Docs Home
hsdp 0.65.3 published on Tuesday, Apr 15, 2025 by philips-software
hsdp.IamClient
Explore with Pulumi AI
hsdp 0.65.3 published on Tuesday, Apr 15, 2025 by philips-software
Provides a resource for managing HSDP IAM client of an application under a proposition.
Example Usage
The following example creates a client
import * as pulumi from "@pulumi/pulumi";
import * as hsdp from "@pulumi/hsdp";
import * as random from "@pulumi/random";
const clientPassword = new random.index.Random_password("clientPassword", {
length: 16,
special: true,
minUpper: 1,
minLower: 1,
minNumeric: 1,
minSpecial: 1,
overrideSpecial: "-!@#.:_?{$",
});
const testclient = new hsdp.IamClient("testclient", {
description: "Test client",
type: "Public",
clientId: "testclient",
password: clientPassword.result,
applicationId: hsdp_iam_application.testtapp.id,
globalReferenceId: "some-ref-here",
scopes: [
"cn",
"introspect",
"email",
"profile",
],
defaultScopes: [
"cn",
"introspect",
],
redirectionUris: [
"https://foo.bar/auth",
"https://testapp.cloud.pcftest.com/auth",
],
responseTypes: [
"code",
"code id_token",
],
});
import pulumi
import pulumi_hsdp as hsdp
import pulumi_random as random
client_password = random.index.Random_password("clientPassword",
length=16,
special=True,
min_upper=1,
min_lower=1,
min_numeric=1,
min_special=1,
override_special=-!@#.:_?{$)
testclient = hsdp.IamClient("testclient",
description="Test client",
type="Public",
client_id="testclient",
password=client_password["result"],
application_id=hsdp_iam_application["testtapp"]["id"],
global_reference_id="some-ref-here",
scopes=[
"cn",
"introspect",
"email",
"profile",
],
default_scopes=[
"cn",
"introspect",
],
redirection_uris=[
"https://foo.bar/auth",
"https://testapp.cloud.pcftest.com/auth",
],
response_types=[
"code",
"code id_token",
])
package main
import (
"github.com/pulumi/pulumi-random/sdk/go/random"
"github.com/pulumi/pulumi-terraform-provider/sdks/go/hsdp/hsdp"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
clientPassword, err := random.NewRandom_password(ctx, "clientPassword", &random.Random_passwordArgs{
Length: 16,
Special: true,
MinUpper: 1,
MinLower: 1,
MinNumeric: 1,
MinSpecial: 1,
OverrideSpecial: "-!@#.:_?{$",
})
if err != nil {
return err
}
_, err = hsdp.NewIamClient(ctx, "testclient", &hsdp.IamClientArgs{
Description: pulumi.String("Test client"),
Type: pulumi.String("Public"),
ClientId: pulumi.String("testclient"),
Password: clientPassword.Result,
ApplicationId: pulumi.Any(hsdp_iam_application.Testtapp.Id),
GlobalReferenceId: pulumi.String("some-ref-here"),
Scopes: pulumi.StringArray{
pulumi.String("cn"),
pulumi.String("introspect"),
pulumi.String("email"),
pulumi.String("profile"),
},
DefaultScopes: pulumi.StringArray{
pulumi.String("cn"),
pulumi.String("introspect"),
},
RedirectionUris: pulumi.StringArray{
pulumi.String("https://foo.bar/auth"),
pulumi.String("https://testapp.cloud.pcftest.com/auth"),
},
ResponseTypes: pulumi.StringArray{
pulumi.String("code"),
pulumi.String("code id_token"),
},
})
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Hsdp = Pulumi.Hsdp;
using Random = Pulumi.Random;
return await Deployment.RunAsync(() =>
{
var clientPassword = new Random.Index.Random_password("clientPassword", new()
{
Length = 16,
Special = true,
MinUpper = 1,
MinLower = 1,
MinNumeric = 1,
MinSpecial = 1,
OverrideSpecial = "-!@#.:_?{$",
});
var testclient = new Hsdp.IamClient("testclient", new()
{
Description = "Test client",
Type = "Public",
ClientId = "testclient",
Password = clientPassword.Result,
ApplicationId = hsdp_iam_application.Testtapp.Id,
GlobalReferenceId = "some-ref-here",
Scopes = new[]
{
"cn",
"introspect",
"email",
"profile",
},
DefaultScopes = new[]
{
"cn",
"introspect",
},
RedirectionUris = new[]
{
"https://foo.bar/auth",
"https://testapp.cloud.pcftest.com/auth",
},
ResponseTypes = new[]
{
"code",
"code id_token",
},
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.random.random_password;
