Viewing docs for konnect 3.14.0
published on Friday, Apr 24, 2026 by kong
published on Friday, Apr 24, 2026 by kong
Viewing docs for konnect 3.14.0
published on Friday, Apr 24, 2026 by kong
published on Friday, Apr 24, 2026 by kong
IdentityAuthServerClient Resource
Example Usage
import * as pulumi from "@pulumi/pulumi";
import * as konnect from "@pulumi/konnect";
const myIdentityauthserverclient = new konnect.IdentityAuthServerClient("my_identityauthserverclient", {
accessTokenDuration: 300,
allowAllScopes: false,
allowScopes: ["5ab7e333-0b71-4f32-881a-2cea4e043539"],
authServerId: "d32d905a-ed33-46a3-a093-d8f536af9a8a",
clientSecret: "YAzsyUlNZ5gNGeKS9H3VAdxVPzhPo4ae",
grantTypes: ["client_credentials"],
identityAuthServerClientId: "kYa9iQFU5xPDSIUH9z1z",
idTokenDuration: 300,
labels: {
key: "value",
},
loginUri: "https://mushy-hose.info",
name: "...my_name...",
redirectUris: ["https://intrepid-flint.info"],
responseTypes: ["none"],
tokenEndpointAuthMethod: "client_secret_post",
});
import pulumi
import pulumi_konnect as konnect
my_identityauthserverclient = konnect.IdentityAuthServerClient("my_identityauthserverclient",
access_token_duration=300,
allow_all_scopes=False,
allow_scopes=["5ab7e333-0b71-4f32-881a-2cea4e043539"],
auth_server_id="d32d905a-ed33-46a3-a093-d8f536af9a8a",
client_secret="YAzsyUlNZ5gNGeKS9H3VAdxVPzhPo4ae",
grant_types=["client_credentials"],
identity_auth_server_client_id="kYa9iQFU5xPDSIUH9z1z",
id_token_duration=300,
labels={
"key": "value",
},
login_uri="https://mushy-hose.info",
name="...my_name...",
redirect_uris=["https://intrepid-flint.info"],
response_types=["none"],
token_endpoint_auth_method="client_secret_post")
package main
import (
"github.com/pulumi/pulumi-terraform-provider/sdks/go/konnect/v3/konnect"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := konnect.NewIdentityAuthServerClient(ctx, "my_identityauthserverclient", &konnect.IdentityAuthServerClientArgs{
AccessTokenDuration: pulumi.Float64(300),
AllowAllScopes: pulumi.Bool(false),
AllowScopes: pulumi.StringArray{
pulumi.String("5ab7e333-0b71-4f32-881a-2cea4e043539"),
},
AuthServerId: pulumi.String("d32d905a-ed33-46a3-a093-d8f536af9a8a"),
ClientSecret: pulumi.String("YAzsyUlNZ5gNGeKS9H3VAdxVPzhPo4ae"),
GrantTypes: pulumi.StringArray{
pulumi.String("client_credentials"),
},
IdentityAuthServerClientId: pulumi.String("kYa9iQFU5xPDSIUH9z1z"),
IdTokenDuration: pulumi.Float64(300),
Labels: pulumi.StringMap{
"key": pulumi.String("value"),
},
LoginUri: pulumi.String("https://mushy-hose.info"),
Name: pulumi.String("...my_name..."),
RedirectUris: pulumi.StringArray{
pulumi.String("https://intrepid-flint.info"),
},
ResponseTypes: pulumi.StringArray{
pulumi.String("none"),
},
TokenEndpointAuthMethod: pulumi.String("client_secret_post"),
})
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Konnect = Pulumi.Konnect;
return await Deployment.RunAsync(() =>
{
var myIdentityauthserverclient = new Konnect.IdentityAuthServerClient("my_identityauthserverclient", new()
{
AccessTokenDuration = 300,
AllowAllScopes = false,
AllowScopes = new[]
{
"5ab7e333-0b71-4f32-881a-2cea4e043539",
},
AuthServerId = "d32d905a-ed33-46a3-a093-d8f536af9a8a",
ClientSecret = "YAzsyUlNZ5gNGeKS9H3VAdxVPzhPo4ae",
GrantTypes = new[]
{
"client_credentials",
},
IdentityAuthServerClientId = "kYa9iQFU5xPDSIUH9z1z",
IdTokenDuration = 300,
Labels =
{
{ "key", "value" },
},
LoginUri = "https://mushy-hose.info",
Name = "...my_name...",
RedirectUris = new[]
{
"https://intrepid-flint.info",
},
ResponseTypes = new[]
{
"none",
},
TokenEndpointAuthMethod = "client_secret_post",
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.konnect.IdentityAuthServerClient;
import com.pulumi.konnect.IdentityAuthServerClientArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var myIdentityauthserverclient = new IdentityAuthServerClient("myIdentityauthserverclient", IdentityAuthServerClientArgs.builder()
.accessTokenDuration(300.0)
.allowAllScopes(false)
.allowScopes("5ab7e333-0b71-4f32-881a-2cea4e043539")
.authServerId("d32d905a-ed33-46a3-a093-d8f536af9a8a")
.clientSecret("YAzsyUlNZ5gNGeKS9H3VAdxVPzhPo4ae")
.grantTypes("client_credentials")
.identityAuthServerClientId("kYa9iQFU5xPDSIUH9z1z")
.idTokenDuration(300.0)
.labels(Map.of("key", "value"))
.loginUri("https://mushy-hose.info")
.name("...my_name...")
.redirectUris("https://intrepid-flint.info")
.responseTypes("none")
.tokenEndpointAuthMethod("client_secret_post")
.build());
}
}
resources:
myIdentityauthserverclient:
type: konnect:IdentityAuthServerClient
name: my_identityauthserverclient
properties:
accessTokenDuration: 300
allowAllScopes: false
allowScopes:
- 5ab7e333-0b71-4f32-881a-2cea4e043539
authServerId: d32d905a-ed33-46a3-a093-d8f536af9a8a
clientSecret: YAzsyUlNZ5gNGeKS9H3VAdxVPzhPo4ae
grantTypes:
- client_credentials
identityAuthServerClientId: kYa9iQFU5xPDSIUH9z1z
idTokenDuration: 300
labels:
key: value
loginUri: https://mushy-hose.info
name: '...my_name...'
redirectUris:
- https://intrepid-flint.info
responseTypes:
- none
tokenEndpointAuthMethod: client_secret_post
Create IdentityAuthServerClient Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new IdentityAuthServerClient(name: string, args: IdentityAuthServerClientArgs, opts?: CustomResourceOptions);@overload
def IdentityAuthServerClient(resource_name: str,
args: IdentityAuthServerClientArgs,
opts: Optional[ResourceOptions] = None)
@overload
def IdentityAuthServerClient(resource_name: str,
opts: Optional[ResourceOptions] = None,
auth_server_id: Optional[str] = None,
response_types: Optional[Sequence[str]] = None,
grant_types: Optional[Sequence[str]] = None,
id_token_duration: Optional[float] = None,
client_secret: Optional[str] = None,
allow_scopes: Optional[Sequence[str]] = None,
access_token_duration: Optional[float] = None,
identity_auth_server_client_id: Optional[str] = None,
labels: Optional[Mapping[str, str]] = None,
login_uri: Optional[str] = None,
name: Optional[str] = None,
redirect_uris: Optional[Sequence[str]] = None,
allow_all_scopes: Optional[bool] = None,
token_endpoint_auth_method: Optional[str] = None)func NewIdentityAuthServerClient(ctx *Context, name string, args IdentityAuthServerClientArgs, opts ...ResourceOption) (*IdentityAuthServerClient, error)public IdentityAuthServerClient(string name, IdentityAuthServerClientArgs args, CustomResourceOptions? opts = null)
public IdentityAuthServerClient(String name, IdentityAuthServerClientArgs args)
public IdentityAuthServerClient(String name, IdentityAuthServerClientArgs args, CustomResourceOptions options)
type: konnect:IdentityAuthServerClient
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args IdentityAuthServerClientArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args IdentityAuthServerClientArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args IdentityAuthServerClientArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args IdentityAuthServerClientArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args IdentityAuthServerClientArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var identityAuthServerClientResource = new Konnect.IdentityAuthServerClient("identityAuthServerClientResource", new()
{
AuthServerId = "string",
ResponseTypes = new[]
{
"string",
},
GrantTypes = new[]
{
"string",
},
IdTokenDuration = 0,
