» Data Source: oci_apigateway_deployment

This data source provides details about a specific Deployment resource in Oracle Cloud Infrastructure API Gateway service.

Gets a deployment by identifier.

» Example Usage

data "oci_apigateway_deployment" "test_deployment" {
    #Required
    deployment_id = "${oci_apigateway_deployment.test_deployment.id}"
}

» Argument Reference

The following arguments are supported:

» Attributes Reference

The following attributes are exported:

  • compartment_id - The OCID of the compartment in which the resource is created.
  • defined_tags - Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags. Example: {"Operations.CostCenter": "42"}
  • display_name - A user-friendly name. Does not have to be unique, and it's changeable. Avoid entering confidential information. Example: My new resource
  • endpoint - The endpoint to access this deployment on the gateway.
  • freeform_tags - Free-form tags for this resource. Each tag is a simple key-value pair with no predefined name, type, or namespace. For more information, see Resource Tags. Example: {"Department": "Finance"}
  • gateway_id - The OCID of the resource.
  • id - The OCID of the resource.
  • lifecycle_details - A message describing the current state in more detail. For example, can be used to provide actionable information for a resource in a Failed state.
  • path_prefix - A path on which to deploy all routes contained in the API deployment specification. For more information, see Deploying an API on an API Gateway by Creating an API Deployment.
  • specification -
    • logging_policies -
      • access_log -
        • is_enabled - Enables pushing of access logs to Oracle Cloud Infrastructure Public Logging.
      • execution_log -
        • is_enabled - Enables pushing of execution logs to Oracle Cloud Infrastructure Public Logging.
        • log_level - Specifies the logging level, which affects the log entries pushed to Oracle Cloud Infrastructure Public Logging if isEnabled is set to True.
    • request_policies -
      • authentication -
        • audiences - The list of intended recipients for the token.
        • function_id - The OCID of the Oracle Functions function resource.
        • is_anonymous_access_allowed - Whether an unauthenticated user may access the API. Must be "true" to enable ANONYMOUS route authorization.
        • issuers - A list of parties that could have issued the token.
        • max_clock_skew_in_seconds - The maximum expected time difference between the system clocks of the token issuer and the API Gateway.
        • public_keys -
          • is_ssl_verify_disabled - Defines whether or not to uphold SSL verification.
          • keys - The set of static public keys.
          • max_cache_duration_in_hours - The duration for which the JWKS should be cached before it is fetched again.
          • type - Type of the public key set.
          • uri - The uri from which to retrieve the key. It must be accessible without authentication.
        • token_auth_scheme - The authentication scheme that is to be used when authenticating the token. This must to be provided if "tokenHeader" is specified.
        • token_header - The name of the header containing the authentication token.
        • token_query_param - The name of the query parameter containing the authentication token.
        • type - Type of the authentication policy to use.
        • verify_claims - A list of claims which should be validated to consider the token valid.
          • is_required - Whether the claim is required to be present in the JWT or not. If set to "false", the claim values will be matched only if the claim is present in the JWT.
          • key - Name of the claim.
          • values - The list of acceptable values for a given claim. If this value is "null" or empty and "isRequired" set to "true", then the presence of this claim in the JWT is validated.
      • cors -
        • allowed_headers - The list of headers that will be allowed from the client via the Access-Control-Allow-Headers header. '*' will allow all headers.
        • allowed_methods - The list of allowed HTTP methods that will be returned for the preflight OPTIONS request in the Access-Control-Allow-Methods header. '*' will allow all methods.
        • allowed_origins - The list of allowed origins that the CORS handler will use to respond to CORS requests. The gateway will send the Access-Control-Allow-Origin header with the best origin match for the circumstances. '*' will match any origins, and 'null' will match queries from 'file:' origins. All other origins must be qualified with the scheme, full hostname, and port if necessary.
        • exposed_headers - The list of headers that the client will be allowed to see from the response as indicated by the Access-Control-Expose-Headers header. '*' will expose all headers.
        • is_allow_credentials_enabled - Whether to send the Access-Control-Allow-Credentials header to allow CORS requests with cookies.
        • max_age_in_seconds - The time in seconds for the client to cache preflight responses. This is sent as the Access-Control-Max-Age if greater than 0.
      • rate_limiting -
    • routes - A list of routes that this API exposes.
      • backend -
        • body - The body of the stock response from the mock backend.
        • connect_timeout_in_seconds - Defines a timeout for establishing a connection with a proxied server.
        • function_id - The OCID of the Oracle Functions function resource.
        • headers - The headers of the stock response from the mock backend.
          • name - Name of the header.
          • value - Value of the header.
        • is_ssl_verify_disabled - Defines whether or not to uphold SSL verification.
        • read_timeout_in_seconds - Defines a timeout for reading a response from the proxied server.
        • send_timeout_in_seconds - Defines a timeout for transmitting a request to the proxied server.
        • status - The status code of the stock response from the mock backend.
        • type - Type of the API backend.
        • url -
      • logging_policies -
        • access_log -
          • is_enabled - Enables pushing of access logs to Oracle Cloud Infrastructure Public Logging.
        • execution_log -
          • is_enabled - Enables pushing of execution logs to Oracle Cloud Infrastructure Public Logging.
          • log_level - Specifies the logging level, which affects the log entries pushed to Oracle Cloud Infrastructure Public Logging if isEnabled is set to True.
      • methods - A list of allowed methods on this route.
      • path - A URL path pattern that must be matched on this route. The path pattern may contain a subset of RFC 6570 identifiers to allow wildcard and parameterized matching.
      • request_policies -
        • authorization -
          • allowed_scope - A user whose scope includes any of these access ranges is allowed on this route. Access ranges are case-sensitive.
          • type - Indicates how authorization should be applied. For a type of ANY_OF, an "allowedScope" property must also be specfied. Otherwise, only a type is required. For a type of ANONYMOUS, an authenticated API must have the "isAnonymousAccessAllowed" property set to "true" in the authentication policy.
        • cors -
          • allowed_headers - The list of headers that will be allowed from the client via the Access-Control-Allow-Headers header. '*' will allow all headers.
          • allowed_methods - The list of allowed HTTP methods that will be returned for the preflight OPTIONS request in the Access-Control-Allow-Methods header. '*' will allow all methods.
          • allowed_origins - The list of allowed origins that the CORS handler will use to respond to CORS requests. The gateway will send the Access-Control-Allow-Origin header with the best origin match for the circumstances. '*' will match any origins, and 'null' will match queries from 'file:' origins. All other origins must be qualified with the scheme, full hostname, and port if necessary.
          • exposed_headers - The list of headers that the client will be allowed to see from the response as indicated by the Access-Control-Expose-Headers header. '*' will expose all headers.
          • is_allow_credentials_enabled - Whether to send the Access-Control-Allow-Credentials header to allow CORS requests with cookies.
          • max_age_in_seconds - The time in seconds for the client to cache preflight responses. This is sent as the Access-Control-Max-Age if greater than 0.
  • state - The current state of the deployment.
  • time_created - The time this resource was created. An RFC3339 formatted datetime string.
  • time_updated - The time this resource was last updated. An RFC3339 formatted datetime string.