Root Schema : IdentityProvider
Type: object
Federation trusted partner Identity Provider
Show Source
-
assertionAttribute(optional):
string
Maximum Length: 256
Deprecated Since: 20.1.3SCIM++ Properties:- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: string
- uniqueness: none
- idcsValuePersistedInOtherAttribute: true
Assertion attribute name.
-
authnRequestBinding(optional):
string
Allowed Values: [
"Redirect",
"Post"
]
SCIM++ Properties:- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: string
- uniqueness: none
HTTP binding to use for authentication requests.
-
compartmentOcid(optional):
string
SCIM++ Properties:- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
OCI Compartment Id (ocid) in which the resource lives.
-
correlationPolicy(optional):
object correlationPolicy
Added In: 20.1.3
SCIM++ Properties:- caseExact: true
- idcsSearchable: false
- multiValued: false
- mutability: immutable
- required: false
- returned: default
- type: complex
- uniqueness: none
Correlation policy
-
deleteInProgress(optional):
boolean
SCIM++ Properties:- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: boolean
- uniqueness: none
A boolean flag indicating this resource in the process of being deleted. Usually set to true when synchronous deletion of the resource would take too long.
-
description(optional):
string
Maximum Length: 250
SCIM++ Properties:- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: string
- uniqueness: none
Description
-
domainOcid(optional):
string
SCIM++ Properties:- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
OCI Domain Id (ocid) in which the resource lives.
-
enabled:
boolean
SCIM++ Properties:- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readWrite
- required: true
- returned: default
- type: boolean
- uniqueness: none
Set to true to indicate Partner enabled.
-
encryptionCertificate(optional):
string
SCIM++ Properties:- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: string
- uniqueness: none
Encryption certificate
-
externalId(optional):
string
SCIM++ Properties:- caseExact: false
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: string
- uniqueness: none
An identifier for the Resource as defined by the Service Consumer. The externalId may simplify identification of the Resource between Service Consumer and Service Provider by allowing the Consumer to refer to the Resource with its own identifier, obviating the need to store a local mapping between the local identifier of the Resource and the identifier used by the Service Provider. Each Resource MAY include a non-empty externalId value. The value of the externalId attribute is always issued by the Service Consumer and can never be specified by the Service Provider. The Service Provider MUST always interpret the externalId as scoped to the Service Consumer's tenant.
-
iconUrl(optional):
string
Minimum Length: 1
Maximum Length: 256
SCIM++ Properties:- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: string
- uniqueness: none
Identity Provider Icon URL.
-
id(optional):
string
SCIM++ Properties:- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: false
- returned: always
- type: string
- uniqueness: global
Unique identifier for the SCIM Resource as defined by the Service Provider. Each representation of the Resource MUST include a non-empty id value. This identifier MUST be unique across the Service Provider's entire set of Resources. It MUST be a stable, non-reassignable identifier that does not change when the same Resource is returned in subsequent requests. The value of the id attribute is always issued by the Service Provider and MUST never be specified by the Service Consumer. bulkId: is a reserved keyword and MUST NOT be used in the unique identifier.
-
idcsCreatedBy:
object idcsCreatedBy
SCIM++ Properties:- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: true
- returned: default
- type: complex
The User or App who created the Resource
-
idcsLastModifiedBy(optional):
object idcsLastModifiedBy
SCIM++ Properties:- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: complex
The User or App who modified the Resource
-
idcsLastUpgradedInRelease(optional):
string
SCIM++ Properties:- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: request
- type: string
- uniqueness: none
The release number when the resource was upgraded.
-
idcsPreventedOperations(optional):
array idcsPreventedOperations
SCIM++ Properties:- idcsSearchable: false
- multiValued: true
- mutability: readOnly
- required: false
- returned: request
- type: string
- uniqueness: none
Each value of this attribute specifies an operation that only an internal client may perform on this particular resource.
-
idpSsoUrl(optional):
string
Maximum Length: 256
SCIM++ Properties:- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: string
- uniqueness: none
Identity Provider SSO URL
-
includeSigningCertInSignature(optional):
boolean
SCIM++ Properties:- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: boolean
- uniqueness: none
Set to true to include the signing certificate in the signature.
-
jitUserProvAssignedGroups(optional):
array jitUserProvAssignedGroups
Added In: 20.1.3
SCIM++ Properties:- idcsCompositeKey: [value]
- idcsSearchable: false
- multiValued: true
- mutability: readWrite
- required: false
- returned: default
- type: complex
- uniqueness: none
Refers to every group of which a JIT-provisioned User should be a member. Just-in-Time user-provisioning applies this static list when jitUserProvGroupStaticListEnabled:true.
-
jitUserProvAttributes(optional):
object jitUserProvAttributes
Added In: 20.1.3
SCIM++ Properties:- caseExact: false
- idcsCompositeKey: [value]
- idcsSearchable: false
- mutability: immutable
- required: false
- returned: default
- type: complex
- uniqueness: none
Assertion To User Mapping
-
jitUserProvAttributeUpdateEnabled(optional):
boolean
Added In: 20.1.3
SCIM++ Properties:- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: boolean
- uniqueness: none
Set to true to indicate JIT User Creation is enabled
-
jitUserProvCreateUserEnabled(optional):
boolean
Added In: 20.1.3
SCIM++ Properties:- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: boolean
- uniqueness: none
Set to true to indicate JIT User Creation is enabled
-
jitUserProvEnabled(optional):
boolean
Added In: 20.1.3
SCIM++ Properties:- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: boolean
- uniqueness: none
Set to true to indicate JIT User Provisioning is enabled
-
jitUserProvGroupAssertionAttributeEnabled(optional):
boolean
Added In: 20.1.3
SCIM++ Properties:- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: boolean
- uniqueness: none
Set to true to indicate JIT User Provisioning Groups should be assigned based on assertion attribute
-
jitUserProvGroupAssignmentMethod(optional):
string
Maximum Length: 10
Allowed Values: [
"Overwrite",
"Merge"
]
Added In: 20.1.3
SCIM++ Properties:- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: string
- uniqueness: none
The default value is 'Overwrite', which tells Just-In-Time user-provisioning to replace any current group-assignments for a User with those assigned by assertions and/or those assigned statically. Specify 'Merge' if you want Just-In-Time user-provisioning to combine its group-assignments with those the user already has.
-
jitUserProvGroupMappingMode(optional):
string
Maximum Length: 40
Allowed Values: [
"implicit",
"explicit"
]
Added In: 2205120021
SCIM++ Properties:- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: string
- uniqueness: none
Property to indicate the mode of group mapping
-
jitUserProvGroupMappings(optional):
array jitUserProvGroupMappings
Added In: 2205120021
SCIM++ Properties:- idcsCompositeKey: [idpGroup]
- multiValued: true
- mutability: readWrite
- required: false
- returned: default
- type: complex
- uniqueness: none
The list of mappings between the Identity Domain Group and the IDP group.
-
jitUserProvGroupSAMLAttributeName(optional):
string
Maximum Length: 256
Added In: 20.1.3
SCIM++ Properties:- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: string
- uniqueness: none
Name of the assertion attribute containing the users groups
-
jitUserProvGroupStaticListEnabled(optional):
boolean
Added In: 20.1.3
SCIM++ Properties:- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: boolean
- uniqueness: none
Set to true to indicate JIT User Provisioning Groups should be assigned from a static list
-
jitUserProvIgnoreErrorOnAbsentGroups(optional):
boolean
Added In: 2111112015
SCIM++ Properties:- caseExact: false
- idcsAddedSinceVersion: 30
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: boolean
- uniqueness: none
Set to true to indicate ignoring absence of group while provisioning
-
logoutBinding(optional):
string
Allowed Values: [
"Redirect",
"Post"
]
SCIM++ Properties:- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: string
- uniqueness: none
HTTP binding to use for logout.
-
logoutEnabled(optional):
boolean
SCIM++ Properties:- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: boolean
- uniqueness: none
Set to true to enable logout.
-
logoutRequestUrl(optional):
string
Maximum Length: 256
SCIM++ Properties:- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: string
- uniqueness: none
Logout request URL
-
logoutResponseUrl(optional):
string
Maximum Length: 256
SCIM++ Properties:- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: string
- uniqueness: none
Logout response URL
-
meta(optional):
object meta
-
metadata(optional):
string
-
nameIdFormat(optional):
string
-
ocid(optional):
string
Maximum Length: 255
SCIM++ Properties:- caseExact: true
- idcsSearchable: true
- multiValued: false
- mutability: immutable
- required: false
- returned: default
- type: string
- uniqueness: global
Unique OCI identifier for the SCIM Resource.
-
partnerName:
string
Maximum Length: 100
SCIM++ Properties:- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readWrite
- required: true
- returned: always
- type: string
- uniqueness: server
Unique name of the trusted Identity Provider.
-
partnerProviderId(optional):
string
Maximum Length: 256
SCIM++ Properties:- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: string
- uniqueness: server
Provider ID
-
requestedAuthenticationContext(optional):
array requestedAuthenticationContext
Added In: 2102181953
SCIM++ Properties:- caseExact: true
- idcsSearchable: false
- multiValued: true
- mutability: readWrite
- required: false
- returned: default
- type: string
- uniqueness: none
SAML SP authentication type.
-
requireForceAuthn(optional):
boolean
Added In: 2102181953
SCIM++ Properties:- caseExact: true
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: boolean
- uniqueness: none
This SP requires requests SAML IdP to enforce re-authentication.
-
requiresEncryptedAssertion(optional):
boolean
Added In: 2102181953
SCIM++ Properties:- caseExact: true
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: boolean
- uniqueness: none
SAML SP must accept encrypted assertion only.
-
samlHoKRequired(optional):
boolean
Added In: 2102181953
SCIM++ Properties:- caseExact: true
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: boolean
- uniqueness: none
SAML SP HoK Enabled.
-
schemas:
array schemas
SCIM++ Properties:- caseExact: false
- idcsSearchable: false
- multiValued: true
- mutability: readWrite
- required: true
- returned: default
- type: string
- uniqueness: none
REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard \"enterprise\" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.
-
serviceInstanceIdentifier(optional):
string
Added In: 18.2.6
SCIM++ Properties:- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readWrite
- required: false
- returned: never
- type: string
- uniqueness: server
The serviceInstanceIdentifier of the App that hosts this IdP. This value will match the opcServiceInstanceGUID of any service-instance that the IdP represents.
-
shownOnLoginPage(optional):
boolean
SCIM++ Properties:- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: boolean
- uniqueness: none
Set to true to indicate whether to show IdP in login page or not.
-
signatureHashAlgorithm(optional):
string
Allowed Values: [
"SHA-1",
"SHA-256"
]
SCIM++ Properties:- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: string
- uniqueness: none
Signature hash algorithm.
-
signingCertificate(optional):
string
SCIM++ Properties:- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: string
- uniqueness: none
Signing certificate
-
succinctId(optional):
string
Maximum Length: 100
SCIM++ Properties:- caseExact: true
- idcsSearchable: true
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: string
- uniqueness: server
Succinct ID
-
tags(optional):
array tags
-
tenancyOcid(optional):
string
SCIM++ Properties:- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
OCI Tenant Id (ocid) in which the resource lives.
-
tenantProviderId(optional):
string
Maximum Length: 256
Added In: 19.2.1
SCIM++ Properties:- caseExact: true
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
The alternate Provider ID to be used as the Oracle Identity Cloud Service providerID (instead of the one in SamlSettings) when interacting with this IdP.
-
type(optional):
string
Minimum Length: 1
Maximum Length: 20
Allowed Values: [
"SAML",
"SOCIAL",
"IWA",
"X509",
"LOCAL"
]
Added In: 20.1.3
SCIM++ Properties:- caseExact: true
- idcsSearchable: true
- multiValued: false
- mutability: immutable
- required: false
- returned: always
- type: string
- uniqueness: none
Identity Provider Type
-
urn:ietf:params:scim:schemas:oracle:idcs:extension:social:IdentityProvider(optional):
object urn:ietf:params:scim:schemas:oracle:idcs:extension:social:IdentityProvider
Social Identity Provider Extension Schema
-
urn:ietf:params:scim:schemas:oracle:idcs:extension:x509:IdentityProvider(optional):
object urn:ietf:params:scim:schemas:oracle:idcs:extension:x509:IdentityProvider
X509 Identity Provider Extension Schema
-
userMappingMethod(optional):
string
Allowed Values: [
"NameIDToUserAttribute",
"AssertionAttributeToUserAttribute",
"CorrelationPolicyRule"
]
Deprecated Since: 20.1.3SCIM++ Properties:- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: string
- uniqueness: none
- idcsValuePersistedInOtherAttribute: true
User mapping method.
-
userMappingStoreAttribute(optional):
string
Maximum Length: 256
Deprecated Since: 20.1.3SCIM++ Properties:- caseExact: false
- idcsSearchable: true
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: string
- uniqueness: none
- idcsValuePersistedInOtherAttribute: true
This property specifies the userstore attribute value that must match the incoming assertion attribute value or the incoming nameid attribute value in order to identify the user during SSO.
You can construct the userMappingStoreAttribute value by specifying attributes from the Oracle Identity Cloud Service Core Users schema. For examples of how to construct the userMappingStoreAttribute value, see the
Example of a Request Body section of the Examples tab for the
POST and
PUT methods of the /IdentityProviders endpoint.
{
"type":"object",
"description":"Federation trusted partner Identity Provider",
"required":[
"schemas",
"idcsCreatedBy",
"partnerName",
"enabled"
],
"properties":{
"id":{
"type":"string",
"description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: always</li><li>type: string</li><li>uniqueness: global</li></ul>Unique identifier for the SCIM Resource as defined by the Service Provider. Each representation of the Resource MUST include a non-empty id value. This identifier MUST be unique across the Service Provider's entire set of Resources. It MUST be a stable, non-reassignable identifier that does not change when the same Resource is returned in subsequent requests. The value of the id attribute is always issued by the Service Provider and MUST never be specified by the Service Consumer. bulkId: is a reserved keyword and MUST NOT be used in the unique identifier."
},
"ocid":{
"type":"string",
"description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: immutable</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: global</li></ul>Unique OCI identifier for the SCIM Resource.",
"maxLength":255
},
"schemas":{
"type":"array",
"items":{
"type":"string"
},
"description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: true</li><li>mutability: readWrite</li><li>required: true</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard \\\"enterprise\\\" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior."
},
"meta":{
"type":"object",
"properties":{
"resourceType":{
"type":"string",
"description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>Name of the resource type of the resource--for example, Users or Groups"
},
"created":{
"type":"string",
"description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: dateTime</li><li>uniqueness: none</li></ul>The DateTime the Resource was added to the Service Provider"
},
"lastModified":{
"type":"string",
"description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: dateTime</li><li>uniqueness: none</li></ul>The most recent DateTime that the details of this Resource were updated at the Service Provider. If this Resource has never been modified since its initial creation, the value MUST be the same as the value of created. The attribute MUST be a DateTime."
},
"location":{
"type":"string",
"description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>The URI of the Resource being returned. This value MUST be the same as the Location HTTP response header."
},
"version":{
"type":"string",
"description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>The version of the Resource being returned. This value must be the same as the ETag HTTP response header."
}
},
"description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>idcsCsvAttributeNameMappings: [[columnHeaderName:Created Date, mapsTo:meta.created]]</li><li>type: complex</li></ul>A complex attribute that contains resource metadata. All sub-attributes are OPTIONAL."
},
"idcsCreatedBy":{
"type":"object",
"properties":{
"value":{
"type":"string",
"description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: true</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>The ID of the SCIM resource that represents the User or App who created this Resource"
},
"$ref":{
"type":"string",
"description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: reference</li><li>uniqueness: none</li></ul>The URI of the SCIM resource that represents the User or App who created this Resource"
},
"type":{
"type":"string",
"enum":[
"User",
"App"
],
"description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>The type of resource, User or App, that created this Resource"
},
"display":{
"type":"string",
"description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>The displayName of the User or App who created this Resource"
},
"ocid":{
"type":"string",
"description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readOnly</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>The OCID of the SCIM resource that represents the User or App who created this Resource"
}
},
"required":[
"value"
],
"description":"<b>SCIM++ Properties:</b><br/><ul><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: true</li><li>returned: default</li><li>type: complex</li></ul>The User or App who created the Resource"
},
"idcsLastModifiedBy":{
"type":"object",
"properties":{
"value":{
"type":"string",
"description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: true</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>The ID of the SCIM resource that represents the User or App who modified this Resource"
},
"$ref":{
"type":"string",
"description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: reference</li><li>uniqueness: none</li></ul>The URI of the SCIM resource that represents the User or App who modified this Resource"
},
"type":{
"type":"string",
"enum":[
"User",
"App"
],
"description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>The type of resource, User or App, that modified this Resource"
},
"display":{
"type":"string",
"description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>The displayName of the User or App who modified this Resource"
},
"ocid":{
"type":"string",
"description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readOnly</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>The OCID of the SCIM resource that represents the User or App who modified this Resource"
}
},
"required":[
"value"
],
"description":"<b>SCIM++ Properties:</b><br/><ul><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: complex</li></ul>The User or App who modified the Resource"
},
"idcsPreventedOperations":{
"type":"array",
"items":{
"type":"string"
},
"enum":[
"replace",
"update",
"delete"
],
"description":"<b>SCIM++ Properties:</b><br/><ul><li>idcsSearchable: false</li><li>multiValued: true</li><li>mutability: readOnly</li><li>required: false</li><li>returned: request</li><li>type: string</li><li>uniqueness: none</li></ul>Each value of this attribute specifies an operation that only an internal client may perform on this particular resource."
},
"tags":{
"type":"array",
"items":{
"$ref":"#/definitions/tags"
},
"description":"<b>SCIM++ Properties:</b><br/><ul><li>idcsCompositeKey: [key, value]</li><li>idcsSearchable: true</li><li>multiValued: true</li><li>mutability: readWrite</li><li>required: false</li><li>returned: request</li><li>type: complex</li><li>uniqueness: none</li></ul>A list of tags on this resource."
},
"deleteInProgress":{
"type":"boolean",
"description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: boolean</li><li>uniqueness: none</li></ul>A boolean flag indicating this resource in the process of being deleted. Usually set to true when synchronous deletion of the resource would take too long."
},
"idcsLastUpgradedInRelease":{
"type":"string",
"description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: request</li><li>type: string</li><li>uniqueness: none</li></ul>The release number when the resource was upgraded."
},
"domainOcid":{
"type":"string",
"description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>OCI Domain Id (ocid) in which the resource lives."
},
"compartmentOcid":{
"type":"string",
"description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>OCI Compartment Id (ocid) in which the resource lives."
},
"tenancyOcid":{
"type":"string",
"description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>OCI Tenant Id (ocid) in which the resource lives."
},
"externalId":{
"type":"string",
"description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>An identifier for the Resource as defined by the Service Consumer. The externalId may simplify identification of the Resource between Service Consumer and Service Provider by allowing the Consumer to refer to the Resource with its own identifier, obviating the need to store a local mapping between the local identifier of the Resource and the identifier used by the Service Provider. Each Resource MAY include a non-empty externalId value. The value of the externalId attribute is always issued by the Service Consumer and can never be specified by the Service Provider. The Service Provider MUST always interpret the externalId as scoped to the Service Consumer's tenant."
},
"partnerName":{
"type":"string",
"description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: true</li><li>returned: always</li><li>type: string</li><li>uniqueness: server</li></ul>Unique name of the trusted Identity Provider.",
"maxLength":100
},
"description":{
"type":"string",
"description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>Description",
"maxLength":250
},
"metadata":{
"type":"string",
"description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>Metadata",
"maxLength":100000
},
"partnerProviderId":{
"type":"string",
"description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: server</li></ul>Provider ID",
"maxLength":256
},
"tenantProviderId":{
"type":"string",
"description":"<b>Added In:</b> 19.2.1<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>The alternate Provider ID to be used as the Oracle Identity Cloud Service providerID (instead of the one in SamlSettings) when interacting with this IdP.",
"maxLength":256
},
"succinctId":{
"type":"string",
"description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: server</li></ul>Succinct ID",
"maxLength":100
},
"idpSsoUrl":{
"type":"string",
"description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>Identity Provider SSO URL",
"maxLength":256
},
"logoutRequestUrl":{
"type":"string",
"description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>Logout request URL",
"maxLength":256
},
"logoutResponseUrl":{
"type":"string",
"description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>Logout response URL",
"maxLength":256
},
"signingCertificate":{
"type":"string",
"description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>Signing certificate"
},
"encryptionCertificate":{
"type":"string",
"description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>Encryption certificate"
},
"nameIdFormat":{
"type":"string",
"description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>Default authentication request name ID format.",
"maxLength":256
},
"includeSigningCertInSignature":{
"type":"boolean",
"description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: boolean</li><li>uniqueness: none</li></ul>Set to true to include the signing certificate in the signature."
},
"authnRequestBinding":{
"type":"string",
"enum":[
"Redirect",
"Post"
],
"description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>HTTP binding to use for authentication requests."
},
"logoutBinding":{
"type":"string",
"enum":[
"Redirect",
"Post"
],
"description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>HTTP binding to use for logout."
},
"logoutEnabled":{
"type":"boolean",
"description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: boolean</li><li>uniqueness: none</li></ul>Set to true to enable logout."
},
"signatureHashAlgorithm":{
"type":"string",
"enum":[
"SHA-1",
"SHA-256"
],
"description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>Signature hash algorithm."
},
"enabled":{
"type":"boolean",
"description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: true</li><li>returned: default</li><li>type: boolean</li><li>uniqueness: none</li></ul>Set to true to indicate Partner enabled."
},
"iconUrl":{
"type":"string",
"description":"<b>SCIM++ Properties:</b><br/><ul><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>Identity Provider Icon URL.",
"minLength":1,
"maxLength":256
},
"shownOnLoginPage":{
"type":"boolean",
"description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: boolean</li><li>uniqueness: none</li></ul>Set to true to indicate whether to show IdP in login page or not."
},
"jitUserProvEnabled":{
"type":"boolean",
"description":"<b>Added In:</b> 20.1.3<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: boolean</li><li>uniqueness: none</li></ul>Set to true to indicate JIT User Provisioning is enabled"
},
"jitUserProvGroupAssertionAttributeEnabled":{
"type":"boolean",
"description":"<b>Added In:</b> 20.1.3<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: boolean</li><li>uniqueness: none</li></ul>Set to true to indicate JIT User Provisioning Groups should be assigned based on assertion attribute"
},
"jitUserProvGroupStaticListEnabled":{
"type":"boolean",
"description":"<b>Added In:</b> 20.1.3<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: boolean</li><li>uniqueness: none</li></ul>Set to true to indicate JIT User Provisioning Groups should be assigned from a static list"
},
"jitUserProvCreateUserEnabled":{
"type":"boolean",
"description":"<b>Added In:</b> 20.1.3<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: boolean</li><li>uniqueness: none</li></ul>Set to true to indicate JIT User Creation is enabled"
},
"jitUserProvAttributeUpdateEnabled":{
"type":"boolean",
"description":"<b>Added In:</b> 20.1.3<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: boolean</li><li>uniqueness: none</li></ul>Set to true to indicate JIT User Creation is enabled"
},
"jitUserProvGroupAssignmentMethod":{
"type":"string",
"enum":[
"Overwrite",
"Merge"
],
"description":"<b>Added In:</b> 20.1.3<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>The default value is 'Overwrite', which tells Just-In-Time user-provisioning to replace any current group-assignments for a User with those assigned by assertions and/or those assigned statically. Specify 'Merge' if you want Just-In-Time user-provisioning to combine its group-assignments with those the user already has.",
"maxLength":10
},
"jitUserProvGroupMappingMode":{
"type":"string",
"enum":[
"implicit",
"explicit"
],
"description":"<b>Added In:</b> 2205120021<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>Property to indicate the mode of group mapping",
"maxLength":40
},
"jitUserProvGroupMappings":{
"type":"array",
"items":{
"$ref":"#/definitions/jitUserProvGroupMappings"
},
"description":"<b>Added In:</b> 2205120021<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>idcsCompositeKey: [idpGroup]</li><li>multiValued: true</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: complex</li><li>uniqueness: none</li></ul>The list of mappings between the Identity Domain Group and the IDP group."
},
"jitUserProvGroupSAMLAttributeName":{
"type":"string",
"description":"<b>Added In:</b> 20.1.3<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>Name of the assertion attribute containing the users groups",
"maxLength":256
},
"serviceInstanceIdentifier":{
"type":"string",
"description":"<b>Added In:</b> 18.2.6<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: false</li><li>returned: never</li><li>type: string</li><li>uniqueness: server</li></ul>The serviceInstanceIdentifier of the App that hosts this IdP. This value will match the opcServiceInstanceGUID of any service-instance that the IdP represents."
},
"userMappingMethod":{
"type":"string",
"enum":[
"NameIDToUserAttribute",
"AssertionAttributeToUserAttribute",
"CorrelationPolicyRule"
],
"description":"<b><font color=\"red\">Deprecated Since: 20.1.3</font></b><br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li><li>idcsValuePersistedInOtherAttribute: true</li></ul>User mapping method."
},
"userMappingStoreAttribute":{
"type":"string",
"description":"<b><font color=\"red\">Deprecated Since: 20.1.3</font></b><br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li><li>idcsValuePersistedInOtherAttribute: true</li></ul>This property specifies the userstore attribute value that must match the incoming assertion attribute value or the incoming nameid attribute value in order to identify the user during SSO.<br>You can construct the userMappingStoreAttribute value by specifying attributes from the Oracle Identity Cloud Service Core Users schema. For examples of how to construct the userMappingStoreAttribute value, see the <b>Example of a Request Body</b> section of the Examples tab for the <a href='./op-admin-v1-identityproviders-post.html'>POST</a> and <a href='./op-admin-v1-identityproviders-id-put.html'>PUT</a> methods of the /IdentityProviders endpoint.",
"maxLength":256
},
"assertionAttribute":{
"type":"string",
"description":"<b><font color=\"red\">Deprecated Since: 20.1.3</font></b><br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li><li>idcsValuePersistedInOtherAttribute: true</li></ul>Assertion attribute name.",
"maxLength":256
},
"type":{
"type":"string",
"enum":[
"SAML",
"SOCIAL",
"IWA",
"X509",
"LOCAL"
],
"description":"<b>Added In:</b> 20.1.3<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: immutable</li><li>required: false</li><li>returned: always</li><li>type: string</li><li>uniqueness: none</li></ul>Identity Provider Type",
"minLength":1,
"maxLength":20
},
"requireForceAuthn":{
"type":"boolean",
"description":"<b>Added In:</b> 2102181953<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: boolean</li><li>uniqueness: none</li></ul>This SP requires requests SAML IdP to enforce re-authentication."
},
"requiresEncryptedAssertion":{
"type":"boolean",
"description":"<b>Added In:</b> 2102181953<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: boolean</li><li>uniqueness: none</li></ul>SAML SP must accept encrypted assertion only."
},
"samlHoKRequired":{
"type":"boolean",
"description":"<b>Added In:</b> 2102181953<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: boolean</li><li>uniqueness: none</li></ul>SAML SP HoK Enabled."
},
"requestedAuthenticationContext":{
"type":"array",
"items":{
"type":"string"
},
"description":"<b>Added In:</b> 2102181953<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: false</li><li>multiValued: true</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>SAML SP authentication type.",
"maxLength":1000
},
"jitUserProvIgnoreErrorOnAbsentGroups":{
"type":"boolean",
"description":"<b>Added In:</b> 2111112015<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsAddedSinceVersion: 30</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: boolean</li><li>uniqueness: none</li></ul>Set to true to indicate ignoring absence of group while provisioning"
},
"jitUserProvAttributes":{
"type":"object",
"properties":{
"value":{
"type":"string",
"description":"<b>Added In:</b> 20.1.3<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: true</li><li>mutability: immutable</li><li>required: true</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>Mapped Attribute identifier",
"minLength":1,
"maxLength":40
},
"$ref":{
"type":"string",
"description":"<b>Added In:</b> 20.1.3<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>idcsSearchable: false</li><li>mutability: immutable</li><li>required: false</li><li>returned: default</li><li>type: reference</li><li>uniqueness: none</li></ul>Mapped Attribute URI"
}
},
"required":[
"value"
],
"description":"<b>Added In:</b> 20.1.3<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsCompositeKey: [value]</li><li>idcsSearchable: false</li><li>mutability: immutable</li><li>required: false</li><li>returned: default</li><li>type: complex</li><li>uniqueness: none</li></ul>Assertion To User Mapping"
},
"jitUserProvAssignedGroups":{
"type":"array",
"items":{
"$ref":"#/definitions/jitUserProvAssignedGroups"
},
"description":"<b>Added In:</b> 20.1.3<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>idcsCompositeKey: [value]</li><li>idcsSearchable: false</li><li>multiValued: true</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: complex</li><li>uniqueness: none</li></ul>Refers to every group of which a JIT-provisioned User should be a member. Just-in-Time user-provisioning applies this static list when jitUserProvGroupStaticListEnabled:true."
},
"correlationPolicy":{
"type":"object",
"properties":{
"type":{
"type":"string",
"enum":[
"Policy"
],
"description":"<b>Added In:</b> 20.1.3<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>idcsDefaultValue: Policy</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: immutable</li><li>required: true</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>A label that indicates the type that this references.",
"maxLength":40
},
"value":{
"type":"string",
"description":"<b>Added In:</b> 20.1.3<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: true</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>Policy identifier",
"minLength":1,
"maxLength":40
},
"$ref":{
"type":"string",
"description":"<b>Added In:</b> 20.1.3<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: reference</li><li>uniqueness: none</li></ul>Policy URI"
},
"display":{
"type":"string",
"description":"<b>Added In:</b> 20.1.3<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>Policy display name"
}
},
"required":[
"type",
"value"
],
"description":"<b>Added In:</b> 20.1.3<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: immutable</li><li>required: false</li><li>returned: default</li><li>type: complex</li><li>uniqueness: none</li></ul>Correlation policy"
},
"urn:ietf:params:scim:schemas:oracle:idcs:extension:social:IdentityProvider":{
"type":"object",
"properties":{
"accountLinkingEnabled":{
"type":"boolean",
"description":"<b>Added In:</b> 20.1.3<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: true</li><li>returned: default</li><li>type: boolean</li><li>uniqueness: none</li></ul>Whether account linking is enabled"
},
"registrationEnabled":{
"type":"boolean",
"description":"<b>Added In:</b> 20.1.3<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: true</li><li>returned: default</li><li>type: boolean</li><li>uniqueness: none</li></ul>Whether registration is enabled"
},
"status":{
"type":"string",
"enum":[
"created",
"deleted"
],
"description":"<b>Added In:</b> 20.1.3<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>Status",
"maxLength":100
},
"authzUrl":{
"type":"string",
"description":"<b>Added In:</b> 20.1.3<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>Social IDP Authorization URL",
"maxLength":1000
},
"accessTokenUrl":{
"type":"string",
"description":"<b>Added In:</b> 20.1.3<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>Social IDP Access token URL",
"maxLength":1000
},
"profileUrl":{
"type":"string",
"description":"<b>Added In:</b> 20.1.3<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>Social IDP User profile URL",
"maxLength":1000
},
"scope":{
"type":"array",
"items":{
"type":"string"
},
"description":"<b>Added In:</b> 20.1.3<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: false</li><li>multiValued: true</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>Scope to request",
"maxLength":1000
},
"adminScope":{
"type":"array",
"items":{
"type":"string"
},
"description":"<b>Added In:</b> 20.1.3<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: false</li><li>multiValued: true</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>Admin scope to request",
"maxLength":1000
},
"consumerKey":{
"type":"string",
"description":"<b>Added In:</b> 20.1.3<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: true</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>Social IDP Client Application Client ID",
"minLength":1,
"maxLength":256
},
"consumerSecret":{
"type":"string",
"description":"<b>Added In:</b> 20.1.3<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: false</li><li>idcsSensitive: encrypt</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: true</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>Social IDP Client Application Client Secret",
"minLength":1,
"maxLength":256
},
"serviceProviderName":{
"type":"string",
"description":"<b>Added In:</b> 20.1.3<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: immutable</li><li>required: true</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>Service Provider Name",
"maxLength":100
},
"clockSkewInSeconds":{
"type":"integer",
"description":"<b>Added In:</b> 20.1.3<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: integer</li><li>uniqueness: none</li></ul>Social IDP allowed clock skew time"
},
"redirectUrl":{
"type":"string",
"description":"<b>Added In:</b> 20.1.3<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>redirect URL for social idp",
"maxLength":1000
},
"discoveryUrl":{
"type":"string",
"description":"<b>Added In:</b> 20.1.3<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>Discovery URL",
"maxLength":1000
},
"clientCredentialInPayload":{
"type":"boolean",
"description":"<b>Added In:</b> 20.1.3<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: boolean</li><li>uniqueness: none</li></ul>Whether the client credential is contained in payload"
},
"idAttribute":{
"type":"string",
"description":"<b>Added In:</b> 20.1.3<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: immutable</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>Id attribute used for account linking",
"maxLength":100
}
},
"description":"Social Identity Provider Extension Schema",
"required":[
"accountLinkingEnabled",
"registrationEnabled",
"consumerKey",
"consumerSecret",
"serviceProviderName"
]
},
"urn:ietf:params:scim:schemas:oracle:idcs:extension:x509:IdentityProvider":{
"type":"object",
"properties":{
"certMatchAttribute":{
"type":"string",
"description":"<b>Added In:</b> 2010242156<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: true</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>X509 Certificate Matching Attribute",
"maxLength":256
},
"userMatchAttribute":{
"type":"string",
"description":"<b>Added In:</b> 2010242156<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: true</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>This property specifies the userstore attribute value that must match the incoming certificate attribute.",
"maxLength":256
},
"otherCertMatchAttribute":{
"type":"string",
"description":"<b>Added In:</b> 2010242156<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>Check for specific conditions of other certificate attributes",
"maxLength":256
},
"signingCertificateChain":{
"type":"array",
"items":{
"type":"string"
},
"description":"<b>Added In:</b> 2010242156<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: true</li><li>mutability: readWrite</li><li>required: true</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>Certificate alias list to create a chain for the incoming client certificate",
"maxLength":256
},
"ocspEnabled":{
"type":"boolean",
"description":"<b>Added In:</b> 2010242156<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: boolean</li><li>uniqueness: none</li></ul>Set to true to enable OCSP Validation"
},
"ocspServerName":{
"type":"string",
"description":"<b>Added In:</b> 2010242156<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>This property specifies the OCSP Server alias name",
"maxLength":100
},
"ocspResponderURL":{
"type":"string",
"description":"<b>Added In:</b> 2010242156<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>This property specifies OCSP Responder URL.",
"maxLength":1000
},
"ocspAllowUnknownResponseStatus":{
"type":"boolean",
"description":"<b>Added In:</b> 2010242156<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: boolean</li><li>uniqueness: none</li></ul>Allow access if OCSP response is UNKNOWN or OCSP Responder does not respond within the timeout duration"
},
"ocspRevalidateTime":{
"type":"integer",
"description":"<b>Added In:</b> 2010242156<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>idcsMaxValue: 24</li><li>idcsMinValue: 0</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: integer</li><li>uniqueness: none</li></ul>Revalidate OCSP status for user after X hours"
},
"ocspEnableSignedResponse":{
"type":"boolean",
"description":"<b>Added In:</b> 2010242156<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: boolean</li><li>uniqueness: none</li></ul>Describes if the OCSP response is signed"
},
"ocspTrustCertChain":{
"type":"array",
"items":{
"type":"string"
},
"description":"<b>Added In:</b> 2010242156<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: true</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>OCSP Trusted Certificate Chain",
"maxLength":256
},
"crlEnabled":{
"type":"boolean",
"description":"<b>Added In:</b> 2010242156<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: boolean</li><li>uniqueness: none</li></ul>Set to true to enable CRL Validation"
},
"crlCheckOnOCSPFailureEnabled":{
"type":"boolean",
"description":"<b>Added In:</b> 2010242156<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: boolean</li><li>uniqueness: none</li></ul>Fallback on CRL Validation if OCSP fails."
},
"crlLocation":{
"type":"string",
"description":"<b>Added In:</b> 2010242156<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>CRL Location URL",
"maxLength":1000
},
"crlReloadDuration":{
"type":"integer",
"description":"<b>Added In:</b> 2010242156<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: integer</li><li>uniqueness: none</li></ul>Fetch the CRL contents every X minutes"
}
},
"description":"X509 Identity Provider Extension Schema",
"required":[
"certMatchAttribute",
"userMatchAttribute",
"signingCertificateChain"
]
}
}
}
Nested Schema : correlationPolicy
Type: object
Added In: 20.1.3
SCIM++ Properties:- caseExact: true
- idcsSearchable: false
- multiValued: false
- mutability: immutable
- required: false
- returned: default
- type: complex
- uniqueness: none
Correlation policy
Show Source
-
$ref(optional):
string
Added In: 20.1.3
SCIM++ Properties:- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: reference
- uniqueness: none
Policy URI
-
display(optional):
string
Added In: 20.1.3
SCIM++ Properties:- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
Policy display name
-
type:
string
Maximum Length: 40
Allowed Values: [
"Policy"
]
Added In: 20.1.3
SCIM++ Properties:- idcsDefaultValue: Policy
- idcsSearchable: false
- multiValued: false
- mutability: immutable
- required: true
- returned: default
- type: string
- uniqueness: none
A label that indicates the type that this references.
-
value:
string
Minimum Length: 1
Maximum Length: 40
Added In: 20.1.3
SCIM++ Properties:- caseExact: true
- idcsSearchable: true
- multiValued: false
- mutability: readWrite
- required: true
- returned: default
- type: string
- uniqueness: none
Policy identifier
{
"type":"object",
"properties":{
"type":{
"type":"string",
"enum":[
"Policy"
],
"description":"<b>Added In:</b> 20.1.3<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>idcsDefaultValue: Policy</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: immutable</li><li>required: true</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>A label that indicates the type that this references.",
"maxLength":40
},
"value":{
"type":"string",
"description":"<b>Added In:</b> 20.1.3<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: true</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>Policy identifier",
"minLength":1,
"maxLength":40
},
"$ref":{
"type":"string",
"description":"<b>Added In:</b> 20.1.3<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: reference</li><li>uniqueness: none</li></ul>Policy URI"
},
"display":{
"type":"string",
"description":"<b>Added In:</b> 20.1.3<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>Policy display name"
}
},
"required":[
"type",
"value"
],
"description":"<b>Added In:</b> 20.1.3<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: immutable</li><li>required: false</li><li>returned: default</li><li>type: complex</li><li>uniqueness: none</li></ul>Correlation policy"
}
Nested Schema : idcsCreatedBy
Type: object
SCIM++ Properties:- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: true
- returned: default
- type: complex
The User or App who created the Resource
Show Source
-
$ref(optional):
string
SCIM++ Properties:- caseExact: true
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: reference
- uniqueness: none
The URI of the SCIM resource that represents the User or App who created this Resource
-
display(optional):
string
SCIM++ Properties:- caseExact: true
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
The displayName of the User or App who created this Resource
-
ocid(optional):
string
SCIM++ Properties:- caseExact: true
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- returned: default
- type: string
- uniqueness: none
The OCID of the SCIM resource that represents the User or App who created this Resource
-
type(optional):
string
Allowed Values: [
"User",
"App"
]
SCIM++ Properties:- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
The type of resource, User or App, that created this Resource
-
value:
string
SCIM++ Properties:- caseExact: true
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: true
- returned: default
- type: string
- uniqueness: none
The ID of the SCIM resource that represents the User or App who created this Resource
{
"type":"object",
"properties":{
"value":{
"type":"string",
"description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: true</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>The ID of the SCIM resource that represents the User or App who created this Resource"
},
"$ref":{
"type":"string",
"description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: reference</li><li>uniqueness: none</li></ul>The URI of the SCIM resource that represents the User or App who created this Resource"
},
"type":{
"type":"string",
"enum":[
"User",
"App"
],
"description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>The type of resource, User or App, that created this Resource"
},
"display":{
"type":"string",
"description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>The displayName of the User or App who created this Resource"
},
"ocid":{
"type":"string",
"description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readOnly</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>The OCID of the SCIM resource that represents the User or App who created this Resource"
}
},
"required":[
"value"
],
"description":"<b>SCIM++ Properties:</b><br/><ul><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: true</li><li>returned: default</li><li>type: complex</li></ul>The User or App who created the Resource"
}
Nested Schema : idcsLastModifiedBy
Type: object
SCIM++ Properties:- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: complex
The User or App who modified the Resource
Show Source
-
$ref(optional):
string
SCIM++ Properties:- caseExact: true
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: reference
- uniqueness: none
The URI of the SCIM resource that represents the User or App who modified this Resource
-
display(optional):
string
SCIM++ Properties:- caseExact: true
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
The displayName of the User or App who modified this Resource
-
ocid(optional):
string
SCIM++ Properties:- caseExact: true
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- returned: default
- type: string
- uniqueness: none
The OCID of the SCIM resource that represents the User or App who modified this Resource
-
type(optional):
string
Allowed Values: [
"User",
"App"
]
SCIM++ Properties:- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
The type of resource, User or App, that modified this Resource
-
value:
string
SCIM++ Properties:- caseExact: true
- idcsSearchable: true
- multiValued: false
- mutability: readOnly
- required: true
- returned: default
- type: string
- uniqueness: none
The ID of the SCIM resource that represents the User or App who modified this Resource
{
"type":"object",
"properties":{
"value":{
"type":"string",
"description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: true</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>The ID of the SCIM resource that represents the User or App who modified this Resource"
},
"$ref":{
"type":"string",
"description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: reference</li><li>uniqueness: none</li></ul>The URI of the SCIM resource that represents the User or App who modified this Resource"
},
"type":{
"type":"string",
"enum":[
"User",
"App"
],
"description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>The type of resource, User or App, that modified this Resource"
},
"display":{
"type":"string",
"description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>The displayName of the User or App who modified this Resource"
},
"ocid":{
"type":"string",
"description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readOnly</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>The OCID of the SCIM resource that represents the User or App who modified this Resource"
}
},
"required":[
"value"
],
"description":"<b>SCIM++ Properties:</b><br/><ul><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: complex</li></ul>The User or App who modified the Resource"
}
Nested Schema : idcsPreventedOperations
Type: array
SCIM++ Properties:- idcsSearchable: false
- multiValued: true
- mutability: readOnly
- required: false
- returned: request
- type: string
- uniqueness: none
Each value of this attribute specifies an operation that only an internal client may perform on this particular resource.
Allowed Values: [
"replace",
"update",
"delete"
]
Show Source
{
"type":"array",
"items":{
"type":"string"
},
"enum":[
"replace",
"update",
"delete"
],
"description":"<b>SCIM++ Properties:</b><br/><ul><li>idcsSearchable: false</li><li>multiValued: true</li><li>mutability: readOnly</li><li>required: false</li><li>returned: request</li><li>type: string</li><li>uniqueness: none</li></ul>Each value of this attribute specifies an operation that only an internal client may perform on this particular resource."
}
Nested Schema : jitUserProvAssignedGroups
Type: array
Added In: 20.1.3
SCIM++ Properties:- idcsCompositeKey: [value]
- idcsSearchable: false
- multiValued: true
- mutability: readWrite
- required: false
- returned: default
- type: complex
- uniqueness: none
Refers to every group of which a JIT-provisioned User should be a member. Just-in-Time user-provisioning applies this static list when jitUserProvGroupStaticListEnabled:true.
Show Source
-
Array of:
object jitUserProvAssignedGroups
Refers to every group of which a JIT-provisioned User should be a member. Just-in-Time user-provisioning applies this static list when jitUserProvGroupStaticListEnabled:true.
{
"type":"array",
"items":{
"$ref":"#/definitions/jitUserProvAssignedGroups"
},
"description":"<b>Added In:</b> 20.1.3<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>idcsCompositeKey: [value]</li><li>idcsSearchable: false</li><li>multiValued: true</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: complex</li><li>uniqueness: none</li></ul>Refers to every group of which a JIT-provisioned User should be a member. Just-in-Time user-provisioning applies this static list when jitUserProvGroupStaticListEnabled:true."
}
Nested Schema : jitUserProvAttributes
Type: object
Added In: 20.1.3
SCIM++ Properties:- caseExact: false
- idcsCompositeKey: [value]
- idcsSearchable: false
- mutability: immutable
- required: false
- returned: default
- type: complex
- uniqueness: none
Assertion To User Mapping
Show Source
-
$ref(optional):
string
Added In: 20.1.3
SCIM++ Properties:- idcsSearchable: false
- mutability: immutable
- required: false
- returned: default
- type: reference
- uniqueness: none
Mapped Attribute URI
-
value:
string
Minimum Length: 1
Maximum Length: 40
Added In: 20.1.3
SCIM++ Properties:- caseExact: true
- idcsSearchable: true
- mutability: immutable
- required: true
- returned: default
- type: string
- uniqueness: none
Mapped Attribute identifier
{
"type":"object",
"properties":{
"value":{
"type":"string",
"description":"<b>Added In:</b> 20.1.3<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: true</li><li>mutability: immutable</li><li>required: true</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>Mapped Attribute identifier",
"minLength":1,
"maxLength":40
},
"$ref":{
"type":"string",
"description":"<b>Added In:</b> 20.1.3<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>idcsSearchable: false</li><li>mutability: immutable</li><li>required: false</li><li>returned: default</li><li>type: reference</li><li>uniqueness: none</li></ul>Mapped Attribute URI"
}
},
"required":[
"value"
],
"description":"<b>Added In:</b> 20.1.3<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsCompositeKey: [value]</li><li>idcsSearchable: false</li><li>mutability: immutable</li><li>required: false</li><li>returned: default</li><li>type: complex</li><li>uniqueness: none</li></ul>Assertion To User Mapping"
}
Nested Schema : jitUserProvGroupMappings
Type: array
Added In: 2205120021
SCIM++ Properties:- idcsCompositeKey: [idpGroup]
- multiValued: true
- mutability: readWrite
- required: false
- returned: default
- type: complex
- uniqueness: none
The list of mappings between the Identity Domain Group and the IDP group.
Show Source
{
"type":"array",
"items":{
"$ref":"#/definitions/jitUserProvGroupMappings"
},
"description":"<b>Added In:</b> 2205120021<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>idcsCompositeKey: [idpGroup]</li><li>multiValued: true</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: complex</li><li>uniqueness: none</li></ul>The list of mappings between the Identity Domain Group and the IDP group."
}
Nested Schema : requestedAuthenticationContext
Type: array
Maximum Length: 1000
Added In: 2102181953
SCIM++ Properties:- caseExact: true
- idcsSearchable: false
- multiValued: true
- mutability: readWrite
- required: false
- returned: default
- type: string
- uniqueness: none
SAML SP authentication type.
Show Source
{
"type":"array",
"items":{
"type":"string"
},
"description":"<b>Added In:</b> 2102181953<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: false</li><li>multiValued: true</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>SAML SP authentication type.",
"maxLength":1000
}
Nested Schema : schemas
Type: array
SCIM++ Properties:- caseExact: false
- idcsSearchable: false
- multiValued: true
- mutability: readWrite
- required: true
- returned: default
- type: string
- uniqueness: none
REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard \"enterprise\" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.
Show Source
{
"type":"array",
"items":{
"type":"string"
},
"description":"<b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: true</li><li>mutability: readWrite</li><li>required: true</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard \\\"enterprise\\\" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior."
}
Nested Schema : urn:ietf:params:scim:schemas:oracle:idcs:extension:social:IdentityProvider
Type: object
Social Identity Provider Extension Schema
Show Source
-
accessTokenUrl(optional):
string
Maximum Length: 1000
Added In: 20.1.3
SCIM++ Properties:- caseExact: true
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: string
- uniqueness: none
Social IDP Access token URL
-
accountLinkingEnabled:
boolean
Added In: 20.1.3
SCIM++ Properties:- caseExact: true
- idcsSearchable: true
- multiValued: false
- mutability: readWrite
- required: true
- returned: default
- type: boolean
- uniqueness: none
Whether account linking is enabled
-
adminScope(optional):
array adminScope
Added In: 20.1.3
SCIM++ Properties:- caseExact: true
- idcsSearchable: false
- multiValued: true
- mutability: readWrite
- required: false
- returned: default
- type: string
- uniqueness: none
Admin scope to request
-
authzUrl(optional):
string
Maximum Length: 1000
Added In: 20.1.3
SCIM++ Properties:- caseExact: true
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: string
- uniqueness: none
Social IDP Authorization URL
-
clientCredentialInPayload(optional):
boolean
Added In: 20.1.3
SCIM++ Properties:- caseExact: true
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: boolean
- uniqueness: none
Whether the client credential is contained in payload
-
clockSkewInSeconds(optional):
integer
Added In: 20.1.3
SCIM++ Properties:- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: integer
- uniqueness: none
Social IDP allowed clock skew time
-
consumerKey:
string
Minimum Length: 1
Maximum Length: 256
Added In: 20.1.3
SCIM++ Properties:- caseExact: true
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: true
- returned: default
- type: string
- uniqueness: none
Social IDP Client Application Client ID
-
consumerSecret:
string
Minimum Length: 1
Maximum Length: 256
Added In: 20.1.3
SCIM++ Properties:- caseExact: true
- idcsSearchable: false
- idcsSensitive: encrypt
- multiValued: false
- mutability: readWrite
- required: true
- returned: default
- type: string
- uniqueness: none
Social IDP Client Application Client Secret
-
discoveryUrl(optional):
string
Maximum Length: 1000
Added In: 20.1.3
SCIM++ Properties:- caseExact: true
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: string
- uniqueness: none
Discovery URL
-
idAttribute(optional):
string
Maximum Length: 100
Added In: 20.1.3
SCIM++ Properties:- caseExact: true
- idcsSearchable: false
- multiValued: false
- mutability: immutable
- required: false
- returned: default
- type: string
- uniqueness: none
Id attribute used for account linking
-
profileUrl(optional):
string
Maximum Length: 1000
Added In: 20.1.3
SCIM++ Properties:- caseExact: true
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: string
- uniqueness: none
Social IDP User profile URL
-
redirectUrl(optional):
string
Maximum Length: 1000
Added In: 20.1.3
SCIM++ Properties:- caseExact: true
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: string
- uniqueness: none
redirect URL for social idp
-
registrationEnabled:
boolean
Added In: 20.1.3
SCIM++ Properties:- caseExact: true
- idcsSearchable: true
- multiValued: false
- mutability: readWrite
- required: true
- returned: default
- type: boolean
- uniqueness: none
Whether registration is enabled
-
scope(optional):
array scope
Added In: 20.1.3
SCIM++ Properties:- caseExact: true
- idcsSearchable: false
- multiValued: true
- mutability: readWrite
- required: false
- returned: default
- type: string
- uniqueness: none
Scope to request
-
serviceProviderName:
string
Maximum Length: 100
Added In: 20.1.3
SCIM++ Properties:- caseExact: true
- idcsSearchable: true
- multiValued: false
- mutability: immutable
- required: true
- returned: default
- type: string
- uniqueness: none
Service Provider Name
-
status(optional):
string
Maximum Length: 100
Allowed Values: [
"created",
"deleted"
]
Added In: 20.1.3
SCIM++ Properties:- caseExact: true
- idcsSearchable: true
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: string
- uniqueness: none
Status
{
"type":"object",
"properties":{
"accountLinkingEnabled":{
"type":"boolean",
"description":"<b>Added In:</b> 20.1.3<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: true</li><li>returned: default</li><li>type: boolean</li><li>uniqueness: none</li></ul>Whether account linking is enabled"
},
"registrationEnabled":{
"type":"boolean",
"description":"<b>Added In:</b> 20.1.3<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: true</li><li>returned: default</li><li>type: boolean</li><li>uniqueness: none</li></ul>Whether registration is enabled"
},
"status":{
"type":"string",
"enum":[
"created",
"deleted"
],
"description":"<b>Added In:</b> 20.1.3<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>Status",
"maxLength":100
},
"authzUrl":{
"type":"string",
"description":"<b>Added In:</b> 20.1.3<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>Social IDP Authorization URL",
"maxLength":1000
},
"accessTokenUrl":{
"type":"string",
"description":"<b>Added In:</b> 20.1.3<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>Social IDP Access token URL",
"maxLength":1000
},
"profileUrl":{
"type":"string",
"description":"<b>Added In:</b> 20.1.3<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>Social IDP User profile URL",
"maxLength":1000
},
"scope":{
"type":"array",
"items":{
"type":"string"
},
"description":"<b>Added In:</b> 20.1.3<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: false</li><li>multiValued: true</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>Scope to request",
"maxLength":1000
},
"adminScope":{
"type":"array",
"items":{
"type":"string"
},
"description":"<b>Added In:</b> 20.1.3<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: false</li><li>multiValued: true</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>Admin scope to request",
"maxLength":1000
},
"consumerKey":{
"type":"string",
"description":"<b>Added In:</b> 20.1.3<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: true</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>Social IDP Client Application Client ID",
"minLength":1,
"maxLength":256
},
"consumerSecret":{
"type":"string",
"description":"<b>Added In:</b> 20.1.3<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: false</li><li>idcsSensitive: encrypt</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: true</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>Social IDP Client Application Client Secret",
"minLength":1,
"maxLength":256
},
"serviceProviderName":{
"type":"string",
"description":"<b>Added In:</b> 20.1.3<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: immutable</li><li>required: true</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>Service Provider Name",
"maxLength":100
},
"clockSkewInSeconds":{
"type":"integer",
"description":"<b>Added In:</b> 20.1.3<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: integer</li><li>uniqueness: none</li></ul>Social IDP allowed clock skew time"
},
"redirectUrl":{
"type":"string",
"description":"<b>Added In:</b> 20.1.3<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>redirect URL for social idp",
"maxLength":1000
},
"discoveryUrl":{
"type":"string",
"description":"<b>Added In:</b> 20.1.3<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>Discovery URL",
"maxLength":1000
},
"clientCredentialInPayload":{
"type":"boolean",
"description":"<b>Added In:</b> 20.1.3<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: boolean</li><li>uniqueness: none</li></ul>Whether the client credential is contained in payload"
},
"idAttribute":{
"type":"string",
"description":"<b>Added In:</b> 20.1.3<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: immutable</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>Id attribute used for account linking",
"maxLength":100
}
},
"description":"Social Identity Provider Extension Schema",
"required":[
"accountLinkingEnabled",
"registrationEnabled",
"consumerKey",
"consumerSecret",
"serviceProviderName"
]
}
Nested Schema : urn:ietf:params:scim:schemas:oracle:idcs:extension:x509:IdentityProvider
Type: object
X509 Identity Provider Extension Schema
Show Source
-
certMatchAttribute:
string
Maximum Length: 256
Added In: 2010242156
SCIM++ Properties:- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: true
- returned: default
- type: string
- uniqueness: none
X509 Certificate Matching Attribute
-
crlCheckOnOCSPFailureEnabled(optional):
boolean
Added In: 2010242156
SCIM++ Properties:- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: boolean
- uniqueness: none
Fallback on CRL Validation if OCSP fails.
-
crlEnabled(optional):
boolean
Added In: 2010242156
SCIM++ Properties:- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: boolean
- uniqueness: none
Set to true to enable CRL Validation
-
crlLocation(optional):
string
Maximum Length: 1000
Added In: 2010242156
SCIM++ Properties:- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: string
- uniqueness: none
CRL Location URL
-
crlReloadDuration(optional):
integer
Added In: 2010242156
SCIM++ Properties:- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: integer
- uniqueness: none
Fetch the CRL contents every X minutes
-
ocspAllowUnknownResponseStatus(optional):
boolean
Added In: 2010242156
SCIM++ Properties:- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: boolean
- uniqueness: none
Allow access if OCSP response is UNKNOWN or OCSP Responder does not respond within the timeout duration
-
ocspEnabled(optional):
boolean
Added In: 2010242156
SCIM++ Properties:- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: boolean
- uniqueness: none
Set to true to enable OCSP Validation
-
ocspEnableSignedResponse(optional):
boolean
Added In: 2010242156
SCIM++ Properties:- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: boolean
- uniqueness: none
Describes if the OCSP response is signed
-
ocspResponderURL(optional):
string
Maximum Length: 1000
Added In: 2010242156
SCIM++ Properties:- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: string
- uniqueness: none
This property specifies OCSP Responder URL.
-
ocspRevalidateTime(optional):
integer
Added In: 2010242156
SCIM++ Properties:- idcsMaxValue: 24
- idcsMinValue: 0
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: integer
- uniqueness: none
Revalidate OCSP status for user after X hours
-
ocspServerName(optional):
string
Maximum Length: 100
Added In: 2010242156
SCIM++ Properties:- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: string
- uniqueness: none
This property specifies the OCSP Server alias name
-
ocspTrustCertChain(optional):
array ocspTrustCertChain
Added In: 2010242156
SCIM++ Properties:- caseExact: false
- idcsSearchable: false
- multiValued: true
- mutability: readWrite
- required: false
- returned: default
- type: string
- uniqueness: none
OCSP Trusted Certificate Chain
-
otherCertMatchAttribute(optional):
string
Maximum Length: 256
Added In: 2010242156
SCIM++ Properties:- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: false
- returned: default
- type: string
- uniqueness: none
Check for specific conditions of other certificate attributes
-
signingCertificateChain:
array signingCertificateChain
Added In: 2010242156
SCIM++ Properties:- caseExact: false
- idcsSearchable: false
- multiValued: true
- mutability: readWrite
- required: true
- returned: default
- type: string
- uniqueness: none
Certificate alias list to create a chain for the incoming client certificate
-
userMatchAttribute:
string
Maximum Length: 256
Added In: 2010242156
SCIM++ Properties:- caseExact: false
- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: true
- returned: default
- type: string
- uniqueness: none
This property specifies the userstore attribute value that must match the incoming certificate attribute.
{
"type":"object",
"properties":{
"certMatchAttribute":{
"type":"string",
"description":"<b>Added In:</b> 2010242156<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: true</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>X509 Certificate Matching Attribute",
"maxLength":256
},
"userMatchAttribute":{
"type":"string",
"description":"<b>Added In:</b> 2010242156<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: true</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>This property specifies the userstore attribute value that must match the incoming certificate attribute.",
"maxLength":256
},
"otherCertMatchAttribute":{
"type":"string",
"description":"<b>Added In:</b> 2010242156<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>Check for specific conditions of other certificate attributes",
"maxLength":256
},
"signingCertificateChain":{
"type":"array",
"items":{
"type":"string"
},
"description":"<b>Added In:</b> 2010242156<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: true</li><li>mutability: readWrite</li><li>required: true</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>Certificate alias list to create a chain for the incoming client certificate",
"maxLength":256
},
"ocspEnabled":{
"type":"boolean",
"description":"<b>Added In:</b> 2010242156<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: boolean</li><li>uniqueness: none</li></ul>Set to true to enable OCSP Validation"
},
"ocspServerName":{
"type":"string",
"description":"<b>Added In:</b> 2010242156<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>This property specifies the OCSP Server alias name",
"maxLength":100
},
"ocspResponderURL":{
"type":"string",
"description":"<b>Added In:</b> 2010242156<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>This property specifies OCSP Responder URL.",
"maxLength":1000
},
"ocspAllowUnknownResponseStatus":{
"type":"boolean",
"description":"<b>Added In:</b> 2010242156<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: boolean</li><li>uniqueness: none</li></ul>Allow access if OCSP response is UNKNOWN or OCSP Responder does not respond within the timeout duration"
},
"ocspRevalidateTime":{
"type":"integer",
"description":"<b>Added In:</b> 2010242156<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>idcsMaxValue: 24</li><li>idcsMinValue: 0</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: integer</li><li>uniqueness: none</li></ul>Revalidate OCSP status for user after X hours"
},
"ocspEnableSignedResponse":{
"type":"boolean",
"description":"<b>Added In:</b> 2010242156<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: boolean</li><li>uniqueness: none</li></ul>Describes if the OCSP response is signed"
},
"ocspTrustCertChain":{
"type":"array",
"items":{
"type":"string"
},
"description":"<b>Added In:</b> 2010242156<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: true</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>OCSP Trusted Certificate Chain",
"maxLength":256
},
"crlEnabled":{
"type":"boolean",
"description":"<b>Added In:</b> 2010242156<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: boolean</li><li>uniqueness: none</li></ul>Set to true to enable CRL Validation"
},
"crlCheckOnOCSPFailureEnabled":{
"type":"boolean",
"description":"<b>Added In:</b> 2010242156<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: boolean</li><li>uniqueness: none</li></ul>Fallback on CRL Validation if OCSP fails."
},
"crlLocation":{
"type":"string",
"description":"<b>Added In:</b> 2010242156<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>CRL Location URL",
"maxLength":1000
},
"crlReloadDuration":{
"type":"integer",
"description":"<b>Added In:</b> 2010242156<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: integer</li><li>uniqueness: none</li></ul>Fetch the CRL contents every X minutes"
}
},
"description":"X509 Identity Provider Extension Schema",
"required":[
"certMatchAttribute",
"userMatchAttribute",
"signingCertificateChain"
]
}
Nested Schema : jitUserProvAssignedGroups
Type: object
Refers to every group of which a JIT-provisioned User should be a member. Just-in-Time user-provisioning applies this static list when jitUserProvGroupStaticListEnabled:true.
Show Source
-
$ref(optional):
string
Added In: 20.1.3
SCIM++ Properties:- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: reference
- uniqueness: none
Group URI
-
display(optional):
string
Added In: 20.1.3
SCIM++ Properties:- idcsSearchable: false
- multiValued: false
- mutability: readOnly
- required: false
- returned: default
- type: string
- uniqueness: none
A human readable name, primarily used for display purposes. READ-ONLY.
-
value:
string
Minimum Length: 1
Maximum Length: 40
Added In: 20.1.3
SCIM++ Properties:- caseExact: true
- idcsSearchable: true
- multiValued: false
- mutability: readWrite
- required: true
- returned: default
- type: string
- uniqueness: none
Group identifier
{
"type":"object",
"description":"Refers to every group of which a JIT-provisioned User should be a member. Just-in-Time user-provisioning applies this static list when jitUserProvGroupStaticListEnabled:true.",
"required":[
"value"
],
"properties":{
"value":{
"type":"string",
"description":"<b>Added In:</b> 20.1.3<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: true</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: true</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>Group identifier",
"minLength":1,
"maxLength":40
},
"$ref":{
"type":"string",
"description":"<b>Added In:</b> 20.1.3<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: reference</li><li>uniqueness: none</li></ul>Group URI"
},
"display":{
"type":"string",
"description":"<b>Added In:</b> 20.1.3<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readOnly</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>A human readable name, primarily used for display purposes. READ-ONLY."
}
}
}
Nested Schema : jitUserProvGroupMappings
Type: object
The list of mappings between the Identity Domain Group and the IDP group.
Show Source
-
$ref:
string
Added In: 2205120021
SCIM++ Properties:- multiValued: false
- mutability: readOnly
- required: true
- returned: default
- type: reference
Group URI
-
idpGroup:
string
Maximum Length: 256
Added In: 2205120021
SCIM++ Properties:- idcsSearchable: false
- multiValued: false
- mutability: readWrite
- required: true
- type: string
IDP Group Name
-
value:
string
Maximum Length: 40
Added In: 2205120021
SCIM++ Properties:- multiValued: false
- mutability: readWrite
- required: true
- idcsSearchable: true
- type: string
Domain Group
{
"type":"object",
"description":"The list of mappings between the Identity Domain Group and the IDP group.",
"required":[
"value",
"$ref",
"idpGroup"
],
"properties":{
"value":{
"type":"string",
"description":"<b>Added In:</b> 2205120021<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>multiValued: false</li><li>mutability: readWrite</li><li>required: true</li><li>idcsSearchable: true</li><li>type: string</li></ul>Domain Group",
"maxLength":40
},
"$ref":{
"type":"string",
"description":"<b>Added In:</b> 2205120021<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>multiValued: false</li><li>mutability: readOnly</li><li>required: true</li><li>returned: default</li><li>type: reference</li></ul>Group URI"
},
"idpGroup":{
"type":"string",
"description":"<b>Added In:</b> 2205120021<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>idcsSearchable: false</li><li>multiValued: false</li><li>mutability: readWrite</li><li>required: true</li><li>type: string</li></ul>IDP Group Name",
"maxLength":256
}
}
}
Nested Schema : adminScope
Type: array
Maximum Length: 1000
Added In: 20.1.3
SCIM++ Properties:- caseExact: true
- idcsSearchable: false
- multiValued: true
- mutability: readWrite
- required: false
- returned: default
- type: string
- uniqueness: none
Admin scope to request
Show Source
{
"type":"array",
"items":{
"type":"string"
},
"description":"<b>Added In:</b> 20.1.3<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: false</li><li>multiValued: true</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>Admin scope to request",
"maxLength":1000
}
Nested Schema : scope
Type: array
Maximum Length: 1000
Added In: 20.1.3
SCIM++ Properties:- caseExact: true
- idcsSearchable: false
- multiValued: true
- mutability: readWrite
- required: false
- returned: default
- type: string
- uniqueness: none
Scope to request
Show Source
{
"type":"array",
"items":{
"type":"string"
},
"description":"<b>Added In:</b> 20.1.3<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: true</li><li>idcsSearchable: false</li><li>multiValued: true</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>Scope to request",
"maxLength":1000
}
Nested Schema : ocspTrustCertChain
Type: array
Maximum Length: 256
Added In: 2010242156
SCIM++ Properties:- caseExact: false
- idcsSearchable: false
- multiValued: true
- mutability: readWrite
- required: false
- returned: default
- type: string
- uniqueness: none
OCSP Trusted Certificate Chain
Show Source
{
"type":"array",
"items":{
"type":"string"
},
"description":"<b>Added In:</b> 2010242156<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: true</li><li>mutability: readWrite</li><li>required: false</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>OCSP Trusted Certificate Chain",
"maxLength":256
}
Nested Schema : signingCertificateChain
Type: array
Maximum Length: 256
Added In: 2010242156
SCIM++ Properties:- caseExact: false
- idcsSearchable: false
- multiValued: true
- mutability: readWrite
- required: true
- returned: default
- type: string
- uniqueness: none
Certificate alias list to create a chain for the incoming client certificate
Show Source
{
"type":"array",
"items":{
"type":"string"
},
"description":"<b>Added In:</b> 2010242156<br/><br/><b>SCIM++ Properties:</b><br/><ul><li>caseExact: false</li><li>idcsSearchable: false</li><li>multiValued: true</li><li>mutability: readWrite</li><li>required: true</li><li>returned: default</li><li>type: string</li><li>uniqueness: none</li></ul>Certificate alias list to create a chain for the incoming client certificate",
"maxLength":256
}