Docs Home Pulumi IaC Pulumi ESC Pulumi Insights Pulumi Cloud Packages Tutorials
  1. Packages
  2. Intersight Provider
  3. API Docs
  4. getIamAppRegistration
intersight 1.0.65 published on Wednesday, May 7, 2025 by ciscodevnet
ciscodevnet/terraform-provider-intersight

intersight.getIamAppRegistration

Explore with Pulumi AI

intersight logo
intersight 1.0.65 published on Wednesday, May 7, 2025 by ciscodevnet
ciscodevnet/terraform-provider-intersight

    AppRegistration encapsulates the meta-data values of a registered OAuth2 client application, as described in https://tools.ietf.org/html/rfc7591#section-2. Registered client applications have a set of metadata values associated with their client identifier at the Intersight authorization server, including the list of valid redirection URIs or a display name. The meta-data is used to specify how a client application can retrieve a OAuth2 Access Token and subsequently invoke Intersight API on behalf of this AppRegistration. To register an OAuth2 application, the following information must be provided.

    1. Application name
    2. An icon for the application
    3. URL to the application’s home page
    4. A short description of the application
    5. A list of redirect URLs When an AppRegistration is created, a unique OAuth2 clientId is generated and returned in the HTTP response.

    Using getIamAppRegistration

    Two invocation forms are available. The direct form accepts plain arguments and either blocks until the result value is available, or returns a Promise-wrapped result. The output form accepts Input-wrapped arguments and returns an Output-wrapped result.

    function getIamAppRegistration(args: GetIamAppRegistrationArgs, opts?: InvokeOptions): Promise<GetIamAppRegistrationResult>
function getIamAppRegistrationOutput(args: GetIamAppRegistrationOutputArgs, opts?: InvokeOptions): Output<GetIamAppRegistrationResult>
    def get_iam_app_registration(account: Optional[GetIamAppRegistrationAccount] = None,
                             account_moid: Optional[str] = None,
                             additional_properties: Optional[str] = None,
                             admin_status: Optional[str] = None,
                             ancestors: Optional[Sequence[GetIamAppRegistrationAncestor]] = None,
                             class_id: Optional[str] = None,
                             client_application: Optional[GetIamAppRegistrationClientApplication] = None,
                             client_id: Optional[str] = None,
                             client_name: Optional[str] = None,
                             client_secret: Optional[str] = None,
                             client_type: Optional[str] = None,
                             create_time: Optional[str] = None,
                             description: Optional[str] = None,
                             domain_group_moid: Optional[str] = None,
                             entity_id: Optional[str] = None,
                             expiry_date_time: Optional[str] = None,
                             grant_types: Optional[Sequence[str]] = None,
                             id: Optional[str] = None,
                             is_never_expiring: Optional[bool] = None,
                             last_used_ip: Optional[str] = None,
                             last_used_time: Optional[str] = None,
                             mod_time: Optional[str] = None,
                             moid: Optional[str] = None,
                             oauth_tokens: Optional[Sequence[GetIamAppRegistrationOauthToken]] = None,
                             object_type: Optional[str] = None,
                             oper_status: Optional[str] = None,
                             owners: Optional[Sequence[str]] = None,
                             parent: Optional[GetIamAppRegistrationParent] = None,
                             permission: Optional[GetIamAppRegistrationPermission] = None,
                             permission_resources: Optional[Sequence[GetIamAppRegistrationPermissionResource]] = None,
                             redirect_uris: Optional[Sequence[str]] = None,
                             renew_client_secret: Optional[bool] = None,
                             response_types: Optional[Sequence[str]] = None,
                             revocation_timestamp: Optional[str] = None,
                             revoke: Optional[bool] = None,
                             roles: Optional[Sequence[GetIamAppRegistrationRole]] = None,
                             scope: Optional[GetIamAppRegistrationScope] = None,
                             security_holder: Optional[GetIamAppRegistrationSecurityHolder] = None,
                             shared_scope: Optional[str] = None,
                             show_consent_screen: Optional[bool] = None,
                             start_time: Optional[str] = None,
                             tags: Optional[Sequence[GetIamAppRegistrationTag]] = None,
                             token_expiry: Optional[str] = None,
                             user: Optional[GetIamAppRegistrationUser] = None,
                             version_context: Optional[GetIamAppRegistrationVersionContext] = None,
                             opts: Optional[InvokeOptions] = None) -> GetIamAppRegistrationResult
def get_iam_app_registration_output(account: Optional[pulumi.Input[GetIamAppRegistrationAccountArgs]] = None,
                             account_moid: Optional[pulumi.Input[str]] = None,
                             additional_properties: Optional[pulumi.Input[str]] = None,
                             admin_status: Optional[pulumi.Input[str]] = None,
                             ancestors: Optional[pulumi.Input[Sequence[pulumi.Input[GetIamAppRegistrationAncestorArgs]]]] = None,
                             class_id: Optional[pulumi.Input[str]] = None,
                             client_application: Optional[pulumi.Input[GetIamAppRegistrationClientApplicationArgs]] = None,
                             client_id: Optional[pulumi.Input[str]] = None,
                             client_name: Optional[pulumi.Input[str]] = None,
                             client_secret: Optional[pulumi.Input[str]] = None,
                             client_type: Optional[pulumi.Input[str]] = None,
                             create_time: Optional[pulumi.Input[str]] = None,
                             description: Optional[pulumi.Input[str]] = None,
                             domain_group_moid: Optional[pulumi.Input[str]] = None,
                             entity_id: Optional[pulumi.Input[str]] = None,
                             expiry_date_time: Optional[pulumi.Input[str]] = None,
                             grant_types: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
                             id: Optional[pulumi.Input[str]] = None,
                             is_never_expiring: Optional[pulumi.Input[bool]] = None,
                             last_used_ip: Optional[pulumi.Input[str]] = None,
                             last_used_time: Optional[pulumi.Input[str]] = None,
                             mod_time: Optional[pulumi.Input[str]] = None,
                             moid: Optional[pulumi.Input[str]] = None,
                             oauth_tokens: Optional[pulumi.Input[Sequence[pulumi.Input[GetIamAppRegistrationOauthTokenArgs]]]] = None,
                             object_type: Optional[pulumi.Input[str]] = None,
                             oper_status: Optional[pulumi.Input[str]] = None,
                             owners: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
                             parent: Optional[pulumi.Input[GetIamAppRegistrationParentArgs]] = None,
                             permission: Optional[pulumi.Input[GetIamAppRegistrationPermissionArgs]] = None,
                             permission_resources: Optional[pulumi.Input[Sequence[pulumi.Input[GetIamAppRegistrationPermissionResourceArgs]]]] = None,
                             redirect_uris: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
                             renew_client_secret: Optional[pulumi.Input[bool]] = None,
                             response_types: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
                             revocation_timestamp: Optional[pulumi.Input[str]] = None,
                             revoke: Optional[pulumi.Input[bool]] = None,
                             roles: Optional[pulumi.Input[Sequence[pulumi.Input[GetIamAppRegistrationRoleArgs]]]] = None,
                             scope: Optional[pulumi.Input[GetIamAppRegistrationScopeArgs]] = None,
                             security_holder: Optional[pulumi.Input[GetIamAppRegistrationSecurityHolderArgs]] = None,
                             shared_scope: Optional[pulumi.Input[str]] = None,
                             show_consent_screen: Optional[pulumi.Input[bool]] = None,
                             start_time: Optional[pulumi.Input[str]] = None,
                             tags: Optional[pulumi.Input[Sequence[pulumi.Input[GetIamAppRegistrationTagArgs]]]] = None,
                             token_expiry: Optional[pulumi.Input[str]] = None,
                             user: Optional[pulumi.Input[GetIamAppRegistrationUserArgs]] = None,
                             version_context: Optional[pulumi.Input[GetIamAppRegistrationVersionContextArgs]] = None,
                             opts: Optional[InvokeOptions] = None) -> Output[GetIamAppRegistrationResult]
    func LookupIamAppRegistration(ctx *Context, args *LookupIamAppRegistrationArgs, opts ...InvokeOption) (*LookupIamAppRegistrationResult, error)
func LookupIamAppRegistrationOutput(ctx *Context, args *LookupIamAppRegistrationOutputArgs, opts ...InvokeOption) LookupIamAppRegistrationResultOutput

    > Note: This function is named LookupIamAppRegistration in the Go SDK.

    public static class GetIamAppRegistration 
{
    public static Task<GetIamAppRegistrationResult> InvokeAsync(GetIamAppRegistrationArgs args, InvokeOptions? opts = null)
    public static Output<GetIamAppRegistrationResult> Invoke(GetIamAppRegistrationInvokeArgs args, InvokeOptions? opts = null)
}
    public static CompletableFuture<GetIamAppRegistrationResult> getIamAppRegistration(GetIamAppRegistrationArgs args, InvokeOptions options)
public static Output<GetIamAppRegistrationResult> getIamAppRegistration(GetIamAppRegistrationArgs args, InvokeOptions options)

    fn::invoke:
  function: intersight:index/getIamAppRegistration:getIamAppRegistration
  arguments:
    # arguments dictionary

    The following arguments are supported:

    Account GetIamAppRegistrationAccount
    AccountMoid string
    The Account ID for this managed object.
    AdditionalProperties string
    AdminStatus string
    Used to trigger the enable or disable action on the App Registration. These actions change the status of an App Registration.* enable - Used to enable a disabled API key/App Registration. If the API key/App Registration is already expired, this action has no effect.* disable - Used to disable an active API key/App Registration. If the API key/App Registration is already expired, this action has no effect.
    Ancestors List<GetIamAppRegistrationAncestor>
    ClassId string
    ClientApplication GetIamAppRegistrationClientApplication
    ClientId string
    A unique identifier for the OAuth2 client application.The client ID is auto-generated when the AppRegistration object is created.
    ClientName string
    App Registration name specified by user.
    ClientSecret string
    The OAuth2 client secret.The value of this property is generated when grantType includes 'client-credentials'.Otherwise, no client-secret is generated.
    ClientType string
    The type of the OAuth2 client (public or confidential), as specified in https://tools.ietf.org/html/rfc6749#section-2.1.* public - Clients incapable of maintaining the confidentiality of their credentials.This includes clients executing on the device used by the resource owner,such as mobile applications, installed native application or a webbrowser-based application.* confidential - Clients capable of maintaining the confidentiality of their credentials.For example, this could be a client implemented on a secure server withrestricted access to the client credentials.To maintain the confidentiality of the OAuth2 credentials, two use cases areconsidered.1) The application is running as a service within Intersight. The application automatically obtains the OAuth2 credentials when the application starts and the credentials are not exposed to the end-user. Because end-users (even account administrators) do not have access the OAuth2 credentials, they cannot take the credentials with them when they leave their organization.2) The application is under the control of a \ trusted\ end-user. For example, the end-user may create a native application running outside Intersight. The application uses OAuth2 credentials to interact with the Intersight API. In that case, the Intersight account administrator may generate OAuth2 credentials with a registered application using \ client_credentials\ grant type. In that case, the end-user is responsible for maintaining the confidentiality of the OAuth2 credentials. If the end-user leaves the organization, you should revoke the credentials and issue new Oauth2 credentials.Here is a possible workflow for handling OAuth2 tokens.1) User Alice (Intersight Account Administrator) logins to Intersight and deploys an Intersight application that requires an OAuth2 token.2) Intersight automatically deploys the application. The application is assigned a OAuth2 token, possibly linked to Alice. The application must NOT expose the OAuth2 secret to Alice, otherwise Alice would be able to use the token after she leaves the company.3) The application can make API calls to Intersight using its assigned OAuth2 token. For example, the application could make weekly scheduled API calls to Intersight.4) Separately, Alice may also get OAuth2 tokens that she can use to make API calls from the Intersight SDK through the northbound API. In that case, Alice will get the associated OAuth2 secrets, but not the one assigned in step #2.5) Alice leaves the organization. The OAuth2 tokens assigned in step #2 must retain their validity even after Alice has left the organization. Because the OAuth2 secrets were never shared with Alice, there is no risk Alice can reuse the OAuth2 secrets. On the other hand, the OAuth2 tokens assigned in step #4 must be invalidated because Alice had the OAuth2 tokens in her possession.
    CreateTime string
    The time when this managed object was created.
    Description string
    Description of the application.
    DomainGroupMoid string
    The DomainGroup ID for this managed object.
    EntityId string
    EntityId holds the Id of the client application that is using this AppRegistration.
    ExpiryDateTime string
    The expiration date of the App Registration which is set at the time of its creation. Its value can only be assigned a date that falls within the range determined by the maximum expiration time configured at the account level. The expiry date can be edited to be earlier or later, provided it stays within the designated expiry period. This period is determined by adding the 'startTime' property of the App Registration to the maximum expiry time configured at the account level.
    GrantTypes List<string>
    Id string
    IsNeverExpiring bool
    Used to mark the App Registration as a never-expiring App Registration.
    LastUsedIp string
    The ip address from which the App Registration was last used.
    LastUsedTime string
    The time at which the App Registration was last used. It is updated every 24 hours.
    ModTime string
    The time when this managed object was last modified.
    Moid string
    The unique identifier of this Managed Object instance.
    OauthTokens List<GetIamAppRegistrationOauthToken>
    ObjectType string
    OperStatus string
    The current status of the App Registration that dictates the validity of the app.* enabled - An API key/App Registration having enabled status can be used for API invocation.* disabled - An API key/App Registration having disabled status cannot be used for API invocation.* expired - An API key/App Registration having expired status cannot be used for API invocation as the expiration date has passed.
    Owners List<string>
    Parent GetIamAppRegistrationParent
    Permission GetIamAppRegistrationPermission
    PermissionResources List<GetIamAppRegistrationPermissionResource>
    RedirectUris List<string>
    RenewClientSecret bool
    Set value to true to renew the client-secret. Applicable to client_credentials grant type.
    ResponseTypes List<string>
    RevocationTimestamp string
    Used to perform revocation for tokens of AppRegistration.Updated only internally is case Revoke property come from UI with value true.On each request with OAuth2 access token the CreationTime of the OAuth2 token will be compared to RevokationTimestamp of thecorresponding App Registration.
    Revoke bool
    Used to trigger update the revocationTimestamp value.If UI sent updating request with the Revoke value is true, then update RevocationTimestamp.
    Roles List<GetIamAppRegistrationRole>
    Scope GetIamAppRegistrationScope
    SecurityHolder GetIamAppRegistrationSecurityHolder
    SharedScope string
    Intersight provides pre-built workflows, tasks and policies to end users through global catalogs.Objects that are made available through global catalogs are said to have a 'shared' ownership. Shared objects are either made globally available to all end users or restricted to end users based on their license entitlement. Users can use this property to differentiate the scope (global or a specific license tier) to which a shared MO belongs.
    ShowConsentScreen bool
    Set to true if consent screen needs to be shown during the OAuth login process.Applicable only for public AppRegistrations, means only 'authorization_code' grantType.Note that consent screen will be shown on each login.
    StartTime string
    The timestamp at which an expiry date was first set on this app registration. For expiring App Registrations, this field is same as the create time of the App Registration.For never-expiring App Registrations, this field is set initially to zero time value. If a never-expiry App Registration is later changed to have an expiration, the timestamp marking the start of this transition is recorded in this field.
    Tags List<GetIamAppRegistrationTag>
    TokenExpiry string
    Defines the expiry time of the token generated via the AppRegistration.* generic - This sets the expiryTime to ten minutes from the token issuing time.* longLived - This sets the expiryTime to an year from the token issuing time.* infinite - This allows for a never-expiring token. Use with caution.
    User GetIamAppRegistrationUser
    VersionContext GetIamAppRegistrationVersionContext
    Account GetIamAppRegistrationAccount
    AccountMoid string
    The Account ID for this managed object.
    AdditionalProperties string
    AdminStatus string
    Used to trigger the enable or disable action on the App Registration. These actions change the status of an App Registration.* enable - Used to enable a disabled API key/App Registration. If the API key/App Registration is already expired, this action has no effect.* disable - Used to disable an active API key/App Registration. If the API key/App Registration is already expired, this action has no effect.
    Ancestors []GetIamAppRegistrationAncestor
    ClassId string
    ClientApplication GetIamAppRegistrationClientApplication
    ClientId string
    A unique identifier for the OAuth2 client application.The client ID is auto-generated when the AppRegistration object is created.
    ClientName string
    App Registration name specified by user.
    ClientSecret string
    The OAuth2 client secret.The value of this property is generated when grantType includes 'client-credentials'.Otherwise, no client-secret is generated.
    ClientType string
    The type of the OAuth2 client (public or confidential), as specified in https://tools.ietf.org/html/rfc6749#section-2.1.* public - Clients incapable of maintaining the confidentiality of their credentials.This includes clients executing on the device used by the resource owner,such as mobile applications, installed native application or a webbrowser-based application.* confidential - Clients capable of maintaining the confidentiality of their credentials.For example, this could be a client implemented on a secure server withrestricted access to the client credentials.To maintain the confidentiality of the OAuth2 credentials, two use cases areconsidered.1) The application is running as a service within Intersight. The application automatically obtains the OAuth2 credentials when the application starts and the credentials are not exposed to the end-user. Because end-users (even account administrators) do not have access the OAuth2 credentials, they cannot take the credentials with them when they leave their organization.2) The application is under the control of a \ trusted\ end-user. For example, the end-user may create a native application running outside Intersight. The application uses OAuth2 credentials to interact with the Intersight API. In that case, the Intersight account administrator may generate OAuth2 credentials with a registered application using \ client_credentials\ grant type. In that case, the end-user is responsible for maintaining the confidentiality of the OAuth2 credentials. If the end-user leaves the organization, you should revoke the credentials and issue new Oauth2 credentials.Here is a possible workflow for handling OAuth2 tokens.1) User Alice (Intersight Account Administrator) logins to Intersight and deploys an Intersight application that requires an OAuth2 token.2) Intersight automatically deploys the application. The application is assigned a OAuth2 token, possibly linked to Alice. The application must NOT expose the OAuth2 secret to Alice, otherwise Alice would be able to use the token after she leaves the company.3) The application can make API calls to Intersight using its assigned OAuth2 token. For example, the application could make weekly scheduled API calls to Intersight.4) Separately, Alice may also get OAuth2 tokens that she can use to make API calls from the Intersight SDK through the northbound API. In that case, Alice will get the associated OAuth2 secrets, but not the one assigned in step #2.5) Alice leaves the organization. The OAuth2 tokens assigned in step #2 must retain their validity even after Alice has left the organization. Because the OAuth2 secrets were never shared with Alice, there is no risk Alice can reuse the OAuth2 secrets. On the other hand, the OAuth2 tokens assigned in step #4 must be invalidated because Alice had the OAuth2 tokens in her possession.
    CreateTime string
    The time when this managed object was created.
    Description string
    Description of the application.
    DomainGroupMoid string
    The DomainGroup ID for this managed object.
    EntityId string
    EntityId holds the Id of the client application that is using this AppRegistration.
    ExpiryDateTime string
    The expiration date of the App Registration which is set at the time of its creation. Its value can only be assigned a date that falls within the range determined by the maximum expiration time configured at the account level. The expiry date can be edited to be earlier or later, provided it stays within the designated expiry period. This period is determined by adding the 'startTime' property of the App Registration to the maximum expiry time configured at the account level.
    GrantTypes []string
    Id string
    IsNeverExpiring bool
    Used to mark the App Registration as a never-expiring App Registration.
    LastUsedIp string
    The ip address from which the App Registration was last used.
    LastUsedTime string
    The time at which the App Registration was last used. It is updated every 24 hours.
    ModTime string
    The time when this managed object was last modified.
    Moid string
    The unique identifier of this Managed Object instance.
    OauthTokens []GetIamAppRegistrationOauthToken
    ObjectType string
    OperStatus string
    The current status of the App Registration that dictates the validity of the app.* enabled - An API key/App Registration having enabled status can be used for API invocation.* disabled - An API key/App Registration having disabled status cannot be used for API invocation.* expired - An API key/App Registration having expired status cannot be used for API invocation as the expiration date has passed.
    Owners []string
    Parent GetIamAppRegistrationParent
    Permission GetIamAppRegistrationPermission
    PermissionResources []GetIamAppRegistrationPermissionResource
    RedirectUris []string
    RenewClientSecret bool
    Set value to true to renew the client-secret. Applicable to client_credentials grant type.
    ResponseTypes []string
    RevocationTimestamp string
    Used to perform revocation for tokens of AppRegistration.Updated only internally is case Revoke property come from UI with value true.On each request with OAuth2 access token the CreationTime of the OAuth2 token will be compared to RevokationTimestamp of thecorresponding App Registration.
    Revoke bool
    Used to trigger update the revocationTimestamp value.If UI sent updating request with the Revoke value is true, then update RevocationTimestamp.
    Roles []GetIamAppRegistrationRole
    Scope GetIamAppRegistrationScope
    SecurityHolder GetIamAppRegistrationSecurityHolder
    SharedScope string
    Intersight provides pre-built workflows, tasks and policies to end users through global catalogs.Objects that are made available through global catalogs are said to have a 'shared' ownership. Shared objects are either made globally available to all end users or restricted to end users based on their license entitlement. Users can use this property to differentiate the scope (global or a specific license tier) to which a shared MO belongs.
    ShowConsentScreen bool
    Set to true if consent screen needs to be shown during the OAuth login process.Applicable only for public AppRegistrations, means only 'authorization_code' grantType.Note that consent screen will be shown on each login.
    StartTime string
    The timestamp at which an expiry date was first set on this app registration. For expiring App Registrations, this field is same as the create time of the App Registration.For never-expiring App Registrations, this field is set initially to zero time value. If a never-expiry App Registration is later changed to have an expiration, the timestamp marking the start of this transition is recorded in this field.
    Tags []GetIamAppRegistrationTag
    TokenExpiry string
    Defines the expiry time of the token generated via the AppRegistration.* generic - This sets the expiryTime to ten minutes from the token issuing time.* longLived - This sets the expiryTime to an year from the token issuing time.* infinite - This allows for a never-expiring token. Use with caution.
    User GetIamAppRegistrationUser
    VersionContext GetIamAppRegistrationVersionContext
    account GetIamAppRegistrationAccount
    accountMoid String
    The Account ID for this managed object.
    additionalProperties String
    adminStatus String
    Used to trigger the enable or disable action on the App Registration. These actions change the status of an App Registration.* enable - Used to enable a disabled API key/App Registration. If the API key/App Registration is already expired, this action has no effect.* disable - Used to disable an active API key/App Registration. If the API key/App Registration is already expired, this action has no effect.
    ancestors List<GetIamAppRegistrationAncestor>
    classId String
    clientApplication GetIamAppRegistrationClientApplication
    clientId String
    A unique identifier for the OAuth2 client application.The client ID is auto-generated when the AppRegistration object is created.
    clientName String
    App Registration name specified by user.
    clientSecret String
    The OAuth2 client secret.The value of this property is generated when grantType includes 'client-credentials'.Otherwise, no client-secret is generated.
    clientType String
    The type of the OAuth2 client (public or confidential), as specified in https://tools.ietf.org/html/rfc6749#section-2.1.* public - Clients incapable of maintaining the confidentiality of their credentials.This includes clients executing on the device used by the resource owner,such as mobile applications, installed native application or a webbrowser-based application.* confidential - Clients capable of maintaining the confidentiality of their credentials.For example, this could be a client implemented on a secure server withrestricted access to the client credentials.To maintain the confidentiality of the OAuth2 credentials, two use cases areconsidered.1) The application is running as a service within Intersight. The application automatically obtains the OAuth2 credentials when the application starts and the credentials are not exposed to the end-user. Because end-users (even account administrators) do not have access the OAuth2 credentials, they cannot take the credentials with them when they leave their organization.2) The application is under the control of a \ trusted\ end-user. For example, the end-user may create a native application running outside Intersight. The application uses OAuth2 credentials to interact with the Intersight API. In that case, the Intersight account administrator may generate OAuth2 credentials with a registered application using \ client_credentials\ grant type. In that case, the end-user is responsible for maintaining the confidentiality of the OAuth2 credentials. If the end-user leaves the organization, you should revoke the credentials and issue new Oauth2 credentials.Here is a possible workflow for handling OAuth2 tokens.1) User Alice (Intersight Account Administrator) logins to Intersight and deploys an Intersight application that requires an OAuth2 token.2) Intersight automatically deploys the application. The application is assigned a OAuth2 token, possibly linked to Alice. The application must NOT expose the OAuth2 secret to Alice, otherwise Alice would be able to use the token after she leaves the company.3) The application can make API calls to Intersight using its assigned OAuth2 token. For example, the application could make weekly scheduled API calls to Intersight.4) Separately, Alice may also get OAuth2 tokens that she can use to make API calls from the Intersight SDK through the northbound API. In that case, Alice will get the associated OAuth2 secrets, but not the one assigned in step #2.5) Alice leaves the organization. The OAuth2 tokens assigned in step #2 must retain their validity even after Alice has left the organization. Because the OAuth2 secrets were never shared with Alice, there is no risk Alice can reuse the OAuth2 secrets. On the other hand, the OAuth2 tokens assigned in step #4 must be invalidated because Alice had the OAuth2 tokens in her possession.
    createTime String
    The time when this managed object was created.
    description String
    Description of the application.
    domainGroupMoid String
    The DomainGroup ID for this managed object.
    entityId String
    EntityId holds the Id of the client application that is using this AppRegistration.
    expiryDateTime String
    The expiration date of the App Registration which is set at the time of its creation. Its value can only be assigned a date that falls within the range determined by the maximum expiration time configured at the account level. The expiry date can be edited to be earlier or later, provided it stays within the designated expiry period. This period is determined by adding the 'startTime' property of the App Registration to the maximum expiry time configured at the account level.
    grantTypes List<String>
    id String
    isNeverExpiring Boolean
    Used to mark the App Registration as a never-expiring App Registration.
    lastUsedIp String
    The ip address from which the App Registration was last used.
    lastUsedTime String
    The time at which the App Registration was last used. It is updated every 24 hours.
    modTime String
    The time when this managed object was last modified.
    moid String
    The unique identifier of this Managed Object instance.
    oauthTokens List<GetIamAppRegistrationOauthToken>
    objectType String
    operStatus String
    The current status of the App Registration that dictates the validity of the app.* enabled - An API key/App Registration having enabled status can be used for API invocation.* disabled - An API key/App Registration having disabled status cannot be used for API invocation.* expired - An API key/App Registration having expired status cannot be used for API invocation as the expiration date has passed.
    owners List<String>
    parent GetIamAppRegistrationParent
    permission GetIamAppRegistrationPermission
    permissionResources List<GetIamAppRegistrationPermissionResource>
    redirectUris List<String>
    renewClientSecret Boolean
    Set value to true to renew the client-secret. Applicable to client_credentials grant type.
    responseTypes List<String>
    revocationTimestamp String
    Used to perform revocation for tokens of AppRegistration.Updated only internally is case Revoke property come from UI with value true.On each request with OAuth2 access token the CreationTime of the OAuth2 token will be compared to RevokationTimestamp of thecorresponding App Registration.
    revoke Boolean
    Used to trigger update the revocationTimestamp value.If UI sent updating request with the Revoke value is true, then update RevocationTimestamp.
    roles List<GetIamAppRegistrationRole>
    scope GetIamAppRegistrationScope
    securityHolder GetIamAppRegistrationSecurityHolder
    sharedScope String
    Intersight provides pre-built workflows, tasks and policies to end users through global catalogs.Objects that are made available through global catalogs are said to have a 'shared' ownership. Shared objects are either made globally available to all end users or restricted to end users based on their license entitlement. Users can use this property to differentiate the scope (global or a specific license tier) to which a shared MO belongs.
    showConsentScreen Boolean
    Set to true if consent screen needs to be shown during the OAuth login process.Applicable only for public AppRegistrations, means only 'authorization_code' grantType.Note that consent screen will be shown on each login.
    startTime String
    The timestamp at which an expiry date was first set on this app registration. For expiring App Registrations, this field is same as the create time of the App Registration.For never-expiring App Registrations, this field is set initially to zero time value. If a never-expiry App Registration is later changed to have an expiration, the timestamp marking the start of this transition is recorded in this field.
    tags List<GetIamAppRegistrationTag>
    tokenExpiry String
    Defines the expiry time of the token generated via the AppRegistration.* generic - This sets the expiryTime to ten minutes from the token issuing time.* longLived - This sets the expiryTime to an year from the token issuing time.* infinite - This allows for a never-expiring token. Use with caution.
    user GetIamAppRegistrationUser
    versionContext GetIamAppRegistrationVersionContext
    account GetIamAppRegistrationAccount
    accountMoid string
    The Account ID for this managed object.
    additionalProperties string
    adminStatus string
    Used to trigger the enable or disable action on the App Registration. These actions change the status of an App Registration.* enable - Used to enable a disabled API key/App Registration. If the API key/App Registration is already expired, this action has no effect.* disable - Used to disable an active API key/App Registration. If the API key/App Registration is already expired, this action has no effect.
    ancestors GetIamAppRegistrationAncestor[]
    classId string
    clientApplication GetIamAppRegistrationClientApplication
    clientId string
    A unique identifier for the OAuth2 client application.The client ID is auto-generated when the AppRegistration object is created.
    clientName string
    App Registration name specified by user.
    clientSecret string
    The OAuth2 client secret.The value of this property is generated when grantType includes 'client-credentials'.Otherwise, no client-secret is generated.
    clientType string
    The type of the OAuth2 client (public or confidential), as specified in https://tools.ietf.org/html/rfc6749#section-2.1.* public - Clients incapable of maintaining the confidentiality of their credentials.This includes clients executing on the device used by the resource owner,such as mobile applications, installed native application or a webbrowser-based application.* confidential - Clients capable of maintaining the confidentiality of their credentials.For example, this could be a client implemented on a secure server withrestricted access to the client credentials.To maintain the confidentiality of the OAuth2 credentials, two use cases areconsidered.1) The application is running as a service within Intersight. The application automatically obtains the OAuth2 credentials when the application starts and the credentials are not exposed to the end-user. Because end-users (even account administrators) do not have access the OAuth2 credentials, they cannot take the credentials with them when they leave their organization.2) The application is under the control of a \ trusted\ end-user. For example, the end-user may create a native application running outside Intersight. The application uses OAuth2 credentials to interact with the Intersight API. In that case, the Intersight account administrator may generate OAuth2 credentials with a registered application using \ client_credentials\ grant type. In that case, the end-user is responsible for maintaining the confidentiality of the OAuth2 credentials. If the end-user leaves the organization, you should revoke the credentials and issue new Oauth2 credentials.Here is a possible workflow for handling OAuth2 tokens.1) User Alice (Intersight Account Administrator) logins to Intersight and deploys an Intersight application that requires an OAuth2 token.2) Intersight automatically deploys the application. The application is assigned a OAuth2 token, possibly linked to Alice. The application must NOT expose the OAuth2 secret to Alice, otherwise Alice would be able to use the token after she leaves the company.3) The application can make API calls to Intersight using its assigned OAuth2 token. For example, the application could make weekly scheduled API calls to Intersight.4) Separately, Alice may also get OAuth2 tokens that she can use to make API calls from the Intersight SDK through the northbound API. In that case, Alice will get the associated OAuth2 secrets, but not the one assigned in step #2.5) Alice leaves the organization. The OAuth2 tokens assigned in step #2 must retain their validity even after Alice has left the organization. Because the OAuth2 secrets were never shared with Alice, there is no risk Alice can reuse the OAuth2 secrets. On the other hand, the OAuth2 tokens assigned in step #4 must be invalidated because Alice had the OAuth2 tokens in her possession.
    createTime string
    The time when this managed object was created.
    description string
    Description of the application.
    domainGroupMoid string
    The DomainGroup ID for this managed object.
    entityId string
    EntityId holds the Id of the client application that is using this AppRegistration.
    expiryDateTime string
    The expiration date of the App Registration which is set at the time of its creation. Its value can only be assigned a date that falls within the range determined by the maximum expiration time configured at the account level. The expiry date can be edited to be earlier or later, provided it stays within the designated expiry period. This period is determined by adding the 'startTime' property of the App Registration to the maximum expiry time configured at the account level.
    grantTypes string[]
    id string
    isNeverExpiring boolean
    Used to mark the App Registration as a never-expiring App Registration.
    lastUsedIp string
    The ip address from which the App Registration was last used.
    lastUsedTime string
    The time at which the App Registration was last used. It is updated every 24 hours.
    modTime string
    The time when this managed object was last modified.
    moid string
    The unique identifier of this Managed Object instance.
    oauthTokens GetIamAppRegistrationOauthToken[]
    objectType string
    operStatus string
    The current status of the App Registration that dictates the validity of the app.* enabled - An API key/App Registration having enabled status can be used for API invocation.* disabled - An API key/App Registration having disabled status cannot be used for API invocation.* expired - An API key/App Registration having expired status cannot be used for API invocation as the expiration date has passed.
    owners string[]
    parent GetIamAppRegistrationParent
    permission GetIamAppRegistrationPermission
    permissionResources GetIamAppRegistrationPermissionResource[]
    redirectUris string[]
    renewClientSecret boolean
    Set value to true to renew the client-secret. Applicable to client_credentials grant type.
    responseTypes string[]
    revocationTimestamp string
    Used to perform revocation for tokens of AppRegistration.Updated only internally is case Revoke property come from UI with value true.On each request with OAuth2 access token the CreationTime of the OAuth2 token will be compared to RevokationTimestamp of thecorresponding App Registration.
    revoke boolean
    Used to trigger update the revocationTimestamp value.If UI sent updating request with the Revoke value is true, then update RevocationTimestamp.
    roles GetIamAppRegistrationRole[]
    scope GetIamAppRegistrationScope
    securityHolder GetIamAppRegistrationSecurityHolder
    sharedScope string
    Intersight provides pre-built workflows, tasks and policies to end users through global catalogs.Objects that are made available through global catalogs are said to have a 'shared' ownership. Shared objects are either made globally available to all end users or restricted to end users based on their license entitlement. Users can use this property to differentiate the scope (global or a specific license tier) to which a shared MO belongs.
    showConsentScreen boolean
    Set to true if consent screen needs to be shown during the OAuth login process.Applicable only for public AppRegistrations, means only 'authorization_code' grantType.Note that consent screen will be shown on each login.
    startTime string
    The timestamp at which an expiry date was first set on this app registration. For expiring App Registrations, this field is same as the create time of the App Registration.For never-expiring App Registrations, this field is set initially to zero time value. If a never-expiry App Registration is later changed to have an expiration, the timestamp marking the start of this transition is recorded in this field.
    tags GetIamAppRegistrationTag[]
    tokenExpiry string
    Defines the expiry time of the token generated via the AppRegistration.* generic - This sets the expiryTime to ten minutes from the token issuing time.* longLived - This sets the expiryTime to an year from the token issuing time.* infinite - This allows for a never-expiring token. Use with caution.
    user GetIamAppRegistrationUser
    versionContext GetIamAppRegistrationVersionContext
    account GetIamAppRegistrationAccount
    account_moid str
    The Account ID for this managed object.
    additional_properties str
    admin_status str
    Used to trigger the enable or disable action on the App Registration. These actions change the status of an App Registration.* enable - Used to enable a disabled API key/App Registration. If the API key/App Registration is already expired, this action has no effect.* disable - Used to disable an active API key/App Registration. If the API key/App Registration is already expired, this action has no effect.
    ancestors Sequence[GetIamAppRegistrationAncestor]
    class_id str
    client_application GetIamAppRegistrationClientApplication
    client_id str
    A unique identifier for the OAuth2 client application.The client ID is auto-generated when the AppRegistration object is created.
    client_name str
    App Registration name specified by user.
    client_secret str
    The OAuth2 client secret.The value of this property is generated when grantType includes 'client-credentials'.Otherwise, no client-secret is generated.
    client_type str
    The type of the OAuth2 client (public or confidential), as specified in https://tools.ietf.org/html/rfc6749#section-2.1.* public - Clients incapable of maintaining the confidentiality of their credentials.This includes clients executing on the device used by the resource owner,such as mobile applications, installed native application or a webbrowser-based application.* confidential - Clients capable of maintaining the confidentiality of their credentials.For example, this could be a client implemented on a secure server withrestricted access to the client credentials.To maintain the confidentiality of the OAuth2 credentials, two use cases areconsidered.1) The application is running as a service within Intersight. The application automatically obtains the OAuth2 credentials when the application starts and the credentials are not exposed to the end-user. Because end-users (even account administrators) do not have access the OAuth2 credentials, they cannot take the credentials with them when they leave their organization.2) The application is under the control of a \ trusted\ end-user. For example, the end-user may create a native application running outside Intersight. The application uses OAuth2 credentials to interact with the Intersight API. In that case, the Intersight account administrator may generate OAuth2 credentials with a registered application using \ client_credentials\ grant type. In that case, the end-user is responsible for maintaining the confidentiality of the OAuth2 credentials. If the end-user leaves the organization, you should revoke the credentials and issue new Oauth2 credentials.Here is a possible workflow for handling OAuth2 tokens.1) User Alice (Intersight Account Administrator) logins to Intersight and deploys an Intersight application that requires an OAuth2 token.2) Intersight automatically deploys the application. The application is assigned a OAuth2 token, possibly linked to Alice. The application must NOT expose the OAuth2 secret to Alice, otherwise Alice would be able to use the token after she leaves the company.3) The application can make API calls to Intersight using its assigned OAuth2 token. For example, the application could make weekly scheduled API calls to Intersight.4) Separately, Alice may also get OAuth2 tokens that she can use to make API calls from the Intersight SDK through the northbound API. In that case, Alice will get the associated OAuth2 secrets, but not the one assigned in step #2.5) Alice leaves the organization. The OAuth2 tokens assigned in step #2 must retain their validity even after Alice has left the organization. Because the OAuth2 secrets were never shared with Alice, there is no risk Alice can reuse the OAuth2 secrets. On the other hand, the OAuth2 tokens assigned in step #4 must be invalidated because Alice had the OAuth2 tokens in her possession.
    create_time str
    The time when this managed object was created.
    description str
    Description of the application.
    domain_group_moid str
    The DomainGroup ID for this managed object.
    entity_id str
    EntityId holds the Id of the client application that is using this AppRegistration.
    expiry_date_time str
    The expiration date of the App Registration which is set at the time of its creation. Its value can only be assigned a date that falls within the range determined by the maximum expiration time configured at the account level. The expiry date can be edited to be earlier or later, provided it stays within the designated expiry period. This period is determined by adding the 'startTime' property of the App Registration to the maximum expiry time configured at the account level.
    grant_types Sequence[str]
    id str
    is_never_expiring bool
    Used to mark the App Registration as a never-expiring App Registration.
    last_used_ip str
    The ip address from which the App Registration was last used.
    last_used_time str
    The time at which the App Registration was last used. It is updated every 24 hours.
    mod_time str
    The time when this managed object was last modified.
    moid str
    The unique identifier of this Managed Object instance.
    oauth_tokens Sequence[GetIamAppRegistrationOauthToken]
    object_type str
    oper_status str
    The current status of the App Registration that dictates the validity of the app.* enabled - An API key/App Registration having enabled status can be used for API invocation.* disabled - An API key/App Registration having disabled status cannot be used for API invocation.* expired - An API key/App Registration having expired status cannot be used for API invocation as the expiration date has passed.
    owners Sequence[str]
    parent GetIamAppRegistrationParent
    permission GetIamAppRegistrationPermission
    permission_resources Sequence[GetIamAppRegistrationPermissionResource]
    redirect_uris Sequence[str]
    renew_client_secret bool
    Set value to true to renew the client-secret. Applicable to client_credentials grant type.
    response_types Sequence[str]
    revocation_timestamp str
    Used to perform revocation for tokens of AppRegistration.Updated only internally is case Revoke property come from UI with value true.On each request with OAuth2 access token the CreationTime of the OAuth2 token will be compared to RevokationTimestamp of thecorresponding App Registration.
    revoke bool
    Used to trigger update the revocationTimestamp value.If UI sent updating request with the Revoke value is true, then update RevocationTimestamp.
    roles Sequence[GetIamAppRegistrationRole]
    scope GetIamAppRegistrationScope
    security_holder GetIamAppRegistrationSecurityHolder
    shared_scope str
    Intersight provides pre-built workflows, tasks and policies to end users through global catalogs.Objects that are made available through global catalogs are said to have a 'shared' ownership. Shared objects are either made globally available to all end users or restricted to end users based on their license entitlement. Users can use this property to differentiate the scope (global or a specific license tier) to which a shared MO belongs.
    show_consent_screen bool
    Set to true if consent screen needs to be shown during the OAuth login process.Applicable only for public AppRegistrations, means only 'authorization_code' grantType.Note that consent screen will be shown on each login.
    start_time str
    The timestamp at which an expiry date was first set on this app registration. For expiring App Registrations, this field is same as the create time of the App Registration.For never-expiring App Registrations, this field is set initially to zero time value. If a never-expiry App Registration is later changed to have an expiration, the timestamp marking the start of this transition is recorded in this field.
    tags Sequence[GetIamAppRegistrationTag]
    token_expiry str
    Defines the expiry time of the token generated via the AppRegistration.* generic - This sets the expiryTime to ten minutes from the token issuing time.* longLived - This sets the expiryTime to an year from the token issuing time.* infinite - This allows for a never-expiring token. Use with caution.
    user GetIamAppRegistrationUser
    version_context GetIamAppRegistrationVersionContext
    account Property Map
    accountMoid String
    The Account ID for this managed object.
    additionalProperties String
    adminStatus String
    Used to trigger the enable or disable action on the App Registration. These actions change the status of an App Registration.* enable - Used to enable a disabled API key/App Registration. If the API key/App Registration is already expired, this action has no effect.* disable - Used to disable an active API key/App Registration. If the API key/App Registration is already expired, this action has no effect.
    ancestors List<Property Map>
    classId String
    clientApplication Property Map
    clientId String
    A unique identifier for the OAuth2 client application.The client ID is auto-generated when the AppRegistration object is created.
    clientName String
    App Registration name specified by user.
    clientSecret String
    The OAuth2 client secret.The value of this property is generated when grantType includes 'client-credentials'.Otherwise, no client-secret is generated.
    clientType String
    The type of the OAuth2 client (public or confidential), as specified in https://tools.ietf.org/html/rfc6749#section-2.1.* public - Clients incapable of maintaining the confidentiality of their credentials.This includes clients executing on the device used by the resource owner,such as mobile applications, installed native application or a webbrowser-based application.* confidential - Clients capable of maintaining the confidentiality of their credentials.For example, this could be a client implemented on a secure server withrestricted access to the client credentials.To maintain the confidentiality of the OAuth2 credentials, two use cases areconsidered.1) The application is running as a service within Intersight. The application automatically obtains the OAuth2 credentials when the application starts and the credentials are not exposed to the end-user. Because end-users (even account administrators) do not have access the OAuth2 credentials, they cannot take the credentials with them when they leave their organization.2) The application is under the control of a \ trusted\ end-user. For example, the end-user may create a native application running outside Intersight. The application uses OAuth2 credentials to interact with the Intersight API. In that case, the Intersight account administrator may generate OAuth2 credentials with a registered application using \ client_credentials\ grant type. In that case, the end-user is responsible for maintaining the confidentiality of the OAuth2 credentials. If the end-user leaves the organization, you should revoke the credentials and issue new Oauth2 credentials.Here is a possible workflow for handling OAuth2 tokens.1) User Alice (Intersight Account Administrator) logins to Intersight and deploys an Intersight application that requires an OAuth2 token.2) Intersight automatically deploys the application. The application is assigned a OAuth2 token, possibly linked to Alice. The application must NOT expose the OAuth2 secret to Alice, otherwise Alice would be able to use the token after she leaves the company.3) The application can make API calls to Intersight using its assigned OAuth2 token. For example, the application could make weekly scheduled API calls to Intersight.4) Separately, Alice may also get OAuth2 tokens that she can use to make API calls from the Intersight SDK through the northbound API. In that case, Alice will get the associated OAuth2 secrets, but not the one assigned in step #2.5) Alice leaves the organization. The OAuth2 tokens assigned in step #2 must retain their validity even after Alice has left the organization. Because the OAuth2 secrets were never shared with Alice, there is no risk Alice can reuse the OAuth2 secrets. On the other hand, the OAuth2 tokens assigned in step #4 must be invalidated because Alice had the OAuth2 tokens in her possession.
    createTime String
    The time when this managed object was created.
    description String
    Description of the application.
    domainGroupMoid String
    The DomainGroup ID for this managed object.
    entityId String
    EntityId holds the Id of the client application that is using this AppRegistration.
    expiryDateTime String
    The expiration date of the App Registration which is set at the time of its creation. Its value can only be assigned a date that falls within the range determined by the maximum expiration time configured at the account level. The expiry date can be edited to be earlier or later, provided it stays within the designated expiry period. This period is determined by adding the 'startTime' property of the App Registration to the maximum expiry time configured at the account level.
    grantTypes List<String>
    id String
    isNeverExpiring Boolean
    Used to mark the App Registration as a never-expiring App Registration.
    lastUsedIp String
    The ip address from which the App Registration was last used.
    lastUsedTime String
    The time at which the App Registration was last used. It is updated every 24 hours.
    modTime String
    The time when this managed object was last modified.
    moid String
    The unique identifier of this Managed Object instance.
    oauthTokens List<Property Map>
    objectType String
    operStatus String
    The current status of the App Registration that dictates the validity of the app.* enabled - An API key/App Registration having enabled status can be used for API invocation.* disabled - An API key/App Registration having disabled status cannot be used for API invocation.* expired - An API key/App Registration having expired status cannot be used for API invocation as the expiration date has passed.
    owners List<String>
    parent Property Map
    permission Property Map
    permissionResources List<Property Map>
    redirectUris List<String>
    renewClientSecret Boolean
    Set value to true to renew the client-secret. Applicable to client_credentials grant type.
    responseTypes List<String>
    revocationTimestamp String
    Used to perform revocation for tokens of AppRegistration.Updated only internally is case Revoke property come from UI with value true.On each request with OAuth2 access token the CreationTime of the OAuth2 token will be compared to RevokationTimestamp of thecorresponding App Registration.
    revoke Boolean
    Used to trigger update the revocationTimestamp value.If UI sent updating request with the Revoke value is true, then update RevocationTimestamp.
    roles List<Property Map>
    scope Property Map
    securityHolder Property Map
    sharedScope String
    Intersight provides pre-built workflows, tasks and policies to end users through global catalogs.Objects that are made available through global catalogs are said to have a 'shared' ownership. Shared objects are either made globally available to all end users or restricted to end users based on their license entitlement. Users can use this property to differentiate the scope (global or a specific license tier) to which a shared MO belongs.
    showConsentScreen Boolean
    Set to true if consent screen needs to be shown during the OAuth login process.Applicable only for public AppRegistrations, means only 'authorization_code' grantType.Note that consent screen will be shown on each login.
    startTime String
    The timestamp at which an expiry date was first set on this app registration. For expiring App Registrations, this field is same as the create time of the App Registration.For never-expiring App Registrations, this field is set initially to zero time value. If a never-expiry App Registration is later changed to have an expiration, the timestamp marking the start of this transition is recorded in this field.
    tags List<Property Map>
    tokenExpiry String
    Defines the expiry time of the token generated via the AppRegistration.* generic - This sets the expiryTime to ten minutes from the token issuing time.* longLived - This sets the expiryTime to an year from the token issuing time.* infinite - This allows for a never-expiring token. Use with caution.
    user Property Map
    versionContext Property Map

