1. Packages
  2. Oracle Cloud Infrastructure
  3. API Docs
  4. Identity
  5. DomainsApp
Oracle Cloud Infrastructure v2.24.0 published on Thursday, Feb 6, 2025 by Pulumi

oci.Identity.DomainsApp

Explore with Pulumi AI

oci logo
Oracle Cloud Infrastructure v2.24.0 published on Thursday, Feb 6, 2025 by Pulumi

    This resource provides the App resource in Oracle Cloud Infrastructure Identity Domains service.

    Create an App

    Example Usage

    Coming soon!
    
    Coming soon!
    
    Coming soon!
    
    Coming soon!
    
    Coming soon!
    
    resources:
      testApp:
        type: oci:Identity:DomainsApp
        name: test_app
        properties:
          basedOnTemplate:
            value: ${appBasedOnTemplateValue}
            wellKnownId: CustomWebAppTemplateId
          displayName: ${appDisplayName}
          idcsEndpoint: ${testDomain.url}
          schemas:
            - urn:ietf:params:scim:schemas:oracle:idcs:App
          accessTokenExpiry: ${appAccessTokenExpiry}
          active: ${appActive}
          aliasApps:
            - value: ${appAliasAppsValue}
          allUrlSchemesAllowed: ${appAllUrlSchemesAllowed}
          allowAccessControl: ${appAllowAccessControl}
          allowOffline: ${appAllowOffline}
          allowedGrants: ${appAllowedGrants}
          allowedOperations: ${appAllowedOperations}
          allowedScopes:
            - fqs: ${appAllowedScopesFqs}
          allowedTags:
            - key: ${appAllowedTagsKey}
              value: ${appAllowedTagsValue}
          appIcon: ${appAppIcon}
          appSignonPolicy:
            value: ${appAppSignonPolicyValue}
          appThumbnail: ${appAppThumbnail}
          appsNetworkPerimeters:
            - value: ${appAppsNetworkPerimetersValue}
          asOpcService:
            value: ${appAsOpcServiceValue}
          attrRenderingMetadatas:
            - name: ${appAttrRenderingMetadataName}
              datatype: ${appAttrRenderingMetadataDatatype}
              helptext: ${appAttrRenderingMetadataHelptext}
              label: ${appAttrRenderingMetadataLabel}
              maxLength: ${appAttrRenderingMetadataMaxLength}
              maxSize: ${appAttrRenderingMetadataMaxSize}
              minLength: ${appAttrRenderingMetadataMinLength}
              minSize: ${appAttrRenderingMetadataMinSize}
              order: ${appAttrRenderingMetadataOrder}
              readOnly: ${appAttrRenderingMetadataReadOnly}
              regexp: ${appAttrRenderingMetadataRegexp}
              required: ${appAttrRenderingMetadataRequired}
              section: ${appAttrRenderingMetadataSection}
              visible: ${appAttrRenderingMetadataVisible}
              widget: ${appAttrRenderingMetadataWidget}
          attributeSets:
            - all
          attributes: ""
          audience: ${appAudience}
          authorization: ${appAuthorization}
          bypassConsent: ${appBypassConsent}
          certificates:
            - certAlias: ${appCertificatesCertAlias}
          clientIpChecking: ${appClientIpChecking}
          clientType: ${appClientType}
          contactEmailAddress: ${appContactEmailAddress}
          delegatedServiceNames: ${appDelegatedServiceNames}
          description: ${appDescription}
          disableKmsiTokenAuthentication: ${appDisableKmsiTokenAuthentication}
          errorPageUrl: ${appErrorPageUrl}
          homePageUrl: ${appHomePageUrl}
          icon: ${appIcon}
          id: ${appId}
          idTokenEncAlgo: ${appIdTokenEncAlgo}
          identityProviders:
            - value: ${appIdentityProvidersValue}
          idpPolicy:
            value: ${appIdpPolicyValue}
          isAliasApp: ${appIsAliasApp}
          isEnterpriseApp: ${appIsEnterpriseApp}
          isFormFill: ${appIsFormFill}
          isKerberosRealm: ${appIsKerberosRealm}
          isLoginTarget: ${appIsLoginTarget}
          isMobileTarget: ${appIsMobileTarget}
          isMulticloudServiceApp: ${appIsMulticloudServiceApp}
          isOauthClient: ${appIsOauthClient}
          isOauthResource: ${appIsOauthResource}
          isObligationCapable: ${appIsObligationCapable}
          isRadiusApp: ${appIsRadiusApp}
          isSamlServiceProvider: ${appIsSamlServiceProvider}
          isUnmanagedApp: ${appIsUnmanagedApp}
          isWebTierPolicy: ${appIsWebTierPolicy}
          landingPageUrl: ${appLandingPageUrl}
          linkingCallbackUrl: ${appLinkingCallbackUrl}
          loginMechanism: ${appLoginMechanism}
          loginPageUrl: ${appLoginPageUrl}
          logoutPageUrl: ${appLogoutPageUrl}
          logoutUri: ${appLogoutUri}
          name: ${appName}
          ocid: ${appOcid}
          postLogoutRedirectUris: ${appPostLogoutRedirectUris}
          privacyPolicyUrl: ${appPrivacyPolicyUrl}
          productLogoUrl: ${appProductLogoUrl}
          productName: ${appProductName}
          protectableSecondaryAudiences:
            - value: ${appProtectableSecondaryAudiencesValue}
          radiusPolicy:
            value: ${appRadiusPolicyValue}
          redirectUris: ${appRedirectUris}
          refreshTokenExpiry: ${appRefreshTokenExpiry}
          resourceTypeSchemaVersion: ${appResourceTypeSchemaVersion}
          samlServiceProvider:
            value: ${appSamlServiceProviderValue}
          scopes:
            - value: ${appScopesValue}
              description: ${appScopesDescription}
              displayName: ${appScopesDisplayName}
              requiresConsent: ${appScopesRequiresConsent}
          secondaryAudiences:
            - secondaryAudiences
          serviceParams:
            - name: ${appServiceParamsName}
              value: ${appServiceParamsValue}
          serviceTypeUrn: ${appServiceTypeUrn}
          serviceTypeVersion: ${appServiceTypeVersion}
          showInMyApps: ${appShowInMyApps}
          signonPolicy:
            value: ${appSignonPolicyValue}
          tags:
            - key: ${appTagsKey}
              value: ${appTagsValue}
          termsOfServiceUrl: ${appTermsOfServiceUrl}
          termsOfUse:
            value: ${appTermsOfUseValue}
          trustPolicies:
            - value: ${appTrustPoliciesValue}
          trustScope: ${appTrustScope}
          urnietfparamsscimschemasoracleidcsextensionOciTags:
            definedTags:
              - key: ${appUrnietfparamsscimschemasoracleidcsextensionOciTagsDefinedTagsKey}
                namespace: ${appUrnietfparamsscimschemasoracleidcsextensionOciTagsDefinedTagsNamespace}
                value: ${appUrnietfparamsscimschemasoracleidcsextensionOciTagsDefinedTagsValue}
            freeformTags:
              - key: ${appUrnietfparamsscimschemasoracleidcsextensionOciTagsFreeformTagsKey}
                value: ${appUrnietfparamsscimschemasoracleidcsextensionOciTagsFreeformTagsValue}
          urnietfparamsscimschemasoracleidcsextensiondbcsApp:
            domainApp:
              value: ${appUrnietfparamsscimschemasoracleidcsextensiondbcsAppDomainAppValue}
            domainName: domainName
          urnietfparamsscimschemasoracleidcsextensionenterpriseAppApp:
            allowAuthzDecisionTtl: ${appUrnietfparamsscimschemasoracleidcsextensionenterpriseAppAppAllowAuthzDecisionTtl}
            allowAuthzPolicy:
              value: ${appUrnietfparamsscimschemasoracleidcsextensionenterpriseAppAppAllowAuthzPolicyValue}
            appResources:
              - value: ${appUrnietfparamsscimschemasoracleidcsextensionenterpriseAppAppAppResourcesValue}
            denyAuthzDecisionTtl: ${appUrnietfparamsscimschemasoracleidcsextensionenterpriseAppAppDenyAuthzDecisionTtl}
            denyAuthzPolicy:
              value: ${appUrnietfparamsscimschemasoracleidcsextensionenterpriseAppAppDenyAuthzPolicyValue}
          urnietfparamsscimschemasoracleidcsextensionformFillAppApp:
            configuration: ${appUrnietfparamsscimschemasoracleidcsextensionformFillAppAppConfiguration}
            formCredMethod: ${appUrnietfparamsscimschemasoracleidcsextensionformFillAppAppFormCredMethod}
            formCredentialSharingGroupId: ${appUrnietfparamsscimschemasoracleidcsextensionformFillAppAppFormCredentialSharingGroupId}
            formFillUrlMatches:
              - formUrl: ${appUrnietfparamsscimschemasoracleidcsextensionformFillAppAppFormFillUrlMatchFormUrl}
                formUrlMatchType: ${appUrnietfparamsscimschemasoracleidcsextensionformFillAppAppFormFillUrlMatchFormUrlMatchType}
            formType: ${appUrnietfparamsscimschemasoracleidcsextensionformFillAppAppFormType}
            revealPasswordOnForm: ${appUrnietfparamsscimschemasoracleidcsextensionformFillAppAppRevealPasswordOnForm}
            userNameFormExpression: ${appUrnietfparamsscimschemasoracleidcsextensionformFillAppAppUserNameFormExpression}
            userNameFormTemplate: ${appUrnietfparamsscimschemasoracleidcsextensionformFillAppAppUserNameFormTemplate}
          urnietfparamsscimschemasoracleidcsextensionformFillAppTemplateAppTemplate:
            configuration: ${appUrnietfparamsscimschemasoracleidcsextensionformFillAppTemplateAppTemplateConfiguration}
            formCredMethod: ${appUrnietfparamsscimschemasoracleidcsextensionformFillAppTemplateAppTemplateFormCredMethod}
            formCredentialSharingGroupId: ${appUrnietfparamsscimschemasoracleidcsextensionformFillAppTemplateAppTemplateFormCredentialSharingGroupId}
            formFillUrlMatches:
              - formUrl: ${appUrnietfparamsscimschemasoracleidcsextensionformFillAppTemplateAppTemplateFormFillUrlMatchFormUrl}
                formUrlMatchType: ${appUrnietfparamsscimschemasoracleidcsextensionformFillAppTemplateAppTemplateFormFillUrlMatchFormUrlMatchType}
            formType: ${appUrnietfparamsscimschemasoracleidcsextensionformFillAppTemplateAppTemplateFormType}
            revealPasswordOnForm: ${appUrnietfparamsscimschemasoracleidcsextensionformFillAppTemplateAppTemplateRevealPasswordOnForm}
            syncFromTemplate: ${appUrnietfparamsscimschemasoracleidcsextensionformFillAppTemplateAppTemplateSyncFromTemplate}
            userNameFormExpression: ${appUrnietfparamsscimschemasoracleidcsextensionformFillAppTemplateAppTemplateUserNameFormExpression}
            userNameFormTemplate: ${appUrnietfparamsscimschemasoracleidcsextensionformFillAppTemplateAppTemplateUserNameFormTemplate}
          urnietfparamsscimschemasoracleidcsextensionkerberosRealmApp:
            defaultEncryptionSaltType: ${appUrnietfparamsscimschemasoracleidcsextensionkerberosRealmAppDefaultEncryptionSaltType}
            masterKey: ${appUrnietfparamsscimschemasoracleidcsextensionkerberosRealmAppMasterKey}
            maxRenewableAge: ${appUrnietfparamsscimschemasoracleidcsextensionkerberosRealmAppMaxRenewableAge}
            maxTicketLife: ${appUrnietfparamsscimschemasoracleidcsextensionkerberosRealmAppMaxTicketLife}
            realmName: ${appUrnietfparamsscimschemasoracleidcsextensionkerberosRealmAppRealmName}
            supportedEncryptionSaltTypes: ${appUrnietfparamsscimschemasoracleidcsextensionkerberosRealmAppSupportedEncryptionSaltTypes}
            ticketFlags: ${appUrnietfparamsscimschemasoracleidcsextensionkerberosRealmAppTicketFlags}
          urnietfparamsscimschemasoracleidcsextensionmanagedappApp:
            adminConsentGranted: ${appUrnietfparamsscimschemasoracleidcsextensionmanagedappAppAdminConsentGranted}
            bundleConfigurationProperties:
              - icfType: ${appUrnietfparamsscimschemasoracleidcsextensionmanagedappAppBundleConfigurationPropertiesIcfType}
                name: ${appUrnietfparamsscimschemasoracleidcsextensionmanagedappAppBundleConfigurationPropertiesName}
                required: ${appUrnietfparamsscimschemasoracleidcsextensionmanagedappAppBundleConfigurationPropertiesRequired}
                confidential: ${appUrnietfparamsscimschemasoracleidcsextensionmanagedappAppBundleConfigurationPropertiesConfidential}
                displayName: ${appUrnietfparamsscimschemasoracleidcsextensionmanagedappAppBundleConfigurationPropertiesDisplayName}
                helpMessage: ${appUrnietfparamsscimschemasoracleidcsextensionmanagedappAppBundleConfigurationPropertiesHelpMessage}
                order: ${appUrnietfparamsscimschemasoracleidcsextensionmanagedappAppBundleConfigurationPropertiesOrder}
                values: ${appUrnietfparamsscimschemasoracleidcsextensionmanagedappAppBundleConfigurationPropertiesValue}
            bundlePoolConfiguration:
              maxIdle: ${appUrnietfparamsscimschemasoracleidcsextensionmanagedappAppBundlePoolConfigurationMaxIdle}
              maxObjects: ${appUrnietfparamsscimschemasoracleidcsextensionmanagedappAppBundlePoolConfigurationMaxObjects}
              maxWait: ${appUrnietfparamsscimschemasoracleidcsextensionmanagedappAppBundlePoolConfigurationMaxWait}
              minEvictableIdleTimeMillis: ${appUrnietfparamsscimschemasoracleidcsextensionmanagedappAppBundlePoolConfigurationMinEvictableIdleTimeMillis}
              minIdle: ${appUrnietfparamsscimschemasoracleidcsextensionmanagedappAppBundlePoolConfigurationMinIdle}
            connected: ${appUrnietfparamsscimschemasoracleidcsextensionmanagedappAppConnected}
            enableAuthSyncNewUserNotification: ${appUrnietfparamsscimschemasoracleidcsextensionmanagedappAppEnableAuthSyncNewUserNotification}
            enableSync: ${appUrnietfparamsscimschemasoracleidcsextensionmanagedappAppEnableSync}
            enableSyncSummaryReportNotification: ${appUrnietfparamsscimschemasoracleidcsextensionmanagedappAppEnableSyncSummaryReportNotification}
            flatFileBundleConfigurationProperties:
              - icfType: ${appUrnietfparamsscimschemasoracleidcsextensionmanagedappAppFlatFileBundleConfigurationPropertiesIcfType}
                name: ${appUrnietfparamsscimschemasoracleidcsextensionmanagedappAppFlatFileBundleConfigurationPropertiesName}
                required: ${appUrnietfparamsscimschemasoracleidcsextensionmanagedappAppFlatFileBundleConfigurationPropertiesRequired}
                confidential: ${appUrnietfparamsscimschemasoracleidcsextensionmanagedappAppFlatFileBundleConfigurationPropertiesConfidential}
                displayName: ${appUrnietfparamsscimschemasoracleidcsextensionmanagedappAppFlatFileBundleConfigurationPropertiesDisplayName}
                helpMessage: ${appUrnietfparamsscimschemasoracleidcsextensionmanagedappAppFlatFileBundleConfigurationPropertiesHelpMessage}
                order: ${appUrnietfparamsscimschemasoracleidcsextensionmanagedappAppFlatFileBundleConfigurationPropertiesOrder}
                values: ${appUrnietfparamsscimschemasoracleidcsextensionmanagedappAppFlatFileBundleConfigurationPropertiesValue}
            flatFileConnectorBundle:
              value: ${appUrnietfparamsscimschemasoracleidcsextensionmanagedappAppFlatFileConnectorBundleValue}
              display: ${appUrnietfparamsscimschemasoracleidcsextensionmanagedappAppFlatFileConnectorBundleDisplay}
              wellKnownId: ${testWellKnown.id}
            isAuthoritative: ${appUrnietfparamsscimschemasoracleidcsextensionmanagedappAppIsAuthoritative}
            threeLeggedOauthCredential:
              accessToken: ${appUrnietfparamsscimschemasoracleidcsextensionmanagedappAppThreeLeggedOauthCredentialAccessToken}
              accessTokenExpiry: ${appUrnietfparamsscimschemasoracleidcsextensionmanagedappAppThreeLeggedOauthCredentialAccessTokenExpiry}
              refreshToken: ${appUrnietfparamsscimschemasoracleidcsextensionmanagedappAppThreeLeggedOauthCredentialRefreshToken}
          urnietfparamsscimschemasoracleidcsextensionmulticloudServiceAppApp:
            multicloudServiceType: ${appUrnietfparamsscimschemasoracleidcsextensionmulticloudServiceAppAppMulticloudServiceType}
            multicloudPlatformUrl: ${appUrnietfparamsscimschemasoracleidcsextensionmulticloudServiceAppAppMulticloudPlatformUrl}
          urnietfparamsscimschemasoracleidcsextensionopcServiceApp:
            serviceInstanceIdentifier: ${appUrnietfparamsscimschemasoracleidcsextensionopcServiceAppServiceInstanceIdentifier}
          urnietfparamsscimschemasoracleidcsextensionradiusAppApp:
            clientIp: ${appUrnietfparamsscimschemasoracleidcsextensionradiusAppAppClientIp}
            includeGroupInResponse: ${appUrnietfparamsscimschemasoracleidcsextensionradiusAppAppIncludeGroupInResponse}
            port: ${appUrnietfparamsscimschemasoracleidcsextensionradiusAppAppPort}
            secretKey: ${appUrnietfparamsscimschemasoracleidcsextensionradiusAppAppSecretKey}
            captureClientIp: ${appUrnietfparamsscimschemasoracleidcsextensionradiusAppAppCaptureClientIp}
            countryCodeResponseAttributeId: '1'
            endUserIpAttribute: ${appUrnietfparamsscimschemasoracleidcsextensionradiusAppAppEndUserIpAttribute}
            groupMembershipRadiusAttribute: ${appUrnietfparamsscimschemasoracleidcsextensionradiusAppAppGroupMembershipRadiusAttribute}
            groupMembershipToReturns:
              - value: ${appUrnietfparamsscimschemasoracleidcsextensionradiusAppAppGroupMembershipToReturnValue}
            groupNameFormat: ${appUrnietfparamsscimschemasoracleidcsextensionradiusAppAppGroupNameFormat}
            passwordAndOtpTogether: ${appUrnietfparamsscimschemasoracleidcsextensionradiusAppAppPasswordAndOtpTogether}
            radiusVendorSpecificId: radiusVendorSpecificId
            responseFormat: ${appUrnietfparamsscimschemasoracleidcsextensionradiusAppAppResponseFormat}
            responseFormatDelimiter: ${appUrnietfparamsscimschemasoracleidcsextensionradiusAppAppResponseFormatDelimiter}
            typeOfRadiusApp: ${appUrnietfparamsscimschemasoracleidcsextensionradiusAppAppTypeOfRadiusApp}
          urnietfparamsscimschemasoracleidcsextensionrequestableApp:
            requestable: ${appUrnietfparamsscimschemasoracleidcsextensionrequestableAppRequestable}
          urnietfparamsscimschemasoracleidcsextensionsamlServiceProviderApp:
            assertionConsumerUrl: ${appUrnietfparamsscimschemasoracleidcsextensionsamlServiceProviderAppAssertionConsumerUrl}
            encryptAssertion: ${appUrnietfparamsscimschemasoracleidcsextensionsamlServiceProviderAppEncryptAssertion}
            encryptionAlgorithm: ${appUrnietfparamsscimschemasoracleidcsextensionsamlServiceProviderAppEncryptionAlgorithm}
            encryptionCertificate: encryptionCertificate
            federationProtocol: ${appUrnietfparamsscimschemasoracleidcsextensionsamlServiceProviderAppFederationProtocol}
            groupAssertionAttributes:
              - name: ${appUrnietfparamsscimschemasoracleidcsextensionsamlServiceProviderAppGroupAssertionAttributesName}
                condition: ${appUrnietfparamsscimschemasoracleidcsextensionsamlServiceProviderAppGroupAssertionAttributesCondition}
                format: ${appUrnietfparamsscimschemasoracleidcsextensionsamlServiceProviderAppGroupAssertionAttributesFormat}
                groupName: groupName
            hokAcsUrl: ${appUrnietfparamsscimschemasoracleidcsextensionsamlServiceProviderAppHokAcsUrl}
            hokRequired: ${appUrnietfparamsscimschemasoracleidcsextensionsamlServiceProviderAppHokRequired}
            includeSigningCertInSignature: ${appUrnietfparamsscimschemasoracleidcsextensionsamlServiceProviderAppIncludeSigningCertInSignature}
            keyEncryptionAlgorithm: ${appUrnietfparamsscimschemasoracleidcsextensionsamlServiceProviderAppKeyEncryptionAlgorithm}
            logoutBinding: ${appUrnietfparamsscimschemasoracleidcsextensionsamlServiceProviderAppLogoutBinding}
            logoutEnabled: ${appUrnietfparamsscimschemasoracleidcsextensionsamlServiceProviderAppLogoutEnabled}
            logoutRequestUrl: ${appUrnietfparamsscimschemasoracleidcsextensionsamlServiceProviderAppLogoutRequestUrl}
            logoutResponseUrl: ${appUrnietfparamsscimschemasoracleidcsextensionsamlServiceProviderAppLogoutResponseUrl}
            metadata: metadata
            nameIdFormat: ${appUrnietfparamsscimschemasoracleidcsextensionsamlServiceProviderAppNameIdFormat}
            nameIdUserstoreAttribute: ${appUrnietfparamsscimschemasoracleidcsextensionsamlServiceProviderAppNameIdUserstoreAttribute}
            partnerProviderId: partnerProviderId
            partnerProviderPattern: ${appUrnietfparamsscimschemasoracleidcsextensionsamlServiceProviderAppPartnerProviderPattern}
            signResponseOrAssertion: ${appUrnietfparamsscimschemasoracleidcsextensionsamlServiceProviderAppSignResponseOrAssertion}
            signatureHashAlgorithm: ${appUrnietfparamsscimschemasoracleidcsextensionsamlServiceProviderAppSignatureHashAlgorithm}
            signingCertificate: signingCertificate
            succinctId: succinctId
            userAssertionAttributes:
              - name: ${appUrnietfparamsscimschemasoracleidcsextensionsamlServiceProviderAppUserAssertionAttributesName}
                userStoreAttributeName: ${appUrnietfparamsscimschemasoracleidcsextensionsamlServiceProviderAppUserAssertionAttributesUserStoreAttributeName}
                format: ${appUrnietfparamsscimschemasoracleidcsextensionsamlServiceProviderAppUserAssertionAttributesFormat}
          urnietfparamsscimschemasoracleidcsextensionwebTierPolicyApp:
            resourceRef: ${appUrnietfparamsscimschemasoracleidcsextensionwebTierPolicyAppResourceRef}
            webTierPolicyAzControl: ${appUrnietfparamsscimschemasoracleidcsextensionwebTierPolicyAppWebTierPolicyAzControl}
            webTierPolicyJson: ${appUrnietfparamsscimschemasoracleidcsextensionwebTierPolicyAppWebTierPolicyJson}
    

    Create DomainsApp Resource

    Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.

    Constructor syntax

    new DomainsApp(name: string, args: DomainsAppArgs, opts?: CustomResourceOptions);
    @overload
    def DomainsApp(resource_name: str,
                   args: DomainsAppArgs,
                   opts: Optional[ResourceOptions] = None)
    
    @overload
    def DomainsApp(resource_name: str,
                   opts: Optional[ResourceOptions] = None,
                   based_on_template: Optional[_identity.DomainsAppBasedOnTemplateArgs] = None,
                   schemas: Optional[Sequence[str]] = None,
                   idcs_endpoint: Optional[str] = None,
                   display_name: Optional[str] = None,
                   is_obligation_capable: Optional[bool] = None,
                   is_web_tier_policy: Optional[bool] = None,
                   allowed_grants: Optional[Sequence[str]] = None,
                   allowed_operations: Optional[Sequence[str]] = None,
                   allowed_scopes: Optional[Sequence[_identity.DomainsAppAllowedScopeArgs]] = None,
                   allowed_tags: Optional[Sequence[_identity.DomainsAppAllowedTagArgs]] = None,
                   app_icon: Optional[str] = None,
                   app_signon_policy: Optional[_identity.DomainsAppAppSignonPolicyArgs] = None,
                   app_thumbnail: Optional[str] = None,
                   apps_network_perimeters: Optional[Sequence[_identity.DomainsAppAppsNetworkPerimeterArgs]] = None,
                   as_opc_service: Optional[_identity.DomainsAppAsOpcServiceArgs] = None,
                   attr_rendering_metadatas: Optional[Sequence[_identity.DomainsAppAttrRenderingMetadataArgs]] = None,
                   attribute_sets: Optional[Sequence[str]] = None,
                   attributes: Optional[str] = None,
                   audience: Optional[str] = None,
                   authorization: Optional[str] = None,
                   allow_access_control: Optional[bool] = None,
                   bypass_consent: Optional[bool] = None,
                   certificates: Optional[Sequence[_identity.DomainsAppCertificateArgs]] = None,
                   client_ip_checking: Optional[str] = None,
                   client_type: Optional[str] = None,
                   contact_email_address: Optional[str] = None,
                   is_unmanaged_app: Optional[bool] = None,
                   description: Optional[str] = None,
                   disable_kmsi_token_authentication: Optional[bool] = None,
                   all_url_schemes_allowed: Optional[bool] = None,
                   error_page_url: Optional[str] = None,
                   home_page_url: Optional[str] = None,
                   icon: Optional[str] = None,
                   id_token_enc_algo: Optional[str] = None,
                   alias_apps: Optional[Sequence[_identity.DomainsAppAliasAppArgs]] = None,
                   identity_providers: Optional[Sequence[_identity.DomainsAppIdentityProviderArgs]] = None,
                   idp_policy: Optional[_identity.DomainsAppIdpPolicyArgs] = None,
                   is_alias_app: Optional[bool] = None,
                   is_enterprise_app: Optional[bool] = None,
                   is_form_fill: Optional[bool] = None,
                   is_kerberos_realm: Optional[bool] = None,
                   is_login_target: Optional[bool] = None,
                   is_mobile_target: Optional[bool] = None,
                   is_multicloud_service_app: Optional[bool] = None,
                   is_oauth_client: Optional[bool] = None,
                   is_oauth_resource: Optional[bool] = None,
                   access_token_expiry: Optional[int] = None,
                   is_radius_app: Optional[bool] = None,
                   saml_service_provider: Optional[_identity.DomainsAppSamlServiceProviderArgs] = None,
                   allow_offline: Optional[bool] = None,
                   delegated_service_names: Optional[Sequence[str]] = None,
                   landing_page_url: Optional[str] = None,
                   linking_callback_url: Optional[str] = None,
                   login_mechanism: Optional[str] = None,
                   login_page_url: Optional[str] = None,
                   logout_page_url: Optional[str] = None,
                   logout_uri: Optional[str] = None,
                   name: Optional[str] = None,
                   ocid: Optional[str] = None,
                   post_logout_redirect_uris: Optional[Sequence[str]] = None,
                   privacy_policy_url: Optional[str] = None,
                   product_logo_url: Optional[str] = None,
                   product_name: Optional[str] = None,
                   protectable_secondary_audiences: Optional[Sequence[_identity.DomainsAppProtectableSecondaryAudienceArgs]] = None,
                   radius_policy: Optional[_identity.DomainsAppRadiusPolicyArgs] = None,
                   redirect_uris: Optional[Sequence[str]] = None,
                   refresh_token_expiry: Optional[int] = None,
                   resource_type_schema_version: Optional[str] = None,
                   is_saml_service_provider: Optional[bool] = None,
                   active: Optional[bool] = None,
                   scopes: Optional[Sequence[_identity.DomainsAppScopeArgs]] = None,
                   secondary_audiences: Optional[Sequence[str]] = None,
                   service_params: Optional[Sequence[_identity.DomainsAppServiceParamArgs]] = None,
                   service_type_urn: Optional[str] = None,
                   service_type_version: Optional[str] = None,
                   show_in_my_apps: Optional[bool] = None,
                   signon_policy: Optional[_identity.DomainsAppSignonPolicyArgs] = None,
                   tags: Optional[Sequence[_identity.DomainsAppTagArgs]] = None,
                   terms_of_service_url: Optional[str] = None,
                   terms_of_use: Optional[_identity.DomainsAppTermsOfUseArgs] = None,
                   trust_policies: Optional[Sequence[_identity.DomainsAppTrustPolicyArgs]] = None,
                   trust_scope: Optional[str] = None,
                   urnietfparamsscimschemasoracleidcsextension_oci_tags: Optional[_identity.DomainsAppUrnietfparamsscimschemasoracleidcsextensionOciTagsArgs] = None,
                   urnietfparamsscimschemasoracleidcsextensiondbcs_app: Optional[_identity.DomainsAppUrnietfparamsscimschemasoracleidcsextensiondbcsAppArgs] = None,
                   urnietfparamsscimschemasoracleidcsextensionenterprise_app_app: Optional[_identity.DomainsAppUrnietfparamsscimschemasoracleidcsextensionenterpriseAppAppArgs] = None,
                   urnietfparamsscimschemasoracleidcsextensionform_fill_app_app: Optional[_identity.DomainsAppUrnietfparamsscimschemasoracleidcsextensionformFillAppAppArgs] = None,
                   urnietfparamsscimschemasoracleidcsextensionform_fill_app_template_app_template: Optional[_identity.DomainsAppUrnietfparamsscimschemasoracleidcsextensionformFillAppTemplateAppTemplateArgs] = None,
                   urnietfparamsscimschemasoracleidcsextensionkerberos_realm_app: Optional[_identity.DomainsAppUrnietfparamsscimschemasoracleidcsextensionkerberosRealmAppArgs] = None,
                   urnietfparamsscimschemasoracleidcsextensionmanagedapp_app: Optional[_identity.DomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppArgs] = None,
                   urnietfparamsscimschemasoracleidcsextensionmulticloud_service_app_app: Optional[_identity.DomainsAppUrnietfparamsscimschemasoracleidcsextensionmulticloudServiceAppAppArgs] = None,
                   urnietfparamsscimschemasoracleidcsextensionopc_service_app: Optional[_identity.DomainsAppUrnietfparamsscimschemasoracleidcsextensionopcServiceAppArgs] = None,
                   urnietfparamsscimschemasoracleidcsextensionradius_app_app: Optional[_identity.DomainsAppUrnietfparamsscimschemasoracleidcsextensionradiusAppAppArgs] = None,
                   urnietfparamsscimschemasoracleidcsextensionrequestable_app: Optional[_identity.DomainsAppUrnietfparamsscimschemasoracleidcsextensionrequestableAppArgs] = None,
                   urnietfparamsscimschemasoracleidcsextensionsaml_service_provider_app: Optional[_identity.DomainsAppUrnietfparamsscimschemasoracleidcsextensionsamlServiceProviderAppArgs] = None,
                   urnietfparamsscimschemasoracleidcsextensionweb_tier_policy_app: Optional[_identity.DomainsAppUrnietfparamsscimschemasoracleidcsextensionwebTierPolicyAppArgs] = None)
    func NewDomainsApp(ctx *Context, name string, args DomainsAppArgs, opts ...ResourceOption) (*DomainsApp, error)
    public DomainsApp(string name, DomainsAppArgs args, CustomResourceOptions? opts = null)
    public DomainsApp(String name, DomainsAppArgs args)
    public DomainsApp(String name, DomainsAppArgs args, CustomResourceOptions options)
    
    type: oci:Identity:DomainsApp
    properties: # The arguments to resource properties.
    options: # Bag of options to control resource's behavior.
    
