Pre-Release staging v1.4.0

README.md

@@ -141,6 +141,19 @@ $ export MONGODB_ATLAS_API_KEYS_IDS=<API_KEYS_IDS>
 export SKIP_TEST_EXTERNAL_CREDENTIALS=TRUE
 ```
 
+- For `Federated Settings` resource configuration:
+```sh
+$ export MONGODB_ATLAS_FEDERATION_SETTINGS_ID=<YOUR_FEDERATION_SETTINGS_ID>
+$ export ONGODB_ATLAS_FEDERATED_ORG_ID=<YOUR_FEDERATED_ORG_ID>
+$ export MONGODB_ATLAS_FEDERATED_PROJECT_ID=<YOUR_VPC_FEDERATED_PROJECT_ID>
+$ export MONGODB_ATLAS_FEDERATED_GROUP_ID=<YOUR_FEDERATED_GROUP_ID>
+$ export MONGODB_ATLAS_FEDERATED_ROLE_MAPPING_ID=<YOUR_FEDERATED_ROLE_MAPPING_ID>
+$ export MONGODB_ATLAS_FEDERATED_OKTA_IDP_ID=<YOUR_FEDERATED_OKTA_IDP_ID>
+$ export MONGODB_ATLAS_FEDERATED_SSO_URL=<YOUR_FEDERATED_SSO_URL>
+$ export MONGODB_ATLAS_FEDERATED_ISSUER_URI=<YOUR_FEDERATED_ISSUER_URI>
+```
+~> **Notice:** For more information about the Federation configuration resource, see: https://www.mongodb.com/docs/atlas/reference/api/federation-configuration/
+
 ##### AWS env variables
 
 - For `Network Peering` resource configuration:

examples/Federated-Settings/Readme.md

@@ -0,0 +1,59 @@
+# Example - Okta and MongoDB Atlas Federated Settings Configuration
+
+This project aims to provide an example of using Okta and MongoDB Atlas together.
+
+
+## Dependencies
+
+* Terraform v0.13
+* Okta account 
+* A MongoDB Atlas account 
+
+```
+Terraform v0.13.0
++ provider registry.terraform.io/terraform-providers/mongodbatlas v1.4.0
+```
+
+## Usage
+
+**1\. Ensure your Okta/Mongodb Atlas Federal settings configuration is set up to have a working set of organizations, verified domains, and identity providers.**
+
+**2\. TFVARS**
+
+Now create **terraform.tfvars** file with all the variable values and make sure **not to commit it**.
+
+**3\. Review the Terraform plan. **
+
+Execute the below command and ensure you are happy with the plan.
+
+``` bash
+$ terraform plan
+```
+This project currently does the below deployments:
+
+- MongoDB Atlas Federated Settings Organizational Role Mapping
+- MongoDB Atlas Federated Settings Organizational Identity Provider
+- MongoDB Atlas Federated Settings Organizational configuration
+
+**4\. Execute the Terraform import for 2 resources that do not support create.**
+``` bash
+$ terraform import mongodbatlas_federated_settings_identity_provider.identity_provider  6287a67f7f7f7f7f441c6c-0oad7f7f7f7fk1297
+  terraform import mongodbatlas_federated_settings_org_config.org_connections_import  6287a67f7f7f7f7f441c6c-627a96837f7f7f7f7e306f14
+
+```
+
+**5\. Execute the Terraform apply.**
+
+Now execute the plan to provision the Federated settings resources.
+
+``` bash
+$ terraform apply
+```
+
+**6\. Destroy the resources.**
+
+Once you are finished your testing, ensure you destroy the resources to avoid unnecessary Atlas charges.
