Détails de Search
Le service Search ne requiert pas de droits d'accès pour ses opérations d'API. Vous n'avez pas besoin d'écrire de stratégies spécifiquement pour contrôler l'accès à Search. Cependant, les éléments visibles dans les résultats de recherche ou de requête dépendent des droits d'accès dont vous disposez. S'il existe une stratégie vous permettant d'accéder au verbe inspect pour un type de ressource particulier, vous disposez des droits d'accès nécessaires pour visualiser ce type de ressource et les métadonnées associées dans les résultats de recherche. Si un service ne reconnaît pas le verbe inspect ou si le verbe inspect du type de ressource ne couvre pas complètement les opérations de liste, les droits d'accès permettant de visualiser les types de ressource pris en charge du service sont octroyés par le verbe read à la place.
Pour plus d'informations sur les droits d'accès, reportez-vous à la section Droits d'accès de Fonctionnalités de stratégie avancées.
Droits d'accès requis pour visualiser chaque type de ressource
Le tableau suivant répertorie les types de ressource regroupés par service ; les services sont classés par ordre alphabétique. Les opérations d'API Search qui peuvent accéder aux métadonnées pour ces types de ressource avec ces droits d'accès sont GetResourceType, ListResourceTypes et SearchResources.
| Service | Type de ressource | Droits d'accès requis pour l'affichage dans les résultats de recherche |
|---|---|---|
| Application Performance Monitoring | apm-domains |
APM_DOMAIN_LIST |
| Analytics Cloud | analytics-instance |
ANALYTICS_INSTANCE_INSPECT |
| Passerelle d'API | api-deployments |
API_DEPLOYMENT_LIST |
| Passerelle d'API | api-gateways |
API_GATEWAY_LIST |
| Passerelle d'API | api-definitions |
API_DEFINITION_LIST |
| Passerelle d'API | api-certificates |
API_CERTIFICATE_LIST |
| Application Dependency Management | adm-knowledge-bases |
ADM_KNOWLEDGE_BASE_INSPECT |
| Application Dependency Management | adm-vulnerability-audits |
ADM_VULNERABILITY_AUDIT_INSPECT |
| Service de récupération autonome | recovery-service-protected-database |
RECOVERY_SERVICE_PROTECTED_DATABASE_INSPECT |
| Service de récupération autonome | recovery-service-policy |
RECOVERY_SERVICE_POLICY_INSPECT |
| Service de récupération autonome | recovery-service-subnet |
RECOVERY_SERVICE_SUBNET_INSPECT |
| Bastion | bastion |
BASTION_INSPECT |
| Block Volume | volumes
|
VOLUME_INSPECT |
| Block Volume | volume-backups
|
VOLUME_BACKUP_INSPECT |
| Block Volume | backup-policies |
BACKUP_POLICY_INSPECT |
| Block Volume | volume-groups |
VOLUME_GROUP_INSPECT |
| Block Volume | volume-group-backups |
VOLUME_GROUP_BACKUP_INSPECT |
| Block Volume | volume-replicas |
VOLUME_REPLICA_INSPECT |
| Blockchain Platform | blockchain-platforms |
BLOCKCHAIN_PLATFORM_INSPECT |
| Budgets | usage-budgets |
USAGE_BUDGET_INSPECT |
| Certificates | cabundles |
CABUNDLE_INSPECT |
| Certificates | cabundle-associations |
CABUNDLE_ASSOCIATION_INSPECT |
