Oracle Cloud Infrastructure v3.7.0, Sep 13 25

Oracle Cloud Infrastructure v3.7.0 published on Saturday, Sep 13, 2025 by Pulumi

oci.DataSafe.getSecurityPolicyConfigs

Explore with Pulumi AI

Oracle Cloud Infrastructure v3.7.0 published on Saturday, Sep 13, 2025 by Pulumi

The parameter accessLevel specifies whether to return only those compartments for which the requestor has INSPECT permissions on at least one resource directly or indirectly (ACCESSIBLE) (the resource can be in a subcompartment) or to return Not Authorized if Principal doesn’t have access to even one of the child compartments. This is valid only when compartmentIdInSubtree is set to true.

The parameter compartmentIdInSubtree applies when you perform ListSecurityPolicyConfigs on the compartmentId passed and when it is set to true, the entire hierarchy of compartments can be returned. To get a full list of all compartments and subcompartments in the tenancy (root compartment), set the parameter compartmentIdInSubtree to true and accessLevel to ACCESSIBLE.

Example Usage

import * as pulumi from "@pulumi/pulumi";
import * as oci from "@pulumi/oci";

const testSecurityPolicyConfigs = oci.DataSafe.getSecurityPolicyConfigs({
    compartmentId: compartmentId,
    accessLevel: securityPolicyConfigAccessLevel,
    compartmentIdInSubtree: securityPolicyConfigCompartmentIdInSubtree,
    displayName: securityPolicyConfigDisplayName,
    securityPolicyConfigId: testSecurityPolicyConfig.id,
    securityPolicyId: testSecurityPolicy.id,
    state: securityPolicyConfigState,
    timeCreatedGreaterThanOrEqualTo: securityPolicyConfigTimeCreatedGreaterThanOrEqualTo,
    timeCreatedLessThan: securityPolicyConfigTimeCreatedLessThan,
});

import pulumi
import pulumi_oci as oci

test_security_policy_configs = oci.DataSafe.get_security_policy_configs(compartment_id=compartment_id,
    access_level=security_policy_config_access_level,
    compartment_id_in_subtree=security_policy_config_compartment_id_in_subtree,
    display_name=security_policy_config_display_name,
    security_policy_config_id=test_security_policy_config["id"],
    security_policy_id=test_security_policy["id"],
    state=security_policy_config_state,
    time_created_greater_than_or_equal_to=security_policy_config_time_created_greater_than_or_equal_to,
    time_created_less_than=security_policy_config_time_created_less_than)

package main

import (
	"github.com/pulumi/pulumi-oci/sdk/v3/go/oci/datasafe"
	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := datasafe.GetSecurityPolicyConfigs(ctx, &datasafe.GetSecurityPolicyConfigsArgs{
			CompartmentId:                   compartmentId,
			AccessLevel:                     pulumi.StringRef(securityPolicyConfigAccessLevel),
			CompartmentIdInSubtree:          pulumi.BoolRef(securityPolicyConfigCompartmentIdInSubtree),
			DisplayName:                     pulumi.StringRef(securityPolicyConfigDisplayName),
			SecurityPolicyConfigId:          pulumi.StringRef(testSecurityPolicyConfig.Id),
			SecurityPolicyId:                pulumi.StringRef(testSecurityPolicy.Id),
			State:                           pulumi.StringRef(securityPolicyConfigState),
			TimeCreatedGreaterThanOrEqualTo: pulumi.StringRef(securityPolicyConfigTimeCreatedGreaterThanOrEqualTo),
			TimeCreatedLessThan:             pulumi.StringRef(securityPolicyConfigTimeCreatedLessThan),
		}, nil)
		if err != nil {
			return err
		}
		return nil
	})
}

using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Oci = Pulumi.Oci;

return await Deployment.RunAsync(() => 
{
    var testSecurityPolicyConfigs = Oci.DataSafe.GetSecurityPolicyConfigs.Invoke(new()
    {
        CompartmentId = compartmentId,
        AccessLevel = securityPolicyConfigAccessLevel,
        CompartmentIdInSubtree = securityPolicyConfigCompartmentIdInSubtree,
        DisplayName = securityPolicyConfigDisplayName,
        SecurityPolicyConfigId = testSecurityPolicyConfig.Id,
        SecurityPolicyId = testSecurityPolicy.Id,
        State = securityPolicyConfigState,
        TimeCreatedGreaterThanOrEqualTo = securityPolicyConfigTimeCreatedGreaterThanOrEqualTo,
        TimeCreatedLessThan = securityPolicyConfigTimeCreatedLessThan,
    });

