Oracle Cloud Infrastructure v0.13.0, Mar 28 23

oci.Identity.DomainsPasswordPolicy

This resource provides the Password Policy resource in Oracle Cloud Infrastructure Identity Domains service.

Create a Password Policy

Example Usage

Coming soon!

package generated_program;

import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.oci.Identity.DomainsPasswordPolicy;
import com.pulumi.oci.Identity.DomainsPasswordPolicyArgs;
import com.pulumi.oci.Identity.inputs.DomainsPasswordPolicyGroupArgs;
import com.pulumi.oci.Identity.inputs.DomainsPasswordPolicyTagArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;

public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }

    public static void stack(Context ctx) {
        var testPasswordPolicy = new DomainsPasswordPolicy("testPasswordPolicy", DomainsPasswordPolicyArgs.builder()        
            .idcsEndpoint(data.oci_identity_domain().test_domain().url())
            .schemas("urn:ietf:params:scim:schemas:oracle:idcs:PasswordPolicy")
            .allowedChars(var_.password_policy_allowed_chars())
            .attributeSets()
            .attributes("")
            .authorization(var_.password_policy_authorization())
            .description(var_.password_policy_description())
            .dictionaryDelimiter(var_.password_policy_dictionary_delimiter())
            .dictionaryLocation(var_.password_policy_dictionary_location())
            .dictionaryWordDisallowed(var_.password_policy_dictionary_word_disallowed())
            .disallowedChars(var_.password_policy_disallowed_chars())
            .disallowedSubstrings(var_.password_policy_disallowed_substrings())
            .externalId("externalId")
            .firstNameDisallowed(var_.password_policy_first_name_disallowed())
            .forcePasswordReset(var_.password_policy_force_password_reset())
            .groups(DomainsPasswordPolicyGroupArgs.builder()
                .value(oci_identity_domains_group.test_group().id())
                .build())
            .id(var_.password_policy_id())
            .lastNameDisallowed(var_.password_policy_last_name_disallowed())
            .lockoutDuration(var_.password_policy_lockout_duration())
            .maxIncorrectAttempts(var_.password_policy_max_incorrect_attempts())
            .maxLength(var_.password_policy_max_length())
            .maxRepeatedChars(var_.password_policy_max_repeated_chars())
            .maxSpecialChars(var_.password_policy_max_special_chars())
            .minAlphaNumerals(var_.password_policy_min_alpha_numerals())
            .minAlphas(var_.password_policy_min_alphas())
            .minLength(var_.password_policy_min_length())
            .minLowerCase(var_.password_policy_min_lower_case())
            .minNumerals(var_.password_policy_min_numerals())
            .minPasswordAge(var_.password_policy_min_password_age())
            .minSpecialChars(var_.password_policy_min_special_chars())
            .minUniqueChars(var_.password_policy_min_unique_chars())
            .minUpperCase(var_.password_policy_min_upper_case())
            .numPasswordsInHistory(var_.password_policy_num_passwords_in_history())
            .ocid(var_.password_policy_ocid())
            .passwordExpireWarning(var_.password_policy_password_expire_warning())
            .passwordExpiresAfter(var_.password_policy_password_expires_after())
            .passwordStrength(var_.password_policy_password_strength())
            .priority(var_.password_policy_priority())
            .requiredChars(var_.password_policy_required_chars())
            .resourceTypeSchemaVersion(var_.password_policy_resource_type_schema_version())
            .startsWithAlphabet(var_.password_policy_starts_with_alphabet())
            .tags(DomainsPasswordPolicyTagArgs.builder()
                .key(var_.password_policy_tags_key())
                .value(var_.password_policy_tags_value())
                .build())
            .userNameDisallowed(var_.password_policy_user_name_disallowed())
            .build());

    }
}

Coming soon!

resources:
  testPasswordPolicy:
    type: oci:Identity:DomainsPasswordPolicy
    properties:
      #Required
      idcsEndpoint: ${data.oci_identity_domain.test_domain.url}
      schemas:
        - urn:ietf:params:scim:schemas:oracle:idcs:PasswordPolicy
      #Optional
      allowedChars: ${var.password_policy_allowed_chars}
      attributeSets: []
      attributes:
      authorization: ${var.password_policy_authorization}
      description: ${var.password_policy_description}
      dictionaryDelimiter: ${var.password_policy_dictionary_delimiter}
      dictionaryLocation: ${var.password_policy_dictionary_location}
      dictionaryWordDisallowed: ${var.password_policy_dictionary_word_disallowed}
      disallowedChars: ${var.password_policy_disallowed_chars}
      disallowedSubstrings: ${var.password_policy_disallowed_substrings}
      externalId: externalId
      firstNameDisallowed: ${var.password_policy_first_name_disallowed}
      forcePasswordReset: ${var.password_policy_force_password_reset}
      groups:
        - value: ${oci_identity_domains_group.test_group.id}
      id: ${var.password_policy_id}
      lastNameDisallowed: ${var.password_policy_last_name_disallowed}
      lockoutDuration: ${var.password_policy_lockout_duration}
      maxIncorrectAttempts: ${var.password_policy_max_incorrect_attempts}
      maxLength: ${var.password_policy_max_length}
      maxRepeatedChars: ${var.password_policy_max_repeated_chars}
      maxSpecialChars: ${var.password_policy_max_special_chars}
      minAlphaNumerals: ${var.password_policy_min_alpha_numerals}
      minAlphas: ${var.password_policy_min_alphas}
      minLength: ${var.password_policy_min_length}
      minLowerCase: ${var.password_policy_min_lower_case}
      minNumerals: ${var.password_policy_min_numerals}
      minPasswordAge: ${var.password_policy_min_password_age}
      minSpecialChars: ${var.password_policy_min_special_chars}
      minUniqueChars: ${var.password_policy_min_unique_chars}
      minUpperCase: ${var.password_policy_min_upper_case}
      numPasswordsInHistory: ${var.password_policy_num_passwords_in_history}
      ocid: ${var.password_policy_ocid}
      passwordExpireWarning: ${var.password_policy_password_expire_warning}
      passwordExpiresAfter: ${var.password_policy_password_expires_after}
      passwordStrength: ${var.password_policy_password_strength}
      priority: ${var.password_policy_priority}
      requiredChars: ${var.password_policy_required_chars}
      resourceTypeSchemaVersion: ${var.password_policy_resource_type_schema_version}
      startsWithAlphabet: ${var.password_policy_starts_with_alphabet}
      tags:
        - key: ${var.password_policy_tags_key}
          value: ${var.password_policy_tags_value}
      userNameDisallowed: ${var.password_policy_user_name_disallowed}

Create DomainsPasswordPolicy Resource

new DomainsPasswordPolicy(name: string, args: DomainsPasswordPolicyArgs, opts?: CustomResourceOptions);

@overload
def DomainsPasswordPolicy(resource_name: str,
                          opts: Optional[ResourceOptions] = None,
                          allowed_chars: Optional[str] = None,
                          attribute_sets: Optional[Sequence[str]] = None,
                          attributes: Optional[str] = None,
                          authorization: Optional[str] = None,
                          description: Optional[str] = None,
                          dictionary_delimiter: Optional[str] = None,
                          dictionary_location: Optional[str] = None,
                          dictionary_word_disallowed: Optional[bool] = None,
                          disallowed_chars: Optional[str] = None,
                          disallowed_substrings: Optional[Sequence[str]] = None,
                          external_id: Optional[str] = None,
                          first_name_disallowed: Optional[bool] = None,
                          force_password_reset: Optional[bool] = None,
                          groups: Optional[Sequence[_identity.DomainsPasswordPolicyGroupArgs]] = None,
                          idcs_endpoint: Optional[str] = None,
                          last_name_disallowed: Optional[bool] = None,
                          lockout_duration: Optional[int] = None,
                          max_incorrect_attempts: Optional[int] = None,
                          max_length: Optional[int] = None,
                          max_repeated_chars: Optional[int] = None,
                          max_special_chars: Optional[int] = None,
                          min_alpha_numerals: Optional[int] = None,
                          min_alphas: Optional[int] = None,
                          min_length: Optional[int] = None,
                          min_lower_case: Optional[int] = None,
                          min_numerals: Optional[int] = None,
                          min_password_age: Optional[int] = None,
                          min_special_chars: Optional[int] = None,
                          min_unique_chars: Optional[int] = None,
                          min_upper_case: Optional[int] = None,
                          name: Optional[str] = None,
                          num_passwords_in_history: Optional[int] = None,
                          ocid: Optional[str] = None,
                          password_expire_warning: Optional[int] = None,
                          password_expires_after: Optional[int] = None,
                          password_strength: Optional[str] = None,
                          priority: Optional[int] = None,
                          required_chars: Optional[str] = None,
                          resource_type_schema_version: Optional[str] = None,
                          schemas: Optional[Sequence[str]] = None,
                          starts_with_alphabet: Optional[bool] = None,
                          tags: Optional[Sequence[_identity.DomainsPasswordPolicyTagArgs]] = None,
                          user_name_disallowed: Optional[bool] = None)
@overload
def DomainsPasswordPolicy(resource_name: str,
                          args: DomainsPasswordPolicyArgs,
                          opts: Optional[ResourceOptions] = None)

func NewDomainsPasswordPolicy(ctx *Context, name string, args DomainsPasswordPolicyArgs, opts ...ResourceOption) (*DomainsPasswordPolicy, error)

public DomainsPasswordPolicy(string name, DomainsPasswordPolicyArgs args, CustomResourceOptions? opts = null)

public DomainsPasswordPolicy(String name, DomainsPasswordPolicyArgs args)
public DomainsPasswordPolicy(String name, DomainsPasswordPolicyArgs args, CustomResourceOptions options)

type: oci:Identity:DomainsPasswordPolicy
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.

name string: The unique name of the resource.
args DomainsPasswordPolicyArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

resource_name str: The unique name of the resource.
args DomainsPasswordPolicyArgs: The arguments to resource properties.
opts ResourceOptions: Bag of options to control resource's behavior.

ctx Context: Context object for the current deployment.
name string: The unique name of the resource.
args DomainsPasswordPolicyArgs: The arguments to resource properties.
opts ResourceOption: Bag of options to control resource's behavior.

name string: The unique name of the resource.
args DomainsPasswordPolicyArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

name String: The unique name of the resource.
args DomainsPasswordPolicyArgs: The arguments to resource properties.
options CustomResourceOptions: Bag of options to control resource's behavior.

DomainsPasswordPolicy Resource Properties

To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

Inputs

The DomainsPasswordPolicy resource accepts the following input properties:

IdcsEndpoint string: The basic endpoint for the identity domain
Schemas List<string>: (Updatable) REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard "enterprise" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.
AllowedChars string: (Updatable) A String value whose contents indicate a set of characters that can appear, in any sequence, in a password value
AttributeSets List<string>: (Updatable) A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If 'attributes' query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.
Attributes string: (Updatable) A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.
Authorization string: (Updatable) The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.
Description string: (Updatable) A String that describes the password policy
DictionaryDelimiter string: (Updatable) A delimiter used to separate characters in the dictionary file
DictionaryLocation string: (Updatable) A Reference value that contains the URI of a dictionary of words not allowed to appear within a password value
DictionaryWordDisallowed bool: (Updatable) Indicates whether the password can match a dictionary word
DisallowedChars string: (Updatable) A String value whose contents indicate a set of characters that cannot appear, in any sequence, in a password value
DisallowedSubstrings List<string>: (Updatable) A String value whose contents indicate a set of substrings that cannot appear, in any sequence, in a password value
ExternalId string: (Updatable) An identifier for the Resource as defined by the Service Consumer. The externalId may simplify identification of the Resource between Service Consumer and Service Provider by allowing the Consumer to refer to the Resource with its own identifier, obviating the need to store a local mapping between the local identifier of the Resource and the identifier used by the Service Provider. Each Resource MAY include a non-empty externalId value. The value of the externalId attribute is always issued by the Service Consumer and can never be specified by the Service Provider. The Service Provider MUST always interpret the externalId as scoped to the Service Consumer's tenant.
FirstNameDisallowed bool: (Updatable) Indicates a sequence of characters that match the user's first name of given name cannot be the password. Password validation against policy will be ignored if length of first name is less than or equal to 3 characters.
ForcePasswordReset bool: (Updatable) Indicates whether all of the users should be forced to reset their password on the next login (to comply with new password policy changes)
Groups List<DomainsPasswordPolicyGroupArgs>: (Updatable) A list of groups that the password policy belongs to.
LastNameDisallowed bool: (Updatable) Indicates a sequence of characters that match the user's last name of given name cannot be the password. Password validation against policy will be ignored if length of last name is less than or equal to 3 characters.
LockoutDuration int: (Updatable) The time period in minutes to lock out a user account when the threshold of invalid login attempts is reached. The available range is from 5 through 1440 minutes (24 hours).
MaxIncorrectAttempts int: (Updatable) An integer that represents the maximum number of failed logins before an account is locked
MaxLength int: (Updatable) The maximum password length (in characters). A value of 0 or no value indicates no maximum length restriction.
MaxRepeatedChars int: (Updatable) The maximum number of repeated characters allowed in a password. A value of 0 or no value indicates no such restriction.
MaxSpecialChars int: (Updatable) The maximum number of special characters in a password. A value of 0 or no value indicates no maximum special characters restriction.
MinAlphaNumerals int: (Updatable) The minimum number of a combination of alphabetic and numeric characters in a password. A value of 0 or no value indicates no minimum alphanumeric character restriction.
MinAlphas int: (Updatable) The minimum number of alphabetic characters in a password. A value of 0 or no value indicates no minimum alphas restriction.
MinLength int: (Updatable) The minimum password length (in characters). A value of 0 or no value indicates no minimum length restriction.
MinLowerCase int: (Updatable) The minimum number of lowercase alphabetic characters in a password. A value of 0 or no value indicates no minimum lowercase restriction.
MinNumerals int: (Updatable) The minimum number of numeric characters in a password. A value of 0 or no value indicates no minimum numeric character restriction.
MinPasswordAge int: (Updatable) Minimum time after which the user can resubmit the reset password request
MinSpecialChars int: (Updatable) The minimum number of special characters in a password. A value of 0 or no value indicates no minimum special characters restriction.
MinUniqueChars int: (Updatable) The minimum number of unique characters in a password. A value of 0 or no value indicates no minimum unique characters restriction.
MinUpperCase int: (Updatable) The minimum number of uppercase alphabetic characters in a password. A value of 0 or no value indicates no minimum uppercase restriction.
Name string: (Updatable) A String that is the name of the policy to display to the user. This is the only mandatory attribute for a password policy.
NumPasswordsInHistory int: (Updatable) The number of passwords that will be kept in history that may not be used as a password
Ocid string: (Updatable) Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
PasswordExpireWarning int: (Updatable) An integer indicating the number of days before which the user should be warned about password expiry.
PasswordExpiresAfter int: (Updatable) The number of days after which the password expires automatically
PasswordStrength string: (Updatable) Indicates whether the password policy is configured as Simple, Standard, or Custom.
Priority int: (Updatable) Password policy priority
RequiredChars string: (Updatable) A String value whose contents indicate a set of characters that must appear, in any sequence, in a password value
ResourceTypeSchemaVersion string: (Updatable) An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.
StartsWithAlphabet bool: (Updatable) Indicates that the password must begin with an alphabetic character
Tags List<DomainsPasswordPolicyTagArgs>: (Updatable) A list of tags on this resource.
UserNameDisallowed bool: (Updatable) Indicates a sequence of characters that match the username cannot be the password. Password validation against policy will be ignored if length of user name is less than or equal to 3 characters.

IdcsEndpoint string: The basic endpoint for the identity domain
Schemas []string: (Updatable) REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard "enterprise" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.
AllowedChars string: (Updatable) A String value whose contents indicate a set of characters that can appear, in any sequence, in a password value
AttributeSets []string: (Updatable) A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If 'attributes' query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.
Attributes string: (Updatable) A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.
Authorization string: (Updatable) The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.
Description string: (Updatable) A String that describes the password policy
DictionaryDelimiter string: (Updatable) A delimiter used to separate characters in the dictionary file
DictionaryLocation string: (Updatable) A Reference value that contains the URI of a dictionary of words not allowed to appear within a password value
DictionaryWordDisallowed bool: (Updatable) Indicates whether the password can match a dictionary word
DisallowedChars string: (Updatable) A String value whose contents indicate a set of characters that cannot appear, in any sequence, in a password value
DisallowedSubstrings []string: (Updatable) A String value whose contents indicate a set of substrings that cannot appear, in any sequence, in a password value
ExternalId string: (Updatable) An identifier for the Resource as defined by the Service Consumer. The externalId may simplify identification of the Resource between Service Consumer and Service Provider by allowing the Consumer to refer to the Resource with its own identifier, obviating the need to store a local mapping between the local identifier of the Resource and the identifier used by the Service Provider. Each Resource MAY include a non-empty externalId value. The value of the externalId attribute is always issued by the Service Consumer and can never be specified by the Service Provider. The Service Provider MUST always interpret the externalId as scoped to the Service Consumer's tenant.
FirstNameDisallowed bool: (Updatable) Indicates a sequence of characters that match the user's first name of given name cannot be the password. Password validation against policy will be ignored if length of first name is less than or equal to 3 characters.
ForcePasswordReset bool: (Updatable) Indicates whether all of the users should be forced to reset their password on the next login (to comply with new password policy changes)
Groups []DomainsPasswordPolicyGroupArgs: (Updatable) A list of groups that the password policy belongs to.
LastNameDisallowed bool: (Updatable) Indicates a sequence of characters that match the user's last name of given name cannot be the password. Password validation against policy will be ignored if length of last name is less than or equal to 3 characters.
LockoutDuration int: (Updatable) The time period in minutes to lock out a user account when the threshold of invalid login attempts is reached. The available range is from 5 through 1440 minutes (24 hours).
MaxIncorrectAttempts int: (Updatable) An integer that represents the maximum number of failed logins before an account is locked
MaxLength int: (Updatable) The maximum password length (in characters). A value of 0 or no value indicates no maximum length restriction.
MaxRepeatedChars int: (Updatable) The maximum number of repeated characters allowed in a password. A value of 0 or no value indicates no such restriction.
MaxSpecialChars int: (Updatable) The maximum number of special characters in a password. A value of 0 or no value indicates no maximum special characters restriction.
MinAlphaNumerals int: (Updatable) The minimum number of a combination of alphabetic and numeric characters in a password. A value of 0 or no value indicates no minimum alphanumeric character restriction.
MinAlphas int: (Updatable) The minimum number of alphabetic characters in a password. A value of 0 or no value indicates no minimum alphas restriction.
MinLength int: (Updatable) The minimum password length (in characters). A value of 0 or no value indicates no minimum length restriction.
MinLowerCase int: (Updatable) The minimum number of lowercase alphabetic characters in a password. A value of 0 or no value indicates no minimum lowercase restriction.
MinNumerals int: (Updatable) The minimum number of numeric characters in a password. A value of 0 or no value indicates no minimum numeric character restriction.
MinPasswordAge int: (Updatable) Minimum time after which the user can resubmit the reset password request
MinSpecialChars int: (Updatable) The minimum number of special characters in a password. A value of 0 or no value indicates no minimum special characters restriction.
MinUniqueChars int: (Updatable) The minimum number of unique characters in a password. A value of 0 or no value indicates no minimum unique characters restriction.
MinUpperCase int: (Updatable) The minimum number of uppercase alphabetic characters in a password. A value of 0 or no value indicates no minimum uppercase restriction.
Name string: (Updatable) A String that is the name of the policy to display to the user. This is the only mandatory attribute for a password policy.
NumPasswordsInHistory int: (Updatable) The number of passwords that will be kept in history that may not be used as a password
Ocid string: (Updatable) Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
PasswordExpireWarning int: (Updatable) An integer indicating the number of days before which the user should be warned about password expiry.
PasswordExpiresAfter int: (Updatable) The number of days after which the password expires automatically
PasswordStrength string: (Updatable) Indicates whether the password policy is configured as Simple, Standard, or Custom.
Priority int: (Updatable) Password policy priority
RequiredChars string: (Updatable) A String value whose contents indicate a set of characters that must appear, in any sequence, in a password value
ResourceTypeSchemaVersion string: (Updatable) An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.
StartsWithAlphabet bool: (Updatable) Indicates that the password must begin with an alphabetic character
Tags []DomainsPasswordPolicyTagArgs: (Updatable) A list of tags on this resource.
UserNameDisallowed bool: (Updatable) Indicates a sequence of characters that match the username cannot be the password. Password validation against policy will be ignored if length of user name is less than or equal to 3 characters.

idcsEndpoint String: The basic endpoint for the identity domain
schemas List<String>: (Updatable) REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard "enterprise" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.
allowedChars String: (Updatable) A String value whose contents indicate a set of characters that can appear, in any sequence, in a password value
attributeSets List<String>: (Updatable) A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If 'attributes' query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.
attributes String: (Updatable) A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.
authorization String: (Updatable) The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.
description String: (Updatable) A String that describes the password policy
dictionaryDelimiter String: (Updatable) A delimiter used to separate characters in the dictionary file
dictionaryLocation String: (Updatable) A Reference value that contains the URI of a dictionary of words not allowed to appear within a password value
dictionaryWordDisallowed Boolean: (Updatable) Indicates whether the password can match a dictionary word
disallowedChars String: (Updatable) A String value whose contents indicate a set of characters that cannot appear, in any sequence, in a password value
disallowedSubstrings List<String>: (Updatable) A String value whose contents indicate a set of substrings that cannot appear, in any sequence, in a password value
externalId String: (Updatable) An identifier for the Resource as defined by the Service Consumer. The externalId may simplify identification of the Resource between Service Consumer and Service Provider by allowing the Consumer to refer to the Resource with its own identifier, obviating the need to store a local mapping between the local identifier of the Resource and the identifier used by the Service Provider. Each Resource MAY include a non-empty externalId value. The value of the externalId attribute is always issued by the Service Consumer and can never be specified by the Service Provider. The Service Provider MUST always interpret the externalId as scoped to the Service Consumer's tenant.
firstNameDisallowed Boolean: (Updatable) Indicates a sequence of characters that match the user's first name of given name cannot be the password. Password validation against policy will be ignored if length of first name is less than or equal to 3 characters.
forcePasswordReset Boolean: (Updatable) Indicates whether all of the users should be forced to reset their password on the next login (to comply with new password policy changes)
groups List<DomainsPasswordPolicyGroupArgs>: (Updatable) A list of groups that the password policy belongs to.
lastNameDisallowed Boolean: (Updatable) Indicates a sequence of characters that match the user's last name of given name cannot be the password. Password validation against policy will be ignored if length of last name is less than or equal to 3 characters.
lockoutDuration Integer: (Updatable) The time period in minutes to lock out a user account when the threshold of invalid login attempts is reached. The available range is from 5 through 1440 minutes (24 hours).
maxIncorrectAttempts Integer: (Updatable) An integer that represents the maximum number of failed logins before an account is locked
maxLength Integer: (Updatable) The maximum password length (in characters). A value of 0 or no value indicates no maximum length restriction.
maxRepeatedChars Integer: (Updatable) The maximum number of repeated characters allowed in a password. A value of 0 or no value indicates no such restriction.
maxSpecialChars Integer: (Updatable) The maximum number of special characters in a password. A value of 0 or no value indicates no maximum special characters restriction.
minAlphaNumerals Integer: (Updatable) The minimum number of a combination of alphabetic and numeric characters in a password. A value of 0 or no value indicates no minimum alphanumeric character restriction.
minAlphas Integer: (Updatable) The minimum number of alphabetic characters in a password. A value of 0 or no value indicates no minimum alphas restriction.
minLength Integer: (Updatable) The minimum password length (in characters). A value of 0 or no value indicates no minimum length restriction.
minLowerCase Integer: (Updatable) The minimum number of lowercase alphabetic characters in a password. A value of 0 or no value indicates no minimum lowercase restriction.
minNumerals Integer: (Updatable) The minimum number of numeric characters in a password. A value of 0 or no value indicates no minimum numeric character restriction.
minPasswordAge Integer: (Updatable) Minimum time after which the user can resubmit the reset password request
minSpecialChars Integer: (Updatable) The minimum number of special characters in a password. A value of 0 or no value indicates no minimum special characters restriction.
minUniqueChars Integer: (Updatable) The minimum number of unique characters in a password. A value of 0 or no value indicates no minimum unique characters restriction.
minUpperCase Integer: (Updatable) The minimum number of uppercase alphabetic characters in a password. A value of 0 or no value indicates no minimum uppercase restriction.
name String: (Updatable) A String that is the name of the policy to display to the user. This is the only mandatory attribute for a password policy.
numPasswordsInHistory Integer: (Updatable) The number of passwords that will be kept in history that may not be used as a password
ocid String: (Updatable) Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
passwordExpireWarning Integer: (Updatable) An integer indicating the number of days before which the user should be warned about password expiry.
passwordExpiresAfter Integer: (Updatable) The number of days after which the password expires automatically
passwordStrength String: (Updatable) Indicates whether the password policy is configured as Simple, Standard, or Custom.
priority Integer: (Updatable) Password policy priority
requiredChars String: (Updatable) A String value whose contents indicate a set of characters that must appear, in any sequence, in a password value
resourceTypeSchemaVersion String: (Updatable) An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.
startsWithAlphabet Boolean: (Updatable) Indicates that the password must begin with an alphabetic character
tags List<DomainsPasswordPolicyTagArgs>: (Updatable) A list of tags on this resource.
userNameDisallowed Boolean: (Updatable) Indicates a sequence of characters that match the username cannot be the password. Password validation against policy will be ignored if length of user name is less than or equal to 3 characters.

