1. Packages
  2. Cloudflare Provider
  3. API Docs
  4. getZeroTrustAccessApplications
Cloudflare v6.1.1 published on Monday, Apr 21, 2025 by Pulumi

cloudflare.getZeroTrustAccessApplications

Explore with Pulumi AI

Example Usage

import * as pulumi from "@pulumi/pulumi";
import * as cloudflare from "@pulumi/cloudflare";

const exampleZeroTrustAccessApplications = cloudflare.getZeroTrustAccessApplications({
    accountId: "account_id",
    zoneId: "zone_id",
    aud: "aud",
    domain: "domain",
    name: "name",
    search: "search",
});
Copy
import pulumi
import pulumi_cloudflare as cloudflare

example_zero_trust_access_applications = cloudflare.get_zero_trust_access_applications(account_id="account_id",
    zone_id="zone_id",
    aud="aud",
    domain="domain",
    name="name",
    search="search")
Copy
package main

import (
	"github.com/pulumi/pulumi-cloudflare/sdk/v6/go/cloudflare"
	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := cloudflare.LookupZeroTrustAccessApplications(ctx, &cloudflare.LookupZeroTrustAccessApplicationsArgs{
			AccountId: pulumi.StringRef("account_id"),
			ZoneId:    pulumi.StringRef("zone_id"),
			Aud:       pulumi.StringRef("aud"),
			Domain:    pulumi.StringRef("domain"),
			Name:      pulumi.StringRef("name"),
			Search:    pulumi.StringRef("search"),
		}, nil)
		if err != nil {
			return err
		}
		return nil
	})
}
Copy
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Cloudflare = Pulumi.Cloudflare;

return await Deployment.RunAsync(() => 
{
    var exampleZeroTrustAccessApplications = Cloudflare.GetZeroTrustAccessApplications.Invoke(new()
    {
        AccountId = "account_id",
        ZoneId = "zone_id",
        Aud = "aud",
        Domain = "domain",
        Name = "name",
        Search = "search",
    });

});
Copy
package generated_program;

import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.cloudflare.CloudflareFunctions;
import com.pulumi.cloudflare.inputs.GetZeroTrustAccessApplicationsArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;

public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }

    public static void stack(Context ctx) {
        final var exampleZeroTrustAccessApplications = CloudflareFunctions.getZeroTrustAccessApplications(GetZeroTrustAccessApplicationsArgs.builder()
            .accountId("account_id")
            .zoneId("zone_id")
            .aud("aud")
            .domain("domain")
            .name("name")
            .search("search")
            .build());

    }
}
Copy
variables:
  exampleZeroTrustAccessApplications:
    fn::invoke:
      function: cloudflare:getZeroTrustAccessApplications
      arguments:
        accountId: account_id
        zoneId: zone_id
        aud: aud
        domain: domain
        name: name
        search: search
Copy

Using getZeroTrustAccessApplications

Two invocation forms are available. The direct form accepts plain arguments and either blocks until the result value is available, or returns a Promise-wrapped result. The output form accepts Input-wrapped arguments and returns an Output-wrapped result.

function getZeroTrustAccessApplications(args: GetZeroTrustAccessApplicationsArgs, opts?: InvokeOptions): Promise<GetZeroTrustAccessApplicationsResult>
function getZeroTrustAccessApplicationsOutput(args: GetZeroTrustAccessApplicationsOutputArgs, opts?: InvokeOptions): Output<GetZeroTrustAccessApplicationsResult>
Copy
def get_zero_trust_access_applications(account_id: Optional[str] = None,
                                       aud: Optional[str] = None,
                                       domain: Optional[str] = None,
                                       max_items: Optional[int] = None,
                                       name: Optional[str] = None,
                                       search: Optional[str] = None,
                                       zone_id: Optional[str] = None,
                                       opts: Optional[InvokeOptions] = None) -> GetZeroTrustAccessApplicationsResult
def get_zero_trust_access_applications_output(account_id: Optional[pulumi.Input[str]] = None,
                                       aud: Optional[pulumi.Input[str]] = None,
                                       domain: Optional[pulumi.Input[str]] = None,
                                       max_items: Optional[pulumi.Input[int]] = None,
                                       name: Optional[pulumi.Input[str]] = None,
                                       search: Optional[pulumi.Input[str]] = None,
                                       zone_id: Optional[pulumi.Input[str]] = None,
                                       opts: Optional[InvokeOptions] = None) -> Output[GetZeroTrustAccessApplicationsResult]
Copy
func LookupZeroTrustAccessApplications(ctx *Context, args *LookupZeroTrustAccessApplicationsArgs, opts ...InvokeOption) (*LookupZeroTrustAccessApplicationsResult, error)
func LookupZeroTrustAccessApplicationsOutput(ctx *Context, args *LookupZeroTrustAccessApplicationsOutputArgs, opts ...InvokeOption) LookupZeroTrustAccessApplicationsResultOutput
Copy

> Note: This function is named LookupZeroTrustAccessApplications in the Go SDK.

public static class GetZeroTrustAccessApplications 
{
    public static Task<GetZeroTrustAccessApplicationsResult> InvokeAsync(GetZeroTrustAccessApplicationsArgs args, InvokeOptions? opts = null)
    public static Output<GetZeroTrustAccessApplicationsResult> Invoke(GetZeroTrustAccessApplicationsInvokeArgs args, InvokeOptions? opts = null)
}
Copy
public static CompletableFuture<GetZeroTrustAccessApplicationsResult> getZeroTrustAccessApplications(GetZeroTrustAccessApplicationsArgs args, InvokeOptions options)
public static Output<GetZeroTrustAccessApplicationsResult> getZeroTrustAccessApplications(GetZeroTrustAccessApplicationsArgs args, InvokeOptions options)
Copy
fn::invoke:
  function: cloudflare:index/getZeroTrustAccessApplications:getZeroTrustAccessApplications
  arguments:
    # arguments dictionary
Copy

The following arguments are supported:

AccountId string
The Account ID to use for this endpoint. Mutually exclusive with the Zone ID.
Aud string
The aud of the app.
Domain string
The domain of the app.
MaxItems int
Max items to fetch, default: 1000
Name string
The name of the app.
Search string
Search for apps by other listed query parameters.
ZoneId string
The Zone ID to use for this endpoint. Mutually exclusive with the Account ID.
AccountId string
The Account ID to use for this endpoint. Mutually exclusive with the Zone ID.
Aud string
The aud of the app.
Domain string
The domain of the app.
MaxItems int
Max items to fetch, default: 1000
Name string
The name of the app.
Search string
Search for apps by other listed query parameters.
ZoneId string
The Zone ID to use for this endpoint. Mutually exclusive with the Account ID.
accountId String
The Account ID to use for this endpoint. Mutually exclusive with the Zone ID.
aud String
The aud of the app.
domain String
The domain of the app.
maxItems Integer
Max items to fetch, default: 1000
name String
The name of the app.
search String
Search for apps by other listed query parameters.
zoneId String
The Zone ID to use for this endpoint. Mutually exclusive with the Account ID.
accountId string
The Account ID to use for this endpoint. Mutually exclusive with the Zone ID.
aud string
The aud of the app.
domain string
The domain of the app.
maxItems number
Max items to fetch, default: 1000
name string
The name of the app.
search string
Search for apps by other listed query parameters.
zoneId string
The Zone ID to use for this endpoint. Mutually exclusive with the Account ID.
account_id str
The Account ID to use for this endpoint. Mutually exclusive with the Zone ID.
aud str
The aud of the app.
domain str
The domain of the app.
max_items int
Max items to fetch, default: 1000
name str
The name of the app.
search str
Search for apps by other listed query parameters.
zone_id str
The Zone ID to use for this endpoint. Mutually exclusive with the Account ID.
accountId String
The Account ID to use for this endpoint. Mutually exclusive with the Zone ID.
aud String
The aud of the app.
domain String
The domain of the app.
maxItems Number
Max items to fetch, default: 1000
name String
The name of the app.
search String
Search for apps by other listed query parameters.
zoneId String
The Zone ID to use for this endpoint. Mutually exclusive with the Account ID.

