securityattribute.oracle.com/v1beta1¶

APIVersion: securityattribute.oracle.com/v1beta1

This content is generated from the checked-in CRD schemas in config/crd/bases/. If a description is missing or incorrect, fix the source comments or generator inputs and rerun make generate manifests; do not hand-edit config/crd/bases/*.yaml.

Packages¶

No customer-visible package currently exposes securityattribute.oracle.com/v1beta1.

Resources¶

Kind	Scope	Sample	Packages
SecurityAttribute	Namespaced	Sample	-
SecurityAttributeNamespace	Namespaced	Sample	-

SecurityAttribute¶

SecurityAttribute is the Schema for the securityattributes API.

Plural: securityattributes
Scope: Namespaced
APIVersion: securityattribute.oracle.com/v1beta1
Sample: Sample (config/samples/securityattribute_v1beta1_securityattribute.yaml)
Packages: Not currently exposed by a customer-visible package.

Spec¶

SecurityAttributeSpec defines the desired state of SecurityAttribute.

Field	Description	Type	Required	Default	Enum
`description`	The description you assign to the security attribute during creation.	`string`	Yes	-	-
`isRetired`	Whether the security attribute is retired. See Managing Security Attributes (https://docs.oracle.com/iaas/Content/zero-trust-packet-routing/managing-security-attributes.htm).	`boolean`	No	-	-
`name`	The name you assign to the security attribute during creation. This is the security attribute key. The name must be unique within the namespace and cannot be changed.	`string`	Yes	-	-
`validator`	SecurityAttributeValidator defines nested fields for SecurityAttribute.Validator.	`object`	No	-	-

Spec.validator¶

Back to SecurityAttribute spec

SecurityAttributeValidator defines nested fields for SecurityAttribute.Validator.

Field	Description	Type	Required	Default	Enum
`jsonData`	-	`string`	No	-	-
`validatorType`	-	`string`	No	-	-
`values`	The list of allowed values for a security attribute value.	`list[string]`	No	-	-

Status¶

SecurityAttributeStatus defines the observed state of SecurityAttribute.

Field	Description	Type	Required	Default	Enum
`compartmentId`	The OCID of the compartment that contains the security attribute definition.	`string`	No	-	-
`description`	The description of the security attribute.	`string`	No	-	-
`id`	The OCID of the security attribute definition.	`string`	No	-	-
`isRetired`	Indicates whether the security attribute is retired. See Managing Security Attribute Namespaces (https://docs.oracle.com/iaas/Content/zero-trust-packet-routing/managing-security-attribute-namespaces.htm).	`boolean`	No	-	-
`lifecycleState`	The security attribute's current state. After creating a security attribute, make sure its `lifecycleState` is ACTIVE before using it. After retiring a security attribute, make sure its `lifecycleState` is INACTIVE before using it. If you delete a security attribute, you cannot delete another security attribute until the deleted tag's `lifecycleState` changes from DELETING to DELETED.	`string`	No	-	-
`name`	The name assigned to the security attribute during creation. This is the security attribute key. The name must be unique within the security attribute namespace and cannot be changed.	`string`	No	-	-
`securityAttributeNamespaceId`	The OCID of the security attribute namespace that contains the security attribute definition.	`string`	No	-	-
`securityAttributeNamespaceName`	The name of the security attribute namespace that contains the security attribute.	`string`	No	-	-
`status`	-	`object`	Yes	-	-
`timeCreated`	Date and time the security attribute was created, in the format defined by RFC3339. Example: `2016-08-25T21:10:29.600Z`	`string`	No	-	-
`type`	The data type of the security attribute.	`string`	No	-	-
`validator`	SecurityAttributeValidator defines nested fields for SecurityAttribute.Validator.	`object`	No	-	-

