Oracle Cloud Infrastructure v3.9.0, Sep 24 25

Oracle Cloud Infrastructure v3.9.0 published on Wednesday, Sep 24, 2025 by Pulumi

oci.Identity.getDomainsApps

Oracle Cloud Infrastructure v3.9.0 published on Wednesday, Sep 24, 2025 by Pulumi

Example Usage

import * as pulumi from "@pulumi/pulumi";
import * as oci from "@pulumi/oci";

const testApps = oci.Identity.getDomainsApps({
    idcsEndpoint: testDomain.url,
    appCount: appAppCount,
    appFilter: appAppFilter,
    attributeSets: ["all"],
    attributes: "",
    authorization: appAuthorization,
    resourceTypeSchemaVersion: appResourceTypeSchemaVersion,
    startIndex: appStartIndex,
});

import pulumi
import pulumi_oci as oci

test_apps = oci.Identity.get_domains_apps(idcs_endpoint=test_domain["url"],
    app_count=app_app_count,
    app_filter=app_app_filter,
    attribute_sets=["all"],
    attributes="",
    authorization=app_authorization,
    resource_type_schema_version=app_resource_type_schema_version,
    start_index=app_start_index)

package main

import (
	"github.com/pulumi/pulumi-oci/sdk/v3/go/oci/identity"
	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := identity.GetDomainsApps(ctx, &identity.GetDomainsAppsArgs{
			IdcsEndpoint: testDomain.Url,
			AppCount:     pulumi.IntRef(appAppCount),
			AppFilter:    pulumi.StringRef(appAppFilter),
			AttributeSets: []string{
				"all",
			},
			Attributes:                pulumi.StringRef(""),
			Authorization:             pulumi.StringRef(appAuthorization),
			ResourceTypeSchemaVersion: pulumi.StringRef(appResourceTypeSchemaVersion),
			StartIndex:                pulumi.IntRef(appStartIndex),
		}, nil)
		if err != nil {
			return err
		}
		return nil
	})
}

using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Oci = Pulumi.Oci;

return await Deployment.RunAsync(() => 
{
    var testApps = Oci.Identity.GetDomainsApps.Invoke(new()
    {
        IdcsEndpoint = testDomain.Url,
        AppCount = appAppCount,
        AppFilter = appAppFilter,
        AttributeSets = new[]
        {
            "all",
        },
        Attributes = "",
        Authorization = appAuthorization,
        ResourceTypeSchemaVersion = appResourceTypeSchemaVersion,
        StartIndex = appStartIndex,
    });

});

package generated_program;

import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.oci.Identity.IdentityFunctions;
import com.pulumi.oci.Identity.inputs.GetDomainsAppsArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;

public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }

    public static void stack(Context ctx) {
        final var testApps = IdentityFunctions.getDomainsApps(GetDomainsAppsArgs.builder()
            .idcsEndpoint(testDomain.url())
            .appCount(appAppCount)
            .appFilter(appAppFilter)
            .attributeSets("all")
            .attributes("")
            .authorization(appAuthorization)
            .resourceTypeSchemaVersion(appResourceTypeSchemaVersion)
            .startIndex(appStartIndex)
            .build());

    }
}

variables:
  testApps:
    fn::invoke:
      function: oci:Identity:getDomainsApps
      arguments:
        idcsEndpoint: ${testDomain.url}
        appCount: ${appAppCount}
        appFilter: ${appAppFilter}
        attributeSets:
          - all
        attributes: ""
        authorization: ${appAuthorization}
        resourceTypeSchemaVersion: ${appResourceTypeSchemaVersion}
        startIndex: ${appStartIndex}

Using getDomainsApps

Two invocation forms are available. The direct form accepts plain arguments and either blocks until the result value is available, or returns a Promise-wrapped result. The output form accepts Input-wrapped arguments and returns an Output-wrapped result.

function getDomainsApps(args: GetDomainsAppsArgs, opts?: InvokeOptions): Promise<GetDomainsAppsResult>
function getDomainsAppsOutput(args: GetDomainsAppsOutputArgs, opts?: InvokeOptions): Output<GetDomainsAppsResult>

def get_domains_apps(app_count: Optional[int] = None,
                     app_filter: Optional[str] = None,
                     attribute_sets: Optional[Sequence[str]] = None,
                     attributes: Optional[str] = None,
                     authorization: Optional[str] = None,
                     compartment_id: Optional[str] = None,
                     idcs_endpoint: Optional[str] = None,
                     resource_type_schema_version: Optional[str] = None,
                     sort_by: Optional[str] = None,
                     sort_order: Optional[str] = None,
                     start_index: Optional[int] = None,
                     opts: Optional[InvokeOptions] = None) -> GetDomainsAppsResult
def get_domains_apps_output(app_count: Optional[pulumi.Input[int]] = None,
                     app_filter: Optional[pulumi.Input[str]] = None,
                     attribute_sets: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
                     attributes: Optional[pulumi.Input[str]] = None,
                     authorization: Optional[pulumi.Input[str]] = None,
                     compartment_id: Optional[pulumi.Input[str]] = None,
                     idcs_endpoint: Optional[pulumi.Input[str]] = None,
                     resource_type_schema_version: Optional[pulumi.Input[str]] = None,
                     sort_by: Optional[pulumi.Input[str]] = None,
                     sort_order: Optional[pulumi.Input[str]] = None,
                     start_index: Optional[pulumi.Input[int]] = None,
                     opts: Optional[InvokeOptions] = None) -> Output[GetDomainsAppsResult]

func GetDomainsApps(ctx *Context, args *GetDomainsAppsArgs, opts ...InvokeOption) (*GetDomainsAppsResult, error)
func GetDomainsAppsOutput(ctx *Context, args *GetDomainsAppsOutputArgs, opts ...InvokeOption) GetDomainsAppsResultOutput

> Note: This function is named GetDomainsApps in the Go SDK.

public static class GetDomainsApps 
{
    public static Task<GetDomainsAppsResult> InvokeAsync(GetDomainsAppsArgs args, InvokeOptions? opts = null)
    public static Output<GetDomainsAppsResult> Invoke(GetDomainsAppsInvokeArgs args, InvokeOptions? opts = null)
}

public static CompletableFuture<GetDomainsAppsResult> getDomainsApps(GetDomainsAppsArgs args, InvokeOptions options)
public static Output<GetDomainsAppsResult> getDomainsApps(GetDomainsAppsArgs args, InvokeOptions options)

fn::invoke:
  function: oci:Identity/getDomainsApps:getDomainsApps
  arguments:
    # arguments dictionary

The following arguments are supported:

IdcsEndpoint string: The basic endpoint for the identity domain
AppCount int: OPTIONAL. An integer that indicates the desired maximum number of query results per page. 1000 is the largest value that you can use. See the Pagination section of the System for Cross-Domain Identity Management Protocol specification for more information. (Section 3.4.2.4).
AppFilter string: OPTIONAL. The filter string that is used to request a subset of resources. The filter string MUST be a valid filter expression. See the Filtering section of the SCIM specification for more information (Section 3.4.2.2). The string should contain at least one condition that each item must match in order to be returned in the search results. Each condition specifies an attribute, an operator, and a value. Conditions within a filter can be connected by logical operators (such as AND and OR). Sets of conditions can be grouped together using parentheses.
AttributeSets List<string>: A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If 'attributes' query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.
Attributes string: A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.
Authorization string: The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.
CompartmentId string
ResourceTypeSchemaVersion string: An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.
SortBy string
SortOrder string
StartIndex int: OPTIONAL. An integer that indicates the 1-based index of the first query result. See the Pagination section of the SCIM specification for more information. (Section 3.4.2.4). The number of results pages to return. The first page is 1. Specify 2 to access the second page of results, and so on.

IdcsEndpoint string: The basic endpoint for the identity domain
AppCount int: OPTIONAL. An integer that indicates the desired maximum number of query results per page. 1000 is the largest value that you can use. See the Pagination section of the System for Cross-Domain Identity Management Protocol specification for more information. (Section 3.4.2.4).
AppFilter string: OPTIONAL. The filter string that is used to request a subset of resources. The filter string MUST be a valid filter expression. See the Filtering section of the SCIM specification for more information (Section 3.4.2.2). The string should contain at least one condition that each item must match in order to be returned in the search results. Each condition specifies an attribute, an operator, and a value. Conditions within a filter can be connected by logical operators (such as AND and OR). Sets of conditions can be grouped together using parentheses.
AttributeSets []string: A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If 'attributes' query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.
Attributes string: A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.
Authorization string: The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.
CompartmentId string
ResourceTypeSchemaVersion string: An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.
SortBy string
SortOrder string
StartIndex int: OPTIONAL. An integer that indicates the 1-based index of the first query result. See the Pagination section of the SCIM specification for more information. (Section 3.4.2.4). The number of results pages to return. The first page is 1. Specify 2 to access the second page of results, and so on.

idcsEndpoint String: The basic endpoint for the identity domain
appCount Integer: OPTIONAL. An integer that indicates the desired maximum number of query results per page. 1000 is the largest value that you can use. See the Pagination section of the System for Cross-Domain Identity Management Protocol specification for more information. (Section 3.4.2.4).
appFilter String: OPTIONAL. The filter string that is used to request a subset of resources. The filter string MUST be a valid filter expression. See the Filtering section of the SCIM specification for more information (Section 3.4.2.2). The string should contain at least one condition that each item must match in order to be returned in the search results. Each condition specifies an attribute, an operator, and a value. Conditions within a filter can be connected by logical operators (such as AND and OR). Sets of conditions can be grouped together using parentheses.
attributeSets List<String>: A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If 'attributes' query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.
attributes String: A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.
authorization String: The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.
compartmentId String
resourceTypeSchemaVersion String: An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.
sortBy String
sortOrder String
startIndex Integer: OPTIONAL. An integer that indicates the 1-based index of the first query result. See the Pagination section of the SCIM specification for more information. (Section 3.4.2.4). The number of results pages to return. The first page is 1. Specify 2 to access the second page of results, and so on.

idcsEndpoint string: The basic endpoint for the identity domain
appCount number: OPTIONAL. An integer that indicates the desired maximum number of query results per page. 1000 is the largest value that you can use. See the Pagination section of the System for Cross-Domain Identity Management Protocol specification for more information. (Section 3.4.2.4).
appFilter string: OPTIONAL. The filter string that is used to request a subset of resources. The filter string MUST be a valid filter expression. See the Filtering section of the SCIM specification for more information (Section 3.4.2.2). The string should contain at least one condition that each item must match in order to be returned in the search results. Each condition specifies an attribute, an operator, and a value. Conditions within a filter can be connected by logical operators (such as AND and OR). Sets of conditions can be grouped together using parentheses.
attributeSets string[]: A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If 'attributes' query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.
attributes string: A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.
authorization string: The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.
compartmentId string
resourceTypeSchemaVersion string: An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.
sortBy string
sortOrder string
startIndex number: OPTIONAL. An integer that indicates the 1-based index of the first query result. See the Pagination section of the SCIM specification for more information. (Section 3.4.2.4). The number of results pages to return. The first page is 1. Specify 2 to access the second page of results, and so on.

idcs_endpoint str: The basic endpoint for the identity domain
app_count int: OPTIONAL. An integer that indicates the desired maximum number of query results per page. 1000 is the largest value that you can use. See the Pagination section of the System for Cross-Domain Identity Management Protocol specification for more information. (Section 3.4.2.4).
app_filter str: OPTIONAL. The filter string that is used to request a subset of resources. The filter string MUST be a valid filter expression. See the Filtering section of the SCIM specification for more information (Section 3.4.2.2). The string should contain at least one condition that each item must match in order to be returned in the search results. Each condition specifies an attribute, an operator, and a value. Conditions within a filter can be connected by logical operators (such as AND and OR). Sets of conditions can be grouped together using parentheses.
attribute_sets Sequence[str]: A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If 'attributes' query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.
attributes str: A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.
authorization str: The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.
compartment_id str
resource_type_schema_version str: An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.
sort_by str
sort_order str
start_index int: OPTIONAL. An integer that indicates the 1-based index of the first query result. See the Pagination section of the SCIM specification for more information. (Section 3.4.2.4). The number of results pages to return. The first page is 1. Specify 2 to access the second page of results, and so on.

idcsEndpoint String: The basic endpoint for the identity domain
appCount Number: OPTIONAL. An integer that indicates the desired maximum number of query results per page. 1000 is the largest value that you can use. See the Pagination section of the System for Cross-Domain Identity Management Protocol specification for more information. (Section 3.4.2.4).
appFilter String: OPTIONAL. The filter string that is used to request a subset of resources. The filter string MUST be a valid filter expression. See the Filtering section of the SCIM specification for more information (Section 3.4.2.2). The string should contain at least one condition that each item must match in order to be returned in the search results. Each condition specifies an attribute, an operator, and a value. Conditions within a filter can be connected by logical operators (such as AND and OR). Sets of conditions can be grouped together using parentheses.
attributeSets List<String>: A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If 'attributes' query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.
attributes String: A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.
authorization String: The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.
compartmentId String
resourceTypeSchemaVersion String: An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.
sortBy String
sortOrder String
startIndex Number: OPTIONAL. An integer that indicates the 1-based index of the first query result. See the Pagination section of the SCIM specification for more information. (Section 3.4.2.4). The number of results pages to return. The first page is 1. Specify 2 to access the second page of results, and so on.

getDomainsApps Result

The following output properties are available:

Apps List<GetDomainsAppsApp>: The list of apps.
Id string: The provider-assigned unique ID for this managed resource.
IdcsEndpoint string
ItemsPerPage int
Schemas List<string>: REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard "enterprise" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.
TotalResults int
AppCount int
AppFilter string
AttributeSets List<string>
Attributes string
Authorization string
CompartmentId string
ResourceTypeSchemaVersion string
SortBy string
SortOrder string
StartIndex int

Apps []GetDomainsAppsApp: The list of apps.
Id string: The provider-assigned unique ID for this managed resource.
IdcsEndpoint string
ItemsPerPage int
Schemas []string: REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard "enterprise" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.
TotalResults int
AppCount int
AppFilter string
AttributeSets []string
Attributes string
Authorization string
CompartmentId string
ResourceTypeSchemaVersion string
SortBy string
SortOrder string
StartIndex int

apps List<GetDomainsAppsApp>: The list of apps.
id String: The provider-assigned unique ID for this managed resource.
idcsEndpoint String
itemsPerPage Integer
schemas List<String>: REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard "enterprise" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.
totalResults Integer
appCount Integer
appFilter String
attributeSets List<String>
attributes String
authorization String
compartmentId String
resourceTypeSchemaVersion String
sortBy String
sortOrder String
startIndex Integer

apps GetDomainsAppsApp[]: The list of apps.
id string: The provider-assigned unique ID for this managed resource.
idcsEndpoint string
itemsPerPage number
schemas string[]: REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard "enterprise" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.
totalResults number
appCount number
appFilter string
attributeSets string[]
attributes string
authorization string
compartmentId string
resourceTypeSchemaVersion string
sortBy string
sortOrder string
startIndex number

apps Sequence[GetDomainsAppsApp]: The list of apps.
id str: The provider-assigned unique ID for this managed resource.
idcs_endpoint str
items_per_page int
schemas Sequence[str]: REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard "enterprise" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.
total_results int
app_count int
app_filter str
attribute_sets Sequence[str]
attributes str
authorization str
compartment_id str
resource_type_schema_version str
sort_by str
sort_order str
start_index int

apps List<Property Map>: The list of apps.
id String: The provider-assigned unique ID for this managed resource.
idcsEndpoint String
itemsPerPage Number
schemas List<String>: REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard "enterprise" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.
totalResults Number
appCount Number
appFilter String
attributeSets List<String>
attributes String
authorization String
compartmentId String
resourceTypeSchemaVersion String
sortBy String
sortOrder String
startIndex Number

Supporting Types

GetDomainsAppsApp

AccessTokenExpiry int: Access token expiry
Accounts List<GetDomainsAppsAppAccount>: Accounts of App
Active bool: If true, this App is able to participate in runtime services, such as automatic-login, OAuth, and SAML. If false, all runtime services are disabled for this App, and only administrative operations can be performed.
AdminRoles List<GetDomainsAppsAppAdminRole>: A list of AppRoles defined by this UnmanagedApp. Membership in each of these AppRoles confers administrative privilege within this App.
AliasApps List<GetDomainsAppsAppAliasApp>: Each value of this internal attribute refers to an Oracle Public Cloud infrastructure App on which this App depends.
AllUrlSchemesAllowed bool: If true, indicates that the system should allow all URL-schemes within each value of the 'redirectUris' attribute. Also indicates that the system should not attempt to confirm that each value of the 'redirectUris' attribute is a valid URI. In particular, the system should not confirm that the domain component of the URI is a top-level domain and the system should not confirm that the hostname portion is a valid system that is reachable over the network.
AllowAccessControl bool: If true, any managed App that is based on this template is checked for access control that is, access to this app is subject to successful authorization at SSO service, viz. app grants to start with.
AllowOffline bool: If true, indicates that the Refresh Token is allowed when this App acts as an OAuth Resource.
AllowedGrants List<string>: List of grant-types that this App is allowed to use when it acts as an OAuthClient.
AllowedOperations List<string>: OPTIONAL. Required only when this App acts as an OAuthClient. Supported values are 'introspect' and 'onBehalfOfUser'. The value 'introspect' allows the client to look inside the access-token. The value 'onBehalfOfUser' overrides how the client's privileges are combined with the privileges of the Subject User. Ordinarily, authorization calculates the set of effective privileges as the intersection of the client's privileges and the user's privileges. The value 'onBehalfOf' indicates that authorization should ignore the privileges of the client and use only the user's privileges to calculate the effective privileges.
AllowedScopes List<GetDomainsAppsAppAllowedScope>: A list of scopes (exposed by this App or by other Apps) that this App is allowed to access when it acts as an OAuthClient.
AllowedTags List<GetDomainsAppsAppAllowedTag>: A list of tags, acting as an OAuthClient, this App is allowed to access.
AppIcon string: Application icon.
AppSignonPolicies List<GetDomainsAppsAppAppSignonPolicy>: App Sign-on Policy.
AppThumbnail string: Application thumbnail.
AppsNetworkPerimeters List<GetDomainsAppsAppAppsNetworkPerimeter>: Network Perimeter
AsOpcServices List<GetDomainsAppsAppAsOpcService>: OPCService facet of the application.
AttrRenderingMetadatas List<GetDomainsAppsAppAttrRenderingMetadata>: Label for the attribute to be shown in the UI.
AttributeSets List<string>: A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If 'attributes' query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.
Attributes string: A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.
Audience string: The base URI for all of the scopes defined in this App. The value of 'audience' is combined with the 'value' of each scope to form an 'fqs' or fully qualified scope.
Authorization string: The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.
BasedOnTemplates List<GetDomainsAppsAppBasedOnTemplate>: Application template on which the application is based.
BypassConsent bool: If true, indicates that consent should be skipped for all scopes
CallbackServiceUrl string: Callback Service URL
Certificates List<GetDomainsAppsAppCertificate>: Each value of this attribute represent a certificate that this App uses when it acts as an OAuthClient.
ClientIpChecking string: Network Perimeters checking mode
ClientSecret string: This value is the credential of this App, which this App supplies as a password when this App authenticates to the Oracle Public Cloud infrastructure. This value is also the client secret of this App when it acts as an OAuthClient.
ClientType string: Specifies the type of access that this App has when it acts as an OAuthClient.
CloudControlProperties List<GetDomainsAppsAppCloudControlProperty>: A collection of arbitrary properties that scope the privileges of a cloud-control App.
CompartmentOcid string: Oracle Cloud Infrastructure Compartment Id (ocid) in which the resource lives.
ContactEmailAddress string: Contact Email Address
DelegatedServiceNames List<string>: Service Names allow to use Oracle Cloud Infrastructure signature for client authentication instead of client credentials
DeleteInProgress bool: A boolean flag indicating this resource in the process of being deleted. Usually set to true when synchronous deletion of the resource would take too long.
Description string: The description of the AppRole.
DisableKmsiTokenAuthentication bool: Indicates whether the application is allowed to be access using kmsi token.
DisplayName string: Display name of the flatfile bundle configuration property. This attribute maps to "displayName" attribute in "ConfigurationProperty" in ICF.
DomainOcid string: Oracle Cloud Infrastructure Domain Id (ocid) in which the resource lives.
EditableAttributes List<GetDomainsAppsAppEditableAttribute>: App attributes editable by subject
ErrorPageUrl string: This attribute specifies the URL of the page to which an application will redirect an end-user in case of error.
ForceDelete bool
GrantedAppRoles List<GetDomainsAppsAppGrantedAppRole>: A list of AppRoles that are granted to this App (and that are defined by other Apps). Within the Oracle Public Cloud infrastructure, this allows AppID-based association. Such an association allows this App to act as a consumer and thus to access resources of another App that acts as a producer.
Grants List<GetDomainsAppsAppGrant>: Grants assigned to the app
HashedClientSecret string: Hashed Client Secret. This hash-value is used to verify the 'clientSecret' credential of this App
HomePageUrl string: Home Page URL
Icon string: URL of application icon.
Id string: Unique identifier for the SCIM Resource as defined by the Service Provider. Each representation of the Resource MUST include a non-empty id value. This identifier MUST be unique across the Service Provider's entire set of Resources. It MUST be a stable, non-reassignable identifier that does not change when the same Resource is returned in subsequent requests. The value of the id attribute is always issued by the Service Provider and MUST never be specified by the Service Consumer. bulkId: is a reserved keyword and MUST NOT be used in the unique identifier.
IdTokenEncAlgo string: Encryption Alogrithm to use for encrypting ID token.
IdcsCreatedBies List<GetDomainsAppsAppIdcsCreatedBy>: The User or App who created the Resource
IdcsEndpoint string: The basic endpoint for the identity domain
IdcsLastModifiedBies List<GetDomainsAppsAppIdcsLastModifiedBy>: The User or App who modified the Resource
IdcsLastUpgradedInRelease string: The release number when the resource was upgraded.
IdcsPreventedOperations List<string>: Each value of this attribute specifies an operation that only an internal client may perform on this particular resource.
IdentityProviders List<GetDomainsAppsAppIdentityProvider>: A list of IdentityProvider assigned to app. A user trying to access this app will be automatically redirected to configured IdP during the authentication phase, before being able to access App.
IdpPolicies List<GetDomainsAppsAppIdpPolicy>: IDP Policy.
Infrastructure bool: If true, this App is an internal infrastructure App.
IsAliasApp bool: If true, this App is an AliasApp and it cannot be granted to an end-user directly.
IsDatabaseService bool: If true, this application acts as database service Application
IsEnterpriseApp bool: If true, this app acts as Enterprise app with Authentication and URL Authz policy.
IsFormFill bool: If true, this application acts as FormFill Application
IsKerberosRealm bool: If true, indicates that this App supports Kerberos Authentication
IsLoginTarget bool: If true, this App allows runtime services to log end users into this App automatically.
IsManagedApp bool: If true, indicates that access to this App requires an account. That is, in order to log in to the App, a User must use an application-specific identity that is maintained in the remote identity-repository of that App.
IsMobileTarget bool: If true, indicates that the App should be visible in each end-user's mobile application.
IsMulticloudServiceApp bool: If true, indicates the app is used for multicloud service integration.
IsOauthClient bool: If true, this application acts as an OAuth Client
IsOauthResource bool: If true, indicates that this application acts as an OAuth Resource.
IsObligationCapable bool: This flag indicates if the App is capable of validating obligations with the token for allowing access to the App.
IsOpcService bool: If true, this application is an Oracle Public Cloud service-instance.
IsRadiusApp bool: If true, this application acts as an Radius App
IsSamlServiceProvider bool: If true, then this App acts as a SAML Service Provider.
IsUnmanagedApp bool: If true, indicates that this application accepts an Oracle Cloud Identity Service User as a login-identity (does not require an account) and relies for authorization on the User's memberships in AppRoles.
IsWebTierPolicy bool: If true, the webtier policy is active
LandingPageUrl string: The URL of the landing page for this App, which is the first page that an end user should see if runtime services log that end user in to this App automatically.
LinkingCallbackUrl string: This attribute specifies the callback URL for the social linking operation.
LoginMechanism string: The protocol that runtime services will use to log end users in to this App automatically. If 'OIDC', then runtime services use the OpenID Connect protocol. If 'SAML', then runtime services use Security Assertion Markup Language protocol.
LoginPageUrl string: This attribute specifies the URL of the page that the App uses when an end-user signs in to that App.
LogoutPageUrl string: This attribute specifies the URL of the page that the App uses when an end-user signs out.
LogoutUri string: OAuth will use this URI to logout if this App wants to participate in SSO, and if this App's session gets cleared as part of global logout. Note: This attribute is used only if this App acts as an OAuthClient.
Metas List<GetDomainsAppsAppMeta>: A complex attribute that contains resource metadata. All sub-attributes are OPTIONAL.
MeterAsOpcService bool: Indicates whether the application is billed as an OPCService. If true, customer is not billed for runtime operations of the app.
Migrated bool: If true, this App was migrated from an earlier version of Oracle Public Cloud infrastructure (and may therefore require special handling from runtime services such as OAuth or SAML). If false, this App requires no special handling from runtime services.
Name string: The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
Ocid string: Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
PostLogoutRedirectUris List<string>: Each value of this attribute is the URI of a landing page within this App. It is used only when this App, acting as an OAuthClient, initiates the logout flow and wants to be redirected back to one of its landing pages.
PrivacyPolicyUrl string: Privacy Policy URL
ProductLogoUrl string: Application Logo URL
ProductName string: Product Name
ProtectableSecondaryAudiences List<GetDomainsAppsAppProtectableSecondaryAudience>: A list of secondary audiences--additional URIs to be added automatically to any OAuth token that allows access to this App. Note: This attribute is used mainly for backward compatibility in certain Oracle Public Cloud Apps.
RadiusPolicies List<GetDomainsAppsAppRadiusPolicy>: RADIUS Policy assigned to this application.
ReadyToUpgrade bool: If true, this App requires an upgrade and mandates attention from application administrator. The flag is used by UI to indicate this app is ready to upgrade.
RedirectUris List<string>: OPTIONAL. Each value is a URI within this App. This attribute is required when this App acts as an OAuthClient and is involved in three-legged flows (authorization-code flows).
RefreshTokenExpiry int: Expiry-time in seconds for a Refresh Token. Any token that allows access to this App, once refreshed, will expire after the specified duration.
ResourceTypeSchemaVersion string: An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.
SamlServiceProviders List<GetDomainsAppsAppSamlServiceProvider>: An attribute that refers to the SAML Service Provider that runtime services will use to log an end user in to this App automatically. Note that this will be used only if the loginMechanism is 'SAML'.
Schemas List<string>: REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard "enterprise" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.
Scopes List<GetDomainsAppsAppScope>: Scopes defined by this App. Used when this App acts as an OAuth Resource.
SecondaryAudiences List<string>: A list of secondary audiences--additional URIs to be added automatically to any OAuth token that allows access to this App. Note: This attribute is used mainly for backward compatibility in certain Oracle Public Cloud Apps.
ServiceParams List<GetDomainsAppsAppServiceParam>: Custom attribute that is required to compute other attribute values during app creation.
ServiceTypeUrn string: This Uniform Resource Name (URN) value identifies the type of Oracle Public Cloud service of which this app is an instance.
ServiceTypeVersion string: This value specifies the version of the Oracle Public Cloud service of which this App is an instance
ShowInMyApps bool: If true, this app will be displayed in the MyApps page of each end-user who has access to the App.
SignonPolicies List<GetDomainsAppsAppSignonPolicy>: Sign-on Policy.
Tags List<GetDomainsAppsAppTag>: A list of tags on this resource.
TenancyOcid string: Oracle Cloud Infrastructure Tenant Id (ocid) in which the resource lives.
TermsOfServiceUrl string: Terms of Service URL
TermsOfUses List<GetDomainsAppsAppTermsOfUse>: Terms Of Use.
TrustPolicies List<GetDomainsAppsAppTrustPolicy>: Trust Policies.
TrustScope string: Indicates the scope of trust for this App when acting as an OAuthClient. A value of 'Explicit' indicates that the App is allowed to access only the scopes of OAuthResources that are explicitly specified as 'allowedScopes'. A value of 'Account' indicates that the App is allowed implicitly to access any scope of any OAuthResource within the same Oracle Cloud Account. A value of 'Tags' indicates that the App is allowed to access any scope of any OAuthResource with a matching tag within the same Oracle Cloud Account. A value of 'Default' indicates that the Tenant default trust scope configured in the Tenant Settings is used.
UrnietfparamsscimschemasoracleidcsextensionOciTags List<GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionOciTag>: Oracle Cloud Infrastructure Tags.
UrnietfparamsscimschemasoracleidcsextensiondbcsApps List<GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensiondbcsApp>: This extension provides attributes for database service facet of an App
UrnietfparamsscimschemasoracleidcsextensionenterpriseAppApps List<GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionenterpriseAppApp>: This extension defines the Enterprise App related attributes.
UrnietfparamsscimschemasoracleidcsextensionformFillAppApps List<GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionformFillAppApp>: This extension provides attributes for Form-Fill facet of App
UrnietfparamsscimschemasoracleidcsextensionformFillAppTemplateAppTemplates List<GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionformFillAppTemplateAppTemplate>: This extension provides attributes for Form-Fill facet of AppTemplate
UrnietfparamsscimschemasoracleidcsextensionkerberosRealmApps List<GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionkerberosRealmApp>: Kerberos Realm
UrnietfparamsscimschemasoracleidcsextensionmanagedappApps List<GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappApp>: Managed App
UrnietfparamsscimschemasoracleidcsextensionmulticloudServiceAppApps List<GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionmulticloudServiceAppApp>: This extension defines attributes specific to Apps that represent instances of Multicloud Service App
UrnietfparamsscimschemasoracleidcsextensionopcServiceApps List<GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionopcServiceApp>: This extension defines attributes specific to Apps that represent instances of an Oracle Public Cloud (OPC) service.
UrnietfparamsscimschemasoracleidcsextensionradiusAppApps List<GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionradiusAppApp>: This extension defines attributes specific to Apps that represent instances of Radius App.
UrnietfparamsscimschemasoracleidcsextensionrequestableApps List<GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionrequestableApp>: Requestable App
UrnietfparamsscimschemasoracleidcsextensionsamlServiceProviderApps List<GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionsamlServiceProviderApp>: This extension defines attributes related to the Service Providers configuration.
UrnietfparamsscimschemasoracleidcsextensionwebTierPolicyApps List<GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionwebTierPolicyApp>: WebTier Policy
UserRoles List<GetDomainsAppsAppUserRole>: A list of AppRoles defined by this UnmanagedApp. Membership in each of these AppRoles confers end-user privilege within this App.

