Class: OCI::Identity::Models::Policy

Inherits:

Object

• Object
• OCI::Identity::Models::Policy

Defined in:

lib/oci/identity/models/policy.rb

Overview

A document that specifies the type of access a group has to the resources in a compartment. For information about policies and other IAM Service components, see Overview of IAM. If you're new to policies, see Get Started with Policies.

The word "policy" is used by people in different ways:

• An individual statement written in the policy language

• A collection of statements in a single, named "policy" document (which has an Oracle Cloud ID (OCID) assigned to it)

• The overall body of policies your organization uses to control access to resources

To use any of the API operations, you must be authorized in an IAM policy. If you're not authorized, talk to an administrator.

Warning: Oracle recommends that you avoid using any confidential information when you supply string values using the API.

Constant Summary

LIFECYCLE_STATE_ENUM =

[
  LIFECYCLE_STATE_CREATING = 'CREATING'.freeze,
  LIFECYCLE_STATE_ACTIVE = 'ACTIVE'.freeze,
  LIFECYCLE_STATE_INACTIVE = 'INACTIVE'.freeze,
  LIFECYCLE_STATE_DELETING = 'DELETING'.freeze,
  LIFECYCLE_STATE_DELETED = 'DELETED'.freeze,
  LIFECYCLE_STATE_UNKNOWN_ENUM_VALUE = 'UNKNOWN_ENUM_VALUE'.freeze
].freeze

Instance Attribute Summary

• #compartment_id ⇒ String

  [Required] The OCID of the compartment containing the policy (either the tenancy or another compartment).

• #defined_tags ⇒ Hash<String, Hash<String, Object>>

  Defined tags for this resource.

• #description ⇒ String

  [Required] The description you assign to the policy.

• #freeform_tags ⇒ Hash<String, String>

  Free-form tags for this resource.

• #id ⇒ String

  [Required] The OCID of the policy.

• #inactive_status ⇒ Integer

  The detailed status of INACTIVE lifecycleState.

• #lifecycle_state ⇒ String

  [Required] The policy's current state.

• #name ⇒ String

  [Required] The name you assign to the policy during creation.

• #statements ⇒ Array<String>

  [Required] An array of one or more policy statements written in the policy language.

• #time_created ⇒ DateTime

  [Required] Date and time the policy was created, in the format defined by RFC3339.

• #version_date ⇒ DateTime

  The version of the policy.

Class Method Summary

• .attribute_map ⇒ Object

  Attribute mapping from ruby-style variable name to JSON key.

• .swagger_types ⇒ Object

  Attribute type mapping.

Instance Method Summary

• #==(other) ⇒ Object

  Checks equality by comparing each attribute.

• #build_from_hash(attributes) ⇒ Object

  Builds the object from hash.

• #eql?(other) ⇒ Boolean
• #hash ⇒ Fixnum

  Calculates hash code according to all attributes.

• #initialize(attributes = {}) ⇒ Policy constructor

  Initializes the object.

• #to_hash ⇒ Hash

  Returns the object in the form of hash.

• #to_s ⇒ String

  Returns the string representation of the object.

Constructor Details

#initialize(attributes = {}) ⇒ Policy

Initializes the object

Parameters:

• attributes (Hash) (defaults to: {}) —

  Model attributes in the form of hash

Options Hash (attributes):

• :id (String) —

  The value to assign to the #id property

• :compartment_id (String) —

  The value to assign to the #compartment_id property

• :name (String) —

  The value to assign to the #name property

• :statements (Array<String>) —

  The value to assign to the #statements property

• :description (String) —

  The value to assign to the #description property

• :time_created (DateTime) —

  The value to assign to the #time_created property

• :lifecycle_state (String) —

  The value to assign to the #lifecycle_state property

• :inactive_status (Integer) —

  The value to assign to the #inactive_status property

• :version_date (DateTime) —

  The value to assign to the #version_date property

• :freeform_tags (Hash<String, String>) —

  The value to assign to the #freeform_tags property

• :defined_tags (Hash<String, Hash<String, Object>>) —

  The value to assign to the #defined_tags property

# File 'lib/oci/identity/models/policy.rb', line 153

def initialize(attributes = {})
  return unless attributes.is_a?(Hash)