    

    Parameters

    name string
    The unique name of the resource.
    args DomainsAppArgs
    The arguments to resource properties.
    opts CustomResourceOptions
    Bag of options to control resource's behavior.
    resource_name str
    The unique name of the resource.
    args DomainsAppArgs
    The arguments to resource properties.
    opts ResourceOptions
    Bag of options to control resource's behavior.
    ctx Context
    Context object for the current deployment.
    name string
    The unique name of the resource.
    args DomainsAppArgs
    The arguments to resource properties.
    opts ResourceOption
    Bag of options to control resource's behavior.
    name string
    The unique name of the resource.
    args DomainsAppArgs
    The arguments to resource properties.
    opts CustomResourceOptions
    Bag of options to control resource's behavior.
    name String
    The unique name of the resource.
    args DomainsAppArgs
    The arguments to resource properties.
    options CustomResourceOptions
    Bag of options to control resource's behavior.

    Constructor example

    The following reference example uses placeholder values for all input properties.

    var domainsAppResource = new Oci.Identity.DomainsApp("domainsAppResource", new()
    {
        BasedOnTemplate = new Oci.Identity.Inputs.DomainsAppBasedOnTemplateArgs
        {
            Value = "string",
            LastModified = "string",
            Ref = "string",
            WellKnownId = "string",
        },
        Schemas = new[]
        {
            "string",
        },
        IdcsEndpoint = "string",
        DisplayName = "string",
        IsObligationCapable = false,
        IsWebTierPolicy = false,
        AllowedGrants = new[]
        {
            "string",
        },
        AllowedOperations = new[]
        {
            "string",
        },
        AllowedScopes = new[]
        {
            new Oci.Identity.Inputs.DomainsAppAllowedScopeArgs
            {
                Fqs = "string",
                IdOfDefiningApp = "string",
                ReadOnly = false,
            },
        },
        AllowedTags = new[]
        {
            new Oci.Identity.Inputs.DomainsAppAllowedTagArgs
            {
                Key = "string",
                Value = "string",
                ReadOnly = false,
            },
        },
        AppIcon = "string",
        AppSignonPolicy = new Oci.Identity.Inputs.DomainsAppAppSignonPolicyArgs
        {
            Value = "string",
            Ref = "string",
        },
        AppThumbnail = "string",
        AppsNetworkPerimeters = new[]
        {
            new Oci.Identity.Inputs.DomainsAppAppsNetworkPerimeterArgs
            {
                Value = "string",
                Ref = "string",
            },
        },
        AsOpcService = new Oci.Identity.Inputs.DomainsAppAsOpcServiceArgs
        {
            Value = "string",
            Ref = "string",
        },
        AttrRenderingMetadatas = new[]
        {
            new Oci.Identity.Inputs.DomainsAppAttrRenderingMetadataArgs
            {
                Name = "string",
                MinSize = 0,
                Order = 0,
                MaxLength = 0,
                MaxSize = 0,
                MinLength = 0,
                Datatype = "string",
                Helptext = "string",
                Label = "string",
                ReadOnly = false,
                Regexp = "string",
                Required = false,
                Section = "string",
                Visible = false,
                Widget = "string",
            },
        },
        AttributeSets = new[]
        {
            "string",
        },
        Attributes = "string",
        Audience = "string",
        Authorization = "string",
        AllowAccessControl = false,
        BypassConsent = false,
        Certificates = new[]
        {
            new Oci.Identity.Inputs.DomainsAppCertificateArgs
            {
                CertAlias = "string",
                Kid = "string",
                Sha1thumbprint = "string",
                X509base64certificate = "string",
                X5t = "string",
            },
        },
        ClientIpChecking = "string",
        ClientType = "string",
        ContactEmailAddress = "string",
        IsUnmanagedApp = false,
        Description = "string",
        DisableKmsiTokenAuthentication = false,
        AllUrlSchemesAllowed = false,
        ErrorPageUrl = "string",
        HomePageUrl = "string",
        Icon = "string",
        IdTokenEncAlgo = "string",
        AliasApps = new[]
        {
            new Oci.Identity.Inputs.DomainsAppAliasAppArgs
            {
                Value = "string",
                Description = "string",
                Display = "string",
                Ref = "string",
            },
        },
        IdentityProviders = new[]
        {
            new Oci.Identity.Inputs.DomainsAppIdentityProviderArgs
            {
                Value = "string",
                Display = "string",
                Ref = "string",
            },
        },
        IdpPolicy = new Oci.Identity.Inputs.DomainsAppIdpPolicyArgs
        {
            Value = "string",
            Ref = "string",
        },
        IsAliasApp = false,
        IsEnterpriseApp = false,
        IsFormFill = false,
        IsKerberosRealm = false,
        IsLoginTarget = false,
        IsMobileTarget = false,
        IsMulticloudServiceApp = false,
        IsOauthClient = false,
        IsOauthResource = false,
        AccessTokenExpiry = 0,
        IsRadiusApp = false,
        SamlServiceProvider = new Oci.Identity.Inputs.DomainsAppSamlServiceProviderArgs
        {
            Value = "string",
            Ref = "string",
        },
        AllowOffline = false,
        DelegatedServiceNames = new[]
        {
            "string",
        },
        LandingPageUrl = "string",
        LinkingCallbackUrl = "string",
        LoginMechanism = "string",
        LoginPageUrl = "string",
        LogoutPageUrl = "string",
        LogoutUri = "string",
        Name = "string",
        Ocid = "string",
        PostLogoutRedirectUris = new[]
        {
            "string",
        },
        PrivacyPolicyUrl = "string",
        ProductLogoUrl = "string",
        ProductName = "string",
        ProtectableSecondaryAudiences = new[]
        {
            new Oci.Identity.Inputs.DomainsAppProtectableSecondaryAudienceArgs
            {
                Value = "string",
                ReadOnly = false,
            },
        },
        RadiusPolicy = new Oci.Identity.Inputs.DomainsAppRadiusPolicyArgs
        {
            Value = "string",
            Ref = "string",
        },
        RedirectUris = new[]
        {
            "string",
        },
        RefreshTokenExpiry = 0,
        ResourceTypeSchemaVersion = "string",
        IsSamlServiceProvider = false,
        Active = false,
        Scopes = new[]
        {
            new Oci.Identity.Inputs.DomainsAppScopeArgs
            {
                Value = "string",
                Description = "string",
                DisplayName = "string",
                Fqs = "string",
                ReadOnly = false,
                RequiresConsent = false,
            },
        },
        SecondaryAudiences = new[]
        {
            "string",
        },
        ServiceParams = new[]
        {
            new Oci.Identity.Inputs.DomainsAppServiceParamArgs
            {
                Name = "string",
                Value = "string",
            },
        },
        ServiceTypeUrn = "string",
        ServiceTypeVersion = "string",
        ShowInMyApps = false,
        SignonPolicy = new Oci.Identity.Inputs.DomainsAppSignonPolicyArgs
        {
            Value = "string",
            Ref = "string",
        },
        Tags = new[]
        {
            new Oci.Identity.Inputs.DomainsAppTagArgs
            {
                Key = "string",
                Value = "string",
            },
        },
        TermsOfServiceUrl = "string",
        TermsOfUse = new Oci.Identity.Inputs.DomainsAppTermsOfUseArgs
        {
            Value = "string",
            Name = "string",
            Ref = "string",
        },
        TrustPolicies = new[]
        {
            new Oci.Identity.Inputs.DomainsAppTrustPolicyArgs
            {
                Value = "string",
                Ref = "string",
            },
        },
        TrustScope = "string",
        UrnietfparamsscimschemasoracleidcsextensionOciTags = new Oci.Identity.Inputs.DomainsAppUrnietfparamsscimschemasoracleidcsextensionOciTagsArgs
        {
            DefinedTags = new[]
            {
                new Oci.Identity.Inputs.DomainsAppUrnietfparamsscimschemasoracleidcsextensionOciTagsDefinedTagArgs
                {
                    Key = "string",
                    Namespace = "string",
                    Value = "string",
                },
            },
            FreeformTags = new[]
            {
                new Oci.Identity.Inputs.DomainsAppUrnietfparamsscimschemasoracleidcsextensionOciTagsFreeformTagArgs
                {
                    Key = "string",
                    Value = "string",
                },
            },
            TagSlug = "string",
        },
        UrnietfparamsscimschemasoracleidcsextensiondbcsApp = new Oci.Identity.Inputs.DomainsAppUrnietfparamsscimschemasoracleidcsextensiondbcsAppArgs
        {
            DomainApp = new Oci.Identity.Inputs.DomainsAppUrnietfparamsscimschemasoracleidcsextensiondbcsAppDomainAppArgs
            {
                Value = "string",
                Display = "string",
                Ref = "string",
            },
            DomainName = "string",
        },
        UrnietfparamsscimschemasoracleidcsextensionenterpriseAppApp = new Oci.Identity.Inputs.DomainsAppUrnietfparamsscimschemasoracleidcsextensionenterpriseAppAppArgs
        {
            AllowAuthzDecisionTtl = 0,
            AllowAuthzPolicy = new Oci.Identity.Inputs.DomainsAppUrnietfparamsscimschemasoracleidcsextensionenterpriseAppAppAllowAuthzPolicyArgs
            {
                Value = "string",
                Ref = "string",
            },
            AppResources = new[]
            {
                new Oci.Identity.Inputs.DomainsAppUrnietfparamsscimschemasoracleidcsextensionenterpriseAppAppAppResourceArgs
                {
                    Value = "string",
                    Ref = "string",
                },
            },
            DenyAuthzDecisionTtl = 0,
            DenyAuthzPolicy = new Oci.Identity.Inputs.DomainsAppUrnietfparamsscimschemasoracleidcsextensionenterpriseAppAppDenyAuthzPolicyArgs
            {
                Value = "string",
                Ref = "string",
            },
        },
        UrnietfparamsscimschemasoracleidcsextensionformFillAppApp = new Oci.Identity.Inputs.DomainsAppUrnietfparamsscimschemasoracleidcsextensionformFillAppAppArgs
        {
            Configuration = "string",
            FormCredMethod = "string",
            FormCredentialSharingGroupId = "string",
            FormFillUrlMatches = new[]
            {
                new Oci.Identity.Inputs.DomainsAppUrnietfparamsscimschemasoracleidcsextensionformFillAppAppFormFillUrlMatchArgs
                {
                    FormUrl = "string",
                    FormUrlMatchType = "string",
                },
            },
            FormType = "string",
            RevealPasswordOnForm = false,
            SyncFromTemplate = false,
            UserNameFormExpression = "string",
            UserNameFormTemplate = "string",
        },
        UrnietfparamsscimschemasoracleidcsextensionformFillAppTemplateAppTemplate = new Oci.Identity.Inputs.DomainsAppUrnietfparamsscimschemasoracleidcsextensionformFillAppTemplateAppTemplateArgs
        {
            Configuration = "string",
            FormCredMethod = "string",
            FormCredentialSharingGroupId = "string",
            FormFillUrlMatches = new[]
            {
                new Oci.Identity.Inputs.DomainsAppUrnietfparamsscimschemasoracleidcsextensionformFillAppTemplateAppTemplateFormFillUrlMatchArgs
                {
                    FormUrl = "string",
                    FormUrlMatchType = "string",
                },
            },
            FormType = "string",
            RevealPasswordOnForm = false,
            SyncFromTemplate = false,
            UserNameFormExpression = "string",
            UserNameFormTemplate = "string",
        },
        UrnietfparamsscimschemasoracleidcsextensionkerberosRealmApp = new Oci.Identity.Inputs.DomainsAppUrnietfparamsscimschemasoracleidcsextensionkerberosRealmAppArgs
        {
            DefaultEncryptionSaltType = "string",
            MasterKey = "string",
            MaxRenewableAge = 0,
            MaxTicketLife = 0,
            RealmName = "string",
            SupportedEncryptionSaltTypes = new[]
            {
                "string",
            },
            TicketFlags = 0,
        },
        UrnietfparamsscimschemasoracleidcsextensionmanagedappApp = new Oci.Identity.Inputs.DomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppArgs
        {
            AccountFormVisible = false,
            AdminConsentGranted = false,
            BundleConfigurationProperties = new[]
            {
                new Oci.Identity.Inputs.DomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppBundleConfigurationPropertyArgs
                {
                    IcfType = "string",
                    Name = "string",
                    Required = false,
                    Confidential = false,
                    DisplayName = "string",
                    HelpMessage = "string",
                    Order = 0,
                    Values = new[]
                    {
                        "string",
                    },
                },
            },
            BundlePoolConfiguration = new Oci.Identity.Inputs.DomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppBundlePoolConfigurationArgs
            {
                MaxIdle = 0,
                MaxObjects = 0,
                MaxWait = 0,
                MinEvictableIdleTimeMillis = 0,
                MinIdle = 0,
            },
            CanBeAuthoritative = false,
            Connected = false,
            ConnectorBundles = new[]
            {
                new Oci.Identity.Inputs.DomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppConnectorBundleArgs
                {
                    Type = "string",
                    Value = "string",
                    Display = "string",
                    Ref = "string",
                    WellKnownId = "string",
                },
            },
            EnableAuthSyncNewUserNotification = false,
            EnableSync = false,
            EnableSyncSummaryReportNotification = false,
            FlatFileBundleConfigurationProperties = new[]
            {
                new Oci.Identity.Inputs.DomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppFlatFileBundleConfigurationPropertyArgs
                {
                    IcfType = "string",
                    Name = "string",
                    Required = false,
                    Confidential = false,
                    DisplayName = "string",
                    HelpMessage = "string",
                    Order = 0,
                    Values = new[]
                    {
                        "string",
                    },
                },
            },
            FlatFileConnectorBundle = new Oci.Identity.Inputs.DomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppFlatFileConnectorBundleArgs
            {
                Value = "string",
                Display = "string",
                Ref = "string",
                WellKnownId = "string",
            },
            IdentityBridges = new[]
            {
                new Oci.Identity.Inputs.DomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppIdentityBridgeArgs
                {
                    Name = "string",
                    Ref = "string",
                    Value = "string",
                },
            },
            IsAuthoritative = false,
            IsDirectory = false,
            IsOnPremiseApp = false,
            IsSchemaCustomizationSupported = false,
            IsSchemaDiscoverySupported = false,
            IsThreeLeggedOauthEnabled = false,
            IsTwoLeggedOauthEnabled = false,
            ObjectClasses = new[]
            {
                new Oci.Identity.Inputs.DomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppObjectClassArgs
                {
                    Type = "string",
                    Value = "string",
                    Display = "string",
                    IsAccountObjectClass = false,
                    Ref = "string",
                    ResourceType = "string",
                },
            },
            SyncConfigLastModified = "string",
            ThreeLeggedOauthCredential = new Oci.Identity.Inputs.DomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppThreeLeggedOauthCredentialArgs
            {
                AccessToken = "string",
                AccessTokenExpiry = "string",
                RefreshToken = "string",
            },
            ThreeLeggedOauthProviderName = "string",
        },
        UrnietfparamsscimschemasoracleidcsextensionmulticloudServiceAppApp = new Oci.Identity.Inputs.DomainsAppUrnietfparamsscimschemasoracleidcsextensionmulticloudServiceAppAppArgs
        {
            MulticloudServiceType = "string",
            MulticloudPlatformUrl = "string",
        },
        UrnietfparamsscimschemasoracleidcsextensionopcServiceApp = new Oci.Identity.Inputs.DomainsAppUrnietfparamsscimschemasoracleidcsextensionopcServiceAppArgs
        {
            CurrentFederationMode = "string",
            CurrentSynchronizationMode = "string",
            EnablingNextFedSyncModes = false,
            NextFederationMode = "string",
            NextSynchronizationMode = "string",
            Region = "string",
            ServiceInstanceIdentifier = "string",
        },
        UrnietfparamsscimschemasoracleidcsextensionradiusAppApp = new Oci.Identity.Inputs.DomainsAppUrnietfparamsscimschemasoracleidcsextensionradiusAppAppArgs
        {
            IncludeGroupInResponse = false,
            ClientIp = "string",
            SecretKey = "string",
            Port = "string",
            EndUserIpAttribute = "string",
            GroupMembershipToReturns = new[]
            {
                new Oci.Identity.Inputs.DomainsAppUrnietfparamsscimschemasoracleidcsextensionradiusAppAppGroupMembershipToReturnArgs
                {
                    Value = "string",
                    Display = "string",
                    Ref = "string",
                },
            },
            GroupNameFormat = "string",
            GroupMembershipRadiusAttribute = "string",
            PasswordAndOtpTogether = false,
            CaptureClientIp = false,
            RadiusVendorSpecificId = "string",
            ResponseFormat = "string",
            ResponseFormatDelimiter = "string",
            CountryCodeResponseAttributeId = "string",
            TypeOfRadiusApp = "string",
        },
        UrnietfparamsscimschemasoracleidcsextensionrequestableApp = new Oci.Identity.Inputs.DomainsAppUrnietfparamsscimschemasoracleidcsextensionrequestableAppArgs
        {
            Requestable = false,
        },
        UrnietfparamsscimschemasoracleidcsextensionsamlServiceProviderApp = new Oci.Identity.Inputs.DomainsAppUrnietfparamsscimschemasoracleidcsextensionsamlServiceProviderAppArgs
        {
            AssertionConsumerUrl = "string",
            EncryptAssertion = false,
            EncryptionAlgorithm = "string",
            EncryptionCertificate = "string",
            FederationProtocol = "string",
            GroupAssertionAttributes = new[]
            {
                new Oci.Identity.Inputs.DomainsAppUrnietfparamsscimschemasoracleidcsextensionsamlServiceProviderAppGroupAssertionAttributeArgs
                {
                    Name = "string",
                    Condition = "string",
                    Format = "string",
                    GroupName = "string",
                },
            },
            HokAcsUrl = "string",
            HokRequired = false,
            IncludeSigningCertInSignature = false,
            KeyEncryptionAlgorithm = "string",
            LastNotificationSentTime = "string",
            LogoutBinding = "string",
            LogoutEnabled = false,
            LogoutRequestUrl = "string",
            LogoutResponseUrl = "string",
            Metadata = "string",
            NameIdFormat = "string",
            NameIdUserstoreAttribute = "string",
            OutboundAssertionAttributes = new[]
            {
                new Oci.Identity.Inputs.DomainsAppUrnietfparamsscimschemasoracleidcsextensionsamlServiceProviderAppOutboundAssertionAttributeArgs
                {
                    Value = "string",
                    Direction = "string",
                    Ref = "string",
                },
            },
            PartnerProviderId = "string",
            PartnerProviderPattern = "string",
            SignResponseOrAssertion = "string",
            SignatureHashAlgorithm = "string",
            SigningCertificate = "string",
            SuccinctId = "string",
            TenantProviderId = "string",
            UserAssertionAttributes = new[]
            {
                new Oci.Identity.Inputs.DomainsAppUrnietfparamsscimschemasoracleidcsextensionsamlServiceProviderAppUserAssertionAttributeArgs
                {
                    Name = "string",
                    UserStoreAttributeName = "string",
                    Format = "string",
                },
            },
        },
        UrnietfparamsscimschemasoracleidcsextensionwebTierPolicyApp = new Oci.Identity.Inputs.DomainsAppUrnietfparamsscimschemasoracleidcsextensionwebTierPolicyAppArgs
        {
            ResourceRef = false,
            WebTierPolicyAzControl = "string",
            WebTierPolicyJson = "string",
        },
    });
    
