Package com.oracle.bmc.identitydomains.model

Class IdentityPropagationTrust

  • @Generated(value="OracleSDKGenerator",
           comments="API Version: v1")
public final class IdentityPropagationTrust
extends com.oracle.bmc.http.client.internal.ExplicitlySetBmcModel
    Schema used for Identity Propagation Trust.
    Note: Objects should always be created or deserialized using the IdentityPropagationTrust.Builder. This model distinguishes fields that are null because they are unset from fields that are explicitly set to null. This is done in the setter methods of the IdentityPropagationTrust.Builder, which maintain a set of all explicitly set fields called IdentityPropagationTrust.Builder.__explicitlySet__. The hashCode() and equals(Object) methods are implemented to take the explicitly set fields into account. The constructor, on the other hand, does not take the explicitly set fields into account (since the constructor cannot distinguish explicit null from unset null).

    • Method Detail

      • getId

        public String getId()
        Unique identifier for the SCIM Resource as defined by the Service Provider.

        Each representation of the Resource MUST include a non-empty id value. This identifier MUST be unique across the Service Provider’s entire set of Resources. It MUST be a stable, non-reassignable identifier that does not change when the same Resource is returned in subsequent requests. The value of the id attribute is always issued by the Service Provider and MUST never be specified by the Service Consumer. bulkId: is a reserved keyword and MUST NOT be used in the unique identifier.

        *SCIM++ Properties:** - caseExact: false - idcsSearchable: true - multiValued: false - mutability: readOnly - required: false - returned: always - type: string - uniqueness: global

        Returns:
        the value

      • getOcid

        public String getOcid()
        Unique OCI identifier for the SCIM Resource.

        *SCIM++ Properties:** - caseExact: true - idcsSearchable: true - multiValued: false - mutability: immutable - required: false - returned: default - type: string - uniqueness: global

        Returns:
        the value

      • getSchemas

        public List<String> getSchemas()
        REQUIRED.

        The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard \“enterprise\” extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.

        *SCIM++ Properties:** - caseExact: false - idcsSearchable: false - multiValued: true - mutability: readWrite - required: true - returned: default - type: string - uniqueness: none

        Returns:
        the value

      • getMeta

        public Meta getMeta()

      • getIdcsPreventedOperations

        public List<IdcsPreventedOperations> getIdcsPreventedOperations()
        Each value of this attribute specifies an operation that only an internal client may perform on this particular resource.

        *SCIM++ Properties:** - idcsSearchable: false - multiValued: true - mutability: readOnly - required: false - returned: request - type: string - uniqueness: none

        Returns:
        the value

      • getTags

        public List<Tags> getTags()
        A list of tags on this resource.

        *SCIM++ Properties:** - idcsCompositeKey: [key, value] - idcsSearchable: true - multiValued: true - mutability: readWrite - required: false - returned: request - type: complex - uniqueness: none

        Returns:
        the value

      • getDeleteInProgress

        public Boolean getDeleteInProgress()
        A boolean flag indicating this resource in the process of being deleted.

        Usually set to true when synchronous deletion of the resource would take too long.

        *SCIM++ Properties:** - caseExact: false - idcsSearchable: true - multiValued: false - mutability: readOnly - required: false - returned: default - type: boolean - uniqueness: none

        Returns:
        the value

      • getIdcsLastUpgradedInRelease

        public String getIdcsLastUpgradedInRelease()
        The release number when the resource was upgraded.

        *SCIM++ Properties:** - caseExact: false - idcsSearchable: false - multiValued: false - mutability: readOnly - required: false - returned: request - type: string - uniqueness: none

        Returns:
        the value

      • getDomainOcid

        public String getDomainOcid()
        OCI Domain Id (ocid) in which the resource lives.

        *SCIM++ Properties:** - caseExact: false - idcsSearchable: false - multiValued: false - mutability: readOnly - required: false - returned: default - type: string - uniqueness: none

        Returns:
        the value

      • getCompartmentOcid

        public String getCompartmentOcid()
        OCI Compartment Id (ocid) in which the resource lives.

        *SCIM++ Properties:** - caseExact: false - idcsSearchable: false - multiValued: false - mutability: readOnly - required: false - returned: default - type: string - uniqueness: none

        Returns:
        the value

      • getTenancyOcid

        public String getTenancyOcid()
        OCI Tenant Id (ocid) in which the resource lives.

        *SCIM++ Properties:** - caseExact: false - idcsSearchable: false - multiValued: false - mutability: readOnly - required: false - returned: default - type: string - uniqueness: none

        Returns:
        the value

      • getName

        public String getName()
        The name of the the Identity Propagation Trust.

        *SCIM++ Properties:** - type: string - caseExact: false - idcsSearchable: true - multiValued: false - required: true - mutability: immutable - returned: default - uniqueness: none

        Returns:
        the value

      • getDescription

        public String getDescription()
        The description of the Identity Propagation Trust.

        *SCIM++ Properties:** - type: string - multiValued: false - required: false - mutability: readWrite - returned: default - uniqueness: none - caseExact: false - idcsSearchable: false

        Returns:
        the value

      • getType

        public IdentityPropagationTrust.Type getType()
        The type of the inbound token from the Identity cloud provider.

        *SCIM++ Properties:** - caseExact: true - idcsSearchable: false - required: true - mutability: readWrite - returned: default - type: string - multiValued: false - uniqueness: none

        Returns:
        the value

      • getIssuer

        public String getIssuer()
        The issuer claim of the Identity provider.

