Oracle Cloud Infrastructure

Pulumi Official
Package maintained by Pulumi
v0.1.1 published on Tuesday, May 3, 2022 by Pulumi

getMaskingPolicies

This data source provides the list of Masking Policies in Oracle Cloud Infrastructure Data Safe service.

Gets a list of masking policies based on the specified query parameters.

Example Usage

using Pulumi;
using Oci = Pulumi.Oci;

class MyStack : Stack
{
    public MyStack()
    {
        var testMaskingPolicies = Output.Create(Oci.DataSafe.GetMaskingPolicies.InvokeAsync(new Oci.DataSafe.GetMaskingPoliciesArgs
        {
            CompartmentId = @var.Compartment_id,
            AccessLevel = @var.Masking_policy_access_level,
            CompartmentIdInSubtree = @var.Masking_policy_compartment_id_in_subtree,
            DisplayName = @var.Masking_policy_display_name,
            MaskingPolicyId = oci_data_safe_masking_policy.Test_masking_policy.Id,
            SensitiveDataModelId = oci_data_safe_sensitive_data_model.Test_sensitive_data_model.Id,
            State = @var.Masking_policy_state,
            TargetId = oci_cloud_guard_target.Test_target.Id,
            TimeCreatedGreaterThanOrEqualTo = @var.Masking_policy_time_created_greater_than_or_equal_to,
            TimeCreatedLessThan = @var.Masking_policy_time_created_less_than,
        }));
    }

}
package main

import (
	"github.com/pulumi/pulumi-oci/sdk/go/oci/DataSafe"
	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := DataSafe.GetMaskingPolicies(ctx, &datasafe.GetMaskingPoliciesArgs{
			CompartmentId:                   _var.Compartment_id,
			AccessLevel:                     pulumi.StringRef(_var.Masking_policy_access_level),
			CompartmentIdInSubtree:          pulumi.BoolRef(_var.Masking_policy_compartment_id_in_subtree),
			DisplayName:                     pulumi.StringRef(_var.Masking_policy_display_name),
			MaskingPolicyId:                 pulumi.StringRef(oci_data_safe_masking_policy.Test_masking_policy.Id),
			SensitiveDataModelId:            pulumi.StringRef(oci_data_safe_sensitive_data_model.Test_sensitive_data_model.Id),
			State:                           pulumi.StringRef(_var.Masking_policy_state),
			TargetId:                        pulumi.StringRef(oci_cloud_guard_target.Test_target.Id),
			TimeCreatedGreaterThanOrEqualTo: pulumi.StringRef(_var.Masking_policy_time_created_greater_than_or_equal_to),
			TimeCreatedLessThan:             pulumi.StringRef(_var.Masking_policy_time_created_less_than),
		}, nil)
		if err != nil {
			return err
		}
		return nil
	})
}

Coming soon!

import pulumi
import pulumi_oci as oci

test_masking_policies = oci.DataSafe.get_masking_policies(compartment_id=var["compartment_id"],
    access_level=var["masking_policy_access_level"],
    compartment_id_in_subtree=var["masking_policy_compartment_id_in_subtree"],
    display_name=var["masking_policy_display_name"],
    masking_policy_id=oci_data_safe_masking_policy["test_masking_policy"]["id"],
    sensitive_data_model_id=oci_data_safe_sensitive_data_model["test_sensitive_data_model"]["id"],
    state=var["masking_policy_state"],
    target_id=oci_cloud_guard_target["test_target"]["id"],
    time_created_greater_than_or_equal_to=var["masking_policy_time_created_greater_than_or_equal_to"],
    time_created_less_than=var["masking_policy_time_created_less_than"])
import * as pulumi from "@pulumi/pulumi";
import * as oci from "@pulumi/oci";

const testMaskingPolicies = oci.DataSafe.getMaskingPolicies({
    compartmentId: _var.compartment_id,
    accessLevel: _var.masking_policy_access_level,
    compartmentIdInSubtree: _var.masking_policy_compartment_id_in_subtree,
    displayName: _var.masking_policy_display_name,
    maskingPolicyId: oci_data_safe_masking_policy.test_masking_policy.id,
    sensitiveDataModelId: oci_data_safe_sensitive_data_model.test_sensitive_data_model.id,
    state: _var.masking_policy_state,
    targetId: oci_cloud_guard_target.test_target.id,
    timeCreatedGreaterThanOrEqualTo: _var.masking_policy_time_created_greater_than_or_equal_to,
    timeCreatedLessThan: _var.masking_policy_time_created_less_than,
});

Coming soon!

