Docs Home
Oracle Cloud Infrastructure v2.31.0 published on Thursday, Apr 17, 2025 by Pulumi
oci.DataSafe.getSecurityPolicies
Explore with Pulumi AI
This data source provides the list of Security Policies in Oracle Cloud Infrastructure Data Safe service.
Retrieves a list of all security policies in Data Safe.
The ListSecurityPolicies operation returns only the security policies in the specified compartmentId.
The parameter accessLevel specifies whether to return only those compartments for which the
requestor has INSPECT permissions on at least one resource directly
or indirectly (ACCESSIBLE) (the resource can be in a subcompartment) or to return Not Authorized if
Principal doesn’t have access to even one of the child compartments. This is valid only when
compartmentIdInSubtree is set to true.
The parameter compartmentIdInSubtree applies when you perform ListSecurityPolicies on the
compartmentId passed and when it is set to true, the entire hierarchy of compartments can be returned.
To get a full list of all compartments and subcompartments in the tenancy (root compartment),
set the parameter compartmentIdInSubtree to true and accessLevel to ACCESSIBLE.
Example Usage
import * as pulumi from "@pulumi/pulumi";
import * as oci from "@pulumi/oci";
const testSecurityPolicies = oci.DataSafe.getSecurityPolicies({
compartmentId: compartmentId,
accessLevel: securityPolicyAccessLevel,
compartmentIdInSubtree: securityPolicyCompartmentIdInSubtree,
displayName: securityPolicyDisplayName,
securityPolicyId: testSecurityPolicy.id,
state: securityPolicyState,
});
import pulumi
import pulumi_oci as oci
test_security_policies = oci.DataSafe.get_security_policies(compartment_id=compartment_id,
access_level=security_policy_access_level,
compartment_id_in_subtree=security_policy_compartment_id_in_subtree,
display_name=security_policy_display_name,
security_policy_id=test_security_policy["id"],
state=security_policy_state)
package main
import (
"github.com/pulumi/pulumi-oci/sdk/v2/go/oci/datasafe"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := datasafe.GetSecurityPolicies(ctx, &datasafe.GetSecurityPoliciesArgs{
CompartmentId: compartmentId,
AccessLevel: pulumi.StringRef(securityPolicyAccessLevel),
CompartmentIdInSubtree: pulumi.BoolRef(securityPolicyCompartmentIdInSubtree),
DisplayName: pulumi.StringRef(securityPolicyDisplayName),
SecurityPolicyId: pulumi.StringRef(testSecurityPolicy.Id),
State: pulumi.StringRef(securityPolicyState),
}, nil)
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Oci = Pulumi.Oci;
return await Deployment.RunAsync(() =>
{
var testSecurityPolicies = Oci.DataSafe.GetSecurityPolicies.Invoke(new()
{
CompartmentId = compartmentId,
AccessLevel = securityPolicyAccessLevel,
CompartmentIdInSubtree = securityPolicyCompartmentIdInSubtree,
DisplayName = securityPolicyDisplayName,
SecurityPolicyId = testSecurityPolicy.Id,
State = securityPolicyState,
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.oci.DataSafe.DataSafeFunctions;
import com.pulumi.oci.DataSafe.inputs.GetSecurityPoliciesArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
final var testSecurityPolicies = DataSafeFunctions.getSecurityPolicies(GetSecurityPoliciesArgs.builder()
.compartmentId(compartmentId)
.accessLevel(securityPolicyAccessLevel)
.compartmentIdInSubtree(securityPolicyCompartmentIdInSubtree)
.displayName(securityPolicyDisplayName)
.securityPolicyId(testSecurityPolicy.id())
.state(securityPolicyState)
.build());
}
}
variables:
testSecurityPolicies:
fn::invoke:
function: oci:DataSafe:getSecurityPolicies
arguments:
compartmentId: ${compartmentId}
accessLevel: ${securityPolicyAccessLevel}
compartmentIdInSubtree: ${securityPolicyCompartmentIdInSubtree}
displayName: ${securityPolicyDisplayName}
securityPolicyId: ${testSecurityPolicy.id}
state: ${securityPolicyState}
Using getSecurityPolicies
Two invocation forms are available. The direct form accepts plain arguments and either blocks until the result value is available, or returns a Promise-wrapped result. The output form accepts Input-wrapped arguments and returns an Output-wrapped result.