getZeroTrustAccessApplications Result

The following output properties are available:

Id string
The provider-assigned unique ID for this managed resource.
Results List<GetZeroTrustAccessApplicationsResult>
The items returned by the data source
AccountId string
The Account ID to use for this endpoint. Mutually exclusive with the Zone ID.
Aud string
The aud of the app.
Domain string
The domain of the app.
MaxItems int
Max items to fetch, default: 1000
Name string
The name of the app.
Search string
Search for apps by other listed query parameters.
ZoneId string
The Zone ID to use for this endpoint. Mutually exclusive with the Account ID.
Id string
The provider-assigned unique ID for this managed resource.
Results []GetZeroTrustAccessApplicationsResult
The items returned by the data source
AccountId string
The Account ID to use for this endpoint. Mutually exclusive with the Zone ID.
Aud string
The aud of the app.
Domain string
The domain of the app.
MaxItems int
Max items to fetch, default: 1000
Name string
The name of the app.
Search string
Search for apps by other listed query parameters.
ZoneId string
The Zone ID to use for this endpoint. Mutually exclusive with the Account ID.
id String
The provider-assigned unique ID for this managed resource.
results List<GetZeroTrustAccessApplicationsResult>
The items returned by the data source
accountId String
The Account ID to use for this endpoint. Mutually exclusive with the Zone ID.
aud String
The aud of the app.
domain String
The domain of the app.
maxItems Integer
Max items to fetch, default: 1000
name String
The name of the app.
search String
Search for apps by other listed query parameters.
zoneId String
The Zone ID to use for this endpoint. Mutually exclusive with the Account ID.
id string
The provider-assigned unique ID for this managed resource.
results GetZeroTrustAccessApplicationsResult[]
The items returned by the data source
accountId string
The Account ID to use for this endpoint. Mutually exclusive with the Zone ID.
aud string
The aud of the app.
domain string
The domain of the app.
maxItems number
Max items to fetch, default: 1000
name string
The name of the app.
search string
Search for apps by other listed query parameters.
zoneId string
The Zone ID to use for this endpoint. Mutually exclusive with the Account ID.
id str
The provider-assigned unique ID for this managed resource.
results Sequence[GetZeroTrustAccessApplicationsResult]
The items returned by the data source
account_id str
The Account ID to use for this endpoint. Mutually exclusive with the Zone ID.
aud str
The aud of the app.
domain str
The domain of the app.
max_items int
Max items to fetch, default: 1000
name str
The name of the app.
search str
Search for apps by other listed query parameters.
zone_id str
The Zone ID to use for this endpoint. Mutually exclusive with the Account ID.
id String
The provider-assigned unique ID for this managed resource.
results List<Property Map>
The items returned by the data source
accountId String
The Account ID to use for this endpoint. Mutually exclusive with the Zone ID.
aud String
The aud of the app.
domain String
The domain of the app.
maxItems Number
Max items to fetch, default: 1000
name String
The name of the app.
search String
Search for apps by other listed query parameters.
zoneId String
The Zone ID to use for this endpoint. Mutually exclusive with the Account ID.

Supporting Types

GetZeroTrustAccessApplicationsResult

AllowAuthenticateViaWarp This property is required. bool
When set to true, users can authenticate to this application using their WARP session. When set to false this application will always require direct IdP authentication. This setting always overrides the organization setting for WARP authentication.
AllowedIdps This property is required. List<string>
The identity providers your users can select when connecting to this application. Defaults to all IdPs configured in your account.
AppLauncherLogoUrl This property is required. string
The image URL of the logo shown in the App Launcher header.
AppLauncherVisible This property is required. bool
Displays the application in the App Launcher.
Aud This property is required. string
Audience tag.
AutoRedirectToIdentity This property is required. bool
When set to true, users skip the identity provider selection step during login. You must specify only one identity provider in allowed_idps.
BgColor This property is required. string
The background color of the App Launcher page.
CorsHeaders This property is required. GetZeroTrustAccessApplicationsResultCorsHeaders
CreatedAt This property is required. string
CustomDenyMessage This property is required. string
The custom error message shown to a user when they are denied access to the application.
CustomDenyUrl This property is required. string
The custom URL a user is redirected to when they are denied access to the application when failing identity-based rules.
CustomNonIdentityDenyUrl This property is required. string
The custom URL a user is redirected to when they are denied access to the application when failing non-identity rules.
CustomPages This property is required. List<string>
The custom pages that will be displayed when applicable for this application
Destinations This property is required. List<GetZeroTrustAccessApplicationsResultDestination>
List of destinations secured by Access. This supersedes self_hosted_domains to allow for more flexibility in defining different types of domains. If destinations are provided, then self_hosted_domains will be ignored.
Domain This property is required. string
The primary hostname and path secured by Access. This domain will be displayed if the app is visible in the App Launcher.
EnableBindingCookie This property is required. bool
Enables the binding cookie, which increases security against compromised authorization tokens and CSRF attacks.
FooterLinks This property is required. List<GetZeroTrustAccessApplicationsResultFooterLink>
The links in the App Launcher footer.
HeaderBgColor This property is required. string
The background color of the App Launcher header.
HttpOnlyCookieAttribute This property is required. bool
Enables the HttpOnly cookie attribute, which increases security against XSS attacks.
Id This property is required. string
UUID.
LandingPageDesign This property is required. GetZeroTrustAccessApplicationsResultLandingPageDesign
The design of the App Launcher landing page shown to users when they log in.
LogoUrl This property is required. string
The image URL for the logo shown in the App Launcher dashboard.
Name This property is required. string
The name of the application.
OptionsPreflightBypass This property is required. bool
Allows options preflight requests to bypass Access authentication and go directly to the origin. Cannot turn on if cors_headers is set.
PathCookieAttribute This property is required. bool
Enables cookie paths to scope an application's JWT to the application path. If disabled, the JWT will scope to the hostname by default
Policies This property is required. List<GetZeroTrustAccessApplicationsResultPolicy>
ReadServiceTokensFromHeader This property is required. string
Allows matching Access Service Tokens passed HTTP in a single header with this name. This works as an alternative to the (CF-Access-Client-Id, CF-Access-Client-Secret) pair of headers. The header value will be interpreted as a json object similar to: { "cf-access-client-id": "88bf3b6d86161464f6509f7219099e57.access.example.com", "cf-access-client-secret": "bdd31cbc4dec990953e39163fbbb194c93313ca9f0a6e420346af9d326b1d2a5" }
SaasApp This property is required. GetZeroTrustAccessApplicationsResultSaasApp
SameSiteCookieAttribute This property is required. string
Sets the SameSite cookie setting, which provides increased security against CSRF attacks.
ScimConfig This property is required. GetZeroTrustAccessApplicationsResultScimConfig
Configuration for provisioning to this application via SCIM. This is currently in closed beta.
SelfHostedDomains This property is required. List<string>
List of public domains that Access will secure. This field is deprecated in favor of destinations and will be supported until November 21, 2025. If destinations are provided, then self_hosted_domains will be ignored.

Deprecated: This attribute is deprecated.