    example, err := Identity.NewDomainsApp(ctx, "domainsAppResource", &Identity.DomainsAppArgs{
    	BasedOnTemplate: &identity.DomainsAppBasedOnTemplateArgs{
    		Value:        pulumi.String("string"),
    		LastModified: pulumi.String("string"),
    		Ref:          pulumi.String("string"),
    		WellKnownId:  pulumi.String("string"),
    	},
    	Schemas: pulumi.StringArray{
    		pulumi.String("string"),
    	},
    	IdcsEndpoint:        pulumi.String("string"),
    	DisplayName:         pulumi.String("string"),
    	IsObligationCapable: pulumi.Bool(false),
    	IsWebTierPolicy:     pulumi.Bool(false),
    	AllowedGrants: pulumi.StringArray{
    		pulumi.String("string"),
    	},
    	AllowedOperations: pulumi.StringArray{
    		pulumi.String("string"),
    	},
    	AllowedScopes: identity.DomainsAppAllowedScopeArray{
    		&identity.DomainsAppAllowedScopeArgs{
    			Fqs:             pulumi.String("string"),
    			IdOfDefiningApp: pulumi.String("string"),
    			ReadOnly:        pulumi.Bool(false),
    		},
    	},
    	AllowedTags: identity.DomainsAppAllowedTagArray{
    		&identity.DomainsAppAllowedTagArgs{
    			Key:      pulumi.String("string"),
    			Value:    pulumi.String("string"),
    			ReadOnly: pulumi.Bool(false),
    		},
    	},
    	AppIcon: pulumi.String("string"),
    	AppSignonPolicy: &identity.DomainsAppAppSignonPolicyArgs{
    		Value: pulumi.String("string"),
    		Ref:   pulumi.String("string"),
    	},
    	AppThumbnail: pulumi.String("string"),
    	AppsNetworkPerimeters: identity.DomainsAppAppsNetworkPerimeterArray{
    		&identity.DomainsAppAppsNetworkPerimeterArgs{
    			Value: pulumi.String("string"),
    			Ref:   pulumi.String("string"),
    		},
    	},
    	AsOpcService: &identity.DomainsAppAsOpcServiceArgs{
    		Value: pulumi.String("string"),
    		Ref:   pulumi.String("string"),
    	},
    	AttrRenderingMetadatas: identity.DomainsAppAttrRenderingMetadataArray{
    		&identity.DomainsAppAttrRenderingMetadataArgs{
    			Name:      pulumi.String("string"),
    			MinSize:   pulumi.Int(0),
    			Order:     pulumi.Int(0),
    			MaxLength: pulumi.Int(0),
    			MaxSize:   pulumi.Int(0),
    			MinLength: pulumi.Int(0),
    			Datatype:  pulumi.String("string"),
    			Helptext:  pulumi.String("string"),
    			Label:     pulumi.String("string"),
    			ReadOnly:  pulumi.Bool(false),
    			Regexp:    pulumi.String("string"),
    			Required:  pulumi.Bool(false),
    			Section:   pulumi.String("string"),
    			Visible:   pulumi.Bool(false),
    			Widget:    pulumi.String("string"),
    		},
    	},
    	AttributeSets: pulumi.StringArray{
    		pulumi.String("string"),
    	},
    	Attributes:         pulumi.String("string"),
    	Audience:           pulumi.String("string"),
    	Authorization:      pulumi.String("string"),
    	AllowAccessControl: pulumi.Bool(false),
    	BypassConsent:      pulumi.Bool(false),
    	Certificates: identity.DomainsAppCertificateArray{
    		&identity.DomainsAppCertificateArgs{
    			CertAlias:             pulumi.String("string"),
    			Kid:                   pulumi.String("string"),
    			Sha1thumbprint:        pulumi.String("string"),
    			X509base64certificate: pulumi.String("string"),
    			X5t:                   pulumi.String("string"),
    		},
    	},
    	ClientIpChecking:               pulumi.String("string"),
    	ClientType:                     pulumi.String("string"),
    	ContactEmailAddress:            pulumi.String("string"),
    	IsUnmanagedApp:                 pulumi.Bool(false),
    	Description:                    pulumi.String("string"),
    	DisableKmsiTokenAuthentication: pulumi.Bool(false),
    	AllUrlSchemesAllowed:           pulumi.Bool(false),
    	ErrorPageUrl:                   pulumi.String("string"),
    	HomePageUrl:                    pulumi.String("string"),
    	Icon:                           pulumi.String("string"),
    	IdTokenEncAlgo:                 pulumi.String("string"),
    	AliasApps: identity.DomainsAppAliasAppArray{
    		&identity.DomainsAppAliasAppArgs{
    			Value:       pulumi.String("string"),
    			Description: pulumi.String("string"),
    			Display:     pulumi.String("string"),
    			Ref:         pulumi.String("string"),
    		},
    	},
    	IdentityProviders: identity.DomainsAppIdentityProviderArray{
    		&identity.DomainsAppIdentityProviderArgs{
    			Value:   pulumi.String("string"),
    			Display: pulumi.String("string"),
    			Ref:     pulumi.String("string"),
    		},
    	},
    	IdpPolicy: &identity.DomainsAppIdpPolicyArgs{
    		Value: pulumi.String("string"),
    		Ref:   pulumi.String("string"),
    	},
    	IsAliasApp:             pulumi.Bool(false),
    	IsEnterpriseApp:        pulumi.Bool(false),
    	IsFormFill:             pulumi.Bool(false),
    	IsKerberosRealm:        pulumi.Bool(false),
    	IsLoginTarget:          pulumi.Bool(false),
    	IsMobileTarget:         pulumi.Bool(false),
    	IsMulticloudServiceApp: pulumi.Bool(false),
    	IsOauthClient:          pulumi.Bool(false),
    	IsOauthResource:        pulumi.Bool(false),
    	AccessTokenExpiry:      pulumi.Int(0),
    	IsRadiusApp:            pulumi.Bool(false),
    	SamlServiceProvider: &identity.DomainsAppSamlServiceProviderArgs{
    		Value: pulumi.String("string"),
    		Ref:   pulumi.String("string"),
    	},
    	AllowOffline: pulumi.Bool(false),
    	DelegatedServiceNames: pulumi.StringArray{
    		pulumi.String("string"),
    	},
    	LandingPageUrl:     pulumi.String("string"),
    	LinkingCallbackUrl: pulumi.String("string"),
    	LoginMechanism:     pulumi.String("string"),
    	LoginPageUrl:       pulumi.String("string"),
    	LogoutPageUrl:      pulumi.String("string"),
    	LogoutUri:          pulumi.String("string"),
    	Name:               pulumi.String("string"),
    	Ocid:               pulumi.String("string"),
    	PostLogoutRedirectUris: pulumi.StringArray{
    		pulumi.String("string"),
    	},
    	PrivacyPolicyUrl: pulumi.String("string"),
    	ProductLogoUrl:   pulumi.String("string"),
    	ProductName:      pulumi.String("string"),
    	ProtectableSecondaryAudiences: identity.DomainsAppProtectableSecondaryAudienceArray{
    		&identity.DomainsAppProtectableSecondaryAudienceArgs{
    			Value:    pulumi.String("string"),
    			ReadOnly: pulumi.Bool(false),
    		},
    	},
    	RadiusPolicy: &identity.DomainsAppRadiusPolicyArgs{
    		Value: pulumi.String("string"),
    		Ref:   pulumi.String("string"),
    	},
    	RedirectUris: pulumi.StringArray{
    		pulumi.String("string"),
    	},
    	RefreshTokenExpiry:        pulumi.Int(0),
    	ResourceTypeSchemaVersion: pulumi.String("string"),
    	IsSamlServiceProvider:     pulumi.Bool(false),
    	Active:                    pulumi.Bool(false),
    	Scopes: identity.DomainsAppScopeArray{
    		&identity.DomainsAppScopeArgs{
    			Value:           pulumi.String("string"),
    			Description:     pulumi.String("string"),
    			DisplayName:     pulumi.String("string"),
    			Fqs:             pulumi.String("string"),
    			ReadOnly:        pulumi.Bool(false),
    			RequiresConsent: pulumi.Bool(false),
    		},
    	},
    	SecondaryAudiences: pulumi.StringArray{
    		pulumi.String("string"),
    	},
    	ServiceParams: identity.DomainsAppServiceParamArray{
    		&identity.DomainsAppServiceParamArgs{
    			Name:  pulumi.String("string"),
    			Value: pulumi.String("string"),
    		},
    	},
    	ServiceTypeUrn:     pulumi.String("string"),
    	ServiceTypeVersion: pulumi.String("string"),
    	ShowInMyApps:       pulumi.Bool(false),
    	SignonPolicy: &identity.DomainsAppSignonPolicyArgs{
    		Value: pulumi.String("string"),
    		Ref:   pulumi.String("string"),
    	},
    	Tags: identity.DomainsAppTagArray{
    		&identity.DomainsAppTagArgs{
    			Key:   pulumi.String("string"),
    			Value: pulumi.String("string"),
    		},
    	},
    	TermsOfServiceUrl: pulumi.String("string"),
    	TermsOfUse: &identity.DomainsAppTermsOfUseArgs{
    		Value: pulumi.String("string"),
    		Name:  pulumi.String("string"),
    		Ref:   pulumi.String("string"),
    	},
    	TrustPolicies: identity.DomainsAppTrustPolicyArray{
    		&identity.DomainsAppTrustPolicyArgs{
    			Value: pulumi.String("string"),
    			Ref:   pulumi.String("string"),
    		},
    	},
    	TrustScope: pulumi.String("string"),
    	UrnietfparamsscimschemasoracleidcsextensionOciTags: &identity.DomainsAppUrnietfparamsscimschemasoracleidcsextensionOciTagsArgs{
    		DefinedTags: identity.DomainsAppUrnietfparamsscimschemasoracleidcsextensionOciTagsDefinedTagArray{
    			&identity.DomainsAppUrnietfparamsscimschemasoracleidcsextensionOciTagsDefinedTagArgs{
    				Key:       pulumi.String("string"),
    				Namespace: pulumi.String("string"),
    				Value:     pulumi.String("string"),
    			},
    		},
    		FreeformTags: identity.DomainsAppUrnietfparamsscimschemasoracleidcsextensionOciTagsFreeformTagArray{
    			&identity.DomainsAppUrnietfparamsscimschemasoracleidcsextensionOciTagsFreeformTagArgs{
    				Key:   pulumi.String("string"),
    				Value: pulumi.String("string"),
    			},
    		},
    		TagSlug: pulumi.String("string"),
    	},
    	UrnietfparamsscimschemasoracleidcsextensiondbcsApp: &identity.DomainsAppUrnietfparamsscimschemasoracleidcsextensiondbcsAppArgs{
    		DomainApp: &identity.DomainsAppUrnietfparamsscimschemasoracleidcsextensiondbcsAppDomainAppArgs{
    			Value:   pulumi.String("string"),
    			Display: pulumi.String("string"),
    			Ref:     pulumi.String("string"),
    		},
    		DomainName: pulumi.String("string"),
    	},
    	UrnietfparamsscimschemasoracleidcsextensionenterpriseAppApp: &identity.DomainsAppUrnietfparamsscimschemasoracleidcsextensionenterpriseAppAppArgs{
    		AllowAuthzDecisionTtl: pulumi.Int(0),
    		AllowAuthzPolicy: &identity.DomainsAppUrnietfparamsscimschemasoracleidcsextensionenterpriseAppAppAllowAuthzPolicyArgs{
    			Value: pulumi.String("string"),
    			Ref:   pulumi.String("string"),
    		},
    		AppResources: identity.DomainsAppUrnietfparamsscimschemasoracleidcsextensionenterpriseAppAppAppResourceArray{
    			&identity.DomainsAppUrnietfparamsscimschemasoracleidcsextensionenterpriseAppAppAppResourceArgs{
    				Value: pulumi.String("string"),
    				Ref:   pulumi.String("string"),
    			},
    		},
    		DenyAuthzDecisionTtl: pulumi.Int(0),
    		DenyAuthzPolicy: &identity.DomainsAppUrnietfparamsscimschemasoracleidcsextensionenterpriseAppAppDenyAuthzPolicyArgs{
    			Value: pulumi.String("string"),
    			Ref:   pulumi.String("string"),
    		},
    	},
    	UrnietfparamsscimschemasoracleidcsextensionformFillAppApp: &identity.DomainsAppUrnietfparamsscimschemasoracleidcsextensionformFillAppAppArgs{
    		Configuration:                pulumi.String("string"),
    		FormCredMethod:               pulumi.String("string"),
    		FormCredentialSharingGroupId: pulumi.String("string"),
    		FormFillUrlMatches: identity.DomainsAppUrnietfparamsscimschemasoracleidcsextensionformFillAppAppFormFillUrlMatchArray{
    			&identity.DomainsAppUrnietfparamsscimschemasoracleidcsextensionformFillAppAppFormFillUrlMatchArgs{
    				FormUrl:          pulumi.String("string"),
    				FormUrlMatchType: pulumi.String("string"),
    			},
    		},
    		FormType:               pulumi.String("string"),
    		RevealPasswordOnForm:   pulumi.Bool(false),
    		SyncFromTemplate:       pulumi.Bool(false),
    		UserNameFormExpression: pulumi.String("string"),
    		UserNameFormTemplate:   pulumi.String("string"),
    	},
    	UrnietfparamsscimschemasoracleidcsextensionformFillAppTemplateAppTemplate: &identity.DomainsAppUrnietfparamsscimschemasoracleidcsextensionformFillAppTemplateAppTemplateArgs{
    		Configuration:                pulumi.String("string"),
    		FormCredMethod:               pulumi.String("string"),
    		FormCredentialSharingGroupId: pulumi.String("string"),
    		FormFillUrlMatches: identity.DomainsAppUrnietfparamsscimschemasoracleidcsextensionformFillAppTemplateAppTemplateFormFillUrlMatchArray{
    			&identity.DomainsAppUrnietfparamsscimschemasoracleidcsextensionformFillAppTemplateAppTemplateFormFillUrlMatchArgs{
    				FormUrl:          pulumi.String("string"),
    				FormUrlMatchType: pulumi.String("string"),
    			},
    		},
    		FormType:               pulumi.String("string"),
    		RevealPasswordOnForm:   pulumi.Bool(false),
    		SyncFromTemplate:       pulumi.Bool(false),
    		UserNameFormExpression: pulumi.String("string"),
    		UserNameFormTemplate:   pulumi.String("string"),
    	},
    	UrnietfparamsscimschemasoracleidcsextensionkerberosRealmApp: &identity.DomainsAppUrnietfparamsscimschemasoracleidcsextensionkerberosRealmAppArgs{
    		DefaultEncryptionSaltType: pulumi.String("string"),
    		MasterKey:                 pulumi.String("string"),
    		MaxRenewableAge:           pulumi.Int(0),
    		MaxTicketLife:             pulumi.Int(0),
    		RealmName:                 pulumi.String("string"),
    		SupportedEncryptionSaltTypes: pulumi.StringArray{
    			pulumi.String("string"),
    		},
    		TicketFlags: pulumi.Int(0),
    	},
    	UrnietfparamsscimschemasoracleidcsextensionmanagedappApp: &identity.DomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppArgs{
    		AccountFormVisible:  pulumi.Bool(false),
    		AdminConsentGranted: pulumi.Bool(false),
    		BundleConfigurationProperties: identity.DomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppBundleConfigurationPropertyArray{
    			&identity.DomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppBundleConfigurationPropertyArgs{
    				IcfType:      pulumi.String("string"),
    				Name:         pulumi.String("string"),
    				Required:     pulumi.Bool(false),
    				Confidential: pulumi.Bool(false),
    				DisplayName:  pulumi.String("string"),
    				HelpMessage:  pulumi.String("string"),
    				Order:        pulumi.Int(0),
    				Values: pulumi.StringArray{
    					pulumi.String("string"),
    				},
    			},
    		},
    		BundlePoolConfiguration: &identity.DomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppBundlePoolConfigurationArgs{
    			MaxIdle:                    pulumi.Int(0),
    			MaxObjects:                 pulumi.Int(0),
    			MaxWait:                    pulumi.Int(0),
    			MinEvictableIdleTimeMillis: pulumi.Int(0),
    			MinIdle:                    pulumi.Int(0),
    		},
    		CanBeAuthoritative: pulumi.Bool(false),
    		Connected:          pulumi.Bool(false),
    		ConnectorBundles: identity.DomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppConnectorBundleArray{
    			&identity.DomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppConnectorBundleArgs{
    				Type:        pulumi.String("string"),
    				Value:       pulumi.String("string"),
    				Display:     pulumi.String("string"),
    				Ref:         pulumi.String("string"),
    				WellKnownId: pulumi.String("string"),
    			},
    		},
    		EnableAuthSyncNewUserNotification:   pulumi.Bool(false),
    		EnableSync:                          pulumi.Bool(false),
    		EnableSyncSummaryReportNotification: pulumi.Bool(false),
    		FlatFileBundleConfigurationProperties: identity.DomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppFlatFileBundleConfigurationPropertyArray{
    			&identity.DomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppFlatFileBundleConfigurationPropertyArgs{
    				IcfType:      pulumi.String("string"),
    				Name:         pulumi.String("string"),
    				Required:     pulumi.Bool(false),
    				Confidential: pulumi.Bool(false),
    				DisplayName:  pulumi.String("string"),
    				HelpMessage:  pulumi.String("string"),
    				Order:        pulumi.Int(0),
    				Values: pulumi.StringArray{
    					pulumi.String("string"),
    				},
    			},
    		},
    		FlatFileConnectorBundle: &identity.DomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppFlatFileConnectorBundleArgs{
    			Value:       pulumi.String("string"),
    			Display:     pulumi.String("string"),
    			Ref:         pulumi.String("string"),
    			WellKnownId: pulumi.String("string"),
    		},
    		IdentityBridges: identity.DomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppIdentityBridgeArray{
    			&identity.DomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppIdentityBridgeArgs{
    				Name:  pulumi.String("string"),
    				Ref:   pulumi.String("string"),
    				Value: pulumi.String("string"),
    			},
    		},
    		IsAuthoritative:                pulumi.Bool(false),
    		IsDirectory:                    pulumi.Bool(false),
    		IsOnPremiseApp:                 pulumi.Bool(false),
    		IsSchemaCustomizationSupported: pulumi.Bool(false),
    		IsSchemaDiscoverySupported:     pulumi.Bool(false),
    		IsThreeLeggedOauthEnabled:      pulumi.Bool(false),
    		IsTwoLeggedOauthEnabled:        pulumi.Bool(false),
    		ObjectClasses: identity.DomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppObjectClassArray{
    			&identity.DomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppObjectClassArgs{
    				Type:                 pulumi.String("string"),
    				Value:                pulumi.String("string"),
    				Display:              pulumi.String("string"),
    				IsAccountObjectClass: pulumi.Bool(false),
    				Ref:                  pulumi.String("string"),
    				ResourceType:         pulumi.String("string"),
    			},
    		},
    		SyncConfigLastModified: pulumi.String("string"),
    		ThreeLeggedOauthCredential: &identity.DomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppThreeLeggedOauthCredentialArgs{
    			AccessToken:       pulumi.String("string"),
    			AccessTokenExpiry: pulumi.String("string"),
    			RefreshToken:      pulumi.String("string"),
    		},
    		ThreeLeggedOauthProviderName: pulumi.String("string"),
    	},
    	UrnietfparamsscimschemasoracleidcsextensionmulticloudServiceAppApp: &identity.DomainsAppUrnietfparamsscimschemasoracleidcsextensionmulticloudServiceAppAppArgs{
    		MulticloudServiceType: pulumi.String("string"),
    		MulticloudPlatformUrl: pulumi.String("string"),
    	},
    	UrnietfparamsscimschemasoracleidcsextensionopcServiceApp: &identity.DomainsAppUrnietfparamsscimschemasoracleidcsextensionopcServiceAppArgs{
    		CurrentFederationMode:      pulumi.String("string"),
    		CurrentSynchronizationMode: pulumi.String("string"),
    		EnablingNextFedSyncModes:   pulumi.Bool(false),
    		NextFederationMode:         pulumi.String("string"),
    		NextSynchronizationMode:    pulumi.String("string"),
    		Region:                     pulumi.String("string"),
    		ServiceInstanceIdentifier:  pulumi.String("string"),
    	},
    	UrnietfparamsscimschemasoracleidcsextensionradiusAppApp: &identity.DomainsAppUrnietfparamsscimschemasoracleidcsextensionradiusAppAppArgs{
    		IncludeGroupInResponse: pulumi.Bool(false),
    		ClientIp:               pulumi.String("string"),
    		SecretKey:              pulumi.String("string"),
    		Port:                   pulumi.String("string"),
    		EndUserIpAttribute:     pulumi.String("string"),
    		GroupMembershipToReturns: identity.DomainsAppUrnietfparamsscimschemasoracleidcsextensionradiusAppAppGroupMembershipToReturnArray{
    			&identity.DomainsAppUrnietfparamsscimschemasoracleidcsextensionradiusAppAppGroupMembershipToReturnArgs{
    				Value:   pulumi.String("string"),
    				Display: pulumi.String("string"),
    				Ref:     pulumi.String("string"),
    			},
    		},
    		GroupNameFormat:                pulumi.String("string"),
    		GroupMembershipRadiusAttribute: pulumi.String("string"),
    		PasswordAndOtpTogether:         pulumi.Bool(false),
    		CaptureClientIp:                pulumi.Bool(false),
    		RadiusVendorSpecificId:         pulumi.String("string"),
    		ResponseFormat:                 pulumi.String("string"),
    		ResponseFormatDelimiter:        pulumi.String("string"),
    		CountryCodeResponseAttributeId: pulumi.String("string"),
    		TypeOfRadiusApp:                pulumi.String("string"),
    	},
    	UrnietfparamsscimschemasoracleidcsextensionrequestableApp: &identity.DomainsAppUrnietfparamsscimschemasoracleidcsextensionrequestableAppArgs{
    		Requestable: pulumi.Bool(false),
    	},
    	UrnietfparamsscimschemasoracleidcsextensionsamlServiceProviderApp: &identity.DomainsAppUrnietfparamsscimschemasoracleidcsextensionsamlServiceProviderAppArgs{
    		AssertionConsumerUrl:  pulumi.String("string"),
    		EncryptAssertion:      pulumi.Bool(false),
    		EncryptionAlgorithm:   pulumi.String("string"),
    		EncryptionCertificate: pulumi.String("string"),
    		FederationProtocol:    pulumi.String("string"),
    		GroupAssertionAttributes: identity.DomainsAppUrnietfparamsscimschemasoracleidcsextensionsamlServiceProviderAppGroupAssertionAttributeArray{
    			&identity.DomainsAppUrnietfparamsscimschemasoracleidcsextensionsamlServiceProviderAppGroupAssertionAttributeArgs{
    				Name:      pulumi.String("string"),
    				Condition: pulumi.String("string"),
    				Format:    pulumi.String("string"),
    				GroupName: pulumi.String("string"),
    			},
    		},
    		HokAcsUrl:                     pulumi.String("string"),
    		HokRequired:                   pulumi.Bool(false),
    		IncludeSigningCertInSignature: pulumi.Bool(false),
    		KeyEncryptionAlgorithm:        pulumi.String("string"),
    		LastNotificationSentTime:      pulumi.String("string"),
    		LogoutBinding:                 pulumi.String("string"),
    		LogoutEnabled:                 pulumi.Bool(false),
    		LogoutRequestUrl:              pulumi.String("string"),
    		LogoutResponseUrl:             pulumi.String("string"),
    		Metadata:                      pulumi.String("string"),
    		NameIdFormat:                  pulumi.String("string"),
    		NameIdUserstoreAttribute:      pulumi.String("string"),
    		OutboundAssertionAttributes: identity.DomainsAppUrnietfparamsscimschemasoracleidcsextensionsamlServiceProviderAppOutboundAssertionAttributeArray{
    			&identity.DomainsAppUrnietfparamsscimschemasoracleidcsextensionsamlServiceProviderAppOutboundAssertionAttributeArgs{
    				Value:     pulumi.String("string"),
    				Direction: pulumi.String("string"),
    				Ref:       pulumi.String("string"),
    			},
    		},
    		PartnerProviderId:       pulumi.String("string"),
    		PartnerProviderPattern:  pulumi.String("string"),
    		SignResponseOrAssertion: pulumi.String("string"),
    		SignatureHashAlgorithm:  pulumi.String("string"),
    		SigningCertificate:      pulumi.String("string"),
    		SuccinctId:              pulumi.String("string"),
    		TenantProviderId:        pulumi.String("string"),
    		UserAssertionAttributes: identity.DomainsAppUrnietfparamsscimschemasoracleidcsextensionsamlServiceProviderAppUserAssertionAttributeArray{
    			&identity.DomainsAppUrnietfparamsscimschemasoracleidcsextensionsamlServiceProviderAppUserAssertionAttributeArgs{
    				Name:                   pulumi.String("string"),
    				UserStoreAttributeName: pulumi.String("string"),
    				Format:                 pulumi.String("string"),
    			},
    		},
    	},
    	UrnietfparamsscimschemasoracleidcsextensionwebTierPolicyApp: &identity.DomainsAppUrnietfparamsscimschemasoracleidcsextensionwebTierPolicyAppArgs{
    		ResourceRef:            pulumi.Bool(false),
    		WebTierPolicyAzControl: pulumi.String("string"),
    		WebTierPolicyJson:      pulumi.String("string"),
    	},
    })
    
    var domainsAppResource = new DomainsApp("domainsAppResource", DomainsAppArgs.builder()
        .basedOnTemplate(DomainsAppBasedOnTemplateArgs.builder()
            .value("string")
            .lastModified("string")
            .ref("string")
            .wellKnownId("string")
            .build())
        .schemas("string")
        .idcsEndpoint("string")
        .displayName("string")
        .isObligationCapable(false)
        .isWebTierPolicy(false)
        .allowedGrants("string")
        .allowedOperations("string")
        .allowedScopes(DomainsAppAllowedScopeArgs.builder()
            .fqs("string")
            .idOfDefiningApp("string")
            .readOnly(false)
            .build())
        .allowedTags(DomainsAppAllowedTagArgs.builder()
            .key("string")
            .value("string")
            .readOnly(false)
            .build())
        .appIcon("string")
        .appSignonPolicy(DomainsAppAppSignonPolicyArgs.builder()
            .value("string")
            .ref("string")
            .build())
        .appThumbnail("string")
        .appsNetworkPerimeters(DomainsAppAppsNetworkPerimeterArgs.builder()
            .value("string")
            .ref("string")
            .build())
        .asOpcService(DomainsAppAsOpcServiceArgs.builder()
            .value("string")
            .ref("string")
            .build())
        .attrRenderingMetadatas(DomainsAppAttrRenderingMetadataArgs.builder()
            .name("string")
            .minSize(0)
            .order(0)
            .maxLength(0)
            .maxSize(0)
            .minLength(0)
            .datatype("string")
            .helptext("string")
            .label("string")
            .readOnly(false)
            .regexp("string")
            .required(false)
            .section("string")
            .visible(false)
            .widget("string")
            .build())
        .attributeSets("string")
        .attributes("string")
        .audience("string")
        .authorization("string")
        .allowAccessControl(false)
        .bypassConsent(false)
        .certificates(DomainsAppCertificateArgs.builder()
            .certAlias("string")
            .kid("string")
            .sha1thumbprint("string")
            .x509base64certificate("string")
            .x5t("string")
            .build())
        .clientIpChecking("string")
        .clientType("string")
        .contactEmailAddress("string")
        .isUnmanagedApp(false)
        .description("string")
        .disableKmsiTokenAuthentication(false)
        .allUrlSchemesAllowed(false)
        .errorPageUrl("string")
        .homePageUrl("string")
        .icon("string")
        .idTokenEncAlgo("string")
        .aliasApps(DomainsAppAliasAppArgs.builder()
            .value("string")
            .description("string")
            .display("string")
            .ref("string")
            .build())
        .identityProviders(DomainsAppIdentityProviderArgs.builder()
            .value("string")
            .display("string")
            .ref("string")
            .build())
        .idpPolicy(DomainsAppIdpPolicyArgs.builder()
            .value("string")
            .ref("string")
            .build())
        .isAliasApp(false)
        .isEnterpriseApp(false)
        .isFormFill(false)
        .isKerberosRealm(false)
        .isLoginTarget(false)
        .isMobileTarget(false)
        .isMulticloudServiceApp(false)
        .isOauthClient(false)
        .isOauthResource(false)
        .accessTokenExpiry(0)
        .isRadiusApp(false)
        .samlServiceProvider(DomainsAppSamlServiceProviderArgs.builder()
            .value("string")
            .ref("string")
            .build())
        .allowOffline(false)
        .delegatedServiceNames("string")
        .landingPageUrl("string")
        .linkingCallbackUrl("string")
        .loginMechanism("string")
        .loginPageUrl("string")
        .logoutPageUrl("string")
        .logoutUri("string")
        .name("string")
        .ocid("string")
        .postLogoutRedirectUris("string")
        .privacyPolicyUrl("string")
        .productLogoUrl("string")
        .productName("string")
        .protectableSecondaryAudiences(DomainsAppProtectableSecondaryAudienceArgs.builder()
            .value("string")
            .readOnly(false)
            .build())
        .radiusPolicy(DomainsAppRadiusPolicyArgs.builder()
            .value("string")
            .ref("string")
            .build())
        .redirectUris("string")
        .refreshTokenExpiry(0)
        .resourceTypeSchemaVersion("string")
        .isSamlServiceProvider(false)
        .active(false)
        .scopes(DomainsAppScopeArgs.builder()
            .value("string")
            .description("string")
            .displayName("string")
            .fqs("string")
            .readOnly(false)
            .requiresConsent(false)
            .build())
        .secondaryAudiences("string")
        .serviceParams(DomainsAppServiceParamArgs.builder()
            .name("string")
            .value("string")
            .build())
        .serviceTypeUrn("string")
        .serviceTypeVersion("string")
        .showInMyApps(false)
        .signonPolicy(DomainsAppSignonPolicyArgs.builder()
            .value("string")
            .ref("string")
            .build())
        .tags(DomainsAppTagArgs.builder()
            .key("string")
            .value("string")
            .build())
        .termsOfServiceUrl("string")
        .termsOfUse(DomainsAppTermsOfUseArgs.builder()
            .value("string")
            .name("string")
            .ref("string")
            .build())
        .trustPolicies(DomainsAppTrustPolicyArgs.builder()
            .value("string")
            .ref("string")
            .build())
        .trustScope("string")
        .urnietfparamsscimschemasoracleidcsextensionOciTags(DomainsAppUrnietfparamsscimschemasoracleidcsextensionOciTagsArgs.builder()
            .definedTags(DomainsAppUrnietfparamsscimschemasoracleidcsextensionOciTagsDefinedTagArgs.builder()
                .key("string")
                .namespace("string")
                .value("string")
                .build())
            .freeformTags(DomainsAppUrnietfparamsscimschemasoracleidcsextensionOciTagsFreeformTagArgs.builder()
                .key("string")
                .value("string")
                .build())
            .tagSlug("string")
            .build())
        .urnietfparamsscimschemasoracleidcsextensiondbcsApp(DomainsAppUrnietfparamsscimschemasoracleidcsextensiondbcsAppArgs.builder()
            .domainApp(DomainsAppUrnietfparamsscimschemasoracleidcsextensiondbcsAppDomainAppArgs.builder()
                .value("string")
                .display("string")
                .ref("string")
                .build())
            .domainName("string")
            .build())
        .urnietfparamsscimschemasoracleidcsextensionenterpriseAppApp(DomainsAppUrnietfparamsscimschemasoracleidcsextensionenterpriseAppAppArgs.builder()
            .allowAuthzDecisionTtl(0)
            .allowAuthzPolicy(DomainsAppUrnietfparamsscimschemasoracleidcsextensionenterpriseAppAppAllowAuthzPolicyArgs.builder()
                .value("string")
                .ref("string")
                .build())
            .appResources(DomainsAppUrnietfparamsscimschemasoracleidcsextensionenterpriseAppAppAppResourceArgs.builder()
                .value("string")
                .ref("string")
                .build())
            .denyAuthzDecisionTtl(0)
            .denyAuthzPolicy(DomainsAppUrnietfparamsscimschemasoracleidcsextensionenterpriseAppAppDenyAuthzPolicyArgs.builder()
                .value("string")
                .ref("string")
                .build())
            .build())
        .urnietfparamsscimschemasoracleidcsextensionformFillAppApp(DomainsAppUrnietfparamsscimschemasoracleidcsextensionformFillAppAppArgs.builder()
            .configuration("string")
            .formCredMethod("string")
            .formCredentialSharingGroupId("string")
            .formFillUrlMatches(DomainsAppUrnietfparamsscimschemasoracleidcsextensionformFillAppAppFormFillUrlMatchArgs.builder()
                .formUrl("string")
                .formUrlMatchType("string")
                .build())
            .formType("string")
            .revealPasswordOnForm(false)
            .syncFromTemplate(false)
            .userNameFormExpression("string")
            .userNameFormTemplate("string")
            .build())
        .urnietfparamsscimschemasoracleidcsextensionformFillAppTemplateAppTemplate(DomainsAppUrnietfparamsscimschemasoracleidcsextensionformFillAppTemplateAppTemplateArgs.builder()
            .configuration("string")
            .formCredMethod("string")
            .formCredentialSharingGroupId("string")
            .formFillUrlMatches(DomainsAppUrnietfparamsscimschemasoracleidcsextensionformFillAppTemplateAppTemplateFormFillUrlMatchArgs.builder()
                .formUrl("string")
                .formUrlMatchType("string")
                .build())
            .formType("string")
            .revealPasswordOnForm(false)
            .syncFromTemplate(false)
            .userNameFormExpression("string")
            .userNameFormTemplate("string")
            .build())
        .urnietfparamsscimschemasoracleidcsextensionkerberosRealmApp(DomainsAppUrnietfparamsscimschemasoracleidcsextensionkerberosRealmAppArgs.builder()
            .defaultEncryptionSaltType("string")
            .masterKey("string")
            .maxRenewableAge(0)
            .maxTicketLife(0)
            .realmName("string")
            .supportedEncryptionSaltTypes("string")
            .ticketFlags(0)
            .build())
        .urnietfparamsscimschemasoracleidcsextensionmanagedappApp(DomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppArgs.builder()
            .accountFormVisible(false)
            .adminConsentGranted(false)
            .bundleConfigurationProperties(DomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppBundleConfigurationPropertyArgs.builder()
                .icfType("string")
                .name("string")
                .required(false)
                .confidential(false)
                .displayName("string")
                .helpMessage("string")
                .order(0)
                .values("string")
                .build())
            .bundlePoolConfiguration(DomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppBundlePoolConfigurationArgs.builder()
                .maxIdle(0)
                .maxObjects(0)
                .maxWait(0)
                .minEvictableIdleTimeMillis(0)
                .minIdle(0)
                .build())
            .canBeAuthoritative(false)
            .connected(false)
            .connectorBundles(DomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppConnectorBundleArgs.builder()
                .type("string")
                .value("string")
                .display("string")
                .ref("string")
                .wellKnownId("string")
                .build())
            .enableAuthSyncNewUserNotification(false)
            .enableSync(false)
            .enableSyncSummaryReportNotification(false)
            .flatFileBundleConfigurationProperties(DomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppFlatFileBundleConfigurationPropertyArgs.builder()
                .icfType("string")
                .name("string")
                .required(false)
                .confidential(false)
                .displayName("string")
                .helpMessage("string")
                .order(0)
                .values("string")
                .build())
            .flatFileConnectorBundle(DomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppFlatFileConnectorBundleArgs.builder()
                .value("string")
                .display("string")
                .ref("string")
                .wellKnownId("string")
                .build())
            .identityBridges(DomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppIdentityBridgeArgs.builder()
                .name("string")
                .ref("string")
                .value("string")
                .build())
            .isAuthoritative(false)
            .isDirectory(false)
            .isOnPremiseApp(false)
            .isSchemaCustomizationSupported(false)
            .isSchemaDiscoverySupported(false)
            .isThreeLeggedOauthEnabled(false)
            .isTwoLeggedOauthEnabled(false)
            .objectClasses(DomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppObjectClassArgs.builder()
                .type("string")
                .value("string")
                .display("string")
                .isAccountObjectClass(false)
                .ref("string")
                .resourceType("string")
                .build())
            .syncConfigLastModified("string")
            .threeLeggedOauthCredential(DomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppThreeLeggedOauthCredentialArgs.builder()
                .accessToken("string")
                .accessTokenExpiry("string")
                .refreshToken("string")
                .build())
            .threeLeggedOauthProviderName("string")
            .build())
        .urnietfparamsscimschemasoracleidcsextensionmulticloudServiceAppApp(DomainsAppUrnietfparamsscimschemasoracleidcsextensionmulticloudServiceAppAppArgs.builder()
            .multicloudServiceType("string")
            .multicloudPlatformUrl("string")
            .build())
        .urnietfparamsscimschemasoracleidcsextensionopcServiceApp(DomainsAppUrnietfparamsscimschemasoracleidcsextensionopcServiceAppArgs.builder()
            .currentFederationMode("string")
            .currentSynchronizationMode("string")
            .enablingNextFedSyncModes(false)
            .nextFederationMode("string")
            .nextSynchronizationMode("string")
            .region("string")
            .serviceInstanceIdentifier("string")
            .build())
        .urnietfparamsscimschemasoracleidcsextensionradiusAppApp(DomainsAppUrnietfparamsscimschemasoracleidcsextensionradiusAppAppArgs.builder()
            .includeGroupInResponse(false)
            .clientIp("string")
            .secretKey("string")
            .port("string")
            .endUserIpAttribute("string")
            .groupMembershipToReturns(DomainsAppUrnietfparamsscimschemasoracleidcsextensionradiusAppAppGroupMembershipToReturnArgs.builder()
                .value("string")
                .display("string")
                .ref("string")
                .build())
            .groupNameFormat("string")
            .groupMembershipRadiusAttribute("string")
            .passwordAndOtpTogether(false)
            .captureClientIp(false)
            .radiusVendorSpecificId("string")
            .responseFormat("string")
            .responseFormatDelimiter("string")
            .countryCodeResponseAttributeId("string")
            .typeOfRadiusApp("string")
            .build())
        .urnietfparamsscimschemasoracleidcsextensionrequestableApp(DomainsAppUrnietfparamsscimschemasoracleidcsextensionrequestableAppArgs.builder()
            .requestable(false)
            .build())
        .urnietfparamsscimschemasoracleidcsextensionsamlServiceProviderApp(DomainsAppUrnietfparamsscimschemasoracleidcsextensionsamlServiceProviderAppArgs.builder()
            .assertionConsumerUrl("string")
            .encryptAssertion(false)
            .encryptionAlgorithm("string")
            .encryptionCertificate("string")
            .federationProtocol("string")
            .groupAssertionAttributes(DomainsAppUrnietfparamsscimschemasoracleidcsextensionsamlServiceProviderAppGroupAssertionAttributeArgs.builder()
                .name("string")
                .condition("string")
                .format("string")
                .groupName("string")
                .build())
            .hokAcsUrl("string")
            .hokRequired(false)
            .includeSigningCertInSignature(false)
            .keyEncryptionAlgorithm("string")
            .lastNotificationSentTime("string")
            .logoutBinding("string")
            .logoutEnabled(false)
            .logoutRequestUrl("string")
            .logoutResponseUrl("string")
            .metadata("string")
            .nameIdFormat("string")
            .nameIdUserstoreAttribute("string")
            .outboundAssertionAttributes(DomainsAppUrnietfparamsscimschemasoracleidcsextensionsamlServiceProviderAppOutboundAssertionAttributeArgs.builder()
                .value("string")
                .direction("string")
                .ref("string")
                .build())
            .partnerProviderId("string")
            .partnerProviderPattern("string")
            .signResponseOrAssertion("string")
            .signatureHashAlgorithm("string")
            .signingCertificate("string")
            .succinctId("string")
            .tenantProviderId("string")
            .userAssertionAttributes(DomainsAppUrnietfparamsscimschemasoracleidcsextensionsamlServiceProviderAppUserAssertionAttributeArgs.builder()
                .name("string")
                .userStoreAttributeName("string")
                .format("string")
                .build())
            .build())
        .urnietfparamsscimschemasoracleidcsextensionwebTierPolicyApp(DomainsAppUrnietfparamsscimschemasoracleidcsextensionwebTierPolicyAppArgs.builder()
            .resourceRef(false)
            .webTierPolicyAzControl("string")
            .webTierPolicyJson("string")
            .build())
        .build());
    
