You're viewing OCI IAM documentation for tenancies in regions that have not been updated to use identity domains.

Updated 2024-06-06

Details for Notifications

Write policies to control access to the Notifications service.

Resource-Types

Aggregate Resource-Type

ons-family

The ons-family aggregate resource-type covers these individual resource-types:

  • ons-topics
  • ons-subscriptions

Individual Resource-Types

ons-topics

ons-subscriptions

Details for Verb + Resource-Type Combinations

The following tables show the permissions and API operations covered by each verb. The level of access is cumulative as you go from inspect > read > use > manage. For example, a group that can use a resource can also inspect and read that resource. A plus sign (+) in a table cell indicates incremental access compared to the cell directly above it, whereas "no extra" indicates no incremental access.

Permissions Required for Each API Operation

The following table lists the API operations in a logical order, grouped by resource type.

For information about permissions, see Permissions.

API Operation Permissions Required to Use the Operation
ListTopics ONS_TOPIC_INSPECT
GetTopic ONS_TOPIC_READ
CreateTopic ONS_TOPIC_CREATE
ChangeTopicCompartment ONS_TOPIC_MOVE
UpdateTopic ONS_TOPIC_UPDATE
AddTopicLock RESOURCE_LOCK_ADD
RemoveTopicLock RESOURCE_LOCK_REMOVE
DeleteTopic ONS_TOPIC_DELETE
ListSubscriptions ONS_SUBSCRIPTION_INSPECT
CreateSubscription ONS_TOPIC_SUBSCRIBE
ChangeSubscriptionCompartment ONS_SUBSCRIPTION_MOVE
UpdateSubscription ONS_TOPIC_SUBSCRIBE
DeleteSubscription ONS_TOPIC_SUBSCRIBE
GetSubscription ONS_TOPIC_SUBSCRIBE
GetConfirmSubscription (no permissions required)
ResendSubscriptionConfirmation ONS_TOPIC_SUBSCRIBE
GetUnsubscription (no permissions required)
PublishMessage ONS_TOPIC_PUBLISH