| Certificates | leaf-certificates |
CERTIFICATE_INSPECT |
| Certificates | certificate-associations |
CERTIFICATE_ASSOCIATION_INSPECT |
| Certificates | certificate-authorities |
CERTIFICATE_AUTHORITY_INSPECT |
| Certificates | certificate-authority-associations |
CERTIFICATE_AUTHORITY_ASSOCIATION_INSPECT |
| Cloud Guard | cloud-guard-detector-recipes |
CG_DETECTOR_RECIPE_INSPECT |
| Cloud Guard | cloud-guard-managed-lists |
CG_MANAGED_LIST_INSPECT |
| Cloud Guard | cloud-guard-responder-recipes |
CG_RESPONDER_RECIPE_INSPECT |
| Cloud Guard | cloud-guard-targets |
CG_TARGET_INSPECT |
| Groupes de placement de cluster | cluster-placement-group |
CLUSTER_PLACEMENT_GROUP_INSPECT |
| Calculer | auto-scaling-configurations |
AUTO_SCALING_CONFIGURATION_INSPECT |
| Calculer | cluster-networks |
CLUSTER_NETWORK_INSPECT |
| Calculer | compute-capacity-reservations |
CAPACITY_RESERVATION_INSPECT |
| Calculer | console-histories
|
CONSOLE_HISTORY_INSPECT |
| Calculer | dedicated-vm-hosts |
DEDICATED_VM_HOST_INSPECT |
| Calculer | instances |
INSTANCE_READ |
| Calculer | instance-images
|
INSTANCE_IMAGE_READ |
| Calculer | instance-configurations |
INSTANCE_CONFIGURATION_INSPECT |
| Calculer | instance-pools |
INSTANCE_POOL_INSPECT |
| Compute Cloud@Customer | ccc-infrastructure |
CCC_INFRASTRUCTURE_INSPECT |
| Compute Cloud@Customer | ccc-upgrade-schedule |
CCC_UPGRADE_SCHEDULE_INSPECT |
| Connector Hub | serviceconnectors |
SERVICE_CONNECTOR_INSPECT |
| Instances de conteneur | compute-containers |
COMPUTE_CONTAINER_INSPECT |
| Instances de conteneur | compute-container-instances |
COMPUTE_CONTAINER_INSTANCE_INSPECT |
| Container Registry | repos |
REPOSITORY_INSPECT |
| Content Management | oce-instances |
OCE_INSTANCE_INSPECT |
| Tableaux de bord de console | dashboards |
DASHBOARD_INSPECT |
| Tableaux de bord de console | dashboard-groups |
DASHBOARD_GROUP_INSPECT |
| Catalogue de données | data-catalogs |
CATALOG_INSPECT |
| Catalogue de données | data-catalog-private-endpoints |
CATALOG_PRIVATE_ENDPOINT_INSPECT |
| Catalogue de données | data-catalog-metastores |
CATALOG_METASTORE_INSPECT |
| Data Flow | dataflow-application |
DATAFLOW_APPLICATION_INSPECT |
| Data Flow | dataflow-run |
DATAFLOW_RUN_INSPECT |
| Intégration de données | dis-workspaces |
DIS_WORKSPACE_INSPECT |
| Data Labeling | data-labeling-datasets |
DATA_LABELING_DATASET_INSPECT |
| Data Safe | data-safe-private-endpoints |
DATA_SAFE_PRIVATE_ENDPOINT_INSPECT |
| Data Science | data-science-jobs |
DATA_SCIENCE_JOB_INSPECT |
| Data Science | data-science-job-runs |
DATA_SCIENCE_JOB_RUN_INSPECT |
| Data Science | data-science-models |
DATA_SCIENCE_MODEL_INSPECT |
| Data Science | data-science-model-deployments |
DATA_SCIENCE_MODEL_DEPLOYMENT_INSPECT |
| Data Science | data-science-notebook-sessions |
DATA_SCIENCE_NOTEBOOK_SESSION_INSPECT |
| Data Science | data-science-projects |
DATA_SCIENCE_PROJECT_INSPECT |
| Database | autonomous-container-databases |
AUTONOMOUS_CONTAINER_DATABASE_INSPECT |