Status.status¶

Back to SecurityAttribute status

Field	Description	Type	Required	Default	Enum
`async`	Async is the canonical controller-owned async contract. Resource-local legacy work-request fields may remain as compatibility mirrors while follow-on migrations land, but new async state should project here first.	`object`	No	-	-
`conditions`	-	`list[object]`	No	-	-
`createdAt`	-	`string (date-time)`	No	-	-
`deletedAt`	-	`string (date-time)`	No	-	-
`message`	-	`string`	No	-	-
`ocid`	-	`string`	No	-	-
`opcRequestId`	OpcRequestID is the latest non-empty OCI request ID from a mutating OCI response or surfaced OCI service error that materially contributed to the current shared status projection. Headerless follow-up observations keep the last non-empty value intact.	`string`	No	-	-
`reason`	-	`string`	No	-	-
`requestedAt`	-	`string (date-time)`	No	-	-
`updatedAt`	-	`string (date-time)`	No	-	-

Status.status.async¶

Back to SecurityAttribute status

Async is the canonical controller-owned async contract. Resource-local legacy work-request fields may remain as compatibility mirrors while follow-on migrations land, but new async state should project here first.

Field	Description	Type	Required	Default	Enum
`current`	-	`object`	No	-	-

Status.status.async.current¶

Back to SecurityAttribute status

Field	Description	Type	Required	Default	Enum
`message`	-	`string`	No	-	-
`normalizedClass`	-	`string`	Yes	-	`attention`, `canceled`, `failed`, `pending`, `succeeded`, `unknown`
`percentComplete`	-	`number`	No	-	-
`phase`	-	`string`	Yes	-	`create`, `delete`, `update`
`rawOperationType`	-	`string`	No	-	-
`rawStatus`	-	`string`	No	-	-
`source`	-	`string`	Yes	-	`lifecycle`, `none`, `workrequest`
`updatedAt`	-	`string (date-time)`	Yes	-	-
`workRequestId`	-	`string`	No	-	-

Status.status.conditions[]¶

Back to SecurityAttribute status

Field	Description	Type	Required	Default	Enum
`lastTransitionTime`	-	`string (date-time)`	No	-	-
`message`	-	`string`	No	-	-
`reason`	-	`string`	No	-	-
`status`	-	`string`	Yes	-	-
`type`	-	`string`	Yes	-	-

Status.validator¶

Back to SecurityAttribute status

SecurityAttributeValidator defines nested fields for SecurityAttribute.Validator.

Field	Description	Type	Required	Default	Enum
`jsonData`	-	`string`	No	-	-
`validatorType`	-	`string`	No	-	-
`values`	The list of allowed values for a security attribute value.	`list[string]`	No	-	-

SecurityAttributeNamespace¶

SecurityAttributeNamespace is the Schema for the securityattributenamespaces API.

Plural: securityattributenamespaces
Scope: Namespaced
APIVersion: securityattribute.oracle.com/v1beta1
Sample: Sample (config/samples/securityattribute_v1beta1_securityattributenamespace.yaml)
Packages: Not currently exposed by a customer-visible package.

Spec¶

SecurityAttributeNamespaceSpec defines the desired state of SecurityAttributeNamespace.

Field	Description	Type	Required	Default	Enum
`compartmentId`	The OCID of the tenancy containing the security attribute namespace.	`string`	Yes	-	-
`definedTags`	Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags (https://docs.oracle.com/iaas/Content/General/Concepts/resourcetags.htm). Example: `{"Operations": {"CostCenter": "42"}}`	`map[string, map[string, string]]`	No	-	-
`description`	The description you assign to the security attribute namespace during creation.	`string`	Yes	-	-
`freeformTags`	Free-form tags for this resource. Each tag is a simple key-value pair with no predefined name, type, or namespace. For more information, see Resource Tags (https://docs.oracle.com/iaas/Content/General/Concepts/resourcetags.htm). Example: `{"Department": "Finance"}`	`map[string, string]`	No	-	-
`isRetired`	Indicates whether the security attribute namespace is retired. See Managing Security Attribute Namespaces (https://docs.oracle.com/iaas/Content/zero-trust-packet-routing/managing-security-attribute-namespaces.htm).	`boolean`	No	-	-
`name`	The name you assign to the security attribute namespace during creation. The name must be unique across all namespaces in the tenancy and cannot be changed.	`string`	Yes	-	-

Status¶

SecurityAttributeNamespaceStatus defines the observed state of SecurityAttributeNamespace.

