IAM Identity Domains API

Check Password of Specified User or App

post

/admin/v1/PasswordAuthenticator

Request

Supported Media Types

application/scim+json
application/json

Query Parameters

attributeSets(optional): string

A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If "attributes" query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.

Allowed Values: [ "all", "always", "never", "request", "default" ]
attributes(optional): string

A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.

Header Parameters

Authorization: string

The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.
Content-Type: string

Media Type
RESOURCE_TYPE_SCHEMA_VERSION(optional): string

An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.

PasswordAuthenticator schema.

Before you specify an attribute-value in a request to create a resource, please check the 'mutability' property of that attribute in the resource-type schema below. Clicking on an attribute-row will expand that row to show the SCIM++ Properties of that attribute.

Your request to create, update or replace a resource may specify in its payload a value for any attribute that is defined as mutability:readWrite or mutability:writeOnly or mutability:immutable:
- The SCIM APIs to create a resource will ignore silently any value that you specify for an attribute that is defined as mutability:readOnly.
- The SCIM APIs to update or replace a resource will fail with an error 400 Bad Request if you specify a value for an attribute that is defined as mutability:readOnly.
- Similarly, the SCIM APIs to update or replace a resource will fail with an error 400 Bad Request if you specify any value for an attribute that is defined as mutability:immutable and that already has a value in the specified resource.

Also, before you use the query-parameter attributes to request specific attributes, please check the 'returned' property of that attribute in the resource-type schema below:

Your request to read a resource (or to search a resource-type) can specify as the value of attributes any attributes that are defined as returned:default or returned:request or returned:always:

If you request a specific set of attributes, the SCIM APIs to read a resource (or to search a resource-type) will return in each resource the set of attributes that you requested, as well as any attribute that is defined as returned:always.
If you do not request a specific set of attributes, the SCIM APIs to read a resource (or to search a resource-type) will return in each resource the the set of attributes defined as returned:default, as well as any attribute that is defined as returned:always.
The SCIM APIs to read a resource (or to search a resource-type) will ignore silently any request to return an attribute that is defined as returned:never.

Root Schema : PasswordAuthenticator

Type: object

Schema for password authenticator

Show Source

accountRecoveryRequired(optional): boolean
SCIM++ Properties:
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: request
- type: boolean
- uniqueness: none
Account Recovery Status of the User. True indicates account recovery is required for the user.
appDisplayName(optional): string
Minimum Length: 2

Maximum Length: 100
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: writeOnly
- returned: never
- idcsSearchable: true
- caseExact: false
- uniqueness: none
Display name of the application. If the request specifies a value for \"appName\", \"appId\", \"appServiceInstanceIdentifier\", or \"appDisplayName\", then the \"appRoles\" claim in the response must contain only the values that have matching values of subattributes \"appName\",\"appId\", \"appServiceInstanceIdentifier\", or \"appId\" derived from \"appDisplayName\".
appId(optional): string
Minimum Length: 2

Maximum Length: 100
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: writeOnly
- returned: never
- idcsSearchable: true
- caseExact: false
- uniqueness: none
Id of the application. If the request specifies a value for \"appName\", \"appId\", \"appServiceInstanceIdentifier\", or \"appDisplayName\", then the \"appRoles\" claim in the response must contain only the values that have matching values of subattributes \"appName\",\"appId\", \"appServiceInstanceIdentifier\", or \"appId\" derived from \"appDisplayName\".
applicableAuthenticationTargetApp(optional): object applicableAuthenticationTargetApp
SCIM++ Properties:
- idcsCompositeKey: [value]
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: false
- returned: request
- type: complex
- uniqueness: none
The app against which the user will authenticate. The value is not persisted but rather calculated. If the user's delegatedAuthenticationTargetApp is set, that value is returned. Otherwise, the app returned by evaluating the user's applicable Delegated Authentication Policy is returned. Value is returned only if authentication is not aginst OCI IAM.
applicableFactors: array applicableFactors
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: true
- mutability: readOnly
- required: true
- returned: default
- type: string
- uniqueness: none
Account recovery applicable factors
appName(optional): string
Minimum Length: 2

Maximum Length: 100
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: writeOnly
- returned: never
- idcsSearchable: true
- caseExact: false
- uniqueness: none
Name of the application. If the request specifies a value for \"appName\", \"appId\", \"appServiceInstanceIdentifier\", or \"appDisplayName\", then the \"appRoles\" claim in the response must contain only the values that have matching values of subattributes \"appName\",\"appId\", \"appServiceInstanceIdentifier\", or \"appId\" derived from \"appDisplayName\".
appRoles(optional): array appRoles
SCIM++ Properties:
- type: complex
- multiValued: true
- required: false
- idcsCompositeKey: [value]
- mutability: readOnly
- returned: request
- uniqueness: none
A list of AppRoles granted to the specified Subject (User or App).
appServiceInstanceIdentifier(optional): string
Minimum Length: 2

Maximum Length: 100
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: writeOnly
- returned: never
- idcsSearchable: false
- caseExact: false
- uniqueness: none
Service-instance identifier of the application. If the request specifies a value for \"appName\", \"appId\", \"appServiceInstanceIdentifier\", or \"appDisplayName\", then the \"appRoles\" claim in the response must contain only the values that have matching values of subattributes \"appName\",\"appId\", \"appServiceInstanceIdentifier\", or \"appId\" derived from \"appDisplayName\".
city(optional): string
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readOnly
- returned: default
- idcsPii: true
City in user's primary address
clientIp(optional): string
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: writeOnly
- returned: never
- uniqueness: none
- idcsSearchable: false
Client IP address
compartmentOcid(optional): string
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
OCI Compartment Id (ocid) in which the resource lives.
country(optional): string
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readOnly
- returned: default
- idcsPii: true
Country in user's primary address
csr(optional): boolean
SCIM++ Properties:
- type: boolean
- multiValued: false
- required: false
- mutability: readOnly
- returned: default
If true, this indicates that the authenticated subject is logged in as a CSR user. This attribute is returned in the response to a successful authentication request.
deleteInProgress(optional): boolean
SCIM++ Properties:
- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: boolean
- uniqueness: none
A boolean flag indicating this resource in the process of being deleted. Usually set to true when synchronous deletion of the resource would take too long.
domainOcid(optional): string
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
OCI Domain Id (ocid) in which the resource lives.
groups(optional): array groups
SCIM++ Properties:
- type: complex
- multiValued: true
- required: false
- idcsCompositeKey: [value]
- mutability: readOnly
- returned: request
- uniqueness: none
A list of groups of which the User or App is a member, either thorough direct membership, nested groups, or dynamically calculated
id(optional): string
SCIM++ Properties:
- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: false
- returned: always
- type: string
- uniqueness: global
Unique identifier for the SCIM Resource as defined by the Service Provider. Each representation of the Resource MUST include a non-empty id value. This identifier MUST be unique across the Service Provider's entire set of Resources. It MUST be a stable, non-reassignable identifier that does not change when the same Resource is returned in subsequent requests. The value of the id attribute is always issued by the Service Provider and MUST never be specified by the Service Consumer. bulkId: is a reserved keyword and MUST NOT be used in the unique identifier.
idcsCreatedBy: object idcsCreatedBy
SCIM++ Properties:
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: true
- returned: default
- type: complex
The User or App who created the Resource
idcsLastModifiedBy(optional): object idcsLastModifiedBy
SCIM++ Properties:
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: complex
The User or App who modified the Resource
idcsLastUpgradedInRelease(optional): string
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: request
- type: string
- uniqueness: none
The release number when the resource was upgraded.
idcsPreventedOperations(optional): array idcsPreventedOperations
SCIM++ Properties:
- idcsSearchable: false
- multiValued: true
- mutability: readOnly
- required: false
- returned: request
- type: string
- uniqueness: none
Each value of this attribute specifies an operation that only an internal client may perform on this particular resource.
includeMemberships(optional): boolean
SCIM++ Properties:
- type: boolean
- multiValued: false
- required: false
- mutability: writeOnly
- returned: never
- uniqueness: none
If true, indicates that the \"groups\" attribute and \"appRoles\" attribute should be included in the response if this request is successful.
includeMfaAttributes(optional): boolean
SCIM++ Properties:
- type: boolean
- multiValued: false
- required: false
- mutability: writeOnly
- returned: never
- uniqueness: none
If true, indicates that MFA attributes will be included in the response.
includeSFFAuthKeys(optional): boolean
SCIM++ Properties:
- type: boolean
- multiValued: false
- required: false
- mutability: writeOnly
- returned: never
- uniqueness: none
If true, indicates that the \"sffAuthKeys\" attribute should be included in the response if this request is successful.
isPolicyRequired(optional): boolean
SCIM++ Properties:
- idcsSearchable: false
- multiValued: false
- mutability: writeOnly
- required: false
- returned: never
- type: boolean
- uniqueness: none
if and only if true( treated as false if unspecified), the SignOn Policy accesss allow/deny result is considered in addition to the user credential validity to determine the authenticator success/failure
locale(optional): string
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readOnly
- returned: default
Locale supported by OCI IAM.This attribute contains calculated value of user preferred locale, which is closest OCI IAM supported locale. This attribute is intended for OCI IAM internal applications. This attribute is returned in the response to a successful authentication request.
mappingAttribute(optional): string
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
If provided, the attribute 'mappingAttribute' together with 'mappingAttributeValue' identify the User or App against which the 'password' will be checked. For example, a requester might specify \"username\" as the value of 'mappingAttribute', and \"jdoe\" as the value of 'mappingAttributeValue'. Together, these values should form a filter -- e.g., \"username\" eq \"jdoe\" -- that selects exactly one User or App. The value of mappingAttribute must be a valid attribute name that is available in User or App schema. If not provided, the default value is \"username\" for User and \"name\" for App. Initially for App, \"name\" is the only supported attribute from App schema
mappingAttributeValue: string
Minimum Length: 1

Maximum Length: 256
SCIM++ Properties:
- type: string
- multiValued: false
- required: true
- mutability: readWrite
- returned: default
- uniqueness: none
The attribute 'mappingAttributeValue' or together with 'mappingAttribute', if provided, identify the User or App against which the 'password' will be checked. For example, a requester might specify \"username\" as the value of 'mappingAttribute', and \"jdoe\" as the value of 'mappingAttributeValue'. Together, these values should form a filter -- e.g., \"username\" eq \"jdoe\" -- that selects exactly one User or App. The value of mappingAttribute must be a valid attribute name that is available in User or App schema. If not provided, the default value is \"username\" for User and \"name\" for App. Initially for App, \"name\" is the only supported attribute from App schema
meta(optional): object meta
SCIM++ Properties:
- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- idcsCsvAttributeNameMappings: [[columnHeaderName:Created Date, mapsTo:meta.created]]
- type: complex
A complex attribute that contains resource metadata. All sub-attributes are OPTIONAL.
mfaIgnoredApps(optional): array mfaIgnoredApps
SCIM++ Properties:
- idcsSearchable: false
- multiValued: true
- mutability: readOnly
- required: false
- returned: request
- type: string
- uniqueness: none
User MFA Ignored Apps Identifiers
mfaPreferredAuthenticationFactor(optional): string
SCIM++ Properties:
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: request
- type: string
- uniqueness: none
MFA Preferred Authentication Factor
mfaPreferredDevice(optional): string
SCIM++ Properties:
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: request
- type: string
- uniqueness: none
MFA Preferred Device
mfaPreferredThirdPartyVendorName(optional): string
SCIM++ Properties:
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: request
- type: string
- uniqueness: none
MFA Preferred Third Party vendor name
mfaStatus(optional): string
SCIM++ Properties:
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: request
- type: string
- uniqueness: none
MFA Status of the User
ocid(optional): string
Maximum Length: 255
SCIM++ Properties:
- caseExact: true
- idcsSearchable: true
- multiValued: false
- mutability: immutable
- required: false
- returned: default
- type: string
- uniqueness: global
Unique OCI identifier for the SCIM Resource.
password: string
Minimum Length: 1

Maximum Length: 500
SCIM++ Properties:
- type: string
- multiValued: false
- required: true
- mutability: writeOnly
- returned: never
- idcsSensitive: hash
- uniqueness: none
The value of this attribute is passed as an input-parameter. This PasswordAuthenticator must compare the its value to the credential of the User or App.
postalCode(optional): string
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readOnly
- returned: default
- idcsPii: true
Postal code in user's primary address
preferredLanguage(optional): string
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readOnly
- returned: default
Preferred language supported by OCI IAM. This attribute contains calculated value of user preferred language, which is closest OCI IAM supported language. This attribute is intended for OCI IAM internal applications. This attribute is returned in the response to a successful authentication request.
primaryEmailVerified(optional): boolean
SCIM++ Properties:
- caseExact: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: boolean
- uniqueness: none
Boolean value which indicates whether his primary email is verified or not
schemas: array schemas
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: true
- mutability: readWrite
- required: true
- returned: default
- type: string
- uniqueness: none
REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard \"enterprise\" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.
securityQuestionsPresent(optional): boolean
SCIM++ Properties:
- type: boolean
- multiValued: false
- required: false
- mutability: readOnly
- returned: default
- uniqueness: none
If true, indicates that User has setup already setup Security Questions.
sffAuthKeys(optional): string
SCIM++ Properties:
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: request
- type: string
- uniqueness: none
SFF auth keys clob
state(optional): string
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readOnly
- returned: default
- idcsPii: true
State in user's primary address
tags(optional): array tags
SCIM++ Properties:
- idcsCompositeKey: [key, value]
- idcsSearchable: true
- multiValued: true
- mutability: readWrite
- required: false
- returned: request
- type: complex
- uniqueness: none
A list of tags on this resource.
tenancyOcid(optional): string
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
OCI Tenant Id (ocid) in which the resource lives.
tenantName(optional): string
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readOnly
- returned: default
This attribute identifies the name of the tenant (also known as identity-domain) in which the subject User or App is defined. This attribute is returned in the response to a successful authentication request.
timezone(optional): string
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readOnly
- returned: default
User's time zone
type(optional): string
Allowed Values: [ "User", "App" ]
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readOnly
- returned: default
- uniqueness: none
A label indicating the type of the specified identity--either 'User' or 'App'.
userAllowedToSetRecoveryEmail(optional): boolean
SCIM++ Properties:
- caseExact: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: boolean
- uniqueness: none
Indicates whether a user can set recovery email
userDisplayName(optional): string
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readOnly
- returned: default
- uniqueness: none
User display name
userEmail(optional): string
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readOnly
- returned: always
- uniqueness: none
- idcsPii: true
User's primary email. This attribute is returned in the response to a successful authentication request.
userLocaleAsEntered(optional): string
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readOnly
- returned: default
- caseExact: true
- idcsSearchable: false
User's native locale. This attribute is intended for external applications to read user's native locale. This attribute is returned in the response to a successful authentication request.
userName(optional): string
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readOnly
- returned: default
- uniqueness: none
- idcsPii: true
User name
userPreferredLanguageAsEntered(optional): string
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readOnly
- returned: default
- caseExact: true
- idcsSearchable: false
User's native preferred language. This attribute is intended for external applications to read user's native language. This attribute is returned in the response to a successful authentication request.

