Oracle Cloud Infrastructure v2.33.0, May 1 25

Oracle Cloud Infrastructure v2.33.0 published on Thursday, May 1, 2025 by Pulumi

oci.DelegateAccessControl.DelegationControl

Explore with Pulumi AI

Oracle Cloud Infrastructure v2.33.0 published on Thursday, May 1, 2025 by Pulumi

Example Usage

import * as pulumi from "@pulumi/pulumi";
import * as oci from "@pulumi/oci";

const testDelegationControl = new oci.delegateaccesscontrol.DelegationControl("test_delegation_control", {
    compartmentId: compartmentId,
    delegationSubscriptionIds: delegationControlDelegationSubscriptionIds,
    displayName: delegationControlDisplayName,
    notificationMessageFormat: delegationControlNotificationMessageFormat,
    notificationTopicId: testNotificationTopic.id,
    resourceIds: delegationControlResourceIds,
    resourceType: delegationControlResourceType,
    definedTags: {
        "Operations.CostCenter": "42",
    },
    description: delegationControlDescription,
    freeformTags: {
        Department: "Finance",
    },
    isAutoApproveDuringMaintenance: delegationControlIsAutoApproveDuringMaintenance,
    numApprovalsRequired: delegationControlNumApprovalsRequired,
    preApprovedServiceProviderActionNames: delegationControlPreApprovedServiceProviderActionNames,
    vaultId: testVault.id,
    vaultKeyId: testKey.id,
});

import pulumi
import pulumi_oci as oci

test_delegation_control = oci.delegate_access_control.DelegationControl("test_delegation_control",
    compartment_id=compartment_id,
    delegation_subscription_ids=delegation_control_delegation_subscription_ids,
    display_name=delegation_control_display_name,
    notification_message_format=delegation_control_notification_message_format,
    notification_topic_id=test_notification_topic["id"],
    resource_ids=delegation_control_resource_ids,
    resource_type=delegation_control_resource_type,
    defined_tags={
        "Operations.CostCenter": "42",
    },
    description=delegation_control_description,
    freeform_tags={
        "Department": "Finance",
    },
    is_auto_approve_during_maintenance=delegation_control_is_auto_approve_during_maintenance,
    num_approvals_required=delegation_control_num_approvals_required,
    pre_approved_service_provider_action_names=delegation_control_pre_approved_service_provider_action_names,
    vault_id=test_vault["id"],
    vault_key_id=test_key["id"])

package main

import (
	"github.com/pulumi/pulumi-oci/sdk/v2/go/oci/delegateaccesscontrol"
	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := delegateaccesscontrol.NewDelegationControl(ctx, "test_delegation_control", &delegateaccesscontrol.DelegationControlArgs{
			CompartmentId:             pulumi.Any(compartmentId),
			DelegationSubscriptionIds: pulumi.Any(delegationControlDelegationSubscriptionIds),
			DisplayName:               pulumi.Any(delegationControlDisplayName),
			NotificationMessageFormat: pulumi.Any(delegationControlNotificationMessageFormat),
			NotificationTopicId:       pulumi.Any(testNotificationTopic.Id),
			ResourceIds:               pulumi.Any(delegationControlResourceIds),
			ResourceType:              pulumi.Any(delegationControlResourceType),
			DefinedTags: pulumi.StringMap{
				"Operations.CostCenter": pulumi.String("42"),
			},
			Description: pulumi.Any(delegationControlDescription),
			FreeformTags: pulumi.StringMap{
				"Department": pulumi.String("Finance"),
			},
			IsAutoApproveDuringMaintenance:        pulumi.Any(delegationControlIsAutoApproveDuringMaintenance),
			NumApprovalsRequired:                  pulumi.Any(delegationControlNumApprovalsRequired),
			PreApprovedServiceProviderActionNames: pulumi.Any(delegationControlPreApprovedServiceProviderActionNames),
			VaultId:                               pulumi.Any(testVault.Id),
			VaultKeyId:                            pulumi.Any(testKey.Id),
		})
		if err != nil {
			return err
		}
		return nil
	})
}

using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Oci = Pulumi.Oci;

return await Deployment.RunAsync(() => 
{
    var testDelegationControl = new Oci.DelegateAccessControl.DelegationControl("test_delegation_control", new()
    {
        CompartmentId = compartmentId,
        DelegationSubscriptionIds = delegationControlDelegationSubscriptionIds,
        DisplayName = delegationControlDisplayName,
        NotificationMessageFormat = delegationControlNotificationMessageFormat,
        NotificationTopicId = testNotificationTopic.Id,
        ResourceIds = delegationControlResourceIds,
        ResourceType = delegationControlResourceType,
        DefinedTags = 
        {
            { "Operations.CostCenter", "42" },
        },
        Description = delegationControlDescription,
        FreeformTags = 
        {
            { "Department", "Finance" },
        },
        IsAutoApproveDuringMaintenance = delegationControlIsAutoApproveDuringMaintenance,
        NumApprovalsRequired = delegationControlNumApprovalsRequired,
        PreApprovedServiceProviderActionNames = delegationControlPreApprovedServiceProviderActionNames,
        VaultId = testVault.Id,
        VaultKeyId = testKey.Id,
    });