import com.pulumi.random.Random_passwordArgs;
import com.pulumi.hsdp.IamClient;
import com.pulumi.hsdp.IamClientArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var clientPassword = new Random_password("clientPassword", Random_passwordArgs.builder()
.length(16)
.special(true)
.minUpper(1)
.minLower(1)
.minNumeric(1)
.minSpecial(1)
.overrideSpecial("-!@#.:_?{$")
.build());
var testclient = new IamClient("testclient", IamClientArgs.builder()
.description("Test client")
.type("Public")
.clientId("testclient")
.password(clientPassword.result())
.applicationId(hsdp_iam_application.testtapp().id())
.globalReferenceId("some-ref-here")
.scopes(
"cn",
"introspect",
"email",
"profile")
.defaultScopes(
"cn",
"introspect")
.redirectionUris(
"https://foo.bar/auth",
"https://testapp.cloud.pcftest.com/auth")
.responseTypes(
"code",
"code id_token")
.build());
}
}
resources:
testclient:
type: hsdp:IamClient
properties:
description: Test client
type: Public
clientId: testclient
password: ${clientPassword.result}
applicationId: ${hsdp_iam_application.testtapp.id}
globalReferenceId: some-ref-here
scopes:
- cn
- introspect
- email
- profile
defaultScopes:
- cn
- introspect
redirectionUris:
- https://foo.bar/auth
- https://testapp.cloud.pcftest.com/auth
responseTypes:
- code
- code id_token
clientPassword:
type: random:random_password
properties:
length: 16
special: true
minUpper: 1
minLower: 1
minNumeric: 1
minSpecial: 1
overrideSpecial: -!@#.:_?{$
Create IamClient Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new IamClient(name: string, args: IamClientArgs, opts?: CustomResourceOptions);@overload
def IamClient(resource_name: str,
args: IamClientArgs,
opts: Optional[ResourceOptions] = None)
@overload
def IamClient(resource_name: str,
opts: Optional[ResourceOptions] = None,
password: Optional[str] = None,
application_id: Optional[str] = None,
client_id: Optional[str] = None,
type: Optional[str] = None,
default_scopes: Optional[Sequence[str]] = None,
description: Optional[str] = None,
global_reference_id: Optional[str] = None,
scopes: Optional[Sequence[str]] = None,
response_types: Optional[Sequence[str]] = None,
redirection_uris: Optional[Sequence[str]] = None,
id_token_lifetime: Optional[float] = None,
name: Optional[str] = None,
refresh_token_lifetime: Optional[float] = None,
access_token_lifetime: Optional[float] = None,
iam_client_id: Optional[str] = None,
consent_implied: Optional[bool] = None)func NewIamClient(ctx *Context, name string, args IamClientArgs, opts ...ResourceOption) (*IamClient, error)public IamClient(string name, IamClientArgs args, CustomResourceOptions? opts = null)
public IamClient(String name, IamClientArgs args)
public IamClient(String name, IamClientArgs args, CustomResourceOptions options)
type: hsdp:IamClient
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args IamClientArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args IamClientArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args IamClientArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args IamClientArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args IamClientArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var iamClientResource = new Hsdp.IamClient("iamClientResource", new()
{
Password = "string",
ApplicationId = "string",
ClientId = "string",
Type = "string",
DefaultScopes = new[]
{
"string",
},
Description = "string",
GlobalReferenceId = "string",
Scopes = new[]
{
"string",
},
ResponseTypes = new[]
{
"string",
},
RedirectionUris = new[]
{
"string",
},
IdTokenLifetime = 0,
Name = "string",
RefreshTokenLifetime = 0,
AccessTokenLifetime = 0,
IamClientId = "string",
ConsentImplied = false,
});
example, err := hsdp.NewIamClient(ctx, "iamClientResource", &hsdp.IamClientArgs{
Password: pulumi.String("string"),
ApplicationId: pulumi.String("string"),
ClientId: pulumi.String("string"),
Type: pulumi.String("string"),
DefaultScopes: pulumi.StringArray{
pulumi.String("string"),