| Database | autonomous-databases |
AUTONOMOUS_DATABASE_INSPECT |
| Database | autonomous-vmclusters |
AUTONOMOUS_VM_CLUSTER_INSPECT |
| Database | backup-destinations |
BACKUP_DESTINATION_INSPECT |
| Database | cloud-autonomous-vmclusters |
CLOUD_AUTONOMOUS_VM_CLUSTER_INSPECT |
| Database | cloud-exadata-infrastructures |
CLOUD_EXADATA_INFRASTRUCTURE_INSPECT |
| Database | cloud-vmclusters |
CLOUD_VM_CLUSTER_INSPECT |
| Database | databases
|
DATABASE_INSPECT |
| Database | database-software-images |
DB_SOFTWARE_IMG_INSPECT |
| Database | db-homes
|
DB_HOME_INSPECT (pour filtrer les résultats à l'aide des attributs db-homes) |
| Database | key-stores |
KEY_STORE_INSPECT |
| Database | db-nodes |
DB_NODE_INSPECT, DB_NODE_QUERY |
| Database | dbservers |
EXADATA_INFRASTRUCTURE_INSPECT |
| Database | db-systems
|
DB_SYSTEM_INSPECT |
| Database | exadata-infrastructures |
EXADATA_INFRASTRUCTURE_INSPECT |
| Database | external-container-databases |
EXTERNAL_CONTAINER_DATABASE_INSPECT |
| Database | external-database-connectors |
EXTERNAL_DATABASE_CONNECTOR_INSPECT |
| Database | external-non-container-databases |
EXTERNAL_NON_CONTAINER_DATABASE_INSPECT |
| Database | external-pluggable-databases |
EXTERNAL_PLUGGABLE_DATABASE_INSPECT |
| Database | pluggable-databases |
PLUGGABLE_DATABASE_INSPECT |
| Database | vmclusters |
VM_CLUSTER_INSPECT |
| Database | vmcluster-networks |
EXADATA_INFRASTRUCTURE_INSPECT |
| Gestion de base de données | dbmgmt-external-asms |
DBMGMT_EXTERNAL_DBSYSTEM_INSPECT |
| Gestion de base de données | dbmgmt-external-asm-instance |
DBMGMT_EXTERNAL_DBSYSTEM_INSPECT |
| Gestion de base de données | dbmgmt-external-cluster |
DBMGMT_EXTERNAL_DBSYSTEM_INSPECT |
| Gestion de base de données | dbmgmt-external-cluster-instance |
DBMGMT_EXTERNAL_DBSYSTEM_INSPECT |
| Gestion de base de données | dbmgmt-external-dbhome |
DBMGMT_EXTERNAL_DBSYSTEM_INSPECT |
| Gestion de base de données | dbmgmt-external-dbnode |
DBMGMT_EXTERNAL_DBSYSTEM_INSPECT |
| Gestion de base de données | dbmgmt-external-dbsystem |
DBMGMT_EXTERNAL_DBSYSTEM_INSPECT |
| Gestion de base de données | dbmgmt-external-db-system-connector |
DBMGMT_EXTERNAL_DBSYSTEM_INSPECT |
| Gestion de base de données | dbmgmt-external-exadata-infrastructure |
DBMGMT_EXTERNAL_EXADATA_INSPECT |
| Gestion de base de données | dbmgmt-external-exadata-storage-connector |
DBMGMT_EXTERNAL_EXADATA_INSPECT |
| Gestion de base de données | dbmgmt-external-exadata-storage-grid |
DBMGMT_EXTERNAL_EXADATA_READ |
| Gestion de base de données | dbmgmt-external-exadata-storage-server |
DBMGMT_EXTERNAL_EXADATA_INSPECT |
| Gestion de base de données | dbmgmt-external-listener |
DBMGMT_EXTERNAL_DBSYSTEM_INSPECT |
| Gestion de base de données | dbmgmt-jobs |
DBMGMT_JOB_INSPECT |
| Gestion de base de données | dbmgmt-managed-databases |
DBMGMT_MANAGED_DB_INSPECT |
| Gestion de base de données | dbmgmt-managed-database-groups |
DBMGMT_MANAGED_DB_GROUP_INSPECT |
| Gestion de base de données | dbmgmt-named-credentials |