});

package generated_program;

import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.oci.DelegateAccessControl.DelegationControl;
import com.pulumi.oci.DelegateAccessControl.DelegationControlArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;

public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }

    public static void stack(Context ctx) {
        var testDelegationControl = new DelegationControl("testDelegationControl", DelegationControlArgs.builder()
            .compartmentId(compartmentId)
            .delegationSubscriptionIds(delegationControlDelegationSubscriptionIds)
            .displayName(delegationControlDisplayName)
            .notificationMessageFormat(delegationControlNotificationMessageFormat)
            .notificationTopicId(testNotificationTopic.id())
            .resourceIds(delegationControlResourceIds)
            .resourceType(delegationControlResourceType)
            .definedTags(Map.of("Operations.CostCenter", "42"))
            .description(delegationControlDescription)
            .freeformTags(Map.of("Department", "Finance"))
            .isAutoApproveDuringMaintenance(delegationControlIsAutoApproveDuringMaintenance)
            .numApprovalsRequired(delegationControlNumApprovalsRequired)
            .preApprovedServiceProviderActionNames(delegationControlPreApprovedServiceProviderActionNames)
            .vaultId(testVault.id())
            .vaultKeyId(testKey.id())
            .build());

    }
}

resources:
  testDelegationControl:
    type: oci:DelegateAccessControl:DelegationControl
    name: test_delegation_control
    properties:
      compartmentId: ${compartmentId}
      delegationSubscriptionIds: ${delegationControlDelegationSubscriptionIds}
      displayName: ${delegationControlDisplayName}
      notificationMessageFormat: ${delegationControlNotificationMessageFormat}
      notificationTopicId: ${testNotificationTopic.id}
      resourceIds: ${delegationControlResourceIds}
      resourceType: ${delegationControlResourceType}
      definedTags:
        Operations.CostCenter: '42'
      description: ${delegationControlDescription}
      freeformTags:
        Department: Finance
      isAutoApproveDuringMaintenance: ${delegationControlIsAutoApproveDuringMaintenance}
      numApprovalsRequired: ${delegationControlNumApprovalsRequired}
      preApprovedServiceProviderActionNames: ${delegationControlPreApprovedServiceProviderActionNames}
      vaultId: ${testVault.id}
      vaultKeyId: ${testKey.id}

Create DelegationControl Resource

Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.

Constructor syntax

new DelegationControl(name: string, args: DelegationControlArgs, opts?: CustomResourceOptions);

@overload
def DelegationControl(resource_name: str,
                      args: DelegationControlArgs,
                      opts: Optional[ResourceOptions] = None)

@overload
def DelegationControl(resource_name: str,
                      opts: Optional[ResourceOptions] = None,
                      notification_message_format: Optional[str] = None,
                      resource_type: Optional[str] = None,
                      delegation_subscription_ids: Optional[Sequence[str]] = None,
                      resource_ids: Optional[Sequence[str]] = None,
                      display_name: Optional[str] = None,
                      notification_topic_id: Optional[str] = None,
                      compartment_id: Optional[str] = None,
                      is_auto_approve_during_maintenance: Optional[bool] = None,
                      freeform_tags: Optional[Mapping[str, str]] = None,
                      num_approvals_required: Optional[int] = None,
                      pre_approved_service_provider_action_names: Optional[Sequence[str]] = None,
                      description: Optional[str] = None,
                      defined_tags: Optional[Mapping[str, str]] = None,
                      vault_id: Optional[str] = None,
                      vault_key_id: Optional[str] = None)

func NewDelegationControl(ctx *Context, name string, args DelegationControlArgs, opts ...ResourceOption) (*DelegationControl, error)

public DelegationControl(string name, DelegationControlArgs args, CustomResourceOptions? opts = null)

public DelegationControl(String name, DelegationControlArgs args)
public DelegationControl(String name, DelegationControlArgs args, CustomResourceOptions options)

type: oci:DelegateAccessControl:DelegationControl
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.

Parameters

name string: The unique name of the resource.
args DelegationControlArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

resource_name str: The unique name of the resource.
args DelegationControlArgs: The arguments to resource properties.
opts ResourceOptions: Bag of options to control resource's behavior.

ctx Context: Context object for the current deployment.
name string: The unique name of the resource.
args DelegationControlArgs: The arguments to resource properties.
opts ResourceOption: Bag of options to control resource's behavior.

name string: The unique name of the resource.
args DelegationControlArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

name String: The unique name of the resource.
args DelegationControlArgs: The arguments to resource properties.
options CustomResourceOptions: Bag of options to control resource's behavior.

