Skip to content

Add Access login method reconciliation#23

Merged
rogu3bear merged 1 commit into
mainfrom
build/access-login-method-reconciliation
Jun 21, 2026
Merged

Add Access login method reconciliation#23
rogu3bear merged 1 commit into
mainfrom
build/access-login-method-reconciliation

Conversation

@rogu3bear

@rogu3bear rogu3bear commented Jun 21, 2026

Copy link
Copy Markdown
Owner

Summary

  • add access.login_method as a cataloged cfctl surface for Access app login-method posture
  • add inventory and preview-gated set apply backends that resolve existing IdPs, build full Access app PUT bodies, and verify exact allowed_idps readback
  • update standards, permissions, docs, capability generation, and fixture/static contract coverage

Test plan

  • ./scripts/verify_static_contract.sh
  • python3 scripts/render_capabilities_doc.py --check docs/capabilities.md
  • python3 scripts/verify_permission_catalog.py --cfctl ./cfctl
  • CF_SHARED_ENV_FILE=/Users/star/dev/.env CF_TOKEN_LANE=global ./cfctl list access.login_method
  • CF_SHARED_ENV_FILE=/Users/star/dev/.env CF_TOKEN_LANE=global ./cfctl apply access.login_method set --provider-type onetimepin --plan reported target_count=16, update_count=0, noop_count=16

Notes

  • No live Access mutation was applied; only read and plan-mode proof was run.
  • Recent cfctl contract GitHub runs were already failing on main before this branch, so local static/permission gates are the branch proof here.

@rogu3bear rogu3bear merged commit 356073e into main Jun 21, 2026
2 checks passed
@rogu3bear rogu3bear deleted the build/access-login-method-reconciliation branch June 21, 2026 21:21
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@rogu3bear