idcsEndpoint string: The basic endpoint for the identity domain
schemas string[]: (Updatable) REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard "enterprise" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.
allowedChars string: (Updatable) A String value whose contents indicate a set of characters that can appear, in any sequence, in a password value
attributeSets string[]: (Updatable) A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If 'attributes' query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.
attributes string: (Updatable) A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.
authorization string: (Updatable) The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.
description string: (Updatable) A String that describes the password policy
dictionaryDelimiter string: (Updatable) A delimiter used to separate characters in the dictionary file
dictionaryLocation string: (Updatable) A Reference value that contains the URI of a dictionary of words not allowed to appear within a password value
dictionaryWordDisallowed boolean: (Updatable) Indicates whether the password can match a dictionary word
disallowedChars string: (Updatable) A String value whose contents indicate a set of characters that cannot appear, in any sequence, in a password value
disallowedSubstrings string[]: (Updatable) A String value whose contents indicate a set of substrings that cannot appear, in any sequence, in a password value
externalId string: (Updatable) An identifier for the Resource as defined by the Service Consumer. The externalId may simplify identification of the Resource between Service Consumer and Service Provider by allowing the Consumer to refer to the Resource with its own identifier, obviating the need to store a local mapping between the local identifier of the Resource and the identifier used by the Service Provider. Each Resource MAY include a non-empty externalId value. The value of the externalId attribute is always issued by the Service Consumer and can never be specified by the Service Provider. The Service Provider MUST always interpret the externalId as scoped to the Service Consumer's tenant.
firstNameDisallowed boolean: (Updatable) Indicates a sequence of characters that match the user's first name of given name cannot be the password. Password validation against policy will be ignored if length of first name is less than or equal to 3 characters.
forcePasswordReset boolean: (Updatable) Indicates whether all of the users should be forced to reset their password on the next login (to comply with new password policy changes)
groups DomainsPasswordPolicyGroupArgs[]: (Updatable) A list of groups that the password policy belongs to.
lastNameDisallowed boolean: (Updatable) Indicates a sequence of characters that match the user's last name of given name cannot be the password. Password validation against policy will be ignored if length of last name is less than or equal to 3 characters.
lockoutDuration number: (Updatable) The time period in minutes to lock out a user account when the threshold of invalid login attempts is reached. The available range is from 5 through 1440 minutes (24 hours).
maxIncorrectAttempts number: (Updatable) An integer that represents the maximum number of failed logins before an account is locked
maxLength number: (Updatable) The maximum password length (in characters). A value of 0 or no value indicates no maximum length restriction.
maxRepeatedChars number: (Updatable) The maximum number of repeated characters allowed in a password. A value of 0 or no value indicates no such restriction.
maxSpecialChars number: (Updatable) The maximum number of special characters in a password. A value of 0 or no value indicates no maximum special characters restriction.
minAlphaNumerals number: (Updatable) The minimum number of a combination of alphabetic and numeric characters in a password. A value of 0 or no value indicates no minimum alphanumeric character restriction.
minAlphas number: (Updatable) The minimum number of alphabetic characters in a password. A value of 0 or no value indicates no minimum alphas restriction.
minLength number: (Updatable) The minimum password length (in characters). A value of 0 or no value indicates no minimum length restriction.
minLowerCase number: (Updatable) The minimum number of lowercase alphabetic characters in a password. A value of 0 or no value indicates no minimum lowercase restriction.
minNumerals number: (Updatable) The minimum number of numeric characters in a password. A value of 0 or no value indicates no minimum numeric character restriction.
minPasswordAge number: (Updatable) Minimum time after which the user can resubmit the reset password request
minSpecialChars number: (Updatable) The minimum number of special characters in a password. A value of 0 or no value indicates no minimum special characters restriction.
minUniqueChars number: (Updatable) The minimum number of unique characters in a password. A value of 0 or no value indicates no minimum unique characters restriction.
minUpperCase number: (Updatable) The minimum number of uppercase alphabetic characters in a password. A value of 0 or no value indicates no minimum uppercase restriction.
name string: (Updatable) A String that is the name of the policy to display to the user. This is the only mandatory attribute for a password policy.
numPasswordsInHistory number: (Updatable) The number of passwords that will be kept in history that may not be used as a password
ocid string: (Updatable) Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
passwordExpireWarning number: (Updatable) An integer indicating the number of days before which the user should be warned about password expiry.
passwordExpiresAfter number: (Updatable) The number of days after which the password expires automatically
passwordStrength string: (Updatable) Indicates whether the password policy is configured as Simple, Standard, or Custom.
priority number: (Updatable) Password policy priority
requiredChars string: (Updatable) A String value whose contents indicate a set of characters that must appear, in any sequence, in a password value
resourceTypeSchemaVersion string: (Updatable) An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.
startsWithAlphabet boolean: (Updatable) Indicates that the password must begin with an alphabetic character
tags DomainsPasswordPolicyTagArgs[]: (Updatable) A list of tags on this resource.
userNameDisallowed boolean: (Updatable) Indicates a sequence of characters that match the username cannot be the password. Password validation against policy will be ignored if length of user name is less than or equal to 3 characters.

idcs_endpoint str: The basic endpoint for the identity domain
schemas Sequence[str]: (Updatable) REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard "enterprise" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.
allowed_chars str: (Updatable) A String value whose contents indicate a set of characters that can appear, in any sequence, in a password value
attribute_sets Sequence[str]: (Updatable) A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If 'attributes' query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.
attributes str: (Updatable) A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.
authorization str: (Updatable) The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.
description str: (Updatable) A String that describes the password policy
dictionary_delimiter str: (Updatable) A delimiter used to separate characters in the dictionary file
dictionary_location str: (Updatable) A Reference value that contains the URI of a dictionary of words not allowed to appear within a password value
dictionary_word_disallowed bool: (Updatable) Indicates whether the password can match a dictionary word
disallowed_chars str: (Updatable) A String value whose contents indicate a set of characters that cannot appear, in any sequence, in a password value
disallowed_substrings Sequence[str]: (Updatable) A String value whose contents indicate a set of substrings that cannot appear, in any sequence, in a password value
external_id str: (Updatable) An identifier for the Resource as defined by the Service Consumer. The externalId may simplify identification of the Resource between Service Consumer and Service Provider by allowing the Consumer to refer to the Resource with its own identifier, obviating the need to store a local mapping between the local identifier of the Resource and the identifier used by the Service Provider. Each Resource MAY include a non-empty externalId value. The value of the externalId attribute is always issued by the Service Consumer and can never be specified by the Service Provider. The Service Provider MUST always interpret the externalId as scoped to the Service Consumer's tenant.
first_name_disallowed bool: (Updatable) Indicates a sequence of characters that match the user's first name of given name cannot be the password. Password validation against policy will be ignored if length of first name is less than or equal to 3 characters.
force_password_reset bool: (Updatable) Indicates whether all of the users should be forced to reset their password on the next login (to comply with new password policy changes)
groups DomainsPasswordPolicyGroupArgs]: (Updatable) A list of groups that the password policy belongs to.
last_name_disallowed bool: (Updatable) Indicates a sequence of characters that match the user's last name of given name cannot be the password. Password validation against policy will be ignored if length of last name is less than or equal to 3 characters.
lockout_duration int: (Updatable) The time period in minutes to lock out a user account when the threshold of invalid login attempts is reached. The available range is from 5 through 1440 minutes (24 hours).
max_incorrect_attempts int: (Updatable) An integer that represents the maximum number of failed logins before an account is locked
max_length int: (Updatable) The maximum password length (in characters). A value of 0 or no value indicates no maximum length restriction.
max_repeated_chars int: (Updatable) The maximum number of repeated characters allowed in a password. A value of 0 or no value indicates no such restriction.
max_special_chars int: (Updatable) The maximum number of special characters in a password. A value of 0 or no value indicates no maximum special characters restriction.
min_alpha_numerals int: (Updatable) The minimum number of a combination of alphabetic and numeric characters in a password. A value of 0 or no value indicates no minimum alphanumeric character restriction.
min_alphas int: (Updatable) The minimum number of alphabetic characters in a password. A value of 0 or no value indicates no minimum alphas restriction.
min_length int: (Updatable) The minimum password length (in characters). A value of 0 or no value indicates no minimum length restriction.
min_lower_case int: (Updatable) The minimum number of lowercase alphabetic characters in a password. A value of 0 or no value indicates no minimum lowercase restriction.
min_numerals int: (Updatable) The minimum number of numeric characters in a password. A value of 0 or no value indicates no minimum numeric character restriction.
min_password_age int: (Updatable) Minimum time after which the user can resubmit the reset password request
min_special_chars int: (Updatable) The minimum number of special characters in a password. A value of 0 or no value indicates no minimum special characters restriction.
min_unique_chars int: (Updatable) The minimum number of unique characters in a password. A value of 0 or no value indicates no minimum unique characters restriction.
min_upper_case int: (Updatable) The minimum number of uppercase alphabetic characters in a password. A value of 0 or no value indicates no minimum uppercase restriction.
name str: (Updatable) A String that is the name of the policy to display to the user. This is the only mandatory attribute for a password policy.
num_passwords_in_history int: (Updatable) The number of passwords that will be kept in history that may not be used as a password
ocid str: (Updatable) Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
password_expire_warning int: (Updatable) An integer indicating the number of days before which the user should be warned about password expiry.
password_expires_after int: (Updatable) The number of days after which the password expires automatically
password_strength str: (Updatable) Indicates whether the password policy is configured as Simple, Standard, or Custom.
priority int: (Updatable) Password policy priority
required_chars str: (Updatable) A String value whose contents indicate a set of characters that must appear, in any sequence, in a password value
resource_type_schema_version str: (Updatable) An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.
starts_with_alphabet bool: (Updatable) Indicates that the password must begin with an alphabetic character
tags DomainsPasswordPolicyTagArgs]: (Updatable) A list of tags on this resource.
user_name_disallowed bool: (Updatable) Indicates a sequence of characters that match the username cannot be the password. Password validation against policy will be ignored if length of user name is less than or equal to 3 characters.

