Oracle Cloud Infrastructure v2.33.0, May 1 25

Oracle Cloud Infrastructure v2.33.0 published on Thursday, May 1, 2025 by Pulumi

oci.Identity.getDomainsIdentityProviders

Explore with Pulumi AI

Oracle Cloud Infrastructure v2.33.0 published on Thursday, May 1, 2025 by Pulumi

Example Usage

import * as pulumi from "@pulumi/pulumi";
import * as oci from "@pulumi/oci";

const testIdentityProviders = oci.Identity.getDomainsIdentityProviders({
    idcsEndpoint: testDomain.url,
    identityProviderCount: identityProviderIdentityProviderCount,
    identityProviderFilter: identityProviderIdentityProviderFilter,
    attributeSets: [],
    attributes: "",
    authorization: identityProviderAuthorization,
    resourceTypeSchemaVersion: identityProviderResourceTypeSchemaVersion,
    startIndex: identityProviderStartIndex,
});

import pulumi
import pulumi_oci as oci

test_identity_providers = oci.Identity.get_domains_identity_providers(idcs_endpoint=test_domain["url"],
    identity_provider_count=identity_provider_identity_provider_count,
    identity_provider_filter=identity_provider_identity_provider_filter,
    attribute_sets=[],
    attributes="",
    authorization=identity_provider_authorization,
    resource_type_schema_version=identity_provider_resource_type_schema_version,
    start_index=identity_provider_start_index)

package main

import (
	"github.com/pulumi/pulumi-oci/sdk/v2/go/oci/identity"
	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := identity.GetDomainsIdentityProviders(ctx, &identity.GetDomainsIdentityProvidersArgs{
			IdcsEndpoint:              testDomain.Url,
			IdentityProviderCount:     pulumi.IntRef(identityProviderIdentityProviderCount),
			IdentityProviderFilter:    pulumi.StringRef(identityProviderIdentityProviderFilter),
			AttributeSets:             []interface{}{},
			Attributes:                pulumi.StringRef(""),
			Authorization:             pulumi.StringRef(identityProviderAuthorization),
			ResourceTypeSchemaVersion: pulumi.StringRef(identityProviderResourceTypeSchemaVersion),
			StartIndex:                pulumi.IntRef(identityProviderStartIndex),
		}, nil)
		if err != nil {
			return err
		}
		return nil
	})
}

using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Oci = Pulumi.Oci;

return await Deployment.RunAsync(() => 
{
    var testIdentityProviders = Oci.Identity.GetDomainsIdentityProviders.Invoke(new()
    {
        IdcsEndpoint = testDomain.Url,
        IdentityProviderCount = identityProviderIdentityProviderCount,
        IdentityProviderFilter = identityProviderIdentityProviderFilter,
        AttributeSets = new() { },
        Attributes = "",
        Authorization = identityProviderAuthorization,
        ResourceTypeSchemaVersion = identityProviderResourceTypeSchemaVersion,
        StartIndex = identityProviderStartIndex,
    });

});

package generated_program;

import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.oci.Identity.IdentityFunctions;
import com.pulumi.oci.Identity.inputs.GetDomainsIdentityProvidersArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;

public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }

    public static void stack(Context ctx) {
        final var testIdentityProviders = IdentityFunctions.getDomainsIdentityProviders(GetDomainsIdentityProvidersArgs.builder()
            .idcsEndpoint(testDomain.url())
            .identityProviderCount(identityProviderIdentityProviderCount)
            .identityProviderFilter(identityProviderIdentityProviderFilter)
            .attributeSets()
            .attributes("")
            .authorization(identityProviderAuthorization)
            .resourceTypeSchemaVersion(identityProviderResourceTypeSchemaVersion)
            .startIndex(identityProviderStartIndex)
            .build());

    }
}

variables:
  testIdentityProviders:
    fn::invoke:
      function: oci:Identity:getDomainsIdentityProviders
      arguments:
        idcsEndpoint: ${testDomain.url}
        identityProviderCount: ${identityProviderIdentityProviderCount}
        identityProviderFilter: ${identityProviderIdentityProviderFilter}
        attributeSets: []
        attributes: ""
        authorization: ${identityProviderAuthorization}
        resourceTypeSchemaVersion: ${identityProviderResourceTypeSchemaVersion}
        startIndex: ${identityProviderStartIndex}

Using getDomainsIdentityProviders

Two invocation forms are available. The direct form accepts plain arguments and either blocks until the result value is available, or returns a Promise-wrapped result. The output form accepts Input-wrapped arguments and returns an Output-wrapped result.

function getDomainsIdentityProviders(args: GetDomainsIdentityProvidersArgs, opts?: InvokeOptions): Promise<GetDomainsIdentityProvidersResult>
function getDomainsIdentityProvidersOutput(args: GetDomainsIdentityProvidersOutputArgs, opts?: InvokeOptions): Output<GetDomainsIdentityProvidersResult>

def get_domains_identity_providers(attribute_sets: Optional[Sequence[str]] = None,
                                   attributes: Optional[str] = None,
                                   authorization: Optional[str] = None,
                                   compartment_id: Optional[str] = None,
                                   idcs_endpoint: Optional[str] = None,
                                   identity_provider_count: Optional[int] = None,
                                   identity_provider_filter: Optional[str] = None,
                                   resource_type_schema_version: Optional[str] = None,
                                   sort_by: Optional[str] = None,
                                   sort_order: Optional[str] = None,
                                   start_index: Optional[int] = None,
                                   opts: Optional[InvokeOptions] = None) -> GetDomainsIdentityProvidersResult
def get_domains_identity_providers_output(attribute_sets: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
                                   attributes: Optional[pulumi.Input[str]] = None,
                                   authorization: Optional[pulumi.Input[str]] = None,
                                   compartment_id: Optional[pulumi.Input[str]] = None,
                                   idcs_endpoint: Optional[pulumi.Input[str]] = None,
                                   identity_provider_count: Optional[pulumi.Input[int]] = None,
                                   identity_provider_filter: Optional[pulumi.Input[str]] = None,
                                   resource_type_schema_version: Optional[pulumi.Input[str]] = None,
                                   sort_by: Optional[pulumi.Input[str]] = None,
                                   sort_order: Optional[pulumi.Input[str]] = None,
                                   start_index: Optional[pulumi.Input[int]] = None,
                                   opts: Optional[InvokeOptions] = None) -> Output[GetDomainsIdentityProvidersResult]

func GetDomainsIdentityProviders(ctx *Context, args *GetDomainsIdentityProvidersArgs, opts ...InvokeOption) (*GetDomainsIdentityProvidersResult, error)
func GetDomainsIdentityProvidersOutput(ctx *Context, args *GetDomainsIdentityProvidersOutputArgs, opts ...InvokeOption) GetDomainsIdentityProvidersResultOutput

> Note: This function is named GetDomainsIdentityProviders in the Go SDK.

public static class GetDomainsIdentityProviders 
{
    public static Task<GetDomainsIdentityProvidersResult> InvokeAsync(GetDomainsIdentityProvidersArgs args, InvokeOptions? opts = null)
    public static Output<GetDomainsIdentityProvidersResult> Invoke(GetDomainsIdentityProvidersInvokeArgs args, InvokeOptions? opts = null)
}

public static CompletableFuture<GetDomainsIdentityProvidersResult> getDomainsIdentityProviders(GetDomainsIdentityProvidersArgs args, InvokeOptions options)
public static Output<GetDomainsIdentityProvidersResult> getDomainsIdentityProviders(GetDomainsIdentityProvidersArgs args, InvokeOptions options)

fn::invoke:
  function: oci:Identity/getDomainsIdentityProviders:getDomainsIdentityProviders
  arguments:
    # arguments dictionary

The following arguments are supported:

IdcsEndpoint string: The basic endpoint for the identity domain
AttributeSets List<string>: A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If 'attributes' query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.
Attributes string: A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.
Authorization string: The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.
CompartmentId string
IdentityProviderCount int: OPTIONAL. An integer that indicates the desired maximum number of query results per page. 1000 is the largest value that you can use. See the Pagination section of the System for Cross-Domain Identity Management Protocol specification for more information. (Section 3.4.2.4).
IdentityProviderFilter string: OPTIONAL. The filter string that is used to request a subset of resources. The filter string MUST be a valid filter expression. See the Filtering section of the SCIM specification for more information (Section 3.4.2.2). The string should contain at least one condition that each item must match in order to be returned in the search results. Each condition specifies an attribute, an operator, and a value. Conditions within a filter can be connected by logical operators (such as AND and OR). Sets of conditions can be grouped together using parentheses.
ResourceTypeSchemaVersion string: An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.
SortBy string
SortOrder string
StartIndex int: OPTIONAL. An integer that indicates the 1-based index of the first query result. See the Pagination section of the SCIM specification for more information. (Section 3.4.2.4). The number of results pages to return. The first page is 1. Specify 2 to access the second page of results, and so on.

IdcsEndpoint string: The basic endpoint for the identity domain
AttributeSets []string: A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If 'attributes' query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.
Attributes string: A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.
Authorization string: The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.
CompartmentId string
IdentityProviderCount int: OPTIONAL. An integer that indicates the desired maximum number of query results per page. 1000 is the largest value that you can use. See the Pagination section of the System for Cross-Domain Identity Management Protocol specification for more information. (Section 3.4.2.4).
IdentityProviderFilter string: OPTIONAL. The filter string that is used to request a subset of resources. The filter string MUST be a valid filter expression. See the Filtering section of the SCIM specification for more information (Section 3.4.2.2). The string should contain at least one condition that each item must match in order to be returned in the search results. Each condition specifies an attribute, an operator, and a value. Conditions within a filter can be connected by logical operators (such as AND and OR). Sets of conditions can be grouped together using parentheses.
ResourceTypeSchemaVersion string: An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.
SortBy string
SortOrder string
StartIndex int: OPTIONAL. An integer that indicates the 1-based index of the first query result. See the Pagination section of the SCIM specification for more information. (Section 3.4.2.4). The number of results pages to return. The first page is 1. Specify 2 to access the second page of results, and so on.

idcsEndpoint String: The basic endpoint for the identity domain
attributeSets List<String>: A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If 'attributes' query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.
attributes String: A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.
authorization String: The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.
compartmentId String
identityProviderCount Integer: OPTIONAL. An integer that indicates the desired maximum number of query results per page. 1000 is the largest value that you can use. See the Pagination section of the System for Cross-Domain Identity Management Protocol specification for more information. (Section 3.4.2.4).
identityProviderFilter String: OPTIONAL. The filter string that is used to request a subset of resources. The filter string MUST be a valid filter expression. See the Filtering section of the SCIM specification for more information (Section 3.4.2.2). The string should contain at least one condition that each item must match in order to be returned in the search results. Each condition specifies an attribute, an operator, and a value. Conditions within a filter can be connected by logical operators (such as AND and OR). Sets of conditions can be grouped together using parentheses.
resourceTypeSchemaVersion String: An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.
sortBy String
sortOrder String
startIndex Integer: OPTIONAL. An integer that indicates the 1-based index of the first query result. See the Pagination section of the SCIM specification for more information. (Section 3.4.2.4). The number of results pages to return. The first page is 1. Specify 2 to access the second page of results, and so on.

