Skip to content

Latest commit

 

History

History
898 lines (561 loc) · 59.7 KB

CHANGELOG.md

File metadata and controls

898 lines (561 loc) · 59.7 KB
Raw

Changelog

3.20.6 (February 3, 2022)

ENHANCEMENTS:

  • Added new identity_provider and identity_provider_ids fields to the okta_policy_rule_signon resource #942. Thanks, @bogdanprodan-okta!

3.20.5 (February 2, 2022)

BUGS:

  • Whiffed setting the user agent correctly, fixed for release.

3.20.4 (February 2, 2022)

ENHANCEMENTS:

BUGS:

  • SAML SLO Cert Fix #923. Thanks, @ymylei!
  • Nil bumper on *sdk.ClientRateLimitMode returned from rate limiting #929. Thanks, @monde!
  • API Mutex Fix For apps/{id} endpoint #933. Thanks, @ymylei!
  • Ensure okta_authenticator settings are ordered to prevent whitespace #936. Thanks, @virgofx!
  • Ensure VERIFIED domains return true #937. Thanks, @virgofx!
  • Fixed group search in the okta_groups data source #938. Thanks, @bogdanprodan-okta!

PROJECT IMPROVEMENTS:

3.20.3 (January 14, 2022)

ENHANCEMENTS:

  • Added new custom_profile_attributes field to the okta_group resource #851. Thanks, @ymylei!
  • Updated list of valid Okta OAuth scopes #897. Thanks, @virgofx!
  • Added missing role type to the okta_role_subscription resource #863. Thanks, @bogdanprodan-okta!
  • Added new certificate_source_type field to the okta_domain resource #899. Thanks, @virgofx!
  • Made okta_authenticator importable #907. Thanks, @virgofx!

BUGS:

  • Fixed okta_domain_verification resource #899. Thanks, @virgofx!

3.20.2 (December 8, 2021)

ENHANCEMENTS:

BUGS:

3.20.1 (December 3, 2021)

ENHANCEMENTS:

3.20.0 (November 23, 2021)

ENHANCEMENTS:

BUGS:

3.19.0 (November 12, 2021)

ENHANCEMENTS:

  • Added new okta_admin_role_custom, okta_admin_role_custom_assignments and okta_resource_set resources #789. Thanks, @bogdanprodan-okta!
  • Field always_include_in_token is now editable for all the default claims except sub #790. Thanks, @bogdanprodan-okta!
  • Added new okta_link_definition and okta_link_value resources #794. Thanks, @bogdanprodan-okta!
  • Added new primary_factor field to the okta_policy_rule_signon resource #796. IMPORTANT NOTE: Available only for the organizations with Identity Engine. Thanks, @bogdanprodan-okta!

BUGS:

3.18.0 (November 2, 2021)

ENHANCEMENTS:

BUGS:

3.17.0 (October 26, 2021)

IMPORTANT NOTE: This release contains resources that are only available as a part of the Identity Engine. Contact support for further information.

ENHANCEMENTS:

3.16.0 (October 22, 2021)

IMPORTANT NOTE: This release contains resources that are only available as a part of the Identity Engine. Contact support for further information.

ENHANCEMENTS:

BUGS:

3.15.0 (October 11, 2021)

ENHANCEMENTS:

BUGS:

3.14.0 (October 7, 2021)

ENHANCEMENTS:

BUGS:

3.13.13 (September 23, 2021)

BUGS:

  • Another attempt to fix constant change-loops in the okta_app_group_assignments resource #664. Thanks, @bogdanprodan-okta!

3.13.12 (September 22, 2021)

BUGS:

3.13.11 (September 21, 2021)

ENHANCEMENTS:

  • Added skip_users to the okta_group resource (check latest documentation for the usage of these fields) #646. Thanks, @bogdanprodan-okta!
  • Added new users_excluded field to the okta_group_rule resource #651. Thanks, @bogdanprodan-okta!

BUGS:

  • Fixed constant change-loops in the okta_app_group_assignments resource #644. Thanks, @bogdanprodan-okta!
  • Fixed typo and deprecation warning in the documentation for okta_app_user resource #645. Thanks, @SaffatHasan!
  • Fixed okta_group_role resource update in case of several roles are being updated #646. Thanks, @bogdanprodan-okta!
  • Terraform will attempt to remove okta_user_schema_property resource several times in case the resource still exists in the organization #656. Thanks, @bogdanprodan-okta!