Constructor example

The following reference example uses placeholder values for all input properties.

var delegationControlResource = new Oci.DelegateAccessControl.DelegationControl("delegationControlResource", new()
{
    NotificationMessageFormat = "string",
    ResourceType = "string",
    DelegationSubscriptionIds = new[]
    {
        "string",
    },
    ResourceIds = new[]
    {
        "string",
    },
    DisplayName = "string",
    NotificationTopicId = "string",
    CompartmentId = "string",
    IsAutoApproveDuringMaintenance = false,
    FreeformTags = 
    {
        { "string", "string" },
    },
    NumApprovalsRequired = 0,
    PreApprovedServiceProviderActionNames = new[]
    {
        "string",
    },
    Description = "string",
    DefinedTags = 
    {
        { "string", "string" },
    },
    VaultId = "string",
    VaultKeyId = "string",
});

example, err := delegateaccesscontrol.NewDelegationControl(ctx, "delegationControlResource", &delegateaccesscontrol.DelegationControlArgs{
	NotificationMessageFormat: pulumi.String("string"),
	ResourceType:              pulumi.String("string"),
	DelegationSubscriptionIds: pulumi.StringArray{
		pulumi.String("string"),
	},
	ResourceIds: pulumi.StringArray{
		pulumi.String("string"),
	},
	DisplayName:                    pulumi.String("string"),
	NotificationTopicId:            pulumi.String("string"),
	CompartmentId:                  pulumi.String("string"),
	IsAutoApproveDuringMaintenance: pulumi.Bool(false),
	FreeformTags: pulumi.StringMap{
		"string": pulumi.String("string"),
	},
	NumApprovalsRequired: pulumi.Int(0),
	PreApprovedServiceProviderActionNames: pulumi.StringArray{
		pulumi.String("string"),
	},
	Description: pulumi.String("string"),
	DefinedTags: pulumi.StringMap{
		"string": pulumi.String("string"),
	},
	VaultId:    pulumi.String("string"),
	VaultKeyId: pulumi.String("string"),
})

var delegationControlResource = new DelegationControl("delegationControlResource", DelegationControlArgs.builder()
    .notificationMessageFormat("string")
    .resourceType("string")
    .delegationSubscriptionIds("string")
    .resourceIds("string")
    .displayName("string")
    .notificationTopicId("string")
    .compartmentId("string")
    .isAutoApproveDuringMaintenance(false)
    .freeformTags(Map.of("string", "string"))
    .numApprovalsRequired(0)
    .preApprovedServiceProviderActionNames("string")
    .description("string")
    .definedTags(Map.of("string", "string"))
    .vaultId("string")
    .vaultKeyId("string")
    .build());

delegation_control_resource = oci.delegate_access_control.DelegationControl("delegationControlResource",
    notification_message_format="string",
    resource_type="string",
    delegation_subscription_ids=["string"],
    resource_ids=["string"],
    display_name="string",
    notification_topic_id="string",
    compartment_id="string",
    is_auto_approve_during_maintenance=False,
    freeform_tags={
        "string": "string",
    },
    num_approvals_required=0,
    pre_approved_service_provider_action_names=["string"],
    description="string",
    defined_tags={
        "string": "string",
    },
    vault_id="string",
    vault_key_id="string")

const delegationControlResource = new oci.delegateaccesscontrol.DelegationControl("delegationControlResource", {
    notificationMessageFormat: "string",
    resourceType: "string",
    delegationSubscriptionIds: ["string"],
    resourceIds: ["string"],
    displayName: "string",
    notificationTopicId: "string",
    compartmentId: "string",
    isAutoApproveDuringMaintenance: false,
    freeformTags: {
        string: "string",
    },
    numApprovalsRequired: 0,
    preApprovedServiceProviderActionNames: ["string"],
    description: "string",
    definedTags: {
        string: "string",
    },
    vaultId: "string",
    vaultKeyId: "string",
});

type: oci:DelegateAccessControl:DelegationControl
properties:
    compartmentId: string
    definedTags:
        string: string
    delegationSubscriptionIds:
        - string
    description: string
    displayName: string
    freeformTags:
        string: string
    isAutoApproveDuringMaintenance: false
    notificationMessageFormat: string
    notificationTopicId: string
    numApprovalsRequired: 0
    preApprovedServiceProviderActionNames:
        - string
    resourceIds:
        - string
    resourceType: string
    vaultId: string
    vaultKeyId: string

DelegationControl Resource Properties

To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

Inputs

In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.

The DelegationControl resource accepts the following input properties:

CompartmentId string

(Updatable) The OCID of the compartment that contains this Delegation Control.

DelegationSubscriptionIds List<string>

(Updatable) List of Delegation Subscription OCID that are allowed for this Delegation Control. The allowed subscriptions will determine the available Service Provider Actions. Only support operators for the allowed subscriptions are allowed to create Delegated Resource Access Request.

DisplayName string

(Updatable) Name of the Delegation Control. The name does not need to be unique.

NotificationMessageFormat string

(Updatable) The format of the Oracle Cloud Infrastructure Notification messages for this Delegation Control.

NotificationTopicId string

(Updatable) The OCID of the Oracle Cloud Infrastructure Notification topic to publish messages related to this Delegation Control.

ResourceIds List<string>

(Updatable) The OCID of the selected resources that this Delegation Control is applicable to.

ResourceType string

Resource type for which the Delegation Control is applicable to.

DefinedTags Dictionary<string, string>

(Updatable) Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags. Example: {"Operations.CostCenter": "42"}

Description string

(Updatable) Description of the Delegation Control.

FreeformTags Dictionary<string, string>

(Updatable) Free-form tags for this resource. Each tag is a simple key-value pair with no predefined name, type, or namespace. For more information, see Resource Tags. Example: {"Department": "Finance"}

IsAutoApproveDuringMaintenance bool

(Updatable) Set to true to allow all Delegated Resource Access Request to be approved automatically during maintenance.

NumApprovalsRequired int

(Updatable) number of approvals required.

