Add missing optional parameters to vault_cert_auth_backend_role #282

ainoya · 2019-01-22T05:39:00Z

I Added some parameters to cert_auth_backend_role.

allowed_common_names
allowed_dns_sans
allowed_email_sans
allowed_uri_sans
allowed_organization_units
bound_cidrs

ref: https://www.vaultproject.io/api/auth/cert/index.html#parameters

tyrannosaurus-becks

@ainoya fantastic! Thank you!

…ert-auth-method Add missing optional parameters to vault_cert_auth_backend_role

… vault_cert_auth_backend_role hashicorp#282 introduced many missing optional parameters in vault_cert_auth_backend_role, but missed validating and reading the `allowed_email_sans` field in the `certAuthResourceUpdate` and `certAuthResourceWrite` functions. Terraform currently correctly reads and plans for updating `allowed_email_sans`, but never actually does it. For example, locally I have defined a set of emails that are added to the `allowed_common_names` parameter and `allowed_email_sans`. Only `allowed_common_names` is created/updated. `allowed_email_sans` is not. ``` locals { allowed_emails = ['[email protected]', '[email protected]'] } resource "vault_cert_auth_backend_role" "employee-cert-auth" { # other stuff defined here allowed_common_names = locals.allowed_emails allowed_email_sans = locals.allowed_emails } ```

…ert_auth_backend_role (#1140) Add missing allowed_email_sans field to write and update functions of vault_cert_auth_backend_role #282 introduced many missing optional parameters in vault_cert_auth_backend_role, but missed validating and reading the `allowed_email_sans` field in the `certAuthResourceUpdate` and `certAuthResourceWrite` functions. Terraform currently correctly reads and plans for updating `allowed_email_sans`, but never actually does it. For example, locally I have defined a set of emails that are added to the `allowed_common_names` parameter and `allowed_email_sans`. Only `allowed_common_names` is created/updated. `allowed_email_sans` is not. ``` locals { allowed_emails = ['[email protected]', '[email protected]'] } resource "vault_cert_auth_backend_role" "employee-cert-auth" { # other stuff defined here allowed_common_names = locals.allowed_emails allowed_email_sans = locals.allowed_emails } ```

add missing optional params to vault_cert_auth_backend_role

a78da5c

ghost added size/L documentation labels Jan 22, 2019

tyrannosaurus-becks approved these changes Jan 31, 2019

View reviewed changes

tyrannosaurus-becks merged commit 77749f9 into hashicorp:master Jan 31, 2019

tyrannosaurus-becks self-assigned this Jan 31, 2019

dandandy pushed a commit to dandandy/terraform-provider-vault that referenced this pull request Jun 17, 2021

Merge pull request hashicorp#282 from ainoya/add-more-option-to-tls-c…

cba3b57

…ert-auth-method Add missing optional parameters to vault_cert_auth_backend_role

jseuren-exonet mentioned this pull request Aug 9, 2021

Add allowed_email_sans field to write and update functions of vault_cert_auth_backend_role #1140

Merged

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Add missing optional parameters to vault_cert_auth_backend_role #282

Add missing optional parameters to vault_cert_auth_backend_role #282

ainoya commented Jan 22, 2019

tyrannosaurus-becks left a comment

Add missing optional parameters to vault_cert_auth_backend_role #282

Add missing optional parameters to vault_cert_auth_backend_role #282

Conversation

ainoya commented Jan 22, 2019

tyrannosaurus-becks left a comment

Choose a reason for hiding this comment