},
Description: pulumi.String("string"),
GlobalReferenceId: pulumi.String("string"),
Scopes: pulumi.StringArray{
pulumi.String("string"),
},
ResponseTypes: pulumi.StringArray{
pulumi.String("string"),
},
RedirectionUris: pulumi.StringArray{
pulumi.String("string"),
},
IdTokenLifetime: pulumi.Float64(0),
Name: pulumi.String("string"),
RefreshTokenLifetime: pulumi.Float64(0),
AccessTokenLifetime: pulumi.Float64(0),
IamClientId: pulumi.String("string"),
ConsentImplied: pulumi.Bool(false),
})
var iamClientResource = new IamClient("iamClientResource", IamClientArgs.builder()
.password("string")
.applicationId("string")
.clientId("string")
.type("string")
.defaultScopes("string")
.description("string")
.globalReferenceId("string")
.scopes("string")
.responseTypes("string")
.redirectionUris("string")
.idTokenLifetime(0)
.name("string")
.refreshTokenLifetime(0)
.accessTokenLifetime(0)
.iamClientId("string")
.consentImplied(false)
.build());
iam_client_resource = hsdp.IamClient("iamClientResource",
password="string",
application_id="string",
client_id="string",
type="string",
default_scopes=["string"],
description="string",
global_reference_id="string",
scopes=["string"],
response_types=["string"],
redirection_uris=["string"],
id_token_lifetime=0,
name="string",
refresh_token_lifetime=0,
access_token_lifetime=0,
iam_client_id="string",
consent_implied=False)
const iamClientResource = new hsdp.IamClient("iamClientResource", {
password: "string",
applicationId: "string",
clientId: "string",
type: "string",
defaultScopes: ["string"],
description: "string",
globalReferenceId: "string",
scopes: ["string"],
responseTypes: ["string"],
redirectionUris: ["string"],
idTokenLifetime: 0,
name: "string",
refreshTokenLifetime: 0,
accessTokenLifetime: 0,
iamClientId: "string",
consentImplied: false,
});
type: hsdp:IamClient
properties:
accessTokenLifetime: 0
applicationId: string
clientId: string
consentImplied: false
defaultScopes:
- string
description: string
globalReferenceId: string
iamClientId: string
idTokenLifetime: 0
name: string
password: string
redirectionUris:
- string
refreshTokenLifetime: 0
responseTypes:
- string
scopes:
- string
type: string
IamClient Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The IamClient resource accepts the following input properties:
- Application
Id string - the application ID (GUID) to attach this client to
- Client
Id string - The client id
- Default
Scopes List<string> - Array. Default scopes. You do not have to specify these explicitly when requesting a token
- Description string
- The description of the client
- Global
Reference stringId - Reference identifier defined by the provisioning user. This reference Identifier will be carried over to identify the provisioned resource across deployment instances (ClientTest, Production). Invalid Characters:- "[&+’";=?()[]<>]
- Password string
- The password to use (8-16 chars, at least one capital, number, special char)
- Redirection
Uris List<string> - Array of valid RedirectionURIs for this client
- Response
Types List<string> - Array. Examples of response types are "code id_token", "token id_token", etc.
- Scopes List<string>
- Array. List of supported scopes for this client
- Type string
- Either
PublicorConfidential - Access
Token doubleLifetime - Lifetime of the access token in seconds. If not specified, system default life time (1800 secs) will be considered.
- Consent
Implied bool - Flag when enabled, the resource owner will not be asked for consent during authorization flows.
- Iam
Client stringId - The GUID of the client
- Id
Token doubleLifetime - Lifetime of the jwt token generated in case openid scope is enabled for the client. If not specified, system default life time (3600 secs) will be considered.
- Name string
- The name of the client
- Refresh
Token doubleLifetime - Lifetime of the refresh token in seconds. If not specified, system default life time (2592000 secs) will be considered.