PreApprovedServiceProviderActionNames List<string>

(Updatable) List of pre-approved Service Provider Action names. The list of pre-defined Service Provider Actions can be obtained from the ListServiceProviderActions API. Delegated Resource Access Requests associated with a resource governed by this Delegation Control will be automatically approved if the Delegated Resource Access Request only contain Service Provider Actions in the pre-approved list.

VaultId string

The OCID of the Oracle Cloud Infrastructure Vault that will store the secrets containing the SSH keys to access the resource governed by this Delegation Control by Delegate Access Control Service. This property is required when resourceType is CLOUDVMCLUSTER. Delegate Access Control Service will generate the SSH keys and store them as secrets in the Oracle Cloud Infrastructure Vault.

VaultKeyId string

The OCID of the Master Encryption Key in the Oracle Cloud Infrastructure Vault specified by vaultId. This key will be used to encrypt the SSH keys to access the resource governed by this Delegation Control by Delegate Access Control Service. This property is required when resourceType is CLOUDVMCLUSTER.

** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values

CompartmentId string

(Updatable) The OCID of the compartment that contains this Delegation Control.

DelegationSubscriptionIds []string

DisplayName string

(Updatable) Name of the Delegation Control. The name does not need to be unique.

NotificationMessageFormat string

(Updatable) The format of the Oracle Cloud Infrastructure Notification messages for this Delegation Control.

NotificationTopicId string

(Updatable) The OCID of the Oracle Cloud Infrastructure Notification topic to publish messages related to this Delegation Control.

ResourceIds []string

(Updatable) The OCID of the selected resources that this Delegation Control is applicable to.

ResourceType string

Resource type for which the Delegation Control is applicable to.

DefinedTags map[string]string

(Updatable) Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags. Example: {"Operations.CostCenter": "42"}

Description string

(Updatable) Description of the Delegation Control.

FreeformTags map[string]string

IsAutoApproveDuringMaintenance bool

(Updatable) Set to true to allow all Delegated Resource Access Request to be approved automatically during maintenance.

NumApprovalsRequired int

(Updatable) number of approvals required.

PreApprovedServiceProviderActionNames []string

VaultId string

VaultKeyId string

** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values

compartmentId String

(Updatable) The OCID of the compartment that contains this Delegation Control.

delegationSubscriptionIds List<String>

displayName String

(Updatable) Name of the Delegation Control. The name does not need to be unique.

notificationMessageFormat String

(Updatable) The format of the Oracle Cloud Infrastructure Notification messages for this Delegation Control.

notificationTopicId String

(Updatable) The OCID of the Oracle Cloud Infrastructure Notification topic to publish messages related to this Delegation Control.

resourceIds List<String>

(Updatable) The OCID of the selected resources that this Delegation Control is applicable to.

resourceType String

Resource type for which the Delegation Control is applicable to.

definedTags Map<String,String>

(Updatable) Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags. Example: {"Operations.CostCenter": "42"}

description String

(Updatable) Description of the Delegation Control.

freeformTags Map<String,String>

isAutoApproveDuringMaintenance Boolean

(Updatable) Set to true to allow all Delegated Resource Access Request to be approved automatically during maintenance.

numApprovalsRequired Integer

(Updatable) number of approvals required.

preApprovedServiceProviderActionNames List<String>

vaultId String

vaultKeyId String

** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values

compartmentId string

(Updatable) The OCID of the compartment that contains this Delegation Control.

delegationSubscriptionIds string[]

displayName string

(Updatable) Name of the Delegation Control. The name does not need to be unique.

notificationMessageFormat string

(Updatable) The format of the Oracle Cloud Infrastructure Notification messages for this Delegation Control.

notificationTopicId string

(Updatable) The OCID of the Oracle Cloud Infrastructure Notification topic to publish messages related to this Delegation Control.

resourceIds string[]

(Updatable) The OCID of the selected resources that this Delegation Control is applicable to.

resourceType string

Resource type for which the Delegation Control is applicable to.

definedTags {[key: string]: string}

(Updatable) Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags. Example: {"Operations.CostCenter": "42"}

description string

(Updatable) Description of the Delegation Control.

freeformTags {[key: string]: string}

isAutoApproveDuringMaintenance boolean

(Updatable) Set to true to allow all Delegated Resource Access Request to be approved automatically during maintenance.

numApprovalsRequired number

(Updatable) number of approvals required.

preApprovedServiceProviderActionNames string[]

vaultId string

vaultKeyId string

** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values

compartment_id str

(Updatable) The OCID of the compartment that contains this Delegation Control.

delegation_subscription_ids Sequence[str]

display_name str

(Updatable) Name of the Delegation Control. The name does not need to be unique.

notification_message_format str

(Updatable) The format of the Oracle Cloud Infrastructure Notification messages for this Delegation Control.

notification_topic_id str

(Updatable) The OCID of the Oracle Cloud Infrastructure Notification topic to publish messages related to this Delegation Control.

resource_ids Sequence[str]

(Updatable) The OCID of the selected resources that this Delegation Control is applicable to.

resource_type str

Resource type for which the Delegation Control is applicable to.

defined_tags Mapping[str, str]

(Updatable) Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags. Example: {"Operations.CostCenter": "42"}

description str

(Updatable) Description of the Delegation Control.

