Oracle Cloud Infrastructure v2.17.0 published on Friday, Nov 15, 2024 by Pulumi
oci.DelegateAccessControl.getDelegationControls
Explore with Pulumi AI
This data source provides the list of Delegation Controls in Oracle Cloud Infrastructure Delegate Access Control service.
Lists the Delegation Controls in the compartment.
Example Usage
import * as pulumi from "@pulumi/pulumi";
import * as oci from "@pulumi/oci";
const testDelegationControls = oci.DelegateAccessControl.getDelegationControls({
compartmentId: compartmentId,
displayName: delegationControlDisplayName,
resourceId: testResource.id,
resourceType: delegationControlResourceType,
state: delegationControlState,
});
import pulumi
import pulumi_oci as oci
test_delegation_controls = oci.DelegateAccessControl.get_delegation_controls(compartment_id=compartment_id,
display_name=delegation_control_display_name,
resource_id=test_resource["id"],
resource_type=delegation_control_resource_type,
state=delegation_control_state)
package main
import (
"github.com/pulumi/pulumi-oci/sdk/v2/go/oci/DelegateAccessControl"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := DelegateAccessControl.GetDelegationControls(ctx, &delegateaccesscontrol.GetDelegationControlsArgs{
CompartmentId: compartmentId,
DisplayName: pulumi.StringRef(delegationControlDisplayName),
ResourceId: pulumi.StringRef(testResource.Id),
ResourceType: pulumi.StringRef(delegationControlResourceType),
State: pulumi.StringRef(delegationControlState),
}, nil)
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Oci = Pulumi.Oci;
return await Deployment.RunAsync(() =>
{
var testDelegationControls = Oci.DelegateAccessControl.GetDelegationControls.Invoke(new()
{
CompartmentId = compartmentId,
DisplayName = delegationControlDisplayName,
ResourceId = testResource.Id,
ResourceType = delegationControlResourceType,
State = delegationControlState,
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.oci.DelegateAccessControl.DelegateAccessControlFunctions;
import com.pulumi.oci.DelegateAccessControl.inputs.GetDelegationControlsArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
final var testDelegationControls = DelegateAccessControlFunctions.getDelegationControls(GetDelegationControlsArgs.builder()
.compartmentId(compartmentId)
.displayName(delegationControlDisplayName)
.resourceId(testResource.id())
.resourceType(delegationControlResourceType)
.state(delegationControlState)
.build());
}
}
variables:
testDelegationControls:
fn::invoke:
Function: oci:DelegateAccessControl:getDelegationControls
Arguments:
compartmentId: ${compartmentId}
displayName: ${delegationControlDisplayName}
resourceId: ${testResource.id}
resourceType: ${delegationControlResourceType}
state: ${delegationControlState}
Using getDelegationControls
Two invocation forms are available. The direct form accepts plain arguments and either blocks until the result value is available, or returns a Promise-wrapped result. The output form accepts Input-wrapped arguments and returns an Output-wrapped result.
function getDelegationControls(args: GetDelegationControlsArgs, opts?: InvokeOptions): Promise<GetDelegationControlsResult>
function getDelegationControlsOutput(args: GetDelegationControlsOutputArgs, opts?: InvokeOptions): Output<GetDelegationControlsResult>
def get_delegation_controls(compartment_id: Optional[str] = None,
display_name: Optional[str] = None,
filters: Optional[Sequence[_delegateaccesscontrol.GetDelegationControlsFilter]] = None,
resource_id: Optional[str] = None,
resource_type: Optional[str] = None,
state: Optional[str] = None,
opts: Optional[InvokeOptions] = None) -> GetDelegationControlsResult
def get_delegation_controls_output(compartment_id: Optional[pulumi.Input[str]] = None,
display_name: Optional[pulumi.Input[str]] = None,
filters: Optional[pulumi.Input[Sequence[pulumi.Input[_delegateaccesscontrol.GetDelegationControlsFilterArgs]]]] = None,
resource_id: Optional[pulumi.Input[str]] = None,
resource_type: Optional[pulumi.Input[str]] = None,
state: Optional[pulumi.Input[str]] = None,
opts: Optional[InvokeOptions] = None) -> Output[GetDelegationControlsResult]
func GetDelegationControls(ctx *Context, args *GetDelegationControlsArgs, opts ...InvokeOption) (*GetDelegationControlsResult, error)
func GetDelegationControlsOutput(ctx *Context, args *GetDelegationControlsOutputArgs, opts ...InvokeOption) GetDelegationControlsResultOutput
> Note: This function is named GetDelegationControls
in the Go SDK.