Using getMaskingPolicies

Two invocation forms are available. The direct form accepts plain arguments and either blocks until the result value is available, or returns a Promise-wrapped result. The output form accepts Input-wrapped arguments and returns an Output-wrapped result.

function getMaskingPolicies(args: GetMaskingPoliciesArgs, opts?: InvokeOptions): Promise<GetMaskingPoliciesResult>
function getMaskingPoliciesOutput(args: GetMaskingPoliciesOutputArgs, opts?: InvokeOptions): Output<GetMaskingPoliciesResult>
def get_masking_policies(access_level: Optional[str] = None,
                         compartment_id: Optional[str] = None,
                         compartment_id_in_subtree: Optional[bool] = None,
                         display_name: Optional[str] = None,
                         filters: Optional[Sequence[_datasafe.GetMaskingPoliciesFilter]] = None,
                         masking_policy_id: Optional[str] = None,
                         sensitive_data_model_id: Optional[str] = None,
                         state: Optional[str] = None,
                         target_id: Optional[str] = None,
                         time_created_greater_than_or_equal_to: Optional[str] = None,
                         time_created_less_than: Optional[str] = None,
                         opts: Optional[InvokeOptions] = None) -> GetMaskingPoliciesResult
def get_masking_policies_output(access_level: Optional[pulumi.Input[str]] = None,
                         compartment_id: Optional[pulumi.Input[str]] = None,
                         compartment_id_in_subtree: Optional[pulumi.Input[bool]] = None,
                         display_name: Optional[pulumi.Input[str]] = None,
                         filters: Optional[pulumi.Input[Sequence[pulumi.Input[_datasafe.GetMaskingPoliciesFilterArgs]]]] = None,
                         masking_policy_id: Optional[pulumi.Input[str]] = None,
                         sensitive_data_model_id: Optional[pulumi.Input[str]] = None,
                         state: Optional[pulumi.Input[str]] = None,
                         target_id: Optional[pulumi.Input[str]] = None,
                         time_created_greater_than_or_equal_to: Optional[pulumi.Input[str]] = None,
                         time_created_less_than: Optional[pulumi.Input[str]] = None,
                         opts: Optional[InvokeOptions] = None) -> Output[GetMaskingPoliciesResult]
func GetMaskingPolicies(ctx *Context, args *GetMaskingPoliciesArgs, opts ...InvokeOption) (*GetMaskingPoliciesResult, error)
func GetMaskingPoliciesOutput(ctx *Context, args *GetMaskingPoliciesOutputArgs, opts ...InvokeOption) GetMaskingPoliciesResultOutput

> Note: This function is named GetMaskingPolicies in the Go SDK.

public static class GetMaskingPolicies 
{
    public static Task<GetMaskingPoliciesResult> InvokeAsync(GetMaskingPoliciesArgs args, InvokeOptions? opts = null)
    public static Output<GetMaskingPoliciesResult> Invoke(GetMaskingPoliciesInvokeArgs args, InvokeOptions? opts = null)
}
public static CompletableFuture<GetMaskingPoliciesResult> getMaskingPolicies(GetMaskingPoliciesArgs args, InvokeOptions options)
// Output-based functions aren't available in Java yet
Fn::Invoke:
  Function: oci:DataSafe/getMaskingPolicies:getMaskingPolicies
  Arguments:
    # Arguments dictionary

The following arguments are supported:

CompartmentId string

A filter to return only resources that match the specified compartment OCID.

AccessLevel string

Valid values are RESTRICTED and ACCESSIBLE. Default is RESTRICTED. Setting this to ACCESSIBLE returns only those compartments for which the user has INSPECT permissions directly or indirectly (permissions can be on a resource in a subcompartment). When set to RESTRICTED permissions are checked and no partial results are displayed.

CompartmentIdInSubtree bool

Default is false. When set to true, the hierarchy of compartments is traversed and all compartments and subcompartments in the tenancy are returned. Depends on the 'accessLevel' setting.

DisplayName string

A filter to return only resources that match the specified display name.

Filters List<GetMaskingPoliciesFilter>
MaskingPolicyId string

A filter to return only the resources that match the specified masking policy OCID.

SensitiveDataModelId string

A filter to return only the resources that match the specified sensitive data model OCID.

State string

A filter to return only the resources that match the specified lifecycle states.

TargetId string

A filter to return only items related to a specific target OCID.

TimeCreatedGreaterThanOrEqualTo string

A filter to return only the resources that were created after the specified date and time, as defined by RFC3339. Using TimeCreatedGreaterThanOrEqualToQueryParam parameter retrieves all resources created after that date.

TimeCreatedLessThan string

Search for resources that were created before a specific date. Specifying this parameter corresponding timeCreatedLessThan parameter will retrieve all resources created before the specified created date, in "YYYY-MM-ddThh:mmZ" format with a Z offset, as defined by RFC 3339.

CompartmentId string

A filter to return only resources that match the specified compartment OCID.

AccessLevel string

Valid values are RESTRICTED and ACCESSIBLE. Default is RESTRICTED. Setting this to ACCESSIBLE returns only those compartments for which the user has INSPECT permissions directly or indirectly (permissions can be on a resource in a subcompartment). When set to RESTRICTED permissions are checked and no partial results are displayed.

CompartmentIdInSubtree bool

Default is false. When set to true, the hierarchy of compartments is traversed and all compartments and subcompartments in the tenancy are returned. Depends on the 'accessLevel' setting.

DisplayName string

A filter to return only resources that match the specified display name.

