1. Packages
  2. Oracle Cloud Infrastructure
  3. API Docs
  4. NetworkFirewall
  5. getNetworkFirewallPolicyDecryptionProfiles
Oracle Cloud Infrastructure v2.17.0 published on Friday, Nov 15, 2024 by Pulumi

oci.NetworkFirewall.getNetworkFirewallPolicyDecryptionProfiles

Explore with Pulumi AI

oci logo
Oracle Cloud Infrastructure v2.17.0 published on Friday, Nov 15, 2024 by Pulumi

    This data source provides the list of Network Firewall Policy Decryption Profiles in Oracle Cloud Infrastructure Network Firewall service.

    Returns a list of Decryption Profile for the Network Firewall Policy.

    Example Usage

    import * as pulumi from "@pulumi/pulumi";
    import * as oci from "@pulumi/oci";
    
    const testNetworkFirewallPolicyDecryptionProfiles = oci.NetworkFirewall.getNetworkFirewallPolicyDecryptionProfiles({
        networkFirewallPolicyId: testNetworkFirewallPolicy.id,
        displayName: networkFirewallPolicyDecryptionProfileDisplayName,
    });
    
    import pulumi
    import pulumi_oci as oci
    
    test_network_firewall_policy_decryption_profiles = oci.NetworkFirewall.get_network_firewall_policy_decryption_profiles(network_firewall_policy_id=test_network_firewall_policy["id"],
        display_name=network_firewall_policy_decryption_profile_display_name)
    
    package main
    
    import (
    	"github.com/pulumi/pulumi-oci/sdk/v2/go/oci/NetworkFirewall"
    	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
    )
    
    func main() {
    	pulumi.Run(func(ctx *pulumi.Context) error {
    		_, err := NetworkFirewall.GetNetworkFirewallPolicyDecryptionProfiles(ctx, &networkfirewall.GetNetworkFirewallPolicyDecryptionProfilesArgs{
    			NetworkFirewallPolicyId: testNetworkFirewallPolicy.Id,
    			DisplayName:             pulumi.StringRef(networkFirewallPolicyDecryptionProfileDisplayName),
    		}, nil)
    		if err != nil {
    			return err
    		}
    		return nil
    	})
    }
    
    using System.Collections.Generic;
    using System.Linq;
    using Pulumi;
    using Oci = Pulumi.Oci;
    
    return await Deployment.RunAsync(() => 
    {
        var testNetworkFirewallPolicyDecryptionProfiles = Oci.NetworkFirewall.GetNetworkFirewallPolicyDecryptionProfiles.Invoke(new()
        {
            NetworkFirewallPolicyId = testNetworkFirewallPolicy.Id,
            DisplayName = networkFirewallPolicyDecryptionProfileDisplayName,
        });
    
    });
    
    package generated_program;
    
    import com.pulumi.Context;
    import com.pulumi.Pulumi;
    import com.pulumi.core.Output;
    import com.pulumi.oci.NetworkFirewall.NetworkFirewallFunctions;
    import com.pulumi.oci.NetworkFirewall.inputs.GetNetworkFirewallPolicyDecryptionProfilesArgs;
    import java.util.List;
    import java.util.ArrayList;
    import java.util.Map;
    import java.io.File;
    import java.nio.file.Files;
    import java.nio.file.Paths;
    
    public class App {
        public static void main(String[] args) {
            Pulumi.run(App::stack);
        }
    
        public static void stack(Context ctx) {
            final var testNetworkFirewallPolicyDecryptionProfiles = NetworkFirewallFunctions.getNetworkFirewallPolicyDecryptionProfiles(GetNetworkFirewallPolicyDecryptionProfilesArgs.builder()
                .networkFirewallPolicyId(testNetworkFirewallPolicy.id())
                .displayName(networkFirewallPolicyDecryptionProfileDisplayName)
                .build());
    