3.13.10 (September 13, 2021)

BUGS:

3.13.9 (September 10, 2021)

ENHANCEMENTS:

  • Added app_settings_json to the okta_app_oauth resource #627. Thanks, @bogdanprodan-okta!
  • Added skip_users and skip_groups to the okta_app_* resources (check latest documentation for the usage of these fields) #633. Thanks, @bogdanprodan-okta!

BUGS:

  • Fixed resource import of the okta_app_group_assignments #630. Thanks, @Philipp!
  • Fixed creation of multiple app user schema properties for new (recently created) apps. #634. Thanks, @bogdanprodan-okta!
  • Fixed description for the app logo field #639. Thanks, @sklarsa!

3.13.8 (September 1, 2021)

ENHANCEMENTS:

  • Add credentials_scheme, reveal_password, shared_username and shared_password to the okta_app_three_field resource #619. Thanks, @bogdanprodan-okta!
  • Add password_hash to the okta_user resource #622. Thanks, @bogdanprodan-okta!

BUGS:

  • Fix import of accessibility_login_redirect_url field in the okta_app_saml resource #613. Thanks, @Philipp!
  • Fix create/update operations for the okta_app_user_custom_schema_property resource #606. Thanks, @Philipp!
  • Fix provider crash when importing okta_app_oauth resource #616. Thanks, @bogdanprodan-okta!
  • Fix group_memberships field setup for okta_user data source #615. Thanks, @BrentSouza!
  • Fix provider crash when okta_policy_rule_idp_discovery does not exist #622. Thanks, @bogdanprodan-okta!

3.13.7 (Aug 23, 2021)

ENHANCEMENTS:

BUGS:

  • Fix *_token_* fields setup when importing okta_auth_server_policy_rule resource #600. Thanks, @Philipp!
  • Governed Transport is now handling nil response in postRequestHook func #603. Thanks, @Mike!

3.13.6 (Aug 18, 2021)

ENHANCEMENTS:

BUGS:

3.13.5 (Aug 17, 2021)

ENHANCEMENTS:

BUGS:

3.13.4 (Aug 16, 2021)

ENHANCEMENTS:

BUGS:

3.13.3 (Aug 12, 2021)

BUGS:

3.13.2 (Aug 12, 2021)

ENHANCEMENTS:

BUGS:

3.13.1 (Aug 6, 2021)

ENHANCEMENTS:

  • Add inline_hook_id field to the okta_app_saml resource #561. Thanks, @noinarisak!
  • Add experimental max_api_capacity configuration field to the provider. Thanks, @monde!

BUGS:

3.13.0 (Jul 29, 2021)

ENHANCEMENTS:

3.12.1 (Jul 24, 2021)

BUGS:

  • Fix provider crash caused by the okta_policy_rule_signon resource #543. Thanks, @bogdanprodan-okta!
  • Fix permissions field set behaviour in okta_app_user_schema_property resource #543. Thanks, @bogdanprodan-okta!
  • Reverted the changes regarding the users field in the okta_group resource that was introducing breaking change #543. Thanks, @bogdanprodan-okta!

3.12.0 (Jul 20, 2021)

ENHANCEMENTS:

BUGS:

  • Suppress 404 in case group role was removed outside of the terraform #417. Thanks, @ymylei!
  • Don't recreate okta_user resource in case login field is changed #435. Thanks, @ymylei!
  • Fixed attribute statements setup for preconfigured apps #439. Thanks, @bogdanprodan-okta!
  • Don't recreate schema related resources in case array_enum, array_one_of, enum or one_of have changed @531. Thanks, @bogdanprodan-okta!

Special thanks to @JeffAshton, @jeffg-hpe, @jtdoepke, @thatguysimon, @ymylei, @joshowen, @AlexanderProschek, @gavinbunney for a lot of various documentation fixes and code improvements!!!