public static class GetDelegationControls
{
public static Task<GetDelegationControlsResult> InvokeAsync(GetDelegationControlsArgs args, InvokeOptions? opts = null)
public static Output<GetDelegationControlsResult> Invoke(GetDelegationControlsInvokeArgs args, InvokeOptions? opts = null)
}
public static CompletableFuture<GetDelegationControlsResult> getDelegationControls(GetDelegationControlsArgs args, InvokeOptions options)
// Output-based functions aren't available in Java yet
fn::invoke:
function: oci:DelegateAccessControl/getDelegationControls:getDelegationControls
arguments:
# arguments dictionary
The following arguments are supported:
- Compartment
Id string - The OCID of the compartment.
- Display
Name string - A filter to return Delegation Control resources that match the given display name.
- Filters
List<Get
Delegation Controls Filter> - Resource
Id string - A filter to return Delegation Control resources that match the given resource ID.
- Resource
Type string - A filter to return only resources that match the given resource type.
- State string
- A filter to return only Delegation Control resources whose lifecycleState matches the given Delegation Control lifecycle state.
- Compartment
Id string - The OCID of the compartment.
- Display
Name string - A filter to return Delegation Control resources that match the given display name.
- Filters
[]Get
Delegation Controls Filter - Resource
Id string - A filter to return Delegation Control resources that match the given resource ID.
- Resource
Type string - A filter to return only resources that match the given resource type.
- State string
- A filter to return only Delegation Control resources whose lifecycleState matches the given Delegation Control lifecycle state.
- compartment
Id String - The OCID of the compartment.
- display
Name String - A filter to return Delegation Control resources that match the given display name.
- filters
List<Get
Delegation Controls Filter> - resource
Id String - A filter to return Delegation Control resources that match the given resource ID.
- resource
Type String - A filter to return only resources that match the given resource type.
- state String
- A filter to return only Delegation Control resources whose lifecycleState matches the given Delegation Control lifecycle state.
- compartment
Id string - The OCID of the compartment.
- display
Name string - A filter to return Delegation Control resources that match the given display name.
- filters
Get
Delegation Controls Filter[] - resource
Id string - A filter to return Delegation Control resources that match the given resource ID.
- resource
Type string - A filter to return only resources that match the given resource type.
- state string
- A filter to return only Delegation Control resources whose lifecycleState matches the given Delegation Control lifecycle state.
- compartment_
id str - The OCID of the compartment.
- display_
name str - A filter to return Delegation Control resources that match the given display name.
- filters
Sequence[delegateaccesscontrol.
Get Delegation Controls Filter] - resource_
id str - A filter to return Delegation Control resources that match the given resource ID.
- resource_
type str - A filter to return only resources that match the given resource type.
- state str
- A filter to return only Delegation Control resources whose lifecycleState matches the given Delegation Control lifecycle state.
- compartment
Id String - The OCID of the compartment.
- display
Name String - A filter to return Delegation Control resources that match the given display name.
- filters List<Property Map>
- resource
Id String - A filter to return Delegation Control resources that match the given resource ID.
- resource
Type String - A filter to return only resources that match the given resource type.
- state String
- A filter to return only Delegation Control resources whose lifecycleState matches the given Delegation Control lifecycle state.
getDelegationControls Result
The following output properties are available:
- Compartment
Id string - The OCID of the compartment that contains the Delegation Control.
