Class: OCI::IdentityDomains::Models::IdentityPropagationTrust

Inherits:
Object
  • Object
show all
Defined in:
lib/oci/identity_domains/models/identity_propagation_trust.rb

Overview

Schema used for Identity Propagation Trust.

Constant Summary collapse

IDCS_PREVENTED_OPERATIONS_ENUM =
[
  IDCS_PREVENTED_OPERATIONS_REPLACE = 'replace'.freeze,
  IDCS_PREVENTED_OPERATIONS_UPDATE = 'update'.freeze,
  IDCS_PREVENTED_OPERATIONS_DELETE = 'delete'.freeze,
  IDCS_PREVENTED_OPERATIONS_UNKNOWN_ENUM_VALUE = 'UNKNOWN_ENUM_VALUE'.freeze
].freeze
TYPE_ENUM =
[
  TYPE_JWT = 'JWT'.freeze,
  TYPE_SAML = 'SAML'.freeze,
  TYPE_SPNEGO = 'SPNEGO'.freeze,
  TYPE_AWS = 'AWS'.freeze,
  TYPE_X509 = 'X509'.freeze,
  TYPE_UNKNOWN_ENUM_VALUE = 'UNKNOWN_ENUM_VALUE'.freeze
].freeze
SUBJECT_TYPE_ENUM =
[
  SUBJECT_TYPE_USER = 'User'.freeze,
  SUBJECT_TYPE_APP = 'App'.freeze,
  SUBJECT_TYPE_RESOURCE = 'Resource'.freeze,
  SUBJECT_TYPE_UNKNOWN_ENUM_VALUE = 'UNKNOWN_ENUM_VALUE'.freeze
].freeze

Instance Attribute Summary collapse

Class Method Summary collapse

Instance Method Summary collapse

Constructor Details

#initialize(attributes = {}) ⇒ IdentityPropagationTrust

Initializes the object

Parameters:

  • attributes (Hash) (defaults to: {})

    Model attributes in the form of hash

Options Hash (attributes):



596
597
598
599
600
601
602
603
604
605
606
607
608
609
610
611
612
613
614
615
616
617
618
619
620
621
622
623
624
625
626
627
628
629
630
631
632
633
634
635
636
637
638
639
640
641
642
643
644
645
646
647
648
649
650
651
652
653
654
655
656
657
658
659
660
661
662
663
664
665
666
667
668
669
670
671
672
673
674
675
676
677
678
679
680
681
682
683
684
685
686
687
688
689
690
691
692
693
694
695
696
697
698
699
700
701
702
703
704
705
706
707
708
709
710
711
712
713
714
715
716
717
718
719
720
721
722
723
724
725
726
727
728
729
730
731
732
733
734
735
736
737
738
739
740
741
742
743
744
745
746
747
748
749
750
751
752
753
754
755
756
757
758
759
760
761
762
763
764
765
766
767
# File 'lib/oci/identity_domains/models/identity_propagation_trust.rb', line 596

def initialize(attributes = {})
  return unless attributes.is_a?(Hash)

  # convert string to symbol for hash key
  attributes = attributes.each_with_object({}) { |(k, v), h| h[k.to_sym] = v }

  self.id = attributes[:'id'] if attributes[:'id']

  self.ocid = attributes[:'ocid'] if attributes[:'ocid']

  self.schemas = attributes[:'schemas'] if attributes[:'schemas']

  self.meta = attributes[:'meta'] if attributes[:'meta']

  self.idcs_created_by = attributes[:'idcsCreatedBy'] if attributes[:'idcsCreatedBy']

  raise 'You cannot provide both :idcsCreatedBy and :idcs_created_by' if attributes.key?(:'idcsCreatedBy') && attributes.key?(:'idcs_created_by')

  self.idcs_created_by = attributes[:'idcs_created_by'] if attributes[:'idcs_created_by']

  self.idcs_last_modified_by = attributes[:'idcsLastModifiedBy'] if attributes[:'idcsLastModifiedBy']

  raise 'You cannot provide both :idcsLastModifiedBy and :idcs_last_modified_by' if attributes.key?(:'idcsLastModifiedBy') && attributes.key?(:'idcs_last_modified_by')

  self.idcs_last_modified_by = attributes[:'idcs_last_modified_by'] if attributes[:'idcs_last_modified_by']

  self.idcs_prevented_operations = attributes[:'idcsPreventedOperations'] if attributes[:'idcsPreventedOperations']

  raise 'You cannot provide both :idcsPreventedOperations and :idcs_prevented_operations' if attributes.key?(:'idcsPreventedOperations') && attributes.key?(:'idcs_prevented_operations')

  self.idcs_prevented_operations = attributes[:'idcs_prevented_operations'] if attributes[:'idcs_prevented_operations']

  self.tags = attributes[:'tags'] if attributes[:'tags']

  self.delete_in_progress = attributes[:'deleteInProgress'] unless attributes[:'deleteInProgress'].nil?