ServiceAuth401Redirect This property is required. bool
Returns a 401 status code when the request is blocked by a Service Auth policy.
SessionDuration This property is required. string
The amount of time that tokens issued for this application will be valid. Must be in the format 300ms or 2h45m. Valid time units are: ns, us (or µs), ms, s, m, h.
SkipAppLauncherLoginPage This property is required. bool
Determines when to skip the App Launcher landing page.
SkipInterstitial This property is required. bool
Enables automatic authentication through cloudflared.
Tags This property is required. List<string>
The tags you want assigned to an application. Tags are used to filter applications in the App Launcher dashboard.
TargetCriterias This property is required. List<GetZeroTrustAccessApplicationsResultTargetCriteria>
Type This property is required. string
The application type.
UpdatedAt This property is required. string
AllowAuthenticateViaWarp This property is required. bool
When set to true, users can authenticate to this application using their WARP session. When set to false this application will always require direct IdP authentication. This setting always overrides the organization setting for WARP authentication.
AllowedIdps This property is required. []string
The identity providers your users can select when connecting to this application. Defaults to all IdPs configured in your account.
AppLauncherLogoUrl This property is required. string
The image URL of the logo shown in the App Launcher header.
AppLauncherVisible This property is required. bool
Displays the application in the App Launcher.
Aud This property is required. string
Audience tag.
AutoRedirectToIdentity This property is required. bool
When set to true, users skip the identity provider selection step during login. You must specify only one identity provider in allowed_idps.
BgColor This property is required. string
The background color of the App Launcher page.
CorsHeaders This property is required. GetZeroTrustAccessApplicationsResultCorsHeaders
CreatedAt This property is required. string
CustomDenyMessage This property is required. string
The custom error message shown to a user when they are denied access to the application.
CustomDenyUrl This property is required. string
The custom URL a user is redirected to when they are denied access to the application when failing identity-based rules.
CustomNonIdentityDenyUrl This property is required. string
The custom URL a user is redirected to when they are denied access to the application when failing non-identity rules.
CustomPages This property is required. []string
The custom pages that will be displayed when applicable for this application
Destinations This property is required. []GetZeroTrustAccessApplicationsResultDestination
List of destinations secured by Access. This supersedes self_hosted_domains to allow for more flexibility in defining different types of domains. If destinations are provided, then self_hosted_domains will be ignored.
Domain This property is required. string
The primary hostname and path secured by Access. This domain will be displayed if the app is visible in the App Launcher.
EnableBindingCookie This property is required. bool
Enables the binding cookie, which increases security against compromised authorization tokens and CSRF attacks.
FooterLinks This property is required. []GetZeroTrustAccessApplicationsResultFooterLink
The links in the App Launcher footer.
HeaderBgColor This property is required. string
The background color of the App Launcher header.
HttpOnlyCookieAttribute This property is required. bool
Enables the HttpOnly cookie attribute, which increases security against XSS attacks.
Id This property is required. string
UUID.
LandingPageDesign This property is required. GetZeroTrustAccessApplicationsResultLandingPageDesign
The design of the App Launcher landing page shown to users when they log in.
LogoUrl This property is required. string
The image URL for the logo shown in the App Launcher dashboard.
Name This property is required. string
The name of the application.
OptionsPreflightBypass This property is required. bool
Allows options preflight requests to bypass Access authentication and go directly to the origin. Cannot turn on if cors_headers is set.
PathCookieAttribute This property is required. bool
Enables cookie paths to scope an application's JWT to the application path. If disabled, the JWT will scope to the hostname by default
Policies This property is required. []GetZeroTrustAccessApplicationsResultPolicy
ReadServiceTokensFromHeader This property is required. string
Allows matching Access Service Tokens passed HTTP in a single header with this name. This works as an alternative to the (CF-Access-Client-Id, CF-Access-Client-Secret) pair of headers. The header value will be interpreted as a json object similar to: { "cf-access-client-id": "88bf3b6d86161464f6509f7219099e57.access.example.com", "cf-access-client-secret": "bdd31cbc4dec990953e39163fbbb194c93313ca9f0a6e420346af9d326b1d2a5" }
SaasApp This property is required. GetZeroTrustAccessApplicationsResultSaasApp
SameSiteCookieAttribute This property is required. string
Sets the SameSite cookie setting, which provides increased security against CSRF attacks.
ScimConfig This property is required. GetZeroTrustAccessApplicationsResultScimConfig
Configuration for provisioning to this application via SCIM. This is currently in closed beta.
SelfHostedDomains This property is required. []string
List of public domains that Access will secure. This field is deprecated in favor of destinations and will be supported until November 21, 2025. If destinations are provided, then self_hosted_domains will be ignored.

Deprecated: This attribute is deprecated.

ServiceAuth401Redirect This property is required. bool
Returns a 401 status code when the request is blocked by a Service Auth policy.
SessionDuration This property is required. string
The amount of time that tokens issued for this application will be valid. Must be in the format 300ms or 2h45m. Valid time units are: ns, us (or µs), ms, s, m, h.
SkipAppLauncherLoginPage This property is required. bool
Determines when to skip the App Launcher landing page.
SkipInterstitial This property is required. bool
Enables automatic authentication through cloudflared.
Tags This property is required. []string
The tags you want assigned to an application. Tags are used to filter applications in the App Launcher dashboard.
TargetCriterias This property is required. []GetZeroTrustAccessApplicationsResultTargetCriteria
Type This property is required. string
The application type.
UpdatedAt This property is required. string
allowAuthenticateViaWarp This property is required. Boolean
When set to true, users can authenticate to this application using their WARP session. When set to false this application will always require direct IdP authentication. This setting always overrides the organization setting for WARP authentication.
allowedIdps This property is required. List<String>
The identity providers your users can select when connecting to this application. Defaults to all IdPs configured in your account.
appLauncherLogoUrl This property is required. String
The image URL of the logo shown in the App Launcher header.
appLauncherVisible This property is required. Boolean
Displays the application in the App Launcher.
aud This property is required. String
Audience tag.
autoRedirectToIdentity This property is required. Boolean
When set to true, users skip the identity provider selection step during login. You must specify only one identity provider in allowed_idps.
bgColor This property is required. String
The background color of the App Launcher page.
corsHeaders This property is required. GetZeroTrustAccessApplicationsResultCorsHeaders
createdAt This property is required. String
customDenyMessage This property is required. String
The custom error message shown to a user when they are denied access to the application.
customDenyUrl This property is required. String
The custom URL a user is redirected to when they are denied access to the application when failing identity-based rules.
customNonIdentityDenyUrl This property is required. String
The custom URL a user is redirected to when they are denied access to the application when failing non-identity rules.
customPages This property is required. List<String>
The custom pages that will be displayed when applicable for this application
destinations This property is required. List<GetZeroTrustAccessApplicationsResultDestination>
List of destinations secured by Access. This supersedes self_hosted_domains to allow for more flexibility in defining different types of domains. If destinations are provided, then self_hosted_domains will be ignored.
domain This property is required. String
The primary hostname and path secured by Access. This domain will be displayed if the app is visible in the App Launcher.
enableBindingCookie This property is required. Boolean
Enables the binding cookie, which increases security against compromised authorization tokens and CSRF attacks.
footerLinks This property is required. List<GetZeroTrustAccessApplicationsResultFooterLink>
The links in the App Launcher footer.
headerBgColor This property is required. String
The background color of the App Launcher header.
httpOnlyCookieAttribute This property is required. Boolean
Enables the HttpOnly cookie attribute, which increases security against XSS attacks.
id This property is required. String
UUID.
landingPageDesign This property is required. GetZeroTrustAccessApplicationsResultLandingPageDesign
The design of the App Launcher landing page shown to users when they log in.
logoUrl This property is required. String
The image URL for the logo shown in the App Launcher dashboard.
name This property is required. String
The name of the application.
optionsPreflightBypass This property is required. Boolean
Allows options preflight requests to bypass Access authentication and go directly to the origin. Cannot turn on if cors_headers is set.
pathCookieAttribute This property is required. Boolean
Enables cookie paths to scope an application's JWT to the application path. If disabled, the JWT will scope to the hostname by default
policies This property is required. List<GetZeroTrustAccessApplicationsResultPolicy>
readServiceTokensFromHeader This property is required. String
Allows matching Access Service Tokens passed HTTP in a single header with this name. This works as an alternative to the (CF-Access-Client-Id, CF-Access-Client-Secret) pair of headers. The header value will be interpreted as a json object similar to: { "cf-access-client-id": "88bf3b6d86161464f6509f7219099e57.access.example.com", "cf-access-client-secret": "bdd31cbc4dec990953e39163fbbb194c93313ca9f0a6e420346af9d326b1d2a5" }
saasApp This property is required. GetZeroTrustAccessApplicationsResultSaasApp
sameSiteCookieAttribute This property is required. String
Sets the SameSite cookie setting, which provides increased security against CSRF attacks.
scimConfig This property is required. GetZeroTrustAccessApplicationsResultScimConfig
Configuration for provisioning to this application via SCIM. This is currently in closed beta.
selfHostedDomains This property is required. List<String>
List of public domains that Access will secure. This field is deprecated in favor of destinations and will be supported until November 21, 2025. If destinations are provided, then self_hosted_domains will be ignored.