- Delegation
Control List<GetSummary Collections Delegation Controls Delegation Control Summary Collection> - The list of delegation_control_summary_collection.
- Id string
- The provider-assigned unique ID for this managed resource.
- Display
Name string - Name of the Delegation Control. The name does not need to be unique.
- Filters
List<Get
Delegation Controls Filter> - Resource
Id string - Resource
Type string - Resource type for which the Delegation Control is applicable to.
- State string
- The current lifecycle state of the Delegation Control.
- Compartment
Id string - The OCID of the compartment that contains the Delegation Control.
- Delegation
Control []GetSummary Collections Delegation Controls Delegation Control Summary Collection - The list of delegation_control_summary_collection.
- Id string
- The provider-assigned unique ID for this managed resource.
- Display
Name string - Name of the Delegation Control. The name does not need to be unique.
- Filters
[]Get
Delegation Controls Filter - Resource
Id string - Resource
Type string - Resource type for which the Delegation Control is applicable to.
- State string
- The current lifecycle state of the Delegation Control.
- compartment
Id String - The OCID of the compartment that contains the Delegation Control.
- delegation
Control List<GetSummary Collections Delegation Controls Delegation Control Summary Collection> - The list of delegation_control_summary_collection.
- id String
- The provider-assigned unique ID for this managed resource.
- display
Name String - Name of the Delegation Control. The name does not need to be unique.
- filters
List<Get
Delegation Controls Filter> - resource
Id String - resource
Type String - Resource type for which the Delegation Control is applicable to.
- state String
- The current lifecycle state of the Delegation Control.
- compartment
Id string - The OCID of the compartment that contains the Delegation Control.
- delegation
Control GetSummary Collections Delegation Controls Delegation Control Summary Collection[] - The list of delegation_control_summary_collection.
- id string
- The provider-assigned unique ID for this managed resource.
- display
Name string - Name of the Delegation Control. The name does not need to be unique.
- filters
Get
Delegation Controls Filter[] - resource
Id string - resource
Type string - Resource type for which the Delegation Control is applicable to.
- state string
- The current lifecycle state of the Delegation Control.
- compartment_
id str - The OCID of the compartment that contains the Delegation Control.
- delegation_
control_ Sequence[delegateaccesscontrol.summary_ collections Get Delegation Controls Delegation Control Summary Collection] - The list of delegation_control_summary_collection.
- id str
- The provider-assigned unique ID for this managed resource.
- display_
name str - Name of the Delegation Control. The name does not need to be unique.
- filters
Sequence[delegateaccesscontrol.
Get Delegation Controls Filter] - resource_
id str - resource_
type str - Resource type for which the Delegation Control is applicable to.
- state str
- The current lifecycle state of the Delegation Control.
- compartment
Id String - The OCID of the compartment that contains the Delegation Control.
- delegation
Control List<Property Map>Summary Collections - The list of delegation_control_summary_collection.
- id String
- The provider-assigned unique ID for this managed resource.
- display
Name String - Name of the Delegation Control. The name does not need to be unique.
- filters List<Property Map>
- resource
Id String - resource
Type String - Resource type for which the Delegation Control is applicable to.
- state String
- The current lifecycle state of the Delegation Control.
Supporting Types
GetDelegationControlsDelegationControlSummaryCollection
GetDelegationControlsDelegationControlSummaryCollectionItem
- Compartment
Id string - The OCID of the compartment.
- Dictionary<string, string>
- Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags. Example:
{"Operations.CostCenter": "42"}
- Delegation
Subscription List<string>Ids - List of Delegation Subscription OCID that are allowed for this Delegation Control. The allowed subscriptions will determine the available Service Provider Actions. Only support operators for the allowed subscriptions are allowed to create Delegated Resource Access Request.
- Description string
- Description of the Delegation Control.
- Display
Name string - A filter to return Delegation Control resources that match the given display name.