Filters []GetMaskingPoliciesFilter
MaskingPolicyId string

A filter to return only the resources that match the specified masking policy OCID.

SensitiveDataModelId string

A filter to return only the resources that match the specified sensitive data model OCID.

State string

A filter to return only the resources that match the specified lifecycle states.

TargetId string

A filter to return only items related to a specific target OCID.

TimeCreatedGreaterThanOrEqualTo string

A filter to return only the resources that were created after the specified date and time, as defined by RFC3339. Using TimeCreatedGreaterThanOrEqualToQueryParam parameter retrieves all resources created after that date.

TimeCreatedLessThan string

Search for resources that were created before a specific date. Specifying this parameter corresponding timeCreatedLessThan parameter will retrieve all resources created before the specified created date, in "YYYY-MM-ddThh:mmZ" format with a Z offset, as defined by RFC 3339.

compartmentId String

A filter to return only resources that match the specified compartment OCID.

accessLevel String

Valid values are RESTRICTED and ACCESSIBLE. Default is RESTRICTED. Setting this to ACCESSIBLE returns only those compartments for which the user has INSPECT permissions directly or indirectly (permissions can be on a resource in a subcompartment). When set to RESTRICTED permissions are checked and no partial results are displayed.

compartmentIdInSubtree Boolean

Default is false. When set to true, the hierarchy of compartments is traversed and all compartments and subcompartments in the tenancy are returned. Depends on the 'accessLevel' setting.

displayName String

A filter to return only resources that match the specified display name.

filters List<GetMaskingPoliciesFilter>
maskingPolicyId String

A filter to return only the resources that match the specified masking policy OCID.

sensitiveDataModelId String

A filter to return only the resources that match the specified sensitive data model OCID.

state String

A filter to return only the resources that match the specified lifecycle states.

targetId String

A filter to return only items related to a specific target OCID.

timeCreatedGreaterThanOrEqualTo String

A filter to return only the resources that were created after the specified date and time, as defined by RFC3339. Using TimeCreatedGreaterThanOrEqualToQueryParam parameter retrieves all resources created after that date.

timeCreatedLessThan String

Search for resources that were created before a specific date. Specifying this parameter corresponding timeCreatedLessThan parameter will retrieve all resources created before the specified created date, in "YYYY-MM-ddThh:mmZ" format with a Z offset, as defined by RFC 3339.

compartmentId string

A filter to return only resources that match the specified compartment OCID.

accessLevel string

Valid values are RESTRICTED and ACCESSIBLE. Default is RESTRICTED. Setting this to ACCESSIBLE returns only those compartments for which the user has INSPECT permissions directly or indirectly (permissions can be on a resource in a subcompartment). When set to RESTRICTED permissions are checked and no partial results are displayed.

compartmentIdInSubtree boolean

Default is false. When set to true, the hierarchy of compartments is traversed and all compartments and subcompartments in the tenancy are returned. Depends on the 'accessLevel' setting.

displayName string

A filter to return only resources that match the specified display name.

filters GetMaskingPoliciesFilter[]
maskingPolicyId string

A filter to return only the resources that match the specified masking policy OCID.

sensitiveDataModelId string

A filter to return only the resources that match the specified sensitive data model OCID.

state string

A filter to return only the resources that match the specified lifecycle states.

targetId string

A filter to return only items related to a specific target OCID.

timeCreatedGreaterThanOrEqualTo string

A filter to return only the resources that were created after the specified date and time, as defined by RFC3339. Using TimeCreatedGreaterThanOrEqualToQueryParam parameter retrieves all resources created after that date.

timeCreatedLessThan string

Search for resources that were created before a specific date. Specifying this parameter corresponding timeCreatedLessThan parameter will retrieve all resources created before the specified created date, in "YYYY-MM-ddThh:mmZ" format with a Z offset, as defined by RFC 3339.

compartment_id str

A filter to return only resources that match the specified compartment OCID.

access_level str

Valid values are RESTRICTED and ACCESSIBLE. Default is RESTRICTED. Setting this to ACCESSIBLE returns only those compartments for which the user has INSPECT permissions directly or indirectly (permissions can be on a resource in a subcompartment). When set to RESTRICTED permissions are checked and no partial results are displayed.

compartment_id_in_subtree bool

Default is false. When set to true, the hierarchy of compartments is traversed and all compartments and subcompartments in the tenancy are returned. Depends on the 'accessLevel' setting.

display_name str

A filter to return only resources that match the specified display name.

filters GetMaskingPoliciesFilter]
masking_policy_id str

A filter to return only the resources that match the specified masking policy OCID.

sensitive_data_model_id str

A filter to return only the resources that match the specified sensitive data model OCID.

state str

A filter to return only the resources that match the specified lifecycle states.

target_id str

A filter to return only items related to a specific target OCID.

time_created_greater_than_or_equal_to str

A filter to return only the resources that were created after the specified date and time, as defined by RFC3339. Using TimeCreatedGreaterThanOrEqualToQueryParam parameter retrieves all resources created after that date.

