Resource Type: oci_identity_policy

Defined in:

lib/puppet/type/oci_identity_policy.rb

Providers:

sdk

Overview

A document that specifies the type of access a group has to the resources in a compartment. For information about policies and other IAM Service components, see [Overview of the IAM Service](docs.cloud.oracle.com/Content/Identity/Concepts/overview.htm). If you’re new to policies, see [Getting Started with Policies](docs.cloud.oracle.com/Content/Identity/Concepts/policygetstarted.htm).

The word "policy" is used by people in different ways:

* An individual statement written in the policy language
* A collection of statements in a single, named \"policy\" document (which has an Oracle Cloud ID (OCID) assigned to it)
* The overall body of policies your organization uses to control access to resources

To use any of the API operations, you must be authorized in an IAM policy. If you’re not authorized, talk to an administrator.

Warning: Oracle recommends that you avoid using any confidential information when you supply string values using the API.

Here is an example on how to use this:

  oci_identity_policy { 'tenant (root)/my_policy}':
      ensure        => 'present',
      description   => 'My own policy',
      statements    => ['Allow group Administrators to manage all-resources in compartment my_compartment'],
    }

This documentation is generated from the [Ruby OCI SDK](https://github.com/oracle/oci-ruby-sdk).

Properties

• ensure (defaults to: present)

  The basic property that the resource should be in.

  Supported values:

  • present
  • absent

Parameters

• provider

  The specific backend to use for this ‘oci_identity_policy` resource. You will seldom need to specify this — Puppet will usually discover the appropriate provider for your platform.