AccessTokenExpiry int: Access token expiry
Accounts []GetDomainsAppsAppAccount: Accounts of App
Active bool: If true, this App is able to participate in runtime services, such as automatic-login, OAuth, and SAML. If false, all runtime services are disabled for this App, and only administrative operations can be performed.
AdminRoles []GetDomainsAppsAppAdminRole: A list of AppRoles defined by this UnmanagedApp. Membership in each of these AppRoles confers administrative privilege within this App.
AliasApps []GetDomainsAppsAppAliasApp: Each value of this internal attribute refers to an Oracle Public Cloud infrastructure App on which this App depends.
AllUrlSchemesAllowed bool: If true, indicates that the system should allow all URL-schemes within each value of the 'redirectUris' attribute. Also indicates that the system should not attempt to confirm that each value of the 'redirectUris' attribute is a valid URI. In particular, the system should not confirm that the domain component of the URI is a top-level domain and the system should not confirm that the hostname portion is a valid system that is reachable over the network.
AllowAccessControl bool: If true, any managed App that is based on this template is checked for access control that is, access to this app is subject to successful authorization at SSO service, viz. app grants to start with.
AllowOffline bool: If true, indicates that the Refresh Token is allowed when this App acts as an OAuth Resource.
AllowedGrants []string: List of grant-types that this App is allowed to use when it acts as an OAuthClient.
AllowedOperations []string: OPTIONAL. Required only when this App acts as an OAuthClient. Supported values are 'introspect' and 'onBehalfOfUser'. The value 'introspect' allows the client to look inside the access-token. The value 'onBehalfOfUser' overrides how the client's privileges are combined with the privileges of the Subject User. Ordinarily, authorization calculates the set of effective privileges as the intersection of the client's privileges and the user's privileges. The value 'onBehalfOf' indicates that authorization should ignore the privileges of the client and use only the user's privileges to calculate the effective privileges.
AllowedScopes []GetDomainsAppsAppAllowedScope: A list of scopes (exposed by this App or by other Apps) that this App is allowed to access when it acts as an OAuthClient.
AllowedTags []GetDomainsAppsAppAllowedTag: A list of tags, acting as an OAuthClient, this App is allowed to access.
AppIcon string: Application icon.
AppSignonPolicies []GetDomainsAppsAppAppSignonPolicy: App Sign-on Policy.
AppThumbnail string: Application thumbnail.
AppsNetworkPerimeters []GetDomainsAppsAppAppsNetworkPerimeter: Network Perimeter
AsOpcServices []GetDomainsAppsAppAsOpcService: OPCService facet of the application.
AttrRenderingMetadatas []GetDomainsAppsAppAttrRenderingMetadata: Label for the attribute to be shown in the UI.
AttributeSets []string: A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If 'attributes' query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.
Attributes string: A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.
Audience string: The base URI for all of the scopes defined in this App. The value of 'audience' is combined with the 'value' of each scope to form an 'fqs' or fully qualified scope.
Authorization string: The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.
BasedOnTemplates []GetDomainsAppsAppBasedOnTemplate: Application template on which the application is based.
BypassConsent bool: If true, indicates that consent should be skipped for all scopes
CallbackServiceUrl string: Callback Service URL
Certificates []GetDomainsAppsAppCertificate: Each value of this attribute represent a certificate that this App uses when it acts as an OAuthClient.
ClientIpChecking string: Network Perimeters checking mode
ClientSecret string: This value is the credential of this App, which this App supplies as a password when this App authenticates to the Oracle Public Cloud infrastructure. This value is also the client secret of this App when it acts as an OAuthClient.
ClientType string: Specifies the type of access that this App has when it acts as an OAuthClient.
CloudControlProperties []GetDomainsAppsAppCloudControlProperty: A collection of arbitrary properties that scope the privileges of a cloud-control App.
CompartmentOcid string: Oracle Cloud Infrastructure Compartment Id (ocid) in which the resource lives.
ContactEmailAddress string: Contact Email Address
DelegatedServiceNames []string: Service Names allow to use Oracle Cloud Infrastructure signature for client authentication instead of client credentials
DeleteInProgress bool: A boolean flag indicating this resource in the process of being deleted. Usually set to true when synchronous deletion of the resource would take too long.
Description string: The description of the AppRole.
DisableKmsiTokenAuthentication bool: Indicates whether the application is allowed to be access using kmsi token.
DisplayName string: Display name of the flatfile bundle configuration property. This attribute maps to "displayName" attribute in "ConfigurationProperty" in ICF.
DomainOcid string: Oracle Cloud Infrastructure Domain Id (ocid) in which the resource lives.
EditableAttributes []GetDomainsAppsAppEditableAttribute: App attributes editable by subject
ErrorPageUrl string: This attribute specifies the URL of the page to which an application will redirect an end-user in case of error.
ForceDelete bool
GrantedAppRoles []GetDomainsAppsAppGrantedAppRole: A list of AppRoles that are granted to this App (and that are defined by other Apps). Within the Oracle Public Cloud infrastructure, this allows AppID-based association. Such an association allows this App to act as a consumer and thus to access resources of another App that acts as a producer.
Grants []GetDomainsAppsAppGrant: Grants assigned to the app
HashedClientSecret string: Hashed Client Secret. This hash-value is used to verify the 'clientSecret' credential of this App
HomePageUrl string: Home Page URL
Icon string: URL of application icon.
Id string: Unique identifier for the SCIM Resource as defined by the Service Provider. Each representation of the Resource MUST include a non-empty id value. This identifier MUST be unique across the Service Provider's entire set of Resources. It MUST be a stable, non-reassignable identifier that does not change when the same Resource is returned in subsequent requests. The value of the id attribute is always issued by the Service Provider and MUST never be specified by the Service Consumer. bulkId: is a reserved keyword and MUST NOT be used in the unique identifier.
IdTokenEncAlgo string: Encryption Alogrithm to use for encrypting ID token.
IdcsCreatedBies []GetDomainsAppsAppIdcsCreatedBy: The User or App who created the Resource
IdcsEndpoint string: The basic endpoint for the identity domain
IdcsLastModifiedBies []GetDomainsAppsAppIdcsLastModifiedBy: The User or App who modified the Resource
IdcsLastUpgradedInRelease string: The release number when the resource was upgraded.
IdcsPreventedOperations []string: Each value of this attribute specifies an operation that only an internal client may perform on this particular resource.
IdentityProviders []GetDomainsAppsAppIdentityProvider: A list of IdentityProvider assigned to app. A user trying to access this app will be automatically redirected to configured IdP during the authentication phase, before being able to access App.
IdpPolicies []GetDomainsAppsAppIdpPolicy: IDP Policy.
Infrastructure bool: If true, this App is an internal infrastructure App.
IsAliasApp bool: If true, this App is an AliasApp and it cannot be granted to an end-user directly.
IsDatabaseService bool: If true, this application acts as database service Application
IsEnterpriseApp bool: If true, this app acts as Enterprise app with Authentication and URL Authz policy.
IsFormFill bool: If true, this application acts as FormFill Application
IsKerberosRealm bool: If true, indicates that this App supports Kerberos Authentication
IsLoginTarget bool: If true, this App allows runtime services to log end users into this App automatically.
IsManagedApp bool: If true, indicates that access to this App requires an account. That is, in order to log in to the App, a User must use an application-specific identity that is maintained in the remote identity-repository of that App.
IsMobileTarget bool: If true, indicates that the App should be visible in each end-user's mobile application.
IsMulticloudServiceApp bool: If true, indicates the app is used for multicloud service integration.
IsOauthClient bool: If true, this application acts as an OAuth Client
IsOauthResource bool: If true, indicates that this application acts as an OAuth Resource.
IsObligationCapable bool: This flag indicates if the App is capable of validating obligations with the token for allowing access to the App.
IsOpcService bool: If true, this application is an Oracle Public Cloud service-instance.
IsRadiusApp bool: If true, this application acts as an Radius App
IsSamlServiceProvider bool: If true, then this App acts as a SAML Service Provider.
IsUnmanagedApp bool: If true, indicates that this application accepts an Oracle Cloud Identity Service User as a login-identity (does not require an account) and relies for authorization on the User's memberships in AppRoles.
IsWebTierPolicy bool: If true, the webtier policy is active
LandingPageUrl string: The URL of the landing page for this App, which is the first page that an end user should see if runtime services log that end user in to this App automatically.
LinkingCallbackUrl string: This attribute specifies the callback URL for the social linking operation.
LoginMechanism string: The protocol that runtime services will use to log end users in to this App automatically. If 'OIDC', then runtime services use the OpenID Connect protocol. If 'SAML', then runtime services use Security Assertion Markup Language protocol.
LoginPageUrl string: This attribute specifies the URL of the page that the App uses when an end-user signs in to that App.
LogoutPageUrl string: This attribute specifies the URL of the page that the App uses when an end-user signs out.
LogoutUri string: OAuth will use this URI to logout if this App wants to participate in SSO, and if this App's session gets cleared as part of global logout. Note: This attribute is used only if this App acts as an OAuthClient.
Metas []GetDomainsAppsAppMeta: A complex attribute that contains resource metadata. All sub-attributes are OPTIONAL.
MeterAsOpcService bool: Indicates whether the application is billed as an OPCService. If true, customer is not billed for runtime operations of the app.
Migrated bool: If true, this App was migrated from an earlier version of Oracle Public Cloud infrastructure (and may therefore require special handling from runtime services such as OAuth or SAML). If false, this App requires no special handling from runtime services.
Name string: The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
Ocid string: Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
PostLogoutRedirectUris []string: Each value of this attribute is the URI of a landing page within this App. It is used only when this App, acting as an OAuthClient, initiates the logout flow and wants to be redirected back to one of its landing pages.
PrivacyPolicyUrl string: Privacy Policy URL
ProductLogoUrl string: Application Logo URL
ProductName string: Product Name
ProtectableSecondaryAudiences []GetDomainsAppsAppProtectableSecondaryAudience: A list of secondary audiences--additional URIs to be added automatically to any OAuth token that allows access to this App. Note: This attribute is used mainly for backward compatibility in certain Oracle Public Cloud Apps.
RadiusPolicies []GetDomainsAppsAppRadiusPolicy: RADIUS Policy assigned to this application.
ReadyToUpgrade bool: If true, this App requires an upgrade and mandates attention from application administrator. The flag is used by UI to indicate this app is ready to upgrade.
RedirectUris []string: OPTIONAL. Each value is a URI within this App. This attribute is required when this App acts as an OAuthClient and is involved in three-legged flows (authorization-code flows).
RefreshTokenExpiry int: Expiry-time in seconds for a Refresh Token. Any token that allows access to this App, once refreshed, will expire after the specified duration.
ResourceTypeSchemaVersion string: An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.
SamlServiceProviders []GetDomainsAppsAppSamlServiceProvider: An attribute that refers to the SAML Service Provider that runtime services will use to log an end user in to this App automatically. Note that this will be used only if the loginMechanism is 'SAML'.
Schemas []string: REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard "enterprise" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.
Scopes []GetDomainsAppsAppScope: Scopes defined by this App. Used when this App acts as an OAuth Resource.
SecondaryAudiences []string: A list of secondary audiences--additional URIs to be added automatically to any OAuth token that allows access to this App. Note: This attribute is used mainly for backward compatibility in certain Oracle Public Cloud Apps.
ServiceParams []GetDomainsAppsAppServiceParam: Custom attribute that is required to compute other attribute values during app creation.
ServiceTypeUrn string: This Uniform Resource Name (URN) value identifies the type of Oracle Public Cloud service of which this app is an instance.
ServiceTypeVersion string: This value specifies the version of the Oracle Public Cloud service of which this App is an instance
ShowInMyApps bool: If true, this app will be displayed in the MyApps page of each end-user who has access to the App.
SignonPolicies []GetDomainsAppsAppSignonPolicy: Sign-on Policy.
Tags []GetDomainsAppsAppTag: A list of tags on this resource.
TenancyOcid string: Oracle Cloud Infrastructure Tenant Id (ocid) in which the resource lives.
TermsOfServiceUrl string: Terms of Service URL
TermsOfUses []GetDomainsAppsAppTermsOfUse: Terms Of Use.
TrustPolicies []GetDomainsAppsAppTrustPolicy: Trust Policies.
TrustScope string: Indicates the scope of trust for this App when acting as an OAuthClient. A value of 'Explicit' indicates that the App is allowed to access only the scopes of OAuthResources that are explicitly specified as 'allowedScopes'. A value of 'Account' indicates that the App is allowed implicitly to access any scope of any OAuthResource within the same Oracle Cloud Account. A value of 'Tags' indicates that the App is allowed to access any scope of any OAuthResource with a matching tag within the same Oracle Cloud Account. A value of 'Default' indicates that the Tenant default trust scope configured in the Tenant Settings is used.
UrnietfparamsscimschemasoracleidcsextensionOciTags []GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionOciTag: Oracle Cloud Infrastructure Tags.
UrnietfparamsscimschemasoracleidcsextensiondbcsApps []GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensiondbcsApp: This extension provides attributes for database service facet of an App
UrnietfparamsscimschemasoracleidcsextensionenterpriseAppApps []GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionenterpriseAppApp: This extension defines the Enterprise App related attributes.
UrnietfparamsscimschemasoracleidcsextensionformFillAppApps []GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionformFillAppApp: This extension provides attributes for Form-Fill facet of App
UrnietfparamsscimschemasoracleidcsextensionformFillAppTemplateAppTemplates []GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionformFillAppTemplateAppTemplate: This extension provides attributes for Form-Fill facet of AppTemplate
UrnietfparamsscimschemasoracleidcsextensionkerberosRealmApps []GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionkerberosRealmApp: Kerberos Realm
UrnietfparamsscimschemasoracleidcsextensionmanagedappApps []GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappApp: Managed App
UrnietfparamsscimschemasoracleidcsextensionmulticloudServiceAppApps []GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionmulticloudServiceAppApp: This extension defines attributes specific to Apps that represent instances of Multicloud Service App
UrnietfparamsscimschemasoracleidcsextensionopcServiceApps []GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionopcServiceApp: This extension defines attributes specific to Apps that represent instances of an Oracle Public Cloud (OPC) service.
UrnietfparamsscimschemasoracleidcsextensionradiusAppApps []GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionradiusAppApp: This extension defines attributes specific to Apps that represent instances of Radius App.
UrnietfparamsscimschemasoracleidcsextensionrequestableApps []GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionrequestableApp: Requestable App
UrnietfparamsscimschemasoracleidcsextensionsamlServiceProviderApps []GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionsamlServiceProviderApp: This extension defines attributes related to the Service Providers configuration.
UrnietfparamsscimschemasoracleidcsextensionwebTierPolicyApps []GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionwebTierPolicyApp: WebTier Policy
UserRoles []GetDomainsAppsAppUserRole: A list of AppRoles defined by this UnmanagedApp. Membership in each of these AppRoles confers end-user privilege within this App.

accessTokenExpiry Integer: Access token expiry
accounts List<GetDomainsAppsAppAccount>: Accounts of App
active Boolean: If true, this App is able to participate in runtime services, such as automatic-login, OAuth, and SAML. If false, all runtime services are disabled for this App, and only administrative operations can be performed.
adminRoles List<GetDomainsAppsAppAdminRole>: A list of AppRoles defined by this UnmanagedApp. Membership in each of these AppRoles confers administrative privilege within this App.
aliasApps List<GetDomainsAppsAppAliasApp>: Each value of this internal attribute refers to an Oracle Public Cloud infrastructure App on which this App depends.
allUrlSchemesAllowed Boolean: If true, indicates that the system should allow all URL-schemes within each value of the 'redirectUris' attribute. Also indicates that the system should not attempt to confirm that each value of the 'redirectUris' attribute is a valid URI. In particular, the system should not confirm that the domain component of the URI is a top-level domain and the system should not confirm that the hostname portion is a valid system that is reachable over the network.
allowAccessControl Boolean: If true, any managed App that is based on this template is checked for access control that is, access to this app is subject to successful authorization at SSO service, viz. app grants to start with.
allowOffline Boolean: If true, indicates that the Refresh Token is allowed when this App acts as an OAuth Resource.
allowedGrants List<String>: List of grant-types that this App is allowed to use when it acts as an OAuthClient.
allowedOperations List<String>: OPTIONAL. Required only when this App acts as an OAuthClient. Supported values are 'introspect' and 'onBehalfOfUser'. The value 'introspect' allows the client to look inside the access-token. The value 'onBehalfOfUser' overrides how the client's privileges are combined with the privileges of the Subject User. Ordinarily, authorization calculates the set of effective privileges as the intersection of the client's privileges and the user's privileges. The value 'onBehalfOf' indicates that authorization should ignore the privileges of the client and use only the user's privileges to calculate the effective privileges.
allowedScopes List<GetDomainsAppsAppAllowedScope>: A list of scopes (exposed by this App or by other Apps) that this App is allowed to access when it acts as an OAuthClient.
allowedTags List<GetDomainsAppsAppAllowedTag>: A list of tags, acting as an OAuthClient, this App is allowed to access.
appIcon String: Application icon.
appSignonPolicies List<GetDomainsAppsAppAppSignonPolicy>: App Sign-on Policy.
appThumbnail String: Application thumbnail.
appsNetworkPerimeters List<GetDomainsAppsAppAppsNetworkPerimeter>: Network Perimeter
asOpcServices List<GetDomainsAppsAppAsOpcService>: OPCService facet of the application.
attrRenderingMetadatas List<GetDomainsAppsAppAttrRenderingMetadata>: Label for the attribute to be shown in the UI.
attributeSets List<String>: A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If 'attributes' query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.
attributes String: A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.
audience String: The base URI for all of the scopes defined in this App. The value of 'audience' is combined with the 'value' of each scope to form an 'fqs' or fully qualified scope.
authorization String: The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.
basedOnTemplates List<GetDomainsAppsAppBasedOnTemplate>: Application template on which the application is based.
bypassConsent Boolean: If true, indicates that consent should be skipped for all scopes
callbackServiceUrl String: Callback Service URL
certificates List<GetDomainsAppsAppCertificate>: Each value of this attribute represent a certificate that this App uses when it acts as an OAuthClient.
clientIpChecking String: Network Perimeters checking mode
clientSecret String: This value is the credential of this App, which this App supplies as a password when this App authenticates to the Oracle Public Cloud infrastructure. This value is also the client secret of this App when it acts as an OAuthClient.
clientType String: Specifies the type of access that this App has when it acts as an OAuthClient.
cloudControlProperties List<GetDomainsAppsAppCloudControlProperty>: A collection of arbitrary properties that scope the privileges of a cloud-control App.
compartmentOcid String: Oracle Cloud Infrastructure Compartment Id (ocid) in which the resource lives.
contactEmailAddress String: Contact Email Address
delegatedServiceNames List<String>: Service Names allow to use Oracle Cloud Infrastructure signature for client authentication instead of client credentials
deleteInProgress Boolean: A boolean flag indicating this resource in the process of being deleted. Usually set to true when synchronous deletion of the resource would take too long.
description String: The description of the AppRole.
disableKmsiTokenAuthentication Boolean: Indicates whether the application is allowed to be access using kmsi token.
displayName String: Display name of the flatfile bundle configuration property. This attribute maps to "displayName" attribute in "ConfigurationProperty" in ICF.
domainOcid String: Oracle Cloud Infrastructure Domain Id (ocid) in which the resource lives.
editableAttributes List<GetDomainsAppsAppEditableAttribute>: App attributes editable by subject
errorPageUrl String: This attribute specifies the URL of the page to which an application will redirect an end-user in case of error.
forceDelete Boolean
grantedAppRoles List<GetDomainsAppsAppGrantedAppRole>: A list of AppRoles that are granted to this App (and that are defined by other Apps). Within the Oracle Public Cloud infrastructure, this allows AppID-based association. Such an association allows this App to act as a consumer and thus to access resources of another App that acts as a producer.
grants List<GetDomainsAppsAppGrant>: Grants assigned to the app
hashedClientSecret String: Hashed Client Secret. This hash-value is used to verify the 'clientSecret' credential of this App
homePageUrl String: Home Page URL
icon String: URL of application icon.
id String: Unique identifier for the SCIM Resource as defined by the Service Provider. Each representation of the Resource MUST include a non-empty id value. This identifier MUST be unique across the Service Provider's entire set of Resources. It MUST be a stable, non-reassignable identifier that does not change when the same Resource is returned in subsequent requests. The value of the id attribute is always issued by the Service Provider and MUST never be specified by the Service Consumer. bulkId: is a reserved keyword and MUST NOT be used in the unique identifier.
idTokenEncAlgo String: Encryption Alogrithm to use for encrypting ID token.
idcsCreatedBies List<GetDomainsAppsAppIdcsCreatedBy>: The User or App who created the Resource
idcsEndpoint String: The basic endpoint for the identity domain
idcsLastModifiedBies List<GetDomainsAppsAppIdcsLastModifiedBy>: The User or App who modified the Resource
idcsLastUpgradedInRelease String: The release number when the resource was upgraded.
idcsPreventedOperations List<String>: Each value of this attribute specifies an operation that only an internal client may perform on this particular resource.
identityProviders List<GetDomainsAppsAppProvider>: A list of IdentityProvider assigned to app. A user trying to access this app will be automatically redirected to configured IdP during the authentication phase, before being able to access App.
idpPolicies List<GetDomainsAppsAppIdpPolicy>: IDP Policy.
infrastructure Boolean: If true, this App is an internal infrastructure App.
isAliasApp Boolean: If true, this App is an AliasApp and it cannot be granted to an end-user directly.
isDatabaseService Boolean: If true, this application acts as database service Application
isEnterpriseApp Boolean: If true, this app acts as Enterprise app with Authentication and URL Authz policy.
isFormFill Boolean: If true, this application acts as FormFill Application
isKerberosRealm Boolean: If true, indicates that this App supports Kerberos Authentication
isLoginTarget Boolean: If true, this App allows runtime services to log end users into this App automatically.
isManagedApp Boolean: If true, indicates that access to this App requires an account. That is, in order to log in to the App, a User must use an application-specific identity that is maintained in the remote identity-repository of that App.
isMobileTarget Boolean: If true, indicates that the App should be visible in each end-user's mobile application.
isMulticloudServiceApp Boolean: If true, indicates the app is used for multicloud service integration.
isOauthClient Boolean: If true, this application acts as an OAuth Client
isOauthResource Boolean: If true, indicates that this application acts as an OAuth Resource.
isObligationCapable Boolean: This flag indicates if the App is capable of validating obligations with the token for allowing access to the App.
isOpcService Boolean: If true, this application is an Oracle Public Cloud service-instance.
isRadiusApp Boolean: If true, this application acts as an Radius App
isSamlServiceProvider Boolean: If true, then this App acts as a SAML Service Provider.
isUnmanagedApp Boolean: If true, indicates that this application accepts an Oracle Cloud Identity Service User as a login-identity (does not require an account) and relies for authorization on the User's memberships in AppRoles.
isWebTierPolicy Boolean: If true, the webtier policy is active
landingPageUrl String: The URL of the landing page for this App, which is the first page that an end user should see if runtime services log that end user in to this App automatically.
linkingCallbackUrl String: This attribute specifies the callback URL for the social linking operation.
loginMechanism String: The protocol that runtime services will use to log end users in to this App automatically. If 'OIDC', then runtime services use the OpenID Connect protocol. If 'SAML', then runtime services use Security Assertion Markup Language protocol.
loginPageUrl String: This attribute specifies the URL of the page that the App uses when an end-user signs in to that App.
logoutPageUrl String: This attribute specifies the URL of the page that the App uses when an end-user signs out.
logoutUri String: OAuth will use this URI to logout if this App wants to participate in SSO, and if this App's session gets cleared as part of global logout. Note: This attribute is used only if this App acts as an OAuthClient.
metas List<GetDomainsAppsAppMeta>: A complex attribute that contains resource metadata. All sub-attributes are OPTIONAL.
meterAsOpcService Boolean: Indicates whether the application is billed as an OPCService. If true, customer is not billed for runtime operations of the app.
migrated Boolean: If true, this App was migrated from an earlier version of Oracle Public Cloud infrastructure (and may therefore require special handling from runtime services such as OAuth or SAML). If false, this App requires no special handling from runtime services.
name String: The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
ocid String: Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
postLogoutRedirectUris List<String>: Each value of this attribute is the URI of a landing page within this App. It is used only when this App, acting as an OAuthClient, initiates the logout flow and wants to be redirected back to one of its landing pages.
privacyPolicyUrl String: Privacy Policy URL
productLogoUrl String: Application Logo URL
productName String: Product Name
protectableSecondaryAudiences List<GetDomainsAppsAppProtectableSecondaryAudience>: A list of secondary audiences--additional URIs to be added automatically to any OAuth token that allows access to this App. Note: This attribute is used mainly for backward compatibility in certain Oracle Public Cloud Apps.
radiusPolicies List<GetDomainsAppsAppRadiusPolicy>: RADIUS Policy assigned to this application.
readyToUpgrade Boolean: If true, this App requires an upgrade and mandates attention from application administrator. The flag is used by UI to indicate this app is ready to upgrade.
redirectUris List<String>: OPTIONAL. Each value is a URI within this App. This attribute is required when this App acts as an OAuthClient and is involved in three-legged flows (authorization-code flows).
refreshTokenExpiry Integer: Expiry-time in seconds for a Refresh Token. Any token that allows access to this App, once refreshed, will expire after the specified duration.
resourceTypeSchemaVersion String: An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.
samlServiceProviders List<GetDomainsAppsAppSamlServiceProvider>: An attribute that refers to the SAML Service Provider that runtime services will use to log an end user in to this App automatically. Note that this will be used only if the loginMechanism is 'SAML'.
schemas List<String>: REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard "enterprise" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.
scopes List<GetDomainsAppsAppScope>: Scopes defined by this App. Used when this App acts as an OAuth Resource.
secondaryAudiences List<String>: A list of secondary audiences--additional URIs to be added automatically to any OAuth token that allows access to this App. Note: This attribute is used mainly for backward compatibility in certain Oracle Public Cloud Apps.
serviceParams List<GetDomainsAppsAppServiceParam>: Custom attribute that is required to compute other attribute values during app creation.
serviceTypeUrn String: This Uniform Resource Name (URN) value identifies the type of Oracle Public Cloud service of which this app is an instance.
serviceTypeVersion String: This value specifies the version of the Oracle Public Cloud service of which this App is an instance
showInMyApps Boolean: If true, this app will be displayed in the MyApps page of each end-user who has access to the App.
signonPolicies List<GetDomainsAppsAppSignonPolicy>: Sign-on Policy.
tags List<GetDomainsAppsAppTag>: A list of tags on this resource.
tenancyOcid String: Oracle Cloud Infrastructure Tenant Id (ocid) in which the resource lives.
termsOfServiceUrl String: Terms of Service URL
termsOfUses List<GetDomainsAppsAppTermsOfUse>: Terms Of Use.
trustPolicies List<GetDomainsAppsAppTrustPolicy>: Trust Policies.
trustScope String: Indicates the scope of trust for this App when acting as an OAuthClient. A value of 'Explicit' indicates that the App is allowed to access only the scopes of OAuthResources that are explicitly specified as 'allowedScopes'. A value of 'Account' indicates that the App is allowed implicitly to access any scope of any OAuthResource within the same Oracle Cloud Account. A value of 'Tags' indicates that the App is allowed to access any scope of any OAuthResource with a matching tag within the same Oracle Cloud Account. A value of 'Default' indicates that the Tenant default trust scope configured in the Tenant Settings is used.
urnietfparamsscimschemasoracleidcsextensionOciTags List<GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionOciTag>: Oracle Cloud Infrastructure Tags.
urnietfparamsscimschemasoracleidcsextensiondbcsApps List<GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensiondbcsApp>: This extension provides attributes for database service facet of an App
urnietfparamsscimschemasoracleidcsextensionenterpriseAppApps List<GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionenterpriseAppApp>: This extension defines the Enterprise App related attributes.
urnietfparamsscimschemasoracleidcsextensionformFillAppApps List<GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionformFillAppApp>: This extension provides attributes for Form-Fill facet of App
urnietfparamsscimschemasoracleidcsextensionformFillAppTemplateAppTemplates List<GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionformFillAppTemplateAppTemplate>: This extension provides attributes for Form-Fill facet of AppTemplate
urnietfparamsscimschemasoracleidcsextensionkerberosRealmApps List<GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionkerberosRealmApp>: Kerberos Realm
urnietfparamsscimschemasoracleidcsextensionmanagedappApps List<GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappApp>: Managed App
urnietfparamsscimschemasoracleidcsextensionmulticloudServiceAppApps List<GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionmulticloudServiceAppApp>: This extension defines attributes specific to Apps that represent instances of Multicloud Service App
urnietfparamsscimschemasoracleidcsextensionopcServiceApps List<GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionopcServiceApp>: This extension defines attributes specific to Apps that represent instances of an Oracle Public Cloud (OPC) service.
urnietfparamsscimschemasoracleidcsextensionradiusAppApps List<GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionradiusAppApp>: This extension defines attributes specific to Apps that represent instances of Radius App.
urnietfparamsscimschemasoracleidcsextensionrequestableApps List<GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionrequestableApp>: Requestable App
urnietfparamsscimschemasoracleidcsextensionsamlServiceProviderApps List<GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionsamlServiceProviderApp>: This extension defines attributes related to the Service Providers configuration.
urnietfparamsscimschemasoracleidcsextensionwebTierPolicyApps List<GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionwebTierPolicyApp>: WebTier Policy
userRoles List<GetDomainsAppsAppUserRole>: A list of AppRoles defined by this UnmanagedApp. Membership in each of these AppRoles confers end-user privilege within this App.