time_created_less_than str

Search for resources that were created before a specific date. Specifying this parameter corresponding timeCreatedLessThan parameter will retrieve all resources created before the specified created date, in "YYYY-MM-ddThh:mmZ" format with a Z offset, as defined by RFC 3339.

compartmentId String

A filter to return only resources that match the specified compartment OCID.

accessLevel String

Valid values are RESTRICTED and ACCESSIBLE. Default is RESTRICTED. Setting this to ACCESSIBLE returns only those compartments for which the user has INSPECT permissions directly or indirectly (permissions can be on a resource in a subcompartment). When set to RESTRICTED permissions are checked and no partial results are displayed.

compartmentIdInSubtree Boolean

Default is false. When set to true, the hierarchy of compartments is traversed and all compartments and subcompartments in the tenancy are returned. Depends on the 'accessLevel' setting.

displayName String

A filter to return only resources that match the specified display name.

filters List<Property Map>
maskingPolicyId String

A filter to return only the resources that match the specified masking policy OCID.

sensitiveDataModelId String

A filter to return only the resources that match the specified sensitive data model OCID.

state String

A filter to return only the resources that match the specified lifecycle states.

targetId String

A filter to return only items related to a specific target OCID.

timeCreatedGreaterThanOrEqualTo String

A filter to return only the resources that were created after the specified date and time, as defined by RFC3339. Using TimeCreatedGreaterThanOrEqualToQueryParam parameter retrieves all resources created after that date.

timeCreatedLessThan String

Search for resources that were created before a specific date. Specifying this parameter corresponding timeCreatedLessThan parameter will retrieve all resources created before the specified created date, in "YYYY-MM-ddThh:mmZ" format with a Z offset, as defined by RFC 3339.

getMaskingPolicies Result

The following output properties are available:

CompartmentId string

The OCID of the compartment that contains the masking policy.

Id string

The provider-assigned unique ID for this managed resource.

MaskingPolicyCollections List<GetMaskingPoliciesMaskingPolicyCollection>

The list of masking_policy_collection.

AccessLevel string
CompartmentIdInSubtree bool
DisplayName string

The display name of the masking policy.

Filters List<GetMaskingPoliciesFilter>
MaskingPolicyId string
SensitiveDataModelId string

The OCID of the sensitive data model that's used as the source of masking columns.

State string

The current state of the masking policy.

TargetId string

The OCID of the target database that's used as the source of masking columns.

TimeCreatedGreaterThanOrEqualTo string
TimeCreatedLessThan string
CompartmentId string

The OCID of the compartment that contains the masking policy.

Id string

The provider-assigned unique ID for this managed resource.

MaskingPolicyCollections []GetMaskingPoliciesMaskingPolicyCollection

The list of masking_policy_collection.

AccessLevel string
CompartmentIdInSubtree bool
DisplayName string

The display name of the masking policy.

Filters []GetMaskingPoliciesFilter
MaskingPolicyId string
SensitiveDataModelId string

The OCID of the sensitive data model that's used as the source of masking columns.

State string

The current state of the masking policy.

TargetId string

The OCID of the target database that's used as the source of masking columns.

TimeCreatedGreaterThanOrEqualTo string
TimeCreatedLessThan string
compartmentId String

The OCID of the compartment that contains the masking policy.

id String

The provider-assigned unique ID for this managed resource.

maskingPolicyCollections List<GetMaskingPoliciesMaskingPolicyCollection>

The list of masking_policy_collection.

accessLevel String
compartmentIdInSubtree Boolean
displayName String

The display name of the masking policy.

filters List<GetMaskingPoliciesFilter>
maskingPolicyId String
sensitiveDataModelId String

The OCID of the sensitive data model that's used as the source of masking columns.

state String

The current state of the masking policy.

targetId String

The OCID of the target database that's used as the source of masking columns.

timeCreatedGreaterThanOrEqualTo String
timeCreatedLessThan String
compartmentId string

The OCID of the compartment that contains the masking policy.

id string

The provider-assigned unique ID for this managed resource.

maskingPolicyCollections GetMaskingPoliciesMaskingPolicyCollection[]

The list of masking_policy_collection.

accessLevel string
compartmentIdInSubtree boolean
displayName string

The display name of the masking policy.

filters GetMaskingPoliciesFilter[]
maskingPolicyId string
sensitiveDataModelId string

The OCID of the sensitive data model that's used as the source of masking columns.

state string

The current state of the masking policy.

targetId string

The OCID of the target database that's used as the source of masking columns.

timeCreatedGreaterThanOrEqualTo string
timeCreatedLessThan string
compartment_id str

The OCID of the compartment that contains the masking policy.

id str

The provider-assigned unique ID for this managed resource.

masking_policy_collections GetMaskingPoliciesMaskingPolicyCollection]

The list of masking_policy_collection.

access_level str
compartment_id_in_subtree bool
display_name str

The display name of the masking policy.

filters GetMaskingPoliciesFilter]
masking_policy_id str
sensitive_data_model_id str

The OCID of the sensitive data model that's used as the source of masking columns.

state str

The current state of the masking policy.

target_id str

The OCID of the target database that's used as the source of masking columns.