  raise 'You cannot provide both :deleteInProgress and :delete_in_progress' if attributes.key?(:'deleteInProgress') && attributes.key?(:'delete_in_progress')

  self.delete_in_progress = attributes[:'delete_in_progress'] unless attributes[:'delete_in_progress'].nil?

  self.idcs_last_upgraded_in_release = attributes[:'idcsLastUpgradedInRelease'] if attributes[:'idcsLastUpgradedInRelease']

  raise 'You cannot provide both :idcsLastUpgradedInRelease and :idcs_last_upgraded_in_release' if attributes.key?(:'idcsLastUpgradedInRelease') && attributes.key?(:'idcs_last_upgraded_in_release')

  self.idcs_last_upgraded_in_release = attributes[:'idcs_last_upgraded_in_release'] if attributes[:'idcs_last_upgraded_in_release']

  self.domain_ocid = attributes[:'domainOcid'] if attributes[:'domainOcid']

  raise 'You cannot provide both :domainOcid and :domain_ocid' if attributes.key?(:'domainOcid') && attributes.key?(:'domain_ocid')

  self.domain_ocid = attributes[:'domain_ocid'] if attributes[:'domain_ocid']

  self.compartment_ocid = attributes[:'compartmentOcid'] if attributes[:'compartmentOcid']

  raise 'You cannot provide both :compartmentOcid and :compartment_ocid' if attributes.key?(:'compartmentOcid') && attributes.key?(:'compartment_ocid')

  self.compartment_ocid = attributes[:'compartment_ocid'] if attributes[:'compartment_ocid']

  self.tenancy_ocid = attributes[:'tenancyOcid'] if attributes[:'tenancyOcid']

  raise 'You cannot provide both :tenancyOcid and :tenancy_ocid' if attributes.key?(:'tenancyOcid') && attributes.key?(:'tenancy_ocid')

  self.tenancy_ocid = attributes[:'tenancy_ocid'] if attributes[:'tenancy_ocid']

  self.name = attributes[:'name'] if attributes[:'name']

  self.description = attributes[:'description'] if attributes[:'description']

  self.type = attributes[:'type'] if attributes[:'type']

  self.issuer = attributes[:'issuer'] if attributes[:'issuer']

  self. = attributes[:'accountId'] if attributes[:'accountId']

  raise 'You cannot provide both :accountId and :account_id' if attributes.key?(:'accountId') && attributes.key?(:'account_id')

  self. = attributes[:'account_id'] if attributes[:'account_id']

  self.subject_claim_name = attributes[:'subjectClaimName'] if attributes[:'subjectClaimName']

  raise 'You cannot provide both :subjectClaimName and :subject_claim_name' if attributes.key?(:'subjectClaimName') && attributes.key?(:'subject_claim_name')

  self.subject_claim_name = attributes[:'subject_claim_name'] if attributes[:'subject_claim_name']

  self.subject_mapping_attribute = attributes[:'subjectMappingAttribute'] if attributes[:'subjectMappingAttribute']

  raise 'You cannot provide both :subjectMappingAttribute and :subject_mapping_attribute' if attributes.key?(:'subjectMappingAttribute') && attributes.key?(:'subject_mapping_attribute')

  self.subject_mapping_attribute = attributes[:'subject_mapping_attribute'] if attributes[:'subject_mapping_attribute']

  self.subject_type = attributes[:'subjectType'] if attributes[:'subjectType']

  raise 'You cannot provide both :subjectType and :subject_type' if attributes.key?(:'subjectType') && attributes.key?(:'subject_type')

  self.subject_type = attributes[:'subject_type'] if attributes[:'subject_type']

  self.client_claim_name = attributes[:'clientClaimName'] if attributes[:'clientClaimName']

  raise 'You cannot provide both :clientClaimName and :client_claim_name' if attributes.key?(:'clientClaimName') && attributes.key?(:'client_claim_name')

  self.client_claim_name = attributes[:'client_claim_name'] if attributes[:'client_claim_name']

  self.client_claim_values = attributes[:'clientClaimValues'] if attributes[:'clientClaimValues']

  raise 'You cannot provide both :clientClaimValues and :client_claim_values' if attributes.key?(:'clientClaimValues') && attributes.key?(:'client_claim_values')

  self.client_claim_values = attributes[:'client_claim_values'] if attributes[:'client_claim_values']

  self.active = attributes[:'active'] unless attributes[:'active'].nil?