accessTokenExpiry number: Access token expiry
accounts GetDomainsAppsAppAccount[]: Accounts of App
active boolean: If true, this App is able to participate in runtime services, such as automatic-login, OAuth, and SAML. If false, all runtime services are disabled for this App, and only administrative operations can be performed.
adminRoles GetDomainsAppsAppAdminRole[]: A list of AppRoles defined by this UnmanagedApp. Membership in each of these AppRoles confers administrative privilege within this App.
aliasApps GetDomainsAppsAppAliasApp[]: Each value of this internal attribute refers to an Oracle Public Cloud infrastructure App on which this App depends.
allUrlSchemesAllowed boolean: If true, indicates that the system should allow all URL-schemes within each value of the 'redirectUris' attribute. Also indicates that the system should not attempt to confirm that each value of the 'redirectUris' attribute is a valid URI. In particular, the system should not confirm that the domain component of the URI is a top-level domain and the system should not confirm that the hostname portion is a valid system that is reachable over the network.
allowAccessControl boolean: If true, any managed App that is based on this template is checked for access control that is, access to this app is subject to successful authorization at SSO service, viz. app grants to start with.
allowOffline boolean: If true, indicates that the Refresh Token is allowed when this App acts as an OAuth Resource.
allowedGrants string[]: List of grant-types that this App is allowed to use when it acts as an OAuthClient.
allowedOperations string[]: OPTIONAL. Required only when this App acts as an OAuthClient. Supported values are 'introspect' and 'onBehalfOfUser'. The value 'introspect' allows the client to look inside the access-token. The value 'onBehalfOfUser' overrides how the client's privileges are combined with the privileges of the Subject User. Ordinarily, authorization calculates the set of effective privileges as the intersection of the client's privileges and the user's privileges. The value 'onBehalfOf' indicates that authorization should ignore the privileges of the client and use only the user's privileges to calculate the effective privileges.
allowedScopes GetDomainsAppsAppAllowedScope[]: A list of scopes (exposed by this App or by other Apps) that this App is allowed to access when it acts as an OAuthClient.
allowedTags GetDomainsAppsAppAllowedTag[]: A list of tags, acting as an OAuthClient, this App is allowed to access.
appIcon string: Application icon.
appSignonPolicies GetDomainsAppsAppAppSignonPolicy[]: App Sign-on Policy.
appThumbnail string: Application thumbnail.
appsNetworkPerimeters GetDomainsAppsAppAppsNetworkPerimeter[]: Network Perimeter
asOpcServices GetDomainsAppsAppAsOpcService[]: OPCService facet of the application.
attrRenderingMetadatas GetDomainsAppsAppAttrRenderingMetadata[]: Label for the attribute to be shown in the UI.
attributeSets string[]: A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If 'attributes' query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.
attributes string: A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.
audience string: The base URI for all of the scopes defined in this App. The value of 'audience' is combined with the 'value' of each scope to form an 'fqs' or fully qualified scope.
authorization string: The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.
basedOnTemplates GetDomainsAppsAppBasedOnTemplate[]: Application template on which the application is based.
bypassConsent boolean: If true, indicates that consent should be skipped for all scopes
callbackServiceUrl string: Callback Service URL
certificates GetDomainsAppsAppCertificate[]: Each value of this attribute represent a certificate that this App uses when it acts as an OAuthClient.
clientIpChecking string: Network Perimeters checking mode
clientSecret string: This value is the credential of this App, which this App supplies as a password when this App authenticates to the Oracle Public Cloud infrastructure. This value is also the client secret of this App when it acts as an OAuthClient.
clientType string: Specifies the type of access that this App has when it acts as an OAuthClient.
cloudControlProperties GetDomainsAppsAppCloudControlProperty[]: A collection of arbitrary properties that scope the privileges of a cloud-control App.
compartmentOcid string: Oracle Cloud Infrastructure Compartment Id (ocid) in which the resource lives.
contactEmailAddress string: Contact Email Address
delegatedServiceNames string[]: Service Names allow to use Oracle Cloud Infrastructure signature for client authentication instead of client credentials
deleteInProgress boolean: A boolean flag indicating this resource in the process of being deleted. Usually set to true when synchronous deletion of the resource would take too long.
description string: The description of the AppRole.
disableKmsiTokenAuthentication boolean: Indicates whether the application is allowed to be access using kmsi token.
displayName string: Display name of the flatfile bundle configuration property. This attribute maps to "displayName" attribute in "ConfigurationProperty" in ICF.
domainOcid string: Oracle Cloud Infrastructure Domain Id (ocid) in which the resource lives.
editableAttributes GetDomainsAppsAppEditableAttribute[]: App attributes editable by subject
errorPageUrl string: This attribute specifies the URL of the page to which an application will redirect an end-user in case of error.
forceDelete boolean
grantedAppRoles GetDomainsAppsAppGrantedAppRole[]: A list of AppRoles that are granted to this App (and that are defined by other Apps). Within the Oracle Public Cloud infrastructure, this allows AppID-based association. Such an association allows this App to act as a consumer and thus to access resources of another App that acts as a producer.
grants GetDomainsAppsAppGrant[]: Grants assigned to the app
hashedClientSecret string: Hashed Client Secret. This hash-value is used to verify the 'clientSecret' credential of this App
homePageUrl string: Home Page URL
icon string: URL of application icon.
id string: Unique identifier for the SCIM Resource as defined by the Service Provider. Each representation of the Resource MUST include a non-empty id value. This identifier MUST be unique across the Service Provider's entire set of Resources. It MUST be a stable, non-reassignable identifier that does not change when the same Resource is returned in subsequent requests. The value of the id attribute is always issued by the Service Provider and MUST never be specified by the Service Consumer. bulkId: is a reserved keyword and MUST NOT be used in the unique identifier.
idTokenEncAlgo string: Encryption Alogrithm to use for encrypting ID token.
idcsCreatedBies GetDomainsAppsAppIdcsCreatedBy[]: The User or App who created the Resource
idcsEndpoint string: The basic endpoint for the identity domain
idcsLastModifiedBies GetDomainsAppsAppIdcsLastModifiedBy[]: The User or App who modified the Resource
idcsLastUpgradedInRelease string: The release number when the resource was upgraded.
idcsPreventedOperations string[]: Each value of this attribute specifies an operation that only an internal client may perform on this particular resource.
identityProviders GetDomainsAppsAppIdentityProvider[]: A list of IdentityProvider assigned to app. A user trying to access this app will be automatically redirected to configured IdP during the authentication phase, before being able to access App.
idpPolicies GetDomainsAppsAppIdpPolicy[]: IDP Policy.
infrastructure boolean: If true, this App is an internal infrastructure App.
isAliasApp boolean: If true, this App is an AliasApp and it cannot be granted to an end-user directly.
isDatabaseService boolean: If true, this application acts as database service Application
isEnterpriseApp boolean: If true, this app acts as Enterprise app with Authentication and URL Authz policy.
isFormFill boolean: If true, this application acts as FormFill Application
isKerberosRealm boolean: If true, indicates that this App supports Kerberos Authentication
isLoginTarget boolean: If true, this App allows runtime services to log end users into this App automatically.
isManagedApp boolean: If true, indicates that access to this App requires an account. That is, in order to log in to the App, a User must use an application-specific identity that is maintained in the remote identity-repository of that App.
isMobileTarget boolean: If true, indicates that the App should be visible in each end-user's mobile application.
isMulticloudServiceApp boolean: If true, indicates the app is used for multicloud service integration.
isOauthClient boolean: If true, this application acts as an OAuth Client
isOauthResource boolean: If true, indicates that this application acts as an OAuth Resource.
isObligationCapable boolean: This flag indicates if the App is capable of validating obligations with the token for allowing access to the App.
isOpcService boolean: If true, this application is an Oracle Public Cloud service-instance.
isRadiusApp boolean: If true, this application acts as an Radius App
isSamlServiceProvider boolean: If true, then this App acts as a SAML Service Provider.
isUnmanagedApp boolean: If true, indicates that this application accepts an Oracle Cloud Identity Service User as a login-identity (does not require an account) and relies for authorization on the User's memberships in AppRoles.
isWebTierPolicy boolean: If true, the webtier policy is active
landingPageUrl string: The URL of the landing page for this App, which is the first page that an end user should see if runtime services log that end user in to this App automatically.
linkingCallbackUrl string: This attribute specifies the callback URL for the social linking operation.
loginMechanism string: The protocol that runtime services will use to log end users in to this App automatically. If 'OIDC', then runtime services use the OpenID Connect protocol. If 'SAML', then runtime services use Security Assertion Markup Language protocol.
loginPageUrl string: This attribute specifies the URL of the page that the App uses when an end-user signs in to that App.
logoutPageUrl string: This attribute specifies the URL of the page that the App uses when an end-user signs out.
logoutUri string: OAuth will use this URI to logout if this App wants to participate in SSO, and if this App's session gets cleared as part of global logout. Note: This attribute is used only if this App acts as an OAuthClient.
metas GetDomainsAppsAppMeta[]: A complex attribute that contains resource metadata. All sub-attributes are OPTIONAL.
meterAsOpcService boolean: Indicates whether the application is billed as an OPCService. If true, customer is not billed for runtime operations of the app.
migrated boolean: If true, this App was migrated from an earlier version of Oracle Public Cloud infrastructure (and may therefore require special handling from runtime services such as OAuth or SAML). If false, this App requires no special handling from runtime services.
name string: The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
ocid string: Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
postLogoutRedirectUris string[]: Each value of this attribute is the URI of a landing page within this App. It is used only when this App, acting as an OAuthClient, initiates the logout flow and wants to be redirected back to one of its landing pages.
privacyPolicyUrl string: Privacy Policy URL
productLogoUrl string: Application Logo URL
productName string: Product Name
protectableSecondaryAudiences GetDomainsAppsAppProtectableSecondaryAudience[]: A list of secondary audiences--additional URIs to be added automatically to any OAuth token that allows access to this App. Note: This attribute is used mainly for backward compatibility in certain Oracle Public Cloud Apps.
radiusPolicies GetDomainsAppsAppRadiusPolicy[]: RADIUS Policy assigned to this application.
readyToUpgrade boolean: If true, this App requires an upgrade and mandates attention from application administrator. The flag is used by UI to indicate this app is ready to upgrade.
redirectUris string[]: OPTIONAL. Each value is a URI within this App. This attribute is required when this App acts as an OAuthClient and is involved in three-legged flows (authorization-code flows).
refreshTokenExpiry number: Expiry-time in seconds for a Refresh Token. Any token that allows access to this App, once refreshed, will expire after the specified duration.
resourceTypeSchemaVersion string: An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.
samlServiceProviders GetDomainsAppsAppSamlServiceProvider[]: An attribute that refers to the SAML Service Provider that runtime services will use to log an end user in to this App automatically. Note that this will be used only if the loginMechanism is 'SAML'.
schemas string[]: REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard "enterprise" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.
scopes GetDomainsAppsAppScope[]: Scopes defined by this App. Used when this App acts as an OAuth Resource.
secondaryAudiences string[]: A list of secondary audiences--additional URIs to be added automatically to any OAuth token that allows access to this App. Note: This attribute is used mainly for backward compatibility in certain Oracle Public Cloud Apps.
serviceParams GetDomainsAppsAppServiceParam[]: Custom attribute that is required to compute other attribute values during app creation.
serviceTypeUrn string: This Uniform Resource Name (URN) value identifies the type of Oracle Public Cloud service of which this app is an instance.
serviceTypeVersion string: This value specifies the version of the Oracle Public Cloud service of which this App is an instance
showInMyApps boolean: If true, this app will be displayed in the MyApps page of each end-user who has access to the App.
signonPolicies GetDomainsAppsAppSignonPolicy[]: Sign-on Policy.
tags GetDomainsAppsAppTag[]: A list of tags on this resource.
tenancyOcid string: Oracle Cloud Infrastructure Tenant Id (ocid) in which the resource lives.
termsOfServiceUrl string: Terms of Service URL
termsOfUses GetDomainsAppsAppTermsOfUse[]: Terms Of Use.
trustPolicies GetDomainsAppsAppTrustPolicy[]: Trust Policies.
trustScope string: Indicates the scope of trust for this App when acting as an OAuthClient. A value of 'Explicit' indicates that the App is allowed to access only the scopes of OAuthResources that are explicitly specified as 'allowedScopes'. A value of 'Account' indicates that the App is allowed implicitly to access any scope of any OAuthResource within the same Oracle Cloud Account. A value of 'Tags' indicates that the App is allowed to access any scope of any OAuthResource with a matching tag within the same Oracle Cloud Account. A value of 'Default' indicates that the Tenant default trust scope configured in the Tenant Settings is used.
urnietfparamsscimschemasoracleidcsextensionOciTags GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionOciTag[]: Oracle Cloud Infrastructure Tags.
urnietfparamsscimschemasoracleidcsextensiondbcsApps GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensiondbcsApp[]: This extension provides attributes for database service facet of an App
urnietfparamsscimschemasoracleidcsextensionenterpriseAppApps GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionenterpriseAppApp[]: This extension defines the Enterprise App related attributes.
urnietfparamsscimschemasoracleidcsextensionformFillAppApps GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionformFillAppApp[]: This extension provides attributes for Form-Fill facet of App
urnietfparamsscimschemasoracleidcsextensionformFillAppTemplateAppTemplates GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionformFillAppTemplateAppTemplate[]: This extension provides attributes for Form-Fill facet of AppTemplate
urnietfparamsscimschemasoracleidcsextensionkerberosRealmApps GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionkerberosRealmApp[]: Kerberos Realm
urnietfparamsscimschemasoracleidcsextensionmanagedappApps GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappApp[]: Managed App
urnietfparamsscimschemasoracleidcsextensionmulticloudServiceAppApps GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionmulticloudServiceAppApp[]: This extension defines attributes specific to Apps that represent instances of Multicloud Service App
urnietfparamsscimschemasoracleidcsextensionopcServiceApps GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionopcServiceApp[]: This extension defines attributes specific to Apps that represent instances of an Oracle Public Cloud (OPC) service.
urnietfparamsscimschemasoracleidcsextensionradiusAppApps GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionradiusAppApp[]: This extension defines attributes specific to Apps that represent instances of Radius App.
urnietfparamsscimschemasoracleidcsextensionrequestableApps GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionrequestableApp[]: Requestable App
urnietfparamsscimschemasoracleidcsextensionsamlServiceProviderApps GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionsamlServiceProviderApp[]: This extension defines attributes related to the Service Providers configuration.
urnietfparamsscimschemasoracleidcsextensionwebTierPolicyApps GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionwebTierPolicyApp[]: WebTier Policy
userRoles GetDomainsAppsAppUserRole[]: A list of AppRoles defined by this UnmanagedApp. Membership in each of these AppRoles confers end-user privilege within this App.

access_token_expiry int: Access token expiry
accounts Sequence[GetDomainsAppsAppAccount]: Accounts of App
active bool: If true, this App is able to participate in runtime services, such as automatic-login, OAuth, and SAML. If false, all runtime services are disabled for this App, and only administrative operations can be performed.
admin_roles Sequence[GetDomainsAppsAppAdminRole]: A list of AppRoles defined by this UnmanagedApp. Membership in each of these AppRoles confers administrative privilege within this App.
alias_apps Sequence[GetDomainsAppsAppAliasApp]: Each value of this internal attribute refers to an Oracle Public Cloud infrastructure App on which this App depends.
all_url_schemes_allowed bool: If true, indicates that the system should allow all URL-schemes within each value of the 'redirectUris' attribute. Also indicates that the system should not attempt to confirm that each value of the 'redirectUris' attribute is a valid URI. In particular, the system should not confirm that the domain component of the URI is a top-level domain and the system should not confirm that the hostname portion is a valid system that is reachable over the network.
allow_access_control bool: If true, any managed App that is based on this template is checked for access control that is, access to this app is subject to successful authorization at SSO service, viz. app grants to start with.
allow_offline bool: If true, indicates that the Refresh Token is allowed when this App acts as an OAuth Resource.
allowed_grants Sequence[str]: List of grant-types that this App is allowed to use when it acts as an OAuthClient.
allowed_operations Sequence[str]: OPTIONAL. Required only when this App acts as an OAuthClient. Supported values are 'introspect' and 'onBehalfOfUser'. The value 'introspect' allows the client to look inside the access-token. The value 'onBehalfOfUser' overrides how the client's privileges are combined with the privileges of the Subject User. Ordinarily, authorization calculates the set of effective privileges as the intersection of the client's privileges and the user's privileges. The value 'onBehalfOf' indicates that authorization should ignore the privileges of the client and use only the user's privileges to calculate the effective privileges.
allowed_scopes Sequence[GetDomainsAppsAppAllowedScope]: A list of scopes (exposed by this App or by other Apps) that this App is allowed to access when it acts as an OAuthClient.
allowed_tags Sequence[GetDomainsAppsAppAllowedTag]: A list of tags, acting as an OAuthClient, this App is allowed to access.
app_icon str: Application icon.
app_signon_policies Sequence[GetDomainsAppsAppAppSignonPolicy]: App Sign-on Policy.
app_thumbnail str: Application thumbnail.
apps_network_perimeters Sequence[GetDomainsAppsAppAppsNetworkPerimeter]: Network Perimeter
as_opc_services Sequence[GetDomainsAppsAppAsOpcService]: OPCService facet of the application.
attr_rendering_metadatas Sequence[GetDomainsAppsAppAttrRenderingMetadata]: Label for the attribute to be shown in the UI.
attribute_sets Sequence[str]: A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If 'attributes' query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.
attributes str: A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.
audience str: The base URI for all of the scopes defined in this App. The value of 'audience' is combined with the 'value' of each scope to form an 'fqs' or fully qualified scope.
authorization str: The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.
based_on_templates Sequence[GetDomainsAppsAppBasedOnTemplate]: Application template on which the application is based.
bypass_consent bool: If true, indicates that consent should be skipped for all scopes
callback_service_url str: Callback Service URL
certificates Sequence[GetDomainsAppsAppCertificate]: Each value of this attribute represent a certificate that this App uses when it acts as an OAuthClient.
client_ip_checking str: Network Perimeters checking mode
client_secret str: This value is the credential of this App, which this App supplies as a password when this App authenticates to the Oracle Public Cloud infrastructure. This value is also the client secret of this App when it acts as an OAuthClient.
client_type str: Specifies the type of access that this App has when it acts as an OAuthClient.
cloud_control_properties Sequence[GetDomainsAppsAppCloudControlProperty]: A collection of arbitrary properties that scope the privileges of a cloud-control App.
compartment_ocid str: Oracle Cloud Infrastructure Compartment Id (ocid) in which the resource lives.
contact_email_address str: Contact Email Address
delegated_service_names Sequence[str]: Service Names allow to use Oracle Cloud Infrastructure signature for client authentication instead of client credentials
delete_in_progress bool: A boolean flag indicating this resource in the process of being deleted. Usually set to true when synchronous deletion of the resource would take too long.
description str: The description of the AppRole.
disable_kmsi_token_authentication bool: Indicates whether the application is allowed to be access using kmsi token.
display_name str: Display name of the flatfile bundle configuration property. This attribute maps to "displayName" attribute in "ConfigurationProperty" in ICF.
domain_ocid str: Oracle Cloud Infrastructure Domain Id (ocid) in which the resource lives.
editable_attributes Sequence[GetDomainsAppsAppEditableAttribute]: App attributes editable by subject
error_page_url str: This attribute specifies the URL of the page to which an application will redirect an end-user in case of error.
force_delete bool
granted_app_roles Sequence[GetDomainsAppsAppGrantedAppRole]: A list of AppRoles that are granted to this App (and that are defined by other Apps). Within the Oracle Public Cloud infrastructure, this allows AppID-based association. Such an association allows this App to act as a consumer and thus to access resources of another App that acts as a producer.
grants Sequence[GetDomainsAppsAppGrant]: Grants assigned to the app
hashed_client_secret str: Hashed Client Secret. This hash-value is used to verify the 'clientSecret' credential of this App
home_page_url str: Home Page URL
icon str: URL of application icon.
id str: Unique identifier for the SCIM Resource as defined by the Service Provider. Each representation of the Resource MUST include a non-empty id value. This identifier MUST be unique across the Service Provider's entire set of Resources. It MUST be a stable, non-reassignable identifier that does not change when the same Resource is returned in subsequent requests. The value of the id attribute is always issued by the Service Provider and MUST never be specified by the Service Consumer. bulkId: is a reserved keyword and MUST NOT be used in the unique identifier.
id_token_enc_algo str: Encryption Alogrithm to use for encrypting ID token.
idcs_created_bies Sequence[GetDomainsAppsAppIdcsCreatedBy]: The User or App who created the Resource
idcs_endpoint str: The basic endpoint for the identity domain
idcs_last_modified_bies Sequence[GetDomainsAppsAppIdcsLastModifiedBy]: The User or App who modified the Resource
idcs_last_upgraded_in_release str: The release number when the resource was upgraded.
idcs_prevented_operations Sequence[str]: Each value of this attribute specifies an operation that only an internal client may perform on this particular resource.
identity_providers Sequence[GetDomainsAppsAppIdentityProvider]: A list of IdentityProvider assigned to app. A user trying to access this app will be automatically redirected to configured IdP during the authentication phase, before being able to access App.
idp_policies Sequence[GetDomainsAppsAppIdpPolicy]: IDP Policy.
infrastructure bool: If true, this App is an internal infrastructure App.
is_alias_app bool: If true, this App is an AliasApp and it cannot be granted to an end-user directly.
is_database_service bool: If true, this application acts as database service Application
is_enterprise_app bool: If true, this app acts as Enterprise app with Authentication and URL Authz policy.
is_form_fill bool: If true, this application acts as FormFill Application
is_kerberos_realm bool: If true, indicates that this App supports Kerberos Authentication
is_login_target bool: If true, this App allows runtime services to log end users into this App automatically.
is_managed_app bool: If true, indicates that access to this App requires an account. That is, in order to log in to the App, a User must use an application-specific identity that is maintained in the remote identity-repository of that App.
is_mobile_target bool: If true, indicates that the App should be visible in each end-user's mobile application.
is_multicloud_service_app bool: If true, indicates the app is used for multicloud service integration.
is_oauth_client bool: If true, this application acts as an OAuth Client
is_oauth_resource bool: If true, indicates that this application acts as an OAuth Resource.
is_obligation_capable bool: This flag indicates if the App is capable of validating obligations with the token for allowing access to the App.
is_opc_service bool: If true, this application is an Oracle Public Cloud service-instance.
is_radius_app bool: If true, this application acts as an Radius App
is_saml_service_provider bool: If true, then this App acts as a SAML Service Provider.
is_unmanaged_app bool: If true, indicates that this application accepts an Oracle Cloud Identity Service User as a login-identity (does not require an account) and relies for authorization on the User's memberships in AppRoles.
is_web_tier_policy bool: If true, the webtier policy is active
landing_page_url str: The URL of the landing page for this App, which is the first page that an end user should see if runtime services log that end user in to this App automatically.
linking_callback_url str: This attribute specifies the callback URL for the social linking operation.
login_mechanism str: The protocol that runtime services will use to log end users in to this App automatically. If 'OIDC', then runtime services use the OpenID Connect protocol. If 'SAML', then runtime services use Security Assertion Markup Language protocol.
login_page_url str: This attribute specifies the URL of the page that the App uses when an end-user signs in to that App.
logout_page_url str: This attribute specifies the URL of the page that the App uses when an end-user signs out.
logout_uri str: OAuth will use this URI to logout if this App wants to participate in SSO, and if this App's session gets cleared as part of global logout. Note: This attribute is used only if this App acts as an OAuthClient.
metas Sequence[GetDomainsAppsAppMeta]: A complex attribute that contains resource metadata. All sub-attributes are OPTIONAL.
meter_as_opc_service bool: Indicates whether the application is billed as an OPCService. If true, customer is not billed for runtime operations of the app.
migrated bool: If true, this App was migrated from an earlier version of Oracle Public Cloud infrastructure (and may therefore require special handling from runtime services such as OAuth or SAML). If false, this App requires no special handling from runtime services.
name str: The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
ocid str: Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
post_logout_redirect_uris Sequence[str]: Each value of this attribute is the URI of a landing page within this App. It is used only when this App, acting as an OAuthClient, initiates the logout flow and wants to be redirected back to one of its landing pages.
privacy_policy_url str: Privacy Policy URL
product_logo_url str: Application Logo URL
product_name str: Product Name
protectable_secondary_audiences Sequence[GetDomainsAppsAppProtectableSecondaryAudience]: A list of secondary audiences--additional URIs to be added automatically to any OAuth token that allows access to this App. Note: This attribute is used mainly for backward compatibility in certain Oracle Public Cloud Apps.
radius_policies Sequence[GetDomainsAppsAppRadiusPolicy]: RADIUS Policy assigned to this application.
ready_to_upgrade bool: If true, this App requires an upgrade and mandates attention from application administrator. The flag is used by UI to indicate this app is ready to upgrade.
redirect_uris Sequence[str]: OPTIONAL. Each value is a URI within this App. This attribute is required when this App acts as an OAuthClient and is involved in three-legged flows (authorization-code flows).
refresh_token_expiry int: Expiry-time in seconds for a Refresh Token. Any token that allows access to this App, once refreshed, will expire after the specified duration.
resource_type_schema_version str: An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.
saml_service_providers Sequence[GetDomainsAppsAppSamlServiceProvider]: An attribute that refers to the SAML Service Provider that runtime services will use to log an end user in to this App automatically. Note that this will be used only if the loginMechanism is 'SAML'.
schemas Sequence[str]: REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard "enterprise" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.
scopes Sequence[GetDomainsAppsAppScope]: Scopes defined by this App. Used when this App acts as an OAuth Resource.
secondary_audiences Sequence[str]: A list of secondary audiences--additional URIs to be added automatically to any OAuth token that allows access to this App. Note: This attribute is used mainly for backward compatibility in certain Oracle Public Cloud Apps.
service_params Sequence[GetDomainsAppsAppServiceParam]: Custom attribute that is required to compute other attribute values during app creation.
service_type_urn str: This Uniform Resource Name (URN) value identifies the type of Oracle Public Cloud service of which this app is an instance.
service_type_version str: This value specifies the version of the Oracle Public Cloud service of which this App is an instance
show_in_my_apps bool: If true, this app will be displayed in the MyApps page of each end-user who has access to the App.
signon_policies Sequence[GetDomainsAppsAppSignonPolicy]: Sign-on Policy.
tags Sequence[GetDomainsAppsAppTag]: A list of tags on this resource.
tenancy_ocid str: Oracle Cloud Infrastructure Tenant Id (ocid) in which the resource lives.
terms_of_service_url str: Terms of Service URL
terms_of_uses Sequence[GetDomainsAppsAppTermsOfUse]: Terms Of Use.
trust_policies Sequence[GetDomainsAppsAppTrustPolicy]: Trust Policies.
trust_scope str: Indicates the scope of trust for this App when acting as an OAuthClient. A value of 'Explicit' indicates that the App is allowed to access only the scopes of OAuthResources that are explicitly specified as 'allowedScopes'. A value of 'Account' indicates that the App is allowed implicitly to access any scope of any OAuthResource within the same Oracle Cloud Account. A value of 'Tags' indicates that the App is allowed to access any scope of any OAuthResource with a matching tag within the same Oracle Cloud Account. A value of 'Default' indicates that the Tenant default trust scope configured in the Tenant Settings is used.
urnietfparamsscimschemasoracleidcsextension_oci_tags Sequence[GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionOciTag]: Oracle Cloud Infrastructure Tags.
urnietfparamsscimschemasoracleidcsextensiondbcs_apps Sequence[GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensiondbcsApp]: This extension provides attributes for database service facet of an App
urnietfparamsscimschemasoracleidcsextensionenterprise_app_apps Sequence[GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionenterpriseAppApp]: This extension defines the Enterprise App related attributes.
urnietfparamsscimschemasoracleidcsextensionform_fill_app_apps Sequence[GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionformFillAppApp]: This extension provides attributes for Form-Fill facet of App
urnietfparamsscimschemasoracleidcsextensionform_fill_app_template_app_templates Sequence[GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionformFillAppTemplateAppTemplate]: This extension provides attributes for Form-Fill facet of AppTemplate
urnietfparamsscimschemasoracleidcsextensionkerberos_realm_apps Sequence[GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionkerberosRealmApp]: Kerberos Realm
urnietfparamsscimschemasoracleidcsextensionmanagedapp_apps Sequence[GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappApp]: Managed App
urnietfparamsscimschemasoracleidcsextensionmulticloud_service_app_apps Sequence[GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionmulticloudServiceAppApp]: This extension defines attributes specific to Apps that represent instances of Multicloud Service App
urnietfparamsscimschemasoracleidcsextensionopc_service_apps Sequence[GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionopcServiceApp]: This extension defines attributes specific to Apps that represent instances of an Oracle Public Cloud (OPC) service.
urnietfparamsscimschemasoracleidcsextensionradius_app_apps Sequence[GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionradiusAppApp]: This extension defines attributes specific to Apps that represent instances of Radius App.
urnietfparamsscimschemasoracleidcsextensionrequestable_apps Sequence[GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionrequestableApp]: Requestable App
urnietfparamsscimschemasoracleidcsextensionsaml_service_provider_apps Sequence[GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionsamlServiceProviderApp]: This extension defines attributes related to the Service Providers configuration.
urnietfparamsscimschemasoracleidcsextensionweb_tier_policy_apps Sequence[GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionwebTierPolicyApp]: WebTier Policy
user_roles Sequence[GetDomainsAppsAppUserRole]: A list of AppRoles defined by this UnmanagedApp. Membership in each of these AppRoles confers end-user privilege within this App.