idcsEndpoint string: The basic endpoint for the identity domain
attributeSets string[]: A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If 'attributes' query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.
attributes string: A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.
authorization string: The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.
compartmentId string
identityProviderCount number: OPTIONAL. An integer that indicates the desired maximum number of query results per page. 1000 is the largest value that you can use. See the Pagination section of the System for Cross-Domain Identity Management Protocol specification for more information. (Section 3.4.2.4).
identityProviderFilter string: OPTIONAL. The filter string that is used to request a subset of resources. The filter string MUST be a valid filter expression. See the Filtering section of the SCIM specification for more information (Section 3.4.2.2). The string should contain at least one condition that each item must match in order to be returned in the search results. Each condition specifies an attribute, an operator, and a value. Conditions within a filter can be connected by logical operators (such as AND and OR). Sets of conditions can be grouped together using parentheses.
resourceTypeSchemaVersion string: An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.
sortBy string
sortOrder string
startIndex number: OPTIONAL. An integer that indicates the 1-based index of the first query result. See the Pagination section of the SCIM specification for more information. (Section 3.4.2.4). The number of results pages to return. The first page is 1. Specify 2 to access the second page of results, and so on.

idcs_endpoint str: The basic endpoint for the identity domain
attribute_sets Sequence[str]: A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If 'attributes' query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.
attributes str: A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.
authorization str: The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.
compartment_id str
identity_provider_count int: OPTIONAL. An integer that indicates the desired maximum number of query results per page. 1000 is the largest value that you can use. See the Pagination section of the System for Cross-Domain Identity Management Protocol specification for more information. (Section 3.4.2.4).
identity_provider_filter str: OPTIONAL. The filter string that is used to request a subset of resources. The filter string MUST be a valid filter expression. See the Filtering section of the SCIM specification for more information (Section 3.4.2.2). The string should contain at least one condition that each item must match in order to be returned in the search results. Each condition specifies an attribute, an operator, and a value. Conditions within a filter can be connected by logical operators (such as AND and OR). Sets of conditions can be grouped together using parentheses.
resource_type_schema_version str: An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.
sort_by str
sort_order str
start_index int: OPTIONAL. An integer that indicates the 1-based index of the first query result. See the Pagination section of the SCIM specification for more information. (Section 3.4.2.4). The number of results pages to return. The first page is 1. Specify 2 to access the second page of results, and so on.

idcsEndpoint String: The basic endpoint for the identity domain
attributeSets List<String>: A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If 'attributes' query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.
attributes String: A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.
authorization String: The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.
compartmentId String
identityProviderCount Number: OPTIONAL. An integer that indicates the desired maximum number of query results per page. 1000 is the largest value that you can use. See the Pagination section of the System for Cross-Domain Identity Management Protocol specification for more information. (Section 3.4.2.4).
identityProviderFilter String: OPTIONAL. The filter string that is used to request a subset of resources. The filter string MUST be a valid filter expression. See the Filtering section of the SCIM specification for more information (Section 3.4.2.2). The string should contain at least one condition that each item must match in order to be returned in the search results. Each condition specifies an attribute, an operator, and a value. Conditions within a filter can be connected by logical operators (such as AND and OR). Sets of conditions can be grouped together using parentheses.
resourceTypeSchemaVersion String: An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.
sortBy String
sortOrder String
startIndex Number: OPTIONAL. An integer that indicates the 1-based index of the first query result. See the Pagination section of the SCIM specification for more information. (Section 3.4.2.4). The number of results pages to return. The first page is 1. Specify 2 to access the second page of results, and so on.

getDomainsIdentityProviders Result

The following output properties are available:

Id string: The provider-assigned unique ID for this managed resource.
IdcsEndpoint string
IdentityProviders List<GetDomainsIdentityProvidersIdentityProvider>: The list of identity_providers.
ItemsPerPage int
Schemas List<string>: REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard "enterprise" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.
TotalResults int
AttributeSets List<string>
Attributes string
Authorization string
CompartmentId string
IdentityProviderCount int
IdentityProviderFilter string
ResourceTypeSchemaVersion string
SortBy string
SortOrder string
StartIndex int

Id string: The provider-assigned unique ID for this managed resource.
IdcsEndpoint string
IdentityProviders []GetDomainsIdentityProvidersIdentityProvider: The list of identity_providers.
ItemsPerPage int
Schemas []string: REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard "enterprise" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.
TotalResults int
AttributeSets []string
Attributes string
Authorization string
CompartmentId string
IdentityProviderCount int
IdentityProviderFilter string
ResourceTypeSchemaVersion string
SortBy string
SortOrder string
StartIndex int

id String: The provider-assigned unique ID for this managed resource.
idcsEndpoint String
identityProviders List<GetDomainsProvidersProvider>: The list of identity_providers.
itemsPerPage Integer
schemas List<String>: REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard "enterprise" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.
totalResults Integer
attributeSets List<String>
attributes String
authorization String
compartmentId String
identityProviderCount Integer
identityProviderFilter String
resourceTypeSchemaVersion String
sortBy String
sortOrder String
startIndex Integer

id string: The provider-assigned unique ID for this managed resource.
idcsEndpoint string
identityProviders GetDomainsIdentityProvidersIdentityProvider[]: The list of identity_providers.
itemsPerPage number
schemas string[]: REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard "enterprise" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.
totalResults number
attributeSets string[]
attributes string
authorization string
compartmentId string
identityProviderCount number
identityProviderFilter string
resourceTypeSchemaVersion string
sortBy string
sortOrder string
startIndex number

id str: The provider-assigned unique ID for this managed resource.
idcs_endpoint str
identity_providers Sequence[GetDomainsIdentityProvidersIdentityProvider]: The list of identity_providers.
items_per_page int
schemas Sequence[str]: REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard "enterprise" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.
total_results int
attribute_sets Sequence[str]
attributes str
authorization str
compartment_id str
identity_provider_count int
identity_provider_filter str
resource_type_schema_version str
sort_by str
sort_order str
start_index int

id String: The provider-assigned unique ID for this managed resource.
idcsEndpoint String
identityProviders List<Property Map>: The list of identity_providers.
itemsPerPage Number
schemas List<String>: REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard "enterprise" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.
totalResults Number
attributeSets List<String>
attributes String
authorization String
compartmentId String
identityProviderCount Number
identityProviderFilter String
resourceTypeSchemaVersion String
sortBy String
sortOrder String
startIndex Number

Supporting Types

GetDomainsIdentityProvidersIdentityProvider

AssertionAttribute string: Assertion attribute name.
AttributeSets List<string>: A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If 'attributes' query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.
Attributes string: A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.
AuthnRequestBinding string: HTTP binding to use for authentication requests.
Authorization string: The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.
CompartmentOcid string: Oracle Cloud Infrastructure Compartment Id (ocid) in which the resource lives.
CorrelationPolicies List<GetDomainsIdentityProvidersIdentityProviderCorrelationPolicy>: Correlation policy
DeleteInProgress bool: A boolean flag indicating this resource in the process of being deleted. Usually set to true when synchronous deletion of the resource would take too long.
Description string: Description
DomainOcid string: Oracle Cloud Infrastructure Domain Id (ocid) in which the resource lives.
Enabled bool: Set to true to indicate Partner enabled.
EncryptionCertificate string: Encryption certificate
ExternalId string: An identifier for the Resource as defined by the Service Consumer. The externalId may simplify identification of the Resource between Service Consumer and Service Provider by allowing the Consumer to refer to the Resource with its own identifier, obviating the need to store a local mapping between the local identifier of the Resource and the identifier used by the Service Provider. Each Resource MAY include a non-empty externalId value. The value of the externalId attribute is always issued by the Service Consumer and can never be specified by the Service Provider. The Service Provider MUST always interpret the externalId as scoped to the Service Consumer's tenant.
IconUrl string: Identity Provider Icon URL.
Id string: Unique identifier for the SCIM Resource as defined by the Service Provider. Each representation of the Resource MUST include a non-empty id value. This identifier MUST be unique across the Service Provider's entire set of Resources. It MUST be a stable, non-reassignable identifier that does not change when the same Resource is returned in subsequent requests. The value of the id attribute is always issued by the Service Provider and MUST never be specified by the Service Consumer. bulkId: is a reserved keyword and MUST NOT be used in the unique identifier.
IdcsCreatedBies List<GetDomainsIdentityProvidersIdentityProviderIdcsCreatedBy>: The User or App who created the Resource
IdcsEndpoint string: The basic endpoint for the identity domain
IdcsLastModifiedBies List<GetDomainsIdentityProvidersIdentityProviderIdcsLastModifiedBy>: The User or App who modified the Resource
IdcsLastUpgradedInRelease string: The release number when the resource was upgraded.
IdcsPreventedOperations List<string>: Each value of this attribute specifies an operation that only an internal client may perform on this particular resource.
IdpSsoUrl string: Identity Provider SSO URL
IncludeSigningCertInSignature bool: Set to true to include the signing certificate in the signature.
JitUserProvAssignedGroups List<GetDomainsIdentityProvidersIdentityProviderJitUserProvAssignedGroup>: Refers to every group of which a JIT-provisioned User should be a member. Just-in-Time user-provisioning applies this static list when jitUserProvGroupStaticListEnabled:true.
JitUserProvAttributeUpdateEnabled bool: Set to true to indicate JIT User Creation is enabled
JitUserProvAttributes List<GetDomainsIdentityProvidersIdentityProviderJitUserProvAttribute>: Assertion To User Mapping
JitUserProvCreateUserEnabled bool: Set to true to indicate JIT User Creation is enabled
JitUserProvEnabled bool: Set to true to indicate JIT User Provisioning is enabled
JitUserProvGroupAssertionAttributeEnabled bool: Set to true to indicate JIT User Provisioning Groups should be assigned based on assertion attribute
JitUserProvGroupAssignmentMethod string: The default value is 'Overwrite', which tells Just-In-Time user-provisioning to replace any current group-assignments for a User with those assigned by assertions and/or those assigned statically. Specify 'Merge' if you want Just-In-Time user-provisioning to combine its group-assignments with those the user already has.
JitUserProvGroupMappingMode string: Property to indicate the mode of group mapping
JitUserProvGroupMappings List<GetDomainsIdentityProvidersIdentityProviderJitUserProvGroupMapping>: The list of mappings between the Identity Domain Group and the IDP group.
JitUserProvGroupSamlAttributeName string: Name of the assertion attribute containing the users groups
JitUserProvGroupStaticListEnabled bool: Set to true to indicate JIT User Provisioning Groups should be assigned from a static list
JitUserProvIgnoreErrorOnAbsentGroups bool: Set to true to indicate ignoring absence of group while provisioning
LastNotificationSentTime string: Records the notification timestamp for the IdP whose signing certificate is about to expire
LogoutBinding string: HTTP binding to use for logout.
LogoutEnabled bool: Set to true to enable logout.
LogoutRequestUrl string: Logout request URL
LogoutResponseUrl string: Logout response URL
Metadata string: Metadata
Metas List<GetDomainsIdentityProvidersIdentityProviderMeta>: A complex attribute that contains resource metadata. All sub-attributes are OPTIONAL.
NameIdFormat string: Default authentication request name ID format.
Ocid string: Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
PartnerName string: Unique name of the trusted Identity Provider.
PartnerProviderId string: Provider ID
RequestedAuthenticationContexts List<string>: SAML SP authentication type.
RequireForceAuthn bool: This SP requires requests SAML IdP to enforce re-authentication.
RequiresEncryptedAssertion bool: SAML SP must accept encrypted assertion only.
ResourceTypeSchemaVersion string: An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.
SamlHoKrequired bool: SAML SP HoK Enabled.
Schemas List<string>: REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard "enterprise" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.
ServiceInstanceIdentifier string: The serviceInstanceIdentifier of the App that hosts this IdP. This value will match the opcServiceInstanceGUID of any service-instance that the IdP represents.
ShownOnLoginPage bool: Set to true to indicate whether to show IdP in login page or not.
SignatureHashAlgorithm string: Signature hash algorithm.
SigningCertificate string: Signing certificate
SuccinctId string: Succinct ID
Tags List<GetDomainsIdentityProvidersIdentityProviderTag>: A list of tags on this resource.
TenancyOcid string: Oracle Cloud Infrastructure Tenant Id (ocid) in which the resource lives.
TenantProviderId string: The alternate Provider ID to be used as the Oracle Identity Cloud Service providerID (instead of the one in SamlSettings) when interacting with this IdP.
Type string: Identity Provider Type
UrnietfparamsscimschemasoracleidcsextensionsocialIdentityProviders List<GetDomainsIdentityProvidersIdentityProviderUrnietfparamsscimschemasoracleidcsextensionsocialIdentityProvider>: Social Identity Provider Extension Schema
Urnietfparamsscimschemasoracleidcsextensionx509identityProviders List<GetDomainsIdentityProvidersIdentityProviderUrnietfparamsscimschemasoracleidcsextensionx509identityProvider>: X509 Identity Provider Extension Schema
UserMappingMethod string: User mapping method.
UserMappingStoreAttribute string: This property specifies the userstore attribute value that must match the incoming assertion attribute value or the incoming nameid attribute value in order to identify the user during SSO.You can construct the userMappingStoreAttribute value by specifying attributes from the Oracle Identity Cloud Service Core Users schema. For examples of how to construct the userMappingStoreAttribute value, see the Example of a Request Body section of the Examples tab for the POST and PUT methods of the /IdentityProviders endpoint.

