Custom AWS Cloudformation Resource for Okta Users and Groups
CAUTION
- This is ALPHA and has only been testing on a developer instance of Okta and a test AWS account * DO NOT USE IN PRODUCTION WITHOUT TESTING
To just use as a custom resource
Make sure to fill out the environment variables
- OKTA_URL
- OKTA_TOKEN encrypted
Follow online instructions on generating an Okta API Token
# Replace YOUR_S3_ARTIFACTS_BUCKET
aws cloudformation package --template-file template.yaml --output-template-file cfn-transformed-template.yaml --s3-bucket YOUR_S3_ARTIFACTS_BUCKET
aws cloudformation deploy --template-file ./cfn-transformed-template.yaml --stack-name okta-cf-resource
Now you have
- Custom::OktaUser
- Custom::OktaGroup
- Custom::OktaUserGroupAttachment
Available in CloudFormation
If you install tropokta with
python setup.py install
# or
pip install tropokta
You can do the following within troposphere
from troposphere import Template
from tropokta.okta import OktaUser
t = Template()
user = t.add_resource(OktaUser(
firstName="test",
lastName="user",
email="[email protected]",
login="[email protected]"
))
print(t.to_json())
[] Tests