time_created_greater_than_or_equal_to str
time_created_less_than str
compartmentId String

The OCID of the compartment that contains the masking policy.

id String

The provider-assigned unique ID for this managed resource.

maskingPolicyCollections List<Property Map>

The list of masking_policy_collection.

accessLevel String
compartmentIdInSubtree Boolean
displayName String

The display name of the masking policy.

filters List<Property Map>
maskingPolicyId String
sensitiveDataModelId String

The OCID of the sensitive data model that's used as the source of masking columns.

state String

The current state of the masking policy.

targetId String

The OCID of the target database that's used as the source of masking columns.

timeCreatedGreaterThanOrEqualTo String
timeCreatedLessThan String

Supporting Types

GetMaskingPoliciesFilter

Name string
Values List<string>
Regex bool
Name string
Values []string
Regex bool
name String
values List<String>
regex Boolean
name string
values string[]
regex boolean
name str
values Sequence[str]
regex bool
name String
values List<String>
regex Boolean

GetMaskingPoliciesMaskingPolicyCollection

GetMaskingPoliciesMaskingPolicyCollectionItem

AddMaskingColumnsFromSdmTrigger int
ColumnSources List<GetMaskingPoliciesMaskingPolicyCollectionItemColumnSource>

The source of masking columns.

CompartmentId string

A filter to return only resources that match the specified compartment OCID.

DefinedTags Dictionary<string, object>

Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags Example: {"Operations.CostCenter": "42"}

Description string

The description of the masking policy.

DisplayName string

A filter to return only resources that match the specified display name.

FreeformTags Dictionary<string, object>

Free-form tags for this resource. Each tag is a simple key-value pair with no predefined name, type, or namespace. For more information, see Resource Tags Example: {"Department": "Finance"}

Id string

The OCID of the masking policy.

IsDropTempTablesEnabled bool

Indicates if the temporary tables created during a masking operation should be dropped after masking. It's enabled by default. Set this attribute to false to preserve the temporary tables. Masking creates temporary tables that map the original sensitive data values to mask values. By default, these temporary tables are dropped after masking. But, in some cases, you may want to preserve this information to track how masking changed your data. Note that doing so compromises security. These tables must be dropped before the database is available for unprivileged users.

IsRedoLoggingEnabled bool

Indicates if redo logging is enabled during a masking operation. It's disabled by default. Set this attribute to true to enable redo logging. By default, masking disables redo logging and flashback logging to purge any original unmasked data from logs. However, in certain circumstances when you only want to test masking, rollback changes, and retry masking, you could enable logging and use a flashback database to retrieve the original unmasked data after it has been masked.

IsRefreshStatsEnabled bool

Indicates if statistics gathering is enabled. It's enabled by default. Set this attribute to false to disable statistics gathering. The masking process gathers statistics on masked database tables after masking completes.

ParallelDegree string

Specifies options to enable parallel execution when running data masking. Allowed values are 'NONE' (no parallelism), 'DEFAULT' (the Oracle Database computes the optimum degree of parallelism) or an integer value to be used as the degree of parallelism. Parallel execution helps effectively use multiple CPUsi and improve masking performance. Refer to the Oracle Database parallel execution framework when choosing an explicit degree of parallelism.

PostMaskingScript string

A post-masking script, which can contain SQL and PL/SQL statements. It's executed after the core masking script generated using the masking policy. It's usually used to perform additional transformation or cleanup work after masking.

PreMaskingScript string

A pre-masking script, which can contain SQL and PL/SQL statements. It's executed before the core masking script generated using the masking policy. It's usually used to perform any preparation or prerequisite work before masking data.

Recompile string

Specifies how to recompile invalid objects post data masking. Allowed values are 'SERIAL' (recompile in serial), 'PARALLEL' (recompile in parallel), 'NONE' (do not recompile). If it's set to PARALLEL, the value of parallelDegree attribute is used.

State string

A filter to return only the resources that match the specified lifecycle states.

TimeCreated string

The date and time the masking policy was created, in the format defined by RFC3339.

TimeUpdated string

The date and time the masking policy was last updated, in the format defined by RFC3339

AddMaskingColumnsFromSdmTrigger int
ColumnSources []GetMaskingPoliciesMaskingPolicyCollectionItemColumnSource

The source of masking columns.

CompartmentId string

A filter to return only resources that match the specified compartment OCID.

DefinedTags map[string]interface{}

Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags Example: {"Operations.CostCenter": "42"}

Description string

The description of the masking policy.

DisplayName string

A filter to return only resources that match the specified display name.

FreeformTags map[string]interface{}

Free-form tags for this resource. Each tag is a simple key-value pair with no predefined name, type, or namespace. For more information, see Resource Tags Example: {"Department": "Finance"}

Id string

The OCID of the masking policy.

IsDropTempTablesEnabled bool

Indicates if the temporary tables created during a masking operation should be dropped after masking. It's enabled by default. Set this attribute to false to preserve the temporary tables. Masking creates temporary tables that map the original sensitive data values to mask values. By default, these temporary tables are dropped after masking. But, in some cases, you may want to preserve this information to track how masking changed your data. Note that doing so compromises security. These tables must be dropped before the database is available for unprivileged users.