idcsEndpoint String: The basic endpoint for the identity domain
schemas List<String>: (Updatable) REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard "enterprise" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.
allowedChars String: (Updatable) A String value whose contents indicate a set of characters that can appear, in any sequence, in a password value
attributeSets List<String>: (Updatable) A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If 'attributes' query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.
attributes String: (Updatable) A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.
authorization String: (Updatable) The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.
description String: (Updatable) A String that describes the password policy
dictionaryDelimiter String: (Updatable) A delimiter used to separate characters in the dictionary file
dictionaryLocation String: (Updatable) A Reference value that contains the URI of a dictionary of words not allowed to appear within a password value
dictionaryWordDisallowed Boolean: (Updatable) Indicates whether the password can match a dictionary word
disallowedChars String: (Updatable) A String value whose contents indicate a set of characters that cannot appear, in any sequence, in a password value
disallowedSubstrings List<String>: (Updatable) A String value whose contents indicate a set of substrings that cannot appear, in any sequence, in a password value
externalId String: (Updatable) An identifier for the Resource as defined by the Service Consumer. The externalId may simplify identification of the Resource between Service Consumer and Service Provider by allowing the Consumer to refer to the Resource with its own identifier, obviating the need to store a local mapping between the local identifier of the Resource and the identifier used by the Service Provider. Each Resource MAY include a non-empty externalId value. The value of the externalId attribute is always issued by the Service Consumer and can never be specified by the Service Provider. The Service Provider MUST always interpret the externalId as scoped to the Service Consumer's tenant.
firstNameDisallowed Boolean: (Updatable) Indicates a sequence of characters that match the user's first name of given name cannot be the password. Password validation against policy will be ignored if length of first name is less than or equal to 3 characters.
forcePasswordReset Boolean: (Updatable) Indicates whether all of the users should be forced to reset their password on the next login (to comply with new password policy changes)
groups List<Property Map>: (Updatable) A list of groups that the password policy belongs to.
lastNameDisallowed Boolean: (Updatable) Indicates a sequence of characters that match the user's last name of given name cannot be the password. Password validation against policy will be ignored if length of last name is less than or equal to 3 characters.
lockoutDuration Number: (Updatable) The time period in minutes to lock out a user account when the threshold of invalid login attempts is reached. The available range is from 5 through 1440 minutes (24 hours).
maxIncorrectAttempts Number: (Updatable) An integer that represents the maximum number of failed logins before an account is locked
maxLength Number: (Updatable) The maximum password length (in characters). A value of 0 or no value indicates no maximum length restriction.
maxRepeatedChars Number: (Updatable) The maximum number of repeated characters allowed in a password. A value of 0 or no value indicates no such restriction.
maxSpecialChars Number: (Updatable) The maximum number of special characters in a password. A value of 0 or no value indicates no maximum special characters restriction.
minAlphaNumerals Number: (Updatable) The minimum number of a combination of alphabetic and numeric characters in a password. A value of 0 or no value indicates no minimum alphanumeric character restriction.
minAlphas Number: (Updatable) The minimum number of alphabetic characters in a password. A value of 0 or no value indicates no minimum alphas restriction.
minLength Number: (Updatable) The minimum password length (in characters). A value of 0 or no value indicates no minimum length restriction.
minLowerCase Number: (Updatable) The minimum number of lowercase alphabetic characters in a password. A value of 0 or no value indicates no minimum lowercase restriction.
minNumerals Number: (Updatable) The minimum number of numeric characters in a password. A value of 0 or no value indicates no minimum numeric character restriction.
minPasswordAge Number: (Updatable) Minimum time after which the user can resubmit the reset password request
minSpecialChars Number: (Updatable) The minimum number of special characters in a password. A value of 0 or no value indicates no minimum special characters restriction.
minUniqueChars Number: (Updatable) The minimum number of unique characters in a password. A value of 0 or no value indicates no minimum unique characters restriction.
minUpperCase Number: (Updatable) The minimum number of uppercase alphabetic characters in a password. A value of 0 or no value indicates no minimum uppercase restriction.
name String: (Updatable) A String that is the name of the policy to display to the user. This is the only mandatory attribute for a password policy.
numPasswordsInHistory Number: (Updatable) The number of passwords that will be kept in history that may not be used as a password
ocid String: (Updatable) Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
passwordExpireWarning Number: (Updatable) An integer indicating the number of days before which the user should be warned about password expiry.
passwordExpiresAfter Number: (Updatable) The number of days after which the password expires automatically
passwordStrength String: (Updatable) Indicates whether the password policy is configured as Simple, Standard, or Custom.
priority Number: (Updatable) Password policy priority
requiredChars String: (Updatable) A String value whose contents indicate a set of characters that must appear, in any sequence, in a password value
resourceTypeSchemaVersion String: (Updatable) An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.
startsWithAlphabet Boolean: (Updatable) Indicates that the password must begin with an alphabetic character
tags List<Property Map>: (Updatable) A list of tags on this resource.
userNameDisallowed Boolean: (Updatable) Indicates a sequence of characters that match the username cannot be the password. Password validation against policy will be ignored if length of user name is less than or equal to 3 characters.

Outputs

All input properties are implicitly available as output properties. Additionally, the DomainsPasswordPolicy resource produces the following output properties:

CompartmentOcid string: (Updatable) Oracle Cloud Infrastructure Compartment Id (ocid) in which the resource lives.
ConfiguredPasswordPolicyRules List<DomainsPasswordPolicyConfiguredPasswordPolicyRule>: (Updatable) List of password policy rules that have values set. This map of stringKey:stringValue pairs can be used to aid users while setting/resetting password
DeleteInProgress bool: (Updatable) A boolean flag indicating this resource in the process of being deleted. Usually set to true when synchronous deletion of the resource would take too long.
DomainOcid string: (Updatable) Oracle Cloud Infrastructure Domain Id (ocid) in which the resource lives.
Id string: The provider-assigned unique ID for this managed resource.
IdcsCreatedBies List<DomainsPasswordPolicyIdcsCreatedBy>: (Updatable) The User or App who created the Resource
IdcsLastModifiedBies List<DomainsPasswordPolicyIdcsLastModifiedBy>: (Updatable) The User or App who modified the Resource
IdcsLastUpgradedInRelease string: (Updatable) The release number when the resource was upgraded.
IdcsPreventedOperations List<string>: (Updatable) Each value of this attribute specifies an operation that only an internal client may perform on this particular resource.
Metas List<DomainsPasswordPolicyMeta>: (Updatable) A complex attribute that contains resource metadata. All sub-attributes are OPTIONAL.
TenancyOcid string: (Updatable) Oracle Cloud Infrastructure Tenant Id (ocid) in which the resource lives.

CompartmentOcid string: (Updatable) Oracle Cloud Infrastructure Compartment Id (ocid) in which the resource lives.
ConfiguredPasswordPolicyRules []DomainsPasswordPolicyConfiguredPasswordPolicyRule: (Updatable) List of password policy rules that have values set. This map of stringKey:stringValue pairs can be used to aid users while setting/resetting password
DeleteInProgress bool: (Updatable) A boolean flag indicating this resource in the process of being deleted. Usually set to true when synchronous deletion of the resource would take too long.
DomainOcid string: (Updatable) Oracle Cloud Infrastructure Domain Id (ocid) in which the resource lives.
Id string: The provider-assigned unique ID for this managed resource.
IdcsCreatedBies []DomainsPasswordPolicyIdcsCreatedBy: (Updatable) The User or App who created the Resource
IdcsLastModifiedBies []DomainsPasswordPolicyIdcsLastModifiedBy: (Updatable) The User or App who modified the Resource
IdcsLastUpgradedInRelease string: (Updatable) The release number when the resource was upgraded.
IdcsPreventedOperations []string: (Updatable) Each value of this attribute specifies an operation that only an internal client may perform on this particular resource.
Metas []DomainsPasswordPolicyMeta: (Updatable) A complex attribute that contains resource metadata. All sub-attributes are OPTIONAL.
TenancyOcid string: (Updatable) Oracle Cloud Infrastructure Tenant Id (ocid) in which the resource lives.

compartmentOcid String: (Updatable) Oracle Cloud Infrastructure Compartment Id (ocid) in which the resource lives.
configuredPasswordPolicyRules List<DomainsPasswordPolicyConfiguredPasswordPolicyRule>: (Updatable) List of password policy rules that have values set. This map of stringKey:stringValue pairs can be used to aid users while setting/resetting password
deleteInProgress Boolean: (Updatable) A boolean flag indicating this resource in the process of being deleted. Usually set to true when synchronous deletion of the resource would take too long.
domainOcid String: (Updatable) Oracle Cloud Infrastructure Domain Id (ocid) in which the resource lives.
id String: The provider-assigned unique ID for this managed resource.
idcsCreatedBies List<DomainsPasswordPolicyIdcsCreatedBy>: (Updatable) The User or App who created the Resource
idcsLastModifiedBies List<DomainsPasswordPolicyIdcsLastModifiedBy>: (Updatable) The User or App who modified the Resource
idcsLastUpgradedInRelease String: (Updatable) The release number when the resource was upgraded.
idcsPreventedOperations List<String>: (Updatable) Each value of this attribute specifies an operation that only an internal client may perform on this particular resource.
metas List<DomainsPasswordPolicyMeta>: (Updatable) A complex attribute that contains resource metadata. All sub-attributes are OPTIONAL.
tenancyOcid String: (Updatable) Oracle Cloud Infrastructure Tenant Id (ocid) in which the resource lives.

compartmentOcid string: (Updatable) Oracle Cloud Infrastructure Compartment Id (ocid) in which the resource lives.
configuredPasswordPolicyRules DomainsPasswordPolicyConfiguredPasswordPolicyRule[]: (Updatable) List of password policy rules that have values set. This map of stringKey:stringValue pairs can be used to aid users while setting/resetting password
deleteInProgress boolean: (Updatable) A boolean flag indicating this resource in the process of being deleted. Usually set to true when synchronous deletion of the resource would take too long.
domainOcid string: (Updatable) Oracle Cloud Infrastructure Domain Id (ocid) in which the resource lives.
id string: The provider-assigned unique ID for this managed resource.
idcsCreatedBies DomainsPasswordPolicyIdcsCreatedBy[]: (Updatable) The User or App who created the Resource
idcsLastModifiedBies DomainsPasswordPolicyIdcsLastModifiedBy[]: (Updatable) The User or App who modified the Resource
idcsLastUpgradedInRelease string: (Updatable) The release number when the resource was upgraded.
idcsPreventedOperations string[]: (Updatable) Each value of this attribute specifies an operation that only an internal client may perform on this particular resource.
metas DomainsPasswordPolicyMeta[]: (Updatable) A complex attribute that contains resource metadata. All sub-attributes are OPTIONAL.
tenancyOcid string: (Updatable) Oracle Cloud Infrastructure Tenant Id (ocid) in which the resource lives.

compartment_ocid str: (Updatable) Oracle Cloud Infrastructure Compartment Id (ocid) in which the resource lives.
configured_password_policy_rules DomainsPasswordPolicyConfiguredPasswordPolicyRule]: (Updatable) List of password policy rules that have values set. This map of stringKey:stringValue pairs can be used to aid users while setting/resetting password
delete_in_progress bool: (Updatable) A boolean flag indicating this resource in the process of being deleted. Usually set to true when synchronous deletion of the resource would take too long.
domain_ocid str: (Updatable) Oracle Cloud Infrastructure Domain Id (ocid) in which the resource lives.
id str: The provider-assigned unique ID for this managed resource.
idcs_created_bies DomainsPasswordPolicyIdcsCreatedBy]: (Updatable) The User or App who created the Resource
idcs_last_modified_bies DomainsPasswordPolicyIdcsLastModifiedBy]: (Updatable) The User or App who modified the Resource
idcs_last_upgraded_in_release str: (Updatable) The release number when the resource was upgraded.
idcs_prevented_operations Sequence[str]: (Updatable) Each value of this attribute specifies an operation that only an internal client may perform on this particular resource.
metas DomainsPasswordPolicyMeta]: (Updatable) A complex attribute that contains resource metadata. All sub-attributes are OPTIONAL.
tenancy_ocid str: (Updatable) Oracle Cloud Infrastructure Tenant Id (ocid) in which the resource lives.

compartmentOcid String: (Updatable) Oracle Cloud Infrastructure Compartment Id (ocid) in which the resource lives.
configuredPasswordPolicyRules List<Property Map>: (Updatable) List of password policy rules that have values set. This map of stringKey:stringValue pairs can be used to aid users while setting/resetting password
deleteInProgress Boolean: (Updatable) A boolean flag indicating this resource in the process of being deleted. Usually set to true when synchronous deletion of the resource would take too long.
domainOcid String: (Updatable) Oracle Cloud Infrastructure Domain Id (ocid) in which the resource lives.
id String: The provider-assigned unique ID for this managed resource.
idcsCreatedBies List<Property Map>: (Updatable) The User or App who created the Resource
idcsLastModifiedBies List<Property Map>: (Updatable) The User or App who modified the Resource
idcsLastUpgradedInRelease String: (Updatable) The release number when the resource was upgraded.
idcsPreventedOperations List<String>: (Updatable) Each value of this attribute specifies an operation that only an internal client may perform on this particular resource.
metas List<Property Map>: (Updatable) A complex attribute that contains resource metadata. All sub-attributes are OPTIONAL.
tenancyOcid String: (Updatable) Oracle Cloud Infrastructure Tenant Id (ocid) in which the resource lives.

