Merge branch 'main' into Import-functionality-addtion

Author: artur-kacen

docs/resources/lifecycle_state.md

@@ -18,6 +18,7 @@ resource "identitynow_lifecycle_state" "demo_active" {
   technical_name      = "active"
   identity_profile_id = "profileId"
   description         = "my test description"
+  identity_state      = "ACTIVE"
   enabled             = false
   email_notification_option = {
     notify_managers       = false
@@ -55,6 +56,7 @@ resource "identitynow_lifecycle_state" "demo_active" {
 - `account_actions` (Attributes List) This is used for representing email configuration for a lifecycle state (see [below for nested schema](#nestedatt--account_actions))
 - `description` (String) Lifecycle state description.
 - `email_notification_option` (Attributes) This is used for representing email configuration for a lifecycle state (see [below for nested schema](#nestedatt--email_notification_option))
+- `identity_state` (String) Identity state for this lifecycle state. Allowed values: ACTIVE, INACTIVE_SHORT_TERM, INACTIVE_LONG_TERM.
 
 ### Read-Only
 
@@ -66,7 +68,7 @@ resource "identitynow_lifecycle_state" "demo_active" {
 Required:
 
 - `action` (String) Describes if action will be enabled or disabled
-- `source_ids` (List of String) List of unique source IDs. The sources must have the ENABLE feature or flat file source. See "/sources" endpoint for source features
+- `source_ids` (Set of String) List of unique source IDs. The sources must have the ENABLE feature or flat file source. See "/sources" endpoint for source features
 
 
 <a id="nestedatt--email_notification_option"></a>

docs/resources/org_config.md

@@ -0,0 +1,26 @@
+---
+# generated by https://github.com/hashicorp/terraform-plugin-docs
+page_title: "identitynow_org_config Resource - terraform-provider-identitynow"
+subcategory: ""
+description: |-
+  
+---
+
+# identitynow_org_config (Resource)
+
+
+
+## Example Usage
+
+```terraform
+resource "identitynow_org_config" "demo_timezone" {
+  time_zone = "UTC"
+}
+```
+
+<!-- schema generated by tfplugindocs -->
+## Schema
+
+### Required
+
+- `time_zone` (String) The selected time zone which is to be used for the org. This directly affects when scheduled tasks are executed. Valid options can be found at /beta/org-config/valid-time-zones

docs/resources/role.md

@@ -112,6 +112,7 @@ IDENTITY_LIST: Indicates that Role membership is conferred on the specific ident
 Optional:
 
 - `criteria` (Attributes) Defines STANDARD type Role membership (see [below for nested schema](#nestedatt--membership--criteria))
+- `identities` (Attributes Set) Defines role membership as being exclusive to the specified Identities, when type is IDENTITY_LIST. (see [below for nested schema](#nestedatt--membership--identities))
 
 <a id="nestedatt--membership--criteria"></a>
 ### Nested Schema for `membership.criteria`
@@ -135,9 +136,36 @@ Required:
 
 Optional:
 
+- `children` (Attributes List) Array of child criteria. Required if the operation is AND or OR, otherwise it must be left null. A maximum of three levels of criteria are supported, including leaf nodes. Additionally, AND nodes can only be children or OR nodes and vice-versa. (see [below for nested schema](#nestedatt--membership--criteria--children--children))
 - `key` (Attributes) Refers to a specific Identity attribute, Account attribute, or Entitlement used in Role membership criteria (see [below for nested schema](#nestedatt--membership--criteria--children--key))
 - `string_value` (String) String value to test the Identity attribute, Account attribute, or Entitlement specified in the key w/r/t the specified operation. If this criteria is a leaf node, that is, if the operation is one of EQUALS, NOT_EQUALS, CONTAINS, STARTS_WITH, or ENDS_WITH, this field is required. Otherwise, specifying it is an error.
 
+<a id="nestedatt--membership--criteria--children--children"></a>
+### Nested Schema for `membership.criteria.children.children`
+
+Required:
+
+- `operation` (String) An operation
+
+Optional:
+
+- `key` (Attributes) Refers to a specific Identity attribute, Account attribute, or Entitlement used in Role membership criteria (see [below for nested schema](#nestedatt--membership--criteria--children--children--key))
+- `string_value` (String) String value to test the Identity attribute, Account attribute, or Entitlement specified in the key w/r/t the specified operation. If this criteria is a leaf node, that is, if the operation is one of EQUALS, NOT_EQUALS, CONTAINS, STARTS_WITH, or ENDS_WITH, this field is required. Otherwise, specifying it is an error.
+
+<a id="nestedatt--membership--criteria--children--children--key"></a>
+### Nested Schema for `membership.criteria.children.children.key`
+
+Required:
+
+- `property` (String) The name of the attribute or entitlement to which the associated criteria applies.
+- `type` (String) Indicates whether the associated criteria represents an expression on identity attributes, account attributes, or entitlements, respectively.
+
+Optional:
+
+- `source_id` (String) ID of the Source from which an account attribute or entitlement is drawn. Required if type is ACCOUNT or ENTITLEMENT
+
+
+
 <a id="nestedatt--membership--criteria--children--key"></a>
 ### Nested Schema for `membership.criteria.children.key`
 
@@ -166,6 +194,19 @@ Optional:
 