AssertionAttribute string: Assertion attribute name.
AttributeSets []string: A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If 'attributes' query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.
Attributes string: A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.
AuthnRequestBinding string: HTTP binding to use for authentication requests.
Authorization string: The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.
CompartmentOcid string: Oracle Cloud Infrastructure Compartment Id (ocid) in which the resource lives.
CorrelationPolicies []GetDomainsIdentityProvidersIdentityProviderCorrelationPolicy: Correlation policy
DeleteInProgress bool: A boolean flag indicating this resource in the process of being deleted. Usually set to true when synchronous deletion of the resource would take too long.
Description string: Description
DomainOcid string: Oracle Cloud Infrastructure Domain Id (ocid) in which the resource lives.
Enabled bool: Set to true to indicate Partner enabled.
EncryptionCertificate string: Encryption certificate
ExternalId string: An identifier for the Resource as defined by the Service Consumer. The externalId may simplify identification of the Resource between Service Consumer and Service Provider by allowing the Consumer to refer to the Resource with its own identifier, obviating the need to store a local mapping between the local identifier of the Resource and the identifier used by the Service Provider. Each Resource MAY include a non-empty externalId value. The value of the externalId attribute is always issued by the Service Consumer and can never be specified by the Service Provider. The Service Provider MUST always interpret the externalId as scoped to the Service Consumer's tenant.
IconUrl string: Identity Provider Icon URL.
Id string: Unique identifier for the SCIM Resource as defined by the Service Provider. Each representation of the Resource MUST include a non-empty id value. This identifier MUST be unique across the Service Provider's entire set of Resources. It MUST be a stable, non-reassignable identifier that does not change when the same Resource is returned in subsequent requests. The value of the id attribute is always issued by the Service Provider and MUST never be specified by the Service Consumer. bulkId: is a reserved keyword and MUST NOT be used in the unique identifier.
IdcsCreatedBies []GetDomainsIdentityProvidersIdentityProviderIdcsCreatedBy: The User or App who created the Resource
IdcsEndpoint string: The basic endpoint for the identity domain
IdcsLastModifiedBies []GetDomainsIdentityProvidersIdentityProviderIdcsLastModifiedBy: The User or App who modified the Resource
IdcsLastUpgradedInRelease string: The release number when the resource was upgraded.
IdcsPreventedOperations []string: Each value of this attribute specifies an operation that only an internal client may perform on this particular resource.
IdpSsoUrl string: Identity Provider SSO URL
IncludeSigningCertInSignature bool: Set to true to include the signing certificate in the signature.
JitUserProvAssignedGroups []GetDomainsIdentityProvidersIdentityProviderJitUserProvAssignedGroup: Refers to every group of which a JIT-provisioned User should be a member. Just-in-Time user-provisioning applies this static list when jitUserProvGroupStaticListEnabled:true.
JitUserProvAttributeUpdateEnabled bool: Set to true to indicate JIT User Creation is enabled
JitUserProvAttributes []GetDomainsIdentityProvidersIdentityProviderJitUserProvAttribute: Assertion To User Mapping
JitUserProvCreateUserEnabled bool: Set to true to indicate JIT User Creation is enabled
JitUserProvEnabled bool: Set to true to indicate JIT User Provisioning is enabled
JitUserProvGroupAssertionAttributeEnabled bool: Set to true to indicate JIT User Provisioning Groups should be assigned based on assertion attribute
JitUserProvGroupAssignmentMethod string: The default value is 'Overwrite', which tells Just-In-Time user-provisioning to replace any current group-assignments for a User with those assigned by assertions and/or those assigned statically. Specify 'Merge' if you want Just-In-Time user-provisioning to combine its group-assignments with those the user already has.
JitUserProvGroupMappingMode string: Property to indicate the mode of group mapping
JitUserProvGroupMappings []GetDomainsIdentityProvidersIdentityProviderJitUserProvGroupMapping: The list of mappings between the Identity Domain Group and the IDP group.
JitUserProvGroupSamlAttributeName string: Name of the assertion attribute containing the users groups
JitUserProvGroupStaticListEnabled bool: Set to true to indicate JIT User Provisioning Groups should be assigned from a static list
JitUserProvIgnoreErrorOnAbsentGroups bool: Set to true to indicate ignoring absence of group while provisioning
LastNotificationSentTime string: Records the notification timestamp for the IdP whose signing certificate is about to expire
LogoutBinding string: HTTP binding to use for logout.
LogoutEnabled bool: Set to true to enable logout.
LogoutRequestUrl string: Logout request URL
LogoutResponseUrl string: Logout response URL
Metadata string: Metadata
Metas []GetDomainsIdentityProvidersIdentityProviderMeta: A complex attribute that contains resource metadata. All sub-attributes are OPTIONAL.
NameIdFormat string: Default authentication request name ID format.
Ocid string: Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
PartnerName string: Unique name of the trusted Identity Provider.
PartnerProviderId string: Provider ID
RequestedAuthenticationContexts []string: SAML SP authentication type.
RequireForceAuthn bool: This SP requires requests SAML IdP to enforce re-authentication.
RequiresEncryptedAssertion bool: SAML SP must accept encrypted assertion only.
ResourceTypeSchemaVersion string: An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.
SamlHoKrequired bool: SAML SP HoK Enabled.
Schemas []string: REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard "enterprise" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.
ServiceInstanceIdentifier string: The serviceInstanceIdentifier of the App that hosts this IdP. This value will match the opcServiceInstanceGUID of any service-instance that the IdP represents.
ShownOnLoginPage bool: Set to true to indicate whether to show IdP in login page or not.
SignatureHashAlgorithm string: Signature hash algorithm.
SigningCertificate string: Signing certificate
SuccinctId string: Succinct ID
Tags []GetDomainsIdentityProvidersIdentityProviderTag: A list of tags on this resource.
TenancyOcid string: Oracle Cloud Infrastructure Tenant Id (ocid) in which the resource lives.
TenantProviderId string: The alternate Provider ID to be used as the Oracle Identity Cloud Service providerID (instead of the one in SamlSettings) when interacting with this IdP.
Type string: Identity Provider Type
UrnietfparamsscimschemasoracleidcsextensionsocialIdentityProviders []GetDomainsIdentityProvidersIdentityProviderUrnietfparamsscimschemasoracleidcsextensionsocialIdentityProvider: Social Identity Provider Extension Schema
Urnietfparamsscimschemasoracleidcsextensionx509identityProviders []GetDomainsIdentityProvidersIdentityProviderUrnietfparamsscimschemasoracleidcsextensionx509identityProvider: X509 Identity Provider Extension Schema
UserMappingMethod string: User mapping method.
UserMappingStoreAttribute string: This property specifies the userstore attribute value that must match the incoming assertion attribute value or the incoming nameid attribute value in order to identify the user during SSO.You can construct the userMappingStoreAttribute value by specifying attributes from the Oracle Identity Cloud Service Core Users schema. For examples of how to construct the userMappingStoreAttribute value, see the Example of a Request Body section of the Examples tab for the POST and PUT methods of the /IdentityProviders endpoint.

