determines if this provider is enabled. If it is false then it will be disabled globally.

tenantId String

The unique Id of the tenant that this configuration applies to.

Package Details

Repository
fusionauth theogravity/pulumi-fusionauth
License
MIT
Notes

This Pulumi package is based on the fusionauth Terraform Provider.