    domains_app_resource = oci.identity.DomainsApp("domainsAppResource",
        based_on_template={
            "value": "string",
            "last_modified": "string",
            "ref": "string",
            "well_known_id": "string",
        },
        schemas=["string"],
        idcs_endpoint="string",
        display_name="string",
        is_obligation_capable=False,
        is_web_tier_policy=False,
        allowed_grants=["string"],
        allowed_operations=["string"],
        allowed_scopes=[{
            "fqs": "string",
            "id_of_defining_app": "string",
            "read_only": False,
        }],
        allowed_tags=[{
            "key": "string",
            "value": "string",
            "read_only": False,
        }],
        app_icon="string",
        app_signon_policy={
            "value": "string",
            "ref": "string",
        },
        app_thumbnail="string",
        apps_network_perimeters=[{
            "value": "string",
            "ref": "string",
        }],
        as_opc_service={
            "value": "string",
            "ref": "string",
        },
        attr_rendering_metadatas=[{
            "name": "string",
            "min_size": 0,
            "order": 0,
            "max_length": 0,
            "max_size": 0,
            "min_length": 0,
            "datatype": "string",
            "helptext": "string",
            "label": "string",
            "read_only": False,
            "regexp": "string",
            "required": False,
            "section": "string",
            "visible": False,
            "widget": "string",
        }],
        attribute_sets=["string"],
        attributes="string",
        audience="string",
        authorization="string",
        allow_access_control=False,
        bypass_consent=False,
        certificates=[{
            "cert_alias": "string",
            "kid": "string",
            "sha1thumbprint": "string",
            "x509base64certificate": "string",
            "x5t": "string",
        }],
        client_ip_checking="string",
        client_type="string",
        contact_email_address="string",
        is_unmanaged_app=False,
        description="string",
        disable_kmsi_token_authentication=False,
        all_url_schemes_allowed=False,
        error_page_url="string",
        home_page_url="string",
        icon="string",
        id_token_enc_algo="string",
        alias_apps=[{
            "value": "string",
            "description": "string",
            "display": "string",
            "ref": "string",
        }],
        identity_providers=[{
            "value": "string",
            "display": "string",
            "ref": "string",
        }],
        idp_policy={
            "value": "string",
            "ref": "string",
        },
        is_alias_app=False,
        is_enterprise_app=False,
        is_form_fill=False,
        is_kerberos_realm=False,
        is_login_target=False,
        is_mobile_target=False,
        is_multicloud_service_app=False,
        is_oauth_client=False,
        is_oauth_resource=False,
        access_token_expiry=0,
        is_radius_app=False,
        saml_service_provider={
            "value": "string",
            "ref": "string",
        },
        allow_offline=False,
        delegated_service_names=["string"],
        landing_page_url="string",
        linking_callback_url="string",
        login_mechanism="string",
        login_page_url="string",
        logout_page_url="string",
        logout_uri="string",
        name="string",
        ocid="string",
        post_logout_redirect_uris=["string"],
        privacy_policy_url="string",
        product_logo_url="string",
        product_name="string",
        protectable_secondary_audiences=[{
            "value": "string",
            "read_only": False,
        }],
        radius_policy={
            "value": "string",
            "ref": "string",
        },
        redirect_uris=["string"],
        refresh_token_expiry=0,
        resource_type_schema_version="string",
        is_saml_service_provider=False,
        active=False,
        scopes=[{
            "value": "string",
            "description": "string",
            "display_name": "string",
            "fqs": "string",
            "read_only": False,
            "requires_consent": False,
        }],
        secondary_audiences=["string"],
        service_params=[{
            "name": "string",
            "value": "string",
        }],
        service_type_urn="string",
        service_type_version="string",
        show_in_my_apps=False,
        signon_policy={
            "value": "string",
            "ref": "string",
        },
        tags=[{
            "key": "string",
            "value": "string",
        }],
        terms_of_service_url="string",
        terms_of_use={
            "value": "string",
            "name": "string",
            "ref": "string",
        },
        trust_policies=[{
            "value": "string",
            "ref": "string",
        }],
        trust_scope="string",
        urnietfparamsscimschemasoracleidcsextension_oci_tags={
            "defined_tags": [{
                "key": "string",
                "namespace": "string",
                "value": "string",
            }],
            "freeform_tags": [{
                "key": "string",
                "value": "string",
            }],
            "tag_slug": "string",
        },
        urnietfparamsscimschemasoracleidcsextensiondbcs_app={
            "domain_app": {
                "value": "string",
                "display": "string",
                "ref": "string",
            },
            "domain_name": "string",
        },
        urnietfparamsscimschemasoracleidcsextensionenterprise_app_app={
            "allow_authz_decision_ttl": 0,
            "allow_authz_policy": {
                "value": "string",
                "ref": "string",
            },
            "app_resources": [{
                "value": "string",
                "ref": "string",
            }],
            "deny_authz_decision_ttl": 0,
            "deny_authz_policy": {
                "value": "string",
                "ref": "string",
            },
        },
        urnietfparamsscimschemasoracleidcsextensionform_fill_app_app={
            "configuration": "string",
            "form_cred_method": "string",
            "form_credential_sharing_group_id": "string",
            "form_fill_url_matches": [{
                "form_url": "string",
                "form_url_match_type": "string",
            }],
            "form_type": "string",
            "reveal_password_on_form": False,
            "sync_from_template": False,
            "user_name_form_expression": "string",
            "user_name_form_template": "string",
        },
        urnietfparamsscimschemasoracleidcsextensionform_fill_app_template_app_template={
            "configuration": "string",
            "form_cred_method": "string",
            "form_credential_sharing_group_id": "string",
            "form_fill_url_matches": [{
                "form_url": "string",
                "form_url_match_type": "string",
            }],
            "form_type": "string",
            "reveal_password_on_form": False,
            "sync_from_template": False,
            "user_name_form_expression": "string",
            "user_name_form_template": "string",
        },
        urnietfparamsscimschemasoracleidcsextensionkerberos_realm_app={
            "default_encryption_salt_type": "string",
            "master_key": "string",
            "max_renewable_age": 0,
            "max_ticket_life": 0,
            "realm_name": "string",
            "supported_encryption_salt_types": ["string"],
            "ticket_flags": 0,
        },
        urnietfparamsscimschemasoracleidcsextensionmanagedapp_app={
            "account_form_visible": False,
            "admin_consent_granted": False,
            "bundle_configuration_properties": [{
                "icf_type": "string",
                "name": "string",
                "required": False,
                "confidential": False,
                "display_name": "string",
                "help_message": "string",
                "order": 0,
                "values": ["string"],
            }],
            "bundle_pool_configuration": {
                "max_idle": 0,
                "max_objects": 0,
                "max_wait": 0,
                "min_evictable_idle_time_millis": 0,
                "min_idle": 0,
            },
            "can_be_authoritative": False,
            "connected": False,
            "connector_bundles": [{
                "type": "string",
                "value": "string",
                "display": "string",
                "ref": "string",
                "well_known_id": "string",
            }],
            "enable_auth_sync_new_user_notification": False,
            "enable_sync": False,
            "enable_sync_summary_report_notification": False,
            "flat_file_bundle_configuration_properties": [{
                "icf_type": "string",
                "name": "string",
                "required": False,
                "confidential": False,
                "display_name": "string",
                "help_message": "string",
                "order": 0,
                "values": ["string"],
            }],
            "flat_file_connector_bundle": {
                "value": "string",
                "display": "string",
                "ref": "string",
                "well_known_id": "string",
            },
            "identity_bridges": [{
                "name": "string",
                "ref": "string",
                "value": "string",
            }],
            "is_authoritative": False,
            "is_directory": False,
            "is_on_premise_app": False,
            "is_schema_customization_supported": False,
            "is_schema_discovery_supported": False,
            "is_three_legged_oauth_enabled": False,
            "is_two_legged_oauth_enabled": False,
            "object_classes": [{
                "type": "string",
                "value": "string",
                "display": "string",
                "is_account_object_class": False,
                "ref": "string",
                "resource_type": "string",
            }],
            "sync_config_last_modified": "string",
            "three_legged_oauth_credential": {
                "access_token": "string",
                "access_token_expiry": "string",
                "refresh_token": "string",
            },
            "three_legged_oauth_provider_name": "string",
        },
        urnietfparamsscimschemasoracleidcsextensionmulticloud_service_app_app={
            "multicloud_service_type": "string",
            "multicloud_platform_url": "string",
        },
        urnietfparamsscimschemasoracleidcsextensionopc_service_app={
            "current_federation_mode": "string",
            "current_synchronization_mode": "string",
            "enabling_next_fed_sync_modes": False,
            "next_federation_mode": "string",
            "next_synchronization_mode": "string",
            "region": "string",
            "service_instance_identifier": "string",
        },
        urnietfparamsscimschemasoracleidcsextensionradius_app_app={
            "include_group_in_response": False,
            "client_ip": "string",
            "secret_key": "string",
            "port": "string",
            "end_user_ip_attribute": "string",
            "group_membership_to_returns": [{
                "value": "string",
                "display": "string",
                "ref": "string",
            }],
            "group_name_format": "string",
            "group_membership_radius_attribute": "string",
            "password_and_otp_together": False,
            "capture_client_ip": False,
            "radius_vendor_specific_id": "string",
            "response_format": "string",
            "response_format_delimiter": "string",
            "country_code_response_attribute_id": "string",
            "type_of_radius_app": "string",
        },
        urnietfparamsscimschemasoracleidcsextensionrequestable_app={
            "requestable": False,
        },
        urnietfparamsscimschemasoracleidcsextensionsaml_service_provider_app={
            "assertion_consumer_url": "string",
            "encrypt_assertion": False,
            "encryption_algorithm": "string",
            "encryption_certificate": "string",
            "federation_protocol": "string",
            "group_assertion_attributes": [{
                "name": "string",
                "condition": "string",
                "format": "string",
                "group_name": "string",
            }],
            "hok_acs_url": "string",
            "hok_required": False,
            "include_signing_cert_in_signature": False,
            "key_encryption_algorithm": "string",
            "last_notification_sent_time": "string",
            "logout_binding": "string",
            "logout_enabled": False,
            "logout_request_url": "string",
            "logout_response_url": "string",
            "metadata": "string",
            "name_id_format": "string",
            "name_id_userstore_attribute": "string",
            "outbound_assertion_attributes": [{
                "value": "string",
                "direction": "string",
                "ref": "string",
            }],
            "partner_provider_id": "string",
            "partner_provider_pattern": "string",
            "sign_response_or_assertion": "string",
            "signature_hash_algorithm": "string",
            "signing_certificate": "string",
            "succinct_id": "string",
            "tenant_provider_id": "string",
            "user_assertion_attributes": [{
                "name": "string",
                "user_store_attribute_name": "string",
                "format": "string",
            }],
        },
        urnietfparamsscimschemasoracleidcsextensionweb_tier_policy_app={
            "resource_ref": False,
            "web_tier_policy_az_control": "string",
            "web_tier_policy_json": "string",
        })
    
    const domainsAppResource = new oci.identity.DomainsApp("domainsAppResource", {
        basedOnTemplate: {
            value: "string",
            lastModified: "string",
            ref: "string",
            wellKnownId: "string",
        },
        schemas: ["string"],
        idcsEndpoint: "string",
        displayName: "string",
        isObligationCapable: false,
        isWebTierPolicy: false,
        allowedGrants: ["string"],
        allowedOperations: ["string"],
        allowedScopes: [{
            fqs: "string",
            idOfDefiningApp: "string",
            readOnly: false,
        }],
        allowedTags: [{
            key: "string",
            value: "string",
            readOnly: false,
        }],
        appIcon: "string",
        appSignonPolicy: {
            value: "string",
            ref: "string",
        },
        appThumbnail: "string",
        appsNetworkPerimeters: [{
            value: "string",
            ref: "string",
        }],
        asOpcService: {
            value: "string",
            ref: "string",
        },
        attrRenderingMetadatas: [{
            name: "string",
            minSize: 0,
            order: 0,
            maxLength: 0,
            maxSize: 0,
            minLength: 0,
            datatype: "string",
            helptext: "string",
            label: "string",
            readOnly: false,
            regexp: "string",
            required: false,
            section: "string",
            visible: false,
            widget: "string",
        }],
        attributeSets: ["string"],
        attributes: "string",
        audience: "string",
        authorization: "string",
        allowAccessControl: false,
        bypassConsent: false,
        certificates: [{
            certAlias: "string",
            kid: "string",
            sha1thumbprint: "string",
            x509base64certificate: "string",
            x5t: "string",
        }],
        clientIpChecking: "string",
        clientType: "string",
        contactEmailAddress: "string",
        isUnmanagedApp: false,
        description: "string",
        disableKmsiTokenAuthentication: false,
        allUrlSchemesAllowed: false,
        errorPageUrl: "string",
        homePageUrl: "string",
        icon: "string",
        idTokenEncAlgo: "string",
        aliasApps: [{
            value: "string",
            description: "string",
            display: "string",
            ref: "string",
        }],
        identityProviders: [{
            value: "string",
            display: "string",
            ref: "string",
        }],
        idpPolicy: {
            value: "string",
            ref: "string",
        },
        isAliasApp: false,
        isEnterpriseApp: false,
        isFormFill: false,
        isKerberosRealm: false,
        isLoginTarget: false,
        isMobileTarget: false,
        isMulticloudServiceApp: false,
        isOauthClient: false,
        isOauthResource: false,
        accessTokenExpiry: 0,
        isRadiusApp: false,
        samlServiceProvider: {
            value: "string",
            ref: "string",
        },
        allowOffline: false,
        delegatedServiceNames: ["string"],
        landingPageUrl: "string",
        linkingCallbackUrl: "string",
        loginMechanism: "string",
        loginPageUrl: "string",
        logoutPageUrl: "string",
        logoutUri: "string",
        name: "string",
        ocid: "string",
        postLogoutRedirectUris: ["string"],
        privacyPolicyUrl: "string",
        productLogoUrl: "string",
        productName: "string",
        protectableSecondaryAudiences: [{
            value: "string",
            readOnly: false,
        }],
        radiusPolicy: {
            value: "string",
            ref: "string",
        },
        redirectUris: ["string"],
        refreshTokenExpiry: 0,
        resourceTypeSchemaVersion: "string",
        isSamlServiceProvider: false,
        active: false,
        scopes: [{
            value: "string",
            description: "string",
            displayName: "string",
            fqs: "string",
            readOnly: false,
            requiresConsent: false,
        }],
        secondaryAudiences: ["string"],
        serviceParams: [{
            name: "string",
            value: "string",
        }],
        serviceTypeUrn: "string",
        serviceTypeVersion: "string",
        showInMyApps: false,
        signonPolicy: {
            value: "string",
            ref: "string",
        },
        tags: [{
            key: "string",
            value: "string",
        }],
        termsOfServiceUrl: "string",
        termsOfUse: {
            value: "string",
            name: "string",
            ref: "string",
        },
        trustPolicies: [{
            value: "string",
            ref: "string",
        }],
        trustScope: "string",
        urnietfparamsscimschemasoracleidcsextensionOciTags: {
            definedTags: [{
                key: "string",
                namespace: "string",
                value: "string",
            }],
            freeformTags: [{
                key: "string",
                value: "string",
            }],
            tagSlug: "string",
        },
        urnietfparamsscimschemasoracleidcsextensiondbcsApp: {
            domainApp: {
                value: "string",
                display: "string",
                ref: "string",
            },
            domainName: "string",
        },
        urnietfparamsscimschemasoracleidcsextensionenterpriseAppApp: {
            allowAuthzDecisionTtl: 0,
            allowAuthzPolicy: {
                value: "string",
                ref: "string",
            },
            appResources: [{
                value: "string",
                ref: "string",
            }],
            denyAuthzDecisionTtl: 0,
            denyAuthzPolicy: {
                value: "string",
                ref: "string",
            },
        },
        urnietfparamsscimschemasoracleidcsextensionformFillAppApp: {
            configuration: "string",
            formCredMethod: "string",
            formCredentialSharingGroupId: "string",
            formFillUrlMatches: [{
                formUrl: "string",
                formUrlMatchType: "string",
            }],
            formType: "string",
            revealPasswordOnForm: false,
            syncFromTemplate: false,
            userNameFormExpression: "string",
            userNameFormTemplate: "string",
        },
        urnietfparamsscimschemasoracleidcsextensionformFillAppTemplateAppTemplate: {
            configuration: "string",
            formCredMethod: "string",
            formCredentialSharingGroupId: "string",
            formFillUrlMatches: [{
                formUrl: "string",
                formUrlMatchType: "string",
            }],
            formType: "string",
            revealPasswordOnForm: false,
            syncFromTemplate: false,
            userNameFormExpression: "string",
            userNameFormTemplate: "string",
        },
        urnietfparamsscimschemasoracleidcsextensionkerberosRealmApp: {
            defaultEncryptionSaltType: "string",
            masterKey: "string",
            maxRenewableAge: 0,
            maxTicketLife: 0,
            realmName: "string",
            supportedEncryptionSaltTypes: ["string"],
            ticketFlags: 0,
        },
        urnietfparamsscimschemasoracleidcsextensionmanagedappApp: {
            accountFormVisible: false,
            adminConsentGranted: false,
            bundleConfigurationProperties: [{
                icfType: "string",
                name: "string",
                required: false,
                confidential: false,
                displayName: "string",
                helpMessage: "string",
                order: 0,
                values: ["string"],
            }],
            bundlePoolConfiguration: {
                maxIdle: 0,
                maxObjects: 0,
                maxWait: 0,
                minEvictableIdleTimeMillis: 0,
                minIdle: 0,
            },
            canBeAuthoritative: false,
            connected: false,
            connectorBundles: [{
                type: "string",
                value: "string",
                display: "string",
                ref: "string",
                wellKnownId: "string",
            }],
            enableAuthSyncNewUserNotification: false,
            enableSync: false,
            enableSyncSummaryReportNotification: false,
            flatFileBundleConfigurationProperties: [{
                icfType: "string",
                name: "string",
                required: false,
                confidential: false,
                displayName: "string",
                helpMessage: "string",
                order: 0,
                values: ["string"],
            }],
            flatFileConnectorBundle: {
                value: "string",
                display: "string",
                ref: "string",
                wellKnownId: "string",
            },
            identityBridges: [{
                name: "string",
                ref: "string",
                value: "string",
            }],
            isAuthoritative: false,
            isDirectory: false,
            isOnPremiseApp: false,
            isSchemaCustomizationSupported: false,
            isSchemaDiscoverySupported: false,
            isThreeLeggedOauthEnabled: false,
            isTwoLeggedOauthEnabled: false,
            objectClasses: [{
                type: "string",
                value: "string",
                display: "string",
                isAccountObjectClass: false,
                ref: "string",
                resourceType: "string",
            }],
            syncConfigLastModified: "string",
            threeLeggedOauthCredential: {
                accessToken: "string",
                accessTokenExpiry: "string",
                refreshToken: "string",
            },
            threeLeggedOauthProviderName: "string",
        },
        urnietfparamsscimschemasoracleidcsextensionmulticloudServiceAppApp: {
            multicloudServiceType: "string",
            multicloudPlatformUrl: "string",
        },
        urnietfparamsscimschemasoracleidcsextensionopcServiceApp: {
            currentFederationMode: "string",
            currentSynchronizationMode: "string",
            enablingNextFedSyncModes: false,
            nextFederationMode: "string",
            nextSynchronizationMode: "string",
            region: "string",
            serviceInstanceIdentifier: "string",
        },
        urnietfparamsscimschemasoracleidcsextensionradiusAppApp: {
            includeGroupInResponse: false,
            clientIp: "string",
            secretKey: "string",
            port: "string",
            endUserIpAttribute: "string",
            groupMembershipToReturns: [{
                value: "string",
                display: "string",
                ref: "string",
            }],
            groupNameFormat: "string",
            groupMembershipRadiusAttribute: "string",
            passwordAndOtpTogether: false,
            captureClientIp: false,
            radiusVendorSpecificId: "string",
            responseFormat: "string",
            responseFormatDelimiter: "string",
            countryCodeResponseAttributeId: "string",
            typeOfRadiusApp: "string",
        },
        urnietfparamsscimschemasoracleidcsextensionrequestableApp: {
            requestable: false,
        },
        urnietfparamsscimschemasoracleidcsextensionsamlServiceProviderApp: {
            assertionConsumerUrl: "string",
            encryptAssertion: false,
            encryptionAlgorithm: "string",
            encryptionCertificate: "string",
            federationProtocol: "string",
            groupAssertionAttributes: [{
                name: "string",
                condition: "string",
                format: "string",
                groupName: "string",
            }],
            hokAcsUrl: "string",
            hokRequired: false,
            includeSigningCertInSignature: false,
            keyEncryptionAlgorithm: "string",
            lastNotificationSentTime: "string",
            logoutBinding: "string",
            logoutEnabled: false,
            logoutRequestUrl: "string",
            logoutResponseUrl: "string",
            metadata: "string",
            nameIdFormat: "string",
            nameIdUserstoreAttribute: "string",
            outboundAssertionAttributes: [{
                value: "string",
                direction: "string",
                ref: "string",
            }],
            partnerProviderId: "string",
            partnerProviderPattern: "string",
            signResponseOrAssertion: "string",
            signatureHashAlgorithm: "string",
            signingCertificate: "string",
            succinctId: "string",
            tenantProviderId: "string",
            userAssertionAttributes: [{
                name: "string",
                userStoreAttributeName: "string",
                format: "string",
            }],
        },
        urnietfparamsscimschemasoracleidcsextensionwebTierPolicyApp: {
            resourceRef: false,
            webTierPolicyAzControl: "string",
            webTierPolicyJson: "string",
        },
    });
    
    type: oci:Identity:DomainsApp
    properties:
        accessTokenExpiry: 0
        active: false
        aliasApps:
            - description: string
              display: string
              ref: string
              value: string
        allUrlSchemesAllowed: false
        allowAccessControl: false
        allowOffline: false
        allowedGrants:
            - string
        allowedOperations:
            - string
        allowedScopes:
            - fqs: string
              idOfDefiningApp: string
              readOnly: false
        allowedTags:
            - key: string
              readOnly: false
              value: string
        appIcon: string
        appSignonPolicy:
            ref: string
            value: string
        appThumbnail: string
        appsNetworkPerimeters:
            - ref: string
              value: string
        asOpcService:
            ref: string
            value: string
        attrRenderingMetadatas:
            - datatype: string
              helptext: string
              label: string
              maxLength: 0
              maxSize: 0
              minLength: 0
              minSize: 0
              name: string
              order: 0
              readOnly: false
              regexp: string
              required: false
              section: string
              visible: false
              widget: string
        attributeSets:
            - string
        attributes: string
        audience: string
        authorization: string
        basedOnTemplate:
            lastModified: string
            ref: string
            value: string
            wellKnownId: string
        bypassConsent: false
        certificates:
            - certAlias: string
              kid: string
              sha1thumbprint: string
              x5t: string
              x509base64certificate: string
        clientIpChecking: string
        clientType: string
        contactEmailAddress: string
        delegatedServiceNames:
            - string
        description: string
        disableKmsiTokenAuthentication: false
        displayName: string
        errorPageUrl: string
        homePageUrl: string
        icon: string
        idTokenEncAlgo: string
        idcsEndpoint: string
        identityProviders:
            - display: string
              ref: string
              value: string
        idpPolicy:
            ref: string
            value: string
        isAliasApp: false
        isEnterpriseApp: false
        isFormFill: false
        isKerberosRealm: false
        isLoginTarget: false
        isMobileTarget: false
        isMulticloudServiceApp: false
        isOauthClient: false
        isOauthResource: false
        isObligationCapable: false
        isRadiusApp: false
        isSamlServiceProvider: false
        isUnmanagedApp: false
        isWebTierPolicy: false
        landingPageUrl: string
        linkingCallbackUrl: string
        loginMechanism: string
        loginPageUrl: string
        logoutPageUrl: string
        logoutUri: string
        name: string
        ocid: string
        postLogoutRedirectUris:
            - string
        privacyPolicyUrl: string
        productLogoUrl: string
        productName: string
        protectableSecondaryAudiences:
            - readOnly: false
              value: string
        radiusPolicy:
            ref: string
            value: string
        redirectUris:
            - string
        refreshTokenExpiry: 0
        resourceTypeSchemaVersion: string
        samlServiceProvider:
            ref: string
            value: string
        schemas:
            - string
        scopes:
            - description: string
              displayName: string
              fqs: string
              readOnly: false
              requiresConsent: false
              value: string
        secondaryAudiences:
            - string
        serviceParams:
            - name: string
              value: string
        serviceTypeUrn: string
        serviceTypeVersion: string
        showInMyApps: false
        signonPolicy:
            ref: string
            value: string
        tags:
            - key: string
              value: string
        termsOfServiceUrl: string
        termsOfUse:
            name: string
            ref: string
            value: string
        trustPolicies:
            - ref: string
              value: string
        trustScope: string
        urnietfparamsscimschemasoracleidcsextensionOciTags:
            definedTags:
                - key: string
                  namespace: string
                  value: string
            freeformTags:
                - key: string
                  value: string
            tagSlug: string
        urnietfparamsscimschemasoracleidcsextensiondbcsApp:
            domainApp:
                display: string
                ref: string
                value: string
            domainName: string
        urnietfparamsscimschemasoracleidcsextensionenterpriseAppApp:
            allowAuthzDecisionTtl: 0
            allowAuthzPolicy:
                ref: string
                value: string
            appResources:
                - ref: string
                  value: string
            denyAuthzDecisionTtl: 0
            denyAuthzPolicy:
                ref: string
                value: string
        urnietfparamsscimschemasoracleidcsextensionformFillAppApp:
            configuration: string
            formCredMethod: string
            formCredentialSharingGroupId: string
            formFillUrlMatches:
                - formUrl: string
                  formUrlMatchType: string
            formType: string
            revealPasswordOnForm: false
            syncFromTemplate: false
            userNameFormExpression: string
            userNameFormTemplate: string
        urnietfparamsscimschemasoracleidcsextensionformFillAppTemplateAppTemplate:
            configuration: string
            formCredMethod: string
            formCredentialSharingGroupId: string
            formFillUrlMatches:
                - formUrl: string
                  formUrlMatchType: string
            formType: string
            revealPasswordOnForm: false
            syncFromTemplate: false
            userNameFormExpression: string
            userNameFormTemplate: string
        urnietfparamsscimschemasoracleidcsextensionkerberosRealmApp:
            defaultEncryptionSaltType: string
            masterKey: string
            maxRenewableAge: 0
            maxTicketLife: 0
            realmName: string
            supportedEncryptionSaltTypes:
                - string
            ticketFlags: 0
        urnietfparamsscimschemasoracleidcsextensionmanagedappApp:
            accountFormVisible: false
            adminConsentGranted: false
            bundleConfigurationProperties:
                - confidential: false
                  displayName: string
                  helpMessage: string
                  icfType: string
                  name: string
                  order: 0
                  required: false
                  values:
                    - string
            bundlePoolConfiguration:
                maxIdle: 0
                maxObjects: 0
                maxWait: 0
                minEvictableIdleTimeMillis: 0
                minIdle: 0
            canBeAuthoritative: false
            connected: false
            connectorBundles:
                - display: string
                  ref: string
                  type: string
                  value: string
                  wellKnownId: string
            enableAuthSyncNewUserNotification: false
            enableSync: false
            enableSyncSummaryReportNotification: false
            flatFileBundleConfigurationProperties:
                - confidential: false
                  displayName: string
                  helpMessage: string
                  icfType: string
                  name: string
                  order: 0
                  required: false
                  values:
                    - string
            flatFileConnectorBundle:
                display: string
                ref: string
                value: string
                wellKnownId: string
            identityBridges:
                - name: string
                  ref: string
                  value: string
            isAuthoritative: false
            isDirectory: false
            isOnPremiseApp: false
            isSchemaCustomizationSupported: false
            isSchemaDiscoverySupported: false
            isThreeLeggedOauthEnabled: false
            isTwoLeggedOauthEnabled: false
            objectClasses:
                - display: string
                  isAccountObjectClass: false
                  ref: string
                  resourceType: string
                  type: string
                  value: string
            syncConfigLastModified: string
            threeLeggedOauthCredential:
                accessToken: string
                accessTokenExpiry: string
                refreshToken: string
            threeLeggedOauthProviderName: string
        urnietfparamsscimschemasoracleidcsextensionmulticloudServiceAppApp:
            multicloudPlatformUrl: string
            multicloudServiceType: string
        urnietfparamsscimschemasoracleidcsextensionopcServiceApp:
            currentFederationMode: string
            currentSynchronizationMode: string
            enablingNextFedSyncModes: false
            nextFederationMode: string
            nextSynchronizationMode: string
            region: string
            serviceInstanceIdentifier: string
        urnietfparamsscimschemasoracleidcsextensionradiusAppApp:
            captureClientIp: false
            clientIp: string
            countryCodeResponseAttributeId: string
            endUserIpAttribute: string
            groupMembershipRadiusAttribute: string
            groupMembershipToReturns:
                - display: string
                  ref: string
                  value: string
            groupNameFormat: string
            includeGroupInResponse: false
            passwordAndOtpTogether: false
            port: string
            radiusVendorSpecificId: string
            responseFormat: string
            responseFormatDelimiter: string
            secretKey: string
            typeOfRadiusApp: string
        urnietfparamsscimschemasoracleidcsextensionrequestableApp:
            requestable: false
        urnietfparamsscimschemasoracleidcsextensionsamlServiceProviderApp:
            assertionConsumerUrl: string
            encryptAssertion: false
            encryptionAlgorithm: string
            encryptionCertificate: string
            federationProtocol: string
            groupAssertionAttributes:
                - condition: string
                  format: string
                  groupName: string
                  name: string
            hokAcsUrl: string
            hokRequired: false
            includeSigningCertInSignature: false
            keyEncryptionAlgorithm: string
            lastNotificationSentTime: string
            logoutBinding: string
            logoutEnabled: false
            logoutRequestUrl: string
            logoutResponseUrl: string
            metadata: string
            nameIdFormat: string
            nameIdUserstoreAttribute: string
            outboundAssertionAttributes:
                - direction: string
                  ref: string
                  value: string
            partnerProviderId: string
            partnerProviderPattern: string
            signResponseOrAssertion: string
            signatureHashAlgorithm: string
            signingCertificate: string
            succinctId: string
            tenantProviderId: string
            userAssertionAttributes:
                - format: string
                  name: string
                  userStoreAttributeName: string
        urnietfparamsscimschemasoracleidcsextensionwebTierPolicyApp:
            resourceRef: false
            webTierPolicyAzControl: string
            webTierPolicyJson: string
    

    DomainsApp Resource Properties

    To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

    Inputs

    In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.