        *SCIM++ Properties:** - type: string - multiValued: false - required: true - mutability: readWrite - returned: always - caseExact: true - idcsSearchable: true - uniqueness: server

        Returns:
        the value

      • getAccountId

        public String getAccountId()
        The Identity cloud provider service identifier, for example, the Azure Tenancy ID, AWS Account ID, or GCP Project ID.

        *SCIM++ Properties:** - type: string - multiValued: false - required: false - mutability: readWrite - returned: default - caseExact: true - idcsSearchable: true - uniqueness: none

        Returns:
        the value

      • getSubjectClaimName

        public String getSubjectClaimName()
        Used for locating the subject claim from the incoming token.

        *SCIM++ Properties:** - type: string - multiValued: false - required: false - mutability: readWrite - returned: default - uniqueness: none - caseExact: true - idcsSearchable: false

        Returns:
        the value

      • getSubjectMappingAttribute

        public String getSubjectMappingAttribute()
        Subject Mapping Attribute to which the value from subject claim name value would be used for identity lookup.

        *SCIM++ Properties:** - type: string - multiValued: false - idcsSearchable: false - required: false - mutability: readWrite - returned: default - uniqueness: none

        Returns:
        the value

      • getSubjectType

        public IdentityPropagationTrust.SubjectType getSubjectType()
        The type of the resource against which lookup will be made in the identity domain in IAM for the incoming subject claim value.

        *SCIM++ Properties:** - idcsSearchable: false - multiValued: false - mutability: readWrite - required: false - returned: default - type: string - uniqueness: none

        Returns:
        the value

      • getClientClaimName

        public String getClientClaimName()
        The claim name that identifies to whom the JWT/SAML token is issued.

        If AWS, then \“aud\” or \“client_id\”. If Azure, then \“appid\”. If GCP, then \“aud\”.

        *SCIM++ Properties:** - type: string - multiValued: false - required: false - mutability: readWrite - returned: default - uniqueness: none - idcsSearchable: false

        Returns:
        the value

      • getClientClaimValues

        public List<String> getClientClaimValues()
        The value that corresponds to the client claim name used to identify to whom the token is issued.

        *SCIM++ Properties:** - type: string - multiValued: true - required: false - mutability: readWrite - returned: default - uniqueness: none - caseExact: true - idcsSearchable: false

        Returns:
        the value

      • getActive

        public Boolean getActive()
        If true, specifies that this Identity Propagation Trust is in an enabled state.

        The default value is false.

        *SCIM++ Properties:** - type: boolean - multiValued: false - required: false - mutability: readWrite - returned: default - uniqueness: none - idcsSearchable: true

        Returns:
        the value

      • getPublicKeyEndpoint

        public String getPublicKeyEndpoint()
        The cloud provider’s public key API of SAML and OIDC providers for signature validation.

        *SCIM++ Properties:** - type: string - multiValued: false - required: false - mutability: readWrite - returned: default - uniqueness: none - caseExact: false - idcsSearchable: false

        Returns:
        the value

      • getPublicCertificate

        public String getPublicCertificate()
        Store the public key if public key cert.

        *SCIM++ Properties:** - type: string - multiValued: false - required: false - mutability: readWrite - returned: default - uniqueness: none - idcsSearchable: false

        Returns:
        the value

      • getOauthClients

        public List<String> getOauthClients()
        The value of all the authorized OAuth Clients.

        *SCIM++ Properties:** - idcsSearchable: false - multiValued: true - mutability: readWrite - required: false - returned: default - type: string - uniqueness: none

        Returns:
        the value

      • getAllowImpersonation

        public Boolean getAllowImpersonation()
        Allow customers to define whether the resulting token should contain the authenticated user as the subject or whether the token should impersonate another Application Principal in IAM.

        *SCIM++ Properties:** - type: boolean - multiValued: false - required: false - mutability: readWrite - returned: default - uniqueness: none - idcsSearchable: false

        Returns:
        the value

      • getClockSkewSeconds

        public Integer getClockSkewSeconds()
        The clock skew (in secs) that’s allowed for the token issue and expiry time.

        *Added In:** 2308181911

        *SCIM++ Properties:** - caseExact: false - idcsSearchable: false - multiValued: false - mutability: readWrite - required: false - returned: default - type: integer - uniqueness: none

        Returns:
        the value

      • getImpersonationServiceUsers

        public List<IdentityPropagationTrustImpersonationServiceUsers> getImpersonationServiceUsers()
        The Impersonating Principal.

        *SCIM++ Properties:** - idcsCompositeKey: [rule, value] - idcsSearchable: false - multiValued: true - mutability: readWrite - required: false - returned: request - type: complex - uniqueness: none

        Returns:
        the value

      • toString

        public String toString()
        Overrides:
        toString in class com.oracle.bmc.http.client.internal.ExplicitlySetBmcModel

      • toString

        public String toString​(boolean includeByteArrayContents)
        Return a string representation of the object.
        Parameters:
        includeByteArrayContents - true to include the full contents of byte arrays
        Returns:
        string representation

      • equals

        public boolean equals​(Object o)
        Overrides:
        equals in class com.oracle.bmc.http.client.internal.ExplicitlySetBmcModel

      • hashCode

        public int hashCode()
        Overrides:
        hashCode in class com.oracle.bmc.http.client.internal.ExplicitlySetBmcModel