IsRedoLoggingEnabled bool

Indicates if redo logging is enabled during a masking operation. It's disabled by default. Set this attribute to true to enable redo logging. By default, masking disables redo logging and flashback logging to purge any original unmasked data from logs. However, in certain circumstances when you only want to test masking, rollback changes, and retry masking, you could enable logging and use a flashback database to retrieve the original unmasked data after it has been masked.

IsRefreshStatsEnabled bool

Indicates if statistics gathering is enabled. It's enabled by default. Set this attribute to false to disable statistics gathering. The masking process gathers statistics on masked database tables after masking completes.

ParallelDegree string

Specifies options to enable parallel execution when running data masking. Allowed values are 'NONE' (no parallelism), 'DEFAULT' (the Oracle Database computes the optimum degree of parallelism) or an integer value to be used as the degree of parallelism. Parallel execution helps effectively use multiple CPUsi and improve masking performance. Refer to the Oracle Database parallel execution framework when choosing an explicit degree of parallelism.

PostMaskingScript string

A post-masking script, which can contain SQL and PL/SQL statements. It's executed after the core masking script generated using the masking policy. It's usually used to perform additional transformation or cleanup work after masking.

PreMaskingScript string

A pre-masking script, which can contain SQL and PL/SQL statements. It's executed before the core masking script generated using the masking policy. It's usually used to perform any preparation or prerequisite work before masking data.

Recompile string

Specifies how to recompile invalid objects post data masking. Allowed values are 'SERIAL' (recompile in serial), 'PARALLEL' (recompile in parallel), 'NONE' (do not recompile). If it's set to PARALLEL, the value of parallelDegree attribute is used.

State string

A filter to return only the resources that match the specified lifecycle states.

TimeCreated string

The date and time the masking policy was created, in the format defined by RFC3339.

TimeUpdated string

The date and time the masking policy was last updated, in the format defined by RFC3339

addMaskingColumnsFromSdmTrigger Integer
columnSources List<GetMaskingPoliciesMaskingPolicyCollectionItemColumnSource>

The source of masking columns.

compartmentId String

A filter to return only resources that match the specified compartment OCID.

definedTags Map<String,Object>

Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags Example: {"Operations.CostCenter": "42"}

description String

The description of the masking policy.

displayName String

A filter to return only resources that match the specified display name.

freeformTags Map<String,Object>

Free-form tags for this resource. Each tag is a simple key-value pair with no predefined name, type, or namespace. For more information, see Resource Tags Example: {"Department": "Finance"}

id String

The OCID of the masking policy.

isDropTempTablesEnabled Boolean

Indicates if the temporary tables created during a masking operation should be dropped after masking. It's enabled by default. Set this attribute to false to preserve the temporary tables. Masking creates temporary tables that map the original sensitive data values to mask values. By default, these temporary tables are dropped after masking. But, in some cases, you may want to preserve this information to track how masking changed your data. Note that doing so compromises security. These tables must be dropped before the database is available for unprivileged users.

isRedoLoggingEnabled Boolean

Indicates if redo logging is enabled during a masking operation. It's disabled by default. Set this attribute to true to enable redo logging. By default, masking disables redo logging and flashback logging to purge any original unmasked data from logs. However, in certain circumstances when you only want to test masking, rollback changes, and retry masking, you could enable logging and use a flashback database to retrieve the original unmasked data after it has been masked.

isRefreshStatsEnabled Boolean

Indicates if statistics gathering is enabled. It's enabled by default. Set this attribute to false to disable statistics gathering. The masking process gathers statistics on masked database tables after masking completes.

parallelDegree String

Specifies options to enable parallel execution when running data masking. Allowed values are 'NONE' (no parallelism), 'DEFAULT' (the Oracle Database computes the optimum degree of parallelism) or an integer value to be used as the degree of parallelism. Parallel execution helps effectively use multiple CPUsi and improve masking performance. Refer to the Oracle Database parallel execution framework when choosing an explicit degree of parallelism.

postMaskingScript String

A post-masking script, which can contain SQL and PL/SQL statements. It's executed after the core masking script generated using the masking policy. It's usually used to perform additional transformation or cleanup work after masking.

preMaskingScript String

A pre-masking script, which can contain SQL and PL/SQL statements. It's executed before the core masking script generated using the masking policy. It's usually used to perform any preparation or prerequisite work before masking data.

recompile String

Specifies how to recompile invalid objects post data masking. Allowed values are 'SERIAL' (recompile in serial), 'PARALLEL' (recompile in parallel), 'NONE' (do not recompile). If it's set to PARALLEL, the value of parallelDegree attribute is used.

state String

A filter to return only the resources that match the specified lifecycle states.

timeCreated String

The date and time the masking policy was created, in the format defined by RFC3339.

timeUpdated String

The date and time the masking policy was last updated, in the format defined by RFC3339

addMaskingColumnsFromSdmTrigger number
columnSources GetMaskingPoliciesMaskingPolicyCollectionItemColumnSource[]