freeform_tags Mapping[str, str]

is_auto_approve_during_maintenance bool

(Updatable) Set to true to allow all Delegated Resource Access Request to be approved automatically during maintenance.

num_approvals_required int

(Updatable) number of approvals required.

pre_approved_service_provider_action_names Sequence[str]

vault_id str

vault_key_id str

** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values

compartmentId String

(Updatable) The OCID of the compartment that contains this Delegation Control.

delegationSubscriptionIds List<String>

displayName String

(Updatable) Name of the Delegation Control. The name does not need to be unique.

notificationMessageFormat String

(Updatable) The format of the Oracle Cloud Infrastructure Notification messages for this Delegation Control.

notificationTopicId String

(Updatable) The OCID of the Oracle Cloud Infrastructure Notification topic to publish messages related to this Delegation Control.

resourceIds List<String>

(Updatable) The OCID of the selected resources that this Delegation Control is applicable to.

resourceType String

Resource type for which the Delegation Control is applicable to.

definedTags Map<String>

(Updatable) Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags. Example: {"Operations.CostCenter": "42"}

description String

(Updatable) Description of the Delegation Control.

freeformTags Map<String>

isAutoApproveDuringMaintenance Boolean

(Updatable) Set to true to allow all Delegated Resource Access Request to be approved automatically during maintenance.

numApprovalsRequired Number

(Updatable) number of approvals required.

preApprovedServiceProviderActionNames List<String>

vaultId String

vaultKeyId String

** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values

Outputs

All input properties are implicitly available as output properties. Additionally, the DelegationControl resource produces the following output properties:

Id string: The provider-assigned unique ID for this managed resource.
LifecycleStateDetails string: Description of the current lifecycle state in more detail.
State string: The current lifecycle state of the Delegation Control.
SystemTags Dictionary<string, string>: System tags for this resource. Each key is predefined and scoped to a namespace. Example: {"orcl-cloud.free-tier-retained": "true"}
TimeCreated string: Time when the Delegation Control was created expressed in RFC 3339 timestamp format, e.g. '2020-05-22T21:10:29.600Z'
TimeDeleted string: Time when the Delegation Control was deleted expressed in RFC 3339timestamp format, e.g. '2020-05-22T21:10:29.600Z'. Note a deleted Delegation Control still stays in the system, so that you can still audit Service Provider Actions associated with Delegated Resource Access Requests raised on target resources governed by the deleted Delegation Control.
TimeUpdated string: Time when the Delegation Control was last modified expressed in RFC 3339 timestamp format, e.g. '2020-05-22T21:10:29.600Z'

Id string: The provider-assigned unique ID for this managed resource.
LifecycleStateDetails string: Description of the current lifecycle state in more detail.
State string: The current lifecycle state of the Delegation Control.
SystemTags map[string]string: System tags for this resource. Each key is predefined and scoped to a namespace. Example: {"orcl-cloud.free-tier-retained": "true"}
TimeCreated string: Time when the Delegation Control was created expressed in RFC 3339 timestamp format, e.g. '2020-05-22T21:10:29.600Z'
TimeDeleted string: Time when the Delegation Control was deleted expressed in RFC 3339timestamp format, e.g. '2020-05-22T21:10:29.600Z'. Note a deleted Delegation Control still stays in the system, so that you can still audit Service Provider Actions associated with Delegated Resource Access Requests raised on target resources governed by the deleted Delegation Control.
TimeUpdated string: Time when the Delegation Control was last modified expressed in RFC 3339 timestamp format, e.g. '2020-05-22T21:10:29.600Z'

id String: The provider-assigned unique ID for this managed resource.
lifecycleStateDetails String: Description of the current lifecycle state in more detail.
state String: The current lifecycle state of the Delegation Control.
systemTags Map<String,String>: System tags for this resource. Each key is predefined and scoped to a namespace. Example: {"orcl-cloud.free-tier-retained": "true"}
timeCreated String: Time when the Delegation Control was created expressed in RFC 3339 timestamp format, e.g. '2020-05-22T21:10:29.600Z'
timeDeleted String: Time when the Delegation Control was deleted expressed in RFC 3339timestamp format, e.g. '2020-05-22T21:10:29.600Z'. Note a deleted Delegation Control still stays in the system, so that you can still audit Service Provider Actions associated with Delegated Resource Access Requests raised on target resources governed by the deleted Delegation Control.
timeUpdated String: Time when the Delegation Control was last modified expressed in RFC 3339 timestamp format, e.g. '2020-05-22T21:10:29.600Z'

id string: The provider-assigned unique ID for this managed resource.
lifecycleStateDetails string: Description of the current lifecycle state in more detail.
state string: The current lifecycle state of the Delegation Control.
systemTags {[key: string]: string}: System tags for this resource. Each key is predefined and scoped to a namespace. Example: {"orcl-cloud.free-tier-retained": "true"}
timeCreated string: Time when the Delegation Control was created expressed in RFC 3339 timestamp format, e.g. '2020-05-22T21:10:29.600Z'
timeDeleted string: Time when the Delegation Control was deleted expressed in RFC 3339timestamp format, e.g. '2020-05-22T21:10:29.600Z'. Note a deleted Delegation Control still stays in the system, so that you can still audit Service Provider Actions associated with Delegated Resource Access Requests raised on target resources governed by the deleted Delegation Control.
timeUpdated string: Time when the Delegation Control was last modified expressed in RFC 3339 timestamp format, e.g. '2020-05-22T21:10:29.600Z'