- Application
Id string - the application ID (GUID) to attach this client to
- Client
Id string - The client id
- Default
Scopes []string - Array. Default scopes. You do not have to specify these explicitly when requesting a token
- Description string
- The description of the client
- Global
Reference stringId - Reference identifier defined by the provisioning user. This reference Identifier will be carried over to identify the provisioned resource across deployment instances (ClientTest, Production). Invalid Characters:- "[&+’";=?()[]<>]
- Password string
- The password to use (8-16 chars, at least one capital, number, special char)
- Redirection
Uris []string - Array of valid RedirectionURIs for this client
- Response
Types []string - Array. Examples of response types are "code id_token", "token id_token", etc.
- Scopes []string
- Array. List of supported scopes for this client
- Type string
- Either
PublicorConfidential - Access
Token float64Lifetime - Lifetime of the access token in seconds. If not specified, system default life time (1800 secs) will be considered.
- Consent
Implied bool - Flag when enabled, the resource owner will not be asked for consent during authorization flows.
- Iam
Client stringId - The GUID of the client
- Id
Token float64Lifetime - Lifetime of the jwt token generated in case openid scope is enabled for the client. If not specified, system default life time (3600 secs) will be considered.
- Name string
- The name of the client
- Refresh
Token float64Lifetime - Lifetime of the refresh token in seconds. If not specified, system default life time (2592000 secs) will be considered.
- application
Id String - the application ID (GUID) to attach this client to
- client
Id String - The client id
- default
Scopes List<String> - Array. Default scopes. You do not have to specify these explicitly when requesting a token
- description String
- The description of the client
- global
Reference StringId - Reference identifier defined by the provisioning user. This reference Identifier will be carried over to identify the provisioned resource across deployment instances (ClientTest, Production). Invalid Characters:- "[&+’";=?()[]<>]
- password String
- The password to use (8-16 chars, at least one capital, number, special char)
- redirection
Uris List<String> - Array of valid RedirectionURIs for this client
- response
Types List<String> - Array. Examples of response types are "code id_token", "token id_token", etc.
- scopes List<String>
- Array. List of supported scopes for this client
- type String
- Either
PublicorConfidential - access
Token DoubleLifetime - Lifetime of the access token in seconds. If not specified, system default life time (1800 secs) will be considered.
- consent
Implied Boolean - Flag when enabled, the resource owner will not be asked for consent during authorization flows.
- iam
Client StringId - The GUID of the client
- id
Token DoubleLifetime - Lifetime of the jwt token generated in case openid scope is enabled for the client. If not specified, system default life time (3600 secs) will be considered.
- name String
- The name of the client
- refresh
Token DoubleLifetime - Lifetime of the refresh token in seconds. If not specified, system default life time (2592000 secs) will be considered.
- application
Id string - the application ID (GUID) to attach this client to
- client
Id string - The client id
- default
Scopes string[] - Array. Default scopes. You do not have to specify these explicitly when requesting a token
- description string
- The description of the client
- global
Reference stringId - Reference identifier defined by the provisioning user. This reference Identifier will be carried over to identify the provisioned resource across deployment instances (ClientTest, Production). Invalid Characters:- "[&+’";=?()[]<>]
- password string
- The password to use (8-16 chars, at least one capital, number, special char)
- redirection
Uris string[] - Array of valid RedirectionURIs for this client
- response
Types string[] - Array. Examples of response types are "code id_token", "token id_token", etc.
- scopes string[]
- Array. List of supported scopes for this client
- type string
- Either
PublicorConfidential - access
Token numberLifetime - Lifetime of the access token in seconds. If not specified, system default life time (1800 secs) will be considered.
- consent
Implied boolean - Flag when enabled, the resource owner will not be asked for consent during authorization flows.
- iam
Client stringId - The GUID of the client
- id
Token numberLifetime - Lifetime of the jwt token generated in case openid scope is enabled for the client. If not specified, system default life time (3600 secs) will be considered.
- name string
- The name of the client
- refresh
Token numberLifetime - Lifetime of the refresh token in seconds. If not specified, system default life time (2592000 secs) will be considered.
- application_
id str - the application ID (GUID) to attach this client to
- client_
id str - The client id
- default_
scopes Sequence[str] - Array. Default scopes. You do not have to specify these explicitly when requesting a token
- description str
- The description of the client
- global_
reference_ strid - Reference identifier defined by the provisioning user. This reference Identifier will be carried over to identify the provisioned resource across deployment instances (ClientTest, Production). Invalid Characters:- "[&+’";=?()[]<>]
- password str
- The password to use (8-16 chars, at least one capital, number, special char)
- redirection_
uris Sequence[str] - Array of valid RedirectionURIs for this client
- response_
types Sequence[str] - Array. Examples of response types are "code id_token", "token id_token", etc.