Deprecated: This attribute is deprecated.

serviceAuth401Redirect This property is required. Boolean
Returns a 401 status code when the request is blocked by a Service Auth policy.
sessionDuration This property is required. String
The amount of time that tokens issued for this application will be valid. Must be in the format 300ms or 2h45m. Valid time units are: ns, us (or µs), ms, s, m, h.
skipAppLauncherLoginPage This property is required. Boolean
Determines when to skip the App Launcher landing page.
skipInterstitial This property is required. Boolean
Enables automatic authentication through cloudflared.
tags This property is required. List<String>
The tags you want assigned to an application. Tags are used to filter applications in the App Launcher dashboard.
targetCriterias This property is required. List<GetZeroTrustAccessApplicationsResultTargetCriteria>
type This property is required. String
The application type.
updatedAt This property is required. String
allowAuthenticateViaWarp This property is required. boolean
When set to true, users can authenticate to this application using their WARP session. When set to false this application will always require direct IdP authentication. This setting always overrides the organization setting for WARP authentication.
allowedIdps This property is required. string[]
The identity providers your users can select when connecting to this application. Defaults to all IdPs configured in your account.
appLauncherLogoUrl This property is required. string
The image URL of the logo shown in the App Launcher header.
appLauncherVisible This property is required. boolean
Displays the application in the App Launcher.
aud This property is required. string
Audience tag.
autoRedirectToIdentity This property is required. boolean
When set to true, users skip the identity provider selection step during login. You must specify only one identity provider in allowed_idps.
bgColor This property is required. string
The background color of the App Launcher page.
corsHeaders This property is required. GetZeroTrustAccessApplicationsResultCorsHeaders
createdAt This property is required. string
customDenyMessage This property is required. string
The custom error message shown to a user when they are denied access to the application.
customDenyUrl This property is required. string
The custom URL a user is redirected to when they are denied access to the application when failing identity-based rules.
customNonIdentityDenyUrl This property is required. string
The custom URL a user is redirected to when they are denied access to the application when failing non-identity rules.
customPages This property is required. string[]
The custom pages that will be displayed when applicable for this application
destinations This property is required. GetZeroTrustAccessApplicationsResultDestination[]
List of destinations secured by Access. This supersedes self_hosted_domains to allow for more flexibility in defining different types of domains. If destinations are provided, then self_hosted_domains will be ignored.
domain This property is required. string
The primary hostname and path secured by Access. This domain will be displayed if the app is visible in the App Launcher.
enableBindingCookie This property is required. boolean
Enables the binding cookie, which increases security against compromised authorization tokens and CSRF attacks.
footerLinks This property is required. GetZeroTrustAccessApplicationsResultFooterLink[]
The links in the App Launcher footer.
headerBgColor This property is required. string
The background color of the App Launcher header.
httpOnlyCookieAttribute This property is required. boolean
Enables the HttpOnly cookie attribute, which increases security against XSS attacks.
id This property is required. string
UUID.
landingPageDesign This property is required. GetZeroTrustAccessApplicationsResultLandingPageDesign
The design of the App Launcher landing page shown to users when they log in.
logoUrl This property is required. string
The image URL for the logo shown in the App Launcher dashboard.
name This property is required. string
The name of the application.
optionsPreflightBypass This property is required. boolean
Allows options preflight requests to bypass Access authentication and go directly to the origin. Cannot turn on if cors_headers is set.
pathCookieAttribute This property is required. boolean
Enables cookie paths to scope an application's JWT to the application path. If disabled, the JWT will scope to the hostname by default
policies This property is required. GetZeroTrustAccessApplicationsResultPolicy[]
readServiceTokensFromHeader This property is required. string
Allows matching Access Service Tokens passed HTTP in a single header with this name. This works as an alternative to the (CF-Access-Client-Id, CF-Access-Client-Secret) pair of headers. The header value will be interpreted as a json object similar to: { "cf-access-client-id": "88bf3b6d86161464f6509f7219099e57.access.example.com", "cf-access-client-secret": "bdd31cbc4dec990953e39163fbbb194c93313ca9f0a6e420346af9d326b1d2a5" }
saasApp This property is required. GetZeroTrustAccessApplicationsResultSaasApp
sameSiteCookieAttribute This property is required. string
Sets the SameSite cookie setting, which provides increased security against CSRF attacks.
scimConfig This property is required. GetZeroTrustAccessApplicationsResultScimConfig
Configuration for provisioning to this application via SCIM. This is currently in closed beta.
selfHostedDomains This property is required. string[]
List of public domains that Access will secure. This field is deprecated in favor of destinations and will be supported until November 21, 2025. If destinations are provided, then self_hosted_domains will be ignored.

Deprecated: This attribute is deprecated.

serviceAuth401Redirect This property is required. boolean
Returns a 401 status code when the request is blocked by a Service Auth policy.
sessionDuration This property is required. string
The amount of time that tokens issued for this application will be valid. Must be in the format 300ms or 2h45m. Valid time units are: ns, us (or µs), ms, s, m, h.
skipAppLauncherLoginPage This property is required. boolean
Determines when to skip the App Launcher landing page.
skipInterstitial This property is required. boolean
Enables automatic authentication through cloudflared.
tags This property is required. string[]
The tags you want assigned to an application. Tags are used to filter applications in the App Launcher dashboard.
targetCriterias This property is required. GetZeroTrustAccessApplicationsResultTargetCriteria[]
type This property is required. string
The application type.
updatedAt This property is required. string
allow_authenticate_via_warp This property is required. bool
When set to true, users can authenticate to this application using their WARP session. When set to false this application will always require direct IdP authentication. This setting always overrides the organization setting for WARP authentication.
allowed_idps This property is required. Sequence[str]
The identity providers your users can select when connecting to this application. Defaults to all IdPs configured in your account.
app_launcher_logo_url This property is required. str
The image URL of the logo shown in the App Launcher header.
app_launcher_visible This property is required. bool
Displays the application in the App Launcher.
aud This property is required. str
Audience tag.
auto_redirect_to_identity This property is required. bool
When set to true, users skip the identity provider selection step during login. You must specify only one identity provider in allowed_idps.
bg_color This property is required. str
The background color of the App Launcher page.
cors_headers This property is required. GetZeroTrustAccessApplicationsResultCorsHeaders
created_at This property is required. str
custom_deny_message This property is required. str
The custom error message shown to a user when they are denied access to the application.
custom_deny_url This property is required. str
The custom URL a user is redirected to when they are denied access to the application when failing identity-based rules.
custom_non_identity_deny_url This property is required. str
The custom URL a user is redirected to when they are denied access to the application when failing non-identity rules.
custom_pages This property is required. Sequence[str]
The custom pages that will be displayed when applicable for this application
destinations This property is required. Sequence[GetZeroTrustAccessApplicationsResultDestination]
List of destinations secured by Access. This supersedes self_hosted_domains to allow for more flexibility in defining different types of domains. If destinations are provided, then self_hosted_domains will be ignored.
domain This property is required. str
The primary hostname and path secured by Access. This domain will be displayed if the app is visible in the App Launcher.
enable_binding_cookie This property is required. bool
Enables the binding cookie, which increases security against compromised authorization tokens and CSRF attacks.
footer_links This property is required. Sequence[GetZeroTrustAccessApplicationsResultFooterLink]
The links in the App Launcher footer.
header_bg_color This property is required. str
The background color of the App Launcher header.
http_only_cookie_attribute This property is required. bool
Enables the HttpOnly cookie attribute, which increases security against XSS attacks.
id This property is required. str
UUID.
landing_page_design This property is required. GetZeroTrustAccessApplicationsResultLandingPageDesign
The design of the App Launcher landing page shown to users when they log in.
logo_url This property is required. str
The image URL for the logo shown in the App Launcher dashboard.
name This property is required. str
The name of the application.
options_preflight_bypass This property is required. bool
Allows options preflight requests to bypass Access authentication and go directly to the origin. Cannot turn on if cors_headers is set.
path_cookie_attribute This property is required. bool
Enables cookie paths to scope an application's JWT to the application path. If disabled, the JWT will scope to the hostname by default
policies This property is required. Sequence[GetZeroTrustAccessApplicationsResultPolicy]
read_service_tokens_from_header This property is required. str
Allows matching Access Service Tokens passed HTTP in a single header with this name. This works as an alternative to the (CF-Access-Client-Id, CF-Access-Client-Secret) pair of headers. The header value will be interpreted as a json object similar to: { "cf-access-client-id": "88bf3b6d86161464f6509f7219099e57.access.example.com", "cf-access-client-secret": "bdd31cbc4dec990953e39163fbbb194c93313ca9f0a6e420346af9d326b1d2a5" }
saas_app This property is required. GetZeroTrustAccessApplicationsResultSaasApp
same_site_cookie_attribute This property is required. str
Sets the SameSite cookie setting, which provides increased security against CSRF attacks.
scim_config This property is required. GetZeroTrustAccessApplicationsResultScimConfig
Configuration for provisioning to this application via SCIM. This is currently in closed beta.
self_hosted_domains This property is required. Sequence[str]
List of public domains that Access will secure. This field is deprecated in favor of destinations and will be supported until November 21, 2025. If destinations are provided, then self_hosted_domains will be ignored.