    getIamAppRegistration Result

    The following output properties are available:

    Id string
    Results List<GetIamAppRegistrationResult>
    Account GetIamAppRegistrationAccount
    AccountMoid string
    AdditionalProperties string
    AdminStatus string
    Ancestors List<GetIamAppRegistrationAncestor>
    ClassId string
    ClientApplication GetIamAppRegistrationClientApplication
    ClientId string
    ClientName string
    ClientSecret string
    ClientType string
    CreateTime string
    Description string
    DomainGroupMoid string
    EntityId string
    ExpiryDateTime string
    GrantTypes List<string>
    IsNeverExpiring bool
    LastUsedIp string
    LastUsedTime string
    ModTime string
    Moid string
    OauthTokens List<GetIamAppRegistrationOauthToken>
    ObjectType string
    OperStatus string
    Owners List<string>
    Parent GetIamAppRegistrationParent
    Permission GetIamAppRegistrationPermission
    PermissionResources List<GetIamAppRegistrationPermissionResource>
    RedirectUris List<string>
    RenewClientSecret bool
    ResponseTypes List<string>
    RevocationTimestamp string
    Revoke bool
    Roles List<GetIamAppRegistrationRole>
    Scope GetIamAppRegistrationScope
    SecurityHolder GetIamAppRegistrationSecurityHolder
    SharedScope string
    ShowConsentScreen bool
    StartTime string
    Tags List<GetIamAppRegistrationTag>
    TokenExpiry string
    User GetIamAppRegistrationUser
    VersionContext GetIamAppRegistrationVersionContext
    Id string
    Results []GetIamAppRegistrationResult
    Account GetIamAppRegistrationAccount
    AccountMoid string
    AdditionalProperties string
    AdminStatus string
    Ancestors []GetIamAppRegistrationAncestor
    ClassId string
    ClientApplication GetIamAppRegistrationClientApplication
    ClientId string
    ClientName string
    ClientSecret string
    ClientType string
    CreateTime string
    Description string
    DomainGroupMoid string
    EntityId string
    ExpiryDateTime string
    GrantTypes []string
    IsNeverExpiring bool
    LastUsedIp string
    LastUsedTime string
    ModTime string
    Moid string
    OauthTokens []GetIamAppRegistrationOauthToken
    ObjectType string
    OperStatus string
    Owners []string
    Parent GetIamAppRegistrationParent
    Permission GetIamAppRegistrationPermission
    PermissionResources []GetIamAppRegistrationPermissionResource
    RedirectUris []string
    RenewClientSecret bool
    ResponseTypes []string
    RevocationTimestamp string
    Revoke bool
    Roles []GetIamAppRegistrationRole
    Scope GetIamAppRegistrationScope
    SecurityHolder GetIamAppRegistrationSecurityHolder
    SharedScope string
    ShowConsentScreen bool
    StartTime string
    Tags []GetIamAppRegistrationTag
    TokenExpiry string
    User GetIamAppRegistrationUser
    VersionContext GetIamAppRegistrationVersionContext
    id String
    results List<GetIamAppRegistrationResult>
    account GetIamAppRegistrationAccount
    accountMoid String
    additionalProperties String
    adminStatus String
    ancestors List<GetIamAppRegistrationAncestor>
    classId String
    clientApplication GetIamAppRegistrationClientApplication
    clientId String
    clientName String
    clientSecret String
    clientType String
    createTime String
    description String
    domainGroupMoid String
    entityId String
    expiryDateTime String
    grantTypes List<String>
    isNeverExpiring Boolean
    lastUsedIp String
    lastUsedTime String
    modTime String
    moid String
    oauthTokens List<GetIamAppRegistrationOauthToken>
    objectType String
    operStatus String
    owners List<String>
    parent GetIamAppRegistrationParent
    permission GetIamAppRegistrationPermission
    permissionResources List<GetIamAppRegistrationPermissionResource>
    redirectUris List<String>
    renewClientSecret Boolean
    responseTypes List<String>
    revocationTimestamp String
    revoke Boolean
    roles List<GetIamAppRegistrationRole>
    scope GetIamAppRegistrationScope
    securityHolder GetIamAppRegistrationSecurityHolder
    sharedScope String
    showConsentScreen Boolean
    startTime String
    tags List<GetIamAppRegistrationTag>
    tokenExpiry String
    user GetIamAppRegistrationUser
    versionContext GetIamAppRegistrationVersionContext
    id string
    results GetIamAppRegistrationResult[]
    account GetIamAppRegistrationAccount
    accountMoid string
    additionalProperties string
    adminStatus string
    ancestors GetIamAppRegistrationAncestor[]
    classId string
    clientApplication GetIamAppRegistrationClientApplication
    clientId string
    clientName string
    clientSecret string
    clientType string
    createTime string
    description string
    domainGroupMoid string
    entityId string
    expiryDateTime string
    grantTypes string[]
    isNeverExpiring boolean
    lastUsedIp string
    lastUsedTime string
    modTime string
    moid string
    oauthTokens GetIamAppRegistrationOauthToken[]
    objectType string
    operStatus string
    owners string[]
    parent GetIamAppRegistrationParent
    permission GetIamAppRegistrationPermission
    permissionResources GetIamAppRegistrationPermissionResource[]
    redirectUris string[]
    renewClientSecret boolean
    responseTypes string[]
    revocationTimestamp string
    revoke boolean
    roles GetIamAppRegistrationRole[]
    scope GetIamAppRegistrationScope
    securityHolder GetIamAppRegistrationSecurityHolder
    sharedScope string
    showConsentScreen boolean
    startTime string
    tags GetIamAppRegistrationTag[]
    tokenExpiry string
    user GetIamAppRegistrationUser
    versionContext GetIamAppRegistrationVersionContext
    id str
    results Sequence[GetIamAppRegistrationResult]
    account GetIamAppRegistrationAccount
    account_moid str
    additional_properties str
    admin_status str
    ancestors Sequence[GetIamAppRegistrationAncestor]
    class_id str
    client_application GetIamAppRegistrationClientApplication
    client_id str
    client_name str
    client_secret str
    client_type str
    create_time str
    description str
    domain_group_moid str
    entity_id str
    expiry_date_time str
    grant_types Sequence[str]
    is_never_expiring bool
    last_used_ip str
    last_used_time str
    mod_time str
    moid str
    oauth_tokens Sequence[GetIamAppRegistrationOauthToken]
    object_type str
    oper_status str
    owners Sequence[str]
    parent GetIamAppRegistrationParent
    permission GetIamAppRegistrationPermission
    permission_resources Sequence[GetIamAppRegistrationPermissionResource]
    redirect_uris Sequence[str]
    renew_client_secret bool
    response_types Sequence[str]
    revocation_timestamp str
    revoke bool
    roles Sequence[GetIamAppRegistrationRole]
    scope GetIamAppRegistrationScope
    security_holder GetIamAppRegistrationSecurityHolder
    shared_scope str
    show_consent_screen bool
    start_time str
    tags Sequence[GetIamAppRegistrationTag]
    token_expiry str
    user GetIamAppRegistrationUser
    version_context GetIamAppRegistrationVersionContext
    id String
    results List<Property Map>
    account Property Map
    accountMoid String
    additionalProperties String
    adminStatus String
    ancestors List<Property Map>
    classId String
    clientApplication Property Map
    clientId String
    clientName String
    clientSecret String
    clientType String
    createTime String
    description String
    domainGroupMoid String
    entityId String
    expiryDateTime String
    grantTypes List<String>
    isNeverExpiring Boolean
    lastUsedIp String
    lastUsedTime String
    modTime String
    moid String
    oauthTokens List<Property Map>
    objectType String
    operStatus String
    owners List<String>
    parent Property Map
    permission Property Map
    permissionResources List<Property Map>
    redirectUris List<String>
    renewClientSecret Boolean
    responseTypes List<String>
    revocationTimestamp String
    revoke Boolean
    roles List<Property Map>
    scope Property Map
    securityHolder Property Map
    sharedScope String
    showConsentScreen Boolean
    startTime String
    tags List<Property Map>
    tokenExpiry String
    user Property Map
    versionContext Property Map

    Supporting Types

    GetIamAppRegistrationAccount

    AdditionalProperties string
    ClassId string
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    Moid string
    The unique identifier of this Managed Object instance.
    ObjectType string
    The fully-qualified name of the remote type referred by this relationship.
    Selector string
    An OData $filter expression which describes the REST resource to be referenced. This field may be set instead of 'moid' by clients.

    1. If 'moid' is set this field is ignored.
    2. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of the resource matching the filter expression and populates it in the MoRef that is part of the object instance being inserted/updated to fulfill the REST request. An error is returned if the filter matches zero or more than one REST resource. An example filter string is: Serial eq '3AA8B7T11'.
    AdditionalProperties string
    ClassId string
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    Moid string
    The unique identifier of this Managed Object instance.
    ObjectType string
    The fully-qualified name of the remote type referred by this relationship.
    Selector string
    An OData $filter expression which describes the REST resource to be referenced. This field may be set instead of 'moid' by clients.

    1. If 'moid' is set this field is ignored.
    2. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of the resource matching the filter expression and populates it in the MoRef that is part of the object instance being inserted/updated to fulfill the REST request. An error is returned if the filter matches zero or more than one REST resource. An example filter string is: Serial eq '3AA8B7T11'.
    additionalProperties String
    classId String
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    moid String
    The unique identifier of this Managed Object instance.
    objectType String
    The fully-qualified name of the remote type referred by this relationship.
    selector String
    An OData $filter expression which describes the REST resource to be referenced. This field may be set instead of 'moid' by clients.

    1. If 'moid' is set this field is ignored.
    2. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of the resource matching the filter expression and populates it in the MoRef that is part of the object instance being inserted/updated to fulfill the REST request. An error is returned if the filter matches zero or more than one REST resource. An example filter string is: Serial eq '3AA8B7T11'.
    additionalProperties string
    classId string
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    moid string
    The unique identifier of this Managed Object instance.
    objectType string
    The fully-qualified name of the remote type referred by this relationship.
    selector string
    An OData $filter expression which describes the REST resource to be referenced. This field may be set instead of 'moid' by clients.

    1. If 'moid' is set this field is ignored.
    2. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of the resource matching the filter expression and populates it in the MoRef that is part of the object instance being inserted/updated to fulfill the REST request. An error is returned if the filter matches zero or more than one REST resource. An example filter string is: Serial eq '3AA8B7T11'.
    additional_properties str
    class_id str
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    moid str
    The unique identifier of this Managed Object instance.
    object_type str
    The fully-qualified name of the remote type referred by this relationship.
    selector str
    An OData $filter expression which describes the REST resource to be referenced. This field may be set instead of 'moid' by clients.

    1. If 'moid' is set this field is ignored.
    2. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of the resource matching the filter expression and populates it in the MoRef that is part of the object instance being inserted/updated to fulfill the REST request. An error is returned if the filter matches zero or more than one REST resource. An example filter string is: Serial eq '3AA8B7T11'.
    additionalProperties String
    classId String
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    moid String
    The unique identifier of this Managed Object instance.
    objectType String
    The fully-qualified name of the remote type referred by this relationship.
    selector String
    An OData $filter expression which describes the REST resource to be referenced. This field may be set instead of 'moid' by clients.

    1. If 'moid' is set this field is ignored.
    2. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of the resource matching the filter expression and populates it in the MoRef that is part of the object instance being inserted/updated to fulfill the REST request. An error is returned if the filter matches zero or more than one REST resource. An example filter string is: Serial eq '3AA8B7T11'.

    GetIamAppRegistrationAncestor

    AdditionalProperties string
    ClassId string
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    Moid string
    The unique identifier of this Managed Object instance.
    ObjectType string
    The fully-qualified name of the remote type referred by this relationship.
    Selector string
    An OData $filter expression which describes the REST resource to be referenced. This field may be set instead of 'moid' by clients.

    1. If 'moid' is set this field is ignored.
    2. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of the resource matching the filter expression and populates it in the MoRef that is part of the object instance being inserted/updated to fulfill the REST request. An error is returned if the filter matches zero or more than one REST resource. An example filter string is: Serial eq '3AA8B7T11'.
    AdditionalProperties string
    ClassId string
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    Moid string
    The unique identifier of this Managed Object instance.
    ObjectType string
    The fully-qualified name of the remote type referred by this relationship.
    Selector string
    An OData $filter expression which describes the REST resource to be referenced. This field may be set instead of 'moid' by clients.

    1. If 'moid' is set this field is ignored.
    2. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of the resource matching the filter expression and populates it in the MoRef that is part of the object instance being inserted/updated to fulfill the REST request. An error is returned if the filter matches zero or more than one REST resource. An example filter string is: Serial eq '3AA8B7T11'.
    additionalProperties String
    classId String
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    moid String
    The unique identifier of this Managed Object instance.
    objectType String
    The fully-qualified name of the remote type referred by this relationship.
    selector String
    An OData $filter expression which describes the REST resource to be referenced. This field may be set instead of 'moid' by clients.

    1. If 'moid' is set this field is ignored.
    2. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of the resource matching the filter expression and populates it in the MoRef that is part of the object instance being inserted/updated to fulfill the REST request. An error is returned if the filter matches zero or more than one REST resource. An example filter string is: Serial eq '3AA8B7T11'.
    additionalProperties string
    classId string
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    moid string
    The unique identifier of this Managed Object instance.
    objectType string
    The fully-qualified name of the remote type referred by this relationship.
    selector string
    An OData $filter expression which describes the REST resource to be referenced. This field may be set instead of 'moid' by clients.

    1. If 'moid' is set this field is ignored.
    2. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of the resource matching the filter expression and populates it in the MoRef that is part of the object instance being inserted/updated to fulfill the REST request. An error is returned if the filter matches zero or more than one REST resource. An example filter string is: Serial eq '3AA8B7T11'.
    additional_properties str
    class_id str
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    moid str
    The unique identifier of this Managed Object instance.
    object_type str
    The fully-qualified name of the remote type referred by this relationship.
    selector str
    An OData $filter expression which describes the REST resource to be referenced. This field may be set instead of 'moid' by clients.

    1. If 'moid' is set this field is ignored.
    2. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of the resource matching the filter expression and populates it in the MoRef that is part of the object instance being inserted/updated to fulfill the REST request. An error is returned if the filter matches zero or more than one REST resource. An example filter string is: Serial eq '3AA8B7T11'.
    additionalProperties String
    classId String
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    moid String
    The unique identifier of this Managed Object instance.
    objectType String
    The fully-qualified name of the remote type referred by this relationship.
    selector String
    An OData $filter expression which describes the REST resource to be referenced. This field may be set instead of 'moid' by clients.

    1. If 'moid' is set this field is ignored.
    2. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of the resource matching the filter expression and populates it in the MoRef that is part of the object instance being inserted/updated to fulfill the REST request. An error is returned if the filter matches zero or more than one REST resource. An example filter string is: Serial eq '3AA8B7T11'.

    GetIamAppRegistrationClientApplication

    AdditionalProperties string
    ClassId string
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    Moid string
    The unique identifier of this Managed Object instance.
    ObjectType string
    The fully-qualified name of the remote type referred by this relationship.
    Selector string
    An OData $filter expression which describes the REST resource to be referenced. This field may be set instead of 'moid' by clients.

    1. If 'moid' is set this field is ignored.
    2. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of the resource matching the filter expression and populates it in the MoRef that is part of the object instance being inserted/updated to fulfill the REST request. An error is returned if the filter matches zero or more than one REST resource. An example filter string is: Serial eq '3AA8B7T11'.
    AdditionalProperties string
    ClassId string
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    Moid string
    The unique identifier of this Managed Object instance.
    ObjectType string
    The fully-qualified name of the remote type referred by this relationship.
    Selector string
    An OData $filter expression which describes the REST resource to be referenced. This field may be set instead of 'moid' by clients.

    1. If 'moid' is set this field is ignored.
    2. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of the resource matching the filter expression and populates it in the MoRef that is part of the object instance being inserted/updated to fulfill the REST request. An error is returned if the filter matches zero or more than one REST resource. An example filter string is: Serial eq '3AA8B7T11'.
    additionalProperties String
    classId String
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    moid String
    The unique identifier of this Managed Object instance.
    objectType String
    The fully-qualified name of the remote type referred by this relationship.
    selector String
    An OData $filter expression which describes the REST resource to be referenced. This field may be set instead of 'moid' by clients.

    1. If 'moid' is set this field is ignored.
    2. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of the resource matching the filter expression and populates it in the MoRef that is part of the object instance being inserted/updated to fulfill the REST request. An error is returned if the filter matches zero or more than one REST resource. An example filter string is: Serial eq '3AA8B7T11'.
    additionalProperties string
    classId string
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    moid string
    The unique identifier of this Managed Object instance.
    objectType string
    The fully-qualified name of the remote type referred by this relationship.
    selector string
    An OData $filter expression which describes the REST resource to be referenced. This field may be set instead of 'moid' by clients.

    1. If 'moid' is set this field is ignored.
    2. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of the resource matching the filter expression and populates it in the MoRef that is part of the object instance being inserted/updated to fulfill the REST request. An error is returned if the filter matches zero or more than one REST resource. An example filter string is: Serial eq '3AA8B7T11'.
    additional_properties str
    class_id str
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    moid str
    The unique identifier of this Managed Object instance.
    object_type str
    The fully-qualified name of the remote type referred by this relationship.
    selector str
    An OData $filter expression which describes the REST resource to be referenced. This field may be set instead of 'moid' by clients.

    1. If 'moid' is set this field is ignored.
    2. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of the resource matching the filter expression and populates it in the MoRef that is part of the object instance being inserted/updated to fulfill the REST request. An error is returned if the filter matches zero or more than one REST resource. An example filter string is: Serial eq '3AA8B7T11'.
    additionalProperties String
    classId String
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    moid String
    The unique identifier of this Managed Object instance.
    objectType String
    The fully-qualified name of the remote type referred by this relationship.
    selector String
    An OData $filter expression which describes the REST resource to be referenced. This field may be set instead of 'moid' by clients.

    1. If 'moid' is set this field is ignored.
    2. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of the resource matching the filter expression and populates it in the MoRef that is part of the object instance being inserted/updated to fulfill the REST request. An error is returned if the filter matches zero or more than one REST resource. An example filter string is: Serial eq '3AA8B7T11'.

    GetIamAppRegistrationOauthToken

    AdditionalProperties string
    ClassId string
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    Moid string
    The unique identifier of this Managed Object instance.
    ObjectType string
    The fully-qualified name of the remote type referred by this relationship.
    Selector string
    An OData $filter expression which describes the REST resource to be referenced. This field may be set instead of 'moid' by clients.

    1. If 'moid' is set this field is ignored.
    2. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of the resource matching the filter expression and populates it in the MoRef that is part of the object instance being inserted/updated to fulfill the REST request. An error is returned if the filter matches zero or more than one REST resource. An example filter string is: Serial eq '3AA8B7T11'.
    AdditionalProperties string
    ClassId string
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    Moid string
    The unique identifier of this Managed Object instance.
    ObjectType string
    The fully-qualified name of the remote type referred by this relationship.
    Selector string
    An OData $filter expression which describes the REST resource to be referenced. This field may be set instead of 'moid' by clients.

    1. If 'moid' is set this field is ignored.
    2. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of the resource matching the filter expression and populates it in the MoRef that is part of the object instance being inserted/updated to fulfill the REST request. An error is returned if the filter matches zero or more than one REST resource. An example filter string is: Serial eq '3AA8B7T11'.
    additionalProperties String
    classId String
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    moid String
    The unique identifier of this Managed Object instance.
    objectType String
    The fully-qualified name of the remote type referred by this relationship.
    selector String
    An OData $filter expression which describes the REST resource to be referenced. This field may be set instead of 'moid' by clients.

    1. If 'moid' is set this field is ignored.
    2. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of the resource matching the filter expression and populates it in the MoRef that is part of the object instance being inserted/updated to fulfill the REST request. An error is returned if the filter matches zero or more than one REST resource. An example filter string is: Serial eq '3AA8B7T11'.
    additionalProperties string
    classId string
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    moid string
    The unique identifier of this Managed Object instance.
    objectType string
    The fully-qualified name of the remote type referred by this relationship.
    selector string
    An OData $filter expression which describes the REST resource to be referenced. This field may be set instead of 'moid' by clients.

    1. If 'moid' is set this field is ignored.
    2. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of the resource matching the filter expression and populates it in the MoRef that is part of the object instance being inserted/updated to fulfill the REST request. An error is returned if the filter matches zero or more than one REST resource. An example filter string is: Serial eq '3AA8B7T11'.
    additional_properties str
    class_id str
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    moid str
    The unique identifier of this Managed Object instance.
    object_type str
    The fully-qualified name of the remote type referred by this relationship.
    selector str
    An OData $filter expression which describes the REST resource to be referenced. This field may be set instead of 'moid' by clients.

    1. If 'moid' is set this field is ignored.
    2. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of the resource matching the filter expression and populates it in the MoRef that is part of the object instance being inserted/updated to fulfill the REST request. An error is returned if the filter matches zero or more than one REST resource. An example filter string is: Serial eq '3AA8B7T11'.
    additionalProperties String
    classId String
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    moid String
    The unique identifier of this Managed Object instance.
    objectType String
    The fully-qualified name of the remote type referred by this relationship.
    selector String
    An OData $filter expression which describes the REST resource to be referenced. This field may be set instead of 'moid' by clients.

    1. If 'moid' is set this field is ignored.
    2. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of the resource matching the filter expression and populates it in the MoRef that is part of the object instance being inserted/updated to fulfill the REST request. An error is returned if the filter matches zero or more than one REST resource. An example filter string is: Serial eq '3AA8B7T11'.

    GetIamAppRegistrationParent

    AdditionalProperties string
    ClassId string
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    Moid string
    The unique identifier of this Managed Object instance.
    ObjectType string
    The fully-qualified name of the remote type referred by this relationship.
    Selector string
    An OData $filter expression which describes the REST resource to be referenced. This field may be set instead of 'moid' by clients.

    1. If 'moid' is set this field is ignored.
    2. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of the resource matching the filter expression and populates it in the MoRef that is part of the object instance being inserted/updated to fulfill the REST request. An error is returned if the filter matches zero or more than one REST resource. An example filter string is: Serial eq '3AA8B7T11'.
    AdditionalProperties string
    ClassId string
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    Moid string
    The unique identifier of this Managed Object instance.
    ObjectType string
    The fully-qualified name of the remote type referred by this relationship.
    Selector string
    An OData $filter expression which describes the REST resource to be referenced. This field may be set instead of 'moid' by clients.

    1. If 'moid' is set this field is ignored.
    2. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of the resource matching the filter expression and populates it in the MoRef that is part of the object instance being inserted/updated to fulfill the REST request. An error is returned if the filter matches zero or more than one REST resource. An example filter string is: Serial eq '3AA8B7T11'.
    additionalProperties String
    classId String
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    moid String
    The unique identifier of this Managed Object instance.
    objectType String
    The fully-qualified name of the remote type referred by this relationship.
    selector String
    An OData $filter expression which describes the REST resource to be referenced. This field may be set instead of 'moid' by clients.

    1. If 'moid' is set this field is ignored.
    2. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of the resource matching the filter expression and populates it in the MoRef that is part of the object instance being inserted/updated to fulfill the REST request. An error is returned if the filter matches zero or more than one REST resource. An example filter string is: Serial eq '3AA8B7T11'.
    additionalProperties string
    classId string
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    moid string
    The unique identifier of this Managed Object instance.
    objectType string
    The fully-qualified name of the remote type referred by this relationship.
    selector string
    An OData $filter expression which describes the REST resource to be referenced. This field may be set instead of 'moid' by clients.

    1. If 'moid' is set this field is ignored.
    2. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of the resource matching the filter expression and populates it in the MoRef that is part of the object instance being inserted/updated to fulfill the REST request. An error is returned if the filter matches zero or more than one REST resource. An example filter string is: Serial eq '3AA8B7T11'.
    additional_properties str
    class_id str
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    moid str
    The unique identifier of this Managed Object instance.
    object_type str
    The fully-qualified name of the remote type referred by this relationship.
    selector str
    An OData $filter expression which describes the REST resource to be referenced. This field may be set instead of 'moid' by clients.

    1. If 'moid' is set this field is ignored.
    2. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of the resource matching the filter expression and populates it in the MoRef that is part of the object instance being inserted/updated to fulfill the REST request. An error is returned if the filter matches zero or more than one REST resource. An example filter string is: Serial eq '3AA8B7T11'.
    additionalProperties String
    classId String
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    moid String
    The unique identifier of this Managed Object instance.
    objectType String
    The fully-qualified name of the remote type referred by this relationship.
    selector String
    An OData $filter expression which describes the REST resource to be referenced. This field may be set instead of 'moid' by clients.

    1. If 'moid' is set this field is ignored.
    2. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of the resource matching the filter expression and populates it in the MoRef that is part of the object instance being inserted/updated to fulfill the REST request. An error is returned if the filter matches zero or more than one REST resource. An example filter string is: Serial eq '3AA8B7T11'.

    GetIamAppRegistrationPermission

    AdditionalProperties string
    ClassId string
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    Moid string
    The unique identifier of this Managed Object instance.
    ObjectType string
    The fully-qualified name of the remote type referred by this relationship.
    Selector string
    An OData $filter expression which describes the REST resource to be referenced. This field may be set instead of 'moid' by clients.

    1. If 'moid' is set this field is ignored.
    2. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of the resource matching the filter expression and populates it in the MoRef that is part of the object instance being inserted/updated to fulfill the REST request. An error is returned if the filter matches zero or more than one REST resource. An example filter string is: Serial eq '3AA8B7T11'.
    AdditionalProperties string
    ClassId string
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    Moid string
    The unique identifier of this Managed Object instance.
    ObjectType string
    The fully-qualified name of the remote type referred by this relationship.
    Selector string
    An OData $filter expression which describes the REST resource to be referenced. This field may be set instead of 'moid' by clients.

    1. If 'moid' is set this field is ignored.
    2. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of the resource matching the filter expression and populates it in the MoRef that is part of the object instance being inserted/updated to fulfill the REST request. An error is returned if the filter matches zero or more than one REST resource. An example filter string is: Serial eq '3AA8B7T11'.
    additionalProperties String
    classId String
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    moid String
    The unique identifier of this Managed Object instance.
    objectType String
    The fully-qualified name of the remote type referred by this relationship.
    selector String
    An OData $filter expression which describes the REST resource to be referenced. This field may be set instead of 'moid' by clients.

    1. If 'moid' is set this field is ignored.
    2. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of the resource matching the filter expression and populates it in the MoRef that is part of the object instance being inserted/updated to fulfill the REST request. An error is returned if the filter matches zero or more than one REST resource. An example filter string is: Serial eq '3AA8B7T11'.
    additionalProperties string
    classId string
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    moid string
    The unique identifier of this Managed Object instance.
    objectType string
    The fully-qualified name of the remote type referred by this relationship.
    selector string
    An OData $filter expression which describes the REST resource to be referenced. This field may be set instead of 'moid' by clients.

    1. If 'moid' is set this field is ignored.
    2. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of the resource matching the filter expression and populates it in the MoRef that is part of the object instance being inserted/updated to fulfill the REST request. An error is returned if the filter matches zero or more than one REST resource. An example filter string is: Serial eq '3AA8B7T11'.
    additional_properties str
    class_id str
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    moid str
    The unique identifier of this Managed Object instance.
    object_type str
    The fully-qualified name of the remote type referred by this relationship.
    selector str
    An OData $filter expression which describes the REST resource to be referenced. This field may be set instead of 'moid' by clients.

    1. If 'moid' is set this field is ignored.
    2. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of the resource matching the filter expression and populates it in the MoRef that is part of the object instance being inserted/updated to fulfill the REST request. An error is returned if the filter matches zero or more than one REST resource. An example filter string is: Serial eq '3AA8B7T11'.
    additionalProperties String
    classId String
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    moid String
    The unique identifier of this Managed Object instance.
    objectType String
    The fully-qualified name of the remote type referred by this relationship.
    selector String
    An OData $filter expression which describes the REST resource to be referenced. This field may be set instead of 'moid' by clients.

    1. If 'moid' is set this field is ignored.
    2. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of the resource matching the filter expression and populates it in the MoRef that is part of the object instance being inserted/updated to fulfill the REST request. An error is returned if the filter matches zero or more than one REST resource. An example filter string is: Serial eq '3AA8B7T11'.

    GetIamAppRegistrationPermissionResource

    AdditionalProperties string
    ClassId string
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    Moid string
    The unique identifier of this Managed Object instance.
    ObjectType string
    The fully-qualified name of the remote type referred by this relationship.
    Selector string
    An OData $filter expression which describes the REST resource to be referenced. This field may be set instead of 'moid' by clients.

    1. If 'moid' is set this field is ignored.
    2. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of the resource matching the filter expression and populates it in the MoRef that is part of the object instance being inserted/updated to fulfill the REST request. An error is returned if the filter matches zero or more than one REST resource. An example filter string is: Serial eq '3AA8B7T11'.
    AdditionalProperties string
    ClassId string
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    Moid string
    The unique identifier of this Managed Object instance.
    ObjectType string
    The fully-qualified name of the remote type referred by this relationship.
    Selector string
    An OData $filter expression which describes the REST resource to be referenced. This field may be set instead of 'moid' by clients.

    1. If 'moid' is set this field is ignored.
    2. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of the resource matching the filter expression and populates it in the MoRef that is part of the object instance being inserted/updated to fulfill the REST request. An error is returned if the filter matches zero or more than one REST resource. An example filter string is: Serial eq '3AA8B7T11'.
    additionalProperties String
    classId String
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    moid String
    The unique identifier of this Managed Object instance.
    objectType String
    The fully-qualified name of the remote type referred by this relationship.
    selector String
    An OData $filter expression which describes the REST resource to be referenced. This field may be set instead of 'moid' by clients.

    1. If 'moid' is set this field is ignored.
    2. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of the resource matching the filter expression and populates it in the MoRef that is part of the object instance being inserted/updated to fulfill the REST request. An error is returned if the filter matches zero or more than one REST resource. An example filter string is: Serial eq '3AA8B7T11'.
    additionalProperties string
    classId string
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    moid string
    The unique identifier of this Managed Object instance.
    objectType string
    The fully-qualified name of the remote type referred by this relationship.
    selector string
    An OData $filter expression which describes the REST resource to be referenced. This field may be set instead of 'moid' by clients.

    1. If 'moid' is set this field is ignored.
    2. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of the resource matching the filter expression and populates it in the MoRef that is part of the object instance being inserted/updated to fulfill the REST request. An error is returned if the filter matches zero or more than one REST resource. An example filter string is: Serial eq '3AA8B7T11'.
    additional_properties str
    class_id str
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    moid str
    The unique identifier of this Managed Object instance.
    object_type str
    The fully-qualified name of the remote type referred by this relationship.
    selector str
    An OData $filter expression which describes the REST resource to be referenced. This field may be set instead of 'moid' by clients.

    1. If 'moid' is set this field is ignored.
    2. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of the resource matching the filter expression and populates it in the MoRef that is part of the object instance being inserted/updated to fulfill the REST request. An error is returned if the filter matches zero or more than one REST resource. An example filter string is: Serial eq '3AA8B7T11'.
    additionalProperties String
    classId String
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    moid String
    The unique identifier of this Managed Object instance.
    objectType String
    The fully-qualified name of the remote type referred by this relationship.
    selector String
    An OData $filter expression which describes the REST resource to be referenced. This field may be set instead of 'moid' by clients.

    1. If 'moid' is set this field is ignored.
    2. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of the resource matching the filter expression and populates it in the MoRef that is part of the object instance being inserted/updated to fulfill the REST request. An error is returned if the filter matches zero or more than one REST resource. An example filter string is: Serial eq '3AA8B7T11'.

    GetIamAppRegistrationResult

    AccountMoid string
    The Account ID for this managed object.
    Accounts List<GetIamAppRegistrationResultAccount>
    AdditionalProperties string
    AdminStatus string
    Used to trigger the enable or disable action on the App Registration. These actions change the status of an App Registration.* enable - Used to enable a disabled API key/App Registration. If the API key/App Registration is already expired, this action has no effect.* disable - Used to disable an active API key/App Registration. If the API key/App Registration is already expired, this action has no effect.
    Ancestors List<GetIamAppRegistrationResultAncestor>
    ClassId string
    ClientApplications List<GetIamAppRegistrationResultClientApplication>
    ClientId string
    A unique identifier for the OAuth2 client application.The client ID is auto-generated when the AppRegistration object is created.
    ClientName string
    App Registration name specified by user.
    ClientSecret string
    The OAuth2 client secret.The value of this property is generated when grantType includes 'client-credentials'.Otherwise, no client-secret is generated.
    ClientType string
    The type of the OAuth2 client (public or confidential), as specified in https://tools.ietf.org/html/rfc6749#section-2.1.* public - Clients incapable of maintaining the confidentiality of their credentials.This includes clients executing on the device used by the resource owner,such as mobile applications, installed native application or a webbrowser-based application.* confidential - Clients capable of maintaining the confidentiality of their credentials.For example, this could be a client implemented on a secure server withrestricted access to the client credentials.To maintain the confidentiality of the OAuth2 credentials, two use cases areconsidered.1) The application is running as a service within Intersight. The application automatically obtains the OAuth2 credentials when the application starts and the credentials are not exposed to the end-user. Because end-users (even account administrators) do not have access the OAuth2 credentials, they cannot take the credentials with them when they leave their organization.2) The application is under the control of a \ trusted\ end-user. For example, the end-user may create a native application running outside Intersight. The application uses OAuth2 credentials to interact with the Intersight API. In that case, the Intersight account administrator may generate OAuth2 credentials with a registered application using \ client_credentials\ grant type. In that case, the end-user is responsible for maintaining the confidentiality of the OAuth2 credentials. If the end-user leaves the organization, you should revoke the credentials and issue new Oauth2 credentials.Here is a possible workflow for handling OAuth2 tokens.1) User Alice (Intersight Account Administrator) logins to Intersight and deploys an Intersight application that requires an OAuth2 token.2) Intersight automatically deploys the application. The application is assigned a OAuth2 token, possibly linked to Alice. The application must NOT expose the OAuth2 secret to Alice, otherwise Alice would be able to use the token after she leaves the company.3) The application can make API calls to Intersight using its assigned OAuth2 token. For example, the application could make weekly scheduled API calls to Intersight.4) Separately, Alice may also get OAuth2 tokens that she can use to make API calls from the Intersight SDK through the northbound API. In that case, Alice will get the associated OAuth2 secrets, but not the one assigned in step #2.5) Alice leaves the organization. The OAuth2 tokens assigned in step #2 must retain their validity even after Alice has left the organization. Because the OAuth2 secrets were never shared with Alice, there is no risk Alice can reuse the OAuth2 secrets. On the other hand, the OAuth2 tokens assigned in step #4 must be invalidated because Alice had the OAuth2 tokens in her possession.
    CreateTime string
    The time when this managed object was created.
    Description string
    Description of the application.
    DomainGroupMoid string
    The DomainGroup ID for this managed object.
    EntityId string
    EntityId holds the Id of the client application that is using this AppRegistration.
    ExpiryDateTime string
    The expiration date of the App Registration which is set at the time of its creation. Its value can only be assigned a date that falls within the range determined by the maximum expiration time configured at the account level. The expiry date can be edited to be earlier or later, provided it stays within the designated expiry period. This period is determined by adding the 'startTime' property of the App Registration to the maximum expiry time configured at the account level.
    GrantTypes List<string>
    IsNeverExpiring bool
    Used to mark the App Registration as a never-expiring App Registration.
    LastUsedIp string
    The ip address from which the App Registration was last used.
    LastUsedTime string
    The time at which the App Registration was last used. It is updated every 24 hours.
    ModTime string
    The time when this managed object was last modified.
    Moid string
    The unique identifier of this Managed Object instance.
    OauthTokens List<GetIamAppRegistrationResultOauthToken>
    ObjectType string
    OperStatus string
    The current status of the App Registration that dictates the validity of the app.* enabled - An API key/App Registration having enabled status can be used for API invocation.* disabled - An API key/App Registration having disabled status cannot be used for API invocation.* expired - An API key/App Registration having expired status cannot be used for API invocation as the expiration date has passed.
    Owners List<string>
    Parents List<GetIamAppRegistrationResultParent>
    PermissionResources List<GetIamAppRegistrationResultPermissionResource>
    Permissions List<GetIamAppRegistrationResultPermission>
    RedirectUris List<string>
    RenewClientSecret bool
    Set value to true to renew the client-secret. Applicable to client_credentials grant type.
    ResponseTypes List<string>
    RevocationTimestamp string
    Used to perform revocation for tokens of AppRegistration.Updated only internally is case Revoke property come from UI with value true.On each request with OAuth2 access token the CreationTime of the OAuth2 token will be compared to RevokationTimestamp of thecorresponding App Registration.
    Revoke bool
    Used to trigger update the revocationTimestamp value.If UI sent updating request with the Revoke value is true, then update RevocationTimestamp.
    Roles List<GetIamAppRegistrationResultRole>
    Scopes List<GetIamAppRegistrationResultScope>
    SecurityHolders List<GetIamAppRegistrationResultSecurityHolder>
    SharedScope string
    Intersight provides pre-built workflows, tasks and policies to end users through global catalogs.Objects that are made available through global catalogs are said to have a 'shared' ownership. Shared objects are either made globally available to all end users or restricted to end users based on their license entitlement. Users can use this property to differentiate the scope (global or a specific license tier) to which a shared MO belongs.
    ShowConsentScreen bool
    Set to true if consent screen needs to be shown during the OAuth login process.Applicable only for public AppRegistrations, means only 'authorization_code' grantType.Note that consent screen will be shown on each login.
    StartTime string
    The timestamp at which an expiry date was first set on this app registration. For expiring App Registrations, this field is same as the create time of the App Registration.For never-expiring App Registrations, this field is set initially to zero time value. If a never-expiry App Registration is later changed to have an expiration, the timestamp marking the start of this transition is recorded in this field.
    Tags List<GetIamAppRegistrationResultTag>
    TokenExpiry string
    Defines the expiry time of the token generated via the AppRegistration.* generic - This sets the expiryTime to ten minutes from the token issuing time.* longLived - This sets the expiryTime to an year from the token issuing time.* infinite - This allows for a never-expiring token. Use with caution.
    Users List<GetIamAppRegistrationResultUser>
    VersionContexts List<GetIamAppRegistrationResultVersionContext>
    AccountMoid string
    The Account ID for this managed object.
    Accounts []GetIamAppRegistrationResultAccount
    AdditionalProperties string
    AdminStatus string
    Used to trigger the enable or disable action on the App Registration. These actions change the status of an App Registration.* enable - Used to enable a disabled API key/App Registration. If the API key/App Registration is already expired, this action has no effect.* disable - Used to disable an active API key/App Registration. If the API key/App Registration is already expired, this action has no effect.
    Ancestors []GetIamAppRegistrationResultAncestor
    ClassId string
    ClientApplications []GetIamAppRegistrationResultClientApplication
    ClientId string
    A unique identifier for the OAuth2 client application.The client ID is auto-generated when the AppRegistration object is created.
    ClientName string
    App Registration name specified by user.
    ClientSecret string
    The OAuth2 client secret.The value of this property is generated when grantType includes 'client-credentials'.Otherwise, no client-secret is generated.
    ClientType string
    The type of the OAuth2 client (public or confidential), as specified in https://tools.ietf.org/html/rfc6749#section-2.1.* public - Clients incapable of maintaining the confidentiality of their credentials.This includes clients executing on the device used by the resource owner,such as mobile applications, installed native application or a webbrowser-based application.* confidential - Clients capable of maintaining the confidentiality of their credentials.For example, this could be a client implemented on a secure server withrestricted access to the client credentials.To maintain the confidentiality of the OAuth2 credentials, two use cases areconsidered.1) The application is running as a service within Intersight. The application automatically obtains the OAuth2 credentials when the application starts and the credentials are not exposed to the end-user. Because end-users (even account administrators) do not have access the OAuth2 credentials, they cannot take the credentials with them when they leave their organization.2) The application is under the control of a \ trusted\ end-user. For example, the end-user may create a native application running outside Intersight. The application uses OAuth2 credentials to interact with the Intersight API. In that case, the Intersight account administrator may generate OAuth2 credentials with a registered application using \ client_credentials\ grant type. In that case, the end-user is responsible for maintaining the confidentiality of the OAuth2 credentials. If the end-user leaves the organization, you should revoke the credentials and issue new Oauth2 credentials.Here is a possible workflow for handling OAuth2 tokens.1) User Alice (Intersight Account Administrator) logins to Intersight and deploys an Intersight application that requires an OAuth2 token.2) Intersight automatically deploys the application. The application is assigned a OAuth2 token, possibly linked to Alice. The application must NOT expose the OAuth2 secret to Alice, otherwise Alice would be able to use the token after she leaves the company.3) The application can make API calls to Intersight using its assigned OAuth2 token. For example, the application could make weekly scheduled API calls to Intersight.4) Separately, Alice may also get OAuth2 tokens that she can use to make API calls from the Intersight SDK through the northbound API. In that case, Alice will get the associated OAuth2 secrets, but not the one assigned in step #2.5) Alice leaves the organization. The OAuth2 tokens assigned in step #2 must retain their validity even after Alice has left the organization. Because the OAuth2 secrets were never shared with Alice, there is no risk Alice can reuse the OAuth2 secrets. On the other hand, the OAuth2 tokens assigned in step #4 must be invalidated because Alice had the OAuth2 tokens in her possession.
    CreateTime string
    The time when this managed object was created.
    Description string
    Description of the application.
    DomainGroupMoid string
    The DomainGroup ID for this managed object.
    EntityId string
    EntityId holds the Id of the client application that is using this AppRegistration.
    ExpiryDateTime string
    The expiration date of the App Registration which is set at the time of its creation. Its value can only be assigned a date that falls within the range determined by the maximum expiration time configured at the account level. The expiry date can be edited to be earlier or later, provided it stays within the designated expiry period. This period is determined by adding the 'startTime' property of the App Registration to the maximum expiry time configured at the account level.
    GrantTypes []string
    IsNeverExpiring bool
    Used to mark the App Registration as a never-expiring App Registration.
    LastUsedIp string
    The ip address from which the App Registration was last used.
    LastUsedTime string
    The time at which the App Registration was last used. It is updated every 24 hours.
    ModTime string
    The time when this managed object was last modified.
    Moid string
    The unique identifier of this Managed Object instance.
    OauthTokens []GetIamAppRegistrationResultOauthToken
    ObjectType string
    OperStatus string
    The current status of the App Registration that dictates the validity of the app.* enabled - An API key/App Registration having enabled status can be used for API invocation.* disabled - An API key/App Registration having disabled status cannot be used for API invocation.* expired - An API key/App Registration having expired status cannot be used for API invocation as the expiration date has passed.
    Owners []string
    Parents []GetIamAppRegistrationResultParent
    PermissionResources []GetIamAppRegistrationResultPermissionResource
    Permissions []GetIamAppRegistrationResultPermission
    RedirectUris []string
    RenewClientSecret bool
    Set value to true to renew the client-secret. Applicable to client_credentials grant type.
    ResponseTypes []string
    RevocationTimestamp string
    Used to perform revocation for tokens of AppRegistration.Updated only internally is case Revoke property come from UI with value true.On each request with OAuth2 access token the CreationTime of the OAuth2 token will be compared to RevokationTimestamp of thecorresponding App Registration.
    Revoke bool
    Used to trigger update the revocationTimestamp value.If UI sent updating request with the Revoke value is true, then update RevocationTimestamp.
    Roles []GetIamAppRegistrationResultRole
    Scopes []GetIamAppRegistrationResultScope
    SecurityHolders []GetIamAppRegistrationResultSecurityHolder
    SharedScope string
    Intersight provides pre-built workflows, tasks and policies to end users through global catalogs.Objects that are made available through global catalogs are said to have a 'shared' ownership. Shared objects are either made globally available to all end users or restricted to end users based on their license entitlement. Users can use this property to differentiate the scope (global or a specific license tier) to which a shared MO belongs.
    ShowConsentScreen bool
    Set to true if consent screen needs to be shown during the OAuth login process.Applicable only for public AppRegistrations, means only 'authorization_code' grantType.Note that consent screen will be shown on each login.
    StartTime string
    The timestamp at which an expiry date was first set on this app registration. For expiring App Registrations, this field is same as the create time of the App Registration.For never-expiring App Registrations, this field is set initially to zero time value. If a never-expiry App Registration is later changed to have an expiration, the timestamp marking the start of this transition is recorded in this field.
    Tags []GetIamAppRegistrationResultTag
    TokenExpiry string
    Defines the expiry time of the token generated via the AppRegistration.* generic - This sets the expiryTime to ten minutes from the token issuing time.* longLived - This sets the expiryTime to an year from the token issuing time.* infinite - This allows for a never-expiring token. Use with caution.
    Users []GetIamAppRegistrationResultUser
    VersionContexts []GetIamAppRegistrationResultVersionContext
    accountMoid String
    The Account ID for this managed object.
    accounts List<GetIamAppRegistrationResultAccount>
    additionalProperties String
    adminStatus String
    Used to trigger the enable or disable action on the App Registration. These actions change the status of an App Registration.* enable - Used to enable a disabled API key/App Registration. If the API key/App Registration is already expired, this action has no effect.* disable - Used to disable an active API key/App Registration. If the API key/App Registration is already expired, this action has no effect.
    ancestors List<GetIamAppRegistrationResultAncestor>
    classId String
    clientApplications List<GetIamAppRegistrationResultClientApplication>
    clientId String
    A unique identifier for the OAuth2 client application.The client ID is auto-generated when the AppRegistration object is created.
    clientName String
    App Registration name specified by user.
    clientSecret String
    The OAuth2 client secret.The value of this property is generated when grantType includes 'client-credentials'.Otherwise, no client-secret is generated.
    clientType String
    The type of the OAuth2 client (public or confidential), as specified in https://tools.ietf.org/html/rfc6749#section-2.1.* public - Clients incapable of maintaining the confidentiality of their credentials.This includes clients executing on the device used by the resource owner,such as mobile applications, installed native application or a webbrowser-based application.* confidential - Clients capable of maintaining the confidentiality of their credentials.For example, this could be a client implemented on a secure server withrestricted access to the client credentials.To maintain the confidentiality of the OAuth2 credentials, two use cases areconsidered.1) The application is running as a service within Intersight. The application automatically obtains the OAuth2 credentials when the application starts and the credentials are not exposed to the end-user. Because end-users (even account administrators) do not have access the OAuth2 credentials, they cannot take the credentials with them when they leave their organization.2) The application is under the control of a \ trusted\ end-user. For example, the end-user may create a native application running outside Intersight. The application uses OAuth2 credentials to interact with the Intersight API. In that case, the Intersight account administrator may generate OAuth2 credentials with a registered application using \ client_credentials\ grant type. In that case, the end-user is responsible for maintaining the confidentiality of the OAuth2 credentials. If the end-user leaves the organization, you should revoke the credentials and issue new Oauth2 credentials.Here is a possible workflow for handling OAuth2 tokens.1) User Alice (Intersight Account Administrator) logins to Intersight and deploys an Intersight application that requires an OAuth2 token.2) Intersight automatically deploys the application. The application is assigned a OAuth2 token, possibly linked to Alice. The application must NOT expose the OAuth2 secret to Alice, otherwise Alice would be able to use the token after she leaves the company.3) The application can make API calls to Intersight using its assigned OAuth2 token. For example, the application could make weekly scheduled API calls to Intersight.4) Separately, Alice may also get OAuth2 tokens that she can use to make API calls from the Intersight SDK through the northbound API. In that case, Alice will get the associated OAuth2 secrets, but not the one assigned in step #2.5) Alice leaves the organization. The OAuth2 tokens assigned in step #2 must retain their validity even after Alice has left the organization. Because the OAuth2 secrets were never shared with Alice, there is no risk Alice can reuse the OAuth2 secrets. On the other hand, the OAuth2 tokens assigned in step #4 must be invalidated because Alice had the OAuth2 tokens in her possession.
    createTime String
    The time when this managed object was created.
    description String
    Description of the application.
    domainGroupMoid String
    The DomainGroup ID for this managed object.
    entityId String
    EntityId holds the Id of the client application that is using this AppRegistration.
    expiryDateTime String
    The expiration date of the App Registration which is set at the time of its creation. Its value can only be assigned a date that falls within the range determined by the maximum expiration time configured at the account level. The expiry date can be edited to be earlier or later, provided it stays within the designated expiry period. This period is determined by adding the 'startTime' property of the App Registration to the maximum expiry time configured at the account level.
    grantTypes List<String>
    isNeverExpiring Boolean
    Used to mark the App Registration as a never-expiring App Registration.
    lastUsedIp String
    The ip address from which the App Registration was last used.
    lastUsedTime String
    The time at which the App Registration was last used. It is updated every 24 hours.
    modTime String
    The time when this managed object was last modified.
    moid String
    The unique identifier of this Managed Object instance.
    oauthTokens List<GetIamAppRegistrationResultOauthToken>
    objectType String
    operStatus String
    The current status of the App Registration that dictates the validity of the app.* enabled - An API key/App Registration having enabled status can be used for API invocation.* disabled - An API key/App Registration having disabled status cannot be used for API invocation.* expired - An API key/App Registration having expired status cannot be used for API invocation as the expiration date has passed.
    owners List<String>
    parents List<GetIamAppRegistrationResultParent>
    permissionResources List<GetIamAppRegistrationResultPermissionResource>
    permissions List<GetIamAppRegistrationResultPermission>
    redirectUris List<String>
    renewClientSecret Boolean
    Set value to true to renew the client-secret. Applicable to client_credentials grant type.
    responseTypes List<String>
    revocationTimestamp String
    Used to perform revocation for tokens of AppRegistration.Updated only internally is case Revoke property come from UI with value true.On each request with OAuth2 access token the CreationTime of the OAuth2 token will be compared to RevokationTimestamp of thecorresponding App Registration.
    revoke Boolean
    Used to trigger update the revocationTimestamp value.If UI sent updating request with the Revoke value is true, then update RevocationTimestamp.
    roles List<GetIamAppRegistrationResultRole>
    scopes List<GetIamAppRegistrationResultScope>
    securityHolders List<GetIamAppRegistrationResultSecurityHolder>
    sharedScope String
    Intersight provides pre-built workflows, tasks and policies to end users through global catalogs.Objects that are made available through global catalogs are said to have a 'shared' ownership. Shared objects are either made globally available to all end users or restricted to end users based on their license entitlement. Users can use this property to differentiate the scope (global or a specific license tier) to which a shared MO belongs.
    showConsentScreen Boolean
    Set to true if consent screen needs to be shown during the OAuth login process.Applicable only for public AppRegistrations, means only 'authorization_code' grantType.Note that consent screen will be shown on each login.
    startTime String
    The timestamp at which an expiry date was first set on this app registration. For expiring App Registrations, this field is same as the create time of the App Registration.For never-expiring App Registrations, this field is set initially to zero time value. If a never-expiry App Registration is later changed to have an expiration, the timestamp marking the start of this transition is recorded in this field.
    tags List<GetIamAppRegistrationResultTag>
    tokenExpiry String
    Defines the expiry time of the token generated via the AppRegistration.* generic - This sets the expiryTime to ten minutes from the token issuing time.* longLived - This sets the expiryTime to an year from the token issuing time.* infinite - This allows for a never-expiring token. Use with caution.
    users List<GetIamAppRegistrationResultUser>
    versionContexts List<GetIamAppRegistrationResultVersionContext>
    accountMoid string
    The Account ID for this managed object.
    accounts GetIamAppRegistrationResultAccount[]
    additionalProperties string
    adminStatus string
    Used to trigger the enable or disable action on the App Registration. These actions change the status of an App Registration.* enable - Used to enable a disabled API key/App Registration. If the API key/App Registration is already expired, this action has no effect.* disable - Used to disable an active API key/App Registration. If the API key/App Registration is already expired, this action has no effect.
    ancestors GetIamAppRegistrationResultAncestor[]
    classId string
    clientApplications GetIamAppRegistrationResultClientApplication[]
    clientId string
    A unique identifier for the OAuth2 client application.The client ID is auto-generated when the AppRegistration object is created.
    clientName string
    App Registration name specified by user.
    clientSecret string
    The OAuth2 client secret.The value of this property is generated when grantType includes 'client-credentials'.Otherwise, no client-secret is generated.
    clientType string
    The type of the OAuth2 client (public or confidential), as specified in https://tools.ietf.org/html/rfc6749#section-2.1.* public - Clients incapable of maintaining the confidentiality of their credentials.This includes clients executing on the device used by the resource owner,such as mobile applications, installed native application or a webbrowser-based application.* confidential - Clients capable of maintaining the confidentiality of their credentials.For example, this could be a client implemented on a secure server withrestricted access to the client credentials.To maintain the confidentiality of the OAuth2 credentials, two use cases areconsidered.1) The application is running as a service within Intersight. The application automatically obtains the OAuth2 credentials when the application starts and the credentials are not exposed to the end-user. Because end-users (even account administrators) do not have access the OAuth2 credentials, they cannot take the credentials with them when they leave their organization.2) The application is under the control of a \ trusted\ end-user. For example, the end-user may create a native application running outside Intersight. The application uses OAuth2 credentials to interact with the Intersight API. In that case, the Intersight account administrator may generate OAuth2 credentials with a registered application using \ client_credentials\ grant type. In that case, the end-user is responsible for maintaining the confidentiality of the OAuth2 credentials. If the end-user leaves the organization, you should revoke the credentials and issue new Oauth2 credentials.Here is a possible workflow for handling OAuth2 tokens.1) User Alice (Intersight Account Administrator) logins to Intersight and deploys an Intersight application that requires an OAuth2 token.2) Intersight automatically deploys the application. The application is assigned a OAuth2 token, possibly linked to Alice. The application must NOT expose the OAuth2 secret to Alice, otherwise Alice would be able to use the token after she leaves the company.3) The application can make API calls to Intersight using its assigned OAuth2 token. For example, the application could make weekly scheduled API calls to Intersight.4) Separately, Alice may also get OAuth2 tokens that she can use to make API calls from the Intersight SDK through the northbound API. In that case, Alice will get the associated OAuth2 secrets, but not the one assigned in step #2.5) Alice leaves the organization. The OAuth2 tokens assigned in step #2 must retain their validity even after Alice has left the organization. Because the OAuth2 secrets were never shared with Alice, there is no risk Alice can reuse the OAuth2 secrets. On the other hand, the OAuth2 tokens assigned in step #4 must be invalidated because Alice had the OAuth2 tokens in her possession.
    createTime string
    The time when this managed object was created.
    description string
    Description of the application.
    domainGroupMoid string
    The DomainGroup ID for this managed object.
    entityId string
    EntityId holds the Id of the client application that is using this AppRegistration.
    expiryDateTime string
    The expiration date of the App Registration which is set at the time of its creation. Its value can only be assigned a date that falls within the range determined by the maximum expiration time configured at the account level. The expiry date can be edited to be earlier or later, provided it stays within the designated expiry period. This period is determined by adding the 'startTime' property of the App Registration to the maximum expiry time configured at the account level.
    grantTypes string[]
    isNeverExpiring boolean
    Used to mark the App Registration as a never-expiring App Registration.
    lastUsedIp string
    The ip address from which the App Registration was last used.
    lastUsedTime string
    The time at which the App Registration was last used. It is updated every 24 hours.
    modTime string
    The time when this managed object was last modified.
    moid string
    The unique identifier of this Managed Object instance.
    oauthTokens GetIamAppRegistrationResultOauthToken[]
    objectType string
    operStatus string
    The current status of the App Registration that dictates the validity of the app.* enabled - An API key/App Registration having enabled status can be used for API invocation.* disabled - An API key/App Registration having disabled status cannot be used for API invocation.* expired - An API key/App Registration having expired status cannot be used for API invocation as the expiration date has passed.
    owners string[]
    parents GetIamAppRegistrationResultParent[]
    permissionResources GetIamAppRegistrationResultPermissionResource[]
    permissions GetIamAppRegistrationResultPermission[]
    redirectUris string[]
    renewClientSecret boolean
    Set value to true to renew the client-secret. Applicable to client_credentials grant type.
    responseTypes string[]
    revocationTimestamp string
    Used to perform revocation for tokens of AppRegistration.Updated only internally is case Revoke property come from UI with value true.On each request with OAuth2 access token the CreationTime of the OAuth2 token will be compared to RevokationTimestamp of thecorresponding App Registration.
    revoke boolean
    Used to trigger update the revocationTimestamp value.If UI sent updating request with the Revoke value is true, then update RevocationTimestamp.
    roles GetIamAppRegistrationResultRole[]
    scopes GetIamAppRegistrationResultScope[]
    securityHolders GetIamAppRegistrationResultSecurityHolder[]
    sharedScope string
    Intersight provides pre-built workflows, tasks and policies to end users through global catalogs.Objects that are made available through global catalogs are said to have a 'shared' ownership. Shared objects are either made globally available to all end users or restricted to end users based on their license entitlement. Users can use this property to differentiate the scope (global or a specific license tier) to which a shared MO belongs.
    showConsentScreen boolean
    Set to true if consent screen needs to be shown during the OAuth login process.Applicable only for public AppRegistrations, means only 'authorization_code' grantType.Note that consent screen will be shown on each login.
    startTime string
    The timestamp at which an expiry date was first set on this app registration. For expiring App Registrations, this field is same as the create time of the App Registration.For never-expiring App Registrations, this field is set initially to zero time value. If a never-expiry App Registration is later changed to have an expiration, the timestamp marking the start of this transition is recorded in this field.
    tags GetIamAppRegistrationResultTag[]
    tokenExpiry string
    Defines the expiry time of the token generated via the AppRegistration.* generic - This sets the expiryTime to ten minutes from the token issuing time.* longLived - This sets the expiryTime to an year from the token issuing time.* infinite - This allows for a never-expiring token. Use with caution.
    users GetIamAppRegistrationResultUser[]
    versionContexts GetIamAppRegistrationResultVersionContext[]
    account_moid str
    The Account ID for this managed object.
    accounts Sequence[GetIamAppRegistrationResultAccount]
    additional_properties str
    admin_status str
    Used to trigger the enable or disable action on the App Registration. These actions change the status of an App Registration.* enable - Used to enable a disabled API key/App Registration. If the API key/App Registration is already expired, this action has no effect.* disable - Used to disable an active API key/App Registration. If the API key/App Registration is already expired, this action has no effect.
    ancestors Sequence[GetIamAppRegistrationResultAncestor]
    class_id str
    client_applications Sequence[GetIamAppRegistrationResultClientApplication]
    client_id str
    A unique identifier for the OAuth2 client application.The client ID is auto-generated when the AppRegistration object is created.
    client_name str
    App Registration name specified by user.
    client_secret str
    The OAuth2 client secret.The value of this property is generated when grantType includes 'client-credentials'.Otherwise, no client-secret is generated.
    client_type str
    The type of the OAuth2 client (public or confidential), as specified in https://tools.ietf.org/html/rfc6749#section-2.1.* public - Clients incapable of maintaining the confidentiality of their credentials.This includes clients executing on the device used by the resource owner,such as mobile applications, installed native application or a webbrowser-based application.* confidential - Clients capable of maintaining the confidentiality of their credentials.For example, this could be a client implemented on a secure server withrestricted access to the client credentials.To maintain the confidentiality of the OAuth2 credentials, two use cases areconsidered.1) The application is running as a service within Intersight. The application automatically obtains the OAuth2 credentials when the application starts and the credentials are not exposed to the end-user. Because end-users (even account administrators) do not have access the OAuth2 credentials, they cannot take the credentials with them when they leave their organization.2) The application is under the control of a \ trusted\ end-user. For example, the end-user may create a native application running outside Intersight. The application uses OAuth2 credentials to interact with the Intersight API. In that case, the Intersight account administrator may generate OAuth2 credentials with a registered application using \ client_credentials\ grant type. In that case, the end-user is responsible for maintaining the confidentiality of the OAuth2 credentials. If the end-user leaves the organization, you should revoke the credentials and issue new Oauth2 credentials.Here is a possible workflow for handling OAuth2 tokens.1) User Alice (Intersight Account Administrator) logins to Intersight and deploys an Intersight application that requires an OAuth2 token.2) Intersight automatically deploys the application. The application is assigned a OAuth2 token, possibly linked to Alice. The application must NOT expose the OAuth2 secret to Alice, otherwise Alice would be able to use the token after she leaves the company.3) The application can make API calls to Intersight using its assigned OAuth2 token. For example, the application could make weekly scheduled API calls to Intersight.4) Separately, Alice may also get OAuth2 tokens that she can use to make API calls from the Intersight SDK through the northbound API. In that case, Alice will get the associated OAuth2 secrets, but not the one assigned in step #2.5) Alice leaves the organization. The OAuth2 tokens assigned in step #2 must retain their validity even after Alice has left the organization. Because the OAuth2 secrets were never shared with Alice, there is no risk Alice can reuse the OAuth2 secrets. On the other hand, the OAuth2 tokens assigned in step #4 must be invalidated because Alice had the OAuth2 tokens in her possession.
    create_time str
    The time when this managed object was created.
    description str
    Description of the application.
    domain_group_moid str
    The DomainGroup ID for this managed object.
    entity_id str
    EntityId holds the Id of the client application that is using this AppRegistration.
    expiry_date_time str
    The expiration date of the App Registration which is set at the time of its creation. Its value can only be assigned a date that falls within the range determined by the maximum expiration time configured at the account level. The expiry date can be edited to be earlier or later, provided it stays within the designated expiry period. This period is determined by adding the 'startTime' property of the App Registration to the maximum expiry time configured at the account level.
    grant_types Sequence[str]
    is_never_expiring bool
    Used to mark the App Registration as a never-expiring App Registration.
    last_used_ip str
    The ip address from which the App Registration was last used.
    last_used_time str
    The time at which the App Registration was last used. It is updated every 24 hours.
    mod_time str
    The time when this managed object was last modified.
    moid str
    The unique identifier of this Managed Object instance.
    oauth_tokens Sequence[GetIamAppRegistrationResultOauthToken]
    object_type str
    oper_status str
    The current status of the App Registration that dictates the validity of the app.* enabled - An API key/App Registration having enabled status can be used for API invocation.* disabled - An API key/App Registration having disabled status cannot be used for API invocation.* expired - An API key/App Registration having expired status cannot be used for API invocation as the expiration date has passed.
    owners Sequence[str]
    parents Sequence[GetIamAppRegistrationResultParent]
    permission_resources Sequence[GetIamAppRegistrationResultPermissionResource]
    permissions Sequence[GetIamAppRegistrationResultPermission]
    redirect_uris Sequence[str]
    renew_client_secret bool
    Set value to true to renew the client-secret. Applicable to client_credentials grant type.
    response_types Sequence[str]
    revocation_timestamp str
    Used to perform revocation for tokens of AppRegistration.Updated only internally is case Revoke property come from UI with value true.On each request with OAuth2 access token the CreationTime of the OAuth2 token will be compared to RevokationTimestamp of thecorresponding App Registration.
    revoke bool
    Used to trigger update the revocationTimestamp value.If UI sent updating request with the Revoke value is true, then update RevocationTimestamp.
    roles Sequence[GetIamAppRegistrationResultRole]
    scopes Sequence[GetIamAppRegistrationResultScope]
    security_holders Sequence[GetIamAppRegistrationResultSecurityHolder]
    shared_scope str
    Intersight provides pre-built workflows, tasks and policies to end users through global catalogs.Objects that are made available through global catalogs are said to have a 'shared' ownership. Shared objects are either made globally available to all end users or restricted to end users based on their license entitlement. Users can use this property to differentiate the scope (global or a specific license tier) to which a shared MO belongs.
    show_consent_screen bool
    Set to true if consent screen needs to be shown during the OAuth login process.Applicable only for public AppRegistrations, means only 'authorization_code' grantType.Note that consent screen will be shown on each login.
    start_time str
    The timestamp at which an expiry date was first set on this app registration. For expiring App Registrations, this field is same as the create time of the App Registration.For never-expiring App Registrations, this field is set initially to zero time value. If a never-expiry App Registration is later changed to have an expiration, the timestamp marking the start of this transition is recorded in this field.
    tags Sequence[GetIamAppRegistrationResultTag]
    token_expiry str
    Defines the expiry time of the token generated via the AppRegistration.* generic - This sets the expiryTime to ten minutes from the token issuing time.* longLived - This sets the expiryTime to an year from the token issuing time.* infinite - This allows for a never-expiring token. Use with caution.
    users Sequence[GetIamAppRegistrationResultUser]
    version_contexts Sequence[GetIamAppRegistrationResultVersionContext]
    accountMoid String
    The Account ID for this managed object.
    accounts List<Property Map>
    additionalProperties String
    adminStatus String
    Used to trigger the enable or disable action on the App Registration. These actions change the status of an App Registration.* enable - Used to enable a disabled API key/App Registration. If the API key/App Registration is already expired, this action has no effect.* disable - Used to disable an active API key/App Registration. If the API key/App Registration is already expired, this action has no effect.
    ancestors List<Property Map>
    classId String
    clientApplications List<Property Map>
    clientId String
    A unique identifier for the OAuth2 client application.The client ID is auto-generated when the AppRegistration object is created.
    clientName String
    App Registration name specified by user.
    clientSecret String
    The OAuth2 client secret.The value of this property is generated when grantType includes 'client-credentials'.Otherwise, no client-secret is generated.
    clientType String
    The type of the OAuth2 client (public or confidential), as specified in https://tools.ietf.org/html/rfc6749#section-2.1.* public - Clients incapable of maintaining the confidentiality of their credentials.This includes clients executing on the device used by the resource owner,such as mobile applications, installed native application or a webbrowser-based application.* confidential - Clients capable of maintaining the confidentiality of their credentials.For example, this could be a client implemented on a secure server withrestricted access to the client credentials.To maintain the confidentiality of the OAuth2 credentials, two use cases areconsidered.1) The application is running as a service within Intersight. The application automatically obtains the OAuth2 credentials when the application starts and the credentials are not exposed to the end-user. Because end-users (even account administrators) do not have access the OAuth2 credentials, they cannot take the credentials with them when they leave their organization.2) The application is under the control of a \ trusted\ end-user. For example, the end-user may create a native application running outside Intersight. The application uses OAuth2 credentials to interact with the Intersight API. In that case, the Intersight account administrator may generate OAuth2 credentials with a registered application using \ client_credentials\ grant type. In that case, the end-user is responsible for maintaining the confidentiality of the OAuth2 credentials. If the end-user leaves the organization, you should revoke the credentials and issue new Oauth2 credentials.Here is a possible workflow for handling OAuth2 tokens.1) User Alice (Intersight Account Administrator) logins to Intersight and deploys an Intersight application that requires an OAuth2 token.2) Intersight automatically deploys the application. The application is assigned a OAuth2 token, possibly linked to Alice. The application must NOT expose the OAuth2 secret to Alice, otherwise Alice would be able to use the token after she leaves the company.3) The application can make API calls to Intersight using its assigned OAuth2 token. For example, the application could make weekly scheduled API calls to Intersight.4) Separately, Alice may also get OAuth2 tokens that she can use to make API calls from the Intersight SDK through the northbound API. In that case, Alice will get the associated OAuth2 secrets, but not the one assigned in step #2.5) Alice leaves the organization. The OAuth2 tokens assigned in step #2 must retain their validity even after Alice has left the organization. Because the OAuth2 secrets were never shared with Alice, there is no risk Alice can reuse the OAuth2 secrets. On the other hand, the OAuth2 tokens assigned in step #4 must be invalidated because Alice had the OAuth2 tokens in her possession.
    createTime String
    The time when this managed object was created.
    description String
    Description of the application.
    domainGroupMoid String
    The DomainGroup ID for this managed object.
    entityId String
    EntityId holds the Id of the client application that is using this AppRegistration.
    expiryDateTime String
    The expiration date of the App Registration which is set at the time of its creation. Its value can only be assigned a date that falls within the range determined by the maximum expiration time configured at the account level. The expiry date can be edited to be earlier or later, provided it stays within the designated expiry period. This period is determined by adding the 'startTime' property of the App Registration to the maximum expiry time configured at the account level.
    grantTypes List<String>
    isNeverExpiring Boolean
    Used to mark the App Registration as a never-expiring App Registration.
    lastUsedIp String
    The ip address from which the App Registration was last used.
    lastUsedTime String
    The time at which the App Registration was last used. It is updated every 24 hours.
    modTime String
    The time when this managed object was last modified.
    moid String
    The unique identifier of this Managed Object instance.
    oauthTokens List<Property Map>
    objectType String
    operStatus String
    The current status of the App Registration that dictates the validity of the app.* enabled - An API key/App Registration having enabled status can be used for API invocation.* disabled - An API key/App Registration having disabled status cannot be used for API invocation.* expired - An API key/App Registration having expired status cannot be used for API invocation as the expiration date has passed.
    owners List<String>
    parents List<Property Map>
    permissionResources List<Property Map>
    permissions List<Property Map>
    redirectUris List<String>
    renewClientSecret Boolean
    Set value to true to renew the client-secret. Applicable to client_credentials grant type.
    responseTypes List<String>
    revocationTimestamp String
    Used to perform revocation for tokens of AppRegistration.Updated only internally is case Revoke property come from UI with value true.On each request with OAuth2 access token the CreationTime of the OAuth2 token will be compared to RevokationTimestamp of thecorresponding App Registration.
    revoke Boolean
    Used to trigger update the revocationTimestamp value.If UI sent updating request with the Revoke value is true, then update RevocationTimestamp.
    roles List<Property Map>
    scopes List<Property Map>
    securityHolders List<Property Map>
    sharedScope String
    Intersight provides pre-built workflows, tasks and policies to end users through global catalogs.Objects that are made available through global catalogs are said to have a 'shared' ownership. Shared objects are either made globally available to all end users or restricted to end users based on their license entitlement. Users can use this property to differentiate the scope (global or a specific license tier) to which a shared MO belongs.
    showConsentScreen Boolean
    Set to true if consent screen needs to be shown during the OAuth login process.Applicable only for public AppRegistrations, means only 'authorization_code' grantType.Note that consent screen will be shown on each login.
    startTime String
    The timestamp at which an expiry date was first set on this app registration. For expiring App Registrations, this field is same as the create time of the App Registration.For never-expiring App Registrations, this field is set initially to zero time value. If a never-expiry App Registration is later changed to have an expiration, the timestamp marking the start of this transition is recorded in this field.
    tags List<Property Map>
    tokenExpiry String
    Defines the expiry time of the token generated via the AppRegistration.* generic - This sets the expiryTime to ten minutes from the token issuing time.* longLived - This sets the expiryTime to an year from the token issuing time.* infinite - This allows for a never-expiring token. Use with caution.
    users List<Property Map>
    versionContexts List<Property Map>