});

package generated_program;

import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.oci.DataSafe.DataSafeFunctions;
import com.pulumi.oci.DataSafe.inputs.GetSecurityPolicyConfigsArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;

public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }

    public static void stack(Context ctx) {
        final var testSecurityPolicyConfigs = DataSafeFunctions.getSecurityPolicyConfigs(GetSecurityPolicyConfigsArgs.builder()
            .compartmentId(compartmentId)
            .accessLevel(securityPolicyConfigAccessLevel)
            .compartmentIdInSubtree(securityPolicyConfigCompartmentIdInSubtree)
            .displayName(securityPolicyConfigDisplayName)
            .securityPolicyConfigId(testSecurityPolicyConfig.id())
            .securityPolicyId(testSecurityPolicy.id())
            .state(securityPolicyConfigState)
            .timeCreatedGreaterThanOrEqualTo(securityPolicyConfigTimeCreatedGreaterThanOrEqualTo)
            .timeCreatedLessThan(securityPolicyConfigTimeCreatedLessThan)
            .build());

    }
}

variables:
  testSecurityPolicyConfigs:
    fn::invoke:
      function: oci:DataSafe:getSecurityPolicyConfigs
      arguments:
        compartmentId: ${compartmentId}
        accessLevel: ${securityPolicyConfigAccessLevel}
        compartmentIdInSubtree: ${securityPolicyConfigCompartmentIdInSubtree}
        displayName: ${securityPolicyConfigDisplayName}
        securityPolicyConfigId: ${testSecurityPolicyConfig.id}
        securityPolicyId: ${testSecurityPolicy.id}
        state: ${securityPolicyConfigState}
        timeCreatedGreaterThanOrEqualTo: ${securityPolicyConfigTimeCreatedGreaterThanOrEqualTo}
        timeCreatedLessThan: ${securityPolicyConfigTimeCreatedLessThan}

Using getSecurityPolicyConfigs

Two invocation forms are available. The direct form accepts plain arguments and either blocks until the result value is available, or returns a Promise-wrapped result. The output form accepts Input-wrapped arguments and returns an Output-wrapped result.

function getSecurityPolicyConfigs(args: GetSecurityPolicyConfigsArgs, opts?: InvokeOptions): Promise<GetSecurityPolicyConfigsResult>
function getSecurityPolicyConfigsOutput(args: GetSecurityPolicyConfigsOutputArgs, opts?: InvokeOptions): Output<GetSecurityPolicyConfigsResult>

def get_security_policy_configs(access_level: Optional[str] = None,
                                compartment_id: Optional[str] = None,
                                compartment_id_in_subtree: Optional[bool] = None,
                                display_name: Optional[str] = None,
                                filters: Optional[Sequence[GetSecurityPolicyConfigsFilter]] = None,
                                security_policy_config_id: Optional[str] = None,
                                security_policy_id: Optional[str] = None,
                                state: Optional[str] = None,
                                time_created_greater_than_or_equal_to: Optional[str] = None,
                                time_created_less_than: Optional[str] = None,
                                opts: Optional[InvokeOptions] = None) -> GetSecurityPolicyConfigsResult
def get_security_policy_configs_output(access_level: Optional[pulumi.Input[str]] = None,
                                compartment_id: Optional[pulumi.Input[str]] = None,
                                compartment_id_in_subtree: Optional[pulumi.Input[bool]] = None,
                                display_name: Optional[pulumi.Input[str]] = None,
                                filters: Optional[pulumi.Input[Sequence[pulumi.Input[GetSecurityPolicyConfigsFilterArgs]]]] = None,
                                security_policy_config_id: Optional[pulumi.Input[str]] = None,
                                security_policy_id: Optional[pulumi.Input[str]] = None,
                                state: Optional[pulumi.Input[str]] = None,
                                time_created_greater_than_or_equal_to: Optional[pulumi.Input[str]] = None,
                                time_created_less_than: Optional[pulumi.Input[str]] = None,
                                opts: Optional[InvokeOptions] = None) -> Output[GetSecurityPolicyConfigsResult]

func GetSecurityPolicyConfigs(ctx *Context, args *GetSecurityPolicyConfigsArgs, opts ...InvokeOption) (*GetSecurityPolicyConfigsResult, error)
func GetSecurityPolicyConfigsOutput(ctx *Context, args *GetSecurityPolicyConfigsOutputArgs, opts ...InvokeOption) GetSecurityPolicyConfigsResultOutput

> Note: This function is named GetSecurityPolicyConfigs in the Go SDK.

public static class GetSecurityPolicyConfigs 
{
    public static Task<GetSecurityPolicyConfigsResult> InvokeAsync(GetSecurityPolicyConfigsArgs args, InvokeOptions? opts = null)
    public static Output<GetSecurityPolicyConfigsResult> Invoke(GetSecurityPolicyConfigsInvokeArgs args, InvokeOptions? opts = null)
}

public static CompletableFuture<GetSecurityPolicyConfigsResult> getSecurityPolicyConfigs(GetSecurityPolicyConfigsArgs args, InvokeOptions options)
public static Output<GetSecurityPolicyConfigsResult> getSecurityPolicyConfigs(GetSecurityPolicyConfigsArgs args, InvokeOptions options)

fn::invoke:
  function: oci:DataSafe/getSecurityPolicyConfigs:getSecurityPolicyConfigs
  arguments:
    # arguments dictionary

The following arguments are supported:

CompartmentId string

A filter to return only resources that match the specified compartment OCID.

AccessLevel string

Valid values are RESTRICTED and ACCESSIBLE. Default is RESTRICTED. Setting this to ACCESSIBLE returns only those compartments for which the user has INSPECT permissions directly or indirectly (permissions can be on a resource in a subcompartment). When set to RESTRICTED permissions are checked and no partial results are displayed.

CompartmentIdInSubtree bool

Default is false. When set to true, the hierarchy of compartments is traversed and all compartments and subcompartments in the tenancy are returned. Depends on the 'accessLevel' setting.

DisplayName string

A filter to return only resources that match the specified display name.

Filters List<GetSecurityPolicyConfigsFilter>

SecurityPolicyConfigId string

An optional filter to return only resources that match the specified OCID of the security policy configuration resource.

SecurityPolicyId string

An optional filter to return only resources that match the specified OCID of the security policy resource.

State string

The current state of the security policy configuration resource.

TimeCreatedGreaterThanOrEqualTo string

A filter to return only the resources that were created after the specified date and time, as defined by RFC3339. Using TimeCreatedGreaterThanOrEqualToQueryParam parameter retrieves all resources created after that date.

Example: 2016-12-19T16:39:57.600Z

TimeCreatedLessThan string

Search for resources that were created before a specific date. Specifying this parameter corresponding timeCreatedLessThan parameter will retrieve all resources created before the specified created date, in "YYYY-MM-ddThh:mmZ" format with a Z offset, as defined by RFC 3339.

Example: 2016-12-19T16:39:57.600Z

CompartmentId string

A filter to return only resources that match the specified compartment OCID.

AccessLevel string

CompartmentIdInSubtree bool

Default is false. When set to true, the hierarchy of compartments is traversed and all compartments and subcompartments in the tenancy are returned. Depends on the 'accessLevel' setting.

DisplayName string

A filter to return only resources that match the specified display name.

Filters []GetSecurityPolicyConfigsFilter

SecurityPolicyConfigId string

An optional filter to return only resources that match the specified OCID of the security policy configuration resource.

SecurityPolicyId string

An optional filter to return only resources that match the specified OCID of the security policy resource.

State string

The current state of the security policy configuration resource.

TimeCreatedGreaterThanOrEqualTo string

Example: 2016-12-19T16:39:57.600Z

TimeCreatedLessThan string

Example: 2016-12-19T16:39:57.600Z

compartmentId String

A filter to return only resources that match the specified compartment OCID.

accessLevel String

compartmentIdInSubtree Boolean

Default is false. When set to true, the hierarchy of compartments is traversed and all compartments and subcompartments in the tenancy are returned. Depends on the 'accessLevel' setting.

displayName String

A filter to return only resources that match the specified display name.

filters List<GetSecurityPolicyConfigsFilter>

securityPolicyConfigId String

An optional filter to return only resources that match the specified OCID of the security policy configuration resource.

securityPolicyId String

An optional filter to return only resources that match the specified OCID of the security policy resource.

state String

The current state of the security policy configuration resource.

timeCreatedGreaterThanOrEqualTo String

Example: 2016-12-19T16:39:57.600Z

timeCreatedLessThan String

Example: 2016-12-19T16:39:57.600Z

compartmentId string

A filter to return only resources that match the specified compartment OCID.

accessLevel string

compartmentIdInSubtree boolean

Default is false. When set to true, the hierarchy of compartments is traversed and all compartments and subcompartments in the tenancy are returned. Depends on the 'accessLevel' setting.

displayName string

A filter to return only resources that match the specified display name.

filters GetSecurityPolicyConfigsFilter[]

securityPolicyConfigId string

An optional filter to return only resources that match the specified OCID of the security policy configuration resource.

securityPolicyId string

An optional filter to return only resources that match the specified OCID of the security policy resource.

state string

The current state of the security policy configuration resource.

timeCreatedGreaterThanOrEqualTo string

Example: 2016-12-19T16:39:57.600Z

timeCreatedLessThan string

Example: 2016-12-19T16:39:57.600Z

compartment_id str

A filter to return only resources that match the specified compartment OCID.

access_level str

compartment_id_in_subtree bool

Default is false. When set to true, the hierarchy of compartments is traversed and all compartments and subcompartments in the tenancy are returned. Depends on the 'accessLevel' setting.

display_name str

A filter to return only resources that match the specified display name.

filters Sequence[GetSecurityPolicyConfigsFilter]

security_policy_config_id str

An optional filter to return only resources that match the specified OCID of the security policy configuration resource.

security_policy_id str

An optional filter to return only resources that match the specified OCID of the security policy resource.

state str

The current state of the security policy configuration resource.

time_created_greater_than_or_equal_to str

Example: 2016-12-19T16:39:57.600Z

time_created_less_than str

Example: 2016-12-19T16:39:57.600Z

compartmentId String

A filter to return only resources that match the specified compartment OCID.

accessLevel String

compartmentIdInSubtree Boolean

Default is false. When set to true, the hierarchy of compartments is traversed and all compartments and subcompartments in the tenancy are returned. Depends on the 'accessLevel' setting.

displayName String

A filter to return only resources that match the specified display name.

filters List<Property Map>

securityPolicyConfigId String

An optional filter to return only resources that match the specified OCID of the security policy configuration resource.

securityPolicyId String

An optional filter to return only resources that match the specified OCID of the security policy resource.

state String

The current state of the security policy configuration resource.

timeCreatedGreaterThanOrEqualTo String

Example: 2016-12-19T16:39:57.600Z

timeCreatedLessThan String

Example: 2016-12-19T16:39:57.600Z

getSecurityPolicyConfigs Result

The following output properties are available:

CompartmentId string: The OCID of the compartment containing the security policy configuration.
Id string: The provider-assigned unique ID for this managed resource.
SecurityPolicyConfigCollections List<GetSecurityPolicyConfigsSecurityPolicyConfigCollection>: The list of security_policy_config_collection.
AccessLevel string
CompartmentIdInSubtree bool
DisplayName string: The display name of the security policy configuration.
Filters List<GetSecurityPolicyConfigsFilter>
SecurityPolicyConfigId string
SecurityPolicyId string: The OCID of the security policy corresponding to the security policy configuration.
State string: The current state of the security policy configuration.
TimeCreatedGreaterThanOrEqualTo string
TimeCreatedLessThan string

