NOTE: This module uses Terraform 12 syntax. If you're using Terraform 11, see Usage.
This repo contains Terraform modules for setting up/connecting AWS account(s) with an Okta AWS app. A Terraform module refers to a self-contained packages of Terraform configurations that are managed as a group.
Okta's integration with Amazon Web Services (AWS) allows end users to authenticate to one or more AWS accounts and gain access to specific roles using single sign-on with SAML. For a detailed explanation of Okta SSO setup with AWS, see the Okta SAML 2.0 AWS Guide.
This module can be used to setup an account for both scenarios supported by Okta:
This module adheres to Terraform Module Conventions and has the following folder structure:
- modules: This folder contains the reusable code for this Terraform Module, broken down into one or more submodules.
- examples : This folder contains examples of how to use the submodules.
- Please create issues for bugs/feature requests.
- Create issues before creating pull requests and reference them in the pull request (so there is proper context and justification for a change).
- Follow the Terraform Module Conventions when contributing.
This module follows semantic versioning.
When using these modules in your own code, you will need to use a Git URL with a ref attribute that pins you to a specific version of the modules, such as the following example:
Terraform 11:
module "okta_master" {
source = "github.com/elastic/terraform-okta-aws.git/modules/master?ref=v0.1.1"
}
module "okta_child" {
source = "github.com/elastic/terraform-okta-aws.git/modules/child?ref=v0.1.1"
}
Terraform 12:
module "okta_master" {
source = "github.com/elastic/terraform-okta-aws.git/modules/master?ref=v1.1.1"
}
module "okta_child" {
source = "github.com/elastic/terraform-okta-aws.git/modules/child?ref=v1.1.1"
}
After completing the setup, AWS roles can be assumed from Okta:
