1. Packages
  2. Oracle Cloud Infrastructure
  3. API Docs
  4. Identity
  5. getDomainsApp
Oracle Cloud Infrastructure v2.15.0 published on Thursday, Oct 31, 2024 by Pulumi

oci.Identity.getDomainsApp

Explore with Pulumi AI

oci logo
Oracle Cloud Infrastructure v2.15.0 published on Thursday, Oct 31, 2024 by Pulumi

    This data source provides details about a specific App resource in Oracle Cloud Infrastructure Identity Domains service.

    Get an App

    Example Usage

    import * as pulumi from "@pulumi/pulumi";
    import * as oci from "@pulumi/oci";
    
    const testApp = oci.Identity.getDomainsApp({
        appId: testAppOciIdentityDomainsApp.id,
        idcsEndpoint: testDomain.url,
        attributeSets: ["all"],
        attributes: "",
        authorization: appAuthorization,
        resourceTypeSchemaVersion: appResourceTypeSchemaVersion,
    });
    
    import pulumi
    import pulumi_oci as oci
    
    test_app = oci.Identity.get_domains_app(app_id=test_app_oci_identity_domains_app["id"],
        idcs_endpoint=test_domain["url"],
        attribute_sets=["all"],
        attributes="",
        authorization=app_authorization,
        resource_type_schema_version=app_resource_type_schema_version)
    
    package main
    
    import (
    	"github.com/pulumi/pulumi-oci/sdk/v2/go/oci/Identity"
    	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
    )
    
    func main() {
    	pulumi.Run(func(ctx *pulumi.Context) error {
    		_, err := Identity.GetDomainsApp(ctx, &identity.GetDomainsAppArgs{
    			AppId:        testAppOciIdentityDomainsApp.Id,
    			IdcsEndpoint: testDomain.Url,
    			AttributeSets: []string{
    				"all",
    			},
    			Attributes:                pulumi.StringRef(""),
    			Authorization:             pulumi.StringRef(appAuthorization),
    			ResourceTypeSchemaVersion: pulumi.StringRef(appResourceTypeSchemaVersion),
    		}, nil)
    		if err != nil {
    			return err
    		}
    		return nil
    	})
    }
    
    using System.Collections.Generic;
    using System.Linq;
    using Pulumi;
    using Oci = Pulumi.Oci;
    
    return await Deployment.RunAsync(() => 
    {
        var testApp = Oci.Identity.GetDomainsApp.Invoke(new()
        {
            AppId = testAppOciIdentityDomainsApp.Id,
            IdcsEndpoint = testDomain.Url,
            AttributeSets = new[]
            {
                "all",
            },
            Attributes = "",
            Authorization = appAuthorization,
            ResourceTypeSchemaVersion = appResourceTypeSchemaVersion,
        });
    
    });
    
    package generated_program;
    
    import com.pulumi.Context;
    import com.pulumi.Pulumi;
    import com.pulumi.core.Output;
    import com.pulumi.oci.Identity.IdentityFunctions;
    import com.pulumi.oci.Identity.inputs.GetDomainsAppArgs;
    import java.util.List;
    import java.util.ArrayList;
    import java.util.Map;
    import java.io.File;
    import java.nio.file.Files;
    import java.nio.file.Paths;
    
    public class App {
        public static void main(String[] args) {
            Pulumi.run(App::stack);
        }
    
        public static void stack(Context ctx) {
            final var testApp = IdentityFunctions.getDomainsApp(GetDomainsAppArgs.builder()
                .appId(testAppOciIdentityDomainsApp.id())
                .idcsEndpoint(testDomain.url())
                .attributeSets("all")
                .attributes("")
                .authorization(appAuthorization)
                .resourceTypeSchemaVersion(appResourceTypeSchemaVersion)
                .build());
    
        }
    }
    
    variables:
      testApp:
        fn::invoke:
          Function: oci:Identity:getDomainsApp
          Arguments:
            appId: ${testAppOciIdentityDomainsApp.id}
            idcsEndpoint: ${testDomain.url}
            attributeSets:
              - all
            attributes:
            authorization: ${appAuthorization}
            resourceTypeSchemaVersion: ${appResourceTypeSchemaVersion}
    

    Using getDomainsApp

    Two invocation forms are available. The direct form accepts plain arguments and either blocks until the result value is available, or returns a Promise-wrapped result. The output form accepts Input-wrapped arguments and returns an Output-wrapped result.

    function getDomainsApp(args: GetDomainsAppArgs, opts?: InvokeOptions): Promise<GetDomainsAppResult>
    function getDomainsAppOutput(args: GetDomainsAppOutputArgs, opts?: InvokeOptions): Output<GetDomainsAppResult>
    def get_domains_app(app_id: Optional[str] = None,
                        attribute_sets: Optional[Sequence[str]] = None,
                        attributes: Optional[str] = None,
                        authorization: Optional[str] = None,
                        idcs_endpoint: Optional[str] = None,
                        resource_type_schema_version: Optional[str] = None,
                        opts: Optional[InvokeOptions] = None) -> GetDomainsAppResult
    def get_domains_app_output(app_id: Optional[pulumi.Input[str]] = None,
                        attribute_sets: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
                        attributes: Optional[pulumi.Input[str]] = None,
                        authorization: Optional[pulumi.Input[str]] = None,
                        idcs_endpoint: Optional[pulumi.Input[str]] = None,
                        resource_type_schema_version: Optional[pulumi.Input[str]] = None,
                        opts: Optional[InvokeOptions] = None) -> Output[GetDomainsAppResult]
    func GetDomainsApp(ctx *Context, args *GetDomainsAppArgs, opts ...InvokeOption) (*GetDomainsAppResult, error)
    func GetDomainsAppOutput(ctx *Context, args *GetDomainsAppOutputArgs, opts ...InvokeOption) GetDomainsAppResultOutput

    > Note: This function is named GetDomainsApp in the Go SDK.

    public static class GetDomainsApp 
    {
        public static Task<GetDomainsAppResult> InvokeAsync(GetDomainsAppArgs args, InvokeOptions? opts = null)
        public static Output<GetDomainsAppResult> Invoke(GetDomainsAppInvokeArgs args, InvokeOptions? opts = null)
    }
    public static CompletableFuture<GetDomainsAppResult> getDomainsApp(GetDomainsAppArgs args, InvokeOptions options)
    // Output-based functions aren't available in Java yet
    
    fn::invoke:
      function: oci:Identity/getDomainsApp:getDomainsApp
      arguments:
        # arguments dictionary

    The following arguments are supported:

    AppId string
    ID of the resource
    IdcsEndpoint string
    The basic endpoint for the identity domain
    AttributeSets List<string>
    A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If 'attributes' query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.
    Attributes string
    A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.
    Authorization string
    The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.
    ResourceTypeSchemaVersion string
    An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.
    AppId string
    ID of the resource
    IdcsEndpoint string
    The basic endpoint for the identity domain
    AttributeSets []string
    A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If 'attributes' query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.
    Attributes string
    A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.
    Authorization string
    The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.
    ResourceTypeSchemaVersion string
    An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.
    appId String
    ID of the resource
    idcsEndpoint String
    The basic endpoint for the identity domain
    attributeSets List<String>
    A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If 'attributes' query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.
    attributes String
    A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.
    authorization String
    The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.
    resourceTypeSchemaVersion String
    An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.
    appId string
    ID of the resource
    idcsEndpoint string
    The basic endpoint for the identity domain
    attributeSets string[]
    A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If 'attributes' query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.
    attributes string
    A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.
    authorization string
    The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.
    resourceTypeSchemaVersion string
    An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.
    app_id str
    ID of the resource
    idcs_endpoint str
    The basic endpoint for the identity domain
    attribute_sets Sequence[str]
    A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If 'attributes' query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.
    attributes str
    A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.
    authorization str
    The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.
    resource_type_schema_version str
    An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.
    appId String
    ID of the resource
    idcsEndpoint String
    The basic endpoint for the identity domain
    attributeSets List<String>
    A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If 'attributes' query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.
    attributes String
    A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.
    authorization String
    The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.
    resourceTypeSchemaVersion String
    An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.

    getDomainsApp Result

    The following output properties are available:

    AccessTokenExpiry int
    Access token expiry
    Accounts List<GetDomainsAppAccount>
    Accounts of App
    Active bool
    If true, this App is able to participate in runtime services, such as automatic-login, OAuth, and SAML. If false, all runtime services are disabled for this App, and only administrative operations can be performed.
    AdminRoles List<GetDomainsAppAdminRole>
    A list of AppRoles defined by this UnmanagedApp. Membership in each of these AppRoles confers administrative privilege within this App.
    AliasApps List<GetDomainsAppAliasApp>
    Each value of this internal attribute refers to an Oracle Public Cloud infrastructure App on which this App depends.
    AllUrlSchemesAllowed bool
    If true, indicates that the system should allow all URL-schemes within each value of the 'redirectUris' attribute. Also indicates that the system should not attempt to confirm that each value of the 'redirectUris' attribute is a valid URI. In particular, the system should not confirm that the domain component of the URI is a top-level domain and the system should not confirm that the hostname portion is a valid system that is reachable over the network.
    AllowAccessControl bool
    If true, any managed App that is based on this template is checked for access control that is, access to this app is subject to successful authorization at SSO service, viz. app grants to start with.
    AllowOffline bool
    If true, indicates that the Refresh Token is allowed when this App acts as an OAuth Resource.
    AllowedGrants List<string>
    List of grant-types that this App is allowed to use when it acts as an OAuthClient.
    AllowedOperations List<string>
    OPTIONAL. Required only when this App acts as an OAuthClient. Supported values are 'introspect' and 'onBehalfOfUser'. The value 'introspect' allows the client to look inside the access-token. The value 'onBehalfOfUser' overrides how the client's privileges are combined with the privileges of the Subject User. Ordinarily, authorization calculates the set of effective privileges as the intersection of the client's privileges and the user's privileges. The value 'onBehalfOf' indicates that authorization should ignore the privileges of the client and use only the user's privileges to calculate the effective privileges.
    AllowedScopes List<GetDomainsAppAllowedScope>
    A list of scopes (exposed by this App or by other Apps) that this App is allowed to access when it acts as an OAuthClient.
    AllowedTags List<GetDomainsAppAllowedTag>
    A list of tags, acting as an OAuthClient, this App is allowed to access.
    AppIcon string
    Application icon.
    AppId string
    The id of the App that defines this AppRole, which is granted to this App. The App that defines the AppRole acts as the producer; the App to which the AppRole is granted acts as a consumer.
    AppSignonPolicies List<GetDomainsAppAppSignonPolicy>
    App Sign-on Policy.
    AppThumbnail string
    Application thumbnail.
    AppsNetworkPerimeters List<GetDomainsAppAppsNetworkPerimeter>
    Network Perimeter
    AsOpcServices List<GetDomainsAppAsOpcService>
    OPCService facet of the application.
    AttrRenderingMetadatas List<GetDomainsAppAttrRenderingMetadata>
    Label for the attribute to be shown in the UI.
    Audience string
    The base URI for all of the scopes defined in this App. The value of 'audience' is combined with the 'value' of each scope to form an 'fqs' or fully qualified scope.
    BasedOnTemplates List<GetDomainsAppBasedOnTemplate>
    Application template on which the application is based.
    BypassConsent bool
    If true, indicates that consent should be skipped for all scopes
    CallbackServiceUrl string
    Callback Service URL
    Certificates List<GetDomainsAppCertificate>
    Each value of this attribute represent a certificate that this App uses when it acts as an OAuthClient.
    ClientIpChecking string
    Network Perimeters checking mode
    ClientSecret string
    This value is the credential of this App, which this App supplies as a password when this App authenticates to the Oracle Public Cloud infrastructure. This value is also the client secret of this App when it acts as an OAuthClient.
    ClientType string
    Specifies the type of access that this App has when it acts as an OAuthClient.
    CloudControlProperties List<GetDomainsAppCloudControlProperty>
    A collection of arbitrary properties that scope the privileges of a cloud-control App.
    CompartmentOcid string
    Oracle Cloud Infrastructure Compartment Id (ocid) in which the resource lives.
    ContactEmailAddress string
    Contact Email Address
    DelegatedServiceNames List<string>
    Service Names allow to use Oracle Cloud Infrastructure signature for client authentication instead of client credentials
    DeleteInProgress bool
    A boolean flag indicating this resource in the process of being deleted. Usually set to true when synchronous deletion of the resource would take too long.
    Description string
    The description of the AppRole.
    DisableKmsiTokenAuthentication bool
    Indicates whether the application is allowed to be access using kmsi token.
    DisplayName string
    Display name of the flatfile bundle configuration property. This attribute maps to "displayName" attribute in "ConfigurationProperty" in ICF.
    DomainOcid string
    Oracle Cloud Infrastructure Domain Id (ocid) in which the resource lives.
    EditableAttributes List<GetDomainsAppEditableAttribute>
    App attributes editable by subject
    ErrorPageUrl string
    This attribute specifies the URL of the page to which an application will redirect an end-user in case of error.
    GrantedAppRoles List<GetDomainsAppGrantedAppRole>
    A list of AppRoles that are granted to this App (and that are defined by other Apps). Within the Oracle Public Cloud infrastructure, this allows AppID-based association. Such an association allows this App to act as a consumer and thus to access resources of another App that acts as a producer.
    Grants List<GetDomainsAppGrant>
    Grants assigned to the app
    HashedClientSecret string
    Hashed Client Secret. This hash-value is used to verify the 'clientSecret' credential of this App
    HomePageUrl string
    Home Page URL
    Icon string
    URL of application icon.
    Id string
    Unique identifier for the SCIM Resource as defined by the Service Provider. Each representation of the Resource MUST include a non-empty id value. This identifier MUST be unique across the Service Provider's entire set of Resources. It MUST be a stable, non-reassignable identifier that does not change when the same Resource is returned in subsequent requests. The value of the id attribute is always issued by the Service Provider and MUST never be specified by the Service Consumer. bulkId: is a reserved keyword and MUST NOT be used in the unique identifier.
    IdTokenEncAlgo string
    Encryption Alogrithm to use for encrypting ID token.
    IdcsCreatedBies List<GetDomainsAppIdcsCreatedBy>
    The User or App who created the Resource
    IdcsEndpoint string
    IdcsLastModifiedBies List<GetDomainsAppIdcsLastModifiedBy>
    The User or App who modified the Resource
    IdcsLastUpgradedInRelease string
    The release number when the resource was upgraded.
    IdcsPreventedOperations List<string>
    Each value of this attribute specifies an operation that only an internal client may perform on this particular resource.
    IdentityProviders List<GetDomainsAppIdentityProvider>
    A list of IdentityProvider assigned to app. A user trying to access this app will be automatically redirected to configured IdP during the authentication phase, before being able to access App.
    IdpPolicies List<GetDomainsAppIdpPolicy>
    IDP Policy.
    Infrastructure bool
    If true, this App is an internal infrastructure App.
    IsAliasApp bool
    If true, this App is an AliasApp and it cannot be granted to an end-user directly.
    IsDatabaseService bool
    If true, this application acts as database service Application
    IsEnterpriseApp bool
    If true, this app acts as Enterprise app with Authentication and URL Authz policy.
    IsFormFill bool
    If true, this application acts as FormFill Application
    IsKerberosRealm bool
    If true, indicates that this App supports Kerberos Authentication
    IsLoginTarget bool
    If true, this App allows runtime services to log end users into this App automatically.
    IsManagedApp bool
    If true, indicates that access to this App requires an account. That is, in order to log in to the App, a User must use an application-specific identity that is maintained in the remote identity-repository of that App.
    IsMobileTarget bool
    If true, indicates that the App should be visible in each end-user's mobile application.
    IsMulticloudServiceApp bool
    If true, indicates the app is used for multicloud service integration.
    IsOauthClient bool
    If true, this application acts as an OAuth Client
    IsOauthResource bool
    If true, indicates that this application acts as an OAuth Resource.
    IsObligationCapable bool
    This flag indicates if the App is capable of validating obligations with the token for allowing access to the App.
    IsOpcService bool
    If true, this application is an Oracle Public Cloud service-instance.
    IsRadiusApp bool
    If true, this application acts as an Radius App
    IsSamlServiceProvider bool
    If true, then this App acts as a SAML Service Provider.
    IsUnmanagedApp bool
    If true, indicates that this application accepts an Oracle Cloud Identity Service User as a login-identity (does not require an account) and relies for authorization on the User's memberships in AppRoles.
    IsWebTierPolicy bool
    If true, the webtier policy is active
    LandingPageUrl string
    The URL of the landing page for this App, which is the first page that an end user should see if runtime services log that end user in to this App automatically.
    LinkingCallbackUrl string
    This attribute specifies the callback URL for the social linking operation.
    LoginMechanism string
    The protocol that runtime services will use to log end users in to this App automatically. If 'OIDC', then runtime services use the OpenID Connect protocol. If 'SAML', then runtime services use Security Assertion Markup Language protocol.
    LoginPageUrl string
    This attribute specifies the URL of the page that the App uses when an end-user signs in to that App.
    LogoutPageUrl string
    This attribute specifies the URL of the page that the App uses when an end-user signs out.
    LogoutUri string
    OAuth will use this URI to logout if this App wants to participate in SSO, and if this App's session gets cleared as part of global logout. Note: This attribute is used only if this App acts as an OAuthClient.
    Metas List<GetDomainsAppMeta>
    A complex attribute that contains resource metadata. All sub-attributes are OPTIONAL.
    MeterAsOpcService bool
    Indicates whether the application is billed as an OPCService. If true, customer is not billed for runtime operations of the app.
    Migrated bool
    If true, this App was migrated from an earlier version of Oracle Public Cloud infrastructure (and may therefore require special handling from runtime services such as OAuth or SAML). If false, this App requires no special handling from runtime services.
    Name string
    The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
    Ocid string
    Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
    PostLogoutRedirectUris List<string>
    Each value of this attribute is the URI of a landing page within this App. It is used only when this App, acting as an OAuthClient, initiates the logout flow and wants to be redirected back to one of its landing pages.
    PrivacyPolicyUrl string
    Privacy Policy URL
    ProductLogoUrl string
    Application Logo URL
    ProductName string
    Product Name
    ProtectableSecondaryAudiences List<GetDomainsAppProtectableSecondaryAudience>
    A list of secondary audiences--additional URIs to be added automatically to any OAuth token that allows access to this App. Note: This attribute is used mainly for backward compatibility in certain Oracle Public Cloud Apps.
    RadiusPolicies List<GetDomainsAppRadiusPolicy>
    RADIUS Policy assigned to this application.
    ReadyToUpgrade bool
    If true, this App requires an upgrade and mandates attention from application administrator. The flag is used by UI to indicate this app is ready to upgrade.
    RedirectUris List<string>
    OPTIONAL. Each value is a URI within this App. This attribute is required when this App acts as an OAuthClient and is involved in three-legged flows (authorization-code flows).
    RefreshTokenExpiry int
    Expiry-time in seconds for a Refresh Token. Any token that allows access to this App, once refreshed, will expire after the specified duration.
    SamlServiceProviders List<GetDomainsAppSamlServiceProvider>
    An attribute that refers to the SAML Service Provider that runtime services will use to log an end user in to this App automatically. Note that this will be used only if the loginMechanism is 'SAML'.
    Schemas List<string>
    REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard "enterprise" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.
    Scopes List<GetDomainsAppScope>
    Scopes defined by this App. Used when this App acts as an OAuth Resource.
    SecondaryAudiences List<string>
    A list of secondary audiences--additional URIs to be added automatically to any OAuth token that allows access to this App. Note: This attribute is used mainly for backward compatibility in certain Oracle Public Cloud Apps.
    ServiceParams List<GetDomainsAppServiceParam>
    Custom attribute that is required to compute other attribute values during app creation.
    ServiceTypeUrn string
    This Uniform Resource Name (URN) value identifies the type of Oracle Public Cloud service of which this app is an instance.
    ServiceTypeVersion string
    This value specifies the version of the Oracle Public Cloud service of which this App is an instance
    ShowInMyApps bool
    If true, this app will be displayed in the MyApps page of each end-user who has access to the App.
    SignonPolicies List<GetDomainsAppSignonPolicy>
    Sign-on Policy.
    Tags List<GetDomainsAppTag>
    A list of tags on this resource.
    TenancyOcid string
    Oracle Cloud Infrastructure Tenant Id (ocid) in which the resource lives.
    TermsOfServiceUrl string
    Terms of Service URL
    TermsOfUses List<GetDomainsAppTermsOfUse>
    Terms Of Use.
    TrustPolicies List<GetDomainsAppTrustPolicy>
    Trust Policies.
    TrustScope string
    Indicates the scope of trust for this App when acting as an OAuthClient. A value of 'Explicit' indicates that the App is allowed to access only the scopes of OAuthResources that are explicitly specified as 'allowedScopes'. A value of 'Account' indicates that the App is allowed implicitly to access any scope of any OAuthResource within the same Oracle Cloud Account. A value of 'Tags' indicates that the App is allowed to access any scope of any OAuthResource with a matching tag within the same Oracle Cloud Account. A value of 'Default' indicates that the Tenant default trust scope configured in the Tenant Settings is used.
    UrnietfparamsscimschemasoracleidcsextensionOciTags List<GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionOciTag>
    Oracle Cloud Infrastructure Tags.
    UrnietfparamsscimschemasoracleidcsextensiondbcsApps List<GetDomainsAppUrnietfparamsscimschemasoracleidcsextensiondbcsApp>
    This extension provides attributes for database service facet of an App
    UrnietfparamsscimschemasoracleidcsextensionenterpriseAppApps List<GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionenterpriseAppApp>
    This extension defines the Enterprise App related attributes.
    UrnietfparamsscimschemasoracleidcsextensionformFillAppApps List<GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionformFillAppApp>
    This extension provides attributes for Form-Fill facet of App
    UrnietfparamsscimschemasoracleidcsextensionformFillAppTemplateAppTemplates List<GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionformFillAppTemplateAppTemplate>
    This extension provides attributes for Form-Fill facet of AppTemplate
    UrnietfparamsscimschemasoracleidcsextensionkerberosRealmApps List<GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionkerberosRealmApp>
    Kerberos Realm
    UrnietfparamsscimschemasoracleidcsextensionmanagedappApps List<GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappApp>
    Managed App
    UrnietfparamsscimschemasoracleidcsextensionmulticloudServiceAppApps List<GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionmulticloudServiceAppApp>
    This extension defines attributes specific to Apps that represent instances of Multicloud Service App
    UrnietfparamsscimschemasoracleidcsextensionopcServiceApps List<GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionopcServiceApp>
    This extension defines attributes specific to Apps that represent instances of an Oracle Public Cloud (OPC) service.
    UrnietfparamsscimschemasoracleidcsextensionradiusAppApps List<GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionradiusAppApp>
    This extension defines attributes specific to Apps that represent instances of Radius App.
    UrnietfparamsscimschemasoracleidcsextensionrequestableApps List<GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionrequestableApp>
    Requestable App
    UrnietfparamsscimschemasoracleidcsextensionsamlServiceProviderApps List<GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionsamlServiceProviderApp>
    This extension defines attributes related to the Service Providers configuration.
    UrnietfparamsscimschemasoracleidcsextensionwebTierPolicyApps List<GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionwebTierPolicyApp>
    WebTier Policy
    UserRoles List<GetDomainsAppUserRole>
    A list of AppRoles defined by this UnmanagedApp. Membership in each of these AppRoles confers end-user privilege within this App.
    AttributeSets List<string>
    Attributes string
    Authorization string
    ResourceTypeSchemaVersion string
    AccessTokenExpiry int
    Access token expiry
    Accounts []GetDomainsAppAccount
    Accounts of App
    Active bool
    If true, this App is able to participate in runtime services, such as automatic-login, OAuth, and SAML. If false, all runtime services are disabled for this App, and only administrative operations can be performed.
    AdminRoles []GetDomainsAppAdminRole
    A list of AppRoles defined by this UnmanagedApp. Membership in each of these AppRoles confers administrative privilege within this App.
    AliasApps []GetDomainsAppAliasApp
    Each value of this internal attribute refers to an Oracle Public Cloud infrastructure App on which this App depends.
    AllUrlSchemesAllowed bool
    If true, indicates that the system should allow all URL-schemes within each value of the 'redirectUris' attribute. Also indicates that the system should not attempt to confirm that each value of the 'redirectUris' attribute is a valid URI. In particular, the system should not confirm that the domain component of the URI is a top-level domain and the system should not confirm that the hostname portion is a valid system that is reachable over the network.
    AllowAccessControl bool
    If true, any managed App that is based on this template is checked for access control that is, access to this app is subject to successful authorization at SSO service, viz. app grants to start with.
    AllowOffline bool
    If true, indicates that the Refresh Token is allowed when this App acts as an OAuth Resource.
    AllowedGrants []string
    List of grant-types that this App is allowed to use when it acts as an OAuthClient.
    AllowedOperations []string
    OPTIONAL. Required only when this App acts as an OAuthClient. Supported values are 'introspect' and 'onBehalfOfUser'. The value 'introspect' allows the client to look inside the access-token. The value 'onBehalfOfUser' overrides how the client's privileges are combined with the privileges of the Subject User. Ordinarily, authorization calculates the set of effective privileges as the intersection of the client's privileges and the user's privileges. The value 'onBehalfOf' indicates that authorization should ignore the privileges of the client and use only the user's privileges to calculate the effective privileges.
    AllowedScopes []GetDomainsAppAllowedScope
    A list of scopes (exposed by this App or by other Apps) that this App is allowed to access when it acts as an OAuthClient.
    AllowedTags []GetDomainsAppAllowedTag
    A list of tags, acting as an OAuthClient, this App is allowed to access.
    AppIcon string
    Application icon.
    AppId string
    The id of the App that defines this AppRole, which is granted to this App. The App that defines the AppRole acts as the producer; the App to which the AppRole is granted acts as a consumer.
    AppSignonPolicies []GetDomainsAppAppSignonPolicy
    App Sign-on Policy.
    AppThumbnail string
    Application thumbnail.
    AppsNetworkPerimeters []GetDomainsAppAppsNetworkPerimeter
    Network Perimeter
    AsOpcServices []GetDomainsAppAsOpcService
    OPCService facet of the application.
    AttrRenderingMetadatas []GetDomainsAppAttrRenderingMetadata
    Label for the attribute to be shown in the UI.
    Audience string
    The base URI for all of the scopes defined in this App. The value of 'audience' is combined with the 'value' of each scope to form an 'fqs' or fully qualified scope.
    BasedOnTemplates []GetDomainsAppBasedOnTemplate
    Application template on which the application is based.
    BypassConsent bool
    If true, indicates that consent should be skipped for all scopes
    CallbackServiceUrl string
    Callback Service URL
    Certificates []GetDomainsAppCertificate
    Each value of this attribute represent a certificate that this App uses when it acts as an OAuthClient.
    ClientIpChecking string
    Network Perimeters checking mode
    ClientSecret string
    This value is the credential of this App, which this App supplies as a password when this App authenticates to the Oracle Public Cloud infrastructure. This value is also the client secret of this App when it acts as an OAuthClient.
    ClientType string
    Specifies the type of access that this App has when it acts as an OAuthClient.
    CloudControlProperties []GetDomainsAppCloudControlProperty
    A collection of arbitrary properties that scope the privileges of a cloud-control App.
    CompartmentOcid string
    Oracle Cloud Infrastructure Compartment Id (ocid) in which the resource lives.
    ContactEmailAddress string
    Contact Email Address
    DelegatedServiceNames []string
    Service Names allow to use Oracle Cloud Infrastructure signature for client authentication instead of client credentials
    DeleteInProgress bool
    A boolean flag indicating this resource in the process of being deleted. Usually set to true when synchronous deletion of the resource would take too long.
    Description string
    The description of the AppRole.
    DisableKmsiTokenAuthentication bool
    Indicates whether the application is allowed to be access using kmsi token.
    DisplayName string
    Display name of the flatfile bundle configuration property. This attribute maps to "displayName" attribute in "ConfigurationProperty" in ICF.
    DomainOcid string
    Oracle Cloud Infrastructure Domain Id (ocid) in which the resource lives.
    EditableAttributes []GetDomainsAppEditableAttribute
    App attributes editable by subject
    ErrorPageUrl string
    This attribute specifies the URL of the page to which an application will redirect an end-user in case of error.
    GrantedAppRoles []GetDomainsAppGrantedAppRole
    A list of AppRoles that are granted to this App (and that are defined by other Apps). Within the Oracle Public Cloud infrastructure, this allows AppID-based association. Such an association allows this App to act as a consumer and thus to access resources of another App that acts as a producer.
    Grants []GetDomainsAppGrant
    Grants assigned to the app
    HashedClientSecret string
    Hashed Client Secret. This hash-value is used to verify the 'clientSecret' credential of this App
    HomePageUrl string
    Home Page URL
    Icon string
    URL of application icon.
    Id string
    Unique identifier for the SCIM Resource as defined by the Service Provider. Each representation of the Resource MUST include a non-empty id value. This identifier MUST be unique across the Service Provider's entire set of Resources. It MUST be a stable, non-reassignable identifier that does not change when the same Resource is returned in subsequent requests. The value of the id attribute is always issued by the Service Provider and MUST never be specified by the Service Consumer. bulkId: is a reserved keyword and MUST NOT be used in the unique identifier.
    IdTokenEncAlgo string
    Encryption Alogrithm to use for encrypting ID token.
    IdcsCreatedBies []GetDomainsAppIdcsCreatedBy
    The User or App who created the Resource
    IdcsEndpoint string
    IdcsLastModifiedBies []GetDomainsAppIdcsLastModifiedBy
    The User or App who modified the Resource
    IdcsLastUpgradedInRelease string
    The release number when the resource was upgraded.
    IdcsPreventedOperations []string
    Each value of this attribute specifies an operation that only an internal client may perform on this particular resource.
    IdentityProviders []GetDomainsAppIdentityProvider
    A list of IdentityProvider assigned to app. A user trying to access this app will be automatically redirected to configured IdP during the authentication phase, before being able to access App.
    IdpPolicies []GetDomainsAppIdpPolicy
    IDP Policy.
    Infrastructure bool
    If true, this App is an internal infrastructure App.
    IsAliasApp bool
    If true, this App is an AliasApp and it cannot be granted to an end-user directly.
    IsDatabaseService bool
    If true, this application acts as database service Application
    IsEnterpriseApp bool
    If true, this app acts as Enterprise app with Authentication and URL Authz policy.
    IsFormFill bool
    If true, this application acts as FormFill Application
    IsKerberosRealm bool
    If true, indicates that this App supports Kerberos Authentication
    IsLoginTarget bool
    If true, this App allows runtime services to log end users into this App automatically.
    IsManagedApp bool
    If true, indicates that access to this App requires an account. That is, in order to log in to the App, a User must use an application-specific identity that is maintained in the remote identity-repository of that App.
    IsMobileTarget bool
    If true, indicates that the App should be visible in each end-user's mobile application.
    IsMulticloudServiceApp bool
    If true, indicates the app is used for multicloud service integration.
    IsOauthClient bool
    If true, this application acts as an OAuth Client
    IsOauthResource bool
    If true, indicates that this application acts as an OAuth Resource.
    IsObligationCapable bool
    This flag indicates if the App is capable of validating obligations with the token for allowing access to the App.
    IsOpcService bool
    If true, this application is an Oracle Public Cloud service-instance.
    IsRadiusApp bool
    If true, this application acts as an Radius App
    IsSamlServiceProvider bool
    If true, then this App acts as a SAML Service Provider.
    IsUnmanagedApp bool
    If true, indicates that this application accepts an Oracle Cloud Identity Service User as a login-identity (does not require an account) and relies for authorization on the User's memberships in AppRoles.
    IsWebTierPolicy bool
    If true, the webtier policy is active
    LandingPageUrl string
    The URL of the landing page for this App, which is the first page that an end user should see if runtime services log that end user in to this App automatically.
    LinkingCallbackUrl string
    This attribute specifies the callback URL for the social linking operation.
    LoginMechanism string
    The protocol that runtime services will use to log end users in to this App automatically. If 'OIDC', then runtime services use the OpenID Connect protocol. If 'SAML', then runtime services use Security Assertion Markup Language protocol.
    LoginPageUrl string
    This attribute specifies the URL of the page that the App uses when an end-user signs in to that App.
    LogoutPageUrl string
    This attribute specifies the URL of the page that the App uses when an end-user signs out.
    LogoutUri string
    OAuth will use this URI to logout if this App wants to participate in SSO, and if this App's session gets cleared as part of global logout. Note: This attribute is used only if this App acts as an OAuthClient.
    Metas []GetDomainsAppMeta
    A complex attribute that contains resource metadata. All sub-attributes are OPTIONAL.
    MeterAsOpcService bool
    Indicates whether the application is billed as an OPCService. If true, customer is not billed for runtime operations of the app.
    Migrated bool
    If true, this App was migrated from an earlier version of Oracle Public Cloud infrastructure (and may therefore require special handling from runtime services such as OAuth or SAML). If false, this App requires no special handling from runtime services.
    Name string
    The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
    Ocid string
    Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
    PostLogoutRedirectUris []string
    Each value of this attribute is the URI of a landing page within this App. It is used only when this App, acting as an OAuthClient, initiates the logout flow and wants to be redirected back to one of its landing pages.
    PrivacyPolicyUrl string
    Privacy Policy URL
    ProductLogoUrl string
    Application Logo URL
    ProductName string
    Product Name
    ProtectableSecondaryAudiences []GetDomainsAppProtectableSecondaryAudience
    A list of secondary audiences--additional URIs to be added automatically to any OAuth token that allows access to this App. Note: This attribute is used mainly for backward compatibility in certain Oracle Public Cloud Apps.
    RadiusPolicies []GetDomainsAppRadiusPolicy
    RADIUS Policy assigned to this application.
    ReadyToUpgrade bool
    If true, this App requires an upgrade and mandates attention from application administrator. The flag is used by UI to indicate this app is ready to upgrade.
    RedirectUris []string
    OPTIONAL. Each value is a URI within this App. This attribute is required when this App acts as an OAuthClient and is involved in three-legged flows (authorization-code flows).
    RefreshTokenExpiry int
    Expiry-time in seconds for a Refresh Token. Any token that allows access to this App, once refreshed, will expire after the specified duration.
    SamlServiceProviders []GetDomainsAppSamlServiceProvider
    An attribute that refers to the SAML Service Provider that runtime services will use to log an end user in to this App automatically. Note that this will be used only if the loginMechanism is 'SAML'.
    Schemas []string
    REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard "enterprise" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.
    Scopes []GetDomainsAppScope
    Scopes defined by this App. Used when this App acts as an OAuth Resource.
    SecondaryAudiences []string
    A list of secondary audiences--additional URIs to be added automatically to any OAuth token that allows access to this App. Note: This attribute is used mainly for backward compatibility in certain Oracle Public Cloud Apps.
    ServiceParams []GetDomainsAppServiceParam
    Custom attribute that is required to compute other attribute values during app creation.
    ServiceTypeUrn string
    This Uniform Resource Name (URN) value identifies the type of Oracle Public Cloud service of which this app is an instance.
    ServiceTypeVersion string
    This value specifies the version of the Oracle Public Cloud service of which this App is an instance
    ShowInMyApps bool
    If true, this app will be displayed in the MyApps page of each end-user who has access to the App.
    SignonPolicies []GetDomainsAppSignonPolicy
    Sign-on Policy.
    Tags []GetDomainsAppTag
    A list of tags on this resource.
    TenancyOcid string
    Oracle Cloud Infrastructure Tenant Id (ocid) in which the resource lives.
    TermsOfServiceUrl string
    Terms of Service URL
    TermsOfUses []GetDomainsAppTermsOfUse
    Terms Of Use.
    TrustPolicies []GetDomainsAppTrustPolicy
    Trust Policies.
    TrustScope string
    Indicates the scope of trust for this App when acting as an OAuthClient. A value of 'Explicit' indicates that the App is allowed to access only the scopes of OAuthResources that are explicitly specified as 'allowedScopes'. A value of 'Account' indicates that the App is allowed implicitly to access any scope of any OAuthResource within the same Oracle Cloud Account. A value of 'Tags' indicates that the App is allowed to access any scope of any OAuthResource with a matching tag within the same Oracle Cloud Account. A value of 'Default' indicates that the Tenant default trust scope configured in the Tenant Settings is used.
    UrnietfparamsscimschemasoracleidcsextensionOciTags []GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionOciTag
    Oracle Cloud Infrastructure Tags.
    UrnietfparamsscimschemasoracleidcsextensiondbcsApps []GetDomainsAppUrnietfparamsscimschemasoracleidcsextensiondbcsApp
    This extension provides attributes for database service facet of an App
    UrnietfparamsscimschemasoracleidcsextensionenterpriseAppApps []GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionenterpriseAppApp
    This extension defines the Enterprise App related attributes.
    UrnietfparamsscimschemasoracleidcsextensionformFillAppApps []GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionformFillAppApp
    This extension provides attributes for Form-Fill facet of App
    UrnietfparamsscimschemasoracleidcsextensionformFillAppTemplateAppTemplates []GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionformFillAppTemplateAppTemplate
    This extension provides attributes for Form-Fill facet of AppTemplate
    UrnietfparamsscimschemasoracleidcsextensionkerberosRealmApps []GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionkerberosRealmApp
    Kerberos Realm
    UrnietfparamsscimschemasoracleidcsextensionmanagedappApps []GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappApp
    Managed App
    UrnietfparamsscimschemasoracleidcsextensionmulticloudServiceAppApps []GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionmulticloudServiceAppApp
    This extension defines attributes specific to Apps that represent instances of Multicloud Service App
    UrnietfparamsscimschemasoracleidcsextensionopcServiceApps []GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionopcServiceApp
    This extension defines attributes specific to Apps that represent instances of an Oracle Public Cloud (OPC) service.
    UrnietfparamsscimschemasoracleidcsextensionradiusAppApps []GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionradiusAppApp
    This extension defines attributes specific to Apps that represent instances of Radius App.
    UrnietfparamsscimschemasoracleidcsextensionrequestableApps []GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionrequestableApp
    Requestable App
    UrnietfparamsscimschemasoracleidcsextensionsamlServiceProviderApps []GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionsamlServiceProviderApp
    This extension defines attributes related to the Service Providers configuration.
    UrnietfparamsscimschemasoracleidcsextensionwebTierPolicyApps []GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionwebTierPolicyApp
    WebTier Policy
    UserRoles []GetDomainsAppUserRole
    A list of AppRoles defined by this UnmanagedApp. Membership in each of these AppRoles confers end-user privilege within this App.
    AttributeSets []string
    Attributes string
    Authorization string
    ResourceTypeSchemaVersion string
    accessTokenExpiry Integer
    Access token expiry
    accounts List<GetDomainsAppAccount>
    Accounts of App
    active Boolean
    If true, this App is able to participate in runtime services, such as automatic-login, OAuth, and SAML. If false, all runtime services are disabled for this App, and only administrative operations can be performed.
    adminRoles List<GetDomainsAppAdminRole>
    A list of AppRoles defined by this UnmanagedApp. Membership in each of these AppRoles confers administrative privilege within this App.
    aliasApps List<GetDomainsAppAliasApp>
    Each value of this internal attribute refers to an Oracle Public Cloud infrastructure App on which this App depends.
    allUrlSchemesAllowed Boolean
    If true, indicates that the system should allow all URL-schemes within each value of the 'redirectUris' attribute. Also indicates that the system should not attempt to confirm that each value of the 'redirectUris' attribute is a valid URI. In particular, the system should not confirm that the domain component of the URI is a top-level domain and the system should not confirm that the hostname portion is a valid system that is reachable over the network.
    allowAccessControl Boolean
    If true, any managed App that is based on this template is checked for access control that is, access to this app is subject to successful authorization at SSO service, viz. app grants to start with.
    allowOffline Boolean
    If true, indicates that the Refresh Token is allowed when this App acts as an OAuth Resource.
    allowedGrants List<String>
    List of grant-types that this App is allowed to use when it acts as an OAuthClient.
    allowedOperations List<String>
    OPTIONAL. Required only when this App acts as an OAuthClient. Supported values are 'introspect' and 'onBehalfOfUser'. The value 'introspect' allows the client to look inside the access-token. The value 'onBehalfOfUser' overrides how the client's privileges are combined with the privileges of the Subject User. Ordinarily, authorization calculates the set of effective privileges as the intersection of the client's privileges and the user's privileges. The value 'onBehalfOf' indicates that authorization should ignore the privileges of the client and use only the user's privileges to calculate the effective privileges.
    allowedScopes List<GetDomainsAppAllowedScope>
    A list of scopes (exposed by this App or by other Apps) that this App is allowed to access when it acts as an OAuthClient.
    allowedTags List<GetDomainsAppAllowedTag>
    A list of tags, acting as an OAuthClient, this App is allowed to access.
    appIcon String
    Application icon.
    appId String
    The id of the App that defines this AppRole, which is granted to this App. The App that defines the AppRole acts as the producer; the App to which the AppRole is granted acts as a consumer.
    appSignonPolicies List<GetDomainsAppAppSignonPolicy>
    App Sign-on Policy.
    appThumbnail String
    Application thumbnail.
    appsNetworkPerimeters List<GetDomainsAppAppsNetworkPerimeter>
    Network Perimeter
    asOpcServices List<GetDomainsAppAsOpcService>
    OPCService facet of the application.
    attrRenderingMetadatas List<GetDomainsAppAttrRenderingMetadata>
    Label for the attribute to be shown in the UI.
    audience String
    The base URI for all of the scopes defined in this App. The value of 'audience' is combined with the 'value' of each scope to form an 'fqs' or fully qualified scope.
    basedOnTemplates List<GetDomainsAppBasedOnTemplate>
    Application template on which the application is based.
    bypassConsent Boolean
    If true, indicates that consent should be skipped for all scopes
    callbackServiceUrl String
    Callback Service URL
    certificates List<GetDomainsAppCertificate>
    Each value of this attribute represent a certificate that this App uses when it acts as an OAuthClient.
    clientIpChecking String
    Network Perimeters checking mode
    clientSecret String
    This value is the credential of this App, which this App supplies as a password when this App authenticates to the Oracle Public Cloud infrastructure. This value is also the client secret of this App when it acts as an OAuthClient.
    clientType String
    Specifies the type of access that this App has when it acts as an OAuthClient.
    cloudControlProperties List<GetDomainsAppCloudControlProperty>
    A collection of arbitrary properties that scope the privileges of a cloud-control App.
    compartmentOcid String
    Oracle Cloud Infrastructure Compartment Id (ocid) in which the resource lives.
    contactEmailAddress String
    Contact Email Address
    delegatedServiceNames List<String>
    Service Names allow to use Oracle Cloud Infrastructure signature for client authentication instead of client credentials
    deleteInProgress Boolean
    A boolean flag indicating this resource in the process of being deleted. Usually set to true when synchronous deletion of the resource would take too long.
    description String
    The description of the AppRole.
    disableKmsiTokenAuthentication Boolean
    Indicates whether the application is allowed to be access using kmsi token.
    displayName String
    Display name of the flatfile bundle configuration property. This attribute maps to "displayName" attribute in "ConfigurationProperty" in ICF.
    domainOcid String
    Oracle Cloud Infrastructure Domain Id (ocid) in which the resource lives.
    editableAttributes List<GetDomainsAppEditableAttribute>
    App attributes editable by subject
    errorPageUrl String
    This attribute specifies the URL of the page to which an application will redirect an end-user in case of error.
    grantedAppRoles List<GetDomainsAppGrantedAppRole>
    A list of AppRoles that are granted to this App (and that are defined by other Apps). Within the Oracle Public Cloud infrastructure, this allows AppID-based association. Such an association allows this App to act as a consumer and thus to access resources of another App that acts as a producer.
    grants List<GetDomainsAppGrant>
    Grants assigned to the app
    hashedClientSecret String
    Hashed Client Secret. This hash-value is used to verify the 'clientSecret' credential of this App
    homePageUrl String
    Home Page URL
    icon String
    URL of application icon.
    id String
    Unique identifier for the SCIM Resource as defined by the Service Provider. Each representation of the Resource MUST include a non-empty id value. This identifier MUST be unique across the Service Provider's entire set of Resources. It MUST be a stable, non-reassignable identifier that does not change when the same Resource is returned in subsequent requests. The value of the id attribute is always issued by the Service Provider and MUST never be specified by the Service Consumer. bulkId: is a reserved keyword and MUST NOT be used in the unique identifier.
    idTokenEncAlgo String
    Encryption Alogrithm to use for encrypting ID token.
    idcsCreatedBies List<GetDomainsAppIdcsCreatedBy>
    The User or App who created the Resource
    idcsEndpoint String
    idcsLastModifiedBies List<GetDomainsAppIdcsLastModifiedBy>
    The User or App who modified the Resource
    idcsLastUpgradedInRelease String
    The release number when the resource was upgraded.
    idcsPreventedOperations List<String>
    Each value of this attribute specifies an operation that only an internal client may perform on this particular resource.
    identityProviders List<GetDomainsAppProvider>
    A list of IdentityProvider assigned to app. A user trying to access this app will be automatically redirected to configured IdP during the authentication phase, before being able to access App.
    idpPolicies List<GetDomainsAppIdpPolicy>
    IDP Policy.
    infrastructure Boolean
    If true, this App is an internal infrastructure App.
    isAliasApp Boolean
    If true, this App is an AliasApp and it cannot be granted to an end-user directly.
    isDatabaseService Boolean
    If true, this application acts as database service Application
    isEnterpriseApp Boolean
    If true, this app acts as Enterprise app with Authentication and URL Authz policy.
    isFormFill Boolean
    If true, this application acts as FormFill Application
    isKerberosRealm Boolean
    If true, indicates that this App supports Kerberos Authentication
    isLoginTarget Boolean
    If true, this App allows runtime services to log end users into this App automatically.
    isManagedApp Boolean
    If true, indicates that access to this App requires an account. That is, in order to log in to the App, a User must use an application-specific identity that is maintained in the remote identity-repository of that App.
    isMobileTarget Boolean
    If true, indicates that the App should be visible in each end-user's mobile application.
    isMulticloudServiceApp Boolean
    If true, indicates the app is used for multicloud service integration.
    isOauthClient Boolean
    If true, this application acts as an OAuth Client
    isOauthResource Boolean
    If true, indicates that this application acts as an OAuth Resource.
    isObligationCapable Boolean
    This flag indicates if the App is capable of validating obligations with the token for allowing access to the App.
    isOpcService Boolean
    If true, this application is an Oracle Public Cloud service-instance.
    isRadiusApp Boolean
    If true, this application acts as an Radius App
    isSamlServiceProvider Boolean
    If true, then this App acts as a SAML Service Provider.
    isUnmanagedApp Boolean
    If true, indicates that this application accepts an Oracle Cloud Identity Service User as a login-identity (does not require an account) and relies for authorization on the User's memberships in AppRoles.
    isWebTierPolicy Boolean
    If true, the webtier policy is active
    landingPageUrl String
    The URL of the landing page for this App, which is the first page that an end user should see if runtime services log that end user in to this App automatically.
    linkingCallbackUrl String
    This attribute specifies the callback URL for the social linking operation.
    loginMechanism String
    The protocol that runtime services will use to log end users in to this App automatically. If 'OIDC', then runtime services use the OpenID Connect protocol. If 'SAML', then runtime services use Security Assertion Markup Language protocol.
    loginPageUrl String
    This attribute specifies the URL of the page that the App uses when an end-user signs in to that App.
    logoutPageUrl String
    This attribute specifies the URL of the page that the App uses when an end-user signs out.
    logoutUri String
    OAuth will use this URI to logout if this App wants to participate in SSO, and if this App's session gets cleared as part of global logout. Note: This attribute is used only if this App acts as an OAuthClient.
    metas List<GetDomainsAppMeta>
    A complex attribute that contains resource metadata. All sub-attributes are OPTIONAL.
    meterAsOpcService Boolean
    Indicates whether the application is billed as an OPCService. If true, customer is not billed for runtime operations of the app.
    migrated Boolean
    If true, this App was migrated from an earlier version of Oracle Public Cloud infrastructure (and may therefore require special handling from runtime services such as OAuth or SAML). If false, this App requires no special handling from runtime services.
    name String
    The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
    ocid String
    Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
    postLogoutRedirectUris List<String>
    Each value of this attribute is the URI of a landing page within this App. It is used only when this App, acting as an OAuthClient, initiates the logout flow and wants to be redirected back to one of its landing pages.
    privacyPolicyUrl String
    Privacy Policy URL
    productLogoUrl String
    Application Logo URL
    productName String
    Product Name
    protectableSecondaryAudiences List<GetDomainsAppProtectableSecondaryAudience>
    A list of secondary audiences--additional URIs to be added automatically to any OAuth token that allows access to this App. Note: This attribute is used mainly for backward compatibility in certain Oracle Public Cloud Apps.
    radiusPolicies List<GetDomainsAppRadiusPolicy>
    RADIUS Policy assigned to this application.
    readyToUpgrade Boolean
    If true, this App requires an upgrade and mandates attention from application administrator. The flag is used by UI to indicate this app is ready to upgrade.
    redirectUris List<String>
    OPTIONAL. Each value is a URI within this App. This attribute is required when this App acts as an OAuthClient and is involved in three-legged flows (authorization-code flows).
    refreshTokenExpiry Integer
    Expiry-time in seconds for a Refresh Token. Any token that allows access to this App, once refreshed, will expire after the specified duration.
    samlServiceProviders List<GetDomainsAppSamlServiceProvider>
    An attribute that refers to the SAML Service Provider that runtime services will use to log an end user in to this App automatically. Note that this will be used only if the loginMechanism is 'SAML'.
    schemas List<String>
    REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard "enterprise" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.
    scopes List<GetDomainsAppScope>
    Scopes defined by this App. Used when this App acts as an OAuth Resource.
    secondaryAudiences List<String>
    A list of secondary audiences--additional URIs to be added automatically to any OAuth token that allows access to this App. Note: This attribute is used mainly for backward compatibility in certain Oracle Public Cloud Apps.
    serviceParams List<GetDomainsAppServiceParam>
    Custom attribute that is required to compute other attribute values during app creation.
    serviceTypeUrn String
    This Uniform Resource Name (URN) value identifies the type of Oracle Public Cloud service of which this app is an instance.
    serviceTypeVersion String
    This value specifies the version of the Oracle Public Cloud service of which this App is an instance
    showInMyApps Boolean
    If true, this app will be displayed in the MyApps page of each end-user who has access to the App.
    signonPolicies List<GetDomainsAppSignonPolicy>
    Sign-on Policy.
    tags List<GetDomainsAppTag>
    A list of tags on this resource.
    tenancyOcid String
    Oracle Cloud Infrastructure Tenant Id (ocid) in which the resource lives.
    termsOfServiceUrl String
    Terms of Service URL
    termsOfUses List<GetDomainsAppTermsOfUse>
    Terms Of Use.
    trustPolicies List<GetDomainsAppTrustPolicy>
    Trust Policies.
    trustScope String
    Indicates the scope of trust for this App when acting as an OAuthClient. A value of 'Explicit' indicates that the App is allowed to access only the scopes of OAuthResources that are explicitly specified as 'allowedScopes'. A value of 'Account' indicates that the App is allowed implicitly to access any scope of any OAuthResource within the same Oracle Cloud Account. A value of 'Tags' indicates that the App is allowed to access any scope of any OAuthResource with a matching tag within the same Oracle Cloud Account. A value of 'Default' indicates that the Tenant default trust scope configured in the Tenant Settings is used.
    urnietfparamsscimschemasoracleidcsextensionOciTags List<GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionOciTag>
    Oracle Cloud Infrastructure Tags.
    urnietfparamsscimschemasoracleidcsextensiondbcsApps List<GetDomainsAppUrnietfparamsscimschemasoracleidcsextensiondbcsApp>
    This extension provides attributes for database service facet of an App
    urnietfparamsscimschemasoracleidcsextensionenterpriseAppApps List<GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionenterpriseAppApp>
    This extension defines the Enterprise App related attributes.
    urnietfparamsscimschemasoracleidcsextensionformFillAppApps List<GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionformFillAppApp>
    This extension provides attributes for Form-Fill facet of App
    urnietfparamsscimschemasoracleidcsextensionformFillAppTemplateAppTemplates List<GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionformFillAppTemplateAppTemplate>
    This extension provides attributes for Form-Fill facet of AppTemplate
    urnietfparamsscimschemasoracleidcsextensionkerberosRealmApps List<GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionkerberosRealmApp>
    Kerberos Realm
    urnietfparamsscimschemasoracleidcsextensionmanagedappApps List<GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappApp>
    Managed App
    urnietfparamsscimschemasoracleidcsextensionmulticloudServiceAppApps List<GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionmulticloudServiceAppApp>
    This extension defines attributes specific to Apps that represent instances of Multicloud Service App
    urnietfparamsscimschemasoracleidcsextensionopcServiceApps List<GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionopcServiceApp>
    This extension defines attributes specific to Apps that represent instances of an Oracle Public Cloud (OPC) service.
    urnietfparamsscimschemasoracleidcsextensionradiusAppApps List<GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionradiusAppApp>
    This extension defines attributes specific to Apps that represent instances of Radius App.
    urnietfparamsscimschemasoracleidcsextensionrequestableApps List<GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionrequestableApp>
    Requestable App
    urnietfparamsscimschemasoracleidcsextensionsamlServiceProviderApps List<GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionsamlServiceProviderApp>
    This extension defines attributes related to the Service Providers configuration.
    urnietfparamsscimschemasoracleidcsextensionwebTierPolicyApps List<GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionwebTierPolicyApp>
    WebTier Policy
    userRoles List<GetDomainsAppUserRole>
    A list of AppRoles defined by this UnmanagedApp. Membership in each of these AppRoles confers end-user privilege within this App.
    attributeSets List<String>
    attributes String
    authorization String
    resourceTypeSchemaVersion String
    accessTokenExpiry number
    Access token expiry
    accounts GetDomainsAppAccount[]
    Accounts of App
    active boolean
    If true, this App is able to participate in runtime services, such as automatic-login, OAuth, and SAML. If false, all runtime services are disabled for this App, and only administrative operations can be performed.
    adminRoles GetDomainsAppAdminRole[]
    A list of AppRoles defined by this UnmanagedApp. Membership in each of these AppRoles confers administrative privilege within this App.
    aliasApps GetDomainsAppAliasApp[]
    Each value of this internal attribute refers to an Oracle Public Cloud infrastructure App on which this App depends.
    allUrlSchemesAllowed boolean
    If true, indicates that the system should allow all URL-schemes within each value of the 'redirectUris' attribute. Also indicates that the system should not attempt to confirm that each value of the 'redirectUris' attribute is a valid URI. In particular, the system should not confirm that the domain component of the URI is a top-level domain and the system should not confirm that the hostname portion is a valid system that is reachable over the network.
    allowAccessControl boolean
    If true, any managed App that is based on this template is checked for access control that is, access to this app is subject to successful authorization at SSO service, viz. app grants to start with.
    allowOffline boolean
    If true, indicates that the Refresh Token is allowed when this App acts as an OAuth Resource.
    allowedGrants string[]
    List of grant-types that this App is allowed to use when it acts as an OAuthClient.
    allowedOperations string[]
    OPTIONAL. Required only when this App acts as an OAuthClient. Supported values are 'introspect' and 'onBehalfOfUser'. The value 'introspect' allows the client to look inside the access-token. The value 'onBehalfOfUser' overrides how the client's privileges are combined with the privileges of the Subject User. Ordinarily, authorization calculates the set of effective privileges as the intersection of the client's privileges and the user's privileges. The value 'onBehalfOf' indicates that authorization should ignore the privileges of the client and use only the user's privileges to calculate the effective privileges.
    allowedScopes GetDomainsAppAllowedScope[]
    A list of scopes (exposed by this App or by other Apps) that this App is allowed to access when it acts as an OAuthClient.
    allowedTags GetDomainsAppAllowedTag[]
    A list of tags, acting as an OAuthClient, this App is allowed to access.
    appIcon string
    Application icon.
    appId string
    The id of the App that defines this AppRole, which is granted to this App. The App that defines the AppRole acts as the producer; the App to which the AppRole is granted acts as a consumer.
    appSignonPolicies GetDomainsAppAppSignonPolicy[]
    App Sign-on Policy.
    appThumbnail string
    Application thumbnail.
    appsNetworkPerimeters GetDomainsAppAppsNetworkPerimeter[]
    Network Perimeter
    asOpcServices GetDomainsAppAsOpcService[]
    OPCService facet of the application.
    attrRenderingMetadatas GetDomainsAppAttrRenderingMetadata[]
    Label for the attribute to be shown in the UI.
    audience string
    The base URI for all of the scopes defined in this App. The value of 'audience' is combined with the 'value' of each scope to form an 'fqs' or fully qualified scope.
    basedOnTemplates GetDomainsAppBasedOnTemplate[]
    Application template on which the application is based.
    bypassConsent boolean
    If true, indicates that consent should be skipped for all scopes
    callbackServiceUrl string
    Callback Service URL
    certificates GetDomainsAppCertificate[]
    Each value of this attribute represent a certificate that this App uses when it acts as an OAuthClient.
    clientIpChecking string
    Network Perimeters checking mode
    clientSecret string
    This value is the credential of this App, which this App supplies as a password when this App authenticates to the Oracle Public Cloud infrastructure. This value is also the client secret of this App when it acts as an OAuthClient.
    clientType string
    Specifies the type of access that this App has when it acts as an OAuthClient.
    cloudControlProperties GetDomainsAppCloudControlProperty[]
    A collection of arbitrary properties that scope the privileges of a cloud-control App.
    compartmentOcid string
    Oracle Cloud Infrastructure Compartment Id (ocid) in which the resource lives.
    contactEmailAddress string
    Contact Email Address
    delegatedServiceNames string[]
    Service Names allow to use Oracle Cloud Infrastructure signature for client authentication instead of client credentials
    deleteInProgress boolean
    A boolean flag indicating this resource in the process of being deleted. Usually set to true when synchronous deletion of the resource would take too long.
    description string
    The description of the AppRole.
    disableKmsiTokenAuthentication boolean
    Indicates whether the application is allowed to be access using kmsi token.
    displayName string
    Display name of the flatfile bundle configuration property. This attribute maps to "displayName" attribute in "ConfigurationProperty" in ICF.
    domainOcid string
    Oracle Cloud Infrastructure Domain Id (ocid) in which the resource lives.
    editableAttributes GetDomainsAppEditableAttribute[]
    App attributes editable by subject
    errorPageUrl string
    This attribute specifies the URL of the page to which an application will redirect an end-user in case of error.
    grantedAppRoles GetDomainsAppGrantedAppRole[]
    A list of AppRoles that are granted to this App (and that are defined by other Apps). Within the Oracle Public Cloud infrastructure, this allows AppID-based association. Such an association allows this App to act as a consumer and thus to access resources of another App that acts as a producer.
    grants GetDomainsAppGrant[]
    Grants assigned to the app
    hashedClientSecret string
    Hashed Client Secret. This hash-value is used to verify the 'clientSecret' credential of this App
    homePageUrl string
    Home Page URL
    icon string
    URL of application icon.
    id string
    Unique identifier for the SCIM Resource as defined by the Service Provider. Each representation of the Resource MUST include a non-empty id value. This identifier MUST be unique across the Service Provider's entire set of Resources. It MUST be a stable, non-reassignable identifier that does not change when the same Resource is returned in subsequent requests. The value of the id attribute is always issued by the Service Provider and MUST never be specified by the Service Consumer. bulkId: is a reserved keyword and MUST NOT be used in the unique identifier.
    idTokenEncAlgo string
    Encryption Alogrithm to use for encrypting ID token.
    idcsCreatedBies GetDomainsAppIdcsCreatedBy[]
    The User or App who created the Resource
    idcsEndpoint string
    idcsLastModifiedBies GetDomainsAppIdcsLastModifiedBy[]
    The User or App who modified the Resource
    idcsLastUpgradedInRelease string
    The release number when the resource was upgraded.
    idcsPreventedOperations string[]
    Each value of this attribute specifies an operation that only an internal client may perform on this particular resource.
    identityProviders GetDomainsAppIdentityProvider[]
    A list of IdentityProvider assigned to app. A user trying to access this app will be automatically redirected to configured IdP during the authentication phase, before being able to access App.
    idpPolicies GetDomainsAppIdpPolicy[]
    IDP Policy.
    infrastructure boolean
    If true, this App is an internal infrastructure App.
    isAliasApp boolean
    If true, this App is an AliasApp and it cannot be granted to an end-user directly.
    isDatabaseService boolean
    If true, this application acts as database service Application
    isEnterpriseApp boolean
    If true, this app acts as Enterprise app with Authentication and URL Authz policy.
    isFormFill boolean
    If true, this application acts as FormFill Application
    isKerberosRealm boolean
    If true, indicates that this App supports Kerberos Authentication
    isLoginTarget boolean
    If true, this App allows runtime services to log end users into this App automatically.
    isManagedApp boolean
    If true, indicates that access to this App requires an account. That is, in order to log in to the App, a User must use an application-specific identity that is maintained in the remote identity-repository of that App.
    isMobileTarget boolean
    If true, indicates that the App should be visible in each end-user's mobile application.
    isMulticloudServiceApp boolean
    If true, indicates the app is used for multicloud service integration.
    isOauthClient boolean
    If true, this application acts as an OAuth Client
    isOauthResource boolean
    If true, indicates that this application acts as an OAuth Resource.
    isObligationCapable boolean
    This flag indicates if the App is capable of validating obligations with the token for allowing access to the App.
    isOpcService boolean
    If true, this application is an Oracle Public Cloud service-instance.
    isRadiusApp boolean
    If true, this application acts as an Radius App
    isSamlServiceProvider boolean
    If true, then this App acts as a SAML Service Provider.
    isUnmanagedApp boolean
    If true, indicates that this application accepts an Oracle Cloud Identity Service User as a login-identity (does not require an account) and relies for authorization on the User's memberships in AppRoles.
    isWebTierPolicy boolean
    If true, the webtier policy is active
    landingPageUrl string
    The URL of the landing page for this App, which is the first page that an end user should see if runtime services log that end user in to this App automatically.
    linkingCallbackUrl string
    This attribute specifies the callback URL for the social linking operation.
    loginMechanism string
    The protocol that runtime services will use to log end users in to this App automatically. If 'OIDC', then runtime services use the OpenID Connect protocol. If 'SAML', then runtime services use Security Assertion Markup Language protocol.
    loginPageUrl string
    This attribute specifies the URL of the page that the App uses when an end-user signs in to that App.
    logoutPageUrl string
    This attribute specifies the URL of the page that the App uses when an end-user signs out.
    logoutUri string
    OAuth will use this URI to logout if this App wants to participate in SSO, and if this App's session gets cleared as part of global logout. Note: This attribute is used only if this App acts as an OAuthClient.
    metas GetDomainsAppMeta[]
    A complex attribute that contains resource metadata. All sub-attributes are OPTIONAL.
    meterAsOpcService boolean
    Indicates whether the application is billed as an OPCService. If true, customer is not billed for runtime operations of the app.
    migrated boolean
    If true, this App was migrated from an earlier version of Oracle Public Cloud infrastructure (and may therefore require special handling from runtime services such as OAuth or SAML). If false, this App requires no special handling from runtime services.
    name string
    The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
    ocid string
    Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
    postLogoutRedirectUris string[]
    Each value of this attribute is the URI of a landing page within this App. It is used only when this App, acting as an OAuthClient, initiates the logout flow and wants to be redirected back to one of its landing pages.
    privacyPolicyUrl string
    Privacy Policy URL
    productLogoUrl string
    Application Logo URL
    productName string
    Product Name
    protectableSecondaryAudiences GetDomainsAppProtectableSecondaryAudience[]
    A list of secondary audiences--additional URIs to be added automatically to any OAuth token that allows access to this App. Note: This attribute is used mainly for backward compatibility in certain Oracle Public Cloud Apps.
    radiusPolicies GetDomainsAppRadiusPolicy[]
    RADIUS Policy assigned to this application.
    readyToUpgrade boolean
    If true, this App requires an upgrade and mandates attention from application administrator. The flag is used by UI to indicate this app is ready to upgrade.
    redirectUris string[]
    OPTIONAL. Each value is a URI within this App. This attribute is required when this App acts as an OAuthClient and is involved in three-legged flows (authorization-code flows).
    refreshTokenExpiry number
    Expiry-time in seconds for a Refresh Token. Any token that allows access to this App, once refreshed, will expire after the specified duration.
    samlServiceProviders GetDomainsAppSamlServiceProvider[]
    An attribute that refers to the SAML Service Provider that runtime services will use to log an end user in to this App automatically. Note that this will be used only if the loginMechanism is 'SAML'.
    schemas string[]
    REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard "enterprise" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.
    scopes GetDomainsAppScope[]
    Scopes defined by this App. Used when this App acts as an OAuth Resource.
    secondaryAudiences string[]
    A list of secondary audiences--additional URIs to be added automatically to any OAuth token that allows access to this App. Note: This attribute is used mainly for backward compatibility in certain Oracle Public Cloud Apps.
    serviceParams GetDomainsAppServiceParam[]
    Custom attribute that is required to compute other attribute values during app creation.
    serviceTypeUrn string
    This Uniform Resource Name (URN) value identifies the type of Oracle Public Cloud service of which this app is an instance.
    serviceTypeVersion string
    This value specifies the version of the Oracle Public Cloud service of which this App is an instance
    showInMyApps boolean
    If true, this app will be displayed in the MyApps page of each end-user who has access to the App.
    signonPolicies GetDomainsAppSignonPolicy[]
    Sign-on Policy.
    tags GetDomainsAppTag[]
    A list of tags on this resource.
    tenancyOcid string
    Oracle Cloud Infrastructure Tenant Id (ocid) in which the resource lives.
    termsOfServiceUrl string
    Terms of Service URL
    termsOfUses GetDomainsAppTermsOfUse[]
    Terms Of Use.
    trustPolicies GetDomainsAppTrustPolicy[]
    Trust Policies.
    trustScope string
    Indicates the scope of trust for this App when acting as an OAuthClient. A value of 'Explicit' indicates that the App is allowed to access only the scopes of OAuthResources that are explicitly specified as 'allowedScopes'. A value of 'Account' indicates that the App is allowed implicitly to access any scope of any OAuthResource within the same Oracle Cloud Account. A value of 'Tags' indicates that the App is allowed to access any scope of any OAuthResource with a matching tag within the same Oracle Cloud Account. A value of 'Default' indicates that the Tenant default trust scope configured in the Tenant Settings is used.
    urnietfparamsscimschemasoracleidcsextensionOciTags GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionOciTag[]
    Oracle Cloud Infrastructure Tags.
    urnietfparamsscimschemasoracleidcsextensiondbcsApps GetDomainsAppUrnietfparamsscimschemasoracleidcsextensiondbcsApp[]
    This extension provides attributes for database service facet of an App
    urnietfparamsscimschemasoracleidcsextensionenterpriseAppApps GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionenterpriseAppApp[]
    This extension defines the Enterprise App related attributes.
    urnietfparamsscimschemasoracleidcsextensionformFillAppApps GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionformFillAppApp[]
    This extension provides attributes for Form-Fill facet of App
    urnietfparamsscimschemasoracleidcsextensionformFillAppTemplateAppTemplates GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionformFillAppTemplateAppTemplate[]
    This extension provides attributes for Form-Fill facet of AppTemplate
    urnietfparamsscimschemasoracleidcsextensionkerberosRealmApps GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionkerberosRealmApp[]
    Kerberos Realm
    urnietfparamsscimschemasoracleidcsextensionmanagedappApps GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappApp[]
    Managed App
    urnietfparamsscimschemasoracleidcsextensionmulticloudServiceAppApps GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionmulticloudServiceAppApp[]
    This extension defines attributes specific to Apps that represent instances of Multicloud Service App
    urnietfparamsscimschemasoracleidcsextensionopcServiceApps GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionopcServiceApp[]
    This extension defines attributes specific to Apps that represent instances of an Oracle Public Cloud (OPC) service.
    urnietfparamsscimschemasoracleidcsextensionradiusAppApps GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionradiusAppApp[]
    This extension defines attributes specific to Apps that represent instances of Radius App.
    urnietfparamsscimschemasoracleidcsextensionrequestableApps GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionrequestableApp[]
    Requestable App
    urnietfparamsscimschemasoracleidcsextensionsamlServiceProviderApps GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionsamlServiceProviderApp[]
    This extension defines attributes related to the Service Providers configuration.
    urnietfparamsscimschemasoracleidcsextensionwebTierPolicyApps GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionwebTierPolicyApp[]
    WebTier Policy
    userRoles GetDomainsAppUserRole[]
    A list of AppRoles defined by this UnmanagedApp. Membership in each of these AppRoles confers end-user privilege within this App.
    attributeSets string[]
    attributes string
    authorization string
    resourceTypeSchemaVersion string
    access_token_expiry int
    Access token expiry
    accounts Sequence[identity.GetDomainsAppAccount]
    Accounts of App
    active bool
    If true, this App is able to participate in runtime services, such as automatic-login, OAuth, and SAML. If false, all runtime services are disabled for this App, and only administrative operations can be performed.
    admin_roles Sequence[identity.GetDomainsAppAdminRole]
    A list of AppRoles defined by this UnmanagedApp. Membership in each of these AppRoles confers administrative privilege within this App.
    alias_apps Sequence[identity.GetDomainsAppAliasApp]
    Each value of this internal attribute refers to an Oracle Public Cloud infrastructure App on which this App depends.
    all_url_schemes_allowed bool
    If true, indicates that the system should allow all URL-schemes within each value of the 'redirectUris' attribute. Also indicates that the system should not attempt to confirm that each value of the 'redirectUris' attribute is a valid URI. In particular, the system should not confirm that the domain component of the URI is a top-level domain and the system should not confirm that the hostname portion is a valid system that is reachable over the network.
    allow_access_control bool
    If true, any managed App that is based on this template is checked for access control that is, access to this app is subject to successful authorization at SSO service, viz. app grants to start with.
    allow_offline bool
    If true, indicates that the Refresh Token is allowed when this App acts as an OAuth Resource.
    allowed_grants Sequence[str]
    List of grant-types that this App is allowed to use when it acts as an OAuthClient.
    allowed_operations Sequence[str]
    OPTIONAL. Required only when this App acts as an OAuthClient. Supported values are 'introspect' and 'onBehalfOfUser'. The value 'introspect' allows the client to look inside the access-token. The value 'onBehalfOfUser' overrides how the client's privileges are combined with the privileges of the Subject User. Ordinarily, authorization calculates the set of effective privileges as the intersection of the client's privileges and the user's privileges. The value 'onBehalfOf' indicates that authorization should ignore the privileges of the client and use only the user's privileges to calculate the effective privileges.
    allowed_scopes Sequence[identity.GetDomainsAppAllowedScope]
    A list of scopes (exposed by this App or by other Apps) that this App is allowed to access when it acts as an OAuthClient.
    allowed_tags Sequence[identity.GetDomainsAppAllowedTag]
    A list of tags, acting as an OAuthClient, this App is allowed to access.
    app_icon str
    Application icon.
    app_id str
    The id of the App that defines this AppRole, which is granted to this App. The App that defines the AppRole acts as the producer; the App to which the AppRole is granted acts as a consumer.
    app_signon_policies Sequence[identity.GetDomainsAppAppSignonPolicy]
    App Sign-on Policy.
    app_thumbnail str
    Application thumbnail.
    apps_network_perimeters Sequence[identity.GetDomainsAppAppsNetworkPerimeter]
    Network Perimeter
    as_opc_services Sequence[identity.GetDomainsAppAsOpcService]
    OPCService facet of the application.
    attr_rendering_metadatas Sequence[identity.GetDomainsAppAttrRenderingMetadata]
    Label for the attribute to be shown in the UI.
    audience str
    The base URI for all of the scopes defined in this App. The value of 'audience' is combined with the 'value' of each scope to form an 'fqs' or fully qualified scope.
    based_on_templates Sequence[identity.GetDomainsAppBasedOnTemplate]
    Application template on which the application is based.
    bypass_consent bool
    If true, indicates that consent should be skipped for all scopes
    callback_service_url str
    Callback Service URL
    certificates Sequence[identity.GetDomainsAppCertificate]
    Each value of this attribute represent a certificate that this App uses when it acts as an OAuthClient.
    client_ip_checking str
    Network Perimeters checking mode
    client_secret str
    This value is the credential of this App, which this App supplies as a password when this App authenticates to the Oracle Public Cloud infrastructure. This value is also the client secret of this App when it acts as an OAuthClient.
    client_type str
    Specifies the type of access that this App has when it acts as an OAuthClient.
    cloud_control_properties Sequence[identity.GetDomainsAppCloudControlProperty]
    A collection of arbitrary properties that scope the privileges of a cloud-control App.
    compartment_ocid str
    Oracle Cloud Infrastructure Compartment Id (ocid) in which the resource lives.
    contact_email_address str
    Contact Email Address
    delegated_service_names Sequence[str]
    Service Names allow to use Oracle Cloud Infrastructure signature for client authentication instead of client credentials
    delete_in_progress bool
    A boolean flag indicating this resource in the process of being deleted. Usually set to true when synchronous deletion of the resource would take too long.
    description str
    The description of the AppRole.
    disable_kmsi_token_authentication bool
    Indicates whether the application is allowed to be access using kmsi token.
    display_name str
    Display name of the flatfile bundle configuration property. This attribute maps to "displayName" attribute in "ConfigurationProperty" in ICF.
    domain_ocid str
    Oracle Cloud Infrastructure Domain Id (ocid) in which the resource lives.
    editable_attributes Sequence[identity.GetDomainsAppEditableAttribute]
    App attributes editable by subject
    error_page_url str
    This attribute specifies the URL of the page to which an application will redirect an end-user in case of error.
    granted_app_roles Sequence[identity.GetDomainsAppGrantedAppRole]
    A list of AppRoles that are granted to this App (and that are defined by other Apps). Within the Oracle Public Cloud infrastructure, this allows AppID-based association. Such an association allows this App to act as a consumer and thus to access resources of another App that acts as a producer.
    grants Sequence[identity.GetDomainsAppGrant]
    Grants assigned to the app
    hashed_client_secret str
    Hashed Client Secret. This hash-value is used to verify the 'clientSecret' credential of this App
    home_page_url str
    Home Page URL
    icon str
    URL of application icon.
    id str
    Unique identifier for the SCIM Resource as defined by the Service Provider. Each representation of the Resource MUST include a non-empty id value. This identifier MUST be unique across the Service Provider's entire set of Resources. It MUST be a stable, non-reassignable identifier that does not change when the same Resource is returned in subsequent requests. The value of the id attribute is always issued by the Service Provider and MUST never be specified by the Service Consumer. bulkId: is a reserved keyword and MUST NOT be used in the unique identifier.
    id_token_enc_algo str
    Encryption Alogrithm to use for encrypting ID token.
    idcs_created_bies Sequence[identity.GetDomainsAppIdcsCreatedBy]
    The User or App who created the Resource
    idcs_endpoint str
    idcs_last_modified_bies Sequence[identity.GetDomainsAppIdcsLastModifiedBy]
    The User or App who modified the Resource
    idcs_last_upgraded_in_release str
    The release number when the resource was upgraded.
    idcs_prevented_operations Sequence[str]
    Each value of this attribute specifies an operation that only an internal client may perform on this particular resource.
    identity_providers Sequence[identity.GetDomainsAppIdentityProvider]
    A list of IdentityProvider assigned to app. A user trying to access this app will be automatically redirected to configured IdP during the authentication phase, before being able to access App.
    idp_policies Sequence[identity.GetDomainsAppIdpPolicy]
    IDP Policy.
    infrastructure bool
    If true, this App is an internal infrastructure App.
    is_alias_app bool
    If true, this App is an AliasApp and it cannot be granted to an end-user directly.
    is_database_service bool
    If true, this application acts as database service Application
    is_enterprise_app bool
    If true, this app acts as Enterprise app with Authentication and URL Authz policy.
    is_form_fill bool
    If true, this application acts as FormFill Application
    is_kerberos_realm bool
    If true, indicates that this App supports Kerberos Authentication
    is_login_target bool
    If true, this App allows runtime services to log end users into this App automatically.
    is_managed_app bool
    If true, indicates that access to this App requires an account. That is, in order to log in to the App, a User must use an application-specific identity that is maintained in the remote identity-repository of that App.
    is_mobile_target bool
    If true, indicates that the App should be visible in each end-user's mobile application.
    is_multicloud_service_app bool
    If true, indicates the app is used for multicloud service integration.
    is_oauth_client bool
    If true, this application acts as an OAuth Client
    is_oauth_resource bool
    If true, indicates that this application acts as an OAuth Resource.
    is_obligation_capable bool
    This flag indicates if the App is capable of validating obligations with the token for allowing access to the App.
    is_opc_service bool
    If true, this application is an Oracle Public Cloud service-instance.
    is_radius_app bool
    If true, this application acts as an Radius App
    is_saml_service_provider bool
    If true, then this App acts as a SAML Service Provider.
    is_unmanaged_app bool
    If true, indicates that this application accepts an Oracle Cloud Identity Service User as a login-identity (does not require an account) and relies for authorization on the User's memberships in AppRoles.
    is_web_tier_policy bool
    If true, the webtier policy is active
    landing_page_url str
    The URL of the landing page for this App, which is the first page that an end user should see if runtime services log that end user in to this App automatically.
    linking_callback_url str
    This attribute specifies the callback URL for the social linking operation.
    login_mechanism str
    The protocol that runtime services will use to log end users in to this App automatically. If 'OIDC', then runtime services use the OpenID Connect protocol. If 'SAML', then runtime services use Security Assertion Markup Language protocol.
    login_page_url str
    This attribute specifies the URL of the page that the App uses when an end-user signs in to that App.
    logout_page_url str
    This attribute specifies the URL of the page that the App uses when an end-user signs out.
    logout_uri str
    OAuth will use this URI to logout if this App wants to participate in SSO, and if this App's session gets cleared as part of global logout. Note: This attribute is used only if this App acts as an OAuthClient.
    metas Sequence[identity.GetDomainsAppMeta]
    A complex attribute that contains resource metadata. All sub-attributes are OPTIONAL.
    meter_as_opc_service bool
    Indicates whether the application is billed as an OPCService. If true, customer is not billed for runtime operations of the app.
    migrated bool
    If true, this App was migrated from an earlier version of Oracle Public Cloud infrastructure (and may therefore require special handling from runtime services such as OAuth or SAML). If false, this App requires no special handling from runtime services.
    name str
    The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
    ocid str
    Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
    post_logout_redirect_uris Sequence[str]
    Each value of this attribute is the URI of a landing page within this App. It is used only when this App, acting as an OAuthClient, initiates the logout flow and wants to be redirected back to one of its landing pages.
    privacy_policy_url str
    Privacy Policy URL
    product_logo_url str
    Application Logo URL
    product_name str
    Product Name
    protectable_secondary_audiences Sequence[identity.GetDomainsAppProtectableSecondaryAudience]
    A list of secondary audiences--additional URIs to be added automatically to any OAuth token that allows access to this App. Note: This attribute is used mainly for backward compatibility in certain Oracle Public Cloud Apps.
    radius_policies Sequence[identity.GetDomainsAppRadiusPolicy]
    RADIUS Policy assigned to this application.
    ready_to_upgrade bool
    If true, this App requires an upgrade and mandates attention from application administrator. The flag is used by UI to indicate this app is ready to upgrade.
    redirect_uris Sequence[str]
    OPTIONAL. Each value is a URI within this App. This attribute is required when this App acts as an OAuthClient and is involved in three-legged flows (authorization-code flows).
    refresh_token_expiry int
    Expiry-time in seconds for a Refresh Token. Any token that allows access to this App, once refreshed, will expire after the specified duration.
    saml_service_providers Sequence[identity.GetDomainsAppSamlServiceProvider]
    An attribute that refers to the SAML Service Provider that runtime services will use to log an end user in to this App automatically. Note that this will be used only if the loginMechanism is 'SAML'.
    schemas Sequence[str]
    REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard "enterprise" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.
    scopes Sequence[identity.GetDomainsAppScope]
    Scopes defined by this App. Used when this App acts as an OAuth Resource.
    secondary_audiences Sequence[str]
    A list of secondary audiences--additional URIs to be added automatically to any OAuth token that allows access to this App. Note: This attribute is used mainly for backward compatibility in certain Oracle Public Cloud Apps.
    service_params Sequence[identity.GetDomainsAppServiceParam]
    Custom attribute that is required to compute other attribute values during app creation.
    service_type_urn str
    This Uniform Resource Name (URN) value identifies the type of Oracle Public Cloud service of which this app is an instance.
    service_type_version str
    This value specifies the version of the Oracle Public Cloud service of which this App is an instance
    show_in_my_apps bool
    If true, this app will be displayed in the MyApps page of each end-user who has access to the App.
    signon_policies Sequence[identity.GetDomainsAppSignonPolicy]
    Sign-on Policy.
    tags Sequence[identity.GetDomainsAppTag]
    A list of tags on this resource.
    tenancy_ocid str
    Oracle Cloud Infrastructure Tenant Id (ocid) in which the resource lives.
    terms_of_service_url str
    Terms of Service URL
    terms_of_uses Sequence[identity.GetDomainsAppTermsOfUse]
    Terms Of Use.
    trust_policies Sequence[identity.GetDomainsAppTrustPolicy]
    Trust Policies.
    trust_scope str
    Indicates the scope of trust for this App when acting as an OAuthClient. A value of 'Explicit' indicates that the App is allowed to access only the scopes of OAuthResources that are explicitly specified as 'allowedScopes'. A value of 'Account' indicates that the App is allowed implicitly to access any scope of any OAuthResource within the same Oracle Cloud Account. A value of 'Tags' indicates that the App is allowed to access any scope of any OAuthResource with a matching tag within the same Oracle Cloud Account. A value of 'Default' indicates that the Tenant default trust scope configured in the Tenant Settings is used.
    urnietfparamsscimschemasoracleidcsextension_oci_tags Sequence[identity.GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionOciTag]
    Oracle Cloud Infrastructure Tags.
    urnietfparamsscimschemasoracleidcsextensiondbcs_apps Sequence[identity.GetDomainsAppUrnietfparamsscimschemasoracleidcsextensiondbcsApp]
    This extension provides attributes for database service facet of an App
    urnietfparamsscimschemasoracleidcsextensionenterprise_app_apps Sequence[identity.GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionenterpriseAppApp]
    This extension defines the Enterprise App related attributes.
    urnietfparamsscimschemasoracleidcsextensionform_fill_app_apps Sequence[identity.GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionformFillAppApp]
    This extension provides attributes for Form-Fill facet of App
    urnietfparamsscimschemasoracleidcsextensionform_fill_app_template_app_templates Sequence[identity.GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionformFillAppTemplateAppTemplate]
    This extension provides attributes for Form-Fill facet of AppTemplate
    urnietfparamsscimschemasoracleidcsextensionkerberos_realm_apps Sequence[identity.GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionkerberosRealmApp]
    Kerberos Realm
    urnietfparamsscimschemasoracleidcsextensionmanagedapp_apps Sequence[identity.GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappApp]
    Managed App
    urnietfparamsscimschemasoracleidcsextensionmulticloud_service_app_apps Sequence[identity.GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionmulticloudServiceAppApp]
    This extension defines attributes specific to Apps that represent instances of Multicloud Service App
    urnietfparamsscimschemasoracleidcsextensionopc_service_apps Sequence[identity.GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionopcServiceApp]
    This extension defines attributes specific to Apps that represent instances of an Oracle Public Cloud (OPC) service.
    urnietfparamsscimschemasoracleidcsextensionradius_app_apps Sequence[identity.GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionradiusAppApp]
    This extension defines attributes specific to Apps that represent instances of Radius App.
    urnietfparamsscimschemasoracleidcsextensionrequestable_apps Sequence[identity.GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionrequestableApp]
    Requestable App
    urnietfparamsscimschemasoracleidcsextensionsaml_service_provider_apps Sequence[identity.GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionsamlServiceProviderApp]
    This extension defines attributes related to the Service Providers configuration.
    urnietfparamsscimschemasoracleidcsextensionweb_tier_policy_apps Sequence[identity.GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionwebTierPolicyApp]
    WebTier Policy
    user_roles Sequence[identity.GetDomainsAppUserRole]
    A list of AppRoles defined by this UnmanagedApp. Membership in each of these AppRoles confers end-user privilege within this App.
    attribute_sets Sequence[str]
    attributes str
    authorization str
    resource_type_schema_version str
    accessTokenExpiry Number
    Access token expiry
    accounts List<Property Map>
    Accounts of App
    active Boolean
    If true, this App is able to participate in runtime services, such as automatic-login, OAuth, and SAML. If false, all runtime services are disabled for this App, and only administrative operations can be performed.
    adminRoles List<Property Map>
    A list of AppRoles defined by this UnmanagedApp. Membership in each of these AppRoles confers administrative privilege within this App.
    aliasApps List<Property Map>
    Each value of this internal attribute refers to an Oracle Public Cloud infrastructure App on which this App depends.
    allUrlSchemesAllowed Boolean
    If true, indicates that the system should allow all URL-schemes within each value of the 'redirectUris' attribute. Also indicates that the system should not attempt to confirm that each value of the 'redirectUris' attribute is a valid URI. In particular, the system should not confirm that the domain component of the URI is a top-level domain and the system should not confirm that the hostname portion is a valid system that is reachable over the network.
    allowAccessControl Boolean
    If true, any managed App that is based on this template is checked for access control that is, access to this app is subject to successful authorization at SSO service, viz. app grants to start with.
    allowOffline Boolean
    If true, indicates that the Refresh Token is allowed when this App acts as an OAuth Resource.
    allowedGrants List<String>
    List of grant-types that this App is allowed to use when it acts as an OAuthClient.
    allowedOperations List<String>
    OPTIONAL. Required only when this App acts as an OAuthClient. Supported values are 'introspect' and 'onBehalfOfUser'. The value 'introspect' allows the client to look inside the access-token. The value 'onBehalfOfUser' overrides how the client's privileges are combined with the privileges of the Subject User. Ordinarily, authorization calculates the set of effective privileges as the intersection of the client's privileges and the user's privileges. The value 'onBehalfOf' indicates that authorization should ignore the privileges of the client and use only the user's privileges to calculate the effective privileges.
    allowedScopes List<Property Map>
    A list of scopes (exposed by this App or by other Apps) that this App is allowed to access when it acts as an OAuthClient.
    allowedTags List<Property Map>
    A list of tags, acting as an OAuthClient, this App is allowed to access.
    appIcon String
    Application icon.
    appId String
    The id of the App that defines this AppRole, which is granted to this App. The App that defines the AppRole acts as the producer; the App to which the AppRole is granted acts as a consumer.
    appSignonPolicies List<Property Map>
    App Sign-on Policy.
    appThumbnail String
    Application thumbnail.
    appsNetworkPerimeters List<Property Map>
    Network Perimeter
    asOpcServices List<Property Map>
    OPCService facet of the application.
    attrRenderingMetadatas List<Property Map>
    Label for the attribute to be shown in the UI.
    audience String
    The base URI for all of the scopes defined in this App. The value of 'audience' is combined with the 'value' of each scope to form an 'fqs' or fully qualified scope.
    basedOnTemplates List<Property Map>
    Application template on which the application is based.
    bypassConsent Boolean
    If true, indicates that consent should be skipped for all scopes
    callbackServiceUrl String
    Callback Service URL
    certificates List<Property Map>
    Each value of this attribute represent a certificate that this App uses when it acts as an OAuthClient.
    clientIpChecking String
    Network Perimeters checking mode
    clientSecret String
    This value is the credential of this App, which this App supplies as a password when this App authenticates to the Oracle Public Cloud infrastructure. This value is also the client secret of this App when it acts as an OAuthClient.
    clientType String
    Specifies the type of access that this App has when it acts as an OAuthClient.
    cloudControlProperties List<Property Map>
    A collection of arbitrary properties that scope the privileges of a cloud-control App.
    compartmentOcid String
    Oracle Cloud Infrastructure Compartment Id (ocid) in which the resource lives.
    contactEmailAddress String
    Contact Email Address
    delegatedServiceNames List<String>
    Service Names allow to use Oracle Cloud Infrastructure signature for client authentication instead of client credentials
    deleteInProgress Boolean
    A boolean flag indicating this resource in the process of being deleted. Usually set to true when synchronous deletion of the resource would take too long.
    description String
    The description of the AppRole.
    disableKmsiTokenAuthentication Boolean
    Indicates whether the application is allowed to be access using kmsi token.
    displayName String
    Display name of the flatfile bundle configuration property. This attribute maps to "displayName" attribute in "ConfigurationProperty" in ICF.
    domainOcid String
    Oracle Cloud Infrastructure Domain Id (ocid) in which the resource lives.
    editableAttributes List<Property Map>
    App attributes editable by subject
    errorPageUrl String
    This attribute specifies the URL of the page to which an application will redirect an end-user in case of error.
    grantedAppRoles List<Property Map>
    A list of AppRoles that are granted to this App (and that are defined by other Apps). Within the Oracle Public Cloud infrastructure, this allows AppID-based association. Such an association allows this App to act as a consumer and thus to access resources of another App that acts as a producer.
    grants List<Property Map>
    Grants assigned to the app
    hashedClientSecret String
    Hashed Client Secret. This hash-value is used to verify the 'clientSecret' credential of this App
    homePageUrl String
    Home Page URL
    icon String
    URL of application icon.
    id String
    Unique identifier for the SCIM Resource as defined by the Service Provider. Each representation of the Resource MUST include a non-empty id value. This identifier MUST be unique across the Service Provider's entire set of Resources. It MUST be a stable, non-reassignable identifier that does not change when the same Resource is returned in subsequent requests. The value of the id attribute is always issued by the Service Provider and MUST never be specified by the Service Consumer. bulkId: is a reserved keyword and MUST NOT be used in the unique identifier.
    idTokenEncAlgo String
    Encryption Alogrithm to use for encrypting ID token.
    idcsCreatedBies List<Property Map>
    The User or App who created the Resource
    idcsEndpoint String
    idcsLastModifiedBies List<Property Map>
    The User or App who modified the Resource
    idcsLastUpgradedInRelease String
    The release number when the resource was upgraded.
    idcsPreventedOperations List<String>
    Each value of this attribute specifies an operation that only an internal client may perform on this particular resource.
    identityProviders List<Property Map>
    A list of IdentityProvider assigned to app. A user trying to access this app will be automatically redirected to configured IdP during the authentication phase, before being able to access App.
    idpPolicies List<Property Map>
    IDP Policy.
    infrastructure Boolean
    If true, this App is an internal infrastructure App.
    isAliasApp Boolean
    If true, this App is an AliasApp and it cannot be granted to an end-user directly.
    isDatabaseService Boolean
    If true, this application acts as database service Application
    isEnterpriseApp Boolean
    If true, this app acts as Enterprise app with Authentication and URL Authz policy.
    isFormFill Boolean
    If true, this application acts as FormFill Application
    isKerberosRealm Boolean
    If true, indicates that this App supports Kerberos Authentication
    isLoginTarget Boolean
    If true, this App allows runtime services to log end users into this App automatically.
    isManagedApp Boolean
    If true, indicates that access to this App requires an account. That is, in order to log in to the App, a User must use an application-specific identity that is maintained in the remote identity-repository of that App.
    isMobileTarget Boolean
    If true, indicates that the App should be visible in each end-user's mobile application.
    isMulticloudServiceApp Boolean
    If true, indicates the app is used for multicloud service integration.
    isOauthClient Boolean
    If true, this application acts as an OAuth Client
    isOauthResource Boolean
    If true, indicates that this application acts as an OAuth Resource.
    isObligationCapable Boolean
    This flag indicates if the App is capable of validating obligations with the token for allowing access to the App.
    isOpcService Boolean
    If true, this application is an Oracle Public Cloud service-instance.
    isRadiusApp Boolean
    If true, this application acts as an Radius App
    isSamlServiceProvider Boolean
    If true, then this App acts as a SAML Service Provider.
    isUnmanagedApp Boolean
    If true, indicates that this application accepts an Oracle Cloud Identity Service User as a login-identity (does not require an account) and relies for authorization on the User's memberships in AppRoles.
    isWebTierPolicy Boolean
    If true, the webtier policy is active
    landingPageUrl String
    The URL of the landing page for this App, which is the first page that an end user should see if runtime services log that end user in to this App automatically.
    linkingCallbackUrl String
    This attribute specifies the callback URL for the social linking operation.
    loginMechanism String
    The protocol that runtime services will use to log end users in to this App automatically. If 'OIDC', then runtime services use the OpenID Connect protocol. If 'SAML', then runtime services use Security Assertion Markup Language protocol.
    loginPageUrl String
    This attribute specifies the URL of the page that the App uses when an end-user signs in to that App.
    logoutPageUrl String
    This attribute specifies the URL of the page that the App uses when an end-user signs out.
    logoutUri String
    OAuth will use this URI to logout if this App wants to participate in SSO, and if this App's session gets cleared as part of global logout. Note: This attribute is used only if this App acts as an OAuthClient.
    metas List<Property Map>
    A complex attribute that contains resource metadata. All sub-attributes are OPTIONAL.
    meterAsOpcService Boolean
    Indicates whether the application is billed as an OPCService. If true, customer is not billed for runtime operations of the app.
    migrated Boolean
    If true, this App was migrated from an earlier version of Oracle Public Cloud infrastructure (and may therefore require special handling from runtime services such as OAuth or SAML). If false, this App requires no special handling from runtime services.
    name String
    The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
    ocid String
    Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
    postLogoutRedirectUris List<String>
    Each value of this attribute is the URI of a landing page within this App. It is used only when this App, acting as an OAuthClient, initiates the logout flow and wants to be redirected back to one of its landing pages.
    privacyPolicyUrl String
    Privacy Policy URL
    productLogoUrl String
    Application Logo URL
    productName String
    Product Name
    protectableSecondaryAudiences List<Property Map>
    A list of secondary audiences--additional URIs to be added automatically to any OAuth token that allows access to this App. Note: This attribute is used mainly for backward compatibility in certain Oracle Public Cloud Apps.
    radiusPolicies List<Property Map>
    RADIUS Policy assigned to this application.
    readyToUpgrade Boolean
    If true, this App requires an upgrade and mandates attention from application administrator. The flag is used by UI to indicate this app is ready to upgrade.
    redirectUris List<String>
    OPTIONAL. Each value is a URI within this App. This attribute is required when this App acts as an OAuthClient and is involved in three-legged flows (authorization-code flows).
    refreshTokenExpiry Number
    Expiry-time in seconds for a Refresh Token. Any token that allows access to this App, once refreshed, will expire after the specified duration.
    samlServiceProviders List<Property Map>
    An attribute that refers to the SAML Service Provider that runtime services will use to log an end user in to this App automatically. Note that this will be used only if the loginMechanism is 'SAML'.
    schemas List<String>
    REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard "enterprise" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.
    scopes List<Property Map>
    Scopes defined by this App. Used when this App acts as an OAuth Resource.
    secondaryAudiences List<String>
    A list of secondary audiences--additional URIs to be added automatically to any OAuth token that allows access to this App. Note: This attribute is used mainly for backward compatibility in certain Oracle Public Cloud Apps.
    serviceParams List<Property Map>
    Custom attribute that is required to compute other attribute values during app creation.
    serviceTypeUrn String
    This Uniform Resource Name (URN) value identifies the type of Oracle Public Cloud service of which this app is an instance.
    serviceTypeVersion String
    This value specifies the version of the Oracle Public Cloud service of which this App is an instance
    showInMyApps Boolean
    If true, this app will be displayed in the MyApps page of each end-user who has access to the App.
    signonPolicies List<Property Map>
    Sign-on Policy.
    tags List<Property Map>
    A list of tags on this resource.
    tenancyOcid String
    Oracle Cloud Infrastructure Tenant Id (ocid) in which the resource lives.
    termsOfServiceUrl String
    Terms of Service URL
    termsOfUses List<Property Map>
    Terms Of Use.
    trustPolicies List<Property Map>
    Trust Policies.
    trustScope String
    Indicates the scope of trust for this App when acting as an OAuthClient. A value of 'Explicit' indicates that the App is allowed to access only the scopes of OAuthResources that are explicitly specified as 'allowedScopes'. A value of 'Account' indicates that the App is allowed implicitly to access any scope of any OAuthResource within the same Oracle Cloud Account. A value of 'Tags' indicates that the App is allowed to access any scope of any OAuthResource with a matching tag within the same Oracle Cloud Account. A value of 'Default' indicates that the Tenant default trust scope configured in the Tenant Settings is used.
    urnietfparamsscimschemasoracleidcsextensionOciTags List<Property Map>
    Oracle Cloud Infrastructure Tags.
    urnietfparamsscimschemasoracleidcsextensiondbcsApps List<Property Map>
    This extension provides attributes for database service facet of an App
    urnietfparamsscimschemasoracleidcsextensionenterpriseAppApps List<Property Map>
    This extension defines the Enterprise App related attributes.
    urnietfparamsscimschemasoracleidcsextensionformFillAppApps List<Property Map>
    This extension provides attributes for Form-Fill facet of App
    urnietfparamsscimschemasoracleidcsextensionformFillAppTemplateAppTemplates List<Property Map>
    This extension provides attributes for Form-Fill facet of AppTemplate
    urnietfparamsscimschemasoracleidcsextensionkerberosRealmApps List<Property Map>
    Kerberos Realm
    urnietfparamsscimschemasoracleidcsextensionmanagedappApps List<Property Map>
    Managed App
    urnietfparamsscimschemasoracleidcsextensionmulticloudServiceAppApps List<Property Map>
    This extension defines attributes specific to Apps that represent instances of Multicloud Service App
    urnietfparamsscimschemasoracleidcsextensionopcServiceApps List<Property Map>
    This extension defines attributes specific to Apps that represent instances of an Oracle Public Cloud (OPC) service.
    urnietfparamsscimschemasoracleidcsextensionradiusAppApps List<Property Map>
    This extension defines attributes specific to Apps that represent instances of Radius App.
    urnietfparamsscimschemasoracleidcsextensionrequestableApps List<Property Map>
    Requestable App
    urnietfparamsscimschemasoracleidcsextensionsamlServiceProviderApps List<Property Map>
    This extension defines attributes related to the Service Providers configuration.
    urnietfparamsscimschemasoracleidcsextensionwebTierPolicyApps List<Property Map>
    WebTier Policy
    userRoles List<Property Map>
    A list of AppRoles defined by this UnmanagedApp. Membership in each of these AppRoles confers end-user privilege within this App.
    attributeSets List<String>
    attributes String
    authorization String
    resourceTypeSchemaVersion String

    Supporting Types

    GetDomainsAppAccount

    Active bool
    If true, this App is able to participate in runtime services, such as automatic-login, OAuth, and SAML. If false, all runtime services are disabled for this App, and only administrative operations can be performed.
    Name string
    The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
    OwnerId string
    Owner identifier
    Ref string
    URI of the AppRole.
    Value string
    ID of the AppRole.
    Active bool
    If true, this App is able to participate in runtime services, such as automatic-login, OAuth, and SAML. If false, all runtime services are disabled for this App, and only administrative operations can be performed.
    Name string
    The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
    OwnerId string
    Owner identifier
    Ref string
    URI of the AppRole.
    Value string
    ID of the AppRole.
    active Boolean
    If true, this App is able to participate in runtime services, such as automatic-login, OAuth, and SAML. If false, all runtime services are disabled for this App, and only administrative operations can be performed.
    name String
    The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
    ownerId String
    Owner identifier
    ref String
    URI of the AppRole.
    value String
    ID of the AppRole.
    active boolean
    If true, this App is able to participate in runtime services, such as automatic-login, OAuth, and SAML. If false, all runtime services are disabled for this App, and only administrative operations can be performed.
    name string
    The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
    ownerId string
    Owner identifier
    ref string
    URI of the AppRole.
    value string
    ID of the AppRole.
    active bool
    If true, this App is able to participate in runtime services, such as automatic-login, OAuth, and SAML. If false, all runtime services are disabled for this App, and only administrative operations can be performed.
    name str
    The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
    owner_id str
    Owner identifier
    ref str
    URI of the AppRole.
    value str
    ID of the AppRole.
    active Boolean
    If true, this App is able to participate in runtime services, such as automatic-login, OAuth, and SAML. If false, all runtime services are disabled for this App, and only administrative operations can be performed.
    name String
    The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
    ownerId String
    Owner identifier
    ref String
    URI of the AppRole.
    value String
    ID of the AppRole.

    GetDomainsAppAdminRole

    Description string
    The description of the AppRole.
    Display string
    Display-name of the AppRole.
    Ref string
    URI of the AppRole.
    Value string
    ID of the AppRole.
    Description string
    The description of the AppRole.
    Display string
    Display-name of the AppRole.
    Ref string
    URI of the AppRole.
    Value string
    ID of the AppRole.
    description String
    The description of the AppRole.
    display String
    Display-name of the AppRole.
    ref String
    URI of the AppRole.
    value String
    ID of the AppRole.
    description string
    The description of the AppRole.
    display string
    Display-name of the AppRole.
    ref string
    URI of the AppRole.
    value string
    ID of the AppRole.
    description str
    The description of the AppRole.
    display str
    Display-name of the AppRole.
    ref str
    URI of the AppRole.
    value str
    ID of the AppRole.
    description String
    The description of the AppRole.
    display String
    Display-name of the AppRole.
    ref String
    URI of the AppRole.
    value String
    ID of the AppRole.

    GetDomainsAppAliasApp

    Description string
    The description of the AppRole.
    Display string
    Display-name of the AppRole.
    Ref string
    URI of the AppRole.
    Value string
    ID of the AppRole.
    Description string
    The description of the AppRole.
    Display string
    Display-name of the AppRole.
    Ref string
    URI of the AppRole.
    Value string
    ID of the AppRole.
    description String
    The description of the AppRole.
    display String
    Display-name of the AppRole.
    ref String
    URI of the AppRole.
    value String
    ID of the AppRole.
    description string
    The description of the AppRole.
    display string
    Display-name of the AppRole.
    ref string
    URI of the AppRole.
    value string
    ID of the AppRole.
    description str
    The description of the AppRole.
    display str
    Display-name of the AppRole.
    ref str
    URI of the AppRole.
    value str
    ID of the AppRole.
    description String
    The description of the AppRole.
    display String
    Display-name of the AppRole.
    ref String
    URI of the AppRole.
    value String
    ID of the AppRole.

    GetDomainsAppAllowedScope

    Fqs string
    The fully qualified value of this scope within this App. A fully qualified scope combines the 'value' of each scope with the value of 'audience'. Each value of 'fqs' must be unique across the system. Used only when this App acts as an OAuth Resource.
    IdOfDefiningApp string
    The ID of the App that defines this scope.
    ReadOnly bool
    If true, indicates that this value must be protected.
    Fqs string
    The fully qualified value of this scope within this App. A fully qualified scope combines the 'value' of each scope with the value of 'audience'. Each value of 'fqs' must be unique across the system. Used only when this App acts as an OAuth Resource.
    IdOfDefiningApp string
    The ID of the App that defines this scope.
    ReadOnly bool
    If true, indicates that this value must be protected.
    fqs String
    The fully qualified value of this scope within this App. A fully qualified scope combines the 'value' of each scope with the value of 'audience'. Each value of 'fqs' must be unique across the system. Used only when this App acts as an OAuth Resource.
    idOfDefiningApp String
    The ID of the App that defines this scope.
    readOnly Boolean
    If true, indicates that this value must be protected.
    fqs string
    The fully qualified value of this scope within this App. A fully qualified scope combines the 'value' of each scope with the value of 'audience'. Each value of 'fqs' must be unique across the system. Used only when this App acts as an OAuth Resource.
    idOfDefiningApp string
    The ID of the App that defines this scope.
    readOnly boolean
    If true, indicates that this value must be protected.
    fqs str
    The fully qualified value of this scope within this App. A fully qualified scope combines the 'value' of each scope with the value of 'audience'. Each value of 'fqs' must be unique across the system. Used only when this App acts as an OAuth Resource.
    id_of_defining_app str
    The ID of the App that defines this scope.
    read_only bool
    If true, indicates that this value must be protected.
    fqs String
    The fully qualified value of this scope within this App. A fully qualified scope combines the 'value' of each scope with the value of 'audience'. Each value of 'fqs' must be unique across the system. Used only when this App acts as an OAuth Resource.
    idOfDefiningApp String
    The ID of the App that defines this scope.
    readOnly Boolean
    If true, indicates that this value must be protected.

    GetDomainsAppAllowedTag

    Key string
    Oracle Cloud Infrastructure Tag key
    ReadOnly bool
    If true, indicates that this value must be protected.
    Value string
    ID of the AppRole.
    Key string
    Oracle Cloud Infrastructure Tag key
    ReadOnly bool
    If true, indicates that this value must be protected.
    Value string
    ID of the AppRole.
    key String
    Oracle Cloud Infrastructure Tag key
    readOnly Boolean
    If true, indicates that this value must be protected.
    value String
    ID of the AppRole.
    key string
    Oracle Cloud Infrastructure Tag key
    readOnly boolean
    If true, indicates that this value must be protected.
    value string
    ID of the AppRole.
    key str
    Oracle Cloud Infrastructure Tag key
    read_only bool
    If true, indicates that this value must be protected.
    value str
    ID of the AppRole.
    key String
    Oracle Cloud Infrastructure Tag key
    readOnly Boolean
    If true, indicates that this value must be protected.
    value String
    ID of the AppRole.

    GetDomainsAppAppSignonPolicy

    Ref string
    URI of the AppRole.
    Value string
    ID of the AppRole.
    Ref string
    URI of the AppRole.
    Value string
    ID of the AppRole.
    ref String
    URI of the AppRole.
    value String
    ID of the AppRole.
    ref string
    URI of the AppRole.
    value string
    ID of the AppRole.
    ref str
    URI of the AppRole.
    value str
    ID of the AppRole.
    ref String
    URI of the AppRole.
    value String
    ID of the AppRole.

    GetDomainsAppAppsNetworkPerimeter

    Ref string
    URI of the AppRole.
    Value string
    ID of the AppRole.
    Ref string
    URI of the AppRole.
    Value string
    ID of the AppRole.
    ref String
    URI of the AppRole.
    value String
    ID of the AppRole.
    ref string
    URI of the AppRole.
    value string
    ID of the AppRole.
    ref str
    URI of the AppRole.
    value str
    ID of the AppRole.
    ref String
    URI of the AppRole.
    value String
    ID of the AppRole.

    GetDomainsAppAsOpcService

    Ref string
    URI of the AppRole.
    Value string
    ID of the AppRole.
    Ref string
    URI of the AppRole.
    Value string
    ID of the AppRole.
    ref String
    URI of the AppRole.
    value String
    ID of the AppRole.
    ref string
    URI of the AppRole.
    value string
    ID of the AppRole.
    ref str
    URI of the AppRole.
    value str
    ID of the AppRole.
    ref String
    URI of the AppRole.
    value String
    ID of the AppRole.

    GetDomainsAppAttrRenderingMetadata

    Datatype string
    Data type of the attribute.
    Helptext string
    Help text for the attribute. It can contain HTML tags.
    Label string
    Label for the attribute to be shown in the UI.
    MaxLength int
    Maximum length of the attribute.
    MaxSize int
    Maximum size of the attribute.
    MinLength int
    Minimum length of the attribute.
    MinSize int
    Minimum size of the attribute..
    Name string
    The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
    Order int
    Display sequence of the bundle configuration property.
    ReadOnly bool
    If true, indicates that this value must be protected.
    Regexp string
    Regular expression of the attribute for validation.
    Required bool
    If true, this flatfile bundle configuration property is required to connect to the target connected managed app. This attribute maps to "isRequired" attribute in "ConfigurationProperty" in ICF.
    Section string
    UI widget to use for the attribute.
    Visible bool
    Indicates whether the attribute is to be shown on the application creation UI.
    Widget string
    UI widget to use for the attribute.
    Datatype string
    Data type of the attribute.
    Helptext string
    Help text for the attribute. It can contain HTML tags.
    Label string
    Label for the attribute to be shown in the UI.
    MaxLength int
    Maximum length of the attribute.
    MaxSize int
    Maximum size of the attribute.
    MinLength int
    Minimum length of the attribute.
    MinSize int
    Minimum size of the attribute..
    Name string
    The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
    Order int
    Display sequence of the bundle configuration property.
    ReadOnly bool
    If true, indicates that this value must be protected.
    Regexp string
    Regular expression of the attribute for validation.
    Required bool
    If true, this flatfile bundle configuration property is required to connect to the target connected managed app. This attribute maps to "isRequired" attribute in "ConfigurationProperty" in ICF.
    Section string
    UI widget to use for the attribute.
    Visible bool
    Indicates whether the attribute is to be shown on the application creation UI.
    Widget string
    UI widget to use for the attribute.
    datatype String
    Data type of the attribute.
    helptext String
    Help text for the attribute. It can contain HTML tags.
    label String
    Label for the attribute to be shown in the UI.
    maxLength Integer
    Maximum length of the attribute.
    maxSize Integer
    Maximum size of the attribute.
    minLength Integer
    Minimum length of the attribute.
    minSize Integer
    Minimum size of the attribute..
    name String
    The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
    order Integer
    Display sequence of the bundle configuration property.
    readOnly Boolean
    If true, indicates that this value must be protected.
    regexp String
    Regular expression of the attribute for validation.
    required Boolean
    If true, this flatfile bundle configuration property is required to connect to the target connected managed app. This attribute maps to "isRequired" attribute in "ConfigurationProperty" in ICF.
    section String
    UI widget to use for the attribute.
    visible Boolean
    Indicates whether the attribute is to be shown on the application creation UI.
    widget String
    UI widget to use for the attribute.
    datatype string
    Data type of the attribute.
    helptext string
    Help text for the attribute. It can contain HTML tags.
    label string
    Label for the attribute to be shown in the UI.
    maxLength number
    Maximum length of the attribute.
    maxSize number
    Maximum size of the attribute.
    minLength number
    Minimum length of the attribute.
    minSize number
    Minimum size of the attribute..
    name string
    The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
    order number
    Display sequence of the bundle configuration property.
    readOnly boolean
    If true, indicates that this value must be protected.
    regexp string
    Regular expression of the attribute for validation.
    required boolean
    If true, this flatfile bundle configuration property is required to connect to the target connected managed app. This attribute maps to "isRequired" attribute in "ConfigurationProperty" in ICF.
    section string
    UI widget to use for the attribute.
    visible boolean
    Indicates whether the attribute is to be shown on the application creation UI.
    widget string
    UI widget to use for the attribute.
    datatype str
    Data type of the attribute.
    helptext str
    Help text for the attribute. It can contain HTML tags.
    label str
    Label for the attribute to be shown in the UI.
    max_length int
    Maximum length of the attribute.
    max_size int
    Maximum size of the attribute.
    min_length int
    Minimum length of the attribute.
    min_size int
    Minimum size of the attribute..
    name str
    The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
    order int
    Display sequence of the bundle configuration property.
    read_only bool
    If true, indicates that this value must be protected.
    regexp str
    Regular expression of the attribute for validation.
    required bool
    If true, this flatfile bundle configuration property is required to connect to the target connected managed app. This attribute maps to "isRequired" attribute in "ConfigurationProperty" in ICF.
    section str
    UI widget to use for the attribute.
    visible bool
    Indicates whether the attribute is to be shown on the application creation UI.
    widget str
    UI widget to use for the attribute.
    datatype String
    Data type of the attribute.
    helptext String
    Help text for the attribute. It can contain HTML tags.
    label String
    Label for the attribute to be shown in the UI.
    maxLength Number
    Maximum length of the attribute.
    maxSize Number
    Maximum size of the attribute.
    minLength Number
    Minimum length of the attribute.
    minSize Number
    Minimum size of the attribute..
    name String
    The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
    order Number
    Display sequence of the bundle configuration property.
    readOnly Boolean
    If true, indicates that this value must be protected.
    regexp String
    Regular expression of the attribute for validation.
    required Boolean
    If true, this flatfile bundle configuration property is required to connect to the target connected managed app. This attribute maps to "isRequired" attribute in "ConfigurationProperty" in ICF.
    section String
    UI widget to use for the attribute.
    visible Boolean
    Indicates whether the attribute is to be shown on the application creation UI.
    widget String
    UI widget to use for the attribute.

    GetDomainsAppBasedOnTemplate

    LastModified string
    The most recent DateTime that the details of this Resource were updated at the Service Provider. If this Resource has never been modified since its initial creation, the value MUST be the same as the value of created. The attribute MUST be a DateTime.
    Ref string
    URI of the AppRole.
    Value string
    ID of the AppRole.
    WellKnownId string
    Unique well-known identifier used to reference connector bundle.
    LastModified string
    The most recent DateTime that the details of this Resource were updated at the Service Provider. If this Resource has never been modified since its initial creation, the value MUST be the same as the value of created. The attribute MUST be a DateTime.
    Ref string
    URI of the AppRole.
    Value string
    ID of the AppRole.
    WellKnownId string
    Unique well-known identifier used to reference connector bundle.
    lastModified String
    The most recent DateTime that the details of this Resource were updated at the Service Provider. If this Resource has never been modified since its initial creation, the value MUST be the same as the value of created. The attribute MUST be a DateTime.
    ref String
    URI of the AppRole.
    value String
    ID of the AppRole.
    wellKnownId String
    Unique well-known identifier used to reference connector bundle.
    lastModified string
    The most recent DateTime that the details of this Resource were updated at the Service Provider. If this Resource has never been modified since its initial creation, the value MUST be the same as the value of created. The attribute MUST be a DateTime.
    ref string
    URI of the AppRole.
    value string
    ID of the AppRole.
    wellKnownId string
    Unique well-known identifier used to reference connector bundle.
    last_modified str
    The most recent DateTime that the details of this Resource were updated at the Service Provider. If this Resource has never been modified since its initial creation, the value MUST be the same as the value of created. The attribute MUST be a DateTime.
    ref str
    URI of the AppRole.
    value str
    ID of the AppRole.
    well_known_id str
    Unique well-known identifier used to reference connector bundle.
    lastModified String
    The most recent DateTime that the details of this Resource were updated at the Service Provider. If this Resource has never been modified since its initial creation, the value MUST be the same as the value of created. The attribute MUST be a DateTime.
    ref String
    URI of the AppRole.
    value String
    ID of the AppRole.
    wellKnownId String
    Unique well-known identifier used to reference connector bundle.

    GetDomainsAppCertificate

    CertAlias string
    Certificate alias
    Kid string
    Certificate kid
    Sha1thumbprint string
    sha1Thumbprint
    X509base64certificate string
    Base-64-encoded certificate.
    X5t string
    Certificate x5t
    CertAlias string
    Certificate alias
    Kid string
    Certificate kid
    Sha1thumbprint string
    sha1Thumbprint
    X509base64certificate string
    Base-64-encoded certificate.
    X5t string
    Certificate x5t
    certAlias String
    Certificate alias
    kid String
    Certificate kid
    sha1thumbprint String
    sha1Thumbprint
    x509base64certificate String
    Base-64-encoded certificate.
    x5t String
    Certificate x5t
    certAlias string
    Certificate alias
    kid string
    Certificate kid
    sha1thumbprint string
    sha1Thumbprint
    x509base64certificate string
    Base-64-encoded certificate.
    x5t string
    Certificate x5t
    cert_alias str
    Certificate alias
    kid str
    Certificate kid
    sha1thumbprint str
    sha1Thumbprint
    x509base64certificate str
    Base-64-encoded certificate.
    x5t str
    Certificate x5t
    certAlias String
    Certificate alias
    kid String
    Certificate kid
    sha1thumbprint String
    sha1Thumbprint
    x509base64certificate String
    Base-64-encoded certificate.
    x5t String
    Certificate x5t

    GetDomainsAppCloudControlProperty

    Name string
    The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
    Values List<string>
    The value(s) of the property.
    Name string
    The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
    Values []string
    The value(s) of the property.
    name String
    The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
    values List<String>
    The value(s) of the property.
    name string
    The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
    values string[]
    The value(s) of the property.
    name str
    The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
    values Sequence[str]
    The value(s) of the property.
    name String
    The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
    values List<String>
    The value(s) of the property.

    GetDomainsAppEditableAttribute

    Name string
    The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
    Name string
    The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
    name String
    The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
    name string
    The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
    name str
    The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
    name String
    The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion

    GetDomainsAppGrant

    GrantMechanism string
    Each value of grantMechanism indicates how (or by what component) some App (or App-Entitlement) was granted. A customer or the UI should use only grantMechanism values that start with 'ADMINISTRATOR':

    • 'ADMINISTRATOR_TO_USER' is for a direct grant to a specific User.
    • 'ADMINISTRATOR_TO_GROUP' is for a grant to a specific Group, which results in indirect grants to Users who are members of that Group.
    • 'ADMINISTRATOR_TO_APP' is for a grant to a specific App. The grantee (client) App gains access to the granted (server) App.
    GranteeId string
    Grantee identifier
    GranteeType string
    Grantee resource type. Allowed values are User and Group.
    Ref string
    URI of the AppRole.
    Value string
    ID of the AppRole.
    GrantMechanism string
    Each value of grantMechanism indicates how (or by what component) some App (or App-Entitlement) was granted. A customer or the UI should use only grantMechanism values that start with 'ADMINISTRATOR':

    • 'ADMINISTRATOR_TO_USER' is for a direct grant to a specific User.
    • 'ADMINISTRATOR_TO_GROUP' is for a grant to a specific Group, which results in indirect grants to Users who are members of that Group.
    • 'ADMINISTRATOR_TO_APP' is for a grant to a specific App. The grantee (client) App gains access to the granted (server) App.
    GranteeId string
    Grantee identifier
    GranteeType string
    Grantee resource type. Allowed values are User and Group.
    Ref string
    URI of the AppRole.
    Value string
    ID of the AppRole.
    grantMechanism String
    Each value of grantMechanism indicates how (or by what component) some App (or App-Entitlement) was granted. A customer or the UI should use only grantMechanism values that start with 'ADMINISTRATOR':

    • 'ADMINISTRATOR_TO_USER' is for a direct grant to a specific User.
    • 'ADMINISTRATOR_TO_GROUP' is for a grant to a specific Group, which results in indirect grants to Users who are members of that Group.
    • 'ADMINISTRATOR_TO_APP' is for a grant to a specific App. The grantee (client) App gains access to the granted (server) App.
    granteeId String
    Grantee identifier
    granteeType String
    Grantee resource type. Allowed values are User and Group.
    ref String
    URI of the AppRole.
    value String
    ID of the AppRole.
    grantMechanism string
    Each value of grantMechanism indicates how (or by what component) some App (or App-Entitlement) was granted. A customer or the UI should use only grantMechanism values that start with 'ADMINISTRATOR':

    • 'ADMINISTRATOR_TO_USER' is for a direct grant to a specific User.
    • 'ADMINISTRATOR_TO_GROUP' is for a grant to a specific Group, which results in indirect grants to Users who are members of that Group.
    • 'ADMINISTRATOR_TO_APP' is for a grant to a specific App. The grantee (client) App gains access to the granted (server) App.
    granteeId string
    Grantee identifier
    granteeType string
    Grantee resource type. Allowed values are User and Group.
    ref string
    URI of the AppRole.
    value string
    ID of the AppRole.
    grant_mechanism str
    Each value of grantMechanism indicates how (or by what component) some App (or App-Entitlement) was granted. A customer or the UI should use only grantMechanism values that start with 'ADMINISTRATOR':

    • 'ADMINISTRATOR_TO_USER' is for a direct grant to a specific User.
    • 'ADMINISTRATOR_TO_GROUP' is for a grant to a specific Group, which results in indirect grants to Users who are members of that Group.
    • 'ADMINISTRATOR_TO_APP' is for a grant to a specific App. The grantee (client) App gains access to the granted (server) App.
    grantee_id str
    Grantee identifier
    grantee_type str
    Grantee resource type. Allowed values are User and Group.
    ref str
    URI of the AppRole.
    value str
    ID of the AppRole.
    grantMechanism String
    Each value of grantMechanism indicates how (or by what component) some App (or App-Entitlement) was granted. A customer or the UI should use only grantMechanism values that start with 'ADMINISTRATOR':

    • 'ADMINISTRATOR_TO_USER' is for a direct grant to a specific User.
    • 'ADMINISTRATOR_TO_GROUP' is for a grant to a specific Group, which results in indirect grants to Users who are members of that Group.
    • 'ADMINISTRATOR_TO_APP' is for a grant to a specific App. The grantee (client) App gains access to the granted (server) App.
    granteeId String
    Grantee identifier
    granteeType String
    Grantee resource type. Allowed values are User and Group.
    ref String
    URI of the AppRole.
    value String
    ID of the AppRole.

    GetDomainsAppGrantedAppRole

    AdminRole bool
    If true, then this granted AppRole confers administrative privileges within the App that defines it. Otherwise, the granted AppRole confers only functional privileges.
    AppId string
    ID of the resource
    AppName string
    The name of the App that defines this AppRole, which is granted to this App. The App that defines the AppRole acts as the producer; the App to which the AppRole is granted acts as a consumer.
    Display string
    Display-name of the AppRole.
    LegacyGroupName string
    The name of the legacy group associated with this AppRole.
    ReadOnly bool
    If true, indicates that this value must be protected.
    Ref string
    URI of the AppRole.
    Type string
    Object Class type. Allowed values are AccountObjectClass, ManagedObjectClass.
    Value string
    ID of the AppRole.
    AdminRole bool
    If true, then this granted AppRole confers administrative privileges within the App that defines it. Otherwise, the granted AppRole confers only functional privileges.
    AppId string
    ID of the resource
    AppName string
    The name of the App that defines this AppRole, which is granted to this App. The App that defines the AppRole acts as the producer; the App to which the AppRole is granted acts as a consumer.
    Display string
    Display-name of the AppRole.
    LegacyGroupName string
    The name of the legacy group associated with this AppRole.
    ReadOnly bool
    If true, indicates that this value must be protected.
    Ref string
    URI of the AppRole.
    Type string
    Object Class type. Allowed values are AccountObjectClass, ManagedObjectClass.
    Value string
    ID of the AppRole.
    adminRole Boolean
    If true, then this granted AppRole confers administrative privileges within the App that defines it. Otherwise, the granted AppRole confers only functional privileges.
    appId String
    ID of the resource
    appName String
    The name of the App that defines this AppRole, which is granted to this App. The App that defines the AppRole acts as the producer; the App to which the AppRole is granted acts as a consumer.
    display String
    Display-name of the AppRole.
    legacyGroupName String
    The name of the legacy group associated with this AppRole.
    readOnly Boolean
    If true, indicates that this value must be protected.
    ref String
    URI of the AppRole.
    type String
    Object Class type. Allowed values are AccountObjectClass, ManagedObjectClass.
    value String
    ID of the AppRole.
    adminRole boolean
    If true, then this granted AppRole confers administrative privileges within the App that defines it. Otherwise, the granted AppRole confers only functional privileges.
    appId string
    ID of the resource
    appName string
    The name of the App that defines this AppRole, which is granted to this App. The App that defines the AppRole acts as the producer; the App to which the AppRole is granted acts as a consumer.
    display string
    Display-name of the AppRole.
    legacyGroupName string
    The name of the legacy group associated with this AppRole.
    readOnly boolean
    If true, indicates that this value must be protected.
    ref string
    URI of the AppRole.
    type string
    Object Class type. Allowed values are AccountObjectClass, ManagedObjectClass.
    value string
    ID of the AppRole.
    admin_role bool
    If true, then this granted AppRole confers administrative privileges within the App that defines it. Otherwise, the granted AppRole confers only functional privileges.
    app_id str
    ID of the resource
    app_name str
    The name of the App that defines this AppRole, which is granted to this App. The App that defines the AppRole acts as the producer; the App to which the AppRole is granted acts as a consumer.
    display str
    Display-name of the AppRole.
    legacy_group_name str
    The name of the legacy group associated with this AppRole.
    read_only bool
    If true, indicates that this value must be protected.
    ref str
    URI of the AppRole.
    type str
    Object Class type. Allowed values are AccountObjectClass, ManagedObjectClass.
    value str
    ID of the AppRole.
    adminRole Boolean
    If true, then this granted AppRole confers administrative privileges within the App that defines it. Otherwise, the granted AppRole confers only functional privileges.
    appId String
    ID of the resource
    appName String
    The name of the App that defines this AppRole, which is granted to this App. The App that defines the AppRole acts as the producer; the App to which the AppRole is granted acts as a consumer.
    display String
    Display-name of the AppRole.
    legacyGroupName String
    The name of the legacy group associated with this AppRole.
    readOnly Boolean
    If true, indicates that this value must be protected.
    ref String
    URI of the AppRole.
    type String
    Object Class type. Allowed values are AccountObjectClass, ManagedObjectClass.
    value String
    ID of the AppRole.

    GetDomainsAppIdcsCreatedBy

    Display string
    Display-name of the AppRole.
    Ocid string
    Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
    Ref string
    URI of the AppRole.
    Type string
    Object Class type. Allowed values are AccountObjectClass, ManagedObjectClass.
    Value string
    ID of the AppRole.
    Display string
    Display-name of the AppRole.
    Ocid string
    Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
    Ref string
    URI of the AppRole.
    Type string
    Object Class type. Allowed values are AccountObjectClass, ManagedObjectClass.
    Value string
    ID of the AppRole.
    display String
    Display-name of the AppRole.
    ocid String
    Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
    ref String
    URI of the AppRole.
    type String
    Object Class type. Allowed values are AccountObjectClass, ManagedObjectClass.
    value String
    ID of the AppRole.
    display string
    Display-name of the AppRole.
    ocid string
    Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
    ref string
    URI of the AppRole.
    type string
    Object Class type. Allowed values are AccountObjectClass, ManagedObjectClass.
    value string
    ID of the AppRole.
    display str
    Display-name of the AppRole.
    ocid str
    Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
    ref str
    URI of the AppRole.
    type str
    Object Class type. Allowed values are AccountObjectClass, ManagedObjectClass.
    value str
    ID of the AppRole.
    display String
    Display-name of the AppRole.
    ocid String
    Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
    ref String
    URI of the AppRole.
    type String
    Object Class type. Allowed values are AccountObjectClass, ManagedObjectClass.
    value String
    ID of the AppRole.

    GetDomainsAppIdcsLastModifiedBy

    Display string
    Display-name of the AppRole.
    Ocid string
    Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
    Ref string
    URI of the AppRole.
    Type string
    Object Class type. Allowed values are AccountObjectClass, ManagedObjectClass.
    Value string
    ID of the AppRole.
    Display string
    Display-name of the AppRole.
    Ocid string
    Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
    Ref string
    URI of the AppRole.
    Type string
    Object Class type. Allowed values are AccountObjectClass, ManagedObjectClass.
    Value string
    ID of the AppRole.
    display String
    Display-name of the AppRole.
    ocid String
    Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
    ref String
    URI of the AppRole.
    type String
    Object Class type. Allowed values are AccountObjectClass, ManagedObjectClass.
    value String
    ID of the AppRole.
    display string
    Display-name of the AppRole.
    ocid string
    Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
    ref string
    URI of the AppRole.
    type string
    Object Class type. Allowed values are AccountObjectClass, ManagedObjectClass.
    value string
    ID of the AppRole.
    display str
    Display-name of the AppRole.
    ocid str
    Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
    ref str
    URI of the AppRole.
    type str
    Object Class type. Allowed values are AccountObjectClass, ManagedObjectClass.
    value str
    ID of the AppRole.
    display String
    Display-name of the AppRole.
    ocid String
    Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
    ref String
    URI of the AppRole.
    type String
    Object Class type. Allowed values are AccountObjectClass, ManagedObjectClass.
    value String
    ID of the AppRole.

    GetDomainsAppIdentityProvider

    Display string
    Display-name of the AppRole.
    Ref string
    URI of the AppRole.
    Value string
    ID of the AppRole.
    Display string
    Display-name of the AppRole.
    Ref string
    URI of the AppRole.
    Value string
    ID of the AppRole.
    display String
    Display-name of the AppRole.
    ref String
    URI of the AppRole.
    value String
    ID of the AppRole.
    display string
    Display-name of the AppRole.
    ref string
    URI of the AppRole.
    value string
    ID of the AppRole.
    display str
    Display-name of the AppRole.
    ref str
    URI of the AppRole.
    value str
    ID of the AppRole.
    display String
    Display-name of the AppRole.
    ref String
    URI of the AppRole.
    value String
    ID of the AppRole.

    GetDomainsAppIdpPolicy

    Ref string
    URI of the AppRole.
    Value string
    ID of the AppRole.
    Ref string
    URI of the AppRole.
    Value string
    ID of the AppRole.
    ref String
    URI of the AppRole.
    value String
    ID of the AppRole.
    ref string
    URI of the AppRole.
    value string
    ID of the AppRole.
    ref str
    URI of the AppRole.
    value str
    ID of the AppRole.
    ref String
    URI of the AppRole.
    value String
    ID of the AppRole.

    GetDomainsAppMeta

    Created string
    The DateTime the Resource was added to the Service Provider
    LastModified string
    The most recent DateTime that the details of this Resource were updated at the Service Provider. If this Resource has never been modified since its initial creation, the value MUST be the same as the value of created. The attribute MUST be a DateTime.
    Location string
    The URI of the Resource being returned. This value MUST be the same as the Location HTTP response header.
    ResourceType string
    Object class resource type
    Version string
    The version of the Resource being returned. This value must be the same as the ETag HTTP response header.
    Created string
    The DateTime the Resource was added to the Service Provider
    LastModified string
    The most recent DateTime that the details of this Resource were updated at the Service Provider. If this Resource has never been modified since its initial creation, the value MUST be the same as the value of created. The attribute MUST be a DateTime.
    Location string
    The URI of the Resource being returned. This value MUST be the same as the Location HTTP response header.
    ResourceType string
    Object class resource type
    Version string
    The version of the Resource being returned. This value must be the same as the ETag HTTP response header.
    created String
    The DateTime the Resource was added to the Service Provider
    lastModified String
    The most recent DateTime that the details of this Resource were updated at the Service Provider. If this Resource has never been modified since its initial creation, the value MUST be the same as the value of created. The attribute MUST be a DateTime.
    location String
    The URI of the Resource being returned. This value MUST be the same as the Location HTTP response header.
    resourceType String
    Object class resource type
    version String
    The version of the Resource being returned. This value must be the same as the ETag HTTP response header.
    created string
    The DateTime the Resource was added to the Service Provider
    lastModified string
    The most recent DateTime that the details of this Resource were updated at the Service Provider. If this Resource has never been modified since its initial creation, the value MUST be the same as the value of created. The attribute MUST be a DateTime.
    location string
    The URI of the Resource being returned. This value MUST be the same as the Location HTTP response header.
    resourceType string
    Object class resource type
    version string
    The version of the Resource being returned. This value must be the same as the ETag HTTP response header.
    created str
    The DateTime the Resource was added to the Service Provider
    last_modified str
    The most recent DateTime that the details of this Resource were updated at the Service Provider. If this Resource has never been modified since its initial creation, the value MUST be the same as the value of created. The attribute MUST be a DateTime.
    location str
    The URI of the Resource being returned. This value MUST be the same as the Location HTTP response header.
    resource_type str
    Object class resource type
    version str
    The version of the Resource being returned. This value must be the same as the ETag HTTP response header.
    created String
    The DateTime the Resource was added to the Service Provider
    lastModified String
    The most recent DateTime that the details of this Resource were updated at the Service Provider. If this Resource has never been modified since its initial creation, the value MUST be the same as the value of created. The attribute MUST be a DateTime.
    location String
    The URI of the Resource being returned. This value MUST be the same as the Location HTTP response header.
    resourceType String
    Object class resource type
    version String
    The version of the Resource being returned. This value must be the same as the ETag HTTP response header.

    GetDomainsAppProtectableSecondaryAudience

    ReadOnly bool
    If true, indicates that this value must be protected.
    Value string
    ID of the AppRole.
    ReadOnly bool
    If true, indicates that this value must be protected.
    Value string
    ID of the AppRole.
    readOnly Boolean
    If true, indicates that this value must be protected.
    value String
    ID of the AppRole.
    readOnly boolean
    If true, indicates that this value must be protected.
    value string
    ID of the AppRole.
    read_only bool
    If true, indicates that this value must be protected.
    value str
    ID of the AppRole.
    readOnly Boolean
    If true, indicates that this value must be protected.
    value String
    ID of the AppRole.

    GetDomainsAppRadiusPolicy

    Ref string
    URI of the AppRole.
    Value string
    ID of the AppRole.
    Ref string
    URI of the AppRole.
    Value string
    ID of the AppRole.
    ref String
    URI of the AppRole.
    value String
    ID of the AppRole.
    ref string
    URI of the AppRole.
    value string
    ID of the AppRole.
    ref str
    URI of the AppRole.
    value str
    ID of the AppRole.
    ref String
    URI of the AppRole.
    value String
    ID of the AppRole.

    GetDomainsAppSamlServiceProvider

    Ref string
    URI of the AppRole.
    Value string
    ID of the AppRole.
    Ref string
    URI of the AppRole.
    Value string
    ID of the AppRole.
    ref String
    URI of the AppRole.
    value String
    ID of the AppRole.
    ref string
    URI of the AppRole.
    value string
    ID of the AppRole.
    ref str
    URI of the AppRole.
    value str
    ID of the AppRole.
    ref String
    URI of the AppRole.
    value String
    ID of the AppRole.