CompartmentId string: The OCID of the compartment containing the security policy configuration.
Id string: The provider-assigned unique ID for this managed resource.
SecurityPolicyConfigCollections []GetSecurityPolicyConfigsSecurityPolicyConfigCollection: The list of security_policy_config_collection.
AccessLevel string
CompartmentIdInSubtree bool
DisplayName string: The display name of the security policy configuration.
Filters []GetSecurityPolicyConfigsFilter
SecurityPolicyConfigId string
SecurityPolicyId string: The OCID of the security policy corresponding to the security policy configuration.
State string: The current state of the security policy configuration.
TimeCreatedGreaterThanOrEqualTo string
TimeCreatedLessThan string

compartmentId String: The OCID of the compartment containing the security policy configuration.
id String: The provider-assigned unique ID for this managed resource.
securityPolicyConfigCollections List<GetSecurityPolicyConfigsSecurityPolicyConfigCollection>: The list of security_policy_config_collection.
accessLevel String
compartmentIdInSubtree Boolean
displayName String: The display name of the security policy configuration.
filters List<GetSecurityPolicyConfigsFilter>
securityPolicyConfigId String
securityPolicyId String: The OCID of the security policy corresponding to the security policy configuration.
state String: The current state of the security policy configuration.
timeCreatedGreaterThanOrEqualTo String
timeCreatedLessThan String

compartmentId string: The OCID of the compartment containing the security policy configuration.
id string: The provider-assigned unique ID for this managed resource.
securityPolicyConfigCollections GetSecurityPolicyConfigsSecurityPolicyConfigCollection[]: The list of security_policy_config_collection.
accessLevel string
compartmentIdInSubtree boolean
displayName string: The display name of the security policy configuration.
filters GetSecurityPolicyConfigsFilter[]
securityPolicyConfigId string
securityPolicyId string: The OCID of the security policy corresponding to the security policy configuration.
state string: The current state of the security policy configuration.
timeCreatedGreaterThanOrEqualTo string
timeCreatedLessThan string

compartment_id str: The OCID of the compartment containing the security policy configuration.
id str: The provider-assigned unique ID for this managed resource.
security_policy_config_collections Sequence[GetSecurityPolicyConfigsSecurityPolicyConfigCollection]: The list of security_policy_config_collection.
access_level str
compartment_id_in_subtree bool
display_name str: The display name of the security policy configuration.
filters Sequence[GetSecurityPolicyConfigsFilter]
security_policy_config_id str
security_policy_id str: The OCID of the security policy corresponding to the security policy configuration.
state str: The current state of the security policy configuration.
time_created_greater_than_or_equal_to str
time_created_less_than str

compartmentId String: The OCID of the compartment containing the security policy configuration.
id String: The provider-assigned unique ID for this managed resource.
securityPolicyConfigCollections List<Property Map>: The list of security_policy_config_collection.
accessLevel String
compartmentIdInSubtree Boolean
displayName String: The display name of the security policy configuration.
filters List<Property Map>
securityPolicyConfigId String
securityPolicyId String: The OCID of the security policy corresponding to the security policy configuration.
state String: The current state of the security policy configuration.
timeCreatedGreaterThanOrEqualTo String
timeCreatedLessThan String

Supporting Types

GetSecurityPolicyConfigsFilter

Name string
Values List<string>
Regex bool

Name string
Values []string
Regex bool

name String
values List<String>
regex Boolean

name string
values string[]
regex boolean

name str
values Sequence[str]
regex bool

name String
values List<String>
regex Boolean

GetSecurityPolicyConfigsSecurityPolicyConfigCollection

Items List<GetSecurityPolicyConfigsSecurityPolicyConfigCollectionItem>

Items []GetSecurityPolicyConfigsSecurityPolicyConfigCollectionItem

items List<GetSecurityPolicyConfigsSecurityPolicyConfigCollectionItem>

items GetSecurityPolicyConfigsSecurityPolicyConfigCollectionItem[]

