Docs
Packagesoci.Identity.DomainsIdentityPropagationTrust
Explore with Pulumi AI
This resource provides the Identity Propagation Trust resource in Oracle Cloud Infrastructure Identity Domains service.
Register a new Identity Propagation Trust configuration.
Example Usage
import * as pulumi from "@pulumi/pulumi";
import * as oci from "@pulumi/oci";
const testIdentityPropagationTrust = new oci.identity.DomainsIdentityPropagationTrust("test_identity_propagation_trust", {
idcsEndpoint: testDomain.url,
issuer: identityPropagationTrustIssuer,
name: identityPropagationTrustName,
schemas: ["urn:ietf:params:scim:schemas:oracle:idcs:IdentityPropagationTrust"],
type: identityPropagationTrustType,
accountId: "accountId",
active: identityPropagationTrustActive,
allowImpersonation: identityPropagationTrustAllowImpersonation,
attributeSets: ["all"],
attributes: "",
authorization: identityPropagationTrustAuthorization,
clientClaimName: identityPropagationTrustClientClaimName,
clientClaimValues: ["clientClaimValues"],
clockSkewSeconds: identityPropagationTrustClockSkewSeconds,
description: identityPropagationTrustDescription,
impersonationServiceUsers: [{
rule: identityPropagationTrustImpersonationServiceUsersRule,
value: testIdentityPropagationTrustUser.id,
ocid: identityPropagationTrustImpersonationServiceUsersOcid,
}],
keytab: {
secretOcid: identityPropagationTrustKeytabSecretOcid,
secretVersion: identityPropagationTrustKeytabSecretVersion,
},
oauthClients: ["oauthClients"],
ocid: identityPropagationTrustOcid,
publicCertificate: identityPropagationTrustPublicCertificate,
publicKeyEndpoint: identityPropagationTrustPublicKeyEndpoint,
resourceTypeSchemaVersion: identityPropagationTrustResourceTypeSchemaVersion,
subjectClaimName: identityPropagationTrustSubjectClaimName,
subjectMappingAttribute: identityPropagationTrustSubjectMappingAttribute,
subjectType: identityPropagationTrustSubjectType,
tags: [{
key: identityPropagationTrustTagsKey,
value: identityPropagationTrustTagsValue,
}],
});
import pulumi
import pulumi_oci as oci
test_identity_propagation_trust = oci.identity.DomainsIdentityPropagationTrust("test_identity_propagation_trust",
idcs_endpoint=test_domain["url"],
issuer=identity_propagation_trust_issuer,
name=identity_propagation_trust_name,
schemas=["urn:ietf:params:scim:schemas:oracle:idcs:IdentityPropagationTrust"],
type=identity_propagation_trust_type,
account_id="accountId",
active=identity_propagation_trust_active,
allow_impersonation=identity_propagation_trust_allow_impersonation,
attribute_sets=["all"],
attributes="",
authorization=identity_propagation_trust_authorization,
client_claim_name=identity_propagation_trust_client_claim_name,
client_claim_values=["clientClaimValues"],
clock_skew_seconds=identity_propagation_trust_clock_skew_seconds,
description=identity_propagation_trust_description,
impersonation_service_users=[oci.identity.DomainsIdentityPropagationTrustImpersonationServiceUserArgs(
rule=identity_propagation_trust_impersonation_service_users_rule,
value=test_identity_propagation_trust_user["id"],
ocid=identity_propagation_trust_impersonation_service_users_ocid,
)],
keytab=oci.identity.DomainsIdentityPropagationTrustKeytabArgs(
secret_ocid=identity_propagation_trust_keytab_secret_ocid,
secret_version=identity_propagation_trust_keytab_secret_version,
),
oauth_clients=["oauthClients"],
ocid=identity_propagation_trust_ocid,
public_certificate=identity_propagation_trust_public_certificate,
public_key_endpoint=identity_propagation_trust_public_key_endpoint,
resource_type_schema_version=identity_propagation_trust_resource_type_schema_version,
subject_claim_name=identity_propagation_trust_subject_claim_name,
subject_mapping_attribute=identity_propagation_trust_subject_mapping_attribute,
subject_type=identity_propagation_trust_subject_type,
tags=[oci.identity.DomainsIdentityPropagationTrustTagArgs(
key=identity_propagation_trust_tags_key,
value=identity_propagation_trust_tags_value,
)])
package main
import (
"github.com/pulumi/pulumi-oci/sdk/go/oci/Identity"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := Identity.NewDomainsIdentityPropagationTrust(ctx, "test_identity_propagation_trust", &Identity.DomainsIdentityPropagationTrustArgs{
IdcsEndpoint: pulumi.Any(testDomain.Url),
Issuer: pulumi.Any(identityPropagationTrustIssuer),
Name: pulumi.Any(identityPropagationTrustName),
Schemas: pulumi.StringArray{
pulumi.String("urn:ietf:params:scim:schemas:oracle:idcs:IdentityPropagationTrust"),
},
Type: pulumi.Any(identityPropagationTrustType),
AccountId: pulumi.String("accountId"),
Active: pulumi.Any(identityPropagationTrustActive),
AllowImpersonation: pulumi.Any(identityPropagationTrustAllowImpersonation),
AttributeSets: pulumi.StringArray{
pulumi.String("all"),
},
Attributes: pulumi.String(""),
Authorization: pulumi.Any(identityPropagationTrustAuthorization),
ClientClaimName: pulumi.Any(identityPropagationTrustClientClaimName),
ClientClaimValues: pulumi.StringArray{
pulumi.String("clientClaimValues"),
},
ClockSkewSeconds: pulumi.Any(identityPropagationTrustClockSkewSeconds),
Description: pulumi.Any(identityPropagationTrustDescription),
ImpersonationServiceUsers: identity.DomainsIdentityPropagationTrustImpersonationServiceUserArray{
&identity.DomainsIdentityPropagationTrustImpersonationServiceUserArgs{
Rule: pulumi.Any(identityPropagationTrustImpersonationServiceUsersRule),
Value: pulumi.Any(testIdentityPropagationTrustUser.Id),
Ocid: pulumi.Any(identityPropagationTrustImpersonationServiceUsersOcid),
},
},
Keytab: &identity.DomainsIdentityPropagationTrustKeytabArgs{
SecretOcid: pulumi.Any(identityPropagationTrustKeytabSecretOcid),
SecretVersion: pulumi.Any(identityPropagationTrustKeytabSecretVersion),
},
OauthClients: pulumi.StringArray{
pulumi.String("oauthClients"),
},
Ocid: pulumi.Any(identityPropagationTrustOcid),
PublicCertificate: pulumi.Any(identityPropagationTrustPublicCertificate),
PublicKeyEndpoint: pulumi.Any(identityPropagationTrustPublicKeyEndpoint),
ResourceTypeSchemaVersion: pulumi.Any(identityPropagationTrustResourceTypeSchemaVersion),
SubjectClaimName: pulumi.Any(identityPropagationTrustSubjectClaimName),
SubjectMappingAttribute: pulumi.Any(identityPropagationTrustSubjectMappingAttribute),
SubjectType: pulumi.Any(identityPropagationTrustSubjectType),
Tags: identity.DomainsIdentityPropagationTrustTagArray{
&identity.DomainsIdentityPropagationTrustTagArgs{
Key: pulumi.Any(identityPropagationTrustTagsKey),
Value: pulumi.Any(identityPropagationTrustTagsValue),
},
},
})
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Oci = Pulumi.Oci;
return await Deployment.RunAsync(() =>
{
var testIdentityPropagationTrust = new Oci.Identity.DomainsIdentityPropagationTrust("test_identity_propagation_trust", new()
{
IdcsEndpoint = testDomain.Url,
Issuer = identityPropagationTrustIssuer,
Name = identityPropagationTrustName,
Schemas = new[]
{
"urn:ietf:params:scim:schemas:oracle:idcs:IdentityPropagationTrust",
},
Type = identityPropagationTrustType,
AccountId = "accountId",
Active = identityPropagationTrustActive,
AllowImpersonation = identityPropagationTrustAllowImpersonation,
AttributeSets = new[]
{
"all",
},
Attributes = "",
Authorization = identityPropagationTrustAuthorization,
ClientClaimName = identityPropagationTrustClientClaimName,
ClientClaimValues = new[]
{
"clientClaimValues",
},
ClockSkewSeconds = identityPropagationTrustClockSkewSeconds,
Description = identityPropagationTrustDescription,
ImpersonationServiceUsers = new[]
{
new Oci.Identity.Inputs.DomainsIdentityPropagationTrustImpersonationServiceUserArgs
{
Rule = identityPropagationTrustImpersonationServiceUsersRule,
Value = testIdentityPropagationTrustUser.Id,
Ocid = identityPropagationTrustImpersonationServiceUsersOcid,
},
},
Keytab = new Oci.Identity.Inputs.DomainsIdentityPropagationTrustKeytabArgs
{
SecretOcid = identityPropagationTrustKeytabSecretOcid,
SecretVersion = identityPropagationTrustKeytabSecretVersion,
},
OauthClients = new[]
{
"oauthClients",
},
Ocid = identityPropagationTrustOcid,
PublicCertificate = identityPropagationTrustPublicCertificate,
PublicKeyEndpoint = identityPropagationTrustPublicKeyEndpoint,
ResourceTypeSchemaVersion = identityPropagationTrustResourceTypeSchemaVersion,
SubjectClaimName = identityPropagationTrustSubjectClaimName,
SubjectMappingAttribute = identityPropagationTrustSubjectMappingAttribute,
SubjectType = identityPropagationTrustSubjectType,
Tags = new[]
{
new Oci.Identity.Inputs.DomainsIdentityPropagationTrustTagArgs
{
Key = identityPropagationTrustTagsKey,
Value = identityPropagationTrustTagsValue,
},
},
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.oci.Identity.DomainsIdentityPropagationTrust;
import com.pulumi.oci.Identity.DomainsIdentityPropagationTrustArgs;
import com.pulumi.oci.Identity.inputs.DomainsIdentityPropagationTrustImpersonationServiceUserArgs;
import com.pulumi.oci.Identity.inputs.DomainsIdentityPropagationTrustKeytabArgs;
import com.pulumi.oci.Identity.inputs.DomainsIdentityPropagationTrustTagArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var testIdentityPropagationTrust = new DomainsIdentityPropagationTrust("testIdentityPropagationTrust", DomainsIdentityPropagationTrustArgs.builder()
.idcsEndpoint(testDomain.url())
.issuer(identityPropagationTrustIssuer)
.name(identityPropagationTrustName)
.schemas("urn:ietf:params:scim:schemas:oracle:idcs:IdentityPropagationTrust")
.type(identityPropagationTrustType)
.accountId("accountId")
.active(identityPropagationTrustActive)
.allowImpersonation(identityPropagationTrustAllowImpersonation)
.attributeSets("all")
.attributes("")
.authorization(identityPropagationTrustAuthorization)
.clientClaimName(identityPropagationTrustClientClaimName)
.clientClaimValues("clientClaimValues")
.clockSkewSeconds(identityPropagationTrustClockSkewSeconds)
.description(identityPropagationTrustDescription)
.impersonationServiceUsers(DomainsIdentityPropagationTrustImpersonationServiceUserArgs.builder()
.rule(identityPropagationTrustImpersonationServiceUsersRule)
.value(testIdentityPropagationTrustUser.id())
.ocid(identityPropagationTrustImpersonationServiceUsersOcid)
.build())
.keytab(DomainsIdentityPropagationTrustKeytabArgs.builder()
.secretOcid(identityPropagationTrustKeytabSecretOcid)
.secretVersion(identityPropagationTrustKeytabSecretVersion)
.build())
.oauthClients("oauthClients")
.ocid(identityPropagationTrustOcid)
.publicCertificate(identityPropagationTrustPublicCertificate)
.publicKeyEndpoint(identityPropagationTrustPublicKeyEndpoint)
.resourceTypeSchemaVersion(identityPropagationTrustResourceTypeSchemaVersion)
.subjectClaimName(identityPropagationTrustSubjectClaimName)
.subjectMappingAttribute(identityPropagationTrustSubjectMappingAttribute)
.subjectType(identityPropagationTrustSubjectType)
.tags(DomainsIdentityPropagationTrustTagArgs.builder()
.key(identityPropagationTrustTagsKey)
.value(identityPropagationTrustTagsValue)
.build())
.build());
}
}
resources:
testIdentityPropagationTrust:
type: oci:Identity:DomainsIdentityPropagationTrust
name: test_identity_propagation_trust
properties:
idcsEndpoint: ${testDomain.url}
issuer: ${identityPropagationTrustIssuer}
name: ${identityPropagationTrustName}
schemas:
- urn:ietf:params:scim:schemas:oracle:idcs:IdentityPropagationTrust
type: ${identityPropagationTrustType}
accountId: accountId
active: ${identityPropagationTrustActive}
allowImpersonation: ${identityPropagationTrustAllowImpersonation}
attributeSets:
- all
attributes:
authorization: ${identityPropagationTrustAuthorization}
clientClaimName: ${identityPropagationTrustClientClaimName}
clientClaimValues:
- clientClaimValues
clockSkewSeconds: ${identityPropagationTrustClockSkewSeconds}
description: ${identityPropagationTrustDescription}
impersonationServiceUsers:
- rule: ${identityPropagationTrustImpersonationServiceUsersRule}
value: ${testIdentityPropagationTrustUser.id}
ocid: ${identityPropagationTrustImpersonationServiceUsersOcid}
keytab:
secretOcid: ${identityPropagationTrustKeytabSecretOcid}
secretVersion: ${identityPropagationTrustKeytabSecretVersion}
oauthClients:
- oauthClients
ocid: ${identityPropagationTrustOcid}
publicCertificate: ${identityPropagationTrustPublicCertificate}
publicKeyEndpoint: ${identityPropagationTrustPublicKeyEndpoint}
resourceTypeSchemaVersion: ${identityPropagationTrustResourceTypeSchemaVersion}
subjectClaimName: ${identityPropagationTrustSubjectClaimName}
subjectMappingAttribute: ${identityPropagationTrustSubjectMappingAttribute}
subjectType: ${identityPropagationTrustSubjectType}
tags:
- key: ${identityPropagationTrustTagsKey}
value: ${identityPropagationTrustTagsValue}
Create DomainsIdentityPropagationTrust Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new DomainsIdentityPropagationTrust(name: string, args: DomainsIdentityPropagationTrustArgs, opts?: CustomResourceOptions);@overload
def DomainsIdentityPropagationTrust(resource_name: str,
args: DomainsIdentityPropagationTrustArgs,
opts: Optional[ResourceOptions] = None)
@overload
def DomainsIdentityPropagationTrust(resource_name: str,
opts: Optional[ResourceOptions] = None,
idcs_endpoint: Optional[str] = None,
type: Optional[str] = None,
schemas: Optional[Sequence[str]] = None,
issuer: Optional[str] = None,
client_claim_name: Optional[str] = None,
oauth_clients: Optional[Sequence[str]] = None,
account_id: Optional[str] = None,
client_claim_values: Optional[Sequence[str]] = None,
clock_skew_seconds: Optional[int] = None,
description: Optional[str] = None,
attributes: Optional[str] = None,
impersonation_service_users: Optional[Sequence[_identity.DomainsIdentityPropagationTrustImpersonationServiceUserArgs]] = None,
attribute_sets: Optional[Sequence[str]] = None,
keytab: Optional[_identity.DomainsIdentityPropagationTrustKeytabArgs] = None,
name: Optional[str] = None,
authorization: Optional[str] = None,
ocid: Optional[str] = None,
public_certificate: Optional[str] = None,
public_key_endpoint: Optional[str] = None,
resource_type_schema_version: Optional[str] = None,
allow_impersonation: Optional[bool] = None,
subject_claim_name: Optional[str] = None,
subject_mapping_attribute: Optional[str] = None,
subject_type: Optional[str] = None,
tags: Optional[Sequence[_identity.DomainsIdentityPropagationTrustTagArgs]] = None,
active: Optional[bool] = None)func NewDomainsIdentityPropagationTrust(ctx *Context, name string, args DomainsIdentityPropagationTrustArgs, opts ...ResourceOption) (*DomainsIdentityPropagationTrust, error)public DomainsIdentityPropagationTrust(string name, DomainsIdentityPropagationTrustArgs args, CustomResourceOptions? opts = null)
public DomainsIdentityPropagationTrust(String name, DomainsIdentityPropagationTrustArgs args)
public DomainsIdentityPropagationTrust(String name, DomainsIdentityPropagationTrustArgs args, CustomResourceOptions options)
type: oci:Identity:DomainsIdentityPropagationTrust
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args DomainsIdentityPropagationTrustArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args DomainsIdentityPropagationTrustArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args DomainsIdentityPropagationTrustArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args DomainsIdentityPropagationTrustArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args DomainsIdentityPropagationTrustArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Example
The following reference example uses placeholder values for all input properties.