ClientSecret = "string",
AllowScopes = new[]
{
"string",
},
AccessTokenDuration = 0,
IdentityAuthServerClientId = "string",
Labels =
{
{ "string", "string" },
},
LoginUri = "string",
Name = "string",
RedirectUris = new[]
{
"string",
},
AllowAllScopes = false,
TokenEndpointAuthMethod = "string",
});
example, err := konnect.NewIdentityAuthServerClient(ctx, "identityAuthServerClientResource", &konnect.IdentityAuthServerClientArgs{
AuthServerId: pulumi.String("string"),
ResponseTypes: pulumi.StringArray{
pulumi.String("string"),
},
GrantTypes: pulumi.StringArray{
pulumi.String("string"),
},
IdTokenDuration: pulumi.Float64(0),
ClientSecret: pulumi.String("string"),
AllowScopes: pulumi.StringArray{
pulumi.String("string"),
},
AccessTokenDuration: pulumi.Float64(0),
IdentityAuthServerClientId: pulumi.String("string"),
Labels: pulumi.StringMap{
"string": pulumi.String("string"),
},
LoginUri: pulumi.String("string"),
Name: pulumi.String("string"),
RedirectUris: pulumi.StringArray{
pulumi.String("string"),
},
AllowAllScopes: pulumi.Bool(false),
TokenEndpointAuthMethod: pulumi.String("string"),
})
var identityAuthServerClientResource = new IdentityAuthServerClient("identityAuthServerClientResource", IdentityAuthServerClientArgs.builder()
.authServerId("string")
.responseTypes("string")
.grantTypes("string")
.idTokenDuration(0.0)
.clientSecret("string")
.allowScopes("string")
.accessTokenDuration(0.0)
.identityAuthServerClientId("string")
.labels(Map.of("string", "string"))
.loginUri("string")
.name("string")
.redirectUris("string")
.allowAllScopes(false)
.tokenEndpointAuthMethod("string")
.build());
identity_auth_server_client_resource = konnect.IdentityAuthServerClient("identityAuthServerClientResource",
auth_server_id="string",
response_types=["string"],
grant_types=["string"],
id_token_duration=float(0),
client_secret="string",
allow_scopes=["string"],
access_token_duration=float(0),
identity_auth_server_client_id="string",
labels={
"string": "string",
},
login_uri="string",
name="string",
redirect_uris=["string"],
allow_all_scopes=False,
token_endpoint_auth_method="string")
const identityAuthServerClientResource = new konnect.IdentityAuthServerClient("identityAuthServerClientResource", {
authServerId: "string",
responseTypes: ["string"],
grantTypes: ["string"],
idTokenDuration: 0,
clientSecret: "string",
allowScopes: ["string"],
accessTokenDuration: 0,
identityAuthServerClientId: "string",
labels: {
string: "string",
},
loginUri: "string",
name: "string",
redirectUris: ["string"],
allowAllScopes: false,
tokenEndpointAuthMethod: "string",
});
type: konnect:IdentityAuthServerClient
properties:
accessTokenDuration: 0
allowAllScopes: false
allowScopes:
- string
authServerId: string
clientSecret: string
grantTypes:
- string
idTokenDuration: 0
identityAuthServerClientId: string
labels:
string: string
loginUri: string
name: string
redirectUris:
- string
responseTypes:
- string
tokenEndpointAuthMethod: string
IdentityAuthServerClient Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The IdentityAuthServerClient resource accepts the following input properties:
- Auth
Server stringId - The auth server ID
- Grant
Types List<string> - List of OAuth 2.0 grant types
- Response
Types List<string> - List of OAuth 2.0 response types
- Access
Token doubleDuration - The duration of the minted token is valid for, in seconds. Default: 300
- Allow
All boolScopes - Specifies whether the client is allowed to request all scopes. Default: false
- Allow
Scopes List<string> - Specifies the scopes IDs that the client is allowed to request
- Client
Secret string - Secret of the client - will be used when ID is also set.