The source of masking columns.

compartmentId string

A filter to return only resources that match the specified compartment OCID.

definedTags {[key: string]: any}

Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags Example: {"Operations.CostCenter": "42"}

description string

The description of the masking policy.

displayName string

A filter to return only resources that match the specified display name.

freeformTags {[key: string]: any}

Free-form tags for this resource. Each tag is a simple key-value pair with no predefined name, type, or namespace. For more information, see Resource Tags Example: {"Department": "Finance"}

id string

The OCID of the masking policy.

isDropTempTablesEnabled boolean

Indicates if the temporary tables created during a masking operation should be dropped after masking. It's enabled by default. Set this attribute to false to preserve the temporary tables. Masking creates temporary tables that map the original sensitive data values to mask values. By default, these temporary tables are dropped after masking. But, in some cases, you may want to preserve this information to track how masking changed your data. Note that doing so compromises security. These tables must be dropped before the database is available for unprivileged users.

isRedoLoggingEnabled boolean

Indicates if redo logging is enabled during a masking operation. It's disabled by default. Set this attribute to true to enable redo logging. By default, masking disables redo logging and flashback logging to purge any original unmasked data from logs. However, in certain circumstances when you only want to test masking, rollback changes, and retry masking, you could enable logging and use a flashback database to retrieve the original unmasked data after it has been masked.

isRefreshStatsEnabled boolean

Indicates if statistics gathering is enabled. It's enabled by default. Set this attribute to false to disable statistics gathering. The masking process gathers statistics on masked database tables after masking completes.

parallelDegree string

Specifies options to enable parallel execution when running data masking. Allowed values are 'NONE' (no parallelism), 'DEFAULT' (the Oracle Database computes the optimum degree of parallelism) or an integer value to be used as the degree of parallelism. Parallel execution helps effectively use multiple CPUsi and improve masking performance. Refer to the Oracle Database parallel execution framework when choosing an explicit degree of parallelism.

postMaskingScript string

A post-masking script, which can contain SQL and PL/SQL statements. It's executed after the core masking script generated using the masking policy. It's usually used to perform additional transformation or cleanup work after masking.

preMaskingScript string

A pre-masking script, which can contain SQL and PL/SQL statements. It's executed before the core masking script generated using the masking policy. It's usually used to perform any preparation or prerequisite work before masking data.

recompile string

Specifies how to recompile invalid objects post data masking. Allowed values are 'SERIAL' (recompile in serial), 'PARALLEL' (recompile in parallel), 'NONE' (do not recompile). If it's set to PARALLEL, the value of parallelDegree attribute is used.

state string

A filter to return only the resources that match the specified lifecycle states.

timeCreated string

The date and time the masking policy was created, in the format defined by RFC3339.

timeUpdated string

The date and time the masking policy was last updated, in the format defined by RFC3339

add_masking_columns_from_sdm_trigger int
column_sources GetMaskingPoliciesMaskingPolicyCollectionItemColumnSource]

The source of masking columns.

compartment_id str

A filter to return only resources that match the specified compartment OCID.

defined_tags Mapping[str, Any]

Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags Example: {"Operations.CostCenter": "42"}

description str

The description of the masking policy.

display_name str

A filter to return only resources that match the specified display name.

freeform_tags Mapping[str, Any]

Free-form tags for this resource. Each tag is a simple key-value pair with no predefined name, type, or namespace. For more information, see Resource Tags Example: {"Department": "Finance"}

id str

The OCID of the masking policy.

is_drop_temp_tables_enabled bool

Indicates if the temporary tables created during a masking operation should be dropped after masking. It's enabled by default. Set this attribute to false to preserve the temporary tables. Masking creates temporary tables that map the original sensitive data values to mask values. By default, these temporary tables are dropped after masking. But, in some cases, you may want to preserve this information to track how masking changed your data. Note that doing so compromises security. These tables must be dropped before the database is available for unprivileged users.

is_redo_logging_enabled bool

Indicates if redo logging is enabled during a masking operation. It's disabled by default. Set this attribute to true to enable redo logging. By default, masking disables redo logging and flashback logging to purge any original unmasked data from logs. However, in certain circumstances when you only want to test masking, rollback changes, and retry masking, you could enable logging and use a flashback database to retrieve the original unmasked data after it has been masked.

is_refresh_stats_enabled bool

Indicates if statistics gathering is enabled. It's enabled by default. Set this attribute to false to disable statistics gathering. The masking process gathers statistics on masked database tables after masking completes.

parallel_degree str

Specifies options to enable parallel execution when running data masking. Allowed values are 'NONE' (no parallelism), 'DEFAULT' (the Oracle Database computes the optimum degree of parallelism) or an integer value to be used as the degree of parallelism. Parallel execution helps effectively use multiple CPUsi and improve masking performance. Refer to the Oracle Database parallel execution framework when choosing an explicit degree of parallelism.

