Docs Home
Oracle Cloud Infrastructure v2.33.0 published on Thursday, May 1, 2025 by Pulumi
oci.DataSafe.getMaskingPolicies
Explore with Pulumi AI
This data source provides the list of Masking Policies in Oracle Cloud Infrastructure Data Safe service.
Gets a list of masking policies based on the specified query parameters.
Example Usage
import * as pulumi from "@pulumi/pulumi";
import * as oci from "@pulumi/oci";
const testMaskingPolicies = oci.DataSafe.getMaskingPolicies({
compartmentId: compartmentId,
accessLevel: maskingPolicyAccessLevel,
compartmentIdInSubtree: maskingPolicyCompartmentIdInSubtree,
displayName: maskingPolicyDisplayName,
maskingPolicyId: testMaskingPolicy.id,
sensitiveDataModelId: testSensitiveDataModel.id,
state: maskingPolicyState,
targetId: testTarget.id,
timeCreatedGreaterThanOrEqualTo: maskingPolicyTimeCreatedGreaterThanOrEqualTo,
timeCreatedLessThan: maskingPolicyTimeCreatedLessThan,
});
import pulumi
import pulumi_oci as oci
test_masking_policies = oci.DataSafe.get_masking_policies(compartment_id=compartment_id,
access_level=masking_policy_access_level,
compartment_id_in_subtree=masking_policy_compartment_id_in_subtree,
display_name=masking_policy_display_name,
masking_policy_id=test_masking_policy["id"],
sensitive_data_model_id=test_sensitive_data_model["id"],
state=masking_policy_state,
target_id=test_target["id"],
time_created_greater_than_or_equal_to=masking_policy_time_created_greater_than_or_equal_to,
time_created_less_than=masking_policy_time_created_less_than)
package main
import (
"github.com/pulumi/pulumi-oci/sdk/v2/go/oci/datasafe"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := datasafe.GetMaskingPolicies(ctx, &datasafe.GetMaskingPoliciesArgs{
CompartmentId: compartmentId,
AccessLevel: pulumi.StringRef(maskingPolicyAccessLevel),
CompartmentIdInSubtree: pulumi.BoolRef(maskingPolicyCompartmentIdInSubtree),
DisplayName: pulumi.StringRef(maskingPolicyDisplayName),
MaskingPolicyId: pulumi.StringRef(testMaskingPolicy.Id),
SensitiveDataModelId: pulumi.StringRef(testSensitiveDataModel.Id),
State: pulumi.StringRef(maskingPolicyState),
TargetId: pulumi.StringRef(testTarget.Id),
TimeCreatedGreaterThanOrEqualTo: pulumi.StringRef(maskingPolicyTimeCreatedGreaterThanOrEqualTo),
TimeCreatedLessThan: pulumi.StringRef(maskingPolicyTimeCreatedLessThan),
}, nil)
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Oci = Pulumi.Oci;
return await Deployment.RunAsync(() =>
{
var testMaskingPolicies = Oci.DataSafe.GetMaskingPolicies.Invoke(new()
{
CompartmentId = compartmentId,
AccessLevel = maskingPolicyAccessLevel,
CompartmentIdInSubtree = maskingPolicyCompartmentIdInSubtree,
DisplayName = maskingPolicyDisplayName,
MaskingPolicyId = testMaskingPolicy.Id,
SensitiveDataModelId = testSensitiveDataModel.Id,
State = maskingPolicyState,
TargetId = testTarget.Id,
TimeCreatedGreaterThanOrEqualTo = maskingPolicyTimeCreatedGreaterThanOrEqualTo,
TimeCreatedLessThan = maskingPolicyTimeCreatedLessThan,
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.oci.DataSafe.DataSafeFunctions;
import com.pulumi.oci.DataSafe.inputs.GetMaskingPoliciesArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
final var testMaskingPolicies = DataSafeFunctions.getMaskingPolicies(GetMaskingPoliciesArgs.builder()
.compartmentId(compartmentId)
.accessLevel(maskingPolicyAccessLevel)
.compartmentIdInSubtree(maskingPolicyCompartmentIdInSubtree)
.displayName(maskingPolicyDisplayName)
.maskingPolicyId(testMaskingPolicy.id())
.sensitiveDataModelId(testSensitiveDataModel.id())
.state(maskingPolicyState)
.targetId(testTarget.id())
.timeCreatedGreaterThanOrEqualTo(maskingPolicyTimeCreatedGreaterThanOrEqualTo)
.timeCreatedLessThan(maskingPolicyTimeCreatedLessThan)
.build());
}
}
variables:
testMaskingPolicies:
fn::invoke:
function: oci:DataSafe:getMaskingPolicies
arguments:
compartmentId: ${compartmentId}
accessLevel: ${maskingPolicyAccessLevel}
compartmentIdInSubtree: ${maskingPolicyCompartmentIdInSubtree}
displayName: ${maskingPolicyDisplayName}
maskingPolicyId: ${testMaskingPolicy.id}
sensitiveDataModelId: ${testSensitiveDataModel.id}
state: ${maskingPolicyState}
targetId: ${testTarget.id}
timeCreatedGreaterThanOrEqualTo: ${maskingPolicyTimeCreatedGreaterThanOrEqualTo}
timeCreatedLessThan: ${maskingPolicyTimeCreatedLessThan}
Using getMaskingPolicies
Two invocation forms are available. The direct form accepts plain arguments and either blocks until the result value is available, or returns a Promise-wrapped result. The output form accepts Input-wrapped arguments and returns an Output-wrapped result.