- Id
Token doubleDuration - The duration of the minted token is valid for, in seconds. Default: 300
- Identity
Auth stringServer Client Id - The OAuth 2.0 client ID. Requires replacement if changed.
- Labels Dictionary<string, string>
- Labels store metadata of an entity that can be used for filtering an entity list or for searching across entity types.
- Login
Uri string - The URI of the login page where the user is redirected to authenticate in interactive flows. The login page must be secure (HTTPS).
- Name string
- The name of the client
- Redirect
Uris List<string> - The URIs that the client is allowed to redirect to after authentication in interactive flows. All redirect URIs must be absolute URIs, be secure (HTTPS), and must not include a fragment component.
- Token
Endpoint stringAuth Method - Requested authentication method for OAuth 2.0 endpoints. possible known values include one of ["client_secret_post", "none"]; Default: "client_secret_post"
- Auth
Server stringId - The auth server ID
- Grant
Types []string - List of OAuth 2.0 grant types
- Response
Types []string - List of OAuth 2.0 response types
- Access
Token float64Duration - The duration of the minted token is valid for, in seconds. Default: 300
- Allow
All boolScopes - Specifies whether the client is allowed to request all scopes. Default: false
- Allow
Scopes []string - Specifies the scopes IDs that the client is allowed to request
- Client
Secret string - Secret of the client - will be used when ID is also set.
- Id
Token float64Duration - The duration of the minted token is valid for, in seconds. Default: 300
- Identity
Auth stringServer Client Id - The OAuth 2.0 client ID. Requires replacement if changed.
- Labels map[string]string
- Labels store metadata of an entity that can be used for filtering an entity list or for searching across entity types.
- Login
Uri string - The URI of the login page where the user is redirected to authenticate in interactive flows. The login page must be secure (HTTPS).
- Name string
- The name of the client
- Redirect
Uris []string - The URIs that the client is allowed to redirect to after authentication in interactive flows. All redirect URIs must be absolute URIs, be secure (HTTPS), and must not include a fragment component.
- Token
Endpoint stringAuth Method - Requested authentication method for OAuth 2.0 endpoints. possible known values include one of ["client_secret_post", "none"]; Default: "client_secret_post"
- auth
Server StringId - The auth server ID
- grant
Types List<String> - List of OAuth 2.0 grant types
- response
Types List<String> - List of OAuth 2.0 response types
- access
Token DoubleDuration - The duration of the minted token is valid for, in seconds. Default: 300
- allow
All BooleanScopes - Specifies whether the client is allowed to request all scopes. Default: false
- allow
Scopes List<String> - Specifies the scopes IDs that the client is allowed to request
- client
Secret String - Secret of the client - will be used when ID is also set.
- id
Token DoubleDuration - The duration of the minted token is valid for, in seconds. Default: 300
- identity
Auth StringServer Client Id - The OAuth 2.0 client ID. Requires replacement if changed.
- labels Map<String,String>
- Labels store metadata of an entity that can be used for filtering an entity list or for searching across entity types.
- login
Uri String - The URI of the login page where the user is redirected to authenticate in interactive flows. The login page must be secure (HTTPS).
- name String
- The name of the client
- redirect
Uris List<String> - The URIs that the client is allowed to redirect to after authentication in interactive flows. All redirect URIs must be absolute URIs, be secure (HTTPS), and must not include a fragment component.