accessTokenExpiry Number: Access token expiry
accounts List<Property Map>: Accounts of App
active Boolean: If true, this App is able to participate in runtime services, such as automatic-login, OAuth, and SAML. If false, all runtime services are disabled for this App, and only administrative operations can be performed.
adminRoles List<Property Map>: A list of AppRoles defined by this UnmanagedApp. Membership in each of these AppRoles confers administrative privilege within this App.
aliasApps List<Property Map>: Each value of this internal attribute refers to an Oracle Public Cloud infrastructure App on which this App depends.
allUrlSchemesAllowed Boolean: If true, indicates that the system should allow all URL-schemes within each value of the 'redirectUris' attribute. Also indicates that the system should not attempt to confirm that each value of the 'redirectUris' attribute is a valid URI. In particular, the system should not confirm that the domain component of the URI is a top-level domain and the system should not confirm that the hostname portion is a valid system that is reachable over the network.
allowAccessControl Boolean: If true, any managed App that is based on this template is checked for access control that is, access to this app is subject to successful authorization at SSO service, viz. app grants to start with.
allowOffline Boolean: If true, indicates that the Refresh Token is allowed when this App acts as an OAuth Resource.
allowedGrants List<String>: List of grant-types that this App is allowed to use when it acts as an OAuthClient.
allowedOperations List<String>: OPTIONAL. Required only when this App acts as an OAuthClient. Supported values are 'introspect' and 'onBehalfOfUser'. The value 'introspect' allows the client to look inside the access-token. The value 'onBehalfOfUser' overrides how the client's privileges are combined with the privileges of the Subject User. Ordinarily, authorization calculates the set of effective privileges as the intersection of the client's privileges and the user's privileges. The value 'onBehalfOf' indicates that authorization should ignore the privileges of the client and use only the user's privileges to calculate the effective privileges.
allowedScopes List<Property Map>: A list of scopes (exposed by this App or by other Apps) that this App is allowed to access when it acts as an OAuthClient.
allowedTags List<Property Map>: A list of tags, acting as an OAuthClient, this App is allowed to access.
appIcon String: Application icon.
appSignonPolicies List<Property Map>: App Sign-on Policy.
appThumbnail String: Application thumbnail.
appsNetworkPerimeters List<Property Map>: Network Perimeter
asOpcServices List<Property Map>: OPCService facet of the application.
attrRenderingMetadatas List<Property Map>: Label for the attribute to be shown in the UI.
attributeSets List<String>: A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If 'attributes' query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.
attributes String: A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.
audience String: The base URI for all of the scopes defined in this App. The value of 'audience' is combined with the 'value' of each scope to form an 'fqs' or fully qualified scope.
authorization String: The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.
basedOnTemplates List<Property Map>: Application template on which the application is based.
bypassConsent Boolean: If true, indicates that consent should be skipped for all scopes
callbackServiceUrl String: Callback Service URL
certificates List<Property Map>: Each value of this attribute represent a certificate that this App uses when it acts as an OAuthClient.
clientIpChecking String: Network Perimeters checking mode
clientSecret String: This value is the credential of this App, which this App supplies as a password when this App authenticates to the Oracle Public Cloud infrastructure. This value is also the client secret of this App when it acts as an OAuthClient.
clientType String: Specifies the type of access that this App has when it acts as an OAuthClient.
cloudControlProperties List<Property Map>: A collection of arbitrary properties that scope the privileges of a cloud-control App.
compartmentOcid String: Oracle Cloud Infrastructure Compartment Id (ocid) in which the resource lives.
contactEmailAddress String: Contact Email Address
delegatedServiceNames List<String>: Service Names allow to use Oracle Cloud Infrastructure signature for client authentication instead of client credentials
deleteInProgress Boolean: A boolean flag indicating this resource in the process of being deleted. Usually set to true when synchronous deletion of the resource would take too long.
description String: The description of the AppRole.
disableKmsiTokenAuthentication Boolean: Indicates whether the application is allowed to be access using kmsi token.
displayName String: Display name of the flatfile bundle configuration property. This attribute maps to "displayName" attribute in "ConfigurationProperty" in ICF.
domainOcid String: Oracle Cloud Infrastructure Domain Id (ocid) in which the resource lives.
editableAttributes List<Property Map>: App attributes editable by subject
errorPageUrl String: This attribute specifies the URL of the page to which an application will redirect an end-user in case of error.
forceDelete Boolean
grantedAppRoles List<Property Map>: A list of AppRoles that are granted to this App (and that are defined by other Apps). Within the Oracle Public Cloud infrastructure, this allows AppID-based association. Such an association allows this App to act as a consumer and thus to access resources of another App that acts as a producer.
grants List<Property Map>: Grants assigned to the app
hashedClientSecret String: Hashed Client Secret. This hash-value is used to verify the 'clientSecret' credential of this App
homePageUrl String: Home Page URL
icon String: URL of application icon.
id String: Unique identifier for the SCIM Resource as defined by the Service Provider. Each representation of the Resource MUST include a non-empty id value. This identifier MUST be unique across the Service Provider's entire set of Resources. It MUST be a stable, non-reassignable identifier that does not change when the same Resource is returned in subsequent requests. The value of the id attribute is always issued by the Service Provider and MUST never be specified by the Service Consumer. bulkId: is a reserved keyword and MUST NOT be used in the unique identifier.
idTokenEncAlgo String: Encryption Alogrithm to use for encrypting ID token.
idcsCreatedBies List<Property Map>: The User or App who created the Resource
idcsEndpoint String: The basic endpoint for the identity domain
idcsLastModifiedBies List<Property Map>: The User or App who modified the Resource
idcsLastUpgradedInRelease String: The release number when the resource was upgraded.
idcsPreventedOperations List<String>: Each value of this attribute specifies an operation that only an internal client may perform on this particular resource.
identityProviders List<Property Map>: A list of IdentityProvider assigned to app. A user trying to access this app will be automatically redirected to configured IdP during the authentication phase, before being able to access App.
idpPolicies List<Property Map>: IDP Policy.
infrastructure Boolean: If true, this App is an internal infrastructure App.
isAliasApp Boolean: If true, this App is an AliasApp and it cannot be granted to an end-user directly.
isDatabaseService Boolean: If true, this application acts as database service Application
isEnterpriseApp Boolean: If true, this app acts as Enterprise app with Authentication and URL Authz policy.
isFormFill Boolean: If true, this application acts as FormFill Application
isKerberosRealm Boolean: If true, indicates that this App supports Kerberos Authentication
isLoginTarget Boolean: If true, this App allows runtime services to log end users into this App automatically.
isManagedApp Boolean: If true, indicates that access to this App requires an account. That is, in order to log in to the App, a User must use an application-specific identity that is maintained in the remote identity-repository of that App.
isMobileTarget Boolean: If true, indicates that the App should be visible in each end-user's mobile application.
isMulticloudServiceApp Boolean: If true, indicates the app is used for multicloud service integration.
isOauthClient Boolean: If true, this application acts as an OAuth Client
isOauthResource Boolean: If true, indicates that this application acts as an OAuth Resource.
isObligationCapable Boolean: This flag indicates if the App is capable of validating obligations with the token for allowing access to the App.
isOpcService Boolean: If true, this application is an Oracle Public Cloud service-instance.
isRadiusApp Boolean: If true, this application acts as an Radius App
isSamlServiceProvider Boolean: If true, then this App acts as a SAML Service Provider.
isUnmanagedApp Boolean: If true, indicates that this application accepts an Oracle Cloud Identity Service User as a login-identity (does not require an account) and relies for authorization on the User's memberships in AppRoles.
isWebTierPolicy Boolean: If true, the webtier policy is active
landingPageUrl String: The URL of the landing page for this App, which is the first page that an end user should see if runtime services log that end user in to this App automatically.
linkingCallbackUrl String: This attribute specifies the callback URL for the social linking operation.
loginMechanism String: The protocol that runtime services will use to log end users in to this App automatically. If 'OIDC', then runtime services use the OpenID Connect protocol. If 'SAML', then runtime services use Security Assertion Markup Language protocol.
loginPageUrl String: This attribute specifies the URL of the page that the App uses when an end-user signs in to that App.
logoutPageUrl String: This attribute specifies the URL of the page that the App uses when an end-user signs out.
logoutUri String: OAuth will use this URI to logout if this App wants to participate in SSO, and if this App's session gets cleared as part of global logout. Note: This attribute is used only if this App acts as an OAuthClient.
metas List<Property Map>: A complex attribute that contains resource metadata. All sub-attributes are OPTIONAL.
meterAsOpcService Boolean: Indicates whether the application is billed as an OPCService. If true, customer is not billed for runtime operations of the app.
migrated Boolean: If true, this App was migrated from an earlier version of Oracle Public Cloud infrastructure (and may therefore require special handling from runtime services such as OAuth or SAML). If false, this App requires no special handling from runtime services.
name String: The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
ocid String: Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
postLogoutRedirectUris List<String>: Each value of this attribute is the URI of a landing page within this App. It is used only when this App, acting as an OAuthClient, initiates the logout flow and wants to be redirected back to one of its landing pages.
privacyPolicyUrl String: Privacy Policy URL
productLogoUrl String: Application Logo URL
productName String: Product Name
protectableSecondaryAudiences List<Property Map>: A list of secondary audiences--additional URIs to be added automatically to any OAuth token that allows access to this App. Note: This attribute is used mainly for backward compatibility in certain Oracle Public Cloud Apps.
radiusPolicies List<Property Map>: RADIUS Policy assigned to this application.
readyToUpgrade Boolean: If true, this App requires an upgrade and mandates attention from application administrator. The flag is used by UI to indicate this app is ready to upgrade.
redirectUris List<String>: OPTIONAL. Each value is a URI within this App. This attribute is required when this App acts as an OAuthClient and is involved in three-legged flows (authorization-code flows).
refreshTokenExpiry Number: Expiry-time in seconds for a Refresh Token. Any token that allows access to this App, once refreshed, will expire after the specified duration.
resourceTypeSchemaVersion String: An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.
samlServiceProviders List<Property Map>: An attribute that refers to the SAML Service Provider that runtime services will use to log an end user in to this App automatically. Note that this will be used only if the loginMechanism is 'SAML'.
schemas List<String>: REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard "enterprise" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.
scopes List<Property Map>: Scopes defined by this App. Used when this App acts as an OAuth Resource.
secondaryAudiences List<String>: A list of secondary audiences--additional URIs to be added automatically to any OAuth token that allows access to this App. Note: This attribute is used mainly for backward compatibility in certain Oracle Public Cloud Apps.
serviceParams List<Property Map>: Custom attribute that is required to compute other attribute values during app creation.
serviceTypeUrn String: This Uniform Resource Name (URN) value identifies the type of Oracle Public Cloud service of which this app is an instance.
serviceTypeVersion String: This value specifies the version of the Oracle Public Cloud service of which this App is an instance
showInMyApps Boolean: If true, this app will be displayed in the MyApps page of each end-user who has access to the App.
signonPolicies List<Property Map>: Sign-on Policy.
tags List<Property Map>: A list of tags on this resource.
tenancyOcid String: Oracle Cloud Infrastructure Tenant Id (ocid) in which the resource lives.
termsOfServiceUrl String: Terms of Service URL
termsOfUses List<Property Map>: Terms Of Use.
trustPolicies List<Property Map>: Trust Policies.
trustScope String: Indicates the scope of trust for this App when acting as an OAuthClient. A value of 'Explicit' indicates that the App is allowed to access only the scopes of OAuthResources that are explicitly specified as 'allowedScopes'. A value of 'Account' indicates that the App is allowed implicitly to access any scope of any OAuthResource within the same Oracle Cloud Account. A value of 'Tags' indicates that the App is allowed to access any scope of any OAuthResource with a matching tag within the same Oracle Cloud Account. A value of 'Default' indicates that the Tenant default trust scope configured in the Tenant Settings is used.
urnietfparamsscimschemasoracleidcsextensionOciTags List<Property Map>: Oracle Cloud Infrastructure Tags.
urnietfparamsscimschemasoracleidcsextensiondbcsApps List<Property Map>: This extension provides attributes for database service facet of an App
urnietfparamsscimschemasoracleidcsextensionenterpriseAppApps List<Property Map>: This extension defines the Enterprise App related attributes.
urnietfparamsscimschemasoracleidcsextensionformFillAppApps List<Property Map>: This extension provides attributes for Form-Fill facet of App
urnietfparamsscimschemasoracleidcsextensionformFillAppTemplateAppTemplates List<Property Map>: This extension provides attributes for Form-Fill facet of AppTemplate
urnietfparamsscimschemasoracleidcsextensionkerberosRealmApps List<Property Map>: Kerberos Realm
urnietfparamsscimschemasoracleidcsextensionmanagedappApps List<Property Map>: Managed App
urnietfparamsscimschemasoracleidcsextensionmulticloudServiceAppApps List<Property Map>: This extension defines attributes specific to Apps that represent instances of Multicloud Service App
urnietfparamsscimschemasoracleidcsextensionopcServiceApps List<Property Map>: This extension defines attributes specific to Apps that represent instances of an Oracle Public Cloud (OPC) service.
urnietfparamsscimschemasoracleidcsextensionradiusAppApps List<Property Map>: This extension defines attributes specific to Apps that represent instances of Radius App.
urnietfparamsscimschemasoracleidcsextensionrequestableApps List<Property Map>: Requestable App
urnietfparamsscimschemasoracleidcsextensionsamlServiceProviderApps List<Property Map>: This extension defines attributes related to the Service Providers configuration.
urnietfparamsscimschemasoracleidcsextensionwebTierPolicyApps List<Property Map>: WebTier Policy
userRoles List<Property Map>: A list of AppRoles defined by this UnmanagedApp. Membership in each of these AppRoles confers end-user privilege within this App.

GetDomainsAppsAppAccount

Active bool: If true, this App is able to participate in runtime services, such as automatic-login, OAuth, and SAML. If false, all runtime services are disabled for this App, and only administrative operations can be performed.
Name string: The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
OwnerId string: Owner identifier
Ref string: URI of the AppRole.
Value string: ID of the AppRole.

Active bool: If true, this App is able to participate in runtime services, such as automatic-login, OAuth, and SAML. If false, all runtime services are disabled for this App, and only administrative operations can be performed.
Name string: The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
OwnerId string: Owner identifier
Ref string: URI of the AppRole.
Value string: ID of the AppRole.

active Boolean: If true, this App is able to participate in runtime services, such as automatic-login, OAuth, and SAML. If false, all runtime services are disabled for this App, and only administrative operations can be performed.
name String: The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
ownerId String: Owner identifier
ref String: URI of the AppRole.
value String: ID of the AppRole.

active boolean: If true, this App is able to participate in runtime services, such as automatic-login, OAuth, and SAML. If false, all runtime services are disabled for this App, and only administrative operations can be performed.
name string: The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
ownerId string: Owner identifier
ref string: URI of the AppRole.
value string: ID of the AppRole.

active bool: If true, this App is able to participate in runtime services, such as automatic-login, OAuth, and SAML. If false, all runtime services are disabled for this App, and only administrative operations can be performed.
name str: The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
owner_id str: Owner identifier
ref str: URI of the AppRole.
value str: ID of the AppRole.

active Boolean: If true, this App is able to participate in runtime services, such as automatic-login, OAuth, and SAML. If false, all runtime services are disabled for this App, and only administrative operations can be performed.
name String: The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
ownerId String: Owner identifier
ref String: URI of the AppRole.
value String: ID of the AppRole.

GetDomainsAppsAppAdminRole

Description string: The description of the AppRole.
Display string: Display-name of the AppRole.
Ref string: URI of the AppRole.
Value string: ID of the AppRole.

Description string: The description of the AppRole.
Display string: Display-name of the AppRole.
Ref string: URI of the AppRole.
Value string: ID of the AppRole.

description String: The description of the AppRole.
display String: Display-name of the AppRole.
ref String: URI of the AppRole.
value String: ID of the AppRole.

description string: The description of the AppRole.
display string: Display-name of the AppRole.
ref string: URI of the AppRole.
value string: ID of the AppRole.

description str: The description of the AppRole.
display str: Display-name of the AppRole.
ref str: URI of the AppRole.
value str: ID of the AppRole.

description String: The description of the AppRole.
display String: Display-name of the AppRole.
ref String: URI of the AppRole.
value String: ID of the AppRole.

GetDomainsAppsAppAliasApp

Description string: The description of the AppRole.
Display string: Display-name of the AppRole.
Ref string: URI of the AppRole.
Value string: ID of the AppRole.

Description string: The description of the AppRole.
Display string: Display-name of the AppRole.
Ref string: URI of the AppRole.
Value string: ID of the AppRole.

description String: The description of the AppRole.
display String: Display-name of the AppRole.
ref String: URI of the AppRole.
value String: ID of the AppRole.

description string: The description of the AppRole.
display string: Display-name of the AppRole.
ref string: URI of the AppRole.
value string: ID of the AppRole.

description str: The description of the AppRole.
display str: Display-name of the AppRole.
ref str: URI of the AppRole.
value str: ID of the AppRole.

description String: The description of the AppRole.
display String: Display-name of the AppRole.
ref String: URI of the AppRole.
value String: ID of the AppRole.

GetDomainsAppsAppAllowedScope

Fqs string: The fully qualified value of this scope within this App. A fully qualified scope combines the 'value' of each scope with the value of 'audience'. Each value of 'fqs' must be unique across the system. Used only when this App acts as an OAuth Resource.
IdOfDefiningApp string: The ID of the App that defines this scope.
ReadOnly bool: If true, indicates that this value must be protected.

Fqs string: The fully qualified value of this scope within this App. A fully qualified scope combines the 'value' of each scope with the value of 'audience'. Each value of 'fqs' must be unique across the system. Used only when this App acts as an OAuth Resource.
IdOfDefiningApp string: The ID of the App that defines this scope.
ReadOnly bool: If true, indicates that this value must be protected.

fqs String: The fully qualified value of this scope within this App. A fully qualified scope combines the 'value' of each scope with the value of 'audience'. Each value of 'fqs' must be unique across the system. Used only when this App acts as an OAuth Resource.
idOfDefiningApp String: The ID of the App that defines this scope.
readOnly Boolean: If true, indicates that this value must be protected.

fqs string: The fully qualified value of this scope within this App. A fully qualified scope combines the 'value' of each scope with the value of 'audience'. Each value of 'fqs' must be unique across the system. Used only when this App acts as an OAuth Resource.
idOfDefiningApp string: The ID of the App that defines this scope.
readOnly boolean: If true, indicates that this value must be protected.

fqs str: The fully qualified value of this scope within this App. A fully qualified scope combines the 'value' of each scope with the value of 'audience'. Each value of 'fqs' must be unique across the system. Used only when this App acts as an OAuth Resource.
id_of_defining_app str: The ID of the App that defines this scope.
read_only bool: If true, indicates that this value must be protected.

fqs String: The fully qualified value of this scope within this App. A fully qualified scope combines the 'value' of each scope with the value of 'audience'. Each value of 'fqs' must be unique across the system. Used only when this App acts as an OAuth Resource.
idOfDefiningApp String: The ID of the App that defines this scope.
readOnly Boolean: If true, indicates that this value must be protected.

GetDomainsAppsAppAllowedTag

Key string: Oracle Cloud Infrastructure Tag key
ReadOnly bool: If true, indicates that this value must be protected.
Value string: ID of the AppRole.

Key string: Oracle Cloud Infrastructure Tag key
ReadOnly bool: If true, indicates that this value must be protected.
Value string: ID of the AppRole.

key String: Oracle Cloud Infrastructure Tag key
readOnly Boolean: If true, indicates that this value must be protected.
value String: ID of the AppRole.

key string: Oracle Cloud Infrastructure Tag key
readOnly boolean: If true, indicates that this value must be protected.
value string: ID of the AppRole.

key str: Oracle Cloud Infrastructure Tag key
read_only bool: If true, indicates that this value must be protected.
value str: ID of the AppRole.

key String: Oracle Cloud Infrastructure Tag key
readOnly Boolean: If true, indicates that this value must be protected.
value String: ID of the AppRole.

GetDomainsAppsAppAppSignonPolicy

Ref string: URI of the AppRole.
Value string: ID of the AppRole.

Ref string: URI of the AppRole.
Value string: ID of the AppRole.

ref String: URI of the AppRole.
value String: ID of the AppRole.

ref string: URI of the AppRole.
value string: ID of the AppRole.

ref str: URI of the AppRole.
value str: ID of the AppRole.

ref String: URI of the AppRole.
value String: ID of the AppRole.

GetDomainsAppsAppAppsNetworkPerimeter

Ref string: URI of the AppRole.
Value string: ID of the AppRole.

Ref string: URI of the AppRole.
Value string: ID of the AppRole.

ref String: URI of the AppRole.
value String: ID of the AppRole.

ref string: URI of the AppRole.
value string: ID of the AppRole.

ref str: URI of the AppRole.
value str: ID of the AppRole.

ref String: URI of the AppRole.
value String: ID of the AppRole.

GetDomainsAppsAppAsOpcService

Ref string: URI of the AppRole.
Value string: ID of the AppRole.

Ref string: URI of the AppRole.
Value string: ID of the AppRole.

ref String: URI of the AppRole.
value String: ID of the AppRole.

ref string: URI of the AppRole.
value string: ID of the AppRole.

ref str: URI of the AppRole.
value str: ID of the AppRole.

ref String: URI of the AppRole.
value String: ID of the AppRole.

GetDomainsAppsAppAttrRenderingMetadata

Datatype string: Data type of the attribute.
Helptext string: Help text for the attribute. It can contain HTML tags.
Label string: Label for the attribute to be shown in the UI.
MaxLength int: Maximum length of the attribute.
MaxSize int: Maximum size of the attribute.
MinLength int: Minimum length of the attribute.
MinSize int: Minimum size of the attribute..
Name string: The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
Order int: Display sequence of the bundle configuration property.
ReadOnly bool: If true, indicates that this value must be protected.
Regexp string: Regular expression of the attribute for validation.
Required bool: If true, this flatfile bundle configuration property is required to connect to the target connected managed app. This attribute maps to "isRequired" attribute in "ConfigurationProperty" in ICF.
Section string: UI widget to use for the attribute.
Visible bool: Indicates whether the attribute is to be shown on the application creation UI.
Widget string: UI widget to use for the attribute.

Datatype string: Data type of the attribute.
Helptext string: Help text for the attribute. It can contain HTML tags.
Label string: Label for the attribute to be shown in the UI.
MaxLength int: Maximum length of the attribute.
MaxSize int: Maximum size of the attribute.
MinLength int: Minimum length of the attribute.
MinSize int: Minimum size of the attribute..
Name string: The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
Order int: Display sequence of the bundle configuration property.
ReadOnly bool: If true, indicates that this value must be protected.
Regexp string: Regular expression of the attribute for validation.
Required bool: If true, this flatfile bundle configuration property is required to connect to the target connected managed app. This attribute maps to "isRequired" attribute in "ConfigurationProperty" in ICF.
Section string: UI widget to use for the attribute.
Visible bool: Indicates whether the attribute is to be shown on the application creation UI.
Widget string: UI widget to use for the attribute.

datatype String: Data type of the attribute.
helptext String: Help text for the attribute. It can contain HTML tags.
label String: Label for the attribute to be shown in the UI.
maxLength Integer: Maximum length of the attribute.
maxSize Integer: Maximum size of the attribute.
minLength Integer: Minimum length of the attribute.
minSize Integer: Minimum size of the attribute..
name String: The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
order Integer: Display sequence of the bundle configuration property.
readOnly Boolean: If true, indicates that this value must be protected.
regexp String: Regular expression of the attribute for validation.
required Boolean: If true, this flatfile bundle configuration property is required to connect to the target connected managed app. This attribute maps to "isRequired" attribute in "ConfigurationProperty" in ICF.
section String: UI widget to use for the attribute.
visible Boolean: Indicates whether the attribute is to be shown on the application creation UI.
widget String: UI widget to use for the attribute.

datatype string: Data type of the attribute.
helptext string: Help text for the attribute. It can contain HTML tags.
label string: Label for the attribute to be shown in the UI.
maxLength number: Maximum length of the attribute.
maxSize number: Maximum size of the attribute.
minLength number: Minimum length of the attribute.
minSize number: Minimum size of the attribute..
name string: The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
order number: Display sequence of the bundle configuration property.
readOnly boolean: If true, indicates that this value must be protected.
regexp string: Regular expression of the attribute for validation.
required boolean: If true, this flatfile bundle configuration property is required to connect to the target connected managed app. This attribute maps to "isRequired" attribute in "ConfigurationProperty" in ICF.
section string: UI widget to use for the attribute.
visible boolean: Indicates whether the attribute is to be shown on the application creation UI.
widget string: UI widget to use for the attribute.

datatype str: Data type of the attribute.
helptext str: Help text for the attribute. It can contain HTML tags.
label str: Label for the attribute to be shown in the UI.
max_length int: Maximum length of the attribute.
max_size int: Maximum size of the attribute.
min_length int: Minimum length of the attribute.
min_size int: Minimum size of the attribute..
name str: The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
order int: Display sequence of the bundle configuration property.
read_only bool: If true, indicates that this value must be protected.
regexp str: Regular expression of the attribute for validation.
required bool: If true, this flatfile bundle configuration property is required to connect to the target connected managed app. This attribute maps to "isRequired" attribute in "ConfigurationProperty" in ICF.
section str: UI widget to use for the attribute.
visible bool: Indicates whether the attribute is to be shown on the application creation UI.
widget str: UI widget to use for the attribute.

datatype String: Data type of the attribute.
helptext String: Help text for the attribute. It can contain HTML tags.
label String: Label for the attribute to be shown in the UI.
maxLength Number: Maximum length of the attribute.
maxSize Number: Maximum size of the attribute.
minLength Number: Minimum length of the attribute.
minSize Number: Minimum size of the attribute..
name String: The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
order Number: Display sequence of the bundle configuration property.
readOnly Boolean: If true, indicates that this value must be protected.
regexp String: Regular expression of the attribute for validation.
required Boolean: If true, this flatfile bundle configuration property is required to connect to the target connected managed app. This attribute maps to "isRequired" attribute in "ConfigurationProperty" in ICF.
section String: UI widget to use for the attribute.
visible Boolean: Indicates whether the attribute is to be shown on the application creation UI.
widget String: UI widget to use for the attribute.

GetDomainsAppsAppBasedOnTemplate

LastModified string: The most recent DateTime that the details of this Resource were updated at the Service Provider. If this Resource has never been modified since its initial creation, the value MUST be the same as the value of created. The attribute MUST be a DateTime.
Ref string: URI of the AppRole.
Value string: ID of the AppRole.
WellKnownId string: Unique well-known identifier used to reference connector bundle.

LastModified string: The most recent DateTime that the details of this Resource were updated at the Service Provider. If this Resource has never been modified since its initial creation, the value MUST be the same as the value of created. The attribute MUST be a DateTime.
Ref string: URI of the AppRole.
Value string: ID of the AppRole.
WellKnownId string: Unique well-known identifier used to reference connector bundle.

lastModified String: The most recent DateTime that the details of this Resource were updated at the Service Provider. If this Resource has never been modified since its initial creation, the value MUST be the same as the value of created. The attribute MUST be a DateTime.
ref String: URI of the AppRole.
value String: ID of the AppRole.
wellKnownId String: Unique well-known identifier used to reference connector bundle.

lastModified string: The most recent DateTime that the details of this Resource were updated at the Service Provider. If this Resource has never been modified since its initial creation, the value MUST be the same as the value of created. The attribute MUST be a DateTime.
ref string: URI of the AppRole.
value string: ID of the AppRole.
wellKnownId string: Unique well-known identifier used to reference connector bundle.

last_modified str: The most recent DateTime that the details of this Resource were updated at the Service Provider. If this Resource has never been modified since its initial creation, the value MUST be the same as the value of created. The attribute MUST be a DateTime.
ref str: URI of the AppRole.
value str: ID of the AppRole.
well_known_id str: Unique well-known identifier used to reference connector bundle.

lastModified String: The most recent DateTime that the details of this Resource were updated at the Service Provider. If this Resource has never been modified since its initial creation, the value MUST be the same as the value of created. The attribute MUST be a DateTime.
ref String: URI of the AppRole.
value String: ID of the AppRole.
wellKnownId String: Unique well-known identifier used to reference connector bundle.

GetDomainsAppsAppCertificate

CertAlias string: Certificate alias
Kid string: Certificate kid
Sha1thumbprint string: sha1Thumbprint
X509base64certificate string: Base-64-encoded certificate.
X5t string: Certificate x5t

CertAlias string: Certificate alias
Kid string: Certificate kid
Sha1thumbprint string: sha1Thumbprint
X509base64certificate string: Base-64-encoded certificate.
X5t string: Certificate x5t

certAlias String: Certificate alias
kid String: Certificate kid
sha1thumbprint String: sha1Thumbprint
x509base64certificate String: Base-64-encoded certificate.
x5t String: Certificate x5t

certAlias string: Certificate alias
kid string: Certificate kid
sha1thumbprint string: sha1Thumbprint
x509base64certificate string: Base-64-encoded certificate.
x5t string: Certificate x5t

cert_alias str: Certificate alias
kid str: Certificate kid
sha1thumbprint str: sha1Thumbprint
x509base64certificate str: Base-64-encoded certificate.
x5t str: Certificate x5t

certAlias String: Certificate alias
kid String: Certificate kid
sha1thumbprint String: sha1Thumbprint
x509base64certificate String: Base-64-encoded certificate.
x5t String: Certificate x5t

GetDomainsAppsAppCloudControlProperty

Name string: The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
Values List<string>: The value(s) of the property.

Name string: The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
Values []string: The value(s) of the property.

name String: The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
values List<String>: The value(s) of the property.

name string: The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
values string[]: The value(s) of the property.

name str: The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
values Sequence[str]: The value(s) of the property.

name String: The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
values List<String>: The value(s) of the property.

GetDomainsAppsAppEditableAttribute

Name string: The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion

Name string: The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion

name String: The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion

name string: The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion

name str: The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion

name String: The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion

GetDomainsAppsAppGrant

GrantMechanism string

Each value of grantMechanism indicates how (or by what component) some App (or App-Entitlement) was granted. A customer or the UI should use only grantMechanism values that start with 'ADMINISTRATOR':

'ADMINISTRATOR_TO_USER' is for a direct grant to a specific User.
'ADMINISTRATOR_TO_GROUP' is for a grant to a specific Group, which results in indirect grants to Users who are members of that Group.
'ADMINISTRATOR_TO_APP' is for a grant to a specific App. The grantee (client) App gains access to the granted (server) App.

GranteeId string

Grantee identifier

GranteeType string

Grantee resource type. Allowed values are User and Group.

Ref string

URI of the AppRole.

Value string

ID of the AppRole.

GrantMechanism string

'ADMINISTRATOR_TO_USER' is for a direct grant to a specific User.
'ADMINISTRATOR_TO_GROUP' is for a grant to a specific Group, which results in indirect grants to Users who are members of that Group.
'ADMINISTRATOR_TO_APP' is for a grant to a specific App. The grantee (client) App gains access to the granted (server) App.

GranteeId string

Grantee identifier

GranteeType string

Grantee resource type. Allowed values are User and Group.

Ref string

URI of the AppRole.

Value string

ID of the AppRole.

grantMechanism String

'ADMINISTRATOR_TO_USER' is for a direct grant to a specific User.
'ADMINISTRATOR_TO_GROUP' is for a grant to a specific Group, which results in indirect grants to Users who are members of that Group.
'ADMINISTRATOR_TO_APP' is for a grant to a specific App. The grantee (client) App gains access to the granted (server) App.

granteeId String

Grantee identifier

granteeType String

Grantee resource type. Allowed values are User and Group.

ref String

URI of the AppRole.

value String

ID of the AppRole.

grantMechanism string

'ADMINISTRATOR_TO_USER' is for a direct grant to a specific User.
'ADMINISTRATOR_TO_GROUP' is for a grant to a specific Group, which results in indirect grants to Users who are members of that Group.
'ADMINISTRATOR_TO_APP' is for a grant to a specific App. The grantee (client) App gains access to the granted (server) App.

granteeId string

Grantee identifier

granteeType string

Grantee resource type. Allowed values are User and Group.

ref string

URI of the AppRole.

value string

ID of the AppRole.

grant_mechanism str

'ADMINISTRATOR_TO_USER' is for a direct grant to a specific User.
'ADMINISTRATOR_TO_GROUP' is for a grant to a specific Group, which results in indirect grants to Users who are members of that Group.
'ADMINISTRATOR_TO_APP' is for a grant to a specific App. The grantee (client) App gains access to the granted (server) App.

grantee_id str

Grantee identifier

grantee_type str

Grantee resource type. Allowed values are User and Group.

ref str

URI of the AppRole.

value str

ID of the AppRole.

grantMechanism String

'ADMINISTRATOR_TO_USER' is for a direct grant to a specific User.
'ADMINISTRATOR_TO_GROUP' is for a grant to a specific Group, which results in indirect grants to Users who are members of that Group.
'ADMINISTRATOR_TO_APP' is for a grant to a specific App. The grantee (client) App gains access to the granted (server) App.

granteeId String

Grantee identifier

granteeType String

Grantee resource type. Allowed values are User and Group.

ref String

URI of the AppRole.

value String

ID of the AppRole.

GetDomainsAppsAppGrantedAppRole

AdminRole bool: If true, then this granted AppRole confers administrative privileges within the App that defines it. Otherwise, the granted AppRole confers only functional privileges.
AppId string: The id of the App that defines this AppRole, which is granted to this App. The App that defines the AppRole acts as the producer; the App to which the AppRole is granted acts as a consumer.
AppName string: The name of the App that defines this AppRole, which is granted to this App. The App that defines the AppRole acts as the producer; the App to which the AppRole is granted acts as a consumer.
Display string: Display-name of the AppRole.
LegacyGroupName string: The name of the legacy group associated with this AppRole.
ReadOnly bool: If true, indicates that this value must be protected.
Ref string: URI of the AppRole.
Type string: Object Class type. Allowed values are AccountObjectClass, ManagedObjectClass.
Value string: ID of the AppRole.

AdminRole bool: If true, then this granted AppRole confers administrative privileges within the App that defines it. Otherwise, the granted AppRole confers only functional privileges.
AppId string: The id of the App that defines this AppRole, which is granted to this App. The App that defines the AppRole acts as the producer; the App to which the AppRole is granted acts as a consumer.
AppName string: The name of the App that defines this AppRole, which is granted to this App. The App that defines the AppRole acts as the producer; the App to which the AppRole is granted acts as a consumer.
Display string: Display-name of the AppRole.
LegacyGroupName string: The name of the legacy group associated with this AppRole.
ReadOnly bool: If true, indicates that this value must be protected.
Ref string: URI of the AppRole.
Type string: Object Class type. Allowed values are AccountObjectClass, ManagedObjectClass.
Value string: ID of the AppRole.

adminRole Boolean: If true, then this granted AppRole confers administrative privileges within the App that defines it. Otherwise, the granted AppRole confers only functional privileges.
appId String: The id of the App that defines this AppRole, which is granted to this App. The App that defines the AppRole acts as the producer; the App to which the AppRole is granted acts as a consumer.
appName String: The name of the App that defines this AppRole, which is granted to this App. The App that defines the AppRole acts as the producer; the App to which the AppRole is granted acts as a consumer.
display String: Display-name of the AppRole.
legacyGroupName String: The name of the legacy group associated with this AppRole.
readOnly Boolean: If true, indicates that this value must be protected.
ref String: URI of the AppRole.
type String: Object Class type. Allowed values are AccountObjectClass, ManagedObjectClass.
value String: ID of the AppRole.

adminRole boolean: If true, then this granted AppRole confers administrative privileges within the App that defines it. Otherwise, the granted AppRole confers only functional privileges.
appId string: The id of the App that defines this AppRole, which is granted to this App. The App that defines the AppRole acts as the producer; the App to which the AppRole is granted acts as a consumer.
appName string: The name of the App that defines this AppRole, which is granted to this App. The App that defines the AppRole acts as the producer; the App to which the AppRole is granted acts as a consumer.
display string: Display-name of the AppRole.
legacyGroupName string: The name of the legacy group associated with this AppRole.
readOnly boolean: If true, indicates that this value must be protected.
ref string: URI of the AppRole.
type string: Object Class type. Allowed values are AccountObjectClass, ManagedObjectClass.
value string: ID of the AppRole.

admin_role bool: If true, then this granted AppRole confers administrative privileges within the App that defines it. Otherwise, the granted AppRole confers only functional privileges.
app_id str: The id of the App that defines this AppRole, which is granted to this App. The App that defines the AppRole acts as the producer; the App to which the AppRole is granted acts as a consumer.
app_name str: The name of the App that defines this AppRole, which is granted to this App. The App that defines the AppRole acts as the producer; the App to which the AppRole is granted acts as a consumer.
display str: Display-name of the AppRole.
legacy_group_name str: The name of the legacy group associated with this AppRole.
read_only bool: If true, indicates that this value must be protected.
ref str: URI of the AppRole.
type str: Object Class type. Allowed values are AccountObjectClass, ManagedObjectClass.
value str: ID of the AppRole.

adminRole Boolean: If true, then this granted AppRole confers administrative privileges within the App that defines it. Otherwise, the granted AppRole confers only functional privileges.
appId String: The id of the App that defines this AppRole, which is granted to this App. The App that defines the AppRole acts as the producer; the App to which the AppRole is granted acts as a consumer.
appName String: The name of the App that defines this AppRole, which is granted to this App. The App that defines the AppRole acts as the producer; the App to which the AppRole is granted acts as a consumer.
display String: Display-name of the AppRole.
legacyGroupName String: The name of the legacy group associated with this AppRole.
readOnly Boolean: If true, indicates that this value must be protected.
ref String: URI of the AppRole.
type String: Object Class type. Allowed values are AccountObjectClass, ManagedObjectClass.
value String: ID of the AppRole.