function getMaskingPolicies(args: GetMaskingPoliciesArgs, opts?: InvokeOptions): Promise<GetMaskingPoliciesResult>
function getMaskingPoliciesOutput(args: GetMaskingPoliciesOutputArgs, opts?: InvokeOptions): Output<GetMaskingPoliciesResult>def get_masking_policies(access_level: Optional[str] = None,
compartment_id: Optional[str] = None,
compartment_id_in_subtree: Optional[bool] = None,
display_name: Optional[str] = None,
filters: Optional[Sequence[GetMaskingPoliciesFilter]] = None,
masking_policy_id: Optional[str] = None,
sensitive_data_model_id: Optional[str] = None,
state: Optional[str] = None,
target_id: Optional[str] = None,
time_created_greater_than_or_equal_to: Optional[str] = None,
time_created_less_than: Optional[str] = None,
opts: Optional[InvokeOptions] = None) -> GetMaskingPoliciesResult
def get_masking_policies_output(access_level: Optional[pulumi.Input[str]] = None,
compartment_id: Optional[pulumi.Input[str]] = None,
compartment_id_in_subtree: Optional[pulumi.Input[bool]] = None,
display_name: Optional[pulumi.Input[str]] = None,
filters: Optional[pulumi.Input[Sequence[pulumi.Input[GetMaskingPoliciesFilterArgs]]]] = None,
masking_policy_id: Optional[pulumi.Input[str]] = None,
sensitive_data_model_id: Optional[pulumi.Input[str]] = None,
state: Optional[pulumi.Input[str]] = None,
target_id: Optional[pulumi.Input[str]] = None,
time_created_greater_than_or_equal_to: Optional[pulumi.Input[str]] = None,
time_created_less_than: Optional[pulumi.Input[str]] = None,
opts: Optional[InvokeOptions] = None) -> Output[GetMaskingPoliciesResult]func GetMaskingPolicies(ctx *Context, args *GetMaskingPoliciesArgs, opts ...InvokeOption) (*GetMaskingPoliciesResult, error)
func GetMaskingPoliciesOutput(ctx *Context, args *GetMaskingPoliciesOutputArgs, opts ...InvokeOption) GetMaskingPoliciesResultOutput> Note: This function is named GetMaskingPolicies in the Go SDK.
public static class GetMaskingPolicies
{
public static Task<GetMaskingPoliciesResult> InvokeAsync(GetMaskingPoliciesArgs args, InvokeOptions? opts = null)
public static Output<GetMaskingPoliciesResult> Invoke(GetMaskingPoliciesInvokeArgs args, InvokeOptions? opts = null)
}public static CompletableFuture<GetMaskingPoliciesResult> getMaskingPolicies(GetMaskingPoliciesArgs args, InvokeOptions options)
public static Output<GetMaskingPoliciesResult> getMaskingPolicies(GetMaskingPoliciesArgs args, InvokeOptions options)
fn::invoke:
function: oci:DataSafe/getMaskingPolicies:getMaskingPolicies
arguments:
# arguments dictionaryThe following arguments are supported:
- Compartment
Id string - A filter to return only resources that match the specified compartment OCID.
- Access
Level string - Valid values are RESTRICTED and ACCESSIBLE. Default is RESTRICTED. Setting this to ACCESSIBLE returns only those compartments for which the user has INSPECT permissions directly or indirectly (permissions can be on a resource in a subcompartment). When set to RESTRICTED permissions are checked and no partial results are displayed.
- Compartment
Id boolIn Subtree - Default is false. When set to true, the hierarchy of compartments is traversed and all compartments and subcompartments in the tenancy are returned. Depends on the 'accessLevel' setting.
- Display
Name string - A filter to return only resources that match the specified display name.
- Filters
List<Get
Masking Policies Filter> - Masking
Policy stringId - A filter to return only the resources that match the specified masking policy OCID.
- Sensitive
Data stringModel Id - A filter to return only the resources that match the specified sensitive data model OCID.
- State string
- A filter to return only the resources that match the specified lifecycle states.
- Target
Id string - A filter to return only items related to a specific target OCID.
- Time
Created stringGreater Than Or Equal To A filter to return only the resources that were created after the specified date and time, as defined by RFC3339. Using TimeCreatedGreaterThanOrEqualToQueryParam parameter retrieves all resources created after that date.
Example: 2016-12-19T16:39:57.600Z
- Time
Created stringLess Than Search for resources that were created before a specific date. Specifying this parameter corresponding
timeCreatedLessThanparameter will retrieve all resources created before the specified created date, in "YYYY-MM-ddThh:mmZ" format with a Z offset, as defined by RFC 3339.Example: 2016-12-19T16:39:57.600Z
- Compartment
Id string - A filter to return only resources that match the specified compartment OCID.
- Access
Level string - Valid values are RESTRICTED and ACCESSIBLE. Default is RESTRICTED. Setting this to ACCESSIBLE returns only those compartments for which the user has INSPECT permissions directly or indirectly (permissions can be on a resource in a subcompartment). When set to RESTRICTED permissions are checked and no partial results are displayed.
- Compartment
Id boolIn Subtree - Default is false. When set to true, the hierarchy of compartments is traversed and all compartments and subcompartments in the tenancy are returned. Depends on the 'accessLevel' setting.
