Details for the Java Management Service

This topic covers details for writing policies to control access to the Java Management service.

Resource-Types

fleets

jms-plugins

java-download-tokens

java-download-reports

Supported Variables

Only the general variables are supported (see General Variables for All Requests).

Details for Verb + Resource-Type Combinations

The following tables show the permissions and API operations covered by each verb. The level of access is cumulative as you go from inspect > read > use > manage. For example, a group that can use a resource can also inspect and read that resource. A plus sign (+) in a table cell indicates incremental access compared to the cell directly above it, whereas "no extra" indicates no incremental access.

fleets


Verbs	Permissions	APIs Fully Covered	APIs Partially Covered
inspect	FLEET_INSPECT	`ListFleets` `ListWorkRequest` `ListWorkRequestErrors` `ListWorkRequestLogs`	none
read	INSPECT + FLEET_READ FLEET_QUERY_RESOURCES	`GetFleet` `GetWorkRequest` `SummarizeJres` `RequestSummarizedJres` `SummarizeApplications` `RequestSummarizedApplications` `SummarizeInstallations` `RequestSummarizedInstallations` `SummarizeManagedInstances` `RequestSummarizedManagedInstances` `GetFleetAdvancedFeatureConfiguration`	none
use	READ + FLEET_UPDATE	`UpdateFleet`	none
manage	USE + FLEET_CREATE FLEET_DELETE FLEET_MOVE FLEET_ADVANCED_FEATURES_UPDATE	`CreateFleet` `DeleteFleet` `ChangeFleetCompartment` `UpdateFleetAdvancedFeatureConfiguration`	none

jms-plugins


Verbs	Permissions	APIs Fully Covered	APIs Partially Covered
inspect	JMS_PLUGIN_INSPECT	`ListJmsPlugins`	none
read	INSPECT + JMS_PLUGIN_READ	`GetJmsPlugin`	none
use	READ + JMS_PLUGIN_UPDATE	`UpdateJmsPlugin`	none
manage	USE + JMS_PLUGIN_CREATE+JMS_PLUGIN_DELETE	`CreateJmsPlugin` `DeleteJmsPlugin`	none

java-download-tokens


Verbs	Permissions	APIs Fully Covered	APIs Partially Covered
inspect	JAVA_DOWNLOAD_TOKEN_INSPECT	`ListJavaDownloadTokens`	none
read	INSPECT + JAVA_DOWNLOAD_TOKEN_READ	`GetJavaDownloadToken`	none
use	READ	none	none
manage	USE + JAVA_DOWNLOAD_TOKEN_CREATE JAVA_DOWNLOAD_TOKEN_UPDATE JAVA_DOWNLOAD_TOKEN_DELETE	`CreateJavaDownloadToken` `UpdateJavaDownloadToken` `DeleteJavaDownloadToken`	none

java-download-reports


Verbs	Permissions	APIs Fully Covered	APIs Partially Covered
inspect	JAVA_DOWNLOAD_REPORT_INSPECT	`ListJavaDownloadReports`	none
read	INSPECT + JAVA_DOWNLOAD_REPORT_READ	`GetJavaDownloadReport` `GetJavaDownloadReportContent` `RequestSummarizedJavaDownloadCounts` `ListJavaDownloadRecords`	none
use	READ	none	none
manage	USE + JAVA_DOWNLOAD_REPORT_CREATE JAVA_DOWNLOAD_REPORT_DELETE	`CreateJavaDownloadReport` `DeleteJavaDownloadReport`	none

Permissions Required for Each API Operation

The following table lists the Java Management Service Fleets API operations:


API Operation	Permissions Required to Use the Operation
`ListFleets`	FLEET_INSPECT
`GetFleet`	FLEET_READ
`UpdateFleet`	FLEET_UPDATE
`ChangeFleetCompartment`	FLEET_MOVE
`CreateFleet`	FLEET_CREATE
`DeleteFleet`	FLEET_DELETE
`SummarizeJres`	FLEET_READ and FLEET_QUERY_RESOURCES
`RequestSummarizedJres`	FLEET_READ and FLEET_QUERY_RESOURCES
`SummarizeApplications`	FLEET_READ and FLEET_QUERY_RESOURCES
`RequestSummarizedApplications`	FLEET_READ and FLEET_QUERY_RESOURCES
`SummarizeInstallations`	FLEET_READ and FLEET_QUERY_RESOURCES
`RequestSummarizedInstallations`	FLEET_READ and FLEET_QUERY_RESOURCES
`SummarizeManagedInstances`	FLEET_READ and FLEET_QUERY_RESOURCES
`RequestSummarizedManagedInstances`	FLEET_READ and FLEET_QUERY_RESOURCES
`ListWorkRequest`	FLEET_INSPECT
`GetWorkRequest`	FLEET_READ
`ListWorkRequestErrors`	FLEET_INSPECT
`ListWorkRequestLogs`	FLEET_INSPECT
`GetFleetAdvancedFeatureConfiguration`	FLEET_READ
`UpdateFleetAdvancedFeatureConfiguration`	FLEET_ADVANCED_FEATURES_UPDATE

The following table lists the Java Management Service JmsPlugin API operations in alphabetical order:


API Operation	Permissions Required to Use the Operation
`CreateJmsPlugin`	JMS_PLUGIN_CREATE
`DeleteJmsPlugin`	JMS_PLUGIN_DELETE
`GetJmsPlugin`	JMS_PLUGIN_READ
`ListJmsPlugins`	JMS_PLUGIN_INSPECT
`UpdateJmsPlugin`	JMS_PLUGIN_UPDATE

The following table lists the Java Management Service Java Download API operations in alphabetical order:


API Operation	Permissions Required to Use the Operation
`CreateJavaDownloadReport`	JAVA_DOWNLOAD_REPORT_CREATE
`CreateJavaDownloadToken`	JAVA_DOWNLOAD_TOKEN_CREATE
`DeleteJavaDownloadReport`	JAVA_DOWNLOAD_REPORT_DELETE
`DeleteJavaDownloadToken`	JAVA_DOWNLOAD_TOKEN_DELETE
`GetJavaDownloadReport`	JAVA_DOWNLOAD_REPORT_READ
`GetJavaDownloadReportContent`	JAVA_DOWNLOAD_REPORT_READ
`GetJavaDownloadToken`	JAVA_DOWNLOAD_TOKEN_READ
`ListJavaDownloadRecords`	JAVA_DOWNLOAD_REPORT_READ
`ListJavaDownloadReports`	JAVA_DOWNLOAD_REPORT_INSPECT
`ListJavaDownloadTokens`	JAVA_DOWNLOAD_TOKEN_INSPECT
`RequestSummarizedJavaDownloadCounts`	JAVA_DOWNLOAD_REPORT_READ
`UpdateJavaDownloadToken`	JAVA_DOWNLOAD_TOKEN_UPDATE

For information about permissions, see Permissions.

Oracle Cloud Infrastructure Documentation

Details for the Java Management Service

Resource-Types

Supported Variables

Details for Verb + Resource-Type Combinations

Permissions Required for Each API Operation