- token
Endpoint StringAuth Method - Requested authentication method for OAuth 2.0 endpoints. possible known values include one of ["client_secret_post", "none"]; Default: "client_secret_post"
- auth
Server stringId - The auth server ID
- grant
Types string[] - List of OAuth 2.0 grant types
- response
Types string[] - List of OAuth 2.0 response types
- access
Token numberDuration - The duration of the minted token is valid for, in seconds. Default: 300
- allow
All booleanScopes - Specifies whether the client is allowed to request all scopes. Default: false
- allow
Scopes string[] - Specifies the scopes IDs that the client is allowed to request
- client
Secret string - Secret of the client - will be used when ID is also set.
- id
Token numberDuration - The duration of the minted token is valid for, in seconds. Default: 300
- identity
Auth stringServer Client Id - The OAuth 2.0 client ID. Requires replacement if changed.
- labels {[key: string]: string}
- Labels store metadata of an entity that can be used for filtering an entity list or for searching across entity types.
- login
Uri string - The URI of the login page where the user is redirected to authenticate in interactive flows. The login page must be secure (HTTPS).
- name string
- The name of the client
- redirect
Uris string[] - The URIs that the client is allowed to redirect to after authentication in interactive flows. All redirect URIs must be absolute URIs, be secure (HTTPS), and must not include a fragment component.
- token
Endpoint stringAuth Method - Requested authentication method for OAuth 2.0 endpoints. possible known values include one of ["client_secret_post", "none"]; Default: "client_secret_post"
- auth_
server_ strid - The auth server ID
- grant_
types Sequence[str] - List of OAuth 2.0 grant types
- response_
types Sequence[str] - List of OAuth 2.0 response types
- access_
token_ floatduration - The duration of the minted token is valid for, in seconds. Default: 300
- allow_
all_ boolscopes - Specifies whether the client is allowed to request all scopes. Default: false
- allow_
scopes Sequence[str] - Specifies the scopes IDs that the client is allowed to request
- client_
secret str - Secret of the client - will be used when ID is also set.
- id_
token_ floatduration - The duration of the minted token is valid for, in seconds. Default: 300
- identity_
auth_ strserver_ client_ id - The OAuth 2.0 client ID. Requires replacement if changed.
- labels Mapping[str, str]
- Labels store metadata of an entity that can be used for filtering an entity list or for searching across entity types.
- login_
uri str - The URI of the login page where the user is redirected to authenticate in interactive flows. The login page must be secure (HTTPS).
- name str
- The name of the client
- redirect_
uris Sequence[str] - The URIs that the client is allowed to redirect to after authentication in interactive flows. All redirect URIs must be absolute URIs, be secure (HTTPS), and must not include a fragment component.
- token_
endpoint_ strauth_ method - Requested authentication method for OAuth 2.0 endpoints. possible known values include one of ["client_secret_post", "none"]; Default: "client_secret_post"
- auth
Server StringId - The auth server ID
- grant
Types List<String> - List of OAuth 2.0 grant types
- response
Types List<String> - List of OAuth 2.0 response types
- access
Token NumberDuration - The duration of the minted token is valid for, in seconds. Default: 300
- allow
All BooleanScopes - Specifies whether the client is allowed to request all scopes. Default: false
- allow
Scopes List<String> - Specifies the scopes IDs that the client is allowed to request
- client
Secret String - Secret of the client - will be used when ID is also set.
- id
Token NumberDuration - The duration of the minted token is valid for, in seconds. Default: 300
- identity
Auth StringServer Client Id - The OAuth 2.0 client ID. Requires replacement if changed.
- labels Map<String>
- Labels store metadata of an entity that can be used for filtering an entity list or for searching across entity types.
- login
Uri String - The URI of the login page where the user is redirected to authenticate in interactive flows. The login page must be secure (HTTPS).
- name String
- The name of the client
- redirect
Uris List<String> - The URIs that the client is allowed to redirect to after authentication in interactive flows. All redirect URIs must be absolute URIs, be secure (HTTPS), and must not include a fragment component.
