Class CreateDelegationControlDetails

While creating the Delegation Control, specify how Service Provider Actions are approved and the users who have the privilege of approving the Service Provider Actions associated with the Delegation Control.
You must specify which Service Provider Actions must be pre-approved. The rest of the Service Provider Actions associated with the Delegation Control will require an explicit approval from the users selected either through the approver groups or individually.
You must name your Delegation Control appropriately so it reflects the resources that will be governed by the Delegation Control. Neither the Delegation Controls nor their assignments to resources are visible to the support operators.

Inheritance

object

CreateDelegationControlDetails

Inherited Members

object.Equals(object)

object.Equals(object, object)

object.GetHashCode()

object.GetType()

object.MemberwiseClone()

object.ReferenceEquals(object, object)

object.ToString()

Namespace: Oci.DelegateaccesscontrolService.Models

Assembly: OCI.DotNetSDK.Delegateaccesscontrol.dll

Syntax

public class CreateDelegationControlDetails

Properties

CompartmentId

Declaration

[Required(ErrorMessage = "CompartmentId is required.")]
[JsonProperty(PropertyName = "compartmentId")]
public string CompartmentId { get; set; }

Property Value

Type	Description
string	The OCID of the compartment that contains this Delegation Control.

Remarks

Required

DefinedTags

Declaration

[JsonProperty(PropertyName = "definedTags")]
public Dictionary<string, Dictionary<string, object>> DefinedTags { get; set; }

Property Value

Type	Description
Dictionary<string, Dictionary<string, object>>	Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags. Example: {"Operations": {"CostCenter": "42"}}

DelegationSubscriptionIds

Declaration

[Required(ErrorMessage = "DelegationSubscriptionIds is required.")]
[JsonProperty(PropertyName = "delegationSubscriptionIds")]
public List<string> DelegationSubscriptionIds { get; set; }

Property Value

Type	Description
List<string>	List of Delegation Subscription OCID that are allowed for this Delegation Control. The allowed subscriptions will determine the available Service Provider Actions. Only support operators for the allowed subscriptions are allowed to create Delegated Resource Access Request.

Remarks

Required

Description

Declaration

[JsonProperty(PropertyName = "description")]
public string Description { get; set; }

Property Value

Type	Description
string	Description of the Delegation Control.

DisplayName

Declaration

[Required(ErrorMessage = "DisplayName is required.")]
[JsonProperty(PropertyName = "displayName")]
public string DisplayName { get; set; }

Property Value

Type	Description
string	Name of the Delegation Control. The name does not need to be unique.

Remarks

Required

FreeformTags

Declaration

[JsonProperty(PropertyName = "freeformTags")]
public Dictionary<string, string> FreeformTags { get; set; }

Property Value

Type	Description
Dictionary<string, string>	Free-form tags for this resource. Each tag is a simple key-value pair with no predefined name, type, or namespace. For more information, see Resource Tags. Example: {"Department": "Finance"}

IsAutoApproveDuringMaintenance

Declaration

[JsonProperty(PropertyName = "isAutoApproveDuringMaintenance")]
public bool? IsAutoApproveDuringMaintenance { get; set; }

Property Value

Type	Description
bool?	Set to true to allow all Delegated Resource Access Request to be approved automatically during maintenance.

NotificationMessageFormat

Declaration

[Required(ErrorMessage = "NotificationMessageFormat is required.")]
[JsonProperty(PropertyName = "notificationMessageFormat")]
[JsonConverter(typeof(StringEnumConverter))]
public DelegationControl.NotificationMessageFormatEnum? NotificationMessageFormat { get; set; }

Property Value

Type	Description
DelegationControl.NotificationMessageFormatEnum?	The format of the OCI Notification messages for this Delegation Control.

Remarks

Required

NotificationTopicId

Declaration

[Required(ErrorMessage = "NotificationTopicId is required.")]
[JsonProperty(PropertyName = "notificationTopicId")]
public string NotificationTopicId { get; set; }

Property Value

Type	Description
string	The OCID of the OCI Notification topic to publish messages related to this Delegation Control.

Remarks

Required

NumApprovalsRequired

Declaration

[JsonProperty(PropertyName = "numApprovalsRequired")]
public int? NumApprovalsRequired { get; set; }

Property Value

Type	Description
int?	number of approvals required.

PreApprovedServiceProviderActionNames

Declaration

[JsonProperty(PropertyName = "preApprovedServiceProviderActionNames")]
public List<string> PreApprovedServiceProviderActionNames { get; set; }

Property Value

Type	Description
List<string>	List of pre-approved Service Provider Action names. The list of pre-defined Service Provider Actions can be obtained from the ListServiceProviderActions API. Delegated Resource Access Requests associated with a resource governed by this Delegation Control will be automatically approved if the Delegated Resource Access Request only contain Service Provider Actions in the pre-approved list.

ResourceIds

Declaration

[Required(ErrorMessage = "ResourceIds is required.")]
[JsonProperty(PropertyName = "resourceIds")]
public List<string> ResourceIds { get; set; }

Property Value

Type	Description
List<string>	The OCID of the selected resources that this Delegation Control is applicable to.

Remarks

Required

ResourceType

Declaration

[Required(ErrorMessage = "ResourceType is required.")]
[JsonProperty(PropertyName = "resourceType")]
[JsonConverter(typeof(StringEnumConverter))]
public DelegationControlResourceType? ResourceType { get; set; }

Property Value

Type	Description
DelegationControlResourceType?	Resource type for which the Delegation Control is applicable to.

Remarks

Required

VaultId

Declaration

[JsonProperty(PropertyName = "vaultId")]
public string VaultId { get; set; }

Property Value

Type	Description
string	The OCID of the OCI Vault that will store the secrets containing the SSH keys to access the resource governed by this Delegation Control by Delegate Access Control Service. This property is required when resourceType is CLOUDVMCLUSTER. Delegate Access Control Service will generate the SSH keys and store them as secrets in the OCI Vault.

VaultKeyId

Declaration

[JsonProperty(PropertyName = "vaultKeyId")]
public string VaultKeyId { get; set; }

Property Value

Type	Description
string	The OCID of the Master Encryption Key in the OCI Vault specified by vaultId. This key will be used to encrypt the SSH keys to access the resource governed by this Delegation Control by Delegate Access Control Service. This property is required when resourceType is CLOUDVMCLUSTER.