terraform-provider-oci
terraform-provider-oci copied to clipboard
oracle
No support for Identity Domains
hello A customer just got access to his new tenancy. We now have access to Identity Domains. Unfortunately, all the terraform scripts we have created during POC on old tenant (without Domain) to create GROUPS are now failing. Seems that terraform templates for groups don’t support identity Domain. Any idea on when Terraform will be ‘Domain Aware’ or who should I contact ? Thanks Christophe
Terraform seems to be able to create an identity domain (https://registry.terraform.io/providers/oracle/oci/latest/docs/resources/identity_domain), but I can't find a way to create a user in any domain other than the default domain: there is no notion of domains in the oci_identity_user resource (https://registry.terraform.io/providers/oracle/oci/latest/docs/resources/identity_user).
This seems like a very important thing to be left out of terraform, since identity domain is a recommend setup for OCI with single cloud setups.
This functionality isn't available in the OCI cli either.
Is there any prediction on implementing this?
Most of the API is not identity domain aware. For example, the API for creating a group is missing the property to specify the identity domain: https://docs.oracle.com/en-us/iaas/api/#/en/identity/20160918/datatypes/CreateGroupDetails
Support for identity domain will first need to be implemented in OCI's API, before it can be implemented in the terraform provider.
Thank you for reporting the issue. We observed the affected resources are not provided in the description or it's incorrect. We request you to add it in issue description as mentioned in below format. Example: affected_resources = oci_core_instance , oci_core_instances
If it's not related to any particular resource then mention affected resource as terraform. Example: affected_resources = terraform
As this works through automation, request you to follow exact syntax.
