From a1686111733ef42a52f088b237e9e9a9ce1e8545 Mon Sep 17 00:00:00 2001 From: Julien Capellari Date: Tue, 16 Feb 2021 14:48:06 +0100 Subject: [PATCH 1/3] Indicate needed scope to get client secrets in doc --- docs/resources/client.md | 6 +++++- 1 file changed, 5 insertions(+), 1 deletion(-) diff --git a/docs/resources/client.md b/docs/resources/client.md index 0a6fdc96..07c63725 100644 --- a/docs/resources/client.md +++ b/docs/resources/client.md @@ -222,10 +222,14 @@ Arguments accepted by this resource include: Attributes exported by this resource include: * `client_id` - String. ID of the client. -* `client_secret` - String. Secret for the client; keep this private. +* `client_secret` - String. Secret for the client; keep this private. * `is_first_party` - Boolean. Indicates whether or not this client is a first-party client. * `is_token_endpoint_ip_header_trusted` - Boolean * `oidc_conformant` - Boolean. Indicates whether or not this client will conform to strict OIDC specifications. * `grant_types` - List(String). Types of grants that this client is authorized to use. * `custom_login_page_on` - Boolean. Indicates whether or not a custom login page is to be used. * `token_endpoint_auth_method` - String. Defines the requested authentication method for the token endpoint. Options include `none` (public client without a client secret), `client_secret_post` (client uses HTTP POST parameters), `client_secret_basic` (client uses HTTP Basic). + +### Client keys + +To access the `client_secret` attribute you need to add the `read:client_keys` scope to the Terraform client. Otherwise, the attribute will contain an empty string. From be6f083e34250581a15d37bfdf1c2e1aa1adb7c6 Mon Sep 17 00:00:00 2001 From: Yvo Date: Sun, 21 Mar 2021 15:41:28 +0100 Subject: [PATCH 2/3] Add missing end tag marker to render Markdown. --- docs/resources/client.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/docs/resources/client.md b/docs/resources/client.md index 07c63725..8691f8bd 100644 --- a/docs/resources/client.md +++ b/docs/resources/client.md @@ -222,7 +222,7 @@ Arguments accepted by this resource include: Attributes exported by this resource include: * `client_id` - String. ID of the client. -* `client_secret` - String. Secret for the client; keep this private. +* `client_secret`(#client-keys) - String. Secret for the client; keep this private. * `is_first_party` - Boolean. Indicates whether or not this client is a first-party client. * `is_token_endpoint_ip_header_trusted` - Boolean * `oidc_conformant` - Boolean. Indicates whether or not this client will conform to strict OIDC specifications. From dba0d639a01ce38ea01b9229073fdde91c63024c Mon Sep 17 00:00:00 2001 From: Yvo Date: Sun, 21 Mar 2021 15:42:29 +0100 Subject: [PATCH 3/3] Lets try that again :faceplam: --- docs/resources/client.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/docs/resources/client.md b/docs/resources/client.md index 8691f8bd..e3984912 100644 --- a/docs/resources/client.md +++ b/docs/resources/client.md @@ -222,7 +222,7 @@ Arguments accepted by this resource include: Attributes exported by this resource include: * `client_id` - String. ID of the client. -* `client_secret`(#client-keys) - String. Secret for the client; keep this private. +* `client_secret`[1](#client-keys) - String. Secret for the client; keep this private. * `is_first_party` - Boolean. Indicates whether or not this client is a first-party client. * `is_token_endpoint_ip_header_trusted` - Boolean * `oidc_conformant` - Boolean. Indicates whether or not this client will conform to strict OIDC specifications.