items Sequence[GetSecurityPolicyConfigsSecurityPolicyConfigCollectionItem]

items List<Property Map>

GetSecurityPolicyConfigsSecurityPolicyConfigCollectionItem

CompartmentId string: A filter to return only resources that match the specified compartment OCID.
DefinedTags Dictionary<string, string>: Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags Example: {"Operations.CostCenter": "42"}
Description string: The description of the security policy configuration.
DisplayName string: A filter to return only resources that match the specified display name.
FirewallConfigs List<GetSecurityPolicyConfigsSecurityPolicyConfigCollectionItemFirewallConfig>: The SQL Firewall related configurations.
FreeformTags Dictionary<string, string>: Free-form tags for this resource. Each tag is a simple key-value pair with no predefined name, type, or namespace. For more information, see Resource Tags Example: {"Department": "Finance"}
Id string: The OCID of the security policy configuration.
LifecycleDetails string: Details about the current state of the security policy configuration.
SecurityPolicyId string: An optional filter to return only resources that match the specified OCID of the security policy resource.
State string: The current state of the security policy configuration resource.
SystemTags Dictionary<string, string>: System tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags. Example: {"orcl-cloud.free-tier-retained": "true"}
TimeCreated string: The time the security policy configuration was created, in the format defined by RFC3339.
TimeUpdated string: The date and time the security policy configuration was last updated, in the format defined by RFC3339.
UnifiedAuditPolicyConfigs List<GetSecurityPolicyConfigsSecurityPolicyConfigCollectionItemUnifiedAuditPolicyConfig>: The unified audit policy related configurations.

CompartmentId string: A filter to return only resources that match the specified compartment OCID.
DefinedTags map[string]string: Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags Example: {"Operations.CostCenter": "42"}
Description string: The description of the security policy configuration.
DisplayName string: A filter to return only resources that match the specified display name.
FirewallConfigs []GetSecurityPolicyConfigsSecurityPolicyConfigCollectionItemFirewallConfig: The SQL Firewall related configurations.
FreeformTags map[string]string: Free-form tags for this resource. Each tag is a simple key-value pair with no predefined name, type, or namespace. For more information, see Resource Tags Example: {"Department": "Finance"}
Id string: The OCID of the security policy configuration.
LifecycleDetails string: Details about the current state of the security policy configuration.
SecurityPolicyId string: An optional filter to return only resources that match the specified OCID of the security policy resource.
State string: The current state of the security policy configuration resource.
SystemTags map[string]string: System tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags. Example: {"orcl-cloud.free-tier-retained": "true"}
TimeCreated string: The time the security policy configuration was created, in the format defined by RFC3339.
TimeUpdated string: The date and time the security policy configuration was last updated, in the format defined by RFC3339.
UnifiedAuditPolicyConfigs []GetSecurityPolicyConfigsSecurityPolicyConfigCollectionItemUnifiedAuditPolicyConfig: The unified audit policy related configurations.

compartmentId String: A filter to return only resources that match the specified compartment OCID.
definedTags Map<String,String>: Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags Example: {"Operations.CostCenter": "42"}
description String: The description of the security policy configuration.
displayName String: A filter to return only resources that match the specified display name.
firewallConfigs List<GetSecurityPolicyConfigsSecurityPolicyConfigCollectionItemFirewallConfig>: The SQL Firewall related configurations.
freeformTags Map<String,String>: Free-form tags for this resource. Each tag is a simple key-value pair with no predefined name, type, or namespace. For more information, see Resource Tags Example: {"Department": "Finance"}
id String: The OCID of the security policy configuration.
lifecycleDetails String: Details about the current state of the security policy configuration.
securityPolicyId String: An optional filter to return only resources that match the specified OCID of the security policy resource.
state String: The current state of the security policy configuration resource.
systemTags Map<String,String>: System tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags. Example: {"orcl-cloud.free-tier-retained": "true"}
timeCreated String: The time the security policy configuration was created, in the format defined by RFC3339.
timeUpdated String: The date and time the security policy configuration was last updated, in the format defined by RFC3339.
unifiedAuditPolicyConfigs List<GetSecurityPolicyConfigsSecurityPolicyConfigCollectionItemUnifiedAuditPolicyConfig>: The unified audit policy related configurations.

