Operator Access Control Common Types
DBMS_CLOUD_OCI_OPERATOR_ACCESS_CONTROL_VARCHAR2_TBL Type
Nested table type of varchar2(32767).
Syntax
CREATE OR REPLACE NONEDITIONABLE TYPE dbms_cloud_oci_operator_access_control_varchar2_tbl FORCE IS TABLE OF (varchar2(32767)) NOT PERSISTABLE;DBMS_CLOUD_OCI_OPERATOR_ACCESS_CONTROL_ACCESS_REQUEST_T Type
An Oracle operator raises access request when they need access to any infrastructure resource governed by Operator Access Control. The access request identifies the target resource and the set of operator actions. Access request handling depends upon the Operator Control that governs the target resource, and the set of operator actions listed for approval in the access request. If all of the operator actions listed in the access request are in the pre-approved list in the Operator Control that governs the target resource, then the access request is automatically approved. If not, then the access request requires explicit approval from the approver group specified by the Operator Control governing the target resource. You can approve or reject an access request. You can also revoke the approval of an already approved access request. While creating an access request, the operator specifies the duration of access. You have the option to approve the entire duration or reduce or even increase the time duration. An operator can also request for an extension. The approval for such an extension is processed the same way the original access request was processed.
Syntax
CREATE OR REPLACE NONEDITIONABLE TYPE dbms_cloud_oci_operator_access_control_access_request_t FORCE AUTHID CURRENT_USER IS OBJECT (
id varchar2(32767),
request_id varchar2(32767),
access_reason_summary varchar2(32767),
operator_id varchar2(32767),
resource_id varchar2(32767),
resource_name varchar2(32767),
sub_resource_list dbms_cloud_oci_operator_access_control_varchar2_tbl,
compartment_id varchar2(32767),
resource_type varchar2(32767),
action_requests_list dbms_cloud_oci_operator_access_control_varchar2_tbl,
reason varchar2(32767),
severity varchar2(32767),
duration number,
extend_duration number,
workflow_id dbms_cloud_oci_operator_access_control_varchar2_tbl,
is_auto_approved number,
lifecycle_state varchar2(32767),
lifecycle_details varchar2(32767),
time_of_creation timestamp with time zone,
time_of_modification timestamp with time zone,
time_of_user_creation timestamp with time zone,
user_id varchar2(32767),
approver_comment varchar2(32767),
closure_comment varchar2(32767),
opctl_id varchar2(32767),
opctl_name varchar2(32767),
system_message varchar2(32767),
opctl_additional_message varchar2(32767),
audit_type dbms_cloud_oci_operator_access_control_varchar2_tbl,
freeform_tags json_element_t,
defined_tags json_element_t,
CONSTRUCTOR FUNCTION dbms_cloud_oci_operator_access_control_access_request_t
RETURN SELF AS RESULT,
CONSTRUCTOR FUNCTION dbms_cloud_oci_operator_access_control_access_request_t (
id varchar2,
request_id varchar2,
access_reason_summary varchar2,
operator_id varchar2,
resource_id varchar2,
resource_name varchar2,
sub_resource_list dbms_cloud_oci_operator_access_control_varchar2_tbl,
compartment_id varchar2,
resource_type varchar2,
action_requests_list dbms_cloud_oci_operator_access_control_varchar2_tbl,
reason varchar2,
severity varchar2,
duration number,
extend_duration number,
workflow_id dbms_cloud_oci_operator_access_control_varchar2_tbl,
is_auto_approved number,
lifecycle_state varchar2,
lifecycle_details varchar2,
time_of_creation timestamp with time zone,
time_of_modification timestamp with time zone,
time_of_user_creation timestamp with time zone,
user_id varchar2,
approver_comment varchar2,
closure_comment varchar2,
opctl_id varchar2,
opctl_name varchar2,
system_message varchar2,
opctl_additional_message varchar2,
audit_type dbms_cloud_oci_operator_access_control_varchar2_tbl,
freeform_tags json_element_t,
defined_tags json_element_t
) RETURN SELF AS RESULT
) NOT PERSISTABLE;Fields
| Field | Description |
|---|---|
|
|
(required) The OCID of the access request. |
|
|
(optional) This is an automatic identifier generated by the system which is easier for human comprehension. |
|
|
(required) Summary comment by the operator creating the access request. |
|
|
(optional) A unique identifier associated with the operator who raised the request. This identifier can not be used directly to identify the operator. You need to provide this identifier if you would like Oracle to provide additional information about the operator action within Oracle tenancy. |
|
|
(required) The OCID of the target resource associated with the access request. The operator raises an access request to get approval to access the target resource. |
|
|
(optional) The name of the target resource. |
|
|
(optional) The subresources requested for approval. |
|
|
(optional) The OCID of the compartment that contains the access request. |
|
|
(optional) resourceType for which the AccessRequest is applicable Allowed values are: 'EXACC', 'EXADATAINFRASTRUCTURE', 'AUTONOMOUSVMCLUSTER', 'CLOUDAUTONOMOUSVMCLUSTER', 'CCCINFRASTRUCTURE' |
|
|
(optional) List of operator actions for which approval is sought by the operator user. |
|
|
(optional) Summary reason for which the operator is requesting access on the target resource. |
|
|
(optional) Priority assigned to the access request by the operator Allowed values are: 'S1', 'S2', 'S3', 'S4' |
|
|
(optional) Duration in hours for which access is sought on the target resource. |
|
|
(optional) Duration in hours for which extension access is sought on the target resource. |
|
|
(optional) The OCID of the workflow associated with the access request. This is needed if you want to contact Oracle Support for a stuck access request or for an access request that encounters an internal error. |
|
|
(optional) Whether the access request was automatically approved. |
|
|
(optional) The current state of the AccessRequest. Allowed values are: 'CREATED', 'APPROVALWAITING', 'PREAPPROVED', 'APPROVED', 'MOREINFO', 'REJECTED', 'DEPLOYED', 'DEPLOYFAILED', 'UNDEPLOYED', 'UNDEPLOYFAILED', 'CLOSEFAILED', 'REVOKEFAILED', 'EXPIRYFAILED', 'REVOKING', 'REVOKED', 'EXTENDING', 'EXTENDED', 'EXTENSIONREJECTED', 'COMPLETING', 'COMPLETED', 'EXPIRED', 'APPROVEDFORFUTURE', 'INREVIEW' |
|
|
(optional) more in detail about the lifeCycleState. |
|
|
(optional) Time when the access request was created in RFC 3339timestamp format. Example: '2020-05-22T21:10:29.600Z' |
|
|
(optional) Time when the access request was last modified in RFC 3339timestamp format. Example: '2020-05-22T21:10:29.600Z' |
|
|
(optional) The time when access request is scheduled to be approved in RFC 3339 timestamp format.Example: '2020-05-22T21:10:29.600Z' |
|
|
(optional) The OCID of the user that last modified the access request. |
|
|
(optional) The last recent Comment entered by the approver of the request. |
|
|
(optional) The comment entered by the operator while closing the request. |
|
|
(optional) The OCID of the operator control governing the target resource. |
|
|
(optional) Name of the Operator control governing the target resource. |
|
|
(optional) System message that will be displayed to the operator at login to the target resource. |
|
|
(optional) Additional message specific to the access request that can be specified by the approver at the time of approval. |
|
|
(optional) Specifies the type of auditing to be enabled. There are two levels of auditing: command-level and keystroke-level. By default, auditing is enabled at the command level i.e., each command issued by the operator is audited. When keystroke-level is chosen, in addition to command level logging, key strokes are also logged. |
|
|
(optional) Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. |
|
|
(optional) Defined tags for this resource. Each key is predefined and scoped to a namespace. |
DBMS_CLOUD_OCI_OPERATOR_ACCESS_CONTROL_ACCESS_REQUEST_SUMMARY_T Type
Summary of access request.
Syntax
CREATE OR REPLACE NONEDITIONABLE TYPE dbms_cloud_oci_operator_access_control_access_request_summary_t FORCE AUTHID CURRENT_USER IS OBJECT (
id varchar2(32767),
request_id varchar2(32767),
access_reason_summary varchar2(32767),
compartment_id varchar2(32767),
resource_id varchar2(32767),
resource_name varchar2(32767),
sub_resource_list dbms_cloud_oci_operator_access_control_varchar2_tbl,
resource_type varchar2(32767),
lifecycle_state varchar2(32767),
lifecycle_details varchar2(32767),
time_of_creation timestamp with time zone,
time_of_modification timestamp with time zone,
time_of_user_creation timestamp with time zone,
duration number,
extend_duration number,
severity varchar2(32767),
is_auto_approved number,
freeform_tags json_element_t,
defined_tags json_element_t,
CONSTRUCTOR FUNCTION dbms_cloud_oci_operator_access_control_access_request_summary_t
RETURN SELF AS RESULT,
CONSTRUCTOR FUNCTION dbms_cloud_oci_operator_access_control_access_request_summary_t (
id varchar2,
request_id varchar2,
access_reason_summary varchar2,
compartment_id varchar2,
resource_id varchar2,
resource_name varchar2,
sub_resource_list dbms_cloud_oci_operator_access_control_varchar2_tbl,
resource_type varchar2,
lifecycle_state varchar2,
lifecycle_details varchar2,
time_of_creation timestamp with time zone,
time_of_modification timestamp with time zone,
time_of_user_creation timestamp with time zone,
duration number,
extend_duration number,
severity varchar2,
is_auto_approved number,
freeform_tags json_element_t,
defined_tags json_element_t
) RETURN SELF AS RESULT
) NOT PERSISTABLE;Fields
| Field | Description |
|---|---|
|
|
(required) The OCID of the access request. |
|
|
(optional) This is a system-generated identifier. |
|
|
(required) Comment associated with the access request. |
|
|
(optional) The OCID of the compartment that contains the access request. |
|
|
(required) The OCID of the target resource associated with the access request. The operator raises an access request to get approval to access the target resource. |
|
|
(optional) The name of the target resource. |
|
|
(optional) The subresources requested for approval. |
|
|
(optional) resourceType for which the AccessRequest is applicable Allowed values are: 'EXACC', 'EXADATAINFRASTRUCTURE', 'AUTONOMOUSVMCLUSTER', 'CLOUDAUTONOMOUSVMCLUSTER', 'CCCINFRASTRUCTURE' |
|
|
(optional) The current state of the AccessRequest. Allowed values are: 'CREATED', 'APPROVALWAITING', 'PREAPPROVED', 'APPROVED', 'MOREINFO', 'REJECTED', 'DEPLOYED', 'DEPLOYFAILED', 'UNDEPLOYED', 'UNDEPLOYFAILED', 'CLOSEFAILED', 'REVOKEFAILED', 'EXPIRYFAILED', 'REVOKING', 'REVOKED', 'EXTENDING', 'EXTENDED', 'EXTENSIONREJECTED', 'COMPLETING', 'COMPLETED', 'EXPIRED', 'APPROVEDFORFUTURE', 'INREVIEW' |
|
|
(optional) More in detail about the lifeCycleState. |
|
|
(optional) Time when the access request was created by the operator user in RFC 3339 timestamp format.Example: '2020-05-22T21:10:29.600Z' |
|
|
(optional) Time when the access request was last modified in RFC 3339 timestamp format.Example: '2020-05-22T21:10:29.600Z' |
|
|
(optional) The time when access request is scheduled to be approved in RFC 3339 timestamp format.Example: '2020-05-22T21:10:29.600Z' |
|
|
(optional) Duration in hours for which access is sought on the target resource. |
|
|
(optional) Duration in hours for which extension access is sought on the target resource. |
|
|
(optional) Priority assigned to the access request by the operator Allowed values are: 'S1', 'S2', 'S3', 'S4' |
|
|
(optional) Whether the access request was automatically approved. |
|
|
(optional) Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. |
|
|
(optional) Defined tags for this resource. Each key is predefined and scoped to a namespace. |
DBMS_CLOUD_OCI_OPERATOR_ACCESS_CONTROL_ACCESS_REQUEST_SUMMARY_TBL Type
Nested table type of dbms_cloud_oci_operator_access_control_access_request_summary_t.
Syntax
CREATE OR REPLACE NONEDITIONABLE TYPE dbms_cloud_oci_operator_access_control_access_request_summary_tbl FORCE IS TABLE OF (dbms_cloud_oci_operator_access_control_access_request_summary_t) NOT PERSISTABLE;DBMS_CLOUD_OCI_OPERATOR_ACCESS_CONTROL_ACCESS_REQUEST_COLLECTION_T Type
Results of access request search, which contains summary of access request.
Syntax
CREATE OR REPLACE NONEDITIONABLE TYPE dbms_cloud_oci_operator_access_control_access_request_collection_t FORCE AUTHID CURRENT_USER IS OBJECT (
items dbms_cloud_oci_operator_access_control_access_request_summary_tbl,
CONSTRUCTOR FUNCTION dbms_cloud_oci_operator_access_control_access_request_collection_t
RETURN SELF AS RESULT,
CONSTRUCTOR FUNCTION dbms_cloud_oci_operator_access_control_access_request_collection_t (
items dbms_cloud_oci_operator_access_control_access_request_summary_tbl
) RETURN SELF AS RESULT
) NOT PERSISTABLE;Fields
| Field | Description |
|---|---|
|
|
(required) contains AccessRequestSummary |
DBMS_CLOUD_OCI_OPERATOR_ACCESS_CONTROL_ACCESS_REQUEST_HISTORY_SUMMARY_T Type
Summary of access request status.
Syntax
CREATE OR REPLACE NONEDITIONABLE TYPE dbms_cloud_oci_operator_access_control_access_request_history_summary_t FORCE AUTHID CURRENT_USER IS OBJECT (
lifecycle_state varchar2(32767),
user_id varchar2(32767),
description varchar2(32767),
duration number,
is_auto_approved number,
actions_list dbms_cloud_oci_operator_access_control_varchar2_tbl,
time_of_action timestamp with time zone,
CONSTRUCTOR FUNCTION dbms_cloud_oci_operator_access_control_access_request_history_summary_t
RETURN SELF AS RESULT,
CONSTRUCTOR FUNCTION dbms_cloud_oci_operator_access_control_access_request_history_summary_t (
lifecycle_state varchar2,
user_id varchar2,
description varchar2,
duration number,
is_auto_approved number,
actions_list dbms_cloud_oci_operator_access_control_varchar2_tbl,
time_of_action timestamp with time zone
) RETURN SELF AS RESULT
) NOT PERSISTABLE;Fields
| Field | Description |
|---|---|
|
|
(optional) The current state of the AccessRequest. Allowed values are: 'CREATED', 'APPROVALWAITING', 'PREAPPROVED', 'APPROVED', 'MOREINFO', 'REJECTED', 'DEPLOYED', 'DEPLOYFAILED', 'UNDEPLOYED', 'UNDEPLOYFAILED', 'CLOSEFAILED', 'REVOKEFAILED', 'EXPIRYFAILED', 'REVOKING', 'REVOKED', 'EXTENDING', 'EXTENDED', 'EXTENSIONREJECTED', 'COMPLETING', 'COMPLETED', 'EXPIRED', 'APPROVEDFORFUTURE', 'INREVIEW' |
|
|
(optional) Approver who modified the access request. |
|
|
(optional) Reason or description about the cause of change. |
|
|
(optional) Duration for approval of request or extension depending on the type of action. |
|
|
(optional) Whether the access request was automatically approved. |
|
|
(optional) List of operator actions for which approvals were requested by the operator. |
|
|
(optional) Time when the respective action happened in RFC 3339timestamp format. Example: '2020-05-22T21:10:29.600Z' |
DBMS_CLOUD_OCI_OPERATOR_ACCESS_CONTROL_ACCESS_REQUEST_HISTORY_SUMMARY_TBL Type
Nested table type of dbms_cloud_oci_operator_access_control_access_request_history_summary_t.
Syntax
CREATE OR REPLACE NONEDITIONABLE TYPE dbms_cloud_oci_operator_access_control_access_request_history_summary_tbl FORCE IS TABLE OF (dbms_cloud_oci_operator_access_control_access_request_history_summary_t) NOT PERSISTABLE;DBMS_CLOUD_OCI_OPERATOR_ACCESS_CONTROL_ACCESS_REQUEST_HISTORY_COLLECTION_T Type
Results of access request history search, which contains summary of the access request.
Syntax
CREATE OR REPLACE NONEDITIONABLE TYPE dbms_cloud_oci_operator_access_control_access_request_history_collection_t FORCE AUTHID CURRENT_USER IS OBJECT (
items dbms_cloud_oci_operator_access_control_access_request_history_summary_tbl,
CONSTRUCTOR FUNCTION dbms_cloud_oci_operator_access_control_access_request_history_collection_t
RETURN SELF AS RESULT,
CONSTRUCTOR FUNCTION dbms_cloud_oci_operator_access_control_access_request_history_collection_t (
items dbms_cloud_oci_operator_access_control_access_request_history_summary_tbl
) RETURN SELF AS RESULT
) NOT PERSISTABLE;Fields
| Field | Description |
|---|---|
|
|
(required) contains AccessRequestHistorySummary |
DBMS_CLOUD_OCI_OPERATOR_ACCESS_CONTROL_APPROVE_ACCESS_REQUEST_DETAILS_T Type
Details of the access request approval.
Syntax
CREATE OR REPLACE NONEDITIONABLE TYPE dbms_cloud_oci_operator_access_control_approve_access_request_details_t FORCE AUTHID CURRENT_USER IS OBJECT (
approver_comment varchar2(32767),
audit_type dbms_cloud_oci_operator_access_control_varchar2_tbl,
additional_message varchar2(32767),
time_of_user_creation timestamp with time zone,
CONSTRUCTOR FUNCTION dbms_cloud_oci_operator_access_control_approve_access_request_details_t
RETURN SELF AS RESULT,
CONSTRUCTOR FUNCTION dbms_cloud_oci_operator_access_control_approve_access_request_details_t (
approver_comment varchar2,
audit_type dbms_cloud_oci_operator_access_control_varchar2_tbl,
additional_message varchar2,
time_of_user_creation timestamp with time zone
) RETURN SELF AS RESULT
) NOT PERSISTABLE;Fields
| Field | Description |
|---|---|
|
|
(optional) Comment by the approver during approval. |
|
|
(optional) Specifies the type of auditing to be enabled. There are two levels of auditing: command-level and keystroke-level. By default, auditing is enabled at the command level i.e., each command issued by the operator is audited. When keystroke-level is chosen, in addition to command level logging, key strokes are also logged. |
|
|
(optional) Message that needs to be displayed to the Ops User. |
|
|
(optional) The time when access request is scheduled to be approved in RFC 3339 timestamp format.Example: '2020-05-22T21:10:29.600Z' |
DBMS_CLOUD_OCI_OPERATOR_ACCESS_CONTROL_CHANGE_OPERATOR_CONTROL_ASSIGNMENT_COMPARTMENT_DETAILS_T Type
Details of the new compartment to contain the operator control assignment.
Syntax
CREATE OR REPLACE NONEDITIONABLE TYPE dbms_cloud_oci_operator_access_control_change_operator_control_assignment_compartment_details_t FORCE AUTHID CURRENT_USER IS OBJECT (
compartment_id varchar2(32767),
CONSTRUCTOR FUNCTION dbms_cloud_oci_operator_access_control_change_operator_control_assignment_compartment_details_t
RETURN SELF AS RESULT,
CONSTRUCTOR FUNCTION dbms_cloud_oci_operator_access_control_change_operator_control_assignment_compartment_details_t (
compartment_id varchar2
) RETURN SELF AS RESULT
) NOT PERSISTABLE;Fields
| Field | Description |
|---|---|
|
|
(optional) The OCID of the new compartment to contain the operator contol assignment. |
DBMS_CLOUD_OCI_OPERATOR_ACCESS_CONTROL_CHANGE_OPERATOR_CONTROL_COMPARTMENT_DETAILS_T Type
Details of the new compartment to contain the operator control.
Syntax
CREATE OR REPLACE NONEDITIONABLE TYPE dbms_cloud_oci_operator_access_control_change_operator_control_compartment_details_t FORCE AUTHID CURRENT_USER IS OBJECT (
compartment_id varchar2(32767),
CONSTRUCTOR FUNCTION dbms_cloud_oci_operator_access_control_change_operator_control_compartment_details_t
RETURN SELF AS RESULT,
CONSTRUCTOR FUNCTION dbms_cloud_oci_operator_access_control_change_operator_control_compartment_details_t (
compartment_id varchar2
) RETURN SELF AS RESULT
) NOT PERSISTABLE;Fields
| Field | Description |
|---|---|
|
|
(optional) The OCID of the new compartment to contain the operator contol. |
DBMS_CLOUD_OCI_OPERATOR_ACCESS_CONTROL_CREATE_OPERATOR_CONTROL_ASSIGNMENT_DETAILS_T Type
Details of the Operator Control assignment. An Operator Control Assignment identifies the target resource that is placed under the governance of an Operator Control. Creating an Operator Control Assignment Assignment with a time duration ensures that human accesses to the target resource will be governed by Operator Control for the duration specified.
Syntax
CREATE OR REPLACE NONEDITIONABLE TYPE dbms_cloud_oci_operator_access_control_create_operator_control_assignment_details_t FORCE AUTHID CURRENT_USER IS OBJECT (
operator_control_id varchar2(32767),
resource_id varchar2(32767),
resource_name varchar2(32767),
resource_type varchar2(32767),
resource_compartment_id varchar2(32767),
time_assignment_from timestamp with time zone,
time_assignment_to timestamp with time zone,
compartment_id varchar2(32767),
is_enforced_always number,
l_comment varchar2(32767),
is_log_forwarded number,
remote_syslog_server_address varchar2(32767),
remote_syslog_server_port number,
remote_syslog_server_ca_cert varchar2(32767),
is_auto_approve_during_maintenance number,
freeform_tags json_element_t,
defined_tags json_element_t,
CONSTRUCTOR FUNCTION dbms_cloud_oci_operator_access_control_create_operator_control_assignment_details_t
RETURN SELF AS RESULT,
CONSTRUCTOR FUNCTION dbms_cloud_oci_operator_access_control_create_operator_control_assignment_details_t (
operator_control_id varchar2,
resource_id varchar2,
resource_name varchar2,
resource_type varchar2,
resource_compartment_id varchar2,
time_assignment_from timestamp with time zone,
time_assignment_to timestamp with time zone,
compartment_id varchar2,
is_enforced_always number,
l_comment varchar2,
is_log_forwarded number,
remote_syslog_server_address varchar2,
remote_syslog_server_port number,
remote_syslog_server_ca_cert varchar2,
is_auto_approve_during_maintenance number,
freeform_tags json_element_t,
defined_tags json_element_t
) RETURN SELF AS RESULT
) NOT PERSISTABLE;Fields
| Field | Description |
|---|---|
|
|
(required) The OCID of the operator control that is being assigned to a target resource. |
|
|
(required) The OCID of the target resource being brought under the governance of the operator control. |
|
|
(required) Name of the target resource. |
|
|
(required) Type of the target resource. Allowed values are: 'EXACC', 'EXADATAINFRASTRUCTURE', 'AUTONOMOUSVMCLUSTER', 'CLOUDAUTONOMOUSVMCLUSTER', 'CCCINFRASTRUCTURE' |
|
|
(required) The OCID of the compartment that contains the target resource. |
|
|
(optional) The time at which the target resource will be brought under the governance of the operator control in RFC 3339 timestamp format. Example: '2020-05-22T21:10:29.600Z' |
|
|
(optional) The time at which the target resource will leave the governance of the operator control in RFC 3339timestamp format.Example: '2020-05-22T21:10:29.600Z' |
|
|
(required) The OCID of the compartment that contains the operator control assignment. |
|
|
(required) If set, then the target resource is always governed by the operator control. |
|
|
(optional) Comment about the assignment of the operator control to this target resource. |
|
|
(optional) If set, then the audit logs will be forwarded to the relevant remote logging server |
|
|
(optional) The address of the remote syslog server where the audit logs will be forwarded to. Address in host or IP format. |
|
|
(optional) The listening port of the remote syslog server. The port range is 0 - 65535. Only TCP supported. |
|
|
(optional) The CA certificate of the remote syslog server. Identity of the remote syslog server will be asserted based on this certificate. |
|
|
(optional) The boolean if true would autoApprove during maintenance. |
|
|
(optional) Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. |
|
|
(optional) Defined tags for this resource. Each key is predefined and scoped to a namespace. |
DBMS_CLOUD_OCI_OPERATOR_ACCESS_CONTROL_CREATE_OPERATOR_CONTROL_DETAILS_T Type
While creating the operator control, specify how operator actions are approved and the users who have the privilege of approving the operator actions associated with the Operator Control. You must specify which operator actions must be pre-approved. The rest of the operator actions associated with the Operator Control will require an explicit approval from the users selected either through the approver groups or individually. You must name your Operator Control appropriately so it reflects the resources that will be governed by the Operator Control. Neither the Operator Controls nor their assignments to resources are visible to the Oracle operators.
Syntax
CREATE OR REPLACE NONEDITIONABLE TYPE dbms_cloud_oci_operator_access_control_create_operator_control_details_t FORCE AUTHID CURRENT_USER IS OBJECT (
operator_control_name varchar2(32767),
description varchar2(32767),
approvers_list dbms_cloud_oci_operator_access_control_varchar2_tbl,
approver_groups_list dbms_cloud_oci_operator_access_control_varchar2_tbl,
pre_approved_op_action_list dbms_cloud_oci_operator_access_control_varchar2_tbl,
is_fully_pre_approved number,
resource_type varchar2(32767),
email_id_list dbms_cloud_oci_operator_access_control_varchar2_tbl,
system_message varchar2(32767),
compartment_id varchar2(32767),
freeform_tags json_element_t,
defined_tags json_element_t,
CONSTRUCTOR FUNCTION dbms_cloud_oci_operator_access_control_create_operator_control_details_t
RETURN SELF AS RESULT,
CONSTRUCTOR FUNCTION dbms_cloud_oci_operator_access_control_create_operator_control_details_t (
operator_control_name varchar2,
description varchar2,
approvers_list dbms_cloud_oci_operator_access_control_varchar2_tbl,
approver_groups_list dbms_cloud_oci_operator_access_control_varchar2_tbl,
pre_approved_op_action_list dbms_cloud_oci_operator_access_control_varchar2_tbl,
is_fully_pre_approved number,
resource_type varchar2,
email_id_list dbms_cloud_oci_operator_access_control_varchar2_tbl,
system_message varchar2,
compartment_id varchar2,
freeform_tags json_element_t,
defined_tags json_element_t
) RETURN SELF AS RESULT
) NOT PERSISTABLE;Fields
| Field | Description |
|---|---|
|
|
(required) Name of the operator control. |
|
|
(optional) Description of the operator control. |
|
|
(optional) List of users who can approve an access request associated with a resource governed by this operator control. |
|
|
(required) List of user groups who can approve an access request associated with a resource governed by this operator control. |
|
|
(optional) List of pre-approved operator actions. Access requests associated with a resource governed by this operator control will be auto-approved if the access request only contain operator actions in the pre-approved list. |
|
|
(required) Whether all the operator actions have been pre-approved. If yes, all access requests associated with a resource governed by this operator control will be auto-approved. |
|
|
(required) resourceType for which the OperatorControl is applicable Allowed values are: 'EXACC', 'EXADATAINFRASTRUCTURE', 'AUTONOMOUSVMCLUSTER', 'CLOUDAUTONOMOUSVMCLUSTER', 'CCCINFRASTRUCTURE' |
|
|
(optional) List of emailId. |
|
|
(optional) This is the message that will be displayed to the operator users while accessing the system. |
|
|
(required) The OCID of the compartment that contains this operator control. |
|
|
(optional) Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. |
|
|
(optional) Defined tags for this resource. Each key is predefined and scoped to a namespace. |
DBMS_CLOUD_OCI_OPERATOR_ACCESS_CONTROL_ERROR_T Type
Error Information.
Syntax
CREATE OR REPLACE NONEDITIONABLE TYPE dbms_cloud_oci_operator_access_control_error_t FORCE AUTHID CURRENT_USER IS OBJECT (
code varchar2(32767),
message varchar2(32767),
CONSTRUCTOR FUNCTION dbms_cloud_oci_operator_access_control_error_t
RETURN SELF AS RESULT,
CONSTRUCTOR FUNCTION dbms_cloud_oci_operator_access_control_error_t (
code varchar2,
message varchar2
) RETURN SELF AS RESULT
) NOT PERSISTABLE;Fields
| Field | Description |
|---|---|
|
|
(required) A short error code that defines the error, meant for programmatic parsing. |
|
|
(required) A human-readable error string. |
DBMS_CLOUD_OCI_OPERATOR_ACCESS_CONTROL_INTERACTION_SUMMARY_T Type
Summary of access request customer and operator conversation.
Syntax
CREATE OR REPLACE NONEDITIONABLE TYPE dbms_cloud_oci_operator_access_control_interaction_summary_t FORCE AUTHID CURRENT_USER IS OBJECT (
id varchar2(32767),
user_id varchar2(32767),
user_name varchar2(32767),
message varchar2(32767),
user_type varchar2(32767),
time_of_conversation timestamp with time zone,
CONSTRUCTOR FUNCTION dbms_cloud_oci_operator_access_control_interaction_summary_t
RETURN SELF AS RESULT,
CONSTRUCTOR FUNCTION dbms_cloud_oci_operator_access_control_interaction_summary_t (
id varchar2,
user_id varchar2,
user_name varchar2,
message varchar2,
user_type varchar2,
time_of_conversation timestamp with time zone
) RETURN SELF AS RESULT
) NOT PERSISTABLE;Fields
| Field | Description |
|---|---|
|
|
(optional) The uniqueId of the message. |
|
|
(optional) customer or operator id who is part of this conversation. |
|
|
(optional) customer or operator Name who is part of this conversation. |
|
|
(optional) contains the information exchanged between operator and customer. |
|
|
(optional) Whether the userConversation is an operator or customer. |
|
|
(optional) Time when the conversation happened in RFC 3339timestamp format. Example: '2020-05-22T21:10:29.600Z' |
DBMS_CLOUD_OCI_OPERATOR_ACCESS_CONTROL_INTERACTION_SUMMARY_TBL Type
Nested table type of dbms_cloud_oci_operator_access_control_interaction_summary_t.
Syntax
CREATE OR REPLACE NONEDITIONABLE TYPE dbms_cloud_oci_operator_access_control_interaction_summary_tbl FORCE IS TABLE OF (dbms_cloud_oci_operator_access_control_interaction_summary_t) NOT PERSISTABLE;DBMS_CLOUD_OCI_OPERATOR_ACCESS_CONTROL_INTERACTION_COLLECTION_T Type
Results of access request additionalInfo search, which contains details of the conversation between customer and operator.
Syntax
CREATE OR REPLACE NONEDITIONABLE TYPE dbms_cloud_oci_operator_access_control_interaction_collection_t FORCE AUTHID CURRENT_USER IS OBJECT (
items dbms_cloud_oci_operator_access_control_interaction_summary_tbl,
CONSTRUCTOR FUNCTION dbms_cloud_oci_operator_access_control_interaction_collection_t
RETURN SELF AS RESULT,
CONSTRUCTOR FUNCTION dbms_cloud_oci_operator_access_control_interaction_collection_t (
items dbms_cloud_oci_operator_access_control_interaction_summary_tbl
) RETURN SELF AS RESULT
) NOT PERSISTABLE;Fields
| Field | Description |
|---|---|
|
|
(required) contains InteractionSummary |
DBMS_CLOUD_OCI_OPERATOR_ACCESS_CONTROL_INTERACTION_REQUEST_DETAILS_T Type
Details for asking to provide more information to operators.
Syntax
CREATE OR REPLACE NONEDITIONABLE TYPE dbms_cloud_oci_operator_access_control_interaction_request_details_t FORCE AUTHID CURRENT_USER IS OBJECT (
more_info_details varchar2(32767),
CONSTRUCTOR FUNCTION dbms_cloud_oci_operator_access_control_interaction_request_details_t
RETURN SELF AS RESULT,
CONSTRUCTOR FUNCTION dbms_cloud_oci_operator_access_control_interaction_request_details_t (
more_info_details varchar2
) RETURN SELF AS RESULT
) NOT PERSISTABLE;Fields
| Field | Description |
|---|---|
|
|
(optional) questions for asking to provide more information to operators. |
DBMS_CLOUD_OCI_OPERATOR_ACCESS_CONTROL_OPERATOR_ACTION_PROPERTIES_T Type
Details of the properties of operator action.
Syntax
CREATE OR REPLACE NONEDITIONABLE TYPE dbms_cloud_oci_operator_access_control_operator_action_properties_t FORCE AUTHID CURRENT_USER IS OBJECT (
name varchar2(32767),
value varchar2(32767),
CONSTRUCTOR FUNCTION dbms_cloud_oci_operator_access_control_operator_action_properties_t
RETURN SELF AS RESULT,
CONSTRUCTOR FUNCTION dbms_cloud_oci_operator_access_control_operator_action_properties_t (
name varchar2,
value varchar2
) RETURN SELF AS RESULT
) NOT PERSISTABLE;Fields
| Field | Description |
|---|---|
|
|
(optional) Name of the property |
|
|
(optional) value of the property |
DBMS_CLOUD_OCI_OPERATOR_ACCESS_CONTROL_OPERATOR_ACTION_PROPERTIES_TBL Type
Nested table type of dbms_cloud_oci_operator_access_control_operator_action_properties_t.
Syntax
CREATE OR REPLACE NONEDITIONABLE TYPE dbms_cloud_oci_operator_access_control_operator_action_properties_tbl FORCE IS TABLE OF (dbms_cloud_oci_operator_access_control_operator_action_properties_t) NOT PERSISTABLE;DBMS_CLOUD_OCI_OPERATOR_ACCESS_CONTROL_OPERATOR_ACTION_T Type
Details of the operator action. Operator actions are a pre-defined set of commands available to the operator on different layers of the infrastructure. Although the groupings may differ depending on the infrastructure layers, the groups are designed to enable the operator access to commands to resolve a specific set of issues. The infrastructure layers controlled by the Operator Control include Dom0, CellServer, and Control Plane Server (CPS). There are five groups available to the operator. x-obmcs-top-level-enum: '#/definitions/OperatorActionCategories' enum: *OPERATORACTIONCATEGORIES The following infrastructure layers are controlled by the operator actions x-obmcs-top-level-enum: '#/definitions/InfrastructureLayers' enum: *INFRASTRUCTURELAYERS
Syntax
CREATE OR REPLACE NONEDITIONABLE TYPE dbms_cloud_oci_operator_access_control_operator_action_t FORCE AUTHID CURRENT_USER IS OBJECT (
id varchar2(32767),
name varchar2(32767),
customer_display_name varchar2(32767),
component varchar2(32767),
resource_type varchar2(32767),
description varchar2(32767),
properties dbms_cloud_oci_operator_access_control_operator_action_properties_tbl,
CONSTRUCTOR FUNCTION dbms_cloud_oci_operator_access_control_operator_action_t
RETURN SELF AS RESULT,
CONSTRUCTOR FUNCTION dbms_cloud_oci_operator_access_control_operator_action_t (
id varchar2,
name varchar2,
customer_display_name varchar2,
component varchar2,
resource_type varchar2,
description varchar2,
properties dbms_cloud_oci_operator_access_control_operator_action_properties_tbl
) RETURN SELF AS RESULT
) NOT PERSISTABLE;Fields
| Field | Description |
|---|---|
|
|
(required) Unique Oracle assigned identifier for the operator action. |
|
|
(required) Unique name of the operator action. |
|
|
(optional) Display Name of the operator action. |
|
|
(optional) Name of the infrastructure layer associated with the operator action. |
|
|
(optional) resourceType for which the OperatorAction is applicable Allowed values are: 'EXACC', 'EXADATAINFRASTRUCTURE', 'AUTONOMOUSVMCLUSTER', 'CLOUDAUTONOMOUSVMCLUSTER', 'CCCINFRASTRUCTURE' |
|
|
(optional) Description of the operator action in terms of associated risk profile, and characteristics of the operating system commands made available to the operator under this operator action. |
|
|
(optional) Fine grained properties associated with the operator control. |
DBMS_CLOUD_OCI_OPERATOR_ACCESS_CONTROL_OPERATOR_ACTION_SUMMARY_T Type
Details of the operator action. Operator actions are pre-defined set of commands available to the operator on different layers of the infrastructure.
Syntax
CREATE OR REPLACE NONEDITIONABLE TYPE dbms_cloud_oci_operator_access_control_operator_action_summary_t FORCE AUTHID CURRENT_USER IS OBJECT (
id varchar2(32767),
name varchar2(32767),
component varchar2(32767),
compartment_id varchar2(32767),
resource_type varchar2(32767),
lifecycle_state varchar2(32767),
description varchar2(32767),
CONSTRUCTOR FUNCTION dbms_cloud_oci_operator_access_control_operator_action_summary_t
RETURN SELF AS RESULT,
CONSTRUCTOR FUNCTION dbms_cloud_oci_operator_access_control_operator_action_summary_t (
id varchar2,
name varchar2,
component varchar2,
compartment_id varchar2,
resource_type varchar2,
lifecycle_state varchar2,
description varchar2
) RETURN SELF AS RESULT
) NOT PERSISTABLE;Fields
| Field | Description |
|---|---|
|
|
(required) Unique identifier assigned by Oracle to an operator action. |
|
|
(required) Name of the operator action. |
|
|
(optional) Name of the component for which the operator action is applicable. |
|
|
(optional) compartmentId for which the OperatorAction is applicable |
|
|
(optional) resourceType for which the OperatorAction is applicable Allowed values are: 'EXACC', 'EXADATAINFRASTRUCTURE', 'AUTONOMOUSVMCLUSTER', 'CLOUDAUTONOMOUSVMCLUSTER', 'CCCINFRASTRUCTURE' |
|
|
(optional) The current lifecycle state of the operator action. Allowed values are: 'ACTIVE', 'INACTIVE' |
|
|
(optional) Description of the operator action in terms of associated risk profile, and characteristics of the operating system commands made available to the operator under this operator action. |
DBMS_CLOUD_OCI_OPERATOR_ACCESS_CONTROL_OPERATOR_ACTION_SUMMARY_TBL Type
Nested table type of dbms_cloud_oci_operator_access_control_operator_action_summary_t.
Syntax
CREATE OR REPLACE NONEDITIONABLE TYPE dbms_cloud_oci_operator_access_control_operator_action_summary_tbl FORCE IS TABLE OF (dbms_cloud_oci_operator_access_control_operator_action_summary_t) NOT PERSISTABLE;DBMS_CLOUD_OCI_OPERATOR_ACCESS_CONTROL_OPERATOR_ACTION_COLLECTION_T Type
Results of operator action search, which contains summary of the action.
Syntax
CREATE OR REPLACE NONEDITIONABLE TYPE dbms_cloud_oci_operator_access_control_operator_action_collection_t FORCE AUTHID CURRENT_USER IS OBJECT (
items dbms_cloud_oci_operator_access_control_operator_action_summary_tbl,
CONSTRUCTOR FUNCTION dbms_cloud_oci_operator_access_control_operator_action_collection_t
RETURN SELF AS RESULT,
CONSTRUCTOR FUNCTION dbms_cloud_oci_operator_access_control_operator_action_collection_t (
items dbms_cloud_oci_operator_access_control_operator_action_summary_tbl
) RETURN SELF AS RESULT
) NOT PERSISTABLE;Fields
| Field | Description |
|---|---|
|
|
(required) contains OperatorActionSummary |
DBMS_CLOUD_OCI_OPERATOR_ACCESS_CONTROL_OPERATOR_CONTROL_T Type
Operator Access Control enables you to grant, audit, or revoke the access Oracle has to your Exadata Cloud@Customer infrastructure, and obtain audit reports of all actions taken by a human operator, in a near real-time manner.
Syntax
CREATE OR REPLACE NONEDITIONABLE TYPE dbms_cloud_oci_operator_access_control_operator_control_t FORCE AUTHID CURRENT_USER IS OBJECT (
id varchar2(32767),
operator_control_name varchar2(32767),
description varchar2(32767),
approvers_list dbms_cloud_oci_operator_access_control_varchar2_tbl,
approver_groups_list dbms_cloud_oci_operator_access_control_varchar2_tbl,
pre_approved_op_action_list dbms_cloud_oci_operator_access_control_varchar2_tbl,
approval_required_op_action_list dbms_cloud_oci_operator_access_control_varchar2_tbl,
is_fully_pre_approved number,
email_id_list dbms_cloud_oci_operator_access_control_varchar2_tbl,
resource_type varchar2(32767),
system_message varchar2(32767),
compartment_id varchar2(32767),
lifecycle_state varchar2(32767),
time_of_creation timestamp with time zone,
time_of_modification timestamp with time zone,
is_default_operator_control number,
time_of_deletion timestamp with time zone,
last_modified_info varchar2(32767),
freeform_tags json_element_t,
defined_tags json_element_t,
CONSTRUCTOR FUNCTION dbms_cloud_oci_operator_access_control_operator_control_t
RETURN SELF AS RESULT,
CONSTRUCTOR FUNCTION dbms_cloud_oci_operator_access_control_operator_control_t (
id varchar2,
operator_control_name varchar2,
description varchar2,
approvers_list dbms_cloud_oci_operator_access_control_varchar2_tbl,
approver_groups_list dbms_cloud_oci_operator_access_control_varchar2_tbl,
pre_approved_op_action_list dbms_cloud_oci_operator_access_control_varchar2_tbl,
approval_required_op_action_list dbms_cloud_oci_operator_access_control_varchar2_tbl,
is_fully_pre_approved number,
email_id_list dbms_cloud_oci_operator_access_control_varchar2_tbl,
resource_type varchar2,
system_message varchar2,
compartment_id varchar2,
lifecycle_state varchar2,
time_of_creation timestamp with time zone,
time_of_modification timestamp with time zone,
is_default_operator_control number,
time_of_deletion timestamp with time zone,
last_modified_info varchar2,
freeform_tags json_element_t,
defined_tags json_element_t
) RETURN SELF AS RESULT
) NOT PERSISTABLE;Fields
| Field | Description |
|---|---|
|
|
(required) The OCID of the operator control. |
|
|
(required) Name of the operator control. The name must be unique. |
|
|
(optional) Description of operator control. |
|
|
(optional) List of users who can approve an access request associated with a target resource under the governance of this operator control. |
|
|
(optional) List of user groups who can approve an access request associated with a target resource under the governance of this operator control. |
|
|
(optional) List of pre-approved operator actions. Access requests associated with a resource governed by this operator control will be automatically approved if the access request only contain operator actions in the pre-approved list. |
|
|
(optional) List of operator actions that need explicit approval. Any operator action not in the pre-approved list will require explicit approval. Access requests associated with a resource governed by this operator control will be require explicit approval if the access request contains any operator action in this list. |
|
|
(optional) Whether all the operator actions have been pre-approved. If yes, all access requests associated with a resource governed by this operator control will be auto-approved. |
|
|
(optional) List of emailId. |
|
|
(optional) resourceType for which the OperatorControl is applicable Allowed values are: 'EXACC', 'EXADATAINFRASTRUCTURE', 'AUTONOMOUSVMCLUSTER', 'CLOUDAUTONOMOUSVMCLUSTER', 'CCCINFRASTRUCTURE' |
|
|
(optional) System message that would be displayed to the operator users on accessing the target resource under the governance of this operator control. |
|
|
(required) The OCID of the compartment that contains the operator control. |
|
|
(optional) The current lifecycle state of the operator control. Allowed values are: 'CREATED', 'ASSIGNED', 'UNASSIGNED', 'DELETED' |
|
|
(optional) Time when the operator control was created expressed in RFC 3339 timestamp format. Example: '2020-05-22T21:10:29.600Z' |
|
|
(optional) Time when the operator control was last modified expressed in RFC 3339 timestamp format. Example: '2020-05-22T21:10:29.600Z' |
|
|
(optional) Whether the operator control is a default Operator Control. |
|
|
(optional) Time when deleted expressed in RFC 3339timestamp format. Example: '2020-05-22T21:10:29.600Z'. Note a deleted operator control still stays in the system, so that you can still audit operator actions associated with access requests raised on target resources governed by the deleted operator control. |
|
|
(optional) Description associated with the latest modification of the operator control. |
|
|
(optional) Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. |
|
|
(optional) Defined tags for this resource. Each key is predefined and scoped to a namespace. |
DBMS_CLOUD_OCI_OPERATOR_ACCESS_CONTROL_OPERATOR_CONTROL_ASSIGNMENT_T Type
An Operator Control Assignment identifies the target resource that is placed under the governance of an Operator Control. Creating an Operator Control Assignment Assignment with a time duration ensures that human accesses to the target resource will be governed by Operator Control for the duration specified.
Syntax
CREATE OR REPLACE NONEDITIONABLE TYPE dbms_cloud_oci_operator_access_control_operator_control_assignment_t FORCE AUTHID CURRENT_USER IS OBJECT (
id varchar2(32767),
operator_control_id varchar2(32767),
resource_id varchar2(32767),
resource_name varchar2(32767),
resource_compartment_id varchar2(32767),
compartment_id varchar2(32767),
resource_type varchar2(32767),
time_assignment_from timestamp with time zone,
time_assignment_to timestamp with time zone,
is_enforced_always number,
lifecycle_state varchar2(32767),
lifecycle_details varchar2(32767),
assigner_id varchar2(32767),
time_of_assignment timestamp with time zone,
l_comment varchar2(32767),
unassigner_id varchar2(32767),
time_of_deletion timestamp with time zone,
detachment_description varchar2(32767),
is_log_forwarded number,
remote_syslog_server_address varchar2(32767),
remote_syslog_server_port number,
remote_syslog_server_ca_cert varchar2(32767),
is_auto_approve_during_maintenance number,
error_code number,
error_message varchar2(32767),
is_default_assignment number,
freeform_tags json_element_t,
defined_tags json_element_t,
CONSTRUCTOR FUNCTION dbms_cloud_oci_operator_access_control_operator_control_assignment_t
RETURN SELF AS RESULT,
CONSTRUCTOR FUNCTION dbms_cloud_oci_operator_access_control_operator_control_assignment_t (
id varchar2,
operator_control_id varchar2,
resource_id varchar2,
resource_name varchar2,
resource_compartment_id varchar2,
compartment_id varchar2,
resource_type varchar2,
time_assignment_from timestamp with time zone,
time_assignment_to timestamp with time zone,
is_enforced_always number,
lifecycle_state varchar2,
lifecycle_details varchar2,
assigner_id varchar2,
time_of_assignment timestamp with time zone,
l_comment varchar2,
unassigner_id varchar2,
time_of_deletion timestamp with time zone,
detachment_description varchar2,
is_log_forwarded number,
remote_syslog_server_address varchar2,
remote_syslog_server_port number,
remote_syslog_server_ca_cert varchar2,
is_auto_approve_during_maintenance number,
error_code number,
error_message varchar2,
is_default_assignment number,
freeform_tags json_element_t,
defined_tags json_element_t
) RETURN SELF AS RESULT
) NOT PERSISTABLE;Fields
| Field | Description |
|---|---|
|
|
(required) The OCID of the operator control assignment. |
|
|
(required) The OCID of the operator control. |
|
|
(required) The OCID of the target resource. |
|
|
(required) Name of the target resource. |
|
|
(optional) The OCID of the compartment that contains the target resource. |
|
|
(optional) The OCID of the comparment that contains the operator control assignment. |
|
|
(optional) resourceType for which the OperatorControlAssignment is applicable Allowed values are: 'EXACC', 'EXADATAINFRASTRUCTURE', 'AUTONOMOUSVMCLUSTER', 'CLOUDAUTONOMOUSVMCLUSTER', 'CCCINFRASTRUCTURE' |
|
|
(optional) The time at which the target resource will be brought under the governance of the operator control expressed in RFC 3339 timestamp format. Example: '2020-05-22T21:10:29.600Z' |
|
|
(optional) The time at which the target resource will leave the governance of the operator control expressed in RFC 3339 timestamp format. Example: '2020-05-22T21:10:29.600Z' |
|
|
(optional) If set, then the target resource is always governed by the operator control. |
|
|
(optional) The current lifcycle state of the OperatorControl. Allowed values are: 'CREATED', 'APPLIED', 'APPLYFAILED', 'UPDATING', 'UPDATEFAILED', 'DELETING', 'DELETED', 'DELETIONFAILED' |
|
|
(optional) More in detail about the lifeCycleState. |
|
|
(optional) The OCID of the user who created this operator control assignment. |
|
|
(optional) Time when the operator control assignment is created in RFC 3339 timestamp format. Example: '2020-05-22T21:10:29.600Z' |
|
|
(optional) Comment about the assignment of the operator control to this target resource. |
|
|
(optional) User id who released the operatorControl. |
|
|
(optional) Time on which the operator control assignment was deleted in RFC 3339timestamp format.Example: '2020-05-22T21:10:29.600Z' |
|
|
(optional) description containing reason for releasing of OperatorControl. |
|
|
(optional) If set indicates that the audit logs are being forwarded to the relevant remote logging server |
|
|
(optional) The address of the remote syslog server where the audit logs are being forwarded to. Address in host or IP format. |
|
|
(optional) The listening port of the remote syslog server. The port range is 0 - 65535. Only TCP supported. |
|
|
(optional) The CA certificate of the remote syslog server. |
|
|
(optional) The boolean if true would autoApprove during maintenance. |
|
|
(optional) The code identifying the error occurred during Assignment operation. |
|
|
(optional) The message describing the error occurred during Assignment operation. |
|
|
(optional) Whether the assignment is a default assignment. |
|
|
(optional) Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. |
|
|
(optional) Defined tags for this resource. Each key is predefined and scoped to a namespace. |
DBMS_CLOUD_OCI_OPERATOR_ACCESS_CONTROL_OPERATOR_CONTROL_ASSIGNMENT_SUMMARY_T Type
Details of the operator control assignment.
Syntax
CREATE OR REPLACE NONEDITIONABLE TYPE dbms_cloud_oci_operator_access_control_operator_control_assignment_summary_t FORCE AUTHID CURRENT_USER IS OBJECT (
id varchar2(32767),
operator_control_id varchar2(32767),
resource_id varchar2(32767),
compartment_id varchar2(32767),
resource_type varchar2(32767),
time_assignment_from timestamp with time zone,
time_assignment_to timestamp with time zone,
is_enforced_always number,
time_of_assignment timestamp with time zone,
error_code number,
error_message varchar2(32767),
is_log_forwarded number,
remote_syslog_server_address varchar2(32767),
remote_syslog_server_port number,
lifecycle_state varchar2(32767),
lifecycle_details varchar2(32767),
freeform_tags json_element_t,
defined_tags json_element_t,
CONSTRUCTOR FUNCTION dbms_cloud_oci_operator_access_control_operator_control_assignment_summary_t
RETURN SELF AS RESULT,
CONSTRUCTOR FUNCTION dbms_cloud_oci_operator_access_control_operator_control_assignment_summary_t (
id varchar2,
operator_control_id varchar2,
resource_id varchar2,
compartment_id varchar2,
resource_type varchar2,
time_assignment_from timestamp with time zone,
time_assignment_to timestamp with time zone,
is_enforced_always number,
time_of_assignment timestamp with time zone,
error_code number,
error_message varchar2,
is_log_forwarded number,
remote_syslog_server_address varchar2,
remote_syslog_server_port number,
lifecycle_state varchar2,
lifecycle_details varchar2,
freeform_tags json_element_t,
defined_tags json_element_t
) RETURN SELF AS RESULT
) NOT PERSISTABLE;Fields
| Field | Description |
|---|---|
|
|
(required) The OCID of the operator control assignment. |
|
|
(required) The OCID of the operator control. |
|
|
(required) The OCID of the target resource being governed by the operator control. |
|
|
(required) The OCID of the compartment that contains the operator control assignment. |
|
|
(optional) resourceType for which the OperatorControlAssignment is applicable Allowed values are: 'EXACC', 'EXADATAINFRASTRUCTURE', 'AUTONOMOUSVMCLUSTER', 'CLOUDAUTONOMOUSVMCLUSTER', 'CCCINFRASTRUCTURE' |
|
|
(optional) The time at which the target resource will be brought under the governance of the operator control in RFC 3339 timestamp format. Example: '2020-05-22T21:10:29.600Z' |
|
|
(optional) The time at which the target resource will leave the governance of the operator control in RFC 3339timestamp format.Example: '2020-05-22T21:10:29.600Z' |
|
|
(optional) If true, then the target resource is always governed by the operator control. Otherwise governance is time-based as specified by timeAssignmentTo and timeAssignmentFrom. |
|
|
(optional) Time when the operator control assignment is created in RFC 3339 timestamp format. Example: '2020-05-22T21:10:29.600Z' |
|
|
(optional) The code identifying the error occurred during Assignment operation. |
|
|
(optional) The message describing the error occurred during Assignment operation. |
|
|
(optional) If set, then the audit logs are being forwarded to the relevant remote logging server |
|
|
(optional) The address of the remote syslog server where the audit logs are being forwarded to. Address in host or IP format. |
|
|
(optional) The listening port of the remote syslog server. The port range is 0 - 65535. |
|
|
(optional) The current lifcycle state of the OperatorControl. Allowed values are: 'CREATED', 'APPLIED', 'APPLYFAILED', 'UPDATING', 'UPDATEFAILED', 'DELETING', 'DELETED', 'DELETIONFAILED' |
|
|
(optional) More in detail about the lifeCycleState. |
|
|
(optional) Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. |
|
|
(optional) Defined tags for this resource. Each key is predefined and scoped to a namespace. |
DBMS_CLOUD_OCI_OPERATOR_ACCESS_CONTROL_OPERATOR_CONTROL_ASSIGNMENT_SUMMARY_TBL Type
Nested table type of dbms_cloud_oci_operator_access_control_operator_control_assignment_summary_t.
Syntax
CREATE OR REPLACE NONEDITIONABLE TYPE dbms_cloud_oci_operator_access_control_operator_control_assignment_summary_tbl FORCE IS TABLE OF (dbms_cloud_oci_operator_access_control_operator_control_assignment_summary_t) NOT PERSISTABLE;DBMS_CLOUD_OCI_OPERATOR_ACCESS_CONTROL_OPERATOR_CONTROL_ASSIGNMENT_COLLECTION_T Type
Results of Operator Control assignment search, which contains summary of the assignment.
Syntax
CREATE OR REPLACE NONEDITIONABLE TYPE dbms_cloud_oci_operator_access_control_operator_control_assignment_collection_t FORCE AUTHID CURRENT_USER IS OBJECT (
items dbms_cloud_oci_operator_access_control_operator_control_assignment_summary_tbl,
CONSTRUCTOR FUNCTION dbms_cloud_oci_operator_access_control_operator_control_assignment_collection_t
RETURN SELF AS RESULT,
CONSTRUCTOR FUNCTION dbms_cloud_oci_operator_access_control_operator_control_assignment_collection_t (
items dbms_cloud_oci_operator_access_control_operator_control_assignment_summary_tbl
) RETURN SELF AS RESULT
) NOT PERSISTABLE;Fields
| Field | Description |
|---|---|
|
|
(required) contains OperatorControlAssignmentSummary |
DBMS_CLOUD_OCI_OPERATOR_ACCESS_CONTROL_OPERATOR_CONTROL_SUMMARY_T Type
Summary of the OperatorControl.
Syntax
CREATE OR REPLACE NONEDITIONABLE TYPE dbms_cloud_oci_operator_access_control_operator_control_summary_t FORCE AUTHID CURRENT_USER IS OBJECT (
id varchar2(32767),
operator_control_name varchar2(32767),
compartment_id varchar2(32767),
is_fully_pre_approved number,
resource_type varchar2(32767),
time_of_creation timestamp with time zone,
time_of_modification timestamp with time zone,
time_of_deletion timestamp with time zone,
lifecycle_state varchar2(32767),
freeform_tags json_element_t,
defined_tags json_element_t,
CONSTRUCTOR FUNCTION dbms_cloud_oci_operator_access_control_operator_control_summary_t
RETURN SELF AS RESULT,
CONSTRUCTOR FUNCTION dbms_cloud_oci_operator_access_control_operator_control_summary_t (
id varchar2,
operator_control_name varchar2,
compartment_id varchar2,
is_fully_pre_approved number,
resource_type varchar2,
time_of_creation timestamp with time zone,
time_of_modification timestamp with time zone,
time_of_deletion timestamp with time zone,
lifecycle_state varchar2,
freeform_tags json_element_t,
defined_tags json_element_t
) RETURN SELF AS RESULT
) NOT PERSISTABLE;Fields
| Field | Description |
|---|---|
|
|
(required) The OCID of the operator control. |
|
|
(required) Name of the operator control. |
|
|
(optional) The OCID of the compartment that contains the operator control. |
|
|
(optional) Whether all operator actions are pre-approved. If yes, an access request associated with a resource governed by the operator control will be automatically approved by the system. |
|
|
(optional) resourceType for which the OperatorControl is applicable Allowed values are: 'EXACC', 'EXADATAINFRASTRUCTURE', 'AUTONOMOUSVMCLUSTER', 'CLOUDAUTONOMOUSVMCLUSTER', 'CCCINFRASTRUCTURE' |
|
|
(optional) Time when the operator control was created, expressed in RFC 3339] timestamp format. Example: '2020-05-22T21:10:29.600Z' |
|
|
(optional) Time when the operator control was last modified, expressed in RFC 3339] timestamp format. Example: '2020-05-22T21:10:29.600Z' |
|
|
(optional) Time when the operator control was deleted, expressed in RFC 3339 timestamp format. Example: '2020-05-22T21:10:29.600Z' |
|
|
(optional) The current lifecycle state of the operator control. Allowed values are: 'CREATED', 'ASSIGNED', 'UNASSIGNED', 'DELETED' |
|
|
(optional) Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. |
|
|
(optional) Defined tags for this resource. Each key is predefined and scoped to a namespace. |
DBMS_CLOUD_OCI_OPERATOR_ACCESS_CONTROL_OPERATOR_CONTROL_SUMMARY_TBL Type
Nested table type of dbms_cloud_oci_operator_access_control_operator_control_summary_t.
Syntax
CREATE OR REPLACE NONEDITIONABLE TYPE dbms_cloud_oci_operator_access_control_operator_control_summary_tbl FORCE IS TABLE OF (dbms_cloud_oci_operator_access_control_operator_control_summary_t) NOT PERSISTABLE;DBMS_CLOUD_OCI_OPERATOR_ACCESS_CONTROL_OPERATOR_CONTROL_COLLECTION_T Type
Results of Operator Control search, which contains summary of the operator control.