Deprecated: This attribute is deprecated.

service_auth401_redirect This property is required. bool
Returns a 401 status code when the request is blocked by a Service Auth policy.
session_duration This property is required. str
The amount of time that tokens issued for this application will be valid. Must be in the format 300ms or 2h45m. Valid time units are: ns, us (or µs), ms, s, m, h.
skip_app_launcher_login_page This property is required. bool
Determines when to skip the App Launcher landing page.
skip_interstitial This property is required. bool
Enables automatic authentication through cloudflared.
tags This property is required. Sequence[str]
The tags you want assigned to an application. Tags are used to filter applications in the App Launcher dashboard.
target_criterias This property is required. Sequence[GetZeroTrustAccessApplicationsResultTargetCriteria]
type This property is required. str
The application type.
updated_at This property is required. str
allowAuthenticateViaWarp This property is required. Boolean
When set to true, users can authenticate to this application using their WARP session. When set to false this application will always require direct IdP authentication. This setting always overrides the organization setting for WARP authentication.
allowedIdps This property is required. List<String>
The identity providers your users can select when connecting to this application. Defaults to all IdPs configured in your account.
appLauncherLogoUrl This property is required. String
The image URL of the logo shown in the App Launcher header.
appLauncherVisible This property is required. Boolean
Displays the application in the App Launcher.
aud This property is required. String
Audience tag.
autoRedirectToIdentity This property is required. Boolean
When set to true, users skip the identity provider selection step during login. You must specify only one identity provider in allowed_idps.
bgColor This property is required. String
The background color of the App Launcher page.
corsHeaders This property is required. Property Map
createdAt This property is required. String
customDenyMessage This property is required. String
The custom error message shown to a user when they are denied access to the application.
customDenyUrl This property is required. String
The custom URL a user is redirected to when they are denied access to the application when failing identity-based rules.
customNonIdentityDenyUrl This property is required. String
The custom URL a user is redirected to when they are denied access to the application when failing non-identity rules.
customPages This property is required. List<String>
The custom pages that will be displayed when applicable for this application
destinations This property is required. List<Property Map>
List of destinations secured by Access. This supersedes self_hosted_domains to allow for more flexibility in defining different types of domains. If destinations are provided, then self_hosted_domains will be ignored.
domain This property is required. String
The primary hostname and path secured by Access. This domain will be displayed if the app is visible in the App Launcher.
enableBindingCookie This property is required. Boolean
Enables the binding cookie, which increases security against compromised authorization tokens and CSRF attacks.
footerLinks This property is required. List<Property Map>
The links in the App Launcher footer.
headerBgColor This property is required. String
The background color of the App Launcher header.
httpOnlyCookieAttribute This property is required. Boolean
Enables the HttpOnly cookie attribute, which increases security against XSS attacks.
id This property is required. String
UUID.
landingPageDesign This property is required. Property Map
The design of the App Launcher landing page shown to users when they log in.
logoUrl This property is required. String
The image URL for the logo shown in the App Launcher dashboard.
name This property is required. String
The name of the application.
optionsPreflightBypass This property is required. Boolean
Allows options preflight requests to bypass Access authentication and go directly to the origin. Cannot turn on if cors_headers is set.
pathCookieAttribute This property is required. Boolean
Enables cookie paths to scope an application's JWT to the application path. If disabled, the JWT will scope to the hostname by default
policies This property is required. List<Property Map>
readServiceTokensFromHeader This property is required. String
Allows matching Access Service Tokens passed HTTP in a single header with this name. This works as an alternative to the (CF-Access-Client-Id, CF-Access-Client-Secret) pair of headers. The header value will be interpreted as a json object similar to: { "cf-access-client-id": "88bf3b6d86161464f6509f7219099e57.access.example.com", "cf-access-client-secret": "bdd31cbc4dec990953e39163fbbb194c93313ca9f0a6e420346af9d326b1d2a5" }
saasApp This property is required. Property Map
sameSiteCookieAttribute This property is required. String
Sets the SameSite cookie setting, which provides increased security against CSRF attacks.
scimConfig This property is required. Property Map
Configuration for provisioning to this application via SCIM. This is currently in closed beta.
selfHostedDomains This property is required. List<String>
List of public domains that Access will secure. This field is deprecated in favor of destinations and will be supported until November 21, 2025. If destinations are provided, then self_hosted_domains will be ignored.

Deprecated: This attribute is deprecated.

serviceAuth401Redirect This property is required. Boolean
Returns a 401 status code when the request is blocked by a Service Auth policy.
sessionDuration This property is required. String
The amount of time that tokens issued for this application will be valid. Must be in the format 300ms or 2h45m. Valid time units are: ns, us (or µs), ms, s, m, h.
skipAppLauncherLoginPage This property is required. Boolean
Determines when to skip the App Launcher landing page.
skipInterstitial This property is required. Boolean
Enables automatic authentication through cloudflared.
tags This property is required. List<String>
The tags you want assigned to an application. Tags are used to filter applications in the App Launcher dashboard.
targetCriterias This property is required. List<Property Map>
type This property is required. String
The application type.
updatedAt This property is required. String