{
    "type":"object",
    "description":"Schema for password authenticator",
    "required":[
        "schemas",
        "idcsCreatedBy",
        "mappingAttributeValue",
        "password",
        "applicableFactors"
    ],
    "properties":{
        "id":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: always</li><li>type: string</li><li>uniqueness: global</li></ul>Unique identifier for the SCIM Resource as defined by the Service Provider. Each representation of the Resource MUST include a non-empty id value. This identifier MUST be unique across the Service Provider's entire set of Resources. It MUST be a stable, non-reassignable identifier that does not change when the same Resource is returned in subsequent requests. The value of the id attribute is always issued by the Service Provider and MUST never be specified by the Service Consumer. bulkId: is a reserved keyword and MUST NOT be used in the unique identifier."
        },
        "ocid":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: immutable</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: global</li></ul>Unique OCI identifier for the SCIM Resource.",
            "maxLength":255
        },
        "schemas":{
            "type":"array",
            "items":{
                "type":"string"
            },
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: true</li><li>mutability: readWrite</li><li>required: true</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard \\\"enterprise\\\" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior."
        },
        "meta":{
            "type":"object",
            "properties":{
                "resourceType":{
                    "type":"string",
                    "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>Name of the resource type of the resource--for example, Users or Groups"
                },
                "created":{
                    "type":"string",
                    "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: dateTime</li><li>uniqueness: none</li></ul>The DateTime the Resource was added to the Service Provider"
                },
                "lastModified":{
                    "type":"string",
                    "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: dateTime</li><li>uniqueness: none</li></ul>The most recent DateTime that the details of this Resource were updated at the Service Provider. If this Resource has never been modified since its initial creation, the value MUST be the same as the value of created. The attribute MUST be a DateTime."
                },
                "location":{
                    "type":"string",
                    "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>The URI of the Resource being returned. This value MUST be the same as the Location HTTP response header."
                },
                "version":{
                    "type":"string",
                    "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>The version of the Resource being returned. This value must be the same as the ETag HTTP response header."
                }
            },
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>idcsCsvAttributeNameMappings: [[columnHeaderName:Created Date, mapsTo:meta.created]]</li><li>type: complex</li></ul>A complex attribute that contains resource metadata. All sub-attributes are OPTIONAL."
        },
        "idcsCreatedBy":{
            "type":"object",
            "properties":{
                "value":{
                    "type":"string",
                    "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: true</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>The ID of the SCIM resource that represents the User or App who created this Resource"
                },
                "$ref":{
                    "type":"string",
                    "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: reference</li><li>uniqueness: none</li></ul>The URI of the SCIM resource that represents the User or App who created this Resource"
                },
                "type":{
                    "type":"string",
                    "enum":[
                        "User",
                        "App"
                    ],
                    "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>The type of resource, User or App, that created this Resource"
                },
                "display":{
                    "type":"string",
                    "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>The displayName of the User or App who created this Resource"
                },
                "ocid":{
                    "type":"string",
                    "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readOnly</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>The OCID of the SCIM resource that represents the User or App who created this Resource"
                }
            },
            "required":[
                "value"
            ],
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: true</li><li>returned: default</li><li>type: complex</li></ul>The User or App who created the Resource"
        },
        "idcsLastModifiedBy":{
            "type":"object",
            "properties":{
                "value":{
                    "type":"string",
                    "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: true</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>The ID of the SCIM resource that represents the User or App who modified this Resource"
                },
                "$ref":{
                    "type":"string",
                    "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: reference</li><li>uniqueness: none</li></ul>The URI of the SCIM resource that represents the User or App who modified this Resource"
                },
                "type":{
                    "type":"string",
                    "enum":[
                        "User",
                        "App"
                    ],
                    "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>The type of resource, User or App, that modified this Resource"
                },
                "display":{
                    "type":"string",
                    "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>The displayName of the User or App who modified this Resource"
                },
                "ocid":{
                    "type":"string",
                    "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readOnly</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>The OCID of the SCIM resource that represents the User or App who modified this Resource"
                }
            },
            "required":[
                "value"
            ],
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: complex</li></ul>The User or App who modified the Resource"
        },
        "idcsPreventedOperations":{
            "type":"array",
            "items":{
                "type":"string"
            },
            "enum":[
                "replace",
                "update",
                "delete"
            ],
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>idcsSearchable: false</li><li>multiValued: true</li><li>mutability: readOnly</li><li>required: false</li><li>returned: request</li><li>type: string</li><li>uniqueness: none</li></ul>Each value of this attribute specifies an operation that only an internal client may perform on this particular resource."
        },
        "tags":{
            "type":"array",
            "items":{
                "$ref":"#/definitions/tags"
            },
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>idcsCompositeKey: [key, value]</li><li>idcsSearchable: true</li><li>multiValued: true</li><li>mutability: readWrite</li><li>required: false</li><li>returned: request</li><li>type: complex</li><li>uniqueness: none</li></ul>A list of tags on this resource."
        },
        "deleteInProgress":{
            "type":"boolean",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: boolean</li><li>uniqueness: none</li></ul>A boolean flag indicating this resource in the process of being deleted. Usually set to true when synchronous deletion of the resource would take too long."
        },
        "idcsLastUpgradedInRelease":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: request</li><li>type: string</li><li>uniqueness: none</li></ul>The release number when the resource was upgraded."
        },
        "domainOcid":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>OCI Domain Id (ocid) in which the resource lives."
        },
        "compartmentOcid":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>OCI Compartment Id (ocid) in which the resource lives."
        },
        "tenancyOcid":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>OCI Tenant Id (ocid) in which the resource lives."
        },
        "mappingAttribute":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>type: string</li><li>multiValued: false</li><li>required: false</li><li>mutability: readWrite</li><li>returned: default</li><li>uniqueness: none</li></ul>If provided, the attribute 'mappingAttribute' together with 'mappingAttributeValue' identify the User or App against which the 'password' will be checked.  For example, a requester might specify \\\"username\\\" as the value of 'mappingAttribute', and \\\"jdoe\\\" as the value of 'mappingAttributeValue'.  Together, these values should form a filter -- e.g., \\\"username\\\" eq \\\"jdoe\\\" -- that selects exactly one User or App. The value of mappingAttribute must be a valid attribute name that is available in User or App schema. If not provided, the default value is \\\"username\\\" for User and \\\"name\\\" for App. Initially for App, \\\"name\\\" is the only supported attribute from App schema"
        },
        "mappingAttributeValue":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>type: string</li><li>multiValued: false</li><li>required: true</li><li>mutability: readWrite</li><li>returned: default</li><li>uniqueness: none</li></ul>The attribute 'mappingAttributeValue' or together with 'mappingAttribute', if provided, identify the User or App against which the 'password' will be checked.  For example, a requester might specify \\\"username\\\" as the value of 'mappingAttribute', and \\\"jdoe\\\" as the value of 'mappingAttributeValue'.  Together, these values should form a filter -- e.g., \\\"username\\\" eq \\\"jdoe\\\" -- that selects exactly one User or App. The value of mappingAttribute must be a valid attribute name that is available in User or App schema. If not provided, the default value is \\\"username\\\" for User and \\\"name\\\" for App. Initially for App, \\\"name\\\" is the only supported attribute from App schema",
            "minLength":1,
            "maxLength":256
        },
        "clientIp":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>type: string</li><li>multiValued: false</li><li>required: false</li><li>mutability: writeOnly</li><li>returned: never</li><li>uniqueness: none</li><li>idcsSearchable: false</li></ul>Client IP address"
        },
        "sffAuthKeys":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: request</li><li>type: string</li><li>uniqueness: none</li></ul>SFF auth keys clob"
        },
        "includeSFFAuthKeys":{
            "type":"boolean",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>type: boolean</li><li>multiValued: false</li><li>required: false</li><li>mutability: writeOnly</li><li>returned: never</li><li>uniqueness: none</li></ul>If true, indicates that the \\\"sffAuthKeys\\\" attribute should be included in the response if this request is successful."
        },
        "isPolicyRequired":{
            "type":"boolean",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: writeOnly</li><li>required: false</li><li>returned: never</li><li>type: boolean</li><li>uniqueness: none</li></ul>if and only if true( treated as false if unspecified), the SignOn Policy accesss allow/deny result is considered in addition to the user credential validity to determine the authenticator success/failure "
        },
        "password":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>type: string</li><li>multiValued: false</li><li>required: true</li><li>mutability: writeOnly</li><li>returned: never</li><li>idcsSensitive: hash</li><li>uniqueness: none</li></ul>The value of this attribute is passed as an input-parameter. This PasswordAuthenticator must compare the its value to the credential of the User or App.",
            "minLength":1,
            "maxLength":500
        },
        "includeMemberships":{
            "type":"boolean",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>type: boolean</li><li>multiValued: false</li><li>required: false</li><li>mutability: writeOnly</li><li>returned: never</li><li>uniqueness: none</li></ul>If true, indicates that the \\\"groups\\\" attribute and \\\"appRoles\\\" attribute should be included in the response if this request is successful."
        },
        "appName":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>type: string</li><li>multiValued: false</li><li>required: false</li><li>mutability: writeOnly</li><li>returned: never</li><li>idcsSearchable: true</li><li>caseExact: false</li><li>uniqueness: none</li></ul>Name of the application. If the request specifies a value for \\\"appName\\\", \\\"appId\\\", \\\"appServiceInstanceIdentifier\\\", or \\\"appDisplayName\\\", then the \\\"appRoles\\\" claim in the response must contain only the values that have matching values of subattributes \\\"appName\\\",\\\"appId\\\", \\\"appServiceInstanceIdentifier\\\", or \\\"appId\\\" derived from \\\"appDisplayName\\\".",
            "minLength":2,
            "maxLength":100
        },
        "appId":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>type: string</li><li>multiValued: false</li><li>required: false</li><li>mutability: writeOnly</li><li>returned: never</li><li>idcsSearchable: true</li><li>caseExact: false</li><li>uniqueness: none</li></ul>Id of the application. If the request specifies a value for \\\"appName\\\", \\\"appId\\\", \\\"appServiceInstanceIdentifier\\\", or \\\"appDisplayName\\\", then the \\\"appRoles\\\" claim in the response must contain only the values that have matching values of subattributes \\\"appName\\\",\\\"appId\\\", \\\"appServiceInstanceIdentifier\\\", or \\\"appId\\\" derived from \\\"appDisplayName\\\".",
            "minLength":2,
            "maxLength":100
        },
        "appDisplayName":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>type: string</li><li>multiValued: false</li><li>required: false</li><li>mutability: writeOnly</li><li>returned: never</li><li>idcsSearchable: true</li><li>caseExact: false</li><li>uniqueness: none</li></ul>Display name of the application. If the request specifies a value for \\\"appName\\\", \\\"appId\\\", \\\"appServiceInstanceIdentifier\\\", or \\\"appDisplayName\\\", then the \\\"appRoles\\\" claim in the response must contain only the values that have matching values of subattributes \\\"appName\\\",\\\"appId\\\", \\\"appServiceInstanceIdentifier\\\", or \\\"appId\\\" derived from \\\"appDisplayName\\\".",
            "minLength":2,
            "maxLength":100
        },
        "appServiceInstanceIdentifier":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>type: string</li><li>multiValued: false</li><li>required: false</li><li>mutability: writeOnly</li><li>returned: never</li><li>idcsSearchable: false</li><li>caseExact: false</li><li>uniqueness: none</li></ul>Service-instance identifier of the application. If the request specifies a value for \\\"appName\\\", \\\"appId\\\", \\\"appServiceInstanceIdentifier\\\", or \\\"appDisplayName\\\", then the \\\"appRoles\\\" claim in the response must contain only the values that have matching values of subattributes \\\"appName\\\",\\\"appId\\\", \\\"appServiceInstanceIdentifier\\\", or \\\"appId\\\" derived from \\\"appDisplayName\\\".",
            "minLength":2,
            "maxLength":100
        },
        "userDisplayName":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>type: string</li><li>multiValued: false</li><li>required: false</li><li>mutability: readOnly</li><li>returned: default</li><li>uniqueness: none</li></ul>User display name"
        },
        "userName":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>type: string</li><li>multiValued: false</li><li>required: false</li><li>mutability: readOnly</li><li>returned: default</li><li>uniqueness: none</li><li>idcsPii: true</li></ul>User name"
        },
        "userEmail":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>type: string</li><li>multiValued: false</li><li>required: false</li><li>mutability: readOnly</li><li>returned: always</li><li>uniqueness: none</li><li>idcsPii: true</li></ul>User's primary email.  This attribute is returned in the response to a successful authentication request."
        },
        "preferredLanguage":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>type: string</li><li>multiValued: false</li><li>required: false</li><li>mutability: readOnly</li><li>returned: default</li></ul>Preferred language supported by OCI IAM. This attribute contains calculated value of user preferred language, which is closest OCI IAM supported language. This attribute is intended for OCI IAM internal applications. This attribute is returned in the response to a successful authentication request."
        },
        "userPreferredLanguageAsEntered":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>type: string</li><li>multiValued: false</li><li>required: false</li><li>mutability: readOnly</li><li>returned: default</li><li>caseExact: true</li><li>idcsSearchable: false</li></ul>User's native preferred language. This attribute is intended for external applications to read user's native language. This attribute is returned in the response to a successful authentication request."
        },
        "locale":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>type: string</li><li>multiValued: false</li><li>required: false</li><li>mutability: readOnly</li><li>returned: default</li></ul>Locale supported by OCI IAM.This attribute contains calculated value of user preferred locale, which is closest OCI IAM supported locale. This attribute is intended for OCI IAM internal applications. This attribute is returned in the response to a successful authentication request."
        },
        "userLocaleAsEntered":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>type: string</li><li>multiValued: false</li><li>required: false</li><li>mutability: readOnly</li><li>returned: default</li><li>caseExact: true</li><li>idcsSearchable: false</li></ul>User's native locale. This attribute is intended for external applications to read user's native locale. This attribute is returned in the response to a successful authentication request."
        },
        "timezone":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>type: string</li><li>multiValued: false</li><li>required: false</li><li>mutability: readOnly</li><li>returned: default</li></ul>User's time zone"
        },
        "city":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>type: string</li><li>multiValued: false</li><li>required: false</li><li>mutability: readOnly</li><li>returned: default</li><li>idcsPii: true</li></ul>City in user's primary address"
        },
        "state":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>type: string</li><li>multiValued: false</li><li>required: false</li><li>mutability: readOnly</li><li>returned: default</li><li>idcsPii: true</li></ul>State in user's primary address"
        },
        "country":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>type: string</li><li>multiValued: false</li><li>required: false</li><li>mutability: readOnly</li><li>returned: default</li><li>idcsPii: true</li></ul>Country in user's primary address"
        },
        "postalCode":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>type: string</li><li>multiValued: false</li><li>required: false</li><li>mutability: readOnly</li><li>returned: default</li><li>idcsPii: true</li></ul>Postal code in user's primary address"
        },
        "csr":{
            "type":"boolean",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>type: boolean</li><li>multiValued: false</li><li>required: false</li><li>mutability: readOnly</li><li>returned: default</li></ul>If true, this indicates that the authenticated subject is logged in as a CSR user.  This attribute is returned in the response to a successful authentication request."
        },
        "tenantName":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>type: string</li><li>multiValued: false</li><li>required: false</li><li>mutability: readOnly</li><li>returned: default</li></ul>This attribute identifies the name of the tenant (also known as identity-domain) in which the subject User or App is defined.  This attribute is returned in the response to a successful authentication request."
        },
        "type":{
            "type":"string",
            "enum":[
                "User",
                "App"
            ],
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>type: string</li><li>multiValued: false</li><li>required: false</li><li>mutability: readOnly</li><li>returned: default</li><li>uniqueness: none</li></ul>A label indicating the type of the specified identity--either 'User' or 'App'."
        },
        "groups":{
            "type":"array",
            "items":{
                "$ref":"#/definitions/groups"
            },
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>type: complex</li><li>multiValued: true</li><li>required: false</li><li>idcsCompositeKey: [value]</li><li>mutability: readOnly</li><li>returned: request</li><li>uniqueness: none</li></ul>A list of groups of which the User or App is a member, either thorough direct membership, nested groups, or dynamically calculated"
        },
        "appRoles":{
            "type":"array",
            "items":{
                "$ref":"#/definitions/appRoles"
            },
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>type: complex</li><li>multiValued: true</li><li>required: false</li><li>idcsCompositeKey: [value]</li><li>mutability: readOnly</li><li>returned: request</li><li>uniqueness: none</li></ul>A list of AppRoles granted to the specified Subject (User or App)."
        },
        "mfaStatus":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: request</li><li>type: string</li><li>uniqueness: none</li></ul>MFA Status of the User"
        },
        "mfaPreferredAuthenticationFactor":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: request</li><li>type: string</li><li>uniqueness: none</li></ul>MFA Preferred Authentication Factor"
        },
        "mfaPreferredDevice":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: request</li><li>type: string</li><li>uniqueness: none</li></ul>MFA Preferred Device"
        },
        "mfaPreferredThirdPartyVendorName":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: request</li><li>type: string</li><li>uniqueness: none</li></ul>MFA Preferred Third Party vendor name"
        },
        "includeMfaAttributes":{
            "type":"boolean",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>type: boolean</li><li>multiValued: false</li><li>required: false</li><li>mutability: writeOnly</li><li>returned: never</li><li>uniqueness: none</li></ul>If true, indicates that MFA attributes will be included in the response."
        },
        "securityQuestionsPresent":{
            "type":"boolean",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>type: boolean</li><li>multiValued: false</li><li>required: false</li><li>mutability: readOnly</li><li>returned: default</li><li>uniqueness: none</li></ul>If true, indicates that User has setup already setup Security Questions."
        },
        "mfaIgnoredApps":{
            "type":"array",
            "items":{
                "type":"string"
            },
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>idcsSearchable: false</li><li>multiValued: true</li><li>mutability: readOnly</li><li>required: false</li><li>returned: request</li><li>type: string</li><li>uniqueness: none</li></ul>User MFA Ignored Apps Identifiers"
        },
        "accountRecoveryRequired":{
            "type":"boolean",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: request</li><li>type: boolean</li><li>uniqueness: none</li></ul>Account Recovery Status of the User. True indicates account recovery is required for the user."
        },
        "userAllowedToSetRecoveryEmail":{
            "type":"boolean",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: boolean</li><li>uniqueness: none</li></ul>Indicates whether a user can set recovery email"
        },
        "primaryEmailVerified":{
            "type":"boolean",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: boolean</li><li>uniqueness: none</li></ul>Boolean value which indicates whether his primary email is verified or not"
        },
        "applicableFactors":{
            "type":"array",
            "items":{
                "type":"string"
            },
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: true</li><li>mutability: readOnly</li><li>required: true</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>Account recovery applicable factors"
        },
        "applicableAuthenticationTargetApp":{
            "type":"object",
            "properties":{
                "value":{
                    "type":"string",
                    "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>multiValued: false</li><li>mutability: readWrite</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>App identifier"
                },
                "$ref":{
                    "type":"string",
                    "description":"<b>SCIM++ Properties:</b><br/><ul><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: request</li><li>type: reference</li><li>uniqueness: none</li></ul>Display Name for the Authn Target App. In case of AD App it will be the domain name"
                },
                "type":{
                    "type":"string",
                    "description":"<b>SCIM++ Properties:</b><br/><ul><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: true</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>A label that indicates whether this is an App or IdentitySource."
                },
                "display":{
                    "type":"string",
                    "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>App Display Name"
                }
            },
            "required":[
                "type"
            ],
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>idcsCompositeKey: [value]</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: false</li><li>returned: request</li><li>type: complex</li><li>uniqueness: none</li></ul>The app against which the user will authenticate. The value is not persisted but rather calculated. If the user's delegatedAuthenticationTargetApp is set, that value is returned. Otherwise, the app returned by evaluating the user's applicable Delegated Authentication Policy is returned. Value is returned only if authentication is not aginst OCI IAM."
        }
    }
}