assertionAttribute String: Assertion attribute name.
attributeSets List<String>: A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If 'attributes' query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.
attributes String: A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.
authnRequestBinding String: HTTP binding to use for authentication requests.
authorization String: The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.
compartmentOcid String: Oracle Cloud Infrastructure Compartment Id (ocid) in which the resource lives.
correlationPolicies List<GetDomainsProvidersProviderCorrelationPolicy>: Correlation policy
deleteInProgress Boolean: A boolean flag indicating this resource in the process of being deleted. Usually set to true when synchronous deletion of the resource would take too long.
description String: Description
domainOcid String: Oracle Cloud Infrastructure Domain Id (ocid) in which the resource lives.
enabled Boolean: Set to true to indicate Partner enabled.
encryptionCertificate String: Encryption certificate
externalId String: An identifier for the Resource as defined by the Service Consumer. The externalId may simplify identification of the Resource between Service Consumer and Service Provider by allowing the Consumer to refer to the Resource with its own identifier, obviating the need to store a local mapping between the local identifier of the Resource and the identifier used by the Service Provider. Each Resource MAY include a non-empty externalId value. The value of the externalId attribute is always issued by the Service Consumer and can never be specified by the Service Provider. The Service Provider MUST always interpret the externalId as scoped to the Service Consumer's tenant.
iconUrl String: Identity Provider Icon URL.
id String: Unique identifier for the SCIM Resource as defined by the Service Provider. Each representation of the Resource MUST include a non-empty id value. This identifier MUST be unique across the Service Provider's entire set of Resources. It MUST be a stable, non-reassignable identifier that does not change when the same Resource is returned in subsequent requests. The value of the id attribute is always issued by the Service Provider and MUST never be specified by the Service Consumer. bulkId: is a reserved keyword and MUST NOT be used in the unique identifier.
idcsCreatedBies List<GetDomainsProvidersProviderIdcsCreatedBy>: The User or App who created the Resource
idcsEndpoint String: The basic endpoint for the identity domain
idcsLastModifiedBies List<GetDomainsProvidersProviderIdcsLastModifiedBy>: The User or App who modified the Resource
idcsLastUpgradedInRelease String: The release number when the resource was upgraded.
idcsPreventedOperations List<String>: Each value of this attribute specifies an operation that only an internal client may perform on this particular resource.
idpSsoUrl String: Identity Provider SSO URL
includeSigningCertInSignature Boolean: Set to true to include the signing certificate in the signature.
jitUserProvAssignedGroups List<GetDomainsProvidersProviderJitUserProvAssignedGroup>: Refers to every group of which a JIT-provisioned User should be a member. Just-in-Time user-provisioning applies this static list when jitUserProvGroupStaticListEnabled:true.
jitUserProvAttributeUpdateEnabled Boolean: Set to true to indicate JIT User Creation is enabled
jitUserProvAttributes List<GetDomainsProvidersProviderJitUserProvAttribute>: Assertion To User Mapping
jitUserProvCreateUserEnabled Boolean: Set to true to indicate JIT User Creation is enabled
jitUserProvEnabled Boolean: Set to true to indicate JIT User Provisioning is enabled
jitUserProvGroupAssertionAttributeEnabled Boolean: Set to true to indicate JIT User Provisioning Groups should be assigned based on assertion attribute
jitUserProvGroupAssignmentMethod String: The default value is 'Overwrite', which tells Just-In-Time user-provisioning to replace any current group-assignments for a User with those assigned by assertions and/or those assigned statically. Specify 'Merge' if you want Just-In-Time user-provisioning to combine its group-assignments with those the user already has.
jitUserProvGroupMappingMode String: Property to indicate the mode of group mapping
jitUserProvGroupMappings List<GetDomainsProvidersProviderJitUserProvGroupMapping>: The list of mappings between the Identity Domain Group and the IDP group.
jitUserProvGroupSamlAttributeName String: Name of the assertion attribute containing the users groups
jitUserProvGroupStaticListEnabled Boolean: Set to true to indicate JIT User Provisioning Groups should be assigned from a static list
jitUserProvIgnoreErrorOnAbsentGroups Boolean: Set to true to indicate ignoring absence of group while provisioning
lastNotificationSentTime String: Records the notification timestamp for the IdP whose signing certificate is about to expire
logoutBinding String: HTTP binding to use for logout.
logoutEnabled Boolean: Set to true to enable logout.
logoutRequestUrl String: Logout request URL
logoutResponseUrl String: Logout response URL
metadata String: Metadata
metas List<GetDomainsProvidersProviderMeta>: A complex attribute that contains resource metadata. All sub-attributes are OPTIONAL.
nameIdFormat String: Default authentication request name ID format.
ocid String: Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
partnerName String: Unique name of the trusted Identity Provider.
partnerProviderId String: Provider ID
requestedAuthenticationContexts List<String>: SAML SP authentication type.
requireForceAuthn Boolean: This SP requires requests SAML IdP to enforce re-authentication.
requiresEncryptedAssertion Boolean: SAML SP must accept encrypted assertion only.
resourceTypeSchemaVersion String: An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.
samlHoKrequired Boolean: SAML SP HoK Enabled.
schemas List<String>: REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard "enterprise" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.
serviceInstanceIdentifier String: The serviceInstanceIdentifier of the App that hosts this IdP. This value will match the opcServiceInstanceGUID of any service-instance that the IdP represents.
shownOnLoginPage Boolean: Set to true to indicate whether to show IdP in login page or not.
signatureHashAlgorithm String: Signature hash algorithm.
signingCertificate String: Signing certificate
succinctId String: Succinct ID
tags List<GetDomainsProvidersProviderTag>: A list of tags on this resource.
tenancyOcid String: Oracle Cloud Infrastructure Tenant Id (ocid) in which the resource lives.
tenantProviderId String: The alternate Provider ID to be used as the Oracle Identity Cloud Service providerID (instead of the one in SamlSettings) when interacting with this IdP.
type String: Identity Provider Type
urnietfparamsscimschemasoracleidcsextensionsocialIdentityProviders List<GetDomainsProvidersProviderUrnietfparamsscimschemasoracleidcsextensionsocialProvider>: Social Identity Provider Extension Schema
urnietfparamsscimschemasoracleidcsextensionx509identityProviders List<GetDomainsProvidersProviderUrnietfparamsscimschemasoracleidcsextensionx509identityProvider>: X509 Identity Provider Extension Schema
userMappingMethod String: User mapping method.
userMappingStoreAttribute String: This property specifies the userstore attribute value that must match the incoming assertion attribute value or the incoming nameid attribute value in order to identify the user during SSO.You can construct the userMappingStoreAttribute value by specifying attributes from the Oracle Identity Cloud Service Core Users schema. For examples of how to construct the userMappingStoreAttribute value, see the Example of a Request Body section of the Examples tab for the POST and PUT methods of the /IdentityProviders endpoint.

assertionAttribute string: Assertion attribute name.
attributeSets string[]: A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If 'attributes' query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.
attributes string: A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.
authnRequestBinding string: HTTP binding to use for authentication requests.
authorization string: The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.
compartmentOcid string: Oracle Cloud Infrastructure Compartment Id (ocid) in which the resource lives.
correlationPolicies GetDomainsIdentityProvidersIdentityProviderCorrelationPolicy[]: Correlation policy
deleteInProgress boolean: A boolean flag indicating this resource in the process of being deleted. Usually set to true when synchronous deletion of the resource would take too long.
description string: Description
domainOcid string: Oracle Cloud Infrastructure Domain Id (ocid) in which the resource lives.
enabled boolean: Set to true to indicate Partner enabled.
encryptionCertificate string: Encryption certificate
externalId string: An identifier for the Resource as defined by the Service Consumer. The externalId may simplify identification of the Resource between Service Consumer and Service Provider by allowing the Consumer to refer to the Resource with its own identifier, obviating the need to store a local mapping between the local identifier of the Resource and the identifier used by the Service Provider. Each Resource MAY include a non-empty externalId value. The value of the externalId attribute is always issued by the Service Consumer and can never be specified by the Service Provider. The Service Provider MUST always interpret the externalId as scoped to the Service Consumer's tenant.
iconUrl string: Identity Provider Icon URL.
id string: Unique identifier for the SCIM Resource as defined by the Service Provider. Each representation of the Resource MUST include a non-empty id value. This identifier MUST be unique across the Service Provider's entire set of Resources. It MUST be a stable, non-reassignable identifier that does not change when the same Resource is returned in subsequent requests. The value of the id attribute is always issued by the Service Provider and MUST never be specified by the Service Consumer. bulkId: is a reserved keyword and MUST NOT be used in the unique identifier.
idcsCreatedBies GetDomainsIdentityProvidersIdentityProviderIdcsCreatedBy[]: The User or App who created the Resource
idcsEndpoint string: The basic endpoint for the identity domain
idcsLastModifiedBies GetDomainsIdentityProvidersIdentityProviderIdcsLastModifiedBy[]: The User or App who modified the Resource
idcsLastUpgradedInRelease string: The release number when the resource was upgraded.
idcsPreventedOperations string[]: Each value of this attribute specifies an operation that only an internal client may perform on this particular resource.
idpSsoUrl string: Identity Provider SSO URL
includeSigningCertInSignature boolean: Set to true to include the signing certificate in the signature.
jitUserProvAssignedGroups GetDomainsIdentityProvidersIdentityProviderJitUserProvAssignedGroup[]: Refers to every group of which a JIT-provisioned User should be a member. Just-in-Time user-provisioning applies this static list when jitUserProvGroupStaticListEnabled:true.
jitUserProvAttributeUpdateEnabled boolean: Set to true to indicate JIT User Creation is enabled
jitUserProvAttributes GetDomainsIdentityProvidersIdentityProviderJitUserProvAttribute[]: Assertion To User Mapping
jitUserProvCreateUserEnabled boolean: Set to true to indicate JIT User Creation is enabled
jitUserProvEnabled boolean: Set to true to indicate JIT User Provisioning is enabled
jitUserProvGroupAssertionAttributeEnabled boolean: Set to true to indicate JIT User Provisioning Groups should be assigned based on assertion attribute
jitUserProvGroupAssignmentMethod string: The default value is 'Overwrite', which tells Just-In-Time user-provisioning to replace any current group-assignments for a User with those assigned by assertions and/or those assigned statically. Specify 'Merge' if you want Just-In-Time user-provisioning to combine its group-assignments with those the user already has.
jitUserProvGroupMappingMode string: Property to indicate the mode of group mapping
jitUserProvGroupMappings GetDomainsIdentityProvidersIdentityProviderJitUserProvGroupMapping[]: The list of mappings between the Identity Domain Group and the IDP group.
jitUserProvGroupSamlAttributeName string: Name of the assertion attribute containing the users groups
jitUserProvGroupStaticListEnabled boolean: Set to true to indicate JIT User Provisioning Groups should be assigned from a static list
jitUserProvIgnoreErrorOnAbsentGroups boolean: Set to true to indicate ignoring absence of group while provisioning
lastNotificationSentTime string: Records the notification timestamp for the IdP whose signing certificate is about to expire
logoutBinding string: HTTP binding to use for logout.
logoutEnabled boolean: Set to true to enable logout.
logoutRequestUrl string: Logout request URL
logoutResponseUrl string: Logout response URL
metadata string: Metadata
metas GetDomainsIdentityProvidersIdentityProviderMeta[]: A complex attribute that contains resource metadata. All sub-attributes are OPTIONAL.
nameIdFormat string: Default authentication request name ID format.
ocid string: Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
partnerName string: Unique name of the trusted Identity Provider.
partnerProviderId string: Provider ID
requestedAuthenticationContexts string[]: SAML SP authentication type.
requireForceAuthn boolean: This SP requires requests SAML IdP to enforce re-authentication.
requiresEncryptedAssertion boolean: SAML SP must accept encrypted assertion only.
resourceTypeSchemaVersion string: An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.
samlHoKrequired boolean: SAML SP HoK Enabled.
schemas string[]: REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard "enterprise" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.
serviceInstanceIdentifier string: The serviceInstanceIdentifier of the App that hosts this IdP. This value will match the opcServiceInstanceGUID of any service-instance that the IdP represents.
shownOnLoginPage boolean: Set to true to indicate whether to show IdP in login page or not.
signatureHashAlgorithm string: Signature hash algorithm.
signingCertificate string: Signing certificate
succinctId string: Succinct ID
tags GetDomainsIdentityProvidersIdentityProviderTag[]: A list of tags on this resource.
tenancyOcid string: Oracle Cloud Infrastructure Tenant Id (ocid) in which the resource lives.
tenantProviderId string: The alternate Provider ID to be used as the Oracle Identity Cloud Service providerID (instead of the one in SamlSettings) when interacting with this IdP.
type string: Identity Provider Type
urnietfparamsscimschemasoracleidcsextensionsocialIdentityProviders GetDomainsIdentityProvidersIdentityProviderUrnietfparamsscimschemasoracleidcsextensionsocialIdentityProvider[]: Social Identity Provider Extension Schema
urnietfparamsscimschemasoracleidcsextensionx509identityProviders GetDomainsIdentityProvidersIdentityProviderUrnietfparamsscimschemasoracleidcsextensionx509identityProvider[]: X509 Identity Provider Extension Schema
userMappingMethod string: User mapping method.
userMappingStoreAttribute string: This property specifies the userstore attribute value that must match the incoming assertion attribute value or the incoming nameid attribute value in order to identify the user during SSO.You can construct the userMappingStoreAttribute value by specifying attributes from the Oracle Identity Cloud Service Core Users schema. For examples of how to construct the userMappingStoreAttribute value, see the Example of a Request Body section of the Examples tab for the POST and PUT methods of the /IdentityProviders endpoint.

