fmt

2025-09-16 00:28:54 +03:00
parent 7dde0d3f2a
commit d71935d063
5 changed files with 122 additions and 119 deletions
--- a/terraform/authentik/variables.tf
+++ b/terraform/authentik/variables.tf
@@ -1,24 +1,24 @@
 variable "oauth_applications" {
  description = "Map of OAuth2/OpenID applications"
  type = map(object({
-    name                = string
-    slug                = string
-    group               = optional(string, "")
-    policy_engine_mode  = optional(string, "all")
-    meta_description    = optional(string, "")
-    meta_launch_url     = optional(string, "")
-    meta_icon           = optional(string, "")
-    redirect_uris       = list(string)
-    client_type         = optional(string, "confidential")
-    client_id           = optional(string, null)
+    name                       = string
+    slug                       = string
+    group                      = optional(string, "")
+    policy_engine_mode         = optional(string, "all")
+    meta_description           = optional(string, "")
+    meta_launch_url            = optional(string, "")
+    meta_icon                  = optional(string, "")
+    redirect_uris              = list(string)
+    client_type                = optional(string, "confidential")
+    client_id                  = optional(string, null)
    include_claims_in_id_token = optional(bool, true)
-    access_code_validity = optional(string, "minutes=1")
-    access_token_validity = optional(string, "minutes=5")
-    refresh_token_validity = optional(string, "days=30")
-    property_mappings   = optional(list(string), [])
-    authorization_flow  = optional(string, null)
-    signing_key        = optional(string, null)
-    outpost            = optional(string, null)
+    access_code_validity       = optional(string, "minutes=1")
+    access_token_validity      = optional(string, "minutes=5")
+    refresh_token_validity     = optional(string, "days=30")
+    property_mappings          = optional(list(string), [])
+    authorization_flow         = optional(string, null)
+    signing_key                = optional(string, null)
+    outpost                    = optional(string, null)
  }))
  default = {}
 }
@@ -26,25 +26,25 @@ variable "oauth_applications" {
 variable "proxy_applications" {
  description = "Map of Proxy applications"
  type = map(object({
-    name                = string
-    slug                = string
-    group               = optional(string, "")
-    policy_engine_mode  = optional(string, "all")
-    meta_description    = optional(string, "")
-    meta_launch_url     = optional(string, "")
-    meta_icon           = optional(string, "")
-    external_host       = string
-    internal_host       = optional(string, "")
-    internal_host_ssl_validation = optional(bool, true)
-    mode                = optional(string, "proxy")
-    intercept_header_auth = optional(bool, false)
-    basic_auth_enabled  = optional(bool, false)
+    name                          = string
+    slug                          = string
+    group                         = optional(string, "")
+    policy_engine_mode            = optional(string, "all")
+    meta_description              = optional(string, "")
+    meta_launch_url               = optional(string, "")
+    meta_icon                     = optional(string, "")
+    external_host                 = string
+    internal_host                 = optional(string, "")
+    internal_host_ssl_validation  = optional(bool, true)
+    mode                          = optional(string, "proxy")
+    intercept_header_auth         = optional(bool, false)
+    basic_auth_enabled            = optional(bool, false)
    basic_auth_username_attribute = optional(string, "")
    basic_auth_password_attribute = optional(string, "")
-    cookie_domain       = optional(string, "")
-    authorization_flow  = optional(string, null)
-    skip_path_regex    = optional(string, "")
-    outpost            = optional(string, null)
+    cookie_domain                 = optional(string, "")
+    authorization_flow            = optional(string, null)
+    skip_path_regex               = optional(string, "")
+    outpost                       = optional(string, null)
  }))
  default = {}
 }
@@ -76,10 +76,10 @@ variable "flows" {
 variable "groups" {
  description = "Map of user groups"
  type = map(object({
-    name        = string
+    name         = string
    is_superuser = optional(bool, false)
-    parent      = optional(string, null)
-    attributes  = optional(map(any), {})
+    parent       = optional(string, null)
+    attributes   = optional(map(any), {})
  }))
  default = {}
 }
@@ -87,8 +87,8 @@ variable "groups" {
 variable "certificates" {
  description = "Map of certificates for HTTPS"
  type = map(object({
-    name              = string
-    certificate_data  = string
+    name             = string
+    certificate_data = string
    key_data         = string
    managed          = optional(string, null)
  }))
@@ -114,7 +114,7 @@ variable "default_authorization_flow" {
 }

 variable "default_authentication_flow" {
-  description = "Default authentication flow slug"  
+  description = "Default authentication flow slug"
  type        = string
  default     = "default-authentication-flow"
 }
@@ -134,4 +134,5 @@ variable "tags" {
 variable "authentik_url" {
  description = "Authentik URL"
  type        = string
-}
+  default     = "https://idm.hexor.cy"
+}