- Dictionary<string, string>
- Free-form tags for this resource. Each tag is a simple key-value pair with no predefined name, type, or namespace. For more information, see Resource Tags. Example:
{"Department": "Finance"}
- Id string
- The OCID of the Delegation Control.
- Is
Auto boolApprove During Maintenance - Set to true to allow all Delegated Resource Access Request to be approved automatically during maintenance.
- Lifecycle
State stringDetails - Description of the current lifecycle state in more detail.
- Notification
Message stringFormat - The format of the Oracle Cloud Infrastructure Notification messages for this Delegation Control.
- Notification
Topic stringId - The OCID of the Oracle Cloud Infrastructure Notification topic to publish messages related to this Delegation Control.
- Num
Approvals intRequired - number of approvals required.
- Pre
Approved List<string>Service Provider Action Names - List of pre-approved Service Provider Action names. The list of pre-defined Service Provider Actions can be obtained from the ListServiceProviderActions API. Delegated Resource Access Requests associated with a resource governed by this Delegation Control will be automatically approved if the Delegated Resource Access Request only contain Service Provider Actions in the pre-approved list.
- Resource
Ids List<string> - The OCID of the selected resources that this Delegation Control is applicable to.
- Resource
Type string - A filter to return only resources that match the given resource type.
- State string
- A filter to return only Delegation Control resources whose lifecycleState matches the given Delegation Control lifecycle state.
- Dictionary<string, string>
- System tags for this resource. Each key is predefined and scoped to a namespace. Example:
{"orcl-cloud.free-tier-retained": "true"}
- Time
Created string - Time when the Delegation Control was created expressed in RFC 3339 timestamp format, e.g. '2020-05-22T21:10:29.600Z'
- Time
Deleted string - Time when the Delegation Control was deleted expressed in RFC 3339timestamp format, e.g. '2020-05-22T21:10:29.600Z'. Note a deleted Delegation Control still stays in the system, so that you can still audit Service Provider Actions associated with Delegated Resource Access Requests raised on target resources governed by the deleted Delegation Control.
- Time
Updated string - Time when the Delegation Control was last modified expressed in RFC 3339 timestamp format, e.g. '2020-05-22T21:10:29.600Z'
- Vault
Id string - The OCID of the Oracle Cloud Infrastructure Vault that will store the secrets containing the SSH keys to access the resource governed by this Delegation Control by Delegate Access Control Service. This property is required when resourceType is CLOUDVMCLUSTER. Delegate Access Control Service will generate the SSH keys and store them as secrets in the Oracle Cloud Infrastructure Vault.
- Vault
Key stringId - The OCID of the Master Encryption Key in the Oracle Cloud Infrastructure Vault specified by vaultId. This key will be used to encrypt the SSH keys to access the resource governed by this Delegation Control by Delegate Access Control Service. This property is required when resourceType is CLOUDVMCLUSTER.
- Compartment
Id string - The OCID of the compartment.
- map[string]string
- Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags. Example:
{"Operations.CostCenter": "42"}
- Delegation
Subscription []stringIds - List of Delegation Subscription OCID that are allowed for this Delegation Control. The allowed subscriptions will determine the available Service Provider Actions. Only support operators for the allowed subscriptions are allowed to create Delegated Resource Access Request.
- Description string
- Description of the Delegation Control.
- Display
Name string - A filter to return Delegation Control resources that match the given display name.
- map[string]string
- Free-form tags for this resource. Each tag is a simple key-value pair with no predefined name, type, or namespace. For more information, see Resource Tags. Example:
{"Department": "Finance"}
- Id string
- The OCID of the Delegation Control.
- Is
Auto boolApprove During Maintenance - Set to true to allow all Delegated Resource Access Request to be approved automatically during maintenance.
- Lifecycle
State stringDetails - Description of the current lifecycle state in more detail.
- Notification
Message stringFormat - The format of the Oracle Cloud Infrastructure Notification messages for this Delegation Control.