compartmentId string: A filter to return only resources that match the specified compartment OCID.
definedTags {[key: string]: string}: Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags Example: {"Operations.CostCenter": "42"}
description string: The description of the security policy configuration.
displayName string: A filter to return only resources that match the specified display name.
firewallConfigs GetSecurityPolicyConfigsSecurityPolicyConfigCollectionItemFirewallConfig[]: The SQL Firewall related configurations.
freeformTags {[key: string]: string}: Free-form tags for this resource. Each tag is a simple key-value pair with no predefined name, type, or namespace. For more information, see Resource Tags Example: {"Department": "Finance"}
id string: The OCID of the security policy configuration.
lifecycleDetails string: Details about the current state of the security policy configuration.
securityPolicyId string: An optional filter to return only resources that match the specified OCID of the security policy resource.
state string: The current state of the security policy configuration resource.
systemTags {[key: string]: string}: System tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags. Example: {"orcl-cloud.free-tier-retained": "true"}
timeCreated string: The time the security policy configuration was created, in the format defined by RFC3339.
timeUpdated string: The date and time the security policy configuration was last updated, in the format defined by RFC3339.
unifiedAuditPolicyConfigs GetSecurityPolicyConfigsSecurityPolicyConfigCollectionItemUnifiedAuditPolicyConfig[]: The unified audit policy related configurations.

compartment_id str: A filter to return only resources that match the specified compartment OCID.
defined_tags Mapping[str, str]: Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags Example: {"Operations.CostCenter": "42"}
description str: The description of the security policy configuration.
display_name str: A filter to return only resources that match the specified display name.
firewall_configs Sequence[GetSecurityPolicyConfigsSecurityPolicyConfigCollectionItemFirewallConfig]: The SQL Firewall related configurations.
freeform_tags Mapping[str, str]: Free-form tags for this resource. Each tag is a simple key-value pair with no predefined name, type, or namespace. For more information, see Resource Tags Example: {"Department": "Finance"}
id str: The OCID of the security policy configuration.
lifecycle_details str: Details about the current state of the security policy configuration.
security_policy_id str: An optional filter to return only resources that match the specified OCID of the security policy resource.
state str: The current state of the security policy configuration resource.
system_tags Mapping[str, str]: System tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags. Example: {"orcl-cloud.free-tier-retained": "true"}
time_created str: The time the security policy configuration was created, in the format defined by RFC3339.
time_updated str: The date and time the security policy configuration was last updated, in the format defined by RFC3339.
unified_audit_policy_configs Sequence[GetSecurityPolicyConfigsSecurityPolicyConfigCollectionItemUnifiedAuditPolicyConfig]: The unified audit policy related configurations.

compartmentId String: A filter to return only resources that match the specified compartment OCID.
definedTags Map<String>: Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags Example: {"Operations.CostCenter": "42"}
description String: The description of the security policy configuration.
displayName String: A filter to return only resources that match the specified display name.
firewallConfigs List<Property Map>: The SQL Firewall related configurations.
freeformTags Map<String>: Free-form tags for this resource. Each tag is a simple key-value pair with no predefined name, type, or namespace. For more information, see Resource Tags Example: {"Department": "Finance"}
id String: The OCID of the security policy configuration.
lifecycleDetails String: Details about the current state of the security policy configuration.
securityPolicyId String: An optional filter to return only resources that match the specified OCID of the security policy resource.
state String: The current state of the security policy configuration resource.
systemTags Map<String>: System tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags. Example: {"orcl-cloud.free-tier-retained": "true"}
timeCreated String: The time the security policy configuration was created, in the format defined by RFC3339.
timeUpdated String: The date and time the security policy configuration was last updated, in the format defined by RFC3339.
unifiedAuditPolicyConfigs List<Property Map>: The unified audit policy related configurations.