- scopes Sequence[str]
- Array. List of supported scopes for this client
- type str
- Either
PublicorConfidential - access_
token_ floatlifetime - Lifetime of the access token in seconds. If not specified, system default life time (1800 secs) will be considered.
- consent_
implied bool - Flag when enabled, the resource owner will not be asked for consent during authorization flows.
- iam_
client_ strid - The GUID of the client
- id_
token_ floatlifetime - Lifetime of the jwt token generated in case openid scope is enabled for the client. If not specified, system default life time (3600 secs) will be considered.
- name str
- The name of the client
- refresh_
token_ floatlifetime - Lifetime of the refresh token in seconds. If not specified, system default life time (2592000 secs) will be considered.
- application
Id String - the application ID (GUID) to attach this client to
- client
Id String - The client id
- default
Scopes List<String> - Array. Default scopes. You do not have to specify these explicitly when requesting a token
- description String
- The description of the client
- global
Reference StringId - Reference identifier defined by the provisioning user. This reference Identifier will be carried over to identify the provisioned resource across deployment instances (ClientTest, Production). Invalid Characters:- "[&+’";=?()[]<>]
- password String
- The password to use (8-16 chars, at least one capital, number, special char)
- redirection
Uris List<String> - Array of valid RedirectionURIs for this client
- response
Types List<String> - Array. Examples of response types are "code id_token", "token id_token", etc.
- scopes List<String>
- Array. List of supported scopes for this client
- type String
- Either
PublicorConfidential - access
Token NumberLifetime - Lifetime of the access token in seconds. If not specified, system default life time (1800 secs) will be considered.
- consent
Implied Boolean - Flag when enabled, the resource owner will not be asked for consent during authorization flows.
- iam
Client StringId - The GUID of the client
- id
Token NumberLifetime - Lifetime of the jwt token generated in case openid scope is enabled for the client. If not specified, system default life time (3600 secs) will be considered.
- name String
- The name of the client
- refresh
Token NumberLifetime - Lifetime of the refresh token in seconds. If not specified, system default life time (2592000 secs) will be considered.
Outputs
All input properties are implicitly available as output properties. Additionally, the IamClient resource produces the following output properties:
Look up Existing IamClient Resource
Get an existing IamClient resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: IamClientState, opts?: CustomResourceOptions): IamClient@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
access_token_lifetime: Optional[float] = None,
application_id: Optional[str] = None,
client_id: Optional[str] = None,
consent_implied: Optional[bool] = None,
default_scopes: Optional[Sequence[str]] = None,
description: Optional[str] = None,
disabled: Optional[bool] = None,
global_reference_id: Optional[str] = None,
iam_client_id: Optional[str] = None,
id_token_lifetime: Optional[float] = None,
name: Optional[str] = None,
password: Optional[str] = None,
redirection_uris: Optional[Sequence[str]] = None,
refresh_token_lifetime: Optional[float] = None,
response_types: Optional[Sequence[str]] = None,
scopes: Optional[Sequence[str]] = None,
type: Optional[str] = None) -> IamClientfunc GetIamClient(ctx *Context, name string, id IDInput, state *IamClientState, opts ...ResourceOption) (*IamClient, error)public static IamClient Get(string name, Input<string> id, IamClientState? state, CustomResourceOptions? opts = null)public static IamClient get(String name, Output<String> id, IamClientState state, CustomResourceOptions options)resources: _: type: hsdp:IamClient get: id: ${id}- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- Access
Token doubleLifetime - Lifetime of the access token in seconds. If not specified, system default life time (1800 secs) will be considered.
- Application
Id string - the application ID (GUID) to attach this client to
- Client
Id string - The client id
- Consent
Implied bool - Flag when enabled, the resource owner will not be asked for consent during authorization flows.
- Default
Scopes List<string> - Array. Default scopes. You do not have to specify these explicitly when requesting a token
- Description string
- The description of the client
- Disabled bool
- True if the client is disabled e.g. because the Org is disabled
- Global
Reference stringId - Reference identifier defined by the provisioning user. This reference Identifier will be carried over to identify the provisioned resource across deployment instances (ClientTest, Production). Invalid Characters:- "[&+’";=?()[]<>]
- Iam
Client stringId - The GUID of the client
- Id
Token doubleLifetime - Lifetime of the jwt token generated in case openid scope is enabled for the client. If not specified, system default life time (3600 secs) will be considered.
