pulumi-cloudflare-kotlin/com.pulumi.cloudflare.kotlin.inputs/AccessApplicationSaasAppArgs

AccessApplicationSaasAppArgs

data class AccessApplicationSaasAppArgs(val accessTokenLifetime: Output<String>? = null, val allowPkceWithoutClientSecret: Output<Boolean>? = null, val appLauncherUrl: Output<String>? = null, val authType: Output<String>? = null, val clientId: Output<String>? = null, val clientSecret: Output<String>? = null, val consumerServiceUrl: Output<String>? = null, val customAttributes: Output<List<AccessApplicationSaasAppCustomAttributeArgs>>? = null, val customClaims: Output<List<AccessApplicationSaasAppCustomClaimArgs>>? = null, val defaultRelayState: Output<String>? = null, val grantTypes: Output<List<String>>? = null, val groupFilterRegex: Output<String>? = null, val hybridAndImplicitOptions: Output<AccessApplicationSaasAppHybridAndImplicitOptionsArgs>? = null, val idpEntityId: Output<String>? = null, val nameIdFormat: Output<String>? = null, val nameIdTransformJsonata: Output<String>? = null, val publicKey: Output<String>? = null, val redirectUris: Output<List<String>>? = null, val refreshTokenOptions: Output<List<AccessApplicationSaasAppRefreshTokenOptionArgs>>? = null, val samlAttributeTransformJsonata: Output<String>? = null, val scopes: Output<List<String>>? = null, val spEntityId: Output<String>? = null, val ssoEndpoint: Output<String>? = null) : ConvertibleToJava<AccessApplicationSaasAppArgs>

Constructors

Link copied to clipboard
constructor(accessTokenLifetime: Output<String>? = null, allowPkceWithoutClientSecret: Output<Boolean>? = null, appLauncherUrl: Output<String>? = null, authType: Output<String>? = null, clientId: Output<String>? = null, clientSecret: Output<String>? = null, consumerServiceUrl: Output<String>? = null, customAttributes: Output<List<AccessApplicationSaasAppCustomAttributeArgs>>? = null, customClaims: Output<List<AccessApplicationSaasAppCustomClaimArgs>>? = null, defaultRelayState: Output<String>? = null, grantTypes: Output<List<String>>? = null, groupFilterRegex: Output<String>? = null, hybridAndImplicitOptions: Output<AccessApplicationSaasAppHybridAndImplicitOptionsArgs>? = null, idpEntityId: Output<String>? = null, nameIdFormat: Output<String>? = null, nameIdTransformJsonata: Output<String>? = null, publicKey: Output<String>? = null, redirectUris: Output<List<String>>? = null, refreshTokenOptions: Output<List<AccessApplicationSaasAppRefreshTokenOptionArgs>>? = null, samlAttributeTransformJsonata: Output<String>? = null, scopes: Output<List<String>>? = null, spEntityId: Output<String>? = null, ssoEndpoint: Output<String>? = null)

Properties

Link copied to clipboard
val accessTokenLifetime: Output<String>? = null

The lifetime of the Access Token after creation. Valid units are m and h. Must be greater than or equal to 1m and less than or equal to 24h.

Link copied to clipboard
val allowPkceWithoutClientSecret: Output<Boolean>? = null

Allow PKCE flow without a client secret.

Link copied to clipboard
val appLauncherUrl: Output<String>? = null

The URL where this applications tile redirects users.

Link copied to clipboard
val authType: Output<String>? = null

Modifying this attribute will force creation of a new resource.

Link copied to clipboard
val clientId: Output<String>? = null

The application client id.

Link copied to clipboard
val clientSecret: Output<String>? = null

The application client secret, only returned on initial apply.

Link copied to clipboard
val consumerServiceUrl: Output<String>? = null

The service provider's endpoint that is responsible for receiving and parsing a SAML assertion.

Link copied to clipboard
val customAttributes: Output<List<AccessApplicationSaasAppCustomAttributeArgs>>? = null

Custom attribute mapped from IDPs.

Link copied to clipboard
val customClaims: Output<List<AccessApplicationSaasAppCustomClaimArgs>>? = null

Custom claim mapped from IDPs.

Link copied to clipboard
val defaultRelayState: Output<String>? = null

The relay state used if not provided by the identity provider.

Link copied to clipboard
val grantTypes: Output<List<String>>? = null

The OIDC flows supported by this application.

Link copied to clipboard
val groupFilterRegex: Output<String>? = null

A regex to filter Cloudflare groups returned in ID token and userinfo endpoint.

Link copied to clipboard
val hybridAndImplicitOptions: Output<AccessApplicationSaasAppHybridAndImplicitOptionsArgs>? = null

Hybrid and Implicit Flow options.

Link copied to clipboard
val idpEntityId: Output<String>? = null

The unique identifier for the SaaS application.

Link copied to clipboard
val nameIdFormat: Output<String>? = null

The format of the name identifier sent to the SaaS application.

Link copied to clipboard
val nameIdTransformJsonata: Output<String>? = null

A JSONata expression that transforms an application's user identities into a NameID value for its SAML assertion. This expression should evaluate to a singular string. The output of this expression can override the name_id_format setting.

Link copied to clipboard
val publicKey: Output<String>? = null

The public certificate that will be used to verify identities.

Link copied to clipboard
val redirectUris: Output<List<String>>? = null

The permitted URL's for Cloudflare to return Authorization codes and Access/ID tokens.

Link copied to clipboard
val refreshTokenOptions: Output<List<AccessApplicationSaasAppRefreshTokenOptionArgs>>? = null

Refresh token grant options.

Link copied to clipboard
val samlAttributeTransformJsonata: Output<String>? = null

A JSONata expression that transforms an application's user identities into attribute assertions in the SAML response. The expression can transform id, email, name, and groups values. It can also transform fields listed in the samlattributes or oidcfields of the identity provider used to authenticate. The output of this expression must be a JSON object.

Link copied to clipboard
val scopes: Output<List<String>>? = null

Define the user information shared with access.

Link copied to clipboard
val spEntityId: Output<String>? = null

A globally unique name for an identity or service provider.

Link copied to clipboard
val ssoEndpoint: Output<String>? = null

The endpoint where the SaaS application will send login requests.

Functions

Link copied to clipboard
open override fun toJava(): AccessApplicationSaasAppArgs