3.11.0 (March 26, 2021)

ENHANCEMENTS:

  • Add new okta_app_oauth_api_scope resource #356. Thanks, @mariussturm!
  • Remove ForceNew in case policy name changes to avoid policy resources recreation #362. Thanks, @me!
  • Add hotp factor to the okta_policy_mfa resource #363. Thanks, @me!
  • Remove unnecessary validations from the okta_app_oauth resource #372. Thanks, @me!
  • Add links field to okta_app, okta_app_saml and okta_app_oauth data sources #374. Thanks, @me!
  • Add new okta_auth_server_default resource #375. Thanks, @me!
  • Add new okta_policy_mfa_default and okta_policy_password_default resources #378. Thanks, @me!
  • Add remove_assigned_users field to the okta_group_rule resource #388. Thanks, @me!
  • Add new auth_server_claim_default resource #392. Thanks, @me!
  • Add groups and users fields to the okta_app, okta_app_oauth and okta_app_saml data sources #395. Thanks, @me!
  • Add id field to the okta_group data source #395. Thanks, @me!
  • Add new auth_server_claim_default resource #392. Thanks, @me!
  • Add new okta_groups data source #103. Thanks, @bendrucker and @me!
  • Several minor bug fixes and enhancements.

BUGS:

  • Add group existence check to okta_group_membership resource #380. Thanks, @ymylei!
  • Fix group assignment priority in the okta_app_group_assignment resource #381. Thanks, @me!
  • Fixed status change in the okta_auth_server_policy_rule resource . Thanks, @me!
  • Add operation retry to the okta_group_role resource #390. Thanks, @me!

3.10.1 (February 26, 2021)

ENHANCEMENTS:

  • Add retain_assignment field to okta_app_user and okta_app_group_assignment resource #330. Thanks, @Omicron7!
  • Add target_app_list field to the okta_group_role resource #349. Thanks, @me!
  • Add support for OVERRIDE value in master field and new master_override_priority field to the okta_user_schema resource #351. Thanks, @me!

BUGS:

  • Added wait to okta_group_membership resource #335. Thanks, @ymylei!
  • Fix set of subject_match_attribute value for okta_idp_oidc resource #344. Thanks, @me!
  • Fix resource validation #348. Thanks, @me!
  • Fix setup of empty login_scopes for okta_app_oauth resource #352. Thanks, @me!
  • Fix okta_group_role when removing all the items from target_group_list #341. Thanks, @me!

3.10.0 (February 19, 2021)

ENHANCEMENTS:

  • Add new okta_auth_server_scopes datasource #336. Thanks, @me!
  • Add new okta_idp_social datasource #337. Thanks, @me!
  • Several minor bug fixes and enhancements.

BUGS:

  • Fix preconfigured okta_app_swa creation in case it has more that one sign-on modes #328. Thanks, @me!
  • Add force recreate in case okta_app_user_schema changes the scope value since it's a read-only attribute #331. Thanks, @me!
  • Fix false positive output when runnning terraform planfor the okta_profile_mapping resource in case delete_when_absent is set to false #332. Thanks, @me!
  • Fix okta_app_oauth validation #333 and #340. Thanks, @me!

3.9.0 (February 12, 2021)

ENHANCEMENTS:

  • Add new okta_admin_role_targets resource #325. Thanks, @me!
  • Add target_group_list field to the okta_group_role resource #256. Thanks, @ymylei!

BUGS:

  • Fixed subject_match_attribute setup in the okta_idp_saml resource #320. Thanks, @me!
  • Fixed users setup when importing okta_group resource #323. Thanks, @me!

3.8.0 (February 1, 2021)

ENHANCEMENTS:

  • Add support for OAuth Authorization for Okta API #290. Thanks, @me!
  • Make key_id optional for okta_app_saml_metadata #128. Thanks, @cludden!
  • Add new okta_group_membership resource #252. Thanks, @ymylei!
  • Add new okta_group_role resource #255. Thanks, @ymylei!
  • Add new okta_idp_oidc data source #286. Thanks, @me!
  • Add new okta_app_oauth data source #293. Thanks, @me!
  • Add new okta_auth_server_policy data source #298. Thanks, @me!
  • Add usage field to the okta_network_zone resource #271. Thanks, @me!
  • Add okta_email factor to the okta_policy_mfa resource #269. Thanks, @me!
  • Add id field to the okta_users data source #288. Thanks, @me!
  • Add union field to the app_user_schema resource #291. Thanks, @me!
  • Add implicit_assignment field to the okta_app_oauth resource 120. Thanks, Justin Lewis!
  • Add issuer and issuer_mode fields to the okta_auth_server data resource #301. Thanks, @me!
  • Add login_mode and login_scopes to the okta_app_oauth resource #311. Thanks, @me!
  • Add single_logout_issuer, single_logout_url and single_logout_certificate fields to the okta_app_saml resource #307. Thanks, @me!
  • Add metadata_url field to the okta_app_saml resource #316. Thanks, @me!
  • Remove acs_binding and acs_type from okta_idp_oidc as (they are not supported)[(https://developer.okta.com/docs/reference/api/idps/#oauth-2-0-and-openid-connect-endpoints-object)] by this resource #286. Thanks, @me!
  • Deprecate acs_binding argument for okta_idp_saml resource, as it can only be set to HTTP-POST #286. Thanks, @me!
  • Add a retry on 404 error in case Okta lagging during resource creation. Thanks, @me!
  • Add validation for all URL-type fields.
  • Various code improvements and documentation updates. Thanks, @me!

BUGS:

  • Ignore special groups (BUILT_IN and APP_GROUP) in the group_memberships field #118. Thanks, @rasta-rocket!
  • Fix inline_hooks delete operation if the hooks were removed outside the provider #288. Thanks, @me!
  • Fix group_memberships populating in the okta_user data source #284. Thanks, @me!
  • Fix terraform import for the app_user_schema resource #291. Thanks, @me!
  • Fix delete operation for auth_server_claim resource in case claim has type SYSTEM #283. Thanks, @me!
  • Remove redundant description field from the okta_app_saml resource #278. Thanks, @me!
  • Add suppress function for the features field in the okta_app_saml resource since it's not currently possible to create/update provisioning features via the API 296. Thanks, @me!
  • Remove OAUTH_AUTHORIZATION_POLICY from okta_default_policy and okta_policy since it's not supported by Okta API #298. Use okta_auth_server_policy instead. Thanks, @me!
  • Fix status change in the okta_auth_server_policy resource #299. Thanks, @me!
  • Fix user_name_template_* fields setup for the apps resource #309. Thanks, @me!
  • Fix refresh_token_window_minutes minimum value in the okta_auth_server_policy_rule resource #314. Thanks, @me!
  • Fix attribute_statements field validation in the okta_app_saml resource #313. Thanks, @me!

3.7.4 (December 28, 2020)

ENHANCEMENTS:

  • Add dependabot to automate dependency updates #259. Thanks @jlosito!
  • Add max_clock_skew property to IdP SAML resource #263. Thanks @me!

BUGS:

  • Fix panic caused by a null pointer in okta_policy_password resource. #262. Thanks @me!
  • Add retries for creating/updating okta_user_schema resource. #262. Thanks @me!

3.7.3 (December 24, 2020)

ENHANCEMENTS:

  • Add call recovery for Okta password policy #248. Thanks @me!
  • Update data okta_group docs #251. Thanks @ymylei!
  • Adds pattern property for okta_*_schema resources #159. Thanks @fitzoh and @me!
  • Add retries on connection timeouts errors #246. Thanks @me!

BUGS:

  • Fixed handling rule with INVALID status #250. Thanks @ymylei!

3.7.2 (December 18, 2020)

ENHANCEMENTS:

BUGS:

  • Fix default name for idp_discovery #244. Thanks @nickerzb!
  • Fix okta auth server policy rule resource causing panic #245. Thanks @SBerda for submitting the issue and @me for fixing it!
  • Fix key_years_valid defaulting to 2 during resource import #245. Thanks @btsteve for submitting the issue and @me for fixing it!

3.7.1 (December 16, 2020)

ENHANCEMENTS:

  • Add validation for user type #242.

BUGS:

  • Fix state refresh for okta_user_base_schema and okta_user_schema #242.

3.7.0 (December 15, 2020)

ENHANCEMENTS:

BUGS:

3.6.1 (November 14, 2020)

ENHANCEMENTS:

BUGS:

  • Fix population of the user 'status' attribute #206. Thanks, @isometry!