    The DomainsApp resource accepts the following input properties:

    BasedOnTemplate DomainsAppBasedOnTemplate

    (Updatable) Application template on which the application is based.

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: immutable
    • required: true
    • returned: default
    • type: complex
    DisplayName string

    (Updatable) Display name of the application. Display name is intended to be user-friendly, and an administrator can change the value at any time.

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: true
    • returned: always
    • type: string
    • uniqueness: server
    IdcsEndpoint string
    The basic endpoint for the identity domain
    Schemas List<string>

    (Updatable) REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard "enterprise" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: true
    • mutability: readWrite
    • required: true
    • returned: default
    • type: string
    • uniqueness: none
    AccessTokenExpiry int

    (Updatable) Expiry-time in seconds for an Access Token. Any token that allows access to this App will expire after the specified duration.

    SCIM++ Properties:

    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: integer
    • uniqueness: none
    Active bool

    (Updatable) If true, this App is able to participate in runtime services, such as automatic-login, OAuth, and SAML. If false, all runtime services are disabled for this App, and only administrative operations can be performed.

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    AliasApps List<DomainsAppAliasApp>

    (Updatable) Each value of this internal attribute refers to an Oracle Public Cloud infrastructure App on which this App depends.

    SCIM++ Properties:

    • caseExact: true
    • idcsCompositeKey: [value]
    • idcsSearchable: true
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    • uniqueness: none
    AllUrlSchemesAllowed bool

    (Updatable) If true, indicates that the system should allow all URL-schemes within each value of the 'redirectUris' attribute. Also indicates that the system should not attempt to confirm that each value of the 'redirectUris' attribute is a valid URI. In particular, the system should not confirm that the domain component of the URI is a top-level domain and the system should not confirm that the hostname portion is a valid system that is reachable over the network.

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    AllowAccessControl bool

    (Updatable) If true, any managed App that is based on this template is checked for access control that is, access to this app is subject to successful authorization at SSO service, viz. app grants to start with.

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    AllowOffline bool

    (Updatable) If true, indicates that the Refresh Token is allowed when this App acts as an OAuth Resource.

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    AllowedGrants List<string>

    (Updatable) List of grant-types that this App is allowed to use when it acts as an OAuthClient.

    SCIM++ Properties:

    • caseExact: true
    • idcsSearchable: true
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    AllowedOperations List<string>

    (Updatable) OPTIONAL. Required only when this App acts as an OAuthClient. Supported values are 'introspect' and 'onBehalfOfUser'. The value 'introspect' allows the client to look inside the access-token. The value 'onBehalfOfUser' overrides how the client's privileges are combined with the privileges of the Subject User. Ordinarily, authorization calculates the set of effective privileges as the intersection of the client's privileges and the user's privileges. The value 'onBehalfOf' indicates that authorization should ignore the privileges of the client and use only the user's privileges to calculate the effective privileges.

    SCIM++ Properties:

    • caseExact: true
    • idcsSearchable: true
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    AllowedScopes List<DomainsAppAllowedScope>

    (Updatable) A list of scopes (exposed by this App or by other Apps) that this App is allowed to access when it acts as an OAuthClient.

    SCIM++ Properties:

    • caseExact: true
    • idcsCompositeKey: [fqs]
    • idcsSearchable: true
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    • uniqueness: none
    AllowedTags List<DomainsAppAllowedTag>

    (Updatable) A list of tags, acting as an OAuthClient, this App is allowed to access.

    Added In: 17.4.6

    SCIM++ Properties:

    • idcsCompositeKey: [key, value]
    • idcsSearchable: true
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    • uniqueness: none
    AppIcon string

    (Updatable) Application icon.

    SCIM++ Properties:

    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: request
    • type: string
    • uniqueness: none
    AppSignonPolicy DomainsAppAppSignonPolicy

    (Updatable) App Sign-on Policy.

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    AppThumbnail string

    (Updatable) Application thumbnail.

    SCIM++ Properties:

    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: request
    • type: string
    • uniqueness: none
    AppsNetworkPerimeters List<DomainsAppAppsNetworkPerimeter>

    (Updatable) Network Perimeter

    Added In: 2010242156

    SCIM++ Properties:

    • idcsCompositeKey: [value]
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    AsOpcService DomainsAppAsOpcService

    (Updatable) OPCService facet of the application.

    Deprecated Since: 17.3.4

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    AttrRenderingMetadatas List<DomainsAppAttrRenderingMetadata>

    (Updatable) Label for the attribute to be shown in the UI.

    SCIM++ Properties:

    • idcsCompositeKey: [name]
    • idcsSearchable: false
    • multiValued: true
    • mutability: immutable
    • required: false
    • returned: default
    • type: complex
    • uniqueness: none
    AttributeSets List<string>
    (Updatable) A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If 'attributes' query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.
    Attributes string
    (Updatable) A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.
    Audience string

    (Updatable) The base URI for all of the scopes defined in this App. The value of 'audience' is combined with the 'value' of each scope to form an 'fqs' or fully qualified scope.

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    Authorization string
    (Updatable) The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.
    BypassConsent bool

    (Updatable) If true, indicates that consent should be skipped for all scopes

    Added In: 19.2.1

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    Certificates List<DomainsAppCertificate>

    (Updatable) Each value of this attribute represent a certificate that this App uses when it acts as an OAuthClient.

    SCIM++ Properties:

    • caseExact: false
    • idcsCompositeKey: [certAlias]
    • idcsSearchable: false
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    • uniqueness: none
    ClientIpChecking string

    (Updatable) Network Perimeters checking mode

    Added In: 2010242156

    SCIM++ Properties:

    • caseExact: true
    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    ClientType string

    (Updatable) Specifies the type of access that this App has when it acts as an OAuthClient.

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    ContactEmailAddress string

    (Updatable) Contact Email Address

    Added In: 19.2.1

    SCIM++ Properties:

    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    DelegatedServiceNames List<string>

    (Updatable) Service Names allow to use Oracle Cloud Infrastructure signature for client authentication instead of client credentials

    Added In: 2207040824

    SCIM++ Properties:

    • caseExact: true
    • idcsSearchable: false
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    Description string

    (Updatable) Description of the application.

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    DisableKmsiTokenAuthentication bool

    (Updatable) Indicates whether the application is allowed to be access using kmsi token.

    Added In: 2111190457

    SCIM++ Properties:

    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: always
    • type: boolean
    • uniqueness: none
    ErrorPageUrl string

    (Updatable) This attribute specifies the URL of the page to which an application will redirect an end-user in case of error.

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    HomePageUrl string

    (Updatable) Home Page URL

    Added In: 19.2.1

    SCIM++ Properties:

    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    Icon string

    (Updatable) URL of application icon.

    SCIM++ Properties:

    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: reference
    • uniqueness: none
    IdTokenEncAlgo string

    (Updatable) Encryption Alogrithm to use for encrypting ID token.

    Added In: 2010242156

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    IdentityProviders List<DomainsAppIdentityProvider>

    (Updatable) A list of IdentityProvider assigned to app. A user trying to access this app will be automatically redirected to configured IdP during the authentication phase, before being able to access App.

    SCIM++ Properties:

    • idcsCompositeKey: [value]
    • idcsSearchable: false
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: request
    • type: complex
    IdpPolicy DomainsAppIdpPolicy

    (Updatable) IDP Policy.

    Added In: 18.1.2

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    IsAliasApp bool

    If true, this App is an AliasApp and it cannot be granted to an end-user directly.

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: immutable
    • required: false
    • returned: always
    • type: boolean
    • uniqueness: none
    IsEnterpriseApp bool

    (Updatable) If true, this app acts as Enterprise app with Authentication and URL Authz policy.

    Added In: 19.2.1

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    IsFormFill bool

    (Updatable) If true, this application acts as FormFill Application

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    IsKerberosRealm bool

    (Updatable) If true, indicates that this App supports Kerberos Authentication

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    IsLoginTarget bool

    (Updatable) If true, this App allows runtime services to log end users into this App automatically.

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    IsMobileTarget bool

    (Updatable) If true, indicates that the App should be visible in each end-user's mobile application.

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    IsMulticloudServiceApp bool

    (Updatable) If true, indicates the app is used for multicloud service integration.

    Added In: 2301202328

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: immutable
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    IsOauthClient bool

    (Updatable) If true, this application acts as an OAuth Client

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    IsOauthResource bool

    (Updatable) If true, indicates that this application acts as an OAuth Resource.

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    IsObligationCapable bool

    (Updatable) This flag indicates if the App is capable of validating obligations with the token for allowing access to the App.

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    IsRadiusApp bool

    (Updatable) If true, this application acts as an Radius App

    Added In: 20.1.3

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    IsSamlServiceProvider bool

    (Updatable) If true, then this App acts as a SAML Service Provider.

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    IsUnmanagedApp bool

    If true, indicates that this application accepts an Oracle Cloud Identity Service User as a login-identity (does not require an account) and relies for authorization on the User's memberships in AppRoles.

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: immutable
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    IsWebTierPolicy bool

    (Updatable) If true, the webtier policy is active

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    LandingPageUrl string

    (Updatable) The URL of the landing page for this App, which is the first page that an end user should see if runtime services log that end user in to this App automatically.

    SCIM++ Properties:

    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    LinkingCallbackUrl string

    (Updatable) This attribute specifies the callback URL for the social linking operation.

    Added In: 18.2.4

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    LoginMechanism string

    (Updatable) The protocol that runtime services will use to log end users in to this App automatically. If 'OIDC', then runtime services use the OpenID Connect protocol. If 'SAML', then runtime services use Security Assertion Markup Language protocol.

    SCIM++ Properties:

    • caseExact: true
    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    LoginPageUrl string

    (Updatable) This attribute specifies the URL of the page that the App uses when an end-user signs in to that App.

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    LogoutPageUrl string

    (Updatable) This attribute specifies the URL of the page that the App uses when an end-user signs out.

    Added In: 17.4.2

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    LogoutUri string

    (Updatable) OAuth will use this URI to logout if this App wants to participate in SSO, and if this App's session gets cleared as part of global logout. Note: This attribute is used only if this App acts as an OAuthClient.

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    Name string

    Name of the application. Also serves as username if the application authenticates to Oracle Public Cloud infrastructure. This name may not be user-friendly and cannot be changed once an App is created.

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: true
    • multiValued: false
    • mutability: immutable
    • required: false
    • returned: default
    • type: string
    • uniqueness: server
    Ocid string

    (Updatable) Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.

    SCIM++ Properties:

    • caseExact: true
    • idcsSearchable: true
    • multiValued: false
    • mutability: immutable
    • required: false
    • returned: default
    • type: string
    • uniqueness: global
    PostLogoutRedirectUris List<string>

    (Updatable) Each value of this attribute is the URI of a landing page within this App. It is used only when this App, acting as an OAuthClient, initiates the logout flow and wants to be redirected back to one of its landing pages.

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    PrivacyPolicyUrl string

    (Updatable) Privacy Policy URL

    Added In: 19.2.1

    SCIM++ Properties:

    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    ProductLogoUrl string

    (Updatable) Application Logo URL

    Added In: 19.2.1

    SCIM++ Properties:

    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    ProductName string

    (Updatable) Product Name

    Added In: 19.2.1

    SCIM++ Properties:

    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    ProtectableSecondaryAudiences List<DomainsAppProtectableSecondaryAudience>

    (Updatable) A list of secondary audiences--additional URIs to be added automatically to any OAuth token that allows access to this App. Note: This attribute is used mainly for backward compatibility in certain Oracle Public Cloud Apps.

    Added In: 18.2.2

    SCIM++ Properties:

    • caseExact: false
    • idcsCompositeKey: [value]
    • idcsSearchable: false
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    • uniqueness: none
    RadiusPolicy DomainsAppRadiusPolicy

    (Updatable) RADIUS Policy assigned to this application.

    Added In: 2209070044

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    RedirectUris List<string>

    (Updatable) OPTIONAL. Each value is a URI within this App. This attribute is required when this App acts as an OAuthClient and is involved in three-legged flows (authorization-code flows).

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    RefreshTokenExpiry int

    (Updatable) Expiry-time in seconds for a Refresh Token. Any token that allows access to this App, once refreshed, will expire after the specified duration.

    SCIM++ Properties:

    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: integer
    • uniqueness: none
    ResourceTypeSchemaVersion string
    (Updatable) An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.
    SamlServiceProvider DomainsAppSamlServiceProvider

    (Updatable) An attribute that refers to the SAML Service Provider that runtime services will use to log an end user in to this App automatically. Note that this will be used only if the loginMechanism is 'SAML'.

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    • uniqueness: none
    Scopes List<DomainsAppScope>

    (Updatable) Scopes defined by this App. Used when this App acts as an OAuth Resource.

    SCIM++ Properties:

    • caseExact: true
    • idcsCompositeKey: [value]
    • idcsSearchable: true
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    • uniqueness: none
    SecondaryAudiences List<string>

    (Updatable) A list of secondary audiences--additional URIs to be added automatically to any OAuth token that allows access to this App. Note: This attribute is used mainly for backward compatibility in certain Oracle Public Cloud Apps.

    Deprecated Since: 18.2.6

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    ServiceParams List<DomainsAppServiceParam>

    (Updatable) Custom attribute that is required to compute other attribute values during app creation.

    SCIM++ Properties:

    • idcsCompositeKey: [name]
    • idcsSearchable: false
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: always
    • type: complex
    • uniqueness: none
    ServiceTypeUrn string

    (Updatable) This Uniform Resource Name (URN) value identifies the type of Oracle Public Cloud service of which this app is an instance.

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    ServiceTypeVersion string

    (Updatable) This value specifies the version of the Oracle Public Cloud service of which this App is an instance

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    ShowInMyApps bool

    (Updatable) If true, this app will be displayed in the MyApps page of each end-user who has access to the App.

    Added In: 18.1.2

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    SignonPolicy DomainsAppSignonPolicy

    (Updatable) Sign-on Policy.

    Deprecated Since: 17.3.4

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    Tags List<DomainsAppTag>

    (Updatable) A list of tags on this resource.

    SCIM++ Properties:

    • idcsCompositeKey: [key, value]
    • idcsSearchable: true
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: request
    • type: complex
    • uniqueness: none
    TermsOfServiceUrl string

    (Updatable) Terms of Service URL

    Added In: 19.2.1

    SCIM++ Properties:

    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    TermsOfUse DomainsAppTermsOfUse

    (Updatable) Terms Of Use.

    Added In: 18.2.6

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    TrustPolicies List<DomainsAppTrustPolicy>

    (Updatable) Trust Policies.

    SCIM++ Properties:

    • idcsCompositeKey: [value]
    • idcsSearchable: true
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    TrustScope string

    (Updatable) Indicates the scope of trust for this App when acting as an OAuthClient. A value of 'Explicit' indicates that the App is allowed to access only the scopes of OAuthResources that are explicitly specified as 'allowedScopes'. A value of 'Account' indicates that the App is allowed implicitly to access any scope of any OAuthResource within the same Oracle Cloud Account. A value of 'Tags' indicates that the App is allowed to access any scope of any OAuthResource with a matching tag within the same Oracle Cloud Account. A value of 'Default' indicates that the Tenant default trust scope configured in the Tenant Settings is used.

    Added In: 17.4.2

    SCIM++ Properties:

    • caseExact: true
    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    UrnietfparamsscimschemasoracleidcsextensionOciTags DomainsAppUrnietfparamsscimschemasoracleidcsextensionOciTags
    (Updatable) Oracle Cloud Infrastructure Tags.
    UrnietfparamsscimschemasoracleidcsextensiondbcsApp DomainsAppUrnietfparamsscimschemasoracleidcsextensiondbcsApp
    (Updatable) This extension provides attributes for database service facet of an App
    UrnietfparamsscimschemasoracleidcsextensionenterpriseAppApp DomainsAppUrnietfparamsscimschemasoracleidcsextensionenterpriseAppApp
    (Updatable) This extension defines the Enterprise App related attributes.
    UrnietfparamsscimschemasoracleidcsextensionformFillAppApp DomainsAppUrnietfparamsscimschemasoracleidcsextensionformFillAppApp
    (Updatable) This extension provides attributes for Form-Fill facet of App
    UrnietfparamsscimschemasoracleidcsextensionformFillAppTemplateAppTemplate DomainsAppUrnietfparamsscimschemasoracleidcsextensionformFillAppTemplateAppTemplate
    (Updatable) This extension provides attributes for Form-Fill facet of AppTemplate
    UrnietfparamsscimschemasoracleidcsextensionkerberosRealmApp DomainsAppUrnietfparamsscimschemasoracleidcsextensionkerberosRealmApp
    (Updatable) Kerberos Realm
    UrnietfparamsscimschemasoracleidcsextensionmanagedappApp DomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappApp
    (Updatable) Managed App
    UrnietfparamsscimschemasoracleidcsextensionmulticloudServiceAppApp DomainsAppUrnietfparamsscimschemasoracleidcsextensionmulticloudServiceAppApp
    (Updatable) This extension defines attributes specific to Apps that represent instances of Multicloud Service App
    UrnietfparamsscimschemasoracleidcsextensionopcServiceApp DomainsAppUrnietfparamsscimschemasoracleidcsextensionopcServiceApp
    (Updatable) This extension defines attributes specific to Apps that represent instances of an Oracle Public Cloud (OPC) service.
    UrnietfparamsscimschemasoracleidcsextensionradiusAppApp DomainsAppUrnietfparamsscimschemasoracleidcsextensionradiusAppApp
    (Updatable) This extension defines attributes specific to Apps that represent instances of Radius App.
    UrnietfparamsscimschemasoracleidcsextensionrequestableApp DomainsAppUrnietfparamsscimschemasoracleidcsextensionrequestableApp
    (Updatable) Requestable App
    UrnietfparamsscimschemasoracleidcsextensionsamlServiceProviderApp DomainsAppUrnietfparamsscimschemasoracleidcsextensionsamlServiceProviderApp
    (Updatable) This extension defines attributes related to the Service Providers configuration.
    UrnietfparamsscimschemasoracleidcsextensionwebTierPolicyApp DomainsAppUrnietfparamsscimschemasoracleidcsextensionwebTierPolicyApp
    (Updatable) WebTier Policy
    BasedOnTemplate DomainsAppBasedOnTemplateArgs

    (Updatable) Application template on which the application is based.

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: immutable
    • required: true
    • returned: default
    • type: complex
    DisplayName string

    (Updatable) Display name of the application. Display name is intended to be user-friendly, and an administrator can change the value at any time.

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: true
    • returned: always
    • type: string
    • uniqueness: server
    IdcsEndpoint string
    The basic endpoint for the identity domain
    Schemas []string

    (Updatable) REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard "enterprise" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: true
    • mutability: readWrite
    • required: true
    • returned: default
    • type: string
    • uniqueness: none
    AccessTokenExpiry int

    (Updatable) Expiry-time in seconds for an Access Token. Any token that allows access to this App will expire after the specified duration.

    SCIM++ Properties:

    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: integer
    • uniqueness: none
    Active bool

    (Updatable) If true, this App is able to participate in runtime services, such as automatic-login, OAuth, and SAML. If false, all runtime services are disabled for this App, and only administrative operations can be performed.

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    AliasApps []DomainsAppAliasAppArgs

    (Updatable) Each value of this internal attribute refers to an Oracle Public Cloud infrastructure App on which this App depends.

    SCIM++ Properties:

    • caseExact: true
    • idcsCompositeKey: [value]
    • idcsSearchable: true
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    • uniqueness: none
    AllUrlSchemesAllowed bool

    (Updatable) If true, indicates that the system should allow all URL-schemes within each value of the 'redirectUris' attribute. Also indicates that the system should not attempt to confirm that each value of the 'redirectUris' attribute is a valid URI. In particular, the system should not confirm that the domain component of the URI is a top-level domain and the system should not confirm that the hostname portion is a valid system that is reachable over the network.

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    AllowAccessControl bool

    (Updatable) If true, any managed App that is based on this template is checked for access control that is, access to this app is subject to successful authorization at SSO service, viz. app grants to start with.

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    AllowOffline bool

    (Updatable) If true, indicates that the Refresh Token is allowed when this App acts as an OAuth Resource.

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    AllowedGrants []string

    (Updatable) List of grant-types that this App is allowed to use when it acts as an OAuthClient.

    SCIM++ Properties:

    • caseExact: true
    • idcsSearchable: true
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    AllowedOperations []string

    (Updatable) OPTIONAL. Required only when this App acts as an OAuthClient. Supported values are 'introspect' and 'onBehalfOfUser'. The value 'introspect' allows the client to look inside the access-token. The value 'onBehalfOfUser' overrides how the client's privileges are combined with the privileges of the Subject User. Ordinarily, authorization calculates the set of effective privileges as the intersection of the client's privileges and the user's privileges. The value 'onBehalfOf' indicates that authorization should ignore the privileges of the client and use only the user's privileges to calculate the effective privileges.

    SCIM++ Properties:

    • caseExact: true
    • idcsSearchable: true
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    AllowedScopes []DomainsAppAllowedScopeArgs

    (Updatable) A list of scopes (exposed by this App or by other Apps) that this App is allowed to access when it acts as an OAuthClient.

    SCIM++ Properties:

    • caseExact: true
    • idcsCompositeKey: [fqs]
    • idcsSearchable: true
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    • uniqueness: none
    AllowedTags []DomainsAppAllowedTagArgs

    (Updatable) A list of tags, acting as an OAuthClient, this App is allowed to access.

    Added In: 17.4.6

    SCIM++ Properties:

    • idcsCompositeKey: [key, value]
    • idcsSearchable: true
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    • uniqueness: none
    AppIcon string

    (Updatable) Application icon.

    SCIM++ Properties:

    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: request
    • type: string
    • uniqueness: none
    AppSignonPolicy DomainsAppAppSignonPolicyArgs

    (Updatable) App Sign-on Policy.

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    AppThumbnail string

    (Updatable) Application thumbnail.

    SCIM++ Properties:

    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: request
    • type: string
    • uniqueness: none
    AppsNetworkPerimeters []DomainsAppAppsNetworkPerimeterArgs

    (Updatable) Network Perimeter

    Added In: 2010242156

    SCIM++ Properties:

    • idcsCompositeKey: [value]
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    AsOpcService DomainsAppAsOpcServiceArgs

    (Updatable) OPCService facet of the application.

    Deprecated Since: 17.3.4

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    AttrRenderingMetadatas []DomainsAppAttrRenderingMetadataArgs

    (Updatable) Label for the attribute to be shown in the UI.

    SCIM++ Properties:

    • idcsCompositeKey: [name]
    • idcsSearchable: false
    • multiValued: true
    • mutability: immutable
    • required: false
    • returned: default
    • type: complex
    • uniqueness: none
    AttributeSets []string
    (Updatable) A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If 'attributes' query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.
    Attributes string
    (Updatable) A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.
    Audience string

    (Updatable) The base URI for all of the scopes defined in this App. The value of 'audience' is combined with the 'value' of each scope to form an 'fqs' or fully qualified scope.

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    Authorization string
    (Updatable) The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.
    BypassConsent bool

    (Updatable) If true, indicates that consent should be skipped for all scopes

    Added In: 19.2.1

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    Certificates []DomainsAppCertificateArgs

    (Updatable) Each value of this attribute represent a certificate that this App uses when it acts as an OAuthClient.

    SCIM++ Properties:

    • caseExact: false
    • idcsCompositeKey: [certAlias]
    • idcsSearchable: false
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    • uniqueness: none
    ClientIpChecking string

    (Updatable) Network Perimeters checking mode

    Added In: 2010242156

    SCIM++ Properties:

    • caseExact: true
    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    ClientType string

    (Updatable) Specifies the type of access that this App has when it acts as an OAuthClient.

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    ContactEmailAddress string

    (Updatable) Contact Email Address

    Added In: 19.2.1

    SCIM++ Properties:

    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    DelegatedServiceNames []string

    (Updatable) Service Names allow to use Oracle Cloud Infrastructure signature for client authentication instead of client credentials

    Added In: 2207040824

    SCIM++ Properties:

    • caseExact: true
    • idcsSearchable: false
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    Description string

    (Updatable) Description of the application.

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    DisableKmsiTokenAuthentication bool

    (Updatable) Indicates whether the application is allowed to be access using kmsi token.

    Added In: 2111190457

    SCIM++ Properties:

    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: always
    • type: boolean
    • uniqueness: none
    ErrorPageUrl string

    (Updatable) This attribute specifies the URL of the page to which an application will redirect an end-user in case of error.

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    HomePageUrl string

    (Updatable) Home Page URL

    Added In: 19.2.1

    SCIM++ Properties:

    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    Icon string

    (Updatable) URL of application icon.

    SCIM++ Properties:

    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: reference
    • uniqueness: none
    IdTokenEncAlgo string

    (Updatable) Encryption Alogrithm to use for encrypting ID token.

    Added In: 2010242156

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    IdentityProviders []DomainsAppIdentityProviderArgs

    (Updatable) A list of IdentityProvider assigned to app. A user trying to access this app will be automatically redirected to configured IdP during the authentication phase, before being able to access App.

    SCIM++ Properties:

    • idcsCompositeKey: [value]
    • idcsSearchable: false
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: request
    • type: complex
    IdpPolicy DomainsAppIdpPolicyArgs

    (Updatable) IDP Policy.

    Added In: 18.1.2

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    IsAliasApp bool

    If true, this App is an AliasApp and it cannot be granted to an end-user directly.

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: immutable
    • required: false
    • returned: always
    • type: boolean
    • uniqueness: none
    IsEnterpriseApp bool

    (Updatable) If true, this app acts as Enterprise app with Authentication and URL Authz policy.

    Added In: 19.2.1

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    IsFormFill bool

    (Updatable) If true, this application acts as FormFill Application

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    IsKerberosRealm bool

    (Updatable) If true, indicates that this App supports Kerberos Authentication

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    IsLoginTarget bool

    (Updatable) If true, this App allows runtime services to log end users into this App automatically.

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    IsMobileTarget bool

    (Updatable) If true, indicates that the App should be visible in each end-user's mobile application.

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    IsMulticloudServiceApp bool

    (Updatable) If true, indicates the app is used for multicloud service integration.

    Added In: 2301202328

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: immutable
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    IsOauthClient bool

    (Updatable) If true, this application acts as an OAuth Client

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    IsOauthResource bool

    (Updatable) If true, indicates that this application acts as an OAuth Resource.

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    IsObligationCapable bool

    (Updatable) This flag indicates if the App is capable of validating obligations with the token for allowing access to the App.