Look up Existing DomainsPasswordPolicy Resource

Get an existing DomainsPasswordPolicy resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

public static get(name: string, id: Input<ID>, state?: DomainsPasswordPolicyState, opts?: CustomResourceOptions): DomainsPasswordPolicy

@staticmethod
def get(resource_name: str,
        id: str,
        opts: Optional[ResourceOptions] = None,
        allowed_chars: Optional[str] = None,
        attribute_sets: Optional[Sequence[str]] = None,
        attributes: Optional[str] = None,
        authorization: Optional[str] = None,
        compartment_ocid: Optional[str] = None,
        configured_password_policy_rules: Optional[Sequence[_identity.DomainsPasswordPolicyConfiguredPasswordPolicyRuleArgs]] = None,
        delete_in_progress: Optional[bool] = None,
        description: Optional[str] = None,
        dictionary_delimiter: Optional[str] = None,
        dictionary_location: Optional[str] = None,
        dictionary_word_disallowed: Optional[bool] = None,
        disallowed_chars: Optional[str] = None,
        disallowed_substrings: Optional[Sequence[str]] = None,
        domain_ocid: Optional[str] = None,
        external_id: Optional[str] = None,
        first_name_disallowed: Optional[bool] = None,
        force_password_reset: Optional[bool] = None,
        groups: Optional[Sequence[_identity.DomainsPasswordPolicyGroupArgs]] = None,
        idcs_created_bies: Optional[Sequence[_identity.DomainsPasswordPolicyIdcsCreatedByArgs]] = None,
        idcs_endpoint: Optional[str] = None,
        idcs_last_modified_bies: Optional[Sequence[_identity.DomainsPasswordPolicyIdcsLastModifiedByArgs]] = None,
        idcs_last_upgraded_in_release: Optional[str] = None,
        idcs_prevented_operations: Optional[Sequence[str]] = None,
        last_name_disallowed: Optional[bool] = None,
        lockout_duration: Optional[int] = None,
        max_incorrect_attempts: Optional[int] = None,
        max_length: Optional[int] = None,
        max_repeated_chars: Optional[int] = None,
        max_special_chars: Optional[int] = None,
        metas: Optional[Sequence[_identity.DomainsPasswordPolicyMetaArgs]] = None,
        min_alpha_numerals: Optional[int] = None,
        min_alphas: Optional[int] = None,
        min_length: Optional[int] = None,
        min_lower_case: Optional[int] = None,
        min_numerals: Optional[int] = None,
        min_password_age: Optional[int] = None,
        min_special_chars: Optional[int] = None,
        min_unique_chars: Optional[int] = None,
        min_upper_case: Optional[int] = None,
        name: Optional[str] = None,
        num_passwords_in_history: Optional[int] = None,
        ocid: Optional[str] = None,
        password_expire_warning: Optional[int] = None,
        password_expires_after: Optional[int] = None,
        password_strength: Optional[str] = None,
        priority: Optional[int] = None,
        required_chars: Optional[str] = None,
        resource_type_schema_version: Optional[str] = None,
        schemas: Optional[Sequence[str]] = None,
        starts_with_alphabet: Optional[bool] = None,
        tags: Optional[Sequence[_identity.DomainsPasswordPolicyTagArgs]] = None,
        tenancy_ocid: Optional[str] = None,
        user_name_disallowed: Optional[bool] = None) -> DomainsPasswordPolicy

func GetDomainsPasswordPolicy(ctx *Context, name string, id IDInput, state *DomainsPasswordPolicyState, opts ...ResourceOption) (*DomainsPasswordPolicy, error)

public static DomainsPasswordPolicy Get(string name, Input<string> id, DomainsPasswordPolicyState? state, CustomResourceOptions? opts = null)

public static DomainsPasswordPolicy get(String name, Output<String> id, DomainsPasswordPolicyState state, CustomResourceOptions options)

Resource lookup is not supported in YAML

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

resource_name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

The following state arguments are supported:

AllowedChars string: (Updatable) A String value whose contents indicate a set of characters that can appear, in any sequence, in a password value
AttributeSets List<string>: (Updatable) A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If 'attributes' query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.
Attributes string: (Updatable) A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.
Authorization string: (Updatable) The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.
CompartmentOcid string: (Updatable) Oracle Cloud Infrastructure Compartment Id (ocid) in which the resource lives.
ConfiguredPasswordPolicyRules List<DomainsPasswordPolicyConfiguredPasswordPolicyRuleArgs>: (Updatable) List of password policy rules that have values set. This map of stringKey:stringValue pairs can be used to aid users while setting/resetting password
DeleteInProgress bool: (Updatable) A boolean flag indicating this resource in the process of being deleted. Usually set to true when synchronous deletion of the resource would take too long.
Description string: (Updatable) A String that describes the password policy
DictionaryDelimiter string: (Updatable) A delimiter used to separate characters in the dictionary file
DictionaryLocation string: (Updatable) A Reference value that contains the URI of a dictionary of words not allowed to appear within a password value
DictionaryWordDisallowed bool: (Updatable) Indicates whether the password can match a dictionary word
DisallowedChars string: (Updatable) A String value whose contents indicate a set of characters that cannot appear, in any sequence, in a password value
DisallowedSubstrings List<string>: (Updatable) A String value whose contents indicate a set of substrings that cannot appear, in any sequence, in a password value
DomainOcid string: (Updatable) Oracle Cloud Infrastructure Domain Id (ocid) in which the resource lives.
ExternalId string: (Updatable) An identifier for the Resource as defined by the Service Consumer. The externalId may simplify identification of the Resource between Service Consumer and Service Provider by allowing the Consumer to refer to the Resource with its own identifier, obviating the need to store a local mapping between the local identifier of the Resource and the identifier used by the Service Provider. Each Resource MAY include a non-empty externalId value. The value of the externalId attribute is always issued by the Service Consumer and can never be specified by the Service Provider. The Service Provider MUST always interpret the externalId as scoped to the Service Consumer's tenant.
FirstNameDisallowed bool: (Updatable) Indicates a sequence of characters that match the user's first name of given name cannot be the password. Password validation against policy will be ignored if length of first name is less than or equal to 3 characters.
ForcePasswordReset bool: (Updatable) Indicates whether all of the users should be forced to reset their password on the next login (to comply with new password policy changes)
Groups List<DomainsPasswordPolicyGroupArgs>: (Updatable) A list of groups that the password policy belongs to.
IdcsCreatedBies List<DomainsPasswordPolicyIdcsCreatedByArgs>: (Updatable) The User or App who created the Resource
IdcsEndpoint string: The basic endpoint for the identity domain
IdcsLastModifiedBies List<DomainsPasswordPolicyIdcsLastModifiedByArgs>: (Updatable) The User or App who modified the Resource
IdcsLastUpgradedInRelease string: (Updatable) The release number when the resource was upgraded.
IdcsPreventedOperations List<string>: (Updatable) Each value of this attribute specifies an operation that only an internal client may perform on this particular resource.
LastNameDisallowed bool: (Updatable) Indicates a sequence of characters that match the user's last name of given name cannot be the password. Password validation against policy will be ignored if length of last name is less than or equal to 3 characters.
LockoutDuration int: (Updatable) The time period in minutes to lock out a user account when the threshold of invalid login attempts is reached. The available range is from 5 through 1440 minutes (24 hours).
MaxIncorrectAttempts int: (Updatable) An integer that represents the maximum number of failed logins before an account is locked
MaxLength int: (Updatable) The maximum password length (in characters). A value of 0 or no value indicates no maximum length restriction.
MaxRepeatedChars int: (Updatable) The maximum number of repeated characters allowed in a password. A value of 0 or no value indicates no such restriction.
MaxSpecialChars int: (Updatable) The maximum number of special characters in a password. A value of 0 or no value indicates no maximum special characters restriction.
Metas List<DomainsPasswordPolicyMetaArgs>: (Updatable) A complex attribute that contains resource metadata. All sub-attributes are OPTIONAL.
MinAlphaNumerals int: (Updatable) The minimum number of a combination of alphabetic and numeric characters in a password. A value of 0 or no value indicates no minimum alphanumeric character restriction.
MinAlphas int: (Updatable) The minimum number of alphabetic characters in a password. A value of 0 or no value indicates no minimum alphas restriction.
MinLength int: (Updatable) The minimum password length (in characters). A value of 0 or no value indicates no minimum length restriction.
MinLowerCase int: (Updatable) The minimum number of lowercase alphabetic characters in a password. A value of 0 or no value indicates no minimum lowercase restriction.
MinNumerals int: (Updatable) The minimum number of numeric characters in a password. A value of 0 or no value indicates no minimum numeric character restriction.
MinPasswordAge int: (Updatable) Minimum time after which the user can resubmit the reset password request
MinSpecialChars int: (Updatable) The minimum number of special characters in a password. A value of 0 or no value indicates no minimum special characters restriction.
MinUniqueChars int: (Updatable) The minimum number of unique characters in a password. A value of 0 or no value indicates no minimum unique characters restriction.
MinUpperCase int: (Updatable) The minimum number of uppercase alphabetic characters in a password. A value of 0 or no value indicates no minimum uppercase restriction.
Name string: (Updatable) A String that is the name of the policy to display to the user. This is the only mandatory attribute for a password policy.
NumPasswordsInHistory int: (Updatable) The number of passwords that will be kept in history that may not be used as a password
Ocid string: (Updatable) Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
PasswordExpireWarning int: (Updatable) An integer indicating the number of days before which the user should be warned about password expiry.
PasswordExpiresAfter int: (Updatable) The number of days after which the password expires automatically
PasswordStrength string: (Updatable) Indicates whether the password policy is configured as Simple, Standard, or Custom.
Priority int: (Updatable) Password policy priority
RequiredChars string: (Updatable) A String value whose contents indicate a set of characters that must appear, in any sequence, in a password value
ResourceTypeSchemaVersion string: (Updatable) An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.
Schemas List<string>: (Updatable) REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard "enterprise" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.
StartsWithAlphabet bool: (Updatable) Indicates that the password must begin with an alphabetic character
Tags List<DomainsPasswordPolicyTagArgs>: (Updatable) A list of tags on this resource.
TenancyOcid string: (Updatable) Oracle Cloud Infrastructure Tenant Id (ocid) in which the resource lives.
UserNameDisallowed bool: (Updatable) Indicates a sequence of characters that match the username cannot be the password. Password validation against policy will be ignored if length of user name is less than or equal to 3 characters.

AllowedChars string: (Updatable) A String value whose contents indicate a set of characters that can appear, in any sequence, in a password value
AttributeSets []string: (Updatable) A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If 'attributes' query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.
Attributes string: (Updatable) A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.
Authorization string: (Updatable) The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.
CompartmentOcid string: (Updatable) Oracle Cloud Infrastructure Compartment Id (ocid) in which the resource lives.
ConfiguredPasswordPolicyRules []DomainsPasswordPolicyConfiguredPasswordPolicyRuleArgs: (Updatable) List of password policy rules that have values set. This map of stringKey:stringValue pairs can be used to aid users while setting/resetting password
DeleteInProgress bool: (Updatable) A boolean flag indicating this resource in the process of being deleted. Usually set to true when synchronous deletion of the resource would take too long.
Description string: (Updatable) A String that describes the password policy
DictionaryDelimiter string: (Updatable) A delimiter used to separate characters in the dictionary file
DictionaryLocation string: (Updatable) A Reference value that contains the URI of a dictionary of words not allowed to appear within a password value
DictionaryWordDisallowed bool: (Updatable) Indicates whether the password can match a dictionary word
DisallowedChars string: (Updatable) A String value whose contents indicate a set of characters that cannot appear, in any sequence, in a password value
DisallowedSubstrings []string: (Updatable) A String value whose contents indicate a set of substrings that cannot appear, in any sequence, in a password value
DomainOcid string: (Updatable) Oracle Cloud Infrastructure Domain Id (ocid) in which the resource lives.
ExternalId string: (Updatable) An identifier for the Resource as defined by the Service Consumer. The externalId may simplify identification of the Resource between Service Consumer and Service Provider by allowing the Consumer to refer to the Resource with its own identifier, obviating the need to store a local mapping between the local identifier of the Resource and the identifier used by the Service Provider. Each Resource MAY include a non-empty externalId value. The value of the externalId attribute is always issued by the Service Consumer and can never be specified by the Service Provider. The Service Provider MUST always interpret the externalId as scoped to the Service Consumer's tenant.
FirstNameDisallowed bool: (Updatable) Indicates a sequence of characters that match the user's first name of given name cannot be the password. Password validation against policy will be ignored if length of first name is less than or equal to 3 characters.
ForcePasswordReset bool: (Updatable) Indicates whether all of the users should be forced to reset their password on the next login (to comply with new password policy changes)
Groups []DomainsPasswordPolicyGroupArgs: (Updatable) A list of groups that the password policy belongs to.
IdcsCreatedBies []DomainsPasswordPolicyIdcsCreatedByArgs: (Updatable) The User or App who created the Resource
IdcsEndpoint string: The basic endpoint for the identity domain
IdcsLastModifiedBies []DomainsPasswordPolicyIdcsLastModifiedByArgs: (Updatable) The User or App who modified the Resource
IdcsLastUpgradedInRelease string: (Updatable) The release number when the resource was upgraded.
IdcsPreventedOperations []string: (Updatable) Each value of this attribute specifies an operation that only an internal client may perform on this particular resource.
LastNameDisallowed bool: (Updatable) Indicates a sequence of characters that match the user's last name of given name cannot be the password. Password validation against policy will be ignored if length of last name is less than or equal to 3 characters.
LockoutDuration int: (Updatable) The time period in minutes to lock out a user account when the threshold of invalid login attempts is reached. The available range is from 5 through 1440 minutes (24 hours).
MaxIncorrectAttempts int: (Updatable) An integer that represents the maximum number of failed logins before an account is locked
MaxLength int: (Updatable) The maximum password length (in characters). A value of 0 or no value indicates no maximum length restriction.
MaxRepeatedChars int: (Updatable) The maximum number of repeated characters allowed in a password. A value of 0 or no value indicates no such restriction.
MaxSpecialChars int: (Updatable) The maximum number of special characters in a password. A value of 0 or no value indicates no maximum special characters restriction.
Metas []DomainsPasswordPolicyMetaArgs: (Updatable) A complex attribute that contains resource metadata. All sub-attributes are OPTIONAL.
MinAlphaNumerals int: (Updatable) The minimum number of a combination of alphabetic and numeric characters in a password. A value of 0 or no value indicates no minimum alphanumeric character restriction.
MinAlphas int: (Updatable) The minimum number of alphabetic characters in a password. A value of 0 or no value indicates no minimum alphas restriction.
MinLength int: (Updatable) The minimum password length (in characters). A value of 0 or no value indicates no minimum length restriction.
MinLowerCase int: (Updatable) The minimum number of lowercase alphabetic characters in a password. A value of 0 or no value indicates no minimum lowercase restriction.
MinNumerals int: (Updatable) The minimum number of numeric characters in a password. A value of 0 or no value indicates no minimum numeric character restriction.
MinPasswordAge int: (Updatable) Minimum time after which the user can resubmit the reset password request
MinSpecialChars int: (Updatable) The minimum number of special characters in a password. A value of 0 or no value indicates no minimum special characters restriction.
MinUniqueChars int: (Updatable) The minimum number of unique characters in a password. A value of 0 or no value indicates no minimum unique characters restriction.
MinUpperCase int: (Updatable) The minimum number of uppercase alphabetic characters in a password. A value of 0 or no value indicates no minimum uppercase restriction.
Name string: (Updatable) A String that is the name of the policy to display to the user. This is the only mandatory attribute for a password policy.
NumPasswordsInHistory int: (Updatable) The number of passwords that will be kept in history that may not be used as a password
Ocid string: (Updatable) Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
PasswordExpireWarning int: (Updatable) An integer indicating the number of days before which the user should be warned about password expiry.
PasswordExpiresAfter int: (Updatable) The number of days after which the password expires automatically
PasswordStrength string: (Updatable) Indicates whether the password policy is configured as Simple, Standard, or Custom.
Priority int: (Updatable) Password policy priority
RequiredChars string: (Updatable) A String value whose contents indicate a set of characters that must appear, in any sequence, in a password value
ResourceTypeSchemaVersion string: (Updatable) An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.
Schemas []string: (Updatable) REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard "enterprise" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.
StartsWithAlphabet bool: (Updatable) Indicates that the password must begin with an alphabetic character
Tags []DomainsPasswordPolicyTagArgs: (Updatable) A list of tags on this resource.
TenancyOcid string: (Updatable) Oracle Cloud Infrastructure Tenant Id (ocid) in which the resource lives.
UserNameDisallowed bool: (Updatable) Indicates a sequence of characters that match the username cannot be the password. Password validation against policy will be ignored if length of user name is less than or equal to 3 characters.