- Display
Name string - A filter to return only resources that match the specified display name.
- Filters
[]Get
Masking Policies Filter - Masking
Policy stringId - A filter to return only the resources that match the specified masking policy OCID.
- Sensitive
Data stringModel Id - A filter to return only the resources that match the specified sensitive data model OCID.
- State string
- A filter to return only the resources that match the specified lifecycle states.
- Target
Id string - A filter to return only items related to a specific target OCID.
- Time
Created stringGreater Than Or Equal To A filter to return only the resources that were created after the specified date and time, as defined by RFC3339. Using TimeCreatedGreaterThanOrEqualToQueryParam parameter retrieves all resources created after that date.
Example: 2016-12-19T16:39:57.600Z
- Time
Created stringLess Than Search for resources that were created before a specific date. Specifying this parameter corresponding
timeCreatedLessThanparameter will retrieve all resources created before the specified created date, in "YYYY-MM-ddThh:mmZ" format with a Z offset, as defined by RFC 3339.Example: 2016-12-19T16:39:57.600Z
- compartment
Id String - A filter to return only resources that match the specified compartment OCID.
- access
Level String - Valid values are RESTRICTED and ACCESSIBLE. Default is RESTRICTED. Setting this to ACCESSIBLE returns only those compartments for which the user has INSPECT permissions directly or indirectly (permissions can be on a resource in a subcompartment). When set to RESTRICTED permissions are checked and no partial results are displayed.
- compartment
Id BooleanIn Subtree - Default is false. When set to true, the hierarchy of compartments is traversed and all compartments and subcompartments in the tenancy are returned. Depends on the 'accessLevel' setting.
- display
Name String - A filter to return only resources that match the specified display name.
- filters
List<Get
Masking Policies Filter> - masking
Policy StringId - A filter to return only the resources that match the specified masking policy OCID.
- sensitive
Data StringModel Id - A filter to return only the resources that match the specified sensitive data model OCID.
- state String
- A filter to return only the resources that match the specified lifecycle states.
- target
Id String - A filter to return only items related to a specific target OCID.
- time
Created StringGreater Than Or Equal To A filter to return only the resources that were created after the specified date and time, as defined by RFC3339. Using TimeCreatedGreaterThanOrEqualToQueryParam parameter retrieves all resources created after that date.
Example: 2016-12-19T16:39:57.600Z
- time
Created StringLess Than Search for resources that were created before a specific date. Specifying this parameter corresponding
timeCreatedLessThanparameter will retrieve all resources created before the specified created date, in "YYYY-MM-ddThh:mmZ" format with a Z offset, as defined by RFC 3339.Example: 2016-12-19T16:39:57.600Z
- compartment
Id string - A filter to return only resources that match the specified compartment OCID.
- access
Level string - Valid values are RESTRICTED and ACCESSIBLE. Default is RESTRICTED. Setting this to ACCESSIBLE returns only those compartments for which the user has INSPECT permissions directly or indirectly (permissions can be on a resource in a subcompartment). When set to RESTRICTED permissions are checked and no partial results are displayed.
- compartment
Id booleanIn Subtree - Default is false. When set to true, the hierarchy of compartments is traversed and all compartments and subcompartments in the tenancy are returned. Depends on the 'accessLevel' setting.
- display
Name string - A filter to return only resources that match the specified display name.
- filters
Get
Masking Policies Filter[] - masking
Policy stringId - A filter to return only the resources that match the specified masking policy OCID.
- sensitive
Data stringModel Id - A filter to return only the resources that match the specified sensitive data model OCID.
- state string
- A filter to return only the resources that match the specified lifecycle states.
- target
Id string - A filter to return only items related to a specific target OCID.
- time
Created stringGreater Than Or Equal To A filter to return only the resources that were created after the specified date and time, as defined by RFC3339. Using TimeCreatedGreaterThanOrEqualToQueryParam parameter retrieves all resources created after that date.
Example: 2016-12-19T16:39:57.600Z
- time
Created stringLess Than Search for resources that were created before a specific date. Specifying this parameter corresponding
timeCreatedLessThanparameter will retrieve all resources created before the specified created date, in "YYYY-MM-ddThh:mmZ" format with a Z offset, as defined by RFC 3339.Example: 2016-12-19T16:39:57.600Z
- compartment_
id str - A filter to return only resources that match the specified compartment OCID.
- access_
level str - Valid values are RESTRICTED and ACCESSIBLE. Default is RESTRICTED. Setting this to ACCESSIBLE returns only those compartments for which the user has INSPECT permissions directly or indirectly (permissions can be on a resource in a subcompartment). When set to RESTRICTED permissions are checked and no partial results are displayed.
- compartment_
id_ boolin_ subtree - Default is false. When set to true, the hierarchy of compartments is traversed and all compartments and subcompartments in the tenancy are returned. Depends on the 'accessLevel' setting.
- display_
name str - A filter to return only resources that match the specified display name.
- filters
Sequence[Get
Masking Policies Filter] - masking_
policy_ strid - A filter to return only the resources that match the specified masking policy OCID.
- sensitive_
data_ strmodel_ id - A filter to return only the resources that match the specified sensitive data model OCID.
- state str
- A filter to return only the resources that match the specified lifecycle states.
- target_
id str - A filter to return only items related to a specific target OCID.
- time_
created_ strgreater_ than_ or_ equal_ to A filter to return only the resources that were created after the specified date and time, as defined by RFC3339. Using TimeCreatedGreaterThanOrEqualToQueryParam parameter retrieves all resources created after that date.
Example: 2016-12-19T16:39:57.600Z
- time_
created_ strless_ than Search for resources that were created before a specific date. Specifying this parameter corresponding
timeCreatedLessThanparameter will retrieve all resources created before the specified created date, in "YYYY-MM-ddThh:mmZ" format with a Z offset, as defined by RFC 3339.Example: 2016-12-19T16:39:57.600Z
- compartment
Id String - A filter to return only resources that match the specified compartment OCID.
- access
Level String - Valid values are RESTRICTED and ACCESSIBLE. Default is RESTRICTED. Setting this to ACCESSIBLE returns only those compartments for which the user has INSPECT permissions directly or indirectly (permissions can be on a resource in a subcompartment). When set to RESTRICTED permissions are checked and no partial results are displayed.
- compartment
Id BooleanIn Subtree - Default is false. When set to true, the hierarchy of compartments is traversed and all compartments and subcompartments in the tenancy are returned. Depends on the 'accessLevel' setting.
- display
Name String - A filter to return only resources that match the specified display name.
- filters List<Property Map>
- masking
Policy StringId - A filter to return only the resources that match the specified masking policy OCID.
- sensitive
Data StringModel Id - A filter to return only the resources that match the specified sensitive data model OCID.
- state String
- A filter to return only the resources that match the specified lifecycle states.
- target
Id String - A filter to return only items related to a specific target OCID.
- time
Created StringGreater Than Or Equal To A filter to return only the resources that were created after the specified date and time, as defined by RFC3339. Using TimeCreatedGreaterThanOrEqualToQueryParam parameter retrieves all resources created after that date.
Example: 2016-12-19T16:39:57.600Z
- time
Created StringLess Than Search for resources that were created before a specific date. Specifying this parameter corresponding
timeCreatedLessThanparameter will retrieve all resources created before the specified created date, in "YYYY-MM-ddThh:mmZ" format with a Z offset, as defined by RFC 3339.Example: 2016-12-19T16:39:57.600Z
getMaskingPolicies Result
The following output properties are available:
- Compartment
Id string - The OCID of the compartment that contains the masking policy.
- Id string
- The provider-assigned unique ID for this managed resource.
- Masking
Policy List<GetCollections Masking Policies Masking Policy Collection> - The list of masking_policy_collection.
- Access
Level string - Compartment
Id boolIn Subtree - Display
Name string - The display name of the masking policy.
- Filters
List<Get
Masking Policies Filter> - Masking
Policy stringId - Sensitive
Data stringModel Id - The OCID of the sensitive data model that's used as the source of masking columns.
- State string
- The current state of the masking policy.
- Target
Id string - The OCID of the target database that's used as the source of masking columns.
- Time
Created stringGreater Than Or Equal To - Time
Created stringLess Than
- Compartment
Id string - The OCID of the compartment that contains the masking policy.
- Id string
- The provider-assigned unique ID for this managed resource.
- Masking
Policy []GetCollections Masking Policies Masking Policy Collection - The list of masking_policy_collection.
- Access
Level string - Compartment
Id boolIn Subtree - Display
Name string - The display name of the masking policy.
- Filters
[]Get
Masking Policies Filter - Masking
Policy stringId - Sensitive
Data stringModel Id - The OCID of the sensitive data model that's used as the source of masking columns.
- State string
- The current state of the masking policy.
- Target
Id string - The OCID of the target database that's used as the source of masking columns.
- Time
Created stringGreater Than Or Equal To - Time
Created stringLess Than
- compartment
Id String - The OCID of the compartment that contains the masking policy.
- id String
- The provider-assigned unique ID for this managed resource.
- masking
Policy List<GetCollections Masking Policies Masking Policy Collection> - The list of masking_policy_collection.
- access
Level String - compartment
Id BooleanIn Subtree - display
Name String - The display name of the masking policy.
- filters
List<Get
Masking Policies Filter> - masking
Policy StringId - sensitive
Data StringModel Id - The OCID of the sensitive data model that's used as the source of masking columns.
- state String
- The current state of the masking policy.
- target
Id String - The OCID of the target database that's used as the source of masking columns.
- time
Created StringGreater Than Or Equal To - time
Created StringLess Than
- compartment
Id string - The OCID of the compartment that contains the masking policy.
- id string
- The provider-assigned unique ID for this managed resource.
- masking
Policy GetCollections Masking Policies Masking Policy Collection[] - The list of masking_policy_collection.
- access
Level string - compartment
Id booleanIn Subtree - display
Name string - The display name of the masking policy.
- filters
Get
Masking Policies Filter[] - masking
Policy stringId - sensitive
Data stringModel Id - The OCID of the sensitive data model that's used as the source of masking columns.
- state string
- The current state of the masking policy.
- target
Id string - The OCID of the target database that's used as the source of masking columns.
- time
Created stringGreater Than Or Equal To - time
Created stringLess Than
- compartment_
id str - The OCID of the compartment that contains the masking policy.
- id str
- The provider-assigned unique ID for this managed resource.
- masking_
policy_ Sequence[Getcollections Masking Policies Masking Policy Collection] - The list of masking_policy_collection.
- access_
level str - compartment_
id_ boolin_ subtree - display_
name str - The display name of the masking policy.
- filters
Sequence[Get
Masking Policies Filter] - masking_
policy_ strid - sensitive_
data_ strmodel_ id - The OCID of the sensitive data model that's used as the source of masking columns.
- state str
- The current state of the masking policy.
- target_
id str - The OCID of the target database that's used as the source of masking columns.
- time_
created_ strgreater_ than_ or_ equal_ to - time_
created_ strless_ than
- compartment
Id String - The OCID of the compartment that contains the masking policy.
- id String
- The provider-assigned unique ID for this managed resource.
- masking
Policy List<Property Map>Collections - The list of masking_policy_collection.
- access
Level String - compartment
Id BooleanIn Subtree - display
Name String - The display name of the masking policy.
- filters List<Property Map>
- masking
Policy StringId - sensitive
Data StringModel Id - The OCID of the sensitive data model that's used as the source of masking columns.
- state String
- The current state of the masking policy.
- target
Id String - The OCID of the target database that's used as the source of masking columns.
- time
Created StringGreater Than Or Equal To - time
Created StringLess Than
Supporting Types
GetMaskingPoliciesFilter
GetMaskingPoliciesMaskingPolicyCollection
GetMaskingPoliciesMaskingPolicyCollectionItem
- Add
Masking intColumns From Sdm Trigger - Column
Sources List<GetMasking Policies Masking Policy Collection Item Column Source> - The source of masking columns.
- Compartment
Id string - A filter to return only resources that match the specified compartment OCID.
- Dictionary<string, string>
- Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags Example:
{"Operations.CostCenter": "42"} - Description string
- The description of the masking policy.
- Display
Name string - A filter to return only resources that match the specified display name.
- Dictionary<string, string>
- Free-form tags for this resource. Each tag is a simple key-value pair with no predefined name, type, or namespace. For more information, see Resource Tags Example:
{"Department": "Finance"} - Generate
Health intReport Trigger - Id string
- The OCID of the masking policy.
- Is
Drop boolTemp Tables Enabled - Indicates if the temporary tables created during a masking operation should be dropped after masking. It's enabled by default. Set this attribute to false to preserve the temporary tables. Masking creates temporary tables that map the original sensitive data values to mask values. By default, these temporary tables are dropped after masking. But, in some cases, you may want to preserve this information to track how masking changed your data. Note that doing so compromises security. These tables must be dropped before the database is available for unprivileged users.
- Is
Redo boolLogging Enabled - Indicates if redo logging is enabled during a masking operation. It's disabled by default. Set this attribute to true to enable redo logging. By default, masking disables redo logging and flashback logging to purge any original unmasked data from logs. However, in certain circumstances when you only want to test masking, rollback changes, and retry masking, you could enable logging and use a flashback database to retrieve the original unmasked data after it has been masked.
- Is
Refresh boolStats Enabled - Indicates if statistics gathering is enabled. It's enabled by default. Set this attribute to false to disable statistics gathering. The masking process gathers statistics on masked database tables after masking completes.
- Parallel
Degree string - Specifies options to enable parallel execution when running data masking. Allowed values are 'NONE' (no parallelism), 'DEFAULT' (the Oracle Database computes the optimum degree of parallelism) or an integer value to be used as the degree of parallelism. Parallel execution helps effectively use multiple CPUs and improve masking performance. Refer to the Oracle Database parallel execution framework when choosing an explicit degree of parallelism.
- Post
Masking stringScript - A post-masking script, which can contain SQL and PL/SQL statements. It's executed after the core masking script generated using the masking policy. It's usually used to perform additional transformation or cleanup work after masking.
- Pre
Masking stringScript - A pre-masking script, which can contain SQL and PL/SQL statements. It's executed before the core masking script generated using the masking policy. It's usually used to perform any preparation or prerequisite work before masking data.
- Recompile string
- Specifies how to recompile invalid objects post data masking. Allowed values are 'SERIAL' (recompile in serial), 'PARALLEL' (recompile in parallel), 'NONE' (do not recompile). If it's set to PARALLEL, the value of parallelDegree attribute is used. Use the built-in UTL_RECOMP package to recompile any remaining invalid objects after masking completes.
- State string
- A filter to return only the resources that match the specified lifecycle states.
- Time
Created string - The date and time the masking policy was created, in the format defined by RFC3339.
- Time
Updated string - The date and time the masking policy was last updated, in the format defined by RFC3339
- Add
Masking intColumns From Sdm Trigger - Column
Sources []GetMasking Policies Masking Policy Collection Item Column Source - The source of masking columns.
- Compartment
Id string - A filter to return only resources that match the specified compartment OCID.
- map[string]string
- Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags Example:
{"Operations.CostCenter": "42"} - Description string
- The description of the masking policy.
- Display
Name string - A filter to return only resources that match the specified display name.
- map[string]string
- Free-form tags for this resource. Each tag is a simple key-value pair with no predefined name, type, or namespace. For more information, see Resource Tags Example:
{"Department": "Finance"} - Generate
Health intReport Trigger - Id string
- The OCID of the masking policy.
- Is
Drop boolTemp Tables Enabled - Indicates if the temporary tables created during a masking operation should be dropped after masking. It's enabled by default. Set this attribute to false to preserve the temporary tables. Masking creates temporary tables that map the original sensitive data values to mask values. By default, these temporary tables are dropped after masking. But, in some cases, you may want to preserve this information to track how masking changed your data. Note that doing so compromises security. These tables must be dropped before the database is available for unprivileged users.
- Is
Redo boolLogging Enabled - Indicates if redo logging is enabled during a masking operation. It's disabled by default. Set this attribute to true to enable redo logging. By default, masking disables redo logging and flashback logging to purge any original unmasked data from logs. However, in certain circumstances when you only want to test masking, rollback changes, and retry masking, you could enable logging and use a flashback database to retrieve the original unmasked data after it has been masked.
- Is
Refresh boolStats Enabled - Indicates if statistics gathering is enabled. It's enabled by default. Set this attribute to false to disable statistics gathering. The masking process gathers statistics on masked database tables after masking completes.
- Parallel
Degree string - Specifies options to enable parallel execution when running data masking. Allowed values are 'NONE' (no parallelism), 'DEFAULT' (the Oracle Database computes the optimum degree of parallelism) or an integer value to be used as the degree of parallelism. Parallel execution helps effectively use multiple CPUs and improve masking performance. Refer to the Oracle Database parallel execution framework when choosing an explicit degree of parallelism.
- Post
Masking stringScript - A post-masking script, which can contain SQL and PL/SQL statements. It's executed after the core masking script generated using the masking policy. It's usually used to perform additional transformation or cleanup work after masking.
- Pre
Masking stringScript - A pre-masking script, which can contain SQL and PL/SQL statements. It's executed before the core masking script generated using the masking policy. It's usually used to perform any preparation or prerequisite work before masking data.
- Recompile string
- Specifies how to recompile invalid objects post data masking. Allowed values are 'SERIAL' (recompile in serial), 'PARALLEL' (recompile in parallel), 'NONE' (do not recompile). If it's set to PARALLEL, the value of parallelDegree attribute is used. Use the built-in UTL_RECOMP package to recompile any remaining invalid objects after masking completes.
- State string
- A filter to return only the resources that match the specified lifecycle states.
- Time
Created string - The date and time the masking policy was created, in the format defined by RFC3339.
- Time
Updated string - The date and time the masking policy was last updated, in the format defined by RFC3339
- add
Masking IntegerColumns From Sdm Trigger - column
Sources List<GetMasking Policies Masking Policy Collection Item Column Source> - The source of masking columns.
- compartment
Id String - A filter to return only resources that match the specified compartment OCID.
- Map<String,String>
- Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags Example:
{"Operations.CostCenter": "42"} - description String
- The description of the masking policy.
- display
Name String - A filter to return only resources that match the specified display name.
- Map<String,String>
- Free-form tags for this resource. Each tag is a simple key-value pair with no predefined name, type, or namespace. For more information, see Resource Tags Example:
{"Department": "Finance"} - generate
Health IntegerReport Trigger - id String
- The OCID of the masking policy.
- is
Drop BooleanTemp Tables Enabled - Indicates if the temporary tables created during a masking operation should be dropped after masking. It's enabled by default. Set this attribute to false to preserve the temporary tables. Masking creates temporary tables that map the original sensitive data values to mask values. By default, these temporary tables are dropped after masking. But, in some cases, you may want to preserve this information to track how masking changed your data. Note that doing so compromises security. These tables must be dropped before the database is available for unprivileged users.
- is
Redo BooleanLogging Enabled - Indicates if redo logging is enabled during a masking operation. It's disabled by default. Set this attribute to true to enable redo logging. By default, masking disables redo logging and flashback logging to purge any original unmasked data from logs. However, in certain circumstances when you only want to test masking, rollback changes, and retry masking, you could enable logging and use a flashback database to retrieve the original unmasked data after it has been masked.
- is
Refresh BooleanStats Enabled - Indicates if statistics gathering is enabled. It's enabled by default. Set this attribute to false to disable statistics gathering. The masking process gathers statistics on masked database tables after masking completes.
- parallel
Degree String - Specifies options to enable parallel execution when running data masking. Allowed values are 'NONE' (no parallelism), 'DEFAULT' (the Oracle Database computes the optimum degree of parallelism) or an integer value to be used as the degree of parallelism. Parallel execution helps effectively use multiple CPUs and improve masking performance. Refer to the Oracle Database parallel execution framework when choosing an explicit degree of parallelism.
- post
Masking StringScript - A post-masking script, which can contain SQL and PL/SQL statements. It's executed after the core masking script generated using the masking policy. It's usually used to perform additional transformation or cleanup work after masking.
- pre
Masking StringScript - A pre-masking script, which can contain SQL and PL/SQL statements. It's executed before the core masking script generated using the masking policy. It's usually used to perform any preparation or prerequisite work before masking data.
- recompile String
- Specifies how to recompile invalid objects post data masking. Allowed values are 'SERIAL' (recompile in serial), 'PARALLEL' (recompile in parallel), 'NONE' (do not recompile). If it's set to PARALLEL, the value of parallelDegree attribute is used. Use the built-in UTL_RECOMP package to recompile any remaining invalid objects after masking completes.
- state String
- A filter to return only the resources that match the specified lifecycle states.
- time
Created String - The date and time the masking policy was created, in the format defined by RFC3339.
- time
Updated String - The date and time the masking policy was last updated, in the format defined by RFC3339
- add
Masking numberColumns From Sdm Trigger - column
Sources GetMasking Policies Masking Policy Collection Item Column Source[] - The source of masking columns.