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    IsRadiusApp bool

    (Updatable) If true, this application acts as an Radius App

    Added In: 20.1.3

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    IsSamlServiceProvider bool

    (Updatable) If true, then this App acts as a SAML Service Provider.

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    IsUnmanagedApp bool

    If true, indicates that this application accepts an Oracle Cloud Identity Service User as a login-identity (does not require an account) and relies for authorization on the User's memberships in AppRoles.

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: immutable
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    IsWebTierPolicy bool

    (Updatable) If true, the webtier policy is active

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    LandingPageUrl string

    (Updatable) The URL of the landing page for this App, which is the first page that an end user should see if runtime services log that end user in to this App automatically.

    SCIM++ Properties:

    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    LinkingCallbackUrl string

    (Updatable) This attribute specifies the callback URL for the social linking operation.

    Added In: 18.2.4

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    LoginMechanism string

    (Updatable) The protocol that runtime services will use to log end users in to this App automatically. If 'OIDC', then runtime services use the OpenID Connect protocol. If 'SAML', then runtime services use Security Assertion Markup Language protocol.

    SCIM++ Properties:

    • caseExact: true
    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    LoginPageUrl string

    (Updatable) This attribute specifies the URL of the page that the App uses when an end-user signs in to that App.

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    LogoutPageUrl string

    (Updatable) This attribute specifies the URL of the page that the App uses when an end-user signs out.

    Added In: 17.4.2

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    LogoutUri string

    (Updatable) OAuth will use this URI to logout if this App wants to participate in SSO, and if this App's session gets cleared as part of global logout. Note: This attribute is used only if this App acts as an OAuthClient.

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    Name string

    Name of the application. Also serves as username if the application authenticates to Oracle Public Cloud infrastructure. This name may not be user-friendly and cannot be changed once an App is created.

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: true
    • multiValued: false
    • mutability: immutable
    • required: false
    • returned: default
    • type: string
    • uniqueness: server
    Ocid string

    (Updatable) Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.

    SCIM++ Properties:

    • caseExact: true
    • idcsSearchable: true
    • multiValued: false
    • mutability: immutable
    • required: false
    • returned: default
    • type: string
    • uniqueness: global
    PostLogoutRedirectUris []string

    (Updatable) Each value of this attribute is the URI of a landing page within this App. It is used only when this App, acting as an OAuthClient, initiates the logout flow and wants to be redirected back to one of its landing pages.

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    PrivacyPolicyUrl string

    (Updatable) Privacy Policy URL

    Added In: 19.2.1

    SCIM++ Properties:

    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    ProductLogoUrl string

    (Updatable) Application Logo URL

    Added In: 19.2.1

    SCIM++ Properties:

    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    ProductName string

    (Updatable) Product Name

    Added In: 19.2.1

    SCIM++ Properties:

    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    ProtectableSecondaryAudiences []DomainsAppProtectableSecondaryAudienceArgs

    (Updatable) A list of secondary audiences--additional URIs to be added automatically to any OAuth token that allows access to this App. Note: This attribute is used mainly for backward compatibility in certain Oracle Public Cloud Apps.

    Added In: 18.2.2

    SCIM++ Properties:

    • caseExact: false
    • idcsCompositeKey: [value]
    • idcsSearchable: false
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    • uniqueness: none
    RadiusPolicy DomainsAppRadiusPolicyArgs

    (Updatable) RADIUS Policy assigned to this application.

    Added In: 2209070044

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    RedirectUris []string

    (Updatable) OPTIONAL. Each value is a URI within this App. This attribute is required when this App acts as an OAuthClient and is involved in three-legged flows (authorization-code flows).

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    RefreshTokenExpiry int

    (Updatable) Expiry-time in seconds for a Refresh Token. Any token that allows access to this App, once refreshed, will expire after the specified duration.

    SCIM++ Properties:

    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: integer
    • uniqueness: none
    ResourceTypeSchemaVersion string
    (Updatable) An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.
    SamlServiceProvider DomainsAppSamlServiceProviderArgs

    (Updatable) An attribute that refers to the SAML Service Provider that runtime services will use to log an end user in to this App automatically. Note that this will be used only if the loginMechanism is 'SAML'.

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    • uniqueness: none
    Scopes []DomainsAppScopeArgs

    (Updatable) Scopes defined by this App. Used when this App acts as an OAuth Resource.

    SCIM++ Properties:

    • caseExact: true
    • idcsCompositeKey: [value]
    • idcsSearchable: true
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    • uniqueness: none
    SecondaryAudiences []string

    (Updatable) A list of secondary audiences--additional URIs to be added automatically to any OAuth token that allows access to this App. Note: This attribute is used mainly for backward compatibility in certain Oracle Public Cloud Apps.

    Deprecated Since: 18.2.6

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    ServiceParams []DomainsAppServiceParamArgs

    (Updatable) Custom attribute that is required to compute other attribute values during app creation.

    SCIM++ Properties:

    • idcsCompositeKey: [name]
    • idcsSearchable: false
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: always
    • type: complex
    • uniqueness: none
    ServiceTypeUrn string

    (Updatable) This Uniform Resource Name (URN) value identifies the type of Oracle Public Cloud service of which this app is an instance.

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    ServiceTypeVersion string

    (Updatable) This value specifies the version of the Oracle Public Cloud service of which this App is an instance

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    ShowInMyApps bool

    (Updatable) If true, this app will be displayed in the MyApps page of each end-user who has access to the App.

    Added In: 18.1.2

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    SignonPolicy DomainsAppSignonPolicyArgs

    (Updatable) Sign-on Policy.

    Deprecated Since: 17.3.4

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    Tags []DomainsAppTagArgs

    (Updatable) A list of tags on this resource.

    SCIM++ Properties:

    • idcsCompositeKey: [key, value]
    • idcsSearchable: true
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: request
    • type: complex
    • uniqueness: none
    TermsOfServiceUrl string

    (Updatable) Terms of Service URL

    Added In: 19.2.1

    SCIM++ Properties:

    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    TermsOfUse DomainsAppTermsOfUseArgs

    (Updatable) Terms Of Use.

    Added In: 18.2.6

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    TrustPolicies []DomainsAppTrustPolicyArgs

    (Updatable) Trust Policies.

    SCIM++ Properties:

    • idcsCompositeKey: [value]
    • idcsSearchable: true
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    TrustScope string

    (Updatable) Indicates the scope of trust for this App when acting as an OAuthClient. A value of 'Explicit' indicates that the App is allowed to access only the scopes of OAuthResources that are explicitly specified as 'allowedScopes'. A value of 'Account' indicates that the App is allowed implicitly to access any scope of any OAuthResource within the same Oracle Cloud Account. A value of 'Tags' indicates that the App is allowed to access any scope of any OAuthResource with a matching tag within the same Oracle Cloud Account. A value of 'Default' indicates that the Tenant default trust scope configured in the Tenant Settings is used.

    Added In: 17.4.2

    SCIM++ Properties:

    • caseExact: true
    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    UrnietfparamsscimschemasoracleidcsextensionOciTags DomainsAppUrnietfparamsscimschemasoracleidcsextensionOciTagsArgs
    (Updatable) Oracle Cloud Infrastructure Tags.
    UrnietfparamsscimschemasoracleidcsextensiondbcsApp DomainsAppUrnietfparamsscimschemasoracleidcsextensiondbcsAppArgs
    (Updatable) This extension provides attributes for database service facet of an App
    UrnietfparamsscimschemasoracleidcsextensionenterpriseAppApp DomainsAppUrnietfparamsscimschemasoracleidcsextensionenterpriseAppAppArgs
    (Updatable) This extension defines the Enterprise App related attributes.
    UrnietfparamsscimschemasoracleidcsextensionformFillAppApp DomainsAppUrnietfparamsscimschemasoracleidcsextensionformFillAppAppArgs
    (Updatable) This extension provides attributes for Form-Fill facet of App
    UrnietfparamsscimschemasoracleidcsextensionformFillAppTemplateAppTemplate DomainsAppUrnietfparamsscimschemasoracleidcsextensionformFillAppTemplateAppTemplateArgs
    (Updatable) This extension provides attributes for Form-Fill facet of AppTemplate
    UrnietfparamsscimschemasoracleidcsextensionkerberosRealmApp DomainsAppUrnietfparamsscimschemasoracleidcsextensionkerberosRealmAppArgs
    (Updatable) Kerberos Realm
    UrnietfparamsscimschemasoracleidcsextensionmanagedappApp DomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppArgs
    (Updatable) Managed App
    UrnietfparamsscimschemasoracleidcsextensionmulticloudServiceAppApp DomainsAppUrnietfparamsscimschemasoracleidcsextensionmulticloudServiceAppAppArgs
    (Updatable) This extension defines attributes specific to Apps that represent instances of Multicloud Service App
    UrnietfparamsscimschemasoracleidcsextensionopcServiceApp DomainsAppUrnietfparamsscimschemasoracleidcsextensionopcServiceAppArgs
    (Updatable) This extension defines attributes specific to Apps that represent instances of an Oracle Public Cloud (OPC) service.
    UrnietfparamsscimschemasoracleidcsextensionradiusAppApp DomainsAppUrnietfparamsscimschemasoracleidcsextensionradiusAppAppArgs
    (Updatable) This extension defines attributes specific to Apps that represent instances of Radius App.
    UrnietfparamsscimschemasoracleidcsextensionrequestableApp DomainsAppUrnietfparamsscimschemasoracleidcsextensionrequestableAppArgs
    (Updatable) Requestable App
    UrnietfparamsscimschemasoracleidcsextensionsamlServiceProviderApp DomainsAppUrnietfparamsscimschemasoracleidcsextensionsamlServiceProviderAppArgs
    (Updatable) This extension defines attributes related to the Service Providers configuration.
    UrnietfparamsscimschemasoracleidcsextensionwebTierPolicyApp DomainsAppUrnietfparamsscimschemasoracleidcsextensionwebTierPolicyAppArgs
    (Updatable) WebTier Policy
    basedOnTemplate DomainsAppBasedOnTemplate

    (Updatable) Application template on which the application is based.

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: immutable
    • required: true
    • returned: default
    • type: complex
    displayName String

    (Updatable) Display name of the application. Display name is intended to be user-friendly, and an administrator can change the value at any time.

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: true
    • returned: always
    • type: string
    • uniqueness: server
    idcsEndpoint String
    The basic endpoint for the identity domain
    schemas List<String>

    (Updatable) REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard "enterprise" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: true
    • mutability: readWrite
    • required: true
    • returned: default
    • type: string
    • uniqueness: none
    accessTokenExpiry Integer

    (Updatable) Expiry-time in seconds for an Access Token. Any token that allows access to this App will expire after the specified duration.

    SCIM++ Properties:

    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: integer
    • uniqueness: none
    active Boolean

    (Updatable) If true, this App is able to participate in runtime services, such as automatic-login, OAuth, and SAML. If false, all runtime services are disabled for this App, and only administrative operations can be performed.

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    aliasApps List<DomainsAppAliasApp>

    (Updatable) Each value of this internal attribute refers to an Oracle Public Cloud infrastructure App on which this App depends.

    SCIM++ Properties:

    • caseExact: true
    • idcsCompositeKey: [value]
    • idcsSearchable: true
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    • uniqueness: none
    allUrlSchemesAllowed Boolean

    (Updatable) If true, indicates that the system should allow all URL-schemes within each value of the 'redirectUris' attribute. Also indicates that the system should not attempt to confirm that each value of the 'redirectUris' attribute is a valid URI. In particular, the system should not confirm that the domain component of the URI is a top-level domain and the system should not confirm that the hostname portion is a valid system that is reachable over the network.

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    allowAccessControl Boolean

    (Updatable) If true, any managed App that is based on this template is checked for access control that is, access to this app is subject to successful authorization at SSO service, viz. app grants to start with.

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    allowOffline Boolean

    (Updatable) If true, indicates that the Refresh Token is allowed when this App acts as an OAuth Resource.

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    allowedGrants List<String>

    (Updatable) List of grant-types that this App is allowed to use when it acts as an OAuthClient.

    SCIM++ Properties:

    • caseExact: true
    • idcsSearchable: true
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    allowedOperations List<String>

    (Updatable) OPTIONAL. Required only when this App acts as an OAuthClient. Supported values are 'introspect' and 'onBehalfOfUser'. The value 'introspect' allows the client to look inside the access-token. The value 'onBehalfOfUser' overrides how the client's privileges are combined with the privileges of the Subject User. Ordinarily, authorization calculates the set of effective privileges as the intersection of the client's privileges and the user's privileges. The value 'onBehalfOf' indicates that authorization should ignore the privileges of the client and use only the user's privileges to calculate the effective privileges.

    SCIM++ Properties:

    • caseExact: true
    • idcsSearchable: true
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    allowedScopes List<DomainsAppAllowedScope>

    (Updatable) A list of scopes (exposed by this App or by other Apps) that this App is allowed to access when it acts as an OAuthClient.

    SCIM++ Properties:

    • caseExact: true
    • idcsCompositeKey: [fqs]
    • idcsSearchable: true
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    • uniqueness: none
    allowedTags List<DomainsAppAllowedTag>

    (Updatable) A list of tags, acting as an OAuthClient, this App is allowed to access.

    Added In: 17.4.6

    SCIM++ Properties:

    • idcsCompositeKey: [key, value]
    • idcsSearchable: true
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    • uniqueness: none
    appIcon String

    (Updatable) Application icon.

    SCIM++ Properties:

    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: request
    • type: string
    • uniqueness: none
    appSignonPolicy DomainsAppAppSignonPolicy

    (Updatable) App Sign-on Policy.

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    appThumbnail String

    (Updatable) Application thumbnail.

    SCIM++ Properties:

    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: request
    • type: string
    • uniqueness: none
    appsNetworkPerimeters List<DomainsAppAppsNetworkPerimeter>

    (Updatable) Network Perimeter

    Added In: 2010242156

    SCIM++ Properties:

    • idcsCompositeKey: [value]
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    asOpcService DomainsAppAsOpcService

    (Updatable) OPCService facet of the application.

    Deprecated Since: 17.3.4

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    attrRenderingMetadatas List<DomainsAppAttrRenderingMetadata>

    (Updatable) Label for the attribute to be shown in the UI.

    SCIM++ Properties:

    • idcsCompositeKey: [name]
    • idcsSearchable: false
    • multiValued: true
    • mutability: immutable
    • required: false
    • returned: default
    • type: complex
    • uniqueness: none
    attributeSets List<String>
    (Updatable) A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If 'attributes' query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.
    attributes String
    (Updatable) A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.
    audience String

    (Updatable) The base URI for all of the scopes defined in this App. The value of 'audience' is combined with the 'value' of each scope to form an 'fqs' or fully qualified scope.

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    authorization String
    (Updatable) The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.
    bypassConsent Boolean

    (Updatable) If true, indicates that consent should be skipped for all scopes

    Added In: 19.2.1

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    certificates List<DomainsAppCertificate>

    (Updatable) Each value of this attribute represent a certificate that this App uses when it acts as an OAuthClient.

    SCIM++ Properties:

    • caseExact: false
    • idcsCompositeKey: [certAlias]
    • idcsSearchable: false
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    • uniqueness: none
    clientIpChecking String

    (Updatable) Network Perimeters checking mode

    Added In: 2010242156

    SCIM++ Properties:

    • caseExact: true
    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    clientType String

    (Updatable) Specifies the type of access that this App has when it acts as an OAuthClient.

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    contactEmailAddress String

    (Updatable) Contact Email Address

    Added In: 19.2.1

    SCIM++ Properties:

    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    delegatedServiceNames List<String>

    (Updatable) Service Names allow to use Oracle Cloud Infrastructure signature for client authentication instead of client credentials

    Added In: 2207040824

    SCIM++ Properties:

    • caseExact: true
    • idcsSearchable: false
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    description String

    (Updatable) Description of the application.

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    disableKmsiTokenAuthentication Boolean

    (Updatable) Indicates whether the application is allowed to be access using kmsi token.

    Added In: 2111190457

    SCIM++ Properties:

    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: always
    • type: boolean
    • uniqueness: none
    errorPageUrl String

    (Updatable) This attribute specifies the URL of the page to which an application will redirect an end-user in case of error.

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    homePageUrl String

    (Updatable) Home Page URL

    Added In: 19.2.1

    SCIM++ Properties:

    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    icon String

    (Updatable) URL of application icon.

    SCIM++ Properties:

    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: reference
    • uniqueness: none
    idTokenEncAlgo String

    (Updatable) Encryption Alogrithm to use for encrypting ID token.

    Added In: 2010242156

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    identityProviders List<DomainsAppProvider>

    (Updatable) A list of IdentityProvider assigned to app. A user trying to access this app will be automatically redirected to configured IdP during the authentication phase, before being able to access App.

    SCIM++ Properties:

    • idcsCompositeKey: [value]
    • idcsSearchable: false
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: request
    • type: complex
    idpPolicy DomainsAppIdpPolicy

    (Updatable) IDP Policy.

    Added In: 18.1.2

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    isAliasApp Boolean

    If true, this App is an AliasApp and it cannot be granted to an end-user directly.

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: immutable
    • required: false
    • returned: always
    • type: boolean
    • uniqueness: none
    isEnterpriseApp Boolean

    (Updatable) If true, this app acts as Enterprise app with Authentication and URL Authz policy.

    Added In: 19.2.1

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    isFormFill Boolean

    (Updatable) If true, this application acts as FormFill Application

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    isKerberosRealm Boolean

    (Updatable) If true, indicates that this App supports Kerberos Authentication

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    isLoginTarget Boolean

    (Updatable) If true, this App allows runtime services to log end users into this App automatically.

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    isMobileTarget Boolean

    (Updatable) If true, indicates that the App should be visible in each end-user's mobile application.

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    isMulticloudServiceApp Boolean

    (Updatable) If true, indicates the app is used for multicloud service integration.

    Added In: 2301202328

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: immutable
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    isOauthClient Boolean

    (Updatable) If true, this application acts as an OAuth Client

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    isOauthResource Boolean

    (Updatable) If true, indicates that this application acts as an OAuth Resource.

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    isObligationCapable Boolean

    (Updatable) This flag indicates if the App is capable of validating obligations with the token for allowing access to the App.

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    isRadiusApp Boolean

    (Updatable) If true, this application acts as an Radius App

    Added In: 20.1.3

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    isSamlServiceProvider Boolean

    (Updatable) If true, then this App acts as a SAML Service Provider.

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    isUnmanagedApp Boolean

    If true, indicates that this application accepts an Oracle Cloud Identity Service User as a login-identity (does not require an account) and relies for authorization on the User's memberships in AppRoles.

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: immutable
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    isWebTierPolicy Boolean

    (Updatable) If true, the webtier policy is active

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    landingPageUrl String

    (Updatable) The URL of the landing page for this App, which is the first page that an end user should see if runtime services log that end user in to this App automatically.

    SCIM++ Properties:

    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    linkingCallbackUrl String

    (Updatable) This attribute specifies the callback URL for the social linking operation.

    Added In: 18.2.4

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    loginMechanism String

    (Updatable) The protocol that runtime services will use to log end users in to this App automatically. If 'OIDC', then runtime services use the OpenID Connect protocol. If 'SAML', then runtime services use Security Assertion Markup Language protocol.

    SCIM++ Properties:

    • caseExact: true
    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    loginPageUrl String

    (Updatable) This attribute specifies the URL of the page that the App uses when an end-user signs in to that App.

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    logoutPageUrl String

    (Updatable) This attribute specifies the URL of the page that the App uses when an end-user signs out.

    Added In: 17.4.2

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    logoutUri String

    (Updatable) OAuth will use this URI to logout if this App wants to participate in SSO, and if this App's session gets cleared as part of global logout. Note: This attribute is used only if this App acts as an OAuthClient.

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    name String

    Name of the application. Also serves as username if the application authenticates to Oracle Public Cloud infrastructure. This name may not be user-friendly and cannot be changed once an App is created.

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: true
    • multiValued: false
    • mutability: immutable
    • required: false
    • returned: default
    • type: string
    • uniqueness: server
    ocid String

    (Updatable) Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.

    SCIM++ Properties:

    • caseExact: true
    • idcsSearchable: true
    • multiValued: false
    • mutability: immutable
    • required: false
    • returned: default
    • type: string
    • uniqueness: global
    postLogoutRedirectUris List<String>

    (Updatable) Each value of this attribute is the URI of a landing page within this App. It is used only when this App, acting as an OAuthClient, initiates the logout flow and wants to be redirected back to one of its landing pages.

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    privacyPolicyUrl String

    (Updatable) Privacy Policy URL

    Added In: 19.2.1

    SCIM++ Properties:

    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    productLogoUrl String

    (Updatable) Application Logo URL

    Added In: 19.2.1

    SCIM++ Properties:

    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    productName String

    (Updatable) Product Name

    Added In: 19.2.1

    SCIM++ Properties:

    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    protectableSecondaryAudiences List<DomainsAppProtectableSecondaryAudience>

    (Updatable) A list of secondary audiences--additional URIs to be added automatically to any OAuth token that allows access to this App. Note: This attribute is used mainly for backward compatibility in certain Oracle Public Cloud Apps.

    Added In: 18.2.2

    SCIM++ Properties:

    • caseExact: false
    • idcsCompositeKey: [value]
    • idcsSearchable: false
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    • uniqueness: none
    radiusPolicy DomainsAppRadiusPolicy

    (Updatable) RADIUS Policy assigned to this application.

    Added In: 2209070044

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    redirectUris List<String>

    (Updatable) OPTIONAL. Each value is a URI within this App. This attribute is required when this App acts as an OAuthClient and is involved in three-legged flows (authorization-code flows).

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    refreshTokenExpiry Integer

    (Updatable) Expiry-time in seconds for a Refresh Token. Any token that allows access to this App, once refreshed, will expire after the specified duration.

    SCIM++ Properties:

    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: integer
    • uniqueness: none
    resourceTypeSchemaVersion String
    (Updatable) An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.
    samlServiceProvider DomainsAppSamlServiceProvider

    (Updatable) An attribute that refers to the SAML Service Provider that runtime services will use to log an end user in to this App automatically. Note that this will be used only if the loginMechanism is 'SAML'.

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    • uniqueness: none
    scopes List<DomainsAppScope>

    (Updatable) Scopes defined by this App. Used when this App acts as an OAuth Resource.

    SCIM++ Properties:

    • caseExact: true
    • idcsCompositeKey: [value]
    • idcsSearchable: true
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    • uniqueness: none
    secondaryAudiences List<String>

    (Updatable) A list of secondary audiences--additional URIs to be added automatically to any OAuth token that allows access to this App. Note: This attribute is used mainly for backward compatibility in certain Oracle Public Cloud Apps.

    Deprecated Since: 18.2.6

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    serviceParams List<DomainsAppServiceParam>

    (Updatable) Custom attribute that is required to compute other attribute values during app creation.

    SCIM++ Properties:

    • idcsCompositeKey: [name]
    • idcsSearchable: false
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: always
    • type: complex
    • uniqueness: none
    serviceTypeUrn String

    (Updatable) This Uniform Resource Name (URN) value identifies the type of Oracle Public Cloud service of which this app is an instance.

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    serviceTypeVersion String

    (Updatable) This value specifies the version of the Oracle Public Cloud service of which this App is an instance

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    showInMyApps Boolean

    (Updatable) If true, this app will be displayed in the MyApps page of each end-user who has access to the App.

    Added In: 18.1.2

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    signonPolicy DomainsAppSignonPolicy

    (Updatable) Sign-on Policy.

    Deprecated Since: 17.3.4

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    tags List<DomainsAppTag>

    (Updatable) A list of tags on this resource.

    SCIM++ Properties:

    • idcsCompositeKey: [key, value]
    • idcsSearchable: true
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: request
    • type: complex
    • uniqueness: none
    termsOfServiceUrl String

    (Updatable) Terms of Service URL

    Added In: 19.2.1

    SCIM++ Properties:

    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    termsOfUse DomainsAppTermsOfUse

    (Updatable) Terms Of Use.

    Added In: 18.2.6

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    trustPolicies List<DomainsAppTrustPolicy>

    (Updatable) Trust Policies.

    SCIM++ Properties:

    • idcsCompositeKey: [value]
    • idcsSearchable: true
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    trustScope String

    (Updatable) Indicates the scope of trust for this App when acting as an OAuthClient. A value of 'Explicit' indicates that the App is allowed to access only the scopes of OAuthResources that are explicitly specified as 'allowedScopes'. A value of 'Account' indicates that the App is allowed implicitly to access any scope of any OAuthResource within the same Oracle Cloud Account. A value of 'Tags' indicates that the App is allowed to access any scope of any OAuthResource with a matching tag within the same Oracle Cloud Account. A value of 'Default' indicates that the Tenant default trust scope configured in the Tenant Settings is used.

    Added In: 17.4.2

    SCIM++ Properties:

    • caseExact: true
    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    urnietfparamsscimschemasoracleidcsextensionOciTags DomainsAppUrnietfparamsscimschemasoracleidcsextensionOciTags
    (Updatable) Oracle Cloud Infrastructure Tags.
    urnietfparamsscimschemasoracleidcsextensiondbcsApp DomainsAppUrnietfparamsscimschemasoracleidcsextensiondbcsApp
    (Updatable) This extension provides attributes for database service facet of an App
    urnietfparamsscimschemasoracleidcsextensionenterpriseAppApp DomainsAppUrnietfparamsscimschemasoracleidcsextensionenterpriseAppApp
    (Updatable) This extension defines the Enterprise App related attributes.
    urnietfparamsscimschemasoracleidcsextensionformFillAppApp DomainsAppUrnietfparamsscimschemasoracleidcsextensionformFillAppApp
    (Updatable) This extension provides attributes for Form-Fill facet of App
    urnietfparamsscimschemasoracleidcsextensionformFillAppTemplateAppTemplate DomainsAppUrnietfparamsscimschemasoracleidcsextensionformFillAppTemplateAppTemplate
    (Updatable) This extension provides attributes for Form-Fill facet of AppTemplate
    urnietfparamsscimschemasoracleidcsextensionkerberosRealmApp DomainsAppUrnietfparamsscimschemasoracleidcsextensionkerberosRealmApp
    (Updatable) Kerberos Realm
    urnietfparamsscimschemasoracleidcsextensionmanagedappApp DomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappApp
    (Updatable) Managed App
    urnietfparamsscimschemasoracleidcsextensionmulticloudServiceAppApp DomainsAppUrnietfparamsscimschemasoracleidcsextensionmulticloudServiceAppApp
    (Updatable) This extension defines attributes specific to Apps that represent instances of Multicloud Service App
    urnietfparamsscimschemasoracleidcsextensionopcServiceApp DomainsAppUrnietfparamsscimschemasoracleidcsextensionopcServiceApp
    (Updatable) This extension defines attributes specific to Apps that represent instances of an Oracle Public Cloud (OPC) service.
    urnietfparamsscimschemasoracleidcsextensionradiusAppApp DomainsAppUrnietfparamsscimschemasoracleidcsextensionradiusAppApp
    (Updatable) This extension defines attributes specific to Apps that represent instances of Radius App.
    urnietfparamsscimschemasoracleidcsextensionrequestableApp DomainsAppUrnietfparamsscimschemasoracleidcsextensionrequestableApp
    (Updatable) Requestable App
    urnietfparamsscimschemasoracleidcsextensionsamlServiceProviderApp DomainsAppUrnietfparamsscimschemasoracleidcsextensionsamlServiceProviderApp
    (Updatable) This extension defines attributes related to the Service Providers configuration.
    urnietfparamsscimschemasoracleidcsextensionwebTierPolicyApp DomainsAppUrnietfparamsscimschemasoracleidcsextensionwebTierPolicyApp
    (Updatable) WebTier Policy
    basedOnTemplate DomainsAppBasedOnTemplate

    (Updatable) Application template on which the application is based.

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: immutable
    • required: true
    • returned: default
    • type: complex
    displayName string

    (Updatable) Display name of the application. Display name is intended to be user-friendly, and an administrator can change the value at any time.

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: true
    • returned: always
    • type: string
    • uniqueness: server
    idcsEndpoint string
    The basic endpoint for the identity domain
    schemas string[]

    (Updatable) REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard "enterprise" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: true
    • mutability: readWrite
    • required: true
    • returned: default
    • type: string
    • uniqueness: none
    accessTokenExpiry number

    (Updatable) Expiry-time in seconds for an Access Token. Any token that allows access to this App will expire after the specified duration.

    SCIM++ Properties:

    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: integer
    • uniqueness: none
    active boolean

    (Updatable) If true, this App is able to participate in runtime services, such as automatic-login, OAuth, and SAML. If false, all runtime services are disabled for this App, and only administrative operations can be performed.

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    aliasApps DomainsAppAliasApp[]

    (Updatable) Each value of this internal attribute refers to an Oracle Public Cloud infrastructure App on which this App depends.

    SCIM++ Properties:

    • caseExact: true
    • idcsCompositeKey: [value]
    • idcsSearchable: true
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    • uniqueness: none
    allUrlSchemesAllowed boolean

    (Updatable) If true, indicates that the system should allow all URL-schemes within each value of the 'redirectUris' attribute. Also indicates that the system should not attempt to confirm that each value of the 'redirectUris' attribute is a valid URI. In particular, the system should not confirm that the domain component of the URI is a top-level domain and the system should not confirm that the hostname portion is a valid system that is reachable over the network.

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    allowAccessControl boolean

    (Updatable) If true, any managed App that is based on this template is checked for access control that is, access to this app is subject to successful authorization at SSO service, viz. app grants to start with.

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    allowOffline boolean

    (Updatable) If true, indicates that the Refresh Token is allowed when this App acts as an OAuth Resource.

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    allowedGrants string[]

    (Updatable) List of grant-types that this App is allowed to use when it acts as an OAuthClient.