    GetIamAppRegistrationResultAccount

    AdditionalProperties string
    ClassId string
    Moid string
    The unique identifier of this Managed Object instance.
    ObjectType string
    Selector string
    AdditionalProperties string
    ClassId string
    Moid string
    The unique identifier of this Managed Object instance.
    ObjectType string
    Selector string
    additionalProperties String
    classId String
    moid String
    The unique identifier of this Managed Object instance.
    objectType String
    selector String
    additionalProperties string
    classId string
    moid string
    The unique identifier of this Managed Object instance.
    objectType string
    selector string
    additional_properties str
    class_id str
    moid str
    The unique identifier of this Managed Object instance.
    object_type str
    selector str
    additionalProperties String
    classId String
    moid String
    The unique identifier of this Managed Object instance.
    objectType String
    selector String

    GetIamAppRegistrationResultAncestor

    AdditionalProperties string
    ClassId string
    Moid string
    The unique identifier of this Managed Object instance.
    ObjectType string
    Selector string
    AdditionalProperties string
    ClassId string
    Moid string
    The unique identifier of this Managed Object instance.
    ObjectType string
    Selector string
    additionalProperties String
    classId String
    moid String
    The unique identifier of this Managed Object instance.
    objectType String
    selector String
    additionalProperties string
    classId string
    moid string
    The unique identifier of this Managed Object instance.
    objectType string
    selector string
    additional_properties str
    class_id str
    moid str
    The unique identifier of this Managed Object instance.
    object_type str
    selector str
    additionalProperties String
    classId String
    moid String
    The unique identifier of this Managed Object instance.
    objectType String
    selector String

    GetIamAppRegistrationResultClientApplication

    AdditionalProperties string
    ClassId string
    Moid string
    The unique identifier of this Managed Object instance.
    ObjectType string
    Selector string
    AdditionalProperties string
    ClassId string
    Moid string
    The unique identifier of this Managed Object instance.
    ObjectType string
    Selector string
    additionalProperties String
    classId String
    moid String
    The unique identifier of this Managed Object instance.
    objectType String
    selector String
    additionalProperties string
    classId string
    moid string
    The unique identifier of this Managed Object instance.
    objectType string
    selector string
    additional_properties str
    class_id str
    moid str
    The unique identifier of this Managed Object instance.
    object_type str
    selector str
    additionalProperties String
    classId String
    moid String
    The unique identifier of this Managed Object instance.
    objectType String
    selector String

    GetIamAppRegistrationResultOauthToken

    AdditionalProperties string
    ClassId string
    Moid string
    The unique identifier of this Managed Object instance.
    ObjectType string
    Selector string
    AdditionalProperties string
    ClassId string
    Moid string
    The unique identifier of this Managed Object instance.
    ObjectType string
    Selector string
    additionalProperties String
    classId String
    moid String
    The unique identifier of this Managed Object instance.
    objectType String
    selector String
    additionalProperties string
    classId string
    moid string
    The unique identifier of this Managed Object instance.
    objectType string
    selector string
    additional_properties str
    class_id str
    moid str
    The unique identifier of this Managed Object instance.
    object_type str
    selector str
    additionalProperties String
    classId String
    moid String
    The unique identifier of this Managed Object instance.
    objectType String
    selector String

    GetIamAppRegistrationResultParent

    AdditionalProperties string
    ClassId string
    Moid string
    The unique identifier of this Managed Object instance.
    ObjectType string
    Selector string
    AdditionalProperties string
    ClassId string
    Moid string
    The unique identifier of this Managed Object instance.
    ObjectType string
    Selector string
    additionalProperties String
    classId String
    moid String
    The unique identifier of this Managed Object instance.
    objectType String
    selector String
    additionalProperties string
    classId string
    moid string
    The unique identifier of this Managed Object instance.
    objectType string
    selector string
    additional_properties str
    class_id str
    moid str
    The unique identifier of this Managed Object instance.
    object_type str
    selector str
    additionalProperties String
    classId String
    moid String
    The unique identifier of this Managed Object instance.
    objectType String
    selector String

    GetIamAppRegistrationResultPermission

    AdditionalProperties string
    ClassId string
    Moid string
    The unique identifier of this Managed Object instance.
    ObjectType string
    Selector string
    AdditionalProperties string
    ClassId string
    Moid string
    The unique identifier of this Managed Object instance.
    ObjectType string
    Selector string
    additionalProperties String
    classId String
    moid String
    The unique identifier of this Managed Object instance.
    objectType String
    selector String
    additionalProperties string
    classId string
    moid string
    The unique identifier of this Managed Object instance.
    objectType string
    selector string
    additional_properties str
    class_id str
    moid str
    The unique identifier of this Managed Object instance.
    object_type str
    selector str
    additionalProperties String
    classId String
    moid String
    The unique identifier of this Managed Object instance.
    objectType String
    selector String

    GetIamAppRegistrationResultPermissionResource

    AdditionalProperties string
    ClassId string
    Moid string
    The unique identifier of this Managed Object instance.
    ObjectType string
    Selector string
    AdditionalProperties string
    ClassId string
    Moid string
    The unique identifier of this Managed Object instance.
    ObjectType string
    Selector string
    additionalProperties String
    classId String
    moid String
    The unique identifier of this Managed Object instance.
    objectType String
    selector String
    additionalProperties string
    classId string
    moid string
    The unique identifier of this Managed Object instance.
    objectType string
    selector string
    additional_properties str
    class_id str
    moid str
    The unique identifier of this Managed Object instance.
    object_type str
    selector str
    additionalProperties String
    classId String
    moid String
    The unique identifier of this Managed Object instance.
    objectType String
    selector String

    GetIamAppRegistrationResultRole

    AdditionalProperties string
    ClassId string
    Moid string
    The unique identifier of this Managed Object instance.
    ObjectType string
    Selector string
    AdditionalProperties string
    ClassId string
    Moid string
    The unique identifier of this Managed Object instance.
    ObjectType string
    Selector string
    additionalProperties String
    classId String
    moid String
    The unique identifier of this Managed Object instance.
    objectType String
    selector String
    additionalProperties string
    classId string
    moid string
    The unique identifier of this Managed Object instance.
    objectType string
    selector string
    additional_properties str
    class_id str
    moid str
    The unique identifier of this Managed Object instance.
    object_type str
    selector str
    additionalProperties String
    classId String
    moid String
    The unique identifier of this Managed Object instance.
    objectType String
    selector String

    GetIamAppRegistrationResultScope

    GetIamAppRegistrationResultScopeSwitchedFromAccount

    GetIamAppRegistrationResultScopeSwitchedToAccount

    GetIamAppRegistrationResultSecurityHolder

    AdditionalProperties string
    ClassId string
    Moid string
    The unique identifier of this Managed Object instance.
    ObjectType string
    Selector string
    AdditionalProperties string
    ClassId string
    Moid string
    The unique identifier of this Managed Object instance.
    ObjectType string
    Selector string
    additionalProperties String
    classId String
    moid String
    The unique identifier of this Managed Object instance.
    objectType String
    selector String
    additionalProperties string
    classId string
    moid string
    The unique identifier of this Managed Object instance.
    objectType string
    selector string
    additional_properties str
    class_id str
    moid str
    The unique identifier of this Managed Object instance.
    object_type str
    selector str
    additionalProperties String
    classId String
    moid String
    The unique identifier of this Managed Object instance.
    objectType String
    selector String

    GetIamAppRegistrationResultTag

    AdditionalProperties string
    Key string
    Value string
    AdditionalProperties string
    Key string
    Value string
    additionalProperties String
    key String
    value String
    additionalProperties string
    key string
    value string
    additionalProperties String
    key String
    value String

    GetIamAppRegistrationResultUser

    AdditionalProperties string
    ClassId string
    Moid string
    The unique identifier of this Managed Object instance.
    ObjectType string
    Selector string
    AdditionalProperties string
    ClassId string
    Moid string
    The unique identifier of this Managed Object instance.
    ObjectType string
    Selector string
    additionalProperties String
    classId String
    moid String
    The unique identifier of this Managed Object instance.
    objectType String
    selector String
    additionalProperties string
    classId string
    moid string
    The unique identifier of this Managed Object instance.
    objectType string
    selector string
    additional_properties str
    class_id str
    moid str
    The unique identifier of this Managed Object instance.
    object_type str
    selector str
    additionalProperties String
    classId String
    moid String
    The unique identifier of this Managed Object instance.
    objectType String
    selector String

    GetIamAppRegistrationResultVersionContext

    GetIamAppRegistrationResultVersionContextInterestedMo

    AdditionalProperties string
    ClassId string
    Moid string
    The unique identifier of this Managed Object instance.
    ObjectType string
    Selector string
    AdditionalProperties string
    ClassId string
    Moid string
    The unique identifier of this Managed Object instance.
    ObjectType string
    Selector string
    additionalProperties String
    classId String
    moid String
    The unique identifier of this Managed Object instance.
    objectType String
    selector String
    additionalProperties string
    classId string
    moid string
    The unique identifier of this Managed Object instance.
    objectType string
    selector string
    additional_properties str
    class_id str
    moid str
    The unique identifier of this Managed Object instance.
    object_type str
    selector str
    additionalProperties String
    classId String
    moid String
    The unique identifier of this Managed Object instance.
    objectType String
    selector String

    GetIamAppRegistrationResultVersionContextRefMo

    AdditionalProperties string
    ClassId string
    Moid string
    The unique identifier of this Managed Object instance.
    ObjectType string
    Selector string
    AdditionalProperties string
    ClassId string
    Moid string
    The unique identifier of this Managed Object instance.
    ObjectType string
    Selector string
    additionalProperties String
    classId String
    moid String
    The unique identifier of this Managed Object instance.
    objectType String
    selector String
    additionalProperties string
    classId string
    moid string
    The unique identifier of this Managed Object instance.
    objectType string
    selector string
    additional_properties str
    class_id str
    moid str
    The unique identifier of this Managed Object instance.
    object_type str
    selector str
    additionalProperties String
    classId String
    moid String
    The unique identifier of this Managed Object instance.
    objectType String
    selector String

    GetIamAppRegistrationRole

    AdditionalProperties string
    ClassId string
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    Moid string
    The unique identifier of this Managed Object instance.
    ObjectType string
    The fully-qualified name of the remote type referred by this relationship.
    Selector string
    An OData $filter expression which describes the REST resource to be referenced. This field may be set instead of 'moid' by clients.

    1. If 'moid' is set this field is ignored.
    2. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of the resource matching the filter expression and populates it in the MoRef that is part of the object instance being inserted/updated to fulfill the REST request. An error is returned if the filter matches zero or more than one REST resource. An example filter string is: Serial eq '3AA8B7T11'.
    AdditionalProperties string
    ClassId string
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    Moid string
    The unique identifier of this Managed Object instance.
    ObjectType string
    The fully-qualified name of the remote type referred by this relationship.
    Selector string
    An OData $filter expression which describes the REST resource to be referenced. This field may be set instead of 'moid' by clients.

    1. If 'moid' is set this field is ignored.
    2. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of the resource matching the filter expression and populates it in the MoRef that is part of the object instance being inserted/updated to fulfill the REST request. An error is returned if the filter matches zero or more than one REST resource. An example filter string is: Serial eq '3AA8B7T11'.
    additionalProperties String
    classId String
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    moid String
    The unique identifier of this Managed Object instance.
    objectType String
    The fully-qualified name of the remote type referred by this relationship.
    selector String
    An OData $filter expression which describes the REST resource to be referenced. This field may be set instead of 'moid' by clients.

    1. If 'moid' is set this field is ignored.
    2. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of the resource matching the filter expression and populates it in the MoRef that is part of the object instance being inserted/updated to fulfill the REST request. An error is returned if the filter matches zero or more than one REST resource. An example filter string is: Serial eq '3AA8B7T11'.
    additionalProperties string
    classId string
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    moid string
    The unique identifier of this Managed Object instance.
    objectType string
    The fully-qualified name of the remote type referred by this relationship.
    selector string
    An OData $filter expression which describes the REST resource to be referenced. This field may be set instead of 'moid' by clients.

    1. If 'moid' is set this field is ignored.
    2. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of the resource matching the filter expression and populates it in the MoRef that is part of the object instance being inserted/updated to fulfill the REST request. An error is returned if the filter matches zero or more than one REST resource. An example filter string is: Serial eq '3AA8B7T11'.
    additional_properties str
    class_id str
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    moid str
    The unique identifier of this Managed Object instance.
    object_type str
    The fully-qualified name of the remote type referred by this relationship.
    selector str
    An OData $filter expression which describes the REST resource to be referenced. This field may be set instead of 'moid' by clients.

    1. If 'moid' is set this field is ignored.
    2. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of the resource matching the filter expression and populates it in the MoRef that is part of the object instance being inserted/updated to fulfill the REST request. An error is returned if the filter matches zero or more than one REST resource. An example filter string is: Serial eq '3AA8B7T11'.
    additionalProperties String
    classId String
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    moid String
    The unique identifier of this Managed Object instance.
    objectType String
    The fully-qualified name of the remote type referred by this relationship.
    selector String
    An OData $filter expression which describes the REST resource to be referenced. This field may be set instead of 'moid' by clients.

    1. If 'moid' is set this field is ignored.
    2. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of the resource matching the filter expression and populates it in the MoRef that is part of the object instance being inserted/updated to fulfill the REST request. An error is returned if the filter matches zero or more than one REST resource. An example filter string is: Serial eq '3AA8B7T11'.

    GetIamAppRegistrationScope

    AccountAccessControlId string
    Moid of the AccountAccessControl through which the access is given to switch scope.
    AdditionalProperties string
    ClassId string
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    ObjectType string
    The fully-qualified name of the instantiated, concrete type. The value should be the same as the 'ClassId' property.
    RequestIdentifier string
    Stores the identifier of the issue for which user is trying to switch scope to another account.
    SwitchedFromAccount GetIamAppRegistrationScopeSwitchedFromAccount
    Permission for the Account from which user switched the scope.
    SwitchedToAccounts List<GetIamAppRegistrationScopeSwitchedToAccount>
    AccountAccessControlId string
    Moid of the AccountAccessControl through which the access is given to switch scope.
    AdditionalProperties string
    ClassId string
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    ObjectType string
    The fully-qualified name of the instantiated, concrete type. The value should be the same as the 'ClassId' property.
    RequestIdentifier string
    Stores the identifier of the issue for which user is trying to switch scope to another account.
    SwitchedFromAccount GetIamAppRegistrationScopeSwitchedFromAccount
    Permission for the Account from which user switched the scope.
    SwitchedToAccounts []GetIamAppRegistrationScopeSwitchedToAccount
    accountAccessControlId String
    Moid of the AccountAccessControl through which the access is given to switch scope.
    additionalProperties String
    classId String
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    objectType String
    The fully-qualified name of the instantiated, concrete type. The value should be the same as the 'ClassId' property.
    requestIdentifier String
    Stores the identifier of the issue for which user is trying to switch scope to another account.
    switchedFromAccount GetIamAppRegistrationScopeSwitchedFromAccount
    Permission for the Account from which user switched the scope.
    switchedToAccounts List<GetIamAppRegistrationScopeSwitchedToAccount>
    accountAccessControlId string
    Moid of the AccountAccessControl through which the access is given to switch scope.
    additionalProperties string
    classId string
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    objectType string
    The fully-qualified name of the instantiated, concrete type. The value should be the same as the 'ClassId' property.
    requestIdentifier string
    Stores the identifier of the issue for which user is trying to switch scope to another account.
    switchedFromAccount GetIamAppRegistrationScopeSwitchedFromAccount
    Permission for the Account from which user switched the scope.
    switchedToAccounts GetIamAppRegistrationScopeSwitchedToAccount[]
    account_access_control_id str
    Moid of the AccountAccessControl through which the access is given to switch scope.
    additional_properties str
    class_id str
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    object_type str
    The fully-qualified name of the instantiated, concrete type. The value should be the same as the 'ClassId' property.
    request_identifier str
    Stores the identifier of the issue for which user is trying to switch scope to another account.
    switched_from_account GetIamAppRegistrationScopeSwitchedFromAccount
    Permission for the Account from which user switched the scope.
    switched_to_accounts Sequence[GetIamAppRegistrationScopeSwitchedToAccount]
    accountAccessControlId String
    Moid of the AccountAccessControl through which the access is given to switch scope.
    additionalProperties String
    classId String
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    objectType String
    The fully-qualified name of the instantiated, concrete type. The value should be the same as the 'ClassId' property.
    requestIdentifier String
    Stores the identifier of the issue for which user is trying to switch scope to another account.
    switchedFromAccount Property Map
    Permission for the Account from which user switched the scope.
    switchedToAccounts List<Property Map>

    GetIamAppRegistrationScopeSwitchedFromAccount

    AccountId string
    Moid of the Account to/from which user switched the scope.
    AdditionalProperties string
    ClassId string
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    ObjectType string
    The fully-qualified name of the instantiated, concrete type. The value should be the same as the 'ClassId' property.
    PermissionId string
    Moid of the Permission for the Account to/from which user switched the scope.
    AccountId string
    Moid of the Account to/from which user switched the scope.
    AdditionalProperties string
    ClassId string
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    ObjectType string
    The fully-qualified name of the instantiated, concrete type. The value should be the same as the 'ClassId' property.
    PermissionId string
    Moid of the Permission for the Account to/from which user switched the scope.
    accountId String
    Moid of the Account to/from which user switched the scope.
    additionalProperties String
    classId String
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    objectType String
    The fully-qualified name of the instantiated, concrete type. The value should be the same as the 'ClassId' property.
    permissionId String
    Moid of the Permission for the Account to/from which user switched the scope.
    accountId string
    Moid of the Account to/from which user switched the scope.
    additionalProperties string
    classId string
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    objectType string
    The fully-qualified name of the instantiated, concrete type. The value should be the same as the 'ClassId' property.
    permissionId string
    Moid of the Permission for the Account to/from which user switched the scope.
    account_id str
    Moid of the Account to/from which user switched the scope.
    additional_properties str
    class_id str
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    object_type str
    The fully-qualified name of the instantiated, concrete type. The value should be the same as the 'ClassId' property.
    permission_id str
    Moid of the Permission for the Account to/from which user switched the scope.
    accountId String
    Moid of the Account to/from which user switched the scope.
    additionalProperties String
    classId String
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    objectType String
    The fully-qualified name of the instantiated, concrete type. The value should be the same as the 'ClassId' property.
    permissionId String
    Moid of the Permission for the Account to/from which user switched the scope.

    GetIamAppRegistrationScopeSwitchedToAccount

    AccountId string
    Moid of the Account to/from which user switched the scope.
    AdditionalProperties string
    ClassId string
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    ObjectType string
    The fully-qualified name of the instantiated, concrete type. The value should be the same as the 'ClassId' property.
    PermissionId string
    Moid of the Permission for the Account to/from which user switched the scope.
    AccountId string
    Moid of the Account to/from which user switched the scope.
    AdditionalProperties string
    ClassId string
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    ObjectType string
    The fully-qualified name of the instantiated, concrete type. The value should be the same as the 'ClassId' property.
    PermissionId string
    Moid of the Permission for the Account to/from which user switched the scope.
    accountId String
    Moid of the Account to/from which user switched the scope.
    additionalProperties String
    classId String
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    objectType String
    The fully-qualified name of the instantiated, concrete type. The value should be the same as the 'ClassId' property.
    permissionId String
    Moid of the Permission for the Account to/from which user switched the scope.
    accountId string
    Moid of the Account to/from which user switched the scope.
    additionalProperties string
    classId string
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    objectType string
    The fully-qualified name of the instantiated, concrete type. The value should be the same as the 'ClassId' property.
    permissionId string
    Moid of the Permission for the Account to/from which user switched the scope.
    account_id str
    Moid of the Account to/from which user switched the scope.
    additional_properties str
    class_id str
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    object_type str
    The fully-qualified name of the instantiated, concrete type. The value should be the same as the 'ClassId' property.
    permission_id str
    Moid of the Permission for the Account to/from which user switched the scope.
    accountId String
    Moid of the Account to/from which user switched the scope.
    additionalProperties String
    classId String
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    objectType String
    The fully-qualified name of the instantiated, concrete type. The value should be the same as the 'ClassId' property.
    permissionId String
    Moid of the Permission for the Account to/from which user switched the scope.

    GetIamAppRegistrationSecurityHolder

    AdditionalProperties string
    ClassId string
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    Moid string
    The unique identifier of this Managed Object instance.
    ObjectType string
    The fully-qualified name of the remote type referred by this relationship.
    Selector string
    An OData $filter expression which describes the REST resource to be referenced. This field may be set instead of 'moid' by clients.