id str: The provider-assigned unique ID for this managed resource.
lifecycle_state_details str: Description of the current lifecycle state in more detail.
state str: The current lifecycle state of the Delegation Control.
system_tags Mapping[str, str]: System tags for this resource. Each key is predefined and scoped to a namespace. Example: {"orcl-cloud.free-tier-retained": "true"}
time_created str: Time when the Delegation Control was created expressed in RFC 3339 timestamp format, e.g. '2020-05-22T21:10:29.600Z'
time_deleted str: Time when the Delegation Control was deleted expressed in RFC 3339timestamp format, e.g. '2020-05-22T21:10:29.600Z'. Note a deleted Delegation Control still stays in the system, so that you can still audit Service Provider Actions associated with Delegated Resource Access Requests raised on target resources governed by the deleted Delegation Control.
time_updated str: Time when the Delegation Control was last modified expressed in RFC 3339 timestamp format, e.g. '2020-05-22T21:10:29.600Z'

id String: The provider-assigned unique ID for this managed resource.
lifecycleStateDetails String: Description of the current lifecycle state in more detail.
state String: The current lifecycle state of the Delegation Control.
systemTags Map<String>: System tags for this resource. Each key is predefined and scoped to a namespace. Example: {"orcl-cloud.free-tier-retained": "true"}
timeCreated String: Time when the Delegation Control was created expressed in RFC 3339 timestamp format, e.g. '2020-05-22T21:10:29.600Z'
timeDeleted String: Time when the Delegation Control was deleted expressed in RFC 3339timestamp format, e.g. '2020-05-22T21:10:29.600Z'. Note a deleted Delegation Control still stays in the system, so that you can still audit Service Provider Actions associated with Delegated Resource Access Requests raised on target resources governed by the deleted Delegation Control.
timeUpdated String: Time when the Delegation Control was last modified expressed in RFC 3339 timestamp format, e.g. '2020-05-22T21:10:29.600Z'

Look up Existing DelegationControl Resource

Get an existing DelegationControl resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

public static get(name: string, id: Input<ID>, state?: DelegationControlState, opts?: CustomResourceOptions): DelegationControl

@staticmethod
def get(resource_name: str,
        id: str,
        opts: Optional[ResourceOptions] = None,
        compartment_id: Optional[str] = None,
        defined_tags: Optional[Mapping[str, str]] = None,
        delegation_subscription_ids: Optional[Sequence[str]] = None,
        description: Optional[str] = None,
        display_name: Optional[str] = None,
        freeform_tags: Optional[Mapping[str, str]] = None,
        is_auto_approve_during_maintenance: Optional[bool] = None,
        lifecycle_state_details: Optional[str] = None,
        notification_message_format: Optional[str] = None,
        notification_topic_id: Optional[str] = None,
        num_approvals_required: Optional[int] = None,
        pre_approved_service_provider_action_names: Optional[Sequence[str]] = None,
        resource_ids: Optional[Sequence[str]] = None,
        resource_type: Optional[str] = None,
        state: Optional[str] = None,
        system_tags: Optional[Mapping[str, str]] = None,
        time_created: Optional[str] = None,
        time_deleted: Optional[str] = None,
        time_updated: Optional[str] = None,
        vault_id: Optional[str] = None,
        vault_key_id: Optional[str] = None) -> DelegationControl

func GetDelegationControl(ctx *Context, name string, id IDInput, state *DelegationControlState, opts ...ResourceOption) (*DelegationControl, error)

public static DelegationControl Get(string name, Input<string> id, DelegationControlState? state, CustomResourceOptions? opts = null)

public static DelegationControl get(String name, Output<String> id, DelegationControlState state, CustomResourceOptions options)

resources:  _:    type: oci:DelegateAccessControl:DelegationControl    get:      id: ${id}

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

resource_name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

The following state arguments are supported:

CompartmentId string

(Updatable) The OCID of the compartment that contains this Delegation Control.

DefinedTags Dictionary<string, string>

(Updatable) Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags. Example: {"Operations.CostCenter": "42"}

DelegationSubscriptionIds List<string>

Description string

(Updatable) Description of the Delegation Control.

DisplayName string

(Updatable) Name of the Delegation Control. The name does not need to be unique.

FreeformTags Dictionary<string, string>

IsAutoApproveDuringMaintenance bool

(Updatable) Set to true to allow all Delegated Resource Access Request to be approved automatically during maintenance.

LifecycleStateDetails string

Description of the current lifecycle state in more detail.

NotificationMessageFormat string

(Updatable) The format of the Oracle Cloud Infrastructure Notification messages for this Delegation Control.

NotificationTopicId string

(Updatable) The OCID of the Oracle Cloud Infrastructure Notification topic to publish messages related to this Delegation Control.

NumApprovalsRequired int

(Updatable) number of approvals required.

PreApprovedServiceProviderActionNames List<string>

ResourceIds List<string>

(Updatable) The OCID of the selected resources that this Delegation Control is applicable to.

