Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

okta_app_oauth when response_types is not provided deployment is not idempotent #2143

Open
richard-collette-precisely opened this issue Nov 20, 2024 · 1 comment
Labels
triaged Triaged into internal Jira

Comments

@richard-collette-precisely
Copy link

richard-collette-precisely commented Nov 20, 2024

Community Note

  • Please vote on this issue by adding a 👍 reaction to the original issue to help the community and maintainers prioritize this request
  • Please do not leave "+1" or other comments that do not add relevant new information or questions, they generate extra noise for issue followers and do not help prioritize the request
  • If you are interested in working on this issue or have submitted a pull request, please leave a comment

Terraform Version

1.9.8

Affected Resource(s)

  • okta_app_oauth

Terraform Configuration Files

Terraform CDK generated terraform json

{
  "resource": {
    "okta_app_oauth": {
      "DIS-SuiteAdmin-AccessManagementApi-dev_9AF4F904": {
        "//": {
          "metadata": {
            "path": "normal-preview-dev/DIS-SuiteAdmin-AccessManagementApi-dev/DIS-SuiteAdmin-AccessManagementApi-dev",
            "uniqueId": "DIS-SuiteAdmin-AccessManagementApi-dev_9AF4F904"
          }
        },
        "admin_note": "Terraformed. This application is used to manage access to the Access Management API.",
        "grant_types": [
          "client_credentials"
        ],
        "implicit_assignment": true,
        "label": "DIS-SuiteAdmin-AccessManagementApi-dev",
        "response_types": [
          "token"
        ],
        "type": "service"
      }
}

Debug Output

Not debug, but sufficient

image

Expected Behavior

All deployments should be idempotent

Can this be done in the Admin UI?

Yes.

Can this be done in the actual API call?

Yes.

Actual Behavior

When deploying, the optional response_types property appears to be set by the server but not synchronized to state. On every deployment it wants to remove the property that was added by the server.

image

@duytiennguyen-okta
Copy link
Contributor

OKTA internal reference https://oktainc.atlassian.net/browse/OKTA-839372

@duytiennguyen-okta duytiennguyen-okta added the triaged Triaged into internal Jira label Dec 3, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
triaged Triaged into internal Jira
Projects
None yet
Development

No branches or pull requests

2 participants