    1. If 'moid' is set this field is ignored.
    2. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of the resource matching the filter expression and populates it in the MoRef that is part of the object instance being inserted/updated to fulfill the REST request. An error is returned if the filter matches zero or more than one REST resource. An example filter string is: Serial eq '3AA8B7T11'.
    AdditionalProperties string
    ClassId string
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    Moid string
    The unique identifier of this Managed Object instance.
    ObjectType string
    The fully-qualified name of the remote type referred by this relationship.
    Selector string
    An OData $filter expression which describes the REST resource to be referenced. This field may be set instead of 'moid' by clients.

    1. If 'moid' is set this field is ignored.
    2. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of the resource matching the filter expression and populates it in the MoRef that is part of the object instance being inserted/updated to fulfill the REST request. An error is returned if the filter matches zero or more than one REST resource. An example filter string is: Serial eq '3AA8B7T11'.
    additionalProperties String
    classId String
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    moid String
    The unique identifier of this Managed Object instance.
    objectType String
    The fully-qualified name of the remote type referred by this relationship.
    selector String
    An OData $filter expression which describes the REST resource to be referenced. This field may be set instead of 'moid' by clients.

    1. If 'moid' is set this field is ignored.
    2. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of the resource matching the filter expression and populates it in the MoRef that is part of the object instance being inserted/updated to fulfill the REST request. An error is returned if the filter matches zero or more than one REST resource. An example filter string is: Serial eq '3AA8B7T11'.
    additionalProperties string
    classId string
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    moid string
    The unique identifier of this Managed Object instance.
    objectType string
    The fully-qualified name of the remote type referred by this relationship.
    selector string
    An OData $filter expression which describes the REST resource to be referenced. This field may be set instead of 'moid' by clients.

    1. If 'moid' is set this field is ignored.
    2. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of the resource matching the filter expression and populates it in the MoRef that is part of the object instance being inserted/updated to fulfill the REST request. An error is returned if the filter matches zero or more than one REST resource. An example filter string is: Serial eq '3AA8B7T11'.
    additional_properties str
    class_id str
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    moid str
    The unique identifier of this Managed Object instance.
    object_type str
    The fully-qualified name of the remote type referred by this relationship.
    selector str
    An OData $filter expression which describes the REST resource to be referenced. This field may be set instead of 'moid' by clients.

    1. If 'moid' is set this field is ignored.
    2. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of the resource matching the filter expression and populates it in the MoRef that is part of the object instance being inserted/updated to fulfill the REST request. An error is returned if the filter matches zero or more than one REST resource. An example filter string is: Serial eq '3AA8B7T11'.
    additionalProperties String
    classId String
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    moid String
    The unique identifier of this Managed Object instance.
    objectType String
    The fully-qualified name of the remote type referred by this relationship.
    selector String
    An OData $filter expression which describes the REST resource to be referenced. This field may be set instead of 'moid' by clients.

    1. If 'moid' is set this field is ignored.
    2. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of the resource matching the filter expression and populates it in the MoRef that is part of the object instance being inserted/updated to fulfill the REST request. An error is returned if the filter matches zero or more than one REST resource. An example filter string is: Serial eq '3AA8B7T11'.

    GetIamAppRegistrationTag

    AdditionalProperties string
    Key string
    The string representation of a tag key.
    Value string
    The string representation of a tag value.
    AdditionalProperties string
    Key string
    The string representation of a tag key.
    Value string
    The string representation of a tag value.
    additionalProperties String
    key String
    The string representation of a tag key.
    value String
    The string representation of a tag value.
    additionalProperties string
    key string
    The string representation of a tag key.
    value string
    The string representation of a tag value.
    additional_properties str
    key str
    The string representation of a tag key.
    value str
    The string representation of a tag value.
    additionalProperties String
    key String
    The string representation of a tag key.
    value String
    The string representation of a tag value.

    GetIamAppRegistrationUser

    AdditionalProperties string
    ClassId string
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    Moid string
    The unique identifier of this Managed Object instance.
    ObjectType string
    The fully-qualified name of the remote type referred by this relationship.
    Selector string
    An OData $filter expression which describes the REST resource to be referenced. This field may be set instead of 'moid' by clients.

    1. If 'moid' is set this field is ignored.
    2. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of the resource matching the filter expression and populates it in the MoRef that is part of the object instance being inserted/updated to fulfill the REST request. An error is returned if the filter matches zero or more than one REST resource. An example filter string is: Serial eq '3AA8B7T11'.
    AdditionalProperties string
    ClassId string
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    Moid string
    The unique identifier of this Managed Object instance.
    ObjectType string
    The fully-qualified name of the remote type referred by this relationship.
    Selector string
    An OData $filter expression which describes the REST resource to be referenced. This field may be set instead of 'moid' by clients.

    1. If 'moid' is set this field is ignored.
    2. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of the resource matching the filter expression and populates it in the MoRef that is part of the object instance being inserted/updated to fulfill the REST request. An error is returned if the filter matches zero or more than one REST resource. An example filter string is: Serial eq '3AA8B7T11'.
    additionalProperties String
    classId String
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    moid String
    The unique identifier of this Managed Object instance.
    objectType String
    The fully-qualified name of the remote type referred by this relationship.
    selector String
    An OData $filter expression which describes the REST resource to be referenced. This field may be set instead of 'moid' by clients.

    1. If 'moid' is set this field is ignored.
    2. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of the resource matching the filter expression and populates it in the MoRef that is part of the object instance being inserted/updated to fulfill the REST request. An error is returned if the filter matches zero or more than one REST resource. An example filter string is: Serial eq '3AA8B7T11'.
    additionalProperties string
    classId string
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    moid string
    The unique identifier of this Managed Object instance.
    objectType string
    The fully-qualified name of the remote type referred by this relationship.
    selector string
    An OData $filter expression which describes the REST resource to be referenced. This field may be set instead of 'moid' by clients.

    1. If 'moid' is set this field is ignored.
    2. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of the resource matching the filter expression and populates it in the MoRef that is part of the object instance being inserted/updated to fulfill the REST request. An error is returned if the filter matches zero or more than one REST resource. An example filter string is: Serial eq '3AA8B7T11'.
    additional_properties str
    class_id str
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    moid str
    The unique identifier of this Managed Object instance.
    object_type str
    The fully-qualified name of the remote type referred by this relationship.
    selector str
    An OData $filter expression which describes the REST resource to be referenced. This field may be set instead of 'moid' by clients.

    1. If 'moid' is set this field is ignored.
    2. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of the resource matching the filter expression and populates it in the MoRef that is part of the object instance being inserted/updated to fulfill the REST request. An error is returned if the filter matches zero or more than one REST resource. An example filter string is: Serial eq '3AA8B7T11'.
    additionalProperties String
    classId String
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    moid String
    The unique identifier of this Managed Object instance.
    objectType String
    The fully-qualified name of the remote type referred by this relationship.
    selector String
    An OData $filter expression which describes the REST resource to be referenced. This field may be set instead of 'moid' by clients.

    1. If 'moid' is set this field is ignored.
    2. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of the resource matching the filter expression and populates it in the MoRef that is part of the object instance being inserted/updated to fulfill the REST request. An error is returned if the filter matches zero or more than one REST resource. An example filter string is: Serial eq '3AA8B7T11'.

    GetIamAppRegistrationVersionContext

    AdditionalProperties string
    ClassId string
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    InterestedMos List<GetIamAppRegistrationVersionContextInterestedMo>
    MarkedForDeletion bool
    The flag to indicate if snapshot is marked for deletion or not. If flag is set then snapshot will be removed after the successful deployment of the policy.
    NrVersion string
    The version of the Managed Object, e.g. an incrementing number or a hash id.
    ObjectType string
    The fully-qualified name of the instantiated, concrete type. The value should be the same as the 'ClassId' property.
    RefMo GetIamAppRegistrationVersionContextRefMo
    A reference to the original Managed Object.
    Timestamp string
    The time this versioned Managed Object was created.
    VersionType string
    Specifies type of version. Currently the only supported value is "Configured" that is used to keep track of snapshots of policies and profiles that are intended to be configured to target endpoints.

    • Modified - Version created every time an object is modified.
    • Configured - Version created every time an object is configured to the service profile.
    • Deployed - Version created for objects related to a service profile when it is deployed.
    AdditionalProperties string
    ClassId string
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    InterestedMos []GetIamAppRegistrationVersionContextInterestedMo
    MarkedForDeletion bool
    The flag to indicate if snapshot is marked for deletion or not. If flag is set then snapshot will be removed after the successful deployment of the policy.
    NrVersion string
    The version of the Managed Object, e.g. an incrementing number or a hash id.
    ObjectType string
    The fully-qualified name of the instantiated, concrete type. The value should be the same as the 'ClassId' property.
    RefMo GetIamAppRegistrationVersionContextRefMo
    A reference to the original Managed Object.
    Timestamp string
    The time this versioned Managed Object was created.
    VersionType string
    Specifies type of version. Currently the only supported value is "Configured" that is used to keep track of snapshots of policies and profiles that are intended to be configured to target endpoints.

    • Modified - Version created every time an object is modified.
    • Configured - Version created every time an object is configured to the service profile.
    • Deployed - Version created for objects related to a service profile when it is deployed.
    additionalProperties String
    classId String
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    interestedMos List<GetIamAppRegistrationVersionContextInterestedMo>
    markedForDeletion Boolean
    The flag to indicate if snapshot is marked for deletion or not. If flag is set then snapshot will be removed after the successful deployment of the policy.
    nrVersion String
    The version of the Managed Object, e.g. an incrementing number or a hash id.
    objectType String
    The fully-qualified name of the instantiated, concrete type. The value should be the same as the 'ClassId' property.
    refMo GetIamAppRegistrationVersionContextRefMo
    A reference to the original Managed Object.
    timestamp String
    The time this versioned Managed Object was created.
    versionType String
    Specifies type of version. Currently the only supported value is "Configured" that is used to keep track of snapshots of policies and profiles that are intended to be configured to target endpoints.

    • Modified - Version created every time an object is modified.
    • Configured - Version created every time an object is configured to the service profile.
    • Deployed - Version created for objects related to a service profile when it is deployed.
    additionalProperties string
    classId string
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    interestedMos GetIamAppRegistrationVersionContextInterestedMo[]
    markedForDeletion boolean
    The flag to indicate if snapshot is marked for deletion or not. If flag is set then snapshot will be removed after the successful deployment of the policy.
    nrVersion string
    The version of the Managed Object, e.g. an incrementing number or a hash id.
    objectType string
    The fully-qualified name of the instantiated, concrete type. The value should be the same as the 'ClassId' property.
    refMo GetIamAppRegistrationVersionContextRefMo
    A reference to the original Managed Object.
    timestamp string
    The time this versioned Managed Object was created.
    versionType string
    Specifies type of version. Currently the only supported value is "Configured" that is used to keep track of snapshots of policies and profiles that are intended to be configured to target endpoints.

    • Modified - Version created every time an object is modified.
    • Configured - Version created every time an object is configured to the service profile.
    • Deployed - Version created for objects related to a service profile when it is deployed.
    additional_properties str
    class_id str
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    interested_mos Sequence[GetIamAppRegistrationVersionContextInterestedMo]
    marked_for_deletion bool
    The flag to indicate if snapshot is marked for deletion or not. If flag is set then snapshot will be removed after the successful deployment of the policy.
    nr_version str
    The version of the Managed Object, e.g. an incrementing number or a hash id.
    object_type str
    The fully-qualified name of the instantiated, concrete type. The value should be the same as the 'ClassId' property.
    ref_mo GetIamAppRegistrationVersionContextRefMo
    A reference to the original Managed Object.
    timestamp str
    The time this versioned Managed Object was created.
    version_type str
    Specifies type of version. Currently the only supported value is "Configured" that is used to keep track of snapshots of policies and profiles that are intended to be configured to target endpoints.

    • Modified - Version created every time an object is modified.
    • Configured - Version created every time an object is configured to the service profile.
    • Deployed - Version created for objects related to a service profile when it is deployed.
    additionalProperties String
    classId String
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    interestedMos List<Property Map>
    markedForDeletion Boolean
    The flag to indicate if snapshot is marked for deletion or not. If flag is set then snapshot will be removed after the successful deployment of the policy.
    nrVersion String
    The version of the Managed Object, e.g. an incrementing number or a hash id.
    objectType String
    The fully-qualified name of the instantiated, concrete type. The value should be the same as the 'ClassId' property.
    refMo Property Map
    A reference to the original Managed Object.
    timestamp String
    The time this versioned Managed Object was created.
    versionType String
    Specifies type of version. Currently the only supported value is "Configured" that is used to keep track of snapshots of policies and profiles that are intended to be configured to target endpoints.

    • Modified - Version created every time an object is modified.
    • Configured - Version created every time an object is configured to the service profile.
    • Deployed - Version created for objects related to a service profile when it is deployed.

    GetIamAppRegistrationVersionContextInterestedMo

    AdditionalProperties string
    ClassId string
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    Moid string
    The unique identifier of this Managed Object instance.
    ObjectType string
    The fully-qualified name of the remote type referred by this relationship.
    Selector string
    An OData $filter expression which describes the REST resource to be referenced. This field may be set instead of 'moid' by clients.

    1. If 'moid' is set this field is ignored.
    2. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of the resource matching the filter expression and populates it in the MoRef that is part of the object instance being inserted/updated to fulfill the REST request. An error is returned if the filter matches zero or more than one REST resource. An example filter string is: Serial eq '3AA8B7T11'.
    AdditionalProperties string
    ClassId string
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    Moid string
    The unique identifier of this Managed Object instance.
    ObjectType string
    The fully-qualified name of the remote type referred by this relationship.
    Selector string
    An OData $filter expression which describes the REST resource to be referenced. This field may be set instead of 'moid' by clients.

    1. If 'moid' is set this field is ignored.
    2. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of the resource matching the filter expression and populates it in the MoRef that is part of the object instance being inserted/updated to fulfill the REST request. An error is returned if the filter matches zero or more than one REST resource. An example filter string is: Serial eq '3AA8B7T11'.
    additionalProperties String
    classId String
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    moid String
    The unique identifier of this Managed Object instance.
    objectType String
    The fully-qualified name of the remote type referred by this relationship.
    selector String
    An OData $filter expression which describes the REST resource to be referenced. This field may be set instead of 'moid' by clients.

    1. If 'moid' is set this field is ignored.
    2. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of the resource matching the filter expression and populates it in the MoRef that is part of the object instance being inserted/updated to fulfill the REST request. An error is returned if the filter matches zero or more than one REST resource. An example filter string is: Serial eq '3AA8B7T11'.
    additionalProperties string
    classId string
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    moid string
    The unique identifier of this Managed Object instance.
    objectType string
    The fully-qualified name of the remote type referred by this relationship.
    selector string
    An OData $filter expression which describes the REST resource to be referenced. This field may be set instead of 'moid' by clients.

    1. If 'moid' is set this field is ignored.
    2. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of the resource matching the filter expression and populates it in the MoRef that is part of the object instance being inserted/updated to fulfill the REST request. An error is returned if the filter matches zero or more than one REST resource. An example filter string is: Serial eq '3AA8B7T11'.
    additional_properties str
    class_id str
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    moid str
    The unique identifier of this Managed Object instance.
    object_type str
    The fully-qualified name of the remote type referred by this relationship.
    selector str
    An OData $filter expression which describes the REST resource to be referenced. This field may be set instead of 'moid' by clients.

    1. If 'moid' is set this field is ignored.
    2. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of the resource matching the filter expression and populates it in the MoRef that is part of the object instance being inserted/updated to fulfill the REST request. An error is returned if the filter matches zero or more than one REST resource. An example filter string is: Serial eq '3AA8B7T11'.
    additionalProperties String
    classId String
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    moid String
    The unique identifier of this Managed Object instance.
    objectType String
    The fully-qualified name of the remote type referred by this relationship.
    selector String
    An OData $filter expression which describes the REST resource to be referenced. This field may be set instead of 'moid' by clients.

    1. If 'moid' is set this field is ignored.
    2. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of the resource matching the filter expression and populates it in the MoRef that is part of the object instance being inserted/updated to fulfill the REST request. An error is returned if the filter matches zero or more than one REST resource. An example filter string is: Serial eq '3AA8B7T11'.

    GetIamAppRegistrationVersionContextRefMo

    AdditionalProperties string
    ClassId string
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    Moid string
    The unique identifier of this Managed Object instance.
    ObjectType string
    The fully-qualified name of the remote type referred by this relationship.
    Selector string
    An OData $filter expression which describes the REST resource to be referenced. This field may be set instead of 'moid' by clients.

    1. If 'moid' is set this field is ignored.
    2. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of the resource matching the filter expression and populates it in the MoRef that is part of the object instance being inserted/updated to fulfill the REST request. An error is returned if the filter matches zero or more than one REST resource. An example filter string is: Serial eq '3AA8B7T11'.
    AdditionalProperties string
    ClassId string
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    Moid string
    The unique identifier of this Managed Object instance.
    ObjectType string
    The fully-qualified name of the remote type referred by this relationship.
    Selector string
    An OData $filter expression which describes the REST resource to be referenced. This field may be set instead of 'moid' by clients.

    1. If 'moid' is set this field is ignored.
    2. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of the resource matching the filter expression and populates it in the MoRef that is part of the object instance being inserted/updated to fulfill the REST request. An error is returned if the filter matches zero or more than one REST resource. An example filter string is: Serial eq '3AA8B7T11'.
    additionalProperties String
    classId String
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    moid String
    The unique identifier of this Managed Object instance.
    objectType String
    The fully-qualified name of the remote type referred by this relationship.
    selector String
    An OData $filter expression which describes the REST resource to be referenced. This field may be set instead of 'moid' by clients.

    1. If 'moid' is set this field is ignored.
    2. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of the resource matching the filter expression and populates it in the MoRef that is part of the object instance being inserted/updated to fulfill the REST request. An error is returned if the filter matches zero or more than one REST resource. An example filter string is: Serial eq '3AA8B7T11'.
    additionalProperties string
    classId string
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    moid string
    The unique identifier of this Managed Object instance.
    objectType string
    The fully-qualified name of the remote type referred by this relationship.
    selector string
    An OData $filter expression which describes the REST resource to be referenced. This field may be set instead of 'moid' by clients.

    1. If 'moid' is set this field is ignored.
    2. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of the resource matching the filter expression and populates it in the MoRef that is part of the object instance being inserted/updated to fulfill the REST request. An error is returned if the filter matches zero or more than one REST resource. An example filter string is: Serial eq '3AA8B7T11'.
    additional_properties str
    class_id str
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    moid str
    The unique identifier of this Managed Object instance.
    object_type str
    The fully-qualified name of the remote type referred by this relationship.
    selector str
    An OData $filter expression which describes the REST resource to be referenced. This field may be set instead of 'moid' by clients.

    1. If 'moid' is set this field is ignored.
    2. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of the resource matching the filter expression and populates it in the MoRef that is part of the object instance being inserted/updated to fulfill the REST request. An error is returned if the filter matches zero or more than one REST resource. An example filter string is: Serial eq '3AA8B7T11'.
    additionalProperties String
    classId String
    The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
    moid String
    The unique identifier of this Managed Object instance.
    objectType String
    The fully-qualified name of the remote type referred by this relationship.
    selector String
    An OData $filter expression which describes the REST resource to be referenced. This field may be set instead of 'moid' by clients.

    1. If 'moid' is set this field is ignored.
    2. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of the resource matching the filter expression and populates it in the MoRef that is part of the object instance being inserted/updated to fulfill the REST request. An error is returned if the filter matches zero or more than one REST resource. An example filter string is: Serial eq '3AA8B7T11'.

    Package Details

    Repository
    intersight ciscodevnet/terraform-provider-intersight
    License
    Notes
    This Pulumi package is based on the intersight Terraform Provider.
    intersight logo
    intersight 1.0.65 published on Wednesday, May 7, 2025 by ciscodevnet
    ciscodevnet/terraform-provider-intersight