allowedChars String: (Updatable) A String value whose contents indicate a set of characters that can appear, in any sequence, in a password value
attributeSets List<String>: (Updatable) A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If 'attributes' query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.
attributes String: (Updatable) A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.
authorization String: (Updatable) The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.
compartmentOcid String: (Updatable) Oracle Cloud Infrastructure Compartment Id (ocid) in which the resource lives.
configuredPasswordPolicyRules List<DomainsPasswordPolicyConfiguredPasswordPolicyRuleArgs>: (Updatable) List of password policy rules that have values set. This map of stringKey:stringValue pairs can be used to aid users while setting/resetting password
deleteInProgress Boolean: (Updatable) A boolean flag indicating this resource in the process of being deleted. Usually set to true when synchronous deletion of the resource would take too long.
description String: (Updatable) A String that describes the password policy
dictionaryDelimiter String: (Updatable) A delimiter used to separate characters in the dictionary file
dictionaryLocation String: (Updatable) A Reference value that contains the URI of a dictionary of words not allowed to appear within a password value
dictionaryWordDisallowed Boolean: (Updatable) Indicates whether the password can match a dictionary word
disallowedChars String: (Updatable) A String value whose contents indicate a set of characters that cannot appear, in any sequence, in a password value
disallowedSubstrings List<String>: (Updatable) A String value whose contents indicate a set of substrings that cannot appear, in any sequence, in a password value
domainOcid String: (Updatable) Oracle Cloud Infrastructure Domain Id (ocid) in which the resource lives.
externalId String: (Updatable) An identifier for the Resource as defined by the Service Consumer. The externalId may simplify identification of the Resource between Service Consumer and Service Provider by allowing the Consumer to refer to the Resource with its own identifier, obviating the need to store a local mapping between the local identifier of the Resource and the identifier used by the Service Provider. Each Resource MAY include a non-empty externalId value. The value of the externalId attribute is always issued by the Service Consumer and can never be specified by the Service Provider. The Service Provider MUST always interpret the externalId as scoped to the Service Consumer's tenant.
firstNameDisallowed Boolean: (Updatable) Indicates a sequence of characters that match the user's first name of given name cannot be the password. Password validation against policy will be ignored if length of first name is less than or equal to 3 characters.
forcePasswordReset Boolean: (Updatable) Indicates whether all of the users should be forced to reset their password on the next login (to comply with new password policy changes)
groups List<DomainsPasswordPolicyGroupArgs>: (Updatable) A list of groups that the password policy belongs to.
idcsCreatedBies List<DomainsPasswordPolicyIdcsCreatedByArgs>: (Updatable) The User or App who created the Resource
idcsEndpoint String: The basic endpoint for the identity domain
idcsLastModifiedBies List<DomainsPasswordPolicyIdcsLastModifiedByArgs>: (Updatable) The User or App who modified the Resource
idcsLastUpgradedInRelease String: (Updatable) The release number when the resource was upgraded.
idcsPreventedOperations List<String>: (Updatable) Each value of this attribute specifies an operation that only an internal client may perform on this particular resource.
lastNameDisallowed Boolean: (Updatable) Indicates a sequence of characters that match the user's last name of given name cannot be the password. Password validation against policy will be ignored if length of last name is less than or equal to 3 characters.
lockoutDuration Integer: (Updatable) The time period in minutes to lock out a user account when the threshold of invalid login attempts is reached. The available range is from 5 through 1440 minutes (24 hours).
maxIncorrectAttempts Integer: (Updatable) An integer that represents the maximum number of failed logins before an account is locked
maxLength Integer: (Updatable) The maximum password length (in characters). A value of 0 or no value indicates no maximum length restriction.
maxRepeatedChars Integer: (Updatable) The maximum number of repeated characters allowed in a password. A value of 0 or no value indicates no such restriction.
maxSpecialChars Integer: (Updatable) The maximum number of special characters in a password. A value of 0 or no value indicates no maximum special characters restriction.
metas List<DomainsPasswordPolicyMetaArgs>: (Updatable) A complex attribute that contains resource metadata. All sub-attributes are OPTIONAL.
minAlphaNumerals Integer: (Updatable) The minimum number of a combination of alphabetic and numeric characters in a password. A value of 0 or no value indicates no minimum alphanumeric character restriction.
minAlphas Integer: (Updatable) The minimum number of alphabetic characters in a password. A value of 0 or no value indicates no minimum alphas restriction.
minLength Integer: (Updatable) The minimum password length (in characters). A value of 0 or no value indicates no minimum length restriction.
minLowerCase Integer: (Updatable) The minimum number of lowercase alphabetic characters in a password. A value of 0 or no value indicates no minimum lowercase restriction.
minNumerals Integer: (Updatable) The minimum number of numeric characters in a password. A value of 0 or no value indicates no minimum numeric character restriction.
minPasswordAge Integer: (Updatable) Minimum time after which the user can resubmit the reset password request
minSpecialChars Integer: (Updatable) The minimum number of special characters in a password. A value of 0 or no value indicates no minimum special characters restriction.
minUniqueChars Integer: (Updatable) The minimum number of unique characters in a password. A value of 0 or no value indicates no minimum unique characters restriction.
minUpperCase Integer: (Updatable) The minimum number of uppercase alphabetic characters in a password. A value of 0 or no value indicates no minimum uppercase restriction.
name String: (Updatable) A String that is the name of the policy to display to the user. This is the only mandatory attribute for a password policy.
numPasswordsInHistory Integer: (Updatable) The number of passwords that will be kept in history that may not be used as a password
ocid String: (Updatable) Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
passwordExpireWarning Integer: (Updatable) An integer indicating the number of days before which the user should be warned about password expiry.
passwordExpiresAfter Integer: (Updatable) The number of days after which the password expires automatically
passwordStrength String: (Updatable) Indicates whether the password policy is configured as Simple, Standard, or Custom.
priority Integer: (Updatable) Password policy priority
requiredChars String: (Updatable) A String value whose contents indicate a set of characters that must appear, in any sequence, in a password value
resourceTypeSchemaVersion String: (Updatable) An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.
schemas List<String>: (Updatable) REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard "enterprise" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.
startsWithAlphabet Boolean: (Updatable) Indicates that the password must begin with an alphabetic character
tags List<DomainsPasswordPolicyTagArgs>: (Updatable) A list of tags on this resource.
tenancyOcid String: (Updatable) Oracle Cloud Infrastructure Tenant Id (ocid) in which the resource lives.
userNameDisallowed Boolean: (Updatable) Indicates a sequence of characters that match the username cannot be the password. Password validation against policy will be ignored if length of user name is less than or equal to 3 characters.

allowedChars string: (Updatable) A String value whose contents indicate a set of characters that can appear, in any sequence, in a password value
attributeSets string[]: (Updatable) A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If 'attributes' query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.
attributes string: (Updatable) A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.
authorization string: (Updatable) The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.
compartmentOcid string: (Updatable) Oracle Cloud Infrastructure Compartment Id (ocid) in which the resource lives.
configuredPasswordPolicyRules DomainsPasswordPolicyConfiguredPasswordPolicyRuleArgs[]: (Updatable) List of password policy rules that have values set. This map of stringKey:stringValue pairs can be used to aid users while setting/resetting password
deleteInProgress boolean: (Updatable) A boolean flag indicating this resource in the process of being deleted. Usually set to true when synchronous deletion of the resource would take too long.
description string: (Updatable) A String that describes the password policy
dictionaryDelimiter string: (Updatable) A delimiter used to separate characters in the dictionary file
dictionaryLocation string: (Updatable) A Reference value that contains the URI of a dictionary of words not allowed to appear within a password value
dictionaryWordDisallowed boolean: (Updatable) Indicates whether the password can match a dictionary word
disallowedChars string: (Updatable) A String value whose contents indicate a set of characters that cannot appear, in any sequence, in a password value
disallowedSubstrings string[]: (Updatable) A String value whose contents indicate a set of substrings that cannot appear, in any sequence, in a password value
domainOcid string: (Updatable) Oracle Cloud Infrastructure Domain Id (ocid) in which the resource lives.
externalId string: (Updatable) An identifier for the Resource as defined by the Service Consumer. The externalId may simplify identification of the Resource between Service Consumer and Service Provider by allowing the Consumer to refer to the Resource with its own identifier, obviating the need to store a local mapping between the local identifier of the Resource and the identifier used by the Service Provider. Each Resource MAY include a non-empty externalId value. The value of the externalId attribute is always issued by the Service Consumer and can never be specified by the Service Provider. The Service Provider MUST always interpret the externalId as scoped to the Service Consumer's tenant.
firstNameDisallowed boolean: (Updatable) Indicates a sequence of characters that match the user's first name of given name cannot be the password. Password validation against policy will be ignored if length of first name is less than or equal to 3 characters.
forcePasswordReset boolean: (Updatable) Indicates whether all of the users should be forced to reset their password on the next login (to comply with new password policy changes)
groups DomainsPasswordPolicyGroupArgs[]: (Updatable) A list of groups that the password policy belongs to.
idcsCreatedBies DomainsPasswordPolicyIdcsCreatedByArgs[]: (Updatable) The User or App who created the Resource
idcsEndpoint string: The basic endpoint for the identity domain
idcsLastModifiedBies DomainsPasswordPolicyIdcsLastModifiedByArgs[]: (Updatable) The User or App who modified the Resource
idcsLastUpgradedInRelease string: (Updatable) The release number when the resource was upgraded.
idcsPreventedOperations string[]: (Updatable) Each value of this attribute specifies an operation that only an internal client may perform on this particular resource.
lastNameDisallowed boolean: (Updatable) Indicates a sequence of characters that match the user's last name of given name cannot be the password. Password validation against policy will be ignored if length of last name is less than or equal to 3 characters.
lockoutDuration number: (Updatable) The time period in minutes to lock out a user account when the threshold of invalid login attempts is reached. The available range is from 5 through 1440 minutes (24 hours).
maxIncorrectAttempts number: (Updatable) An integer that represents the maximum number of failed logins before an account is locked
maxLength number: (Updatable) The maximum password length (in characters). A value of 0 or no value indicates no maximum length restriction.
maxRepeatedChars number: (Updatable) The maximum number of repeated characters allowed in a password. A value of 0 or no value indicates no such restriction.
maxSpecialChars number: (Updatable) The maximum number of special characters in a password. A value of 0 or no value indicates no maximum special characters restriction.
metas DomainsPasswordPolicyMetaArgs[]: (Updatable) A complex attribute that contains resource metadata. All sub-attributes are OPTIONAL.
minAlphaNumerals number: (Updatable) The minimum number of a combination of alphabetic and numeric characters in a password. A value of 0 or no value indicates no minimum alphanumeric character restriction.
minAlphas number: (Updatable) The minimum number of alphabetic characters in a password. A value of 0 or no value indicates no minimum alphas restriction.
minLength number: (Updatable) The minimum password length (in characters). A value of 0 or no value indicates no minimum length restriction.
minLowerCase number: (Updatable) The minimum number of lowercase alphabetic characters in a password. A value of 0 or no value indicates no minimum lowercase restriction.
minNumerals number: (Updatable) The minimum number of numeric characters in a password. A value of 0 or no value indicates no minimum numeric character restriction.
minPasswordAge number: (Updatable) Minimum time after which the user can resubmit the reset password request
minSpecialChars number: (Updatable) The minimum number of special characters in a password. A value of 0 or no value indicates no minimum special characters restriction.
minUniqueChars number: (Updatable) The minimum number of unique characters in a password. A value of 0 or no value indicates no minimum unique characters restriction.
minUpperCase number: (Updatable) The minimum number of uppercase alphabetic characters in a password. A value of 0 or no value indicates no minimum uppercase restriction.
name string: (Updatable) A String that is the name of the policy to display to the user. This is the only mandatory attribute for a password policy.
numPasswordsInHistory number: (Updatable) The number of passwords that will be kept in history that may not be used as a password
ocid string: (Updatable) Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
passwordExpireWarning number: (Updatable) An integer indicating the number of days before which the user should be warned about password expiry.
passwordExpiresAfter number: (Updatable) The number of days after which the password expires automatically
passwordStrength string: (Updatable) Indicates whether the password policy is configured as Simple, Standard, or Custom.
priority number: (Updatable) Password policy priority
requiredChars string: (Updatable) A String value whose contents indicate a set of characters that must appear, in any sequence, in a password value
resourceTypeSchemaVersion string: (Updatable) An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.
schemas string[]: (Updatable) REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard "enterprise" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.
startsWithAlphabet boolean: (Updatable) Indicates that the password must begin with an alphabetic character
tags DomainsPasswordPolicyTagArgs[]: (Updatable) A list of tags on this resource.
tenancyOcid string: (Updatable) Oracle Cloud Infrastructure Tenant Id (ocid) in which the resource lives.
userNameDisallowed boolean: (Updatable) Indicates a sequence of characters that match the username cannot be the password. Password validation against policy will be ignored if length of user name is less than or equal to 3 characters.