    SCIM++ Properties:

    • caseExact: true
    • idcsSearchable: true
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    allowedOperations string[]

    (Updatable) OPTIONAL. Required only when this App acts as an OAuthClient. Supported values are 'introspect' and 'onBehalfOfUser'. The value 'introspect' allows the client to look inside the access-token. The value 'onBehalfOfUser' overrides how the client's privileges are combined with the privileges of the Subject User. Ordinarily, authorization calculates the set of effective privileges as the intersection of the client's privileges and the user's privileges. The value 'onBehalfOf' indicates that authorization should ignore the privileges of the client and use only the user's privileges to calculate the effective privileges.

    SCIM++ Properties:

    • caseExact: true
    • idcsSearchable: true
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    allowedScopes DomainsAppAllowedScope[]

    (Updatable) A list of scopes (exposed by this App or by other Apps) that this App is allowed to access when it acts as an OAuthClient.

    SCIM++ Properties:

    • caseExact: true
    • idcsCompositeKey: [fqs]
    • idcsSearchable: true
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    • uniqueness: none
    allowedTags DomainsAppAllowedTag[]

    (Updatable) A list of tags, acting as an OAuthClient, this App is allowed to access.

    Added In: 17.4.6

    SCIM++ Properties:

    • idcsCompositeKey: [key, value]
    • idcsSearchable: true
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    • uniqueness: none
    appIcon string

    (Updatable) Application icon.

    SCIM++ Properties:

    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: request
    • type: string
    • uniqueness: none
    appSignonPolicy DomainsAppAppSignonPolicy

    (Updatable) App Sign-on Policy.

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    appThumbnail string

    (Updatable) Application thumbnail.

    SCIM++ Properties:

    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: request
    • type: string
    • uniqueness: none
    appsNetworkPerimeters DomainsAppAppsNetworkPerimeter[]

    (Updatable) Network Perimeter

    Added In: 2010242156

    SCIM++ Properties:

    • idcsCompositeKey: [value]
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    asOpcService DomainsAppAsOpcService

    (Updatable) OPCService facet of the application.

    Deprecated Since: 17.3.4

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    attrRenderingMetadatas DomainsAppAttrRenderingMetadata[]

    (Updatable) Label for the attribute to be shown in the UI.

    SCIM++ Properties:

    • idcsCompositeKey: [name]
    • idcsSearchable: false
    • multiValued: true
    • mutability: immutable
    • required: false
    • returned: default
    • type: complex
    • uniqueness: none
    attributeSets string[]
    (Updatable) A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If 'attributes' query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.
    attributes string
    (Updatable) A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.
    audience string

    (Updatable) The base URI for all of the scopes defined in this App. The value of 'audience' is combined with the 'value' of each scope to form an 'fqs' or fully qualified scope.

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    authorization string
    (Updatable) The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.
    bypassConsent boolean

    (Updatable) If true, indicates that consent should be skipped for all scopes

    Added In: 19.2.1

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    certificates DomainsAppCertificate[]

    (Updatable) Each value of this attribute represent a certificate that this App uses when it acts as an OAuthClient.

    SCIM++ Properties:

    • caseExact: false
    • idcsCompositeKey: [certAlias]
    • idcsSearchable: false
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    • uniqueness: none
    clientIpChecking string

    (Updatable) Network Perimeters checking mode

    Added In: 2010242156

    SCIM++ Properties:

    • caseExact: true
    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    clientType string

    (Updatable) Specifies the type of access that this App has when it acts as an OAuthClient.

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    contactEmailAddress string

    (Updatable) Contact Email Address

    Added In: 19.2.1

    SCIM++ Properties:

    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    delegatedServiceNames string[]

    (Updatable) Service Names allow to use Oracle Cloud Infrastructure signature for client authentication instead of client credentials

    Added In: 2207040824

    SCIM++ Properties:

    • caseExact: true
    • idcsSearchable: false
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    description string

    (Updatable) Description of the application.

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    disableKmsiTokenAuthentication boolean

    (Updatable) Indicates whether the application is allowed to be access using kmsi token.

    Added In: 2111190457

    SCIM++ Properties:

    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: always
    • type: boolean
    • uniqueness: none
    errorPageUrl string

    (Updatable) This attribute specifies the URL of the page to which an application will redirect an end-user in case of error.

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    homePageUrl string

    (Updatable) Home Page URL

    Added In: 19.2.1

    SCIM++ Properties:

    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    icon string

    (Updatable) URL of application icon.

    SCIM++ Properties:

    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: reference
    • uniqueness: none
    idTokenEncAlgo string

    (Updatable) Encryption Alogrithm to use for encrypting ID token.

    Added In: 2010242156

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    identityProviders DomainsAppIdentityProvider[]

    (Updatable) A list of IdentityProvider assigned to app. A user trying to access this app will be automatically redirected to configured IdP during the authentication phase, before being able to access App.

    SCIM++ Properties:

    • idcsCompositeKey: [value]
    • idcsSearchable: false
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: request
    • type: complex
    idpPolicy DomainsAppIdpPolicy

    (Updatable) IDP Policy.

    Added In: 18.1.2

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    isAliasApp boolean

    If true, this App is an AliasApp and it cannot be granted to an end-user directly.

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: immutable
    • required: false
    • returned: always
    • type: boolean
    • uniqueness: none
    isEnterpriseApp boolean

    (Updatable) If true, this app acts as Enterprise app with Authentication and URL Authz policy.

    Added In: 19.2.1

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    isFormFill boolean

    (Updatable) If true, this application acts as FormFill Application

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    isKerberosRealm boolean

    (Updatable) If true, indicates that this App supports Kerberos Authentication

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    isLoginTarget boolean

    (Updatable) If true, this App allows runtime services to log end users into this App automatically.

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    isMobileTarget boolean

    (Updatable) If true, indicates that the App should be visible in each end-user's mobile application.

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    isMulticloudServiceApp boolean

    (Updatable) If true, indicates the app is used for multicloud service integration.

    Added In: 2301202328

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: immutable
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    isOauthClient boolean

    (Updatable) If true, this application acts as an OAuth Client

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    isOauthResource boolean

    (Updatable) If true, indicates that this application acts as an OAuth Resource.

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    isObligationCapable boolean

    (Updatable) This flag indicates if the App is capable of validating obligations with the token for allowing access to the App.

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    isRadiusApp boolean

    (Updatable) If true, this application acts as an Radius App

    Added In: 20.1.3

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    isSamlServiceProvider boolean

    (Updatable) If true, then this App acts as a SAML Service Provider.

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    isUnmanagedApp boolean

    If true, indicates that this application accepts an Oracle Cloud Identity Service User as a login-identity (does not require an account) and relies for authorization on the User's memberships in AppRoles.

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: immutable
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    isWebTierPolicy boolean

    (Updatable) If true, the webtier policy is active

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    landingPageUrl string

    (Updatable) The URL of the landing page for this App, which is the first page that an end user should see if runtime services log that end user in to this App automatically.

    SCIM++ Properties:

    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    linkingCallbackUrl string

    (Updatable) This attribute specifies the callback URL for the social linking operation.

    Added In: 18.2.4

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    loginMechanism string

    (Updatable) The protocol that runtime services will use to log end users in to this App automatically. If 'OIDC', then runtime services use the OpenID Connect protocol. If 'SAML', then runtime services use Security Assertion Markup Language protocol.

    SCIM++ Properties:

    • caseExact: true
    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    loginPageUrl string

    (Updatable) This attribute specifies the URL of the page that the App uses when an end-user signs in to that App.

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    logoutPageUrl string

    (Updatable) This attribute specifies the URL of the page that the App uses when an end-user signs out.

    Added In: 17.4.2

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    logoutUri string

    (Updatable) OAuth will use this URI to logout if this App wants to participate in SSO, and if this App's session gets cleared as part of global logout. Note: This attribute is used only if this App acts as an OAuthClient.

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    name string

    Name of the application. Also serves as username if the application authenticates to Oracle Public Cloud infrastructure. This name may not be user-friendly and cannot be changed once an App is created.

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: true
    • multiValued: false
    • mutability: immutable
    • required: false
    • returned: default
    • type: string
    • uniqueness: server
    ocid string

    (Updatable) Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.

    SCIM++ Properties:

    • caseExact: true
    • idcsSearchable: true
    • multiValued: false
    • mutability: immutable
    • required: false
    • returned: default
    • type: string
    • uniqueness: global
    postLogoutRedirectUris string[]

    (Updatable) Each value of this attribute is the URI of a landing page within this App. It is used only when this App, acting as an OAuthClient, initiates the logout flow and wants to be redirected back to one of its landing pages.

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    privacyPolicyUrl string

    (Updatable) Privacy Policy URL

    Added In: 19.2.1

    SCIM++ Properties:

    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    productLogoUrl string

    (Updatable) Application Logo URL

    Added In: 19.2.1

    SCIM++ Properties:

    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    productName string

    (Updatable) Product Name

    Added In: 19.2.1

    SCIM++ Properties:

    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    protectableSecondaryAudiences DomainsAppProtectableSecondaryAudience[]

    (Updatable) A list of secondary audiences--additional URIs to be added automatically to any OAuth token that allows access to this App. Note: This attribute is used mainly for backward compatibility in certain Oracle Public Cloud Apps.

    Added In: 18.2.2

    SCIM++ Properties:

    • caseExact: false
    • idcsCompositeKey: [value]
    • idcsSearchable: false
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    • uniqueness: none
    radiusPolicy DomainsAppRadiusPolicy

    (Updatable) RADIUS Policy assigned to this application.

    Added In: 2209070044

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    redirectUris string[]

    (Updatable) OPTIONAL. Each value is a URI within this App. This attribute is required when this App acts as an OAuthClient and is involved in three-legged flows (authorization-code flows).

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    refreshTokenExpiry number

    (Updatable) Expiry-time in seconds for a Refresh Token. Any token that allows access to this App, once refreshed, will expire after the specified duration.

    SCIM++ Properties:

    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: integer
    • uniqueness: none
    resourceTypeSchemaVersion string
    (Updatable) An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.
    samlServiceProvider DomainsAppSamlServiceProvider

    (Updatable) An attribute that refers to the SAML Service Provider that runtime services will use to log an end user in to this App automatically. Note that this will be used only if the loginMechanism is 'SAML'.

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    • uniqueness: none
    scopes DomainsAppScope[]

    (Updatable) Scopes defined by this App. Used when this App acts as an OAuth Resource.

    SCIM++ Properties:

    • caseExact: true
    • idcsCompositeKey: [value]
    • idcsSearchable: true
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    • uniqueness: none
    secondaryAudiences string[]

    (Updatable) A list of secondary audiences--additional URIs to be added automatically to any OAuth token that allows access to this App. Note: This attribute is used mainly for backward compatibility in certain Oracle Public Cloud Apps.

    Deprecated Since: 18.2.6

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    serviceParams DomainsAppServiceParam[]

    (Updatable) Custom attribute that is required to compute other attribute values during app creation.

    SCIM++ Properties:

    • idcsCompositeKey: [name]
    • idcsSearchable: false
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: always
    • type: complex
    • uniqueness: none
    serviceTypeUrn string

    (Updatable) This Uniform Resource Name (URN) value identifies the type of Oracle Public Cloud service of which this app is an instance.

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    serviceTypeVersion string

    (Updatable) This value specifies the version of the Oracle Public Cloud service of which this App is an instance

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    showInMyApps boolean

    (Updatable) If true, this app will be displayed in the MyApps page of each end-user who has access to the App.

    Added In: 18.1.2

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    signonPolicy DomainsAppSignonPolicy

    (Updatable) Sign-on Policy.

    Deprecated Since: 17.3.4

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    tags DomainsAppTag[]

    (Updatable) A list of tags on this resource.

    SCIM++ Properties:

    • idcsCompositeKey: [key, value]
    • idcsSearchable: true
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: request
    • type: complex
    • uniqueness: none
    termsOfServiceUrl string

    (Updatable) Terms of Service URL

    Added In: 19.2.1

    SCIM++ Properties:

    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    termsOfUse DomainsAppTermsOfUse

    (Updatable) Terms Of Use.

    Added In: 18.2.6

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    trustPolicies DomainsAppTrustPolicy[]

    (Updatable) Trust Policies.

    SCIM++ Properties:

    • idcsCompositeKey: [value]
    • idcsSearchable: true
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    trustScope string

    (Updatable) Indicates the scope of trust for this App when acting as an OAuthClient. A value of 'Explicit' indicates that the App is allowed to access only the scopes of OAuthResources that are explicitly specified as 'allowedScopes'. A value of 'Account' indicates that the App is allowed implicitly to access any scope of any OAuthResource within the same Oracle Cloud Account. A value of 'Tags' indicates that the App is allowed to access any scope of any OAuthResource with a matching tag within the same Oracle Cloud Account. A value of 'Default' indicates that the Tenant default trust scope configured in the Tenant Settings is used.

    Added In: 17.4.2

    SCIM++ Properties:

    • caseExact: true
    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    urnietfparamsscimschemasoracleidcsextensionOciTags DomainsAppUrnietfparamsscimschemasoracleidcsextensionOciTags
    (Updatable) Oracle Cloud Infrastructure Tags.
    urnietfparamsscimschemasoracleidcsextensiondbcsApp DomainsAppUrnietfparamsscimschemasoracleidcsextensiondbcsApp
    (Updatable) This extension provides attributes for database service facet of an App
    urnietfparamsscimschemasoracleidcsextensionenterpriseAppApp DomainsAppUrnietfparamsscimschemasoracleidcsextensionenterpriseAppApp
    (Updatable) This extension defines the Enterprise App related attributes.
    urnietfparamsscimschemasoracleidcsextensionformFillAppApp DomainsAppUrnietfparamsscimschemasoracleidcsextensionformFillAppApp
    (Updatable) This extension provides attributes for Form-Fill facet of App
    urnietfparamsscimschemasoracleidcsextensionformFillAppTemplateAppTemplate DomainsAppUrnietfparamsscimschemasoracleidcsextensionformFillAppTemplateAppTemplate
    (Updatable) This extension provides attributes for Form-Fill facet of AppTemplate
    urnietfparamsscimschemasoracleidcsextensionkerberosRealmApp DomainsAppUrnietfparamsscimschemasoracleidcsextensionkerberosRealmApp
    (Updatable) Kerberos Realm
    urnietfparamsscimschemasoracleidcsextensionmanagedappApp DomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappApp
    (Updatable) Managed App
    urnietfparamsscimschemasoracleidcsextensionmulticloudServiceAppApp DomainsAppUrnietfparamsscimschemasoracleidcsextensionmulticloudServiceAppApp
    (Updatable) This extension defines attributes specific to Apps that represent instances of Multicloud Service App
    urnietfparamsscimschemasoracleidcsextensionopcServiceApp DomainsAppUrnietfparamsscimschemasoracleidcsextensionopcServiceApp
    (Updatable) This extension defines attributes specific to Apps that represent instances of an Oracle Public Cloud (OPC) service.
    urnietfparamsscimschemasoracleidcsextensionradiusAppApp DomainsAppUrnietfparamsscimschemasoracleidcsextensionradiusAppApp
    (Updatable) This extension defines attributes specific to Apps that represent instances of Radius App.
    urnietfparamsscimschemasoracleidcsextensionrequestableApp DomainsAppUrnietfparamsscimschemasoracleidcsextensionrequestableApp
    (Updatable) Requestable App
    urnietfparamsscimschemasoracleidcsextensionsamlServiceProviderApp DomainsAppUrnietfparamsscimschemasoracleidcsextensionsamlServiceProviderApp
    (Updatable) This extension defines attributes related to the Service Providers configuration.
    urnietfparamsscimschemasoracleidcsextensionwebTierPolicyApp DomainsAppUrnietfparamsscimschemasoracleidcsextensionwebTierPolicyApp
    (Updatable) WebTier Policy
    based_on_template identity.DomainsAppBasedOnTemplateArgs

    (Updatable) Application template on which the application is based.

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: immutable
    • required: true
    • returned: default
    • type: complex
    display_name str

    (Updatable) Display name of the application. Display name is intended to be user-friendly, and an administrator can change the value at any time.

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: true
    • returned: always
    • type: string
    • uniqueness: server
    idcs_endpoint str
    The basic endpoint for the identity domain
    schemas Sequence[str]

    (Updatable) REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard "enterprise" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: true
    • mutability: readWrite
    • required: true
    • returned: default
    • type: string
    • uniqueness: none
    access_token_expiry int

    (Updatable) Expiry-time in seconds for an Access Token. Any token that allows access to this App will expire after the specified duration.

    SCIM++ Properties:

    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: integer
    • uniqueness: none
    active bool

    (Updatable) If true, this App is able to participate in runtime services, such as automatic-login, OAuth, and SAML. If false, all runtime services are disabled for this App, and only administrative operations can be performed.

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    alias_apps Sequence[identity.DomainsAppAliasAppArgs]

    (Updatable) Each value of this internal attribute refers to an Oracle Public Cloud infrastructure App on which this App depends.

    SCIM++ Properties:

    • caseExact: true
    • idcsCompositeKey: [value]
    • idcsSearchable: true
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    • uniqueness: none
    all_url_schemes_allowed bool

    (Updatable) If true, indicates that the system should allow all URL-schemes within each value of the 'redirectUris' attribute. Also indicates that the system should not attempt to confirm that each value of the 'redirectUris' attribute is a valid URI. In particular, the system should not confirm that the domain component of the URI is a top-level domain and the system should not confirm that the hostname portion is a valid system that is reachable over the network.

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    allow_access_control bool

    (Updatable) If true, any managed App that is based on this template is checked for access control that is, access to this app is subject to successful authorization at SSO service, viz. app grants to start with.

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    allow_offline bool

    (Updatable) If true, indicates that the Refresh Token is allowed when this App acts as an OAuth Resource.

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    allowed_grants Sequence[str]

    (Updatable) List of grant-types that this App is allowed to use when it acts as an OAuthClient.

    SCIM++ Properties:

    • caseExact: true
    • idcsSearchable: true
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    allowed_operations Sequence[str]

    (Updatable) OPTIONAL. Required only when this App acts as an OAuthClient. Supported values are 'introspect' and 'onBehalfOfUser'. The value 'introspect' allows the client to look inside the access-token. The value 'onBehalfOfUser' overrides how the client's privileges are combined with the privileges of the Subject User. Ordinarily, authorization calculates the set of effective privileges as the intersection of the client's privileges and the user's privileges. The value 'onBehalfOf' indicates that authorization should ignore the privileges of the client and use only the user's privileges to calculate the effective privileges.

    SCIM++ Properties:

    • caseExact: true
    • idcsSearchable: true
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    allowed_scopes Sequence[identity.DomainsAppAllowedScopeArgs]

    (Updatable) A list of scopes (exposed by this App or by other Apps) that this App is allowed to access when it acts as an OAuthClient.

    SCIM++ Properties:

    • caseExact: true
    • idcsCompositeKey: [fqs]
    • idcsSearchable: true
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    • uniqueness: none
    allowed_tags Sequence[identity.DomainsAppAllowedTagArgs]

    (Updatable) A list of tags, acting as an OAuthClient, this App is allowed to access.

    Added In: 17.4.6

    SCIM++ Properties:

    • idcsCompositeKey: [key, value]
    • idcsSearchable: true
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    • uniqueness: none
    app_icon str

    (Updatable) Application icon.

    SCIM++ Properties:

    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: request
    • type: string
    • uniqueness: none
    app_signon_policy identity.DomainsAppAppSignonPolicyArgs

    (Updatable) App Sign-on Policy.

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    app_thumbnail str

    (Updatable) Application thumbnail.

    SCIM++ Properties:

    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: request
    • type: string
    • uniqueness: none
    apps_network_perimeters Sequence[identity.DomainsAppAppsNetworkPerimeterArgs]

    (Updatable) Network Perimeter

    Added In: 2010242156

    SCIM++ Properties:

    • idcsCompositeKey: [value]
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    as_opc_service identity.DomainsAppAsOpcServiceArgs

    (Updatable) OPCService facet of the application.

    Deprecated Since: 17.3.4

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    attr_rendering_metadatas Sequence[identity.DomainsAppAttrRenderingMetadataArgs]

    (Updatable) Label for the attribute to be shown in the UI.

    SCIM++ Properties:

    • idcsCompositeKey: [name]
    • idcsSearchable: false
    • multiValued: true
    • mutability: immutable
    • required: false
    • returned: default
    • type: complex
    • uniqueness: none
    attribute_sets Sequence[str]
    (Updatable) A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If 'attributes' query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.
    attributes str
    (Updatable) A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.
    audience str

    (Updatable) The base URI for all of the scopes defined in this App. The value of 'audience' is combined with the 'value' of each scope to form an 'fqs' or fully qualified scope.

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    authorization str
    (Updatable) The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.
    bypass_consent bool

    (Updatable) If true, indicates that consent should be skipped for all scopes

    Added In: 19.2.1

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    certificates Sequence[identity.DomainsAppCertificateArgs]

    (Updatable) Each value of this attribute represent a certificate that this App uses when it acts as an OAuthClient.

    SCIM++ Properties:

    • caseExact: false
    • idcsCompositeKey: [certAlias]
    • idcsSearchable: false
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    • uniqueness: none
    client_ip_checking str

    (Updatable) Network Perimeters checking mode

    Added In: 2010242156

    SCIM++ Properties:

    • caseExact: true
    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    client_type str

    (Updatable) Specifies the type of access that this App has when it acts as an OAuthClient.

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    contact_email_address str

    (Updatable) Contact Email Address

    Added In: 19.2.1

    SCIM++ Properties:

    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    delegated_service_names Sequence[str]

    (Updatable) Service Names allow to use Oracle Cloud Infrastructure signature for client authentication instead of client credentials

    Added In: 2207040824

    SCIM++ Properties:

    • caseExact: true
    • idcsSearchable: false
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    description str

    (Updatable) Description of the application.

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    disable_kmsi_token_authentication bool

    (Updatable) Indicates whether the application is allowed to be access using kmsi token.

    Added In: 2111190457

    SCIM++ Properties:

    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: always
    • type: boolean
    • uniqueness: none
    error_page_url str

    (Updatable) This attribute specifies the URL of the page to which an application will redirect an end-user in case of error.

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    home_page_url str

    (Updatable) Home Page URL

    Added In: 19.2.1

    SCIM++ Properties:

    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    icon str

    (Updatable) URL of application icon.

    SCIM++ Properties:

    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: reference
    • uniqueness: none
    id_token_enc_algo str

    (Updatable) Encryption Alogrithm to use for encrypting ID token.

    Added In: 2010242156

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    identity_providers Sequence[identity.DomainsAppIdentityProviderArgs]

    (Updatable) A list of IdentityProvider assigned to app. A user trying to access this app will be automatically redirected to configured IdP during the authentication phase, before being able to access App.

    SCIM++ Properties:

    • idcsCompositeKey: [value]
    • idcsSearchable: false
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: request
    • type: complex
    idp_policy identity.DomainsAppIdpPolicyArgs

    (Updatable) IDP Policy.

    Added In: 18.1.2

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    is_alias_app bool

    If true, this App is an AliasApp and it cannot be granted to an end-user directly.

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: immutable
    • required: false
    • returned: always
    • type: boolean
    • uniqueness: none
    is_enterprise_app bool

    (Updatable) If true, this app acts as Enterprise app with Authentication and URL Authz policy.

    Added In: 19.2.1

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    is_form_fill bool

    (Updatable) If true, this application acts as FormFill Application

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    is_kerberos_realm bool

    (Updatable) If true, indicates that this App supports Kerberos Authentication

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    is_login_target bool

    (Updatable) If true, this App allows runtime services to log end users into this App automatically.

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    is_mobile_target bool

    (Updatable) If true, indicates that the App should be visible in each end-user's mobile application.

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    is_multicloud_service_app bool

    (Updatable) If true, indicates the app is used for multicloud service integration.

    Added In: 2301202328

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: immutable
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    is_oauth_client bool

    (Updatable) If true, this application acts as an OAuth Client

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    is_oauth_resource bool

    (Updatable) If true, indicates that this application acts as an OAuth Resource.

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    is_obligation_capable bool

    (Updatable) This flag indicates if the App is capable of validating obligations with the token for allowing access to the App.

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    is_radius_app bool

    (Updatable) If true, this application acts as an Radius App

    Added In: 20.1.3

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    is_saml_service_provider bool

    (Updatable) If true, then this App acts as a SAML Service Provider.

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    is_unmanaged_app bool

    If true, indicates that this application accepts an Oracle Cloud Identity Service User as a login-identity (does not require an account) and relies for authorization on the User's memberships in AppRoles.

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: immutable
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    is_web_tier_policy bool

    (Updatable) If true, the webtier policy is active

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    landing_page_url str

    (Updatable) The URL of the landing page for this App, which is the first page that an end user should see if runtime services log that end user in to this App automatically.

    SCIM++ Properties:

    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    linking_callback_url str

    (Updatable) This attribute specifies the callback URL for the social linking operation.

    Added In: 18.2.4

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    login_mechanism str

    (Updatable) The protocol that runtime services will use to log end users in to this App automatically. If 'OIDC', then runtime services use the OpenID Connect protocol. If 'SAML', then runtime services use Security Assertion Markup Language protocol.

    SCIM++ Properties:

    • caseExact: true
    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    login_page_url str

    (Updatable) This attribute specifies the URL of the page that the App uses when an end-user signs in to that App.

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    logout_page_url str

    (Updatable) This attribute specifies the URL of the page that the App uses when an end-user signs out.

    Added In: 17.4.2

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    logout_uri str

    (Updatable) OAuth will use this URI to logout if this App wants to participate in SSO, and if this App's session gets cleared as part of global logout. Note: This attribute is used only if this App acts as an OAuthClient.

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    name str

    Name of the application. Also serves as username if the application authenticates to Oracle Public Cloud infrastructure. This name may not be user-friendly and cannot be changed once an App is created.

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: true
    • multiValued: false
    • mutability: immutable
    • required: false
    • returned: default
    • type: string
    • uniqueness: server
    ocid str

    (Updatable) Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.

    SCIM++ Properties:

    • caseExact: true
    • idcsSearchable: true
    • multiValued: false
    • mutability: immutable
    • required: false
    • returned: default
    • type: string
    • uniqueness: global
    post_logout_redirect_uris Sequence[str]

    (Updatable) Each value of this attribute is the URI of a landing page within this App. It is used only when this App, acting as an OAuthClient, initiates the logout flow and wants to be redirected back to one of its landing pages.

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    privacy_policy_url str

    (Updatable) Privacy Policy URL

    Added In: 19.2.1

    SCIM++ Properties:

    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    product_logo_url str

    (Updatable) Application Logo URL

    Added In: 19.2.1

    SCIM++ Properties:

    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    product_name str

    (Updatable) Product Name

    Added In: 19.2.1

    SCIM++ Properties:

    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    protectable_secondary_audiences Sequence[identity.DomainsAppProtectableSecondaryAudienceArgs]

    (Updatable) A list of secondary audiences--additional URIs to be added automatically to any OAuth token that allows access to this App. Note: This attribute is used mainly for backward compatibility in certain Oracle Public Cloud Apps.

    Added In: 18.2.2

    SCIM++ Properties:

    • caseExact: false
    • idcsCompositeKey: [value]
    • idcsSearchable: false
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    • uniqueness: none
    radius_policy identity.DomainsAppRadiusPolicyArgs

    (Updatable) RADIUS Policy assigned to this application.

    Added In: 2209070044

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    redirect_uris Sequence[str]

    (Updatable) OPTIONAL. Each value is a URI within this App. This attribute is required when this App acts as an OAuthClient and is involved in three-legged flows (authorization-code flows).

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    refresh_token_expiry int

    (Updatable) Expiry-time in seconds for a Refresh Token. Any token that allows access to this App, once refreshed, will expire after the specified duration.

    SCIM++ Properties:

    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: integer
    • uniqueness: none
    resource_type_schema_version str
    (Updatable) An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.
    saml_service_provider identity.DomainsAppSamlServiceProviderArgs

    (Updatable) An attribute that refers to the SAML Service Provider that runtime services will use to log an end user in to this App automatically. Note that this will be used only if the loginMechanism is 'SAML'.

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    • uniqueness: none
    scopes Sequence[identity.DomainsAppScopeArgs]

    (Updatable) Scopes defined by this App. Used when this App acts as an OAuth Resource.

    SCIM++ Properties:

    • caseExact: true
    • idcsCompositeKey: [value]
    • idcsSearchable: true
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    • uniqueness: none
    secondary_audiences Sequence[str]

    (Updatable) A list of secondary audiences--additional URIs to be added automatically to any OAuth token that allows access to this App. Note: This attribute is used mainly for backward compatibility in certain Oracle Public Cloud Apps.

    Deprecated Since: 18.2.6

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    service_params Sequence[identity.DomainsAppServiceParamArgs]

    (Updatable) Custom attribute that is required to compute other attribute values during app creation.

    SCIM++ Properties:

    • idcsCompositeKey: [name]
    • idcsSearchable: false
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: always
    • type: complex
    • uniqueness: none
    service_type_urn str

    (Updatable) This Uniform Resource Name (URN) value identifies the type of Oracle Public Cloud service of which this app is an instance.

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    service_type_version str

    (Updatable) This value specifies the version of the Oracle Public Cloud service of which this App is an instance

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    show_in_my_apps bool

    (Updatable) If true, this app will be displayed in the MyApps page of each end-user who has access to the App.

    Added In: 18.1.2

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    signon_policy identity.DomainsAppSignonPolicyArgs

    (Updatable) Sign-on Policy.

    Deprecated Since: 17.3.4

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    tags Sequence[identity.DomainsAppTagArgs]

    (Updatable) A list of tags on this resource.

    SCIM++ Properties:

    • idcsCompositeKey: [key, value]
    • idcsSearchable: true
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: request
    • type: complex
    • uniqueness: none
    terms_of_service_url str

    (Updatable) Terms of Service URL

    Added In: 19.2.1

    SCIM++ Properties:

    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    terms_of_use identity.DomainsAppTermsOfUseArgs

    (Updatable) Terms Of Use.