- Notification
Topic stringId - The OCID of the Oracle Cloud Infrastructure Notification topic to publish messages related to this Delegation Control.
- Num
Approvals intRequired - number of approvals required.
- Pre
Approved []stringService Provider Action Names - List of pre-approved Service Provider Action names. The list of pre-defined Service Provider Actions can be obtained from the ListServiceProviderActions API. Delegated Resource Access Requests associated with a resource governed by this Delegation Control will be automatically approved if the Delegated Resource Access Request only contain Service Provider Actions in the pre-approved list.
- Resource
Ids []string - The OCID of the selected resources that this Delegation Control is applicable to.
- Resource
Type string - A filter to return only resources that match the given resource type.
- State string
- A filter to return only Delegation Control resources whose lifecycleState matches the given Delegation Control lifecycle state.
- map[string]string
- System tags for this resource. Each key is predefined and scoped to a namespace. Example:
{"orcl-cloud.free-tier-retained": "true"}
- Time
Created string - Time when the Delegation Control was created expressed in RFC 3339 timestamp format, e.g. '2020-05-22T21:10:29.600Z'
- Time
Deleted string - Time when the Delegation Control was deleted expressed in RFC 3339timestamp format, e.g. '2020-05-22T21:10:29.600Z'. Note a deleted Delegation Control still stays in the system, so that you can still audit Service Provider Actions associated with Delegated Resource Access Requests raised on target resources governed by the deleted Delegation Control.
- Time
Updated string - Time when the Delegation Control was last modified expressed in RFC 3339 timestamp format, e.g. '2020-05-22T21:10:29.600Z'
- Vault
Id string - The OCID of the Oracle Cloud Infrastructure Vault that will store the secrets containing the SSH keys to access the resource governed by this Delegation Control by Delegate Access Control Service. This property is required when resourceType is CLOUDVMCLUSTER. Delegate Access Control Service will generate the SSH keys and store them as secrets in the Oracle Cloud Infrastructure Vault.
- Vault
Key stringId - The OCID of the Master Encryption Key in the Oracle Cloud Infrastructure Vault specified by vaultId. This key will be used to encrypt the SSH keys to access the resource governed by this Delegation Control by Delegate Access Control Service. This property is required when resourceType is CLOUDVMCLUSTER.
- compartment
Id String - The OCID of the compartment.
- Map<String,String>
- Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags. Example:
{"Operations.CostCenter": "42"}
- delegation
Subscription List<String>Ids - List of Delegation Subscription OCID that are allowed for this Delegation Control. The allowed subscriptions will determine the available Service Provider Actions. Only support operators for the allowed subscriptions are allowed to create Delegated Resource Access Request.
- description String
- Description of the Delegation Control.
- display
Name String - A filter to return Delegation Control resources that match the given display name.
- Map<String,String>
- Free-form tags for this resource. Each tag is a simple key-value pair with no predefined name, type, or namespace. For more information, see Resource Tags. Example:
{"Department": "Finance"}
- id String
- The OCID of the Delegation Control.
- is
Auto BooleanApprove During Maintenance - Set to true to allow all Delegated Resource Access Request to be approved automatically during maintenance.
- lifecycle
State StringDetails - Description of the current lifecycle state in more detail.
- notification
Message StringFormat - The format of the Oracle Cloud Infrastructure Notification messages for this Delegation Control.
- notification
Topic StringId - The OCID of the Oracle Cloud Infrastructure Notification topic to publish messages related to this Delegation Control.
- num
Approvals IntegerRequired - number of approvals required.
- pre
Approved List<String>Service Provider Action Names - List of pre-approved Service Provider Action names. The list of pre-defined Service Provider Actions can be obtained from the ListServiceProviderActions API. Delegated Resource Access Requests associated with a resource governed by this Delegation Control will be automatically approved if the Delegated Resource Access Request only contain Service Provider Actions in the pre-approved list.
- resource
Ids List<String> - The OCID of the selected resources that this Delegation Control is applicable to.
- resource
Type String - A filter to return only resources that match the given resource type.
- state String
- A filter to return only Delegation Control resources whose lifecycleState matches the given Delegation Control lifecycle state.
- Map<String,String>
- System tags for this resource. Each key is predefined and scoped to a namespace. Example:
{"orcl-cloud.free-tier-retained": "true"}
- time
Created String - Time when the Delegation Control was created expressed in RFC 3339 timestamp format, e.g. '2020-05-22T21:10:29.600Z'
- time
Deleted String - Time when the Delegation Control was deleted expressed in RFC 3339timestamp format, e.g. '2020-05-22T21:10:29.600Z'. Note a deleted Delegation Control still stays in the system, so that you can still audit Service Provider Actions associated with Delegated Resource Access Requests raised on target resources governed by the deleted Delegation Control.
- time
Updated String - Time when the Delegation Control was last modified expressed in RFC 3339 timestamp format, e.g. '2020-05-22T21:10:29.600Z'
- vault
Id String - The OCID of the Oracle Cloud Infrastructure Vault that will store the secrets containing the SSH keys to access the resource governed by this Delegation Control by Delegate Access Control Service. This property is required when resourceType is CLOUDVMCLUSTER. Delegate Access Control Service will generate the SSH keys and store them as secrets in the Oracle Cloud Infrastructure Vault.
- vault
Key StringId - The OCID of the Master Encryption Key in the Oracle Cloud Infrastructure Vault specified by vaultId. This key will be used to encrypt the SSH keys to access the resource governed by this Delegation Control by Delegate Access Control Service. This property is required when resourceType is CLOUDVMCLUSTER.
- compartment
Id string - The OCID of the compartment.
- {[key: string]: string}
- Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags. Example:
{"Operations.CostCenter": "42"}
- delegation
Subscription string[]Ids - List of Delegation Subscription OCID that are allowed for this Delegation Control. The allowed subscriptions will determine the available Service Provider Actions. Only support operators for the allowed subscriptions are allowed to create Delegated Resource Access Request.
- description string
- Description of the Delegation Control.
- display
Name string - A filter to return Delegation Control resources that match the given display name.
- {[key: string]: string}
- Free-form tags for this resource. Each tag is a simple key-value pair with no predefined name, type, or namespace. For more information, see Resource Tags. Example:
{"Department": "Finance"}
- id string
- The OCID of the Delegation Control.
- is
Auto booleanApprove During Maintenance - Set to true to allow all Delegated Resource Access Request to be approved automatically during maintenance.
- lifecycle
State stringDetails - Description of the current lifecycle state in more detail.
- notification
Message stringFormat - The format of the Oracle Cloud Infrastructure Notification messages for this Delegation Control.
- notification
Topic stringId - The OCID of the Oracle Cloud Infrastructure Notification topic to publish messages related to this Delegation Control.
- num
Approvals numberRequired - number of approvals required.
- pre
Approved string[]Service Provider Action Names - List of pre-approved Service Provider Action names. The list of pre-defined Service Provider Actions can be obtained from the ListServiceProviderActions API. Delegated Resource Access Requests associated with a resource governed by this Delegation Control will be automatically approved if the Delegated Resource Access Request only contain Service Provider Actions in the pre-approved list.
- resource
Ids string[] - The OCID of the selected resources that this Delegation Control is applicable to.
- resource
Type string - A filter to return only resources that match the given resource type.
- state string
- A filter to return only Delegation Control resources whose lifecycleState matches the given Delegation Control lifecycle state.
- {[key: string]: string}
- System tags for this resource. Each key is predefined and scoped to a namespace. Example:
{"orcl-cloud.free-tier-retained": "true"}
- time
Created string - Time when the Delegation Control was created expressed in RFC 3339 timestamp format, e.g. '2020-05-22T21:10:29.600Z'
- time
Deleted string - Time when the Delegation Control was deleted expressed in RFC 3339timestamp format, e.g. '2020-05-22T21:10:29.600Z'. Note a deleted Delegation Control still stays in the system, so that you can still audit Service Provider Actions associated with Delegated Resource Access Requests raised on target resources governed by the deleted Delegation Control.