- Name string
- The name of the client
- Password string
- The password to use (8-16 chars, at least one capital, number, special char)
- Redirection
Uris List<string> - Array of valid RedirectionURIs for this client
- Refresh
Token doubleLifetime - Lifetime of the refresh token in seconds. If not specified, system default life time (2592000 secs) will be considered.
- Response
Types List<string> - Array. Examples of response types are "code id_token", "token id_token", etc.
- Scopes List<string>
- Array. List of supported scopes for this client
- Type string
- Either
PublicorConfidential
- Access
Token float64Lifetime - Lifetime of the access token in seconds. If not specified, system default life time (1800 secs) will be considered.
- Application
Id string - the application ID (GUID) to attach this client to
- Client
Id string - The client id
- Consent
Implied bool - Flag when enabled, the resource owner will not be asked for consent during authorization flows.
- Default
Scopes []string - Array. Default scopes. You do not have to specify these explicitly when requesting a token
- Description string
- The description of the client
- Disabled bool
- True if the client is disabled e.g. because the Org is disabled
- Global
Reference stringId - Reference identifier defined by the provisioning user. This reference Identifier will be carried over to identify the provisioned resource across deployment instances (ClientTest, Production). Invalid Characters:- "[&+’";=?()[]<>]
- Iam
Client stringId - The GUID of the client
- Id
Token float64Lifetime - Lifetime of the jwt token generated in case openid scope is enabled for the client. If not specified, system default life time (3600 secs) will be considered.
- Name string
- The name of the client
- Password string
- The password to use (8-16 chars, at least one capital, number, special char)
- Redirection
Uris []string - Array of valid RedirectionURIs for this client
- Refresh
Token float64Lifetime - Lifetime of the refresh token in seconds. If not specified, system default life time (2592000 secs) will be considered.
- Response
Types []string - Array. Examples of response types are "code id_token", "token id_token", etc.
- Scopes []string
- Array. List of supported scopes for this client
- Type string
- Either
PublicorConfidential
- access
Token DoubleLifetime - Lifetime of the access token in seconds. If not specified, system default life time (1800 secs) will be considered.
- application
Id String - the application ID (GUID) to attach this client to
- client
Id String - The client id
- consent
Implied Boolean - Flag when enabled, the resource owner will not be asked for consent during authorization flows.
- default
Scopes List<String> - Array. Default scopes. You do not have to specify these explicitly when requesting a token
- description String
- The description of the client
- disabled Boolean
- True if the client is disabled e.g. because the Org is disabled
- global
Reference StringId - Reference identifier defined by the provisioning user. This reference Identifier will be carried over to identify the provisioned resource across deployment instances (ClientTest, Production). Invalid Characters:- "[&+’";=?()[]<>]
- iam
Client StringId - The GUID of the client
- id
Token DoubleLifetime - Lifetime of the jwt token generated in case openid scope is enabled for the client. If not specified, system default life time (3600 secs) will be considered.
- name String
- The name of the client
- password String
- The password to use (8-16 chars, at least one capital, number, special char)
- redirection
Uris List<String> - Array of valid RedirectionURIs for this client
- refresh
Token DoubleLifetime - Lifetime of the refresh token in seconds. If not specified, system default life time (2592000 secs) will be considered.
- response
Types List<String> - Array. Examples of response types are "code id_token", "token id_token", etc.
- scopes List<String>
- Array. List of supported scopes for this client
- type String
- Either
PublicorConfidential
- access
Token numberLifetime - Lifetime of the access token in seconds. If not specified, system default life time (1800 secs) will be considered.
- application
Id string - the application ID (GUID) to attach this client to
- client
Id string - The client id
- consent
Implied boolean - Flag when enabled, the resource owner will not be asked for consent during authorization flows.