GetDomainsAppsAppIdcsCreatedBy

Display string: Display-name of the AppRole.
Ocid string: Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
Ref string: URI of the AppRole.
Type string: Object Class type. Allowed values are AccountObjectClass, ManagedObjectClass.
Value string: ID of the AppRole.

Display string: Display-name of the AppRole.
Ocid string: Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
Ref string: URI of the AppRole.
Type string: Object Class type. Allowed values are AccountObjectClass, ManagedObjectClass.
Value string: ID of the AppRole.

display String: Display-name of the AppRole.
ocid String: Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
ref String: URI of the AppRole.
type String: Object Class type. Allowed values are AccountObjectClass, ManagedObjectClass.
value String: ID of the AppRole.

display string: Display-name of the AppRole.
ocid string: Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
ref string: URI of the AppRole.
type string: Object Class type. Allowed values are AccountObjectClass, ManagedObjectClass.
value string: ID of the AppRole.

display str: Display-name of the AppRole.
ocid str: Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
ref str: URI of the AppRole.
type str: Object Class type. Allowed values are AccountObjectClass, ManagedObjectClass.
value str: ID of the AppRole.

display String: Display-name of the AppRole.
ocid String: Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
ref String: URI of the AppRole.
type String: Object Class type. Allowed values are AccountObjectClass, ManagedObjectClass.
value String: ID of the AppRole.

GetDomainsAppsAppIdcsLastModifiedBy

Display string: Display-name of the AppRole.
Ocid string: Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
Ref string: URI of the AppRole.
Type string: Object Class type. Allowed values are AccountObjectClass, ManagedObjectClass.
Value string: ID of the AppRole.

Display string: Display-name of the AppRole.
Ocid string: Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
Ref string: URI of the AppRole.
Type string: Object Class type. Allowed values are AccountObjectClass, ManagedObjectClass.
Value string: ID of the AppRole.

display String: Display-name of the AppRole.
ocid String: Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
ref String: URI of the AppRole.
type String: Object Class type. Allowed values are AccountObjectClass, ManagedObjectClass.
value String: ID of the AppRole.

display string: Display-name of the AppRole.
ocid string: Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
ref string: URI of the AppRole.
type string: Object Class type. Allowed values are AccountObjectClass, ManagedObjectClass.
value string: ID of the AppRole.

display str: Display-name of the AppRole.
ocid str: Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
ref str: URI of the AppRole.
type str: Object Class type. Allowed values are AccountObjectClass, ManagedObjectClass.
value str: ID of the AppRole.

display String: Display-name of the AppRole.
ocid String: Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
ref String: URI of the AppRole.
type String: Object Class type. Allowed values are AccountObjectClass, ManagedObjectClass.
value String: ID of the AppRole.

GetDomainsAppsAppIdentityProvider

Display string: Display-name of the AppRole.
Ref string: URI of the AppRole.
Value string: ID of the AppRole.

Display string: Display-name of the AppRole.
Ref string: URI of the AppRole.
Value string: ID of the AppRole.

display String: Display-name of the AppRole.
ref String: URI of the AppRole.
value String: ID of the AppRole.

display string: Display-name of the AppRole.
ref string: URI of the AppRole.
value string: ID of the AppRole.

display str: Display-name of the AppRole.
ref str: URI of the AppRole.
value str: ID of the AppRole.

display String: Display-name of the AppRole.
ref String: URI of the AppRole.
value String: ID of the AppRole.

GetDomainsAppsAppIdpPolicy

Ref string: URI of the AppRole.
Value string: ID of the AppRole.

Ref string: URI of the AppRole.
Value string: ID of the AppRole.

ref String: URI of the AppRole.
value String: ID of the AppRole.

ref string: URI of the AppRole.
value string: ID of the AppRole.

ref str: URI of the AppRole.
value str: ID of the AppRole.

ref String: URI of the AppRole.
value String: ID of the AppRole.

GetDomainsAppsAppMeta

Created string: The DateTime the Resource was added to the Service Provider
LastModified string: The most recent DateTime that the details of this Resource were updated at the Service Provider. If this Resource has never been modified since its initial creation, the value MUST be the same as the value of created. The attribute MUST be a DateTime.
Location string: The URI of the Resource being returned. This value MUST be the same as the Location HTTP response header.
ResourceType string: Object class resource type
Version string: The version of the Resource being returned. This value must be the same as the ETag HTTP response header.

Created string: The DateTime the Resource was added to the Service Provider
LastModified string: The most recent DateTime that the details of this Resource were updated at the Service Provider. If this Resource has never been modified since its initial creation, the value MUST be the same as the value of created. The attribute MUST be a DateTime.
Location string: The URI of the Resource being returned. This value MUST be the same as the Location HTTP response header.
ResourceType string: Object class resource type
Version string: The version of the Resource being returned. This value must be the same as the ETag HTTP response header.

created String: The DateTime the Resource was added to the Service Provider
lastModified String: The most recent DateTime that the details of this Resource were updated at the Service Provider. If this Resource has never been modified since its initial creation, the value MUST be the same as the value of created. The attribute MUST be a DateTime.
location String: The URI of the Resource being returned. This value MUST be the same as the Location HTTP response header.
resourceType String: Object class resource type
version String: The version of the Resource being returned. This value must be the same as the ETag HTTP response header.

created string: The DateTime the Resource was added to the Service Provider
lastModified string: The most recent DateTime that the details of this Resource were updated at the Service Provider. If this Resource has never been modified since its initial creation, the value MUST be the same as the value of created. The attribute MUST be a DateTime.
location string: The URI of the Resource being returned. This value MUST be the same as the Location HTTP response header.
resourceType string: Object class resource type
version string: The version of the Resource being returned. This value must be the same as the ETag HTTP response header.

created str: The DateTime the Resource was added to the Service Provider
last_modified str: The most recent DateTime that the details of this Resource were updated at the Service Provider. If this Resource has never been modified since its initial creation, the value MUST be the same as the value of created. The attribute MUST be a DateTime.
location str: The URI of the Resource being returned. This value MUST be the same as the Location HTTP response header.
resource_type str: Object class resource type
version str: The version of the Resource being returned. This value must be the same as the ETag HTTP response header.

created String: The DateTime the Resource was added to the Service Provider
lastModified String: The most recent DateTime that the details of this Resource were updated at the Service Provider. If this Resource has never been modified since its initial creation, the value MUST be the same as the value of created. The attribute MUST be a DateTime.
location String: The URI of the Resource being returned. This value MUST be the same as the Location HTTP response header.
resourceType String: Object class resource type
version String: The version of the Resource being returned. This value must be the same as the ETag HTTP response header.

GetDomainsAppsAppProtectableSecondaryAudience

ReadOnly bool: If true, indicates that this value must be protected.
Value string: ID of the AppRole.

ReadOnly bool: If true, indicates that this value must be protected.
Value string: ID of the AppRole.

readOnly Boolean: If true, indicates that this value must be protected.
value String: ID of the AppRole.

readOnly boolean: If true, indicates that this value must be protected.
value string: ID of the AppRole.

read_only bool: If true, indicates that this value must be protected.
value str: ID of the AppRole.

readOnly Boolean: If true, indicates that this value must be protected.
value String: ID of the AppRole.

GetDomainsAppsAppRadiusPolicy

Value string: ID of the AppRole.
_ref string

Value string: ID of the AppRole.
_ref string

_ref String
value String: ID of the AppRole.

_ref string
value string: ID of the AppRole.

_ref str
value str: ID of the AppRole.

_ref String
value String: ID of the AppRole.

GetDomainsAppsAppSamlServiceProvider

Ref string: URI of the AppRole.
Value string: ID of the AppRole.

Ref string: URI of the AppRole.
Value string: ID of the AppRole.

ref String: URI of the AppRole.
value String: ID of the AppRole.

ref string: URI of the AppRole.
value string: ID of the AppRole.

ref str: URI of the AppRole.
value str: ID of the AppRole.

ref String: URI of the AppRole.
value String: ID of the AppRole.

GetDomainsAppsAppScope

Description string: The description of the AppRole.
DisplayName string: Display name of the flatfile bundle configuration property. This attribute maps to "displayName" attribute in "ConfigurationProperty" in ICF.
Fqs string: The fully qualified value of this scope within this App. A fully qualified scope combines the 'value' of each scope with the value of 'audience'. Each value of 'fqs' must be unique across the system. Used only when this App acts as an OAuth Resource.
ReadOnly bool: If true, indicates that this value must be protected.
RequiresConsent bool: If true, indicates that a user must provide consent to access this scope. Note: Used only when this App acts as an OAuth Resource.
Value string: ID of the AppRole.

Description string: The description of the AppRole.
DisplayName string: Display name of the flatfile bundle configuration property. This attribute maps to "displayName" attribute in "ConfigurationProperty" in ICF.
Fqs string: The fully qualified value of this scope within this App. A fully qualified scope combines the 'value' of each scope with the value of 'audience'. Each value of 'fqs' must be unique across the system. Used only when this App acts as an OAuth Resource.
ReadOnly bool: If true, indicates that this value must be protected.
RequiresConsent bool: If true, indicates that a user must provide consent to access this scope. Note: Used only when this App acts as an OAuth Resource.
Value string: ID of the AppRole.

description String: The description of the AppRole.
displayName String: Display name of the flatfile bundle configuration property. This attribute maps to "displayName" attribute in "ConfigurationProperty" in ICF.
fqs String: The fully qualified value of this scope within this App. A fully qualified scope combines the 'value' of each scope with the value of 'audience'. Each value of 'fqs' must be unique across the system. Used only when this App acts as an OAuth Resource.
readOnly Boolean: If true, indicates that this value must be protected.
requiresConsent Boolean: If true, indicates that a user must provide consent to access this scope. Note: Used only when this App acts as an OAuth Resource.
value String: ID of the AppRole.

description string: The description of the AppRole.
displayName string: Display name of the flatfile bundle configuration property. This attribute maps to "displayName" attribute in "ConfigurationProperty" in ICF.
fqs string: The fully qualified value of this scope within this App. A fully qualified scope combines the 'value' of each scope with the value of 'audience'. Each value of 'fqs' must be unique across the system. Used only when this App acts as an OAuth Resource.
readOnly boolean: If true, indicates that this value must be protected.
requiresConsent boolean: If true, indicates that a user must provide consent to access this scope. Note: Used only when this App acts as an OAuth Resource.
value string: ID of the AppRole.

description str: The description of the AppRole.
display_name str: Display name of the flatfile bundle configuration property. This attribute maps to "displayName" attribute in "ConfigurationProperty" in ICF.
fqs str: The fully qualified value of this scope within this App. A fully qualified scope combines the 'value' of each scope with the value of 'audience'. Each value of 'fqs' must be unique across the system. Used only when this App acts as an OAuth Resource.
read_only bool: If true, indicates that this value must be protected.
requires_consent bool: If true, indicates that a user must provide consent to access this scope. Note: Used only when this App acts as an OAuth Resource.
value str: ID of the AppRole.

description String: The description of the AppRole.
displayName String: Display name of the flatfile bundle configuration property. This attribute maps to "displayName" attribute in "ConfigurationProperty" in ICF.
fqs String: The fully qualified value of this scope within this App. A fully qualified scope combines the 'value' of each scope with the value of 'audience'. Each value of 'fqs' must be unique across the system. Used only when this App acts as an OAuth Resource.
readOnly Boolean: If true, indicates that this value must be protected.
requiresConsent Boolean: If true, indicates that a user must provide consent to access this scope. Note: Used only when this App acts as an OAuth Resource.
value String: ID of the AppRole.

GetDomainsAppsAppServiceParam

Name string: The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
Value string: ID of the AppRole.

Name string: The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
Value string: ID of the AppRole.

name String: The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
value String: ID of the AppRole.

name string: The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
value string: ID of the AppRole.

name str: The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
value str: ID of the AppRole.

name String: The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
value String: ID of the AppRole.

GetDomainsAppsAppSignonPolicy

Ref string: URI of the AppRole.
Value string: ID of the AppRole.

Ref string: URI of the AppRole.
Value string: ID of the AppRole.

ref String: URI of the AppRole.
value String: ID of the AppRole.

ref string: URI of the AppRole.
value string: ID of the AppRole.

ref str: URI of the AppRole.
value str: ID of the AppRole.

ref String: URI of the AppRole.
value String: ID of the AppRole.

GetDomainsAppsAppTag

Key string: Oracle Cloud Infrastructure Tag key
Value string: ID of the AppRole.

Key string: Oracle Cloud Infrastructure Tag key
Value string: ID of the AppRole.

key String: Oracle Cloud Infrastructure Tag key
value String: ID of the AppRole.

key string: Oracle Cloud Infrastructure Tag key
value string: ID of the AppRole.

key str: Oracle Cloud Infrastructure Tag key
value str: ID of the AppRole.

key String: Oracle Cloud Infrastructure Tag key
value String: ID of the AppRole.

GetDomainsAppsAppTermsOfUse

Name string: The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
Ref string: URI of the AppRole.
Value string: ID of the AppRole.

Name string: The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
Ref string: URI of the AppRole.
Value string: ID of the AppRole.

name String: The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
ref String: URI of the AppRole.
value String: ID of the AppRole.

name string: The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
ref string: URI of the AppRole.
value string: ID of the AppRole.

name str: The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
ref str: URI of the AppRole.
value str: ID of the AppRole.

name String: The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
ref String: URI of the AppRole.
value String: ID of the AppRole.

GetDomainsAppsAppTrustPolicy

Ref string: URI of the AppRole.
Value string: ID of the AppRole.

Ref string: URI of the AppRole.
Value string: ID of the AppRole.

ref String: URI of the AppRole.
value String: ID of the AppRole.

ref string: URI of the AppRole.
value string: ID of the AppRole.

ref str: URI of the AppRole.
value str: ID of the AppRole.

ref String: URI of the AppRole.
value String: ID of the AppRole.

GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionOciTag

DefinedTags List<GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionOciTagDefinedTag>: Oracle Cloud Infrastructure Defined Tags
FreeformTags List<GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionOciTagFreeformTag>: Oracle Cloud Infrastructure Freeform Tags
TagSlug string: Oracle Cloud Infrastructure Tag slug

DefinedTags []GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionOciTagDefinedTag: Oracle Cloud Infrastructure Defined Tags
FreeformTags []GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionOciTagFreeformTag: Oracle Cloud Infrastructure Freeform Tags
TagSlug string: Oracle Cloud Infrastructure Tag slug

definedTags List<GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionOciTagDefinedTag>: Oracle Cloud Infrastructure Defined Tags
freeformTags List<GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionOciTagFreeformTag>: Oracle Cloud Infrastructure Freeform Tags
tagSlug String: Oracle Cloud Infrastructure Tag slug

definedTags GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionOciTagDefinedTag[]: Oracle Cloud Infrastructure Defined Tags
freeformTags GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionOciTagFreeformTag[]: Oracle Cloud Infrastructure Freeform Tags
tagSlug string: Oracle Cloud Infrastructure Tag slug

defined_tags Sequence[GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionOciTagDefinedTag]: Oracle Cloud Infrastructure Defined Tags
freeform_tags Sequence[GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionOciTagFreeformTag]: Oracle Cloud Infrastructure Freeform Tags
tag_slug str: Oracle Cloud Infrastructure Tag slug

definedTags List<Property Map>: Oracle Cloud Infrastructure Defined Tags
freeformTags List<Property Map>: Oracle Cloud Infrastructure Freeform Tags
tagSlug String: Oracle Cloud Infrastructure Tag slug

GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionOciTagDefinedTag

Key string: Oracle Cloud Infrastructure Tag key
Namespace string: Oracle Cloud Infrastructure Tag namespace
Value string: ID of the AppRole.

Key string: Oracle Cloud Infrastructure Tag key
Namespace string: Oracle Cloud Infrastructure Tag namespace
Value string: ID of the AppRole.

key String: Oracle Cloud Infrastructure Tag key
namespace String: Oracle Cloud Infrastructure Tag namespace
value String: ID of the AppRole.

key string: Oracle Cloud Infrastructure Tag key
namespace string: Oracle Cloud Infrastructure Tag namespace
value string: ID of the AppRole.

key str: Oracle Cloud Infrastructure Tag key
namespace str: Oracle Cloud Infrastructure Tag namespace
value str: ID of the AppRole.

key String: Oracle Cloud Infrastructure Tag key
namespace String: Oracle Cloud Infrastructure Tag namespace
value String: ID of the AppRole.

GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionOciTagFreeformTag

Key string: Oracle Cloud Infrastructure Tag key
Value string: ID of the AppRole.

Key string: Oracle Cloud Infrastructure Tag key
Value string: ID of the AppRole.

key String: Oracle Cloud Infrastructure Tag key
value String: ID of the AppRole.

key string: Oracle Cloud Infrastructure Tag key
value string: ID of the AppRole.

key str: Oracle Cloud Infrastructure Tag key
value str: ID of the AppRole.

key String: Oracle Cloud Infrastructure Tag key
value String: ID of the AppRole.

GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensiondbcsApp

DomainApps List<GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensiondbcsAppDomainApp>: Description:
DomainName string: The name of the Enterprise Domain that contains any number of DBInstances. If specified, the value must be unique. A non-null value indicates that App represents a DBDomain. A value of null indicates that the App represents an DB-instance.

DomainApps []GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensiondbcsAppDomainApp: Description:
DomainName string: The name of the Enterprise Domain that contains any number of DBInstances. If specified, the value must be unique. A non-null value indicates that App represents a DBDomain. A value of null indicates that the App represents an DB-instance.

domainApps List<GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensiondbcsAppDomainApp>: Description:
domainName String: The name of the Enterprise Domain that contains any number of DBInstances. If specified, the value must be unique. A non-null value indicates that App represents a DBDomain. A value of null indicates that the App represents an DB-instance.

domainApps GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensiondbcsAppDomainApp[]: Description:
domainName string: The name of the Enterprise Domain that contains any number of DBInstances. If specified, the value must be unique. A non-null value indicates that App represents a DBDomain. A value of null indicates that the App represents an DB-instance.

domain_apps Sequence[GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensiondbcsAppDomainApp]: Description:
domain_name str: The name of the Enterprise Domain that contains any number of DBInstances. If specified, the value must be unique. A non-null value indicates that App represents a DBDomain. A value of null indicates that the App represents an DB-instance.

domainApps List<Property Map>: Description:
domainName String: The name of the Enterprise Domain that contains any number of DBInstances. If specified, the value must be unique. A non-null value indicates that App represents a DBDomain. A value of null indicates that the App represents an DB-instance.

GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensiondbcsAppDomainApp

Display string: Display-name of the AppRole.
Ref string: URI of the AppRole.
Value string: ID of the AppRole.

Display string: Display-name of the AppRole.
Ref string: URI of the AppRole.
Value string: ID of the AppRole.

display String: Display-name of the AppRole.
ref String: URI of the AppRole.
value String: ID of the AppRole.

display string: Display-name of the AppRole.
ref string: URI of the AppRole.
value string: ID of the AppRole.

display str: Display-name of the AppRole.
ref str: URI of the AppRole.
value str: ID of the AppRole.

display String: Display-name of the AppRole.
ref String: URI of the AppRole.
value String: ID of the AppRole.

GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionenterpriseAppApp

AllowAuthzDecisionTtl int: Allow Authz policy decision expiry time in seconds.
AllowAuthzPolicies List<GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionenterpriseAppAppAllowAuthzPolicy>: Allow Authz Policy.
AppResources List<GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionenterpriseAppAppAppResource>: A list of AppResources of this App.
DenyAuthzDecisionTtl int: Deny Authz policy decision expiry time in seconds.
DenyAuthzPolicies List<GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionenterpriseAppAppDenyAuthzPolicy>: Deny Authz Policy.

AllowAuthzDecisionTtl int: Allow Authz policy decision expiry time in seconds.
AllowAuthzPolicies []GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionenterpriseAppAppAllowAuthzPolicy: Allow Authz Policy.
AppResources []GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionenterpriseAppAppAppResource: A list of AppResources of this App.
DenyAuthzDecisionTtl int: Deny Authz policy decision expiry time in seconds.
DenyAuthzPolicies []GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionenterpriseAppAppDenyAuthzPolicy: Deny Authz Policy.

allowAuthzDecisionTtl Integer: Allow Authz policy decision expiry time in seconds.
allowAuthzPolicies List<GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionenterpriseAppAppAllowAuthzPolicy>: Allow Authz Policy.
appResources List<GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionenterpriseAppAppAppResource>: A list of AppResources of this App.
denyAuthzDecisionTtl Integer: Deny Authz policy decision expiry time in seconds.
denyAuthzPolicies List<GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionenterpriseAppAppDenyAuthzPolicy>: Deny Authz Policy.

allowAuthzDecisionTtl number: Allow Authz policy decision expiry time in seconds.
allowAuthzPolicies GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionenterpriseAppAppAllowAuthzPolicy[]: Allow Authz Policy.
appResources GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionenterpriseAppAppAppResource[]: A list of AppResources of this App.
denyAuthzDecisionTtl number: Deny Authz policy decision expiry time in seconds.
denyAuthzPolicies GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionenterpriseAppAppDenyAuthzPolicy[]: Deny Authz Policy.

allow_authz_decision_ttl int: Allow Authz policy decision expiry time in seconds.
allow_authz_policies Sequence[GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionenterpriseAppAppAllowAuthzPolicy]: Allow Authz Policy.
app_resources Sequence[GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionenterpriseAppAppAppResource]: A list of AppResources of this App.
deny_authz_decision_ttl int: Deny Authz policy decision expiry time in seconds.
deny_authz_policies Sequence[GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionenterpriseAppAppDenyAuthzPolicy]: Deny Authz Policy.

allowAuthzDecisionTtl Number: Allow Authz policy decision expiry time in seconds.
allowAuthzPolicies List<Property Map>: Allow Authz Policy.
appResources List<Property Map>: A list of AppResources of this App.
denyAuthzDecisionTtl Number: Deny Authz policy decision expiry time in seconds.
denyAuthzPolicies List<Property Map>: Deny Authz Policy.

GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionenterpriseAppAppAllowAuthzPolicy

Ref string: URI of the AppRole.
Value string: ID of the AppRole.

Ref string: URI of the AppRole.
Value string: ID of the AppRole.

ref String: URI of the AppRole.
value String: ID of the AppRole.

ref string: URI of the AppRole.
value string: ID of the AppRole.

ref str: URI of the AppRole.
value str: ID of the AppRole.

ref String: URI of the AppRole.
value String: ID of the AppRole.

GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionenterpriseAppAppAppResource

Ref string: URI of the AppRole.
Value string: ID of the AppRole.

Ref string: URI of the AppRole.
Value string: ID of the AppRole.

ref String: URI of the AppRole.
value String: ID of the AppRole.

ref string: URI of the AppRole.
value string: ID of the AppRole.

ref str: URI of the AppRole.
value str: ID of the AppRole.

ref String: URI of the AppRole.
value String: ID of the AppRole.

GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionenterpriseAppAppDenyAuthzPolicy

Ref string: URI of the AppRole.
Value string: ID of the AppRole.

Ref string: URI of the AppRole.
Value string: ID of the AppRole.

ref String: URI of the AppRole.
value String: ID of the AppRole.

ref string: URI of the AppRole.
value string: ID of the AppRole.

ref str: URI of the AppRole.
value str: ID of the AppRole.

ref String: URI of the AppRole.
value String: ID of the AppRole.

GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionformFillAppApp

Configuration string: FormFill Application Configuration CLOB which has to be maintained in Form-Fill APP for legacy code to do Form-Fill injection
FormCredMethod string: Indicates how FormFill obtains the username and password of the account that FormFill will use to sign into the target App.
FormCredentialSharingGroupId string: Credential Sharing Group to which this form-fill application belongs.
FormFillUrlMatches List<GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionformFillAppAppFormFillUrlMatch>: A list of application-formURLs that FormFill should match against any formUrl that the user-specifies when signing in to the target service. Each item in the list also indicates how FormFill should interpret that formUrl.
FormType string: Type of the FormFill application like WebApplication, MainFrameApplication, WindowsApplication. Initially, we will support only WebApplication.
RevealPasswordOnForm bool: If true, indicates that system is allowed to show the password in plain-text for this account after re-authentication.
SyncFromTemplate bool: If true, indicates that each of the Form-Fill-related attributes that can be inherited from the template actually will be inherited from the template. If false, indicates that the AppTemplate disabled inheritance for these Form-Fill-related attributes.
UserNameFormExpression string: Indicates the custom expression, which can combine concat and substring operations with literals and with any attribute of the Oracle Identity Cloud Service User
UserNameFormTemplate string: Format for generating a username. This value can be Username or Email Address; any other value will be treated as a custom expression. A custom expression may combine 'concat' and 'substring' operations with literals and with any attribute of the Oracle Identity Cloud Service user.

Configuration string: FormFill Application Configuration CLOB which has to be maintained in Form-Fill APP for legacy code to do Form-Fill injection
FormCredMethod string: Indicates how FormFill obtains the username and password of the account that FormFill will use to sign into the target App.
FormCredentialSharingGroupId string: Credential Sharing Group to which this form-fill application belongs.
FormFillUrlMatches []GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionformFillAppAppFormFillUrlMatch: A list of application-formURLs that FormFill should match against any formUrl that the user-specifies when signing in to the target service. Each item in the list also indicates how FormFill should interpret that formUrl.
FormType string: Type of the FormFill application like WebApplication, MainFrameApplication, WindowsApplication. Initially, we will support only WebApplication.
RevealPasswordOnForm bool: If true, indicates that system is allowed to show the password in plain-text for this account after re-authentication.
SyncFromTemplate bool: If true, indicates that each of the Form-Fill-related attributes that can be inherited from the template actually will be inherited from the template. If false, indicates that the AppTemplate disabled inheritance for these Form-Fill-related attributes.
UserNameFormExpression string: Indicates the custom expression, which can combine concat and substring operations with literals and with any attribute of the Oracle Identity Cloud Service User
UserNameFormTemplate string: Format for generating a username. This value can be Username or Email Address; any other value will be treated as a custom expression. A custom expression may combine 'concat' and 'substring' operations with literals and with any attribute of the Oracle Identity Cloud Service user.

configuration String: FormFill Application Configuration CLOB which has to be maintained in Form-Fill APP for legacy code to do Form-Fill injection
formCredMethod String: Indicates how FormFill obtains the username and password of the account that FormFill will use to sign into the target App.
formCredentialSharingGroupId String: Credential Sharing Group to which this form-fill application belongs.
formFillUrlMatches List<GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionformFillAppAppFormFillUrlMatch>: A list of application-formURLs that FormFill should match against any formUrl that the user-specifies when signing in to the target service. Each item in the list also indicates how FormFill should interpret that formUrl.
formType String: Type of the FormFill application like WebApplication, MainFrameApplication, WindowsApplication. Initially, we will support only WebApplication.
revealPasswordOnForm Boolean: If true, indicates that system is allowed to show the password in plain-text for this account after re-authentication.
syncFromTemplate Boolean: If true, indicates that each of the Form-Fill-related attributes that can be inherited from the template actually will be inherited from the template. If false, indicates that the AppTemplate disabled inheritance for these Form-Fill-related attributes.
userNameFormExpression String: Indicates the custom expression, which can combine concat and substring operations with literals and with any attribute of the Oracle Identity Cloud Service User
userNameFormTemplate String: Format for generating a username. This value can be Username or Email Address; any other value will be treated as a custom expression. A custom expression may combine 'concat' and 'substring' operations with literals and with any attribute of the Oracle Identity Cloud Service user.

configuration string: FormFill Application Configuration CLOB which has to be maintained in Form-Fill APP for legacy code to do Form-Fill injection
formCredMethod string: Indicates how FormFill obtains the username and password of the account that FormFill will use to sign into the target App.
formCredentialSharingGroupId string: Credential Sharing Group to which this form-fill application belongs.
formFillUrlMatches GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionformFillAppAppFormFillUrlMatch[]: A list of application-formURLs that FormFill should match against any formUrl that the user-specifies when signing in to the target service. Each item in the list also indicates how FormFill should interpret that formUrl.
formType string: Type of the FormFill application like WebApplication, MainFrameApplication, WindowsApplication. Initially, we will support only WebApplication.
revealPasswordOnForm boolean: If true, indicates that system is allowed to show the password in plain-text for this account after re-authentication.
syncFromTemplate boolean: If true, indicates that each of the Form-Fill-related attributes that can be inherited from the template actually will be inherited from the template. If false, indicates that the AppTemplate disabled inheritance for these Form-Fill-related attributes.
userNameFormExpression string: Indicates the custom expression, which can combine concat and substring operations with literals and with any attribute of the Oracle Identity Cloud Service User
userNameFormTemplate string: Format for generating a username. This value can be Username or Email Address; any other value will be treated as a custom expression. A custom expression may combine 'concat' and 'substring' operations with literals and with any attribute of the Oracle Identity Cloud Service user.

configuration str: FormFill Application Configuration CLOB which has to be maintained in Form-Fill APP for legacy code to do Form-Fill injection
form_cred_method str: Indicates how FormFill obtains the username and password of the account that FormFill will use to sign into the target App.
form_credential_sharing_group_id str: Credential Sharing Group to which this form-fill application belongs.
form_fill_url_matches Sequence[GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionformFillAppAppFormFillUrlMatch]: A list of application-formURLs that FormFill should match against any formUrl that the user-specifies when signing in to the target service. Each item in the list also indicates how FormFill should interpret that formUrl.
form_type str: Type of the FormFill application like WebApplication, MainFrameApplication, WindowsApplication. Initially, we will support only WebApplication.
reveal_password_on_form bool: If true, indicates that system is allowed to show the password in plain-text for this account after re-authentication.
sync_from_template bool: If true, indicates that each of the Form-Fill-related attributes that can be inherited from the template actually will be inherited from the template. If false, indicates that the AppTemplate disabled inheritance for these Form-Fill-related attributes.
user_name_form_expression str: Indicates the custom expression, which can combine concat and substring operations with literals and with any attribute of the Oracle Identity Cloud Service User
user_name_form_template str: Format for generating a username. This value can be Username or Email Address; any other value will be treated as a custom expression. A custom expression may combine 'concat' and 'substring' operations with literals and with any attribute of the Oracle Identity Cloud Service user.

configuration String: FormFill Application Configuration CLOB which has to be maintained in Form-Fill APP for legacy code to do Form-Fill injection
formCredMethod String: Indicates how FormFill obtains the username and password of the account that FormFill will use to sign into the target App.
formCredentialSharingGroupId String: Credential Sharing Group to which this form-fill application belongs.
formFillUrlMatches List<Property Map>: A list of application-formURLs that FormFill should match against any formUrl that the user-specifies when signing in to the target service. Each item in the list also indicates how FormFill should interpret that formUrl.
formType String: Type of the FormFill application like WebApplication, MainFrameApplication, WindowsApplication. Initially, we will support only WebApplication.
revealPasswordOnForm Boolean: If true, indicates that system is allowed to show the password in plain-text for this account after re-authentication.
syncFromTemplate Boolean: If true, indicates that each of the Form-Fill-related attributes that can be inherited from the template actually will be inherited from the template. If false, indicates that the AppTemplate disabled inheritance for these Form-Fill-related attributes.
userNameFormExpression String: Indicates the custom expression, which can combine concat and substring operations with literals and with any attribute of the Oracle Identity Cloud Service User
userNameFormTemplate String: Format for generating a username. This value can be Username or Email Address; any other value will be treated as a custom expression. A custom expression may combine 'concat' and 'substring' operations with literals and with any attribute of the Oracle Identity Cloud Service user.

GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionformFillAppAppFormFillUrlMatch

FormUrl string: An application formUrl that FormFill will match against any formUrl that a User enters in trying to access the target-service which this App represents.
FormUrlMatchType string: Indicates how to interpret the value of 'formUrl' when matching against a user-specified formUrl. The system currently supports only 'Exact', which indicates that the value of 'formUrl' should be treated as a literal value.

FormUrl string: An application formUrl that FormFill will match against any formUrl that a User enters in trying to access the target-service which this App represents.
FormUrlMatchType string: Indicates how to interpret the value of 'formUrl' when matching against a user-specified formUrl. The system currently supports only 'Exact', which indicates that the value of 'formUrl' should be treated as a literal value.

formUrl String: An application formUrl that FormFill will match against any formUrl that a User enters in trying to access the target-service which this App represents.
formUrlMatchType String: Indicates how to interpret the value of 'formUrl' when matching against a user-specified formUrl. The system currently supports only 'Exact', which indicates that the value of 'formUrl' should be treated as a literal value.

formUrl string: An application formUrl that FormFill will match against any formUrl that a User enters in trying to access the target-service which this App represents.
formUrlMatchType string: Indicates how to interpret the value of 'formUrl' when matching against a user-specified formUrl. The system currently supports only 'Exact', which indicates that the value of 'formUrl' should be treated as a literal value.

form_url str: An application formUrl that FormFill will match against any formUrl that a User enters in trying to access the target-service which this App represents.
form_url_match_type str: Indicates how to interpret the value of 'formUrl' when matching against a user-specified formUrl. The system currently supports only 'Exact', which indicates that the value of 'formUrl' should be treated as a literal value.

formUrl String: An application formUrl that FormFill will match against any formUrl that a User enters in trying to access the target-service which this App represents.
formUrlMatchType String: Indicates how to interpret the value of 'formUrl' when matching against a user-specified formUrl. The system currently supports only 'Exact', which indicates that the value of 'formUrl' should be treated as a literal value.

GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionformFillAppTemplateAppTemplate

Configuration string: FormFill Application Configuration CLOB which has to be maintained in Form-Fill APP for legacy code to do Form-Fill injection
FormCredMethod string: Indicates how FormFill obtains the username and password of the account that FormFill will use to sign into the target App.
FormCredentialSharingGroupId string: Credential Sharing Group to which this form-fill application belongs.
FormFillUrlMatches List<GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionformFillAppTemplateAppTemplateFormFillUrlMatch>: A list of application-formURLs that FormFill should match against any formUrl that the user-specifies when signing in to the target service. Each item in the list also indicates how FormFill should interpret that formUrl.
FormType string: Type of the FormFill application like WebApplication, MainFrameApplication, WindowsApplication. Initially, we will support only WebApplication.
RevealPasswordOnForm bool: If true, indicates that system is allowed to show the password in plain-text for this account after re-authentication.
SyncFromTemplate bool: If true, indicates that each of the Form-Fill-related attributes that can be inherited from the template actually will be inherited from the template. If false, indicates that the AppTemplate disabled inheritance for these Form-Fill-related attributes.
UserNameFormExpression string: Indicates the custom expression, which can combine concat and substring operations with literals and with any attribute of the Oracle Identity Cloud Service User
UserNameFormTemplate string: Format for generating a username. This value can be Username or Email Address; any other value will be treated as a custom expression. A custom expression may combine 'concat' and 'substring' operations with literals and with any attribute of the Oracle Identity Cloud Service user.

Configuration string: FormFill Application Configuration CLOB which has to be maintained in Form-Fill APP for legacy code to do Form-Fill injection
FormCredMethod string: Indicates how FormFill obtains the username and password of the account that FormFill will use to sign into the target App.
FormCredentialSharingGroupId string: Credential Sharing Group to which this form-fill application belongs.
FormFillUrlMatches []GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionformFillAppTemplateAppTemplateFormFillUrlMatch: A list of application-formURLs that FormFill should match against any formUrl that the user-specifies when signing in to the target service. Each item in the list also indicates how FormFill should interpret that formUrl.
FormType string: Type of the FormFill application like WebApplication, MainFrameApplication, WindowsApplication. Initially, we will support only WebApplication.
RevealPasswordOnForm bool: If true, indicates that system is allowed to show the password in plain-text for this account after re-authentication.
SyncFromTemplate bool: If true, indicates that each of the Form-Fill-related attributes that can be inherited from the template actually will be inherited from the template. If false, indicates that the AppTemplate disabled inheritance for these Form-Fill-related attributes.
UserNameFormExpression string: Indicates the custom expression, which can combine concat and substring operations with literals and with any attribute of the Oracle Identity Cloud Service User
UserNameFormTemplate string: Format for generating a username. This value can be Username or Email Address; any other value will be treated as a custom expression. A custom expression may combine 'concat' and 'substring' operations with literals and with any attribute of the Oracle Identity Cloud Service user.

configuration String: FormFill Application Configuration CLOB which has to be maintained in Form-Fill APP for legacy code to do Form-Fill injection
formCredMethod String: Indicates how FormFill obtains the username and password of the account that FormFill will use to sign into the target App.
formCredentialSharingGroupId String: Credential Sharing Group to which this form-fill application belongs.
formFillUrlMatches List<GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionformFillAppTemplateAppTemplateFormFillUrlMatch>: A list of application-formURLs that FormFill should match against any formUrl that the user-specifies when signing in to the target service. Each item in the list also indicates how FormFill should interpret that formUrl.
formType String: Type of the FormFill application like WebApplication, MainFrameApplication, WindowsApplication. Initially, we will support only WebApplication.
revealPasswordOnForm Boolean: If true, indicates that system is allowed to show the password in plain-text for this account after re-authentication.
syncFromTemplate Boolean: If true, indicates that each of the Form-Fill-related attributes that can be inherited from the template actually will be inherited from the template. If false, indicates that the AppTemplate disabled inheritance for these Form-Fill-related attributes.
userNameFormExpression String: Indicates the custom expression, which can combine concat and substring operations with literals and with any attribute of the Oracle Identity Cloud Service User
userNameFormTemplate String: Format for generating a username. This value can be Username or Email Address; any other value will be treated as a custom expression. A custom expression may combine 'concat' and 'substring' operations with literals and with any attribute of the Oracle Identity Cloud Service user.

configuration string: FormFill Application Configuration CLOB which has to be maintained in Form-Fill APP for legacy code to do Form-Fill injection
formCredMethod string: Indicates how FormFill obtains the username and password of the account that FormFill will use to sign into the target App.
formCredentialSharingGroupId string: Credential Sharing Group to which this form-fill application belongs.
formFillUrlMatches GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionformFillAppTemplateAppTemplateFormFillUrlMatch[]: A list of application-formURLs that FormFill should match against any formUrl that the user-specifies when signing in to the target service. Each item in the list also indicates how FormFill should interpret that formUrl.
formType string: Type of the FormFill application like WebApplication, MainFrameApplication, WindowsApplication. Initially, we will support only WebApplication.
revealPasswordOnForm boolean: If true, indicates that system is allowed to show the password in plain-text for this account after re-authentication.
syncFromTemplate boolean: If true, indicates that each of the Form-Fill-related attributes that can be inherited from the template actually will be inherited from the template. If false, indicates that the AppTemplate disabled inheritance for these Form-Fill-related attributes.
userNameFormExpression string: Indicates the custom expression, which can combine concat and substring operations with literals and with any attribute of the Oracle Identity Cloud Service User
userNameFormTemplate string: Format for generating a username. This value can be Username or Email Address; any other value will be treated as a custom expression. A custom expression may combine 'concat' and 'substring' operations with literals and with any attribute of the Oracle Identity Cloud Service user.

configuration str: FormFill Application Configuration CLOB which has to be maintained in Form-Fill APP for legacy code to do Form-Fill injection
form_cred_method str: Indicates how FormFill obtains the username and password of the account that FormFill will use to sign into the target App.
form_credential_sharing_group_id str: Credential Sharing Group to which this form-fill application belongs.
form_fill_url_matches Sequence[GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionformFillAppTemplateAppTemplateFormFillUrlMatch]: A list of application-formURLs that FormFill should match against any formUrl that the user-specifies when signing in to the target service. Each item in the list also indicates how FormFill should interpret that formUrl.
form_type str: Type of the FormFill application like WebApplication, MainFrameApplication, WindowsApplication. Initially, we will support only WebApplication.
reveal_password_on_form bool: If true, indicates that system is allowed to show the password in plain-text for this account after re-authentication.
sync_from_template bool: If true, indicates that each of the Form-Fill-related attributes that can be inherited from the template actually will be inherited from the template. If false, indicates that the AppTemplate disabled inheritance for these Form-Fill-related attributes.
user_name_form_expression str: Indicates the custom expression, which can combine concat and substring operations with literals and with any attribute of the Oracle Identity Cloud Service User
user_name_form_template str: Format for generating a username. This value can be Username or Email Address; any other value will be treated as a custom expression. A custom expression may combine 'concat' and 'substring' operations with literals and with any attribute of the Oracle Identity Cloud Service user.

configuration String: FormFill Application Configuration CLOB which has to be maintained in Form-Fill APP for legacy code to do Form-Fill injection
formCredMethod String: Indicates how FormFill obtains the username and password of the account that FormFill will use to sign into the target App.
formCredentialSharingGroupId String: Credential Sharing Group to which this form-fill application belongs.
formFillUrlMatches List<Property Map>: A list of application-formURLs that FormFill should match against any formUrl that the user-specifies when signing in to the target service. Each item in the list also indicates how FormFill should interpret that formUrl.
formType String: Type of the FormFill application like WebApplication, MainFrameApplication, WindowsApplication. Initially, we will support only WebApplication.
revealPasswordOnForm Boolean: If true, indicates that system is allowed to show the password in plain-text for this account after re-authentication.
syncFromTemplate Boolean: If true, indicates that each of the Form-Fill-related attributes that can be inherited from the template actually will be inherited from the template. If false, indicates that the AppTemplate disabled inheritance for these Form-Fill-related attributes.
userNameFormExpression String: Indicates the custom expression, which can combine concat and substring operations with literals and with any attribute of the Oracle Identity Cloud Service User
userNameFormTemplate String: Format for generating a username. This value can be Username or Email Address; any other value will be treated as a custom expression. A custom expression may combine 'concat' and 'substring' operations with literals and with any attribute of the Oracle Identity Cloud Service user.

GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionformFillAppTemplateAppTemplateFormFillUrlMatch

FormUrl string: An application formUrl that FormFill will match against any formUrl that a User enters in trying to access the target-service which this App represents.
FormUrlMatchType string: Indicates how to interpret the value of 'formUrl' when matching against a user-specified formUrl. The system currently supports only 'Exact', which indicates that the value of 'formUrl' should be treated as a literal value.

FormUrl string: An application formUrl that FormFill will match against any formUrl that a User enters in trying to access the target-service which this App represents.
FormUrlMatchType string: Indicates how to interpret the value of 'formUrl' when matching against a user-specified formUrl. The system currently supports only 'Exact', which indicates that the value of 'formUrl' should be treated as a literal value.

formUrl String: An application formUrl that FormFill will match against any formUrl that a User enters in trying to access the target-service which this App represents.
formUrlMatchType String: Indicates how to interpret the value of 'formUrl' when matching against a user-specified formUrl. The system currently supports only 'Exact', which indicates that the value of 'formUrl' should be treated as a literal value.

formUrl string: An application formUrl that FormFill will match against any formUrl that a User enters in trying to access the target-service which this App represents.
formUrlMatchType string: Indicates how to interpret the value of 'formUrl' when matching against a user-specified formUrl. The system currently supports only 'Exact', which indicates that the value of 'formUrl' should be treated as a literal value.

form_url str: An application formUrl that FormFill will match against any formUrl that a User enters in trying to access the target-service which this App represents.
form_url_match_type str: Indicates how to interpret the value of 'formUrl' when matching against a user-specified formUrl. The system currently supports only 'Exact', which indicates that the value of 'formUrl' should be treated as a literal value.

formUrl String: An application formUrl that FormFill will match against any formUrl that a User enters in trying to access the target-service which this App represents.
formUrlMatchType String: Indicates how to interpret the value of 'formUrl' when matching against a user-specified formUrl. The system currently supports only 'Exact', which indicates that the value of 'formUrl' should be treated as a literal value.

GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionkerberosRealmApp

DefaultEncryptionSaltType string: The type of salt that the system will use to encrypt Kerberos-specific artifacts of this App unless another type of salt is specified.
MasterKey string: The primary key that the system should use to encrypt artifacts that are specific to this Kerberos realm -- for example, to encrypt the Principal Key in each KerberosRealmUser.
MaxRenewableAge int: Max Renewable Age in seconds
MaxTicketLife int: Max Ticket Life in seconds
RealmName string: The name of the Kerberos Realm that this App uses for authentication.
SupportedEncryptionSaltTypes List<string>: The types of salt that are available for the system to use when encrypting Kerberos-specific artifacts for this App.
TicketFlags int: Ticket Flags

DefaultEncryptionSaltType string: The type of salt that the system will use to encrypt Kerberos-specific artifacts of this App unless another type of salt is specified.
MasterKey string: The primary key that the system should use to encrypt artifacts that are specific to this Kerberos realm -- for example, to encrypt the Principal Key in each KerberosRealmUser.
MaxRenewableAge int: Max Renewable Age in seconds
MaxTicketLife int: Max Ticket Life in seconds
RealmName string: The name of the Kerberos Realm that this App uses for authentication.
SupportedEncryptionSaltTypes []string: The types of salt that are available for the system to use when encrypting Kerberos-specific artifacts for this App.
TicketFlags int: Ticket Flags

defaultEncryptionSaltType String: The type of salt that the system will use to encrypt Kerberos-specific artifacts of this App unless another type of salt is specified.
masterKey String: The primary key that the system should use to encrypt artifacts that are specific to this Kerberos realm -- for example, to encrypt the Principal Key in each KerberosRealmUser.
maxRenewableAge Integer: Max Renewable Age in seconds
maxTicketLife Integer: Max Ticket Life in seconds
realmName String: The name of the Kerberos Realm that this App uses for authentication.
supportedEncryptionSaltTypes List<String>: The types of salt that are available for the system to use when encrypting Kerberos-specific artifacts for this App.
ticketFlags Integer: Ticket Flags

defaultEncryptionSaltType string: The type of salt that the system will use to encrypt Kerberos-specific artifacts of this App unless another type of salt is specified.
masterKey string: The primary key that the system should use to encrypt artifacts that are specific to this Kerberos realm -- for example, to encrypt the Principal Key in each KerberosRealmUser.
maxRenewableAge number: Max Renewable Age in seconds
maxTicketLife number: Max Ticket Life in seconds
realmName string: The name of the Kerberos Realm that this App uses for authentication.
supportedEncryptionSaltTypes string[]: The types of salt that are available for the system to use when encrypting Kerberos-specific artifacts for this App.
ticketFlags number: Ticket Flags

default_encryption_salt_type str: The type of salt that the system will use to encrypt Kerberos-specific artifacts of this App unless another type of salt is specified.
master_key str: The primary key that the system should use to encrypt artifacts that are specific to this Kerberos realm -- for example, to encrypt the Principal Key in each KerberosRealmUser.
max_renewable_age int: Max Renewable Age in seconds
max_ticket_life int: Max Ticket Life in seconds
realm_name str: The name of the Kerberos Realm that this App uses for authentication.
supported_encryption_salt_types Sequence[str]: The types of salt that are available for the system to use when encrypting Kerberos-specific artifacts for this App.
ticket_flags int: Ticket Flags

defaultEncryptionSaltType String: The type of salt that the system will use to encrypt Kerberos-specific artifacts of this App unless another type of salt is specified.
masterKey String: The primary key that the system should use to encrypt artifacts that are specific to this Kerberos realm -- for example, to encrypt the Principal Key in each KerberosRealmUser.
maxRenewableAge Number: Max Renewable Age in seconds
maxTicketLife Number: Max Ticket Life in seconds
realmName String: The name of the Kerberos Realm that this App uses for authentication.
supportedEncryptionSaltTypes List<String>: The types of salt that are available for the system to use when encrypting Kerberos-specific artifacts for this App.
ticketFlags Number: Ticket Flags

GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappApp

AccountFormVisible bool: If true, then the account form will be displayed in the Oracle Identity Cloud Service UI to interactively create or update an account for this App. If a value is not specified for this attribute, a default value of "false" will be assumed as the value for this attribute.
AdminConsentGranted bool: If true, admin has granted consent to perform managed app run-time operations.
BundleConfigurationProperties List<GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppBundleConfigurationProperty>: ConnectorBundle configuration properties
BundlePoolConfigurations List<GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppBundlePoolConfiguration>: Configurable options maintaining a pool of ICF connector instances. Values for sub attributes can be set only if the ConnectorBundle referenced in the App has connectorPoolingSupported set to true
CanBeAuthoritative bool: If true, the managed app can be authoritative.
Connected bool: If true, the accounts of the application are managed through an ICF connector bundle
ConnectorBundles List<GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppConnectorBundle>: ConnectorBundle
EnableAuthSyncNewUserNotification bool: If true, send activation email to new users created from authoritative sync.
EnableSync bool: If true, sync run-time operations are enabled for this App.
EnableSyncSummaryReportNotification bool: If true, send sync summary as notification upon job completion.
FlatFileBundleConfigurationProperties List<GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppFlatFileBundleConfigurationProperty>: Flat file connector bundle configuration properties
FlatFileConnectorBundles List<GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppFlatFileConnectorBundle>: Flat file connector bundle to sync from a flat file.
IdentityBridges List<GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppIdentityBridge>: IdentityBridges associated with this App
IsAuthoritative bool: If true, sync from the managed app will be performed as authoritative sync.
IsDirectory bool: If true, the managed app is a directory.
IsOnPremiseApp bool: If true, the managed app is an On-Premise app.
IsSchemaCustomizationSupported bool: If true, the managed app supports schema customization.
IsSchemaDiscoverySupported bool: If true, the managed app supports schema discovery.
IsThreeLeggedOauthEnabled bool: If true, the managed app requires 3-legged OAuth for authorization.
IsTwoLeggedOauthEnabled bool: If true, indicates that Oracle Identity Cloud Service can use two-legged OAuth to connect to this ManagedApp.
ObjectClasses List<GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppObjectClass>: Object classes
SyncConfigLastModified string: The most recent DateTime that the configuration of this App was updated. AppServices updates this timestamp whenever AppServices updates an App's configuration with respect to synchronization.
ThreeLeggedOauthCredentials List<GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppThreeLeggedOauthCredential>: The value of this attribute persists any OAuth access token that the system uses to connect to this ManagedApp. The system obtains this access token using an OAuth protocol flow that could be two-legged or three-legged. A two-legged flow involves only the requester and the server. A three-legged flow also requires the consent of a user -- in this case the consent of an administrator.
ThreeLeggedOauthProviderName string: Three legged OAuth provider name in Oracle Identity Cloud Service.

AccountFormVisible bool: If true, then the account form will be displayed in the Oracle Identity Cloud Service UI to interactively create or update an account for this App. If a value is not specified for this attribute, a default value of "false" will be assumed as the value for this attribute.
AdminConsentGranted bool: If true, admin has granted consent to perform managed app run-time operations.
BundleConfigurationProperties []GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppBundleConfigurationProperty: ConnectorBundle configuration properties
BundlePoolConfigurations []GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppBundlePoolConfiguration: Configurable options maintaining a pool of ICF connector instances. Values for sub attributes can be set only if the ConnectorBundle referenced in the App has connectorPoolingSupported set to true
CanBeAuthoritative bool: If true, the managed app can be authoritative.
Connected bool: If true, the accounts of the application are managed through an ICF connector bundle
ConnectorBundles []GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppConnectorBundle: ConnectorBundle
EnableAuthSyncNewUserNotification bool: If true, send activation email to new users created from authoritative sync.
EnableSync bool: If true, sync run-time operations are enabled for this App.
EnableSyncSummaryReportNotification bool: If true, send sync summary as notification upon job completion.
FlatFileBundleConfigurationProperties []GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppFlatFileBundleConfigurationProperty: Flat file connector bundle configuration properties
FlatFileConnectorBundles []GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppFlatFileConnectorBundle: Flat file connector bundle to sync from a flat file.
IdentityBridges []GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppIdentityBridge: IdentityBridges associated with this App
IsAuthoritative bool: If true, sync from the managed app will be performed as authoritative sync.
IsDirectory bool: If true, the managed app is a directory.
IsOnPremiseApp bool: If true, the managed app is an On-Premise app.
IsSchemaCustomizationSupported bool: If true, the managed app supports schema customization.
IsSchemaDiscoverySupported bool: If true, the managed app supports schema discovery.
IsThreeLeggedOauthEnabled bool: If true, the managed app requires 3-legged OAuth for authorization.
IsTwoLeggedOauthEnabled bool: If true, indicates that Oracle Identity Cloud Service can use two-legged OAuth to connect to this ManagedApp.
ObjectClasses []GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppObjectClass: Object classes
SyncConfigLastModified string: The most recent DateTime that the configuration of this App was updated. AppServices updates this timestamp whenever AppServices updates an App's configuration with respect to synchronization.
ThreeLeggedOauthCredentials []GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppThreeLeggedOauthCredential: The value of this attribute persists any OAuth access token that the system uses to connect to this ManagedApp. The system obtains this access token using an OAuth protocol flow that could be two-legged or three-legged. A two-legged flow involves only the requester and the server. A three-legged flow also requires the consent of a user -- in this case the consent of an administrator.
ThreeLeggedOauthProviderName string: Three legged OAuth provider name in Oracle Identity Cloud Service.

accountFormVisible Boolean: If true, then the account form will be displayed in the Oracle Identity Cloud Service UI to interactively create or update an account for this App. If a value is not specified for this attribute, a default value of "false" will be assumed as the value for this attribute.
adminConsentGranted Boolean: If true, admin has granted consent to perform managed app run-time operations.
bundleConfigurationProperties List<GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppBundleConfigurationProperty>: ConnectorBundle configuration properties
bundlePoolConfigurations List<GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppBundlePoolConfiguration>: Configurable options maintaining a pool of ICF connector instances. Values for sub attributes can be set only if the ConnectorBundle referenced in the App has connectorPoolingSupported set to true
canBeAuthoritative Boolean: If true, the managed app can be authoritative.
connected Boolean: If true, the accounts of the application are managed through an ICF connector bundle
connectorBundles List<GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppConnectorBundle>: ConnectorBundle
enableAuthSyncNewUserNotification Boolean: If true, send activation email to new users created from authoritative sync.
enableSync Boolean: If true, sync run-time operations are enabled for this App.
enableSyncSummaryReportNotification Boolean: If true, send sync summary as notification upon job completion.
flatFileBundleConfigurationProperties List<GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppFlatFileBundleConfigurationProperty>: Flat file connector bundle configuration properties
flatFileConnectorBundles List<GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppFlatFileConnectorBundle>: Flat file connector bundle to sync from a flat file.
identityBridges List<GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppBridge>: IdentityBridges associated with this App
isAuthoritative Boolean: If true, sync from the managed app will be performed as authoritative sync.
isDirectory Boolean: If true, the managed app is a directory.
isOnPremiseApp Boolean: If true, the managed app is an On-Premise app.
isSchemaCustomizationSupported Boolean: If true, the managed app supports schema customization.
isSchemaDiscoverySupported Boolean: If true, the managed app supports schema discovery.
isThreeLeggedOauthEnabled Boolean: If true, the managed app requires 3-legged OAuth for authorization.
isTwoLeggedOauthEnabled Boolean: If true, indicates that Oracle Identity Cloud Service can use two-legged OAuth to connect to this ManagedApp.
objectClasses List<GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppObjectClass>: Object classes
syncConfigLastModified String: The most recent DateTime that the configuration of this App was updated. AppServices updates this timestamp whenever AppServices updates an App's configuration with respect to synchronization.
threeLeggedOauthCredentials List<GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppThreeLeggedOauthCredential>: The value of this attribute persists any OAuth access token that the system uses to connect to this ManagedApp. The system obtains this access token using an OAuth protocol flow that could be two-legged or three-legged. A two-legged flow involves only the requester and the server. A three-legged flow also requires the consent of a user -- in this case the consent of an administrator.
threeLeggedOauthProviderName String: Three legged OAuth provider name in Oracle Identity Cloud Service.

accountFormVisible boolean: If true, then the account form will be displayed in the Oracle Identity Cloud Service UI to interactively create or update an account for this App. If a value is not specified for this attribute, a default value of "false" will be assumed as the value for this attribute.
adminConsentGranted boolean: If true, admin has granted consent to perform managed app run-time operations.
bundleConfigurationProperties GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppBundleConfigurationProperty[]: ConnectorBundle configuration properties
bundlePoolConfigurations GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppBundlePoolConfiguration[]: Configurable options maintaining a pool of ICF connector instances. Values for sub attributes can be set only if the ConnectorBundle referenced in the App has connectorPoolingSupported set to true
canBeAuthoritative boolean: If true, the managed app can be authoritative.
connected boolean: If true, the accounts of the application are managed through an ICF connector bundle
connectorBundles GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppConnectorBundle[]: ConnectorBundle
enableAuthSyncNewUserNotification boolean: If true, send activation email to new users created from authoritative sync.
enableSync boolean: If true, sync run-time operations are enabled for this App.
enableSyncSummaryReportNotification boolean: If true, send sync summary as notification upon job completion.
flatFileBundleConfigurationProperties GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppFlatFileBundleConfigurationProperty[]: Flat file connector bundle configuration properties
flatFileConnectorBundles GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppFlatFileConnectorBundle[]: Flat file connector bundle to sync from a flat file.
identityBridges GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppIdentityBridge[]: IdentityBridges associated with this App
isAuthoritative boolean: If true, sync from the managed app will be performed as authoritative sync.
isDirectory boolean: If true, the managed app is a directory.
isOnPremiseApp boolean: If true, the managed app is an On-Premise app.
isSchemaCustomizationSupported boolean: If true, the managed app supports schema customization.
isSchemaDiscoverySupported boolean: If true, the managed app supports schema discovery.
isThreeLeggedOauthEnabled boolean: If true, the managed app requires 3-legged OAuth for authorization.
isTwoLeggedOauthEnabled boolean: If true, indicates that Oracle Identity Cloud Service can use two-legged OAuth to connect to this ManagedApp.
objectClasses GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppObjectClass[]: Object classes
syncConfigLastModified string: The most recent DateTime that the configuration of this App was updated. AppServices updates this timestamp whenever AppServices updates an App's configuration with respect to synchronization.
threeLeggedOauthCredentials GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppThreeLeggedOauthCredential[]: The value of this attribute persists any OAuth access token that the system uses to connect to this ManagedApp. The system obtains this access token using an OAuth protocol flow that could be two-legged or three-legged. A two-legged flow involves only the requester and the server. A three-legged flow also requires the consent of a user -- in this case the consent of an administrator.
threeLeggedOauthProviderName string: Three legged OAuth provider name in Oracle Identity Cloud Service.

account_form_visible bool: If true, then the account form will be displayed in the Oracle Identity Cloud Service UI to interactively create or update an account for this App. If a value is not specified for this attribute, a default value of "false" will be assumed as the value for this attribute.
admin_consent_granted bool: If true, admin has granted consent to perform managed app run-time operations.
bundle_configuration_properties Sequence[GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppBundleConfigurationProperty]: ConnectorBundle configuration properties
bundle_pool_configurations Sequence[GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppBundlePoolConfiguration]: Configurable options maintaining a pool of ICF connector instances. Values for sub attributes can be set only if the ConnectorBundle referenced in the App has connectorPoolingSupported set to true
can_be_authoritative bool: If true, the managed app can be authoritative.
connected bool: If true, the accounts of the application are managed through an ICF connector bundle
connector_bundles Sequence[GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppConnectorBundle]: ConnectorBundle
enable_auth_sync_new_user_notification bool: If true, send activation email to new users created from authoritative sync.
enable_sync bool: If true, sync run-time operations are enabled for this App.
enable_sync_summary_report_notification bool: If true, send sync summary as notification upon job completion.
flat_file_bundle_configuration_properties Sequence[GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppFlatFileBundleConfigurationProperty]: Flat file connector bundle configuration properties
flat_file_connector_bundles Sequence[GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppFlatFileConnectorBundle]: Flat file connector bundle to sync from a flat file.
identity_bridges Sequence[GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppIdentityBridge]: IdentityBridges associated with this App
is_authoritative bool: If true, sync from the managed app will be performed as authoritative sync.
is_directory bool: If true, the managed app is a directory.
is_on_premise_app bool: If true, the managed app is an On-Premise app.
is_schema_customization_supported bool: If true, the managed app supports schema customization.
is_schema_discovery_supported bool: If true, the managed app supports schema discovery.
is_three_legged_oauth_enabled bool: If true, the managed app requires 3-legged OAuth for authorization.
is_two_legged_oauth_enabled bool: If true, indicates that Oracle Identity Cloud Service can use two-legged OAuth to connect to this ManagedApp.
object_classes Sequence[GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppObjectClass]: Object classes
sync_config_last_modified str: The most recent DateTime that the configuration of this App was updated. AppServices updates this timestamp whenever AppServices updates an App's configuration with respect to synchronization.
three_legged_oauth_credentials Sequence[GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppThreeLeggedOauthCredential]: The value of this attribute persists any OAuth access token that the system uses to connect to this ManagedApp. The system obtains this access token using an OAuth protocol flow that could be two-legged or three-legged. A two-legged flow involves only the requester and the server. A three-legged flow also requires the consent of a user -- in this case the consent of an administrator.
three_legged_oauth_provider_name str: Three legged OAuth provider name in Oracle Identity Cloud Service.

accountFormVisible Boolean: If true, then the account form will be displayed in the Oracle Identity Cloud Service UI to interactively create or update an account for this App. If a value is not specified for this attribute, a default value of "false" will be assumed as the value for this attribute.
adminConsentGranted Boolean: If true, admin has granted consent to perform managed app run-time operations.
bundleConfigurationProperties List<Property Map>: ConnectorBundle configuration properties
bundlePoolConfigurations List<Property Map>: Configurable options maintaining a pool of ICF connector instances. Values for sub attributes can be set only if the ConnectorBundle referenced in the App has connectorPoolingSupported set to true
canBeAuthoritative Boolean: If true, the managed app can be authoritative.
connected Boolean: If true, the accounts of the application are managed through an ICF connector bundle
connectorBundles List<Property Map>: ConnectorBundle
enableAuthSyncNewUserNotification Boolean: If true, send activation email to new users created from authoritative sync.
enableSync Boolean: If true, sync run-time operations are enabled for this App.
enableSyncSummaryReportNotification Boolean: If true, send sync summary as notification upon job completion.
flatFileBundleConfigurationProperties List<Property Map>: Flat file connector bundle configuration properties
flatFileConnectorBundles List<Property Map>: Flat file connector bundle to sync from a flat file.
identityBridges List<Property Map>: IdentityBridges associated with this App
isAuthoritative Boolean: If true, sync from the managed app will be performed as authoritative sync.
isDirectory Boolean: If true, the managed app is a directory.
isOnPremiseApp Boolean: If true, the managed app is an On-Premise app.
isSchemaCustomizationSupported Boolean: If true, the managed app supports schema customization.
isSchemaDiscoverySupported Boolean: If true, the managed app supports schema discovery.
isThreeLeggedOauthEnabled Boolean: If true, the managed app requires 3-legged OAuth for authorization.
isTwoLeggedOauthEnabled Boolean: If true, indicates that Oracle Identity Cloud Service can use two-legged OAuth to connect to this ManagedApp.
objectClasses List<Property Map>: Object classes
syncConfigLastModified String: The most recent DateTime that the configuration of this App was updated. AppServices updates this timestamp whenever AppServices updates an App's configuration with respect to synchronization.
threeLeggedOauthCredentials List<Property Map>: The value of this attribute persists any OAuth access token that the system uses to connect to this ManagedApp. The system obtains this access token using an OAuth protocol flow that could be two-legged or three-legged. A two-legged flow involves only the requester and the server. A three-legged flow also requires the consent of a user -- in this case the consent of an administrator.
threeLeggedOauthProviderName String: Three legged OAuth provider name in Oracle Identity Cloud Service.

GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppBundleConfigurationProperty

Confidential bool: If true, this flatfile bundle configuration property value is confidential and will be encrypted in Oracle Identity Cloud Service. This attribute maps to "isConfidential" attribute in "ConfigurationProperty" in ICF.
DisplayName string: Display name of the flatfile bundle configuration property. This attribute maps to "displayName" attribute in "ConfigurationProperty" in ICF.
HelpMessage string: Help message of the flatfile bundle configuration property. This attribute maps to "helpMessage" attribute in "ConfigurationProperty" in ICF.
IcfType string: ICF data type of flatfile the bundle configuration property. This attribute maps to "type" attribute in "ConfigurationProperty" in ICF.
Name string: The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
Order int: Display sequence of the bundle configuration property.
Required bool: If true, this flatfile bundle configuration property is required to connect to the target connected managed app. This attribute maps to "isRequired" attribute in "ConfigurationProperty" in ICF.
Values List<string>: ID of the AppRole.

Confidential bool: If true, this flatfile bundle configuration property value is confidential and will be encrypted in Oracle Identity Cloud Service. This attribute maps to "isConfidential" attribute in "ConfigurationProperty" in ICF.
DisplayName string: Display name of the flatfile bundle configuration property. This attribute maps to "displayName" attribute in "ConfigurationProperty" in ICF.
HelpMessage string: Help message of the flatfile bundle configuration property. This attribute maps to "helpMessage" attribute in "ConfigurationProperty" in ICF.
IcfType string: ICF data type of flatfile the bundle configuration property. This attribute maps to "type" attribute in "ConfigurationProperty" in ICF.
Name string: The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
Order int: Display sequence of the bundle configuration property.
Required bool: If true, this flatfile bundle configuration property is required to connect to the target connected managed app. This attribute maps to "isRequired" attribute in "ConfigurationProperty" in ICF.
Values []string: ID of the AppRole.

confidential Boolean: If true, this flatfile bundle configuration property value is confidential and will be encrypted in Oracle Identity Cloud Service. This attribute maps to "isConfidential" attribute in "ConfigurationProperty" in ICF.
displayName String: Display name of the flatfile bundle configuration property. This attribute maps to "displayName" attribute in "ConfigurationProperty" in ICF.
helpMessage String: Help message of the flatfile bundle configuration property. This attribute maps to "helpMessage" attribute in "ConfigurationProperty" in ICF.
icfType String: ICF data type of flatfile the bundle configuration property. This attribute maps to "type" attribute in "ConfigurationProperty" in ICF.
name String: The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
order Integer: Display sequence of the bundle configuration property.
required Boolean: If true, this flatfile bundle configuration property is required to connect to the target connected managed app. This attribute maps to "isRequired" attribute in "ConfigurationProperty" in ICF.
values List<String>: ID of the AppRole.

confidential boolean: If true, this flatfile bundle configuration property value is confidential and will be encrypted in Oracle Identity Cloud Service. This attribute maps to "isConfidential" attribute in "ConfigurationProperty" in ICF.
displayName string: Display name of the flatfile bundle configuration property. This attribute maps to "displayName" attribute in "ConfigurationProperty" in ICF.
helpMessage string: Help message of the flatfile bundle configuration property. This attribute maps to "helpMessage" attribute in "ConfigurationProperty" in ICF.
icfType string: ICF data type of flatfile the bundle configuration property. This attribute maps to "type" attribute in "ConfigurationProperty" in ICF.
name string: The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
order number: Display sequence of the bundle configuration property.
required boolean: If true, this flatfile bundle configuration property is required to connect to the target connected managed app. This attribute maps to "isRequired" attribute in "ConfigurationProperty" in ICF.
values string[]: ID of the AppRole.

confidential bool: If true, this flatfile bundle configuration property value is confidential and will be encrypted in Oracle Identity Cloud Service. This attribute maps to "isConfidential" attribute in "ConfigurationProperty" in ICF.
display_name str: Display name of the flatfile bundle configuration property. This attribute maps to "displayName" attribute in "ConfigurationProperty" in ICF.
help_message str: Help message of the flatfile bundle configuration property. This attribute maps to "helpMessage" attribute in "ConfigurationProperty" in ICF.
icf_type str: ICF data type of flatfile the bundle configuration property. This attribute maps to "type" attribute in "ConfigurationProperty" in ICF.
name str: The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
order int: Display sequence of the bundle configuration property.
required bool: If true, this flatfile bundle configuration property is required to connect to the target connected managed app. This attribute maps to "isRequired" attribute in "ConfigurationProperty" in ICF.
values Sequence[str]: ID of the AppRole.

confidential Boolean: If true, this flatfile bundle configuration property value is confidential and will be encrypted in Oracle Identity Cloud Service. This attribute maps to "isConfidential" attribute in "ConfigurationProperty" in ICF.
displayName String: Display name of the flatfile bundle configuration property. This attribute maps to "displayName" attribute in "ConfigurationProperty" in ICF.
helpMessage String: Help message of the flatfile bundle configuration property. This attribute maps to "helpMessage" attribute in "ConfigurationProperty" in ICF.
icfType String: ICF data type of flatfile the bundle configuration property. This attribute maps to "type" attribute in "ConfigurationProperty" in ICF.
name String: The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
order Number: Display sequence of the bundle configuration property.
required Boolean: If true, this flatfile bundle configuration property is required to connect to the target connected managed app. This attribute maps to "isRequired" attribute in "ConfigurationProperty" in ICF.
values List<String>: ID of the AppRole.

GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppBundlePoolConfiguration

MaxIdle int: Maximum number of connector instances in the pool that are idle and active.
MaxObjects int: Maximum number of connector instances in the pool that are idle and active.
MaxWait int: Maximum time (in milliseconds) to wait for a free connector instance to become available before failing.
MinEvictableIdleTimeMillis int: Minimum time (in milliseconds) to wait before evicting an idle conenctor instance from the pool.
MinIdle int: Minimum number of idle connector instances in the pool.

MaxIdle int: Maximum number of connector instances in the pool that are idle and active.
MaxObjects int: Maximum number of connector instances in the pool that are idle and active.
MaxWait int: Maximum time (in milliseconds) to wait for a free connector instance to become available before failing.
MinEvictableIdleTimeMillis int: Minimum time (in milliseconds) to wait before evicting an idle conenctor instance from the pool.
MinIdle int: Minimum number of idle connector instances in the pool.

maxIdle Integer: Maximum number of connector instances in the pool that are idle and active.
maxObjects Integer: Maximum number of connector instances in the pool that are idle and active.
maxWait Integer: Maximum time (in milliseconds) to wait for a free connector instance to become available before failing.
minEvictableIdleTimeMillis Integer: Minimum time (in milliseconds) to wait before evicting an idle conenctor instance from the pool.
minIdle Integer: Minimum number of idle connector instances in the pool.

maxIdle number: Maximum number of connector instances in the pool that are idle and active.
maxObjects number: Maximum number of connector instances in the pool that are idle and active.
maxWait number: Maximum time (in milliseconds) to wait for a free connector instance to become available before failing.
minEvictableIdleTimeMillis number: Minimum time (in milliseconds) to wait before evicting an idle conenctor instance from the pool.
minIdle number: Minimum number of idle connector instances in the pool.

max_idle int: Maximum number of connector instances in the pool that are idle and active.
max_objects int: Maximum number of connector instances in the pool that are idle and active.
max_wait int: Maximum time (in milliseconds) to wait for a free connector instance to become available before failing.
min_evictable_idle_time_millis int: Minimum time (in milliseconds) to wait before evicting an idle conenctor instance from the pool.
min_idle int: Minimum number of idle connector instances in the pool.

maxIdle Number: Maximum number of connector instances in the pool that are idle and active.
maxObjects Number: Maximum number of connector instances in the pool that are idle and active.
maxWait Number: Maximum time (in milliseconds) to wait for a free connector instance to become available before failing.
minEvictableIdleTimeMillis Number: Minimum time (in milliseconds) to wait before evicting an idle conenctor instance from the pool.
minIdle Number: Minimum number of idle connector instances in the pool.

GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppConnectorBundle

Display string: Display-name of the AppRole.
Ref string: URI of the AppRole.
Type string: Object Class type. Allowed values are AccountObjectClass, ManagedObjectClass.
Value string: ID of the AppRole.
WellKnownId string: Unique well-known identifier used to reference connector bundle.

Display string: Display-name of the AppRole.
Ref string: URI of the AppRole.
Type string: Object Class type. Allowed values are AccountObjectClass, ManagedObjectClass.
Value string: ID of the AppRole.
WellKnownId string: Unique well-known identifier used to reference connector bundle.

display String: Display-name of the AppRole.
ref String: URI of the AppRole.
type String: Object Class type. Allowed values are AccountObjectClass, ManagedObjectClass.
value String: ID of the AppRole.
wellKnownId String: Unique well-known identifier used to reference connector bundle.

display string: Display-name of the AppRole.
ref string: URI of the AppRole.
type string: Object Class type. Allowed values are AccountObjectClass, ManagedObjectClass.
value string: ID of the AppRole.
wellKnownId string: Unique well-known identifier used to reference connector bundle.

display str: Display-name of the AppRole.
ref str: URI of the AppRole.
type str: Object Class type. Allowed values are AccountObjectClass, ManagedObjectClass.
value str: ID of the AppRole.
well_known_id str: Unique well-known identifier used to reference connector bundle.

display String: Display-name of the AppRole.
ref String: URI of the AppRole.
type String: Object Class type. Allowed values are AccountObjectClass, ManagedObjectClass.
value String: ID of the AppRole.
wellKnownId String: Unique well-known identifier used to reference connector bundle.

GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppFlatFileBundleConfigurationProperty

Confidential bool: If true, this flatfile bundle configuration property value is confidential and will be encrypted in Oracle Identity Cloud Service. This attribute maps to "isConfidential" attribute in "ConfigurationProperty" in ICF.
DisplayName string: Display name of the flatfile bundle configuration property. This attribute maps to "displayName" attribute in "ConfigurationProperty" in ICF.
HelpMessage string: Help message of the flatfile bundle configuration property. This attribute maps to "helpMessage" attribute in "ConfigurationProperty" in ICF.
IcfType string: ICF data type of flatfile the bundle configuration property. This attribute maps to "type" attribute in "ConfigurationProperty" in ICF.
Name string: The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
Order int: Display sequence of the bundle configuration property.
Required bool: If true, this flatfile bundle configuration property is required to connect to the target connected managed app. This attribute maps to "isRequired" attribute in "ConfigurationProperty" in ICF.
Values List<string>: ID of the AppRole.

Confidential bool: If true, this flatfile bundle configuration property value is confidential and will be encrypted in Oracle Identity Cloud Service. This attribute maps to "isConfidential" attribute in "ConfigurationProperty" in ICF.
DisplayName string: Display name of the flatfile bundle configuration property. This attribute maps to "displayName" attribute in "ConfigurationProperty" in ICF.
HelpMessage string: Help message of the flatfile bundle configuration property. This attribute maps to "helpMessage" attribute in "ConfigurationProperty" in ICF.
IcfType string: ICF data type of flatfile the bundle configuration property. This attribute maps to "type" attribute in "ConfigurationProperty" in ICF.
Name string: The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
Order int: Display sequence of the bundle configuration property.
Required bool: If true, this flatfile bundle configuration property is required to connect to the target connected managed app. This attribute maps to "isRequired" attribute in "ConfigurationProperty" in ICF.
Values []string: ID of the AppRole.

confidential Boolean: If true, this flatfile bundle configuration property value is confidential and will be encrypted in Oracle Identity Cloud Service. This attribute maps to "isConfidential" attribute in "ConfigurationProperty" in ICF.
displayName String: Display name of the flatfile bundle configuration property. This attribute maps to "displayName" attribute in "ConfigurationProperty" in ICF.
helpMessage String: Help message of the flatfile bundle configuration property. This attribute maps to "helpMessage" attribute in "ConfigurationProperty" in ICF.
icfType String: ICF data type of flatfile the bundle configuration property. This attribute maps to "type" attribute in "ConfigurationProperty" in ICF.
name String: The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
order Integer: Display sequence of the bundle configuration property.
required Boolean: If true, this flatfile bundle configuration property is required to connect to the target connected managed app. This attribute maps to "isRequired" attribute in "ConfigurationProperty" in ICF.
values List<String>: ID of the AppRole.

confidential boolean: If true, this flatfile bundle configuration property value is confidential and will be encrypted in Oracle Identity Cloud Service. This attribute maps to "isConfidential" attribute in "ConfigurationProperty" in ICF.
displayName string: Display name of the flatfile bundle configuration property. This attribute maps to "displayName" attribute in "ConfigurationProperty" in ICF.
helpMessage string: Help message of the flatfile bundle configuration property. This attribute maps to "helpMessage" attribute in "ConfigurationProperty" in ICF.
icfType string: ICF data type of flatfile the bundle configuration property. This attribute maps to "type" attribute in "ConfigurationProperty" in ICF.
name string: The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
order number: Display sequence of the bundle configuration property.
required boolean: If true, this flatfile bundle configuration property is required to connect to the target connected managed app. This attribute maps to "isRequired" attribute in "ConfigurationProperty" in ICF.
values string[]: ID of the AppRole.

confidential bool: If true, this flatfile bundle configuration property value is confidential and will be encrypted in Oracle Identity Cloud Service. This attribute maps to "isConfidential" attribute in "ConfigurationProperty" in ICF.
display_name str: Display name of the flatfile bundle configuration property. This attribute maps to "displayName" attribute in "ConfigurationProperty" in ICF.
help_message str: Help message of the flatfile bundle configuration property. This attribute maps to "helpMessage" attribute in "ConfigurationProperty" in ICF.
icf_type str: ICF data type of flatfile the bundle configuration property. This attribute maps to "type" attribute in "ConfigurationProperty" in ICF.
name str: The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
order int: Display sequence of the bundle configuration property.
required bool: If true, this flatfile bundle configuration property is required to connect to the target connected managed app. This attribute maps to "isRequired" attribute in "ConfigurationProperty" in ICF.
values Sequence[str]: ID of the AppRole.

confidential Boolean: If true, this flatfile bundle configuration property value is confidential and will be encrypted in Oracle Identity Cloud Service. This attribute maps to "isConfidential" attribute in "ConfigurationProperty" in ICF.
displayName String: Display name of the flatfile bundle configuration property. This attribute maps to "displayName" attribute in "ConfigurationProperty" in ICF.
helpMessage String: Help message of the flatfile bundle configuration property. This attribute maps to "helpMessage" attribute in "ConfigurationProperty" in ICF.
icfType String: ICF data type of flatfile the bundle configuration property. This attribute maps to "type" attribute in "ConfigurationProperty" in ICF.
name String: The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
order Number: Display sequence of the bundle configuration property.
required Boolean: If true, this flatfile bundle configuration property is required to connect to the target connected managed app. This attribute maps to "isRequired" attribute in "ConfigurationProperty" in ICF.
values List<String>: ID of the AppRole.

GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppFlatFileConnectorBundle

Display string: Display-name of the AppRole.
Ref string: URI of the AppRole.
Value string: ID of the AppRole.
WellKnownId string: Unique well-known identifier used to reference connector bundle.

Display string: Display-name of the AppRole.
Ref string: URI of the AppRole.
Value string: ID of the AppRole.
WellKnownId string: Unique well-known identifier used to reference connector bundle.

display String: Display-name of the AppRole.
ref String: URI of the AppRole.
value String: ID of the AppRole.
wellKnownId String: Unique well-known identifier used to reference connector bundle.

display string: Display-name of the AppRole.
ref string: URI of the AppRole.
value string: ID of the AppRole.
wellKnownId string: Unique well-known identifier used to reference connector bundle.

display str: Display-name of the AppRole.
ref str: URI of the AppRole.
value str: ID of the AppRole.
well_known_id str: Unique well-known identifier used to reference connector bundle.

display String: Display-name of the AppRole.
ref String: URI of the AppRole.
value String: ID of the AppRole.
wellKnownId String: Unique well-known identifier used to reference connector bundle.

GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppIdentityBridge

Name string: The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
Ref string: URI of the AppRole.
Value string: ID of the AppRole.

Name string: The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
Ref string: URI of the AppRole.
Value string: ID of the AppRole.

name String: The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
ref String: URI of the AppRole.
value String: ID of the AppRole.

name string: The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
ref string: URI of the AppRole.
value string: ID of the AppRole.

name str: The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
ref str: URI of the AppRole.
value str: ID of the AppRole.

name String: The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
ref String: URI of the AppRole.
value String: ID of the AppRole.

GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppObjectClass

Display string: Display-name of the AppRole.
IsAccountObjectClass bool: If true, the object class represents an account. The isAccountObjectClass attribute value 'true' MUST appear no more than once.
Ref string: URI of the AppRole.
ResourceType string: Object class resource type
Type string: Object Class type. Allowed values are AccountObjectClass, ManagedObjectClass.
Value string: ID of the AppRole.

Display string: Display-name of the AppRole.
IsAccountObjectClass bool: If true, the object class represents an account. The isAccountObjectClass attribute value 'true' MUST appear no more than once.
Ref string: URI of the AppRole.
ResourceType string: Object class resource type
Type string: Object Class type. Allowed values are AccountObjectClass, ManagedObjectClass.
Value string: ID of the AppRole.

display String: Display-name of the AppRole.
isAccountObjectClass Boolean: If true, the object class represents an account. The isAccountObjectClass attribute value 'true' MUST appear no more than once.
ref String: URI of the AppRole.
resourceType String: Object class resource type
type String: Object Class type. Allowed values are AccountObjectClass, ManagedObjectClass.
value String: ID of the AppRole.

display string: Display-name of the AppRole.
isAccountObjectClass boolean: If true, the object class represents an account. The isAccountObjectClass attribute value 'true' MUST appear no more than once.
ref string: URI of the AppRole.
resourceType string: Object class resource type
type string: Object Class type. Allowed values are AccountObjectClass, ManagedObjectClass.
value string: ID of the AppRole.

display str: Display-name of the AppRole.
is_account_object_class bool: If true, the object class represents an account. The isAccountObjectClass attribute value 'true' MUST appear no more than once.
ref str: URI of the AppRole.
resource_type str: Object class resource type
type str: Object Class type. Allowed values are AccountObjectClass, ManagedObjectClass.
value str: ID of the AppRole.

display String: Display-name of the AppRole.
isAccountObjectClass Boolean: If true, the object class represents an account. The isAccountObjectClass attribute value 'true' MUST appear no more than once.
ref String: URI of the AppRole.
resourceType String: Object class resource type
type String: Object Class type. Allowed values are AccountObjectClass, ManagedObjectClass.
value String: ID of the AppRole.

GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppThreeLeggedOauthCredential

AccessToken string: Access Token
AccessTokenExpiry string: Access token expiry
RefreshToken string: Refresh Token

AccessToken string: Access Token
AccessTokenExpiry string: Access token expiry
RefreshToken string: Refresh Token

accessToken String: Access Token
accessTokenExpiry String: Access token expiry
refreshToken String: Refresh Token

accessToken string: Access Token
accessTokenExpiry string: Access token expiry
refreshToken string: Refresh Token

access_token str: Access Token
access_token_expiry str: Access token expiry
refresh_token str: Refresh Token

accessToken String: Access Token
accessTokenExpiry String: Access token expiry
refreshToken String: Refresh Token

GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionmulticloudServiceAppApp

MulticloudPlatformUrl string: The multicloud platform service URL which the application will invoke for runtime operations such as AWSCredentials api invocation
MulticloudServiceType string: Specifies the service type for which the application is configured for multicloud integration. For applicable external service types, app will invoke multicloud service for runtime operations

MulticloudPlatformUrl string: The multicloud platform service URL which the application will invoke for runtime operations such as AWSCredentials api invocation
MulticloudServiceType string: Specifies the service type for which the application is configured for multicloud integration. For applicable external service types, app will invoke multicloud service for runtime operations

multicloudPlatformUrl String: The multicloud platform service URL which the application will invoke for runtime operations such as AWSCredentials api invocation
multicloudServiceType String: Specifies the service type for which the application is configured for multicloud integration. For applicable external service types, app will invoke multicloud service for runtime operations

multicloudPlatformUrl string: The multicloud platform service URL which the application will invoke for runtime operations such as AWSCredentials api invocation
multicloudServiceType string: Specifies the service type for which the application is configured for multicloud integration. For applicable external service types, app will invoke multicloud service for runtime operations

multicloud_platform_url str: The multicloud platform service URL which the application will invoke for runtime operations such as AWSCredentials api invocation
multicloud_service_type str: Specifies the service type for which the application is configured for multicloud integration. For applicable external service types, app will invoke multicloud service for runtime operations

multicloudPlatformUrl String: The multicloud platform service URL which the application will invoke for runtime operations such as AWSCredentials api invocation
multicloudServiceType String: Specifies the service type for which the application is configured for multicloud integration. For applicable external service types, app will invoke multicloud service for runtime operations

GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionopcServiceApp

CurrentFederationMode string: Current Federation Mode
CurrentSynchronizationMode string: Current Synchronization Mode
EnablingNextFedSyncModes bool: If true, indicates that enablement is in progress started but not completed
NextFederationMode string: Next Federation Mode
NextSynchronizationMode string: Next Synchronization Mode
Region string: This value identifies the OPC region in which the service is running.
ServiceInstanceIdentifier string: This value specifies the unique identifier assigned to an instance of an Oracle Public Cloud service app.

CurrentFederationMode string: Current Federation Mode
CurrentSynchronizationMode string: Current Synchronization Mode
EnablingNextFedSyncModes bool: If true, indicates that enablement is in progress started but not completed
NextFederationMode string: Next Federation Mode
NextSynchronizationMode string: Next Synchronization Mode
Region string: This value identifies the OPC region in which the service is running.
ServiceInstanceIdentifier string: This value specifies the unique identifier assigned to an instance of an Oracle Public Cloud service app.

currentFederationMode String: Current Federation Mode
currentSynchronizationMode String: Current Synchronization Mode
enablingNextFedSyncModes Boolean: If true, indicates that enablement is in progress started but not completed
nextFederationMode String: Next Federation Mode
nextSynchronizationMode String: Next Synchronization Mode
region String: This value identifies the OPC region in which the service is running.
serviceInstanceIdentifier String: This value specifies the unique identifier assigned to an instance of an Oracle Public Cloud service app.

currentFederationMode string: Current Federation Mode
currentSynchronizationMode string: Current Synchronization Mode
enablingNextFedSyncModes boolean: If true, indicates that enablement is in progress started but not completed
nextFederationMode string: Next Federation Mode
nextSynchronizationMode string: Next Synchronization Mode
region string: This value identifies the OPC region in which the service is running.
serviceInstanceIdentifier string: This value specifies the unique identifier assigned to an instance of an Oracle Public Cloud service app.

current_federation_mode str: Current Federation Mode
current_synchronization_mode str: Current Synchronization Mode
enabling_next_fed_sync_modes bool: If true, indicates that enablement is in progress started but not completed
next_federation_mode str: Next Federation Mode
next_synchronization_mode str: Next Synchronization Mode
region str: This value identifies the OPC region in which the service is running.
service_instance_identifier str: This value specifies the unique identifier assigned to an instance of an Oracle Public Cloud service app.

currentFederationMode String: Current Federation Mode
currentSynchronizationMode String: Current Synchronization Mode
enablingNextFedSyncModes Boolean: If true, indicates that enablement is in progress started but not completed
nextFederationMode String: Next Federation Mode
nextSynchronizationMode String: Next Synchronization Mode
region String: This value identifies the OPC region in which the service is running.
serviceInstanceIdentifier String: This value specifies the unique identifier assigned to an instance of an Oracle Public Cloud service app.

GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionradiusAppApp

CaptureClientIp bool: If true, capture the client IP address from the RADIUS request packet. IP Address is used for auditing, policy-evaluation and country-code calculation.
ClientIp string: This is the IP address of the RADIUS Client like Oracle Database server. It can be only IP address and not hostname.
CountryCodeResponseAttributeId string: Vendor-specific identifier of the attribute in the RADIUS response that will contain the end-user's country code. This is an integer-value in the range 1 to 255
EndUserIpAttribute string: The name of the attribute that contains the Internet Protocol address of the end-user.
GroupMembershipRadiusAttribute string: RADIUS attribute that RADIUS-enabled system uses to pass the group membership
GroupMembershipToReturns List<GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionradiusAppAppGroupMembershipToReturn>: In a successful authentication response, Oracle Identity Cloud Service will pass user's group information restricted to groups persisted in this attribute, in the specified RADIUS attribute.
GroupNameFormat string: Configure the groupNameFormat based on vendor in order to pass it to RADIUS infra
IncludeGroupInResponse bool: Indicates to include groups in RADIUS response
PasswordAndOtpTogether bool: Indicates if password and OTP are passed in the same sign-in request or not.
Port string: This is the port of RADIUS Proxy which RADIUS client will connect to.
RadiusVendorSpecificId string: ID used to identify a particular vendor.
ResponseFormat string: Configure the responseFormat based on vendor in order to pass it to RADIUS infra
ResponseFormatDelimiter string: The delimiter used if group membership responseFormat is a delimited list instead of repeating attributes
SecretKey string: Secret key used to secure communication between RADIUS Proxy and RADIUS client
TypeOfRadiusApp string: Value consists of type of RADIUS App. Type can be Oracle Database, VPN etc

CaptureClientIp bool: If true, capture the client IP address from the RADIUS request packet. IP Address is used for auditing, policy-evaluation and country-code calculation.
ClientIp string: This is the IP address of the RADIUS Client like Oracle Database server. It can be only IP address and not hostname.
CountryCodeResponseAttributeId string: Vendor-specific identifier of the attribute in the RADIUS response that will contain the end-user's country code. This is an integer-value in the range 1 to 255
EndUserIpAttribute string: The name of the attribute that contains the Internet Protocol address of the end-user.
GroupMembershipRadiusAttribute string: RADIUS attribute that RADIUS-enabled system uses to pass the group membership
GroupMembershipToReturns []GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionradiusAppAppGroupMembershipToReturn: In a successful authentication response, Oracle Identity Cloud Service will pass user's group information restricted to groups persisted in this attribute, in the specified RADIUS attribute.
GroupNameFormat string: Configure the groupNameFormat based on vendor in order to pass it to RADIUS infra
IncludeGroupInResponse bool: Indicates to include groups in RADIUS response
PasswordAndOtpTogether bool: Indicates if password and OTP are passed in the same sign-in request or not.
Port string: This is the port of RADIUS Proxy which RADIUS client will connect to.
RadiusVendorSpecificId string: ID used to identify a particular vendor.
ResponseFormat string: Configure the responseFormat based on vendor in order to pass it to RADIUS infra
ResponseFormatDelimiter string: The delimiter used if group membership responseFormat is a delimited list instead of repeating attributes
SecretKey string: Secret key used to secure communication between RADIUS Proxy and RADIUS client
TypeOfRadiusApp string: Value consists of type of RADIUS App. Type can be Oracle Database, VPN etc

captureClientIp Boolean: If true, capture the client IP address from the RADIUS request packet. IP Address is used for auditing, policy-evaluation and country-code calculation.
clientIp String: This is the IP address of the RADIUS Client like Oracle Database server. It can be only IP address and not hostname.
countryCodeResponseAttributeId String: Vendor-specific identifier of the attribute in the RADIUS response that will contain the end-user's country code. This is an integer-value in the range 1 to 255
endUserIpAttribute String: The name of the attribute that contains the Internet Protocol address of the end-user.
groupMembershipRadiusAttribute String: RADIUS attribute that RADIUS-enabled system uses to pass the group membership
groupMembershipToReturns List<GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionradiusAppAppGroupMembershipToReturn>: In a successful authentication response, Oracle Identity Cloud Service will pass user's group information restricted to groups persisted in this attribute, in the specified RADIUS attribute.
groupNameFormat String: Configure the groupNameFormat based on vendor in order to pass it to RADIUS infra
includeGroupInResponse Boolean: Indicates to include groups in RADIUS response
passwordAndOtpTogether Boolean: Indicates if password and OTP are passed in the same sign-in request or not.
port String: This is the port of RADIUS Proxy which RADIUS client will connect to.
radiusVendorSpecificId String: ID used to identify a particular vendor.
responseFormat String: Configure the responseFormat based on vendor in order to pass it to RADIUS infra
responseFormatDelimiter String: The delimiter used if group membership responseFormat is a delimited list instead of repeating attributes
secretKey String: Secret key used to secure communication between RADIUS Proxy and RADIUS client
typeOfRadiusApp String: Value consists of type of RADIUS App. Type can be Oracle Database, VPN etc

captureClientIp boolean: If true, capture the client IP address from the RADIUS request packet. IP Address is used for auditing, policy-evaluation and country-code calculation.
clientIp string: This is the IP address of the RADIUS Client like Oracle Database server. It can be only IP address and not hostname.
countryCodeResponseAttributeId string: Vendor-specific identifier of the attribute in the RADIUS response that will contain the end-user's country code. This is an integer-value in the range 1 to 255
endUserIpAttribute string: The name of the attribute that contains the Internet Protocol address of the end-user.
groupMembershipRadiusAttribute string: RADIUS attribute that RADIUS-enabled system uses to pass the group membership
groupMembershipToReturns GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionradiusAppAppGroupMembershipToReturn[]: In a successful authentication response, Oracle Identity Cloud Service will pass user's group information restricted to groups persisted in this attribute, in the specified RADIUS attribute.
groupNameFormat string: Configure the groupNameFormat based on vendor in order to pass it to RADIUS infra
includeGroupInResponse boolean: Indicates to include groups in RADIUS response
passwordAndOtpTogether boolean: Indicates if password and OTP are passed in the same sign-in request or not.
port string: This is the port of RADIUS Proxy which RADIUS client will connect to.
radiusVendorSpecificId string: ID used to identify a particular vendor.
responseFormat string: Configure the responseFormat based on vendor in order to pass it to RADIUS infra
responseFormatDelimiter string: The delimiter used if group membership responseFormat is a delimited list instead of repeating attributes
secretKey string: Secret key used to secure communication between RADIUS Proxy and RADIUS client
typeOfRadiusApp string: Value consists of type of RADIUS App. Type can be Oracle Database, VPN etc

capture_client_ip bool: If true, capture the client IP address from the RADIUS request packet. IP Address is used for auditing, policy-evaluation and country-code calculation.
client_ip str: This is the IP address of the RADIUS Client like Oracle Database server. It can be only IP address and not hostname.
country_code_response_attribute_id str: Vendor-specific identifier of the attribute in the RADIUS response that will contain the end-user's country code. This is an integer-value in the range 1 to 255
end_user_ip_attribute str: The name of the attribute that contains the Internet Protocol address of the end-user.
group_membership_radius_attribute str: RADIUS attribute that RADIUS-enabled system uses to pass the group membership
group_membership_to_returns Sequence[GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionradiusAppAppGroupMembershipToReturn]: In a successful authentication response, Oracle Identity Cloud Service will pass user's group information restricted to groups persisted in this attribute, in the specified RADIUS attribute.
group_name_format str: Configure the groupNameFormat based on vendor in order to pass it to RADIUS infra
include_group_in_response bool: Indicates to include groups in RADIUS response
password_and_otp_together bool: Indicates if password and OTP are passed in the same sign-in request or not.
port str: This is the port of RADIUS Proxy which RADIUS client will connect to.
radius_vendor_specific_id str: ID used to identify a particular vendor.
response_format str: Configure the responseFormat based on vendor in order to pass it to RADIUS infra
response_format_delimiter str: The delimiter used if group membership responseFormat is a delimited list instead of repeating attributes
secret_key str: Secret key used to secure communication between RADIUS Proxy and RADIUS client
type_of_radius_app str: Value consists of type of RADIUS App. Type can be Oracle Database, VPN etc

captureClientIp Boolean: If true, capture the client IP address from the RADIUS request packet. IP Address is used for auditing, policy-evaluation and country-code calculation.
clientIp String: This is the IP address of the RADIUS Client like Oracle Database server. It can be only IP address and not hostname.
countryCodeResponseAttributeId String: Vendor-specific identifier of the attribute in the RADIUS response that will contain the end-user's country code. This is an integer-value in the range 1 to 255
endUserIpAttribute String: The name of the attribute that contains the Internet Protocol address of the end-user.
groupMembershipRadiusAttribute String: RADIUS attribute that RADIUS-enabled system uses to pass the group membership
groupMembershipToReturns List<Property Map>: In a successful authentication response, Oracle Identity Cloud Service will pass user's group information restricted to groups persisted in this attribute, in the specified RADIUS attribute.
groupNameFormat String: Configure the groupNameFormat based on vendor in order to pass it to RADIUS infra
includeGroupInResponse Boolean: Indicates to include groups in RADIUS response
passwordAndOtpTogether Boolean: Indicates if password and OTP are passed in the same sign-in request or not.
port String: This is the port of RADIUS Proxy which RADIUS client will connect to.
radiusVendorSpecificId String: ID used to identify a particular vendor.
responseFormat String: Configure the responseFormat based on vendor in order to pass it to RADIUS infra
responseFormatDelimiter String: The delimiter used if group membership responseFormat is a delimited list instead of repeating attributes
secretKey String: Secret key used to secure communication between RADIUS Proxy and RADIUS client
typeOfRadiusApp String: Value consists of type of RADIUS App. Type can be Oracle Database, VPN etc

GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionradiusAppAppGroupMembershipToReturn

Display string: Display-name of the AppRole.
Ref string: URI of the AppRole.
Value string: ID of the AppRole.