  self.public_key_endpoint = attributes[:'publicKeyEndpoint'] if attributes[:'publicKeyEndpoint']

  raise 'You cannot provide both :publicKeyEndpoint and :public_key_endpoint' if attributes.key?(:'publicKeyEndpoint') && attributes.key?(:'public_key_endpoint')

  self.public_key_endpoint = attributes[:'public_key_endpoint'] if attributes[:'public_key_endpoint']

  self.public_certificate = attributes[:'publicCertificate'] if attributes[:'publicCertificate']

  raise 'You cannot provide both :publicCertificate and :public_certificate' if attributes.key?(:'publicCertificate') && attributes.key?(:'public_certificate')

  self.public_certificate = attributes[:'public_certificate'] if attributes[:'public_certificate']

  self.oauth_clients = attributes[:'oauthClients'] if attributes[:'oauthClients']

  raise 'You cannot provide both :oauthClients and :oauth_clients' if attributes.key?(:'oauthClients') && attributes.key?(:'oauth_clients')

  self.oauth_clients = attributes[:'oauth_clients'] if attributes[:'oauth_clients']

  self.allow_impersonation = attributes[:'allowImpersonation'] unless attributes[:'allowImpersonation'].nil?

  raise 'You cannot provide both :allowImpersonation and :allow_impersonation' if attributes.key?(:'allowImpersonation') && attributes.key?(:'allow_impersonation')

  self.allow_impersonation = attributes[:'allow_impersonation'] unless attributes[:'allow_impersonation'].nil?

  self.clock_skew_seconds = attributes[:'clockSkewSeconds'] if attributes[:'clockSkewSeconds']

  raise 'You cannot provide both :clockSkewSeconds and :clock_skew_seconds' if attributes.key?(:'clockSkewSeconds') && attributes.key?(:'clock_skew_seconds')

  self.clock_skew_seconds = attributes[:'clock_skew_seconds'] if attributes[:'clock_skew_seconds']

  self.impersonating_resource = attributes[:'impersonatingResource'] if attributes[:'impersonatingResource']

  raise 'You cannot provide both :impersonatingResource and :impersonating_resource' if attributes.key?(:'impersonatingResource') && attributes.key?(:'impersonating_resource')

  self.impersonating_resource = attributes[:'impersonating_resource'] if attributes[:'impersonating_resource']

  self.claim_validations = attributes[:'claimValidations'] if attributes[:'claimValidations']

  raise 'You cannot provide both :claimValidations and :claim_validations' if attributes.key?(:'claimValidations') && attributes.key?(:'claim_validations')

  self.claim_validations = attributes[:'claim_validations'] if attributes[:'claim_validations']

  self.claim_propagations = attributes[:'claimPropagations'] if attributes[:'claimPropagations']

  raise 'You cannot provide both :claimPropagations and :claim_propagations' if attributes.key?(:'claimPropagations') && attributes.key?(:'claim_propagations')

  self.claim_propagations = attributes[:'claim_propagations'] if attributes[:'claim_propagations']

  self.ca_cert_chain = attributes[:'CACertChain'] if attributes[:'CACertChain']

  raise 'You cannot provide both :CACertChain and :ca_cert_chain' if attributes.key?(:'CACertChain') && attributes.key?(:'ca_cert_chain')

  self.ca_cert_chain = attributes[:'ca_cert_chain'] if attributes[:'ca_cert_chain']

  self.impersonation_service_users = attributes[:'impersonationServiceUsers'] if attributes[:'impersonationServiceUsers']

  raise 'You cannot provide both :impersonationServiceUsers and :impersonation_service_users' if attributes.key?(:'impersonationServiceUsers') && attributes.key?(:'impersonation_service_users')

  self.impersonation_service_users = attributes[:'impersonation_service_users'] if attributes[:'impersonation_service_users']

  self.keytab = attributes[:'keytab'] if attributes[:'keytab']
end

Instance Attribute Details

#account_idString

The Identity cloud provider service identifier, for example, the Azure Tenancy ID, AWS Account ID, or GCP Project ID.

SCIM++ Properties: - type: string - multiValued: false - required: false - mutability: readWrite - returned: default - caseExact: true - idcsSearchable: true - uniqueness: none

Returns:

  • (String)


251
252
253
# File 'lib/oci/identity_domains/models/identity_propagation_trust.rb', line 251

def 
  @account_id
end

#activeBOOLEAN

If true, specifies that this Identity Propagation Trust is in an enabled state. The default value is false.

SCIM++ Properties: - type: boolean - multiValued: false - required: false - mutability: readWrite - returned: default - uniqueness: none - idcsSearchable: true

Returns:

  • (BOOLEAN)


331
332
333
# File 'lib/oci/identity_domains/models/identity_propagation_trust.rb', line 331

def active
  @active
end

#allow_impersonationBOOLEAN

Allow customers to define whether the resulting token should contain the authenticated user as the subject or whether the token should impersonate another Application Principal in IAM.