- default
Scopes string[] - Array. Default scopes. You do not have to specify these explicitly when requesting a token
- description string
- The description of the client
- disabled boolean
- True if the client is disabled e.g. because the Org is disabled
- global
Reference stringId - Reference identifier defined by the provisioning user. This reference Identifier will be carried over to identify the provisioned resource across deployment instances (ClientTest, Production). Invalid Characters:- "[&+’";=?()[]<>]
- iam
Client stringId - The GUID of the client
- id
Token numberLifetime - Lifetime of the jwt token generated in case openid scope is enabled for the client. If not specified, system default life time (3600 secs) will be considered.
- name string
- The name of the client
- password string
- The password to use (8-16 chars, at least one capital, number, special char)
- redirection
Uris string[] - Array of valid RedirectionURIs for this client
- refresh
Token numberLifetime - Lifetime of the refresh token in seconds. If not specified, system default life time (2592000 secs) will be considered.
- response
Types string[] - Array. Examples of response types are "code id_token", "token id_token", etc.
- scopes string[]
- Array. List of supported scopes for this client
- type string
- Either
PublicorConfidential
- access_
token_ floatlifetime - Lifetime of the access token in seconds. If not specified, system default life time (1800 secs) will be considered.
- application_
id str - the application ID (GUID) to attach this client to
- client_
id str - The client id
- consent_
implied bool - Flag when enabled, the resource owner will not be asked for consent during authorization flows.
- default_
scopes Sequence[str] - Array. Default scopes. You do not have to specify these explicitly when requesting a token
- description str
- The description of the client
- disabled bool
- True if the client is disabled e.g. because the Org is disabled
- global_
reference_ strid - Reference identifier defined by the provisioning user. This reference Identifier will be carried over to identify the provisioned resource across deployment instances (ClientTest, Production). Invalid Characters:- "[&+’";=?()[]<>]
- iam_
client_ strid - The GUID of the client
- id_
token_ floatlifetime - Lifetime of the jwt token generated in case openid scope is enabled for the client. If not specified, system default life time (3600 secs) will be considered.
- name str
- The name of the client
- password str
- The password to use (8-16 chars, at least one capital, number, special char)
- redirection_
uris Sequence[str] - Array of valid RedirectionURIs for this client
- refresh_
token_ floatlifetime - Lifetime of the refresh token in seconds. If not specified, system default life time (2592000 secs) will be considered.
- response_
types Sequence[str] - Array. Examples of response types are "code id_token", "token id_token", etc.
- scopes Sequence[str]
- Array. List of supported scopes for this client
- type str
- Either
PublicorConfidential
- access
Token NumberLifetime - Lifetime of the access token in seconds. If not specified, system default life time (1800 secs) will be considered.
- application
Id String - the application ID (GUID) to attach this client to
- client
Id String - The client id
- consent
Implied Boolean - Flag when enabled, the resource owner will not be asked for consent during authorization flows.
- default
Scopes List<String> - Array. Default scopes. You do not have to specify these explicitly when requesting a token
- description String
- The description of the client
- disabled Boolean
- True if the client is disabled e.g. because the Org is disabled
- global
Reference StringId - Reference identifier defined by the provisioning user. This reference Identifier will be carried over to identify the provisioned resource across deployment instances (ClientTest, Production). Invalid Characters:- "[&+’";=?()[]<>]
- iam
Client StringId - The GUID of the client
- id
Token NumberLifetime - Lifetime of the jwt token generated in case openid scope is enabled for the client. If not specified, system default life time (3600 secs) will be considered.
- name String
- The name of the client
- password String
- The password to use (8-16 chars, at least one capital, number, special char)
- redirection
Uris List<String> - Array of valid RedirectionURIs for this client
- refresh
Token NumberLifetime - Lifetime of the refresh token in seconds. If not specified, system default life time (2592000 secs) will be considered.
- response
Types List<String> - Array. Examples of response types are "code id_token", "token id_token", etc.
- scopes List<String>
- Array. List of supported scopes for this client
- type String
- Either
PublicorConfidential
Import
$ pulumi import hsdp:index/iamClient:IamClient An existing client can be imported using `hsdp_iam_client`, e.g.
$ pulumi import hsdp:index/iamClient:IamClient myclient a-guid
To learn more about importing existing cloud resources, see Importing resources.
Package Details
- Repository
- hsdp philips-software/terraform-provider-hsdp
- License
- Notes
- This Pulumi package is based on the
hsdpTerraform Provider.
hsdp 0.65.3 published on Tuesday, Apr 15, 2025 by philips-software