ResourceType string

Resource type for which the Delegation Control is applicable to.

State string

The current lifecycle state of the Delegation Control.

SystemTags Dictionary<string, string>

System tags for this resource. Each key is predefined and scoped to a namespace. Example: {"orcl-cloud.free-tier-retained": "true"}

TimeCreated string

Time when the Delegation Control was created expressed in RFC 3339 timestamp format, e.g. '2020-05-22T21:10:29.600Z'

TimeDeleted string

Time when the Delegation Control was deleted expressed in RFC 3339timestamp format, e.g. '2020-05-22T21:10:29.600Z'. Note a deleted Delegation Control still stays in the system, so that you can still audit Service Provider Actions associated with Delegated Resource Access Requests raised on target resources governed by the deleted Delegation Control.

TimeUpdated string

Time when the Delegation Control was last modified expressed in RFC 3339 timestamp format, e.g. '2020-05-22T21:10:29.600Z'

VaultId string

VaultKeyId string

** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values

CompartmentId string

(Updatable) The OCID of the compartment that contains this Delegation Control.

DefinedTags map[string]string

(Updatable) Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags. Example: {"Operations.CostCenter": "42"}

DelegationSubscriptionIds []string

Description string

(Updatable) Description of the Delegation Control.

DisplayName string

(Updatable) Name of the Delegation Control. The name does not need to be unique.

FreeformTags map[string]string

IsAutoApproveDuringMaintenance bool

(Updatable) Set to true to allow all Delegated Resource Access Request to be approved automatically during maintenance.

LifecycleStateDetails string

Description of the current lifecycle state in more detail.

NotificationMessageFormat string

(Updatable) The format of the Oracle Cloud Infrastructure Notification messages for this Delegation Control.

NotificationTopicId string

(Updatable) The OCID of the Oracle Cloud Infrastructure Notification topic to publish messages related to this Delegation Control.

NumApprovalsRequired int

(Updatable) number of approvals required.

PreApprovedServiceProviderActionNames []string

ResourceIds []string

(Updatable) The OCID of the selected resources that this Delegation Control is applicable to.

ResourceType string

Resource type for which the Delegation Control is applicable to.

State string

The current lifecycle state of the Delegation Control.

SystemTags map[string]string

System tags for this resource. Each key is predefined and scoped to a namespace. Example: {"orcl-cloud.free-tier-retained": "true"}

TimeCreated string

Time when the Delegation Control was created expressed in RFC 3339 timestamp format, e.g. '2020-05-22T21:10:29.600Z'

TimeDeleted string

TimeUpdated string

Time when the Delegation Control was last modified expressed in RFC 3339 timestamp format, e.g. '2020-05-22T21:10:29.600Z'

VaultId string

VaultKeyId string

** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values

compartmentId String

(Updatable) The OCID of the compartment that contains this Delegation Control.

definedTags Map<String,String>

(Updatable) Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags. Example: {"Operations.CostCenter": "42"}

delegationSubscriptionIds List<String>

description String

(Updatable) Description of the Delegation Control.

displayName String

(Updatable) Name of the Delegation Control. The name does not need to be unique.

freeformTags Map<String,String>

isAutoApproveDuringMaintenance Boolean

(Updatable) Set to true to allow all Delegated Resource Access Request to be approved automatically during maintenance.

lifecycleStateDetails String

Description of the current lifecycle state in more detail.

notificationMessageFormat String

(Updatable) The format of the Oracle Cloud Infrastructure Notification messages for this Delegation Control.

notificationTopicId String

(Updatable) The OCID of the Oracle Cloud Infrastructure Notification topic to publish messages related to this Delegation Control.

numApprovalsRequired Integer

(Updatable) number of approvals required.

preApprovedServiceProviderActionNames List<String>

resourceIds List<String>

(Updatable) The OCID of the selected resources that this Delegation Control is applicable to.

resourceType String

Resource type for which the Delegation Control is applicable to.

state String

The current lifecycle state of the Delegation Control.

systemTags Map<String,String>

System tags for this resource. Each key is predefined and scoped to a namespace. Example: {"orcl-cloud.free-tier-retained": "true"}

timeCreated String

Time when the Delegation Control was created expressed in RFC 3339 timestamp format, e.g. '2020-05-22T21:10:29.600Z'

timeDeleted String

timeUpdated String

Time when the Delegation Control was last modified expressed in RFC 3339 timestamp format, e.g. '2020-05-22T21:10:29.600Z'

vaultId String

vaultKeyId String

** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values

compartmentId string

(Updatable) The OCID of the compartment that contains this Delegation Control.

definedTags {[key: string]: string}

(Updatable) Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags. Example: {"Operations.CostCenter": "42"}

delegationSubscriptionIds string[]

description string

(Updatable) Description of the Delegation Control.

displayName string

(Updatable) Name of the Delegation Control. The name does not need to be unique.

freeformTags {[key: string]: string}

isAutoApproveDuringMaintenance boolean

(Updatable) Set to true to allow all Delegated Resource Access Request to be approved automatically during maintenance.

lifecycleStateDetails string

Description of the current lifecycle state in more detail.

notificationMessageFormat string

(Updatable) The format of the Oracle Cloud Infrastructure Notification messages for this Delegation Control.