3.6.0 (October 12, 2020)

ENHANCEMENTS:

  • Upgrade to Okta SDK 2.0.0 #203. Thanks a ton! @bogdanprodan-okta
  • Fix validation false positive when api_token is set via environment variable. #147. Thanks, @jgeurts
  • Update required to optional and more #208, Thanks, me! 😄

BUGS:

  • Update config.go #207, Thanks, me! 😄

3.5.1 (October 9, 2020)

ENHANCEMENTS:

BUGS:

  • Documentation: Update okta_idp_metadata_saml correct example #173, Thanks, @gaurdro and @netflash!
  • Documentation: Update warning in app_group_assignment.html.markdown #172, Thanks, @ssttgg!
  • Renaming Go module as per the organization move #195, Thanks, @stack72!

3.5.0 (August 31, 2020)

ENHANCEMENTS:

  • Add password import inline hook type. #168, Thanks, @noinarisak aka me! 🎉
  • Add external_namespace property for app_user_schema and user_schema. #102, Thanks, @thehunt33r!

BUGS:

  • Fix inline hook example code to match version that is supported. #175, Thanks, @noinarisak me again! 😃
  • Update app_group_assignment.html.markdown. #165, Thanks, snolan-amount!

3.4.1 (July 31, 2020)

RELEASE:

3.4.0 (July 30, 2020)

ENHANCEMENTS:

  • Add resource definition for Okta Event Hooks. #14, Thanks, @mbudnek!
  • Adding support for GROUP_MEMBERSHIP_ADMIN & REPORT_ADMIN. #138 Thanks, ymylei!

BUG FIXES:

3.3.0 (May 29, 2020)

ENHANCEMENTS:

  • Add user lockout notification channels. #15, Thanks, @thehunt33r!
  • Adding support for SMS template changes. #18 Thanks, @gusChan!

3.2.0 (April 03, 2020)

BUG FIXES:

  • Documentation, id is an output of app_oauth. #98 Thanks, beyondbill!

ENHANCEMENTS:

  • Improve app filtering and update Terraform SDK. #97 Thanks, quantumew! 🎉

3.1.1 (March 18, 2020)

ENHANCEMENTS:

  • Add unique property to UserSchema. #12 Thanks, @gusChan!

3.1.0 (February 19, 2020)

RELEASE:

  • First release under terraform-providers organization with binary published to releases.hashicorp.com

3.0.0 (October 16, 2019)

FEATURES:

  • Updated provider to support Terraform v0.12.0

3.0.1

FEATURES:

  • New Resource: okta_inline_hook

ENHANCEMENTS:

  • Add missing okta_idp_saml settings

3.0.2

ENHANCEMENTS:

  • Use backoff/retries functionality for XML API calls

3.0.3

FEATURES:

  • New Data Source: okta_idp_saml

ENHANCEMENTS:

  • Support import user by email

3.0.4

FEATURES:

  • New Data Source: Add okta_app_saml data source
  • New Data Source: Add okta_app_metadata_saml data source
  • New Data Source: Add okta_idp_metadata_saml data source

ENHANCEMENTS:

  • Change type of custom_profile_attributes from map to JSON string to support all types

BUG FIXES:

  • Fix group filter bug, filter_type and filter_value were not being sync'd

3.0.5

BUG FIXES:

  • Fix bug introduced in v3.0.4. User data source was not updated to the new caustom_profile_attribute type
  • Added test to cover this scenario, tests were passiing

3.0.6

ENHANCEMENTS:

  • Allow client_id to be set on OIDC application, while also maintaining the computed version. With some auth methods, such as basic auth, this is possible.

3.0.7

ENHANCEMENTS:

  • Add group_assignments for SAML and social IdPs

3.0.8

ENHANCEMENTS:

  • Add issuer_mode to social IdP. Our test org does not have a custom domain setup, thus it was working there but not in other orgs. Hard to test both scenarios in one org.

