Data Source: oci_data_safe_sql_firewall_policy_analytics

This data source provides the list of Sql Firewall Policy Analytics in Oracle Cloud Infrastructure Data Safe service.

Gets a list of aggregated SQL Firewall policy details.

The parameter accessLevel specifies whether to return only those compartments for which the requestor has INSPECT permissions on at least one resource directly or indirectly (ACCESSIBLE) (the resource can be in a subcompartment) or to return Not Authorized if principal doesn’t have access to even one of the child compartments. This is valid only when compartmentIdInSubtree is set to true.

The parameter compartmentIdInSubtree applies when you perform SummarizedSqlFirewallPolicyInfo on the specified compartmentId and when it is set to true, the entire hierarchy of compartments can be returned. To get a full list of all compartments and subcompartments in the tenancy (root compartment), set the parameter compartmentIdInSubtree to true and accessLevel to ACCESSIBLE.

Example Usage

data "oci_data_safe_sql_firewall_policy_analytics" "test_sql_firewall_policy_analytics" {
	#Required
	compartment_id = var.compartment_id

	#Optional
	access_level = var.sql_firewall_policy_analytic_access_level
	compartment_id_in_subtree = var.sql_firewall_policy_analytic_compartment_id_in_subtree
	group_by = var.sql_firewall_policy_analytic_group_by
	security_policy_id = oci_data_safe_security_policy.test_security_policy.id
	state = var.sql_firewall_policy_analytic_state
	time_ended = var.sql_firewall_policy_analytic_time_ended
	time_started = var.sql_firewall_policy_analytic_time_started
}

Argument Reference

The following arguments are supported:

• access_level - (Optional) Valid values are RESTRICTED and ACCESSIBLE. Default is RESTRICTED. Setting this to ACCESSIBLE returns only those compartments for which the user has INSPECT permissions directly or indirectly (permissions can be on a resource in a subcompartment). When set to RESTRICTED permissions are checked and no partial results are displayed.
• compartment_id - (Required) A filter to return only resources that match the specified compartment OCID.
• compartment_id_in_subtree - (Optional) Default is false. When set to true, the hierarchy of compartments is traversed and all compartments and subcompartments in the tenancy are returned. Depends on the ‘accessLevel’ setting.
• group_by - (Optional) The group by parameter to summarize SQL Firewall policy aggregation.
• security_policy_id - (Optional) An optional filter to return only resources that match the specified OCID of the security policy resource.
• state - (Optional) The current state of the SQL Firewall policy.
• time_ended - (Optional) An optional filter to return the summary of the SQL Firewall policies created before the date-time specified, in the format defined by RFC3339.
• time_started - (Optional) An optional filter to return the summary of the SQL Firewall policies created after the date-time specified, in the format defined by RFC3339.

Attributes Reference

The following attributes are exported:

• sql_firewall_policy_analytics_collection - The list of sql_firewall_policy_analytics_collection.

SqlFirewallPolicyAnalytic Reference

The following attributes are exported:

• items - The aggregated data point items.
  • dimensions - The dimensions available for SQL Firewall policy analytics.
    • enforcement_scope - Specifies the SQL Firewall policy enforcement option.
    • security_policy_id - The OCID of the security policy corresponding to the SQL Firewall policy.
    • state - The current state of the SQL Firewall policy.
    • violation_action - Specifies the mode in which the SQL Firewall policy is enabled.
  • sql_firewall_policy_analytic_count - The total count of the aggregated metric.