SCIM++ Properties: - type: boolean - multiValued: false - required: false - mutability: readWrite - returned: default - uniqueness: none - idcsSearchable: false

Returns:

  • (BOOLEAN)


384
385
386
# File 'lib/oci/identity_domains/models/identity_propagation_trust.rb', line 384

def allow_impersonation
  @allow_impersonation
end

#ca_cert_chainOCI::IdentityDomains::Models::IdentityPropagationTrustCaCertChain



450
451
452
# File 'lib/oci/identity_domains/models/identity_propagation_trust.rb', line 450

def ca_cert_chain
  @ca_cert_chain
end

#claim_propagationsArray<String>

A list of claims to propagate in RPST

Added In: 2509172316

SCIM++ Properties: - idcsSearchable: false - multiValued: true - mutability: readWrite - required: false - returned: default - type: string - uniqueness: none

Returns:

  • (Array<String>)


447
448
449
# File 'lib/oci/identity_domains/models/identity_propagation_trust.rb', line 447

def claim_propagations
  @claim_propagations
end

#claim_validationsArray<OCI::IdentityDomains::Models::IdentityPropagationTrustClaimValidations>

A list of claim validations

Added In: 2509172316

SCIM++ Properties: - idcsCompositeKey: [name] - idcsSearchable: false - multiValued: true - mutability: readWrite - required: false - returned: default - type: complex - uniqueness: none



432
433
434
# File 'lib/oci/identity_domains/models/identity_propagation_trust.rb', line 432

def claim_validations
  @claim_validations
end

#client_claim_nameString

The claim name that identifies to whom the JWT/SAML token is issued. If AWS, then \“aud\” or \“client_id\”. If Azure, then \“appid\”. If GCP, then \“aud\”.

SCIM++ Properties: - type: string - multiValued: false - required: false - mutability: readWrite - returned: default - uniqueness: none - idcsSearchable: false

Returns:

  • (String)


304
305
306
# File 'lib/oci/identity_domains/models/identity_propagation_trust.rb', line 304

def client_claim_name
  @client_claim_name
end

#client_claim_valuesArray<String>

The value that corresponds to the client claim name used to identify to whom the token is issued.

SCIM++ Properties: - type: string - multiValued: true - required: false - mutability: readWrite - returned: default - uniqueness: none - caseExact: true - idcsSearchable: false

Returns:

  • (Array<String>)


318
319
320
# File 'lib/oci/identity_domains/models/identity_propagation_trust.rb', line 318

def client_claim_values
  @client_claim_values
end

#clock_skew_secondsInteger

The clock skew (in secs) that's allowed for the token issue and expiry time.

Added In: 2308181911

SCIM++ Properties: - caseExact: false - idcsSearchable: false - multiValued: false - mutability: readWrite - required: false - returned: default - type: integer - uniqueness: none

Returns:

  • (Integer)


400
401
402
# File 'lib/oci/identity_domains/models/identity_propagation_trust.rb', line 400

def clock_skew_seconds
  @clock_skew_seconds
end

#compartment_ocidString

OCI Compartment Id (ocid) in which the resource lives.

SCIM++ Properties: - caseExact: false - idcsSearchable: false - multiValued: false - mutability: readOnly - required: false - returned: default - type: string - uniqueness: none

Returns:

  • (String)


167
168
169
# File 'lib/oci/identity_domains/models/identity_propagation_trust.rb', line 167

def compartment_ocid
  @compartment_ocid
end

#delete_in_progressBOOLEAN

A boolean flag indicating this resource in the process of being deleted. Usually set to true when synchronous deletion of the resource would take too long.

SCIM++ Properties: - caseExact: false - idcsSearchable: true - multiValued: false - mutability: readOnly - required: false - returned: default - type: boolean - uniqueness: none

Returns:

  • (BOOLEAN)


125
126
127
# File 'lib/oci/identity_domains/models/identity_propagation_trust.rb', line 125

def delete_in_progress
  @delete_in_progress
end

#descriptionString

The description of the Identity Propagation Trust.

SCIM++ Properties: - type: string - multiValued: false - required: false - mutability: readWrite - returned: default - uniqueness: none - caseExact: false - idcsSearchable: false

Returns:

  • (String)


209
210
211
# File 'lib/oci/identity_domains/models/identity_propagation_trust.rb', line 209

def description
  @description
end

#domain_ocidString

OCI Domain Id (ocid) in which the resource lives.

