Oracle Access Governance REST APIs

Create an Access Bundle

post

/access-governance/access-controls/20250331/accessBundles

Creates a new access bundle with the specified details.

Request

Header Parameters

opc-request-id: string

The client request ID for tracing. The only valid characters for request IDs are letters, numbers, underscore, and dash.

Details for the new Access Bundle

Root Schema : CreateAccessBundleDetails

Type: object

The information about new Access Bundle.

Show Source

accessGuardrails: array accessGuardrails

List of access guardrail ids attached to the Access Bundle.
accountProfileId: string

Configured account profile id for the access bundle.
accountProfileName: string

Configured account profile name for the access bundle.
approvalWorkflowId: string

ApprovalWorkflowId that is applicable to the Access Bundle
customAttributes: object customAttributes

Metadata associated with the access bundle
description: string

Access Bundle description
displayName: string

displayName of the Access Bundle
domainName: string

Domain name of an OCI Access Bundle
externalId: string

externalId of the Access Bundle
name(required): string

Minimum Length: 1

Maximum Length: 255

Access Bundle Identifier
orchestratedSystemAttributes: object OrchestratedSystemAttributeSummary

Account & permission attributes
orchestratedSystemId: string

Orchestrated System Identifier that the Access Bundle is associated with
owners: array owners

List of owner entities
requestableBy: string

Allowed Values: [ "ANY", "NONE" ]

Entities that can request the access bundle
resourceType: string

Resource Type of an OCI Access Bundle
tags: array tags

List of tags attached to the Access Bundle
verb: string

Access to be given to the resource bundle

{
    "type":"object",
    "required":[
        "name"
    ],
    "properties":{
        "name":{
            "type":"string",
            "description":"Access Bundle Identifier",
            "minLength":1,
            "maxLength":255
        },
        "displayName":{
            "type":"string",
            "description":"displayName of the Access Bundle"
        },
        "description":{
            "type":"string",
            "description":"Access Bundle description"
        },
        "tags":{
            "type":"array",
            "description":"List of tags attached to the Access Bundle",
            "items":{
                "type":"string"
            }
        },
        "owners":{
            "type":"array",
            "description":"List of owner entities",
            "items":{
                "$ref":"#/definitions/OwnerSummary"
            }
        },
        "requestableBy":{
            "type":"string",
            "description":"Entities that can request the access bundle",
            "enum":[
                "ANY",
                "NONE"
            ],
            "x-obmcs-top-level-enum":"#/definitions/RequestableBy"
        },
        "approvalWorkflowId":{
            "type":"string",
            "description":"ApprovalWorkflowId that is applicable to the Access Bundle"
        },
        "orchestratedSystemId":{
            "type":"string",
            "description":"Orchestrated System Identifier that the Access Bundle is associated with"
        },
        "verb":{
            "type":"string",
            "description":"Access to be given to the resource bundle"
        },
        "externalId":{
            "type":"string",
            "description":"externalId of the Access Bundle"
        },
        "domainName":{
            "type":"string",
            "description":"Domain name of an OCI Access Bundle"
        },
        "resourceType":{
            "type":"string",
            "description":"Resource Type of an OCI Access Bundle"
        },
        "accountProfileId":{
            "type":"string",
            "description":"Configured account profile id for the access bundle."
        },
        "accountProfileName":{
            "type":"string",
            "description":"Configured account profile name for the access bundle."
        },
        "orchestratedSystemAttributes":{
            "$ref":"#/definitions/OrchestratedSystemAttributeSummary"
        },
        "customAttributes":{
            "type":"object",
            "description":"Metadata associated with the access bundle",
            "properties":{
            }
        },
        "accessGuardrails":{
            "type":"array",
            "description":"List of access guardrail ids attached to the Access Bundle.",
            "items":{
                "type":"string"
            }
        }
    },
    "description":"The information about new Access Bundle."
}

Nested Schema : accessGuardrails

Type: array

List of access guardrail ids attached to the Access Bundle.

Show Source

Array of: string

{
    "type":"array",
    "description":"List of access guardrail ids attached to the Access Bundle.",
    "items":{
        "type":"string"
    }
}

Nested Schema : customAttributes

Type: object

Metadata associated with the access bundle

Show Source

{
    "type":"object",
    "description":"Metadata associated with the access bundle",
    "properties":{
    }
}

Nested Schema : OrchestratedSystemAttributeSummary

Type: object

Account & permission attributes

Show Source

accountAttributes: array accountAttributes

List of Orchestrated System account attributes
permissionAttributes: array permissionAttributes

List of Orchestrated System permission attributes

{
    "type":"object",
    "properties":{
        "accountAttributes":{
            "type":"array",
            "description":"List of Orchestrated System account attributes",
            "items":{
                "$ref":"#/definitions/OrchestratedSystemAttributeDataSummary"
            }
        },
        "permissionAttributes":{
            "type":"array",
            "description":"List of Orchestrated System permission attributes",
            "items":{
                "$ref":"#/definitions/OrchestratedSystemAttributeDataSummary"
            }
        }
    },
    "description":"Account & permission attributes"
}