function getSecurityPolicies(args: GetSecurityPoliciesArgs, opts?: InvokeOptions): Promise<GetSecurityPoliciesResult>
function getSecurityPoliciesOutput(args: GetSecurityPoliciesOutputArgs, opts?: InvokeOptions): Output<GetSecurityPoliciesResult>def get_security_policies(access_level: Optional[str] = None,
compartment_id: Optional[str] = None,
compartment_id_in_subtree: Optional[bool] = None,
display_name: Optional[str] = None,
filters: Optional[Sequence[_datasafe.GetSecurityPoliciesFilter]] = None,
security_policy_id: Optional[str] = None,
state: Optional[str] = None,
opts: Optional[InvokeOptions] = None) -> GetSecurityPoliciesResult
def get_security_policies_output(access_level: Optional[pulumi.Input[str]] = None,
compartment_id: Optional[pulumi.Input[str]] = None,
compartment_id_in_subtree: Optional[pulumi.Input[bool]] = None,
display_name: Optional[pulumi.Input[str]] = None,
filters: Optional[pulumi.Input[Sequence[pulumi.Input[_datasafe.GetSecurityPoliciesFilterArgs]]]] = None,
security_policy_id: Optional[pulumi.Input[str]] = None,
state: Optional[pulumi.Input[str]] = None,
opts: Optional[InvokeOptions] = None) -> Output[GetSecurityPoliciesResult]func GetSecurityPolicies(ctx *Context, args *GetSecurityPoliciesArgs, opts ...InvokeOption) (*GetSecurityPoliciesResult, error)
func GetSecurityPoliciesOutput(ctx *Context, args *GetSecurityPoliciesOutputArgs, opts ...InvokeOption) GetSecurityPoliciesResultOutput> Note: This function is named GetSecurityPolicies in the Go SDK.
public static class GetSecurityPolicies
{
public static Task<GetSecurityPoliciesResult> InvokeAsync(GetSecurityPoliciesArgs args, InvokeOptions? opts = null)
public static Output<GetSecurityPoliciesResult> Invoke(GetSecurityPoliciesInvokeArgs args, InvokeOptions? opts = null)
}public static CompletableFuture<GetSecurityPoliciesResult> getSecurityPolicies(GetSecurityPoliciesArgs args, InvokeOptions options)
public static Output<GetSecurityPoliciesResult> getSecurityPolicies(GetSecurityPoliciesArgs args, InvokeOptions options)
fn::invoke:
function: oci:DataSafe/getSecurityPolicies:getSecurityPolicies
arguments:
# arguments dictionaryThe following arguments are supported:
- Compartment
Id This property is required. string - A filter to return only resources that match the specified compartment OCID.
- Access
Level string - Valid values are RESTRICTED and ACCESSIBLE. Default is RESTRICTED. Setting this to ACCESSIBLE returns only those compartments for which the user has INSPECT permissions directly or indirectly (permissions can be on a resource in a subcompartment). When set to RESTRICTED permissions are checked and no partial results are displayed.
- Compartment
Id boolIn Subtree - Default is false. When set to true, the hierarchy of compartments is traversed and all compartments and subcompartments in the tenancy are returned. Depends on the 'accessLevel' setting.
- Display
Name string - A filter to return only resources that match the specified display name.
- Filters
Changes to this property will trigger replacement.Security Policies Filter> - Security
Policy stringId - An optional filter to return only resources that match the specified OCID of the security policy resource.
- State string
- The current state of the security policy.
- Compartment
Id This property is required. string - A filter to return only resources that match the specified compartment OCID.
- Access
Level string - Valid values are RESTRICTED and ACCESSIBLE. Default is RESTRICTED. Setting this to ACCESSIBLE returns only those compartments for which the user has INSPECT permissions directly or indirectly (permissions can be on a resource in a subcompartment). When set to RESTRICTED permissions are checked and no partial results are displayed.
- Compartment
Id boolIn Subtree - Default is false. When set to true, the hierarchy of compartments is traversed and all compartments and subcompartments in the tenancy are returned. Depends on the 'accessLevel' setting.
- Display
Name string - A filter to return only resources that match the specified display name.
- Filters
Security Policies Filter - Security
Policy stringId - An optional filter to return only resources that match the specified OCID of the security policy resource.
- State string
- The current state of the security policy.
- compartment
Id This property is required. String - A filter to return only resources that match the specified compartment OCID.