var domainsIdentityPropagationTrustResource = new Oci.Identity.DomainsIdentityPropagationTrust("domainsIdentityPropagationTrustResource", new()
{
IdcsEndpoint = "string",
Type = "string",
Schemas = new[]
{
"string",
},
Issuer = "string",
ClientClaimName = "string",
OauthClients = new[]
{
"string",
},
AccountId = "string",
ClientClaimValues = new[]
{
"string",
},
ClockSkewSeconds = 0,
Description = "string",
Attributes = "string",
ImpersonationServiceUsers = new[]
{
new Oci.Identity.Inputs.DomainsIdentityPropagationTrustImpersonationServiceUserArgs
{
Rule = "string",
Value = "string",
Ocid = "string",
Ref = "string",
},
},
AttributeSets = new[]
{
"string",
},
Keytab = new Oci.Identity.Inputs.DomainsIdentityPropagationTrustKeytabArgs
{
SecretOcid = "string",
SecretVersion = 0,
},
Name = "string",
Authorization = "string",
Ocid = "string",
PublicCertificate = "string",
PublicKeyEndpoint = "string",
ResourceTypeSchemaVersion = "string",
AllowImpersonation = false,
SubjectClaimName = "string",
SubjectMappingAttribute = "string",
SubjectType = "string",
Tags = new[]
{
new Oci.Identity.Inputs.DomainsIdentityPropagationTrustTagArgs
{
Key = "string",
Value = "string",
},
},
Active = false,
});
example, err := Identity.NewDomainsIdentityPropagationTrust(ctx, "domainsIdentityPropagationTrustResource", &Identity.DomainsIdentityPropagationTrustArgs{
IdcsEndpoint: pulumi.String("string"),
Type: pulumi.String("string"),
Schemas: pulumi.StringArray{
pulumi.String("string"),
},
Issuer: pulumi.String("string"),
ClientClaimName: pulumi.String("string"),
OauthClients: pulumi.StringArray{
pulumi.String("string"),
},
AccountId: pulumi.String("string"),
ClientClaimValues: pulumi.StringArray{
pulumi.String("string"),
},
ClockSkewSeconds: pulumi.Int(0),
Description: pulumi.String("string"),
Attributes: pulumi.String("string"),
ImpersonationServiceUsers: identity.DomainsIdentityPropagationTrustImpersonationServiceUserArray{
&identity.DomainsIdentityPropagationTrustImpersonationServiceUserArgs{
Rule: pulumi.String("string"),
Value: pulumi.String("string"),
Ocid: pulumi.String("string"),
Ref: pulumi.String("string"),
},
},
AttributeSets: pulumi.StringArray{
pulumi.String("string"),
},
Keytab: &identity.DomainsIdentityPropagationTrustKeytabArgs{
SecretOcid: pulumi.String("string"),
SecretVersion: pulumi.Int(0),
},
Name: pulumi.String("string"),
Authorization: pulumi.String("string"),
Ocid: pulumi.String("string"),
PublicCertificate: pulumi.String("string"),
PublicKeyEndpoint: pulumi.String("string"),
ResourceTypeSchemaVersion: pulumi.String("string"),
AllowImpersonation: pulumi.Bool(false),
SubjectClaimName: pulumi.String("string"),
SubjectMappingAttribute: pulumi.String("string"),
SubjectType: pulumi.String("string"),
Tags: identity.DomainsIdentityPropagationTrustTagArray{
&identity.DomainsIdentityPropagationTrustTagArgs{
Key: pulumi.String("string"),
Value: pulumi.String("string"),
},
},
Active: pulumi.Bool(false),
})
var domainsIdentityPropagationTrustResource = new DomainsIdentityPropagationTrust("domainsIdentityPropagationTrustResource", DomainsIdentityPropagationTrustArgs.builder()
.idcsEndpoint("string")
.type("string")
.schemas("string")
.issuer("string")
.clientClaimName("string")
.oauthClients("string")
.accountId("string")
.clientClaimValues("string")
.clockSkewSeconds(0)
.description("string")
.attributes("string")
.impersonationServiceUsers(DomainsIdentityPropagationTrustImpersonationServiceUserArgs.builder()
.rule("string")
.value("string")
.ocid("string")
.ref("string")
.build())
.attributeSets("string")
.keytab(DomainsIdentityPropagationTrustKeytabArgs.builder()
.secretOcid("string")
.secretVersion(0)
.build())
.name("string")
.authorization("string")
.ocid("string")
.publicCertificate("string")
.publicKeyEndpoint("string")
.resourceTypeSchemaVersion("string")
.allowImpersonation(false)
.subjectClaimName("string")
.subjectMappingAttribute("string")
.subjectType("string")
.tags(DomainsIdentityPropagationTrustTagArgs.builder()
.key("string")
.value("string")
.build())
.active(false)
.build());
domains_identity_propagation_trust_resource = oci.identity.DomainsIdentityPropagationTrust("domainsIdentityPropagationTrustResource",
idcs_endpoint="string",
type="string",
schemas=["string"],
issuer="string",
client_claim_name="string",
oauth_clients=["string"],
account_id="string",
client_claim_values=["string"],
clock_skew_seconds=0,
description="string",
attributes="string",
impersonation_service_users=[oci.identity.DomainsIdentityPropagationTrustImpersonationServiceUserArgs(
rule="string",
value="string",
ocid="string",
ref="string",
)],
attribute_sets=["string"],
keytab=oci.identity.DomainsIdentityPropagationTrustKeytabArgs(
secret_ocid="string",
secret_version=0,
),
name="string",
authorization="string",
ocid="string",
public_certificate="string",
public_key_endpoint="string",
resource_type_schema_version="string",
allow_impersonation=False,
subject_claim_name="string",
subject_mapping_attribute="string",
subject_type="string",
tags=[oci.identity.DomainsIdentityPropagationTrustTagArgs(
key="string",
value="string",
)],
active=False)
const domainsIdentityPropagationTrustResource = new oci.identity.DomainsIdentityPropagationTrust("domainsIdentityPropagationTrustResource", {
idcsEndpoint: "string",
type: "string",
schemas: ["string"],
issuer: "string",
clientClaimName: "string",
oauthClients: ["string"],
accountId: "string",
clientClaimValues: ["string"],
clockSkewSeconds: 0,
description: "string",
attributes: "string",
impersonationServiceUsers: [{
rule: "string",
value: "string",
ocid: "string",
ref: "string",
}],
attributeSets: ["string"],
keytab: {
secretOcid: "string",
secretVersion: 0,
},
name: "string",
authorization: "string",
ocid: "string",
publicCertificate: "string",
publicKeyEndpoint: "string",
resourceTypeSchemaVersion: "string",
allowImpersonation: false,
subjectClaimName: "string",
subjectMappingAttribute: "string",
subjectType: "string",
tags: [{
key: "string",
value: "string",
}],
active: false,
});
type: oci:Identity:DomainsIdentityPropagationTrust
properties:
accountId: string
active: false
allowImpersonation: false
attributeSets:
- string
attributes: string
authorization: string
clientClaimName: string
clientClaimValues:
- string
clockSkewSeconds: 0
description: string
idcsEndpoint: string
impersonationServiceUsers:
- ocid: string
ref: string
rule: string
value: string
issuer: string
keytab:
secretOcid: string
secretVersion: 0
name: string
oauthClients:
- string
ocid: string
publicCertificate: string
publicKeyEndpoint: string
resourceTypeSchemaVersion: string
schemas:
- string
subjectClaimName: string
subjectMappingAttribute: string
subjectType: string
tags:
- key: string
value: string
type: string
DomainsIdentityPropagationTrust Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
The DomainsIdentityPropagationTrust resource accepts the following input properties:
- Idcs
Endpoint string - The basic endpoint for the identity domain
- Issuer string
(Updatable) The issuer claim of the Identity provider.
SCIM++ Properties:
- type: string
- multiValued: false
- required: true
- mutability: readWrite
- returned: always
- caseExact: true
- idcsSearchable: true
- uniqueness: server
- Schemas List<string>
(Updatable) REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard "enterprise" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: true
- mutability: readWrite
- required: true
- returned: default
- type: string
- uniqueness: none
- Type string
(Updatable) The type of the inbound token from the Identity cloud provider.
SCIM++ Properties:
- caseExact: true
- idcsSearchable: false
- required: true
- mutability: readWrite
- returned: default
- type: string
- multiValued: false
- uniqueness: none
** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values
- Account
Id string (Updatable) The Identity cloud provider service identifier, for example, the Azure Tenancy ID, AWS Account ID, or GCP Project ID.
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- caseExact: true
- idcsSearchable: true
- uniqueness: none
- Active bool
(Updatable) If true, specifies that this Identity Propagation Trust is in an enabled state. The default value is false.
SCIM++ Properties:
- type: boolean
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- idcsSearchable: true
- Allow
Impersonation bool (Updatable) Allow customers to define whether the resulting token should contain the authenticated user as the subject or whether the token should impersonate another Application Principal in IAM.
SCIM++ Properties:
- type: boolean
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- idcsSearchable: false
- Attribute
Sets List<string> - (Updatable) A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If 'attributes' query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.
- Attributes string
- (Updatable) A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.
- string
- (Updatable) The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.
- Client
Claim stringName (Updatable) The claim name that identifies to whom the JWT/SAML token is issued. If AWS, then "aud" or "client_id". If Azure, then "appid". If GCP, then "aud".
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- idcsSearchable: false
- Client
Claim List<string>Values (Updatable) The value that corresponds to the client claim name used to identify to whom the token is issued.
SCIM++ Properties:
- type: string
- multiValued: true
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- caseExact: true
- idcsSearchable: false
- Clock
Skew intSeconds (Updatable) The clock skew (in secs) that's allowed for the token issue and expiry time.
Added In: 2308181911
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: integer
- uniqueness: none
- Description string
(Updatable) The description of the Identity Propagation Trust.
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- caseExact: false
- idcsSearchable: false
- Impersonation
Service List<DomainsUsers Identity Propagation Trust Impersonation Service User> (Updatable) The Impersonating Principal.
SCIM++ Properties:
- idcsCompositeKey: [rule, value]
- idcsSearchable: false
- multiValued: true
- mutability: readWrite
- required: false
- returned: request
- type: complex
- uniqueness: none
- Keytab
Domains
Identity Propagation Trust Keytab (Updatable) The keytab stored in the tenancy's Vault. This is required if the identity propagation type is 'SPNEGO'.
SCIM++ Properties:
- idcsCompositeKey: [secretOcid]
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: complex
- uniqueness: none
- Name string
The name of the the Identity Propagation Trust.
SCIM++ Properties:
- type: string
- caseExact: false
- idcsSearchable: true
- multiValued: false
- required: true
- mutability: immutable
- returned: default
- uniqueness: none
- Oauth
Clients List<string> (Updatable) The value of all the authorized OAuth Clients.
SCIM++ Properties:
- idcsSearchable: false
- multiValued: true
- mutability: readWrite
- required: false
- returned: default
- type: string
- uniqueness: none
- Ocid string
(Updatable) Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
SCIM++ Properties:
- caseExact: true
- idcsSearchable: true
- multiValued: false
- mutability: immutable
- required: false
- returned: default
- type: string
- uniqueness: global
- Public
Certificate string (Updatable) Store the public key if public key cert.
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- idcsSearchable: false
- Public
Key stringEndpoint (Updatable) The cloud provider's public key API of SAML and OIDC providers for signature validation.
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- caseExact: false
- idcsSearchable: false
- Resource
Type stringSchema Version - (Updatable) An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.
- Subject
Claim stringName (Updatable) Used for locating the subject claim from the incoming token.
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- caseExact: true
- idcsSearchable: false
- Subject
Mapping stringAttribute (Updatable) Subject Mapping Attribute to which the value from subject claim name value would be used for identity lookup.
SCIM++ Properties:
- type: string
- multiValued: false
- idcsSearchable: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- Subject
Type string (Updatable) The type of the resource against which lookup will be made in the identity domain in IAM for the incoming subject claim value.
SCIM++ Properties:
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: string
- uniqueness: none
-
List<Domains
Identity Propagation Trust Tag> (Updatable) A list of tags on this resource.
SCIM++ Properties:
- idcsCompositeKey: [key, value]
- idcsSearchable: true
- multiValued: true
- mutability: readWrite
- required: false
- returned: request
- type: complex
- uniqueness: none
- Idcs
Endpoint string - The basic endpoint for the identity domain
- Issuer string
(Updatable) The issuer claim of the Identity provider.
SCIM++ Properties:
- type: string
- multiValued: false
- required: true
- mutability: readWrite
- returned: always
- caseExact: true
- idcsSearchable: true
- uniqueness: server
- Schemas []string
(Updatable) REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard "enterprise" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: true
- mutability: readWrite
- required: true
- returned: default
- type: string
- uniqueness: none
- Type string
(Updatable) The type of the inbound token from the Identity cloud provider.
SCIM++ Properties:
- caseExact: true
- idcsSearchable: false
- required: true
- mutability: readWrite
- returned: default
- type: string
- multiValued: false
- uniqueness: none
** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values
- Account
Id string (Updatable) The Identity cloud provider service identifier, for example, the Azure Tenancy ID, AWS Account ID, or GCP Project ID.
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- caseExact: true
- idcsSearchable: true
- uniqueness: none
- Active bool
(Updatable) If true, specifies that this Identity Propagation Trust is in an enabled state. The default value is false.
SCIM++ Properties:
- type: boolean
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- idcsSearchable: true
- Allow
Impersonation bool (Updatable) Allow customers to define whether the resulting token should contain the authenticated user as the subject or whether the token should impersonate another Application Principal in IAM.
SCIM++ Properties:
- type: boolean
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- idcsSearchable: false
- Attribute
Sets []string - (Updatable) A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If 'attributes' query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.
- Attributes string
- (Updatable) A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.
- string
- (Updatable) The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.
- Client
Claim stringName (Updatable) The claim name that identifies to whom the JWT/SAML token is issued. If AWS, then "aud" or "client_id". If Azure, then "appid". If GCP, then "aud".
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- idcsSearchable: false
- Client
Claim []stringValues (Updatable) The value that corresponds to the client claim name used to identify to whom the token is issued.