Nested Schema : owners

Type: array

List of owner entities

Show Source

Array of: object OwnerSummary

Owner entity object

{
    "type":"array",
    "description":"List of owner entities",
    "items":{
        "$ref":"#/definitions/OwnerSummary"
    }
}

Nested Schema : tags

Type: array

List of tags attached to the Access Bundle

Show Source

Array of: string

{
    "type":"array",
    "description":"List of tags attached to the Access Bundle",
    "items":{
        "type":"string"
    }
}

Nested Schema : accountAttributes

Type: array

List of Orchestrated System account attributes

Show Source

Array of: object OrchestratedSystemAttributeDataSummary

Orchestrated System Attributes

{
    "type":"array",
    "description":"List of Orchestrated System account attributes",
    "items":{
        "$ref":"#/definitions/OrchestratedSystemAttributeDataSummary"
    }
}

Nested Schema : permissionAttributes

Type: array

List of Orchestrated System permission attributes

Show Source

Array of: object OrchestratedSystemAttributeDataSummary

Orchestrated System Attributes

{
    "type":"array",
    "description":"List of Orchestrated System permission attributes",
    "items":{
        "$ref":"#/definitions/OrchestratedSystemAttributeDataSummary"
    }
}

Nested Schema : OrchestratedSystemAttributeDataSummary

Type: object

Orchestrated System Attributes

Show Source

children: array children

nested attributes
discriminator: string

this field signify attribute field is password
isQuestion: boolean

Indicates if this Orchestrated System Attribute will be presented as a question.
name: string

Attribute name - Unique identifier
permissionType: string

Permission Type
title: string

Display Name for the attribute.
type: string

Type of attribute
values: array values

Attribute Values

{
    "type":"object",
    "properties":{
        "name":{
            "type":"string",
            "description":"Attribute name - Unique identifier"
        },
        "title":{
            "type":"string",
            "description":"Display Name for the attribute."
        },
        "values":{
            "type":"array",
            "description":"Attribute Values",
            "items":{
                "type":"string"
            }
        },
        "type":{
            "type":"string",
            "description":"Type of attribute"
        },
        "permissionType":{
            "type":"string",
            "description":"Permission Type"
        },
        "children":{
            "type":"array",
            "description":"nested attributes",
            "items":{
                "$ref":"#/definitions/NestedAttributesSummary"
            }
        },
        "discriminator":{
            "type":"string",
            "description":"this field signify attribute field is password"
        },
        "isQuestion":{
            "type":"boolean",
            "description":"Indicates if this Orchestrated System Attribute will be presented as a question."
        }
    },
    "description":"Orchestrated System Attributes"
}

Nested Schema : children

Type: array

nested attributes

Show Source

Array of: object NestedAttributesSummary

Nested set of Orchestrated System attributes

{
    "type":"array",
    "description":"nested attributes",
    "items":{
        "$ref":"#/definitions/NestedAttributesSummary"
    }
}

Nested Schema : values

Type: array

Attribute Values

Show Source

Array of: string

{
    "type":"array",
    "description":"Attribute Values",
    "items":{
        "type":"string"
    }
}

Nested Schema : NestedAttributesSummary

Type: object

Nested set of Orchestrated System attributes

Show Source

items: array items

Orchestrated System attributes

{
    "type":"object",
    "properties":{
        "items":{
            "type":"array",
            "description":"Orchestrated System attributes",
            "items":{
                "$ref":"#/definitions/OrchestratedSystemAttributeDataSummary"
            }
        }
    },
    "description":"Nested set of Orchestrated System attributes"
}

Nested Schema : items

Type: array

Orchestrated System attributes

Show Source

Array of: object OrchestratedSystemAttributeDataSummary

Orchestrated System Attributes

{
    "type":"array",
    "description":"Orchestrated System attributes",
    "items":{
        "$ref":"#/definitions/OrchestratedSystemAttributeDataSummary"
    }
}

Nested Schema : OwnerSummary

Type: object

Owner entity object

Show Source

id(required): string

Unique identifier that is immutable on creation
isPrimary(required): boolean

Is this entity the primary owner?
name(required): string

Name of the owner

{
    "type":"object",
    "required":[
        "id",
        "isPrimary",
        "name"
    ],
    "properties":{
        "id":{
            "type":"string",
            "description":"Unique identifier that is immutable on creation"
        },
        "name":{
            "type":"string",
            "description":"Name of the owner"
        },
        "isPrimary":{
            "type":"boolean",
            "description":"Is this entity the primary owner?"
        }
    },
    "description":"Owner entity object"
}

Response

Supported Media Types

application/json

200 Response

The newly created Access Bundle

Headers

opc-request-id: string

Unique Oracle-assigned identifier for the request. If you need to contact Oracle about a particular request, please provide the request ID.

Root Schema : AccessBundle

Type: object

Access Bundle object.