 
 
+<a id="nestedatt--membership--identities"></a>
+### Nested Schema for `membership.identities`
+
+Required:
+
+- `id` (String)
+
+Optional:
+
+- `name` (String)
+- `type` (String)
+
+
 
 <a id="nestedatt--revocation_request_config"></a>
 ### Nested Schema for `revocation_request_config`

docs/resources/source.md

@@ -75,7 +75,6 @@ resource "identitynow_source" "demo_source" {
 ### Read-Only
 
 - `authoritative` (Boolean) When true indicates the source is referenced by an IdentityProfile.
-- `cloud_external_id` (String) Legacy Source ID for interacting with CC API
 - `connector_id` (String) The id of connector
 - `connector_implementation_id` (String) The connector implementation id
 - `connector_name` (String) The name of the connector that was chosen on source creation

docs/resources/source_aggregation_schedule.md

@@ -0,0 +1,30 @@
+---
+# generated by https://github.com/hashicorp/terraform-plugin-docs
+page_title: "identitynow_source_aggregation_schedule Resource - terraform-provider-identitynow"
+subcategory: ""
+description: |-
+  
+---
+
+# identitynow_source_aggregation_schedule (Resource)
+
+
+
+## Example Usage
+
+```terraform
+resource "identitynow_source_aggregation_schedule" "test_account_schedule" {
+  source_cloud_id  = identitynow_source.demo_source.cloud_external_id
+  cron_expression  = "0 5 0 * * ?"
+  aggregation_type = "account"
+}
+```
+
+<!-- schema generated by tfplugindocs -->
+## Schema
+
+### Required
+
+- `aggregation_type` (String) Aggregation type one of 'account' or 'entitlement'
+- `cron_expression` (String) Cron Expression for the Schedule
+- `source_cloud_id` (String) Legacy Source ID

docs/resources/workflow.md

@@ -27,7 +27,7 @@ resource "identitynow_workflow" "test" {
         displayName   = "Get List of Identities"
         type          = "action"
         actionId      = "sp:get-identities"
-        versionNumber = "2"
+        versionNumber = 2
         attributes = {
           inputQuery = "*"
           searchBy   = "searchQuery"
@@ -100,6 +100,7 @@ Required:
 
 Optional:
 
+- `attribute_to_filter` (String) For events triggered by attribute changes, the name of the attribute that changed. EVENT trigger type
 - `cron_string` (String) A valid CRON expression. SCHEDULED trigger type
 - `description` (String) Additonal context about the external trigger. EXTERNAL trigger type
 - `filter` (String) JSON path expression that will limit which events the trigger will fire on. EVENT trigger type

examples/resources/identitynow_lifecycle_state/resource.tf

@@ -3,6 +3,7 @@ resource "identitynow_lifecycle_state" "demo_active" {
   technical_name      = "active"
   identity_profile_id = "profileId"
   description         = "my test description"
+  identity_state      = "ACTIVE"
   enabled             = false
   email_notification_option = {
     notify_managers       = false

examples/resources/identitynow_org_config/resource.tf

@@ -0,0 +1,3 @@
+resource "identitynow_org_config" "demo_timezone" {
+  time_zone = "UTC"
+}

examples/resources/identitynow_role/resource.tf

@@ -0,0 +1,76 @@
+resource "identitynow_role" "test" {
+  name        = "Test Role"
+  description = "Creating from terraform"
+  owner = {
+    id   = data.identitynow_identity.default_owner.id
+    name = data.identitynow_identity.default_owner.name
+  }
+  entitlements = [
+  ]
+  access_profiles = []
+  membership = {
+    type = "STANDARD"
+    criteria = {
+      operation   = "AND"
+      key         = null
+      string_value = null
+      children = [
+        {
+          operation   = "OR"
+          key         = null
+          string_value = null
+          children = [
+            {
+              operation = "EQUALS"
+              key = {
+                type     = "IDENTITY"
+                property = "attribute.cloudLifecycleState"
+                sourceId = null
+              }
+              string_value = "Initiated"
+              children    = null
+            },
+            {
+              operation = "EQUALS"
+              key = {
+                type     = "IDENTITY"
+                property = "attribute.cloudLifecycleState"
+                sourceId = null
+              }
+              string_value = "Active"
+              children    = null
+            }
+          ]
+        },
+        {
+          operation   = "OR"
+          key         = null
+          string_value = null
+          children = [
+            {
+              operation = "EQUALS"
+              key = {
+                type     = "IDENTITY"
+                property = "attribute.type"
+                sourceId = null
+              }
+              string_value = "INTERNAL"
+              children    = null
+            },
+            {
+              operation = "EQUALS"
+              key = {
+                type     = "IDENTITY"
+                property = "attribute.type"
+                sourceId = null
+              }
+              string_value = "EXTERNAL"
+              children    = null
+            }
+          ]
+        }
+      ]
+    },
+    identities = null
+  }
+}

examples/resources/identitynow_source_aggregation_schedule/resource.tf

@@ -0,0 +1,5 @@
+resource "identitynow_source_aggregation_schedule" "test_account_schedule" {
+  source_cloud_id  = identitynow_source.demo_source.cloud_external_id
+  cron_expression  = "0 5 0 * * ?"
+  aggregation_type = "account"
+}