DBMGMT_NAMED_CREDENTIAL_INSPECT |
| Gestion de base de données | dbmgmt-private-endpoints |
DBMGMT_PRIVATE_ENDPOINT_INSPECT |
| Database Migration | odms-agent |
ODMS_AGENT_INSPECT |
| Database Migration | odms-connection |
ODMS_CONNECTION_INSPECT |
| Database Migration | odms-job |
ODMS_JOB_INSPECT |
| Database Migration | odms-migration |
ODMS_MIGRATION_INSPECT |
| Database Tools | database-tools-connections |
DATABASE_TOOLS_CONNECTION_INSPECT |
| Database Tools | database-tools-private-endpoints |
DATABASE_TOOLS_PRIVATE_ENDPOINT_INSPECT |
| DevOps | devops-deploy-artifact |
DEVOPS_DEPLOY_ARTIFACT_INSPECT |
| DevOps | devops-deploy-environment |
DEVOPS_DEPLOY_ENVIRONMENT_INSPECT |
| DevOps | devops-deployment |
DEVOPS_DEPLOYMENT_INSPECT |
| DevOps | devops-deploy-pipeline |
DEVOPS_DEPLOY_PIPELINE_INSPECT |
| DevOps | devops-build-pipeline |
DEVOPS_BUILD_PIPELINE_INSPECT |
| DevOps | devops-build-pipeline-stage |
DEVOPS_BUILD_PIPELINE_STAGE_INSPECT |
| DevOps | devops-deploy-stage |
DEVOPS_DEPLOY_STAGE_INSPECT |
| DevOps | devops-repository |
DEVOPS_REPOSITORY_INSPECT |
| DevOps | devops-connection |
DEVOPS_CONNECTION_INSPECT |
| DevOps | devops-trigger |
DEVOPS_TRIGGER_INSPECT |
| DevOps | devops-project |
DEVOPS_PROJECT_INSPECT |
| Digital Assistant | oda-instances |
ODA_INSTANCES_LIST |
| Email Delivery | approved-senders |
APPROVED_SENDER_INSPECT |
| Email Delivery | email-domains |
EMAIL_DOMAIN_INSPECT |
| Email Delivery | dkim |
DKIM_INSPECT |
| Evénements | cloudevents-rules |
EVENTRULE_LIST |
| File Storage | file-systems |
FILE_SYSTEM_INSPECT |
| File Storage | mount-target |
MOUNT_TARGET_INSPECT |
| Fleet Application Management | fams-fleets |
FAMS_FLEET_INSPECT |
| Fleet Application Management | fams-maintenance-windows |
FAMS_MAINTENANCE_WINDOW_INSPECT |
| Fleet Application Management | fams-schedules |
FAMS_SCHEDULE_INSPECT |
| Full Stack Disaster Recovery | disaster-recovery-protection-groups |
DISASTER_RECOVERY_PROTECTION_GROUP_INSPECT |
| Full Stack Disaster Recovery | disaster-recovery-plans |
DISASTER_RECOVERY_PLAN_INSPECT |
| Full Stack Disaster Recovery | disaster-recovery-plan-executions |
DISASTER_RECOVERY_PLAN_EXECUTION_INSPECT |
| Fonctions | fn-app |
FN_APP_LIST |
| Fonctions | fn-function |
FN_FUNCTION_LIST |
| Globally Distributed Autonomous Database | sharded-database |
SDB_INSPECT |
| Globally Distributed Autonomous Database | osdprivateendpoint |
VCN_READ SUBNET_READ VNIC_READ |
| GoldenGate | goldengate-deployments |
GOLDENGATE_DEPLOYMENT_INSPECT |
| GoldenGate | goldengate-connections |
GOLDENGATE_CONNECTION_INSPECT |
| IAM | compartments
|
COMPARTMENT_INSPECT |
| IAM | groups
|
GROUP_INSPECT |
| IAM | identity-providers
|
IDENTITY_PROVIDER_INSPECT |
| IAM | policies |
POLICY_READ |
| IAM | tag-defaults |
TAG_DEFAULT_INSPECT TAG_NAMESPACE_READ |
| IAM | tag-namespaces |
TAG_NAMESPACE_INSPECT |
| IAM | users
|
USER_INSPECT |
| Intégration | integration-instance |
INTEGRATION_INSTANCE_INSPECT |
