This data source provides the list of Account Mgmt Infos in Oracle Cloud Infrastructure Identity Domains service.
Search Account Mgmt Info
data "oci_identity_domains_account_mgmt_infos" "test_account_mgmt_infos" {
#Required
idcs_endpoint = data.oci_identity_domain.test_domain.url
#Optional
account_mgmt_info_count = var.account_mgmt_info_account_mgmt_info_count
account_mgmt_info_filter = var.account_mgmt_info_account_mgmt_info_filter
attribute_sets = ["all"]
attributes = ""
authorization = var.account_mgmt_info_authorization
resource_type_schema_version = var.account_mgmt_info_resource_type_schema_version
start_index = var.account_mgmt_info_start_index
}
The following arguments are supported:
account_mgmt_info_count
- (Optional) OPTIONAL. An integer that indicates the desired maximum number of query results per page. 1000 is the largest value that you can use. See the Pagination section of the System for Cross-Domain Identity Management Protocol specification for more information. (Section 3.4.2.4).account_mgmt_info_filter
- (Optional) OPTIONAL. The filter string that is used to request a subset of resources. The filter string MUST be a valid filter expression. See the Filtering section of the SCIM specification for more information (Section 3.4.2.2). The string should contain at least one condition that each item must match in order to be returned in the search results. Each condition specifies an attribute, an operator, and a value. Conditions within a filter can be connected by logical operators (such as AND and OR). Sets of conditions can be grouped together using parentheses.attribute_sets
- (Optional) A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If 'attributes' query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.attributes
- (Optional) A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.authorization
- (Optional) The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.idcs_endpoint
- (Required) The basic endpoint for the identity domainresource_type_schema_version
- (Optional) An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.start_index
- (Optional) OPTIONAL. An integer that indicates the 1-based index of the first query result. See the Pagination section of the SCIM specification for more information. (Section 3.4.2.4). The number of results pages to return. The first page is 1. Specify 2 to access the second page of results, and so on.The following attributes are exported:
account_mgmt_infos
- The list of account_mgmt_infos.The following attributes are exported:
account_type
- Type of Account
SCIM++ Properties:
active
- If true, the account is activated
SCIM++ Properties:
app
- Application on which the account is based
SCIM++ Properties:
active
- If true, this App is able to participate in runtime services, such as automatic-login, OAuth, and SAML. If false, all runtime services are disabled for this App and only administrative operations can be performed.
SCIM++ Properties:
app_icon
- Application icon.
SCIM++ Properties:
app_thumbnail
- Application thumbnail.
SCIM++ Properties:
audience
- The base URI for all of the scopes defined in this App. The value of 'audience' is combined with the 'value' of each scope to form an 'fqs' or fully qualified scope.
Added In: 18.4.2
SCIM++ Properties:
description
- Application description
SCIM++ Properties:
display
- Application display name
SCIM++ Properties:
is_alias_app
- If true, this App is an AliasApp and it cannot be granted to an end user directly
SCIM++ Properties:
is_authoritative
- If true, sync from the managed app will be performed as authoritative sync.
Added In: 17.4.6
SCIM++ Properties:
is_login_target
- If true, this App allows runtime services to log end users in to this App automatically
SCIM++ Properties:
is_managed_app
- If true, indicates that access to this App requires an account. That is, in order to log in to the App, a User must use an application-specific identity that is maintained in the remote identity-repository of that App.
Added In: 17.4.6
SCIM++ Properties:
is_oauth_resource
- If true, indicates that this application acts as an OAuth Resource.
Added In: 18.4.2
SCIM++ Properties:
is_opc_service
- If true, this application is an Oracle Public Cloud service-instance.
SCIM++ Properties:
is_unmanaged_app
- If true, indicates that this application accepts an Oracle Identity Cloud Service user as a login-identity (does not require an account) and relies on authorization of the user's memberships in AppRoles
SCIM++ Properties:
login_mechanism
- The protocol that runtime services will use to log end users in to this App automatically. If 'OIDC', then runtime services use the OpenID Connect protocol. If 'SAML', then runtime services use the Security Assertion Markup Language protocol.
SCIM++ Properties:
meter_as_opc_service
- If true, customer is not billed for runtime operations of the app.
Added In: 18.4.2
SCIM++ Properties:
ref
- Application URI
SCIM++ Properties:
service_type_urn
- This Uniform Resource Name (URN) value identifies the type of Oracle Public Cloud service of which this app is an instance.
SCIM++ Properties:
show_in_my_apps
- If true, this App will be displayed in the MyApps page of each end-user who has access to the App.
Added In: 18.1.2
SCIM++ Properties:
value
- Application identifier
SCIM++ Properties:
compartment_ocid
- Oracle Cloud Infrastructure Compartment Id (ocid) in which the resource lives.
SCIM++ Properties:
composite_key
- Unique key for this AccountMgmtInfo, which is used to prevent duplicate AccountMgmtInfo resources. Key is composed of a subset of app, owner and accountType.
Added In: 18.1.2
SCIM++ Properties:
delete_in_progress
- A boolean flag indicating this resource in the process of being deleted. Usually set to true when synchronous deletion of the resource would take too long.
SCIM++ Properties:
do_not_back_fill_grants
- If true, a back-fill grant will not be created for a connected managed app as part of account creation.
Added In: 18.2.6
SCIM++ Properties:
do_not_perform_action_on_target
- If true, the operation will not be performed on the target
Added In: 17.4.6
SCIM++ Properties:
domain_ocid
- Oracle Cloud Infrastructure Domain Id (ocid) in which the resource lives.
