search

mrparkers / terraform-provider-keycloak

Terraform provider for Keycloak
https://registry.terraform.io/providers/mrparkers/keycloak/latest/docs
MIT License
612 stars 300 forks source link

Feature request: Add 2fa_required/mfa_required field for users #797

Open smoehrle opened 1 year ago

smoehrle commented 1 year ago

Current it is not possible to enforce 2FA/MFA for individual users. It would be great to be able to enforce this. I.e. if a user does not have 2FA/MFA configured, the "configure OTP" action is set.

resource "keycloak_user" "jane_doe" {
  realm_id = data.keycloak_realm.realm.id
  username = "jane.doe"
  enabled  = true

  email          = "jane.doe@example.com"
  first_name     = Jane
  last_name      = Doe

  initial_password {
    value     = "..."
    temporary = true
  }
  # NEW
  mfa_required = true
}