Syntax
CREATE OR REPLACE NONEDITIONABLE TYPE dbms_cloud_oci_operator_access_control_operator_control_collection_t FORCE AUTHID CURRENT_USER IS OBJECT (
items dbms_cloud_oci_operator_access_control_operator_control_summary_tbl,
CONSTRUCTOR FUNCTION dbms_cloud_oci_operator_access_control_operator_control_collection_t
RETURN SELF AS RESULT,
CONSTRUCTOR FUNCTION dbms_cloud_oci_operator_access_control_operator_control_collection_t (
items dbms_cloud_oci_operator_access_control_operator_control_summary_tbl
) RETURN SELF AS RESULT
) NOT PERSISTABLE;Fields
| Field | Description |
|---|---|
|
|
(required) contains OperatorControlSummary |
DBMS_CLOUD_OCI_OPERATOR_ACCESS_CONTROL_REJECT_ACCESS_REQUEST_DETAILS_T Type
Summary of why the access request was rejected.
Syntax
CREATE OR REPLACE NONEDITIONABLE TYPE dbms_cloud_oci_operator_access_control_reject_access_request_details_t FORCE AUTHID CURRENT_USER IS OBJECT (
approver_comment varchar2(32767),
CONSTRUCTOR FUNCTION dbms_cloud_oci_operator_access_control_reject_access_request_details_t
RETURN SELF AS RESULT,
CONSTRUCTOR FUNCTION dbms_cloud_oci_operator_access_control_reject_access_request_details_t (
approver_comment varchar2
) RETURN SELF AS RESULT
) NOT PERSISTABLE;Fields
| Field | Description |
|---|---|
|
|
(optional) Comment by the approver explaining why the request is rejected. |
DBMS_CLOUD_OCI_OPERATOR_ACCESS_CONTROL_REVIEW_ACCESS_REQUEST_DETAILS_T Type
Details to mark access request in review.
Syntax
CREATE OR REPLACE NONEDITIONABLE TYPE dbms_cloud_oci_operator_access_control_review_access_request_details_t FORCE AUTHID CURRENT_USER IS OBJECT (
approver_comment varchar2(32767),
CONSTRUCTOR FUNCTION dbms_cloud_oci_operator_access_control_review_access_request_details_t
RETURN SELF AS RESULT,
CONSTRUCTOR FUNCTION dbms_cloud_oci_operator_access_control_review_access_request_details_t (
approver_comment varchar2
) RETURN SELF AS RESULT
) NOT PERSISTABLE;Fields
| Field | Description |
|---|---|
|
|
(optional) Comment by the approver explaining that the access request is in review. |
DBMS_CLOUD_OCI_OPERATOR_ACCESS_CONTROL_REVOKE_ACCESS_REQUEST_DETAILS_T Type
Summary of why the already approved access request was revoked.
Syntax
CREATE OR REPLACE NONEDITIONABLE TYPE dbms_cloud_oci_operator_access_control_revoke_access_request_details_t FORCE AUTHID CURRENT_USER IS OBJECT (
approver_comment varchar2(32767),
CONSTRUCTOR FUNCTION dbms_cloud_oci_operator_access_control_revoke_access_request_details_t
RETURN SELF AS RESULT,
CONSTRUCTOR FUNCTION dbms_cloud_oci_operator_access_control_revoke_access_request_details_t (
approver_comment varchar2
) RETURN SELF AS RESULT
) NOT PERSISTABLE;Fields
| Field | Description |
|---|---|
|
|
(optional) Comment specified by the approver explaining why the approval is revoked. |
DBMS_CLOUD_OCI_OPERATOR_ACCESS_CONTROL_UPDATE_OPERATOR_CONTROL_ASSIGNMENT_DETAILS_T Type
Details for modifying the Operator Control assignment.
Syntax
CREATE OR REPLACE NONEDITIONABLE TYPE dbms_cloud_oci_operator_access_control_update_operator_control_assignment_details_t FORCE AUTHID CURRENT_USER IS OBJECT (
time_assignment_from timestamp with time zone,
time_assignment_to timestamp with time zone,
is_enforced_always number,
l_comment varchar2(32767),
is_log_forwarded number,
remote_syslog_server_address varchar2(32767),
remote_syslog_server_port number,
remote_syslog_server_ca_cert varchar2(32767),
is_auto_approve_during_maintenance number,
freeform_tags json_element_t,
defined_tags json_element_t,
CONSTRUCTOR FUNCTION dbms_cloud_oci_operator_access_control_update_operator_control_assignment_details_t
RETURN SELF AS RESULT,
CONSTRUCTOR FUNCTION dbms_cloud_oci_operator_access_control_update_operator_control_assignment_details_t (
time_assignment_from timestamp with time zone,
time_assignment_to timestamp with time zone,
is_enforced_always number,
l_comment varchar2,
is_log_forwarded number,
remote_syslog_server_address varchar2,
remote_syslog_server_port number,
remote_syslog_server_ca_cert varchar2,
is_auto_approve_during_maintenance number,
freeform_tags json_element_t,
defined_tags json_element_t
) RETURN SELF AS RESULT
) NOT PERSISTABLE;Fields
| Field | Description |
|---|---|
|
|
(optional) The time at which the target resource will be brought under the governance of the operator control in RFC 3339 timestamp format. Example: '2020-05-22T21:10:29.600Z' |
|
|
(optional) The time at which the target resource will leave the governance of the operator control in RFC 3339timestamp format.Example: '2020-05-22T21:10:29.600Z' |
|
|
(required) If true, then the target resource is always governed by the operator control. Otherwise governance is time-based as specified by timeAssignmentTo and timeAssignmentFrom. |
|
|
(optional) Comment about the modification of the operator control assignment. |
|
|
(optional) If set, then the audit logs will be forwarded to the relevant remote logging server |
|
|
(optional) The address of the remote syslog server where the audit logs will be forwarded to. Address in host or IP format. |
|
|
(optional) The listening port of the remote syslog server. The port range is 0 - 65535. Only TCP supported. |
|
|
(optional) The CA certificate of the remote syslog server. Identity of the remote syslog server will be asserted based on this certificate. |
|
|
(optional) The boolean if true would autoApprove during maintenance. |
|
|
(optional) Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. |
|
|
(optional) Defined tags for this resource. Each key is predefined and scoped to a namespace. |
DBMS_CLOUD_OCI_OPERATOR_ACCESS_CONTROL_UPDATE_OPERATOR_CONTROL_DETAILS_T Type
Information about the new operator control.
Syntax
CREATE OR REPLACE NONEDITIONABLE TYPE dbms_cloud_oci_operator_access_control_update_operator_control_details_t FORCE AUTHID CURRENT_USER IS OBJECT (
operator_control_name varchar2(32767),
description varchar2(32767),
approvers_list dbms_cloud_oci_operator_access_control_varchar2_tbl,
approver_groups_list dbms_cloud_oci_operator_access_control_varchar2_tbl,
pre_approved_op_action_list dbms_cloud_oci_operator_access_control_varchar2_tbl,
is_fully_pre_approved number,
email_id_list dbms_cloud_oci_operator_access_control_varchar2_tbl,
system_message varchar2(32767),
freeform_tags json_element_t,
defined_tags json_element_t,
CONSTRUCTOR FUNCTION dbms_cloud_oci_operator_access_control_update_operator_control_details_t
RETURN SELF AS RESULT,
CONSTRUCTOR FUNCTION dbms_cloud_oci_operator_access_control_update_operator_control_details_t (
operator_control_name varchar2,
description varchar2,
approvers_list dbms_cloud_oci_operator_access_control_varchar2_tbl,
approver_groups_list dbms_cloud_oci_operator_access_control_varchar2_tbl,
pre_approved_op_action_list dbms_cloud_oci_operator_access_control_varchar2_tbl,
is_fully_pre_approved number,
email_id_list dbms_cloud_oci_operator_access_control_varchar2_tbl,
system_message varchar2,
freeform_tags json_element_t,
defined_tags json_element_t
) RETURN SELF AS RESULT
) NOT PERSISTABLE;Fields
| Field | Description |
|---|---|
|
|
(required) Name of the operator control. |
|
|
(optional) Description of the operator control. |
|
|
(optional) List of users who can approve an access request associated with a target resource under the governance of this operator control. |
|
|
(required) List of user groups who can approve an access request associated with a target resource under the governance of this operator control. |
|
|
(optional) List of pre-approved operator actions. Access requests associated with a resource governed by this operator control will be automatically approved if the access request only contain operator actions in the pre-approved list. |
|
|
(required) Whether all the operator actions have been pre-approved. If yes, all access requests associated with a resource governed by this operator control will be auto-approved. |
|
|
(optional) List of emailId. |
|
|
(optional) System message that would be displayed to the operator users on accessing the target resource under the governance of this operator control. |
|
|
(optional) Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. |
|
|
(optional) Defined tags for this resource. Each key is predefined and scoped to a namespace. |