- time
Updated string - Time when the Delegation Control was last modified expressed in RFC 3339 timestamp format, e.g. '2020-05-22T21:10:29.600Z'
- vault
Id string - The OCID of the Oracle Cloud Infrastructure Vault that will store the secrets containing the SSH keys to access the resource governed by this Delegation Control by Delegate Access Control Service. This property is required when resourceType is CLOUDVMCLUSTER. Delegate Access Control Service will generate the SSH keys and store them as secrets in the Oracle Cloud Infrastructure Vault.
- vault
Key stringId - The OCID of the Master Encryption Key in the Oracle Cloud Infrastructure Vault specified by vaultId. This key will be used to encrypt the SSH keys to access the resource governed by this Delegation Control by Delegate Access Control Service. This property is required when resourceType is CLOUDVMCLUSTER.
- compartment_
id str - The OCID of the compartment.
- Mapping[str, str]
- Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags. Example:
{"Operations.CostCenter": "42"}
- delegation_
subscription_ Sequence[str]ids - List of Delegation Subscription OCID that are allowed for this Delegation Control. The allowed subscriptions will determine the available Service Provider Actions. Only support operators for the allowed subscriptions are allowed to create Delegated Resource Access Request.
- description str
- Description of the Delegation Control.
- display_
name str - A filter to return Delegation Control resources that match the given display name.
- Mapping[str, str]
- Free-form tags for this resource. Each tag is a simple key-value pair with no predefined name, type, or namespace. For more information, see Resource Tags. Example:
{"Department": "Finance"}
- id str
- The OCID of the Delegation Control.
- is_
auto_ boolapprove_ during_ maintenance - Set to true to allow all Delegated Resource Access Request to be approved automatically during maintenance.
- lifecycle_
state_ strdetails - Description of the current lifecycle state in more detail.
- notification_
message_ strformat - The format of the Oracle Cloud Infrastructure Notification messages for this Delegation Control.
- notification_
topic_ strid - The OCID of the Oracle Cloud Infrastructure Notification topic to publish messages related to this Delegation Control.
- num_
approvals_ intrequired - number of approvals required.
- pre_
approved_ Sequence[str]service_ provider_ action_ names - List of pre-approved Service Provider Action names. The list of pre-defined Service Provider Actions can be obtained from the ListServiceProviderActions API. Delegated Resource Access Requests associated with a resource governed by this Delegation Control will be automatically approved if the Delegated Resource Access Request only contain Service Provider Actions in the pre-approved list.
- resource_
ids Sequence[str] - The OCID of the selected resources that this Delegation Control is applicable to.
- resource_
type str - A filter to return only resources that match the given resource type.
- state str
- A filter to return only Delegation Control resources whose lifecycleState matches the given Delegation Control lifecycle state.
- Mapping[str, str]
- System tags for this resource. Each key is predefined and scoped to a namespace. Example:
{"orcl-cloud.free-tier-retained": "true"}
- time_
created str - Time when the Delegation Control was created expressed in RFC 3339 timestamp format, e.g. '2020-05-22T21:10:29.600Z'
- time_
deleted str - Time when the Delegation Control was deleted expressed in RFC 3339timestamp format, e.g. '2020-05-22T21:10:29.600Z'. Note a deleted Delegation Control still stays in the system, so that you can still audit Service Provider Actions associated with Delegated Resource Access Requests raised on target resources governed by the deleted Delegation Control.
- time_
updated str - Time when the Delegation Control was last modified expressed in RFC 3339 timestamp format, e.g. '2020-05-22T21:10:29.600Z'
- vault_
id str - The OCID of the Oracle Cloud Infrastructure Vault that will store the secrets containing the SSH keys to access the resource governed by this Delegation Control by Delegate Access Control Service. This property is required when resourceType is CLOUDVMCLUSTER. Delegate Access Control Service will generate the SSH keys and store them as secrets in the Oracle Cloud Infrastructure Vault.
