oci_cloud_guard_security_recipe

This resource provides the Security Recipe resource in Oracle Cloud Infrastructure Cloud Guard service.

Creates a security zone recipe (SecurityRecipe resource), using parameters passed in a CreateSecurityRecipeDetails resource.

Example Usage

resource "oci_cloud_guard_security_recipe" "test_security_recipe" {
	#Required
	compartment_id = var.compartment_id
	display_name = var.security_recipe_display_name
	security_policies = var.security_recipe_security_policies

	#Optional
	defined_tags = {"foo-namespace.bar-key"= "value"}
	description = var.security_recipe_description
	freeform_tags = {"bar-key"= "value"}
}

Argument Reference

The following arguments are supported:

• compartment_id - (Required) (Updatable) The OCID of the compartment in which to create the recipe

• defined_tags - (Optional) (Updatable) Defined tags for this resource. Each key is predefined and scoped to a namespace. Example: {"foo-namespace.bar-key": "value"}

• description - (Optional) (Updatable) The recipe’s description

• display_name - (Required) (Updatable) The recipe’s display name.

  Avoid entering confidential information.

• freeform_tags - (Optional) (Updatable) Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. Example: {"bar-key": "value"}

  Avoid entering confidential information.

• security_policies - (Required) (Updatable) The list of security policy IDs to include in the recipe

** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values

Attributes Reference

The following attributes are exported:

• compartment_id - The OCID of the compartment that contains the recipe

• defined_tags - Defined tags for this resource. Each key is predefined and scoped to a namespace. Example: {"foo-namespace.bar-key": "value"}

• description - The recipe’s description

• display_name - The recipe’s display name

• freeform_tags - Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. Example: {"bar-key": "value"}

  Avoid entering confidential information.

• id - Unique identifier that can’t be changed after creation

• lifecycle_details - A message describing the current state in more detail. For example, this can be used to provide actionable information for a recipe in the Failed state.

• owner - The owner of the recipe

• security_policies - The list of security policy IDs that are included in the recipe

• state - The current lifecycle state of the recipe

• time_created - The time the recipe was created. An RFC3339 formatted datetime string.

• time_updated - The time the recipe was last updated. An RFC3339 formatted datetime string.

Timeouts

The timeouts block allows you to specify timeouts for certain operations: * create - (Defaults to 20 minutes), when creating the Security Recipe * update - (Defaults to 20 minutes), when updating the Security Recipe * delete - (Defaults to 20 minutes), when destroying the Security Recipe

Import

SecurityRecipes can be imported using the id, e.g.

$ terraform import oci_cloud_guard_security_recipe.test_security_recipe "id"