GetZeroTrustAccessApplicationsResultCorsHeaders

AllowAllHeaders This property is required. bool
Allows all HTTP request headers.
AllowAllMethods This property is required. bool
Allows all HTTP request methods.
AllowAllOrigins This property is required. bool
Allows all origins.
AllowCredentials This property is required. bool
When set to true, includes credentials (cookies, authorization headers, or TLS client certificates) with requests.
AllowedHeaders This property is required. List<string>
Allowed HTTP request headers.
AllowedMethods This property is required. List<string>
Allowed HTTP request methods.
AllowedOrigins This property is required. List<string>
Allowed origins.
MaxAge This property is required. double
The maximum number of seconds the results of a preflight request can be cached.
AllowAllHeaders This property is required. bool
Allows all HTTP request headers.
AllowAllMethods This property is required. bool
Allows all HTTP request methods.
AllowAllOrigins This property is required. bool
Allows all origins.
AllowCredentials This property is required. bool
When set to true, includes credentials (cookies, authorization headers, or TLS client certificates) with requests.
AllowedHeaders This property is required. []string
Allowed HTTP request headers.
AllowedMethods This property is required. []string
Allowed HTTP request methods.
AllowedOrigins This property is required. []string
Allowed origins.
MaxAge This property is required. float64
The maximum number of seconds the results of a preflight request can be cached.
allowAllHeaders This property is required. Boolean
Allows all HTTP request headers.
allowAllMethods This property is required. Boolean
Allows all HTTP request methods.
allowAllOrigins This property is required. Boolean
Allows all origins.
allowCredentials This property is required. Boolean
When set to true, includes credentials (cookies, authorization headers, or TLS client certificates) with requests.
allowedHeaders This property is required. List<String>
Allowed HTTP request headers.
allowedMethods This property is required. List<String>
Allowed HTTP request methods.
allowedOrigins This property is required. List<String>
Allowed origins.
maxAge This property is required. Double
The maximum number of seconds the results of a preflight request can be cached.
allowAllHeaders This property is required. boolean
Allows all HTTP request headers.
allowAllMethods This property is required. boolean
Allows all HTTP request methods.
allowAllOrigins This property is required. boolean
Allows all origins.
allowCredentials This property is required. boolean
When set to true, includes credentials (cookies, authorization headers, or TLS client certificates) with requests.
allowedHeaders This property is required. string[]
Allowed HTTP request headers.
allowedMethods This property is required. string[]
Allowed HTTP request methods.
allowedOrigins This property is required. string[]
Allowed origins.
maxAge This property is required. number
The maximum number of seconds the results of a preflight request can be cached.
allow_all_headers This property is required. bool
Allows all HTTP request headers.
allow_all_methods This property is required. bool
Allows all HTTP request methods.
allow_all_origins This property is required. bool
Allows all origins.
allow_credentials This property is required. bool
When set to true, includes credentials (cookies, authorization headers, or TLS client certificates) with requests.
allowed_headers This property is required. Sequence[str]
Allowed HTTP request headers.
allowed_methods This property is required. Sequence[str]
Allowed HTTP request methods.
allowed_origins This property is required. Sequence[str]
Allowed origins.
max_age This property is required. float
The maximum number of seconds the results of a preflight request can be cached.
allowAllHeaders This property is required. Boolean
Allows all HTTP request headers.
allowAllMethods This property is required. Boolean
Allows all HTTP request methods.
allowAllOrigins This property is required. Boolean
Allows all origins.
allowCredentials This property is required. Boolean
When set to true, includes credentials (cookies, authorization headers, or TLS client certificates) with requests.
allowedHeaders This property is required. List<String>
Allowed HTTP request headers.
allowedMethods This property is required. List<String>
Allowed HTTP request methods.
allowedOrigins This property is required. List<String>
Allowed origins.
maxAge This property is required. Number
The maximum number of seconds the results of a preflight request can be cached.

GetZeroTrustAccessApplicationsResultDestination

Cidr This property is required. string
The CIDR range of the destination. Single IPs will be computed as /32.
Hostname This property is required. string
The hostname of the destination. Matches a valid SNI served by an HTTPS origin.
L4Protocol This property is required. string
The L4 protocol of the destination. When omitted, both UDP and TCP traffic will match. Available values: "tcp", "udp".
PortRange This property is required. string
The port range of the destination. Can be a single port or a range of ports. When omitted, all ports will match.
Type This property is required. string
Available values: "public".
Uri This property is required. string
The URI of the destination. Public destinations' URIs can include a domain and path with wildcards.
VnetId This property is required. string
The VNET ID to match the destination. When omitted, all VNETs will match.
Cidr This property is required. string
The CIDR range of the destination. Single IPs will be computed as /32.
Hostname This property is required. string
The hostname of the destination. Matches a valid SNI served by an HTTPS origin.
L4Protocol This property is required. string
The L4 protocol of the destination. When omitted, both UDP and TCP traffic will match. Available values: "tcp", "udp".
PortRange This property is required. string
The port range of the destination. Can be a single port or a range of ports. When omitted, all ports will match.
Type This property is required. string
Available values: "public".
Uri This property is required. string
The URI of the destination. Public destinations' URIs can include a domain and path with wildcards.
VnetId This property is required. string
The VNET ID to match the destination. When omitted, all VNETs will match.
cidr This property is required. String
The CIDR range of the destination. Single IPs will be computed as /32.
hostname This property is required. String
The hostname of the destination. Matches a valid SNI served by an HTTPS origin.
l4Protocol This property is required. String
The L4 protocol of the destination. When omitted, both UDP and TCP traffic will match. Available values: "tcp", "udp".
portRange This property is required. String
The port range of the destination. Can be a single port or a range of ports. When omitted, all ports will match.
type This property is required. String
Available values: "public".
uri This property is required. String
The URI of the destination. Public destinations' URIs can include a domain and path with wildcards.
vnetId This property is required. String
The VNET ID to match the destination. When omitted, all VNETs will match.
cidr This property is required. string
The CIDR range of the destination. Single IPs will be computed as /32.
hostname This property is required. string
The hostname of the destination. Matches a valid SNI served by an HTTPS origin.
l4Protocol This property is required. string
The L4 protocol of the destination. When omitted, both UDP and TCP traffic will match. Available values: "tcp", "udp".
portRange This property is required. string
The port range of the destination. Can be a single port or a range of ports. When omitted, all ports will match.
type This property is required. string
Available values: "public".
uri This property is required. string
The URI of the destination. Public destinations' URIs can include a domain and path with wildcards.
vnetId This property is required. string
The VNET ID to match the destination. When omitted, all VNETs will match.
cidr This property is required. str
The CIDR range of the destination. Single IPs will be computed as /32.
hostname This property is required. str
The hostname of the destination. Matches a valid SNI served by an HTTPS origin.
l4_protocol This property is required. str
The L4 protocol of the destination. When omitted, both UDP and TCP traffic will match. Available values: "tcp", "udp".
port_range This property is required. str
The port range of the destination. Can be a single port or a range of ports. When omitted, all ports will match.
type This property is required. str
Available values: "public".
uri This property is required. str
The URI of the destination. Public destinations' URIs can include a domain and path with wildcards.
vnet_id This property is required. str
The VNET ID to match the destination. When omitted, all VNETs will match.
cidr This property is required. String
The CIDR range of the destination. Single IPs will be computed as /32.
hostname This property is required. String
The hostname of the destination. Matches a valid SNI served by an HTTPS origin.
l4Protocol This property is required. String
The L4 protocol of the destination. When omitted, both UDP and TCP traffic will match. Available values: "tcp", "udp".
portRange This property is required. String
The port range of the destination. Can be a single port or a range of ports. When omitted, all ports will match.
type This property is required. String
Available values: "public".
uri This property is required. String
The URI of the destination. Public destinations' URIs can include a domain and path with wildcards.
vnetId This property is required. String
The VNET ID to match the destination. When omitted, all VNETs will match.
Name This property is required. string
The hypertext in the footer link.
Url This property is required. string
the hyperlink in the footer link.
Name This property is required. string
The hypertext in the footer link.
Url This property is required. string
the hyperlink in the footer link.
name This property is required. String
The hypertext in the footer link.
url This property is required. String
the hyperlink in the footer link.
name This property is required. string
The hypertext in the footer link.
url This property is required. string
the hyperlink in the footer link.
name This property is required. str
The hypertext in the footer link.
url This property is required. str
the hyperlink in the footer link.
name This property is required. String
The hypertext in the footer link.
url This property is required. String
the hyperlink in the footer link.

GetZeroTrustAccessApplicationsResultLandingPageDesign

ButtonColor This property is required. string
The background color of the log in button on the landing page.
ButtonTextColor This property is required. string
The color of the text in the log in button on the landing page.
ImageUrl This property is required. string
The URL of the image shown on the landing page.
Message This property is required. string
The message shown on the landing page.
Title This property is required. string
The title shown on the landing page.
ButtonColor This property is required. string
The background color of the log in button on the landing page.
ButtonTextColor This property is required. string
The color of the text in the log in button on the landing page.
ImageUrl This property is required. string
The URL of the image shown on the landing page.
Message This property is required. string
The message shown on the landing page.
Title This property is required. string
The title shown on the landing page.
buttonColor This property is required. String
The background color of the log in button on the landing page.
buttonTextColor This property is required. String
The color of the text in the log in button on the landing page.
imageUrl This property is required. String
The URL of the image shown on the landing page.
message This property is required. String
The message shown on the landing page.
title This property is required. String
The title shown on the landing page.
buttonColor This property is required. string
The background color of the log in button on the landing page.
buttonTextColor This property is required. string
The color of the text in the log in button on the landing page.
imageUrl This property is required. string
The URL of the image shown on the landing page.
message This property is required. string
The message shown on the landing page.
title This property is required. string
The title shown on the landing page.
button_color This property is required. str
The background color of the log in button on the landing page.
button_text_color This property is required. str
The color of the text in the log in button on the landing page.
image_url This property is required. str
The URL of the image shown on the landing page.
message This property is required. str
The message shown on the landing page.
title This property is required. str
The title shown on the landing page.
buttonColor This property is required. String
The background color of the log in button on the landing page.
buttonTextColor This property is required. String
The color of the text in the log in button on the landing page.
imageUrl This property is required. String
The URL of the image shown on the landing page.
message This property is required. String
The message shown on the landing page.
title This property is required. String
The title shown on the landing page.

