Add, Search, Compare or Delete Proxy LDAP Workflow Element
post
                    /rest/v1/admin
Add, Search, Compare or Delete Proxy LDAP Workflow Element
                Request
Supported Media Types
                - application/json
Proxy LDAP Workflow Element that needs to be created
                
                
                
                Root Schema : Proxy LDAP Workflow Element POSTRequest
    
      Type: 
      
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
        Show Source
        object- 
            assertion: 
            string
            Assertion string for the LDAP compare operation. Note: To be used only while performing LDAP compare operation using POST, i.e., if the msgType is urn:ietf:params:rest:schemas:oracle:oud:1.0:CompareRequest.
- 
            attributes: 
            object  Proxy LDAP Workflow Element Properties
            
            
- 
            base: 
            string
            Search Base DN to be used for the LDAP search operation. Note: To be used only while performing LDAP search operation using POST, i.e., if the msgType is urn:ietf:params:rest:schemas:oracle:oud:1.0:SearchRequest. It is also mandatory for such operation
- 
            controls: 
            array  controls
            
            LDAP controls to be sent to server for the LDAP operation.
- 
            dn: 
            string
            LDAP DN of the entry to be created or deleted or compared. Note: To be used only while performing LDAP add, delete or compare operations, i.e, if the msgType is urn:ietf:params:rest:schemas:oracle:oud:1.0:AddRequest, urn:ietf:params:rest:schemas:oracle:oud:1.0:DeleteRequest or urn:ietf:params:rest:schemas:oracle:oud:1.0:CompareRequest.It is mandatory for such operations.
- 
            filter: 
            string
            Search filter for the LDAP search operation. Should follow LDAP search filter syntax. Note: To be used only while performing LDAP search operation using POST request, i.e., if the msgType is urn:ietf:params:rest:schemas:oracle:oud:1.0:SearchRequest.
- 
            msgType(required): 
            string
            Allowed Values:[ "urn:ietf:params:rest:schemas:oracle:oud:1.0:AddRequest", "urn:ietf:params:rest:schemas:oracle:oud:1.0:SearchRequest", "urn:ietf:params:rest:schemas:oracle:oud:1.0:DeleteRequest", "urn:ietf:params:rest:schemas:oracle:oud:1.0:CompareRequest" ]The REST message type
- 
            requiredAttributes: 
            array  requiredAttributes
            
            List of attributes to be fetched for the entry. Note: To be used only while performing LDAP search operation using POST, i.e., if the msgType is urn:ietf:params:rest:schemas:oracle:oud:1.0:SearchRequest.
- 
            scope: 
            string
            Allowed Values:[ "base", "sub", "one" ]Scope for the LDAP search operation. Note: To be used only while performing LDAP search operation using POST, i.e., if the msgType is urn:ietf:params:rest:schemas:oracle:oud:1.0:SearchRequest.
Nested Schema : Proxy LDAP Workflow Element Properties
    
      Type: 
      
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
        Show Source
        object- 
            cn: 
            string
            CN (common name) of the entry
- 
            ds-cfg-client-cred-mode(required): 
            string
            Allowed Values:[ "use-client-identity", "use-proxy-auth", "use-specific-identity" ]Specifies the way the proxy server binds to the remote LDAP server.
- 
            ds-cfg-enabled(required): 
            boolean
            Indicates whether the Workflow Element is enabled for use in the server.
- 
            ds-cfg-exclude-list: 
            array  ds-cfg-exclude-list
            
            The list contains a set of DNs. If the client bind DN is a descendant of one DNs on the exclude list, then the authentication against the remote server will be performed using the proxy credentials, regardless of the content of the include list.
- 
            ds-cfg-include-list: 
            array  ds-cfg-include-list
            
            The list contains a set of DNs. If the client bind DN is a descendant of one of the DNs in the list, or if the list is empty, then the client credentials can be used to perform authentication against the remote server (as long as the client bind DN is not a descendant of any DN on the exclude list). If the never-bind flag is disabled then a silent-bind is performed for the authentication. If the never-bind flag is enabled, the user's entry is retrieved from the remote server and the credentials are checked locally.
- 
            ds-cfg-java-class(required): 
            string
            Default Value:com.sun.dps.server.workflowelement.proxyldap.ProxyLdapWorkflowElementSpecifies the fully-qualified name of the Java class that provides the Proxy LDAP Workflow Element implementation.
- 
            ds-cfg-ldap-server-extension(required): 
            string
            Identifies the LDAP server extension configured for this Proxy LDAP Workflow Element.
- 
            ds-cfg-log-silent-bind-response-controls: 
            boolean
            Default Value:falseIndicates whether the logging of the silent-bind response controls is enabled.
- 
            ds-cfg-never-bind: 
            boolean
            Default Value:falseIndicates whether the never-bind flag is enabled.
- 
            ds-cfg-never-bind-user-password-attribute: 
            string
            Default Value:userPasswordThis attribute defines the description of the attribute that identifies the user's credentials on the remote server. It is relevant only when the never-bind flag is enabled. When this attribute is omitted the default value "userPassword" is used instead.
- 
            ds-cfg-remote-ldap-server-bind-dn: 
            string
            DN which will be used to connect to a remote server. This DN must exist on the remote server.
- 
            ds-cfg-remote-ldap-server-bind-password: 
            string
            Password which will be used to connect to the remote server.
- 
            ds-cfg-remote-ldap-server-bind-password-file: 
            string
            File which contains the password which will be used to connect to the remote server.
- 
            ds-cfg-remote-root-dn: 
            string
            The root DN which will be used to perform internal operations on a remote server. This DN must exist on the remote server. The value "" denotes the anonymous credentials. If "" is provided then the remote-ldap-server-bind-password property is ignored.
- 
            ds-cfg-remote-root-password: 
            string
            Password which will be used by the root DN to connect to the remote server.
- 
            ds-cfg-search-count-limit: 
            integer(int32)
            Default Value:0The default size limit value used in the ldapsearch request, when it is not specified in the client request or when a size limit of zero has been specified in the client request.
- 
            ds-cfg-use-proxy-auth: 
            boolean
            Default Value:falseThis flag indicates whether the LDAP connector can use the proxy authorization control.
- 
            objectclass(required): 
            array  objectclass
            
            Objectclass(es) which this entry belongs to.
Nested Schema : controls
    
      
      Type: 
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    arrayLDAP controls to be sent to server for the LDAP operation.
    
    
    
    
    
        Show Source
        
        
    
    
    
    
    
    
Nested Schema : requiredAttributes
    
      
      Type: 
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    arrayList of attributes to be fetched for the entry. Note: To be used only while performing LDAP search operation using POST, i.e., if the msgType is urn:ietf:params:rest:schemas:oracle:oud:1.0:SearchRequest.
    
    
    
    
    
        Show Source
        
        
    
    
    
    
    
    
Nested Schema : ds-cfg-exclude-list
    
      
      Type: 
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    arrayThe list contains a set of DNs. If the client bind DN is a descendant of one DNs on the exclude list, then the authentication against the remote server will be performed using the proxy credentials, regardless of the content of the include list. 
    
    
    
    
    
        Show Source
        
        
    
    
    
    
    
    
Nested Schema : ds-cfg-include-list
    
      
      Type: 
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    arrayThe list contains a set of DNs. If the client bind DN is a descendant of one of the DNs in the list, or if the list is empty, then the client credentials can be used to perform authentication against the remote server (as long as the client bind DN is not a descendant of any DN on the exclude list). If the never-bind flag is disabled then a silent-bind is performed for the authentication. If the never-bind flag is enabled, the user's entry is retrieved from the remote server and the credentials are checked locally. 
    
    
    
    
    
        Show Source
        
        
    
    
    
    
    
    
Response
Supported Media Types
                - application/json
200 Response
OK
                
                
                    Root Schema : Proxy LDAP Workflow Element SuccessResponse
    
      Type: 
      
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
        Show Source
        object- 
            compareResult: 
            boolean
            Indicates the result of LDAP compare operation.
- 
            msgType(required): 
            string
            Allowed Values:[ "urn:ietf:params:rest:schemas:oracle:oud:1.0:SearchResponse", "urn:ietf:params:rest:schemas:oracle:oud:1.0:DeleteResponse", "urn:ietf:params:rest:schemas:oracle:oud:1.0:CompareResponse" ]The REST message type
- 
            searchResultEntries(required): 
            array  searchResultEntries
            
            Number of search result entries returned after the LDAP operation.
- 
            totalResults(required): 
            integer(int32)
            Specifies the number of entries created, and returned.
Nested Schema : searchResultEntries
    
      
      Type: 
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    arrayNumber of search result entries returned after the LDAP operation.
    
    
    
    
    
        Show Source
        
        
    
    
    
    
    
    
Nested Schema : Proxy LDAP Workflow Element SearchResultEntry
    
      Type: 
      
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
        Show Source
        object- 
            attributes(required): 
            object  Proxy LDAP Workflow Element Properties
            
            
- 
            dn(required): 
            string
            LDAP DN of the entry to be created
Nested Schema : Proxy LDAP Workflow Element Properties
    
      Type: 
      
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
        Show Source
        object- 
            cn: 
            string
            CN (common name) of the entry
- 
            ds-cfg-client-cred-mode(required): 
            string
            Allowed Values:[ "use-client-identity", "use-proxy-auth", "use-specific-identity" ]Specifies the way the proxy server binds to the remote LDAP server.
- 
            ds-cfg-enabled(required): 
            boolean
            Indicates whether the Workflow Element is enabled for use in the server.
- 
            ds-cfg-exclude-list: 
            array  ds-cfg-exclude-list
            
            The list contains a set of DNs. If the client bind DN is a descendant of one DNs on the exclude list, then the authentication against the remote server will be performed using the proxy credentials, regardless of the content of the include list.
- 
            ds-cfg-include-list: 
            array  ds-cfg-include-list
            
            The list contains a set of DNs. If the client bind DN is a descendant of one of the DNs in the list, or if the list is empty, then the client credentials can be used to perform authentication against the remote server (as long as the client bind DN is not a descendant of any DN on the exclude list). If the never-bind flag is disabled then a silent-bind is performed for the authentication. If the never-bind flag is enabled, the user's entry is retrieved from the remote server and the credentials are checked locally.
- 
            ds-cfg-java-class(required): 
            string
            Default Value:com.sun.dps.server.workflowelement.proxyldap.ProxyLdapWorkflowElementSpecifies the fully-qualified name of the Java class that provides the Proxy LDAP Workflow Element implementation.
- 
            ds-cfg-ldap-server-extension(required): 
            string
            Identifies the LDAP server extension configured for this Proxy LDAP Workflow Element.
- 
            ds-cfg-log-silent-bind-response-controls: 
            boolean
            Default Value:falseIndicates whether the logging of the silent-bind response controls is enabled.
- 
            ds-cfg-never-bind: 
            boolean
            Default Value:falseIndicates whether the never-bind flag is enabled.
- 
            ds-cfg-never-bind-user-password-attribute: 
            string
            Default Value:userPasswordThis attribute defines the description of the attribute that identifies the user's credentials on the remote server. It is relevant only when the never-bind flag is enabled. When this attribute is omitted the default value "userPassword" is used instead.
- 
            ds-cfg-remote-ldap-server-bind-dn: 
            string
            DN which will be used to connect to a remote server. This DN must exist on the remote server.
- 
            ds-cfg-remote-ldap-server-bind-password: 
            string
            Password which will be used to connect to the remote server.
- 
            ds-cfg-remote-ldap-server-bind-password-file: 
            string
            File which contains the password which will be used to connect to the remote server.
- 
            ds-cfg-remote-root-dn: 
            string
            The root DN which will be used to perform internal operations on a remote server. This DN must exist on the remote server. The value "" denotes the anonymous credentials. If "" is provided then the remote-ldap-server-bind-password property is ignored.
- 
            ds-cfg-remote-root-password: 
            string
            Password which will be used by the root DN to connect to the remote server.
- 
            ds-cfg-search-count-limit: 
            integer(int32)
            Default Value:0The default size limit value used in the ldapsearch request, when it is not specified in the client request or when a size limit of zero has been specified in the client request.
- 
            ds-cfg-use-proxy-auth: 
            boolean
            Default Value:falseThis flag indicates whether the LDAP connector can use the proxy authorization control.
- 
            objectclass(required): 
            array  objectclass
            
            Objectclass(es) which this entry belongs to.
Nested Schema : ds-cfg-exclude-list
    
      
      Type: 
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    arrayThe list contains a set of DNs. If the client bind DN is a descendant of one DNs on the exclude list, then the authentication against the remote server will be performed using the proxy credentials, regardless of the content of the include list. 
    
    
    
    
    
        Show Source
        
        
    
    
    
    
    
    
Nested Schema : ds-cfg-include-list
    
      
      Type: 
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    arrayThe list contains a set of DNs. If the client bind DN is a descendant of one of the DNs in the list, or if the list is empty, then the client credentials can be used to perform authentication against the remote server (as long as the client bind DN is not a descendant of any DN on the exclude list). If the never-bind flag is disabled then a silent-bind is performed for the authentication. If the never-bind flag is enabled, the user's entry is retrieved from the remote server and the credentials are checked locally. 
    
    
    
    
    
        Show Source
        
        
    
    
    
    
    
    
201 Response
Created
                
                
                    Root Schema : Proxy LDAP Workflow Element ADDResponse
    
      Type: 
      
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
        Show Source
        object- 
            msgType(required): 
            string
            Default Value:urn:ietf:params:rest:schemas:oracle:oud:1.0:AddResponseThe REST message type
- 
            searchResultEntries(required): 
            array  searchResultEntries
            
            
- 
            totalResults(required): 
            integer(int32)
            Specifies the number of entries created, and returned.
Nested Schema : Proxy LDAP Workflow Element SearchResultEntry
    
      Type: 
      
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
        Show Source
        object- 
            attributes(required): 
            object  Proxy LDAP Workflow Element Properties
            
            
- 
            dn(required): 
            string
            LDAP DN of the entry to be created
Nested Schema : Proxy LDAP Workflow Element Properties
    
      Type: 
      
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
        Show Source
        object- 
            cn: 
            string
            CN (common name) of the entry
- 
            ds-cfg-client-cred-mode(required): 
            string
            Allowed Values:[ "use-client-identity", "use-proxy-auth", "use-specific-identity" ]Specifies the way the proxy server binds to the remote LDAP server.
- 
            ds-cfg-enabled(required): 
            boolean
            Indicates whether the Workflow Element is enabled for use in the server.
- 
            ds-cfg-exclude-list: 
            array  ds-cfg-exclude-list
            
            The list contains a set of DNs. If the client bind DN is a descendant of one DNs on the exclude list, then the authentication against the remote server will be performed using the proxy credentials, regardless of the content of the include list.
- 
            ds-cfg-include-list: 
            array  ds-cfg-include-list
            
            The list contains a set of DNs. If the client bind DN is a descendant of one of the DNs in the list, or if the list is empty, then the client credentials can be used to perform authentication against the remote server (as long as the client bind DN is not a descendant of any DN on the exclude list). If the never-bind flag is disabled then a silent-bind is performed for the authentication. If the never-bind flag is enabled, the user's entry is retrieved from the remote server and the credentials are checked locally.
- 
            ds-cfg-java-class(required): 
            string
            Default Value:com.sun.dps.server.workflowelement.proxyldap.ProxyLdapWorkflowElementSpecifies the fully-qualified name of the Java class that provides the Proxy LDAP Workflow Element implementation.
- 
            ds-cfg-ldap-server-extension(required): 
            string
            Identifies the LDAP server extension configured for this Proxy LDAP Workflow Element.
- 
            ds-cfg-log-silent-bind-response-controls: 
            boolean
            Default Value:falseIndicates whether the logging of the silent-bind response controls is enabled.
- 
            ds-cfg-never-bind: 
            boolean
            Default Value:falseIndicates whether the never-bind flag is enabled.
- 
            ds-cfg-never-bind-user-password-attribute: 
            string
            Default Value:userPasswordThis attribute defines the description of the attribute that identifies the user's credentials on the remote server. It is relevant only when the never-bind flag is enabled. When this attribute is omitted the default value "userPassword" is used instead.
- 
            ds-cfg-remote-ldap-server-bind-dn: 
            string
            DN which will be used to connect to a remote server. This DN must exist on the remote server.
- 
            ds-cfg-remote-ldap-server-bind-password: 
            string
            Password which will be used to connect to the remote server.
- 
            ds-cfg-remote-ldap-server-bind-password-file: 
            string
            File which contains the password which will be used to connect to the remote server.
- 
            ds-cfg-remote-root-dn: 
            string
            The root DN which will be used to perform internal operations on a remote server. This DN must exist on the remote server. The value "" denotes the anonymous credentials. If "" is provided then the remote-ldap-server-bind-password property is ignored.
- 
            ds-cfg-remote-root-password: 
            string
            Password which will be used by the root DN to connect to the remote server.
- 
            ds-cfg-search-count-limit: 
            integer(int32)
            Default Value:0The default size limit value used in the ldapsearch request, when it is not specified in the client request or when a size limit of zero has been specified in the client request.
- 
            ds-cfg-use-proxy-auth: 
            boolean
            Default Value:falseThis flag indicates whether the LDAP connector can use the proxy authorization control.
- 
            objectclass(required): 
            array  objectclass
            
            Objectclass(es) which this entry belongs to.
Nested Schema : ds-cfg-exclude-list
    
      
      Type: 
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    arrayThe list contains a set of DNs. If the client bind DN is a descendant of one DNs on the exclude list, then the authentication against the remote server will be performed using the proxy credentials, regardless of the content of the include list. 
    
    
    
    
    
        Show Source
        
        
    
    
    
    
    
    
Nested Schema : ds-cfg-include-list
    
      
      Type: 
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    arrayThe list contains a set of DNs. If the client bind DN is a descendant of one of the DNs in the list, or if the list is empty, then the client credentials can be used to perform authentication against the remote server (as long as the client bind DN is not a descendant of any DN on the exclude list). If the never-bind flag is disabled then a silent-bind is performed for the authentication. If the never-bind flag is enabled, the user's entry is retrieved from the remote server and the credentials are checked locally. 
    
    
    
    
    
        Show Source
        
        
    
    
    
    
    
    
204 Response
No content
                
                
                406 Response
Not Acceptable
                
                
                    Root Schema : ErrorResponse
    
      Type: 
      
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
        Show Source
        object- 
            ldapErrorCode: 
            integer(int32)
            Specifies the LDAP error code returned for the operation.
- 
            message(required): 
            string
            Error message returned returned for the operation.
- 
            msgType(required): 
            string
            Default Value:urn:ietf:params:rest:schemas:oracle:oud:1.0:ErrorResponseThe REST message type