SCIM++ Properties:
- type: string
- multiValued: true
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- caseExact: true
- idcsSearchable: false
- Clock
Skew intSeconds (Updatable) The clock skew (in secs) that's allowed for the token issue and expiry time.
Added In: 2308181911
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: integer
- uniqueness: none
- Description string
(Updatable) The description of the Identity Propagation Trust.
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- caseExact: false
- idcsSearchable: false
- Impersonation
Service []DomainsUsers Identity Propagation Trust Impersonation Service User Args (Updatable) The Impersonating Principal.
SCIM++ Properties:
- idcsCompositeKey: [rule, value]
- idcsSearchable: false
- multiValued: true
- mutability: readWrite
- required: false
- returned: request
- type: complex
- uniqueness: none
- Keytab
Domains
Identity Propagation Trust Keytab Args (Updatable) The keytab stored in the tenancy's Vault. This is required if the identity propagation type is 'SPNEGO'.
SCIM++ Properties:
- idcsCompositeKey: [secretOcid]
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: complex
- uniqueness: none
- Name string
The name of the the Identity Propagation Trust.
SCIM++ Properties:
- type: string
- caseExact: false
- idcsSearchable: true
- multiValued: false
- required: true
- mutability: immutable
- returned: default
- uniqueness: none
- Oauth
Clients []string (Updatable) The value of all the authorized OAuth Clients.
SCIM++ Properties:
- idcsSearchable: false
- multiValued: true
- mutability: readWrite
- required: false
- returned: default
- type: string
- uniqueness: none
- Ocid string
(Updatable) Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
SCIM++ Properties:
- caseExact: true
- idcsSearchable: true
- multiValued: false
- mutability: immutable
- required: false
- returned: default
- type: string
- uniqueness: global
- Public
Certificate string (Updatable) Store the public key if public key cert.
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- idcsSearchable: false
- Public
Key stringEndpoint (Updatable) The cloud provider's public key API of SAML and OIDC providers for signature validation.
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- caseExact: false
- idcsSearchable: false
- Resource
Type stringSchema Version - (Updatable) An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.
- Subject
Claim stringName (Updatable) Used for locating the subject claim from the incoming token.
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- caseExact: true
- idcsSearchable: false
- Subject
Mapping stringAttribute (Updatable) Subject Mapping Attribute to which the value from subject claim name value would be used for identity lookup.
SCIM++ Properties:
- type: string
- multiValued: false
- idcsSearchable: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- Subject
Type string (Updatable) The type of the resource against which lookup will be made in the identity domain in IAM for the incoming subject claim value.
SCIM++ Properties:
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: string
- uniqueness: none
-
[]Domains
Identity Propagation Trust Tag Args (Updatable) A list of tags on this resource.
SCIM++ Properties:
- idcsCompositeKey: [key, value]
- idcsSearchable: true
- multiValued: true
- mutability: readWrite
- required: false
- returned: request
- type: complex
- uniqueness: none
- idcs
Endpoint String - The basic endpoint for the identity domain
- issuer String
(Updatable) The issuer claim of the Identity provider.
SCIM++ Properties:
- type: string
- multiValued: false
- required: true
- mutability: readWrite
- returned: always
- caseExact: true
- idcsSearchable: true
- uniqueness: server
- schemas List<String>
(Updatable) REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard "enterprise" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: true
- mutability: readWrite
- required: true
- returned: default
- type: string
- uniqueness: none
- type String
(Updatable) The type of the inbound token from the Identity cloud provider.
SCIM++ Properties:
- caseExact: true
- idcsSearchable: false
- required: true
- mutability: readWrite
- returned: default
- type: string
- multiValued: false
- uniqueness: none
** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values
- account
Id String (Updatable) The Identity cloud provider service identifier, for example, the Azure Tenancy ID, AWS Account ID, or GCP Project ID.
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- caseExact: true
- idcsSearchable: true
- uniqueness: none
- active Boolean
(Updatable) If true, specifies that this Identity Propagation Trust is in an enabled state. The default value is false.
SCIM++ Properties:
- type: boolean
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- idcsSearchable: true
- allow
Impersonation Boolean (Updatable) Allow customers to define whether the resulting token should contain the authenticated user as the subject or whether the token should impersonate another Application Principal in IAM.
SCIM++ Properties:
- type: boolean
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- idcsSearchable: false
- attribute
Sets List<String> - (Updatable) A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If 'attributes' query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.
- attributes String
- (Updatable) A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.
- String
- (Updatable) The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.
- client
Claim StringName (Updatable) The claim name that identifies to whom the JWT/SAML token is issued. If AWS, then "aud" or "client_id". If Azure, then "appid". If GCP, then "aud".
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- idcsSearchable: false
- client
Claim List<String>Values (Updatable) The value that corresponds to the client claim name used to identify to whom the token is issued.
SCIM++ Properties:
- type: string
- multiValued: true
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- caseExact: true
- idcsSearchable: false
- clock
Skew IntegerSeconds (Updatable) The clock skew (in secs) that's allowed for the token issue and expiry time.
Added In: 2308181911
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: integer
- uniqueness: none
- description String
(Updatable) The description of the Identity Propagation Trust.
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- caseExact: false
- idcsSearchable: false
- impersonation
Service List<DomainsUsers Propagation Trust Impersonation Service User> (Updatable) The Impersonating Principal.
SCIM++ Properties:
- idcsCompositeKey: [rule, value]
- idcsSearchable: false
- multiValued: true
- mutability: readWrite
- required: false
- returned: request
- type: complex
- uniqueness: none
- keytab
Domains
Propagation Trust Keytab (Updatable) The keytab stored in the tenancy's Vault. This is required if the identity propagation type is 'SPNEGO'.
SCIM++ Properties:
- idcsCompositeKey: [secretOcid]
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: complex
- uniqueness: none
- name String
The name of the the Identity Propagation Trust.
SCIM++ Properties:
- type: string
- caseExact: false
- idcsSearchable: true
- multiValued: false
- required: true
- mutability: immutable
- returned: default
- uniqueness: none
- oauth
Clients List<String> (Updatable) The value of all the authorized OAuth Clients.
SCIM++ Properties:
- idcsSearchable: false
- multiValued: true
- mutability: readWrite
- required: false
- returned: default
- type: string
- uniqueness: none
- ocid String
(Updatable) Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
SCIM++ Properties:
- caseExact: true
- idcsSearchable: true
- multiValued: false
- mutability: immutable
- required: false
- returned: default
- type: string
- uniqueness: global
- public
Certificate String (Updatable) Store the public key if public key cert.
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- idcsSearchable: false
- public
Key StringEndpoint (Updatable) The cloud provider's public key API of SAML and OIDC providers for signature validation.
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- caseExact: false
- idcsSearchable: false
- resource
Type StringSchema Version - (Updatable) An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.
- subject
Claim StringName (Updatable) Used for locating the subject claim from the incoming token.
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- caseExact: true
- idcsSearchable: false
- subject
Mapping StringAttribute (Updatable) Subject Mapping Attribute to which the value from subject claim name value would be used for identity lookup.
SCIM++ Properties:
- type: string
- multiValued: false
- idcsSearchable: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- subject
Type String (Updatable) The type of the resource against which lookup will be made in the identity domain in IAM for the incoming subject claim value.
SCIM++ Properties:
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: string
- uniqueness: none
-
List<Domains
Propagation Trust Tag> (Updatable) A list of tags on this resource.
SCIM++ Properties:
- idcsCompositeKey: [key, value]
- idcsSearchable: true
- multiValued: true
- mutability: readWrite
- required: false
- returned: request
- type: complex
- uniqueness: none
- idcs
Endpoint string - The basic endpoint for the identity domain
- issuer string
(Updatable) The issuer claim of the Identity provider.
SCIM++ Properties:
- type: string
- multiValued: false
- required: true
- mutability: readWrite
- returned: always
- caseExact: true
- idcsSearchable: true
- uniqueness: server
- schemas string[]
(Updatable) REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard "enterprise" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: true
- mutability: readWrite
- required: true
- returned: default
- type: string
- uniqueness: none
- type string
(Updatable) The type of the inbound token from the Identity cloud provider.
SCIM++ Properties:
- caseExact: true
- idcsSearchable: false
- required: true
- mutability: readWrite
- returned: default
- type: string
- multiValued: false
- uniqueness: none
** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values
- account
Id string (Updatable) The Identity cloud provider service identifier, for example, the Azure Tenancy ID, AWS Account ID, or GCP Project ID.
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- caseExact: true
- idcsSearchable: true
- uniqueness: none
- active boolean
(Updatable) If true, specifies that this Identity Propagation Trust is in an enabled state. The default value is false.
SCIM++ Properties:
- type: boolean
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- idcsSearchable: true
- allow
Impersonation boolean (Updatable) Allow customers to define whether the resulting token should contain the authenticated user as the subject or whether the token should impersonate another Application Principal in IAM.
SCIM++ Properties:
- type: boolean
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- idcsSearchable: false
- attribute
Sets string[] - (Updatable) A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If 'attributes' query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.
- attributes string
- (Updatable) A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.
- string
- (Updatable) The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.
- client
Claim stringName (Updatable) The claim name that identifies to whom the JWT/SAML token is issued. If AWS, then "aud" or "client_id". If Azure, then "appid". If GCP, then "aud".
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- idcsSearchable: false
- client
Claim string[]Values (Updatable) The value that corresponds to the client claim name used to identify to whom the token is issued.
SCIM++ Properties:
- type: string
- multiValued: true
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- caseExact: true
- idcsSearchable: false
- clock
Skew numberSeconds (Updatable) The clock skew (in secs) that's allowed for the token issue and expiry time.
Added In: 2308181911
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: integer
- uniqueness: none
- description string
(Updatable) The description of the Identity Propagation Trust.
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- caseExact: false
- idcsSearchable: false
- impersonation
Service DomainsUsers Identity Propagation Trust Impersonation Service User[] (Updatable) The Impersonating Principal.
SCIM++ Properties:
- idcsCompositeKey: [rule, value]
- idcsSearchable: false
- multiValued: true
- mutability: readWrite
- required: false
- returned: request
- type: complex
- uniqueness: none
- keytab
Domains
Identity Propagation Trust Keytab (Updatable) The keytab stored in the tenancy's Vault. This is required if the identity propagation type is 'SPNEGO'.
SCIM++ Properties:
- idcsCompositeKey: [secretOcid]
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: complex
- uniqueness: none
- name string
The name of the the Identity Propagation Trust.
SCIM++ Properties:
- type: string
- caseExact: false
- idcsSearchable: true
- multiValued: false
- required: true
- mutability: immutable
- returned: default
- uniqueness: none
- oauth
Clients string[] (Updatable) The value of all the authorized OAuth Clients.
SCIM++ Properties:
- idcsSearchable: false
- multiValued: true
- mutability: readWrite
- required: false
- returned: default
- type: string
- uniqueness: none
- ocid string
(Updatable) Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
SCIM++ Properties:
- caseExact: true
- idcsSearchable: true
- multiValued: false
- mutability: immutable
- required: false
- returned: default
- type: string
- uniqueness: global
- public
Certificate string (Updatable) Store the public key if public key cert.
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- idcsSearchable: false
- public
Key stringEndpoint (Updatable) The cloud provider's public key API of SAML and OIDC providers for signature validation.
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- caseExact: false
- idcsSearchable: false
- resource
Type stringSchema Version - (Updatable) An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.
- subject
Claim stringName (Updatable) Used for locating the subject claim from the incoming token.
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- caseExact: true
- idcsSearchable: false
- subject
Mapping stringAttribute (Updatable) Subject Mapping Attribute to which the value from subject claim name value would be used for identity lookup.
SCIM++ Properties:
- type: string
- multiValued: false
- idcsSearchable: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- subject
Type string (Updatable) The type of the resource against which lookup will be made in the identity domain in IAM for the incoming subject claim value.
SCIM++ Properties:
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: string
- uniqueness: none
-
Domains
Identity Propagation Trust Tag[] (Updatable) A list of tags on this resource.
SCIM++ Properties:
- idcsCompositeKey: [key, value]
- idcsSearchable: true
- multiValued: true
- mutability: readWrite
- required: false
- returned: request
- type: complex
- uniqueness: none
- idcs_
endpoint str - The basic endpoint for the identity domain
- issuer str
(Updatable) The issuer claim of the Identity provider.
SCIM++ Properties:
- type: string
- multiValued: false
- required: true
- mutability: readWrite
- returned: always
- caseExact: true
- idcsSearchable: true
- uniqueness: server
- schemas Sequence[str]
(Updatable) REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard "enterprise" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: true
- mutability: readWrite
- required: true
- returned: default
- type: string
- uniqueness: none
- type str
(Updatable) The type of the inbound token from the Identity cloud provider.
SCIM++ Properties:
- caseExact: true
- idcsSearchable: false
- required: true
- mutability: readWrite
- returned: default
- type: string
- multiValued: false
- uniqueness: none
** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values
- account_
id str (Updatable) The Identity cloud provider service identifier, for example, the Azure Tenancy ID, AWS Account ID, or GCP Project ID.
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- caseExact: true
- idcsSearchable: true
- uniqueness: none
- active bool
(Updatable) If true, specifies that this Identity Propagation Trust is in an enabled state. The default value is false.
SCIM++ Properties:
- type: boolean
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- idcsSearchable: true
- allow_
impersonation bool (Updatable) Allow customers to define whether the resulting token should contain the authenticated user as the subject or whether the token should impersonate another Application Principal in IAM.
SCIM++ Properties:
- type: boolean
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- idcsSearchable: false
- attribute_
sets Sequence[str] - (Updatable) A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If 'attributes' query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.
- attributes str
- (Updatable) A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.
- str
- (Updatable) The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.
- client_
claim_ strname (Updatable) The claim name that identifies to whom the JWT/SAML token is issued. If AWS, then "aud" or "client_id". If Azure, then "appid". If GCP, then "aud".
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- idcsSearchable: false
- client_
claim_ Sequence[str]values (Updatable) The value that corresponds to the client claim name used to identify to whom the token is issued.
SCIM++ Properties:
- type: string
- multiValued: true
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- caseExact: true
- idcsSearchable: false
- clock_
skew_ intseconds (Updatable) The clock skew (in secs) that's allowed for the token issue and expiry time.
Added In: 2308181911
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: integer
- uniqueness: none
- description str
(Updatable) The description of the Identity Propagation Trust.
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- caseExact: false
- idcsSearchable: false
- impersonation_
service_ Sequence[identity.users Domains Identity Propagation Trust Impersonation Service User Args] (Updatable) The Impersonating Principal.
SCIM++ Properties:
- idcsCompositeKey: [rule, value]
- idcsSearchable: false
- multiValued: true
- mutability: readWrite
- required: false
- returned: request
- type: complex
- uniqueness: none
- keytab
identity.
Domains Identity Propagation Trust Keytab Args (Updatable) The keytab stored in the tenancy's Vault. This is required if the identity propagation type is 'SPNEGO'.
SCIM++ Properties:
- idcsCompositeKey: [secretOcid]
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: complex
- uniqueness: none
- name str
The name of the the Identity Propagation Trust.
SCIM++ Properties:
- type: string
- caseExact: false
- idcsSearchable: true
- multiValued: false
- required: true
- mutability: immutable
- returned: default
- uniqueness: none
- oauth_
clients Sequence[str] (Updatable) The value of all the authorized OAuth Clients.
SCIM++ Properties:
- idcsSearchable: false
- multiValued: true
- mutability: readWrite
- required: false
- returned: default
- type: string
- uniqueness: none
- ocid str
(Updatable) Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
SCIM++ Properties:
- caseExact: true
- idcsSearchable: true
- multiValued: false
- mutability: immutable
- required: false
- returned: default
- type: string
- uniqueness: global
- public_
certificate str (Updatable) Store the public key if public key cert.
