Allow user to specify a customized IDP. (#26)

Signed-off-by: QiFanIress <[email protected]>

build/build.js

@@ -414,6 +414,7 @@ function genericOktaConfiguration() {
   config.AUTH_REQUEST.response_type = 'code';
   config.AUTH_REQUEST.scope = '${scope}';
   config.AUTH_REQUEST.redirect_uri = 'https://${domain-name}${callback-path}';
+  config.AUTH_REQUEST.idp = '${idp}';
 
   config.TOKEN_REQUEST.client_id = '${client-id}';
   config.TOKEN_REQUEST.redirect_uri = 'https://${domain-name}${callback-path}';

infra/terraform/modules/okta_native/parameters.tf

@@ -46,3 +46,10 @@ resource "aws_ssm_parameter" "scope" {
   value = var.scope
   tags  = var.tags
 }
+
+resource "aws_ssm_parameter" "idp" {
+  name  = "/${var.name}/idp"
+  type  = "String"
+  value = var.idp
+  tags  = var.tags
+}

infra/terraform/modules/okta_native/variables.tf

@@ -64,3 +64,9 @@ variable "kms_key_arn" {
   type        = string
   default     = null
 }
+
+variable "idp" {
+  description = "Identity provider to use if there's no Okta Session"
+  type        = string
+  default     = ""
+}

mocha/custom-config.json

@@ -3,7 +3,8 @@
         "client_id": "abcdefghijklmnopqrst",
         "response_type": "code",
         "scope": "openid email",
-        "redirect_uri": "http://my-website.com/_callback"
+        "redirect_uri": "http://my-website.com/_callback",
+        "idp": "abcdefghijklmnopqrst"
     },
     "TOKEN_REQUEST": {
         "client_id": "0oa1imdxt88mdVZabcdefghijklmnopqrstod0h8",

mocha/generic-config.json

@@ -2,8 +2,9 @@
     "AUTH_REQUEST": {
         "client_id": "${client-id}",
         "response_type": "code",
-        "scope": "openid email",
-        "redirect_uri": "https://${domain-name}${callback-path}"
+        "scope": "${scope}",
+        "redirect_uri": "https://${domain-name}${callback-path}",
+        "idp": "${idp}"
     },
     "TOKEN_REQUEST": {
         "client_id": "${client-id}",