assertion_attribute str: Assertion attribute name.
attribute_sets Sequence[str]: A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If 'attributes' query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.
attributes str: A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.
authn_request_binding str: HTTP binding to use for authentication requests.
authorization str: The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.
compartment_ocid str: Oracle Cloud Infrastructure Compartment Id (ocid) in which the resource lives.
correlation_policies Sequence[GetDomainsIdentityProvidersIdentityProviderCorrelationPolicy]: Correlation policy
delete_in_progress bool: A boolean flag indicating this resource in the process of being deleted. Usually set to true when synchronous deletion of the resource would take too long.
description str: Description
domain_ocid str: Oracle Cloud Infrastructure Domain Id (ocid) in which the resource lives.
enabled bool: Set to true to indicate Partner enabled.
encryption_certificate str: Encryption certificate
external_id str: An identifier for the Resource as defined by the Service Consumer. The externalId may simplify identification of the Resource between Service Consumer and Service Provider by allowing the Consumer to refer to the Resource with its own identifier, obviating the need to store a local mapping between the local identifier of the Resource and the identifier used by the Service Provider. Each Resource MAY include a non-empty externalId value. The value of the externalId attribute is always issued by the Service Consumer and can never be specified by the Service Provider. The Service Provider MUST always interpret the externalId as scoped to the Service Consumer's tenant.
icon_url str: Identity Provider Icon URL.
id str: Unique identifier for the SCIM Resource as defined by the Service Provider. Each representation of the Resource MUST include a non-empty id value. This identifier MUST be unique across the Service Provider's entire set of Resources. It MUST be a stable, non-reassignable identifier that does not change when the same Resource is returned in subsequent requests. The value of the id attribute is always issued by the Service Provider and MUST never be specified by the Service Consumer. bulkId: is a reserved keyword and MUST NOT be used in the unique identifier.
idcs_created_bies Sequence[GetDomainsIdentityProvidersIdentityProviderIdcsCreatedBy]: The User or App who created the Resource
idcs_endpoint str: The basic endpoint for the identity domain
idcs_last_modified_bies Sequence[GetDomainsIdentityProvidersIdentityProviderIdcsLastModifiedBy]: The User or App who modified the Resource
idcs_last_upgraded_in_release str: The release number when the resource was upgraded.
idcs_prevented_operations Sequence[str]: Each value of this attribute specifies an operation that only an internal client may perform on this particular resource.
idp_sso_url str: Identity Provider SSO URL
include_signing_cert_in_signature bool: Set to true to include the signing certificate in the signature.
jit_user_prov_assigned_groups Sequence[GetDomainsIdentityProvidersIdentityProviderJitUserProvAssignedGroup]: Refers to every group of which a JIT-provisioned User should be a member. Just-in-Time user-provisioning applies this static list when jitUserProvGroupStaticListEnabled:true.
jit_user_prov_attribute_update_enabled bool: Set to true to indicate JIT User Creation is enabled
jit_user_prov_attributes Sequence[GetDomainsIdentityProvidersIdentityProviderJitUserProvAttribute]: Assertion To User Mapping
jit_user_prov_create_user_enabled bool: Set to true to indicate JIT User Creation is enabled
jit_user_prov_enabled bool: Set to true to indicate JIT User Provisioning is enabled
jit_user_prov_group_assertion_attribute_enabled bool: Set to true to indicate JIT User Provisioning Groups should be assigned based on assertion attribute
jit_user_prov_group_assignment_method str: The default value is 'Overwrite', which tells Just-In-Time user-provisioning to replace any current group-assignments for a User with those assigned by assertions and/or those assigned statically. Specify 'Merge' if you want Just-In-Time user-provisioning to combine its group-assignments with those the user already has.
jit_user_prov_group_mapping_mode str: Property to indicate the mode of group mapping
jit_user_prov_group_mappings Sequence[GetDomainsIdentityProvidersIdentityProviderJitUserProvGroupMapping]: The list of mappings between the Identity Domain Group and the IDP group.
jit_user_prov_group_saml_attribute_name str: Name of the assertion attribute containing the users groups
jit_user_prov_group_static_list_enabled bool: Set to true to indicate JIT User Provisioning Groups should be assigned from a static list
jit_user_prov_ignore_error_on_absent_groups bool: Set to true to indicate ignoring absence of group while provisioning
last_notification_sent_time str: Records the notification timestamp for the IdP whose signing certificate is about to expire
logout_binding str: HTTP binding to use for logout.
logout_enabled bool: Set to true to enable logout.
logout_request_url str: Logout request URL
logout_response_url str: Logout response URL
metadata str: Metadata
metas Sequence[GetDomainsIdentityProvidersIdentityProviderMeta]: A complex attribute that contains resource metadata. All sub-attributes are OPTIONAL.
name_id_format str: Default authentication request name ID format.
ocid str: Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
partner_name str: Unique name of the trusted Identity Provider.
partner_provider_id str: Provider ID
requested_authentication_contexts Sequence[str]: SAML SP authentication type.
require_force_authn bool: This SP requires requests SAML IdP to enforce re-authentication.
requires_encrypted_assertion bool: SAML SP must accept encrypted assertion only.
resource_type_schema_version str: An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.
saml_ho_krequired bool: SAML SP HoK Enabled.
schemas Sequence[str]: REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard "enterprise" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.
service_instance_identifier str: The serviceInstanceIdentifier of the App that hosts this IdP. This value will match the opcServiceInstanceGUID of any service-instance that the IdP represents.
shown_on_login_page bool: Set to true to indicate whether to show IdP in login page or not.
signature_hash_algorithm str: Signature hash algorithm.
signing_certificate str: Signing certificate
succinct_id str: Succinct ID
tags Sequence[GetDomainsIdentityProvidersIdentityProviderTag]: A list of tags on this resource.
tenancy_ocid str: Oracle Cloud Infrastructure Tenant Id (ocid) in which the resource lives.
tenant_provider_id str: The alternate Provider ID to be used as the Oracle Identity Cloud Service providerID (instead of the one in SamlSettings) when interacting with this IdP.
type str: Identity Provider Type
urnietfparamsscimschemasoracleidcsextensionsocial_identity_providers Sequence[GetDomainsIdentityProvidersIdentityProviderUrnietfparamsscimschemasoracleidcsextensionsocialIdentityProvider]: Social Identity Provider Extension Schema
urnietfparamsscimschemasoracleidcsextensionx509identity_providers Sequence[GetDomainsIdentityProvidersIdentityProviderUrnietfparamsscimschemasoracleidcsextensionx509identityProvider]: X509 Identity Provider Extension Schema
user_mapping_method str: User mapping method.
user_mapping_store_attribute str: This property specifies the userstore attribute value that must match the incoming assertion attribute value or the incoming nameid attribute value in order to identify the user during SSO.You can construct the userMappingStoreAttribute value by specifying attributes from the Oracle Identity Cloud Service Core Users schema. For examples of how to construct the userMappingStoreAttribute value, see the Example of a Request Body section of the Examples tab for the POST and PUT methods of the /IdentityProviders endpoint.

