Open okra-okta opened 1 year ago
From Slacking with @okra-okta, the code in question is at https://github.com/okta/terraform-provider-okta/blob/master/okta/resource_okta_authenticator.go#L318-L327
Speaking with PM @jefftaylor-okta we need to revisit all of the authenticators support given the importance of passwordless authentication.
Okta internal reference: https://oktainc.atlassian.net/browse/OKTA-608740
This issue is stale because it has been open 60 days with no activity. Remove stale label or comment or this will be closed in 5 days
Providing null
for these missing values has worked reliably for us:
resource "okta_authenticator" "webauthn" {
name = "Security Key or Biometric"
key = "webauthn"
status = "ACTIVE"
provider_hostname = null
provider_auth_port = null
provider_shared_secret = null
provider_user_name_template = null
}
Any updates on this? I am seeing the same issue as the original poster with the following settings:
resource "okta_authenticator" "webauthn" {
name = "WebAuthn"
key = "webauthn"
# Seems to throw an error when the settings argument is defined:
settings = jsonencode(
{
"allowedFor": "authentication",
"userVerification": "REQUIRED"
}
)
# The following values were pulled from a data source:
provider_hostname = "localhost"
provider_auth_port = null
provider_shared_secret = null
provider_user_name_template = "global.assign.userName.login"
}
Thanks
Community Note
Terraform Version
Terraform v1.4.6 on darwin_amd64
Affected Resource(s)
Terraform Configuration Files
Debug Output
Error: for authenticator type 'security_key' fields 'provider_hostname', 'provider_auth_port', 'provider_shared_secret', and 'provider _user_name_template' are required
Expected Behavior
Authenticator should be created successfully
Can this be done in the Admin UI?
Yes
Can this be done in the actual API call?
Yes
Actual Behavior
Error says that optional arguments are required.
Steps to Reproduce
terraform plan
terraform apply
Important Factoids
References