Nested Schema : applicableAuthenticationTargetApp

Type: object

SCIM++ Properties:

idcsCompositeKey: [value]
idcsSearchable: false
multiValued: false
mutability: readWrite
required: false
returned: request
type: complex
uniqueness: none

The app against which the user will authenticate. The value is not persisted but rather calculated. If the user's delegatedAuthenticationTargetApp is set, that value is returned. Otherwise, the app returned by evaluating the user's applicable Delegated Authentication Policy is returned. Value is returned only if authentication is not aginst OCI IAM.

Show Source

$ref(optional): string
SCIM++ Properties:
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: request
- type: reference
- uniqueness: none
Display Name for the Authn Target App. In case of AD App it will be the domain name
display(optional): string
SCIM++ Properties:
- caseExact: true
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
App Display Name
type: string
SCIM++ Properties:
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: true
- returned: default
- type: string
- uniqueness: none
A label that indicates whether this is an App or IdentitySource.
value(optional): string
SCIM++ Properties:
- caseExact: true
- multiValued: false
- mutability: readWrite
- returned: default
- type: string
- uniqueness: none
App identifier

{
    "type":"object",
    "properties":{
        "value":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>multiValued: false</li><li>mutability: readWrite</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>App identifier"
        },
        "$ref":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: request</li><li>type: reference</li><li>uniqueness: none</li></ul>Display Name for the Authn Target App. In case of AD App it will be the domain name"
        },
        "type":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: true</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>A label that indicates whether this is an App or IdentitySource."
        },
        "display":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>App Display Name"
        }
    },
    "required":[
        "type"
    ],
    "description":"<b>SCIM++ Properties:</b><br/><ul><li>idcsCompositeKey: [value]</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: false</li><li>returned: request</li><li>type: complex</li><li>uniqueness: none</li></ul>The app against which the user will authenticate. The value is not persisted but rather calculated. If the user's delegatedAuthenticationTargetApp is set, that value is returned. Otherwise, the app returned by evaluating the user's applicable Delegated Authentication Policy is returned. Value is returned only if authentication is not aginst OCI IAM."
}

Nested Schema : applicableFactors

Type: array

SCIM++ Properties:

caseExact: false
idcsSearchable: false
multiValued: true
mutability: readOnly
required: true
returned: default
type: string
uniqueness: none

Account recovery applicable factors

Show Source

Array of: string

{
    "type":"array",
    "items":{
        "type":"string"
    },
    "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: true</li><li>mutability: readOnly</li><li>required: true</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>Account recovery applicable factors"
}

Nested Schema : appRoles

Type: array

SCIM++ Properties:

type: complex
multiValued: true
required: false
idcsCompositeKey: [value]
mutability: readOnly
returned: request
uniqueness: none

A list of AppRoles granted to the specified Subject (User or App).

Show Source

Array of: object appRoles
SCIM++ Properties:
- idcsCompositeKey: [value]
- multiValued: true
- mutability: readOnly
- required: false
- returned: request
- type: complex
- uniqueness: none
A list of all AppRoles to which this User belongs directly, indirectly or implicitly. The User could belong directly because the User is a member of the AppRole, could belong indirectly because the User is a member of a Group that is a member of the AppRole, or could belong implicitly because the AppRole is public.

{
    "type":"array",
    "items":{
        "$ref":"#/definitions/appRoles"
    },
    "description":"<b>SCIM++ Properties:</b><br/><ul><li>type: complex</li><li>multiValued: true</li><li>required: false</li><li>idcsCompositeKey: [value]</li><li>mutability: readOnly</li><li>returned: request</li><li>uniqueness: none</li></ul>A list of AppRoles granted to the specified Subject (User or App)."
}

Nested Schema : groups

Type: array

SCIM++ Properties:

type: complex
multiValued: true
required: false
idcsCompositeKey: [value]
mutability: readOnly
returned: request
uniqueness: none

A list of groups of which the User or App is a member, either thorough direct membership, nested groups, or dynamically calculated

Show Source

Array of: object groups

A list of groups that the user belongs to, either thorough direct membership, nested groups, or dynamically calculated

{
    "type":"array",
    "items":{
        "$ref":"#/definitions/groups"
    },
    "description":"<b>SCIM++ Properties:</b><br/><ul><li>type: complex</li><li>multiValued: true</li><li>required: false</li><li>idcsCompositeKey: [value]</li><li>mutability: readOnly</li><li>returned: request</li><li>uniqueness: none</li></ul>A list of groups of which the User or App is a member, either thorough direct membership, nested groups, or dynamically calculated"
}

Nested Schema : idcsCreatedBy

Type: object

SCIM++ Properties:

idcsSearchable: true
multiValued: false
mutability: readOnly
required: true
returned: default
type: complex

The User or App who created the Resource

Show Source

$ref(optional): string
SCIM++ Properties:
- caseExact: true
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: reference
- uniqueness: none
The URI of the SCIM resource that represents the User or App who created this Resource
display(optional): string
SCIM++ Properties:
- caseExact: true
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
The displayName of the User or App who created this Resource
ocid(optional): string
SCIM++ Properties:
- caseExact: true
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- returned: default
- type: string
- uniqueness: none
The OCID of the SCIM resource that represents the User or App who created this Resource
type(optional): string
Allowed Values: [ "User", "App" ]
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
The type of resource, User or App, that created this Resource
value: string
SCIM++ Properties:
- caseExact: true
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: true
- returned: default
- type: string
- uniqueness: none
The ID of the SCIM resource that represents the User or App who created this Resource

{
    "type":"object",
    "properties":{
        "value":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: true</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>The ID of the SCIM resource that represents the User or App who created this Resource"
        },
        "$ref":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: reference</li><li>uniqueness: none</li></ul>The URI of the SCIM resource that represents the User or App who created this Resource"
        },
        "type":{
            "type":"string",
            "enum":[
                "User",
                "App"
            ],
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>The type of resource, User or App, that created this Resource"
        },
        "display":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>The displayName of the User or App who created this Resource"
        },
        "ocid":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readOnly</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>The OCID of the SCIM resource that represents the User or App who created this Resource"
        }
    },
    "required":[
        "value"
    ],
    "description":"<b>SCIM++ Properties:</b><br/><ul><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: true</li><li>returned: default</li><li>type: complex</li></ul>The User or App who created the Resource"
}

Nested Schema : idcsLastModifiedBy

Type: object

SCIM++ Properties:

idcsSearchable: true
multiValued: false
mutability: readOnly
required: false
returned: default
type: complex

The User or App who modified the Resource

Show Source

$ref(optional): string
SCIM++ Properties:
- caseExact: true
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: reference
- uniqueness: none
The URI of the SCIM resource that represents the User or App who modified this Resource
display(optional): string
SCIM++ Properties:
- caseExact: true
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
The displayName of the User or App who modified this Resource
ocid(optional): string
SCIM++ Properties:
- caseExact: true
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- returned: default
- type: string
- uniqueness: none
The OCID of the SCIM resource that represents the User or App who modified this Resource
type(optional): string
Allowed Values: [ "User", "App" ]
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
The type of resource, User or App, that modified this Resource
value: string
SCIM++ Properties:
- caseExact: true
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: true
- returned: default
- type: string
- uniqueness: none
The ID of the SCIM resource that represents the User or App who modified this Resource

{
    "type":"object",
    "properties":{
        "value":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: true</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>The ID of the SCIM resource that represents the User or App who modified this Resource"
        },
        "$ref":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: reference</li><li>uniqueness: none</li></ul>The URI of the SCIM resource that represents the User or App who modified this Resource"
        },
        "type":{
            "type":"string",
            "enum":[
                "User",
                "App"
            ],
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>The type of resource, User or App, that modified this Resource"
        },
        "display":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>The displayName of the User or App who modified this Resource"
        },
        "ocid":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readOnly</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>The OCID of the SCIM resource that represents the User or App who modified this Resource"
        }
    },
    "required":[
        "value"
    ],
    "description":"<b>SCIM++ Properties:</b><br/><ul><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: complex</li></ul>The User or App who modified the Resource"
}

Nested Schema : idcsPreventedOperations

Type: array

SCIM++ Properties:

idcsSearchable: false
multiValued: true
mutability: readOnly
required: false
returned: request
type: string
uniqueness: none

Each value of this attribute specifies an operation that only an internal client may perform on this particular resource.

Allowed Values:

[
    "replace",
    "update",
    "delete"
]

Show Source

Array of: string

{
    "type":"array",
    "items":{
        "type":"string"
    },
    "enum":[
        "replace",
        "update",
        "delete"
    ],
    "description":"<b>SCIM++ Properties:</b><br/><ul><li>idcsSearchable: false</li><li>multiValued: true</li><li>mutability: readOnly</li><li>required: false</li><li>returned: request</li><li>type: string</li><li>uniqueness: none</li></ul>Each value of this attribute specifies an operation that only an internal client may perform on this particular resource."
}

Nested Schema : meta

Type: object

SCIM++ Properties:

caseExact: false
idcsSearchable: true
multiValued: false
mutability: readOnly
required: false
returned: default
idcsCsvAttributeNameMappings: [[columnHeaderName:Created Date, mapsTo:meta.created]]
type: complex

A complex attribute that contains resource metadata. All sub-attributes are OPTIONAL.

Show Source

created(optional): string
SCIM++ Properties:
- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: dateTime
- uniqueness: none
The DateTime the Resource was added to the Service Provider
lastModified(optional): string
SCIM++ Properties:
- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: dateTime
- uniqueness: none
The most recent DateTime that the details of this Resource were updated at the Service Provider. If this Resource has never been modified since its initial creation, the value MUST be the same as the value of created. The attribute MUST be a DateTime.
location(optional): string
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
The URI of the Resource being returned. This value MUST be the same as the Location HTTP response header.
resourceType(optional): string
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
Name of the resource type of the resource--for example, Users or Groups
version(optional): string
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
The version of the Resource being returned. This value must be the same as the ETag HTTP response header.

{
    "type":"object",
    "properties":{
        "resourceType":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>Name of the resource type of the resource--for example, Users or Groups"
        },
        "created":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: dateTime</li><li>uniqueness: none</li></ul>The DateTime the Resource was added to the Service Provider"
        },
        "lastModified":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: dateTime</li><li>uniqueness: none</li></ul>The most recent DateTime that the details of this Resource were updated at the Service Provider. If this Resource has never been modified since its initial creation, the value MUST be the same as the value of created. The attribute MUST be a DateTime."
        },
        "location":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>The URI of the Resource being returned. This value MUST be the same as the Location HTTP response header."
        },
        "version":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>The version of the Resource being returned. This value must be the same as the ETag HTTP response header."
        }
    },
    "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>idcsCsvAttributeNameMappings: [[columnHeaderName:Created Date, mapsTo:meta.created]]</li><li>type: complex</li></ul>A complex attribute that contains resource metadata. All sub-attributes are OPTIONAL."
}

Nested Schema : mfaIgnoredApps

Type: array

SCIM++ Properties:

idcsSearchable: false
multiValued: true
mutability: readOnly
required: false
returned: request
type: string
uniqueness: none

User MFA Ignored Apps Identifiers

Show Source

Array of: string

{
    "type":"array",
    "items":{
        "type":"string"
    },
    "description":"<b>SCIM++ Properties:</b><br/><ul><li>idcsSearchable: false</li><li>multiValued: true</li><li>mutability: readOnly</li><li>required: false</li><li>returned: request</li><li>type: string</li><li>uniqueness: none</li></ul>User MFA Ignored Apps Identifiers"
}

Nested Schema : schemas

Type: array

SCIM++ Properties:

caseExact: false
idcsSearchable: false
multiValued: true
mutability: readWrite
required: true
returned: default
type: string
uniqueness: none

REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard \"enterprise\" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.