SCIM++ Properties: - caseExact: false - idcsSearchable: false - multiValued: false - mutability: readOnly - required: false - returned: default - type: string - uniqueness: none

Returns:

  • (String)


153
154
155
# File 'lib/oci/identity_domains/models/identity_propagation_trust.rb', line 153

def domain_ocid
  @domain_ocid
end

#idString

Unique identifier for the SCIM Resource as defined by the Service Provider. Each representation of the Resource MUST include a non-empty id value. This identifier MUST be unique across the Service Provider's entire set of Resources. It MUST be a stable, non-reassignable identifier that does not change when the same Resource is returned in subsequent requests. The value of the id attribute is always issued by the Service Provider and MUST never be specified by the Service Consumer. bulkId: is a reserved keyword and MUST NOT be used in the unique identifier.

SCIM++ Properties: - caseExact: false - idcsSearchable: true - multiValued: false - mutability: readOnly - required: false - returned: always - type: string - uniqueness: global

Returns:

  • (String)


47
48
49
# File 'lib/oci/identity_domains/models/identity_propagation_trust.rb', line 47

def id
  @id
end

#idcs_created_byOCI::IdentityDomains::Models::IdcsCreatedBy



81
82
83
# File 'lib/oci/identity_domains/models/identity_propagation_trust.rb', line 81

def idcs_created_by
  @idcs_created_by
end

#idcs_last_modified_byOCI::IdentityDomains::Models::IdcsLastModifiedBy



84
85
86
# File 'lib/oci/identity_domains/models/identity_propagation_trust.rb', line 84

def idcs_last_modified_by
  @idcs_last_modified_by
end

#idcs_last_upgraded_in_releaseString

The release number when the resource was upgraded.

SCIM++ Properties: - caseExact: false - idcsSearchable: false - multiValued: false - mutability: readOnly - required: false - returned: request - type: string - uniqueness: none

Returns:

  • (String)


139
140
141
# File 'lib/oci/identity_domains/models/identity_propagation_trust.rb', line 139

def idcs_last_upgraded_in_release
  @idcs_last_upgraded_in_release
end

#idcs_prevented_operationsArray<String>

Each value of this attribute specifies an operation that only an internal client may perform on this particular resource.

SCIM++ Properties: - idcsSearchable: false - multiValued: true - mutability: readOnly - required: false - returned: request - type: string - uniqueness: none

Returns:

  • (Array<String>)


97
98
99
# File 'lib/oci/identity_domains/models/identity_propagation_trust.rb', line 97

def idcs_prevented_operations
  @idcs_prevented_operations
end

#impersonating_resourceString

Defines the external workload that acts as impersonating resource principal.

Added In: 2509172316

SCIM++ Properties: - type: string - multiValued: false - required: false - mutability: readWrite - returned: default - uniqueness: none - caseExact: true - idcsSearchable: false

Returns:

  • (String)


416
417
418
# File 'lib/oci/identity_domains/models/identity_propagation_trust.rb', line 416

def impersonating_resource
  @impersonating_resource
end

#impersonation_service_usersArray<OCI::IdentityDomains::Models::IdentityPropagationTrustImpersonationServiceUsers>

The Impersonating Principal.

SCIM++ Properties: - idcsCompositeKey: [rule, value] - idcsSearchable: false - multiValued: true - mutability: readWrite - required: false - returned: request - type: complex - uniqueness: none



464
465
466
# File 'lib/oci/identity_domains/models/identity_propagation_trust.rb', line 464

def impersonation_service_users
  @impersonation_service_users
end

#issuerString

[Required] The issuer claim of the Identity provider.

SCIM++ Properties: - type: string - multiValued: false - required: true - mutability: readWrite - returned: always - caseExact: true - idcsSearchable: true - uniqueness: server

Returns:

  • (String)


237
238
239
# File 'lib/oci/identity_domains/models/identity_propagation_trust.rb', line 237

def issuer
  @issuer
end

#keytabOCI::IdentityDomains::Models::IdentityPropagationTrustKeytab



467
468
469
# File 'lib/oci/identity_domains/models/identity_propagation_trust.rb', line 467

def keytab
  @keytab
end

#metaOCI::IdentityDomains::Models::Meta



78
79
80
# File 'lib/oci/identity_domains/models/identity_propagation_trust.rb', line 78

def meta
  @meta
end

#nameString

[Required] The name of the the Identity Propagation Trust.

SCIM++ Properties: - type: string - caseExact: false - idcsSearchable: true - multiValued: false - required: true - mutability: immutable - returned: default - uniqueness: none

Returns:

  • (String)


195
196
197
# File 'lib/oci/identity_domains/models/identity_propagation_trust.rb', line 195

def name
  @name
end

#oauth_clientsArray<String>

The value of all the authorized OAuth Clients.