3.0.9

FEATURES:

  • New Resource: okta_template_email
  • New Resource: okta_group_roles

3.0.10

FEATURES:

  • New Resource: okta_network_zone

3.0.11

BUG FIXES:

  • Fix occasional panic when creating a user schema see issue 144
  • Users in LOCKED_OUT state are unlocked when config is ACTIVE issue 225

3.0.12

BUG FIXES:

  • Ensure schema does not panic after retry

3.0.13

FEATURES:

  • New Resource: okta_user_base_schema

ENHANCEMENTS:

  • Add missing attribute, match_type and match_attribute, on social idp resource

3.0.14

BUG FIXES:

  • Fix logic around including/excluding networks on policy rules

3.0.15

ENHANCEMENTS:

  • Update Okta SDK
  • Filter out GROUP based admin roles when processing user admin_roles attribute

3.0.16

  • Fix issues around okta_policy_rule_idp_discovery
    • app_include and app_exlcude were missing required properties
    • user_identifier_type was being added even when not defined, causing API errors
  • Fix integer array type

3.0.17

FEATURES:

  • New Resource: okta_app_user_schema
  • New Resource: okta_app_user_base_schema
  • New Resource: okta_app_user resource
  • New Resource: okta_app_group resource

ENHANCEMENTS:

  • Add required field to base schema

3.0.18

ENHANCEMENTS:

  • Support SHA-1 signing algorithm on IdPs

BUG FIXES:

  • Fix bug where audience is reset on IdP update because it is omitted from the payload

3.0.19

BUG FIXES:

  • Fix diff issues around okta_policy_rule_idp_discovery
  • Allow provisioning_action for IdPs to be set to DISABLED

3.0.20

BUG FIXES:

  • Fix okta_auth_server_claim, group_filter_type could not be set to STARTS_WITH due to a typo

3.0.21

ENHANCEMENTS:

  • Expose scope property on okta_user_schema
  • Allow setting of OAuth application visibility settings

3.0.22

BUG FIXES:

  • Send profileMaster along with IdP, so the config is recognized by Okta API
  • Fix bug in SDK related to retries and the request body being empty on subsequent requests.

3.0.23

ENHANCEMENTS:

  • Add external_name property to the okta_app_user_schema and okta_user_schema

3.0.24

ENHANCEMENTS:

  • Support profile on okta_oauth_app resource

3.0.25

ENHANCEMENTS:

  • Support setting an auth server scope as the default
  • Support profile and priority on okta_app_group_assignment
  • Support profile on okta_app_user

BUG FIXES:

  • Fix bug with supporting profile on okta_oauth_app resource

3.0.26

ENHANCEMENTS:

  • Support array enums in okta_user_schema and okta_app_user_schema as array_enum and array_one_of

3.0.27

ENHANCEMENTS:

  • Update refresh token window validation to account for new upper limit of 5 years

3.0.28

BUG FIXES:

  • Remove resource from state on 404. (#269)

3.0.29

BUG FIXES:

  • Ensure we safely sync auth server properties. (#299)
  • MANUAL rotation mode can only be set on an auth server on update. Ensure we run update after create for that scenario. (#287)

3.0.30

ENHANCEMENT:

  • Update to new separate Terraform SDK (#307)

3.0.31

BUG FIXES:

  • Ensure okta_app_group_assignment resource syncs using the right read function. (#307)

3.0.32

BUG FIXES:

  • Ensure okta_app_group_assignment and okta_app_user resources properly take multiple ids on the import functions. (#307)
  • Ensure okta_user does not error on 404 (#313)

3.0.33

FEATURES:

  • New Resource: okta_profile_mapping (#246)
  • New Resource: okta_app_basic_auth (#329)

3.0.34

BUG FIXES:

  • Policy values could not be set to 0. Doing so resulted in the SDK omitting them, resulting in Okta resetting the values to default.

3.0.35

ENHANCEMENT:

  • Require target_id on okta_profile_mapping to avoid ambiguity

FEATURES:

  • New Data Source: okta_user_profile_mapping_source (#340)

3.0.36

BUG FIXES

  • Schema merging helper function was mutating input schema causing side effects when used in a particular way. Used shallow copying to avoid this side effect. (#338)
  • Ensure response is not nil when checking status code (#307)

3.0.37

BUG FIXES

  • Ensure index is sync'd on import to avoid recreation.

3.0.38

ENHANCEMENT:

  • Support password, recovery_answer, and recovery_question as attributes on the okta_user resource.