+
+``` bash
+$ terraform destroy
+```

examples/Federated-Settings/main.tf

@@ -0,0 +1,50 @@
+data "mongodbatlas_federated_settings" "federated_settings" {
+  org_id = var.org_id
+}
+data "mongodbatlas_federated_settings_identity_providers" "identity_provider" {
+  federation_settings_id = data.mongodbatlas_federated_settings.federated_settings.id
+}
+
+data "mongodbatlas_federated_settings_org_configs" "org_configs_ds" {
+  federation_settings_id = data.mongodbatlas_federated_settings.federated_settings.id
+}
+
+data "mongodbatlas_federated_settings_org_role_mappings" "org_role_mapping" {
+  federation_settings_id = data.mongodbatlas_federated_settings.federated_settings.id
+  org_id                 = var.org_id
+}
+resource "mongodbatlas_federated_settings_org_role_mapping" "org_role_mapping" {
+  federation_settings_id = data.mongodbatlas_federated_settings.federated_settings.id
+  org_id                 = var.org_id
+  external_group_name    = "newgroup"
+
+  role_assignments {
+    group_id = var.group_id
+    roles    = ["GROUP_OWNER", "GROUP_DATA_ACCESS_ADMIN", "GROUP_SEARCH_INDEX_EDITOR", "GROUP_DATA_ACCESS_READ_ONLY"]
+  }
+
+  role_assignments {
+    org_id = var.org_id
+    roles  = ["ORG_OWNER", "ORG_MEMBER"]
+  }
+
+}
+resource "mongodbatlas_federated_settings_org_config" "org_connections_import" {
+  federation_settings_id     = data.mongodbatlas_federated_settings.federated_settings.id
+  org_id                     = var.org_id
+  identity_provider_id       = var.identity_provider_id
+  domain_restriction_enabled = false
+  domain_allow_list          = ["yourdomain.com"]
+}
+
+resource "mongodbatlas_federated_settings_identity_provider" "identity_provider" {
+  federation_settings_id       = data.mongodbatlas_federated_settings.federated_settings.id
+  name                         = var.name
+  associated_domains           = ["yourdomain.com"]
+  sso_debug_enabled            = true
+  status                       = "ACTIVE"
+  sso_url                      = "https://mysso.oktapreview.com/app/mysso_terrafssotesdev_1/exk1f7f7f7fk5wp50h8/sso/saml"
+  issuer_uri                   = "http://www.okta.com/exk1f716hf7f750h8"
+  request_binding              = "HTTP-POST"
+  response_signature_algorithm = "SHA-256"
+}

examples/Federated-Settings/output.tf

@@ -0,0 +1,15 @@
+output "federated_settings_ds" {
+  value = data.mongodbatlas_federated_settings.federated_settings.id
+}
+
+output "identity_provider" {
+  value = data.mongodbatlas_federated_settings_identity_providers.identity_provider.id
+}
+
+output "org_configs_ds" {
+  value = data.mongodbatlas_federated_settings_org_configs.org_configs_ds.id
+}
+
+output "org_role_mapping" {
+  value = data.mongodbatlas_federated_settings_org_role_mappings.org_role_mapping.id
+}

examples/Federated-Settings/provider.tf

@@ -0,0 +1,4 @@
+provider "mongodbatlas" {
+  public_key  = var.public_key
+  private_key = var.private_key
+}

examples/Federated-Settings/variables.tf

@@ -0,0 +1,28 @@
+variable "public_key" {
+  type        = string
+  description = "Public Programmatic API key to authenticate to Atlas"
+}
+variable "private_key" {
+  type        = string
+  description = "Private Programmatic API key to authenticate to Atlas"
+}
+variable "org_id" {
+  type        = string
+  description = "MongoDB Organization ID"
+}
+variable "group_id" {
+  type        = string
+  description = "MongoDB Group ID"
+}
+
+variable "name" {
+  type        = string
+  description = "MongoDB Identity Provider Name"
+  default     = "mongodb_federation_test"
+}
+
+variable "identity_provider_id" {
+  type        = string
+  description = "MongoDB Identity Provider ID"
+  default     = "5754gdhgd758"
+}

examples/Federated-Settings/versions.tf

@@ -0,0 +1,11 @@
+terraform {
+  required_providers {
+    azurerm = {
+      source = "hashicorp/azurerm"
+    }
+    mongodbatlas = {
+      source = "mongodb/mongodbatlas"
+    }
+  }
+  required_version = ">= 0.13"
+}

examples/MongoDB-Atlas-Third-Party-Integration/.gitignore

@@ -0,0 +1,5 @@
+iatlaspl.code-workspace
+terraform.tfvars
+.terraform/
+*.tfstate*
+

examples/MongoDB-Atlas-Third-Party-Integration/Readme.md

@@ -0,0 +1,68 @@
+# Example - A basic example configuring MongoDB Atlas Third Party Integrations and Terraform
+
+This project aims to provide a very straight-forward example of setting up Terraform with MongoDB Atlas. This will create the following resources in MongoDB Atlas:
+
+- Atlas Project
+- Microst Teams Third Party Integration
+- Prometheus Third Party Integration
+
+
+You can refer to the MongoDB Atlas documentation to know about the parameters that support Third Party Integrations.
