`okta_app_*` - implement boolean toggle to disable /credentials/keys

[exitcode0]

Community Note

• Please vote on this issue by adding a 👍 reaction to the original issue to help the community and maintainers prioritize this request
• Please do not leave "+1" or other comments that do not add relevant new information or questions, they generate extra noise for issue followers and do not help prioritize the request
• If you are interested in working on this issue or have submitted a pull request, please leave a comment

Description

When performing a Terraform Plan okta_app_* resources call this code This calls /api/v1/apps/${applicationId}/credentials/keys which lacks a rate limit by default

These API calls are not needed for my use-case and cause the okta_app_* resource to have an outsized impact on the most restrictive Okta API rate limit

# /api/v1/ratelimit/tracked-buckets
{
  "bucketUri": "/api/v1/apps",
  "operation": "ALL",
  "matchType": "LONGEST_MATCH",
}

Long term this should likely be its own distinct resource like okta_idp_saml_key In the interim, i'd love a boolean toggle to disable fetching this data

New or Affected Resource(s)

• oktaapp*

Potential Terraform Configuration

resource "okta_app_saml" "example" {
  name = "example"
  # omit_credentials = True
  # skip_credentials = True
}

References

• 0000

[duytiennguyen-okta]

OKTA internal reference https://oktainc.atlassian.net/browse/OKTA-712692