assertionAttribute String: Assertion attribute name.
attributeSets List<String>: A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If 'attributes' query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.
attributes String: A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.
authnRequestBinding String: HTTP binding to use for authentication requests.
authorization String: The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.
compartmentOcid String: Oracle Cloud Infrastructure Compartment Id (ocid) in which the resource lives.
correlationPolicies List<Property Map>: Correlation policy
deleteInProgress Boolean: A boolean flag indicating this resource in the process of being deleted. Usually set to true when synchronous deletion of the resource would take too long.
description String: Description
domainOcid String: Oracle Cloud Infrastructure Domain Id (ocid) in which the resource lives.
enabled Boolean: Set to true to indicate Partner enabled.
encryptionCertificate String: Encryption certificate
externalId String: An identifier for the Resource as defined by the Service Consumer. The externalId may simplify identification of the Resource between Service Consumer and Service Provider by allowing the Consumer to refer to the Resource with its own identifier, obviating the need to store a local mapping between the local identifier of the Resource and the identifier used by the Service Provider. Each Resource MAY include a non-empty externalId value. The value of the externalId attribute is always issued by the Service Consumer and can never be specified by the Service Provider. The Service Provider MUST always interpret the externalId as scoped to the Service Consumer's tenant.
iconUrl String: Identity Provider Icon URL.
id String: Unique identifier for the SCIM Resource as defined by the Service Provider. Each representation of the Resource MUST include a non-empty id value. This identifier MUST be unique across the Service Provider's entire set of Resources. It MUST be a stable, non-reassignable identifier that does not change when the same Resource is returned in subsequent requests. The value of the id attribute is always issued by the Service Provider and MUST never be specified by the Service Consumer. bulkId: is a reserved keyword and MUST NOT be used in the unique identifier.
idcsCreatedBies List<Property Map>: The User or App who created the Resource
idcsEndpoint String: The basic endpoint for the identity domain
idcsLastModifiedBies List<Property Map>: The User or App who modified the Resource
idcsLastUpgradedInRelease String: The release number when the resource was upgraded.
idcsPreventedOperations List<String>: Each value of this attribute specifies an operation that only an internal client may perform on this particular resource.
idpSsoUrl String: Identity Provider SSO URL
includeSigningCertInSignature Boolean: Set to true to include the signing certificate in the signature.
jitUserProvAssignedGroups List<Property Map>: Refers to every group of which a JIT-provisioned User should be a member. Just-in-Time user-provisioning applies this static list when jitUserProvGroupStaticListEnabled:true.
jitUserProvAttributeUpdateEnabled Boolean: Set to true to indicate JIT User Creation is enabled
jitUserProvAttributes List<Property Map>: Assertion To User Mapping
jitUserProvCreateUserEnabled Boolean: Set to true to indicate JIT User Creation is enabled
jitUserProvEnabled Boolean: Set to true to indicate JIT User Provisioning is enabled
jitUserProvGroupAssertionAttributeEnabled Boolean: Set to true to indicate JIT User Provisioning Groups should be assigned based on assertion attribute
jitUserProvGroupAssignmentMethod String: The default value is 'Overwrite', which tells Just-In-Time user-provisioning to replace any current group-assignments for a User with those assigned by assertions and/or those assigned statically. Specify 'Merge' if you want Just-In-Time user-provisioning to combine its group-assignments with those the user already has.
jitUserProvGroupMappingMode String: Property to indicate the mode of group mapping
jitUserProvGroupMappings List<Property Map>: The list of mappings between the Identity Domain Group and the IDP group.
jitUserProvGroupSamlAttributeName String: Name of the assertion attribute containing the users groups
jitUserProvGroupStaticListEnabled Boolean: Set to true to indicate JIT User Provisioning Groups should be assigned from a static list
jitUserProvIgnoreErrorOnAbsentGroups Boolean: Set to true to indicate ignoring absence of group while provisioning
lastNotificationSentTime String: Records the notification timestamp for the IdP whose signing certificate is about to expire
logoutBinding String: HTTP binding to use for logout.
logoutEnabled Boolean: Set to true to enable logout.
logoutRequestUrl String: Logout request URL
logoutResponseUrl String: Logout response URL
metadata String: Metadata
metas List<Property Map>: A complex attribute that contains resource metadata. All sub-attributes are OPTIONAL.
nameIdFormat String: Default authentication request name ID format.
ocid String: Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
partnerName String: Unique name of the trusted Identity Provider.
partnerProviderId String: Provider ID
requestedAuthenticationContexts List<String>: SAML SP authentication type.
requireForceAuthn Boolean: This SP requires requests SAML IdP to enforce re-authentication.
requiresEncryptedAssertion Boolean: SAML SP must accept encrypted assertion only.
resourceTypeSchemaVersion String: An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.
samlHoKrequired Boolean: SAML SP HoK Enabled.
schemas List<String>: REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard "enterprise" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.
serviceInstanceIdentifier String: The serviceInstanceIdentifier of the App that hosts this IdP. This value will match the opcServiceInstanceGUID of any service-instance that the IdP represents.
shownOnLoginPage Boolean: Set to true to indicate whether to show IdP in login page or not.
signatureHashAlgorithm String: Signature hash algorithm.
signingCertificate String: Signing certificate
succinctId String: Succinct ID
tags List<Property Map>: A list of tags on this resource.
tenancyOcid String: Oracle Cloud Infrastructure Tenant Id (ocid) in which the resource lives.
tenantProviderId String: The alternate Provider ID to be used as the Oracle Identity Cloud Service providerID (instead of the one in SamlSettings) when interacting with this IdP.
type String: Identity Provider Type
urnietfparamsscimschemasoracleidcsextensionsocialIdentityProviders List<Property Map>: Social Identity Provider Extension Schema
urnietfparamsscimschemasoracleidcsextensionx509identityProviders List<Property Map>: X509 Identity Provider Extension Schema
userMappingMethod String: User mapping method.
userMappingStoreAttribute String: This property specifies the userstore attribute value that must match the incoming assertion attribute value or the incoming nameid attribute value in order to identify the user during SSO.You can construct the userMappingStoreAttribute value by specifying attributes from the Oracle Identity Cloud Service Core Users schema. For examples of how to construct the userMappingStoreAttribute value, see the Example of a Request Body section of the Examples tab for the POST and PUT methods of the /IdentityProviders endpoint.

GetDomainsIdentityProvidersIdentityProviderCorrelationPolicy

Display string: A human readable name, primarily used for display purposes. READ-ONLY.
Ref string: Group URI
Type string: Identity Provider Type
Value string: Group identifier

Display string: A human readable name, primarily used for display purposes. READ-ONLY.
Ref string: Group URI
Type string: Identity Provider Type
Value string: Group identifier

display String: A human readable name, primarily used for display purposes. READ-ONLY.
ref String: Group URI
type String: Identity Provider Type
value String: Group identifier

display string: A human readable name, primarily used for display purposes. READ-ONLY.
ref string: Group URI
type string: Identity Provider Type
value string: Group identifier

display str: A human readable name, primarily used for display purposes. READ-ONLY.
ref str: Group URI
type str: Identity Provider Type
value str: Group identifier

display String: A human readable name, primarily used for display purposes. READ-ONLY.
ref String: Group URI
type String: Identity Provider Type
value String: Group identifier

GetDomainsIdentityProvidersIdentityProviderIdcsCreatedBy

Display string: A human readable name, primarily used for display purposes. READ-ONLY.
Ocid string: Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
Ref string: Group URI
Type string: Identity Provider Type
Value string: Group identifier

Display string: A human readable name, primarily used for display purposes. READ-ONLY.
Ocid string: Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
Ref string: Group URI
Type string: Identity Provider Type
Value string: Group identifier

display String: A human readable name, primarily used for display purposes. READ-ONLY.
ocid String: Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
ref String: Group URI
type String: Identity Provider Type
value String: Group identifier

display string: A human readable name, primarily used for display purposes. READ-ONLY.
ocid string: Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
ref string: Group URI
type string: Identity Provider Type
value string: Group identifier

display str: A human readable name, primarily used for display purposes. READ-ONLY.
ocid str: Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
ref str: Group URI
type str: Identity Provider Type
value str: Group identifier

display String: A human readable name, primarily used for display purposes. READ-ONLY.
ocid String: Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
ref String: Group URI
type String: Identity Provider Type
value String: Group identifier

GetDomainsIdentityProvidersIdentityProviderIdcsLastModifiedBy

Display string: A human readable name, primarily used for display purposes. READ-ONLY.
Ocid string: Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
Ref string: Group URI
Type string: Identity Provider Type
Value string: Group identifier

Display string: A human readable name, primarily used for display purposes. READ-ONLY.
Ocid string: Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
Ref string: Group URI
Type string: Identity Provider Type
Value string: Group identifier

display String: A human readable name, primarily used for display purposes. READ-ONLY.
ocid String: Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
ref String: Group URI
type String: Identity Provider Type
value String: Group identifier

display string: A human readable name, primarily used for display purposes. READ-ONLY.
ocid string: Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
ref string: Group URI
type string: Identity Provider Type
value string: Group identifier

display str: A human readable name, primarily used for display purposes. READ-ONLY.
ocid str: Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
ref str: Group URI
type str: Identity Provider Type
value str: Group identifier

display String: A human readable name, primarily used for display purposes. READ-ONLY.
ocid String: Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
ref String: Group URI
type String: Identity Provider Type
value String: Group identifier

GetDomainsIdentityProvidersIdentityProviderJitUserProvAssignedGroup

Display string: A human readable name, primarily used for display purposes. READ-ONLY.
Ref string: Group URI
Value string: Group identifier

Display string: A human readable name, primarily used for display purposes. READ-ONLY.
Ref string: Group URI
Value string: Group identifier

display String: A human readable name, primarily used for display purposes. READ-ONLY.
ref String: Group URI
value String: Group identifier

display string: A human readable name, primarily used for display purposes. READ-ONLY.
ref string: Group URI
value string: Group identifier

display str: A human readable name, primarily used for display purposes. READ-ONLY.
ref str: Group URI
value str: Group identifier

display String: A human readable name, primarily used for display purposes. READ-ONLY.
ref String: Group URI
value String: Group identifier

GetDomainsIdentityProvidersIdentityProviderJitUserProvAttribute

Ref string: Group URI
Value string: Group identifier

Ref string: Group URI
Value string: Group identifier

ref String: Group URI
value String: Group identifier

ref string: Group URI
value string: Group identifier

ref str: Group URI
value str: Group identifier

ref String: Group URI
value String: Group identifier

GetDomainsIdentityProvidersIdentityProviderJitUserProvGroupMapping

IdpGroup string: IDP Group Name
Ref string: Group URI
Value string: Group identifier

IdpGroup string: IDP Group Name
Ref string: Group URI
Value string: Group identifier

idpGroup String: IDP Group Name
ref String: Group URI
value String: Group identifier

idpGroup string: IDP Group Name
ref string: Group URI
value string: Group identifier

idp_group str: IDP Group Name
ref str: Group URI
value str: Group identifier

idpGroup String: IDP Group Name
ref String: Group URI
value String: Group identifier

GetDomainsIdentityProvidersIdentityProviderMeta

Created string: The DateTime the Resource was added to the Service Provider
LastModified string: The most recent DateTime that the details of this Resource were updated at the Service Provider. If this Resource has never been modified since its initial creation, the value MUST be the same as the value of created. The attribute MUST be a DateTime.
Location string: The URI of the Resource being returned. This value MUST be the same as the Location HTTP response header.
ResourceType string: Name of the resource type of the resource--for example, Users or Groups
Version string: The version of the Resource being returned. This value must be the same as the ETag HTTP response header.