Show Source

Array of: string

{
    "type":"array",
    "items":{
        "type":"string"
    },
    "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: true</li><li>mutability: readWrite</li><li>required: true</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard \\\"enterprise\\\" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior."
}

Nested Schema : tags

Type: array

SCIM++ Properties:

idcsCompositeKey: [key, value]
idcsSearchable: true
multiValued: true
mutability: readWrite
required: false
returned: request
type: complex
uniqueness: none

A list of tags on this resource.

Show Source

Array of: object tags

A list of tags on this resource.

{
    "type":"array",
    "items":{
        "$ref":"#/definitions/tags"
    },
    "description":"<b>SCIM++ Properties:</b><br/><ul><li>idcsCompositeKey: [key, value]</li><li>idcsSearchable: true</li><li>multiValued: true</li><li>mutability: readWrite</li><li>required: false</li><li>returned: request</li><li>type: complex</li><li>uniqueness: none</li></ul>A list of tags on this resource."
}

Nested Schema : appRoles

Type: object

SCIM++ Properties:

idcsCompositeKey: [value]
multiValued: true
mutability: readOnly
required: false
returned: request
type: complex
uniqueness: none

A list of all AppRoles to which this User belongs directly, indirectly or implicitly. The User could belong directly because the User is a member of the AppRole, could belong indirectly because the User is a member of a Group that is a member of the AppRole, or could belong implicitly because the AppRole is public.

Show Source

$ref(optional): string
SCIM++ Properties:
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: reference
- uniqueness: none
The URI of the AppRole assigned to the User.
adminRole(optional): boolean
SCIM++ Properties:
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: boolean
- uniqueness: none
If true, then the role provides administrative access privileges. READ-ONLY.
appId(optional): string
SCIM++ Properties:
- caseExact: true
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
The ID of the App that defines this AppRole.
appName(optional): string
SCIM++ Properties:
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
The name (Client ID) of the App that defines this AppRole.
display(optional): string
SCIM++ Properties:
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
The display name of the AppRole assigned to the User.
legacyGroupName(optional): string
SCIM++ Properties:
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
The name (if any) under which this AppRole should appear in this User's group-memberships for reasons of backward compatibility. OCI IAM distinguishes between Groups and AppRoles, but some services still expect AppRoles appear as if they were service-instance-specific Groups.
type(optional): string
Allowed Values: [ "direct", "indirect", "implicit" ]
SCIM++ Properties:
- caseExact: true
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: false
- returned: request
- type: string
- uniqueness: none
The kind of membership this User has in the AppRole. A value of 'direct' indicates that the User is a member of the AppRole. A value of 'indirect' indicates that the User is a member of a Group that is a member of the AppRole. A value of 'implicit' indicates that the AppRole is public.
value: string
SCIM++ Properties:
- caseExact: true
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: true
- returned: always
- type: string
- uniqueness: none
The Id of the AppRole assigned to the User.

{
    "type":"object",
    "description":"<b>SCIM++ Properties:</b><br/><ul><li>idcsCompositeKey: [value]</li><li>multiValued: true</li><li>mutability: readOnly</li><li>required: false</li><li>returned: request</li><li>type: complex</li><li>uniqueness: none</li></ul>A list of all AppRoles to which this User belongs directly, indirectly or implicitly. The User could belong directly because the User is a member of the AppRole, could belong indirectly because the User is a member of a Group that is a member of the AppRole, or could belong implicitly because the AppRole is public.",
    "required":[
        "value"
    ],
    "properties":{
        "value":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: true</li><li>returned: always</li><li>type: string</li><li>uniqueness: none</li></ul>The Id of the AppRole assigned to the User."
        },
        "$ref":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: reference</li><li>uniqueness: none</li></ul>The URI of the AppRole assigned to the User."
        },
        "display":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>The display name of the AppRole assigned to the User."
        },
        "type":{
            "type":"string",
            "enum":[
                "direct",
                "indirect",
                "implicit"
            ],
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: request</li><li>type: string</li><li>uniqueness: none</li></ul>The kind of membership this User has in the AppRole. A value of 'direct' indicates that the User is a member of the AppRole.  A value of  'indirect' indicates that the User is a member of a Group that is a member of the AppRole.  A value of 'implicit' indicates that the AppRole is public."
        },
        "appId":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>The ID of the App that defines this AppRole."
        },
        "appName":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>The name (Client ID) of the App that defines this AppRole."
        },
        "adminRole":{
            "type":"boolean",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: boolean</li><li>uniqueness: none</li></ul>If true, then the role provides administrative access privileges. READ-ONLY."
        },
        "legacyGroupName":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>The name (if any) under which this AppRole should appear in this User's group-memberships for reasons of backward compatibility. OCI IAM distinguishes between Groups and AppRoles, but some services still expect AppRoles appear as if they were service-instance-specific Groups."
        }
    }
}

Nested Schema : groups

Type: object

A list of groups that the user belongs to, either thorough direct membership, nested groups, or dynamically calculated

Show Source

$ref(optional): string
SCIM++ Properties:
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: reference
- uniqueness: none
The URI of the corresponding Group resource to which the user belongs
dateAdded(optional): string
Added In: 2105200541

SCIM++ Properties:
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: dateTime
- uniqueness: none
Date when the member is Added to the group
display(optional): string
SCIM++ Properties:
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
A human readable name, primarily used for display purposes. READ-ONLY.
externalId(optional): string
Added In: 2011192329

SCIM++ Properties:
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
An identifier for the Resource as defined by the Service Consumer. READ-ONLY.
membershipOcid(optional): string
Added In: 2103141444

SCIM++ Properties:
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
Membership Ocid
nonUniqueDisplay(optional): string
Added In: 2011192329

SCIM++ Properties:
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
A human readable name for Group as defined by the Service Consumer. READ-ONLY.
ocid(optional): string
Added In: 2102181953

SCIM++ Properties:
- caseExact: true
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
Ocid of the User's group.
type(optional): string
Allowed Values: [ "direct", "indirect" ]
SCIM++ Properties:
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: false
- returned: request
- type: string
- uniqueness: none
A label indicating the attribute's function; e.g., 'direct' or 'indirect'.
value: string
SCIM++ Properties:
- caseExact: true
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: true
- returned: always
- type: string
- uniqueness: none
The identifier of the User's group.

{
    "type":"object",
    "description":"A list of groups that the user belongs to, either thorough direct membership, nested groups, or dynamically calculated",
    "required":[
        "value"
    ],
    "properties":{
        "value":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: true</li><li>returned: always</li><li>type: string</li><li>uniqueness: none</li></ul>The identifier of the User's group."
        },
        "ocid":{
            "type":"string",
            "description":"<b>Added In:</b> 2102181953<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>Ocid of the User's group."
        },
        "$ref":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: reference</li><li>uniqueness: none</li></ul>The URI of the corresponding Group resource to which the user belongs"
        },
        "display":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>A human readable name, primarily used for display purposes. READ-ONLY."
        },
        "nonUniqueDisplay":{
            "type":"string",
            "description":"<b>Added In:</b> 2011192329<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>A human readable name for Group as defined by the Service Consumer. READ-ONLY."
        },
        "externalId":{
            "type":"string",
            "description":"<b>Added In:</b> 2011192329<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>An identifier for the Resource as defined by the Service Consumer. READ-ONLY."
        },
        "type":{
            "type":"string",
            "enum":[
                "direct",
                "indirect"
            ],
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: request</li><li>type: string</li><li>uniqueness: none</li></ul>A label indicating the attribute's function; e.g., 'direct' or 'indirect'."
        },
        "membershipOcid":{
            "type":"string",
            "description":"<b>Added In:</b> 2103141444<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>Membership Ocid"
        },
        "dateAdded":{
            "type":"string",
            "description":"<b>Added In:</b> 2105200541<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: dateTime</li><li>uniqueness: none</li></ul>Date when the member is Added to the group"
        }
    }
}

Nested Schema : tags

Type: object

A list of tags on this resource.

Show Source

key: string
Maximum Length: 256
SCIM++ Properties:
- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readWrite
- required: true
- returned: default
- type: string
- uniqueness: none
Key or name of the tag.
value: string
Maximum Length: 256
SCIM++ Properties:
- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readWrite
- required: true
- returned: default
- type: string
- uniqueness: none
Value of the tag.

{
    "type":"object",
    "description":"A list of tags on this resource.",
    "required":[
        "key",
        "value"
    ],
    "properties":{
        "key":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: true</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>Key or name of the tag.",
            "maxLength":256
        },
        "value":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: true</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>Value of the tag.",
            "maxLength":256
        }
    }
}

Response

Supported Media Types

application/json
application/scim+json

201 Response

The request was successful.

Root Schema : PasswordAuthenticator

Type: object

Schema for password authenticator

Show Source

accountRecoveryRequired(optional): boolean
SCIM++ Properties:
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: request
- type: boolean
- uniqueness: none
Account Recovery Status of the User. True indicates account recovery is required for the user.
appDisplayName(optional): string
Minimum Length: 2

Maximum Length: 100
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: writeOnly
- returned: never
- idcsSearchable: true
- caseExact: false
- uniqueness: none
Display name of the application. If the request specifies a value for \"appName\", \"appId\", \"appServiceInstanceIdentifier\", or \"appDisplayName\", then the \"appRoles\" claim in the response must contain only the values that have matching values of subattributes \"appName\",\"appId\", \"appServiceInstanceIdentifier\", or \"appId\" derived from \"appDisplayName\".
appId(optional): string
Minimum Length: 2

Maximum Length: 100
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: writeOnly
- returned: never
- idcsSearchable: true
- caseExact: false
- uniqueness: none
Id of the application. If the request specifies a value for \"appName\", \"appId\", \"appServiceInstanceIdentifier\", or \"appDisplayName\", then the \"appRoles\" claim in the response must contain only the values that have matching values of subattributes \"appName\",\"appId\", \"appServiceInstanceIdentifier\", or \"appId\" derived from \"appDisplayName\".
applicableAuthenticationTargetApp(optional): object applicableAuthenticationTargetApp
SCIM++ Properties:
- idcsCompositeKey: [value]
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: false
- returned: request
- type: complex
- uniqueness: none
The app against which the user will authenticate. The value is not persisted but rather calculated. If the user's delegatedAuthenticationTargetApp is set, that value is returned. Otherwise, the app returned by evaluating the user's applicable Delegated Authentication Policy is returned. Value is returned only if authentication is not aginst OCI IAM.
applicableFactors: array applicableFactors
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: true
- mutability: readOnly
- required: true
- returned: default
- type: string
- uniqueness: none
Account recovery applicable factors
appName(optional): string
Minimum Length: 2

Maximum Length: 100
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: writeOnly
- returned: never
- idcsSearchable: true
- caseExact: false
- uniqueness: none
Name of the application. If the request specifies a value for \"appName\", \"appId\", \"appServiceInstanceIdentifier\", or \"appDisplayName\", then the \"appRoles\" claim in the response must contain only the values that have matching values of subattributes \"appName\",\"appId\", \"appServiceInstanceIdentifier\", or \"appId\" derived from \"appDisplayName\".
appRoles(optional): array appRoles
SCIM++ Properties:
- type: complex
- multiValued: true
- required: false
- idcsCompositeKey: [value]
- mutability: readOnly
- returned: request
- uniqueness: none
A list of AppRoles granted to the specified Subject (User or App).
appServiceInstanceIdentifier(optional): string
Minimum Length: 2

Maximum Length: 100
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: writeOnly
- returned: never
- idcsSearchable: false
- caseExact: false
- uniqueness: none
Service-instance identifier of the application. If the request specifies a value for \"appName\", \"appId\", \"appServiceInstanceIdentifier\", or \"appDisplayName\", then the \"appRoles\" claim in the response must contain only the values that have matching values of subattributes \"appName\",\"appId\", \"appServiceInstanceIdentifier\", or \"appId\" derived from \"appDisplayName\".
city(optional): string
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readOnly
- returned: default
- idcsPii: true
City in user's primary address
clientIp(optional): string
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: writeOnly
- returned: never
- uniqueness: none
- idcsSearchable: false
Client IP address
compartmentOcid(optional): string
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
OCI Compartment Id (ocid) in which the resource lives.
country(optional): string
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readOnly
- returned: default
- idcsPii: true
Country in user's primary address
csr(optional): boolean
SCIM++ Properties:
- type: boolean
- multiValued: false
- required: false
- mutability: readOnly
- returned: default
If true, this indicates that the authenticated subject is logged in as a CSR user. This attribute is returned in the response to a successful authentication request.
deleteInProgress(optional): boolean
SCIM++ Properties:
- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: boolean
- uniqueness: none
A boolean flag indicating this resource in the process of being deleted. Usually set to true when synchronous deletion of the resource would take too long.
domainOcid(optional): string
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
OCI Domain Id (ocid) in which the resource lives.
groups(optional): array groups
SCIM++ Properties:
- type: complex
- multiValued: true
- required: false
- idcsCompositeKey: [value]
- mutability: readOnly
- returned: request
- uniqueness: none
A list of groups of which the User or App is a member, either thorough direct membership, nested groups, or dynamically calculated
id(optional): string
SCIM++ Properties:
- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: false
- returned: always
- type: string
- uniqueness: global
Unique identifier for the SCIM Resource as defined by the Service Provider. Each representation of the Resource MUST include a non-empty id value. This identifier MUST be unique across the Service Provider's entire set of Resources. It MUST be a stable, non-reassignable identifier that does not change when the same Resource is returned in subsequent requests. The value of the id attribute is always issued by the Service Provider and MUST never be specified by the Service Consumer. bulkId: is a reserved keyword and MUST NOT be used in the unique identifier.
idcsCreatedBy: object idcsCreatedBy
SCIM++ Properties:
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: true
- returned: default
- type: complex
The User or App who created the Resource
idcsLastModifiedBy(optional): object idcsLastModifiedBy
SCIM++ Properties:
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: complex
The User or App who modified the Resource
idcsLastUpgradedInRelease(optional): string
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: request
- type: string
- uniqueness: none
The release number when the resource was upgraded.
idcsPreventedOperations(optional): array idcsPreventedOperations
SCIM++ Properties:
- idcsSearchable: false
- multiValued: true
- mutability: readOnly
- required: false
- returned: request
- type: string
- uniqueness: none
Each value of this attribute specifies an operation that only an internal client may perform on this particular resource.
includeMemberships(optional): boolean
SCIM++ Properties:
- type: boolean
- multiValued: false
- required: false
- mutability: writeOnly
- returned: never
- uniqueness: none
If true, indicates that the \"groups\" attribute and \"appRoles\" attribute should be included in the response if this request is successful.
includeMfaAttributes(optional): boolean
SCIM++ Properties:
- type: boolean
- multiValued: false
- required: false
- mutability: writeOnly
- returned: never
- uniqueness: none
If true, indicates that MFA attributes will be included in the response.
includeSFFAuthKeys(optional): boolean
SCIM++ Properties:
- type: boolean
- multiValued: false
- required: false
- mutability: writeOnly
- returned: never
- uniqueness: none
If true, indicates that the \"sffAuthKeys\" attribute should be included in the response if this request is successful.
isPolicyRequired(optional): boolean
SCIM++ Properties:
- idcsSearchable: false
- multiValued: false
- mutability: writeOnly
- required: false
- returned: never
- type: boolean
- uniqueness: none
if and only if true( treated as false if unspecified), the SignOn Policy accesss allow/deny result is considered in addition to the user credential validity to determine the authenticator success/failure
locale(optional): string
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readOnly
- returned: default
Locale supported by OCI IAM.This attribute contains calculated value of user preferred locale, which is closest OCI IAM supported locale. This attribute is intended for OCI IAM internal applications. This attribute is returned in the response to a successful authentication request.
mappingAttribute(optional): string
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readWrite
- returned: default
- uniqueness: none
If provided, the attribute 'mappingAttribute' together with 'mappingAttributeValue' identify the User or App against which the 'password' will be checked. For example, a requester might specify \"username\" as the value of 'mappingAttribute', and \"jdoe\" as the value of 'mappingAttributeValue'. Together, these values should form a filter -- e.g., \"username\" eq \"jdoe\" -- that selects exactly one User or App. The value of mappingAttribute must be a valid attribute name that is available in User or App schema. If not provided, the default value is \"username\" for User and \"name\" for App. Initially for App, \"name\" is the only supported attribute from App schema
mappingAttributeValue: string
Minimum Length: 1