GetZeroTrustAccessApplicationsResultPolicy

ApprovalGroups This property is required. List<GetZeroTrustAccessApplicationsResultPolicyApprovalGroup>
Administrators who can approve a temporary authentication request.
ApprovalRequired This property is required. bool
Requires the user to request access from an administrator at the start of each session.
ConnectionRules This property is required. GetZeroTrustAccessApplicationsResultPolicyConnectionRules
The rules that define how users may connect to the targets secured by your application.
CreatedAt This property is required. string
Decision This property is required. string
The action Access will take if a user matches this policy. Infrastructure application policies can only use the Allow action. Available values: "allow", "deny", "non_identity", "bypass".
Excludes This property is required. List<GetZeroTrustAccessApplicationsResultPolicyExclude>
Rules evaluated with a NOT logical operator. To match the policy, a user cannot meet any of the Exclude rules.
Id This property is required. string
The UUID of the policy
Includes This property is required. List<GetZeroTrustAccessApplicationsResultPolicyInclude>
Rules evaluated with an OR logical operator. A user needs to meet only one of the Include rules.
IsolationRequired This property is required. bool
Require this application to be served in an isolated browser for users matching this policy. 'Client Web Isolation' must be on for the account in order to use this feature.
Name This property is required. string
The name of the Access policy.
Precedence This property is required. int
The order of execution for this policy. Must be unique for each policy within an app.
PurposeJustificationPrompt This property is required. string
A custom message that will appear on the purpose justification screen.
PurposeJustificationRequired This property is required. bool
Require users to enter a justification when they log in to the application.
Requires This property is required. List<GetZeroTrustAccessApplicationsResultPolicyRequire>
Rules evaluated with an AND logical operator. To match the policy, a user must meet all of the Require rules.
SessionDuration This property is required. string
The amount of time that tokens issued for the application will be valid. Must be in the format 300ms or 2h45m. Valid time units are: ns, us (or µs), ms, s, m, h.
UpdatedAt This property is required. string
ApprovalGroups This property is required. []GetZeroTrustAccessApplicationsResultPolicyApprovalGroup
Administrators who can approve a temporary authentication request.
ApprovalRequired This property is required. bool
Requires the user to request access from an administrator at the start of each session.
ConnectionRules This property is required. GetZeroTrustAccessApplicationsResultPolicyConnectionRules
The rules that define how users may connect to the targets secured by your application.
CreatedAt This property is required. string
Decision This property is required. string
The action Access will take if a user matches this policy. Infrastructure application policies can only use the Allow action. Available values: "allow", "deny", "non_identity", "bypass".
Excludes This property is required. []GetZeroTrustAccessApplicationsResultPolicyExclude
Rules evaluated with a NOT logical operator. To match the policy, a user cannot meet any of the Exclude rules.
Id This property is required. string
The UUID of the policy
Includes This property is required. []GetZeroTrustAccessApplicationsResultPolicyInclude
Rules evaluated with an OR logical operator. A user needs to meet only one of the Include rules.
IsolationRequired This property is required. bool
Require this application to be served in an isolated browser for users matching this policy. 'Client Web Isolation' must be on for the account in order to use this feature.
Name This property is required. string
The name of the Access policy.
Precedence This property is required. int
The order of execution for this policy. Must be unique for each policy within an app.
PurposeJustificationPrompt This property is required. string
A custom message that will appear on the purpose justification screen.
PurposeJustificationRequired This property is required. bool
Require users to enter a justification when they log in to the application.
Requires This property is required. []GetZeroTrustAccessApplicationsResultPolicyRequire
Rules evaluated with an AND logical operator. To match the policy, a user must meet all of the Require rules.
SessionDuration This property is required. string
The amount of time that tokens issued for the application will be valid. Must be in the format 300ms or 2h45m. Valid time units are: ns, us (or µs), ms, s, m, h.
UpdatedAt This property is required. string
approvalGroups This property is required. List<GetZeroTrustAccessApplicationsResultPolicyApprovalGroup>
Administrators who can approve a temporary authentication request.
approvalRequired This property is required. Boolean
Requires the user to request access from an administrator at the start of each session.
connectionRules This property is required. GetZeroTrustAccessApplicationsResultPolicyConnectionRules
The rules that define how users may connect to the targets secured by your application.
createdAt This property is required. String
decision This property is required. String
The action Access will take if a user matches this policy. Infrastructure application policies can only use the Allow action. Available values: "allow", "deny", "non_identity", "bypass".
excludes This property is required. List<GetZeroTrustAccessApplicationsResultPolicyExclude>
Rules evaluated with a NOT logical operator. To match the policy, a user cannot meet any of the Exclude rules.
id This property is required. String
The UUID of the policy
includes This property is required. List<GetZeroTrustAccessApplicationsResultPolicyInclude>
Rules evaluated with an OR logical operator. A user needs to meet only one of the Include rules.
isolationRequired This property is required. Boolean
Require this application to be served in an isolated browser for users matching this policy. 'Client Web Isolation' must be on for the account in order to use this feature.
name This property is required. String
The name of the Access policy.
precedence This property is required. Integer
The order of execution for this policy. Must be unique for each policy within an app.
purposeJustificationPrompt This property is required. String
A custom message that will appear on the purpose justification screen.
purposeJustificationRequired This property is required. Boolean
Require users to enter a justification when they log in to the application.
requires This property is required. List<GetZeroTrustAccessApplicationsResultPolicyRequire>
Rules evaluated with an AND logical operator. To match the policy, a user must meet all of the Require rules.
sessionDuration This property is required. String
The amount of time that tokens issued for the application will be valid. Must be in the format 300ms or 2h45m. Valid time units are: ns, us (or µs), ms, s, m, h.
updatedAt This property is required. String
approvalGroups This property is required. GetZeroTrustAccessApplicationsResultPolicyApprovalGroup[]
Administrators who can approve a temporary authentication request.
approvalRequired This property is required. boolean
Requires the user to request access from an administrator at the start of each session.
connectionRules This property is required. GetZeroTrustAccessApplicationsResultPolicyConnectionRules
The rules that define how users may connect to the targets secured by your application.
createdAt This property is required. string
decision This property is required. string
The action Access will take if a user matches this policy. Infrastructure application policies can only use the Allow action. Available values: "allow", "deny", "non_identity", "bypass".
excludes This property is required. GetZeroTrustAccessApplicationsResultPolicyExclude[]
Rules evaluated with a NOT logical operator. To match the policy, a user cannot meet any of the Exclude rules.
id This property is required. string
The UUID of the policy
includes This property is required. GetZeroTrustAccessApplicationsResultPolicyInclude[]
Rules evaluated with an OR logical operator. A user needs to meet only one of the Include rules.
isolationRequired This property is required. boolean
Require this application to be served in an isolated browser for users matching this policy. 'Client Web Isolation' must be on for the account in order to use this feature.
name This property is required. string
The name of the Access policy.
precedence This property is required. number
The order of execution for this policy. Must be unique for each policy within an app.
purposeJustificationPrompt This property is required. string
A custom message that will appear on the purpose justification screen.
purposeJustificationRequired This property is required. boolean
Require users to enter a justification when they log in to the application.
requires This property is required. GetZeroTrustAccessApplicationsResultPolicyRequire[]
Rules evaluated with an AND logical operator. To match the policy, a user must meet all of the Require rules.
sessionDuration This property is required. string
The amount of time that tokens issued for the application will be valid. Must be in the format 300ms or 2h45m. Valid time units are: ns, us (or µs), ms, s, m, h.
updatedAt This property is required. string
approval_groups This property is required. Sequence[GetZeroTrustAccessApplicationsResultPolicyApprovalGroup]
Administrators who can approve a temporary authentication request.
approval_required This property is required. bool
Requires the user to request access from an administrator at the start of each session.
connection_rules This property is required. GetZeroTrustAccessApplicationsResultPolicyConnectionRules
The rules that define how users may connect to the targets secured by your application.
created_at This property is required. str
decision This property is required. str
The action Access will take if a user matches this policy. Infrastructure application policies can only use the Allow action. Available values: "allow", "deny", "non_identity", "bypass".
excludes This property is required. Sequence[GetZeroTrustAccessApplicationsResultPolicyExclude]
Rules evaluated with a NOT logical operator. To match the policy, a user cannot meet any of the Exclude rules.
id This property is required. str
The UUID of the policy
includes This property is required. Sequence[GetZeroTrustAccessApplicationsResultPolicyInclude]
Rules evaluated with an OR logical operator. A user needs to meet only one of the Include rules.
isolation_required This property is required. bool
Require this application to be served in an isolated browser for users matching this policy. 'Client Web Isolation' must be on for the account in order to use this feature.
name This property is required. str
The name of the Access policy.
precedence This property is required. int
The order of execution for this policy. Must be unique for each policy within an app.
purpose_justification_prompt This property is required. str
A custom message that will appear on the purpose justification screen.
purpose_justification_required This property is required. bool
Require users to enter a justification when they log in to the application.
requires This property is required. Sequence[GetZeroTrustAccessApplicationsResultPolicyRequire]
Rules evaluated with an AND logical operator. To match the policy, a user must meet all of the Require rules.
session_duration This property is required. str
The amount of time that tokens issued for the application will be valid. Must be in the format 300ms or 2h45m. Valid time units are: ns, us (or µs), ms, s, m, h.
updated_at This property is required. str
approvalGroups This property is required. List<Property Map>
Administrators who can approve a temporary authentication request.
approvalRequired This property is required. Boolean
Requires the user to request access from an administrator at the start of each session.
connectionRules This property is required. Property Map
The rules that define how users may connect to the targets secured by your application.
createdAt This property is required. String
decision This property is required. String
The action Access will take if a user matches this policy. Infrastructure application policies can only use the Allow action. Available values: "allow", "deny", "non_identity", "bypass".
excludes This property is required. List<Property Map>
Rules evaluated with a NOT logical operator. To match the policy, a user cannot meet any of the Exclude rules.
id This property is required. String
The UUID of the policy
includes This property is required. List<Property Map>
Rules evaluated with an OR logical operator. A user needs to meet only one of the Include rules.
isolationRequired This property is required. Boolean
Require this application to be served in an isolated browser for users matching this policy. 'Client Web Isolation' must be on for the account in order to use this feature.
name This property is required. String
The name of the Access policy.
precedence This property is required. Number
The order of execution for this policy. Must be unique for each policy within an app.
purposeJustificationPrompt This property is required. String
A custom message that will appear on the purpose justification screen.
purposeJustificationRequired This property is required. Boolean
Require users to enter a justification when they log in to the application.
requires This property is required. List<Property Map>
Rules evaluated with an AND logical operator. To match the policy, a user must meet all of the Require rules.
sessionDuration This property is required. String
The amount of time that tokens issued for the application will be valid. Must be in the format 300ms or 2h45m. Valid time units are: ns, us (or µs), ms, s, m, h.
updatedAt This property is required. String