- access
Level String - Valid values are RESTRICTED and ACCESSIBLE. Default is RESTRICTED. Setting this to ACCESSIBLE returns only those compartments for which the user has INSPECT permissions directly or indirectly (permissions can be on a resource in a subcompartment). When set to RESTRICTED permissions are checked and no partial results are displayed.
- compartment
Id BooleanIn Subtree - Default is false. When set to true, the hierarchy of compartments is traversed and all compartments and subcompartments in the tenancy are returned. Depends on the 'accessLevel' setting.
- display
Name String - A filter to return only resources that match the specified display name.
- filters
Security Policies Filter> - security
Policy StringId - An optional filter to return only resources that match the specified OCID of the security policy resource.
- state String
- The current state of the security policy.
- compartment
Id This property is required. string - A filter to return only resources that match the specified compartment OCID.
- access
Level string - Valid values are RESTRICTED and ACCESSIBLE. Default is RESTRICTED. Setting this to ACCESSIBLE returns only those compartments for which the user has INSPECT permissions directly or indirectly (permissions can be on a resource in a subcompartment). When set to RESTRICTED permissions are checked and no partial results are displayed.
- compartment
Id booleanIn Subtree - Default is false. When set to true, the hierarchy of compartments is traversed and all compartments and subcompartments in the tenancy are returned. Depends on the 'accessLevel' setting.
- display
Name string - A filter to return only resources that match the specified display name.
- filters
Security Policies Filter[] - security
Policy stringId - An optional filter to return only resources that match the specified OCID of the security policy resource.
- state string
- The current state of the security policy.
- compartment_
id This property is required. str - A filter to return only resources that match the specified compartment OCID.
- access_
level str - Valid values are RESTRICTED and ACCESSIBLE. Default is RESTRICTED. Setting this to ACCESSIBLE returns only those compartments for which the user has INSPECT permissions directly or indirectly (permissions can be on a resource in a subcompartment). When set to RESTRICTED permissions are checked and no partial results are displayed.
- compartment_
id_ boolin_ subtree - Default is false. When set to true, the hierarchy of compartments is traversed and all compartments and subcompartments in the tenancy are returned. Depends on the 'accessLevel' setting.
- display_
name str - A filter to return only resources that match the specified display name.
- filters
Get Security Policies Filter] - security_
policy_ strid - An optional filter to return only resources that match the specified OCID of the security policy resource.
- state str
- The current state of the security policy.
- compartment
Id This property is required. String - A filter to return only resources that match the specified compartment OCID.
- access
Level String - Valid values are RESTRICTED and ACCESSIBLE. Default is RESTRICTED. Setting this to ACCESSIBLE returns only those compartments for which the user has INSPECT permissions directly or indirectly (permissions can be on a resource in a subcompartment). When set to RESTRICTED permissions are checked and no partial results are displayed.
- compartment
Id BooleanIn Subtree - Default is false. When set to true, the hierarchy of compartments is traversed and all compartments and subcompartments in the tenancy are returned. Depends on the 'accessLevel' setting.
- display
Name String - A filter to return only resources that match the specified display name.
- filters
- security
Policy StringId - An optional filter to return only resources that match the specified OCID of the security policy resource.
- state String
- The current state of the security policy.
getSecurityPolicies Result
The following output properties are available:
- Compartment
Id string - The OCID of the compartment containing the security policy.
- Id string
- The provider-assigned unique ID for this managed resource.
- Security
Policy List<GetCollections Security Policies Security Policy Collection> - The list of security_policy_collection.
- Access
Level string - Compartment
Id boolIn Subtree - Display
Name string - The display name of the security policy.
- Filters
List<Get
Security Policies Filter> - Security
Policy stringId - State string
- The current state of the security policy.
- Compartment
Id string - The OCID of the compartment containing the security policy.
- Id string
- The provider-assigned unique ID for this managed resource.
- Security
Policy []GetCollections Security Policies Security Policy Collection - The list of security_policy_collection.
- Access
Level string - Compartment
Id boolIn Subtree - Display
Name string - The display name of the security policy.
- Filters
[]Get
Security Policies Filter - Security
Policy stringId - State string
- The current state of the security policy.
- compartment
Id String - The OCID of the compartment containing the security policy.
- id String
- The provider-assigned unique ID for this managed resource.
- security
Policy List<GetCollections Security Policies Security Policy Collection> - The list of security_policy_collection.
- access
Level String - compartment
Id BooleanIn Subtree - display
Name String - The display name of the security policy.
