Dynamic Resource Group

Docs > DDSQL Reference > Data Directory > Dynamic Resource Group

A Dynamic Resource Group in Oracle Cloud Infrastructure (OCI) is a logical group of resources that are defined by matching rules rather than static membership. Instead of manually adding resources, you create conditions based on resource attributes, and any resource that meets those conditions automatically becomes part of the group. This is commonly used with IAM policies to grant permissions to resources that match specific criteria, such as instances with certain tags or running in specific compartments, making access control more flexible and easier to manage at scale.

oci.identitydomains_dynamic_resource_group

Fields

ID	Type	Data Type	Description
_key	core	string
cloud_account_id	core	string	The identifier of the related cloud account. The concept of an account might have different names in different cloud providers. AWS is calling it account, GCP calls it project and Azure uses the term subscription.
cloud_account_name	core	string	The name of the account this resource belongs to.
cloud_provider	core	string	The name of the cloud provider.
cloud_tags	core	hstore
compartment_id	core	string	Compartment containing the resource. Used for Access control, logical grouping, and authorization boundaries.
compartment_ocid	core	string	The value to assign to the compartment_ocid property of this DynamicResourceGroup.
created_at	core	timestamp	Time when the resource has been created.
delete_in_progress	core	bool	The value to assign to the delete_in_progress property of this DynamicResourceGroup.
description	core	string	The value to assign to the description property of this DynamicResourceGroup.
domain_ocid	core	string	The value to assign to the domain_ocid property of this DynamicResourceGroup.
dynamic_group_app_roles	core	json	The value to assign to the dynamic_group_app_roles property of this DynamicResourceGroup.
freeform_tags	core	hstore	The value to assign to the freeform_tags property of this Instance.
grants	core	json	The value to assign to the grants property of this DynamicResourceGroup.
id	core	string	The value to assign to the id property of this DynamicResourceGroup.
idcs_created_by	core	json	The value to assign to the idcs_created_by property of this DynamicResourceGroup.
idcs_last_modified_by	core	json	The value to assign to the idcs_last_modified_by property of this DynamicResourceGroup.
idcs_last_upgraded_in_release	core	string	The value to assign to the idcs_last_upgraded_in_release property of this DynamicResourceGroup.
idcs_prevented_operations	core	array<string>	The value to assign to the idcs_prevented_operations property of this DynamicResourceGroup. Allowed values for items in this list are: "replace", "update", "delete", 'UNKNOWN_ENUM_VALUE'. Any unrecognized values returned by a service will be mapped to 'UNKNOWN_ENUM_VALUE'.
matching_rule	core	string	The value to assign to the matching_rule property of this DynamicResourceGroup.
meta	core	json	The value to assign to the meta property of this DynamicResourceGroup.
name	core	string	The name of this resource.
ocid	core	string	The value to assign to the ocid property of this DynamicResourceGroup.
region_id	core	string	The region this resource resides within.
resource_type	core	string	The name of the resource type.
schemas	core	array<string>	The value to assign to the schemas property of this DynamicResourceGroup.
tags	core	hstore_csv	The value to assign to the tags property of this DynamicResourceGroup.
tenancy_ocid	core	string	The value to assign to the tenancy_ocid property of this DynamicResourceGroup.
time_created	core	timestamp	The value to assign to the time_created property of this Instance.
updated_at	core	timestamp	Time when the resource has been updated the last time.
zone_id	core	string	The zone this resource resides within.