- token
Endpoint StringAuth Method - Requested authentication method for OAuth 2.0 endpoints. possible known values include one of ["client_secret_post", "none"]; Default: "client_secret_post"
Outputs
All input properties are implicitly available as output properties. Additionally, the IdentityAuthServerClient resource produces the following output properties:
- created_
at str - An ISO-8601 timestamp representation of entity creation date.
- id str
- The provider-assigned unique ID for this managed resource.
- updated_
at str - An ISO-8601 timestamp representation of entity update date.
Look up Existing IdentityAuthServerClient Resource
Get an existing IdentityAuthServerClient resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: IdentityAuthServerClientState, opts?: CustomResourceOptions): IdentityAuthServerClient@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
access_token_duration: Optional[float] = None,
allow_all_scopes: Optional[bool] = None,
allow_scopes: Optional[Sequence[str]] = None,
auth_server_id: Optional[str] = None,
client_secret: Optional[str] = None,
created_at: Optional[str] = None,
grant_types: Optional[Sequence[str]] = None,
id_token_duration: Optional[float] = None,
identity_auth_server_client_id: Optional[str] = None,
labels: Optional[Mapping[str, str]] = None,
login_uri: Optional[str] = None,
name: Optional[str] = None,
redirect_uris: Optional[Sequence[str]] = None,
response_types: Optional[Sequence[str]] = None,
token_endpoint_auth_method: Optional[str] = None,
updated_at: Optional[str] = None) -> IdentityAuthServerClientfunc GetIdentityAuthServerClient(ctx *Context, name string, id IDInput, state *IdentityAuthServerClientState, opts ...ResourceOption) (*IdentityAuthServerClient, error)public static IdentityAuthServerClient Get(string name, Input<string> id, IdentityAuthServerClientState? state, CustomResourceOptions? opts = null)public static IdentityAuthServerClient get(String name, Output<String> id, IdentityAuthServerClientState state, CustomResourceOptions options)resources: _: type: konnect:IdentityAuthServerClient get: id: ${id}- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- Access
Token doubleDuration - The duration of the minted token is valid for, in seconds. Default: 300
- Allow
All boolScopes - Specifies whether the client is allowed to request all scopes. Default: false
- Allow
Scopes List<string> - Specifies the scopes IDs that the client is allowed to request
- Auth
Server stringId - The auth server ID
- Client
Secret string - Secret of the client - will be used when ID is also set.
- Created
At string - An ISO-8601 timestamp representation of entity creation date.
- Grant
Types List<string> - List of OAuth 2.0 grant types
- Id
Token doubleDuration - The duration of the minted token is valid for, in seconds. Default: 300
- Identity
Auth stringServer Client Id - The OAuth 2.0 client ID. Requires replacement if changed.
- Labels Dictionary<string, string>
- Labels store metadata of an entity that can be used for filtering an entity list or for searching across entity types.
- Login
Uri string - The URI of the login page where the user is redirected to authenticate in interactive flows. The login page must be secure (HTTPS).
- Name string
- The name of the client
- Redirect
Uris List<string> - The URIs that the client is allowed to redirect to after authentication in interactive flows. All redirect URIs must be absolute URIs, be secure (HTTPS), and must not include a fragment component.
- Response
Types List<string> - List of OAuth 2.0 response types
- Token
Endpoint stringAuth Method - Requested authentication method for OAuth 2.0 endpoints. possible known values include one of ["client_secret_post", "none"]; Default: "client_secret_post"
- Updated
At string - An ISO-8601 timestamp representation of entity update date.
- Access
Token float64Duration - The duration of the minted token is valid for, in seconds. Default: 300
- Allow
All boolScopes - Specifies whether the client is allowed to request all scopes. Default: false
- Allow
Scopes []string - Specifies the scopes IDs that the client is allowed to request
- Auth
Server stringId - The auth server ID
- Client
Secret string - Secret of the client - will be used when ID is also set.
- Created
At string - An ISO-8601 timestamp representation of entity creation date.