        }
    }
    
    variables:
      testNetworkFirewallPolicyDecryptionProfiles:
        fn::invoke:
          Function: oci:NetworkFirewall:getNetworkFirewallPolicyDecryptionProfiles
          Arguments:
            networkFirewallPolicyId: ${testNetworkFirewallPolicy.id}
            displayName: ${networkFirewallPolicyDecryptionProfileDisplayName}
    

    Using getNetworkFirewallPolicyDecryptionProfiles

    Two invocation forms are available. The direct form accepts plain arguments and either blocks until the result value is available, or returns a Promise-wrapped result. The output form accepts Input-wrapped arguments and returns an Output-wrapped result.

    function getNetworkFirewallPolicyDecryptionProfiles(args: GetNetworkFirewallPolicyDecryptionProfilesArgs, opts?: InvokeOptions): Promise<GetNetworkFirewallPolicyDecryptionProfilesResult>
    function getNetworkFirewallPolicyDecryptionProfilesOutput(args: GetNetworkFirewallPolicyDecryptionProfilesOutputArgs, opts?: InvokeOptions): Output<GetNetworkFirewallPolicyDecryptionProfilesResult>
    def get_network_firewall_policy_decryption_profiles(display_name: Optional[str] = None,
                                                        filters: Optional[Sequence[_networkfirewall.GetNetworkFirewallPolicyDecryptionProfilesFilter]] = None,
                                                        network_firewall_policy_id: Optional[str] = None,
                                                        opts: Optional[InvokeOptions] = None) -> GetNetworkFirewallPolicyDecryptionProfilesResult
    def get_network_firewall_policy_decryption_profiles_output(display_name: Optional[pulumi.Input[str]] = None,
                                                        filters: Optional[pulumi.Input[Sequence[pulumi.Input[_networkfirewall.GetNetworkFirewallPolicyDecryptionProfilesFilterArgs]]]] = None,
                                                        network_firewall_policy_id: Optional[pulumi.Input[str]] = None,
                                                        opts: Optional[InvokeOptions] = None) -> Output[GetNetworkFirewallPolicyDecryptionProfilesResult]
    func GetNetworkFirewallPolicyDecryptionProfiles(ctx *Context, args *GetNetworkFirewallPolicyDecryptionProfilesArgs, opts ...InvokeOption) (*GetNetworkFirewallPolicyDecryptionProfilesResult, error)
    func GetNetworkFirewallPolicyDecryptionProfilesOutput(ctx *Context, args *GetNetworkFirewallPolicyDecryptionProfilesOutputArgs, opts ...InvokeOption) GetNetworkFirewallPolicyDecryptionProfilesResultOutput

    > Note: This function is named GetNetworkFirewallPolicyDecryptionProfiles in the Go SDK.

    public static class GetNetworkFirewallPolicyDecryptionProfiles 
    {
        public static Task<GetNetworkFirewallPolicyDecryptionProfilesResult> InvokeAsync(GetNetworkFirewallPolicyDecryptionProfilesArgs args, InvokeOptions? opts = null)
        public static Output<GetNetworkFirewallPolicyDecryptionProfilesResult> Invoke(GetNetworkFirewallPolicyDecryptionProfilesInvokeArgs args, InvokeOptions? opts = null)
    }
    public static CompletableFuture<GetNetworkFirewallPolicyDecryptionProfilesResult> getNetworkFirewallPolicyDecryptionProfiles(GetNetworkFirewallPolicyDecryptionProfilesArgs args, InvokeOptions options)
    // Output-based functions aren't available in Java yet
    
    fn::invoke:
      function: oci:NetworkFirewall/getNetworkFirewallPolicyDecryptionProfiles:getNetworkFirewallPolicyDecryptionProfiles
      arguments:
        # arguments dictionary

    The following arguments are supported:

    NetworkFirewallPolicyId string
    Unique Network Firewall Policy identifier
    DisplayName string
    A filter to return only resources that match the entire display name given.
    Filters List<GetNetworkFirewallPolicyDecryptionProfilesFilter>
    NetworkFirewallPolicyId string
    Unique Network Firewall Policy identifier
    DisplayName string
    A filter to return only resources that match the entire display name given.
    Filters []GetNetworkFirewallPolicyDecryptionProfilesFilter
    networkFirewallPolicyId String
    Unique Network Firewall Policy identifier
    displayName String
    A filter to return only resources that match the entire display name given.
    filters List<GetPolicyDecryptionProfilesFilter>
    networkFirewallPolicyId string
    Unique Network Firewall Policy identifier
    displayName string
    A filter to return only resources that match the entire display name given.
    filters GetNetworkFirewallPolicyDecryptionProfilesFilter[]
    network_firewall_policy_id str
    Unique Network Firewall Policy identifier
    display_name str
    A filter to return only resources that match the entire display name given.
    filters Sequence[networkfirewall.GetNetworkFirewallPolicyDecryptionProfilesFilter]
    networkFirewallPolicyId String
    Unique Network Firewall Policy identifier
    displayName String
    A filter to return only resources that match the entire display name given.
    filters List<Property Map>

    getNetworkFirewallPolicyDecryptionProfiles Result

    The following output properties are available:

    decryptionProfileSummaryCollections List<GetPolicyDecryptionProfilesDecryptionProfileSummaryCollection>
    The list of decryption_profile_summary_collection.
    id String
    The provider-assigned unique ID for this managed resource.
    networkFirewallPolicyId String
    displayName String
    filters List<GetPolicyDecryptionProfilesFilter>
    decryptionProfileSummaryCollections List<Property Map>
    The list of decryption_profile_summary_collection.
    id String
    The provider-assigned unique ID for this managed resource.
    networkFirewallPolicyId String
    displayName String
    filters List<Property Map>

    Supporting Types

    GetNetworkFirewallPolicyDecryptionProfilesDecryptionProfileSummaryCollection

    GetNetworkFirewallPolicyDecryptionProfilesDecryptionProfileSummaryCollectionItem

    AreCertificateExtensionsRestricted bool
    Whether to block sessions if the server's certificate uses extensions other than key usage and/or extended key usage.
    IsAutoIncludeAltName bool
    Whether to automatically append SAN to impersonating certificate if server certificate is missing SAN.
    IsExpiredCertificateBlocked bool
    Whether to block sessions if server's certificate is expired.
    IsOutOfCapacityBlocked bool
    Whether to block sessions if the firewall is temporarily unable to decrypt their traffic.
    IsRevocationStatusTimeoutBlocked bool
    Whether to block sessions if the revocation status check for server's certificate does not succeed within the maximum allowed time (defaulting to 5 seconds).
    IsUnknownRevocationStatusBlocked bool
    Whether to block sessions if the revocation status check for server's certificate results in "unknown".
    IsUnsupportedCipherBlocked bool
    Whether to block sessions if SSL cipher suite is not supported.
    IsUnsupportedVersionBlocked bool
    Whether to block sessions if SSL version is not supported.
    IsUntrustedIssuerBlocked bool
    Whether to block sessions if server's certificate is issued by an untrusted certificate authority (CA).
    Name string
    Unique Name of the decryption profile.
    NetworkFirewallPolicyId string
    Unique Network Firewall Policy identifier
    ParentResourceId string
    OCID of the Network Firewall Policy this decryption profile belongs to.
    Type string
    Describes the type of Decryption Profile SslForwardProxy or SslInboundInspection.
    AreCertificateExtensionsRestricted bool
    Whether to block sessions if the server's certificate uses extensions other than key usage and/or extended key usage.
    IsAutoIncludeAltName bool
    Whether to automatically append SAN to impersonating certificate if server certificate is missing SAN.
    IsExpiredCertificateBlocked bool
    Whether to block sessions if server's certificate is expired.
    IsOutOfCapacityBlocked bool
    Whether to block sessions if the firewall is temporarily unable to decrypt their traffic.
    IsRevocationStatusTimeoutBlocked bool
    Whether to block sessions if the revocation status check for server's certificate does not succeed within the maximum allowed time (defaulting to 5 seconds).
    IsUnknownRevocationStatusBlocked bool
    Whether to block sessions if the revocation status check for server's certificate results in "unknown".
    IsUnsupportedCipherBlocked bool
    Whether to block sessions if SSL cipher suite is not supported.
    IsUnsupportedVersionBlocked bool
    Whether to block sessions if SSL version is not supported.
    IsUntrustedIssuerBlocked bool
    Whether to block sessions if server's certificate is issued by an untrusted certificate authority (CA).
    Name string
    Unique Name of the decryption profile.
    NetworkFirewallPolicyId string
    Unique Network Firewall Policy identifier
    ParentResourceId string
    OCID of the Network Firewall Policy this decryption profile belongs to.
    Type string
    Describes the type of Decryption Profile SslForwardProxy or SslInboundInspection.
    areCertificateExtensionsRestricted Boolean
    Whether to block sessions if the server's certificate uses extensions other than key usage and/or extended key usage.
    isAutoIncludeAltName Boolean
    Whether to automatically append SAN to impersonating certificate if server certificate is missing SAN.
    isExpiredCertificateBlocked Boolean
    Whether to block sessions if server's certificate is expired.
    isOutOfCapacityBlocked Boolean
    Whether to block sessions if the firewall is temporarily unable to decrypt their traffic.
    isRevocationStatusTimeoutBlocked Boolean
    Whether to block sessions if the revocation status check for server's certificate does not succeed within the maximum allowed time (defaulting to 5 seconds).
    isUnknownRevocationStatusBlocked Boolean
    Whether to block sessions if the revocation status check for server's certificate results in "unknown".
    isUnsupportedCipherBlocked Boolean
    Whether to block sessions if SSL cipher suite is not supported.
    isUnsupportedVersionBlocked Boolean
    Whether to block sessions if SSL version is not supported.
    isUntrustedIssuerBlocked Boolean
    Whether to block sessions if server's certificate is issued by an untrusted certificate authority (CA).
    name String
    Unique Name of the decryption profile.
    networkFirewallPolicyId String
    Unique Network Firewall Policy identifier
    parentResourceId String
    OCID of the Network Firewall Policy this decryption profile belongs to.
    type String
    Describes the type of Decryption Profile SslForwardProxy or SslInboundInspection.
    areCertificateExtensionsRestricted boolean
    Whether to block sessions if the server's certificate uses extensions other than key usage and/or extended key usage.
    isAutoIncludeAltName boolean
    Whether to automatically append SAN to impersonating certificate if server certificate is missing SAN.
    isExpiredCertificateBlocked boolean
    Whether to block sessions if server's certificate is expired.
    isOutOfCapacityBlocked boolean
    Whether to block sessions if the firewall is temporarily unable to decrypt their traffic.
    isRevocationStatusTimeoutBlocked boolean
    Whether to block sessions if the revocation status check for server's certificate does not succeed within the maximum allowed time (defaulting to 5 seconds).
    isUnknownRevocationStatusBlocked boolean
    Whether to block sessions if the revocation status check for server's certificate results in "unknown".
    isUnsupportedCipherBlocked boolean
    Whether to block sessions if SSL cipher suite is not supported.
    isUnsupportedVersionBlocked boolean
    Whether to block sessions if SSL version is not supported.
    isUntrustedIssuerBlocked boolean
    Whether to block sessions if server's certificate is issued by an untrusted certificate authority (CA).
    name string
    Unique Name of the decryption profile.
    networkFirewallPolicyId string
    Unique Network Firewall Policy identifier
    parentResourceId string
    OCID of the Network Firewall Policy this decryption profile belongs to.
    type string
    Describes the type of Decryption Profile SslForwardProxy or SslInboundInspection.
    are_certificate_extensions_restricted bool
    Whether to block sessions if the server's certificate uses extensions other than key usage and/or extended key usage.
    is_auto_include_alt_name bool
    Whether to automatically append SAN to impersonating certificate if server certificate is missing SAN.
    is_expired_certificate_blocked bool
    Whether to block sessions if server's certificate is expired.
    is_out_of_capacity_blocked bool
    Whether to block sessions if the firewall is temporarily unable to decrypt their traffic.
    is_revocation_status_timeout_blocked bool
    Whether to block sessions if the revocation status check for server's certificate does not succeed within the maximum allowed time (defaulting to 5 seconds).
    is_unknown_revocation_status_blocked bool
    Whether to block sessions if the revocation status check for server's certificate results in "unknown".
    is_unsupported_cipher_blocked bool
    Whether to block sessions if SSL cipher suite is not supported.
    is_unsupported_version_blocked bool
    Whether to block sessions if SSL version is not supported.
    is_untrusted_issuer_blocked bool
    Whether to block sessions if server's certificate is issued by an untrusted certificate authority (CA).
    name str
    Unique Name of the decryption profile.
    network_firewall_policy_id str
    Unique Network Firewall Policy identifier
    parent_resource_id str
    OCID of the Network Firewall Policy this decryption profile belongs to.
    type str
    Describes the type of Decryption Profile SslForwardProxy or SslInboundInspection.
    areCertificateExtensionsRestricted Boolean
    Whether to block sessions if the server's certificate uses extensions other than key usage and/or extended key usage.
    isAutoIncludeAltName Boolean
    Whether to automatically append SAN to impersonating certificate if server certificate is missing SAN.
    isExpiredCertificateBlocked Boolean
    Whether to block sessions if server's certificate is expired.
    isOutOfCapacityBlocked Boolean
    Whether to block sessions if the firewall is temporarily unable to decrypt their traffic.
    isRevocationStatusTimeoutBlocked Boolean
    Whether to block sessions if the revocation status check for server's certificate does not succeed within the maximum allowed time (defaulting to 5 seconds).
    isUnknownRevocationStatusBlocked Boolean
    Whether to block sessions if the revocation status check for server's certificate results in "unknown".
    isUnsupportedCipherBlocked Boolean
    Whether to block sessions if SSL cipher suite is not supported.
    isUnsupportedVersionBlocked Boolean
    Whether to block sessions if SSL version is not supported.
    isUntrustedIssuerBlocked Boolean
    Whether to block sessions if server's certificate is issued by an untrusted certificate authority (CA).
    name String
    Unique Name of the decryption profile.
    networkFirewallPolicyId String
    Unique Network Firewall Policy identifier
    parentResourceId String
    OCID of the Network Firewall Policy this decryption profile belongs to.
    type String
    Describes the type of Decryption Profile SslForwardProxy or SslInboundInspection.

    GetNetworkFirewallPolicyDecryptionProfilesFilter

    Name string
    Unique Name of the decryption profile.
    Values List<string>
    Regex bool
    Name string
    Unique Name of the decryption profile.
    Values []string
    Regex bool
    name String
    Unique Name of the decryption profile.
    values List<String>
    regex Boolean
    name string
    Unique Name of the decryption profile.
    values string[]
    regex boolean
    name str
    Unique Name of the decryption profile.
    values Sequence[str]
    regex bool
    name String
    Unique Name of the decryption profile.
    values List<String>
    regex Boolean

    Package Details

    Repository
    oci pulumi/pulumi-oci
    License
    Apache-2.0
    Notes
    This Pulumi package is based on the oci Terraform Provider.
    oci logo
    Oracle Cloud Infrastructure v2.17.0 published on Friday, Nov 15, 2024 by Pulumi