Merge pull request #53 from ministryofjustice/revert-51-feat/auzres-a…

…d-connection-creation Revert "New Azure connection for entraid"
ministryofjustice · Mar 4, 2024 · 80505c6 · 80505c6
2 parents 04a6bc1 + d03ed59
commit 80505c6
Show file tree

Hide file tree

Showing 2 changed files with 0 additions and 44 deletions.
diff --git a/auth0.tf b/auth0.tf
@@ -74,31 +74,6 @@ resource "auth0_connection" "github_saml_connection" {
   }
 }
 
-resource "auth0_connection" "azure_entraid_connection" {
-  display_name   = "Azure EntraID PoC - Do not use"
-  name           = "azure-entraid"
-  strategy       = "waad"
-  show_as_button = true
-  options {
-    identity_api  = "microsoft-identity-platform-v2.0"
-    client_id     = var.auth0_azure_entraid_client_id
-    client_secret = var.auth0_azure_entraid_client_secret
-    app_id        = auth0_client.saml.id
-    domain        = var.auth0_azure_entraid_domain
-
-    waad_protocol          = "openid-connect"
-    max_groups_to_retrieve = 50
-    api_enable_users       = false
-    scopes = [
-      "basic_profile",
-      "ext_groups",
-
-    ]
-    set_user_root_attributes               = "on_each_login"
-    should_trust_email_verified_connection = "always_set_emails_as_verified"
-  }
-}
-
 # Auth0 actions
 resource "auth0_action" "allow_github_organisations" {
   name    = "Allow specific GitHub Organisations and map SAML attributes"

diff --git a/variables.tf b/variables.tf
@@ -54,22 +54,3 @@ variable "auth0_aws_sso_issuer_url" {
   type        = string
   sensitive   = true
 }
-
-variable "auth0_azure_entraid_client_id" {
-  description = "Client id for the azures application"
-  type        = string
-  sensitive   = true
-}
-
-variable "auth0_azure_entraid_client_secret" {
-  description = "Client secret for the azures application"
-  type        = string
-  sensitive   = true
-}
-
-variable "auth0_azure_entraid_domain" {
-  description = "Azures application domain name"
-  type        = string
-  sensitive   = true
-
-}