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- idcsSearchable: false
- public_
key_ strendpoint (Updatable) The cloud provider's public key API of SAML and OIDC providers for signature validation.
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- caseExact: false
- idcsSearchable: false
- resource_
type_ strschema_ version - (Updatable) An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.
- subject_
claim_ strname (Updatable) Used for locating the subject claim from the incoming token.
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- caseExact: true
- idcsSearchable: false
- subject_
mapping_ strattribute (Updatable) Subject Mapping Attribute to which the value from subject claim name value would be used for identity lookup.
SCIM++ Properties:
- type: string
- multiValued: false
- idcsSearchable: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- subject_
type str (Updatable) The type of the resource against which lookup will be made in the identity domain in IAM for the incoming subject claim value.
SCIM++ Properties:
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: string
- uniqueness: none
-
Sequence[identity.
Domains Identity Propagation Trust Tag Args] (Updatable) A list of tags on this resource.
SCIM++ Properties:
- idcsCompositeKey: [key, value]
- idcsSearchable: true
- multiValued: true
- mutability: readWrite
- required: false
- returned: request
- type: complex
- uniqueness: none
- idcs
Endpoint String - The basic endpoint for the identity domain
- issuer String
(Updatable) The issuer claim of the Identity provider.
SCIM++ Properties:
- type: string
- multiValued: false
- required: true
- mutability: readWrite
- returned: always
- caseExact: true
- idcsSearchable: true
- uniqueness: server
- schemas List<String>
(Updatable) REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard "enterprise" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: true
- mutability: readWrite
- required: true
- returned: default
- type: string
- uniqueness: none
- type String
(Updatable) The type of the inbound token from the Identity cloud provider.
SCIM++ Properties:
- caseExact: true
- idcsSearchable: false
- required: true
- mutability: readWrite
- returned: default
- type: string
- multiValued: false
- uniqueness: none
** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values
- account
Id String (Updatable) The Identity cloud provider service identifier, for example, the Azure Tenancy ID, AWS Account ID, or GCP Project ID.
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- caseExact: true
- idcsSearchable: true
- uniqueness: none
- active Boolean
(Updatable) If true, specifies that this Identity Propagation Trust is in an enabled state. The default value is false.
SCIM++ Properties:
- type: boolean
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- idcsSearchable: true
- allow
Impersonation Boolean (Updatable) Allow customers to define whether the resulting token should contain the authenticated user as the subject or whether the token should impersonate another Application Principal in IAM.
SCIM++ Properties:
- type: boolean
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- idcsSearchable: false
- attribute
Sets List<String> - (Updatable) A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If 'attributes' query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.
- attributes String
- (Updatable) A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.
- String
- (Updatable) The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.
- client
Claim StringName (Updatable) The claim name that identifies to whom the JWT/SAML token is issued. If AWS, then "aud" or "client_id". If Azure, then "appid". If GCP, then "aud".
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- idcsSearchable: false
- client
Claim List<String>Values (Updatable) The value that corresponds to the client claim name used to identify to whom the token is issued.
SCIM++ Properties:
- type: string
- multiValued: true
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- caseExact: true
- idcsSearchable: false
- clock
Skew NumberSeconds (Updatable) The clock skew (in secs) that's allowed for the token issue and expiry time.
Added In: 2308181911
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: integer
- uniqueness: none
- description String
(Updatable) The description of the Identity Propagation Trust.
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- caseExact: false
- idcsSearchable: false
- impersonation
Service List<Property Map>Users (Updatable) The Impersonating Principal.
SCIM++ Properties:
- idcsCompositeKey: [rule, value]
- idcsSearchable: false
- multiValued: true
- mutability: readWrite
- required: false
- returned: request
- type: complex
- uniqueness: none
- keytab Property Map
(Updatable) The keytab stored in the tenancy's Vault. This is required if the identity propagation type is 'SPNEGO'.
SCIM++ Properties:
- idcsCompositeKey: [secretOcid]
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: complex
- uniqueness: none
- name String
The name of the the Identity Propagation Trust.
SCIM++ Properties:
- type: string
- caseExact: false
- idcsSearchable: true
- multiValued: false
- required: true
- mutability: immutable
- returned: default
- uniqueness: none
- oauth
Clients List<String> (Updatable) The value of all the authorized OAuth Clients.
SCIM++ Properties:
- idcsSearchable: false
- multiValued: true
- mutability: readWrite
- required: false
- returned: default
- type: string
- uniqueness: none
- ocid String
(Updatable) Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
SCIM++ Properties:
- caseExact: true
- idcsSearchable: true
- multiValued: false
- mutability: immutable
- required: false
- returned: default
- type: string
- uniqueness: global
- public
Certificate String (Updatable) Store the public key if public key cert.
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- idcsSearchable: false
- public
Key StringEndpoint (Updatable) The cloud provider's public key API of SAML and OIDC providers for signature validation.
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- caseExact: false
- idcsSearchable: false
- resource
Type StringSchema Version - (Updatable) An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.
- subject
Claim StringName (Updatable) Used for locating the subject claim from the incoming token.
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- caseExact: true
- idcsSearchable: false
- subject
Mapping StringAttribute (Updatable) Subject Mapping Attribute to which the value from subject claim name value would be used for identity lookup.
SCIM++ Properties:
- type: string
- multiValued: false
- idcsSearchable: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- subject
Type String (Updatable) The type of the resource against which lookup will be made in the identity domain in IAM for the incoming subject claim value.
SCIM++ Properties:
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: string
- uniqueness: none
- List<Property Map>
(Updatable) A list of tags on this resource.
SCIM++ Properties:
- idcsCompositeKey: [key, value]
- idcsSearchable: true
- multiValued: true
- mutability: readWrite
- required: false
- returned: request
- type: complex
- uniqueness: none
Outputs
All input properties are implicitly available as output properties. Additionally, the DomainsIdentityPropagationTrust resource produces the following output properties:
- Compartment
Ocid string (Updatable) Oracle Cloud Infrastructure Compartment Id (ocid) in which the resource lives.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
- Delete
In boolProgress (Updatable) A boolean flag indicating this resource in the process of being deleted. Usually set to true when synchronous deletion of the resource would take too long.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: boolean
- uniqueness: none
- Domain
Ocid string (Updatable) Oracle Cloud Infrastructure Domain Id (ocid) in which the resource lives.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
- Id string
- The provider-assigned unique ID for this managed resource.
- Idcs
Created List<DomainsBies Identity Propagation Trust Idcs Created By> (Updatable) The User or App who created the Resource
SCIM++ Properties:
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: true
- returned: default
- type: complex
- Idcs
Last List<DomainsModified Bies Identity Propagation Trust Idcs Last Modified By> (Updatable) The User or App who modified the Resource
SCIM++ Properties:
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: complex
- Idcs
Last stringUpgraded In Release (Updatable) The release number when the resource was upgraded.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: request
- type: string
- uniqueness: none
- Idcs
Prevented List<string>Operations (Updatable) Each value of this attribute specifies an operation that only an internal client may perform on this particular resource.
SCIM++ Properties:
- idcsSearchable: false
- multiValued: true
- mutability: readOnly
- required: false
- returned: request
- type: string
- uniqueness: none
- Metas
List<Domains
Identity Propagation Trust Meta> (Updatable) A complex attribute that contains resource metadata. All sub-attributes are OPTIONAL.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- idcsCsvAttributeNameMappings: [[columnHeaderName:Created Date, mapsTo:meta.created]]
- type: complex
- Tenancy
Ocid string (Updatable) Oracle Cloud Infrastructure Tenant Id (ocid) in which the resource lives.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
- Compartment
Ocid string (Updatable) Oracle Cloud Infrastructure Compartment Id (ocid) in which the resource lives.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
- Delete
In boolProgress (Updatable) A boolean flag indicating this resource in the process of being deleted. Usually set to true when synchronous deletion of the resource would take too long.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: boolean
- uniqueness: none
- Domain
Ocid string (Updatable) Oracle Cloud Infrastructure Domain Id (ocid) in which the resource lives.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
- Id string
- The provider-assigned unique ID for this managed resource.
- Idcs
Created []DomainsBies Identity Propagation Trust Idcs Created By (Updatable) The User or App who created the Resource
SCIM++ Properties:
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: true
- returned: default
- type: complex
- Idcs
Last []DomainsModified Bies Identity Propagation Trust Idcs Last Modified By (Updatable) The User or App who modified the Resource
SCIM++ Properties:
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: complex
- Idcs
Last stringUpgraded In Release (Updatable) The release number when the resource was upgraded.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: request
- type: string
- uniqueness: none
- Idcs
Prevented []stringOperations (Updatable) Each value of this attribute specifies an operation that only an internal client may perform on this particular resource.
SCIM++ Properties:
- idcsSearchable: false
- multiValued: true
- mutability: readOnly
- required: false
- returned: request
- type: string
- uniqueness: none
- Metas
[]Domains
Identity Propagation Trust Meta (Updatable) A complex attribute that contains resource metadata. All sub-attributes are OPTIONAL.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- idcsCsvAttributeNameMappings: [[columnHeaderName:Created Date, mapsTo:meta.created]]
- type: complex
- Tenancy
Ocid string (Updatable) Oracle Cloud Infrastructure Tenant Id (ocid) in which the resource lives.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
- compartment
Ocid String (Updatable) Oracle Cloud Infrastructure Compartment Id (ocid) in which the resource lives.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
- delete
In BooleanProgress (Updatable) A boolean flag indicating this resource in the process of being deleted. Usually set to true when synchronous deletion of the resource would take too long.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: boolean
- uniqueness: none
- domain
Ocid String (Updatable) Oracle Cloud Infrastructure Domain Id (ocid) in which the resource lives.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
- id String
- The provider-assigned unique ID for this managed resource.
- idcs
Created List<DomainsBies Propagation Trust Idcs Created By> (Updatable) The User or App who created the Resource
SCIM++ Properties:
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: true
- returned: default
- type: complex
- idcs
Last List<DomainsModified Bies Propagation Trust Idcs Last Modified By> (Updatable) The User or App who modified the Resource
SCIM++ Properties:
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: complex
- idcs
Last StringUpgraded In Release (Updatable) The release number when the resource was upgraded.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: request
- type: string
- uniqueness: none
- idcs
Prevented List<String>Operations (Updatable) Each value of this attribute specifies an operation that only an internal client may perform on this particular resource.
SCIM++ Properties:
- idcsSearchable: false
- multiValued: true
- mutability: readOnly
- required: false
- returned: request
- type: string
- uniqueness: none
- metas
List<Domains
Propagation Trust Meta> (Updatable) A complex attribute that contains resource metadata. All sub-attributes are OPTIONAL.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- idcsCsvAttributeNameMappings: [[columnHeaderName:Created Date, mapsTo:meta.created]]
- type: complex
- tenancy
Ocid String (Updatable) Oracle Cloud Infrastructure Tenant Id (ocid) in which the resource lives.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
- compartment
Ocid string (Updatable) Oracle Cloud Infrastructure Compartment Id (ocid) in which the resource lives.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
- delete
In booleanProgress (Updatable) A boolean flag indicating this resource in the process of being deleted. Usually set to true when synchronous deletion of the resource would take too long.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: boolean
- uniqueness: none
- domain
Ocid string (Updatable) Oracle Cloud Infrastructure Domain Id (ocid) in which the resource lives.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
- id string
- The provider-assigned unique ID for this managed resource.
- idcs
Created DomainsBies Identity Propagation Trust Idcs Created By[] (Updatable) The User or App who created the Resource
SCIM++ Properties:
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: true
- returned: default
- type: complex
- idcs
Last DomainsModified Bies Identity Propagation Trust Idcs Last Modified By[] (Updatable) The User or App who modified the Resource
SCIM++ Properties:
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: complex
- idcs
Last stringUpgraded In Release (Updatable) The release number when the resource was upgraded.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: request
- type: string
- uniqueness: none
- idcs
Prevented string[]Operations (Updatable) Each value of this attribute specifies an operation that only an internal client may perform on this particular resource.
SCIM++ Properties:
- idcsSearchable: false
- multiValued: true
- mutability: readOnly
- required: false
- returned: request
- type: string
- uniqueness: none
- metas
Domains
Identity Propagation Trust Meta[] (Updatable) A complex attribute that contains resource metadata. All sub-attributes are OPTIONAL.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- idcsCsvAttributeNameMappings: [[columnHeaderName:Created Date, mapsTo:meta.created]]
- type: complex
- tenancy
Ocid string (Updatable) Oracle Cloud Infrastructure Tenant Id (ocid) in which the resource lives.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
- compartment_
ocid str (Updatable) Oracle Cloud Infrastructure Compartment Id (ocid) in which the resource lives.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
- delete_
in_ boolprogress (Updatable) A boolean flag indicating this resource in the process of being deleted. Usually set to true when synchronous deletion of the resource would take too long.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: boolean
- uniqueness: none
- domain_
ocid str (Updatable) Oracle Cloud Infrastructure Domain Id (ocid) in which the resource lives.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
- id str
- The provider-assigned unique ID for this managed resource.
- idcs_
created_ Sequence[identity.bies Domains Identity Propagation Trust Idcs Created By] (Updatable) The User or App who created the Resource
SCIM++ Properties:
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: true
- returned: default
- type: complex
- idcs_
last_ Sequence[identity.modified_ bies Domains Identity Propagation Trust Idcs Last Modified By] (Updatable) The User or App who modified the Resource
SCIM++ Properties:
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: complex
- idcs_
last_ strupgraded_ in_ release (Updatable) The release number when the resource was upgraded.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: request
- type: string
- uniqueness: none
- idcs_
prevented_ Sequence[str]operations (Updatable) Each value of this attribute specifies an operation that only an internal client may perform on this particular resource.
SCIM++ Properties:
- idcsSearchable: false
- multiValued: true
- mutability: readOnly
- required: false
- returned: request
- type: string
- uniqueness: none
- metas
Sequence[identity.
Domains Identity Propagation Trust Meta] (Updatable) A complex attribute that contains resource metadata. All sub-attributes are OPTIONAL.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- idcsCsvAttributeNameMappings: [[columnHeaderName:Created Date, mapsTo:meta.created]]
- type: complex
- tenancy_
ocid str (Updatable) Oracle Cloud Infrastructure Tenant Id (ocid) in which the resource lives.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
- compartment
Ocid String (Updatable) Oracle Cloud Infrastructure Compartment Id (ocid) in which the resource lives.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
- delete
In BooleanProgress (Updatable) A boolean flag indicating this resource in the process of being deleted. Usually set to true when synchronous deletion of the resource would take too long.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: boolean
- uniqueness: none
- domain
Ocid String (Updatable) Oracle Cloud Infrastructure Domain Id (ocid) in which the resource lives.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
- id String
- The provider-assigned unique ID for this managed resource.
- idcs
Created List<Property Map>Bies (Updatable) The User or App who created the Resource
SCIM++ Properties:
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: true
- returned: default
- type: complex
- idcs
Last List<Property Map>Modified Bies (Updatable) The User or App who modified the Resource
SCIM++ Properties:
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: complex
- idcs
Last StringUpgraded In Release (Updatable) The release number when the resource was upgraded.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: request
- type: string
- uniqueness: none
- idcs
Prevented List<String>Operations (Updatable) Each value of this attribute specifies an operation that only an internal client may perform on this particular resource.