- filters
List<Get
Security Policies Filter> - security
Policy StringId - state String
- The current state of the security policy.
- compartment
Id string - The OCID of the compartment containing the security policy.
- id string
- The provider-assigned unique ID for this managed resource.
- security
Policy GetCollections Security Policies Security Policy Collection[] - The list of security_policy_collection.
- access
Level string - compartment
Id booleanIn Subtree - display
Name string - The display name of the security policy.
- filters
Get
Security Policies Filter[] - security
Policy stringId - state string
- The current state of the security policy.
- compartment_
id str - The OCID of the compartment containing the security policy.
- id str
- The provider-assigned unique ID for this managed resource.
- security_
policy_ Sequence[datasafe.collections Get Security Policies Security Policy Collection] - The list of security_policy_collection.
- access_
level str - compartment_
id_ boolin_ subtree - display_
name str - The display name of the security policy.
- filters
Sequence[datasafe.
Get Security Policies Filter] - security_
policy_ strid - state str
- The current state of the security policy.
- compartment
Id String - The OCID of the compartment containing the security policy.
- id String
- The provider-assigned unique ID for this managed resource.
- security
Policy List<Property Map>Collections - The list of security_policy_collection.
- access
Level String - compartment
Id BooleanIn Subtree - display
Name String - The display name of the security policy.
- filters List<Property Map>
- security
Policy StringId - state String
- The current state of the security policy.
Supporting Types
GetSecurityPoliciesFilter
GetSecurityPoliciesSecurityPolicyCollection
- Items
This property is required. List<GetSecurity Policies Security Policy Collection Item>
- Items
This property is required. []GetSecurity Policies Security Policy Collection Item
- items
This property is required. List<GetSecurity Policies Security Policy Collection Item>
- items
This property is required. GetSecurity Policies Security Policy Collection Item[]
- items
This property is required. Sequence[datasafe.Get Security Policies Security Policy Collection Item]
- items
This property is required. List<Property Map>
GetSecurityPoliciesSecurityPolicyCollectionItem
- Compartment
Id This property is required. string - A filter to return only resources that match the specified compartment OCID.
This property is required. Dictionary<string, string>- Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags Example:
{"Operations.CostCenter": "42"} - Description
This property is required. string - The description of the security policy.
- Display
Name This property is required. string - A filter to return only resources that match the specified display name.
This property is required. Dictionary<string, string>- Free-form tags for this resource. Each tag is a simple key-value pair with no predefined name, type, or namespace. For more information, see Resource Tags Example:
{"Department": "Finance"} - Id
This property is required. string - The OCID of the security policy.
- Lifecycle
Details This property is required. string - Details about the current state of the security policy in Data Safe.
- Security
Policy Id This property is required. string - An optional filter to return only resources that match the specified OCID of the security policy resource.
- State
This property is required. string - The current state of the security policy.
This property is required. Dictionary<string, string>- System tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags. Example:
{"orcl-cloud.free-tier-retained": "true"} - Time
Created This property is required. string - The time that the security policy was created, in the format defined by RFC3339.
- Time
Updated This property is required. string - The last date and time the security policy was updated, in the format defined by RFC3339.
- Compartment
Id This property is required. string - A filter to return only resources that match the specified compartment OCID.
This property is required. map[string]string- Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags Example:
{"Operations.CostCenter": "42"} - Description
This property is required. string - The description of the security policy.
- Display
Name This property is required. string - A filter to return only resources that match the specified display name.
This property is required. map[string]string- Free-form tags for this resource. Each tag is a simple key-value pair with no predefined name, type, or namespace. For more information, see Resource Tags Example:
{"Department": "Finance"} - Id
This property is required. string - The OCID of the security policy.
- Lifecycle
Details This property is required. string - Details about the current state of the security policy in Data Safe.
- Security
Policy Id This property is required. string - An optional filter to return only resources that match the specified OCID of the security policy resource.
- State
This property is required. string - The current state of the security policy.
This property is required. map[string]string- System tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags. Example:
{"orcl-cloud.free-tier-retained": "true"} - Time
Created This property is required. string - The time that the security policy was created, in the format defined by RFC3339.
- Time
Updated This property is required. string - The last date and time the security policy was updated, in the format defined by RFC3339.
- compartment
Id This property is required. String - A filter to return only resources that match the specified compartment OCID.