  # convert string to symbol for hash key
  attributes = attributes.each_with_object({}) { |(k, v), h| h[k.to_sym] = v }

  self.id = attributes[:'id'] if attributes[:'id']

  self.compartment_id = attributes[:'compartmentId'] if attributes[:'compartmentId']

  raise 'You cannot provide both :compartmentId and :compartment_id' if attributes.key?(:'compartmentId') && attributes.key?(:'compartment_id')

  self.compartment_id = attributes[:'compartment_id'] if attributes[:'compartment_id']

  self.name = attributes[:'name'] if attributes[:'name']

  self.statements = attributes[:'statements'] if attributes[:'statements']

  self.description = attributes[:'description'] if attributes[:'description']

  self.time_created = attributes[:'timeCreated'] if attributes[:'timeCreated']

  raise 'You cannot provide both :timeCreated and :time_created' if attributes.key?(:'timeCreated') && attributes.key?(:'time_created')

  self.time_created = attributes[:'time_created'] if attributes[:'time_created']

  self.lifecycle_state = attributes[:'lifecycleState'] if attributes[:'lifecycleState']

  raise 'You cannot provide both :lifecycleState and :lifecycle_state' if attributes.key?(:'lifecycleState') && attributes.key?(:'lifecycle_state')

  self.lifecycle_state = attributes[:'lifecycle_state'] if attributes[:'lifecycle_state']

  self.inactive_status = attributes[:'inactiveStatus'] if attributes[:'inactiveStatus']

  raise 'You cannot provide both :inactiveStatus and :inactive_status' if attributes.key?(:'inactiveStatus') && attributes.key?(:'inactive_status')

  self.inactive_status = attributes[:'inactive_status'] if attributes[:'inactive_status']

  self.version_date = attributes[:'versionDate'] if attributes[:'versionDate']

  raise 'You cannot provide both :versionDate and :version_date' if attributes.key?(:'versionDate') && attributes.key?(:'version_date')

  self.version_date = attributes[:'version_date'] if attributes[:'version_date']

  self.freeform_tags = attributes[:'freeformTags'] if attributes[:'freeformTags']

  raise 'You cannot provide both :freeformTags and :freeform_tags' if attributes.key?(:'freeformTags') && attributes.key?(:'freeform_tags')

  self.freeform_tags = attributes[:'freeform_tags'] if attributes[:'freeform_tags']

  self.defined_tags = attributes[:'definedTags'] if attributes[:'definedTags']

  raise 'You cannot provide both :definedTags and :defined_tags' if attributes.key?(:'definedTags') && attributes.key?(:'defined_tags')

  self.defined_tags = attributes[:'defined_tags'] if attributes[:'defined_tags']
end

Instance Attribute Details

#compartment_id ⇒ String

[Required] The OCID of the compartment containing the policy (either the tenancy or another compartment).

Returns:

• (String)

# File 'lib/oci/identity/models/policy.rb', line 44

def compartment_id
  @compartment_id
end

#defined_tags ⇒ Hash<String, Hash<String, Object>>

Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags. Example: {\"Operations\": {\"CostCenter\": \"42\"}}

Returns:

• (Hash<String, Hash<String, Object>>)

# File 'lib/oci/identity/models/policy.rb', line 96

def defined_tags
  @defined_tags
end

#description ⇒ String

[Required] The description you assign to the policy. Does not have to be unique, and it's changeable.

Returns:

• (String)

# File 'lib/oci/identity/models/policy.rb', line 58

def description
  @description
end

#freeform_tags ⇒ Hash<String, String>

Free-form tags for this resource. Each tag is a simple key-value pair with no predefined name, type, or namespace. For more information, see Resource Tags. Example: {\"Department\": \"Finance\"}

Returns:

• (Hash<String, String>)

# File 'lib/oci/identity/models/policy.rb', line 89

def freeform_tags
  @freeform_tags
end

#id ⇒ String

[Required] The OCID of the policy.

Returns:

• (String)

# File 'lib/oci/identity/models/policy.rb', line 39

def id
  @id
end

#inactive_status ⇒ Integer

The detailed status of INACTIVE lifecycleState.

Returns:

• (Integer)

# File 'lib/oci/identity/models/policy.rb', line 75

def inactive_status
  @inactive_status
end

#lifecycle_state ⇒ String

[Required] The policy's current state. After creating a policy, make sure its lifecycleState changes from CREATING to ACTIVE before using it.

Returns:

• (String)

# File 'lib/oci/identity/models/policy.rb', line 71

def lifecycle_state
  @lifecycle_state
end

#name ⇒ String

[Required] The name you assign to the policy during creation. The name must be unique across all policies in the tenancy and cannot be changed.

Returns:

• (String)

# File 'lib/oci/identity/models/policy.rb', line 50

def name
  @name
end

#statements ⇒ Array<String>

[Required] An array of one or more policy statements written in the policy language.

Returns:

• (Array<String>)

# File 'lib/oci/identity/models/policy.rb', line 54

def statements
  @statements
end

#time_created ⇒ DateTime

[Required] Date and time the policy was created, in the format defined by RFC3339.

Example: 2016-08-25T21:10:29.600Z

Returns:

• (DateTime)

# File 'lib/oci/identity/models/policy.rb', line 65

def time_created
  @time_created
end

#version_date ⇒ DateTime

The version of the policy. If null or set to an empty string, when a request comes in for authorization, the policy will be evaluated according to the current behavior of the services at that moment. If set to a particular date (YYYY-MM-DD), the policy will be evaluated according to the behavior of the services on that date.