SCIM++ Properties: - idcsSearchable: false - multiValued: true - mutability: readWrite - required: false - returned: default - type: string - uniqueness: none

Returns:

  • (Array<String>)


371
372
373
# File 'lib/oci/identity_domains/models/identity_propagation_trust.rb', line 371

def oauth_clients
  @oauth_clients
end

#ocidString

Unique OCI identifier for the SCIM Resource.

SCIM++ Properties: - caseExact: true - idcsSearchable: true - multiValued: false - mutability: immutable - required: false - returned: default - type: string - uniqueness: global

Returns:

  • (String)


61
62
63
# File 'lib/oci/identity_domains/models/identity_propagation_trust.rb', line 61

def ocid
  @ocid
end

#public_certificateString

Store the public key if public key cert.

SCIM++ Properties: - type: string - multiValued: false - required: false - mutability: readWrite - returned: default - uniqueness: none - idcsSearchable: false

Returns:

  • (String)


358
359
360
# File 'lib/oci/identity_domains/models/identity_propagation_trust.rb', line 358

def public_certificate
  @public_certificate
end

#public_key_endpointString

The cloud provider's public key API of SAML and OIDC providers for signature validation.

SCIM++ Properties: - type: string - multiValued: false - required: false - mutability: readWrite - returned: default - uniqueness: none - caseExact: false - idcsSearchable: false

Returns:

  • (String)


345
346
347
# File 'lib/oci/identity_domains/models/identity_propagation_trust.rb', line 345

def public_key_endpoint
  @public_key_endpoint
end

#schemasArray<String>

[Required] REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard \“enterprise\” extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.

SCIM++ Properties: - caseExact: false - idcsSearchable: false - multiValued: true - mutability: readWrite - required: true - returned: default - type: string - uniqueness: none

Returns:

  • (Array<String>)


75
76
77
# File 'lib/oci/identity_domains/models/identity_propagation_trust.rb', line 75

def schemas
  @schemas
end

#subject_claim_nameString

Used for locating the subject claim from the incoming token.

SCIM++ Properties: - type: string - multiValued: false - required: false - mutability: readWrite - returned: default - uniqueness: none - caseExact: true - idcsSearchable: false

Returns:

  • (String)


265
266
267
# File 'lib/oci/identity_domains/models/identity_propagation_trust.rb', line 265

def subject_claim_name
  @subject_claim_name
end

#subject_mapping_attributeString

Subject Mapping Attribute to which the value from subject claim name value would be used for identity lookup.

SCIM++ Properties: - type: string - multiValued: false - idcsSearchable: false - required: false - mutability: readWrite - returned: default - uniqueness: none

Returns:

  • (String)


278
279
280
# File 'lib/oci/identity_domains/models/identity_propagation_trust.rb', line 278

def subject_mapping_attribute
  @subject_mapping_attribute
end

#subject_typeString

The type of the resource against which lookup will be made in the identity domain in IAM for the incoming subject claim value.

SCIM++ Properties: - idcsSearchable: false - multiValued: false - mutability: readWrite - required: false - returned: default - type: string - uniqueness: none

Returns:

  • (String)


291
292
293
# File 'lib/oci/identity_domains/models/identity_propagation_trust.rb', line 291

def subject_type
  @subject_type
end

#tagsArray<OCI::IdentityDomains::Models::Tags>

A list of tags on this resource.

SCIM++ Properties: - idcsCompositeKey: [key, value] - idcsSearchable: true - multiValued: true - mutability: readWrite - required: false - returned: request - type: complex - uniqueness: none



111
112
113
# File 'lib/oci/identity_domains/models/identity_propagation_trust.rb', line 111

def tags
  @tags
end

#tenancy_ocidString

OCI Tenant Id (ocid) in which the resource lives.

SCIM++ Properties: - caseExact: false - idcsSearchable: false - multiValued: false - mutability: readOnly - required: false - returned: default - type: string - uniqueness: none

Returns:

  • (String)


181
182
183
# File 'lib/oci/identity_domains/models/identity_propagation_trust.rb', line 181

def tenancy_ocid
  @tenancy_ocid
end

#typeString

[Required] The type of the inbound token from the Identity cloud provider.

SCIM++ Properties: - caseExact: true - idcsSearchable: false - required: true - mutability: readWrite - returned: default - type: string - multiValued: false - uniqueness: none

Returns:

  • (String)


223
224
225
# File 'lib/oci/identity_domains/models/identity_propagation_trust.rb', line 223

def type
  @type
end

Class Method Details

.attribute_mapObject

Attribute mapping from ruby-style variable name to JSON key.



470
471
472
473
474
475
476
477
478
479
480
481
482
483
484
485
486
487
488
489
490
491
492
493
494
495
496
497
498
499
500
501
502
503
504
505
506
507
508
509
510
# File 'lib/oci/identity_domains/models/identity_propagation_trust.rb', line 470

def self.attribute_map
  {
    # rubocop:disable Style/SymbolLiteral
    'id': :'id',
    'ocid': :'ocid',
    'schemas': :'schemas',
    'meta': :'meta',
    'idcs_created_by': :'idcsCreatedBy',
    'idcs_last_modified_by': :'idcsLastModifiedBy',
    'idcs_prevented_operations': :'idcsPreventedOperations',
    'tags': :'tags',
    'delete_in_progress': :'deleteInProgress',
    'idcs_last_upgraded_in_release': :'idcsLastUpgradedInRelease',
    'domain_ocid': :'domainOcid',
    'compartment_ocid': :'compartmentOcid',
    'tenancy_ocid': :'tenancyOcid',
    'name': :'name',
    'description': :'description',
    'type': :'type',
    'issuer': :'issuer',
    'account_id': :'accountId',
    'subject_claim_name': :'subjectClaimName',
    'subject_mapping_attribute': :'subjectMappingAttribute',
    'subject_type': :'subjectType',
    'client_claim_name': :'clientClaimName',
    'client_claim_values': :'clientClaimValues',
    'active': :'active',
    'public_key_endpoint': :'publicKeyEndpoint',
    'public_certificate': :'publicCertificate',
    'oauth_clients': :'oauthClients',
    'allow_impersonation': :'allowImpersonation',
    'clock_skew_seconds': :'clockSkewSeconds',
    'impersonating_resource': :'impersonatingResource',
    'claim_validations': :'claimValidations',
    'claim_propagations': :'claimPropagations',
    'ca_cert_chain': :'CACertChain',
    'impersonation_service_users': :'impersonationServiceUsers',
    'keytab': :'keytab'
    # rubocop:enable Style/SymbolLiteral
  }
end

.swagger_typesObject

Attribute type mapping.



513
514
515
516
517
518
519
520
521
522
523
524
525
526
527
528
529
530
531
532
533
534
535
536
537
538
539
540
541
542
543
544
545
546
547
548
549
550
551
552
553
# File 'lib/oci/identity_domains/models/identity_propagation_trust.rb', line 513

def self.swagger_types
  {
    # rubocop:disable Style/SymbolLiteral
    'id': :'String',
    'ocid': :'String',
    'schemas': :'Array<String>',
    'meta': :'OCI::IdentityDomains::Models::Meta',
    'idcs_created_by': :'OCI::IdentityDomains::Models::IdcsCreatedBy',
    'idcs_last_modified_by': :'OCI::IdentityDomains::Models::IdcsLastModifiedBy',
    'idcs_prevented_operations': :'Array<String>',
    'tags': :'Array<OCI::IdentityDomains::Models::Tags>',
    'delete_in_progress': :'BOOLEAN',
    'idcs_last_upgraded_in_release': :'String',
    'domain_ocid': :'String',
    'compartment_ocid': :'String',
    'tenancy_ocid': :'String',
    'name': :'String',
    'description': :'String',
    'type': :'String',
    'issuer': :'String',
    'account_id': :'String',
    'subject_claim_name': :'String',
    'subject_mapping_attribute': :'String',
    'subject_type': :'String',
    'client_claim_name': :'String',
    'client_claim_values': :'Array<String>',
    'active': :'BOOLEAN',
    'public_key_endpoint': :'String',
    'public_certificate': :'String',
    'oauth_clients': :'Array<String>',
    'allow_impersonation': :'BOOLEAN',
    'clock_skew_seconds': :'Integer',
    'impersonating_resource': :'String',
    'claim_validations': :'Array<OCI::IdentityDomains::Models::IdentityPropagationTrustClaimValidations>',
    'claim_propagations': :'Array<String>',
    'ca_cert_chain': :'OCI::IdentityDomains::Models::IdentityPropagationTrustCaCertChain',
    'impersonation_service_users': :'Array<OCI::IdentityDomains::Models::IdentityPropagationTrustImpersonationServiceUsers>',
    'keytab': :'OCI::IdentityDomains::Models::IdentityPropagationTrustKeytab'
    # rubocop:enable Style/SymbolLiteral
  }
end

Instance Method Details

#==(other) ⇒ Object

Checks equality by comparing each attribute.