Field	Description	Type	Required	Default	Enum
`compartmentId`	The OCID of the compartment that contains the namespace.	`string`	No	-	-
`definedTags`	Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags (https://docs.oracle.com/iaas/Content/General/Concepts/resourcetags.htm). Example: `{"Operations": {"CostCenter": "42"}}`	`map[string, map[string, string]]`	No	-	-
`description`	The description you assign to the security attribute namespace.	`string`	No	-	-
`freeformTags`	Free-form tags for this resource. Each tag is a simple key-value pair with no predefined name, type, or namespace. For more information, see Resource Tags (https://docs.oracle.com/iaas/Content/General/Concepts/resourcetags.htm). Example: `{"Department": "Finance"}`	`map[string, string]`	No	-	-
`id`	The OCID of the security attribute namespace.	`string`	No	-	-
`isRetired`	Indicates whether the security attribute namespace is retired. See Managing Security Attribute Namespaces (https://docs.oracle.com/iaas/Content/zero-trust-packet-routing/managing-security-attribute-namespaces.htm).	`boolean`	No	-	-
`lifecycleState`	The security attribute namespace's current state. After creating a security attribute namespace, make sure its `lifecycleState` is ACTIVE before using it. After retiring a security attribute namespace, make sure its `lifecycleState` is INACTIVE.	`string`	No	-	-
`mode`	Indicates possible modes the security attributes in this namespace can be set to. This is not accepted from the user. Currently the supported values are enforce and audit.	`list[string]`	No	-	-
`name`	The name of the namespace. It must be unique across all namespaces in the tenancy and cannot be changed.	`string`	No	-	-
`status`	-	`object`	Yes	-	-
`systemTags`	System tags for this resource. Each key is predefined and scoped to a namespace. Example: `{"orcl-cloud": {"free-tier-retained": "true"}}`	`map[string, map[string, string]]`	No	-	-
`timeCreated`	Date and time the security attribute namespace was created, in the format defined by RFC3339. Example: `2016-08-25T21:10:29.600Z`	`string`	No	-	-

Status.status¶

Back to SecurityAttributeNamespace status

Field	Description	Type	Required	Default	Enum
`async`	Async is the canonical controller-owned async contract. Resource-local legacy work-request fields may remain as compatibility mirrors while follow-on migrations land, but new async state should project here first.	`object`	No	-	-
`conditions`	-	`list[object]`	No	-	-
`createdAt`	-	`string (date-time)`	No	-	-
`deletedAt`	-	`string (date-time)`	No	-	-
`message`	-	`string`	No	-	-
`ocid`	-	`string`	No	-	-
`opcRequestId`	OpcRequestID is the latest non-empty OCI request ID from a mutating OCI response or surfaced OCI service error that materially contributed to the current shared status projection. Headerless follow-up observations keep the last non-empty value intact.	`string`	No	-	-
`reason`	-	`string`	No	-	-
`requestedAt`	-	`string (date-time)`	No	-	-
`updatedAt`	-	`string (date-time)`	No	-	-

Status.status.async¶

Back to SecurityAttributeNamespace status

Async is the canonical controller-owned async contract. Resource-local legacy work-request fields may remain as compatibility mirrors while follow-on migrations land, but new async state should project here first.

Field	Description	Type	Required	Default	Enum
`current`	-	`object`	No	-	-

Status.status.async.current¶

Back to SecurityAttributeNamespace status

Field	Description	Type	Required	Default	Enum
`message`	-	`string`	No	-	-
`normalizedClass`	-	`string`	Yes	-	`attention`, `canceled`, `failed`, `pending`, `succeeded`, `unknown`
`percentComplete`	-	`number`	No	-	-
`phase`	-	`string`	Yes	-	`create`, `delete`, `update`
`rawOperationType`	-	`string`	No	-	-
`rawStatus`	-	`string`	No	-	-
`source`	-	`string`	Yes	-	`lifecycle`, `none`, `workrequest`
`updatedAt`	-	`string (date-time)`	Yes	-	-
`workRequestId`	-	`string`	No	-	-

Status.status.conditions[]¶

Back to SecurityAttributeNamespace status

Field	Description	Type	Required	Default	Enum
`lastTransitionTime`	-	`string (date-time)`	No	-	-
`message`	-	`string`	No	-	-
`reason`	-	`string`	No	-	-
`status`	-	`string`	Yes	-	-
`type`	-	`string`	Yes	-	-