Show Source

accessGuardrails: array accessGuardrails

List of access guardrail information attached to the Access Bundle.
accountProfileId: string

Configured account profile id for the access bundle.
accountProfileName: string

configured account profile name for the access bundle.
approvalWorkflowId: object IdInfo

Generic identifying information object.
cloudAccountName: string

Cloud Account name of OCI bundle i.e., OCI tenancy
compartmentFqn: string

Compartment full name of OCI bundle
compartmentName: string

Compartment name of OCI bundle
createdBy: object IdInfo

Generic identifying information object.
customAttributes: object customAttributes

Metadata associated with the access bundle
description: string

Description of the Access Bundle
displayName: string

Display Name of the Access Bundle
domainName: string

Domain name of OCI bundle
externalId: string

ExternalId of the Access Bundle
id(required): string

Unique identifier that is immutable on creation
name: string

Name of the Access Bundle
orchestratedSystem: object IdInfo

Generic identifying information object.
orchestratedSystemAttributes: object OrchestratedSystemAttributeSummary

Account & permission attributes
orchestratedSystemType: string

Orchestrated System type
owners: array owners

List of owner entities
ownershipCollectionId: string

Ownership collection associated with the Access Bundle
permissions: array permissions

List of permissions
requestableBy: object IdInfo

Generic identifying information object.
resourceType: string

Resource Type of an OCI Access Bundle
status: string

Allowed Values: [ "ACTIVE", "DRAFT", "INACTIVE", "PENDING", "FAILED", "IN_PROGRESS", "SAVED", "SUCCESS", "TIMEOUT" ]

Status of the Access Bundle
tags: array tags

List of tags attached to the Access Bundle
timeCreated: string(date-time)

Time when the Access Bundle was created. An RFC3339 formatted datetime string
timeUpdated: string(date-time)

Time when the Access Bundle was last updated. An RFC3339 formatted datetime string
updatedBy: object IdInfo

Generic identifying information object.

{
    "type":"object",
    "required":[
        "id"
    ],
    "properties":{
        "id":{
            "type":"string",
            "description":"Unique identifier that is immutable on creation"
        },
        "name":{
            "type":"string",
            "description":"Name of the Access Bundle"
        },
        "displayName":{
            "type":"string",
            "description":"Display Name of the Access Bundle"
        },
        "description":{
            "type":"string",
            "description":"Description of the Access Bundle"
        },
        "tags":{
            "type":"array",
            "description":"List of tags attached to the Access Bundle",
            "items":{
                "type":"string"
            }
        },
        "timeCreated":{
            "type":"string",
            "format":"date-time",
            "description":"Time when the Access Bundle was created. An RFC3339 formatted datetime string"
        },
        "timeUpdated":{
            "type":"string",
            "format":"date-time",
            "description":"Time when the Access Bundle was last updated. An RFC3339 formatted datetime string"
        },
        "createdBy":{
            "$ref":"#/definitions/IdInfo"
        },
        "updatedBy":{
            "$ref":"#/definitions/IdInfo"
        },
        "requestableBy":{
            "$ref":"#/definitions/IdInfo"
        },
        "status":{
            "type":"string",
            "description":"Status of the Access Bundle",
            "enum":[
                "ACTIVE",
                "DRAFT",
                "INACTIVE",
                "PENDING",
                "FAILED",
                "IN_PROGRESS",
                "SAVED",
                "SUCCESS",
                "TIMEOUT"
            ],
            "x-obmcs-top-level-enum":"#/definitions/EntityStatus",
            "x-default-description":"ACTIVE"
        },
        "approvalWorkflowId":{
            "$ref":"#/definitions/IdInfo"
        },
        "orchestratedSystem":{
            "$ref":"#/definitions/IdInfo"
        },
        "orchestratedSystemType":{
            "type":"string",
            "description":"Orchestrated System type"
        },
        "ownershipCollectionId":{
            "type":"string",
            "description":"Ownership collection associated with the Access Bundle"
        },
        "owners":{
            "type":"array",
            "description":"List of owner entities",
            "items":{
                "$ref":"#/definitions/OwnerSummary"
            }
        },
        "externalId":{
            "type":"string",
            "description":"ExternalId of the Access Bundle"
        },
        "cloudAccountName":{
            "type":"string",
            "description":"Cloud Account name of OCI bundle i.e., OCI tenancy"
        },
        "domainName":{
            "type":"string",
            "description":"Domain name of OCI bundle"
        },
        "resourceType":{
            "type":"string",
            "description":"Resource Type of an OCI Access Bundle"
        },
        "compartmentName":{
            "type":"string",
            "description":"Compartment name of OCI bundle"
        },
        "compartmentFqn":{
            "type":"string",
            "description":"Compartment full name of OCI bundle"
        },
        "orchestratedSystemAttributes":{
            "$ref":"#/definitions/OrchestratedSystemAttributeSummary"
        },
        "accountProfileId":{
            "type":"string",
            "description":"Configured account profile id for the access bundle."
        },
        "accountProfileName":{
            "type":"string",
            "description":"configured account profile name for the access bundle."
        },
        "customAttributes":{
            "type":"object",
            "description":"Metadata associated with the access bundle",
            "properties":{
            }
        },
        "accessGuardrails":{
            "type":"array",
            "description":"List of access guardrail information attached to the Access Bundle.",
            "items":{
                "$ref":"#/definitions/AccessGuardrailDetails"
            }
        },
        "permissions":{
            "type":"array",
            "description":"List of permissions",
            "items":{
                "$ref":"#/definitions/PermissionSummary"
            }
        }
    },
    "description":"Access Bundle object."
}

Nested Schema : accessGuardrails

Type: array

List of access guardrail information attached to the Access Bundle.

Show Source

Array of: object AccessGuardrailDetails

Access Guardrail object

{
    "type":"array",
    "description":"List of access guardrail information attached to the Access Bundle.",
    "items":{
        "$ref":"#/definitions/AccessGuardrailDetails"
    }
}

Nested Schema : IdInfo

Type: object

Generic identifying information object.

Show Source

displayName: string

Display Name of the entity.
id: string

Id of the entity.
name: string

Name of the entity.

{
    "type":"object",
    "properties":{
        "id":{
            "type":"string",
            "description":"Id of the entity."
        },
        "name":{
            "type":"string",
            "description":"Name of the entity."
        },
        "displayName":{
            "type":"string",
            "description":"Display Name of the entity."
        }
    },
    "description":"Generic identifying information object."
}

Nested Schema : customAttributes

Type: object

Metadata associated with the access bundle

Show Source

{
    "type":"object",
    "description":"Metadata associated with the access bundle",
    "properties":{
    }
}

Nested Schema : OrchestratedSystemAttributeSummary

Type: object

Account & permission attributes

Show Source

accountAttributes: array accountAttributes

List of Orchestrated System account attributes
permissionAttributes: array permissionAttributes

List of Orchestrated System permission attributes

{
    "type":"object",
    "properties":{
        "accountAttributes":{
            "type":"array",
            "description":"List of Orchestrated System account attributes",
            "items":{
                "$ref":"#/definitions/OrchestratedSystemAttributeDataSummary"
            }
        },
        "permissionAttributes":{
            "type":"array",
            "description":"List of Orchestrated System permission attributes",
            "items":{
                "$ref":"#/definitions/OrchestratedSystemAttributeDataSummary"
            }
        }
    },
    "description":"Account & permission attributes"
}

Nested Schema : owners

Type: array

List of owner entities

Show Source

Array of: object OwnerSummary

Owner entity object

{
    "type":"array",
    "description":"List of owner entities",
    "items":{
        "$ref":"#/definitions/OwnerSummary"
    }
}

Nested Schema : permissions

Type: array

List of permissions

Show Source

Array of: object PermissionSummary

Description of Permission.

{
    "type":"array",
    "description":"List of permissions",
    "items":{
        "$ref":"#/definitions/PermissionSummary"
    }
}

Nested Schema : tags

Type: array

List of tags attached to the Access Bundle

Show Source

Array of: string

{
    "type":"array",
    "description":"List of tags attached to the Access Bundle",
    "items":{
        "type":"string"
    }
}

Nested Schema : AccessGuardrailDetails

Type: object

Access Guardrail object

Show Source

id(required): string

The access guardrail id
name(required): string

The access guardrail name

{
    "type":"object",
    "required":[
        "id",
        "name"
    ],
    "properties":{
        "id":{
            "type":"string",
            "description":"The access guardrail id"
        },
        "name":{
            "type":"string",
            "description":"The access guardrail name"
        }
    },
    "description":"Access Guardrail object"
}

Nested Schema : accountAttributes

Type: array

List of Orchestrated System account attributes

Show Source

Array of: object OrchestratedSystemAttributeDataSummary

Orchestrated System Attributes

{
    "type":"array",
    "description":"List of Orchestrated System account attributes",
    "items":{
        "$ref":"#/definitions/OrchestratedSystemAttributeDataSummary"
    }
}

Nested Schema : permissionAttributes

Type: array

List of Orchestrated System permission attributes

Show Source

Array of: object OrchestratedSystemAttributeDataSummary

Orchestrated System Attributes

{
    "type":"array",
    "description":"List of Orchestrated System permission attributes",
    "items":{
        "$ref":"#/definitions/OrchestratedSystemAttributeDataSummary"
    }
}

Nested Schema : OrchestratedSystemAttributeDataSummary

Type: object

Orchestrated System Attributes

Show Source

children: array children

nested attributes
discriminator: string

this field signify attribute field is password
isQuestion: boolean

Indicates if this Orchestrated System Attribute will be presented as a question.
name: string

Attribute name - Unique identifier
permissionType: string

Permission Type
title: string

Display Name for the attribute.
type: string

Type of attribute
values: array values

Attribute Values

{
    "type":"object",
    "properties":{
        "name":{
            "type":"string",
            "description":"Attribute name - Unique identifier"
        },
        "title":{
            "type":"string",
            "description":"Display Name for the attribute."
        },
        "values":{
            "type":"array",
            "description":"Attribute Values",
            "items":{
                "type":"string"
            }
        },
        "type":{
            "type":"string",
            "description":"Type of attribute"
        },
        "permissionType":{
            "type":"string",
            "description":"Permission Type"
        },
        "children":{
            "type":"array",
            "description":"nested attributes",
            "items":{
                "$ref":"#/definitions/NestedAttributesSummary"
            }
        },
        "discriminator":{
            "type":"string",
            "description":"this field signify attribute field is password"
        },
        "isQuestion":{
            "type":"boolean",
            "description":"Indicates if this Orchestrated System Attribute will be presented as a question."
        }
    },
    "description":"Orchestrated System Attributes"
}

Nested Schema : children

Type: array

nested attributes

Show Source

Array of: object NestedAttributesSummary

Nested set of Orchestrated System attributes

{
    "type":"array",
    "description":"nested attributes",
    "items":{
        "$ref":"#/definitions/NestedAttributesSummary"
    }
}

Nested Schema : values

Type: array

Attribute Values

Show Source

Array of: string

{
    "type":"array",
    "description":"Attribute Values",
    "items":{
        "type":"string"
    }
}

Nested Schema : NestedAttributesSummary

Type: object

Nested set of Orchestrated System attributes

Show Source

items: array items

Orchestrated System attributes

{
    "type":"object",
    "properties":{
        "items":{
            "type":"array",
            "description":"Orchestrated System attributes",
            "items":{
                "$ref":"#/definitions/OrchestratedSystemAttributeDataSummary"
            }
        }
    },
    "description":"Nested set of Orchestrated System attributes"
}

Nested Schema : items

Type: array

Orchestrated System attributes

Show Source

Array of: object OrchestratedSystemAttributeDataSummary

Orchestrated System Attributes

{
    "type":"array",
    "description":"Orchestrated System attributes",
    "items":{
        "$ref":"#/definitions/OrchestratedSystemAttributeDataSummary"
    }
}

Nested Schema : OwnerSummary

Type: object

Owner entity object

Show Source

id(required): string

Unique identifier that is immutable on creation
isPrimary(required): boolean

Is this entity the primary owner?
name(required): string

Name of the owner

{
    "type":"object",
    "required":[
        "id",
        "isPrimary",
        "name"
    ],
    "properties":{
        "id":{
            "type":"string",
            "description":"Unique identifier that is immutable on creation"
        },
        "name":{
            "type":"string",
            "description":"Name of the owner"
        },
        "isPrimary":{
            "type":"boolean",
            "description":"Is this entity the primary owner?"
        }
    },
    "description":"Owner entity object"
}

Nested Schema : PermissionSummary

Type: object

Description of Permission.

Show Source

description: string

Description of the permission
id(required): string

The Unique Oracle ID (OCID) that is immutable on creation
name: string

Name of the permission
permissionType: object PermissionTypeSummary

PermissionType Summary.
resource: object ResourceSummary

Resource Summary.
timeCreated: string(date-time)

Time when the permission was last created. An RFC3339 formatted datetime string
timeUpdated: string(date-time)

Time when the permission was last updated. An RFC3339 formatted datetime string
type: string

Type of the permission

{
    "type":"object",
    "required":[
        "id"
    ],
    "properties":{
        "id":{
            "type":"string",
            "description":"The Unique Oracle ID (OCID) that is immutable on creation"
        },
        "name":{
            "type":"string",
            "description":"Name of the permission"
        },
        "description":{
            "type":"string",
            "description":"Description of the permission"
        },
        "type":{
            "type":"string",
            "description":"Type of the permission"
        },
        "timeCreated":{
            "type":"string",
            "format":"date-time",
            "description":"Time when the permission was last created. An RFC3339 formatted datetime string"
        },
        "timeUpdated":{
            "type":"string",
            "format":"date-time",
            "description":"Time when the permission was last updated. An RFC3339 formatted datetime string"
        },
        "resource":{
            "$ref":"#/definitions/ResourceSummary"
        },
        "permissionType":{
            "$ref":"#/definitions/PermissionTypeSummary"
        }
    },
    "description":"Description of Permission."
}

Nested Schema : PermissionTypeSummary

Type: object

PermissionType Summary.

Show Source

displayName: string

Display Name of the PermissionType.
externalId: string

External Id of the PermissionType
id: string

The Unique Oracle ID (OCID) that is immutable on creation.
name: string

name of the PermissionType.

{
    "type":"object",
    "properties":{
        "id":{
            "type":"string",
            "description":"The Unique Oracle ID (OCID) that is immutable on creation."
        },
        "name":{
            "type":"string",
            "description":"name of the PermissionType."
        },
        "displayName":{
            "type":"string",
            "description":"Display Name of the PermissionType."
        },
        "externalId":{
            "type":"string",
            "description":"External Id of the PermissionType"
        }
    },
    "description":"PermissionType Summary."
}

Nested Schema : ResourceSummary

Type: object

Resource Summary.

Show Source

customAttributes: object customAttributes

Metadata associated with the resource
displayName: string

Display Name of the Resource.
id(required): string

The Unique Oracle ID (OCID) that is immutable on creation.
name: string

name of the Resource.
type: string

Type of the Resource

{
    "type":"object",
    "required":[
        "id"
    ],
    "properties":{
        "id":{
            "type":"string",
            "description":"The Unique Oracle ID (OCID) that is immutable on creation."
        },
        "name":{
            "type":"string",
            "description":"name of the Resource."
        },
        "displayName":{
            "type":"string",
            "description":"Display Name of the Resource."
        },
        "type":{
            "type":"string",
            "description":"Type of the Resource"
        },
        "customAttributes":{
            "type":"object",
            "description":"Metadata associated with the resource",
            "properties":{
            }
        }
    },
    "description":"Resource Summary."
}

Nested Schema : customAttributes

Type: object

Metadata associated with the resource

Show Source

{
    "type":"object",
    "description":"Metadata associated with the resource",
    "properties":{
    }
}

400 Response

Bad Request

Headers

opc-request-id: string

Unique Oracle-assigned identifier for the request. If you need to contact Oracle about a particular request, please provide the request ID.

Root Schema : Error

Type: object

Error Information.

Show Source

code(required): string

A short error code that defines the error, meant for programmatic parsing.
message(required): string

A human-readable error string.

{
    "required":[
        "code",
        "message"
    ],
    "properties":{
        "code":{
            "type":"string",
            "description":"A short error code that defines the error, meant for programmatic parsing."
        },
        "message":{
            "type":"string",
            "description":"A human-readable error string."
        }
    },
    "description":"Error Information."
}

401 Response

Unauthorized

Headers

opc-request-id: string

Unique Oracle-assigned identifier for the request. If you need to contact Oracle about a particular request, please provide the request ID.

Root Schema : Error

Type: object

Error Information.

Show Source

code(required): string

A short error code that defines the error, meant for programmatic parsing.
message(required): string

A human-readable error string.

{
    "required":[
        "code",
        "message"
    ],
    "properties":{
        "code":{
            "type":"string",
            "description":"A short error code that defines the error, meant for programmatic parsing."
        },
        "message":{
            "type":"string",
            "description":"A human-readable error string."
        }
    },
    "description":"Error Information."
}

404 Response

Not Found

Headers

opc-request-id: string

Unique Oracle-assigned identifier for the request. If you need to contact Oracle about a particular request, please provide the request ID.

Root Schema : Error

Type: object

Error Information.

Show Source

code(required): string

A short error code that defines the error, meant for programmatic parsing.
message(required): string

A human-readable error string.

{
    "required":[
        "code",
        "message"
    ],
    "properties":{
        "code":{
            "type":"string",
            "description":"A short error code that defines the error, meant for programmatic parsing."
        },
        "message":{
            "type":"string",
            "description":"A human-readable error string."
        }
    },
    "description":"Error Information."
}

409 Response

Conflict

Headers

opc-request-id: string

Unique Oracle-assigned identifier for the request. If you need to contact Oracle about a particular request, please provide the request ID.

Root Schema : Error

Type: object

Error Information.

Show Source

code(required): string

A short error code that defines the error, meant for programmatic parsing.
message(required): string

A human-readable error string.

{
    "required":[
        "code",
        "message"
    ],
    "properties":{
        "code":{
            "type":"string",
            "description":"A short error code that defines the error, meant for programmatic parsing."
        },
        "message":{
            "type":"string",
            "description":"A human-readable error string."
        }
    },
    "description":"Error Information."
}

429 Response

Too Many Requests

Headers

opc-request-id: string

Unique Oracle-assigned identifier for the request. If you need to contact Oracle about a particular request, please provide the request ID.

Root Schema : Error

Type: object

Error Information.

Show Source

code(required): string

A short error code that defines the error, meant for programmatic parsing.
message(required): string

A human-readable error string.

{
    "required":[
        "code",
        "message"
    ],
    "properties":{
        "code":{
            "type":"string",
            "description":"A short error code that defines the error, meant for programmatic parsing."
        },
        "message":{
            "type":"string",
            "description":"A human-readable error string."
        }
    },
    "description":"Error Information."
}

500 Response

Internal Server Error

Headers

opc-request-id: string

Unique Oracle-assigned identifier for the request. If you need to contact Oracle about a particular request, please provide the request ID.

Root Schema : Error

Type: object

Error Information.

Show Source

code(required): string

A short error code that defines the error, meant for programmatic parsing.
message(required): string

A human-readable error string.

{
    "required":[
        "code",
        "message"
    ],
    "properties":{
        "code":{
            "type":"string",
            "description":"A short error code that defines the error, meant for programmatic parsing."
        },
        "message":{
            "type":"string",
            "description":"A human-readable error string."
        }
    },
    "description":"Error Information."
}

Default Response

Unknown Error

Headers

opc-request-id: string

Unique Oracle-assigned identifier for the request. If you need to contact Oracle about a particular request, please provide the request ID.

Root Schema : Error

Type: object

Error Information.

Show Source

code(required): string

A short error code that defines the error, meant for programmatic parsing.
message(required): string

A human-readable error string.

{
    "required":[
        "code",
        "message"
    ],
    "properties":{
        "code":{
            "type":"string",
            "description":"A short error code that defines the error, meant for programmatic parsing."
        },
        "message":{
            "type":"string",
            "description":"A human-readable error string."
        }
    },
    "description":"Error Information."
}

Examples

The following example shows how to create a new access bundle. Replace placeholder values with actual values before running the sample command.

Before creating an access bundle, you need to run the following APIs to fetch the required data:

List all Orchestrated Systems - [GET] {BasePath}/orchestratedSystem
List all Permissions for an Orchestrated Systems - [GET] {BasePath}/orchestratedSystem/{id}/permissions
Find Permission Attributes for an Orchestrated Systems - [POST] {BasePath}/orchestratedSystem/{id}/permissionAttributes
List all Lookup values for a given Lookup Type - [GET] {BasePath}/orchestratedSystem/{id}/lookupAttributes?lookupType=<lookupType>
List all Account Profiles for an Orchestrated Systems - [GET] {BasePath}/orchestratedSystem/{id}/accountProfiles
List all Approval Workflows - [GET] {BasePath}/approvalWorkflows
Create new Access Bundle - [POST] {BasePath}/accessBundles

cURL Request Example

curl -i -X POST \
   -H "Authorization:Bearer <your-access-token>" \
   -H "Content-Type:application/json" \
   -d \
'{
  "name": "DBUM Standard SQL Tuning Access UA",
  "displayName": "DBUM AB UA API",
  "description": "DBUM AB UA API",
  "tags": ["DBUM UA"],
  "owners": [
    {
      "id": "globalId.125123c3-eedc-4d6a-b6d4-6c0f6537bad2.xxxxx",
      "name": "Amel MacLead",
      "isPrimary": true
    }
  ],
  "requestableBy": "ANY",
  "approvalWorkflowId": "NO_APPROVAL_REQUIRED",
  "orchestratedSystemId": "da7efca4-8c7a-4d4f-8ad3.xxxxx",
  "accessBundleType": "PERMISSION_BUNDLE",
  "verb": "string",
  "items": [
    {
      "id": "privileges.ICF.da7efca4-8c7a-4d4f-8ad3-c55ac9362de6.xxxxx",
      "name": "ADMINISTER ANY SQL TUNING SET"
    }
  ],
  "externalId": null,
  "domainName": null,
  "resourceType": null,
  "accountProfileId": "84321700-1a93-4cf2-9226-3f4c26fd.xxxxx",
  "accountProfileName": "dbum AP 1",
  "orchestratedSystemAttributes": {
    "accountAttributes": [],
    "permissionAttributes": [
      {
        "name": "privileges.ICF.da7efca4-8c7a-4d4f-8ad3-c55ac9362de6.xxxxx",
        "type": "RepeatableFieldSet",
        "title": null,
        "values":["ADMINISTER ANY SQL TUNING SET"],
        "children": [
          {
            "items": [
              {
                "name": "privilegeAdminOption",
                "type": "String",
                "title": "dbum.targetAccount.armd.privileges.privilegeAdminOption.title",
                "children": [],
                "lookupType": "withAdminOption",
                "permissionType": "privileges",
                "discriminator": null,
                "values":["YES"]
              }
            ]
          }
        ],
        "discriminator": null,
        "isQuestion": true
      }
    ]
  },
  "customAttributes": {}
}' \
 '<${service-instance-url}/access-governance/access-controls/20250331/accessBundles>'

Example Request Payload

{
  "name": "DBUM Standard SQL Tuning Access UA",
  "displayName": "DBUM AB UA API",
  "description": "DBUM AB UA API",
  "tags": ["DBUM UA"],
  "owners": [
    {
      "id": "globalId.125123c3-eedc-4d6a-b6d4-6c0f6537bad2.xxxxx",
      "name": "Amel MacLead",
      "isPrimary": true
    }
  ],
  "requestableBy": "ANY",
  "approvalWorkflowId": "NO_APPROVAL_REQUIRED",
  "orchestratedSystemId": "da7efca4-8c7a-4d4f-8ad3.xxxxx",
  "accessBundleType": "PERMISSION_BUNDLE",
  "verb": "string",
  "items": [
    {
      "id": "privileges.ICF.da7efca4-8c7a-4d4f-8ad3-c55ac9362de6.xxxxx",
      "name": "ADMINISTER ANY SQL TUNING SET"
    }
  ],
  "externalId": null,
  "domainName": null,
  "resourceType": null,
  "accountProfileId": "84321700-1a93-4cf2-9226-3f4c26fd.xxxxx",
  "accountProfileName": "dbum AP 1",
  "orchestratedSystemAttributes": {
    "accountAttributes": [],
    "permissionAttributes": [
      {
        "name": "privileges.ICF.da7efca4-8c7a-4d4f-8ad3-c55ac9362de6.xxxxx",
        "type": "RepeatableFieldSet",
        "title": null,
        "values":["ADMINISTER ANY SQL TUNING SET"],
        "children": [
          {
            "items": [
              {
                "name": "privilegeAdminOption",
                "type": "String",
                "title": "dbum.targetAccount.armd.privileges.privilegeAdminOption.title",
                "children": [],
                "lookupType": "withAdminOption",
                "permissionType": "privileges",
                "discriminator": null,
                "values": ["YES"] 
              }
            ]
          }
        ],
        "discriminator": null,
        "isQuestion": true
      }
    ]
  },
  "customAttributes": {}
}

Example of the Response Code

It may take a few seconds to create an access bundle. Do not try to abort the request.

You'll receive 200 OK response along with the following response body:

{
  "accessBundleType" : "PERMISSION_BUNDLE",
  "id" : "8307dc91-d378-41e0-8589-1e4812cd.xxxxx",
  "name" : "DBUM Standard SQL Tuning Access UA",
  "displayName" : "DBUM AB UA API",
  "description" : "DBUM AB UA API",
  "tags" : ["DBUM UA"],
  "timeCreated" : "2025-03-26T07:35:53.262Z",
  "timeUpdated" : "2025-03-26T07:35:53.262Z",
  "createdBy" : {
    "id" : "globalId.125123c3-eedc-4d6a-b6d4-6c0f6537bad2.xxxxx",
    "name" : "Ama Maclead",
    "displayName" : "Ama Maclead"
  },
  "updatedBy" : {
    "id" : "globalId.125123c3-eedc-4d6a-b6d4-6c0f6537bad2.xxxxx",
    "name" : "Ama Maclead",
    "displayName" : "Ama Maclead"
  },
  "requestableBy" : {
    "id" : "ANY",
    "name" : "Anyone",
    "displayName" : "Anyone"
  },
  "status" : "ACTIVE",
  "approvalWorkflowId" : {
    "id" : "NO_APPROVAL_REQUIRED",
    "name" : "No Approval Required",
    "displayName" : "No Approval Required"
  },
  "orchestratedSystem" : {
    "id" : "da7efca4-8c7a-4d4f-8ad3.xxxxx",
    "name" : "ownership-reviews-july-DBUM",
    "displayName" : "ownership-reviews-july-DBUM"
  },
  "orchestratedSystemType" : "ICF",
  "ownershipCollectionId" : "9ce09155-968f-46b0-98f0-b81313f4.xxxxx",
  "owners" : [
    {
      "id" : "globalId.125123c3-eedc-4d6a-b6d4-6c0f6537bad2.xxxxx",
      "name" : "Amel MacLead",
      "isPrimary" : true
    }
  ],
  "externalId" : "ocid1.agcsgovernanceinstance.dev.dev.amaaaaaapzw5rdia.xxxxx",
  "cloudAccountName" : null,
  "domainName" : null,
  "resourceType" : null,
  "compartmentName" : null,
  "compartmentFqn" : null,
  "orchestratedSystemAttributes" : {
    "accountAttributes" : [],
    "permissionAttributes" : [
      {
        "name" : "privileges.ICF.da7efca4-8c7a-4d4f-8ad3-c55ac9362de6.xxxxx",
        "title" : null,
        "values" : ["ADMINISTER ANY SQL TUNING SET"],
        "type" : "RepeatableFieldSet",
        "permissionType" : null,
        "children" : [
          {
            "items" : [
              {
                "name" : "privilegeAdminOption",
                "title" : "dbum.targetAccount.armd.privileges.privilegeAdminOption.title",
                "values" : null,
                "type" : "String",
                "permissionType" : "privileges",
                "children" : [],
                "discriminator" : null,
                "isQuestion" : null,
                 "values": ["YES"]
              }
            ]
          }
        ],
        "discriminator" : null,
        "isQuestion" : true
      }
    ]
  },
  "accountProfileId" : "84321700-1a93-4cf2-9226-3f4c26fd.xxxxx",
  "accountProfileName" : "dbum AP 1",
  "customAttributes" : {},
  "permissions" : [
    {
      "id" : "privileges.ICF.da7efca4-8c7a-4d4f-8ad3-c55ac9362de6.xxxxx",
      "name" : "ADMINISTER ANY SQL TUNING SET",
      "description" : null,
      "type" : "ENTITLEMENTS",
      "timeCreated" : "2024-09-25T13:02:20.369Z",
      "timeUpdated" : null,
      "resource" : {
        "id" : "resource.ICF.da7efca4-8c7a-4d4f-8ad3-c55ac9362de6.xxxxx",
        "name" : "ownership-reviews-july-DBUM",
        "displayName" : "ownership-reviews-july-DBUM",
        "type" : "DBUM",
        "customAttributes" : null
      },
      "permissionType" : {
        "id" : "etype.ICF.da7efca4-8c7a-4d4f-8ad3-c55ac9362de6.xxxxx",
        "name" : "icf.connector.entitlement.type.privileges",
        "displayName" : "Privilege",
        "externalId" : "privileges"
      }
    }
  ]
}