+
+[Prometheus](https://www.mongodb.com/docs/atlas/tutorial/prometheus-integration/#std-label-httpsd-prometheus-config)
+
+[Microsoft Teams](https://www.mongodb.com/docs/atlas/tutorial/integrate-msft-teams/)
+
+## Dependencies
+
+* Terraform v0.13 or greater
+* A MongoDB Atlas account 
+* provider.mongodbatlas: version = "~> 0.9.1"
+
+## Usage
+
+**1\. Ensure your MongoDB Atlas credentials are set up.**
+
+This can be done using environment variables:
+
+```bash
+export MONGODB_ATLAS_PUBLIC_KEY="xxxx"
+export MONGODB_ATLAS_PRIVATE_KEY="xxxx"
+```
+
+... or follow as in the `variables.tf` file and create **terraform.tfvars** file with all the variable values and make sure **not to commit it**.
+
+
+> **IMPORTANT** Hard-coding your MongoDB Atlas programmatic API key pair into a Terraform configuration is not recommended. Consider the risks, especially the inadvertent submission of a configuration file containing secrets to a public repository.
+
+
+**2\. Review the Terraform plan.**
+
+Execute the below command and ensure you are happy with the plan.
+
+``` bash
+$ terraform plan
+```
+
+This project currently creates the below deployments:
+
+- Atlas Project
+- Microst Teams Third Party Integration
+- Prometheus Third Party Integration
+
+**3\. Execute the Terraform apply.**
+
+Now execute the plan to provision the MongoDB Atlas resources.
+
+``` bash
+$ terraform apply
+```
+
+**4\. Destroy the resources.**
+
+Once you are finished your testing, ensure you destroy the resources to avoid unnecessary charges.
+
+``` bash
+$ terraform destroy
+```
+

examples/MongoDB-Atlas-Third-Party-Integration/project.tf

@@ -0,0 +1,7 @@
+resource "mongodbatlas_project" "project" {
+  name   = var.project_name
+  org_id = var.org_id
+}
+output "project_name" {
+  value = mongodbatlas_project.project.name
+}

examples/MongoDB-Atlas-Third-Party-Integration/provider.tf

@@ -0,0 +1,4 @@
+provider "mongodbatlas" {
+  public_key  = var.public_key
+  private_key = var.private_key
+}

examples/MongoDB-Atlas-Third-Party-Integration/third-party-integration.tf

@@ -0,0 +1,15 @@
+resource "mongodbatlas_third_party_integration" "test_msteams" {
+  project_id                  = mongodbatlas_project.project.id
+  type                        = "MICROSOFT_TEAMS"
+  microsoft_teams_webhook_url = var.microsoft_teams_webhook_url
+}
+
+resource "mongodbatlas_third_party_integration" "test_prometheus" {
+  project_id        = mongodbatlas_project.project.id
+  type              = "PROMETHEUS"
+  user_name         = var.user_name
+  password          = var.password
+  service_discovery = "file"
+  scheme            = "https"
+  enabled           = true
+}

examples/MongoDB-Atlas-Third-Party-Integration/variables.tf

@@ -0,0 +1,31 @@
+variable "public_key" {
+  type        = string
+  description = "Public Programmatic API key to authenticate to Atlas"
+}
+variable "private_key" {
+  type        = string
+  description = "Private Programmatic API key to authenticate to Atlas"
+}
+variable "org_id" {
+  type        = string
+  description = "MongoDB Organization ID"
+}
+variable "project_name" {
+  type        = string
+  description = "The MongoDB Atlas Project Name"
+}
+variable "user_name" {
+  type        = string
+  description = "The Prometheus User Name"
+  default     = "puser"
+}
+variable "password" {
+  type        = string
+  description = "The Prometheus Password"
+  default     = "ppassword"
+}
+variable "microsoft_teams_webhook_url" {
+  type        = string
+  description = "The Microsoft Teams Webhook URL"
+  default     = "https://yourcompany.webhook.office.com/webhookb2/zzz@yyy/IncomingWebhook/xyz"
+}

examples/MongoDB-Atlas-Third-Party-Integration/versions.tf

@@ -0,0 +1,8 @@
+terraform {
+  required_providers {
+    mongodbatlas = {
+      source = "mongodb/mongodbatlas"
+    }
+  }
+  required_version = ">= 0.13"
+}