From da110cabda71c1db39bd84b94008a6f6a2b064b1 Mon Sep 17 00:00:00 2001
From: Bheesham Persaud <bhee@mozilla.com>
Date: Thu, 31 Oct 2024 16:20:22 -0400
Subject: [PATCH] Add mozillansorg_sumo-{admins, devs}

See also:

* https://mozilla-hub.atlassian.net/browse/IAM-1474
* https://github.com/mozilla-iam/sso-dashboard-configuration/pull/850

Jira: OPS-1460
---
 terraform/actions/awsSaml.js    | 3 +++
 terraform/tests/awsSaml.test.js | 2 ++
 2 files changed, 5 insertions(+)

diff --git a/terraform/actions/awsSaml.js b/terraform/actions/awsSaml.js
index 250629d..dc46d43 100644
--- a/terraform/actions/awsSaml.js
+++ b/terraform/actions/awsSaml.js
@@ -20,6 +20,7 @@ exports.onExecutePostLogin = async (event, api) => {
       paramObj.accessKeyId = event.secrets.AWS_IDENTITYSTORE_ACCESS_ID_IT;
       paramObj.secretAccessKey = event.secrets.AWS_IDENTITYSTORE_ACCESS_KEY_IT;
       paramObj.awsGroups = [
+        // TODO(bhee): delete as a part of https://mozilla-hub.atlassian.net/browse/IAM-1474
         "aws_095732026120_poweruser",
         "aws_104923852476_admin",
         "aws_320464205386_admin",
@@ -43,6 +44,8 @@ exports.onExecutePostLogin = async (event, api) => {
         "mozilliansorg_searchfox-aws",
         "mozilliansorg_secops-aws-admins",
         "mozilliansorg_sre",
+        "mozilliansorg_sumo-admins",
+        "mozilliansorg_sumo-devs",
         "mozilliansorg_voice_aws_admin_access",
         "mozilliansorg_web-sre-aws-access",
         "team_mdn",
diff --git a/terraform/tests/awsSaml.test.js b/terraform/tests/awsSaml.test.js
index 19752b2..101c063 100644
--- a/terraform/tests/awsSaml.test.js
+++ b/terraform/tests/awsSaml.test.js
@@ -107,6 +107,8 @@ const clientGroupMaps = [
       "mozilliansorg_searchfox-aws",
       "mozilliansorg_secops-aws-admins",
       "mozilliansorg_sre",
+      "mozilliansorg_sumo-admins",
+      "mozilliansorg_sumo-devs",
       "mozilliansorg_voice_aws_admin_access",
       "mozilliansorg_web-sre-aws-access",
       "team_mdn",