- Grant
Types []string - List of OAuth 2.0 grant types
- Id
Token float64Duration - The duration of the minted token is valid for, in seconds. Default: 300
- Identity
Auth stringServer Client Id - The OAuth 2.0 client ID. Requires replacement if changed.
- Labels map[string]string
- Labels store metadata of an entity that can be used for filtering an entity list or for searching across entity types.
- Login
Uri string - The URI of the login page where the user is redirected to authenticate in interactive flows. The login page must be secure (HTTPS).
- Name string
- The name of the client
- Redirect
Uris []string - The URIs that the client is allowed to redirect to after authentication in interactive flows. All redirect URIs must be absolute URIs, be secure (HTTPS), and must not include a fragment component.
- Response
Types []string - List of OAuth 2.0 response types
- Token
Endpoint stringAuth Method - Requested authentication method for OAuth 2.0 endpoints. possible known values include one of ["client_secret_post", "none"]; Default: "client_secret_post"
- Updated
At string - An ISO-8601 timestamp representation of entity update date.
- access
Token DoubleDuration - The duration of the minted token is valid for, in seconds. Default: 300
- allow
All BooleanScopes - Specifies whether the client is allowed to request all scopes. Default: false
- allow
Scopes List<String> - Specifies the scopes IDs that the client is allowed to request
- auth
Server StringId - The auth server ID
- client
Secret String - Secret of the client - will be used when ID is also set.
- created
At String - An ISO-8601 timestamp representation of entity creation date.
- grant
Types List<String> - List of OAuth 2.0 grant types
- id
Token DoubleDuration - The duration of the minted token is valid for, in seconds. Default: 300
- identity
Auth StringServer Client Id - The OAuth 2.0 client ID. Requires replacement if changed.
- labels Map<String,String>
- Labels store metadata of an entity that can be used for filtering an entity list or for searching across entity types.
- login
Uri String - The URI of the login page where the user is redirected to authenticate in interactive flows. The login page must be secure (HTTPS).
- name String
- The name of the client
- redirect
Uris List<String> - The URIs that the client is allowed to redirect to after authentication in interactive flows. All redirect URIs must be absolute URIs, be secure (HTTPS), and must not include a fragment component.
- response
Types List<String> - List of OAuth 2.0 response types
- token
Endpoint StringAuth Method - Requested authentication method for OAuth 2.0 endpoints. possible known values include one of ["client_secret_post", "none"]; Default: "client_secret_post"
- updated
At String - An ISO-8601 timestamp representation of entity update date.
- access
Token numberDuration - The duration of the minted token is valid for, in seconds. Default: 300
- allow
All booleanScopes - Specifies whether the client is allowed to request all scopes. Default: false
- allow
Scopes string[] - Specifies the scopes IDs that the client is allowed to request
- auth
Server stringId - The auth server ID
- client
Secret string - Secret of the client - will be used when ID is also set.
- created
At string - An ISO-8601 timestamp representation of entity creation date.
- grant
Types string[] - List of OAuth 2.0 grant types
- id
Token numberDuration - The duration of the minted token is valid for, in seconds. Default: 300
- identity
Auth stringServer Client Id - The OAuth 2.0 client ID. Requires replacement if changed.
- labels {[key: string]: string}
- Labels store metadata of an entity that can be used for filtering an entity list or for searching across entity types.
- login
Uri string - The URI of the login page where the user is redirected to authenticate in interactive flows. The login page must be secure (HTTPS).
- name string
- The name of the client
- redirect
Uris string[] - The URIs that the client is allowed to redirect to after authentication in interactive flows. All redirect URIs must be absolute URIs, be secure (HTTPS), and must not include a fragment component.
- response
Types string[] - List of OAuth 2.0 response types
- token
Endpoint stringAuth Method - Requested authentication method for OAuth 2.0 endpoints. possible known values include one of ["client_secret_post", "none"]; Default: "client_secret_post"
- updated
At string - An ISO-8601 timestamp representation of entity update date.
