INTMDB-481: Add support for identity provider display name import (#924)

* Add support for identity provider display name import

* Update example for mongodbatlas_federated_settings_org_config

* Update documentation for mongodbatlas_federated_settings_org_configs

* Remove confusing verbiage

Author: martinstibbe

examples/Federated-Settings/main.tf

@@ -35,6 +35,7 @@ resource "mongodbatlas_federated_settings_org_config" "org_connections_import" {
   identity_provider_id       = var.identity_provider_id
   domain_restriction_enabled = false
   domain_allow_list          = ["yourdomain.com"]
+  post_auth_role_grants      = ["ORG_MEMBER"]
 }
 
 resource "mongodbatlas_federated_settings_identity_provider" "identity_provider" {

mongodbatlas/resource_mongodbatlas_federated_settings_identity_provider.go

@@ -217,6 +217,10 @@ func resourceMongoDBAtlasFederatedSettingsIdentityProviderImportState(ctx contex
 		return nil, fmt.Errorf("error setting Identity Provider in Federation settings (%s): %s", d.Id(), err)
 	}
 
+	if err := d.Set("name", federatedSettingsIdentityProvider.DisplayName); err != nil {
+		return nil, fmt.Errorf("error setting name (%s): %s", d.Id(), err)
+	}
+
 	if err := d.Set("sso_debug_enabled", federatedSettingsIdentityProvider.SsoDebugEnabled); err != nil {
 		return nil, fmt.Errorf("error setting sso debug enabled (%s): %s", d.Id(), err)
 	}

website/docs/d/federated_settings_org_config.html.markdown

@@ -19,6 +19,7 @@ resource "mongodbatlas_federated_settings_org_config" "org_connections" {
   org_id                     = "627a9683ea7ff7f74de306f14"
   domain_restriction_enabled = false
   domain_allow_list          = ["mydomain.com"]
+  post_auth_role_grants      = ["ORG_MEMBER"]
 }
 
 data "mongodbatlas_federated_settings_org_config" "org_configs_ds" {
@@ -41,7 +42,7 @@ In addition to all arguments above, the following attributes are exported:
 * `domain_allow_list` - List that contains the approved domains from which organization users can log in.  Note: If the organization uses an identity provider,  `domain_allow_list` includes: any SSO domains associated with organization's identity provider and any custom domains associated with the specific organization.
 * `domain_restriction_enabled` - Flag that indicates whether domain restriction is enabled for the connected organization.  User Conflicts returns null when `domain_restriction_enabled` is false.
 * `identity_provider_id` - Unique 24-hexadecimal digit string that identifies the federated authentication configuration.
-* `post_auth_role_grants` - List that contains the default [roles](https://www.mongodb.com/docs/atlas/reference/user-roles/#std-label-organization-roles) granted to users who authenticate through the IdP in a connected organization. If you provide a postAuthRoleGrants field in the request, the array that you provide replaces the current postAuthRoleGrants.
+* `post_auth_role_grants` - List that contains the default [roles](https://www.mongodb.com/docs/atlas/reference/user-roles/#std-label-organization-roles) granted to users who authenticate through the IdP in a connected organization.
 
 ### Role_mappings
 * `external_group_name` - Unique human-readable label that identifies the identity provider group to which this role mapping applies.

website/docs/d/federated_settings_org_configs.html.markdown

@@ -19,6 +19,7 @@ resource "mongodbatlas_federated_settings_org_config" "org_connections" {
   org_id                     = "627a9683ea7ff7f74de306f14"
   domain_restriction_enabled = false
   domain_allow_list          = ["mydomain.com"]
+  post_auth_role_grants      = ["ORG_MEMBER"]
 }
 
 data "mongodbatlas_federated_settings_org_configs" "org_configs_ds" {
@@ -45,7 +46,7 @@ In addition to all arguments above, the following attributes are exported:
 * `domain_restriction_enabled` - Flag that indicates whether domain restriction is enabled for the connected organization.
 * `identity_provider_id` - Unique 24-hexadecimal digit string that identifies the federated authentication configuration.
 * `org_id` - Unique 24-hexadecimal digit string that identifies the organization that contains your projects.
-* `post_auth_role_grants` - List that contains the default roles granted to users who authenticate through the IdP in a connected organization. If you provide a postAuthRoleGrants field in the request, the array that you provide replaces the current postAuthRoleGrants.
+* `post_auth_role_grants` - List that contains the default roles granted to users who authenticate through the IdP in a connected organization.
 
   ### Role_mappings
 * `external_group_name` - Unique human-readable label that identifies the identity provider group to which this role mapping applies.

website/docs/r/federated_settings_org_config.html.markdown

@@ -21,6 +21,7 @@ resource "mongodbatlas_federated_settings_org_config" "org_connection" {
   org_id                     = "627a9683ea7ff7f74de306f14"
   domain_restriction_enabled = false
   domain_allow_list          = ["mydomain.com"]
+  post_auth_role_grants      = ["ORG_MEMBER"]
   identity_provider_id       = "0oad4fas87jL7f75Xnk1297"
 }
 
@@ -34,6 +35,8 @@ data "mongodbatlas_federated_settings_org_configs" "org_configs_ds" {
 * `federation_settings_id` - (Required) Unique 24-hexadecimal digit string that identifies the federated authentication configuration. 
 * `org_id` - (Required) Unique 24-hexadecimal digit string that identifies the organization that contains your projects.
 * `domain_allow_list` - List that contains the approved domains from which organization users can log in.
+* `post_auth_role_grants` - (Optional) List that contains the default [roles](https://www.mongodb.com/docs/atlas/reference/user-roles/#std-label-organization-roles) granted to users who authenticate through the IdP in a connected organization.
+
 * `domain_restriction_enabled` - (Required) Flag that indicates whether domain restriction is enabled for the connected organization.
 * `identity_provider_id` - (Required) Unique 24-hexadecimal digit string that identifies the federated authentication configuration.