| Gestion de Java | fleets |
FLEET_INSPECT |
| Kubernetes Engine | clusters |
CLUSTER_INSPECT |
| Kubernetes Engine | cluster-virtualnode-pools |
CLUSTER_VIRTUAL_NODE_POOL_INSPECT |
| Kubernetes Engine | clustersvirtualnode |
CLUSTER_VIRTUAL_NODE_POOL_READ |
| Load Balancer | load-balancers |
LOAD_BALANCER_INSPECT |
| Journalisation | logs |
LOG_GROUP_INSPECT |
| Journalisation | log-groups |
LOG_GROUP_INSPECT |
| Journalisation | unified-configuration |
UNIFIED_AGENT_CONFIG_INSPECT |
| Management Agent | management-agents |
MGMT_AGENT_INSPECT |
| Management Agent | management-agent-install-keys |
MGMT_AGENT_INSTALL_KEY_INSPECT |
| Services relatifs aux supports (Media Flow) | media-workflow |
MEDIA_WORKFLOW_INSPECT |
| Media Services (Media Streams) | media-stream-distribution-channel |
MEDIA_STREAM_DISTRIBUTION_CHANNEL_INSPECT |
| Media Services (Media Streams) | media-stream-packaging-config |
MEDIA_STREAM_PACKAGING_CONFIG_INSPECT |
| Media Services (Media Streams) | media-stream-cdn-config |
MEDIA_STREAM_CDN_CONFIG_INSPECT |
| Surveillance | alarms |
ALARM_INSPECT |
| Network Firewall | network-firewall-policy |
NETWORK_FIREWALL_POLICY_INSPECT |
| Networking | byoiprange |
BYOIP_RANGE_INSPECT |
| Networking | cpes |
CPE_READ |
| Networking | cross-connects |
CROSS_CONNECT_READ |
| Networking | cross-connect-groups |
CROSS_CONNECT_GROUP_READ |
| Networking | dhcp-options |
DHCP_READ |
| Networking | drgs |
DRG_READ |
| Networking | internet-gateways |
INTERNET_GATEWAY_READ |
| Networking | ipsec |
IPSEC_CONNECTION_READ |
| Networking | ipv6s |
IPV6_READ VNIC_INSPECT SUBNET_INSPECT |
| Networking | local-peering-gateways |
LOCAL_PEERING_GATEWAY_READ |
| Networking | nat-gateways |
NAT_GATEWAY_READ |
| Networking | network-security-groups |
NETWORK_SECURITY_GROUP_INSPECT |
| Networking | public-ips |
PUBLIC_IP_READ |
| Networking | publicippool |
PUBLIC_IP_POOL_INSPECT |
| Networking | private-ips |
PRIVATE_IP_READ |
| Networking | remote-peering-connections |
REMOTE_PEERING_CONNECTION_READ |
| Networking | route-tables
|
ROUTE_TABLE_READ |
| Networking | security-lists
|
SECURITY_LIST_READ |
| Networking | service-gateways |
SERVICE_GATEWAY_READ |
| Networking | subnets
|
SUBNET_READ |
| Networking | vcns
|
VCN_READ |
| Networking | virtualcircuit |
VIRTUAL_CIRCUIT_READ |
| Networking | vlan |
VLAN_READ |
| Networking | vnic |
VNIC_READ |
| NoSQL Database Cloud | nosql-tables |
NOSQL_TABLE_INSPECT |
| Notifications | ons-subscriptions |
ONS_SUBSCRIPTION_INSPECT |
| Notifications | ons-topics |
ONS_TOPIC_INSPECT |
| Object Storage | buckets
|
BUCKET_INSPECT |
| OCI Database avec PostgreSQL | postgres-backups |
POSTGRES_BACKUP_INSPECT |
| OCI Database avec PostgreSQL | postgres-configurations |
POSTGRES_CONFIGURATION_INSPECT |
| OCI Database avec PostgreSQL | postgres-db-systems |
POSTGRES_DB_SYSTEM_INSPECT |
| OS Management | osms-managed-instance-groups |
OSMS_MANAGED_INSTANCE_GROUP_INSPECT |
| OS Management | osms-scheduled-jobs |
OSMS_SCHEDULED_JOB_INSPECT |
