This repo contains the configuration that will be discussed in the P1AZ session.
terraform - Contains the HCL to create as much as possible of the PingOne Environment
davinci - Contains a DaVinci flow used in the Labs
policies - Contains the Policy sets for the Labs
Terraform HCL is provided to create the PingOne Environment that is needed for the P1AZ Trust Framework and Policies.
To execute, clone this repo and do the following:
Add a terraform.tfvars file to the cloned terraform folder.
region = "{{ NorthAmerica | Canada | Asia | Europe }}"
organization_id = "{{orgId}}"
admin_env_id = "{{adminEnvId}}"
admin_user_id = "{{adminUserId}}"
worker_id = "{{workerId}}"
worker_secret = "{{workerSecret}}"
deploy_name = "SKO2023 - PingOne Authorize"Replace {{ ... }} with your PingOne details
At a command line:
terraform init
terraform planIf the plan fails - check your terraform.tfvars values.
If the plan succeeds:
terraform apply —auto-approveTerraform should execute and display a set of values that need to be manually entered into the created PingOne users
To get the proper JSON object for children,
terraform output -raw childrenNote The output has an extra
%character - don't copy it.
Create a PingOne Environment.
Add 2 Custom Attributes
| Name | Settings |
|---|---|
parent |
STRING |
children |
JSON multi-valued |
Add 3 Users
- Parent
- Child1
- Child2
Add PingOne Authorize to your Environment
Note Make sure you can Import -- check the Version History tab. If you can't - ask for the Feature Flag to be added to this Env
Data for the Labs need to be manually added to the following Users:
| P1 User | Attribute | Value |
|---|---|---|
| child1 | "Parent ID" | parentId (Terraform ouput) |
| child2 | "Parent ID" | parentId (Terraform ouput) |
| parent | "Children" | [{"id":"{{child1.id}}","limit":100},{"id":"{{child2.id}}","limit":200}] |
Decision Endpoints -- Test
- Enable "Record recent decisions"
React
Typescript
Django
Laravel
Facebook
Microsoft
Google
Alibaba
D3
Tencent