- compartment
Id string - A filter to return only resources that match the specified compartment OCID.
- {[key: string]: string}
- Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags Example:
{"Operations.CostCenter": "42"} - description string
- The description of the masking policy.
- display
Name string - A filter to return only resources that match the specified display name.
- {[key: string]: string}
- Free-form tags for this resource. Each tag is a simple key-value pair with no predefined name, type, or namespace. For more information, see Resource Tags Example:
{"Department": "Finance"} - generate
Health numberReport Trigger - id string
- The OCID of the masking policy.
- is
Drop booleanTemp Tables Enabled - Indicates if the temporary tables created during a masking operation should be dropped after masking. It's enabled by default. Set this attribute to false to preserve the temporary tables. Masking creates temporary tables that map the original sensitive data values to mask values. By default, these temporary tables are dropped after masking. But, in some cases, you may want to preserve this information to track how masking changed your data. Note that doing so compromises security. These tables must be dropped before the database is available for unprivileged users.
- is
Redo booleanLogging Enabled - Indicates if redo logging is enabled during a masking operation. It's disabled by default. Set this attribute to true to enable redo logging. By default, masking disables redo logging and flashback logging to purge any original unmasked data from logs. However, in certain circumstances when you only want to test masking, rollback changes, and retry masking, you could enable logging and use a flashback database to retrieve the original unmasked data after it has been masked.
- is
Refresh booleanStats Enabled - Indicates if statistics gathering is enabled. It's enabled by default. Set this attribute to false to disable statistics gathering. The masking process gathers statistics on masked database tables after masking completes.
- parallel
Degree string - Specifies options to enable parallel execution when running data masking. Allowed values are 'NONE' (no parallelism), 'DEFAULT' (the Oracle Database computes the optimum degree of parallelism) or an integer value to be used as the degree of parallelism. Parallel execution helps effectively use multiple CPUs and improve masking performance. Refer to the Oracle Database parallel execution framework when choosing an explicit degree of parallelism.
- post
Masking stringScript - A post-masking script, which can contain SQL and PL/SQL statements. It's executed after the core masking script generated using the masking policy. It's usually used to perform additional transformation or cleanup work after masking.
- pre
Masking stringScript - A pre-masking script, which can contain SQL and PL/SQL statements. It's executed before the core masking script generated using the masking policy. It's usually used to perform any preparation or prerequisite work before masking data.
- recompile string
- Specifies how to recompile invalid objects post data masking. Allowed values are 'SERIAL' (recompile in serial), 'PARALLEL' (recompile in parallel), 'NONE' (do not recompile). If it's set to PARALLEL, the value of parallelDegree attribute is used. Use the built-in UTL_RECOMP package to recompile any remaining invalid objects after masking completes.
- state string
- A filter to return only the resources that match the specified lifecycle states.
- time
Created string - The date and time the masking policy was created, in the format defined by RFC3339.
- time
Updated string - The date and time the masking policy was last updated, in the format defined by RFC3339
- add_
masking_ intcolumns_ from_ sdm_ trigger - column_
sources Sequence[GetMasking Policies Masking Policy Collection Item Column Source] - The source of masking columns.
- compartment_
id str - A filter to return only resources that match the specified compartment OCID.
- Mapping[str, str]
- Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags Example:
{"Operations.CostCenter": "42"} - description str
- The description of the masking policy.
- display_
name str - A filter to return only resources that match the specified display name.
- Mapping[str, str]
- Free-form tags for this resource. Each tag is a simple key-value pair with no predefined name, type, or namespace. For more information, see Resource Tags Example:
{"Department": "Finance"} - generate_
health_ intreport_ trigger - id str
- The OCID of the masking policy.
- is_
drop_ booltemp_ tables_ enabled - Indicates if the temporary tables created during a masking operation should be dropped after masking. It's enabled by default. Set this attribute to false to preserve the temporary tables. Masking creates temporary tables that map the original sensitive data values to mask values. By default, these temporary tables are dropped after masking. But, in some cases, you may want to preserve this information to track how masking changed your data. Note that doing so compromises security. These tables must be dropped before the database is available for unprivileged users.
- is_
redo_ boollogging_ enabled - Indicates if redo logging is enabled during a masking operation. It's disabled by default. Set this attribute to true to enable redo logging. By default, masking disables redo logging and flashback logging to purge any original unmasked data from logs. However, in certain circumstances when you only want to test masking, rollback changes, and retry masking, you could enable logging and use a flashback database to retrieve the original unmasked data after it has been masked.
- is_
refresh_ boolstats_ enabled - Indicates if statistics gathering is enabled. It's enabled by default. Set this attribute to false to disable statistics gathering. The masking process gathers statistics on masked database tables after masking completes.
- parallel_
degree str - Specifies options to enable parallel execution when running data masking. Allowed values are 'NONE' (no parallelism), 'DEFAULT' (the Oracle Database computes the optimum degree of parallelism) or an integer value to be used as the degree of parallelism. Parallel execution helps effectively use multiple CPUs and improve masking performance. Refer to the Oracle Database parallel execution framework when choosing an explicit degree of parallelism.
- post_
masking_ strscript - A post-masking script, which can contain SQL and PL/SQL statements. It's executed after the core masking script generated using the masking policy. It's usually used to perform additional transformation or cleanup work after masking.