allowed_chars str: (Updatable) A String value whose contents indicate a set of characters that can appear, in any sequence, in a password value
attribute_sets Sequence[str]: (Updatable) A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If 'attributes' query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.
attributes str: (Updatable) A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.
authorization str: (Updatable) The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.
compartment_ocid str: (Updatable) Oracle Cloud Infrastructure Compartment Id (ocid) in which the resource lives.
configured_password_policy_rules DomainsPasswordPolicyConfiguredPasswordPolicyRuleArgs]: (Updatable) List of password policy rules that have values set. This map of stringKey:stringValue pairs can be used to aid users while setting/resetting password
delete_in_progress bool: (Updatable) A boolean flag indicating this resource in the process of being deleted. Usually set to true when synchronous deletion of the resource would take too long.
description str: (Updatable) A String that describes the password policy
dictionary_delimiter str: (Updatable) A delimiter used to separate characters in the dictionary file
dictionary_location str: (Updatable) A Reference value that contains the URI of a dictionary of words not allowed to appear within a password value
dictionary_word_disallowed bool: (Updatable) Indicates whether the password can match a dictionary word
disallowed_chars str: (Updatable) A String value whose contents indicate a set of characters that cannot appear, in any sequence, in a password value
disallowed_substrings Sequence[str]: (Updatable) A String value whose contents indicate a set of substrings that cannot appear, in any sequence, in a password value
domain_ocid str: (Updatable) Oracle Cloud Infrastructure Domain Id (ocid) in which the resource lives.
external_id str: (Updatable) An identifier for the Resource as defined by the Service Consumer. The externalId may simplify identification of the Resource between Service Consumer and Service Provider by allowing the Consumer to refer to the Resource with its own identifier, obviating the need to store a local mapping between the local identifier of the Resource and the identifier used by the Service Provider. Each Resource MAY include a non-empty externalId value. The value of the externalId attribute is always issued by the Service Consumer and can never be specified by the Service Provider. The Service Provider MUST always interpret the externalId as scoped to the Service Consumer's tenant.
first_name_disallowed bool: (Updatable) Indicates a sequence of characters that match the user's first name of given name cannot be the password. Password validation against policy will be ignored if length of first name is less than or equal to 3 characters.
force_password_reset bool: (Updatable) Indicates whether all of the users should be forced to reset their password on the next login (to comply with new password policy changes)
groups DomainsPasswordPolicyGroupArgs]: (Updatable) A list of groups that the password policy belongs to.
idcs_created_bies DomainsPasswordPolicyIdcsCreatedByArgs]: (Updatable) The User or App who created the Resource
idcs_endpoint str: The basic endpoint for the identity domain
idcs_last_modified_bies DomainsPasswordPolicyIdcsLastModifiedByArgs]: (Updatable) The User or App who modified the Resource
idcs_last_upgraded_in_release str: (Updatable) The release number when the resource was upgraded.
idcs_prevented_operations Sequence[str]: (Updatable) Each value of this attribute specifies an operation that only an internal client may perform on this particular resource.
last_name_disallowed bool: (Updatable) Indicates a sequence of characters that match the user's last name of given name cannot be the password. Password validation against policy will be ignored if length of last name is less than or equal to 3 characters.
lockout_duration int: (Updatable) The time period in minutes to lock out a user account when the threshold of invalid login attempts is reached. The available range is from 5 through 1440 minutes (24 hours).
max_incorrect_attempts int: (Updatable) An integer that represents the maximum number of failed logins before an account is locked
max_length int: (Updatable) The maximum password length (in characters). A value of 0 or no value indicates no maximum length restriction.
max_repeated_chars int: (Updatable) The maximum number of repeated characters allowed in a password. A value of 0 or no value indicates no such restriction.
max_special_chars int: (Updatable) The maximum number of special characters in a password. A value of 0 or no value indicates no maximum special characters restriction.
metas DomainsPasswordPolicyMetaArgs]: (Updatable) A complex attribute that contains resource metadata. All sub-attributes are OPTIONAL.
min_alpha_numerals int: (Updatable) The minimum number of a combination of alphabetic and numeric characters in a password. A value of 0 or no value indicates no minimum alphanumeric character restriction.
min_alphas int: (Updatable) The minimum number of alphabetic characters in a password. A value of 0 or no value indicates no minimum alphas restriction.
min_length int: (Updatable) The minimum password length (in characters). A value of 0 or no value indicates no minimum length restriction.
min_lower_case int: (Updatable) The minimum number of lowercase alphabetic characters in a password. A value of 0 or no value indicates no minimum lowercase restriction.
min_numerals int: (Updatable) The minimum number of numeric characters in a password. A value of 0 or no value indicates no minimum numeric character restriction.
min_password_age int: (Updatable) Minimum time after which the user can resubmit the reset password request
min_special_chars int: (Updatable) The minimum number of special characters in a password. A value of 0 or no value indicates no minimum special characters restriction.
min_unique_chars int: (Updatable) The minimum number of unique characters in a password. A value of 0 or no value indicates no minimum unique characters restriction.
min_upper_case int: (Updatable) The minimum number of uppercase alphabetic characters in a password. A value of 0 or no value indicates no minimum uppercase restriction.
name str: (Updatable) A String that is the name of the policy to display to the user. This is the only mandatory attribute for a password policy.
num_passwords_in_history int: (Updatable) The number of passwords that will be kept in history that may not be used as a password
ocid str: (Updatable) Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
password_expire_warning int: (Updatable) An integer indicating the number of days before which the user should be warned about password expiry.
password_expires_after int: (Updatable) The number of days after which the password expires automatically
password_strength str: (Updatable) Indicates whether the password policy is configured as Simple, Standard, or Custom.
priority int: (Updatable) Password policy priority
required_chars str: (Updatable) A String value whose contents indicate a set of characters that must appear, in any sequence, in a password value
resource_type_schema_version str: (Updatable) An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.
schemas Sequence[str]: (Updatable) REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard "enterprise" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.
starts_with_alphabet bool: (Updatable) Indicates that the password must begin with an alphabetic character
tags DomainsPasswordPolicyTagArgs]: (Updatable) A list of tags on this resource.
tenancy_ocid str: (Updatable) Oracle Cloud Infrastructure Tenant Id (ocid) in which the resource lives.
user_name_disallowed bool: (Updatable) Indicates a sequence of characters that match the username cannot be the password. Password validation against policy will be ignored if length of user name is less than or equal to 3 characters.

allowedChars String: (Updatable) A String value whose contents indicate a set of characters that can appear, in any sequence, in a password value
attributeSets List<String>: (Updatable) A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If 'attributes' query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.
attributes String: (Updatable) A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.
authorization String: (Updatable) The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.
compartmentOcid String: (Updatable) Oracle Cloud Infrastructure Compartment Id (ocid) in which the resource lives.
configuredPasswordPolicyRules List<Property Map>: (Updatable) List of password policy rules that have values set. This map of stringKey:stringValue pairs can be used to aid users while setting/resetting password
deleteInProgress Boolean: (Updatable) A boolean flag indicating this resource in the process of being deleted. Usually set to true when synchronous deletion of the resource would take too long.
description String: (Updatable) A String that describes the password policy
dictionaryDelimiter String: (Updatable) A delimiter used to separate characters in the dictionary file
dictionaryLocation String: (Updatable) A Reference value that contains the URI of a dictionary of words not allowed to appear within a password value
dictionaryWordDisallowed Boolean: (Updatable) Indicates whether the password can match a dictionary word
disallowedChars String: (Updatable) A String value whose contents indicate a set of characters that cannot appear, in any sequence, in a password value
disallowedSubstrings List<String>: (Updatable) A String value whose contents indicate a set of substrings that cannot appear, in any sequence, in a password value
domainOcid String: (Updatable) Oracle Cloud Infrastructure Domain Id (ocid) in which the resource lives.
externalId String: (Updatable) An identifier for the Resource as defined by the Service Consumer. The externalId may simplify identification of the Resource between Service Consumer and Service Provider by allowing the Consumer to refer to the Resource with its own identifier, obviating the need to store a local mapping between the local identifier of the Resource and the identifier used by the Service Provider. Each Resource MAY include a non-empty externalId value. The value of the externalId attribute is always issued by the Service Consumer and can never be specified by the Service Provider. The Service Provider MUST always interpret the externalId as scoped to the Service Consumer's tenant.
firstNameDisallowed Boolean: (Updatable) Indicates a sequence of characters that match the user's first name of given name cannot be the password. Password validation against policy will be ignored if length of first name is less than or equal to 3 characters.
forcePasswordReset Boolean: (Updatable) Indicates whether all of the users should be forced to reset their password on the next login (to comply with new password policy changes)
groups List<Property Map>: (Updatable) A list of groups that the password policy belongs to.
idcsCreatedBies List<Property Map>: (Updatable) The User or App who created the Resource
idcsEndpoint String: The basic endpoint for the identity domain
idcsLastModifiedBies List<Property Map>: (Updatable) The User or App who modified the Resource
idcsLastUpgradedInRelease String: (Updatable) The release number when the resource was upgraded.
idcsPreventedOperations List<String>: (Updatable) Each value of this attribute specifies an operation that only an internal client may perform on this particular resource.
lastNameDisallowed Boolean: (Updatable) Indicates a sequence of characters that match the user's last name of given name cannot be the password. Password validation against policy will be ignored if length of last name is less than or equal to 3 characters.
lockoutDuration Number: (Updatable) The time period in minutes to lock out a user account when the threshold of invalid login attempts is reached. The available range is from 5 through 1440 minutes (24 hours).
maxIncorrectAttempts Number: (Updatable) An integer that represents the maximum number of failed logins before an account is locked
maxLength Number: (Updatable) The maximum password length (in characters). A value of 0 or no value indicates no maximum length restriction.
maxRepeatedChars Number: (Updatable) The maximum number of repeated characters allowed in a password. A value of 0 or no value indicates no such restriction.
maxSpecialChars Number: (Updatable) The maximum number of special characters in a password. A value of 0 or no value indicates no maximum special characters restriction.
metas List<Property Map>: (Updatable) A complex attribute that contains resource metadata. All sub-attributes are OPTIONAL.
minAlphaNumerals Number: (Updatable) The minimum number of a combination of alphabetic and numeric characters in a password. A value of 0 or no value indicates no minimum alphanumeric character restriction.
minAlphas Number: (Updatable) The minimum number of alphabetic characters in a password. A value of 0 or no value indicates no minimum alphas restriction.
minLength Number: (Updatable) The minimum password length (in characters). A value of 0 or no value indicates no minimum length restriction.
minLowerCase Number: (Updatable) The minimum number of lowercase alphabetic characters in a password. A value of 0 or no value indicates no minimum lowercase restriction.
minNumerals Number: (Updatable) The minimum number of numeric characters in a password. A value of 0 or no value indicates no minimum numeric character restriction.
minPasswordAge Number: (Updatable) Minimum time after which the user can resubmit the reset password request
minSpecialChars Number: (Updatable) The minimum number of special characters in a password. A value of 0 or no value indicates no minimum special characters restriction.
minUniqueChars Number: (Updatable) The minimum number of unique characters in a password. A value of 0 or no value indicates no minimum unique characters restriction.
minUpperCase Number: (Updatable) The minimum number of uppercase alphabetic characters in a password. A value of 0 or no value indicates no minimum uppercase restriction.
name String: (Updatable) A String that is the name of the policy to display to the user. This is the only mandatory attribute for a password policy.
numPasswordsInHistory Number: (Updatable) The number of passwords that will be kept in history that may not be used as a password
ocid String: (Updatable) Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
passwordExpireWarning Number: (Updatable) An integer indicating the number of days before which the user should be warned about password expiry.
passwordExpiresAfter Number: (Updatable) The number of days after which the password expires automatically
passwordStrength String: (Updatable) Indicates whether the password policy is configured as Simple, Standard, or Custom.
priority Number: (Updatable) Password policy priority
requiredChars String: (Updatable) A String value whose contents indicate a set of characters that must appear, in any sequence, in a password value
resourceTypeSchemaVersion String: (Updatable) An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.
schemas List<String>: (Updatable) REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard "enterprise" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.
startsWithAlphabet Boolean: (Updatable) Indicates that the password must begin with an alphabetic character
tags List<Property Map>: (Updatable) A list of tags on this resource.
tenancyOcid String: (Updatable) Oracle Cloud Infrastructure Tenant Id (ocid) in which the resource lives.
userNameDisallowed Boolean: (Updatable) Indicates a sequence of characters that match the username cannot be the password. Password validation against policy will be ignored if length of user name is less than or equal to 3 characters.