    GetDomainsAppScope

    Description string
    The description of the AppRole.
    DisplayName string
    Display name of the flatfile bundle configuration property. This attribute maps to "displayName" attribute in "ConfigurationProperty" in ICF.
    Fqs string
    The fully qualified value of this scope within this App. A fully qualified scope combines the 'value' of each scope with the value of 'audience'. Each value of 'fqs' must be unique across the system. Used only when this App acts as an OAuth Resource.
    ReadOnly bool
    If true, indicates that this value must be protected.
    RequiresConsent bool
    If true, indicates that a user must provide consent to access this scope. Note: Used only when this App acts as an OAuth Resource.
    Value string
    ID of the AppRole.
    Description string
    The description of the AppRole.
    DisplayName string
    Display name of the flatfile bundle configuration property. This attribute maps to "displayName" attribute in "ConfigurationProperty" in ICF.
    Fqs string
    The fully qualified value of this scope within this App. A fully qualified scope combines the 'value' of each scope with the value of 'audience'. Each value of 'fqs' must be unique across the system. Used only when this App acts as an OAuth Resource.
    ReadOnly bool
    If true, indicates that this value must be protected.
    RequiresConsent bool
    If true, indicates that a user must provide consent to access this scope. Note: Used only when this App acts as an OAuth Resource.
    Value string
    ID of the AppRole.
    description String
    The description of the AppRole.
    displayName String
    Display name of the flatfile bundle configuration property. This attribute maps to "displayName" attribute in "ConfigurationProperty" in ICF.
    fqs String
    The fully qualified value of this scope within this App. A fully qualified scope combines the 'value' of each scope with the value of 'audience'. Each value of 'fqs' must be unique across the system. Used only when this App acts as an OAuth Resource.
    readOnly Boolean
    If true, indicates that this value must be protected.
    requiresConsent Boolean
    If true, indicates that a user must provide consent to access this scope. Note: Used only when this App acts as an OAuth Resource.
    value String
    ID of the AppRole.
    description string
    The description of the AppRole.
    displayName string
    Display name of the flatfile bundle configuration property. This attribute maps to "displayName" attribute in "ConfigurationProperty" in ICF.
    fqs string
    The fully qualified value of this scope within this App. A fully qualified scope combines the 'value' of each scope with the value of 'audience'. Each value of 'fqs' must be unique across the system. Used only when this App acts as an OAuth Resource.
    readOnly boolean
    If true, indicates that this value must be protected.
    requiresConsent boolean
    If true, indicates that a user must provide consent to access this scope. Note: Used only when this App acts as an OAuth Resource.
    value string
    ID of the AppRole.
    description str
    The description of the AppRole.
    display_name str
    Display name of the flatfile bundle configuration property. This attribute maps to "displayName" attribute in "ConfigurationProperty" in ICF.
    fqs str
    The fully qualified value of this scope within this App. A fully qualified scope combines the 'value' of each scope with the value of 'audience'. Each value of 'fqs' must be unique across the system. Used only when this App acts as an OAuth Resource.
    read_only bool
    If true, indicates that this value must be protected.
    requires_consent bool
    If true, indicates that a user must provide consent to access this scope. Note: Used only when this App acts as an OAuth Resource.
    value str
    ID of the AppRole.
    description String
    The description of the AppRole.
    displayName String
    Display name of the flatfile bundle configuration property. This attribute maps to "displayName" attribute in "ConfigurationProperty" in ICF.
    fqs String
    The fully qualified value of this scope within this App. A fully qualified scope combines the 'value' of each scope with the value of 'audience'. Each value of 'fqs' must be unique across the system. Used only when this App acts as an OAuth Resource.
    readOnly Boolean
    If true, indicates that this value must be protected.
    requiresConsent Boolean
    If true, indicates that a user must provide consent to access this scope. Note: Used only when this App acts as an OAuth Resource.
    value String
    ID of the AppRole.

    GetDomainsAppServiceParam

    Name string
    The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
    Value string
    ID of the AppRole.
    Name string
    The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
    Value string
    ID of the AppRole.
    name String
    The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
    value String
    ID of the AppRole.
    name string
    The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
    value string
    ID of the AppRole.
    name str
    The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
    value str
    ID of the AppRole.
    name String
    The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
    value String
    ID of the AppRole.

    GetDomainsAppSignonPolicy

    Ref string
    URI of the AppRole.
    Value string
    ID of the AppRole.
    Ref string
    URI of the AppRole.
    Value string
    ID of the AppRole.
    ref String
    URI of the AppRole.
    value String
    ID of the AppRole.
    ref string
    URI of the AppRole.
    value string
    ID of the AppRole.
    ref str
    URI of the AppRole.
    value str
    ID of the AppRole.
    ref String
    URI of the AppRole.
    value String
    ID of the AppRole.

    GetDomainsAppTag

    Key string
    Oracle Cloud Infrastructure Tag key
    Value string
    ID of the AppRole.
    Key string
    Oracle Cloud Infrastructure Tag key
    Value string
    ID of the AppRole.
    key String
    Oracle Cloud Infrastructure Tag key
    value String
    ID of the AppRole.
    key string
    Oracle Cloud Infrastructure Tag key
    value string
    ID of the AppRole.
    key str
    Oracle Cloud Infrastructure Tag key
    value str
    ID of the AppRole.
    key String
    Oracle Cloud Infrastructure Tag key
    value String
    ID of the AppRole.

    GetDomainsAppTermsOfUse

    Name string
    The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
    Ref string
    URI of the AppRole.
    Value string
    ID of the AppRole.
    Name string
    The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
    Ref string
    URI of the AppRole.
    Value string
    ID of the AppRole.
    name String
    The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
    ref String
    URI of the AppRole.
    value String
    ID of the AppRole.
    name string
    The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
    ref string
    URI of the AppRole.
    value string
    ID of the AppRole.
    name str
    The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
    ref str
    URI of the AppRole.
    value str
    ID of the AppRole.
    name String
    The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
    ref String
    URI of the AppRole.
    value String
    ID of the AppRole.

    GetDomainsAppTrustPolicy

    Ref string
    URI of the AppRole.
    Value string
    ID of the AppRole.
    Ref string
    URI of the AppRole.
    Value string
    ID of the AppRole.
    ref String
    URI of the AppRole.
    value String
    ID of the AppRole.
    ref string
    URI of the AppRole.
    value string
    ID of the AppRole.
    ref str
    URI of the AppRole.
    value str
    ID of the AppRole.
    ref String
    URI of the AppRole.
    value String
    ID of the AppRole.

    GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionOciTag

    DefinedTags List<GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionOciTagDefinedTag>
    Oracle Cloud Infrastructure Defined Tags
    FreeformTags List<GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionOciTagFreeformTag>
    Oracle Cloud Infrastructure Freeform Tags
    TagSlug string
    Oracle Cloud Infrastructure Tag slug
    DefinedTags []GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionOciTagDefinedTag
    Oracle Cloud Infrastructure Defined Tags
    FreeformTags []GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionOciTagFreeformTag
    Oracle Cloud Infrastructure Freeform Tags
    TagSlug string
    Oracle Cloud Infrastructure Tag slug
    definedTags List<GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionOciTagDefinedTag>
    Oracle Cloud Infrastructure Defined Tags
    freeformTags List<GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionOciTagFreeformTag>
    Oracle Cloud Infrastructure Freeform Tags
    tagSlug String
    Oracle Cloud Infrastructure Tag slug
    definedTags GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionOciTagDefinedTag[]
    Oracle Cloud Infrastructure Defined Tags
    freeformTags GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionOciTagFreeformTag[]
    Oracle Cloud Infrastructure Freeform Tags
    tagSlug string
    Oracle Cloud Infrastructure Tag slug
    definedTags List<Property Map>
    Oracle Cloud Infrastructure Defined Tags
    freeformTags List<Property Map>
    Oracle Cloud Infrastructure Freeform Tags
    tagSlug String
    Oracle Cloud Infrastructure Tag slug

    GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionOciTagDefinedTag

    Key string
    Oracle Cloud Infrastructure Tag key
    Namespace string
    Oracle Cloud Infrastructure Tag namespace
    Value string
    ID of the AppRole.
    Key string
    Oracle Cloud Infrastructure Tag key
    Namespace string
    Oracle Cloud Infrastructure Tag namespace
    Value string
    ID of the AppRole.
    key String
    Oracle Cloud Infrastructure Tag key
    namespace String
    Oracle Cloud Infrastructure Tag namespace
    value String
    ID of the AppRole.
    key string
    Oracle Cloud Infrastructure Tag key
    namespace string
    Oracle Cloud Infrastructure Tag namespace
    value string
    ID of the AppRole.
    key str
    Oracle Cloud Infrastructure Tag key
    namespace str
    Oracle Cloud Infrastructure Tag namespace
    value str
    ID of the AppRole.
    key String
    Oracle Cloud Infrastructure Tag key
    namespace String
    Oracle Cloud Infrastructure Tag namespace
    value String
    ID of the AppRole.

    GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionOciTagFreeformTag

    Key string
    Oracle Cloud Infrastructure Tag key
    Value string
    ID of the AppRole.
    Key string
    Oracle Cloud Infrastructure Tag key
    Value string
    ID of the AppRole.
    key String
    Oracle Cloud Infrastructure Tag key
    value String
    ID of the AppRole.
    key string
    Oracle Cloud Infrastructure Tag key
    value string
    ID of the AppRole.
    key str
    Oracle Cloud Infrastructure Tag key
    value str
    ID of the AppRole.
    key String
    Oracle Cloud Infrastructure Tag key
    value String
    ID of the AppRole.

    GetDomainsAppUrnietfparamsscimschemasoracleidcsextensiondbcsApp

    DomainApps List<GetDomainsAppUrnietfparamsscimschemasoracleidcsextensiondbcsAppDomainApp>
    Description:
    DomainName string
    The name of the Enterprise Domain that contains any number of DBInstances. If specified, the value must be unique. A non-null value indicates that App represents a DBDomain. A value of null indicates that the App represents an DB-instance.
    DomainApps []GetDomainsAppUrnietfparamsscimschemasoracleidcsextensiondbcsAppDomainApp
    Description:
    DomainName string
    The name of the Enterprise Domain that contains any number of DBInstances. If specified, the value must be unique. A non-null value indicates that App represents a DBDomain. A value of null indicates that the App represents an DB-instance.
    domainApps List<GetDomainsAppUrnietfparamsscimschemasoracleidcsextensiondbcsAppDomainApp>
    Description:
    domainName String
    The name of the Enterprise Domain that contains any number of DBInstances. If specified, the value must be unique. A non-null value indicates that App represents a DBDomain. A value of null indicates that the App represents an DB-instance.
    domainApps GetDomainsAppUrnietfparamsscimschemasoracleidcsextensiondbcsAppDomainApp[]
    Description:
    domainName string
    The name of the Enterprise Domain that contains any number of DBInstances. If specified, the value must be unique. A non-null value indicates that App represents a DBDomain. A value of null indicates that the App represents an DB-instance.
    domain_apps Sequence[identity.GetDomainsAppUrnietfparamsscimschemasoracleidcsextensiondbcsAppDomainApp]
    Description:
    domain_name str
    The name of the Enterprise Domain that contains any number of DBInstances. If specified, the value must be unique. A non-null value indicates that App represents a DBDomain. A value of null indicates that the App represents an DB-instance.
    domainApps List<Property Map>
    Description:
    domainName String
    The name of the Enterprise Domain that contains any number of DBInstances. If specified, the value must be unique. A non-null value indicates that App represents a DBDomain. A value of null indicates that the App represents an DB-instance.

    GetDomainsAppUrnietfparamsscimschemasoracleidcsextensiondbcsAppDomainApp

    Display string
    Display-name of the AppRole.
    Ref string
    URI of the AppRole.
    Value string
    ID of the AppRole.
    Display string
    Display-name of the AppRole.
    Ref string
    URI of the AppRole.
    Value string
    ID of the AppRole.
    display String
    Display-name of the AppRole.
    ref String
    URI of the AppRole.
    value String
    ID of the AppRole.
    display string
    Display-name of the AppRole.
    ref string
    URI of the AppRole.
    value string
    ID of the AppRole.
    display str
    Display-name of the AppRole.
    ref str
    URI of the AppRole.
    value str
    ID of the AppRole.
    display String
    Display-name of the AppRole.
    ref String
    URI of the AppRole.
    value String
    ID of the AppRole.

    GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionenterpriseAppApp

    allowAuthzDecisionTtl Number
    Allow Authz policy decision expiry time in seconds.
    allowAuthzPolicies List<Property Map>
    Allow Authz Policy.
    appResources List<Property Map>
    A list of AppResources of this App.
    denyAuthzDecisionTtl Number
    Deny Authz policy decision expiry time in seconds.
    denyAuthzPolicies List<Property Map>
    Deny Authz Policy.

    GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionenterpriseAppAppAllowAuthzPolicy

    Ref string
    URI of the AppRole.
    Value string
    ID of the AppRole.
    Ref string
    URI of the AppRole.
    Value string
    ID of the AppRole.
    ref String
    URI of the AppRole.
    value String
    ID of the AppRole.
    ref string
    URI of the AppRole.
    value string
    ID of the AppRole.
    ref str
    URI of the AppRole.
    value str
    ID of the AppRole.
    ref String
    URI of the AppRole.
    value String
    ID of the AppRole.

    GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionenterpriseAppAppAppResource

    Ref string
    URI of the AppRole.
    Value string
    ID of the AppRole.
    Ref string
    URI of the AppRole.
    Value string
    ID of the AppRole.
    ref String
    URI of the AppRole.
    value String
    ID of the AppRole.
    ref string
    URI of the AppRole.
    value string
    ID of the AppRole.
    ref str
    URI of the AppRole.
    value str
    ID of the AppRole.
    ref String
    URI of the AppRole.
    value String
    ID of the AppRole.

    GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionenterpriseAppAppDenyAuthzPolicy

    Ref string
    URI of the AppRole.
    Value string
    ID of the AppRole.
    Ref string
    URI of the AppRole.
    Value string
    ID of the AppRole.
    ref String
    URI of the AppRole.
    value String
    ID of the AppRole.
    ref string
    URI of the AppRole.
    value string
    ID of the AppRole.
    ref str
    URI of the AppRole.
    value str
    ID of the AppRole.
    ref String
    URI of the AppRole.
    value String
    ID of the AppRole.

    GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionformFillAppApp

    Configuration string
    FormFill Application Configuration CLOB which has to be maintained in Form-Fill APP for legacy code to do Form-Fill injection
    FormCredMethod string
    Indicates how FormFill obtains the username and password of the account that FormFill will use to sign into the target App.
    FormCredentialSharingGroupId string
    Credential Sharing Group to which this form-fill application belongs.
    FormFillUrlMatches List<GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionformFillAppAppFormFillUrlMatch>
    A list of application-formURLs that FormFill should match against any formUrl that the user-specifies when signing in to the target service. Each item in the list also indicates how FormFill should interpret that formUrl.
    FormType string
    Type of the FormFill application like WebApplication, MainFrameApplication, WindowsApplication. Initially, we will support only WebApplication.
    RevealPasswordOnForm bool
    If true, indicates that system is allowed to show the password in plain-text for this account after re-authentication.
    SyncFromTemplate bool
    If true, indicates that each of the Form-Fill-related attributes that can be inherited from the template actually will be inherited from the template. If false, indicates that the AppTemplate disabled inheritance for these Form-Fill-related attributes.
    UserNameFormExpression string
    Indicates the custom expression, which can combine concat and substring operations with literals and with any attribute of the Oracle Identity Cloud Service User
    UserNameFormTemplate string
    Format for generating a username. This value can be Username or Email Address; any other value will be treated as a custom expression. A custom expression may combine 'concat' and 'substring' operations with literals and with any attribute of the Oracle Identity Cloud Service user.
    Configuration string
    FormFill Application Configuration CLOB which has to be maintained in Form-Fill APP for legacy code to do Form-Fill injection
    FormCredMethod string
    Indicates how FormFill obtains the username and password of the account that FormFill will use to sign into the target App.
    FormCredentialSharingGroupId string
    Credential Sharing Group to which this form-fill application belongs.
    FormFillUrlMatches []GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionformFillAppAppFormFillUrlMatch
    A list of application-formURLs that FormFill should match against any formUrl that the user-specifies when signing in to the target service. Each item in the list also indicates how FormFill should interpret that formUrl.
    FormType string
    Type of the FormFill application like WebApplication, MainFrameApplication, WindowsApplication. Initially, we will support only WebApplication.
    RevealPasswordOnForm bool
    If true, indicates that system is allowed to show the password in plain-text for this account after re-authentication.
    SyncFromTemplate bool
    If true, indicates that each of the Form-Fill-related attributes that can be inherited from the template actually will be inherited from the template. If false, indicates that the AppTemplate disabled inheritance for these Form-Fill-related attributes.
    UserNameFormExpression string
    Indicates the custom expression, which can combine concat and substring operations with literals and with any attribute of the Oracle Identity Cloud Service User
    UserNameFormTemplate string
    Format for generating a username. This value can be Username or Email Address; any other value will be treated as a custom expression. A custom expression may combine 'concat' and 'substring' operations with literals and with any attribute of the Oracle Identity Cloud Service user.
    configuration String
    FormFill Application Configuration CLOB which has to be maintained in Form-Fill APP for legacy code to do Form-Fill injection
    formCredMethod String
    Indicates how FormFill obtains the username and password of the account that FormFill will use to sign into the target App.
    formCredentialSharingGroupId String
    Credential Sharing Group to which this form-fill application belongs.
    formFillUrlMatches List<GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionformFillAppAppFormFillUrlMatch>
    A list of application-formURLs that FormFill should match against any formUrl that the user-specifies when signing in to the target service. Each item in the list also indicates how FormFill should interpret that formUrl.
    formType String
    Type of the FormFill application like WebApplication, MainFrameApplication, WindowsApplication. Initially, we will support only WebApplication.
    revealPasswordOnForm Boolean
    If true, indicates that system is allowed to show the password in plain-text for this account after re-authentication.
    syncFromTemplate Boolean
    If true, indicates that each of the Form-Fill-related attributes that can be inherited from the template actually will be inherited from the template. If false, indicates that the AppTemplate disabled inheritance for these Form-Fill-related attributes.
    userNameFormExpression String
    Indicates the custom expression, which can combine concat and substring operations with literals and with any attribute of the Oracle Identity Cloud Service User
    userNameFormTemplate String
    Format for generating a username. This value can be Username or Email Address; any other value will be treated as a custom expression. A custom expression may combine 'concat' and 'substring' operations with literals and with any attribute of the Oracle Identity Cloud Service user.
    configuration string
    FormFill Application Configuration CLOB which has to be maintained in Form-Fill APP for legacy code to do Form-Fill injection
    formCredMethod string
    Indicates how FormFill obtains the username and password of the account that FormFill will use to sign into the target App.
    formCredentialSharingGroupId string
    Credential Sharing Group to which this form-fill application belongs.
    formFillUrlMatches GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionformFillAppAppFormFillUrlMatch[]
    A list of application-formURLs that FormFill should match against any formUrl that the user-specifies when signing in to the target service. Each item in the list also indicates how FormFill should interpret that formUrl.
    formType string
    Type of the FormFill application like WebApplication, MainFrameApplication, WindowsApplication. Initially, we will support only WebApplication.
    revealPasswordOnForm boolean
    If true, indicates that system is allowed to show the password in plain-text for this account after re-authentication.
    syncFromTemplate boolean
    If true, indicates that each of the Form-Fill-related attributes that can be inherited from the template actually will be inherited from the template. If false, indicates that the AppTemplate disabled inheritance for these Form-Fill-related attributes.
    userNameFormExpression string
    Indicates the custom expression, which can combine concat and substring operations with literals and with any attribute of the Oracle Identity Cloud Service User
    userNameFormTemplate string
    Format for generating a username. This value can be Username or Email Address; any other value will be treated as a custom expression. A custom expression may combine 'concat' and 'substring' operations with literals and with any attribute of the Oracle Identity Cloud Service user.
    configuration str
    FormFill Application Configuration CLOB which has to be maintained in Form-Fill APP for legacy code to do Form-Fill injection
    form_cred_method str
    Indicates how FormFill obtains the username and password of the account that FormFill will use to sign into the target App.
    form_credential_sharing_group_id str
    Credential Sharing Group to which this form-fill application belongs.
    form_fill_url_matches Sequence[identity.GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionformFillAppAppFormFillUrlMatch]
    A list of application-formURLs that FormFill should match against any formUrl that the user-specifies when signing in to the target service. Each item in the list also indicates how FormFill should interpret that formUrl.
    form_type str
    Type of the FormFill application like WebApplication, MainFrameApplication, WindowsApplication. Initially, we will support only WebApplication.
    reveal_password_on_form bool
    If true, indicates that system is allowed to show the password in plain-text for this account after re-authentication.
    sync_from_template bool
    If true, indicates that each of the Form-Fill-related attributes that can be inherited from the template actually will be inherited from the template. If false, indicates that the AppTemplate disabled inheritance for these Form-Fill-related attributes.
    user_name_form_expression str
    Indicates the custom expression, which can combine concat and substring operations with literals and with any attribute of the Oracle Identity Cloud Service User
    user_name_form_template str
    Format for generating a username. This value can be Username or Email Address; any other value will be treated as a custom expression. A custom expression may combine 'concat' and 'substring' operations with literals and with any attribute of the Oracle Identity Cloud Service user.
    configuration String
    FormFill Application Configuration CLOB which has to be maintained in Form-Fill APP for legacy code to do Form-Fill injection
    formCredMethod String
    Indicates how FormFill obtains the username and password of the account that FormFill will use to sign into the target App.
    formCredentialSharingGroupId String
    Credential Sharing Group to which this form-fill application belongs.
    formFillUrlMatches List<Property Map>
    A list of application-formURLs that FormFill should match against any formUrl that the user-specifies when signing in to the target service. Each item in the list also indicates how FormFill should interpret that formUrl.
    formType String
    Type of the FormFill application like WebApplication, MainFrameApplication, WindowsApplication. Initially, we will support only WebApplication.
    revealPasswordOnForm Boolean
    If true, indicates that system is allowed to show the password in plain-text for this account after re-authentication.
    syncFromTemplate Boolean
    If true, indicates that each of the Form-Fill-related attributes that can be inherited from the template actually will be inherited from the template. If false, indicates that the AppTemplate disabled inheritance for these Form-Fill-related attributes.
    userNameFormExpression String
    Indicates the custom expression, which can combine concat and substring operations with literals and with any attribute of the Oracle Identity Cloud Service User
    userNameFormTemplate String
    Format for generating a username. This value can be Username or Email Address; any other value will be treated as a custom expression. A custom expression may combine 'concat' and 'substring' operations with literals and with any attribute of the Oracle Identity Cloud Service user.

    GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionformFillAppAppFormFillUrlMatch

    FormUrl string
    An application formUrl that FormFill will match against any formUrl that a User enters in trying to access the target-service which this App represents.
    FormUrlMatchType string
    Indicates how to interpret the value of 'formUrl' when matching against a user-specified formUrl. The system currently supports only 'Exact', which indicates that the value of 'formUrl' should be treated as a literal value.
    FormUrl string
    An application formUrl that FormFill will match against any formUrl that a User enters in trying to access the target-service which this App represents.
    FormUrlMatchType string
    Indicates how to interpret the value of 'formUrl' when matching against a user-specified formUrl. The system currently supports only 'Exact', which indicates that the value of 'formUrl' should be treated as a literal value.
    formUrl String
    An application formUrl that FormFill will match against any formUrl that a User enters in trying to access the target-service which this App represents.
    formUrlMatchType String
    Indicates how to interpret the value of 'formUrl' when matching against a user-specified formUrl. The system currently supports only 'Exact', which indicates that the value of 'formUrl' should be treated as a literal value.
    formUrl string
    An application formUrl that FormFill will match against any formUrl that a User enters in trying to access the target-service which this App represents.
    formUrlMatchType string
    Indicates how to interpret the value of 'formUrl' when matching against a user-specified formUrl. The system currently supports only 'Exact', which indicates that the value of 'formUrl' should be treated as a literal value.
    form_url str
    An application formUrl that FormFill will match against any formUrl that a User enters in trying to access the target-service which this App represents.
    form_url_match_type str
    Indicates how to interpret the value of 'formUrl' when matching against a user-specified formUrl. The system currently supports only 'Exact', which indicates that the value of 'formUrl' should be treated as a literal value.
    formUrl String
    An application formUrl that FormFill will match against any formUrl that a User enters in trying to access the target-service which this App represents.
    formUrlMatchType String
    Indicates how to interpret the value of 'formUrl' when matching against a user-specified formUrl. The system currently supports only 'Exact', which indicates that the value of 'formUrl' should be treated as a literal value.

    GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionformFillAppTemplateAppTemplate

    Configuration string
    FormFill Application Configuration CLOB which has to be maintained in Form-Fill APP for legacy code to do Form-Fill injection
    FormCredMethod string
    Indicates how FormFill obtains the username and password of the account that FormFill will use to sign into the target App.
    FormCredentialSharingGroupId string
    Credential Sharing Group to which this form-fill application belongs.
    FormFillUrlMatches List<GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionformFillAppTemplateAppTemplateFormFillUrlMatch>
    A list of application-formURLs that FormFill should match against any formUrl that the user-specifies when signing in to the target service. Each item in the list also indicates how FormFill should interpret that formUrl.
    FormType string
    Type of the FormFill application like WebApplication, MainFrameApplication, WindowsApplication. Initially, we will support only WebApplication.
    RevealPasswordOnForm bool
    If true, indicates that system is allowed to show the password in plain-text for this account after re-authentication.
    SyncFromTemplate bool
    If true, indicates that each of the Form-Fill-related attributes that can be inherited from the template actually will be inherited from the template. If false, indicates that the AppTemplate disabled inheritance for these Form-Fill-related attributes.
    UserNameFormExpression string
    Indicates the custom expression, which can combine concat and substring operations with literals and with any attribute of the Oracle Identity Cloud Service User
    UserNameFormTemplate string
    Format for generating a username. This value can be Username or Email Address; any other value will be treated as a custom expression. A custom expression may combine 'concat' and 'substring' operations with literals and with any attribute of the Oracle Identity Cloud Service user.
    Configuration string
    FormFill Application Configuration CLOB which has to be maintained in Form-Fill APP for legacy code to do Form-Fill injection
    FormCredMethod string
    Indicates how FormFill obtains the username and password of the account that FormFill will use to sign into the target App.
    FormCredentialSharingGroupId string
    Credential Sharing Group to which this form-fill application belongs.
    FormFillUrlMatches []GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionformFillAppTemplateAppTemplateFormFillUrlMatch
    A list of application-formURLs that FormFill should match against any formUrl that the user-specifies when signing in to the target service. Each item in the list also indicates how FormFill should interpret that formUrl.
    FormType string
    Type of the FormFill application like WebApplication, MainFrameApplication, WindowsApplication. Initially, we will support only WebApplication.
    RevealPasswordOnForm bool
    If true, indicates that system is allowed to show the password in plain-text for this account after re-authentication.
    SyncFromTemplate bool
    If true, indicates that each of the Form-Fill-related attributes that can be inherited from the template actually will be inherited from the template. If false, indicates that the AppTemplate disabled inheritance for these Form-Fill-related attributes.
    UserNameFormExpression string
    Indicates the custom expression, which can combine concat and substring operations with literals and with any attribute of the Oracle Identity Cloud Service User
    UserNameFormTemplate string
    Format for generating a username. This value can be Username or Email Address; any other value will be treated as a custom expression. A custom expression may combine 'concat' and 'substring' operations with literals and with any attribute of the Oracle Identity Cloud Service user.
    configuration String
    FormFill Application Configuration CLOB which has to be maintained in Form-Fill APP for legacy code to do Form-Fill injection
    formCredMethod String
    Indicates how FormFill obtains the username and password of the account that FormFill will use to sign into the target App.
    formCredentialSharingGroupId String
    Credential Sharing Group to which this form-fill application belongs.
    formFillUrlMatches List<GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionformFillAppTemplateAppTemplateFormFillUrlMatch>
    A list of application-formURLs that FormFill should match against any formUrl that the user-specifies when signing in to the target service. Each item in the list also indicates how FormFill should interpret that formUrl.
    formType String
    Type of the FormFill application like WebApplication, MainFrameApplication, WindowsApplication. Initially, we will support only WebApplication.
    revealPasswordOnForm Boolean
    If true, indicates that system is allowed to show the password in plain-text for this account after re-authentication.
    syncFromTemplate Boolean
    If true, indicates that each of the Form-Fill-related attributes that can be inherited from the template actually will be inherited from the template. If false, indicates that the AppTemplate disabled inheritance for these Form-Fill-related attributes.
    userNameFormExpression String
    Indicates the custom expression, which can combine concat and substring operations with literals and with any attribute of the Oracle Identity Cloud Service User
    userNameFormTemplate String
    Format for generating a username. This value can be Username or Email Address; any other value will be treated as a custom expression. A custom expression may combine 'concat' and 'substring' operations with literals and with any attribute of the Oracle Identity Cloud Service user.
    configuration string
    FormFill Application Configuration CLOB which has to be maintained in Form-Fill APP for legacy code to do Form-Fill injection
    formCredMethod string
    Indicates how FormFill obtains the username and password of the account that FormFill will use to sign into the target App.
    formCredentialSharingGroupId string
    Credential Sharing Group to which this form-fill application belongs.
    formFillUrlMatches GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionformFillAppTemplateAppTemplateFormFillUrlMatch[]
    A list of application-formURLs that FormFill should match against any formUrl that the user-specifies when signing in to the target service. Each item in the list also indicates how FormFill should interpret that formUrl.
    formType string
    Type of the FormFill application like WebApplication, MainFrameApplication, WindowsApplication. Initially, we will support only WebApplication.
    revealPasswordOnForm boolean
    If true, indicates that system is allowed to show the password in plain-text for this account after re-authentication.
    syncFromTemplate boolean
    If true, indicates that each of the Form-Fill-related attributes that can be inherited from the template actually will be inherited from the template. If false, indicates that the AppTemplate disabled inheritance for these Form-Fill-related attributes.
    userNameFormExpression string
    Indicates the custom expression, which can combine concat and substring operations with literals and with any attribute of the Oracle Identity Cloud Service User
    userNameFormTemplate string
    Format for generating a username. This value can be Username or Email Address; any other value will be treated as a custom expression. A custom expression may combine 'concat' and 'substring' operations with literals and with any attribute of the Oracle Identity Cloud Service user.
    configuration str
    FormFill Application Configuration CLOB which has to be maintained in Form-Fill APP for legacy code to do Form-Fill injection
    form_cred_method str
    Indicates how FormFill obtains the username and password of the account that FormFill will use to sign into the target App.
    form_credential_sharing_group_id str
    Credential Sharing Group to which this form-fill application belongs.
    form_fill_url_matches Sequence[identity.GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionformFillAppTemplateAppTemplateFormFillUrlMatch]
    A list of application-formURLs that FormFill should match against any formUrl that the user-specifies when signing in to the target service. Each item in the list also indicates how FormFill should interpret that formUrl.
    form_type str
    Type of the FormFill application like WebApplication, MainFrameApplication, WindowsApplication. Initially, we will support only WebApplication.
    reveal_password_on_form bool
    If true, indicates that system is allowed to show the password in plain-text for this account after re-authentication.
    sync_from_template bool
    If true, indicates that each of the Form-Fill-related attributes that can be inherited from the template actually will be inherited from the template. If false, indicates that the AppTemplate disabled inheritance for these Form-Fill-related attributes.
    user_name_form_expression str
    Indicates the custom expression, which can combine concat and substring operations with literals and with any attribute of the Oracle Identity Cloud Service User
    user_name_form_template str
    Format for generating a username. This value can be Username or Email Address; any other value will be treated as a custom expression. A custom expression may combine 'concat' and 'substring' operations with literals and with any attribute of the Oracle Identity Cloud Service user.
    configuration String
    FormFill Application Configuration CLOB which has to be maintained in Form-Fill APP for legacy code to do Form-Fill injection
    formCredMethod String
    Indicates how FormFill obtains the username and password of the account that FormFill will use to sign into the target App.
    formCredentialSharingGroupId String
    Credential Sharing Group to which this form-fill application belongs.
    formFillUrlMatches List<Property Map>
    A list of application-formURLs that FormFill should match against any formUrl that the user-specifies when signing in to the target service. Each item in the list also indicates how FormFill should interpret that formUrl.
    formType String
    Type of the FormFill application like WebApplication, MainFrameApplication, WindowsApplication. Initially, we will support only WebApplication.
    revealPasswordOnForm Boolean
    If true, indicates that system is allowed to show the password in plain-text for this account after re-authentication.
    syncFromTemplate Boolean
    If true, indicates that each of the Form-Fill-related attributes that can be inherited from the template actually will be inherited from the template. If false, indicates that the AppTemplate disabled inheritance for these Form-Fill-related attributes.
    userNameFormExpression String
    Indicates the custom expression, which can combine concat and substring operations with literals and with any attribute of the Oracle Identity Cloud Service User
    userNameFormTemplate String
    Format for generating a username. This value can be Username or Email Address; any other value will be treated as a custom expression. A custom expression may combine 'concat' and 'substring' operations with literals and with any attribute of the Oracle Identity Cloud Service user.

    GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionformFillAppTemplateAppTemplateFormFillUrlMatch

    FormUrl string
    An application formUrl that FormFill will match against any formUrl that a User enters in trying to access the target-service which this App represents.
    FormUrlMatchType string
    Indicates how to interpret the value of 'formUrl' when matching against a user-specified formUrl. The system currently supports only 'Exact', which indicates that the value of 'formUrl' should be treated as a literal value.
    FormUrl string
    An application formUrl that FormFill will match against any formUrl that a User enters in trying to access the target-service which this App represents.
    FormUrlMatchType string
    Indicates how to interpret the value of 'formUrl' when matching against a user-specified formUrl. The system currently supports only 'Exact', which indicates that the value of 'formUrl' should be treated as a literal value.
    formUrl String
    An application formUrl that FormFill will match against any formUrl that a User enters in trying to access the target-service which this App represents.
    formUrlMatchType String
    Indicates how to interpret the value of 'formUrl' when matching against a user-specified formUrl. The system currently supports only 'Exact', which indicates that the value of 'formUrl' should be treated as a literal value.
    formUrl string
    An application formUrl that FormFill will match against any formUrl that a User enters in trying to access the target-service which this App represents.
    formUrlMatchType string
    Indicates how to interpret the value of 'formUrl' when matching against a user-specified formUrl. The system currently supports only 'Exact', which indicates that the value of 'formUrl' should be treated as a literal value.
    form_url str
    An application formUrl that FormFill will match against any formUrl that a User enters in trying to access the target-service which this App represents.
    form_url_match_type str
    Indicates how to interpret the value of 'formUrl' when matching against a user-specified formUrl. The system currently supports only 'Exact', which indicates that the value of 'formUrl' should be treated as a literal value.
    formUrl String
    An application formUrl that FormFill will match against any formUrl that a User enters in trying to access the target-service which this App represents.
    formUrlMatchType String
    Indicates how to interpret the value of 'formUrl' when matching against a user-specified formUrl. The system currently supports only 'Exact', which indicates that the value of 'formUrl' should be treated as a literal value.

    GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionkerberosRealmApp

    DefaultEncryptionSaltType string
    The type of salt that the system will use to encrypt Kerberos-specific artifacts of this App unless another type of salt is specified.
    MasterKey string
    The primary key that the system should use to encrypt artifacts that are specific to this Kerberos realm -- for example, to encrypt the Principal Key in each KerberosRealmUser.
    MaxRenewableAge int
    Max Renewable Age in seconds
    MaxTicketLife int
    Max Ticket Life in seconds
    RealmName string
    The name of the Kerberos Realm that this App uses for authentication.
    SupportedEncryptionSaltTypes List<string>
    The types of salt that are available for the system to use when encrypting Kerberos-specific artifacts for this App.
    TicketFlags int
    Ticket Flags
    DefaultEncryptionSaltType string
    The type of salt that the system will use to encrypt Kerberos-specific artifacts of this App unless another type of salt is specified.
    MasterKey string
    The primary key that the system should use to encrypt artifacts that are specific to this Kerberos realm -- for example, to encrypt the Principal Key in each KerberosRealmUser.
    MaxRenewableAge int
    Max Renewable Age in seconds
    MaxTicketLife int
    Max Ticket Life in seconds
    RealmName string
    The name of the Kerberos Realm that this App uses for authentication.
    SupportedEncryptionSaltTypes []string
    The types of salt that are available for the system to use when encrypting Kerberos-specific artifacts for this App.
    TicketFlags int
    Ticket Flags
    defaultEncryptionSaltType String
    The type of salt that the system will use to encrypt Kerberos-specific artifacts of this App unless another type of salt is specified.
    masterKey String
    The primary key that the system should use to encrypt artifacts that are specific to this Kerberos realm -- for example, to encrypt the Principal Key in each KerberosRealmUser.
    maxRenewableAge Integer
    Max Renewable Age in seconds
    maxTicketLife Integer
    Max Ticket Life in seconds
    realmName String
    The name of the Kerberos Realm that this App uses for authentication.
    supportedEncryptionSaltTypes List<String>
    The types of salt that are available for the system to use when encrypting Kerberos-specific artifacts for this App.
    ticketFlags Integer
    Ticket Flags
    defaultEncryptionSaltType string
    The type of salt that the system will use to encrypt Kerberos-specific artifacts of this App unless another type of salt is specified.
    masterKey string
    The primary key that the system should use to encrypt artifacts that are specific to this Kerberos realm -- for example, to encrypt the Principal Key in each KerberosRealmUser.
    maxRenewableAge number
    Max Renewable Age in seconds
    maxTicketLife number
    Max Ticket Life in seconds
    realmName string
    The name of the Kerberos Realm that this App uses for authentication.
    supportedEncryptionSaltTypes string[]
    The types of salt that are available for the system to use when encrypting Kerberos-specific artifacts for this App.
    ticketFlags number
    Ticket Flags
    default_encryption_salt_type str
    The type of salt that the system will use to encrypt Kerberos-specific artifacts of this App unless another type of salt is specified.
    master_key str
    The primary key that the system should use to encrypt artifacts that are specific to this Kerberos realm -- for example, to encrypt the Principal Key in each KerberosRealmUser.
    max_renewable_age int
    Max Renewable Age in seconds
    max_ticket_life int
    Max Ticket Life in seconds
    realm_name str
    The name of the Kerberos Realm that this App uses for authentication.
    supported_encryption_salt_types Sequence[str]
    The types of salt that are available for the system to use when encrypting Kerberos-specific artifacts for this App.
    ticket_flags int
    Ticket Flags
    defaultEncryptionSaltType String
    The type of salt that the system will use to encrypt Kerberos-specific artifacts of this App unless another type of salt is specified.
    masterKey String
    The primary key that the system should use to encrypt artifacts that are specific to this Kerberos realm -- for example, to encrypt the Principal Key in each KerberosRealmUser.
    maxRenewableAge Number
    Max Renewable Age in seconds
    maxTicketLife Number
    Max Ticket Life in seconds
    realmName String
    The name of the Kerberos Realm that this App uses for authentication.
    supportedEncryptionSaltTypes List<String>
    The types of salt that are available for the system to use when encrypting Kerberos-specific artifacts for this App.
    ticketFlags Number
    Ticket Flags

    GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappApp

    AccountFormVisible bool
    If true, then the account form will be displayed in the Oracle Identity Cloud Service UI to interactively create or update an account for this App. If a value is not specified for this attribute, a default value of "false" will be assumed as the value for this attribute.
    AdminConsentGranted bool
    If true, admin has granted consent to perform managed app run-time operations.
    BundleConfigurationProperties List<GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppBundleConfigurationProperty>
    ConnectorBundle configuration properties
    BundlePoolConfigurations List<GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppBundlePoolConfiguration>
    Configurable options maintaining a pool of ICF connector instances. Values for sub attributes can be set only if the ConnectorBundle referenced in the App has connectorPoolingSupported set to true
    CanBeAuthoritative bool
    If true, the managed app can be authoritative.
    Connected bool
    If true, the accounts of the application are managed through an ICF connector bundle
    ConnectorBundles List<GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppConnectorBundle>
    ConnectorBundle
    EnableAuthSyncNewUserNotification bool
    If true, send activation email to new users created from authoritative sync.
    EnableSync bool
    If true, sync run-time operations are enabled for this App.
    EnableSyncSummaryReportNotification bool
    If true, send sync summary as notification upon job completion.
    FlatFileBundleConfigurationProperties List<GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppFlatFileBundleConfigurationProperty>
    Flat file connector bundle configuration properties
    FlatFileConnectorBundles List<GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppFlatFileConnectorBundle>
    Flat file connector bundle to sync from a flat file.
    IdentityBridges List<GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppIdentityBridge>
    IdentityBridges associated with this App
    IsAuthoritative bool
    If true, sync from the managed app will be performed as authoritative sync.
    IsDirectory bool
    If true, the managed app is a directory.
    IsOnPremiseApp bool
    If true, the managed app is an On-Premise app.
    IsSchemaCustomizationSupported bool
    If true, the managed app supports schema customization.
    IsSchemaDiscoverySupported bool
    If true, the managed app supports schema discovery.
    IsThreeLeggedOauthEnabled bool
    If true, the managed app requires 3-legged OAuth for authorization.
    IsTwoLeggedOauthEnabled bool
    If true, indicates that Oracle Identity Cloud Service can use two-legged OAuth to connect to this ManagedApp.
    ObjectClasses List<GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppObjectClass>
    Object classes
    SyncConfigLastModified string
    The most recent DateTime that the configuration of this App was updated. AppServices updates this timestamp whenever AppServices updates an App's configuration with respect to synchronization.
    ThreeLeggedOauthCredentials List<GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppThreeLeggedOauthCredential>
    The value of this attribute persists any OAuth access token that the system uses to connect to this ManagedApp. The system obtains this access token using an OAuth protocol flow that could be two-legged or three-legged. A two-legged flow involves only the requester and the server. A three-legged flow also requires the consent of a user -- in this case the consent of an administrator.
    ThreeLeggedOauthProviderName string
    Three legged OAuth provider name in Oracle Identity Cloud Service.
    AccountFormVisible bool
    If true, then the account form will be displayed in the Oracle Identity Cloud Service UI to interactively create or update an account for this App. If a value is not specified for this attribute, a default value of "false" will be assumed as the value for this attribute.
    AdminConsentGranted bool
    If true, admin has granted consent to perform managed app run-time operations.
    BundleConfigurationProperties []GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppBundleConfigurationProperty
    ConnectorBundle configuration properties
    BundlePoolConfigurations []GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppBundlePoolConfiguration
    Configurable options maintaining a pool of ICF connector instances. Values for sub attributes can be set only if the ConnectorBundle referenced in the App has connectorPoolingSupported set to true
    CanBeAuthoritative bool
    If true, the managed app can be authoritative.
    Connected bool
    If true, the accounts of the application are managed through an ICF connector bundle
    ConnectorBundles []GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppConnectorBundle
    ConnectorBundle
    EnableAuthSyncNewUserNotification bool
    If true, send activation email to new users created from authoritative sync.
    EnableSync bool
    If true, sync run-time operations are enabled for this App.
    EnableSyncSummaryReportNotification bool
    If true, send sync summary as notification upon job completion.
    FlatFileBundleConfigurationProperties []GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppFlatFileBundleConfigurationProperty
    Flat file connector bundle configuration properties
    FlatFileConnectorBundles []GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppFlatFileConnectorBundle
    Flat file connector bundle to sync from a flat file.
    IdentityBridges []GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppIdentityBridge
    IdentityBridges associated with this App
    IsAuthoritative bool
    If true, sync from the managed app will be performed as authoritative sync.
    IsDirectory bool
    If true, the managed app is a directory.
    IsOnPremiseApp bool
    If true, the managed app is an On-Premise app.
    IsSchemaCustomizationSupported bool
    If true, the managed app supports schema customization.
    IsSchemaDiscoverySupported bool
    If true, the managed app supports schema discovery.
    IsThreeLeggedOauthEnabled bool
    If true, the managed app requires 3-legged OAuth for authorization.
    IsTwoLeggedOauthEnabled bool
    If true, indicates that Oracle Identity Cloud Service can use two-legged OAuth to connect to this ManagedApp.
    ObjectClasses []GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppObjectClass
    Object classes
    SyncConfigLastModified string
    The most recent DateTime that the configuration of this App was updated. AppServices updates this timestamp whenever AppServices updates an App's configuration with respect to synchronization.
    ThreeLeggedOauthCredentials []GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppThreeLeggedOauthCredential
    The value of this attribute persists any OAuth access token that the system uses to connect to this ManagedApp. The system obtains this access token using an OAuth protocol flow that could be two-legged or three-legged. A two-legged flow involves only the requester and the server. A three-legged flow also requires the consent of a user -- in this case the consent of an administrator.
    ThreeLeggedOauthProviderName string
    Three legged OAuth provider name in Oracle Identity Cloud Service.
    accountFormVisible Boolean
    If true, then the account form will be displayed in the Oracle Identity Cloud Service UI to interactively create or update an account for this App. If a value is not specified for this attribute, a default value of "false" will be assumed as the value for this attribute.
    adminConsentGranted Boolean
    If true, admin has granted consent to perform managed app run-time operations.
    bundleConfigurationProperties List<GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppBundleConfigurationProperty>
    ConnectorBundle configuration properties
    bundlePoolConfigurations List<GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppBundlePoolConfiguration>
    Configurable options maintaining a pool of ICF connector instances. Values for sub attributes can be set only if the ConnectorBundle referenced in the App has connectorPoolingSupported set to true
    canBeAuthoritative Boolean
    If true, the managed app can be authoritative.
    connected Boolean
    If true, the accounts of the application are managed through an ICF connector bundle
    connectorBundles List<GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppConnectorBundle>
    ConnectorBundle
    enableAuthSyncNewUserNotification Boolean
    If true, send activation email to new users created from authoritative sync.
    enableSync Boolean
    If true, sync run-time operations are enabled for this App.
    enableSyncSummaryReportNotification Boolean
    If true, send sync summary as notification upon job completion.
    flatFileBundleConfigurationProperties List<GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppFlatFileBundleConfigurationProperty>
    Flat file connector bundle configuration properties
    flatFileConnectorBundles List<GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppFlatFileConnectorBundle>
    Flat file connector bundle to sync from a flat file.
    identityBridges List<GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppBridge>
    IdentityBridges associated with this App
    isAuthoritative Boolean
    If true, sync from the managed app will be performed as authoritative sync.
    isDirectory Boolean
    If true, the managed app is a directory.
    isOnPremiseApp Boolean
    If true, the managed app is an On-Premise app.
    isSchemaCustomizationSupported Boolean
    If true, the managed app supports schema customization.
    isSchemaDiscoverySupported Boolean
    If true, the managed app supports schema discovery.
    isThreeLeggedOauthEnabled Boolean
    If true, the managed app requires 3-legged OAuth for authorization.
    isTwoLeggedOauthEnabled Boolean
    If true, indicates that Oracle Identity Cloud Service can use two-legged OAuth to connect to this ManagedApp.
    objectClasses List<GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppObjectClass>
    Object classes
    syncConfigLastModified String
    The most recent DateTime that the configuration of this App was updated. AppServices updates this timestamp whenever AppServices updates an App's configuration with respect to synchronization.
    threeLeggedOauthCredentials List<GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppThreeLeggedOauthCredential>
    The value of this attribute persists any OAuth access token that the system uses to connect to this ManagedApp. The system obtains this access token using an OAuth protocol flow that could be two-legged or three-legged. A two-legged flow involves only the requester and the server. A three-legged flow also requires the consent of a user -- in this case the consent of an administrator.
    threeLeggedOauthProviderName String
    Three legged OAuth provider name in Oracle Identity Cloud Service.
    accountFormVisible boolean
    If true, then the account form will be displayed in the Oracle Identity Cloud Service UI to interactively create or update an account for this App. If a value is not specified for this attribute, a default value of "false" will be assumed as the value for this attribute.
    adminConsentGranted boolean
    If true, admin has granted consent to perform managed app run-time operations.
    bundleConfigurationProperties GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppBundleConfigurationProperty[]
    ConnectorBundle configuration properties
    bundlePoolConfigurations GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppBundlePoolConfiguration[]
    Configurable options maintaining a pool of ICF connector instances. Values for sub attributes can be set only if the ConnectorBundle referenced in the App has connectorPoolingSupported set to true
    canBeAuthoritative boolean
    If true, the managed app can be authoritative.
    connected boolean
    If true, the accounts of the application are managed through an ICF connector bundle
    connectorBundles GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppConnectorBundle[]
    ConnectorBundle
    enableAuthSyncNewUserNotification boolean
    If true, send activation email to new users created from authoritative sync.
    enableSync boolean
    If true, sync run-time operations are enabled for this App.
    enableSyncSummaryReportNotification boolean
    If true, send sync summary as notification upon job completion.
    flatFileBundleConfigurationProperties GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppFlatFileBundleConfigurationProperty[]
    Flat file connector bundle configuration properties
    flatFileConnectorBundles GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppFlatFileConnectorBundle[]
    Flat file connector bundle to sync from a flat file.
    identityBridges GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppIdentityBridge[]
    IdentityBridges associated with this App
    isAuthoritative boolean
    If true, sync from the managed app will be performed as authoritative sync.
    isDirectory boolean
    If true, the managed app is a directory.
    isOnPremiseApp boolean
    If true, the managed app is an On-Premise app.
    isSchemaCustomizationSupported boolean
    If true, the managed app supports schema customization.
    isSchemaDiscoverySupported boolean
    If true, the managed app supports schema discovery.
    isThreeLeggedOauthEnabled boolean
    If true, the managed app requires 3-legged OAuth for authorization.
    isTwoLeggedOauthEnabled boolean
    If true, indicates that Oracle Identity Cloud Service can use two-legged OAuth to connect to this ManagedApp.
    objectClasses GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppObjectClass[]
    Object classes
    syncConfigLastModified string
    The most recent DateTime that the configuration of this App was updated. AppServices updates this timestamp whenever AppServices updates an App's configuration with respect to synchronization.
    threeLeggedOauthCredentials GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppThreeLeggedOauthCredential[]
    The value of this attribute persists any OAuth access token that the system uses to connect to this ManagedApp. The system obtains this access token using an OAuth protocol flow that could be two-legged or three-legged. A two-legged flow involves only the requester and the server. A three-legged flow also requires the consent of a user -- in this case the consent of an administrator.
    threeLeggedOauthProviderName string
    Three legged OAuth provider name in Oracle Identity Cloud Service.
    account_form_visible bool
    If true, then the account form will be displayed in the Oracle Identity Cloud Service UI to interactively create or update an account for this App. If a value is not specified for this attribute, a default value of "false" will be assumed as the value for this attribute.
    admin_consent_granted bool
    If true, admin has granted consent to perform managed app run-time operations.
    bundle_configuration_properties Sequence[identity.GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppBundleConfigurationProperty]
    ConnectorBundle configuration properties
    bundle_pool_configurations Sequence[identity.GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppBundlePoolConfiguration]
    Configurable options maintaining a pool of ICF connector instances. Values for sub attributes can be set only if the ConnectorBundle referenced in the App has connectorPoolingSupported set to true
    can_be_authoritative bool
    If true, the managed app can be authoritative.
    connected bool
    If true, the accounts of the application are managed through an ICF connector bundle
    connector_bundles Sequence[identity.GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppConnectorBundle]
    ConnectorBundle
    enable_auth_sync_new_user_notification bool
    If true, send activation email to new users created from authoritative sync.
    enable_sync bool
    If true, sync run-time operations are enabled for this App.
    enable_sync_summary_report_notification bool
    If true, send sync summary as notification upon job completion.
    flat_file_bundle_configuration_properties Sequence[identity.GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppFlatFileBundleConfigurationProperty]
    Flat file connector bundle configuration properties
    flat_file_connector_bundles Sequence[identity.GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppFlatFileConnectorBundle]
    Flat file connector bundle to sync from a flat file.
    identity_bridges Sequence[identity.GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppIdentityBridge]
    IdentityBridges associated with this App
    is_authoritative bool
    If true, sync from the managed app will be performed as authoritative sync.
    is_directory bool
    If true, the managed app is a directory.
    is_on_premise_app bool
    If true, the managed app is an On-Premise app.
    is_schema_customization_supported bool
    If true, the managed app supports schema customization.
    is_schema_discovery_supported bool
    If true, the managed app supports schema discovery.
    is_three_legged_oauth_enabled bool
    If true, the managed app requires 3-legged OAuth for authorization.
    is_two_legged_oauth_enabled bool
    If true, indicates that Oracle Identity Cloud Service can use two-legged OAuth to connect to this ManagedApp.
    object_classes Sequence[identity.GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppObjectClass]
    Object classes
    sync_config_last_modified str
    The most recent DateTime that the configuration of this App was updated. AppServices updates this timestamp whenever AppServices updates an App's configuration with respect to synchronization.
    three_legged_oauth_credentials Sequence[identity.GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppThreeLeggedOauthCredential]
    The value of this attribute persists any OAuth access token that the system uses to connect to this ManagedApp. The system obtains this access token using an OAuth protocol flow that could be two-legged or three-legged. A two-legged flow involves only the requester and the server. A three-legged flow also requires the consent of a user -- in this case the consent of an administrator.
    three_legged_oauth_provider_name str
    Three legged OAuth provider name in Oracle Identity Cloud Service.
    accountFormVisible Boolean
    If true, then the account form will be displayed in the Oracle Identity Cloud Service UI to interactively create or update an account for this App. If a value is not specified for this attribute, a default value of "false" will be assumed as the value for this attribute.
    adminConsentGranted Boolean
    If true, admin has granted consent to perform managed app run-time operations.
    bundleConfigurationProperties List<Property Map>
    ConnectorBundle configuration properties
    bundlePoolConfigurations List<Property Map>
    Configurable options maintaining a pool of ICF connector instances. Values for sub attributes can be set only if the ConnectorBundle referenced in the App has connectorPoolingSupported set to true
    canBeAuthoritative Boolean
    If true, the managed app can be authoritative.
    connected Boolean
    If true, the accounts of the application are managed through an ICF connector bundle
    connectorBundles List<Property Map>
    ConnectorBundle
    enableAuthSyncNewUserNotification Boolean
    If true, send activation email to new users created from authoritative sync.
    enableSync Boolean
    If true, sync run-time operations are enabled for this App.
    enableSyncSummaryReportNotification Boolean
    If true, send sync summary as notification upon job completion.
    flatFileBundleConfigurationProperties List<Property Map>
    Flat file connector bundle configuration properties
    flatFileConnectorBundles List<Property Map>
    Flat file connector bundle to sync from a flat file.
    identityBridges List<Property Map>
    IdentityBridges associated with this App
    isAuthoritative Boolean
    If true, sync from the managed app will be performed as authoritative sync.
    isDirectory Boolean
    If true, the managed app is a directory.
    isOnPremiseApp Boolean
    If true, the managed app is an On-Premise app.
    isSchemaCustomizationSupported Boolean
    If true, the managed app supports schema customization.
    isSchemaDiscoverySupported Boolean
    If true, the managed app supports schema discovery.
    isThreeLeggedOauthEnabled Boolean
    If true, the managed app requires 3-legged OAuth for authorization.
    isTwoLeggedOauthEnabled Boolean
    If true, indicates that Oracle Identity Cloud Service can use two-legged OAuth to connect to this ManagedApp.
    objectClasses List<Property Map>
    Object classes
    syncConfigLastModified String
    The most recent DateTime that the configuration of this App was updated. AppServices updates this timestamp whenever AppServices updates an App's configuration with respect to synchronization.
    threeLeggedOauthCredentials List<Property Map>
    The value of this attribute persists any OAuth access token that the system uses to connect to this ManagedApp. The system obtains this access token using an OAuth protocol flow that could be two-legged or three-legged. A two-legged flow involves only the requester and the server. A three-legged flow also requires the consent of a user -- in this case the consent of an administrator.
    threeLeggedOauthProviderName String
    Three legged OAuth provider name in Oracle Identity Cloud Service.

    GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppBundleConfigurationProperty

    Confidential bool
    If true, this flatfile bundle configuration property value is confidential and will be encrypted in Oracle Identity Cloud Service. This attribute maps to "isConfidential" attribute in "ConfigurationProperty" in ICF.
    DisplayName string
    Display name of the flatfile bundle configuration property. This attribute maps to "displayName" attribute in "ConfigurationProperty" in ICF.
    HelpMessage string
    Help message of the flatfile bundle configuration property. This attribute maps to "helpMessage" attribute in "ConfigurationProperty" in ICF.
    IcfType string
    ICF data type of flatfile the bundle configuration property. This attribute maps to "type" attribute in "ConfigurationProperty" in ICF.
    Name string
    The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
    Order int
    Display sequence of the bundle configuration property.
    Required bool
    If true, this flatfile bundle configuration property is required to connect to the target connected managed app. This attribute maps to "isRequired" attribute in "ConfigurationProperty" in ICF.
    Values List<string>
    ID of the AppRole.
    Confidential bool
    If true, this flatfile bundle configuration property value is confidential and will be encrypted in Oracle Identity Cloud Service. This attribute maps to "isConfidential" attribute in "ConfigurationProperty" in ICF.
    DisplayName string
    Display name of the flatfile bundle configuration property. This attribute maps to "displayName" attribute in "ConfigurationProperty" in ICF.
    HelpMessage string
    Help message of the flatfile bundle configuration property. This attribute maps to "helpMessage" attribute in "ConfigurationProperty" in ICF.
    IcfType string
    ICF data type of flatfile the bundle configuration property. This attribute maps to "type" attribute in "ConfigurationProperty" in ICF.
    Name string
    The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
    Order int
    Display sequence of the bundle configuration property.
    Required bool
    If true, this flatfile bundle configuration property is required to connect to the target connected managed app. This attribute maps to "isRequired" attribute in "ConfigurationProperty" in ICF.
    Values []string
    ID of the AppRole.
    confidential Boolean
    If true, this flatfile bundle configuration property value is confidential and will be encrypted in Oracle Identity Cloud Service. This attribute maps to "isConfidential" attribute in "ConfigurationProperty" in ICF.
    displayName String
    Display name of the flatfile bundle configuration property. This attribute maps to "displayName" attribute in "ConfigurationProperty" in ICF.
    helpMessage String
    Help message of the flatfile bundle configuration property. This attribute maps to "helpMessage" attribute in "ConfigurationProperty" in ICF.
    icfType String
    ICF data type of flatfile the bundle configuration property. This attribute maps to "type" attribute in "ConfigurationProperty" in ICF.
    name String
    The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
    order Integer
    Display sequence of the bundle configuration property.
    required Boolean
    If true, this flatfile bundle configuration property is required to connect to the target connected managed app. This attribute maps to "isRequired" attribute in "ConfigurationProperty" in ICF.
    values List<String>
    ID of the AppRole.
    confidential boolean
    If true, this flatfile bundle configuration property value is confidential and will be encrypted in Oracle Identity Cloud Service. This attribute maps to "isConfidential" attribute in "ConfigurationProperty" in ICF.
    displayName string
    Display name of the flatfile bundle configuration property. This attribute maps to "displayName" attribute in "ConfigurationProperty" in ICF.
    helpMessage string
    Help message of the flatfile bundle configuration property. This attribute maps to "helpMessage" attribute in "ConfigurationProperty" in ICF.
    icfType string
    ICF data type of flatfile the bundle configuration property. This attribute maps to "type" attribute in "ConfigurationProperty" in ICF.
    name string
    The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
    order number
    Display sequence of the bundle configuration property.
    required boolean
    If true, this flatfile bundle configuration property is required to connect to the target connected managed app. This attribute maps to "isRequired" attribute in "ConfigurationProperty" in ICF.
    values string[]
    ID of the AppRole.
    confidential bool
    If true, this flatfile bundle configuration property value is confidential and will be encrypted in Oracle Identity Cloud Service. This attribute maps to "isConfidential" attribute in "ConfigurationProperty" in ICF.
    display_name str
    Display name of the flatfile bundle configuration property. This attribute maps to "displayName" attribute in "ConfigurationProperty" in ICF.
    help_message str
    Help message of the flatfile bundle configuration property. This attribute maps to "helpMessage" attribute in "ConfigurationProperty" in ICF.
    icf_type str
    ICF data type of flatfile the bundle configuration property. This attribute maps to "type" attribute in "ConfigurationProperty" in ICF.
    name str
    The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
    order int
    Display sequence of the bundle configuration property.
    required bool
    If true, this flatfile bundle configuration property is required to connect to the target connected managed app. This attribute maps to "isRequired" attribute in "ConfigurationProperty" in ICF.
    values Sequence[str]
    ID of the AppRole.
    confidential Boolean
    If true, this flatfile bundle configuration property value is confidential and will be encrypted in Oracle Identity Cloud Service. This attribute maps to "isConfidential" attribute in "ConfigurationProperty" in ICF.
    displayName String
    Display name of the flatfile bundle configuration property. This attribute maps to "displayName" attribute in "ConfigurationProperty" in ICF.
    helpMessage String
    Help message of the flatfile bundle configuration property. This attribute maps to "helpMessage" attribute in "ConfigurationProperty" in ICF.
    icfType String
    ICF data type of flatfile the bundle configuration property. This attribute maps to "type" attribute in "ConfigurationProperty" in ICF.
    name String
    The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
    order Number
    Display sequence of the bundle configuration property.
    required Boolean
    If true, this flatfile bundle configuration property is required to connect to the target connected managed app. This attribute maps to "isRequired" attribute in "ConfigurationProperty" in ICF.
    values List<String>
    ID of the AppRole.

    GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppBundlePoolConfiguration

    MaxIdle int
    Maximum number of connector instances in the pool that are idle and active.
    MaxObjects int
    Maximum number of connector instances in the pool that are idle and active.
    MaxWait int
    Maximum time (in milliseconds) to wait for a free connector instance to become available before failing.
    MinEvictableIdleTimeMillis int
    Minimum time (in milliseconds) to wait before evicting an idle conenctor instance from the pool.
    MinIdle int
    Minimum number of idle connector instances in the pool.
    MaxIdle int
    Maximum number of connector instances in the pool that are idle and active.
    MaxObjects int
    Maximum number of connector instances in the pool that are idle and active.
    MaxWait int
    Maximum time (in milliseconds) to wait for a free connector instance to become available before failing.
    MinEvictableIdleTimeMillis int
    Minimum time (in milliseconds) to wait before evicting an idle conenctor instance from the pool.
    MinIdle int
    Minimum number of idle connector instances in the pool.
    maxIdle Integer
    Maximum number of connector instances in the pool that are idle and active.
    maxObjects Integer
    Maximum number of connector instances in the pool that are idle and active.
    maxWait Integer
    Maximum time (in milliseconds) to wait for a free connector instance to become available before failing.
    minEvictableIdleTimeMillis Integer
    Minimum time (in milliseconds) to wait before evicting an idle conenctor instance from the pool.
    minIdle Integer
    Minimum number of idle connector instances in the pool.
    maxIdle number
    Maximum number of connector instances in the pool that are idle and active.
    maxObjects number
    Maximum number of connector instances in the pool that are idle and active.
    maxWait number
    Maximum time (in milliseconds) to wait for a free connector instance to become available before failing.
    minEvictableIdleTimeMillis number
    Minimum time (in milliseconds) to wait before evicting an idle conenctor instance from the pool.
    minIdle number
    Minimum number of idle connector instances in the pool.
    max_idle int
    Maximum number of connector instances in the pool that are idle and active.
    max_objects int
    Maximum number of connector instances in the pool that are idle and active.
    max_wait int
    Maximum time (in milliseconds) to wait for a free connector instance to become available before failing.
    min_evictable_idle_time_millis int
    Minimum time (in milliseconds) to wait before evicting an idle conenctor instance from the pool.
    min_idle int
    Minimum number of idle connector instances in the pool.
    maxIdle Number
    Maximum number of connector instances in the pool that are idle and active.
    maxObjects Number
    Maximum number of connector instances in the pool that are idle and active.
    maxWait Number
    Maximum time (in milliseconds) to wait for a free connector instance to become available before failing.
    minEvictableIdleTimeMillis Number
    Minimum time (in milliseconds) to wait before evicting an idle conenctor instance from the pool.
    minIdle Number
    Minimum number of idle connector instances in the pool.

    GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppConnectorBundle

    Display string
    Display-name of the AppRole.
    Ref string
    URI of the AppRole.
    Type string
    Object Class type. Allowed values are AccountObjectClass, ManagedObjectClass.
    Value string
    ID of the AppRole.
    WellKnownId string
    Unique well-known identifier used to reference connector bundle.
    Display string
    Display-name of the AppRole.
    Ref string
    URI of the AppRole.
    Type string
    Object Class type. Allowed values are AccountObjectClass, ManagedObjectClass.
    Value string
    ID of the AppRole.
    WellKnownId string
    Unique well-known identifier used to reference connector bundle.
    display String
    Display-name of the AppRole.
    ref String
    URI of the AppRole.
    type String
    Object Class type. Allowed values are AccountObjectClass, ManagedObjectClass.
    value String
    ID of the AppRole.
    wellKnownId String
    Unique well-known identifier used to reference connector bundle.
    display string
    Display-name of the AppRole.
    ref string
    URI of the AppRole.
    type string
    Object Class type. Allowed values are AccountObjectClass, ManagedObjectClass.
    value string
    ID of the AppRole.
    wellKnownId string
    Unique well-known identifier used to reference connector bundle.
    display str
    Display-name of the AppRole.
    ref str
    URI of the AppRole.
    type str
    Object Class type. Allowed values are AccountObjectClass, ManagedObjectClass.
    value str
    ID of the AppRole.
    well_known_id str
    Unique well-known identifier used to reference connector bundle.
    display String
    Display-name of the AppRole.
    ref String
    URI of the AppRole.
    type String
    Object Class type. Allowed values are AccountObjectClass, ManagedObjectClass.
    value String
    ID of the AppRole.
    wellKnownId String
    Unique well-known identifier used to reference connector bundle.

    GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppFlatFileBundleConfigurationProperty

    Confidential bool
    If true, this flatfile bundle configuration property value is confidential and will be encrypted in Oracle Identity Cloud Service. This attribute maps to "isConfidential" attribute in "ConfigurationProperty" in ICF.
    DisplayName string
    Display name of the flatfile bundle configuration property. This attribute maps to "displayName" attribute in "ConfigurationProperty" in ICF.
    HelpMessage string
    Help message of the flatfile bundle configuration property. This attribute maps to "helpMessage" attribute in "ConfigurationProperty" in ICF.
    IcfType string
    ICF data type of flatfile the bundle configuration property. This attribute maps to "type" attribute in "ConfigurationProperty" in ICF.
    Name string
    The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
    Order int
    Display sequence of the bundle configuration property.
    Required bool
    If true, this flatfile bundle configuration property is required to connect to the target connected managed app. This attribute maps to "isRequired" attribute in "ConfigurationProperty" in ICF.
    Values List<string>
    ID of the AppRole.
    Confidential bool
    If true, this flatfile bundle configuration property value is confidential and will be encrypted in Oracle Identity Cloud Service. This attribute maps to "isConfidential" attribute in "ConfigurationProperty" in ICF.
    DisplayName string
    Display name of the flatfile bundle configuration property. This attribute maps to "displayName" attribute in "ConfigurationProperty" in ICF.
    HelpMessage string
    Help message of the flatfile bundle configuration property. This attribute maps to "helpMessage" attribute in "ConfigurationProperty" in ICF.
    IcfType string
    ICF data type of flatfile the bundle configuration property. This attribute maps to "type" attribute in "ConfigurationProperty" in ICF.
    Name string
    The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
    Order int
    Display sequence of the bundle configuration property.
    Required bool
    If true, this flatfile bundle configuration property is required to connect to the target connected managed app. This attribute maps to "isRequired" attribute in "ConfigurationProperty" in ICF.
    Values []string
    ID of the AppRole.
    confidential Boolean
    If true, this flatfile bundle configuration property value is confidential and will be encrypted in Oracle Identity Cloud Service. This attribute maps to "isConfidential" attribute in "ConfigurationProperty" in ICF.
    displayName String
    Display name of the flatfile bundle configuration property. This attribute maps to "displayName" attribute in "ConfigurationProperty" in ICF.
    helpMessage String
    Help message of the flatfile bundle configuration property. This attribute maps to "helpMessage" attribute in "ConfigurationProperty" in ICF.
    icfType String
    ICF data type of flatfile the bundle configuration property. This attribute maps to "type" attribute in "ConfigurationProperty" in ICF.
    name String
    The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
    order Integer
    Display sequence of the bundle configuration property.
    required Boolean
    If true, this flatfile bundle configuration property is required to connect to the target connected managed app. This attribute maps to "isRequired" attribute in "ConfigurationProperty" in ICF.
    values List<String>
    ID of the AppRole.
    confidential boolean
    If true, this flatfile bundle configuration property value is confidential and will be encrypted in Oracle Identity Cloud Service. This attribute maps to "isConfidential" attribute in "ConfigurationProperty" in ICF.
    displayName string
    Display name of the flatfile bundle configuration property. This attribute maps to "displayName" attribute in "ConfigurationProperty" in ICF.
    helpMessage string
    Help message of the flatfile bundle configuration property. This attribute maps to "helpMessage" attribute in "ConfigurationProperty" in ICF.
    icfType string
    ICF data type of flatfile the bundle configuration property. This attribute maps to "type" attribute in "ConfigurationProperty" in ICF.
    name string
    The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
    order number
    Display sequence of the bundle configuration property.
    required boolean
    If true, this flatfile bundle configuration property is required to connect to the target connected managed app. This attribute maps to "isRequired" attribute in "ConfigurationProperty" in ICF.
    values string[]
    ID of the AppRole.
    confidential bool
    If true, this flatfile bundle configuration property value is confidential and will be encrypted in Oracle Identity Cloud Service. This attribute maps to "isConfidential" attribute in "ConfigurationProperty" in ICF.
    display_name str
    Display name of the flatfile bundle configuration property. This attribute maps to "displayName" attribute in "ConfigurationProperty" in ICF.
    help_message str
    Help message of the flatfile bundle configuration property. This attribute maps to "helpMessage" attribute in "ConfigurationProperty" in ICF.
    icf_type str
    ICF data type of flatfile the bundle configuration property. This attribute maps to "type" attribute in "ConfigurationProperty" in ICF.
    name str
    The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
    order int
    Display sequence of the bundle configuration property.
    required bool
    If true, this flatfile bundle configuration property is required to connect to the target connected managed app. This attribute maps to "isRequired" attribute in "ConfigurationProperty" in ICF.
    values Sequence[str]
    ID of the AppRole.
    confidential Boolean
    If true, this flatfile bundle configuration property value is confidential and will be encrypted in Oracle Identity Cloud Service. This attribute maps to "isConfidential" attribute in "ConfigurationProperty" in ICF.
    displayName String
    Display name of the flatfile bundle configuration property. This attribute maps to "displayName" attribute in "ConfigurationProperty" in ICF.
    helpMessage String
    Help message of the flatfile bundle configuration property. This attribute maps to "helpMessage" attribute in "ConfigurationProperty" in ICF.
    icfType String
    ICF data type of flatfile the bundle configuration property. This attribute maps to "type" attribute in "ConfigurationProperty" in ICF.
    name String
    The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
    order Number
    Display sequence of the bundle configuration property.
    required Boolean
    If true, this flatfile bundle configuration property is required to connect to the target connected managed app. This attribute maps to "isRequired" attribute in "ConfigurationProperty" in ICF.
    values List<String>
    ID of the AppRole.

    GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppFlatFileConnectorBundle

    Display string
    Display-name of the AppRole.
    Ref string
    URI of the AppRole.
    Value string
    ID of the AppRole.
    WellKnownId string
    Unique well-known identifier used to reference connector bundle.
    Display string
    Display-name of the AppRole.
    Ref string
    URI of the AppRole.
    Value string
    ID of the AppRole.
    WellKnownId string
    Unique well-known identifier used to reference connector bundle.
    display String
    Display-name of the AppRole.
    ref String
    URI of the AppRole.
    value String
    ID of the AppRole.
    wellKnownId String
    Unique well-known identifier used to reference connector bundle.
    display string
    Display-name of the AppRole.
    ref string
    URI of the AppRole.
    value string
    ID of the AppRole.
    wellKnownId string
    Unique well-known identifier used to reference connector bundle.
    display str
    Display-name of the AppRole.
    ref str
    URI of the AppRole.
    value str
    ID of the AppRole.
    well_known_id str
    Unique well-known identifier used to reference connector bundle.
    display String
    Display-name of the AppRole.
    ref String
    URI of the AppRole.
    value String
    ID of the AppRole.
    wellKnownId String
    Unique well-known identifier used to reference connector bundle.

    GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppIdentityBridge

    Name string
    The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
    Ref string
    URI of the AppRole.
    Value string
    ID of the AppRole.
    Name string
    The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
    Ref string
    URI of the AppRole.
    Value string
    ID of the AppRole.
    name String
    The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
    ref String
    URI of the AppRole.
    value String
    ID of the AppRole.
    name string
    The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
    ref string
    URI of the AppRole.
    value string
    ID of the AppRole.
    name str
    The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
    ref str
    URI of the AppRole.
    value str
    ID of the AppRole.
    name String
    The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
    ref String
    URI of the AppRole.
    value String
    ID of the AppRole.

    GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppObjectClass

    Display string
    Display-name of the AppRole.
    IsAccountObjectClass bool
    If true, the object class represents an account. The isAccountObjectClass attribute value 'true' MUST appear no more than once.
    Ref string
    URI of the AppRole.
    ResourceType string
    Object class resource type
    Type string
    Object Class type. Allowed values are AccountObjectClass, ManagedObjectClass.
    Value string
    ID of the AppRole.
    Display string
    Display-name of the AppRole.
    IsAccountObjectClass bool
    If true, the object class represents an account. The isAccountObjectClass attribute value 'true' MUST appear no more than once.
    Ref string
    URI of the AppRole.
    ResourceType string
    Object class resource type
    Type string
    Object Class type. Allowed values are AccountObjectClass, ManagedObjectClass.
    Value string
    ID of the AppRole.
    display String
    Display-name of the AppRole.
    isAccountObjectClass Boolean
    If true, the object class represents an account. The isAccountObjectClass attribute value 'true' MUST appear no more than once.
    ref String
    URI of the AppRole.
    resourceType String
    Object class resource type
    type String
    Object Class type. Allowed values are AccountObjectClass, ManagedObjectClass.
    value String
    ID of the AppRole.
    display string
    Display-name of the AppRole.
    isAccountObjectClass boolean
    If true, the object class represents an account. The isAccountObjectClass attribute value 'true' MUST appear no more than once.
    ref string
    URI of the AppRole.
    resourceType string
    Object class resource type
    type string
    Object Class type. Allowed values are AccountObjectClass, ManagedObjectClass.
    value string
    ID of the AppRole.
    display str
    Display-name of the AppRole.
    is_account_object_class bool
    If true, the object class represents an account. The isAccountObjectClass attribute value 'true' MUST appear no more than once.
    ref str
    URI of the AppRole.
    resource_type str
    Object class resource type
    type str
    Object Class type. Allowed values are AccountObjectClass, ManagedObjectClass.
    value str
    ID of the AppRole.
    display String
    Display-name of the AppRole.
    isAccountObjectClass Boolean
    If true, the object class represents an account. The isAccountObjectClass attribute value 'true' MUST appear no more than once.
    ref String
    URI of the AppRole.
    resourceType String
    Object class resource type
    type String
    Object Class type. Allowed values are AccountObjectClass, ManagedObjectClass.
    value String
    ID of the AppRole.

    GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppThreeLeggedOauthCredential

    AccessToken string
    Access Token
    AccessTokenExpiry string
    Access token expiry
    RefreshToken string
    Refresh Token
    AccessToken string
    Access Token
    AccessTokenExpiry string
    Access token expiry
    RefreshToken string
    Refresh Token
    accessToken String
    Access Token
    accessTokenExpiry String
    Access token expiry
    refreshToken String
    Refresh Token
    accessToken string
    Access Token
    accessTokenExpiry string
    Access token expiry
    refreshToken string
    Refresh Token
    access_token str
    Access Token
    access_token_expiry str
    Access token expiry
    refresh_token str
    Refresh Token
    accessToken String
    Access Token
    accessTokenExpiry String
    Access token expiry
    refreshToken String
    Refresh Token

    GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionmulticloudServiceAppApp

    MulticloudPlatformUrl string
    The multicloud platform service URL which the application will invoke for runtime operations such as AWSCredentials api invocation
    MulticloudServiceType string
    Specifies the service type for which the application is configured for multicloud integration. For applicable external service types, app will invoke multicloud service for runtime operations
    MulticloudPlatformUrl string
    The multicloud platform service URL which the application will invoke for runtime operations such as AWSCredentials api invocation
    MulticloudServiceType string
    Specifies the service type for which the application is configured for multicloud integration. For applicable external service types, app will invoke multicloud service for runtime operations
    multicloudPlatformUrl String
    The multicloud platform service URL which the application will invoke for runtime operations such as AWSCredentials api invocation
    multicloudServiceType String
    Specifies the service type for which the application is configured for multicloud integration. For applicable external service types, app will invoke multicloud service for runtime operations
    multicloudPlatformUrl string
    The multicloud platform service URL which the application will invoke for runtime operations such as AWSCredentials api invocation
    multicloudServiceType string
    Specifies the service type for which the application is configured for multicloud integration. For applicable external service types, app will invoke multicloud service for runtime operations
    multicloud_platform_url str
    The multicloud platform service URL which the application will invoke for runtime operations such as AWSCredentials api invocation
    multicloud_service_type str
    Specifies the service type for which the application is configured for multicloud integration. For applicable external service types, app will invoke multicloud service for runtime operations
    multicloudPlatformUrl String
    The multicloud platform service URL which the application will invoke for runtime operations such as AWSCredentials api invocation
    multicloudServiceType String
    Specifies the service type for which the application is configured for multicloud integration. For applicable external service types, app will invoke multicloud service for runtime operations

    GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionopcServiceApp

    CurrentFederationMode string
    Current Federation Mode
    CurrentSynchronizationMode string
    Current Synchronization Mode
    EnablingNextFedSyncModes bool
    If true, indicates that enablement is in progress started but not completed
    NextFederationMode string
    Next Federation Mode
    NextSynchronizationMode string
    Next Synchronization Mode
    Region string
    This value identifies the OPC region in which the service is running.
    ServiceInstanceIdentifier string
    This value specifies the unique identifier assigned to an instance of an Oracle Public Cloud service app.
    CurrentFederationMode string
    Current Federation Mode
    CurrentSynchronizationMode string
    Current Synchronization Mode
    EnablingNextFedSyncModes bool
    If true, indicates that enablement is in progress started but not completed
    NextFederationMode string
    Next Federation Mode
    NextSynchronizationMode string
    Next Synchronization Mode
    Region string
    This value identifies the OPC region in which the service is running.
    ServiceInstanceIdentifier string
    This value specifies the unique identifier assigned to an instance of an Oracle Public Cloud service app.
    currentFederationMode String
    Current Federation Mode
    currentSynchronizationMode String
    Current Synchronization Mode
    enablingNextFedSyncModes Boolean
    If true, indicates that enablement is in progress started but not completed
    nextFederationMode String
    Next Federation Mode
    nextSynchronizationMode String
    Next Synchronization Mode
    region String
    This value identifies the OPC region in which the service is running.
    serviceInstanceIdentifier String
    This value specifies the unique identifier assigned to an instance of an Oracle Public Cloud service app.
    currentFederationMode string
    Current Federation Mode
    currentSynchronizationMode string
    Current Synchronization Mode
    enablingNextFedSyncModes boolean
    If true, indicates that enablement is in progress started but not completed
    nextFederationMode string
    Next Federation Mode
    nextSynchronizationMode string
    Next Synchronization Mode
    region string
    This value identifies the OPC region in which the service is running.
    serviceInstanceIdentifier string
    This value specifies the unique identifier assigned to an instance of an Oracle Public Cloud service app.
    current_federation_mode str
    Current Federation Mode
    current_synchronization_mode str
    Current Synchronization Mode
    enabling_next_fed_sync_modes bool
    If true, indicates that enablement is in progress started but not completed
    next_federation_mode str
    Next Federation Mode
    next_synchronization_mode str
    Next Synchronization Mode
    region str
    This value identifies the OPC region in which the service is running.
    service_instance_identifier str
    This value specifies the unique identifier assigned to an instance of an Oracle Public Cloud service app.
    currentFederationMode String
    Current Federation Mode
    currentSynchronizationMode String
    Current Synchronization Mode
    enablingNextFedSyncModes Boolean
    If true, indicates that enablement is in progress started but not completed
    nextFederationMode String
    Next Federation Mode
    nextSynchronizationMode String
    Next Synchronization Mode
    region String
    This value identifies the OPC region in which the service is running.
    serviceInstanceIdentifier String
    This value specifies the unique identifier assigned to an instance of an Oracle Public Cloud service app.

    GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionradiusAppApp

    CaptureClientIp bool
    If true, capture the client IP address from the RADIUS request packet. IP Address is used for auditing, policy-evaluation and country-code calculation.
    ClientIp string
    This is the IP address of the RADIUS Client like Oracle Database server. It can be only IP address and not hostname.
    CountryCodeResponseAttributeId string
    Vendor-specific identifier of the attribute in the RADIUS response that will contain the end-user's country code. This is an integer-value in the range 1 to 255
    EndUserIpAttribute string
    The name of the attribute that contains the Internet Protocol address of the end-user.
    GroupMembershipRadiusAttribute string
    RADIUS attribute that RADIUS-enabled system uses to pass the group membership
    GroupMembershipToReturns List<GetDomainsAppUrnietfparamsscimschemasoracleidcsextensionradiusAppAppGroupMembershipToReturn>
    In a successful authentication response, Oracle Identity Cloud Service will pass user's group information restricted to groups persisted in this attribute, in the specified RADIUS attribute.
    GroupNameFormat string
    Configure the groupNameFormat based on vendor in order to pass it to RADIUS infra
    IncludeGroupInResponse bool
    Indicates to include groups in RADIUS response
    PasswordAndOtpTogether bool
    Indicates if password and OTP are passed in the same sign-in request or not.
    Port string
    This is the port of RADIUS Proxy which RADIUS client will connect to.
    RadiusVendorSpecificId string
    ID used to identify a particular vendor.
    ResponseFormat string
    Configure the responseFormat based on vendor in order to pass it to RADIUS infra
    ResponseFormatDelimiter string
    The delimiter used if group membership responseFormat is a delimited list instead of repeating attributes
    SecretKey string
    Secret key used to secure communication between RADIUS Proxy and RADIUS client
    TypeOfRadiusApp string
    Value consists of type of RADIUS App. Type can be Oracle Database, VPN etc
    CaptureClientIp bool
    If true, capture the client IP address from the RADIUS request packet. IP Address