SCIM++ Properties:
favorite
- If true, this account has been marked as a favorite of the User who owns it
SCIM++ Properties:
id
- Unique identifier for the SCIM Resource as defined by the Service Provider. Each representation of the Resource MUST include a non-empty id value. This identifier MUST be unique across the Service Provider's entire set of Resources. It MUST be a stable, non-reassignable identifier that does not change when the same Resource is returned in subsequent requests. The value of the id attribute is always issued by the Service Provider and MUST never be specified by the Service Consumer. bulkId: is a reserved keyword and MUST NOT be used in the unique identifier.
SCIM++ Properties:
idcs_created_by
- The User or App who created the Resource
SCIM++ Properties:
display
- The displayName of the User or App who created this Resource
SCIM++ Properties:
ocid
- The OCID of the SCIM resource that represents the User or App who created this Resource
SCIM++ Properties:
ref
- The URI of the SCIM resource that represents the User or App who created this Resource
SCIM++ Properties:
type
- The type of resource, User or App, that created this Resource
SCIM++ Properties:
value
- The ID of the SCIM resource that represents the User or App who created this Resource
SCIM++ Properties:
idcs_last_modified_by
- The User or App who modified the Resource
SCIM++ Properties:
display
- The displayName of the User or App who modified this Resource
SCIM++ Properties:
ocid
- The OCID of the SCIM resource that represents the User or App who modified this Resource
SCIM++ Properties:
ref
- The URI of the SCIM resource that represents the User or App who modified this Resource
SCIM++ Properties:
type
- The type of resource, User or App, that modified this Resource
SCIM++ Properties:
value
- The ID of the SCIM resource that represents the User or App who modified this Resource
SCIM++ Properties:
idcs_last_upgraded_in_release
- The release number when the resource was upgraded.
SCIM++ Properties:
idcs_prevented_operations
- Each value of this attribute specifies an operation that only an internal client may perform on this particular resource.
SCIM++ Properties:
is_account
- If true, indicates that this managed object is an account, which is an identity that represents a user in the context of a specific application
SCIM++ Properties:
last_accessed
- Last accessed timestamp of an application
SCIM++ Properties:
matching_owners
- Matching owning users of the account
SCIM++ Properties:
display
- User display name
SCIM++ Properties:
email
- The email address of this user
Added In: 17.3.4
SCIM++ Properties:
ref
- User URI
SCIM++ Properties:
user_name
- User name
Added In: 17.3.4
SCIM++ Properties:
value
- User Identifier
SCIM++ Properties:
meta
- A complex attribute that contains resource metadata. All sub-attributes are OPTIONAL.
SCIM++ Properties:
created
- The DateTime the Resource was added to the Service Provider
SCIM++ Properties:
last_modified
- The most recent DateTime that the details of this Resource were updated at the Service Provider. If this Resource has never been modified since its initial creation, the value MUST be the same as the value of created. The attribute MUST be a DateTime.
SCIM++ Properties:
location
- The URI of the Resource being returned. This value MUST be the same as the Location HTTP response header.
SCIM++ Properties:
resource_type
- Name of the resource type of the resource--for example, Users or Groups
SCIM++ Properties:
version
- The version of the Resource being returned. This value must be the same as the ETag HTTP response header.
SCIM++ Properties:
name
- Name of the Account
SCIM++ Properties:
object_class
- Object-class of the Account
SCIM++ Properties:
display
- Object-class display name
SCIM++ Properties:
ref
- Object-class URI
SCIM++ Properties:
value
- Object-class Identifier
SCIM++ Properties:
ocid
- Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
SCIM++ Properties:
operation_context
- The context in which the operation is performed on the account.
Added In: 19.1.4
SCIM++ Properties:
owner
- Owning user of the account
SCIM++ Properties:
display
- User display name
SCIM++ Properties:
email
- The email address of this user
SCIM++ Properties:
ref
- User URI
SCIM++ Properties:
user_name
- User name
SCIM++ Properties:
value
- User Identifier
SCIM++ Properties:
preview_only
- If true, then the response to the account creation operation on a connected managed app returns a preview of the account data that is evaluated by the attribute value generation policy. Note that an account will not be created on the target application when this attribute is set to true.
Added In: 18.2.6
SCIM++ Properties:
resource_type
- Resource Type of the Account
SCIM++ Properties:
display
- Resource Type display name
SCIM++ Properties:
ref
- Resource Type URI
SCIM++ Properties:
value
- Resource Type Identifier
SCIM++ Properties:
schemas
- REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard \"enterprise\" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.
SCIM++ Properties:
sync_response
- Last recorded sync response for the account
SCIM++ Properties:
sync_situation
- Last recorded sync situation for the account
SCIM++ Properties:
sync_timestamp
- Last sync timestamp of the account
SCIM++ Properties:
tags
- A list of tags on this resource.
SCIM++ Properties:
key
- Key or name of the tag.
SCIM++ Properties:
value
- Value of the tag.
SCIM++ Properties:
tenancy_ocid
- Oracle Cloud Infrastructure Tenant Id (ocid) in which the resource lives.
SCIM++ Properties:
uid
- Unique identifier of the Account
SCIM++ Properties:
user_wallet_artifact
- The UserWalletArtifact that contains the credentials that the system will use when performing Secure Form-Fill to log the user in to this application
SCIM++ Properties:
ref
- UserWalletArtifact URI
SCIM++ Properties:
value
- UserWalletArtifact identifier
SCIM++ Properties: