Support Oauth consent screen scope configuration

[red8888]

Community Note

• Please vote on this issue by adding a 👍 reaction to the original issue to help the community and maintainers prioritize this request.
• Please do not leave +1 or me too comments, they generate extra noise for issue followers and do not help prioritize the request.
• If you are interested in working on this issue or have submitted a pull request, please leave a comment.
• If an issue is assigned to a user, that user is claiming responsibility for the issue.
• Customers working with a Google Technical Account Manager or Customer Engineer can ask them to reach out internally to expedite investigation and resolution of this issue.

Description

How do I do this with terraform? https://developers.google.com/workspace/guides/configure-oauth-consent

There seem to be two resources, but they include nothing about scopes

# https://registry.terraform.io/providers/hashicorp/google/latest/docs/resources/iap_client

resource "google_iap_brand" "project_brand" {
  support_email     = "support@example.com"
  application_title = "Cloud IAP protected Application"
  project           = google_project_service.project_service.project
}

resource "google_iap_client" "project_client" {
  display_name = "Test Client"
  brand        =  google_iap_brand.project_brand.name
}

Is this unsupported?

New or Affected Resource(s)

• google_iap_brand
• google_iap_client

Potential Terraform Configuration

I not sure which resource should handle this config

References

No response

~b/330932729~ b/117642601

[SarahFrench]

Note from triage: Possibly related to https://github.com/hashicorp/terraform-provider-google/issues/14749

[bryan0515]

For internal user use case, please use the Google managed OAuth client - https://cloud.google.com/iap/docs/custom-oauth-configuration

For external user use case, please use the UI option. These resources only support the internal user use case.

[melinath]

Kicking back to triage.

[rileykarson]

The step the user is requesting here doesn't seem to have an API- marking upstream.

[carloscaequifax]

Is there a way to configure Oauth consent screen on GCP yet using terraform ?

[mitchellrust]

Seems this is still unavailable for external users, would love if this could make it into a future roadmap!