terraform-provider-datadog icon indicating copy to clipboard operation
terraform-provider-datadog copied to clipboard

Published 20 hours ago verified publisher icon DataDog

Manage Team SAML Mappings

Open SharpEdgeMarshall opened this issue 1 year ago • 2 comments

What resources or data sources are affected?

Create a datadog_team_mapping resource

Feature Request

Teams' assignments can be managed by SAML mappings in the UI but the terraform resource doesn't exist.

References

No response

SharpEdgeMarshall avatar Oct 17 '23 13:10 SharpEdgeMarshall

Looks like this is currently blocked(?) by the DD API not having an endpoint to do so or functionality under the existing AuthN mapping - https://docs.datadoghq.com/api/latest/authn-mappings/

wsellars-bw avatar Dec 05 '23 15:12 wsellars-bw

This resources would also be very useful for us

Var091 avatar Feb 19 '24 11:02 Var091

This is something that our organization would really appriciate, atm we have lots of teams and to manually manage these mappings would be a really painful. Does the api support doing this atm? To me that isn't really clear from the docs, as @wsellars-bw points out as well

andersro93 avatar Mar 18 '24 14:03 andersro93

Yea, still hoping to see the api extended to allow this as a feature. Haven't seen a change on DD side yet, but if you've got a contract/subscription make sure to hit support up with a feature request

wsellars-bw avatar Mar 18 '24 14:03 wsellars-bw

Seems like this was added with https://github.com/DataDog/terraform-provider-datadog/releases/tag/v3.39.0 by @eric-wood in https://github.com/DataDog/terraform-provider-datadog/pull/2363. However, it doesn't seem that this is actually taking effect inside datadog. Maybe there is an issue with sdk that it is not sending the request? Anybody else having the same issue?

andersro93 avatar Apr 26 '24 14:04 andersro93

Hey @andersro93! I'd love to help look into this but it will require some more information; if you reach out to support they'll be able to connect us in a way I can dig in deeper.

eric-wood avatar Apr 26 '24 16:04 eric-wood

From what I can tell, it looks like the resource works, but our issue was that we used both the team and role fields in the same resource (which the provider allows us to do). When we provide both, only the role is shown in DD, but when we split it into two resources (one with team and one with role), both are shown in DD, and the team-mapping seems to work. The resource and docs should probably be updated to reflect this.

JonasBak avatar Apr 30 '24 12:04 JonasBak

Nice @JonasBak you beat me to it. Seems that it works for us now @eric-wood! 🚀

andersro93 avatar Apr 30 '24 14:04 andersro93

Thank you @JonasBak! The relationship is mutually exclusive, but this is somewhat difficult to express with the tools available to us. I'll see about clarifying this better in the documentation. Teams and IDP are becoming more and more important and I'm hoping we can provide more flexible interfaces for this in the future.

eric-wood avatar Apr 30 '24 15:04 eric-wood

@eric-wood I confirm it's working for us now. Should I close the issue, or will you take care of it?

SharpEdgeMarshall avatar May 03 '24 15:05 SharpEdgeMarshall

Really happy to hear things are working great; will close it out. Let us know if anything comes up in the future and we'll jump on it. Thanks everyone!

eric-wood avatar May 03 '24 17:05 eric-wood