- access_
token_ floatduration - The duration of the minted token is valid for, in seconds. Default: 300
- allow_
all_ boolscopes - Specifies whether the client is allowed to request all scopes. Default: false
- allow_
scopes Sequence[str] - Specifies the scopes IDs that the client is allowed to request
- auth_
server_ strid - The auth server ID
- client_
secret str - Secret of the client - will be used when ID is also set.
- created_
at str - An ISO-8601 timestamp representation of entity creation date.
- grant_
types Sequence[str] - List of OAuth 2.0 grant types
- id_
token_ floatduration - The duration of the minted token is valid for, in seconds. Default: 300
- identity_
auth_ strserver_ client_ id - The OAuth 2.0 client ID. Requires replacement if changed.
- labels Mapping[str, str]
- Labels store metadata of an entity that can be used for filtering an entity list or for searching across entity types.
- login_
uri str - The URI of the login page where the user is redirected to authenticate in interactive flows. The login page must be secure (HTTPS).
- name str
- The name of the client
- redirect_
uris Sequence[str] - The URIs that the client is allowed to redirect to after authentication in interactive flows. All redirect URIs must be absolute URIs, be secure (HTTPS), and must not include a fragment component.
- response_
types Sequence[str] - List of OAuth 2.0 response types
- token_
endpoint_ strauth_ method - Requested authentication method for OAuth 2.0 endpoints. possible known values include one of ["client_secret_post", "none"]; Default: "client_secret_post"
- updated_
at str - An ISO-8601 timestamp representation of entity update date.
- access
Token NumberDuration - The duration of the minted token is valid for, in seconds. Default: 300
- allow
All BooleanScopes - Specifies whether the client is allowed to request all scopes. Default: false
- allow
Scopes List<String> - Specifies the scopes IDs that the client is allowed to request
- auth
Server StringId - The auth server ID
- client
Secret String - Secret of the client - will be used when ID is also set.
- created
At String - An ISO-8601 timestamp representation of entity creation date.
- grant
Types List<String> - List of OAuth 2.0 grant types
- id
Token NumberDuration - The duration of the minted token is valid for, in seconds. Default: 300
- identity
Auth StringServer Client Id - The OAuth 2.0 client ID. Requires replacement if changed.
- labels Map<String>
- Labels store metadata of an entity that can be used for filtering an entity list or for searching across entity types.
- login
Uri String - The URI of the login page where the user is redirected to authenticate in interactive flows. The login page must be secure (HTTPS).
- name String
- The name of the client
- redirect
Uris List<String> - The URIs that the client is allowed to redirect to after authentication in interactive flows. All redirect URIs must be absolute URIs, be secure (HTTPS), and must not include a fragment component.
- response
Types List<String> - List of OAuth 2.0 response types
- token
Endpoint StringAuth Method - Requested authentication method for OAuth 2.0 endpoints. possible known values include one of ["client_secret_post", "none"]; Default: "client_secret_post"
- updated
At String - An ISO-8601 timestamp representation of entity update date.
Import
In Terraform v1.5.0 and later, the import block can be used with the id attribute, for example:
terraform
import {
to = konnect_identity_auth_server_client.my_konnect_identity_auth_server_client
id = jsonencode({
auth_server_id = "d32d905a-ed33-46a3-a093-d8f536af9a8a"
id = "kYa9iQFU5xPDSIUH9z1z"
})
}
The pulumi import command can be used, for example:
$ pulumi import konnect:index/identityAuthServerClient:IdentityAuthServerClient my_konnect_identity_auth_server_client '{"auth_server_id": "d32d905a-ed33-46a3-a093-d8f536af9a8a", "id": "kYa9iQFU5xPDSIUH9z1z"}'
To learn more about importing existing cloud resources, see Importing resources.
Package Details
- Repository
- konnect kong/terraform-provider-konnect
- License
- Notes
- This Pulumi package is based on the
konnectTerraform Provider.
Viewing docs for konnect 3.14.0
published on Friday, Apr 24, 2026 by kong
published on Friday, Apr 24, 2026 by kong
