Policy

Docs > DDSQL Reference > Data Directory > Policy

A Policy in Oracle Cloud Infrastructure (OCI) is a set of permissions that define what actions groups of users can perform on specific resources within a tenancy. Policies are written in a simple, human-readable language and are attached at the compartment or tenancy level. They enable fine-grained access control by allowing or denying operations across services, ensuring secure and controlled resource management.

oci.identitydomains_policy

Fields

ID	Type	Data Type	Description
_key	core	string
active	core	bool	The value to assign to the active property of this Policy.
cloud_account_id	core	string	The identifier of the related cloud account. The concept of an account might have different names in different cloud providers. AWS is calling it account, GCP calls it project and Azure uses the term subscription.
cloud_account_name	core	string	The name of the account this resource belongs to.
cloud_provider	core	string	The name of the cloud provider.
cloud_tags	core	hstore
compartment_id	core	string	Compartment containing the resource. Used for Access control, logical grouping, and authorization boundaries.
compartment_ocid	core	string	The value to assign to the compartment_ocid property of this Policy.
created_at	core	timestamp	Time when the resource has been created.
delete_in_progress	core	bool	The value to assign to the delete_in_progress property of this Policy.
description	core	string	The value to assign to the description property of this Policy.
domain_ocid	core	string	The value to assign to the domain_ocid property of this Policy.
freeform_tags	core	hstore	The value to assign to the freeform_tags property of this Instance.
id	core	string	The value to assign to the id property of this Policy.
idcs_created_by	core	json	The value to assign to the idcs_created_by property of this Policy.
idcs_last_modified_by	core	json	The value to assign to the idcs_last_modified_by property of this Policy.
idcs_last_upgraded_in_release	core	string	The value to assign to the idcs_last_upgraded_in_release property of this Policy.
idcs_prevented_operations	core	array<string>	The value to assign to the idcs_prevented_operations property of this Policy. Allowed values for items in this list are: "replace", "update", "delete", 'UNKNOWN_ENUM_VALUE'. Any unrecognized values returned by a service will be mapped to 'UNKNOWN_ENUM_VALUE'.
meta	core	json	The value to assign to the meta property of this Policy.
name	core	string	The value to assign to the name property of this Policy.
ocid	core	string	The value to assign to the ocid property of this Policy.
policy_groovy	core	string	The value to assign to the policy_groovy property of this Policy.
policy_type	core	json	The value to assign to the policy_type property of this Policy.
region_id	core	string	The region this resource resides within.
resource_type	core	string	The name of the resource type.
rules	core	json	The value to assign to the rules property of this Policy.
schemas	core	array<string>	The value to assign to the schemas property of this Policy.
tags	core	hstore_csv	The value to assign to the tags property of this Policy.
tenancy_ocid	core	string	The value to assign to the tenancy_ocid property of this Policy.
time_created	core	timestamp	The value to assign to the time_created property of this Instance.
updated_at	core	timestamp	Time when the resource has been updated the last time.
zone_id	core	string	The zone this resource resides within.