post_masking_script str

A post-masking script, which can contain SQL and PL/SQL statements. It's executed after the core masking script generated using the masking policy. It's usually used to perform additional transformation or cleanup work after masking.

pre_masking_script str

A pre-masking script, which can contain SQL and PL/SQL statements. It's executed before the core masking script generated using the masking policy. It's usually used to perform any preparation or prerequisite work before masking data.

recompile str

Specifies how to recompile invalid objects post data masking. Allowed values are 'SERIAL' (recompile in serial), 'PARALLEL' (recompile in parallel), 'NONE' (do not recompile). If it's set to PARALLEL, the value of parallelDegree attribute is used.

state str

A filter to return only the resources that match the specified lifecycle states.

time_created str

The date and time the masking policy was created, in the format defined by RFC3339.

time_updated str

The date and time the masking policy was last updated, in the format defined by RFC3339

addMaskingColumnsFromSdmTrigger Number
columnSources List<Property Map>

The source of masking columns.

compartmentId String

A filter to return only resources that match the specified compartment OCID.

definedTags Map<Any>

Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags Example: {"Operations.CostCenter": "42"}

description String

The description of the masking policy.

displayName String

A filter to return only resources that match the specified display name.

freeformTags Map<Any>

Free-form tags for this resource. Each tag is a simple key-value pair with no predefined name, type, or namespace. For more information, see Resource Tags Example: {"Department": "Finance"}

id String

The OCID of the masking policy.

isDropTempTablesEnabled Boolean

Indicates if the temporary tables created during a masking operation should be dropped after masking. It's enabled by default. Set this attribute to false to preserve the temporary tables. Masking creates temporary tables that map the original sensitive data values to mask values. By default, these temporary tables are dropped after masking. But, in some cases, you may want to preserve this information to track how masking changed your data. Note that doing so compromises security. These tables must be dropped before the database is available for unprivileged users.

isRedoLoggingEnabled Boolean

Indicates if redo logging is enabled during a masking operation. It's disabled by default. Set this attribute to true to enable redo logging. By default, masking disables redo logging and flashback logging to purge any original unmasked data from logs. However, in certain circumstances when you only want to test masking, rollback changes, and retry masking, you could enable logging and use a flashback database to retrieve the original unmasked data after it has been masked.

isRefreshStatsEnabled Boolean

Indicates if statistics gathering is enabled. It's enabled by default. Set this attribute to false to disable statistics gathering. The masking process gathers statistics on masked database tables after masking completes.

parallelDegree String

Specifies options to enable parallel execution when running data masking. Allowed values are 'NONE' (no parallelism), 'DEFAULT' (the Oracle Database computes the optimum degree of parallelism) or an integer value to be used as the degree of parallelism. Parallel execution helps effectively use multiple CPUsi and improve masking performance. Refer to the Oracle Database parallel execution framework when choosing an explicit degree of parallelism.

postMaskingScript String

A post-masking script, which can contain SQL and PL/SQL statements. It's executed after the core masking script generated using the masking policy. It's usually used to perform additional transformation or cleanup work after masking.

preMaskingScript String

A pre-masking script, which can contain SQL and PL/SQL statements. It's executed before the core masking script generated using the masking policy. It's usually used to perform any preparation or prerequisite work before masking data.

recompile String

Specifies how to recompile invalid objects post data masking. Allowed values are 'SERIAL' (recompile in serial), 'PARALLEL' (recompile in parallel), 'NONE' (do not recompile). If it's set to PARALLEL, the value of parallelDegree attribute is used.

state String

A filter to return only the resources that match the specified lifecycle states.

timeCreated String

The date and time the masking policy was created, in the format defined by RFC3339.

timeUpdated String

The date and time the masking policy was last updated, in the format defined by RFC3339

GetMaskingPoliciesMaskingPolicyCollectionItemColumnSource

ColumnSource string

The source of masking columns.

SensitiveDataModelId string

A filter to return only the resources that match the specified sensitive data model OCID.

TargetId string

A filter to return only items related to a specific target OCID.

ColumnSource string

The source of masking columns.

SensitiveDataModelId string

A filter to return only the resources that match the specified sensitive data model OCID.

TargetId string

A filter to return only items related to a specific target OCID.

columnSource String

The source of masking columns.

sensitiveDataModelId String

A filter to return only the resources that match the specified sensitive data model OCID.

targetId String

A filter to return only items related to a specific target OCID.

columnSource string

The source of masking columns.

sensitiveDataModelId string

A filter to return only the resources that match the specified sensitive data model OCID.

targetId string

A filter to return only items related to a specific target OCID.

column_source str

The source of masking columns.

sensitive_data_model_id str

A filter to return only the resources that match the specified sensitive data model OCID.

target_id str

A filter to return only items related to a specific target OCID.

columnSource String

The source of masking columns.

sensitiveDataModelId String

A filter to return only the resources that match the specified sensitive data model OCID.

targetId String

A filter to return only items related to a specific target OCID.

Package Details

Repository
https://github.com/pulumi/pulumi-oci
License
Apache-2.0
Notes

This Pulumi package is based on the oci Terraform Provider.