Parameters:

  • other (Object)

    the other object to be compared



822
823
824
825
826
827
828
829
830
831
832
833
834
835
836
837
838
839
840
841
842
843
844
845
846
847
848
849
850
851
852
853
854
855
856
857
858
859
860
861
# File 'lib/oci/identity_domains/models/identity_propagation_trust.rb', line 822

def ==(other)
  return true if equal?(other)

  self.class == other.class &&
    id == other.id &&
    ocid == other.ocid &&
    schemas == other.schemas &&
    meta == other.meta &&
    idcs_created_by == other.idcs_created_by &&
    idcs_last_modified_by == other.idcs_last_modified_by &&
    idcs_prevented_operations == other.idcs_prevented_operations &&
    tags == other.tags &&
    delete_in_progress == other.delete_in_progress &&
    idcs_last_upgraded_in_release == other.idcs_last_upgraded_in_release &&
    domain_ocid == other.domain_ocid &&
    compartment_ocid == other.compartment_ocid &&
    tenancy_ocid == other.tenancy_ocid &&
    name == other.name &&
    description == other.description &&
    type == other.type &&
    issuer == other.issuer &&
     == other. &&
    subject_claim_name == other.subject_claim_name &&
    subject_mapping_attribute == other.subject_mapping_attribute &&
    subject_type == other.subject_type &&
    client_claim_name == other.client_claim_name &&
    client_claim_values == other.client_claim_values &&
    active == other.active &&
    public_key_endpoint == other.public_key_endpoint &&
    public_certificate == other.public_certificate &&
    oauth_clients == other.oauth_clients &&
    allow_impersonation == other.allow_impersonation &&
    clock_skew_seconds == other.clock_skew_seconds &&
    impersonating_resource == other.impersonating_resource &&
    claim_validations == other.claim_validations &&
    claim_propagations == other.claim_propagations &&
    ca_cert_chain == other.ca_cert_chain &&
    impersonation_service_users == other.impersonation_service_users &&
    keytab == other.keytab
end

#build_from_hash(attributes) ⇒ Object

Builds the object from hash

Parameters:

  • attributes (Hash)

    Model attributes in the form of hash

Returns:

  • (Object)

    Returns the model itself



886
887
888
889
890
891
892
893
894
895
896
897
898
899
900
901
902
903
904
905
906
907
908
# File 'lib/oci/identity_domains/models/identity_propagation_trust.rb', line 886

def build_from_hash(attributes)
  return nil unless attributes.is_a?(Hash)

  self.class.swagger_types.each_pair do |key, type|
    if type =~ /^Array<(.*)>/i
      # check to ensure the input is an array given that the the attribute
      # is documented as an array but the input is not
      if attributes[self.class.attribute_map[key]].is_a?(Array)
        public_method("#{key}=").call(
          attributes[self.class.attribute_map[key]]
            .map { |v| OCI::Internal::Util.convert_to_type(Regexp.last_match(1), v) }
        )
      end
    elsif !attributes[self.class.attribute_map[key]].nil?
      public_method("#{key}=").call(
        OCI::Internal::Util.convert_to_type(type, attributes[self.class.attribute_map[key]])
      )
    end
    # or else data not found in attributes(hash), not an issue as the data can be optional
  end

  self
end

#eql?(other) ⇒ Boolean

Parameters:

  • other (Object)

    the other object to be compared

Returns:

  • (Boolean)

See Also:

  • `==` method


866
867
868
# File 'lib/oci/identity_domains/models/identity_propagation_trust.rb', line 866

def eql?(other)
  self == other
end

#hashFixnum

Calculates hash code according to all attributes.

Returns:

  • (Fixnum)

    Hash code



875
876
877
# File 'lib/oci/identity_domains/models/identity_propagation_trust.rb', line 875

def hash
  [id, ocid, schemas, meta, idcs_created_by, idcs_last_modified_by, idcs_prevented_operations, tags, delete_in_progress, idcs_last_upgraded_in_release, domain_ocid, compartment_ocid, tenancy_ocid, name, description, type, issuer, , subject_claim_name, subject_mapping_attribute, subject_type, client_claim_name, client_claim_values, active, public_key_endpoint, public_certificate, oauth_clients, allow_impersonation, clock_skew_seconds, impersonating_resource, claim_validations, claim_propagations, ca_cert_chain, impersonation_service_users, keytab].hash
end

#to_hashHash

Returns the object in the form of hash

Returns:

  • (Hash)

    Returns the object in the form of hash



919
920
921
922
923
924
925
926
927
928
# File 'lib/oci/identity_domains/models/identity_propagation_trust.rb', line 919

def to_hash
  hash = {}
  self.class.attribute_map.each_pair do |attr, param|
    value = public_method(attr).call
    next if value.nil? && !instance_variable_defined?("@#{attr}")

    hash[param] = _to_hash(value)
  end
  hash
end

#to_sString

Returns the string representation of the object

Returns:

  • (String)

    String presentation of the object



913
914
915
# File 'lib/oci/identity_domains/models/identity_propagation_trust.rb', line 913

def to_s
  to_hash.to_s
end