Maximum Length: 256
SCIM++ Properties:
- type: string
- multiValued: false
- required: true
- mutability: readWrite
- returned: default
- uniqueness: none
The attribute 'mappingAttributeValue' or together with 'mappingAttribute', if provided, identify the User or App against which the 'password' will be checked. For example, a requester might specify \"username\" as the value of 'mappingAttribute', and \"jdoe\" as the value of 'mappingAttributeValue'. Together, these values should form a filter -- e.g., \"username\" eq \"jdoe\" -- that selects exactly one User or App. The value of mappingAttribute must be a valid attribute name that is available in User or App schema. If not provided, the default value is \"username\" for User and \"name\" for App. Initially for App, \"name\" is the only supported attribute from App schema
meta(optional): object meta
SCIM++ Properties:
- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- idcsCsvAttributeNameMappings: [[columnHeaderName:Created Date, mapsTo:meta.created]]
- type: complex
A complex attribute that contains resource metadata. All sub-attributes are OPTIONAL.
mfaIgnoredApps(optional): array mfaIgnoredApps
SCIM++ Properties:
- idcsSearchable: false
- multiValued: true
- mutability: readOnly
- required: false
- returned: request
- type: string
- uniqueness: none
User MFA Ignored Apps Identifiers
mfaPreferredAuthenticationFactor(optional): string
SCIM++ Properties:
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: request
- type: string
- uniqueness: none
MFA Preferred Authentication Factor
mfaPreferredDevice(optional): string
SCIM++ Properties:
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: request
- type: string
- uniqueness: none
MFA Preferred Device
mfaPreferredThirdPartyVendorName(optional): string
SCIM++ Properties:
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: request
- type: string
- uniqueness: none
MFA Preferred Third Party vendor name
mfaStatus(optional): string
SCIM++ Properties:
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: request
- type: string
- uniqueness: none
MFA Status of the User
ocid(optional): string
Maximum Length: 255
SCIM++ Properties:
- caseExact: true
- idcsSearchable: true
- multiValued: false
- mutability: immutable
- required: false
- returned: default
- type: string
- uniqueness: global
Unique OCI identifier for the SCIM Resource.
password: string
Minimum Length: 1

Maximum Length: 500
SCIM++ Properties:
- type: string
- multiValued: false
- required: true
- mutability: writeOnly
- returned: never
- idcsSensitive: hash
- uniqueness: none
The value of this attribute is passed as an input-parameter. This PasswordAuthenticator must compare the its value to the credential of the User or App.
postalCode(optional): string
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readOnly
- returned: default
- idcsPii: true
Postal code in user's primary address
preferredLanguage(optional): string
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readOnly
- returned: default
Preferred language supported by OCI IAM. This attribute contains calculated value of user preferred language, which is closest OCI IAM supported language. This attribute is intended for OCI IAM internal applications. This attribute is returned in the response to a successful authentication request.
primaryEmailVerified(optional): boolean
SCIM++ Properties:
- caseExact: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: boolean
- uniqueness: none
Boolean value which indicates whether his primary email is verified or not
schemas: array schemas
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: true
- mutability: readWrite
- required: true
- returned: default
- type: string
- uniqueness: none
REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard \"enterprise\" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.
securityQuestionsPresent(optional): boolean
SCIM++ Properties:
- type: boolean
- multiValued: false
- required: false
- mutability: readOnly
- returned: default
- uniqueness: none
If true, indicates that User has setup already setup Security Questions.
sffAuthKeys(optional): string
SCIM++ Properties:
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: request
- type: string
- uniqueness: none
SFF auth keys clob
state(optional): string
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readOnly
- returned: default
- idcsPii: true
State in user's primary address
tags(optional): array tags
SCIM++ Properties:
- idcsCompositeKey: [key, value]
- idcsSearchable: true
- multiValued: true
- mutability: readWrite
- required: false
- returned: request
- type: complex
- uniqueness: none
A list of tags on this resource.
tenancyOcid(optional): string
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
OCI Tenant Id (ocid) in which the resource lives.
tenantName(optional): string
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readOnly
- returned: default
This attribute identifies the name of the tenant (also known as identity-domain) in which the subject User or App is defined. This attribute is returned in the response to a successful authentication request.
timezone(optional): string
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readOnly
- returned: default
User's time zone
type(optional): string
Allowed Values: [ "User", "App" ]
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readOnly
- returned: default
- uniqueness: none
A label indicating the type of the specified identity--either 'User' or 'App'.
userAllowedToSetRecoveryEmail(optional): boolean
SCIM++ Properties:
- caseExact: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: boolean
- uniqueness: none
Indicates whether a user can set recovery email
userDisplayName(optional): string
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readOnly
- returned: default
- uniqueness: none
User display name
userEmail(optional): string
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readOnly
- returned: always
- uniqueness: none
- idcsPii: true
User's primary email. This attribute is returned in the response to a successful authentication request.
userLocaleAsEntered(optional): string
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readOnly
- returned: default
- caseExact: true
- idcsSearchable: false
User's native locale. This attribute is intended for external applications to read user's native locale. This attribute is returned in the response to a successful authentication request.
userName(optional): string
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readOnly
- returned: default
- uniqueness: none
- idcsPii: true
User name
userPreferredLanguageAsEntered(optional): string
SCIM++ Properties:
- type: string
- multiValued: false
- required: false
- mutability: readOnly
- returned: default
- caseExact: true
- idcsSearchable: false
User's native preferred language. This attribute is intended for external applications to read user's native language. This attribute is returned in the response to a successful authentication request.