SCIM++ Properties:
- idcsSearchable: false
- multiValued: true
- mutability: readOnly
- required: false
- returned: request
- type: string
- uniqueness: none
- metas List<Property Map>
(Updatable) A complex attribute that contains resource metadata. All sub-attributes are OPTIONAL.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- idcsCsvAttributeNameMappings: [[columnHeaderName:Created Date, mapsTo:meta.created]]
- type: complex
- tenancy
Ocid String (Updatable) Oracle Cloud Infrastructure Tenant Id (ocid) in which the resource lives.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
Look up Existing DomainsIdentityPropagationTrust Resource
Get an existing DomainsIdentityPropagationTrust resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: DomainsIdentityPropagationTrustState, opts?: CustomResourceOptions): DomainsIdentityPropagationTrust@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
account_id: Optional[str] = None,
active: Optional[bool] = None,
allow_impersonation: Optional[bool] = None,
attribute_sets: Optional[Sequence[str]] = None,
attributes: Optional[str] = None,
authorization: Optional[str] = None,
client_claim_name: Optional[str] = None,
client_claim_values: Optional[Sequence[str]] = None,
clock_skew_seconds: Optional[int] = None,
compartment_ocid: Optional[str] = None,
delete_in_progress: Optional[bool] = None,
description: Optional[str] = None,
domain_ocid: Optional[str] = None,
idcs_created_bies: Optional[Sequence[_identity.DomainsIdentityPropagationTrustIdcsCreatedByArgs]] = None,
idcs_endpoint: Optional[str] = None,
idcs_last_modified_bies: Optional[Sequence[_identity.DomainsIdentityPropagationTrustIdcsLastModifiedByArgs]] = None,
idcs_last_upgraded_in_release: Optional[str] = None,
idcs_prevented_operations: Optional[Sequence[str]] = None,
impersonation_service_users: Optional[Sequence[_identity.DomainsIdentityPropagationTrustImpersonationServiceUserArgs]] = None,
issuer: Optional[str] = None,
keytab: Optional[_identity.DomainsIdentityPropagationTrustKeytabArgs] = None,
metas: Optional[Sequence[_identity.DomainsIdentityPropagationTrustMetaArgs]] = None,
name: Optional[str] = None,
oauth_clients: Optional[Sequence[str]] = None,
ocid: Optional[str] = None,
public_certificate: Optional[str] = None,
public_key_endpoint: Optional[str] = None,
resource_type_schema_version: Optional[str] = None,
schemas: Optional[Sequence[str]] = None,
subject_claim_name: Optional[str] = None,
subject_mapping_attribute: Optional[str] = None,
subject_type: Optional[str] = None,
tags: Optional[Sequence[_identity.DomainsIdentityPropagationTrustTagArgs]] = None,
tenancy_ocid: Optional[str] = None,
type: Optional[str] = None) -> DomainsIdentityPropagationTrustfunc GetDomainsIdentityPropagationTrust(ctx *Context, name string, id IDInput, state *DomainsIdentityPropagationTrustState, opts ...ResourceOption) (*DomainsIdentityPropagationTrust, error)public static DomainsIdentityPropagationTrust Get(string name, Input<string> id, DomainsIdentityPropagationTrustState? state, CustomResourceOptions? opts = null)public static DomainsIdentityPropagationTrust get(String name, Output<String> id, DomainsIdentityPropagationTrustState state, CustomResourceOptions options)Resource lookup is not supported in YAML- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- Account
Id string (Updatable) The Identity cloud provider service identifier, for example, the Azure Tenancy ID, AWS Account ID, or GCP Project ID.
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- caseExact: true
- idcsSearchable: true
- uniqueness: none
- Active bool
(Updatable) If true, specifies that this Identity Propagation Trust is in an enabled state. The default value is false.
SCIM++ Properties:
- type: boolean
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- idcsSearchable: true
- Allow
Impersonation bool (Updatable) Allow customers to define whether the resulting token should contain the authenticated user as the subject or whether the token should impersonate another Application Principal in IAM.
SCIM++ Properties:
- type: boolean
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- idcsSearchable: false
- Attribute
Sets List<string> - (Updatable) A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If 'attributes' query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.
- Attributes string
- (Updatable) A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.
- string
- (Updatable) The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.
- Client
Claim stringName (Updatable) The claim name that identifies to whom the JWT/SAML token is issued. If AWS, then "aud" or "client_id". If Azure, then "appid". If GCP, then "aud".
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- idcsSearchable: false
- Client
Claim List<string>Values (Updatable) The value that corresponds to the client claim name used to identify to whom the token is issued.
SCIM++ Properties:
- type: string
- multiValued: true
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- caseExact: true
- idcsSearchable: false
- Clock
Skew intSeconds (Updatable) The clock skew (in secs) that's allowed for the token issue and expiry time.
Added In: 2308181911
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: integer
- uniqueness: none
- Compartment
Ocid string (Updatable) Oracle Cloud Infrastructure Compartment Id (ocid) in which the resource lives.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
- Delete
In boolProgress (Updatable) A boolean flag indicating this resource in the process of being deleted. Usually set to true when synchronous deletion of the resource would take too long.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: boolean
- uniqueness: none
- Description string
(Updatable) The description of the Identity Propagation Trust.
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- caseExact: false
- idcsSearchable: false
- Domain
Ocid string (Updatable) Oracle Cloud Infrastructure Domain Id (ocid) in which the resource lives.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
- Idcs
Created List<DomainsBies Identity Propagation Trust Idcs Created By> (Updatable) The User or App who created the Resource
SCIM++ Properties:
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: true
- returned: default
- type: complex
- Idcs
Endpoint string - The basic endpoint for the identity domain
- Idcs
Last List<DomainsModified Bies Identity Propagation Trust Idcs Last Modified By> (Updatable) The User or App who modified the Resource
SCIM++ Properties:
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: complex
- Idcs
Last stringUpgraded In Release (Updatable) The release number when the resource was upgraded.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: request
- type: string
- uniqueness: none
- Idcs
Prevented List<string>Operations (Updatable) Each value of this attribute specifies an operation that only an internal client may perform on this particular resource.
SCIM++ Properties:
- idcsSearchable: false
- multiValued: true
- mutability: readOnly
- required: false
- returned: request
- type: string
- uniqueness: none
- Impersonation
Service List<DomainsUsers Identity Propagation Trust Impersonation Service User> (Updatable) The Impersonating Principal.
SCIM++ Properties:
- idcsCompositeKey: [rule, value]
- idcsSearchable: false
- multiValued: true
- mutability: readWrite
- required: false
- returned: request
- type: complex
- uniqueness: none
- Issuer string
(Updatable) The issuer claim of the Identity provider.
SCIM++ Properties:
- type: string
- multiValued: false
- required: true
- mutability: readWrite
- returned: always
- caseExact: true
- idcsSearchable: true
- uniqueness: server
- Keytab
Domains
Identity Propagation Trust Keytab (Updatable) The keytab stored in the tenancy's Vault. This is required if the identity propagation type is 'SPNEGO'.
SCIM++ Properties:
- idcsCompositeKey: [secretOcid]
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: complex
- uniqueness: none
- Metas
List<Domains
Identity Propagation Trust Meta> (Updatable) A complex attribute that contains resource metadata. All sub-attributes are OPTIONAL.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- idcsCsvAttributeNameMappings: [[columnHeaderName:Created Date, mapsTo:meta.created]]
- type: complex
- Name string
The name of the the Identity Propagation Trust.
SCIM++ Properties:
- type: string
- caseExact: false
- idcsSearchable: true
- multiValued: false
- required: true
- mutability: immutable
- returned: default
- uniqueness: none
- Oauth
Clients List<string> (Updatable) The value of all the authorized OAuth Clients.
SCIM++ Properties:
- idcsSearchable: false
- multiValued: true
- mutability: readWrite
- required: false
- returned: default
- type: string
- uniqueness: none
- Ocid string
(Updatable) Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
SCIM++ Properties:
- caseExact: true
- idcsSearchable: true
- multiValued: false
- mutability: immutable
- required: false
- returned: default
- type: string
- uniqueness: global
- Public
Certificate string (Updatable) Store the public key if public key cert.
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- idcsSearchable: false
- Public
Key stringEndpoint (Updatable) The cloud provider's public key API of SAML and OIDC providers for signature validation.
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- caseExact: false
- idcsSearchable: false
- Resource
Type stringSchema Version - (Updatable) An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.
- Schemas List<string>
(Updatable) REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard "enterprise" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: true
- mutability: readWrite
- required: true
- returned: default
- type: string
- uniqueness: none
- Subject
Claim stringName (Updatable) Used for locating the subject claim from the incoming token.
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- caseExact: true
- idcsSearchable: false
- Subject
Mapping stringAttribute (Updatable) Subject Mapping Attribute to which the value from subject claim name value would be used for identity lookup.
SCIM++ Properties:
- type: string
- multiValued: false
- idcsSearchable: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- Subject
Type string (Updatable) The type of the resource against which lookup will be made in the identity domain in IAM for the incoming subject claim value.
SCIM++ Properties:
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: string
- uniqueness: none
-
List<Domains
Identity Propagation Trust Tag> (Updatable) A list of tags on this resource.
SCIM++ Properties:
- idcsCompositeKey: [key, value]
- idcsSearchable: true
- multiValued: true
- mutability: readWrite
- required: false
- returned: request
- type: complex
- uniqueness: none
- Tenancy
Ocid string (Updatable) Oracle Cloud Infrastructure Tenant Id (ocid) in which the resource lives.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
- Type string
(Updatable) The type of the inbound token from the Identity cloud provider.
SCIM++ Properties:
- caseExact: true
- idcsSearchable: false
- required: true
- mutability: readWrite
- returned: default
- type: string
- multiValued: false
- uniqueness: none
** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values
- Account
Id string (Updatable) The Identity cloud provider service identifier, for example, the Azure Tenancy ID, AWS Account ID, or GCP Project ID.
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- caseExact: true
- idcsSearchable: true
- uniqueness: none
- Active bool
(Updatable) If true, specifies that this Identity Propagation Trust is in an enabled state. The default value is false.
SCIM++ Properties:
- type: boolean
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- idcsSearchable: true
- Allow
Impersonation bool (Updatable) Allow customers to define whether the resulting token should contain the authenticated user as the subject or whether the token should impersonate another Application Principal in IAM.
SCIM++ Properties:
- type: boolean
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- idcsSearchable: false
- Attribute
Sets []string - (Updatable) A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If 'attributes' query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.
- Attributes string
- (Updatable) A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.
- string
- (Updatable) The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.
- Client
Claim stringName (Updatable) The claim name that identifies to whom the JWT/SAML token is issued. If AWS, then "aud" or "client_id". If Azure, then "appid". If GCP, then "aud".
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- idcsSearchable: false
- Client
Claim []stringValues (Updatable) The value that corresponds to the client claim name used to identify to whom the token is issued.
SCIM++ Properties:
- type: string
- multiValued: true
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- caseExact: true
- idcsSearchable: false
- Clock
Skew intSeconds (Updatable) The clock skew (in secs) that's allowed for the token issue and expiry time.
Added In: 2308181911
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: integer
- uniqueness: none
- Compartment
Ocid string (Updatable) Oracle Cloud Infrastructure Compartment Id (ocid) in which the resource lives.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
- Delete
In boolProgress (Updatable) A boolean flag indicating this resource in the process of being deleted. Usually set to true when synchronous deletion of the resource would take too long.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: boolean
- uniqueness: none
- Description string
(Updatable) The description of the Identity Propagation Trust.
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- caseExact: false
- idcsSearchable: false
- Domain
Ocid string (Updatable) Oracle Cloud Infrastructure Domain Id (ocid) in which the resource lives.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
- Idcs
Created []DomainsBies Identity Propagation Trust Idcs Created By Args (Updatable) The User or App who created the Resource
SCIM++ Properties:
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: true
- returned: default
- type: complex
- Idcs
Endpoint string - The basic endpoint for the identity domain
- Idcs
Last []DomainsModified Bies Identity Propagation Trust Idcs Last Modified By Args (Updatable) The User or App who modified the Resource
SCIM++ Properties:
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: complex
- Idcs
Last stringUpgraded In Release (Updatable) The release number when the resource was upgraded.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: request
- type: string
- uniqueness: none
- Idcs
Prevented []stringOperations (Updatable) Each value of this attribute specifies an operation that only an internal client may perform on this particular resource.
SCIM++ Properties:
- idcsSearchable: false
- multiValued: true
- mutability: readOnly
- required: false
- returned: request
- type: string
- uniqueness: none
- Impersonation
Service []DomainsUsers Identity Propagation Trust Impersonation Service User Args (Updatable) The Impersonating Principal.
SCIM++ Properties:
- idcsCompositeKey: [rule, value]
- idcsSearchable: false
- multiValued: true
- mutability: readWrite
- required: false
- returned: request
- type: complex
- uniqueness: none
- Issuer string
(Updatable) The issuer claim of the Identity provider.
SCIM++ Properties:
- type: string
- multiValued: false
- required: true
- mutability: readWrite
- returned: always
- caseExact: true
- idcsSearchable: true
- uniqueness: server
- Keytab
Domains
Identity Propagation Trust Keytab Args (Updatable) The keytab stored in the tenancy's Vault. This is required if the identity propagation type is 'SPNEGO'.
SCIM++ Properties:
- idcsCompositeKey: [secretOcid]
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: complex
- uniqueness: none
- Metas
[]Domains
Identity Propagation Trust Meta Args (Updatable) A complex attribute that contains resource metadata. All sub-attributes are OPTIONAL.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- idcsCsvAttributeNameMappings: [[columnHeaderName:Created Date, mapsTo:meta.created]]
- type: complex
- Name string
The name of the the Identity Propagation Trust.
SCIM++ Properties:
- type: string
- caseExact: false
- idcsSearchable: true
- multiValued: false
- required: true
- mutability: immutable
- returned: default
- uniqueness: none
- Oauth
Clients []string (Updatable) The value of all the authorized OAuth Clients.
SCIM++ Properties:
- idcsSearchable: false
- multiValued: true
- mutability: readWrite
- required: false
- returned: default
- type: string
- uniqueness: none
- Ocid string
(Updatable) Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
SCIM++ Properties:
- caseExact: true
- idcsSearchable: true
- multiValued: false
- mutability: immutable
- required: false
- returned: default
- type: string
- uniqueness: global
- Public
Certificate string (Updatable) Store the public key if public key cert.
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- idcsSearchable: false
- Public
Key stringEndpoint (Updatable) The cloud provider's public key API of SAML and OIDC providers for signature validation.
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- caseExact: false
- idcsSearchable: false
- Resource
Type stringSchema Version - (Updatable) An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.
- Schemas []string
(Updatable) REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard "enterprise" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: true
- mutability: readWrite
- required: true
- returned: default
- type: string
- uniqueness: none
- Subject
Claim stringName (Updatable) Used for locating the subject claim from the incoming token.
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- caseExact: true
- idcsSearchable: false
- Subject
Mapping stringAttribute (Updatable) Subject Mapping Attribute to which the value from subject claim name value would be used for identity lookup.
SCIM++ Properties:
- type: string
- multiValued: false
- idcsSearchable: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- Subject
Type string (Updatable) The type of the resource against which lookup will be made in the identity domain in IAM for the incoming subject claim value.
SCIM++ Properties:
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: string
- uniqueness: none
-
[]Domains
Identity Propagation Trust Tag Args (Updatable) A list of tags on this resource.
SCIM++ Properties:
- idcsCompositeKey: [key, value]
- idcsSearchable: true
- multiValued: true
- mutability: readWrite
- required: false
- returned: request
- type: complex
- uniqueness: none
- Tenancy
Ocid string (Updatable) Oracle Cloud Infrastructure Tenant Id (ocid) in which the resource lives.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
- Type string
(Updatable) The type of the inbound token from the Identity cloud provider.
SCIM++ Properties:
- caseExact: true
- idcsSearchable: false
- required: true
- mutability: readWrite
- returned: default
- type: string
- multiValued: false
- uniqueness: none
** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values
- account
Id String (Updatable) The Identity cloud provider service identifier, for example, the Azure Tenancy ID, AWS Account ID, or GCP Project ID.
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- caseExact: true
- idcsSearchable: true
- uniqueness: none
- active Boolean
(Updatable) If true, specifies that this Identity Propagation Trust is in an enabled state. The default value is false.
SCIM++ Properties:
- type: boolean
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- idcsSearchable: true
- allow
Impersonation Boolean (Updatable) Allow customers to define whether the resulting token should contain the authenticated user as the subject or whether the token should impersonate another Application Principal in IAM.
SCIM++ Properties:
- type: boolean
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- idcsSearchable: false
- attribute
Sets List<String> - (Updatable) A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If 'attributes' query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.
- attributes String
- (Updatable) A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.
- String
- (Updatable) The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.
- client
Claim StringName (Updatable) The claim name that identifies to whom the JWT/SAML token is issued. If AWS, then "aud" or "client_id". If Azure, then "appid". If GCP, then "aud".
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- idcsSearchable: false
- client
Claim List<String>Values (Updatable) The value that corresponds to the client claim name used to identify to whom the token is issued.
SCIM++ Properties:
- type: string
- multiValued: true
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- caseExact: true
- idcsSearchable: false
- clock
Skew IntegerSeconds (Updatable) The clock skew (in secs) that's allowed for the token issue and expiry time.
Added In: 2308181911
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: integer
- uniqueness: none
- compartment
Ocid String (Updatable) Oracle Cloud Infrastructure Compartment Id (ocid) in which the resource lives.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
- delete
In BooleanProgress (Updatable) A boolean flag indicating this resource in the process of being deleted. Usually set to true when synchronous deletion of the resource would take too long.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: boolean
- uniqueness: none
- description String
(Updatable) The description of the Identity Propagation Trust.
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- caseExact: false
- idcsSearchable: false
- domain
Ocid String (Updatable) Oracle Cloud Infrastructure Domain Id (ocid) in which the resource lives.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
- idcs
Created List<DomainsBies Propagation Trust Idcs Created By> (Updatable) The User or App who created the Resource
SCIM++ Properties:
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: true
- returned: default
- type: complex
- idcs
Endpoint String - The basic endpoint for the identity domain
- idcs
Last List<DomainsModified Bies Propagation Trust Idcs Last Modified By> (Updatable) The User or App who modified the Resource
SCIM++ Properties:
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: complex
- idcs
Last StringUpgraded In Release (Updatable) The release number when the resource was upgraded.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: request
- type: string
- uniqueness: none
- idcs
Prevented List<String>Operations (Updatable) Each value of this attribute specifies an operation that only an internal client may perform on this particular resource.
SCIM++ Properties:
- idcsSearchable: false
- multiValued: true
- mutability: readOnly
- required: false
- returned: request
- type: string
- uniqueness: none
- impersonation
Service List<DomainsUsers Propagation Trust Impersonation Service User> (Updatable) The Impersonating Principal.
SCIM++ Properties:
- idcsCompositeKey: [rule, value]
- idcsSearchable: false
- multiValued: true
- mutability: readWrite
- required: false
- returned: request
- type: complex
- uniqueness: none
- issuer String
(Updatable) The issuer claim of the Identity provider.
SCIM++ Properties:
- type: string
- multiValued: false
- required: true
- mutability: readWrite
- returned: always
- caseExact: true
- idcsSearchable: true
- uniqueness: server
- keytab
Domains
Propagation Trust Keytab (Updatable) The keytab stored in the tenancy's Vault. This is required if the identity propagation type is 'SPNEGO'.
SCIM++ Properties:
- idcsCompositeKey: [secretOcid]
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: complex
- uniqueness: none
- metas
List<Domains
Propagation Trust Meta> (Updatable) A complex attribute that contains resource metadata. All sub-attributes are OPTIONAL.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- idcsCsvAttributeNameMappings: [[columnHeaderName:Created Date, mapsTo:meta.created]]
- type: complex
- name String
The name of the the Identity Propagation Trust.
SCIM++ Properties:
- type: string
- caseExact: false
- idcsSearchable: true
- multiValued: false
- required: true
- mutability: immutable
- returned: default
- uniqueness: none
- oauth
Clients List<String> (Updatable) The value of all the authorized OAuth Clients.
SCIM++ Properties:
- idcsSearchable: false
- multiValued: true
- mutability: readWrite
- required: false
- returned: default
- type: string
- uniqueness: none
- ocid String
(Updatable) Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
SCIM++ Properties:
- caseExact: true
- idcsSearchable: true
- multiValued: false
- mutability: immutable
- required: false
- returned: default
- type: string
- uniqueness: global
- public
Certificate String (Updatable) Store the public key if public key cert.
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- idcsSearchable: false
- public
Key StringEndpoint (Updatable) The cloud provider's public key API of SAML and OIDC providers for signature validation.
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- caseExact: false
- idcsSearchable: false
- resource
Type StringSchema Version - (Updatable) An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.
- schemas List<String>
(Updatable) REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard "enterprise" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: true
- mutability: readWrite
- required: true
- returned: default
- type: string
- uniqueness: none
- subject
Claim StringName (Updatable) Used for locating the subject claim from the incoming token.
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- caseExact: true
- idcsSearchable: false
- subject
Mapping StringAttribute (Updatable) Subject Mapping Attribute to which the value from subject claim name value would be used for identity lookup.
SCIM++ Properties:
- type: string
- multiValued: false
- idcsSearchable: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- subject
Type String (Updatable) The type of the resource against which lookup will be made in the identity domain in IAM for the incoming subject claim value.
SCIM++ Properties:
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: string
- uniqueness: none
-
List<Domains
Propagation Trust Tag> (Updatable) A list of tags on this resource.
SCIM++ Properties:
- idcsCompositeKey: [key, value]
- idcsSearchable: true
- multiValued: true
- mutability: readWrite
- required: false
- returned: request
- type: complex
- uniqueness: none
- tenancy
Ocid String (Updatable) Oracle Cloud Infrastructure Tenant Id (ocid) in which the resource lives.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
- type String
(Updatable) The type of the inbound token from the Identity cloud provider.
SCIM++ Properties:
- caseExact: true
- idcsSearchable: false
- required: true
- mutability: readWrite
- returned: default
- type: string
- multiValued: false
- uniqueness: none
** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values
- account
Id string (Updatable) The Identity cloud provider service identifier, for example, the Azure Tenancy ID, AWS Account ID, or GCP Project ID.
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- caseExact: true
- idcsSearchable: true
- uniqueness: none
- active boolean
(Updatable) If true, specifies that this Identity Propagation Trust is in an enabled state. The default value is false.
SCIM++ Properties:
- type: boolean
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- idcsSearchable: true
- allow
Impersonation boolean (Updatable) Allow customers to define whether the resulting token should contain the authenticated user as the subject or whether the token should impersonate another Application Principal in IAM.
SCIM++ Properties:
- type: boolean
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- idcsSearchable: false
- attribute
Sets string[] - (Updatable) A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If 'attributes' query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.
- attributes string
- (Updatable) A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.
- string
- (Updatable) The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.
- client
Claim stringName (Updatable) The claim name that identifies to whom the JWT/SAML token is issued. If AWS, then "aud" or "client_id". If Azure, then "appid". If GCP, then "aud".
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- idcsSearchable: false
- client
Claim string[]Values (Updatable) The value that corresponds to the client claim name used to identify to whom the token is issued.
SCIM++ Properties:
- type: string
- multiValued: true
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- caseExact: true
- idcsSearchable: false
- clock
Skew numberSeconds (Updatable) The clock skew (in secs) that's allowed for the token issue and expiry time.
Added In: 2308181911
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: integer
- uniqueness: none
- compartment
Ocid string (Updatable) Oracle Cloud Infrastructure Compartment Id (ocid) in which the resource lives.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
- delete
In booleanProgress (Updatable) A boolean flag indicating this resource in the process of being deleted. Usually set to true when synchronous deletion of the resource would take too long.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: boolean
- uniqueness: none
- description string
(Updatable) The description of the Identity Propagation Trust.
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- caseExact: false
- idcsSearchable: false
- domain
Ocid string (Updatable) Oracle Cloud Infrastructure Domain Id (ocid) in which the resource lives.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
- idcs
Created DomainsBies Identity Propagation Trust Idcs Created By[] (Updatable) The User or App who created the Resource
SCIM++ Properties:
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: true
- returned: default
- type: complex
- idcs
Endpoint string - The basic endpoint for the identity domain
- idcs
Last DomainsModified Bies Identity Propagation Trust Idcs Last Modified By[] (Updatable) The User or App who modified the Resource
SCIM++ Properties:
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: complex
- idcs
Last stringUpgraded In Release (Updatable) The release number when the resource was upgraded.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: request
- type: string
- uniqueness: none
- idcs
Prevented string[]Operations (Updatable) Each value of this attribute specifies an operation that only an internal client may perform on this particular resource.
SCIM++ Properties:
- idcsSearchable: false
- multiValued: true
- mutability: readOnly
- required: false
- returned: request
- type: string
- uniqueness: none
- impersonation
Service DomainsUsers Identity Propagation Trust Impersonation Service User[] (Updatable) The Impersonating Principal.
SCIM++ Properties:
- idcsCompositeKey: [rule, value]
- idcsSearchable: false
- multiValued: true
- mutability: readWrite
- required: false
- returned: request
- type: complex
- uniqueness: none
- issuer string
(Updatable) The issuer claim of the Identity provider.
SCIM++ Properties:
- type: string
- multiValued: false
- required: true
- mutability: readWrite
- returned: always
- caseExact: true
- idcsSearchable: true
- uniqueness: server
- keytab
Domains
Identity Propagation Trust Keytab (Updatable) The keytab stored in the tenancy's Vault. This is required if the identity propagation type is 'SPNEGO'.
SCIM++ Properties:
- idcsCompositeKey: [secretOcid]
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: complex
- uniqueness: none
- metas
Domains
Identity Propagation Trust Meta[] (Updatable) A complex attribute that contains resource metadata. All sub-attributes are OPTIONAL.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- idcsCsvAttributeNameMappings: [[columnHeaderName:Created Date, mapsTo:meta.created]]
- type: complex
- name string
The name of the the Identity Propagation Trust.
SCIM++ Properties:
- type: string
- caseExact: false
- idcsSearchable: true
- multiValued: false
- required: true
- mutability: immutable
- returned: default
- uniqueness: none
- oauth
Clients string[] (Updatable) The value of all the authorized OAuth Clients.
SCIM++ Properties:
- idcsSearchable: false
- multiValued: true
- mutability: readWrite
- required: false
- returned: default
- type: string
- uniqueness: none
- ocid string
(Updatable) Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
SCIM++ Properties:
- caseExact: true
- idcsSearchable: true
- multiValued: false
- mutability: immutable
- required: false
- returned: default
- type: string
- uniqueness: global
- public
Certificate string (Updatable) Store the public key if public key cert.
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- idcsSearchable: false
- public
Key stringEndpoint (Updatable) The cloud provider's public key API of SAML and OIDC providers for signature validation.
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- caseExact: false
- idcsSearchable: false
- resource
Type stringSchema Version - (Updatable) An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.
- schemas string[]
(Updatable) REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard "enterprise" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: true
- mutability: readWrite
- required: true
- returned: default
- type: string
- uniqueness: none
- subject
Claim stringName (Updatable) Used for locating the subject claim from the incoming token.
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- caseExact: true
- idcsSearchable: false
- subject
Mapping stringAttribute (Updatable) Subject Mapping Attribute to which the value from subject claim name value would be used for identity lookup.
SCIM++ Properties:
- type: string
- multiValued: false
- idcsSearchable: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- subject
Type string (Updatable) The type of the resource against which lookup will be made in the identity domain in IAM for the incoming subject claim value.
SCIM++ Properties:
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: string
- uniqueness: none
-
Domains
Identity Propagation Trust Tag[] (Updatable) A list of tags on this resource.
SCIM++ Properties:
- idcsCompositeKey: [key, value]
- idcsSearchable: true
- multiValued: true
- mutability: readWrite
- required: false
- returned: request
- type: complex
- uniqueness: none
- tenancy
Ocid string (Updatable) Oracle Cloud Infrastructure Tenant Id (ocid) in which the resource lives.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
- type string
(Updatable) The type of the inbound token from the Identity cloud provider.
SCIM++ Properties:
- caseExact: true
- idcsSearchable: false
- required: true
- mutability: readWrite
- returned: default
- type: string
- multiValued: false
- uniqueness: none
** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values
- account_
id str (Updatable) The Identity cloud provider service identifier, for example, the Azure Tenancy ID, AWS Account ID, or GCP Project ID.
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- caseExact: true
- idcsSearchable: true
- uniqueness: none
- active bool
(Updatable) If true, specifies that this Identity Propagation Trust is in an enabled state. The default value is false.
SCIM++ Properties:
- type: boolean
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- idcsSearchable: true
- allow_
impersonation bool (Updatable) Allow customers to define whether the resulting token should contain the authenticated user as the subject or whether the token should impersonate another Application Principal in IAM.
SCIM++ Properties:
- type: boolean
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- idcsSearchable: false
- attribute_
sets Sequence[str] - (Updatable) A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If 'attributes' query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.
- attributes str
- (Updatable) A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.
- str
- (Updatable) The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.
- client_
claim_ strname (Updatable) The claim name that identifies to whom the JWT/SAML token is issued. If AWS, then "aud" or "client_id". If Azure, then "appid". If GCP, then "aud".
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- idcsSearchable: false
- client_
claim_ Sequence[str]values (Updatable) The value that corresponds to the client claim name used to identify to whom the token is issued.
SCIM++ Properties:
- type: string
- multiValued: true
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- caseExact: true
- idcsSearchable: false
- clock_
skew_ intseconds (Updatable) The clock skew (in secs) that's allowed for the token issue and expiry time.
Added In: 2308181911
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: integer
- uniqueness: none
- compartment_
ocid str (Updatable) Oracle Cloud Infrastructure Compartment Id (ocid) in which the resource lives.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
- delete_
in_ boolprogress (Updatable) A boolean flag indicating this resource in the process of being deleted. Usually set to true when synchronous deletion of the resource would take too long.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: boolean
- uniqueness: none
- description str
(Updatable) The description of the Identity Propagation Trust.
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- caseExact: false
- idcsSearchable: false
- domain_
ocid str (Updatable) Oracle Cloud Infrastructure Domain Id (ocid) in which the resource lives.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
- idcs_
created_ Sequence[identity.bies Domains Identity Propagation Trust Idcs Created By Args] (Updatable) The User or App who created the Resource
SCIM++ Properties:
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: true
- returned: default
- type: complex
- idcs_
endpoint str - The basic endpoint for the identity domain
- idcs_
last_ Sequence[identity.modified_ bies Domains Identity Propagation Trust Idcs Last Modified By Args] (Updatable) The User or App who modified the Resource
SCIM++ Properties:
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: complex
- idcs_
last_ strupgraded_ in_ release (Updatable) The release number when the resource was upgraded.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: request
- type: string
- uniqueness: none
- idcs_
prevented_ Sequence[str]operations (Updatable) Each value of this attribute specifies an operation that only an internal client may perform on this particular resource.
SCIM++ Properties:
- idcsSearchable: false
- multiValued: true
- mutability: readOnly
- required: false
- returned: request
- type: string
- uniqueness: none
- impersonation_
service_ Sequence[identity.users Domains Identity Propagation Trust Impersonation Service User Args] (Updatable) The Impersonating Principal.
SCIM++ Properties:
- idcsCompositeKey: [rule, value]
- idcsSearchable: false
- multiValued: true
- mutability: readWrite
- required: false
- returned: request
- type: complex
- uniqueness: none
- issuer str
(Updatable) The issuer claim of the Identity provider.
SCIM++ Properties:
- type: string
- multiValued: false
- required: true
- mutability: readWrite
- returned: always
- caseExact: true
- idcsSearchable: true
- uniqueness: server
- keytab
identity.
Domains Identity Propagation Trust Keytab Args (Updatable) The keytab stored in the tenancy's Vault. This is required if the identity propagation type is 'SPNEGO'.
SCIM++ Properties:
- idcsCompositeKey: [secretOcid]
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: complex
- uniqueness: none
- metas
Sequence[identity.
Domains Identity Propagation Trust Meta Args] (Updatable) A complex attribute that contains resource metadata. All sub-attributes are OPTIONAL.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- idcsCsvAttributeNameMappings: [[columnHeaderName:Created Date, mapsTo:meta.created]]
- type: complex
- name str
The name of the the Identity Propagation Trust.
SCIM++ Properties:
- type: string
- caseExact: false
- idcsSearchable: true
- multiValued: false
- required: true
- mutability: immutable
- returned: default
- uniqueness: none
- oauth_
clients Sequence[str] (Updatable) The value of all the authorized OAuth Clients.
SCIM++ Properties:
- idcsSearchable: false
- multiValued: true
- mutability: readWrite
- required: false
- returned: default
- type: string
- uniqueness: none
- ocid str
(Updatable) Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
SCIM++ Properties:
- caseExact: true
- idcsSearchable: true
- multiValued: false
- mutability: immutable
- required: false
- returned: default
- type: string
- uniqueness: global
- public_
certificate str (Updatable) Store the public key if public key cert.
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- idcsSearchable: false
- public_
key_ strendpoint (Updatable) The cloud provider's public key API of SAML and OIDC providers for signature validation.
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- caseExact: false
- idcsSearchable: false
- resource_
type_ strschema_ version - (Updatable) An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.
- schemas Sequence[str]
(Updatable) REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard "enterprise" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: true
- mutability: readWrite
- required: true
- returned: default
- type: string
- uniqueness: none
- subject_
claim_ strname (Updatable) Used for locating the subject claim from the incoming token.
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- caseExact: true
- idcsSearchable: false
- subject_
mapping_ strattribute (Updatable) Subject Mapping Attribute to which the value from subject claim name value would be used for identity lookup.
SCIM++ Properties:
- type: string
- multiValued: false
- idcsSearchable: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- subject_
type str (Updatable) The type of the resource against which lookup will be made in the identity domain in IAM for the incoming subject claim value.
SCIM++ Properties:
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: string
- uniqueness: none
-
Sequence[identity.
Domains Identity Propagation Trust Tag Args] (Updatable) A list of tags on this resource.
SCIM++ Properties:
- idcsCompositeKey: [key, value]
- idcsSearchable: true
- multiValued: true
- mutability: readWrite
- required: false
- returned: request
- type: complex
- uniqueness: none
- tenancy_
ocid str (Updatable) Oracle Cloud Infrastructure Tenant Id (ocid) in which the resource lives.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
- type str
(Updatable) The type of the inbound token from the Identity cloud provider.
SCIM++ Properties:
- caseExact: true
- idcsSearchable: false
- required: true
- mutability: readWrite
- returned: default
- type: string
- multiValued: false
- uniqueness: none
** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values
- account
Id String (Updatable) The Identity cloud provider service identifier, for example, the Azure Tenancy ID, AWS Account ID, or GCP Project ID.
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- caseExact: true
- idcsSearchable: true
- uniqueness: none
- active Boolean
(Updatable) If true, specifies that this Identity Propagation Trust is in an enabled state. The default value is false.
SCIM++ Properties:
- type: boolean
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- idcsSearchable: true
- allow
Impersonation Boolean (Updatable) Allow customers to define whether the resulting token should contain the authenticated user as the subject or whether the token should impersonate another Application Principal in IAM.
SCIM++ Properties:
- type: boolean
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- idcsSearchable: false
- attribute
Sets List<String> - (Updatable) A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If 'attributes' query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.
- attributes String
- (Updatable) A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.
- String
- (Updatable) The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.
- client
Claim StringName (Updatable) The claim name that identifies to whom the JWT/SAML token is issued. If AWS, then "aud" or "client_id". If Azure, then "appid". If GCP, then "aud".
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- idcsSearchable: false
- client
Claim List<String>Values (Updatable) The value that corresponds to the client claim name used to identify to whom the token is issued.
SCIM++ Properties:
- type: string
- multiValued: true
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- caseExact: true
- idcsSearchable: false
- clock
Skew NumberSeconds (Updatable) The clock skew (in secs) that's allowed for the token issue and expiry time.
Added In: 2308181911
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: integer
- uniqueness: none
- compartment
Ocid String (Updatable) Oracle Cloud Infrastructure Compartment Id (ocid) in which the resource lives.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
- delete
In BooleanProgress (Updatable) A boolean flag indicating this resource in the process of being deleted. Usually set to true when synchronous deletion of the resource would take too long.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: boolean
- uniqueness: none
- description String
(Updatable) The description of the Identity Propagation Trust.
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- caseExact: false
- idcsSearchable: false
- domain
Ocid String (Updatable) Oracle Cloud Infrastructure Domain Id (ocid) in which the resource lives.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
- idcs
Created List<Property Map>Bies (Updatable) The User or App who created the Resource
SCIM++ Properties:
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: true
- returned: default
- type: complex
- idcs
Endpoint String - The basic endpoint for the identity domain
- idcs
Last List<Property Map>Modified Bies (Updatable) The User or App who modified the Resource
SCIM++ Properties:
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: complex
- idcs
Last StringUpgraded In Release (Updatable) The release number when the resource was upgraded.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: request
- type: string
- uniqueness: none
- idcs
Prevented List<String>Operations (Updatable) Each value of this attribute specifies an operation that only an internal client may perform on this particular resource.
SCIM++ Properties:
- idcsSearchable: false
- multiValued: true
- mutability: readOnly
- required: false
- returned: request
- type: string
- uniqueness: none
- impersonation
Service List<Property Map>Users (Updatable) The Impersonating Principal.
SCIM++ Properties:
- idcsCompositeKey: [rule, value]
- idcsSearchable: false
- multiValued: true
- mutability: readWrite
- required: false
- returned: request
- type: complex
- uniqueness: none
- issuer String
(Updatable) The issuer claim of the Identity provider.
SCIM++ Properties:
- type: string
- multiValued: false
- required: true
- mutability: readWrite
- returned: always
- caseExact: true
- idcsSearchable: true
- uniqueness: server
- keytab Property Map
(Updatable) The keytab stored in the tenancy's Vault. This is required if the identity propagation type is 'SPNEGO'.
SCIM++ Properties:
- idcsCompositeKey: [secretOcid]
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: complex
- uniqueness: none
- metas List<Property Map>
(Updatable) A complex attribute that contains resource metadata. All sub-attributes are OPTIONAL.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- idcsCsvAttributeNameMappings: [[columnHeaderName:Created Date, mapsTo:meta.created]]
- type: complex
- name String
The name of the the Identity Propagation Trust.
SCIM++ Properties:
- type: string
- caseExact: false
- idcsSearchable: true
- multiValued: false
- required: true
- mutability: immutable
- returned: default
- uniqueness: none
- oauth
Clients List<String> (Updatable) The value of all the authorized OAuth Clients.
SCIM++ Properties:
- idcsSearchable: false
- multiValued: true
- mutability: readWrite
- required: false
- returned: default
- type: string
- uniqueness: none
- ocid String
(Updatable) Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
SCIM++ Properties:
- caseExact: true
- idcsSearchable: true
- multiValued: false
- mutability: immutable
- required: false
- returned: default
- type: string
- uniqueness: global
- public
Certificate String (Updatable) Store the public key if public key cert.
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- idcsSearchable: false
- public
Key StringEndpoint (Updatable) The cloud provider's public key API of SAML and OIDC providers for signature validation.
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- caseExact: false
- idcsSearchable: false
- resource
Type StringSchema Version - (Updatable) An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.
- schemas List<String>
(Updatable) REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard "enterprise" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: true
- mutability: readWrite
- required: true
- returned: default
- type: string
- uniqueness: none
- subject
Claim StringName (Updatable) Used for locating the subject claim from the incoming token.
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- caseExact: true
- idcsSearchable: false
- subject
Mapping StringAttribute (Updatable) Subject Mapping Attribute to which the value from subject claim name value would be used for identity lookup.
SCIM++ Properties:
- type: string
- multiValued: false
- idcsSearchable: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
- subject
Type String (Updatable) The type of the resource against which lookup will be made in the identity domain in IAM for the incoming subject claim value.
SCIM++ Properties:
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: string
- uniqueness: none
- List<Property Map>
(Updatable) A list of tags on this resource.
SCIM++ Properties:
- idcsCompositeKey: [key, value]
- idcsSearchable: true
- multiValued: true
- mutability: readWrite
- required: false
- returned: request
- type: complex
- uniqueness: none
- tenancy
Ocid String (Updatable) Oracle Cloud Infrastructure Tenant Id (ocid) in which the resource lives.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
- type String
(Updatable) The type of the inbound token from the Identity cloud provider.
SCIM++ Properties:
- caseExact: true
- idcsSearchable: false
- required: true
- mutability: readWrite
- returned: default
- type: string
- multiValued: false
- uniqueness: none
** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values
Supporting Types
DomainsIdentityPropagationTrustIdcsCreatedBy, DomainsIdentityPropagationTrustIdcsCreatedByArgs
- Value string
(Updatable) Value of the tag.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readWrite
- required: true
- returned: default
- type: string
- uniqueness: none
- Display string
(Updatable) The displayName of the User or App who modified this Resource
SCIM++ Properties:
- caseExact: true
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
- Ocid string
(Updatable) Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
SCIM++ Properties:
- caseExact: true
- idcsSearchable: true
- multiValued: false
- mutability: immutable
- required: false
- returned: default
- type: string
- uniqueness: global
- Ref string
- Type string
(Updatable) The type of the inbound token from the Identity cloud provider.
SCIM++ Properties:
- caseExact: true
- idcsSearchable: false
- required: true
- mutability: readWrite
- returned: default
- type: string
- multiValued: false
- uniqueness: none
** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values
- Value string
(Updatable) Value of the tag.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readWrite
- required: true
- returned: default
- type: string
- uniqueness: none
- Display string
(Updatable) The displayName of the User or App who modified this Resource
SCIM++ Properties:
- caseExact: true
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
- Ocid string
(Updatable) Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
SCIM++ Properties:
- caseExact: true
- idcsSearchable: true
- multiValued: false
- mutability: immutable
- required: false
- returned: default
- type: string
- uniqueness: global
- Ref string
- Type string
(Updatable) The type of the inbound token from the Identity cloud provider.
SCIM++ Properties:
- caseExact: true
- idcsSearchable: false
- required: true
- mutability: readWrite
- returned: default
- type: string
- multiValued: false
- uniqueness: none
** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values
- value String
(Updatable) Value of the tag.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readWrite
- required: true
- returned: default
- type: string
- uniqueness: none
- display String
(Updatable) The displayName of the User or App who modified this Resource
SCIM++ Properties:
- caseExact: true
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
- ocid String
(Updatable) Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
SCIM++ Properties:
- caseExact: true
- idcsSearchable: true
- multiValued: false
- mutability: immutable
- required: false
- returned: default
- type: string
- uniqueness: global
- ref String
- type String
(Updatable) The type of the inbound token from the Identity cloud provider.
SCIM++ Properties:
- caseExact: true
- idcsSearchable: false
- required: true
- mutability: readWrite
- returned: default
- type: string
- multiValued: false
- uniqueness: none
** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values
- value string
(Updatable) Value of the tag.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readWrite
- required: true
- returned: default
- type: string
- uniqueness: none
- display string
(Updatable) The displayName of the User or App who modified this Resource
SCIM++ Properties:
- caseExact: true
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
- ocid string
(Updatable) Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
SCIM++ Properties:
- caseExact: true
- idcsSearchable: true
- multiValued: false
- mutability: immutable
- required: false
- returned: default
- type: string
- uniqueness: global
- ref string
- type string
(Updatable) The type of the inbound token from the Identity cloud provider.
SCIM++ Properties:
- caseExact: true
- idcsSearchable: false
- required: true
- mutability: readWrite
- returned: default
- type: string
- multiValued: false
- uniqueness: none
** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values
- value str
(Updatable) Value of the tag.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readWrite
- required: true
- returned: default
- type: string
- uniqueness: none
- display str
(Updatable) The displayName of the User or App who modified this Resource
SCIM++ Properties:
- caseExact: true
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
- ocid str
(Updatable) Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
SCIM++ Properties:
- caseExact: true
- idcsSearchable: true
- multiValued: false
- mutability: immutable
- required: false
- returned: default
- type: string
- uniqueness: global
- ref str
- type str
(Updatable) The type of the inbound token from the Identity cloud provider.
SCIM++ Properties:
- caseExact: true
- idcsSearchable: false
- required: true
- mutability: readWrite
- returned: default
- type: string
- multiValued: false
- uniqueness: none
** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values
- value String
(Updatable) Value of the tag.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readWrite
- required: true
- returned: default
- type: string
- uniqueness: none
- display String
(Updatable) The displayName of the User or App who modified this Resource
SCIM++ Properties:
- caseExact: true
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
- ocid String
(Updatable) Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
SCIM++ Properties:
- caseExact: true
- idcsSearchable: true
- multiValued: false
- mutability: immutable
- required: false
- returned: default
- type: string
- uniqueness: global
- ref String
- type String
(Updatable) The type of the inbound token from the Identity cloud provider.
SCIM++ Properties:
- caseExact: true
- idcsSearchable: false
- required: true
- mutability: readWrite
- returned: default
- type: string
- multiValued: false
- uniqueness: none
** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values
DomainsIdentityPropagationTrustIdcsLastModifiedBy, DomainsIdentityPropagationTrustIdcsLastModifiedByArgs
- Value string
(Updatable) Value of the tag.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readWrite
- required: true
- returned: default
- type: string
- uniqueness: none
- Display string
(Updatable) The displayName of the User or App who modified this Resource
SCIM++ Properties:
- caseExact: true
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
- Ocid string
(Updatable) Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
SCIM++ Properties:
- caseExact: true
- idcsSearchable: true
- multiValued: false
- mutability: immutable
- required: false
- returned: default
- type: string
- uniqueness: global
- Ref string
- Type string
(Updatable) The type of the inbound token from the Identity cloud provider.
SCIM++ Properties:
- caseExact: true
- idcsSearchable: false
- required: true
- mutability: readWrite
- returned: default
- type: string
- multiValued: false
- uniqueness: none
** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values
- Value string
(Updatable) Value of the tag.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readWrite
- required: true
- returned: default
- type: string
- uniqueness: none
- Display string
(Updatable) The displayName of the User or App who modified this Resource
SCIM++ Properties:
- caseExact: true
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
- Ocid string
(Updatable) Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
SCIM++ Properties:
- caseExact: true
- idcsSearchable: true
- multiValued: false
- mutability: immutable
- required: false
- returned: default
- type: string
- uniqueness: global
- Ref string
- Type string
(Updatable) The type of the inbound token from the Identity cloud provider.