- vault_
key_ strid - The OCID of the Master Encryption Key in the Oracle Cloud Infrastructure Vault specified by vaultId. This key will be used to encrypt the SSH keys to access the resource governed by this Delegation Control by Delegate Access Control Service. This property is required when resourceType is CLOUDVMCLUSTER.
- compartment
Id String - The OCID of the compartment.
- Map<String>
- Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags. Example:
{"Operations.CostCenter": "42"}
- delegation
Subscription List<String>Ids - List of Delegation Subscription OCID that are allowed for this Delegation Control. The allowed subscriptions will determine the available Service Provider Actions. Only support operators for the allowed subscriptions are allowed to create Delegated Resource Access Request.
- description String
- Description of the Delegation Control.
- display
Name String - A filter to return Delegation Control resources that match the given display name.
- Map<String>
- Free-form tags for this resource. Each tag is a simple key-value pair with no predefined name, type, or namespace. For more information, see Resource Tags. Example:
{"Department": "Finance"}
- id String
- The OCID of the Delegation Control.
- is
Auto BooleanApprove During Maintenance - Set to true to allow all Delegated Resource Access Request to be approved automatically during maintenance.
- lifecycle
State StringDetails - Description of the current lifecycle state in more detail.
- notification
Message StringFormat - The format of the Oracle Cloud Infrastructure Notification messages for this Delegation Control.
- notification
Topic StringId - The OCID of the Oracle Cloud Infrastructure Notification topic to publish messages related to this Delegation Control.
- num
Approvals NumberRequired - number of approvals required.
- pre
Approved List<String>Service Provider Action Names - List of pre-approved Service Provider Action names. The list of pre-defined Service Provider Actions can be obtained from the ListServiceProviderActions API. Delegated Resource Access Requests associated with a resource governed by this Delegation Control will be automatically approved if the Delegated Resource Access Request only contain Service Provider Actions in the pre-approved list.
- resource
Ids List<String> - The OCID of the selected resources that this Delegation Control is applicable to.
- resource
Type String - A filter to return only resources that match the given resource type.
- state String
- A filter to return only Delegation Control resources whose lifecycleState matches the given Delegation Control lifecycle state.
- Map<String>
- System tags for this resource. Each key is predefined and scoped to a namespace. Example:
{"orcl-cloud.free-tier-retained": "true"}
- time
Created String - Time when the Delegation Control was created expressed in RFC 3339 timestamp format, e.g. '2020-05-22T21:10:29.600Z'
- time
Deleted String - Time when the Delegation Control was deleted expressed in RFC 3339timestamp format, e.g. '2020-05-22T21:10:29.600Z'. Note a deleted Delegation Control still stays in the system, so that you can still audit Service Provider Actions associated with Delegated Resource Access Requests raised on target resources governed by the deleted Delegation Control.
- time
Updated String - Time when the Delegation Control was last modified expressed in RFC 3339 timestamp format, e.g. '2020-05-22T21:10:29.600Z'
- vault
Id String - The OCID of the Oracle Cloud Infrastructure Vault that will store the secrets containing the SSH keys to access the resource governed by this Delegation Control by Delegate Access Control Service. This property is required when resourceType is CLOUDVMCLUSTER. Delegate Access Control Service will generate the SSH keys and store them as secrets in the Oracle Cloud Infrastructure Vault.
- vault
Key StringId - The OCID of the Master Encryption Key in the Oracle Cloud Infrastructure Vault specified by vaultId. This key will be used to encrypt the SSH keys to access the resource governed by this Delegation Control by Delegate Access Control Service. This property is required when resourceType is CLOUDVMCLUSTER.
GetDelegationControlsFilter
Package Details
- Repository
- oci pulumi/pulumi-oci
- License
- Apache-2.0
- Notes
- This Pulumi package is based on the
oci
Terraform Provider.