Supporting Types

DomainsPasswordPolicyConfiguredPasswordPolicyRule

Key string: (Updatable) Key or name of the tag.
Value string: (Updatable) Value of the tag.

Key string: (Updatable) Key or name of the tag.
Value string: (Updatable) Value of the tag.

key String: (Updatable) Key or name of the tag.
value String: (Updatable) Value of the tag.

key string: (Updatable) Key or name of the tag.
value string: (Updatable) Value of the tag.

key str: (Updatable) Key or name of the tag.
value str: (Updatable) Value of the tag.

key String: (Updatable) Key or name of the tag.
value String: (Updatable) Value of the tag.

DomainsPasswordPolicyGroup

Value string: (Updatable) Value of the tag.
Display string: (Updatable) The displayName of the User or App who modified this Resource
Ref string: (Updatable) The URI of the SCIM resource that represents the User or App who modified this Resource

Value string: (Updatable) Value of the tag.
Display string: (Updatable) The displayName of the User or App who modified this Resource
Ref string: (Updatable) The URI of the SCIM resource that represents the User or App who modified this Resource

value String: (Updatable) Value of the tag.
display String: (Updatable) The displayName of the User or App who modified this Resource
ref String: (Updatable) The URI of the SCIM resource that represents the User or App who modified this Resource

value string: (Updatable) Value of the tag.
display string: (Updatable) The displayName of the User or App who modified this Resource
ref string: (Updatable) The URI of the SCIM resource that represents the User or App who modified this Resource

value str: (Updatable) Value of the tag.
display str: (Updatable) The displayName of the User or App who modified this Resource
ref str: (Updatable) The URI of the SCIM resource that represents the User or App who modified this Resource

value String: (Updatable) Value of the tag.
display String: (Updatable) The displayName of the User or App who modified this Resource
ref String: (Updatable) The URI of the SCIM resource that represents the User or App who modified this Resource

DomainsPasswordPolicyIdcsCreatedBy

Value string: (Updatable) Value of the tag.
Display string: (Updatable) The displayName of the User or App who modified this Resource
Ocid string: (Updatable) Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
Ref string: (Updatable) The URI of the SCIM resource that represents the User or App who modified this Resource
Type string: (Updatable) The type of resource, User or App, that modified this Resource

Value string: (Updatable) Value of the tag.
Display string: (Updatable) The displayName of the User or App who modified this Resource
Ocid string: (Updatable) Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
Ref string: (Updatable) The URI of the SCIM resource that represents the User or App who modified this Resource
Type string: (Updatable) The type of resource, User or App, that modified this Resource

value String: (Updatable) Value of the tag.
display String: (Updatable) The displayName of the User or App who modified this Resource
ocid String: (Updatable) Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
ref String: (Updatable) The URI of the SCIM resource that represents the User or App who modified this Resource
type String: (Updatable) The type of resource, User or App, that modified this Resource

value string: (Updatable) Value of the tag.
display string: (Updatable) The displayName of the User or App who modified this Resource
ocid string: (Updatable) Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
ref string: (Updatable) The URI of the SCIM resource that represents the User or App who modified this Resource
type string: (Updatable) The type of resource, User or App, that modified this Resource

value str: (Updatable) Value of the tag.
display str: (Updatable) The displayName of the User or App who modified this Resource
ocid str: (Updatable) Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
ref str: (Updatable) The URI of the SCIM resource that represents the User or App who modified this Resource
type str: (Updatable) The type of resource, User or App, that modified this Resource

value String: (Updatable) Value of the tag.
display String: (Updatable) The displayName of the User or App who modified this Resource
ocid String: (Updatable) Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
ref String: (Updatable) The URI of the SCIM resource that represents the User or App who modified this Resource
type String: (Updatable) The type of resource, User or App, that modified this Resource

DomainsPasswordPolicyIdcsLastModifiedBy

Value string: (Updatable) Value of the tag.
Display string: (Updatable) The displayName of the User or App who modified this Resource
Ocid string: (Updatable) Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
Ref string: (Updatable) The URI of the SCIM resource that represents the User or App who modified this Resource
Type string: (Updatable) The type of resource, User or App, that modified this Resource

Value string: (Updatable) Value of the tag.
Display string: (Updatable) The displayName of the User or App who modified this Resource
Ocid string: (Updatable) Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
Ref string: (Updatable) The URI of the SCIM resource that represents the User or App who modified this Resource
Type string: (Updatable) The type of resource, User or App, that modified this Resource

value String: (Updatable) Value of the tag.
display String: (Updatable) The displayName of the User or App who modified this Resource
ocid String: (Updatable) Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
ref String: (Updatable) The URI of the SCIM resource that represents the User or App who modified this Resource
type String: (Updatable) The type of resource, User or App, that modified this Resource

value string: (Updatable) Value of the tag.
display string: (Updatable) The displayName of the User or App who modified this Resource
ocid string: (Updatable) Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
ref string: (Updatable) The URI of the SCIM resource that represents the User or App who modified this Resource
type string: (Updatable) The type of resource, User or App, that modified this Resource

value str: (Updatable) Value of the tag.
display str: (Updatable) The displayName of the User or App who modified this Resource
ocid str: (Updatable) Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
ref str: (Updatable) The URI of the SCIM resource that represents the User or App who modified this Resource
type str: (Updatable) The type of resource, User or App, that modified this Resource

value String: (Updatable) Value of the tag.
display String: (Updatable) The displayName of the User or App who modified this Resource
ocid String: (Updatable) Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
ref String: (Updatable) The URI of the SCIM resource that represents the User or App who modified this Resource
type String: (Updatable) The type of resource, User or App, that modified this Resource

DomainsPasswordPolicyMeta

Created string: (Updatable) The DateTime the Resource was added to the Service Provider
LastModified string: (Updatable) The most recent DateTime that the details of this Resource were updated at the Service Provider. If this Resource has never been modified since its initial creation, the value MUST be the same as the value of created. The attribute MUST be a DateTime.
Location string: (Updatable) The URI of the Resource being returned. This value MUST be the same as the Location HTTP response header.
ResourceType string: (Updatable) Name of the resource type of the resource--for example, Users or Groups
Version string: (Updatable) The version of the Resource being returned. This value must be the same as the ETag HTTP response header.

Created string: (Updatable) The DateTime the Resource was added to the Service Provider
LastModified string: (Updatable) The most recent DateTime that the details of this Resource were updated at the Service Provider. If this Resource has never been modified since its initial creation, the value MUST be the same as the value of created. The attribute MUST be a DateTime.
Location string: (Updatable) The URI of the Resource being returned. This value MUST be the same as the Location HTTP response header.
ResourceType string: (Updatable) Name of the resource type of the resource--for example, Users or Groups
Version string: (Updatable) The version of the Resource being returned. This value must be the same as the ETag HTTP response header.

created String: (Updatable) The DateTime the Resource was added to the Service Provider
lastModified String: (Updatable) The most recent DateTime that the details of this Resource were updated at the Service Provider. If this Resource has never been modified since its initial creation, the value MUST be the same as the value of created. The attribute MUST be a DateTime.
location String: (Updatable) The URI of the Resource being returned. This value MUST be the same as the Location HTTP response header.
resourceType String: (Updatable) Name of the resource type of the resource--for example, Users or Groups
version String: (Updatable) The version of the Resource being returned. This value must be the same as the ETag HTTP response header.

created string: (Updatable) The DateTime the Resource was added to the Service Provider
lastModified string: (Updatable) The most recent DateTime that the details of this Resource were updated at the Service Provider. If this Resource has never been modified since its initial creation, the value MUST be the same as the value of created. The attribute MUST be a DateTime.
location string: (Updatable) The URI of the Resource being returned. This value MUST be the same as the Location HTTP response header.
resourceType string: (Updatable) Name of the resource type of the resource--for example, Users or Groups
version string: (Updatable) The version of the Resource being returned. This value must be the same as the ETag HTTP response header.

created str: (Updatable) The DateTime the Resource was added to the Service Provider
last_modified str: (Updatable) The most recent DateTime that the details of this Resource were updated at the Service Provider. If this Resource has never been modified since its initial creation, the value MUST be the same as the value of created. The attribute MUST be a DateTime.
location str: (Updatable) The URI of the Resource being returned. This value MUST be the same as the Location HTTP response header.
resource_type str: (Updatable) Name of the resource type of the resource--for example, Users or Groups
version str: (Updatable) The version of the Resource being returned. This value must be the same as the ETag HTTP response header.

created String: (Updatable) The DateTime the Resource was added to the Service Provider
lastModified String: (Updatable) The most recent DateTime that the details of this Resource were updated at the Service Provider. If this Resource has never been modified since its initial creation, the value MUST be the same as the value of created. The attribute MUST be a DateTime.
location String: (Updatable) The URI of the Resource being returned. This value MUST be the same as the Location HTTP response header.
resourceType String: (Updatable) Name of the resource type of the resource--for example, Users or Groups
version String: (Updatable) The version of the Resource being returned. This value must be the same as the ETag HTTP response header.

DomainsPasswordPolicyTag

Key string: (Updatable) Key or name of the tag.
Value string: (Updatable) Value of the tag.

Key string: (Updatable) Key or name of the tag.
Value string: (Updatable) Value of the tag.

key String: (Updatable) Key or name of the tag.
value String: (Updatable) Value of the tag.

key string: (Updatable) Key or name of the tag.
value string: (Updatable) Value of the tag.

key str: (Updatable) Key or name of the tag.
value str: (Updatable) Value of the tag.

key String: (Updatable) Key or name of the tag.
value String: (Updatable) Value of the tag.

Import

PasswordPolicies can be imported using the id, e.g.

 $ pulumi import oci:Identity/domainsPasswordPolicy:DomainsPasswordPolicy test_password_policy "idcsEndpoint/{idcsEndpoint}/passwordPolicies/{passwordPolicyId}"

Package Details

Repository: oci pulumi/pulumi-oci
License: Apache-2.0
Notes: This Pulumi package is based on the oci Terraform Provider.