notificationTopicId string

(Updatable) The OCID of the Oracle Cloud Infrastructure Notification topic to publish messages related to this Delegation Control.

numApprovalsRequired number

(Updatable) number of approvals required.

preApprovedServiceProviderActionNames string[]

resourceIds string[]

(Updatable) The OCID of the selected resources that this Delegation Control is applicable to.

resourceType string

Resource type for which the Delegation Control is applicable to.

state string

The current lifecycle state of the Delegation Control.

systemTags {[key: string]: string}

System tags for this resource. Each key is predefined and scoped to a namespace. Example: {"orcl-cloud.free-tier-retained": "true"}

timeCreated string

Time when the Delegation Control was created expressed in RFC 3339 timestamp format, e.g. '2020-05-22T21:10:29.600Z'

timeDeleted string

timeUpdated string

Time when the Delegation Control was last modified expressed in RFC 3339 timestamp format, e.g. '2020-05-22T21:10:29.600Z'

vaultId string

vaultKeyId string

** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values

compartment_id str

(Updatable) The OCID of the compartment that contains this Delegation Control.

defined_tags Mapping[str, str]

(Updatable) Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags. Example: {"Operations.CostCenter": "42"}

delegation_subscription_ids Sequence[str]

description str

(Updatable) Description of the Delegation Control.

display_name str

(Updatable) Name of the Delegation Control. The name does not need to be unique.

freeform_tags Mapping[str, str]

is_auto_approve_during_maintenance bool

(Updatable) Set to true to allow all Delegated Resource Access Request to be approved automatically during maintenance.

lifecycle_state_details str

Description of the current lifecycle state in more detail.

notification_message_format str

(Updatable) The format of the Oracle Cloud Infrastructure Notification messages for this Delegation Control.

notification_topic_id str

(Updatable) The OCID of the Oracle Cloud Infrastructure Notification topic to publish messages related to this Delegation Control.

num_approvals_required int

(Updatable) number of approvals required.

pre_approved_service_provider_action_names Sequence[str]

resource_ids Sequence[str]

(Updatable) The OCID of the selected resources that this Delegation Control is applicable to.

resource_type str

Resource type for which the Delegation Control is applicable to.

state str

The current lifecycle state of the Delegation Control.

system_tags Mapping[str, str]

System tags for this resource. Each key is predefined and scoped to a namespace. Example: {"orcl-cloud.free-tier-retained": "true"}

time_created str

Time when the Delegation Control was created expressed in RFC 3339 timestamp format, e.g. '2020-05-22T21:10:29.600Z'

time_deleted str

time_updated str

Time when the Delegation Control was last modified expressed in RFC 3339 timestamp format, e.g. '2020-05-22T21:10:29.600Z'

vault_id str

vault_key_id str

** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values

compartmentId String

(Updatable) The OCID of the compartment that contains this Delegation Control.

definedTags Map<String>

(Updatable) Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags. Example: {"Operations.CostCenter": "42"}

delegationSubscriptionIds List<String>

description String

(Updatable) Description of the Delegation Control.

displayName String

(Updatable) Name of the Delegation Control. The name does not need to be unique.

freeformTags Map<String>

isAutoApproveDuringMaintenance Boolean

(Updatable) Set to true to allow all Delegated Resource Access Request to be approved automatically during maintenance.

lifecycleStateDetails String

Description of the current lifecycle state in more detail.

notificationMessageFormat String

(Updatable) The format of the Oracle Cloud Infrastructure Notification messages for this Delegation Control.

notificationTopicId String

(Updatable) The OCID of the Oracle Cloud Infrastructure Notification topic to publish messages related to this Delegation Control.

numApprovalsRequired Number

(Updatable) number of approvals required.

preApprovedServiceProviderActionNames List<String>

resourceIds List<String>

(Updatable) The OCID of the selected resources that this Delegation Control is applicable to.

resourceType String

Resource type for which the Delegation Control is applicable to.

state String

The current lifecycle state of the Delegation Control.

systemTags Map<String>

System tags for this resource. Each key is predefined and scoped to a namespace. Example: {"orcl-cloud.free-tier-retained": "true"}

timeCreated String

Time when the Delegation Control was created expressed in RFC 3339 timestamp format, e.g. '2020-05-22T21:10:29.600Z'

timeDeleted String

timeUpdated String

Time when the Delegation Control was last modified expressed in RFC 3339 timestamp format, e.g. '2020-05-22T21:10:29.600Z'

vaultId String

vaultKeyId String

** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values

Import

DelegationControls can be imported using the id, e.g.

$ pulumi import oci:DelegateAccessControl/delegationControl:DelegationControl test_delegation_control "id"

To learn more about importing existing cloud resources, see Importing resources.

Package Details

Repository: oci pulumi/pulumi-oci
License: Apache-2.0
Notes: This Pulumi package is based on the oci Terraform Provider.

Oracle Cloud Infrastructure v2.33.0 published on Thursday, May 1, 2025 by Pulumi

pulumi/pulumi-oci

oci.DelegateAccessControl.DelegationControl

On this page

On this page

Example Usage

Create DelegationControl Resource

Constructor syntax

Parameters

Constructor example

DelegationControl Resource Properties

Inputs

Outputs

Look up Existing DelegationControl Resource

Import

Package Details

On this page

On this page