This property is required. Map<String,String>- Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags Example:
{"Operations.CostCenter": "42"} - description
This property is required. String - The description of the security policy.
- display
Name This property is required. String - A filter to return only resources that match the specified display name.
This property is required. Map<String,String>- Free-form tags for this resource. Each tag is a simple key-value pair with no predefined name, type, or namespace. For more information, see Resource Tags Example:
{"Department": "Finance"} - id
This property is required. String - The OCID of the security policy.
- lifecycle
Details This property is required. String - Details about the current state of the security policy in Data Safe.
- security
Policy Id This property is required. String - An optional filter to return only resources that match the specified OCID of the security policy resource.
- state
This property is required. String - The current state of the security policy.
This property is required. Map<String,String>- System tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags. Example:
{"orcl-cloud.free-tier-retained": "true"} - time
Created This property is required. String - The time that the security policy was created, in the format defined by RFC3339.
- time
Updated This property is required. String - The last date and time the security policy was updated, in the format defined by RFC3339.
- compartment
Id This property is required. string - A filter to return only resources that match the specified compartment OCID.
This property is required. {[key: string]: string}- Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags Example:
{"Operations.CostCenter": "42"} - description
This property is required. string - The description of the security policy.
- display
Name This property is required. string - A filter to return only resources that match the specified display name.
This property is required. {[key: string]: string}- Free-form tags for this resource. Each tag is a simple key-value pair with no predefined name, type, or namespace. For more information, see Resource Tags Example:
{"Department": "Finance"} - id
This property is required. string - The OCID of the security policy.
- lifecycle
Details This property is required. string - Details about the current state of the security policy in Data Safe.
- security
Policy Id This property is required. string - An optional filter to return only resources that match the specified OCID of the security policy resource.
- state
This property is required. string - The current state of the security policy.
This property is required. {[key: string]: string}- System tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags. Example:
{"orcl-cloud.free-tier-retained": "true"} - time
Created This property is required. string - The time that the security policy was created, in the format defined by RFC3339.
- time
Updated This property is required. string - The last date and time the security policy was updated, in the format defined by RFC3339.
- compartment_
id This property is required. str - A filter to return only resources that match the specified compartment OCID.
This property is required. Mapping[str, str]- Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags Example:
{"Operations.CostCenter": "42"} - description
This property is required. str - The description of the security policy.
- display_
name This property is required. str - A filter to return only resources that match the specified display name.
This property is required. Mapping[str, str]- Free-form tags for this resource. Each tag is a simple key-value pair with no predefined name, type, or namespace. For more information, see Resource Tags Example:
{"Department": "Finance"} - id
This property is required. str - The OCID of the security policy.
- lifecycle_
details This property is required. str - Details about the current state of the security policy in Data Safe.
- security_
policy_ id This property is required. str - An optional filter to return only resources that match the specified OCID of the security policy resource.
- state
This property is required. str - The current state of the security policy.
This property is required. Mapping[str, str]- System tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags. Example:
{"orcl-cloud.free-tier-retained": "true"} - time_
created This property is required. str - The time that the security policy was created, in the format defined by RFC3339.
- time_
updated This property is required. str - The last date and time the security policy was updated, in the format defined by RFC3339.
- compartment
Id This property is required. String - A filter to return only resources that match the specified compartment OCID.
This property is required. Map<String>- Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags Example:
{"Operations.CostCenter": "42"} - description
This property is required. String - The description of the security policy.
- display
Name This property is required. String - A filter to return only resources that match the specified display name.
This property is required. Map<String>- Free-form tags for this resource. Each tag is a simple key-value pair with no predefined name, type, or namespace. For more information, see Resource Tags Example:
{"Department": "Finance"} - id
This property is required. String - The OCID of the security policy.
- lifecycle
Details This property is required. String - Details about the current state of the security policy in Data Safe.
- security
Policy Id This property is required. String - An optional filter to return only resources that match the specified OCID of the security policy resource.
- state
This property is required. String - The current state of the security policy.
This property is required. Map<String>- System tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags. Example:
{"orcl-cloud.free-tier-retained": "true"} - time
Created This property is required. String - The time that the security policy was created, in the format defined by RFC3339.
- time
Updated This property is required. String - The last date and time the security policy was updated, in the format defined by RFC3339.
Package Details
- Repository
- oci pulumi/pulumi-oci
- License
- Apache-2.0
- Notes
- This Pulumi package is based on the
ociTerraform Provider.