{
    "type":"object",
    "description":"Schema for password authenticator",
    "required":[
        "schemas",
        "idcsCreatedBy",
        "mappingAttributeValue",
        "password",
        "applicableFactors"
    ],
    "properties":{
        "id":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: always</li><li>type: string</li><li>uniqueness: global</li></ul>Unique identifier for the SCIM Resource as defined by the Service Provider. Each representation of the Resource MUST include a non-empty id value. This identifier MUST be unique across the Service Provider's entire set of Resources. It MUST be a stable, non-reassignable identifier that does not change when the same Resource is returned in subsequent requests. The value of the id attribute is always issued by the Service Provider and MUST never be specified by the Service Consumer. bulkId: is a reserved keyword and MUST NOT be used in the unique identifier."
        },
        "ocid":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: immutable</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: global</li></ul>Unique OCI identifier for the SCIM Resource.",
            "maxLength":255
        },
        "schemas":{
            "type":"array",
            "items":{
                "type":"string"
            },
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: true</li><li>mutability: readWrite</li><li>required: true</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard \\\"enterprise\\\" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior."
        },
        "meta":{
            "type":"object",
            "properties":{
                "resourceType":{
                    "type":"string",
                    "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>Name of the resource type of the resource--for example, Users or Groups"
                },
                "created":{
                    "type":"string",
                    "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: dateTime</li><li>uniqueness: none</li></ul>The DateTime the Resource was added to the Service Provider"
                },
                "lastModified":{
                    "type":"string",
                    "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: dateTime</li><li>uniqueness: none</li></ul>The most recent DateTime that the details of this Resource were updated at the Service Provider. If this Resource has never been modified since its initial creation, the value MUST be the same as the value of created. The attribute MUST be a DateTime."
                },
                "location":{
                    "type":"string",
                    "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>The URI of the Resource being returned. This value MUST be the same as the Location HTTP response header."
                },
                "version":{
                    "type":"string",
                    "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>The version of the Resource being returned. This value must be the same as the ETag HTTP response header."
                }
            },
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>idcsCsvAttributeNameMappings: [[columnHeaderName:Created Date, mapsTo:meta.created]]</li><li>type: complex</li></ul>A complex attribute that contains resource metadata. All sub-attributes are OPTIONAL."
        },
        "idcsCreatedBy":{
            "type":"object",
            "properties":{
                "value":{
                    "type":"string",
                    "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: true</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>The ID of the SCIM resource that represents the User or App who created this Resource"
                },
                "$ref":{
                    "type":"string",
                    "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: reference</li><li>uniqueness: none</li></ul>The URI of the SCIM resource that represents the User or App who created this Resource"
                },
                "type":{
                    "type":"string",
                    "enum":[
                        "User",
                        "App"
                    ],
                    "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>The type of resource, User or App, that created this Resource"
                },
                "display":{
                    "type":"string",
                    "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>The displayName of the User or App who created this Resource"
                },
                "ocid":{
                    "type":"string",
                    "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readOnly</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>The OCID of the SCIM resource that represents the User or App who created this Resource"
                }
            },
            "required":[
                "value"
            ],
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: true</li><li>returned: default</li><li>type: complex</li></ul>The User or App who created the Resource"
        },
        "idcsLastModifiedBy":{
            "type":"object",
            "properties":{
                "value":{
                    "type":"string",
                    "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: true</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>The ID of the SCIM resource that represents the User or App who modified this Resource"
                },
                "$ref":{
                    "type":"string",
                    "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: reference</li><li>uniqueness: none</li></ul>The URI of the SCIM resource that represents the User or App who modified this Resource"
                },
                "type":{
                    "type":"string",
                    "enum":[
                        "User",
                        "App"
                    ],
                    "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>The type of resource, User or App, that modified this Resource"
                },
                "display":{
                    "type":"string",
                    "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>The displayName of the User or App who modified this Resource"
                },
                "ocid":{
                    "type":"string",
                    "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readOnly</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>The OCID of the SCIM resource that represents the User or App who modified this Resource"
                }
            },
            "required":[
                "value"
            ],
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: complex</li></ul>The User or App who modified the Resource"
        },
        "idcsPreventedOperations":{
            "type":"array",
            "items":{
                "type":"string"
            },
            "enum":[
                "replace",
                "update",
                "delete"
            ],
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>idcsSearchable: false</li><li>multiValued: true</li><li>mutability: readOnly</li><li>required: false</li><li>returned: request</li><li>type: string</li><li>uniqueness: none</li></ul>Each value of this attribute specifies an operation that only an internal client may perform on this particular resource."
        },
        "tags":{
            "type":"array",
            "items":{
                "$ref":"#/definitions/tags"
            },
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>idcsCompositeKey: [key, value]</li><li>idcsSearchable: true</li><li>multiValued: true</li><li>mutability: readWrite</li><li>required: false</li><li>returned: request</li><li>type: complex</li><li>uniqueness: none</li></ul>A list of tags on this resource."
        },
        "deleteInProgress":{
            "type":"boolean",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: boolean</li><li>uniqueness: none</li></ul>A boolean flag indicating this resource in the process of being deleted. Usually set to true when synchronous deletion of the resource would take too long."
        },
        "idcsLastUpgradedInRelease":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: request</li><li>type: string</li><li>uniqueness: none</li></ul>The release number when the resource was upgraded."
        },
        "domainOcid":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>OCI Domain Id (ocid) in which the resource lives."
        },
        "compartmentOcid":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>OCI Compartment Id (ocid) in which the resource lives."
        },
        "tenancyOcid":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>OCI Tenant Id (ocid) in which the resource lives."
        },
        "mappingAttribute":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>type: string</li><li>multiValued: false</li><li>required: false</li><li>mutability: readWrite</li><li>returned: default</li><li>uniqueness: none</li></ul>If provided, the attribute 'mappingAttribute' together with 'mappingAttributeValue' identify the User or App against which the 'password' will be checked.  For example, a requester might specify \\\"username\\\" as the value of 'mappingAttribute', and \\\"jdoe\\\" as the value of 'mappingAttributeValue'.  Together, these values should form a filter -- e.g., \\\"username\\\" eq \\\"jdoe\\\" -- that selects exactly one User or App. The value of mappingAttribute must be a valid attribute name that is available in User or App schema. If not provided, the default value is \\\"username\\\" for User and \\\"name\\\" for App. Initially for App, \\\"name\\\" is the only supported attribute from App schema"
        },
        "mappingAttributeValue":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>type: string</li><li>multiValued: false</li><li>required: true</li><li>mutability: readWrite</li><li>returned: default</li><li>uniqueness: none</li></ul>The attribute 'mappingAttributeValue' or together with 'mappingAttribute', if provided, identify the User or App against which the 'password' will be checked.  For example, a requester might specify \\\"username\\\" as the value of 'mappingAttribute', and \\\"jdoe\\\" as the value of 'mappingAttributeValue'.  Together, these values should form a filter -- e.g., \\\"username\\\" eq \\\"jdoe\\\" -- that selects exactly one User or App. The value of mappingAttribute must be a valid attribute name that is available in User or App schema. If not provided, the default value is \\\"username\\\" for User and \\\"name\\\" for App. Initially for App, \\\"name\\\" is the only supported attribute from App schema",
            "minLength":1,
            "maxLength":256
        },
        "clientIp":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>type: string</li><li>multiValued: false</li><li>required: false</li><li>mutability: writeOnly</li><li>returned: never</li><li>uniqueness: none</li><li>idcsSearchable: false</li></ul>Client IP address"
        },
        "sffAuthKeys":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: request</li><li>type: string</li><li>uniqueness: none</li></ul>SFF auth keys clob"
        },
        "includeSFFAuthKeys":{
            "type":"boolean",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>type: boolean</li><li>multiValued: false</li><li>required: false</li><li>mutability: writeOnly</li><li>returned: never</li><li>uniqueness: none</li></ul>If true, indicates that the \\\"sffAuthKeys\\\" attribute should be included in the response if this request is successful."
        },
        "isPolicyRequired":{
            "type":"boolean",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: writeOnly</li><li>required: false</li><li>returned: never</li><li>type: boolean</li><li>uniqueness: none</li></ul>if and only if true( treated as false if unspecified), the SignOn Policy accesss allow/deny result is considered in addition to the user credential validity to determine the authenticator success/failure "
        },
        "password":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>type: string</li><li>multiValued: false</li><li>required: true</li><li>mutability: writeOnly</li><li>returned: never</li><li>idcsSensitive: hash</li><li>uniqueness: none</li></ul>The value of this attribute is passed as an input-parameter. This PasswordAuthenticator must compare the its value to the credential of the User or App.",
            "minLength":1,
            "maxLength":500
        },
        "includeMemberships":{
            "type":"boolean",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>type: boolean</li><li>multiValued: false</li><li>required: false</li><li>mutability: writeOnly</li><li>returned: never</li><li>uniqueness: none</li></ul>If true, indicates that the \\\"groups\\\" attribute and \\\"appRoles\\\" attribute should be included in the response if this request is successful."
        },
        "appName":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>type: string</li><li>multiValued: false</li><li>required: false</li><li>mutability: writeOnly</li><li>returned: never</li><li>idcsSearchable: true</li><li>caseExact: false</li><li>uniqueness: none</li></ul>Name of the application. If the request specifies a value for \\\"appName\\\", \\\"appId\\\", \\\"appServiceInstanceIdentifier\\\", or \\\"appDisplayName\\\", then the \\\"appRoles\\\" claim in the response must contain only the values that have matching values of subattributes \\\"appName\\\",\\\"appId\\\", \\\"appServiceInstanceIdentifier\\\", or \\\"appId\\\" derived from \\\"appDisplayName\\\".",
            "minLength":2,
            "maxLength":100
        },
        "appId":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>type: string</li><li>multiValued: false</li><li>required: false</li><li>mutability: writeOnly</li><li>returned: never</li><li>idcsSearchable: true</li><li>caseExact: false</li><li>uniqueness: none</li></ul>Id of the application. If the request specifies a value for \\\"appName\\\", \\\"appId\\\", \\\"appServiceInstanceIdentifier\\\", or \\\"appDisplayName\\\", then the \\\"appRoles\\\" claim in the response must contain only the values that have matching values of subattributes \\\"appName\\\",\\\"appId\\\", \\\"appServiceInstanceIdentifier\\\", or \\\"appId\\\" derived from \\\"appDisplayName\\\".",
            "minLength":2,
            "maxLength":100
        },
        "appDisplayName":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>type: string</li><li>multiValued: false</li><li>required: false</li><li>mutability: writeOnly</li><li>returned: never</li><li>idcsSearchable: true</li><li>caseExact: false</li><li>uniqueness: none</li></ul>Display name of the application. If the request specifies a value for \\\"appName\\\", \\\"appId\\\", \\\"appServiceInstanceIdentifier\\\", or \\\"appDisplayName\\\", then the \\\"appRoles\\\" claim in the response must contain only the values that have matching values of subattributes \\\"appName\\\",\\\"appId\\\", \\\"appServiceInstanceIdentifier\\\", or \\\"appId\\\" derived from \\\"appDisplayName\\\".",
            "minLength":2,
            "maxLength":100
        },
        "appServiceInstanceIdentifier":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>type: string</li><li>multiValued: false</li><li>required: false</li><li>mutability: writeOnly</li><li>returned: never</li><li>idcsSearchable: false</li><li>caseExact: false</li><li>uniqueness: none</li></ul>Service-instance identifier of the application. If the request specifies a value for \\\"appName\\\", \\\"appId\\\", \\\"appServiceInstanceIdentifier\\\", or \\\"appDisplayName\\\", then the \\\"appRoles\\\" claim in the response must contain only the values that have matching values of subattributes \\\"appName\\\",\\\"appId\\\", \\\"appServiceInstanceIdentifier\\\", or \\\"appId\\\" derived from \\\"appDisplayName\\\".",
            "minLength":2,
            "maxLength":100
        },
        "userDisplayName":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>type: string</li><li>multiValued: false</li><li>required: false</li><li>mutability: readOnly</li><li>returned: default</li><li>uniqueness: none</li></ul>User display name"
        },
        "userName":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>type: string</li><li>multiValued: false</li><li>required: false</li><li>mutability: readOnly</li><li>returned: default</li><li>uniqueness: none</li><li>idcsPii: true</li></ul>User name"
        },
        "userEmail":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>type: string</li><li>multiValued: false</li><li>required: false</li><li>mutability: readOnly</li><li>returned: always</li><li>uniqueness: none</li><li>idcsPii: true</li></ul>User's primary email.  This attribute is returned in the response to a successful authentication request."
        },
        "preferredLanguage":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>type: string</li><li>multiValued: false</li><li>required: false</li><li>mutability: readOnly</li><li>returned: default</li></ul>Preferred language supported by OCI IAM. This attribute contains calculated value of user preferred language, which is closest OCI IAM supported language. This attribute is intended for OCI IAM internal applications. This attribute is returned in the response to a successful authentication request."
        },
        "userPreferredLanguageAsEntered":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>type: string</li><li>multiValued: false</li><li>required: false</li><li>mutability: readOnly</li><li>returned: default</li><li>caseExact: true</li><li>idcsSearchable: false</li></ul>User's native preferred language. This attribute is intended for external applications to read user's native language. This attribute is returned in the response to a successful authentication request."
        },
        "locale":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>type: string</li><li>multiValued: false</li><li>required: false</li><li>mutability: readOnly</li><li>returned: default</li></ul>Locale supported by OCI IAM.This attribute contains calculated value of user preferred locale, which is closest OCI IAM supported locale. This attribute is intended for OCI IAM internal applications. This attribute is returned in the response to a successful authentication request."
        },
        "userLocaleAsEntered":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>type: string</li><li>multiValued: false</li><li>required: false</li><li>mutability: readOnly</li><li>returned: default</li><li>caseExact: true</li><li>idcsSearchable: false</li></ul>User's native locale. This attribute is intended for external applications to read user's native locale. This attribute is returned in the response to a successful authentication request."
        },
        "timezone":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>type: string</li><li>multiValued: false</li><li>required: false</li><li>mutability: readOnly</li><li>returned: default</li></ul>User's time zone"
        },
        "city":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>type: string</li><li>multiValued: false</li><li>required: false</li><li>mutability: readOnly</li><li>returned: default</li><li>idcsPii: true</li></ul>City in user's primary address"
        },
        "state":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>type: string</li><li>multiValued: false</li><li>required: false</li><li>mutability: readOnly</li><li>returned: default</li><li>idcsPii: true</li></ul>State in user's primary address"
        },
        "country":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>type: string</li><li>multiValued: false</li><li>required: false</li><li>mutability: readOnly</li><li>returned: default</li><li>idcsPii: true</li></ul>Country in user's primary address"
        },
        "postalCode":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>type: string</li><li>multiValued: false</li><li>required: false</li><li>mutability: readOnly</li><li>returned: default</li><li>idcsPii: true</li></ul>Postal code in user's primary address"
        },
        "csr":{
            "type":"boolean",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>type: boolean</li><li>multiValued: false</li><li>required: false</li><li>mutability: readOnly</li><li>returned: default</li></ul>If true, this indicates that the authenticated subject is logged in as a CSR user.  This attribute is returned in the response to a successful authentication request."
        },
        "tenantName":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>type: string</li><li>multiValued: false</li><li>required: false</li><li>mutability: readOnly</li><li>returned: default</li></ul>This attribute identifies the name of the tenant (also known as identity-domain) in which the subject User or App is defined.  This attribute is returned in the response to a successful authentication request."
        },
        "type":{
            "type":"string",
            "enum":[
                "User",
                "App"
            ],
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>type: string</li><li>multiValued: false</li><li>required: false</li><li>mutability: readOnly</li><li>returned: default</li><li>uniqueness: none</li></ul>A label indicating the type of the specified identity--either 'User' or 'App'."
        },
        "groups":{
            "type":"array",
            "items":{
                "$ref":"#/definitions/groups"
            },
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>type: complex</li><li>multiValued: true</li><li>required: false</li><li>idcsCompositeKey: [value]</li><li>mutability: readOnly</li><li>returned: request</li><li>uniqueness: none</li></ul>A list of groups of which the User or App is a member, either thorough direct membership, nested groups, or dynamically calculated"
        },
        "appRoles":{
            "type":"array",
            "items":{
                "$ref":"#/definitions/appRoles"
            },
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>type: complex</li><li>multiValued: true</li><li>required: false</li><li>idcsCompositeKey: [value]</li><li>mutability: readOnly</li><li>returned: request</li><li>uniqueness: none</li></ul>A list of AppRoles granted to the specified Subject (User or App)."
        },
        "mfaStatus":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: request</li><li>type: string</li><li>uniqueness: none</li></ul>MFA Status of the User"
        },
        "mfaPreferredAuthenticationFactor":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: request</li><li>type: string</li><li>uniqueness: none</li></ul>MFA Preferred Authentication Factor"
        },
        "mfaPreferredDevice":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: request</li><li>type: string</li><li>uniqueness: none</li></ul>MFA Preferred Device"
        },
        "mfaPreferredThirdPartyVendorName":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: request</li><li>type: string</li><li>uniqueness: none</li></ul>MFA Preferred Third Party vendor name"
        },
        "includeMfaAttributes":{
            "type":"boolean",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>type: boolean</li><li>multiValued: false</li><li>required: false</li><li>mutability: writeOnly</li><li>returned: never</li><li>uniqueness: none</li></ul>If true, indicates that MFA attributes will be included in the response."
        },
        "securityQuestionsPresent":{
            "type":"boolean",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>type: boolean</li><li>multiValued: false</li><li>required: false</li><li>mutability: readOnly</li><li>returned: default</li><li>uniqueness: none</li></ul>If true, indicates that User has setup already setup Security Questions."
        },
        "mfaIgnoredApps":{
            "type":"array",
            "items":{
                "type":"string"
            },
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>idcsSearchable: false</li><li>multiValued: true</li><li>mutability: readOnly</li><li>required: false</li><li>returned: request</li><li>type: string</li><li>uniqueness: none</li></ul>User MFA Ignored Apps Identifiers"
        },
        "accountRecoveryRequired":{
            "type":"boolean",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: request</li><li>type: boolean</li><li>uniqueness: none</li></ul>Account Recovery Status of the User. True indicates account recovery is required for the user."
        },
        "userAllowedToSetRecoveryEmail":{
            "type":"boolean",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: boolean</li><li>uniqueness: none</li></ul>Indicates whether a user can set recovery email"
        },
        "primaryEmailVerified":{
            "type":"boolean",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: boolean</li><li>uniqueness: none</li></ul>Boolean value which indicates whether his primary email is verified or not"
        },
        "applicableFactors":{
            "type":"array",
            "items":{
                "type":"string"
            },
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: true</li><li>mutability: readOnly</li><li>required: true</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>Account recovery applicable factors"
        },
        "applicableAuthenticationTargetApp":{
            "type":"object",
            "properties":{
                "value":{
                    "type":"string",
                    "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>multiValued: false</li><li>mutability: readWrite</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>App identifier"
                },
                "$ref":{
                    "type":"string",
                    "description":"<b>SCIM++ Properties:</b><br/><ul><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: request</li><li>type: reference</li><li>uniqueness: none</li></ul>Display Name for the Authn Target App. In case of AD App it will be the domain name"
                },
                "type":{
                    "type":"string",
                    "description":"<b>SCIM++ Properties:</b><br/><ul><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: true</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>A label that indicates whether this is an App or IdentitySource."
                },
                "display":{
                    "type":"string",
                    "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>App Display Name"
                }
            },
            "required":[
                "type"
            ],
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>idcsCompositeKey: [value]</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: false</li><li>returned: request</li><li>type: complex</li><li>uniqueness: none</li></ul>The app against which the user will authenticate. The value is not persisted but rather calculated. If the user's delegatedAuthenticationTargetApp is set, that value is returned. Otherwise, the app returned by evaluating the user's applicable Delegated Authentication Policy is returned. Value is returned only if authentication is not aginst OCI IAM."
        }
    }
}

Nested Schema : applicableAuthenticationTargetApp

Type: object

SCIM++ Properties:

idcsCompositeKey: [value]
idcsSearchable: false
multiValued: false
mutability: readWrite
required: false
returned: request
type: complex
uniqueness: none

Show Source

$ref(optional): string
SCIM++ Properties:
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: request
- type: reference
- uniqueness: none
Display Name for the Authn Target App. In case of AD App it will be the domain name
display(optional): string
SCIM++ Properties:
- caseExact: true
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
App Display Name
type: string
SCIM++ Properties:
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: true
- returned: default
- type: string
- uniqueness: none
A label that indicates whether this is an App or IdentitySource.
value(optional): string
SCIM++ Properties:
- caseExact: true
- multiValued: false
- mutability: readWrite
- returned: default
- type: string
- uniqueness: none
App identifier

{
    "type":"object",
    "properties":{
        "value":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>multiValued: false</li><li>mutability: readWrite</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>App identifier"
        },
        "$ref":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: request</li><li>type: reference</li><li>uniqueness: none</li></ul>Display Name for the Authn Target App. In case of AD App it will be the domain name"
        },
        "type":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: true</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>A label that indicates whether this is an App or IdentitySource."
        },
        "display":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>App Display Name"
        }
    },
    "required":[
        "type"
    ],
    "description":"<b>SCIM++ Properties:</b><br/><ul><li>idcsCompositeKey: [value]</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: false</li><li>returned: request</li><li>type: complex</li><li>uniqueness: none</li></ul>The app against which the user will authenticate. The value is not persisted but rather calculated. If the user's delegatedAuthenticationTargetApp is set, that value is returned. Otherwise, the app returned by evaluating the user's applicable Delegated Authentication Policy is returned. Value is returned only if authentication is not aginst OCI IAM."
}

Nested Schema : applicableFactors

Type: array

SCIM++ Properties:

caseExact: false
idcsSearchable: false
multiValued: true
mutability: readOnly
required: true
returned: default
type: string
uniqueness: none

Account recovery applicable factors

Show Source

Array of: string

{
    "type":"array",
    "items":{
        "type":"string"
    },
    "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: true</li><li>mutability: readOnly</li><li>required: true</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>Account recovery applicable factors"
}

Nested Schema : appRoles

Type: array

SCIM++ Properties:

type: complex
multiValued: true
required: false
idcsCompositeKey: [value]
mutability: readOnly
returned: request
uniqueness: none

A list of AppRoles granted to the specified Subject (User or App).

Show Source

Array of: object appRoles
SCIM++ Properties:
- idcsCompositeKey: [value]
- multiValued: true
- mutability: readOnly
- required: false
- returned: request
- type: complex
- uniqueness: none
A list of all AppRoles to which this User belongs directly, indirectly or implicitly. The User could belong directly because the User is a member of the AppRole, could belong indirectly because the User is a member of a Group that is a member of the AppRole, or could belong implicitly because the AppRole is public.

{
    "type":"array",
    "items":{
        "$ref":"#/definitions/appRoles"
    },
    "description":"<b>SCIM++ Properties:</b><br/><ul><li>type: complex</li><li>multiValued: true</li><li>required: false</li><li>idcsCompositeKey: [value]</li><li>mutability: readOnly</li><li>returned: request</li><li>uniqueness: none</li></ul>A list of AppRoles granted to the specified Subject (User or App)."
}

Nested Schema : groups

Type: array

SCIM++ Properties:

type: complex
multiValued: true
required: false
idcsCompositeKey: [value]
mutability: readOnly
returned: request
uniqueness: none

A list of groups of which the User or App is a member, either thorough direct membership, nested groups, or dynamically calculated

Show Source

Array of: object groups

A list of groups that the user belongs to, either thorough direct membership, nested groups, or dynamically calculated

{
    "type":"array",
    "items":{
        "$ref":"#/definitions/groups"
    },
    "description":"<b>SCIM++ Properties:</b><br/><ul><li>type: complex</li><li>multiValued: true</li><li>required: false</li><li>idcsCompositeKey: [value]</li><li>mutability: readOnly</li><li>returned: request</li><li>uniqueness: none</li></ul>A list of groups of which the User or App is a member, either thorough direct membership, nested groups, or dynamically calculated"
}

Nested Schema : idcsCreatedBy

Type: object

SCIM++ Properties:

idcsSearchable: true
multiValued: false
mutability: readOnly
required: true
returned: default
type: complex

The User or App who created the Resource

Show Source

$ref(optional): string
SCIM++ Properties:
- caseExact: true
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: reference
- uniqueness: none
The URI of the SCIM resource that represents the User or App who created this Resource
display(optional): string
SCIM++ Properties:
- caseExact: true
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
The displayName of the User or App who created this Resource
ocid(optional): string
SCIM++ Properties:
- caseExact: true
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- returned: default
- type: string
- uniqueness: none
The OCID of the SCIM resource that represents the User or App who created this Resource
type(optional): string
Allowed Values: [ "User", "App" ]
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
The type of resource, User or App, that created this Resource
value: string
SCIM++ Properties:
- caseExact: true
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: true
- returned: default
- type: string
- uniqueness: none
The ID of the SCIM resource that represents the User or App who created this Resource

{
    "type":"object",
    "properties":{
        "value":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: true</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>The ID of the SCIM resource that represents the User or App who created this Resource"
        },
        "$ref":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: reference</li><li>uniqueness: none</li></ul>The URI of the SCIM resource that represents the User or App who created this Resource"
        },
        "type":{
            "type":"string",
            "enum":[
                "User",
                "App"
            ],
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>The type of resource, User or App, that created this Resource"
        },
        "display":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>The displayName of the User or App who created this Resource"
        },
        "ocid":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readOnly</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>The OCID of the SCIM resource that represents the User or App who created this Resource"
        }
    },
    "required":[
        "value"
    ],
    "description":"<b>SCIM++ Properties:</b><br/><ul><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: true</li><li>returned: default</li><li>type: complex</li></ul>The User or App who created the Resource"
}

Nested Schema : idcsLastModifiedBy

Type: object

SCIM++ Properties:

idcsSearchable: true
multiValued: false
mutability: readOnly
required: false
returned: default
type: complex

The User or App who modified the Resource

Show Source

$ref(optional): string
SCIM++ Properties:
- caseExact: true
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: reference
- uniqueness: none
The URI of the SCIM resource that represents the User or App who modified this Resource
display(optional): string
SCIM++ Properties:
- caseExact: true
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
The displayName of the User or App who modified this Resource
ocid(optional): string
SCIM++ Properties:
- caseExact: true
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- returned: default
- type: string
- uniqueness: none
The OCID of the SCIM resource that represents the User or App who modified this Resource
type(optional): string
Allowed Values: [ "User", "App" ]
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
The type of resource, User or App, that modified this Resource
value: string
SCIM++ Properties:
- caseExact: true
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: true
- returned: default
- type: string
- uniqueness: none
The ID of the SCIM resource that represents the User or App who modified this Resource

{
    "type":"object",
    "properties":{
        "value":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: true</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>The ID of the SCIM resource that represents the User or App who modified this Resource"
        },
        "$ref":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: reference</li><li>uniqueness: none</li></ul>The URI of the SCIM resource that represents the User or App who modified this Resource"
        },
        "type":{
            "type":"string",
            "enum":[
                "User",
                "App"
            ],
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>The type of resource, User or App, that modified this Resource"
        },
        "display":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>The displayName of the User or App who modified this Resource"
        },
        "ocid":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readOnly</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>The OCID of the SCIM resource that represents the User or App who modified this Resource"
        }
    },
    "required":[
        "value"
    ],
    "description":"<b>SCIM++ Properties:</b><br/><ul><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: complex</li></ul>The User or App who modified the Resource"
}

Nested Schema : idcsPreventedOperations

Type: array

SCIM++ Properties:

idcsSearchable: false
multiValued: true
mutability: readOnly
required: false
returned: request
type: string
uniqueness: none

Each value of this attribute specifies an operation that only an internal client may perform on this particular resource.

Allowed Values:

[
    "replace",
    "update",
    "delete"
]

Show Source

Array of: string

{
    "type":"array",
    "items":{
        "type":"string"
    },
    "enum":[
        "replace",
        "update",
        "delete"
    ],
    "description":"<b>SCIM++ Properties:</b><br/><ul><li>idcsSearchable: false</li><li>multiValued: true</li><li>mutability: readOnly</li><li>required: false</li><li>returned: request</li><li>type: string</li><li>uniqueness: none</li></ul>Each value of this attribute specifies an operation that only an internal client may perform on this particular resource."
}

Nested Schema : meta

Type: object

SCIM++ Properties:

caseExact: false
idcsSearchable: true
multiValued: false
mutability: readOnly
required: false
returned: default
idcsCsvAttributeNameMappings: [[columnHeaderName:Created Date, mapsTo:meta.created]]
type: complex

A complex attribute that contains resource metadata. All sub-attributes are OPTIONAL.

Show Source

created(optional): string
SCIM++ Properties:
- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: dateTime
- uniqueness: none
The DateTime the Resource was added to the Service Provider
lastModified(optional): string
SCIM++ Properties:
- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: dateTime
- uniqueness: none
The most recent DateTime that the details of this Resource were updated at the Service Provider. If this Resource has never been modified since its initial creation, the value MUST be the same as the value of created. The attribute MUST be a DateTime.
location(optional): string
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
The URI of the Resource being returned. This value MUST be the same as the Location HTTP response header.
resourceType(optional): string
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
Name of the resource type of the resource--for example, Users or Groups
version(optional): string
SCIM++ Properties:
- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
The version of the Resource being returned. This value must be the same as the ETag HTTP response header.

{
    "type":"object",
    "properties":{
        "resourceType":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>Name of the resource type of the resource--for example, Users or Groups"
        },
        "created":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: dateTime</li><li>uniqueness: none</li></ul>The DateTime the Resource was added to the Service Provider"
        },
        "lastModified":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: dateTime</li><li>uniqueness: none</li></ul>The most recent DateTime that the details of this Resource were updated at the Service Provider. If this Resource has never been modified since its initial creation, the value MUST be the same as the value of created. The attribute MUST be a DateTime."
        },
        "location":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>The URI of the Resource being returned. This value MUST be the same as the Location HTTP response header."
        },
        "version":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>The version of the Resource being returned. This value must be the same as the ETag HTTP response header."
        }
    },
    "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>idcsCsvAttributeNameMappings: [[columnHeaderName:Created Date, mapsTo:meta.created]]</li><li>type: complex</li></ul>A complex attribute that contains resource metadata. All sub-attributes are OPTIONAL."
}

Nested Schema : mfaIgnoredApps

Type: array

SCIM++ Properties:

idcsSearchable: false
multiValued: true
mutability: readOnly
required: false
returned: request
type: string
uniqueness: none

User MFA Ignored Apps Identifiers

Show Source

Array of: string

{
    "type":"array",
    "items":{
        "type":"string"
    },
    "description":"<b>SCIM++ Properties:</b><br/><ul><li>idcsSearchable: false</li><li>multiValued: true</li><li>mutability: readOnly</li><li>required: false</li><li>returned: request</li><li>type: string</li><li>uniqueness: none</li></ul>User MFA Ignored Apps Identifiers"
}

Nested Schema : schemas

Type: array

SCIM++ Properties:

caseExact: false
idcsSearchable: false
multiValued: true
mutability: readWrite
required: true
returned: default
type: string
uniqueness: none

Show Source

Array of: string

{
    "type":"array",
    "items":{
        "type":"string"
    },
    "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: true</li><li>mutability: readWrite</li><li>required: true</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard \\\"enterprise\\\" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior."
}

Nested Schema : tags

Type: array

SCIM++ Properties:

idcsCompositeKey: [key, value]
idcsSearchable: true
multiValued: true
mutability: readWrite
required: false
returned: request
type: complex
uniqueness: none

A list of tags on this resource.

Show Source

Array of: object tags

A list of tags on this resource.

{
    "type":"array",
    "items":{
        "$ref":"#/definitions/tags"
    },
    "description":"<b>SCIM++ Properties:</b><br/><ul><li>idcsCompositeKey: [key, value]</li><li>idcsSearchable: true</li><li>multiValued: true</li><li>mutability: readWrite</li><li>required: false</li><li>returned: request</li><li>type: complex</li><li>uniqueness: none</li></ul>A list of tags on this resource."
}

Nested Schema : appRoles

Type: object

SCIM++ Properties:

idcsCompositeKey: [value]
multiValued: true
mutability: readOnly
required: false
returned: request
type: complex
uniqueness: none

Show Source

$ref(optional): string
SCIM++ Properties:
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: reference
- uniqueness: none
The URI of the AppRole assigned to the User.
adminRole(optional): boolean
SCIM++ Properties:
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: boolean
- uniqueness: none
If true, then the role provides administrative access privileges. READ-ONLY.
appId(optional): string
SCIM++ Properties:
- caseExact: true
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
The ID of the App that defines this AppRole.
appName(optional): string
SCIM++ Properties:
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
The name (Client ID) of the App that defines this AppRole.
display(optional): string
SCIM++ Properties:
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
The display name of the AppRole assigned to the User.
legacyGroupName(optional): string
SCIM++ Properties:
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
The name (if any) under which this AppRole should appear in this User's group-memberships for reasons of backward compatibility. OCI IAM distinguishes between Groups and AppRoles, but some services still expect AppRoles appear as if they were service-instance-specific Groups.
type(optional): string
Allowed Values: [ "direct", "indirect", "implicit" ]
SCIM++ Properties:
- caseExact: true
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: false
- returned: request
- type: string
- uniqueness: none
The kind of membership this User has in the AppRole. A value of 'direct' indicates that the User is a member of the AppRole. A value of 'indirect' indicates that the User is a member of a Group that is a member of the AppRole. A value of 'implicit' indicates that the AppRole is public.
value: string
SCIM++ Properties:
- caseExact: true
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: true
- returned: always
- type: string
- uniqueness: none
The Id of the AppRole assigned to the User.

{
    "type":"object",
    "description":"<b>SCIM++ Properties:</b><br/><ul><li>idcsCompositeKey: [value]</li><li>multiValued: true</li><li>mutability: readOnly</li><li>required: false</li><li>returned: request</li><li>type: complex</li><li>uniqueness: none</li></ul>A list of all AppRoles to which this User belongs directly, indirectly or implicitly. The User could belong directly because the User is a member of the AppRole, could belong indirectly because the User is a member of a Group that is a member of the AppRole, or could belong implicitly because the AppRole is public.",
    "required":[
        "value"
    ],
    "properties":{
        "value":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: true</li><li>returned: always</li><li>type: string</li><li>uniqueness: none</li></ul>The Id of the AppRole assigned to the User."
        },
        "$ref":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: reference</li><li>uniqueness: none</li></ul>The URI of the AppRole assigned to the User."
        },
        "display":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>The display name of the AppRole assigned to the User."
        },
        "type":{
            "type":"string",
            "enum":[
                "direct",
                "indirect",
                "implicit"
            ],
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: request</li><li>type: string</li><li>uniqueness: none</li></ul>The kind of membership this User has in the AppRole. A value of 'direct' indicates that the User is a member of the AppRole.  A value of  'indirect' indicates that the User is a member of a Group that is a member of the AppRole.  A value of 'implicit' indicates that the AppRole is public."
        },
        "appId":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>The ID of the App that defines this AppRole."
        },
        "appName":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>The name (Client ID) of the App that defines this AppRole."
        },
        "adminRole":{
            "type":"boolean",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: boolean</li><li>uniqueness: none</li></ul>If true, then the role provides administrative access privileges. READ-ONLY."
        },
        "legacyGroupName":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>The name (if any) under which this AppRole should appear in this User's group-memberships for reasons of backward compatibility. OCI IAM distinguishes between Groups and AppRoles, but some services still expect AppRoles appear as if they were service-instance-specific Groups."
        }
    }
}

Nested Schema : groups

Type: object

A list of groups that the user belongs to, either thorough direct membership, nested groups, or dynamically calculated

Show Source

$ref(optional): string
SCIM++ Properties:
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: reference
- uniqueness: none
The URI of the corresponding Group resource to which the user belongs
dateAdded(optional): string
Added In: 2105200541

SCIM++ Properties:
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: dateTime
- uniqueness: none
Date when the member is Added to the group
display(optional): string
SCIM++ Properties:
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
A human readable name, primarily used for display purposes. READ-ONLY.
externalId(optional): string
Added In: 2011192329

SCIM++ Properties:
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
An identifier for the Resource as defined by the Service Consumer. READ-ONLY.
membershipOcid(optional): string
Added In: 2103141444

SCIM++ Properties:
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
Membership Ocid
nonUniqueDisplay(optional): string
Added In: 2011192329

SCIM++ Properties:
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
A human readable name for Group as defined by the Service Consumer. READ-ONLY.
ocid(optional): string
Added In: 2102181953

SCIM++ Properties:
- caseExact: true
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
Ocid of the User's group.
type(optional): string
Allowed Values: [ "direct", "indirect" ]
SCIM++ Properties:
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: false
- returned: request
- type: string
- uniqueness: none
A label indicating the attribute's function; e.g., 'direct' or 'indirect'.
value: string
SCIM++ Properties:
- caseExact: true
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: true
- returned: always
- type: string
- uniqueness: none
The identifier of the User's group.

{
    "type":"object",
    "description":"A list of groups that the user belongs to, either thorough direct membership, nested groups, or dynamically calculated",
    "required":[
        "value"
    ],
    "properties":{
        "value":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: true</li><li>returned: always</li><li>type: string</li><li>uniqueness: none</li></ul>The identifier of the User's group."
        },
        "ocid":{
            "type":"string",
            "description":"<b>Added In:</b> 2102181953<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>Ocid of the User's group."
        },
        "$ref":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: reference</li><li>uniqueness: none</li></ul>The URI of the corresponding Group resource to which the user belongs"
        },
        "display":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>A human readable name, primarily used for display purposes. READ-ONLY."
        },
        "nonUniqueDisplay":{
            "type":"string",
            "description":"<b>Added In:</b> 2011192329<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>A human readable name for Group as defined by the Service Consumer. READ-ONLY."
        },
        "externalId":{
            "type":"string",
            "description":"<b>Added In:</b> 2011192329<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>An identifier for the Resource as defined by the Service Consumer. READ-ONLY."
        },
        "type":{
            "type":"string",
            "enum":[
                "direct",
                "indirect"
            ],
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: request</li><li>type: string</li><li>uniqueness: none</li></ul>A label indicating the attribute's function; e.g., 'direct' or 'indirect'."
        },
        "membershipOcid":{
            "type":"string",
            "description":"<b>Added In:</b> 2103141444<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>Membership Ocid"
        },
        "dateAdded":{
            "type":"string",
            "description":"<b>Added In:</b> 2105200541<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: dateTime</li><li>uniqueness: none</li></ul>Date when the member is Added to the group"
        }
    }
}

Nested Schema : tags

Type: object

A list of tags on this resource.

Show Source

key: string
Maximum Length: 256
SCIM++ Properties:
- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readWrite
- required: true
- returned: default
- type: string
- uniqueness: none
Key or name of the tag.
value: string
Maximum Length: 256
SCIM++ Properties:
- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readWrite
- required: true
- returned: default
- type: string
- uniqueness: none
Value of the tag.

{
    "type":"object",
    "description":"A list of tags on this resource.",
    "required":[
        "key",
        "value"
    ],
    "properties":{
        "key":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: true</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>Key or name of the tag.",
            "maxLength":256
        },
        "value":{
            "type":"string",
            "description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: true</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>Value of the tag.",
            "maxLength":256
        }
    }
}

400 Response

Bad or invalid request

Root Schema : Error

Type: object

The SCIM Protocol uses the HTTP status response status codes defined in Section 6 [RFC7231] to indicate operation success or failure. In addition to returning a HTTP response code implementers MUST return the errors in the body of the response in the client requested format containing the error response and, per the HTTP specification, human- readable explanations.

Show Source

detail(optional): string

A detailed, human readable message. OPTIONAL
schemas: array schemas

The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for SCIM specified Error and Extn Error Schema. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior. REQUIRED.
status: string

The HTTP status code (see Section 6 [RFC7231]) expressed as a JSON String
urn:ietf:params:scim:api:oracle:idcs:extension:messages:Error(optional): object urn:ietf:params:scim:api:oracle:idcs:extension:messages:Error

Extension schema for error messages providing more details with the exception status.
Returns messageId corresponding to the detailed error message and optionally additional data related to the error condition - for example reason for authentication failure such as user is disabled or locked.

