The Identity cloud provider service identifier, for example, the Azure Tenancy ID, AWS Account ID, or GCP Project ID.
*SCIM++ Properties:** - type: string - multiValued: false - required: false - mutability: readWrite - returned: default - caseExact: true - idcsSearchable: true - uniqueness: none
If true, specifies that this Identity Propagation Trust is in an enabled state. The default value is false.
*SCIM++ Properties:** - type: boolean - multiValued: false - required: false - mutability: readWrite - returned: default - uniqueness: none - idcsSearchable: true
Allow customers to define whether the resulting token should contain the authenticated user as the subject or whether the token should impersonate another Application Principal in IAM.
*SCIM++ Properties:** - type: boolean - multiValued: false - required: false - mutability: readWrite - returned: default - uniqueness: none - idcsSearchable: false
The claim name that identifies to whom the JWT/SAML token is issued. If AWS, then \"aud\" or \"client_id\". If Azure, then \"appid\". If GCP, then \"aud\".
*SCIM++ Properties:** - type: string - multiValued: false - required: false - mutability: readWrite - returned: default - uniqueness: none - idcsSearchable: false
The value that corresponds to the client claim name used to identify to whom the token is issued.
*SCIM++ Properties:** - type: string - multiValued: true - required: false - mutability: readWrite - returned: default - uniqueness: none - caseExact: true - idcsSearchable: false
The clock skew (in secs) that's allowed for the token issue and expiry time.
*Added In:** 2308181911
*SCIM++ Properties:** - caseExact: false - idcsSearchable: false - multiValued: false - mutability: readWrite - required: false - returned: default - type: integer - uniqueness: none Note: Numbers greater than Number.MAX_SAFE_INTEGER will result in rounding issues.
OCI Compartment Id (ocid) in which the resource lives.
*SCIM++ Properties:** - caseExact: false - idcsSearchable: false - multiValued: false - mutability: readOnly - required: false - returned: default - type: string - uniqueness: none
A boolean flag indicating this resource in the process of being deleted. Usually set to true when synchronous deletion of the resource would take too long.
*SCIM++ Properties:** - caseExact: false - idcsSearchable: true - multiValued: false - mutability: readOnly - required: false - returned: default - type: boolean - uniqueness: none
The description of the Identity Propagation Trust.
*SCIM++ Properties:** - type: string - multiValued: false - required: false - mutability: readWrite - returned: default - uniqueness: none - caseExact: false - idcsSearchable: false
OCI Domain Id (ocid) in which the resource lives.
*SCIM++ Properties:** - caseExact: false - idcsSearchable: false - multiValued: false - mutability: readOnly - required: false - returned: default - type: string - uniqueness: none
Unique identifier for the SCIM Resource as defined by the Service Provider. Each representation of the Resource MUST include a non-empty id value. This identifier MUST be unique across the Service Provider's entire set of Resources. It MUST be a stable, non-reassignable identifier that does not change when the same Resource is returned in subsequent requests. The value of the id attribute is always issued by the Service Provider and MUST never be specified by the Service Consumer. bulkId: is a reserved keyword and MUST NOT be used in the unique identifier.
*SCIM++ Properties:** - caseExact: false - idcsSearchable: true - multiValued: false - mutability: readOnly - required: false - returned: always - type: string - uniqueness: global
The release number when the resource was upgraded.
*SCIM++ Properties:** - caseExact: false - idcsSearchable: false - multiValued: false - mutability: readOnly - required: false - returned: request - type: string - uniqueness: none
Each value of this attribute specifies an operation that only an internal client may perform on this particular resource.
*SCIM++ Properties:** - idcsSearchable: false - multiValued: true - mutability: readOnly - required: false - returned: request - type: string - uniqueness: none
The Impersonating Principal.
*SCIM++ Properties:** - idcsCompositeKey: [rule, value] - idcsSearchable: false - multiValued: true - mutability: readWrite - required: false - returned: request - type: complex - uniqueness: none
The issuer claim of the Identity provider.
*SCIM++ Properties:** - type: string - multiValued: false - required: true - mutability: readWrite - returned: always - caseExact: true - idcsSearchable: true - uniqueness: server
The name of the the Identity Propagation Trust.
*SCIM++ Properties:** - type: string - caseExact: false - idcsSearchable: true - multiValued: false - required: true - mutability: immutable - returned: default - uniqueness: none
The value of all the authorized OAuth Clients.
*SCIM++ Properties:** - idcsSearchable: false - multiValued: true - mutability: readWrite - required: false - returned: default - type: string - uniqueness: none
Unique OCI identifier for the SCIM Resource.
*SCIM++ Properties:** - caseExact: true - idcsSearchable: true - multiValued: false - mutability: immutable - required: false - returned: default - type: string - uniqueness: global
Store the public key if public key cert.
*SCIM++ Properties:** - type: string - multiValued: false - required: false - mutability: readWrite - returned: default - uniqueness: none - idcsSearchable: false
The cloud provider's public key API of SAML and OIDC providers for signature validation.
*SCIM++ Properties:** - type: string - multiValued: false - required: false - mutability: readWrite - returned: default - uniqueness: none - caseExact: false - idcsSearchable: false
REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard \"enterprise\" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.
*SCIM++ Properties:** - caseExact: false - idcsSearchable: false - multiValued: true - mutability: readWrite - required: true - returned: default - type: string - uniqueness: none
The value of all the authorized OCI Service Principals.
*SCIM++ Properties:** - idcsSearchable: false - multiValued: true - mutability: readWrite - required: false - returned: default - type: string - uniqueness: none
Used for locating the subject claim from the incoming token.
*SCIM++ Properties:** - type: string - multiValued: false - required: false - mutability: readWrite - returned: default - uniqueness: none - caseExact: true - idcsSearchable: false
Subject Mapping Attribute to which the value from subject claim name value would be used for identity lookup.
*SCIM++ Properties:** - type: string - multiValued: false - idcsSearchable: false - required: false - mutability: readWrite - returned: default - uniqueness: none
The type of the resource against which lookup will be made in the identity domain in IAM for the incoming subject claim value.
*SCIM++ Properties:** - idcsSearchable: false - multiValued: false - mutability: readWrite - required: false - returned: default - type: string - uniqueness: none
A list of tags on this resource.
*SCIM++ Properties:** - idcsCompositeKey: [key, value] - idcsSearchable: true - multiValued: true - mutability: readWrite - required: false - returned: request - type: complex - uniqueness: none
OCI Tenant Id (ocid) in which the resource lives.
*SCIM++ Properties:** - caseExact: false - idcsSearchable: false - multiValued: false - mutability: readOnly - required: false - returned: default - type: string - uniqueness: none
The type of the inbound token from the Identity cloud provider.
*SCIM++ Properties:** - caseExact: true - idcsSearchable: false - required: true - mutability: readWrite - returned: default - type: string - multiValued: false - uniqueness: none
Schema used for Identity Propagation Trust.