thomasklein/terraform-app-influx
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
Files
6d4b60fc382f3c4db58086a46cdb41f4c7c58403
terraform-app-influx/oidc.tf
Tamas Kiss 6d4b60fc38 found it like this
2025-01-15 04:23:04 +01:00

34 lines
1.2 KiB
HCL
Raw Blame History

data "aws_cognito_user_pools" "thomasklein_infra" {
name = "thomasklein-infra"
}
resource "aws_cognito_user_pool_client" "this" {
name = "chronograf"
user_pool_id = data.aws_cognito_user_pools.thomasklein_infra.ids[0]
allowed_oauth_flows_user_pool_client = true
allowed_oauth_flows = ["code"]
allowed_oauth_scopes = ["profile", "email", "openid"]
supported_identity_providers = ["COGNITO"]
generate_secret = true
callback_urls = [
"https://${local.chronograf_domain}/oauth/cognito/callback",
"https://${local.chronograf_domain}/oauth/Cognito/callback"
]
}
locals {
# these should be available as an attribute
cognito_base_url = "https://${data.aws_cognito_user_pools.thomasklein_infra.name}.auth.${data.aws_region.current.name}.amazoncognito.com"
cognito_authz_url = "${local.cognito_base_url}/oauth2/authorize"
cognito_token_url = "${local.cognito_base_url}/oauth2/token"
cognito_userinfo_url = "${local.cognito_base_url}/oauth2/userInfo"
jwks_url = "https://cognito-idp.${data.aws_region.current.name}.amazonaws.com/${aws_cognito_user_pool_client.this.user_pool_id}/.well-known/jwks.json"
}
# https://cognito-idp.{region}.amazonaws.com/{userPoolId}/.well-known/jwks.json
Reference in New Issue View Git Blame Copy Permalink