Created string: The DateTime the Resource was added to the Service Provider
LastModified string: The most recent DateTime that the details of this Resource were updated at the Service Provider. If this Resource has never been modified since its initial creation, the value MUST be the same as the value of created. The attribute MUST be a DateTime.
Location string: The URI of the Resource being returned. This value MUST be the same as the Location HTTP response header.
ResourceType string: Name of the resource type of the resource--for example, Users or Groups
Version string: The version of the Resource being returned. This value must be the same as the ETag HTTP response header.

created String: The DateTime the Resource was added to the Service Provider
lastModified String: The most recent DateTime that the details of this Resource were updated at the Service Provider. If this Resource has never been modified since its initial creation, the value MUST be the same as the value of created. The attribute MUST be a DateTime.
location String: The URI of the Resource being returned. This value MUST be the same as the Location HTTP response header.
resourceType String: Name of the resource type of the resource--for example, Users or Groups
version String: The version of the Resource being returned. This value must be the same as the ETag HTTP response header.

created string: The DateTime the Resource was added to the Service Provider
lastModified string: The most recent DateTime that the details of this Resource were updated at the Service Provider. If this Resource has never been modified since its initial creation, the value MUST be the same as the value of created. The attribute MUST be a DateTime.
location string: The URI of the Resource being returned. This value MUST be the same as the Location HTTP response header.
resourceType string: Name of the resource type of the resource--for example, Users or Groups
version string: The version of the Resource being returned. This value must be the same as the ETag HTTP response header.

created str: The DateTime the Resource was added to the Service Provider
last_modified str: The most recent DateTime that the details of this Resource were updated at the Service Provider. If this Resource has never been modified since its initial creation, the value MUST be the same as the value of created. The attribute MUST be a DateTime.
location str: The URI of the Resource being returned. This value MUST be the same as the Location HTTP response header.
resource_type str: Name of the resource type of the resource--for example, Users or Groups
version str: The version of the Resource being returned. This value must be the same as the ETag HTTP response header.

created String: The DateTime the Resource was added to the Service Provider
lastModified String: The most recent DateTime that the details of this Resource were updated at the Service Provider. If this Resource has never been modified since its initial creation, the value MUST be the same as the value of created. The attribute MUST be a DateTime.
location String: The URI of the Resource being returned. This value MUST be the same as the Location HTTP response header.
resourceType String: Name of the resource type of the resource--for example, Users or Groups
version String: The version of the Resource being returned. This value must be the same as the ETag HTTP response header.

GetDomainsIdentityProvidersIdentityProviderTag

Key string: Key or name of the tag.
Value string: Group identifier

Key string: Key or name of the tag.
Value string: Group identifier

key String: Key or name of the tag.
value String: Group identifier

key string: Key or name of the tag.
value string: Group identifier

key str: Key or name of the tag.
value str: Group identifier

key String: Key or name of the tag.
value String: Group identifier

GetDomainsIdentityProvidersIdentityProviderUrnietfparamsscimschemasoracleidcsextensionsocialIdentityProvider

AccessTokenUrl string: Social IDP Access token URL
AccountLinkingEnabled bool: Whether account linking is enabled
AdminScopes List<string>: Admin scope to request
AuthzUrl string: Social IDP Authorization URL
AutoRedirectEnabled bool: Whether social auto redirect is enabled. The IDP policy should be configured with only one Social IDP, and without username/password selected.
ClientCredentialInPayload bool: Whether the client credential is contained in payload
ClockSkewInSeconds int: Social IDP allowed clock skew time
ConsumerKey string: Social IDP Client Application Client ID
ConsumerSecret string: Social IDP Client Application Client Secret
DiscoveryUrl string: Discovery URL
IdAttribute string: Id attribute used for account linking
JitProvAssignedGroups List<GetDomainsIdentityProvidersIdentityProviderUrnietfparamsscimschemasoracleidcsextensionsocialIdentityProviderJitProvAssignedGroup>: Lists the groups each social JIT-provisioned user is a member. Just-in-Time user-provisioning applies this static list when jitProvGroupStaticListEnabled:true.
JitProvGroupStaticListEnabled bool: Set to true to indicate Social JIT User Provisioning Groups should be assigned from a static list
ProfileUrl string: Social IDP User profile URL
RedirectUrl string: redirect URL for social idp
RegistrationEnabled bool: Whether registration is enabled
Scopes List<string>: Scope to request
ServiceProviderName string: Service Provider Name
SocialJitProvisioningEnabled bool: Whether Social JIT Provisioning is enabled
Status string: Status

AccessTokenUrl string: Social IDP Access token URL
AccountLinkingEnabled bool: Whether account linking is enabled
AdminScopes []string: Admin scope to request
AuthzUrl string: Social IDP Authorization URL
AutoRedirectEnabled bool: Whether social auto redirect is enabled. The IDP policy should be configured with only one Social IDP, and without username/password selected.
ClientCredentialInPayload bool: Whether the client credential is contained in payload
ClockSkewInSeconds int: Social IDP allowed clock skew time
ConsumerKey string: Social IDP Client Application Client ID
ConsumerSecret string: Social IDP Client Application Client Secret
DiscoveryUrl string: Discovery URL
IdAttribute string: Id attribute used for account linking
JitProvAssignedGroups []GetDomainsIdentityProvidersIdentityProviderUrnietfparamsscimschemasoracleidcsextensionsocialIdentityProviderJitProvAssignedGroup: Lists the groups each social JIT-provisioned user is a member. Just-in-Time user-provisioning applies this static list when jitProvGroupStaticListEnabled:true.
JitProvGroupStaticListEnabled bool: Set to true to indicate Social JIT User Provisioning Groups should be assigned from a static list
ProfileUrl string: Social IDP User profile URL
RedirectUrl string: redirect URL for social idp
RegistrationEnabled bool: Whether registration is enabled
Scopes []string: Scope to request
ServiceProviderName string: Service Provider Name
SocialJitProvisioningEnabled bool: Whether Social JIT Provisioning is enabled
Status string: Status

accessTokenUrl String: Social IDP Access token URL
accountLinkingEnabled Boolean: Whether account linking is enabled
adminScopes List<String>: Admin scope to request
authzUrl String: Social IDP Authorization URL
autoRedirectEnabled Boolean: Whether social auto redirect is enabled. The IDP policy should be configured with only one Social IDP, and without username/password selected.
clientCredentialInPayload Boolean: Whether the client credential is contained in payload
clockSkewInSeconds Integer: Social IDP allowed clock skew time
consumerKey String: Social IDP Client Application Client ID
consumerSecret String: Social IDP Client Application Client Secret
discoveryUrl String: Discovery URL
idAttribute String: Id attribute used for account linking
jitProvAssignedGroups List<GetDomainsProvidersProviderUrnietfparamsscimschemasoracleidcsextensionsocialProviderJitProvAssignedGroup>: Lists the groups each social JIT-provisioned user is a member. Just-in-Time user-provisioning applies this static list when jitProvGroupStaticListEnabled:true.
jitProvGroupStaticListEnabled Boolean: Set to true to indicate Social JIT User Provisioning Groups should be assigned from a static list
profileUrl String: Social IDP User profile URL
redirectUrl String: redirect URL for social idp
registrationEnabled Boolean: Whether registration is enabled
scopes List<String>: Scope to request
serviceProviderName String: Service Provider Name
socialJitProvisioningEnabled Boolean: Whether Social JIT Provisioning is enabled
status String: Status

accessTokenUrl string: Social IDP Access token URL
accountLinkingEnabled boolean: Whether account linking is enabled
adminScopes string[]: Admin scope to request
authzUrl string: Social IDP Authorization URL
autoRedirectEnabled boolean: Whether social auto redirect is enabled. The IDP policy should be configured with only one Social IDP, and without username/password selected.
clientCredentialInPayload boolean: Whether the client credential is contained in payload
clockSkewInSeconds number: Social IDP allowed clock skew time
consumerKey string: Social IDP Client Application Client ID
consumerSecret string: Social IDP Client Application Client Secret
discoveryUrl string: Discovery URL
idAttribute string: Id attribute used for account linking
jitProvAssignedGroups GetDomainsIdentityProvidersIdentityProviderUrnietfparamsscimschemasoracleidcsextensionsocialIdentityProviderJitProvAssignedGroup[]: Lists the groups each social JIT-provisioned user is a member. Just-in-Time user-provisioning applies this static list when jitProvGroupStaticListEnabled:true.
jitProvGroupStaticListEnabled boolean: Set to true to indicate Social JIT User Provisioning Groups should be assigned from a static list
profileUrl string: Social IDP User profile URL
redirectUrl string: redirect URL for social idp
registrationEnabled boolean: Whether registration is enabled
scopes string[]: Scope to request
serviceProviderName string: Service Provider Name
socialJitProvisioningEnabled boolean: Whether Social JIT Provisioning is enabled
status string: Status

access_token_url str: Social IDP Access token URL
account_linking_enabled bool: Whether account linking is enabled
admin_scopes Sequence[str]: Admin scope to request
authz_url str: Social IDP Authorization URL
auto_redirect_enabled bool: Whether social auto redirect is enabled. The IDP policy should be configured with only one Social IDP, and without username/password selected.
client_credential_in_payload bool: Whether the client credential is contained in payload
clock_skew_in_seconds int: Social IDP allowed clock skew time
consumer_key str: Social IDP Client Application Client ID
consumer_secret str: Social IDP Client Application Client Secret
discovery_url str: Discovery URL
id_attribute str: Id attribute used for account linking
jit_prov_assigned_groups Sequence[GetDomainsIdentityProvidersIdentityProviderUrnietfparamsscimschemasoracleidcsextensionsocialIdentityProviderJitProvAssignedGroup]: Lists the groups each social JIT-provisioned user is a member. Just-in-Time user-provisioning applies this static list when jitProvGroupStaticListEnabled:true.
jit_prov_group_static_list_enabled bool: Set to true to indicate Social JIT User Provisioning Groups should be assigned from a static list
profile_url str: Social IDP User profile URL
redirect_url str: redirect URL for social idp
registration_enabled bool: Whether registration is enabled
scopes Sequence[str]: Scope to request
service_provider_name str: Service Provider Name
social_jit_provisioning_enabled bool: Whether Social JIT Provisioning is enabled
status str: Status

accessTokenUrl String: Social IDP Access token URL
accountLinkingEnabled Boolean: Whether account linking is enabled
adminScopes List<String>: Admin scope to request
authzUrl String: Social IDP Authorization URL
autoRedirectEnabled Boolean: Whether social auto redirect is enabled. The IDP policy should be configured with only one Social IDP, and without username/password selected.
clientCredentialInPayload Boolean: Whether the client credential is contained in payload
clockSkewInSeconds Number: Social IDP allowed clock skew time
consumerKey String: Social IDP Client Application Client ID
consumerSecret String: Social IDP Client Application Client Secret
discoveryUrl String: Discovery URL
idAttribute String: Id attribute used for account linking
jitProvAssignedGroups List<Property Map>: Lists the groups each social JIT-provisioned user is a member. Just-in-Time user-provisioning applies this static list when jitProvGroupStaticListEnabled:true.
jitProvGroupStaticListEnabled Boolean: Set to true to indicate Social JIT User Provisioning Groups should be assigned from a static list
profileUrl String: Social IDP User profile URL
redirectUrl String: redirect URL for social idp
registrationEnabled Boolean: Whether registration is enabled
scopes List<String>: Scope to request
serviceProviderName String: Service Provider Name
socialJitProvisioningEnabled Boolean: Whether Social JIT Provisioning is enabled
status String: Status