Returns:

• (DateTime)

# File 'lib/oci/identity/models/policy.rb', line 82

def version_date
  @version_date
end

Class Method Details

.attribute_map ⇒ Object

Attribute mapping from ruby-style variable name to JSON key.

# File 'lib/oci/identity/models/policy.rb', line 99

def self.attribute_map
  {
    # rubocop:disable Style/SymbolLiteral
    'id': :'id',
    'compartment_id': :'compartmentId',
    'name': :'name',
    'statements': :'statements',
    'description': :'description',
    'time_created': :'timeCreated',
    'lifecycle_state': :'lifecycleState',
    'inactive_status': :'inactiveStatus',
    'version_date': :'versionDate',
    'freeform_tags': :'freeformTags',
    'defined_tags': :'definedTags'
    # rubocop:enable Style/SymbolLiteral
  }
end

.swagger_types ⇒ Object

Attribute type mapping.

# File 'lib/oci/identity/models/policy.rb', line 118

def self.swagger_types
  {
    # rubocop:disable Style/SymbolLiteral
    'id': :'String',
    'compartment_id': :'String',
    'name': :'String',
    'statements': :'Array<String>',
    'description': :'String',
    'time_created': :'DateTime',
    'lifecycle_state': :'String',
    'inactive_status': :'Integer',
    'version_date': :'DateTime',
    'freeform_tags': :'Hash<String, String>',
    'defined_tags': :'Hash<String, Hash<String, Object>>'
    # rubocop:enable Style/SymbolLiteral
  }
end

Instance Method Details

#==(other) ⇒ Object

Checks equality by comparing each attribute.

Parameters:

• other (Object) —

  the other object to be compared

# File 'lib/oci/identity/models/policy.rb', line 230

def ==(other)
  return true if equal?(other)

  self.class == other.class &&
    id == other.id &&
    compartment_id == other.compartment_id &&
    name == other.name &&
    statements == other.statements &&
    description == other.description &&
    time_created == other.time_created &&
    lifecycle_state == other.lifecycle_state &&
    inactive_status == other.inactive_status &&
    version_date == other.version_date &&
    freeform_tags == other.freeform_tags &&
    defined_tags == other.defined_tags
end

#build_from_hash(attributes) ⇒ Object

Builds the object from hash

Parameters:

• attributes (Hash) —

  Model attributes in the form of hash

Returns:

• (Object) —

  Returns the model itself

# File 'lib/oci/identity/models/policy.rb', line 270

def build_from_hash(attributes)
  return nil unless attributes.is_a?(Hash)

  self.class.swagger_types.each_pair do |key, type|
    if type =~ /^Array<(.*)>/i
      # check to ensure the input is an array given that the the attribute
      # is documented as an array but the input is not
      if attributes[self.class.attribute_map[key]].is_a?(Array)
        public_method("#{key}=").call(
          attributes[self.class.attribute_map[key]]
            .map { |v| OCI::Internal::Util.convert_to_type(Regexp.last_match(1), v) }
        )
      end
    elsif !attributes[self.class.attribute_map[key]].nil?
      public_method("#{key}=").call(
        OCI::Internal::Util.convert_to_type(type, attributes[self.class.attribute_map[key]])
      )
    end
    # or else data not found in attributes(hash), not an issue as the data can be optional
  end

  self
end

#eql?(other) ⇒ Boolean

Parameters:

• other (Object) —

  the other object to be compared

Returns:

• (Boolean)

See Also:

• `==` method

# File 'lib/oci/identity/models/policy.rb', line 250

def eql?(other)
  self == other
end

#hash ⇒ Fixnum

Calculates hash code according to all attributes.

Returns:

• (Fixnum) —

  Hash code

# File 'lib/oci/identity/models/policy.rb', line 259

def hash
  [id, compartment_id, name, statements, description, time_created, lifecycle_state, inactive_status, version_date, freeform_tags, defined_tags].hash
end

#to_hash ⇒ Hash

Returns the object in the form of hash

Returns:

• (Hash) —

  Returns the object in the form of hash

# File 'lib/oci/identity/models/policy.rb', line 303

def to_hash
  hash = {}
  self.class.attribute_map.each_pair do |attr, param|
    value = public_method(attr).call
    next if value.nil? && !instance_variable_defined?("@#{attr}")

    hash[param] = _to_hash(value)
  end
  hash
end

#to_s ⇒ String

Returns the string representation of the object

Returns:

• (String) —

  String presentation of the object

# File 'lib/oci/identity/models/policy.rb', line 297

def to_s
  to_hash.to_s
end