{
    "type":"object",
    "description":"The SCIM Protocol uses the HTTP status response status codes defined\n   in <a href=\"https://tools.ietf.org/html/rfc7231#section-6\" target=\"_blank\">Section 6 [RFC7231]</a> to indicate operation success or failure.\n   In addition to returning a HTTP response code implementers MUST return\n   the errors in the body of the response in the client requested format\n   containing the error response and, per the HTTP specification, human-\n   readable explanations.",
    "required":[
        "schemas",
        "status"
    ],
    "properties":{
        "schemas":{
            "type":"array",
            "items":{
                "type":"string"
            },
            "enum":[
                "urn:ietf:params:scim:api:messages:2.0:Error",
                "urn:ietf:params:scim:api:oracle:idcs:extension:messages:Error"
            ],
            "description":"The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for SCIM specified Error and Extn Error Schema. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior. REQUIRED."
        },
        "status":{
            "type":"string",
            "description":"The HTTP status code (see <a href=\"https://tools.ietf.org/html/rfc7231#section-6\" target=\"_blank\">Section 6 [RFC7231]</a>) expressed as a JSON String"
        },
        "detail":{
            "type":"string",
            "description":"A detailed, human readable message. OPTIONAL"
        },
        "urn:ietf:params:scim:api:oracle:idcs:extension:messages:Error":{
            "type":"object",
            "description":"Extension schema for error messages providing more details with the exception status. <br/>Returns messageId corresponding to the detailed error message and optionally additional data related to the error condition - for example reason for authentication failure such as user is disabled or locked.",
            "properties":{
                "messageId":{
                    "type":"string",
                    "description":"Internal error keyword pointing to the exception status message. REQUIRED."
                },
                "additionalData":{
                    "type":"object",
                    "description":"Contains Map based additional data for the exception message (as key-value pair). All keys and values are in string format."
                }
            }
        }
    }
}

Nested Schema : schemas

Type: array

The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for SCIM specified Error and Extn Error Schema. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior. REQUIRED.

Allowed Values:

[
    "urn:ietf:params:scim:api:messages:2.0:Error",
    "urn:ietf:params:scim:api:oracle:idcs:extension:messages:Error"
]

Show Source

Array of: string

{
    "type":"array",
    "items":{
        "type":"string"
    },
    "enum":[
        "urn:ietf:params:scim:api:messages:2.0:Error",
        "urn:ietf:params:scim:api:oracle:idcs:extension:messages:Error"
    ],
    "description":"The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for SCIM specified Error and Extn Error Schema. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior. REQUIRED."
}

Nested Schema : urn:ietf:params:scim:api:oracle:idcs:extension:messages:Error

Type: object

Extension schema for error messages providing more details with the exception status.
Returns messageId corresponding to the detailed error message and optionally additional data related to the error condition - for example reason for authentication failure such as user is disabled or locked.

Show Source

additionalData(optional): object additionalData

Contains Map based additional data for the exception message (as key-value pair). All keys and values are in string format.
messageId(optional): string

Internal error keyword pointing to the exception status message. REQUIRED.

{
    "type":"object",
    "description":"Extension schema for error messages providing more details with the exception status. <br/>Returns messageId corresponding to the detailed error message and optionally additional data related to the error condition - for example reason for authentication failure such as user is disabled or locked.",
    "properties":{
        "messageId":{
            "type":"string",
            "description":"Internal error keyword pointing to the exception status message. REQUIRED."
        },
        "additionalData":{
            "type":"object",
            "description":"Contains Map based additional data for the exception message (as key-value pair). All keys and values are in string format."
        }
    }
}

Nested Schema : additionalData

Type: object

Contains Map based additional data for the exception message (as key-value pair). All keys and values are in string format.

401 Response

The supplied credentials, if any, are not sufficient to access the resource.

Root Schema : Error

Type: object

Show Source

detail(optional): string

A detailed, human readable message. OPTIONAL
schemas: array schemas

The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for SCIM specified Error and Extn Error Schema. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior. REQUIRED.
status: string

The HTTP status code (see Section 6 [RFC7231]) expressed as a JSON String
urn:ietf:params:scim:api:oracle:idcs:extension:messages:Error(optional): object urn:ietf:params:scim:api:oracle:idcs:extension:messages:Error

Extension schema for error messages providing more details with the exception status.
Returns messageId corresponding to the detailed error message and optionally additional data related to the error condition - for example reason for authentication failure such as user is disabled or locked.

{
    "type":"object",
    "description":"The SCIM Protocol uses the HTTP status response status codes defined\n   in <a href=\"https://tools.ietf.org/html/rfc7231#section-6\" target=\"_blank\">Section 6 [RFC7231]</a> to indicate operation success or failure.\n   In addition to returning a HTTP response code implementers MUST return\n   the errors in the body of the response in the client requested format\n   containing the error response and, per the HTTP specification, human-\n   readable explanations.",
    "required":[
        "schemas",
        "status"
    ],
    "properties":{
        "schemas":{
            "type":"array",
            "items":{
                "type":"string"
            },
            "enum":[
                "urn:ietf:params:scim:api:messages:2.0:Error",
                "urn:ietf:params:scim:api:oracle:idcs:extension:messages:Error"
            ],
            "description":"The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for SCIM specified Error and Extn Error Schema. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior. REQUIRED."
        },
        "status":{
            "type":"string",
            "description":"The HTTP status code (see <a href=\"https://tools.ietf.org/html/rfc7231#section-6\" target=\"_blank\">Section 6 [RFC7231]</a>) expressed as a JSON String"
        },
        "detail":{
            "type":"string",
            "description":"A detailed, human readable message. OPTIONAL"
        },
        "urn:ietf:params:scim:api:oracle:idcs:extension:messages:Error":{
            "type":"object",
            "description":"Extension schema for error messages providing more details with the exception status. <br/>Returns messageId corresponding to the detailed error message and optionally additional data related to the error condition - for example reason for authentication failure such as user is disabled or locked.",
            "properties":{
                "messageId":{
                    "type":"string",
                    "description":"Internal error keyword pointing to the exception status message. REQUIRED."
                },
                "additionalData":{
                    "type":"object",
                    "description":"Contains Map based additional data for the exception message (as key-value pair). All keys and values are in string format."
                }
            }
        }
    }
}

Nested Schema : schemas

Type: array

Allowed Values:

[
    "urn:ietf:params:scim:api:messages:2.0:Error",
    "urn:ietf:params:scim:api:oracle:idcs:extension:messages:Error"
]

Show Source

Array of: string

{
    "type":"array",
    "items":{
        "type":"string"
    },
    "enum":[
        "urn:ietf:params:scim:api:messages:2.0:Error",
        "urn:ietf:params:scim:api:oracle:idcs:extension:messages:Error"
    ],
    "description":"The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for SCIM specified Error and Extn Error Schema. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior. REQUIRED."
}

Nested Schema : urn:ietf:params:scim:api:oracle:idcs:extension:messages:Error

Type: object

Show Source

additionalData(optional): object additionalData

Contains Map based additional data for the exception message (as key-value pair). All keys and values are in string format.
messageId(optional): string

Internal error keyword pointing to the exception status message. REQUIRED.

{
    "type":"object",
    "description":"Extension schema for error messages providing more details with the exception status. <br/>Returns messageId corresponding to the detailed error message and optionally additional data related to the error condition - for example reason for authentication failure such as user is disabled or locked.",
    "properties":{
        "messageId":{
            "type":"string",
            "description":"Internal error keyword pointing to the exception status message. REQUIRED."
        },
        "additionalData":{
            "type":"object",
            "description":"Contains Map based additional data for the exception message (as key-value pair). All keys and values are in string format."
        }
    }
}

Nested Schema : additionalData

Type: object

Contains Map based additional data for the exception message (as key-value pair). All keys and values are in string format.

404 Response

The requested resource was not found.

Root Schema : Error

Type: object

Show Source

detail(optional): string

A detailed, human readable message. OPTIONAL
schemas: array schemas

The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for SCIM specified Error and Extn Error Schema. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior. REQUIRED.
status: string

The HTTP status code (see Section 6 [RFC7231]) expressed as a JSON String
urn:ietf:params:scim:api:oracle:idcs:extension:messages:Error(optional): object urn:ietf:params:scim:api:oracle:idcs:extension:messages:Error

Extension schema for error messages providing more details with the exception status.
Returns messageId corresponding to the detailed error message and optionally additional data related to the error condition - for example reason for authentication failure such as user is disabled or locked.

{
    "type":"object",
    "description":"The SCIM Protocol uses the HTTP status response status codes defined\n   in <a href=\"https://tools.ietf.org/html/rfc7231#section-6\" target=\"_blank\">Section 6 [RFC7231]</a> to indicate operation success or failure.\n   In addition to returning a HTTP response code implementers MUST return\n   the errors in the body of the response in the client requested format\n   containing the error response and, per the HTTP specification, human-\n   readable explanations.",
    "required":[
        "schemas",
        "status"
    ],
    "properties":{
        "schemas":{
            "type":"array",
            "items":{
                "type":"string"
            },
            "enum":[
                "urn:ietf:params:scim:api:messages:2.0:Error",
                "urn:ietf:params:scim:api:oracle:idcs:extension:messages:Error"
            ],
            "description":"The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for SCIM specified Error and Extn Error Schema. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior. REQUIRED."
        },
        "status":{
            "type":"string",
            "description":"The HTTP status code (see <a href=\"https://tools.ietf.org/html/rfc7231#section-6\" target=\"_blank\">Section 6 [RFC7231]</a>) expressed as a JSON String"
        },
        "detail":{
            "type":"string",
            "description":"A detailed, human readable message. OPTIONAL"
        },
        "urn:ietf:params:scim:api:oracle:idcs:extension:messages:Error":{
            "type":"object",
            "description":"Extension schema for error messages providing more details with the exception status. <br/>Returns messageId corresponding to the detailed error message and optionally additional data related to the error condition - for example reason for authentication failure such as user is disabled or locked.",
            "properties":{
                "messageId":{
                    "type":"string",
                    "description":"Internal error keyword pointing to the exception status message. REQUIRED."
                },
                "additionalData":{
                    "type":"object",
                    "description":"Contains Map based additional data for the exception message (as key-value pair). All keys and values are in string format."
                }
            }
        }
    }
}

Nested Schema : schemas

Type: array

Allowed Values:

[
    "urn:ietf:params:scim:api:messages:2.0:Error",
    "urn:ietf:params:scim:api:oracle:idcs:extension:messages:Error"
]

Show Source

Array of: string

{
    "type":"array",
    "items":{
        "type":"string"
    },
    "enum":[
        "urn:ietf:params:scim:api:messages:2.0:Error",
        "urn:ietf:params:scim:api:oracle:idcs:extension:messages:Error"
    ],
    "description":"The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for SCIM specified Error and Extn Error Schema. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior. REQUIRED."
}

Nested Schema : urn:ietf:params:scim:api:oracle:idcs:extension:messages:Error

Type: object

Show Source

additionalData(optional): object additionalData

Contains Map based additional data for the exception message (as key-value pair). All keys and values are in string format.
messageId(optional): string

Internal error keyword pointing to the exception status message. REQUIRED.

{
    "type":"object",
    "description":"Extension schema for error messages providing more details with the exception status. <br/>Returns messageId corresponding to the detailed error message and optionally additional data related to the error condition - for example reason for authentication failure such as user is disabled or locked.",
    "properties":{
        "messageId":{
            "type":"string",
            "description":"Internal error keyword pointing to the exception status message. REQUIRED."
        },
        "additionalData":{
            "type":"object",
            "description":"Contains Map based additional data for the exception message (as key-value pair). All keys and values are in string format."
        }
    }
}

Nested Schema : additionalData

Type: object

Contains Map based additional data for the exception message (as key-value pair). All keys and values are in string format.

500 Response

We couldn't return the representation due to an internal server error.

Root Schema : Error

Type: object

Show Source

detail(optional): string

A detailed, human readable message. OPTIONAL
schemas: array schemas

The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for SCIM specified Error and Extn Error Schema. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior. REQUIRED.
status: string

The HTTP status code (see Section 6 [RFC7231]) expressed as a JSON String
urn:ietf:params:scim:api:oracle:idcs:extension:messages:Error(optional): object urn:ietf:params:scim:api:oracle:idcs:extension:messages:Error

Extension schema for error messages providing more details with the exception status.
Returns messageId corresponding to the detailed error message and optionally additional data related to the error condition - for example reason for authentication failure such as user is disabled or locked.

{
    "type":"object",
    "description":"The SCIM Protocol uses the HTTP status response status codes defined\n   in <a href=\"https://tools.ietf.org/html/rfc7231#section-6\" target=\"_blank\">Section 6 [RFC7231]</a> to indicate operation success or failure.\n   In addition to returning a HTTP response code implementers MUST return\n   the errors in the body of the response in the client requested format\n   containing the error response and, per the HTTP specification, human-\n   readable explanations.",
    "required":[
        "schemas",
        "status"
    ],
    "properties":{
        "schemas":{
            "type":"array",
            "items":{
                "type":"string"
            },
            "enum":[
                "urn:ietf:params:scim:api:messages:2.0:Error",
                "urn:ietf:params:scim:api:oracle:idcs:extension:messages:Error"
            ],
            "description":"The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for SCIM specified Error and Extn Error Schema. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior. REQUIRED."
        },
        "status":{
            "type":"string",
            "description":"The HTTP status code (see <a href=\"https://tools.ietf.org/html/rfc7231#section-6\" target=\"_blank\">Section 6 [RFC7231]</a>) expressed as a JSON String"
        },
        "detail":{
            "type":"string",
            "description":"A detailed, human readable message. OPTIONAL"
        },
        "urn:ietf:params:scim:api:oracle:idcs:extension:messages:Error":{
            "type":"object",
            "description":"Extension schema for error messages providing more details with the exception status. <br/>Returns messageId corresponding to the detailed error message and optionally additional data related to the error condition - for example reason for authentication failure such as user is disabled or locked.",
            "properties":{
                "messageId":{
                    "type":"string",
                    "description":"Internal error keyword pointing to the exception status message. REQUIRED."
                },
                "additionalData":{
                    "type":"object",
                    "description":"Contains Map based additional data for the exception message (as key-value pair). All keys and values are in string format."
                }
            }
        }
    }
}

Nested Schema : schemas

Type: array

Allowed Values:

[
    "urn:ietf:params:scim:api:messages:2.0:Error",
    "urn:ietf:params:scim:api:oracle:idcs:extension:messages:Error"
]

Show Source

Array of: string

{
    "type":"array",
    "items":{
        "type":"string"
    },
    "enum":[
        "urn:ietf:params:scim:api:messages:2.0:Error",
        "urn:ietf:params:scim:api:oracle:idcs:extension:messages:Error"
    ],
    "description":"The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for SCIM specified Error and Extn Error Schema. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior. REQUIRED."
}

Nested Schema : urn:ietf:params:scim:api:oracle:idcs:extension:messages:Error

Type: object

Show Source

additionalData(optional): object additionalData

Contains Map based additional data for the exception message (as key-value pair). All keys and values are in string format.
messageId(optional): string

Internal error keyword pointing to the exception status message. REQUIRED.

{
    "type":"object",
    "description":"Extension schema for error messages providing more details with the exception status. <br/>Returns messageId corresponding to the detailed error message and optionally additional data related to the error condition - for example reason for authentication failure such as user is disabled or locked.",
    "properties":{
        "messageId":{
            "type":"string",
            "description":"Internal error keyword pointing to the exception status message. REQUIRED."
        },
        "additionalData":{
            "type":"object",
            "description":"Contains Map based additional data for the exception message (as key-value pair). All keys and values are in string format."
        }
    }
}

Nested Schema : additionalData

Type: object

Contains Map based additional data for the exception message (as key-value pair). All keys and values are in string format.