    Added In: 18.2.6

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    trust_policies Sequence[identity.DomainsAppTrustPolicyArgs]

    (Updatable) Trust Policies.

    SCIM++ Properties:

    • idcsCompositeKey: [value]
    • idcsSearchable: true
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    trust_scope str

    (Updatable) Indicates the scope of trust for this App when acting as an OAuthClient. A value of 'Explicit' indicates that the App is allowed to access only the scopes of OAuthResources that are explicitly specified as 'allowedScopes'. A value of 'Account' indicates that the App is allowed implicitly to access any scope of any OAuthResource within the same Oracle Cloud Account. A value of 'Tags' indicates that the App is allowed to access any scope of any OAuthResource with a matching tag within the same Oracle Cloud Account. A value of 'Default' indicates that the Tenant default trust scope configured in the Tenant Settings is used.

    Added In: 17.4.2

    SCIM++ Properties:

    • caseExact: true
    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    urnietfparamsscimschemasoracleidcsextension_oci_tags identity.DomainsAppUrnietfparamsscimschemasoracleidcsextensionOciTagsArgs
    (Updatable) Oracle Cloud Infrastructure Tags.
    urnietfparamsscimschemasoracleidcsextensiondbcs_app identity.DomainsAppUrnietfparamsscimschemasoracleidcsextensiondbcsAppArgs
    (Updatable) This extension provides attributes for database service facet of an App
    urnietfparamsscimschemasoracleidcsextensionenterprise_app_app identity.DomainsAppUrnietfparamsscimschemasoracleidcsextensionenterpriseAppAppArgs
    (Updatable) This extension defines the Enterprise App related attributes.
    urnietfparamsscimschemasoracleidcsextensionform_fill_app_app identity.DomainsAppUrnietfparamsscimschemasoracleidcsextensionformFillAppAppArgs
    (Updatable) This extension provides attributes for Form-Fill facet of App
    urnietfparamsscimschemasoracleidcsextensionform_fill_app_template_app_template identity.DomainsAppUrnietfparamsscimschemasoracleidcsextensionformFillAppTemplateAppTemplateArgs
    (Updatable) This extension provides attributes for Form-Fill facet of AppTemplate
    urnietfparamsscimschemasoracleidcsextensionkerberos_realm_app identity.DomainsAppUrnietfparamsscimschemasoracleidcsextensionkerberosRealmAppArgs
    (Updatable) Kerberos Realm
    urnietfparamsscimschemasoracleidcsextensionmanagedapp_app identity.DomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppArgs
    (Updatable) Managed App
    urnietfparamsscimschemasoracleidcsextensionmulticloud_service_app_app identity.DomainsAppUrnietfparamsscimschemasoracleidcsextensionmulticloudServiceAppAppArgs
    (Updatable) This extension defines attributes specific to Apps that represent instances of Multicloud Service App
    urnietfparamsscimschemasoracleidcsextensionopc_service_app identity.DomainsAppUrnietfparamsscimschemasoracleidcsextensionopcServiceAppArgs
    (Updatable) This extension defines attributes specific to Apps that represent instances of an Oracle Public Cloud (OPC) service.
    urnietfparamsscimschemasoracleidcsextensionradius_app_app identity.DomainsAppUrnietfparamsscimschemasoracleidcsextensionradiusAppAppArgs
    (Updatable) This extension defines attributes specific to Apps that represent instances of Radius App.
    urnietfparamsscimschemasoracleidcsextensionrequestable_app identity.DomainsAppUrnietfparamsscimschemasoracleidcsextensionrequestableAppArgs
    (Updatable) Requestable App
    urnietfparamsscimschemasoracleidcsextensionsaml_service_provider_app identity.DomainsAppUrnietfparamsscimschemasoracleidcsextensionsamlServiceProviderAppArgs
    (Updatable) This extension defines attributes related to the Service Providers configuration.
    urnietfparamsscimschemasoracleidcsextensionweb_tier_policy_app identity.DomainsAppUrnietfparamsscimschemasoracleidcsextensionwebTierPolicyAppArgs
    (Updatable) WebTier Policy
    basedOnTemplate Property Map

    (Updatable) Application template on which the application is based.

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: immutable
    • required: true
    • returned: default
    • type: complex
    displayName String

    (Updatable) Display name of the application. Display name is intended to be user-friendly, and an administrator can change the value at any time.

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: true
    • returned: always
    • type: string
    • uniqueness: server
    idcsEndpoint String
    The basic endpoint for the identity domain
    schemas List<String>

    (Updatable) REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard "enterprise" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: true
    • mutability: readWrite
    • required: true
    • returned: default
    • type: string
    • uniqueness: none
    accessTokenExpiry Number

    (Updatable) Expiry-time in seconds for an Access Token. Any token that allows access to this App will expire after the specified duration.

    SCIM++ Properties:

    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: integer
    • uniqueness: none
    active Boolean

    (Updatable) If true, this App is able to participate in runtime services, such as automatic-login, OAuth, and SAML. If false, all runtime services are disabled for this App, and only administrative operations can be performed.

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    aliasApps List<Property Map>

    (Updatable) Each value of this internal attribute refers to an Oracle Public Cloud infrastructure App on which this App depends.

    SCIM++ Properties:

    • caseExact: true
    • idcsCompositeKey: [value]
    • idcsSearchable: true
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    • uniqueness: none
    allUrlSchemesAllowed Boolean

    (Updatable) If true, indicates that the system should allow all URL-schemes within each value of the 'redirectUris' attribute. Also indicates that the system should not attempt to confirm that each value of the 'redirectUris' attribute is a valid URI. In particular, the system should not confirm that the domain component of the URI is a top-level domain and the system should not confirm that the hostname portion is a valid system that is reachable over the network.

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    allowAccessControl Boolean

    (Updatable) If true, any managed App that is based on this template is checked for access control that is, access to this app is subject to successful authorization at SSO service, viz. app grants to start with.

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    allowOffline Boolean

    (Updatable) If true, indicates that the Refresh Token is allowed when this App acts as an OAuth Resource.

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    allowedGrants List<String>

    (Updatable) List of grant-types that this App is allowed to use when it acts as an OAuthClient.

    SCIM++ Properties:

    • caseExact: true
    • idcsSearchable: true
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    allowedOperations List<String>

    (Updatable) OPTIONAL. Required only when this App acts as an OAuthClient. Supported values are 'introspect' and 'onBehalfOfUser'. The value 'introspect' allows the client to look inside the access-token. The value 'onBehalfOfUser' overrides how the client's privileges are combined with the privileges of the Subject User. Ordinarily, authorization calculates the set of effective privileges as the intersection of the client's privileges and the user's privileges. The value 'onBehalfOf' indicates that authorization should ignore the privileges of the client and use only the user's privileges to calculate the effective privileges.

    SCIM++ Properties:

    • caseExact: true
    • idcsSearchable: true
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    allowedScopes List<Property Map>

    (Updatable) A list of scopes (exposed by this App or by other Apps) that this App is allowed to access when it acts as an OAuthClient.

    SCIM++ Properties:

    • caseExact: true
    • idcsCompositeKey: [fqs]
    • idcsSearchable: true
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    • uniqueness: none
    allowedTags List<Property Map>

    (Updatable) A list of tags, acting as an OAuthClient, this App is allowed to access.

    Added In: 17.4.6

    SCIM++ Properties:

    • idcsCompositeKey: [key, value]
    • idcsSearchable: true
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    • uniqueness: none
    appIcon String

    (Updatable) Application icon.

    SCIM++ Properties:

    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: request
    • type: string
    • uniqueness: none
    appSignonPolicy Property Map

    (Updatable) App Sign-on Policy.

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    appThumbnail String

    (Updatable) Application thumbnail.

    SCIM++ Properties:

    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: request
    • type: string
    • uniqueness: none
    appsNetworkPerimeters List<Property Map>

    (Updatable) Network Perimeter

    Added In: 2010242156

    SCIM++ Properties:

    • idcsCompositeKey: [value]
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    asOpcService Property Map

    (Updatable) OPCService facet of the application.

    Deprecated Since: 17.3.4

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    attrRenderingMetadatas List<Property Map>

    (Updatable) Label for the attribute to be shown in the UI.

    SCIM++ Properties:

    • idcsCompositeKey: [name]
    • idcsSearchable: false
    • multiValued: true
    • mutability: immutable
    • required: false
    • returned: default
    • type: complex
    • uniqueness: none
    attributeSets List<String>
    (Updatable) A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If 'attributes' query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.
    attributes String
    (Updatable) A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.
    audience String

    (Updatable) The base URI for all of the scopes defined in this App. The value of 'audience' is combined with the 'value' of each scope to form an 'fqs' or fully qualified scope.

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    authorization String
    (Updatable) The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.
    bypassConsent Boolean

    (Updatable) If true, indicates that consent should be skipped for all scopes

    Added In: 19.2.1

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    certificates List<Property Map>

    (Updatable) Each value of this attribute represent a certificate that this App uses when it acts as an OAuthClient.

    SCIM++ Properties:

    • caseExact: false
    • idcsCompositeKey: [certAlias]
    • idcsSearchable: false
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    • uniqueness: none
    clientIpChecking String

    (Updatable) Network Perimeters checking mode

    Added In: 2010242156

    SCIM++ Properties:

    • caseExact: true
    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    clientType String

    (Updatable) Specifies the type of access that this App has when it acts as an OAuthClient.

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    contactEmailAddress String

    (Updatable) Contact Email Address

    Added In: 19.2.1

    SCIM++ Properties:

    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    delegatedServiceNames List<String>

    (Updatable) Service Names allow to use Oracle Cloud Infrastructure signature for client authentication instead of client credentials

    Added In: 2207040824

    SCIM++ Properties:

    • caseExact: true
    • idcsSearchable: false
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    description String

    (Updatable) Description of the application.

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    disableKmsiTokenAuthentication Boolean

    (Updatable) Indicates whether the application is allowed to be access using kmsi token.

    Added In: 2111190457

    SCIM++ Properties:

    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: always
    • type: boolean
    • uniqueness: none
    errorPageUrl String

    (Updatable) This attribute specifies the URL of the page to which an application will redirect an end-user in case of error.

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    homePageUrl String

    (Updatable) Home Page URL

    Added In: 19.2.1

    SCIM++ Properties:

    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    icon String

    (Updatable) URL of application icon.

    SCIM++ Properties:

    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: reference
    • uniqueness: none
    idTokenEncAlgo String

    (Updatable) Encryption Alogrithm to use for encrypting ID token.

    Added In: 2010242156

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    identityProviders List<Property Map>

    (Updatable) A list of IdentityProvider assigned to app. A user trying to access this app will be automatically redirected to configured IdP during the authentication phase, before being able to access App.

    SCIM++ Properties:

    • idcsCompositeKey: [value]
    • idcsSearchable: false
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: request
    • type: complex
    idpPolicy Property Map

    (Updatable) IDP Policy.

    Added In: 18.1.2

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    isAliasApp Boolean

    If true, this App is an AliasApp and it cannot be granted to an end-user directly.

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: immutable
    • required: false
    • returned: always
    • type: boolean
    • uniqueness: none
    isEnterpriseApp Boolean

    (Updatable) If true, this app acts as Enterprise app with Authentication and URL Authz policy.

    Added In: 19.2.1

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    isFormFill Boolean

    (Updatable) If true, this application acts as FormFill Application

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    isKerberosRealm Boolean

    (Updatable) If true, indicates that this App supports Kerberos Authentication

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    isLoginTarget Boolean

    (Updatable) If true, this App allows runtime services to log end users into this App automatically.

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    isMobileTarget Boolean

    (Updatable) If true, indicates that the App should be visible in each end-user's mobile application.

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    isMulticloudServiceApp Boolean

    (Updatable) If true, indicates the app is used for multicloud service integration.

    Added In: 2301202328

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: immutable
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    isOauthClient Boolean

    (Updatable) If true, this application acts as an OAuth Client

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    isOauthResource Boolean

    (Updatable) If true, indicates that this application acts as an OAuth Resource.

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    isObligationCapable Boolean

    (Updatable) This flag indicates if the App is capable of validating obligations with the token for allowing access to the App.

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    isRadiusApp Boolean

    (Updatable) If true, this application acts as an Radius App

    Added In: 20.1.3

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    isSamlServiceProvider Boolean

    (Updatable) If true, then this App acts as a SAML Service Provider.

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    isUnmanagedApp Boolean

    If true, indicates that this application accepts an Oracle Cloud Identity Service User as a login-identity (does not require an account) and relies for authorization on the User's memberships in AppRoles.

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: immutable
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    isWebTierPolicy Boolean

    (Updatable) If true, the webtier policy is active

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    landingPageUrl String

    (Updatable) The URL of the landing page for this App, which is the first page that an end user should see if runtime services log that end user in to this App automatically.

    SCIM++ Properties:

    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    linkingCallbackUrl String

    (Updatable) This attribute specifies the callback URL for the social linking operation.

    Added In: 18.2.4

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    loginMechanism String

    (Updatable) The protocol that runtime services will use to log end users in to this App automatically. If 'OIDC', then runtime services use the OpenID Connect protocol. If 'SAML', then runtime services use Security Assertion Markup Language protocol.

    SCIM++ Properties:

    • caseExact: true
    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    loginPageUrl String

    (Updatable) This attribute specifies the URL of the page that the App uses when an end-user signs in to that App.

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    logoutPageUrl String

    (Updatable) This attribute specifies the URL of the page that the App uses when an end-user signs out.

    Added In: 17.4.2

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    logoutUri String

    (Updatable) OAuth will use this URI to logout if this App wants to participate in SSO, and if this App's session gets cleared as part of global logout. Note: This attribute is used only if this App acts as an OAuthClient.

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    name String

    Name of the application. Also serves as username if the application authenticates to Oracle Public Cloud infrastructure. This name may not be user-friendly and cannot be changed once an App is created.

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: true
    • multiValued: false
    • mutability: immutable
    • required: false
    • returned: default
    • type: string
    • uniqueness: server
    ocid String

    (Updatable) Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.

    SCIM++ Properties:

    • caseExact: true
    • idcsSearchable: true
    • multiValued: false
    • mutability: immutable
    • required: false
    • returned: default
    • type: string
    • uniqueness: global
    postLogoutRedirectUris List<String>

    (Updatable) Each value of this attribute is the URI of a landing page within this App. It is used only when this App, acting as an OAuthClient, initiates the logout flow and wants to be redirected back to one of its landing pages.

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    privacyPolicyUrl String

    (Updatable) Privacy Policy URL

    Added In: 19.2.1

    SCIM++ Properties:

    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    productLogoUrl String

    (Updatable) Application Logo URL

    Added In: 19.2.1

    SCIM++ Properties:

    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    productName String

    (Updatable) Product Name

    Added In: 19.2.1

    SCIM++ Properties:

    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    protectableSecondaryAudiences List<Property Map>

    (Updatable) A list of secondary audiences--additional URIs to be added automatically to any OAuth token that allows access to this App. Note: This attribute is used mainly for backward compatibility in certain Oracle Public Cloud Apps.

    Added In: 18.2.2

    SCIM++ Properties:

    • caseExact: false
    • idcsCompositeKey: [value]
    • idcsSearchable: false
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    • uniqueness: none
    radiusPolicy Property Map

    (Updatable) RADIUS Policy assigned to this application.

    Added In: 2209070044

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    redirectUris List<String>

    (Updatable) OPTIONAL. Each value is a URI within this App. This attribute is required when this App acts as an OAuthClient and is involved in three-legged flows (authorization-code flows).

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    refreshTokenExpiry Number

    (Updatable) Expiry-time in seconds for a Refresh Token. Any token that allows access to this App, once refreshed, will expire after the specified duration.

    SCIM++ Properties:

    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: integer
    • uniqueness: none
    resourceTypeSchemaVersion String
    (Updatable) An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.
    samlServiceProvider Property Map

    (Updatable) An attribute that refers to the SAML Service Provider that runtime services will use to log an end user in to this App automatically. Note that this will be used only if the loginMechanism is 'SAML'.

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    • uniqueness: none
    scopes List<Property Map>

    (Updatable) Scopes defined by this App. Used when this App acts as an OAuth Resource.

    SCIM++ Properties:

    • caseExact: true
    • idcsCompositeKey: [value]
    • idcsSearchable: true
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    • uniqueness: none
    secondaryAudiences List<String>

    (Updatable) A list of secondary audiences--additional URIs to be added automatically to any OAuth token that allows access to this App. Note: This attribute is used mainly for backward compatibility in certain Oracle Public Cloud Apps.

    Deprecated Since: 18.2.6

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    serviceParams List<Property Map>

    (Updatable) Custom attribute that is required to compute other attribute values during app creation.

    SCIM++ Properties:

    • idcsCompositeKey: [name]
    • idcsSearchable: false
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: always
    • type: complex
    • uniqueness: none
    serviceTypeUrn String

    (Updatable) This Uniform Resource Name (URN) value identifies the type of Oracle Public Cloud service of which this app is an instance.

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    serviceTypeVersion String

    (Updatable) This value specifies the version of the Oracle Public Cloud service of which this App is an instance

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    showInMyApps Boolean

    (Updatable) If true, this app will be displayed in the MyApps page of each end-user who has access to the App.

    Added In: 18.1.2

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    signonPolicy Property Map

    (Updatable) Sign-on Policy.

    Deprecated Since: 17.3.4

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    tags List<Property Map>

    (Updatable) A list of tags on this resource.

    SCIM++ Properties:

    • idcsCompositeKey: [key, value]
    • idcsSearchable: true
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: request
    • type: complex
    • uniqueness: none
    termsOfServiceUrl String

    (Updatable) Terms of Service URL

    Added In: 19.2.1

    SCIM++ Properties:

    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    termsOfUse Property Map

    (Updatable) Terms Of Use.

    Added In: 18.2.6

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    trustPolicies List<Property Map>

    (Updatable) Trust Policies.

    SCIM++ Properties:

    • idcsCompositeKey: [value]
    • idcsSearchable: true
    • multiValued: true
    • mutability: readWrite
    • required: false
    • returned: default
    • type: complex
    trustScope String

    (Updatable) Indicates the scope of trust for this App when acting as an OAuthClient. A value of 'Explicit' indicates that the App is allowed to access only the scopes of OAuthResources that are explicitly specified as 'allowedScopes'. A value of 'Account' indicates that the App is allowed implicitly to access any scope of any OAuthResource within the same Oracle Cloud Account. A value of 'Tags' indicates that the App is allowed to access any scope of any OAuthResource with a matching tag within the same Oracle Cloud Account. A value of 'Default' indicates that the Tenant default trust scope configured in the Tenant Settings is used.

    Added In: 17.4.2

    SCIM++ Properties:

    • caseExact: true
    • idcsSearchable: false
    • multiValued: false
    • mutability: readWrite
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    urnietfparamsscimschemasoracleidcsextensionOciTags Property Map
    (Updatable) Oracle Cloud Infrastructure Tags.
    urnietfparamsscimschemasoracleidcsextensiondbcsApp Property Map
    (Updatable) This extension provides attributes for database service facet of an App
    urnietfparamsscimschemasoracleidcsextensionenterpriseAppApp Property Map
    (Updatable) This extension defines the Enterprise App related attributes.
    urnietfparamsscimschemasoracleidcsextensionformFillAppApp Property Map
    (Updatable) This extension provides attributes for Form-Fill facet of App
    urnietfparamsscimschemasoracleidcsextensionformFillAppTemplateAppTemplate Property Map
    (Updatable) This extension provides attributes for Form-Fill facet of AppTemplate
    urnietfparamsscimschemasoracleidcsextensionkerberosRealmApp Property Map
    (Updatable) Kerberos Realm
    urnietfparamsscimschemasoracleidcsextensionmanagedappApp Property Map
    (Updatable) Managed App
    urnietfparamsscimschemasoracleidcsextensionmulticloudServiceAppApp Property Map
    (Updatable) This extension defines attributes specific to Apps that represent instances of Multicloud Service App
    urnietfparamsscimschemasoracleidcsextensionopcServiceApp Property Map
    (Updatable) This extension defines attributes specific to Apps that represent instances of an Oracle Public Cloud (OPC) service.
    urnietfparamsscimschemasoracleidcsextensionradiusAppApp Property Map
    (Updatable) This extension defines attributes specific to Apps that represent instances of Radius App.
    urnietfparamsscimschemasoracleidcsextensionrequestableApp Property Map
    (Updatable) Requestable App
    urnietfparamsscimschemasoracleidcsextensionsamlServiceProviderApp Property Map
    (Updatable) This extension defines attributes related to the Service Providers configuration.
    urnietfparamsscimschemasoracleidcsextensionwebTierPolicyApp Property Map
    (Updatable) WebTier Policy

    Outputs

    All input properties are implicitly available as output properties. Additionally, the DomainsApp resource produces the following output properties:

    Accounts List<DomainsAppAccount>

    (Updatable) Accounts of App

    SCIM++ Properties:

    • idcsCompositeKey: [value]
    • idcsSearchable: true
    • multiValued: true
    • mutability: readOnly
    • required: false
    • returned: request
    • type: complex
    • uniqueness: none
    AdminRoles List<DomainsAppAdminRole>

    (Updatable) A list of AppRoles defined by this UnmanagedApp. Membership in each of these AppRoles confers administrative privilege within this App.

    SCIM++ Properties:

    • idcsCompositeKey: [value]
    • idcsSearchable: false
    • multiValued: true
    • mutability: readOnly
    • required: false
    • returned: request
    • type: complex
    CallbackServiceUrl string

    (Updatable) Callback Service URL

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: false
    • mutability: readOnly
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    ClientSecret string

    (Updatable) This value is the credential of this App, which this App supplies as a password when this App authenticates to the Oracle Public Cloud infrastructure. This value is also the client secret of this App when it acts as an OAuthClient.

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • idcsSensitive: none
    • multiValued: false
    • mutability: readOnly
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    CloudControlProperties List<DomainsAppCloudControlProperty>

    (Updatable) A collection of arbitrary properties that scope the privileges of a cloud-control App.

    Added In: 18.4.2

    SCIM++ Properties:

    • idcsCompositeKey: [name]
    • idcsSearchable: false
    • multiValued: true
    • mutability: readOnly
    • required: false
    • returned: request
    • type: complex
    • uniqueness: none
    CompartmentOcid string

    (Updatable) Oracle Cloud Infrastructure Compartment Id (ocid) in which the resource lives.

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: false
    • mutability: readOnly
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    DeleteInProgress bool

    (Updatable) A boolean flag indicating this resource in the process of being deleted. Usually set to true when synchronous deletion of the resource would take too long.

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: true
    • multiValued: false
    • mutability: readOnly
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    DomainOcid string

    (Updatable) Oracle Cloud Infrastructure Domain Id (ocid) in which the resource lives.

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: false
    • mutability: readOnly
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    EditableAttributes List<DomainsAppEditableAttribute>

    (Updatable) App attributes editable by subject

    Added In: 18.2.6

    SCIM++ Properties:

    • caseExact: false
    • idcsCompositeKey: [name]
    • idcsSearchable: false
    • multiValued: true
    • mutability: readOnly
    • required: false
    • returned: request
    • type: complex
    • uniqueness: none
    GrantedAppRoles List<DomainsAppGrantedAppRole>

    (Updatable) A list of AppRoles that are granted to this App (and that are defined by other Apps). Within the Oracle Public Cloud infrastructure, this allows AppID-based association. Such an association allows this App to act as a consumer and thus to access resources of another App that acts as a producer.

    SCIM++ Properties:

    • caseExact: true
    • idcsCompositeKey: [value]
    • idcsSearchable: true
    • multiValued: true
    • mutability: readOnly
    • required: false
    • returned: default
    • type: complex
    • uniqueness: none
    Grants List<DomainsAppGrant>

    (Updatable) Grants assigned to the app

    SCIM++ Properties:

    • idcsCompositeKey: [value]
    • idcsSearchable: true
    • multiValued: true
    • mutability: readOnly
    • required: false
    • returned: request
    • type: complex
    • uniqueness: none
    HashedClientSecret string

    (Updatable) Hashed Client Secret. This hash-value is used to verify the 'clientSecret' credential of this App

    Added In: 2106240046

    SCIM++ Properties:

    • idcsSearchable: false
    • idcsSensitive: hash_sc
    • multiValued: false
    • mutability: readOnly
    • required: false
    • returned: request
    • type: string
    • uniqueness: none
    Id string
    The provider-assigned unique ID for this managed resource.
    IdcsCreatedBies List<DomainsAppIdcsCreatedBy>

    (Updatable) The User or App who created the Resource

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readOnly
    • required: true
    • returned: default
    • type: complex
    IdcsLastModifiedBies List<DomainsAppIdcsLastModifiedBy>

    (Updatable) The User or App who modified the Resource

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readOnly
    • required: false
    • returned: default
    • type: complex
    IdcsLastUpgradedInRelease string

    (Updatable) The release number when the resource was upgraded.

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: false
    • mutability: readOnly
    • required: false
    • returned: request
    • type: string
    • uniqueness: none
    IdcsPreventedOperations List<string>

    (Updatable) Each value of this attribute specifies an operation that only an internal client may perform on this particular resource.

    SCIM++ Properties:

    • idcsSearchable: false
    • multiValued: true
    • mutability: readOnly
    • required: false
    • returned: request
    • type: string
    • uniqueness: none
    Infrastructure bool

    (Updatable) If true, this App is an internal infrastructure App.

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readOnly
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    IsDatabaseService bool

    (Updatable) If true, this application acts as database service Application

    Added In: 18.2.2

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readOnly
    • required: false
    • type: boolean
    IsManagedApp bool

    (Updatable) If true, indicates that access to this App requires an account. That is, in order to log in to the App, a User must use an application-specific identity that is maintained in the remote identity-repository of that App.

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readOnly
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    IsOpcService bool

    (Updatable) If true, this application is an Oracle Public Cloud service-instance.

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readOnly
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    Metas List<DomainsAppMeta>

    (Updatable) A complex attribute that contains resource metadata. All sub-attributes are OPTIONAL.

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: true
    • multiValued: false
    • mutability: readOnly
    • required: false
    • returned: default
    • idcsCsvAttributeNameMappings: [[columnHeaderName:Created Date, mapsTo:meta.created]]
    • type: complex
    MeterAsOpcService bool

    (Updatable) Indicates whether the application is billed as an OPCService. If true, customer is not billed for runtime operations of the app.

    Added In: 18.4.2

    SCIM++ Properties:

    • idcsSearchable: false
    • multiValued: false
    • mutability: readOnly
    • required: false
    • returned: always
    • type: boolean
    • uniqueness: none
    Migrated bool

    (Updatable) If true, this App was migrated from an earlier version of Oracle Public Cloud infrastructure (and may therefore require special handling from runtime services such as OAuth or SAML). If false, this App requires no special handling from runtime services.

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readOnly
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    ReadyToUpgrade bool

    (Updatable) If true, this App requires an upgrade and mandates attention from application administrator. The flag is used by UI to indicate this app is ready to upgrade.

    SCIM++ Properties:

    • idcsSearchable: true
    • multiValued: false
    • mutability: readOnly
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    TenancyOcid string

    (Updatable) Oracle Cloud Infrastructure Tenant Id (ocid) in which the resource lives.

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: false
    • mutability: readOnly
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    UserRoles List<DomainsAppUserRole>

    (Updatable) A list of AppRoles defined by this UnmanagedApp. Membership in each of these AppRoles confers end-user privilege within this App.

    SCIM++ Properties:

    • idcsCompositeKey: [value]
    • idcsSearchable: false
    • multiValued: true
    • mutability: readOnly
    • required: false
    • returned: request
    • type: complex
    Accounts []DomainsAppAccount

    (Updatable) Accounts of App

    SCIM++ Properties:

    • idcsCompositeKey: [value]
    • idcsSearchable: true
    • multiValued: true
    • mutability: readOnly
    • required: false
    • returned: request
    • type: complex
    • uniqueness: none
    AdminRoles []DomainsAppAdminRole

    (Updatable) A list of AppRoles defined by this UnmanagedApp. Membership in each of these AppRoles confers administrative privilege within this App.

    SCIM++ Properties:

    • idcsCompositeKey: [value]
    • idcsSearchable: false
    • multiValued: true
    • mutability: readOnly
    • required: false
    • returned: request
    • type: complex
    CallbackServiceUrl string

    (Updatable) Callback Service URL

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: false
    • mutability: readOnly
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    ClientSecret string

    (Updatable) This value is the credential of this App, which this App supplies as a password when this App authenticates to the Oracle Public Cloud infrastructure. This value is also the client secret of this App when it acts as an OAuthClient.

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • idcsSensitive: none
    • multiValued: false
    • mutability: readOnly
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    CloudControlProperties []DomainsAppCloudControlProperty

    (Updatable) A collection of arbitrary properties that scope the privileges of a cloud-control App.

    Added In: 18.4.2

    SCIM++ Properties:

    • idcsCompositeKey: [name]
    • idcsSearchable: false
    • multiValued: true
    • mutability: readOnly
    • required: false
    • returned: request
    • type: complex
    • uniqueness: none
    CompartmentOcid string

    (Updatable) Oracle Cloud Infrastructure Compartment Id (ocid) in which the resource lives.

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: false
    • mutability: readOnly
    • required: false
    • returned: default
    • type: string
    • uniqueness: none
    DeleteInProgress bool

    (Updatable) A boolean flag indicating this resource in the process of being deleted. Usually set to true when synchronous deletion of the resource would take too long.

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: true
    • multiValued: false
    • mutability: readOnly
    • required: false
    • returned: default
    • type: boolean
    • uniqueness: none
    DomainOcid string

    (Updatable) Oracle Cloud Infrastructure Domain Id (ocid) in which the resource lives.

    SCIM++ Properties:

    • caseExact: false
    • idcsSearchable: false
    • multiValued: false
    • mutability: readOnly
    • required: false
    • returned: default
    • type: string
    • uniqueness: n