- pre_
masking_ strscript - A pre-masking script, which can contain SQL and PL/SQL statements. It's executed before the core masking script generated using the masking policy. It's usually used to perform any preparation or prerequisite work before masking data.
- recompile str
- Specifies how to recompile invalid objects post data masking. Allowed values are 'SERIAL' (recompile in serial), 'PARALLEL' (recompile in parallel), 'NONE' (do not recompile). If it's set to PARALLEL, the value of parallelDegree attribute is used. Use the built-in UTL_RECOMP package to recompile any remaining invalid objects after masking completes.
- state str
- A filter to return only the resources that match the specified lifecycle states.
- time_
created str - The date and time the masking policy was created, in the format defined by RFC3339.
- time_
updated str - The date and time the masking policy was last updated, in the format defined by RFC3339
- add
Masking NumberColumns From Sdm Trigger - column
Sources List<Property Map> - The source of masking columns.
- compartment
Id String - A filter to return only resources that match the specified compartment OCID.
- Map<String>
- Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags Example:
{"Operations.CostCenter": "42"} - description String
- The description of the masking policy.
- display
Name String - A filter to return only resources that match the specified display name.
- Map<String>
- Free-form tags for this resource. Each tag is a simple key-value pair with no predefined name, type, or namespace. For more information, see Resource Tags Example:
{"Department": "Finance"} - generate
Health NumberReport Trigger - id String
- The OCID of the masking policy.
- is
Drop BooleanTemp Tables Enabled - Indicates if the temporary tables created during a masking operation should be dropped after masking. It's enabled by default. Set this attribute to false to preserve the temporary tables. Masking creates temporary tables that map the original sensitive data values to mask values. By default, these temporary tables are dropped after masking. But, in some cases, you may want to preserve this information to track how masking changed your data. Note that doing so compromises security. These tables must be dropped before the database is available for unprivileged users.
- is
Redo BooleanLogging Enabled - Indicates if redo logging is enabled during a masking operation. It's disabled by default. Set this attribute to true to enable redo logging. By default, masking disables redo logging and flashback logging to purge any original unmasked data from logs. However, in certain circumstances when you only want to test masking, rollback changes, and retry masking, you could enable logging and use a flashback database to retrieve the original unmasked data after it has been masked.
- is
Refresh BooleanStats Enabled - Indicates if statistics gathering is enabled. It's enabled by default. Set this attribute to false to disable statistics gathering. The masking process gathers statistics on masked database tables after masking completes.
- parallel
Degree String - Specifies options to enable parallel execution when running data masking. Allowed values are 'NONE' (no parallelism), 'DEFAULT' (the Oracle Database computes the optimum degree of parallelism) or an integer value to be used as the degree of parallelism. Parallel execution helps effectively use multiple CPUs and improve masking performance. Refer to the Oracle Database parallel execution framework when choosing an explicit degree of parallelism.
- post
Masking StringScript - A post-masking script, which can contain SQL and PL/SQL statements. It's executed after the core masking script generated using the masking policy. It's usually used to perform additional transformation or cleanup work after masking.
- pre
Masking StringScript - A pre-masking script, which can contain SQL and PL/SQL statements. It's executed before the core masking script generated using the masking policy. It's usually used to perform any preparation or prerequisite work before masking data.
- recompile String
- Specifies how to recompile invalid objects post data masking. Allowed values are 'SERIAL' (recompile in serial), 'PARALLEL' (recompile in parallel), 'NONE' (do not recompile). If it's set to PARALLEL, the value of parallelDegree attribute is used. Use the built-in UTL_RECOMP package to recompile any remaining invalid objects after masking completes.
- state String
- A filter to return only the resources that match the specified lifecycle states.
- time
Created String - The date and time the masking policy was created, in the format defined by RFC3339.
- time
Updated String - The date and time the masking policy was last updated, in the format defined by RFC3339
GetMaskingPoliciesMaskingPolicyCollectionItemColumnSource
- Column
Source string - The source of masking columns.
- Sensitive
Data stringModel Id - A filter to return only the resources that match the specified sensitive data model OCID.
- Target
Id string - A filter to return only items related to a specific target OCID.
- Column
Source string - The source of masking columns.
- Sensitive
Data stringModel Id - A filter to return only the resources that match the specified sensitive data model OCID.
- Target
Id string - A filter to return only items related to a specific target OCID.
- column
Source String - The source of masking columns.
- sensitive
Data StringModel Id - A filter to return only the resources that match the specified sensitive data model OCID.
- target
Id String - A filter to return only items related to a specific target OCID.
- column
Source string - The source of masking columns.
- sensitive
Data stringModel Id - A filter to return only the resources that match the specified sensitive data model OCID.
- target
Id string - A filter to return only items related to a specific target OCID.
- column_
source str - The source of masking columns.
- sensitive_
data_ strmodel_ id - A filter to return only the resources that match the specified sensitive data model OCID.
- target_
id str - A filter to return only items related to a specific target OCID.
- column
Source String - The source of masking columns.
- sensitive
Data StringModel Id - A filter to return only the resources that match the specified sensitive data model OCID.
- target
Id String - A filter to return only items related to a specific target OCID.
Package Details
- Repository
- oci pulumi/pulumi-oci
- License
- Apache-2.0
- Notes
- This Pulumi package is based on the
ociTerraform Provider.