| OS Management | osms-software-sources |
OSMS_SOFTWARE_SOURCE_INSPECT |
| OS Management Hub | osmh-lifecycle-environments |
OSMH_LIFECYCLE_ENVIRONMENT_INSPECT |
| OS Management Hub | osmh-managed-instance-groups |
OSMH_MANAGED_INSTANCE_GROUP_INSPECT |
| OS Management Hub | osmh-management-stations |
OSMH_MANAGEMENT_STATION_INSPECT |
| OS Management Hub | osmh-profiles |
OSMH_PROFILE_INSPECT |
| OS Management Hub | osmh-scheduled-jobs |
OSMH_SCHEDULED_JOB_INSPECT |
| OS Management Hub | osmh-software-sources |
OSMH_SOFTWARE_SOURCE_INSPECT |
| Process Automation | process-automation-instance |
PROCESS_AUTOMATION_INSTANCE_INSPECT |
| Queue | queue |
QUEUE_INSPECT |
| Explorateur de ressources | resource-collections |
RESOURCE_COLLECTION_INSPECT |
| Resource Manager | orm-config-source-providers |
ORM_CONFIG_SOURCE_PROVIDER_INSPECT |
| Resource Manager | orm-jobs |
ORM_JOB_INSPECT |
| Resource Manager | orm-private-endpoints |
ORM_PRIVATE_ENDPOINT_INSPECT |
| Resource Manager | orm-stacks |
ORM_STACK_INSPECT |
| Resource Manager | orm-templates |
ORM_TEMPLATE_INSPECT |
| Security Zones | security-zone |
SECURITY_ZONE_INSPECT |
| Security Zones | security-recipe |
SECURITY_RECIPE_INSPECT |
| Limites de service | quotas |
QUOTA_INSPECT |
| Service Mesh | service-meshes |
SERVICE_MESH_LIST |
| Service Mesh | mesh-access-policies |
MESH_ACCESS_POLICY_LIST |
| Service Mesh | mesh-ingress-gateways |
MESH_INGRESS_GATEWAY_LIST |
| Service Mesh | mesh-ingress-gateway-routetables |
MESH_INGRESS_GATEWAY_ROUTE_TABLE_LIST |
| Service Mesh | mesh-virtual-deployments |
MESH_VIRTUAL_DEPLOYMENT_LIST |
| Service Mesh | mesh-virtual-services |
MESH_VIRTUAL_SERVICE_LIST |
| Service Mesh | mesh-virtual-service-route-tables |
MESH_VIRTUAL_SERVICE_ROUTE_TABLE_LIST |
| Streaming | connect-harnesses |
CONNECT_HARNESS_INSPECT |
| Streaming | streams |
STREAM_INSPECT |
| Vault | keys |
KEY_INSPECT |
| Vault | vaults |
VAULT_INSPECT |
| Vault | secrets |
SECRET_INSPECT |
| Visual Builder | visualbuilder-instance |
VISUALBUILDER_INSTANCE_INSPECT |
| Visual Builder Studio | vbstudio-instances |
VBS_INSTANCE_INSPECT |
| VMware Solution | vmwareesxihost |
SDDC_INSPECT |
| VMware Solution | vmwaresddc |
SDDC_INSPECT |
| Analyse des vulnérabilités | host-scan-recipes |
VSS_HOSTSCANRECIPE_INSPECT |
| Analyse des vulnérabilités | host-scan-targets |
VSS_HOSTSCANTARGET_INSPECT |
| Analyse des vulnérabilités | container-scan-recipes |
VSS_CONTAINERSCAN_INSPECT |
| Analyse des vulnérabilités | container-scan-targets |
VSS_CONTAINERSCANTARGET_INSPECT |
| WAF | http-redirects |
HTTPREDIRECT_INSPECT |
| WAF | waas-address-list |
WAAS_ADDRESS_LIST_INSPECT |
| WAF | waas-certificate |
WAAS_CERTIFICATE_INSPECT |
| WAF | waas-custom-protection-rule |
WAAS_CUSTOM_PROTECTION_RULE_INSPECT |
| WAF | waas-policy |
WAAS_POLICY_INSPECT |
| Zero Trust Packet Routing | security-attribute-namespace |
ZPR_POLICY_INSPECT |
| Zero Trust Packet Routing | zpr-policy |
SECURITY_ATTRIBUTE_NAMESPACE_INSPECT |