GetDomainsIdentityProvidersIdentityProviderUrnietfparamsscimschemasoracleidcsextensionsocialIdentityProviderJitProvAssignedGroup

Display string: A human readable name, primarily used for display purposes. READ-ONLY.
Ref string: Group URI
Value string: Group identifier

Display string: A human readable name, primarily used for display purposes. READ-ONLY.
Ref string: Group URI
Value string: Group identifier

display String: A human readable name, primarily used for display purposes. READ-ONLY.
ref String: Group URI
value String: Group identifier

display string: A human readable name, primarily used for display purposes. READ-ONLY.
ref string: Group URI
value string: Group identifier

display str: A human readable name, primarily used for display purposes. READ-ONLY.
ref str: Group URI
value str: Group identifier

display String: A human readable name, primarily used for display purposes. READ-ONLY.
ref String: Group URI
value String: Group identifier

GetDomainsIdentityProvidersIdentityProviderUrnietfparamsscimschemasoracleidcsextensionx509identityProvider

CertMatchAttribute string: X509 Certificate Matching Attribute
CrlCheckOnOcspFailureEnabled bool: Fallback on CRL Validation if OCSP fails.
CrlEnabled bool: Set to true to enable CRL Validation
CrlLocation string: CRL Location URL
CrlReloadDuration int: Fetch the CRL contents every X minutes
EkuValidationEnabled bool: Set to true to enable EKU Validation
EkuValues List<string>: List of EKU which needs to be validated
OcspAllowUnknownResponseStatus bool: Allow access if OCSP response is UNKNOWN or OCSP Responder does not respond within the timeout duration
OcspEnableSignedResponse bool: Describes if the OCSP response is signed
OcspEnabled bool: Set to true to enable OCSP Validation
OcspResponderUrl string: This property specifies OCSP Responder URL.
OcspRevalidateTime int: Revalidate OCSP status for user after X hours
OcspServerName string: This property specifies the OCSP Server alias name
OcspTrustCertChains List<string>: OCSP Trusted Certificate Chain
OtherCertMatchAttribute string: Check for specific conditions of other certificate attributes
SigningCertificateChains List<string>: Certificate alias list to create a chain for the incoming client certificate
UserMatchAttribute string: This property specifies the userstore attribute value that must match the incoming certificate attribute.

CertMatchAttribute string: X509 Certificate Matching Attribute
CrlCheckOnOcspFailureEnabled bool: Fallback on CRL Validation if OCSP fails.
CrlEnabled bool: Set to true to enable CRL Validation
CrlLocation string: CRL Location URL
CrlReloadDuration int: Fetch the CRL contents every X minutes
EkuValidationEnabled bool: Set to true to enable EKU Validation
EkuValues []string: List of EKU which needs to be validated
OcspAllowUnknownResponseStatus bool: Allow access if OCSP response is UNKNOWN or OCSP Responder does not respond within the timeout duration
OcspEnableSignedResponse bool: Describes if the OCSP response is signed
OcspEnabled bool: Set to true to enable OCSP Validation
OcspResponderUrl string: This property specifies OCSP Responder URL.
OcspRevalidateTime int: Revalidate OCSP status for user after X hours
OcspServerName string: This property specifies the OCSP Server alias name
OcspTrustCertChains []string: OCSP Trusted Certificate Chain
OtherCertMatchAttribute string: Check for specific conditions of other certificate attributes
SigningCertificateChains []string: Certificate alias list to create a chain for the incoming client certificate
UserMatchAttribute string: This property specifies the userstore attribute value that must match the incoming certificate attribute.

certMatchAttribute String: X509 Certificate Matching Attribute
crlCheckOnOcspFailureEnabled Boolean: Fallback on CRL Validation if OCSP fails.
crlEnabled Boolean: Set to true to enable CRL Validation
crlLocation String: CRL Location URL
crlReloadDuration Integer: Fetch the CRL contents every X minutes
ekuValidationEnabled Boolean: Set to true to enable EKU Validation
ekuValues List<String>: List of EKU which needs to be validated
ocspAllowUnknownResponseStatus Boolean: Allow access if OCSP response is UNKNOWN or OCSP Responder does not respond within the timeout duration
ocspEnableSignedResponse Boolean: Describes if the OCSP response is signed
ocspEnabled Boolean: Set to true to enable OCSP Validation
ocspResponderUrl String: This property specifies OCSP Responder URL.
ocspRevalidateTime Integer: Revalidate OCSP status for user after X hours
ocspServerName String: This property specifies the OCSP Server alias name
ocspTrustCertChains List<String>: OCSP Trusted Certificate Chain
otherCertMatchAttribute String: Check for specific conditions of other certificate attributes
signingCertificateChains List<String>: Certificate alias list to create a chain for the incoming client certificate
userMatchAttribute String: This property specifies the userstore attribute value that must match the incoming certificate attribute.

certMatchAttribute string: X509 Certificate Matching Attribute
crlCheckOnOcspFailureEnabled boolean: Fallback on CRL Validation if OCSP fails.
crlEnabled boolean: Set to true to enable CRL Validation
crlLocation string: CRL Location URL
crlReloadDuration number: Fetch the CRL contents every X minutes
ekuValidationEnabled boolean: Set to true to enable EKU Validation
ekuValues string[]: List of EKU which needs to be validated
ocspAllowUnknownResponseStatus boolean: Allow access if OCSP response is UNKNOWN or OCSP Responder does not respond within the timeout duration
ocspEnableSignedResponse boolean: Describes if the OCSP response is signed
ocspEnabled boolean: Set to true to enable OCSP Validation
ocspResponderUrl string: This property specifies OCSP Responder URL.
ocspRevalidateTime number: Revalidate OCSP status for user after X hours
ocspServerName string: This property specifies the OCSP Server alias name
ocspTrustCertChains string[]: OCSP Trusted Certificate Chain
otherCertMatchAttribute string: Check for specific conditions of other certificate attributes
signingCertificateChains string[]: Certificate alias list to create a chain for the incoming client certificate
userMatchAttribute string: This property specifies the userstore attribute value that must match the incoming certificate attribute.

cert_match_attribute str: X509 Certificate Matching Attribute
crl_check_on_ocsp_failure_enabled bool: Fallback on CRL Validation if OCSP fails.
crl_enabled bool: Set to true to enable CRL Validation
crl_location str: CRL Location URL
crl_reload_duration int: Fetch the CRL contents every X minutes
eku_validation_enabled bool: Set to true to enable EKU Validation
eku_values Sequence[str]: List of EKU which needs to be validated
ocsp_allow_unknown_response_status bool: Allow access if OCSP response is UNKNOWN or OCSP Responder does not respond within the timeout duration
ocsp_enable_signed_response bool: Describes if the OCSP response is signed
ocsp_enabled bool: Set to true to enable OCSP Validation
ocsp_responder_url str: This property specifies OCSP Responder URL.
ocsp_revalidate_time int: Revalidate OCSP status for user after X hours
ocsp_server_name str: This property specifies the OCSP Server alias name
ocsp_trust_cert_chains Sequence[str]: OCSP Trusted Certificate Chain
other_cert_match_attribute str: Check for specific conditions of other certificate attributes
signing_certificate_chains Sequence[str]: Certificate alias list to create a chain for the incoming client certificate
user_match_attribute str: This property specifies the userstore attribute value that must match the incoming certificate attribute.

certMatchAttribute String: X509 Certificate Matching Attribute
crlCheckOnOcspFailureEnabled Boolean: Fallback on CRL Validation if OCSP fails.
crlEnabled Boolean: Set to true to enable CRL Validation
crlLocation String: CRL Location URL
crlReloadDuration Number: Fetch the CRL contents every X minutes
ekuValidationEnabled Boolean: Set to true to enable EKU Validation
ekuValues List<String>: List of EKU which needs to be validated
ocspAllowUnknownResponseStatus Boolean: Allow access if OCSP response is UNKNOWN or OCSP Responder does not respond within the timeout duration
ocspEnableSignedResponse Boolean: Describes if the OCSP response is signed
ocspEnabled Boolean: Set to true to enable OCSP Validation
ocspResponderUrl String: This property specifies OCSP Responder URL.
ocspRevalidateTime Number: Revalidate OCSP status for user after X hours
ocspServerName String: This property specifies the OCSP Server alias name
ocspTrustCertChains List<String>: OCSP Trusted Certificate Chain
otherCertMatchAttribute String: Check for specific conditions of other certificate attributes
signingCertificateChains List<String>: Certificate alias list to create a chain for the incoming client certificate
userMatchAttribute String: This property specifies the userstore attribute value that must match the incoming certificate attribute.

Package Details

Repository: oci pulumi/pulumi-oci
License: Apache-2.0
Notes: This Pulumi package is based on the oci Terraform Provider.

Oracle Cloud Infrastructure v2.33.0 published on Thursday, May 1, 2025 by Pulumi

pulumi/pulumi-oci

oci.Identity.getDomainsIdentityProviders

On this page

On this page

Example Usage

Using getDomainsIdentityProviders

getDomainsIdentityProviders Result

Supporting Types

GetDomainsIdentityProvidersIdentityProvider

GetDomainsIdentityProvidersIdentityProviderCorrelationPolicy

GetDomainsIdentityProvidersIdentityProviderIdcsCreatedBy

GetDomainsIdentityProvidersIdentityProviderIdcsLastModifiedBy

GetDomainsIdentityProvidersIdentityProviderJitUserProvAssignedGroup

GetDomainsIdentityProvidersIdentityProviderJitUserProvAttribute

GetDomainsIdentityProvidersIdentityProviderJitUserProvGroupMapping

GetDomainsIdentityProvidersIdentityProviderMeta

GetDomainsIdentityProvidersIdentityProviderTag

GetDomainsIdentityProvidersIdentityProviderUrnietfparamsscimschemasoracleidcsextensionsocialIdentityProvider

GetDomainsIdentityProvidersIdentityProviderUrnietfparamsscimschemasoracleidcsextensionsocialIdentityProviderJitProvAssignedGroup

GetDomainsIdentityProvidersIdentityProviderUrnietfparamsscimschemasoracleidcsextensionx509identityProvider

Package Details

On this page

On this page