turbot/oci

steampipe plugin install ocisteampipe plugin install oci
oci_apigateway_apioci_autoscaling_auto_scaling_configurationoci_budget_alert_ruleoci_budget_budgetoci_cloud_guard_configurationoci_cloud_guard_detector_recipeoci_cloud_guard_managed_listoci_cloud_guard_responder_recipeoci_cloud_guard_targetoci_core_block_volume_replicaoci_core_boot_volumeoci_core_boot_volume_attachmentoci_core_boot_volume_backupoci_core_boot_volume_metric_read_opsoci_core_boot_volume_metric_read_ops_dailyoci_core_boot_volume_metric_read_ops_hourlyoci_core_boot_volume_metric_write_opsoci_core_boot_volume_metric_write_ops_dailyoci_core_boot_volume_metric_write_ops_hourlyoci_core_dhcp_optionsoci_core_drgoci_core_imageoci_core_instanceoci_core_instance_metric_cpu_utilizationoci_core_instance_metric_cpu_utilization_dailyoci_core_instance_metric_cpu_utilization_hourlyoci_core_internet_gatewayoci_core_local_peering_gatewayoci_core_nat_gatewayoci_core_network_load_balanceroci_core_network_security_groupoci_core_public_ipoci_core_route_tableoci_core_security_listoci_core_service_gatewayoci_core_subnetoci_core_vcnoci_core_volumeoci_core_volume_attachmentoci_core_volume_backupoci_core_volume_backup_policyoci_database_autonomous_databaseoci_dns_rrsetoci_dns_tsig_keyoci_dns_zoneoci_events_ruleoci_file_storage_file_systemoci_file_storage_snapshotoci_functions_applicationoci_identity_api_keyoci_identity_auth_tokenoci_identity_authentication_policyoci_identity_availability_domainoci_identity_compartmentoci_identity_customer_secret_keyoci_identity_dynamic_groupoci_identity_groupoci_identity_network_sourceoci_identity_policyoci_identity_tag_defaultoci_identity_tag_namespaceoci_identity_tenancyoci_identity_useroci_kms_keyoci_kms_key_versionoci_kms_vaultoci_logging_logoci_logging_log_groupoci_mysql_backupoci_mysql_channeloci_mysql_db_systemoci_nosql_tableoci_nosql_table_metric_read_throttle_countoci_nosql_table_metric_read_throttle_count_dailyoci_nosql_table_metric_read_throttle_count_hourlyoci_nosql_table_metric_storage_utilizationoci_nosql_table_metric_storage_utilization_dailyoci_nosql_table_metric_storage_utilization_hourlyoci_nosql_table_metric_write_throttle_countoci_nosql_table_metric_write_throttle_count_dailyoci_nosql_table_metric_write_throttle_count_hourlyoci_objectstorage_bucketoci_ons_notification_topicoci_ons_subscriptionoci_region

Table: oci_identity_user

Examples

Basic info

select
name,
id,
email,
user_type,
time_created,
lifecycle_state,
is_mfa_activated,
can_use_api_keys,
can_use_console_password,
can_use_auth_tokens,
can_use_smtp_credentials,
can_use_customer_secret_keys
from
oci_identity_user;

List Oracle Identity Cloud Service(IDCS) users

select
name,
id,
email,
time_created,
lifecycle_state,
is_mfa_activated
from
oci_identity_user
where
user_type = 'IDCS';

List users who can log in to console

select
name,
user_type
from
oci_identity_user
where
can_use_console_password;

Details of identity groups attached to users

select
oci_identity_user.name as user_name,
oci_identity_group.name as group_name,
user_group ->> 'groupId' as group_id
from
oci_identity_user,
jsonb_array_elements(user_groups) as user_group
inner join oci_identity_group ON (oci_identity_group.id = user_group ->> 'groupId' );

.inspect oci_identity_user

OCI Identity User

NameTypeDescription
can_use_api_keysbooleanIndicates if the user can use API keys.
can_use_auth_tokensbooleanIndicates if the user can use SWIFT passwords/auth tokens.
can_use_console_passwordbooleanIndicates if the user can log in to the console.
can_use_customer_secret_keysbooleanIndicates if the user can use SigV4 symmetric keys.
can_use_o_auth2_client_credentialsbooleanIndicates if the user can use OAuth2 credentials and tokens.
can_use_smtp_credentialsbooleanIndicates if the user can use SMTP passwords.
defined_tagsjsonbDefined tags for resource. Defined tags are set up in your tenancy by an administrator. Only users granted permission to work with the defined tags can apply them to resources.
descriptiontextThe description assigned to the user.
emailtextThe email address you assign to the user.
email_verifiedbooleanWhether the email address has been validated.
external_identifiertextIdentifier of the user in the identity provider.
freeform_tagsjsonbFree-form tags for resource. This tags can be applied by any user with permissions on the resource.
idtextThe OCID of the user.
identity_provider_idtextThe OCID of the `IdentityProvider` this user belongs to.
inactive_statusbigintApplicable only if the user's `lifecycleState` is INACTIVE. A 16-bit value showing the reason why the user is inactive. 0: SUSPENDED; 1: DISABLED; 2: BLOCKED (the user has exceeded the maximum number of failed login attempts for the Console)
is_mfa_activatedbooleanThe user's current state.
lifecycle_statetextThe user's current state.
nametextThe user's login for the Console.
tagsjsonbA map of tags for the resource.
tenant_idtextThe OCID of the Tenant in which the resource is located.
time_createdtimestamp without time zoneDate and time the user was created.
titletextTitle of the resource.
user_groupsjsonbList of groups associated with the user.
user_typetextType of the user. Value can be IDCS or IAM. Oracle Identity Cloud Service(IDCS) users authenticate through single sign-on and can be granted access to all services included in your account. IAM users can access Oracle Cloud Infrastructure services, but not all Cloud Platform services.