search

okta / terraform-provider-okta

A Terraform provider to manage Okta resources, enabling infrastructure-as-code provisioning and management of users, groups, applications, and other Okta objects.
https://registry.terraform.io/providers/okta/okta
Mozilla Public License 2.0
255 stars 207 forks source link

Add support for `first-party-app-settings` API to manage `sessionIdleTimeoutMinutes` and `sessionMaxLifetimeMinutes` for Okta Admin Console #1953

Open stmyers opened 6 months ago

stmyers commented 6 months ago

Community Note

Description

Built-in Okta Apps (in this case, Okta Admin Console) recently gained app-specific settings for managing session lifetime. The settings are detailed in the Okta Application Settings API docs. It would be nice if these were supported in TF.

curl -i -X PUT \
  'https://subdomain.okta.com/api/v1/first-party-app-settings/{appName}' \
  -H 'Authorization: YOUR_API_KEY_HERE' \
  -H 'Content-Type: application/json' \
  -d '{
    "sessionMaxLifetimeMinutes": 720,
    "sessionIdleTimeoutMinutes": 15
  }'

Potential Terraform Configuration

resource "okta_app_settings" "admin_console" {
  app_name          = "Okta Admin Console"
  app_settings_json = jsonencode({
    "sessionMaxLifetimeMinutes": 720,
    "sessionIdleTimeoutMinutes": 15
  }) 
}

References

https://help.okta.com/en-us/content/topics/security/policies/configure-admin-session.htm https://developer.okta.com/docs/api/openapi/okta-management/management/tag/ApplicationOktaApplicationSettings/

duytiennguyen-okta commented 6 months ago

OKTA internal reference https://oktainc.atlassian.net/browse/OKTA-717453