Display string: Display-name of the AppRole.
Ref string: URI of the AppRole.
Value string: ID of the AppRole.

display String: Display-name of the AppRole.
ref String: URI of the AppRole.
value String: ID of the AppRole.

display string: Display-name of the AppRole.
ref string: URI of the AppRole.
value string: ID of the AppRole.

display str: Display-name of the AppRole.
ref str: URI of the AppRole.
value str: ID of the AppRole.

display String: Display-name of the AppRole.
ref String: URI of the AppRole.
value String: ID of the AppRole.

GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionrequestableApp

Requestable bool: Flag controlling whether resource can be request by user through self service console.

Requestable bool: Flag controlling whether resource can be request by user through self service console.

requestable Boolean: Flag controlling whether resource can be request by user through self service console.

requestable boolean: Flag controlling whether resource can be request by user through self service console.

requestable bool: Flag controlling whether resource can be request by user through self service console.

requestable Boolean: Flag controlling whether resource can be request by user through self service console.

GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionsamlServiceProviderApp

AssertionConsumerUrl string: The attribute represents the URL to which the SAML Assertions will be sent by the SAML IdP.
EncryptAssertion bool: If true, indicates that the system must encrypt the Security Assertion Markup Language (SAML) assertion.
EncryptionAlgorithm string: This attribute indicates the encryption algorithm used to encrypt the SAML assertion.
EncryptionCertificate string: This attribute represents the encryption certificate that an App uses to encrypt the Security Assertion Markup Language (SAML) assertion.
FederationProtocol string: Specifies the preferred federation protocol (SAML2.0 or WS-Fed1.1).
GroupAssertionAttributes List<GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionsamlServiceProviderAppGroupAssertionAttribute>: Each value of this attribute describes an attribute of Group that will be sent in a Security Assertion Markup Language (SAML) assertion.
HokAcsUrl string: Hok Assertion Consumer Service Url
HokRequired bool: If enabled, then the SAML Service supports Hok for this App.
IncludeSigningCertInSignature bool: If true, then the signing certificate is included in the signature.
KeyEncryptionAlgorithm string: This attribute indicates the key encryption algorithm.
LastNotificationSentTime string: Records the notification timestamp for the SP whose signing certificate is about to expire.
LogoutBinding string: This attribute represents the HTTP binding that would be used while logout.
LogoutEnabled bool: If true, then the SAML Service supports logout for this App.
LogoutRequestUrl string: The URL to which the partner sends the logout request.
LogoutResponseUrl string: The URL to which the partner sends the logout response.
Metadata string: This attribute represents the metadata of a Security Provider in the Security Assertion Markup Language protocol.
NameIdFormat string: This can be any string, but there are a set of standard nameIdFormats. If a nameIdFormat other than the standard list is chosen, it will be considered a custom nameidformat. The standard nameidformats include: saml-x509, saml-emailaddress, saml-windowsnamequalifier, saml-kerberos, saml-persistent, saml-transient, saml-unspecified, saml-none, and saml-persistent-opaque.
NameIdUserstoreAttribute string: Deprecated Since: 18.2.2
OutboundAssertionAttributes List<GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionsamlServiceProviderAppOutboundAssertionAttribute>: Use to construct the outgoing SAML attributes
PartnerProviderId string: The ID of the Provider. This value corresponds to the entityID from the Service Provider metadata.
PartnerProviderPattern string: The pattern of the Provider. This value corresponds to the entityID from the Service Provider metadata.
SignResponseOrAssertion string: Indicates which part of the response should be signed. A value of "Assertion" indicates that the Assertion should be signed. A value of "Response" indicates that the SSO Response should be signed. A value of "AssertionAndResponse" indicates that both the Assertion and the SSO Response should be signed.
SignatureHashAlgorithm string: This attribute represents the algorithm used to hash the signature.
SigningCertificate string: This attribute represents the signing certificate that an App uses to verify the signed authentication request.
SuccinctId string: This attribute represents the Succinct ID.
TenantProviderId string: The alternate Provider ID to be used as the Oracle Identity Cloud Service providerID (instead of the one in SamlSettings) when interacting with this SP.
UserAssertionAttributes List<GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionsamlServiceProviderAppUserAssertionAttribute>: Each value of this attribute describes an attribute of User that will be sent in a Security Assertion Markup Language (SAML) assertion.

AssertionConsumerUrl string: The attribute represents the URL to which the SAML Assertions will be sent by the SAML IdP.
EncryptAssertion bool: If true, indicates that the system must encrypt the Security Assertion Markup Language (SAML) assertion.
EncryptionAlgorithm string: This attribute indicates the encryption algorithm used to encrypt the SAML assertion.
EncryptionCertificate string: This attribute represents the encryption certificate that an App uses to encrypt the Security Assertion Markup Language (SAML) assertion.
FederationProtocol string: Specifies the preferred federation protocol (SAML2.0 or WS-Fed1.1).
GroupAssertionAttributes []GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionsamlServiceProviderAppGroupAssertionAttribute: Each value of this attribute describes an attribute of Group that will be sent in a Security Assertion Markup Language (SAML) assertion.
HokAcsUrl string: Hok Assertion Consumer Service Url
HokRequired bool: If enabled, then the SAML Service supports Hok for this App.
IncludeSigningCertInSignature bool: If true, then the signing certificate is included in the signature.
KeyEncryptionAlgorithm string: This attribute indicates the key encryption algorithm.
LastNotificationSentTime string: Records the notification timestamp for the SP whose signing certificate is about to expire.
LogoutBinding string: This attribute represents the HTTP binding that would be used while logout.
LogoutEnabled bool: If true, then the SAML Service supports logout for this App.
LogoutRequestUrl string: The URL to which the partner sends the logout request.
LogoutResponseUrl string: The URL to which the partner sends the logout response.
Metadata string: This attribute represents the metadata of a Security Provider in the Security Assertion Markup Language protocol.
NameIdFormat string: This can be any string, but there are a set of standard nameIdFormats. If a nameIdFormat other than the standard list is chosen, it will be considered a custom nameidformat. The standard nameidformats include: saml-x509, saml-emailaddress, saml-windowsnamequalifier, saml-kerberos, saml-persistent, saml-transient, saml-unspecified, saml-none, and saml-persistent-opaque.
NameIdUserstoreAttribute string: Deprecated Since: 18.2.2
OutboundAssertionAttributes []GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionsamlServiceProviderAppOutboundAssertionAttribute: Use to construct the outgoing SAML attributes
PartnerProviderId string: The ID of the Provider. This value corresponds to the entityID from the Service Provider metadata.
PartnerProviderPattern string: The pattern of the Provider. This value corresponds to the entityID from the Service Provider metadata.
SignResponseOrAssertion string: Indicates which part of the response should be signed. A value of "Assertion" indicates that the Assertion should be signed. A value of "Response" indicates that the SSO Response should be signed. A value of "AssertionAndResponse" indicates that both the Assertion and the SSO Response should be signed.
SignatureHashAlgorithm string: This attribute represents the algorithm used to hash the signature.
SigningCertificate string: This attribute represents the signing certificate that an App uses to verify the signed authentication request.
SuccinctId string: This attribute represents the Succinct ID.
TenantProviderId string: The alternate Provider ID to be used as the Oracle Identity Cloud Service providerID (instead of the one in SamlSettings) when interacting with this SP.
UserAssertionAttributes []GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionsamlServiceProviderAppUserAssertionAttribute: Each value of this attribute describes an attribute of User that will be sent in a Security Assertion Markup Language (SAML) assertion.

assertionConsumerUrl String: The attribute represents the URL to which the SAML Assertions will be sent by the SAML IdP.
encryptAssertion Boolean: If true, indicates that the system must encrypt the Security Assertion Markup Language (SAML) assertion.
encryptionAlgorithm String: This attribute indicates the encryption algorithm used to encrypt the SAML assertion.
encryptionCertificate String: This attribute represents the encryption certificate that an App uses to encrypt the Security Assertion Markup Language (SAML) assertion.
federationProtocol String: Specifies the preferred federation protocol (SAML2.0 or WS-Fed1.1).
groupAssertionAttributes List<GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionsamlServiceProviderAppGroupAssertionAttribute>: Each value of this attribute describes an attribute of Group that will be sent in a Security Assertion Markup Language (SAML) assertion.
hokAcsUrl String: Hok Assertion Consumer Service Url
hokRequired Boolean: If enabled, then the SAML Service supports Hok for this App.
includeSigningCertInSignature Boolean: If true, then the signing certificate is included in the signature.
keyEncryptionAlgorithm String: This attribute indicates the key encryption algorithm.
lastNotificationSentTime String: Records the notification timestamp for the SP whose signing certificate is about to expire.
logoutBinding String: This attribute represents the HTTP binding that would be used while logout.
logoutEnabled Boolean: If true, then the SAML Service supports logout for this App.
logoutRequestUrl String: The URL to which the partner sends the logout request.
logoutResponseUrl String: The URL to which the partner sends the logout response.
metadata String: This attribute represents the metadata of a Security Provider in the Security Assertion Markup Language protocol.
nameIdFormat String: This can be any string, but there are a set of standard nameIdFormats. If a nameIdFormat other than the standard list is chosen, it will be considered a custom nameidformat. The standard nameidformats include: saml-x509, saml-emailaddress, saml-windowsnamequalifier, saml-kerberos, saml-persistent, saml-transient, saml-unspecified, saml-none, and saml-persistent-opaque.
nameIdUserstoreAttribute String: Deprecated Since: 18.2.2
outboundAssertionAttributes List<GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionsamlServiceProviderAppOutboundAssertionAttribute>: Use to construct the outgoing SAML attributes
partnerProviderId String: The ID of the Provider. This value corresponds to the entityID from the Service Provider metadata.
partnerProviderPattern String: The pattern of the Provider. This value corresponds to the entityID from the Service Provider metadata.
signResponseOrAssertion String: Indicates which part of the response should be signed. A value of "Assertion" indicates that the Assertion should be signed. A value of "Response" indicates that the SSO Response should be signed. A value of "AssertionAndResponse" indicates that both the Assertion and the SSO Response should be signed.
signatureHashAlgorithm String: This attribute represents the algorithm used to hash the signature.
signingCertificate String: This attribute represents the signing certificate that an App uses to verify the signed authentication request.
succinctId String: This attribute represents the Succinct ID.
tenantProviderId String: The alternate Provider ID to be used as the Oracle Identity Cloud Service providerID (instead of the one in SamlSettings) when interacting with this SP.
userAssertionAttributes List<GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionsamlServiceProviderAppUserAssertionAttribute>: Each value of this attribute describes an attribute of User that will be sent in a Security Assertion Markup Language (SAML) assertion.

assertionConsumerUrl string: The attribute represents the URL to which the SAML Assertions will be sent by the SAML IdP.
encryptAssertion boolean: If true, indicates that the system must encrypt the Security Assertion Markup Language (SAML) assertion.
encryptionAlgorithm string: This attribute indicates the encryption algorithm used to encrypt the SAML assertion.
encryptionCertificate string: This attribute represents the encryption certificate that an App uses to encrypt the Security Assertion Markup Language (SAML) assertion.
federationProtocol string: Specifies the preferred federation protocol (SAML2.0 or WS-Fed1.1).
groupAssertionAttributes GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionsamlServiceProviderAppGroupAssertionAttribute[]: Each value of this attribute describes an attribute of Group that will be sent in a Security Assertion Markup Language (SAML) assertion.
hokAcsUrl string: Hok Assertion Consumer Service Url
hokRequired boolean: If enabled, then the SAML Service supports Hok for this App.
includeSigningCertInSignature boolean: If true, then the signing certificate is included in the signature.
keyEncryptionAlgorithm string: This attribute indicates the key encryption algorithm.
lastNotificationSentTime string: Records the notification timestamp for the SP whose signing certificate is about to expire.
logoutBinding string: This attribute represents the HTTP binding that would be used while logout.
logoutEnabled boolean: If true, then the SAML Service supports logout for this App.
logoutRequestUrl string: The URL to which the partner sends the logout request.
logoutResponseUrl string: The URL to which the partner sends the logout response.
metadata string: This attribute represents the metadata of a Security Provider in the Security Assertion Markup Language protocol.
nameIdFormat string: This can be any string, but there are a set of standard nameIdFormats. If a nameIdFormat other than the standard list is chosen, it will be considered a custom nameidformat. The standard nameidformats include: saml-x509, saml-emailaddress, saml-windowsnamequalifier, saml-kerberos, saml-persistent, saml-transient, saml-unspecified, saml-none, and saml-persistent-opaque.
nameIdUserstoreAttribute string: Deprecated Since: 18.2.2
outboundAssertionAttributes GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionsamlServiceProviderAppOutboundAssertionAttribute[]: Use to construct the outgoing SAML attributes
partnerProviderId string: The ID of the Provider. This value corresponds to the entityID from the Service Provider metadata.
partnerProviderPattern string: The pattern of the Provider. This value corresponds to the entityID from the Service Provider metadata.
signResponseOrAssertion string: Indicates which part of the response should be signed. A value of "Assertion" indicates that the Assertion should be signed. A value of "Response" indicates that the SSO Response should be signed. A value of "AssertionAndResponse" indicates that both the Assertion and the SSO Response should be signed.
signatureHashAlgorithm string: This attribute represents the algorithm used to hash the signature.
signingCertificate string: This attribute represents the signing certificate that an App uses to verify the signed authentication request.
succinctId string: This attribute represents the Succinct ID.
tenantProviderId string: The alternate Provider ID to be used as the Oracle Identity Cloud Service providerID (instead of the one in SamlSettings) when interacting with this SP.
userAssertionAttributes GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionsamlServiceProviderAppUserAssertionAttribute[]: Each value of this attribute describes an attribute of User that will be sent in a Security Assertion Markup Language (SAML) assertion.

assertion_consumer_url str: The attribute represents the URL to which the SAML Assertions will be sent by the SAML IdP.
encrypt_assertion bool: If true, indicates that the system must encrypt the Security Assertion Markup Language (SAML) assertion.
encryption_algorithm str: This attribute indicates the encryption algorithm used to encrypt the SAML assertion.
encryption_certificate str: This attribute represents the encryption certificate that an App uses to encrypt the Security Assertion Markup Language (SAML) assertion.
federation_protocol str: Specifies the preferred federation protocol (SAML2.0 or WS-Fed1.1).
group_assertion_attributes Sequence[GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionsamlServiceProviderAppGroupAssertionAttribute]: Each value of this attribute describes an attribute of Group that will be sent in a Security Assertion Markup Language (SAML) assertion.
hok_acs_url str: Hok Assertion Consumer Service Url
hok_required bool: If enabled, then the SAML Service supports Hok for this App.
include_signing_cert_in_signature bool: If true, then the signing certificate is included in the signature.
key_encryption_algorithm str: This attribute indicates the key encryption algorithm.
last_notification_sent_time str: Records the notification timestamp for the SP whose signing certificate is about to expire.
logout_binding str: This attribute represents the HTTP binding that would be used while logout.
logout_enabled bool: If true, then the SAML Service supports logout for this App.
logout_request_url str: The URL to which the partner sends the logout request.
logout_response_url str: The URL to which the partner sends the logout response.
metadata str: This attribute represents the metadata of a Security Provider in the Security Assertion Markup Language protocol.
name_id_format str: This can be any string, but there are a set of standard nameIdFormats. If a nameIdFormat other than the standard list is chosen, it will be considered a custom nameidformat. The standard nameidformats include: saml-x509, saml-emailaddress, saml-windowsnamequalifier, saml-kerberos, saml-persistent, saml-transient, saml-unspecified, saml-none, and saml-persistent-opaque.
name_id_userstore_attribute str: Deprecated Since: 18.2.2
outbound_assertion_attributes Sequence[GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionsamlServiceProviderAppOutboundAssertionAttribute]: Use to construct the outgoing SAML attributes
partner_provider_id str: The ID of the Provider. This value corresponds to the entityID from the Service Provider metadata.
partner_provider_pattern str: The pattern of the Provider. This value corresponds to the entityID from the Service Provider metadata.
sign_response_or_assertion str: Indicates which part of the response should be signed. A value of "Assertion" indicates that the Assertion should be signed. A value of "Response" indicates that the SSO Response should be signed. A value of "AssertionAndResponse" indicates that both the Assertion and the SSO Response should be signed.
signature_hash_algorithm str: This attribute represents the algorithm used to hash the signature.
signing_certificate str: This attribute represents the signing certificate that an App uses to verify the signed authentication request.
succinct_id str: This attribute represents the Succinct ID.
tenant_provider_id str: The alternate Provider ID to be used as the Oracle Identity Cloud Service providerID (instead of the one in SamlSettings) when interacting with this SP.
user_assertion_attributes Sequence[GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionsamlServiceProviderAppUserAssertionAttribute]: Each value of this attribute describes an attribute of User that will be sent in a Security Assertion Markup Language (SAML) assertion.

assertionConsumerUrl String: The attribute represents the URL to which the SAML Assertions will be sent by the SAML IdP.
encryptAssertion Boolean: If true, indicates that the system must encrypt the Security Assertion Markup Language (SAML) assertion.
encryptionAlgorithm String: This attribute indicates the encryption algorithm used to encrypt the SAML assertion.
encryptionCertificate String: This attribute represents the encryption certificate that an App uses to encrypt the Security Assertion Markup Language (SAML) assertion.
federationProtocol String: Specifies the preferred federation protocol (SAML2.0 or WS-Fed1.1).
groupAssertionAttributes List<Property Map>: Each value of this attribute describes an attribute of Group that will be sent in a Security Assertion Markup Language (SAML) assertion.
hokAcsUrl String: Hok Assertion Consumer Service Url
hokRequired Boolean: If enabled, then the SAML Service supports Hok for this App.
includeSigningCertInSignature Boolean: If true, then the signing certificate is included in the signature.
keyEncryptionAlgorithm String: This attribute indicates the key encryption algorithm.
lastNotificationSentTime String: Records the notification timestamp for the SP whose signing certificate is about to expire.
logoutBinding String: This attribute represents the HTTP binding that would be used while logout.
logoutEnabled Boolean: If true, then the SAML Service supports logout for this App.
logoutRequestUrl String: The URL to which the partner sends the logout request.
logoutResponseUrl String: The URL to which the partner sends the logout response.
metadata String: This attribute represents the metadata of a Security Provider in the Security Assertion Markup Language protocol.
nameIdFormat String: This can be any string, but there are a set of standard nameIdFormats. If a nameIdFormat other than the standard list is chosen, it will be considered a custom nameidformat. The standard nameidformats include: saml-x509, saml-emailaddress, saml-windowsnamequalifier, saml-kerberos, saml-persistent, saml-transient, saml-unspecified, saml-none, and saml-persistent-opaque.
nameIdUserstoreAttribute String: Deprecated Since: 18.2.2
outboundAssertionAttributes List<Property Map>: Use to construct the outgoing SAML attributes
partnerProviderId String: The ID of the Provider. This value corresponds to the entityID from the Service Provider metadata.
partnerProviderPattern String: The pattern of the Provider. This value corresponds to the entityID from the Service Provider metadata.
signResponseOrAssertion String: Indicates which part of the response should be signed. A value of "Assertion" indicates that the Assertion should be signed. A value of "Response" indicates that the SSO Response should be signed. A value of "AssertionAndResponse" indicates that both the Assertion and the SSO Response should be signed.
signatureHashAlgorithm String: This attribute represents the algorithm used to hash the signature.
signingCertificate String: This attribute represents the signing certificate that an App uses to verify the signed authentication request.
succinctId String: This attribute represents the Succinct ID.
tenantProviderId String: The alternate Provider ID to be used as the Oracle Identity Cloud Service providerID (instead of the one in SamlSettings) when interacting with this SP.
userAssertionAttributes List<Property Map>: Each value of this attribute describes an attribute of User that will be sent in a Security Assertion Markup Language (SAML) assertion.

GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionsamlServiceProviderAppGroupAssertionAttribute

Condition string: Indicates the filter types that are supported for the Group assertion attributes.
Format string: Indicates the format of the assertion attribute.
GroupName string: Indicates the group name that are supported for the group assertion attributes.
Name string: The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion

Condition string: Indicates the filter types that are supported for the Group assertion attributes.
Format string: Indicates the format of the assertion attribute.
GroupName string: Indicates the group name that are supported for the group assertion attributes.
Name string: The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion

condition String: Indicates the filter types that are supported for the Group assertion attributes.
format String: Indicates the format of the assertion attribute.
groupName String: Indicates the group name that are supported for the group assertion attributes.
name String: The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion

condition string: Indicates the filter types that are supported for the Group assertion attributes.
format string: Indicates the format of the assertion attribute.
groupName string: Indicates the group name that are supported for the group assertion attributes.
name string: The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion

condition str: Indicates the filter types that are supported for the Group assertion attributes.
format str: Indicates the format of the assertion attribute.
group_name str: Indicates the group name that are supported for the group assertion attributes.
name str: The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion

condition String: Indicates the filter types that are supported for the Group assertion attributes.
format String: Indicates the format of the assertion attribute.
groupName String: Indicates the group name that are supported for the group assertion attributes.
name String: The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion

GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionsamlServiceProviderAppOutboundAssertionAttribute

Direction string: Mapped Attribute Direction
Ref string: URI of the AppRole.
Value string: ID of the AppRole.

Direction string: Mapped Attribute Direction
Ref string: URI of the AppRole.
Value string: ID of the AppRole.

direction String: Mapped Attribute Direction
ref String: URI of the AppRole.
value String: ID of the AppRole.

direction string: Mapped Attribute Direction
ref string: URI of the AppRole.
value string: ID of the AppRole.

direction str: Mapped Attribute Direction
ref str: URI of the AppRole.
value str: ID of the AppRole.

direction String: Mapped Attribute Direction
ref String: URI of the AppRole.
value String: ID of the AppRole.

GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionsamlServiceProviderAppUserAssertionAttribute

Format string: Indicates the format of the assertion attribute.
Name string: The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
UserStoreAttributeName string: This attribute specifies which user attribute should be used to create the value of the SAML assertion attribute. The userstore attribute can be constructed by using attributes from the Oracle Identity Cloud Service Core Users schema. Note: Attributes from extensions to the Core User schema are not supported in v1.0.

Format string: Indicates the format of the assertion attribute.
Name string: The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
UserStoreAttributeName string: This attribute specifies which user attribute should be used to create the value of the SAML assertion attribute. The userstore attribute can be constructed by using attributes from the Oracle Identity Cloud Service Core Users schema. Note: Attributes from extensions to the Core User schema are not supported in v1.0.

format String: Indicates the format of the assertion attribute.
name String: The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
userStoreAttributeName String: This attribute specifies which user attribute should be used to create the value of the SAML assertion attribute. The userstore attribute can be constructed by using attributes from the Oracle Identity Cloud Service Core Users schema. Note: Attributes from extensions to the Core User schema are not supported in v1.0.

format string: Indicates the format of the assertion attribute.
name string: The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
userStoreAttributeName string: This attribute specifies which user attribute should be used to create the value of the SAML assertion attribute. The userstore attribute can be constructed by using attributes from the Oracle Identity Cloud Service Core Users schema. Note: Attributes from extensions to the Core User schema are not supported in v1.0.

format str: Indicates the format of the assertion attribute.
name str: The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
user_store_attribute_name str: This attribute specifies which user attribute should be used to create the value of the SAML assertion attribute. The userstore attribute can be constructed by using attributes from the Oracle Identity Cloud Service Core Users schema. Note: Attributes from extensions to the Core User schema are not supported in v1.0.

format String: Indicates the format of the assertion attribute.
name String: The attribute represents the name of the attribute that will be used in the Security Assertion Markup Language (SAML) assertion
userStoreAttributeName String: This attribute specifies which user attribute should be used to create the value of the SAML assertion attribute. The userstore attribute can be constructed by using attributes from the Oracle Identity Cloud Service Core Users schema. Note: Attributes from extensions to the Core User schema are not supported in v1.0.

GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionwebTierPolicyApp

ResourceRef bool: If this Attribute is true, resource ref id and resource ref name attributes will we included in wtp json response.
WebTierPolicyAzControl string: Webtier policy AZ Control
WebTierPolicyJson string: Store the web tier policy for an application as a string in Javascript Object Notification (JSON) format.

ResourceRef bool: If this Attribute is true, resource ref id and resource ref name attributes will we included in wtp json response.
WebTierPolicyAzControl string: Webtier policy AZ Control
WebTierPolicyJson string: Store the web tier policy for an application as a string in Javascript Object Notification (JSON) format.

resourceRef Boolean: If this Attribute is true, resource ref id and resource ref name attributes will we included in wtp json response.
webTierPolicyAzControl String: Webtier policy AZ Control
webTierPolicyJson String: Store the web tier policy for an application as a string in Javascript Object Notification (JSON) format.

resourceRef boolean: If this Attribute is true, resource ref id and resource ref name attributes will we included in wtp json response.
webTierPolicyAzControl string: Webtier policy AZ Control
webTierPolicyJson string: Store the web tier policy for an application as a string in Javascript Object Notification (JSON) format.

resource_ref bool: If this Attribute is true, resource ref id and resource ref name attributes will we included in wtp json response.
web_tier_policy_az_control str: Webtier policy AZ Control
web_tier_policy_json str: Store the web tier policy for an application as a string in Javascript Object Notification (JSON) format.

resourceRef Boolean: If this Attribute is true, resource ref id and resource ref name attributes will we included in wtp json response.
webTierPolicyAzControl String: Webtier policy AZ Control
webTierPolicyJson String: Store the web tier policy for an application as a string in Javascript Object Notification (JSON) format.

GetDomainsAppsAppUserRole

Description string: The description of the AppRole.
Display string: Display-name of the AppRole.
Ref string: URI of the AppRole.
Value string: ID of the AppRole.

Description string: The description of the AppRole.
Display string: Display-name of the AppRole.
Ref string: URI of the AppRole.
Value string: ID of the AppRole.

description String: The description of the AppRole.
display String: Display-name of the AppRole.
ref String: URI of the AppRole.
value String: ID of the AppRole.

description string: The description of the AppRole.
display string: Display-name of the AppRole.
ref string: URI of the AppRole.
value string: ID of the AppRole.

description str: The description of the AppRole.
display str: Display-name of the AppRole.
ref str: URI of the AppRole.
value str: ID of the AppRole.

description String: The description of the AppRole.
display String: Display-name of the AppRole.
ref String: URI of the AppRole.
value String: ID of the AppRole.

Package Details

Repository: oci pulumi/pulumi-oci
License: Apache-2.0
Notes: This Pulumi package is based on the oci Terraform Provider.

Oracle Cloud Infrastructure v3.9.0 published on Wednesday, Sep 24, 2025 by Pulumi

pulumi/pulumi-oci

oci.Identity.getDomainsApps

On this page

On this page

Example Usage

Using getDomainsApps

getDomainsApps Result

Supporting Types

GetDomainsAppsApp

GetDomainsAppsAppAccount

GetDomainsAppsAppAdminRole

GetDomainsAppsAppAliasApp

GetDomainsAppsAppAllowedScope

GetDomainsAppsAppAllowedTag

GetDomainsAppsAppAppSignonPolicy

GetDomainsAppsAppAppsNetworkPerimeter

GetDomainsAppsAppAsOpcService

GetDomainsAppsAppAttrRenderingMetadata

GetDomainsAppsAppBasedOnTemplate

GetDomainsAppsAppCertificate

GetDomainsAppsAppCloudControlProperty

GetDomainsAppsAppEditableAttribute

GetDomainsAppsAppGrant

GetDomainsAppsAppGrantedAppRole

GetDomainsAppsAppIdcsCreatedBy

GetDomainsAppsAppIdcsLastModifiedBy

GetDomainsAppsAppIdentityProvider

GetDomainsAppsAppIdpPolicy

GetDomainsAppsAppMeta

GetDomainsAppsAppProtectableSecondaryAudience

GetDomainsAppsAppRadiusPolicy

GetDomainsAppsAppSamlServiceProvider

GetDomainsAppsAppScope

GetDomainsAppsAppServiceParam

GetDomainsAppsAppSignonPolicy

GetDomainsAppsAppTag

GetDomainsAppsAppTermsOfUse

GetDomainsAppsAppTrustPolicy

GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionOciTag

GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionOciTagDefinedTag

GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionOciTagFreeformTag

GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensiondbcsApp

GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensiondbcsAppDomainApp

GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionenterpriseAppApp

GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionenterpriseAppAppAllowAuthzPolicy

GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionenterpriseAppAppAppResource

GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionenterpriseAppAppDenyAuthzPolicy

GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionformFillAppApp

GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionformFillAppAppFormFillUrlMatch

GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionformFillAppTemplateAppTemplate

GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionformFillAppTemplateAppTemplateFormFillUrlMatch

GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionkerberosRealmApp

GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappApp

GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppBundleConfigurationProperty

GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppBundlePoolConfiguration

GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppConnectorBundle

GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppFlatFileBundleConfigurationProperty

GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppFlatFileConnectorBundle

GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppIdentityBridge

GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppObjectClass

GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionmanagedappAppThreeLeggedOauthCredential

GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionmulticloudServiceAppApp

GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionopcServiceApp

GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionradiusAppApp

GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionradiusAppAppGroupMembershipToReturn

GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionrequestableApp

GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionsamlServiceProviderApp

GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionsamlServiceProviderAppGroupAssertionAttribute

GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionsamlServiceProviderAppOutboundAssertionAttribute

GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionsamlServiceProviderAppUserAssertionAttribute

GetDomainsAppsAppUrnietfparamsscimschemasoracleidcsextensionwebTierPolicyApp

GetDomainsAppsAppUserRole

Package Details

On this page

On this page