SCIM++ Properties:
- caseExact: true
- idcsSearchable: false
- required: true
- mutability: readWrite
- returned: default
- type: string
- multiValued: false
- uniqueness: none
** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values
- value String
(Updatable) Value of the tag.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readWrite
- required: true
- returned: default
- type: string
- uniqueness: none
- display String
(Updatable) The displayName of the User or App who modified this Resource
SCIM++ Properties:
- caseExact: true
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
- ocid String
(Updatable) Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
SCIM++ Properties:
- caseExact: true
- idcsSearchable: true
- multiValued: false
- mutability: immutable
- required: false
- returned: default
- type: string
- uniqueness: global
- ref String
- type String
(Updatable) The type of the inbound token from the Identity cloud provider.
SCIM++ Properties:
- caseExact: true
- idcsSearchable: false
- required: true
- mutability: readWrite
- returned: default
- type: string
- multiValued: false
- uniqueness: none
** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values
- value string
(Updatable) Value of the tag.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readWrite
- required: true
- returned: default
- type: string
- uniqueness: none
- display string
(Updatable) The displayName of the User or App who modified this Resource
SCIM++ Properties:
- caseExact: true
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
- ocid string
(Updatable) Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
SCIM++ Properties:
- caseExact: true
- idcsSearchable: true
- multiValued: false
- mutability: immutable
- required: false
- returned: default
- type: string
- uniqueness: global
- ref string
- type string
(Updatable) The type of the inbound token from the Identity cloud provider.
SCIM++ Properties:
- caseExact: true
- idcsSearchable: false
- required: true
- mutability: readWrite
- returned: default
- type: string
- multiValued: false
- uniqueness: none
** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values
- value str
(Updatable) Value of the tag.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readWrite
- required: true
- returned: default
- type: string
- uniqueness: none
- display str
(Updatable) The displayName of the User or App who modified this Resource
SCIM++ Properties:
- caseExact: true
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
- ocid str
(Updatable) Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
SCIM++ Properties:
- caseExact: true
- idcsSearchable: true
- multiValued: false
- mutability: immutable
- required: false
- returned: default
- type: string
- uniqueness: global
- ref str
- type str
(Updatable) The type of the inbound token from the Identity cloud provider.
SCIM++ Properties:
- caseExact: true
- idcsSearchable: false
- required: true
- mutability: readWrite
- returned: default
- type: string
- multiValued: false
- uniqueness: none
** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values
- value String
(Updatable) Value of the tag.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readWrite
- required: true
- returned: default
- type: string
- uniqueness: none
- display String
(Updatable) The displayName of the User or App who modified this Resource
SCIM++ Properties:
- caseExact: true
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
- ocid String
(Updatable) Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
SCIM++ Properties:
- caseExact: true
- idcsSearchable: true
- multiValued: false
- mutability: immutable
- required: false
- returned: default
- type: string
- uniqueness: global
- ref String
- type String
(Updatable) The type of the inbound token from the Identity cloud provider.
SCIM++ Properties:
- caseExact: true
- idcsSearchable: false
- required: true
- mutability: readWrite
- returned: default
- type: string
- multiValued: false
- uniqueness: none
** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values
DomainsIdentityPropagationTrustImpersonationServiceUser, DomainsIdentityPropagationTrustImpersonationServiceUserArgs
- Rule string
(Updatable) The rule expression to be used for matching the inbound token for impersonation.
SCIM++ Properties:
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: true
- returned: default
- type: string
- uniqueness: none
- Value string
(Updatable) Value of the tag.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readWrite
- required: true
- returned: default
- type: string
- uniqueness: none
- Ocid string
(Updatable) Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
SCIM++ Properties:
- caseExact: true
- idcsSearchable: true
- multiValued: false
- mutability: immutable
- required: false
- returned: default
- type: string
- uniqueness: global
- Ref string
- Rule string
(Updatable) The rule expression to be used for matching the inbound token for impersonation.
SCIM++ Properties:
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: true
- returned: default
- type: string
- uniqueness: none
- Value string
(Updatable) Value of the tag.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readWrite
- required: true
- returned: default
- type: string
- uniqueness: none
- Ocid string
(Updatable) Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
SCIM++ Properties:
- caseExact: true
- idcsSearchable: true
- multiValued: false
- mutability: immutable
- required: false
- returned: default
- type: string
- uniqueness: global
- Ref string
- rule String
(Updatable) The rule expression to be used for matching the inbound token for impersonation.
SCIM++ Properties:
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: true
- returned: default
- type: string
- uniqueness: none
- value String
(Updatable) Value of the tag.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readWrite
- required: true
- returned: default
- type: string
- uniqueness: none
- ocid String
(Updatable) Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
SCIM++ Properties:
- caseExact: true
- idcsSearchable: true
- multiValued: false
- mutability: immutable
- required: false
- returned: default
- type: string
- uniqueness: global
- ref String
- rule string
(Updatable) The rule expression to be used for matching the inbound token for impersonation.
SCIM++ Properties:
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: true
- returned: default
- type: string
- uniqueness: none
- value string
(Updatable) Value of the tag.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readWrite
- required: true
- returned: default
- type: string
- uniqueness: none
- ocid string
(Updatable) Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
SCIM++ Properties:
- caseExact: true
- idcsSearchable: true
- multiValued: false
- mutability: immutable
- required: false
- returned: default
- type: string
- uniqueness: global
- ref string
- rule str
(Updatable) The rule expression to be used for matching the inbound token for impersonation.
SCIM++ Properties:
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: true
- returned: default
- type: string
- uniqueness: none
- value str
(Updatable) Value of the tag.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readWrite
- required: true
- returned: default
- type: string
- uniqueness: none
- ocid str
(Updatable) Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
SCIM++ Properties:
- caseExact: true
- idcsSearchable: true
- multiValued: false
- mutability: immutable
- required: false
- returned: default
- type: string
- uniqueness: global
- ref str
- rule String
(Updatable) The rule expression to be used for matching the inbound token for impersonation.
SCIM++ Properties:
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: true
- returned: default
- type: string
- uniqueness: none
- value String
(Updatable) Value of the tag.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readWrite
- required: true
- returned: default
- type: string
- uniqueness: none
- ocid String
(Updatable) Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
SCIM++ Properties:
- caseExact: true
- idcsSearchable: true
- multiValued: false
- mutability: immutable
- required: false
- returned: default
- type: string
- uniqueness: global
- ref String
DomainsIdentityPropagationTrustKeytab, DomainsIdentityPropagationTrustKeytabArgs
- Secret
Ocid string (Updatable) The OCID of the secret. The secret content corresponding to the OCID is expected to be in Base64 encoded content type.
SCIM++ Properties:
- caseExact: true
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: true
- returned: default
- type: string
- uniqueness: none
- Secret
Version int (Updatable) The version of the secret. When the version is not specified, then the latest secret version is used during runtime.
SCIM++ Properties:
- caseExact: true
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: integer
- uniqueness: none
- Secret
Ocid string (Updatable) The OCID of the secret. The secret content corresponding to the OCID is expected to be in Base64 encoded content type.
SCIM++ Properties:
- caseExact: true
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: true
- returned: default
- type: string
- uniqueness: none
- Secret
Version int (Updatable) The version of the secret. When the version is not specified, then the latest secret version is used during runtime.
SCIM++ Properties:
- caseExact: true
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: integer
- uniqueness: none
- secret
Ocid String (Updatable) The OCID of the secret. The secret content corresponding to the OCID is expected to be in Base64 encoded content type.
SCIM++ Properties:
- caseExact: true
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: true
- returned: default
- type: string
- uniqueness: none
- secret
Version Integer (Updatable) The version of the secret. When the version is not specified, then the latest secret version is used during runtime.
SCIM++ Properties:
- caseExact: true
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: integer
- uniqueness: none
- secret
Ocid string (Updatable) The OCID of the secret. The secret content corresponding to the OCID is expected to be in Base64 encoded content type.
SCIM++ Properties:
- caseExact: true
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: true
- returned: default
- type: string
- uniqueness: none
- secret
Version number (Updatable) The version of the secret. When the version is not specified, then the latest secret version is used during runtime.
SCIM++ Properties:
- caseExact: true
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: integer
- uniqueness: none
- secret_
ocid str (Updatable) The OCID of the secret. The secret content corresponding to the OCID is expected to be in Base64 encoded content type.
SCIM++ Properties:
- caseExact: true
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: true
- returned: default
- type: string
- uniqueness: none
- secret_
version int (Updatable) The version of the secret. When the version is not specified, then the latest secret version is used during runtime.
SCIM++ Properties:
- caseExact: true
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: integer
- uniqueness: none
- secret
Ocid String (Updatable) The OCID of the secret. The secret content corresponding to the OCID is expected to be in Base64 encoded content type.
SCIM++ Properties:
- caseExact: true
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: true
- returned: default
- type: string
- uniqueness: none
- secret
Version Number (Updatable) The version of the secret. When the version is not specified, then the latest secret version is used during runtime.
SCIM++ Properties:
- caseExact: true
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: integer
- uniqueness: none
DomainsIdentityPropagationTrustMeta, DomainsIdentityPropagationTrustMetaArgs
- Created string
(Updatable) The DateTime the Resource was added to the Service Provider
SCIM++ Properties:
- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: dateTime
- uniqueness: none
- Last
Modified string (Updatable) The most recent DateTime that the details of this Resource were updated at the Service Provider. If this Resource has never been modified since its initial creation, the value MUST be the same as the value of created. The attribute MUST be a DateTime.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: dateTime
- uniqueness: none
- Location string
(Updatable) The URI of the Resource being returned. This value MUST be the same as the Location HTTP response header.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
- Resource
Type string (Updatable) Name of the resource type of the resource--for example, Users or Groups
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
- Version string
(Updatable) The version of the Resource being returned. This value must be the same as the ETag HTTP response header.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
- Created string
(Updatable) The DateTime the Resource was added to the Service Provider
SCIM++ Properties:
- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: dateTime
- uniqueness: none
- Last
Modified string (Updatable) The most recent DateTime that the details of this Resource were updated at the Service Provider. If this Resource has never been modified since its initial creation, the value MUST be the same as the value of created. The attribute MUST be a DateTime.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: dateTime
- uniqueness: none
- Location string
(Updatable) The URI of the Resource being returned. This value MUST be the same as the Location HTTP response header.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
- Resource
Type string (Updatable) Name of the resource type of the resource--for example, Users or Groups
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
- Version string
(Updatable) The version of the Resource being returned. This value must be the same as the ETag HTTP response header.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
- created String
(Updatable) The DateTime the Resource was added to the Service Provider
SCIM++ Properties:
- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: dateTime
- uniqueness: none
- last
Modified String (Updatable) The most recent DateTime that the details of this Resource were updated at the Service Provider. If this Resource has never been modified since its initial creation, the value MUST be the same as the value of created. The attribute MUST be a DateTime.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: dateTime
- uniqueness: none
- location String
(Updatable) The URI of the Resource being returned. This value MUST be the same as the Location HTTP response header.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
- resource
Type String (Updatable) Name of the resource type of the resource--for example, Users or Groups
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
- version String
(Updatable) The version of the Resource being returned. This value must be the same as the ETag HTTP response header.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
- created string
(Updatable) The DateTime the Resource was added to the Service Provider
SCIM++ Properties:
- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: dateTime
- uniqueness: none
- last
Modified string (Updatable) The most recent DateTime that the details of this Resource were updated at the Service Provider. If this Resource has never been modified since its initial creation, the value MUST be the same as the value of created. The attribute MUST be a DateTime.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: dateTime
- uniqueness: none
- location string
(Updatable) The URI of the Resource being returned. This value MUST be the same as the Location HTTP response header.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
- resource
Type string (Updatable) Name of the resource type of the resource--for example, Users or Groups
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
- version string
(Updatable) The version of the Resource being returned. This value must be the same as the ETag HTTP response header.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
- created str
(Updatable) The DateTime the Resource was added to the Service Provider
SCIM++ Properties:
- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: dateTime
- uniqueness: none
- last_
modified str (Updatable) The most recent DateTime that the details of this Resource were updated at the Service Provider. If this Resource has never been modified since its initial creation, the value MUST be the same as the value of created. The attribute MUST be a DateTime.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: dateTime
- uniqueness: none
- location str
(Updatable) The URI of the Resource being returned. This value MUST be the same as the Location HTTP response header.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
- resource_
type str (Updatable) Name of the resource type of the resource--for example, Users or Groups
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
- version str
(Updatable) The version of the Resource being returned. This value must be the same as the ETag HTTP response header.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
- created String
(Updatable) The DateTime the Resource was added to the Service Provider
SCIM++ Properties:
- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: dateTime
- uniqueness: none
- last
Modified String (Updatable) The most recent DateTime that the details of this Resource were updated at the Service Provider. If this Resource has never been modified since its initial creation, the value MUST be the same as the value of created. The attribute MUST be a DateTime.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: dateTime
- uniqueness: none
- location String
(Updatable) The URI of the Resource being returned. This value MUST be the same as the Location HTTP response header.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
- resource
Type String (Updatable) Name of the resource type of the resource--for example, Users or Groups
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
- version String
(Updatable) The version of the Resource being returned. This value must be the same as the ETag HTTP response header.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
DomainsIdentityPropagationTrustTag, DomainsIdentityPropagationTrustTagArgs
- Key string
(Updatable) Key or name of the tag.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readWrite
- required: true
- returned: default
- type: string
- uniqueness: none
- Value string
(Updatable) Value of the tag.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readWrite
- required: true
- returned: default
- type: string
- uniqueness: none
- Key string
(Updatable) Key or name of the tag.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readWrite
- required: true
- returned: default
- type: string
- uniqueness: none
- Value string
(Updatable) Value of the tag.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readWrite
- required: true
- returned: default
- type: string
- uniqueness: none
- key String
(Updatable) Key or name of the tag.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readWrite
- required: true
- returned: default
- type: string
- uniqueness: none
- value String
(Updatable) Value of the tag.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readWrite
- required: true
- returned: default
- type: string
- uniqueness: none
- key string
(Updatable) Key or name of the tag.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readWrite
- required: true
- returned: default
- type: string
- uniqueness: none
- value string
(Updatable) Value of the tag.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readWrite
- required: true
- returned: default
- type: string
- uniqueness: none
- key str
(Updatable) Key or name of the tag.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readWrite
- required: true
- returned: default
- type: string
- uniqueness: none
- value str
(Updatable) Value of the tag.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readWrite
- required: true
- returned: default
- type: string
- uniqueness: none
- key String
(Updatable) Key or name of the tag.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readWrite
- required: true
- returned: default
- type: string
- uniqueness: none
- value String
(Updatable) Value of the tag.
SCIM++ Properties:
- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readWrite
- required: true
- returned: default
- type: string
- uniqueness: none
Import
IdentityPropagationTrusts can be imported using the id, e.g.
$ pulumi import oci:Identity/domainsIdentityPropagationTrust:DomainsIdentityPropagationTrust test_identity_propagation_trust "idcsEndpoint/{idcsEndpoint}/identityPropagationTrusts/{identityPropagationTrustId}"
To learn more about importing existing cloud resources, see Importing resources.
Package Details
- Repository
- oci pulumi/pulumi-oci
- License
- Apache-2.0
- Notes
- This Pulumi package is based on the
ociTerraform Provider.