Resource: pingaccess_rule
Provides a rule.
Tip
The PingAccess API does not provider repeatable means of querying a sensitive value, we are unable to detect configuration drift of any sensitive fields in the configuration
block.
Example Usage
resource "pingaccess_rule" "demo_rule" {
class_name = "com.pingidentity.pa.policy.CIDRPolicyInterceptor"
name = "demo_rule"
supported_destinations = [
"Site",
"Agent",
]
configuration = <<EOF
{
"cidrNotation": "127.0.0.1/32",
"negate": false,
"overrideIpSource": false,
"headers": [],
"headerValueLocation": "LAST",
"fallbackToLastHopIp": true,
"errorResponseCode": 404,
"errorResponseStatusMsg": "Forbidden",
"errorResponseTemplateFile": "policy.error.page.template.html",
"errorResponseContentType": "text/html;charset=UTF-8",
"rejectionHandler": null,
"rejectionHandlingEnabled": false
}
EOF
}
Argument Attributes
The following arguments are supported:
-
class_name
- (Required) The rule's class name. -
configuration
- (Required) The rule's configuration data. -
name
- (Required) The rule's name. -
supported_destinations
- (Optional) The supported destinations for this rule.
Attributes Reference
In addition to all arguments above, the following attributes are exported:
id
- The rule's ID.
Import
PingAccess rule can be imported using the id, e.g.
$ terraform import pingaccess_rule.demo_rule 123