GetSecurityPolicyConfigsSecurityPolicyConfigCollectionItemFirewallConfig

ExcludeJob string: Specifies whether the firewall should include or exclude the database internal job activities.
Status string: Specifies if the firewall is enabled or disabled.
TimeStatusUpdated string: The date and time the firewall configuration was last updated, in the format defined by RFC3339.
ViolationLogAutoPurge string: Specifies whether Data Safe should automatically purge the violation logs from the database after collecting the violation logs and persisting on Data Safe.

ExcludeJob string: Specifies whether the firewall should include or exclude the database internal job activities.
Status string: Specifies if the firewall is enabled or disabled.
TimeStatusUpdated string: The date and time the firewall configuration was last updated, in the format defined by RFC3339.
ViolationLogAutoPurge string: Specifies whether Data Safe should automatically purge the violation logs from the database after collecting the violation logs and persisting on Data Safe.

excludeJob String: Specifies whether the firewall should include or exclude the database internal job activities.
status String: Specifies if the firewall is enabled or disabled.
timeStatusUpdated String: The date and time the firewall configuration was last updated, in the format defined by RFC3339.
violationLogAutoPurge String: Specifies whether Data Safe should automatically purge the violation logs from the database after collecting the violation logs and persisting on Data Safe.

excludeJob string: Specifies whether the firewall should include or exclude the database internal job activities.
status string: Specifies if the firewall is enabled or disabled.
timeStatusUpdated string: The date and time the firewall configuration was last updated, in the format defined by RFC3339.
violationLogAutoPurge string: Specifies whether Data Safe should automatically purge the violation logs from the database after collecting the violation logs and persisting on Data Safe.

exclude_job str: Specifies whether the firewall should include or exclude the database internal job activities.
status str: Specifies if the firewall is enabled or disabled.
time_status_updated str: The date and time the firewall configuration was last updated, in the format defined by RFC3339.
violation_log_auto_purge str: Specifies whether Data Safe should automatically purge the violation logs from the database after collecting the violation logs and persisting on Data Safe.

excludeJob String: Specifies whether the firewall should include or exclude the database internal job activities.
status String: Specifies if the firewall is enabled or disabled.
timeStatusUpdated String: The date and time the firewall configuration was last updated, in the format defined by RFC3339.
violationLogAutoPurge String: Specifies whether Data Safe should automatically purge the violation logs from the database after collecting the violation logs and persisting on Data Safe.

GetSecurityPolicyConfigsSecurityPolicyConfigCollectionItemUnifiedAuditPolicyConfig

ExcludeDatasafeUser string: Specifies whether the Data Safe service account on the target database should be excluded in the unified audit policy.

ExcludeDatasafeUser string: Specifies whether the Data Safe service account on the target database should be excluded in the unified audit policy.

excludeDatasafeUser String: Specifies whether the Data Safe service account on the target database should be excluded in the unified audit policy.

excludeDatasafeUser string: Specifies whether the Data Safe service account on the target database should be excluded in the unified audit policy.

exclude_datasafe_user str: Specifies whether the Data Safe service account on the target database should be excluded in the unified audit policy.

excludeDatasafeUser String: Specifies whether the Data Safe service account on the target database should be excluded in the unified audit policy.

Package Details

Repository: oci pulumi/pulumi-oci
License: Apache-2.0
Notes: This Pulumi package is based on the oci Terraform Provider.

Oracle Cloud Infrastructure v3.7.0 published on Saturday, Sep 13, 2025 by Pulumi

pulumi/pulumi-oci

oci.DataSafe.getSecurityPolicyConfigs

On this page

On this page

Example Usage

Using getSecurityPolicyConfigs

getSecurityPolicyConfigs Result

Supporting Types

GetSecurityPolicyConfigsFilter

GetSecurityPolicyConfigsSecurityPolicyConfigCollection

GetSecurityPolicyConfigsSecurityPolicyConfigCollectionItem

GetSecurityPolicyConfigsSecurityPolicyConfigCollectionItemFirewallConfig

GetSecurityPolicyConfigsSecurityPolicyConfigCollectionItemUnifiedAuditPolicyConfig

Package Details

On this page

On this page