GetZeroTrustAccessApplicationsResultPolicyApprovalGroup

ApprovalsNeeded This property is required. double
The number of approvals needed to obtain access.
EmailAddresses This property is required. List<string>
A list of emails that can approve the access request.
EmailListUuid This property is required. string
The UUID of an re-usable email list.
ApprovalsNeeded This property is required. float64
The number of approvals needed to obtain access.
EmailAddresses This property is required. []string
A list of emails that can approve the access request.
EmailListUuid This property is required. string
The UUID of an re-usable email list.
approvalsNeeded This property is required. Double
The number of approvals needed to obtain access.
emailAddresses This property is required. List<String>
A list of emails that can approve the access request.
emailListUuid This property is required. String
The UUID of an re-usable email list.
approvalsNeeded This property is required. number
The number of approvals needed to obtain access.
emailAddresses This property is required. string[]
A list of emails that can approve the access request.
emailListUuid This property is required. string
The UUID of an re-usable email list.
approvals_needed This property is required. float
The number of approvals needed to obtain access.
email_addresses This property is required. Sequence[str]
A list of emails that can approve the access request.
email_list_uuid This property is required. str
The UUID of an re-usable email list.
approvalsNeeded This property is required. Number
The number of approvals needed to obtain access.
emailAddresses This property is required. List<String>
A list of emails that can approve the access request.
emailListUuid This property is required. String
The UUID of an re-usable email list.

GetZeroTrustAccessApplicationsResultPolicyConnectionRules

Ssh This property is required. GetZeroTrustAccessApplicationsResultPolicyConnectionRulesSsh
The SSH-specific rules that define how users may connect to the targets secured by your application.
Ssh This property is required. GetZeroTrustAccessApplicationsResultPolicyConnectionRulesSsh
The SSH-specific rules that define how users may connect to the targets secured by your application.
ssh This property is required. GetZeroTrustAccessApplicationsResultPolicyConnectionRulesSsh
The SSH-specific rules that define how users may connect to the targets secured by your application.
ssh This property is required. GetZeroTrustAccessApplicationsResultPolicyConnectionRulesSsh
The SSH-specific rules that define how users may connect to the targets secured by your application.
ssh This property is required. GetZeroTrustAccessApplicationsResultPolicyConnectionRulesSsh
The SSH-specific rules that define how users may connect to the targets secured by your application.
ssh This property is required. Property Map
The SSH-specific rules that define how users may connect to the targets secured by your application.

GetZeroTrustAccessApplicationsResultPolicyConnectionRulesSsh

AllowEmailAlias This property is required. bool
Enables using Identity Provider email alias as SSH username.
Usernames This property is required. List<string>
Contains the Unix usernames that may be used when connecting over SSH.
AllowEmailAlias This property is required. bool
Enables using Identity Provider email alias as SSH username.
Usernames This property is required. []string
Contains the Unix usernames that may be used when connecting over SSH.
allowEmailAlias This property is required. Boolean
Enables using Identity Provider email alias as SSH username.
usernames This property is required. List<String>
Contains the Unix usernames that may be used when connecting over SSH.
allowEmailAlias This property is required. boolean
Enables using Identity Provider email alias as SSH username.
usernames This property is required. string[]
Contains the Unix usernames that may be used when connecting over SSH.
allow_email_alias This property is required. bool
Enables using Identity Provider email alias as SSH username.
usernames This property is required. Sequence[str]
Contains the Unix usernames that may be used when connecting over SSH.
allowEmailAlias This property is required. Boolean
Enables using Identity Provider email alias as SSH username.
usernames This property is required. List<String>
Contains the Unix usernames that may be used when connecting over SSH.

GetZeroTrustAccessApplicationsResultPolicyExclude

AnyValidServiceToken This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeAnyValidServiceToken
An empty object which matches on all service tokens.
AuthContext This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeAuthContext
AuthMethod This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeAuthMethod
AzureAd This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeAzureAd
Certificate This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeCertificate
CommonName This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeCommonName
DevicePosture This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeDevicePosture
Email This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeEmail
EmailDomain This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeEmailDomain
EmailList This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeEmailList
Everyone This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeEveryone
An empty object which matches on all users.
ExternalEvaluation This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeExternalEvaluation
Geo This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeGeo
GithubOrganization This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeGithubOrganization
Group This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeGroup
Gsuite This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeGsuite
Ip This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeIp
IpList This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeIpList
LoginMethod This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeLoginMethod
Okta This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeOkta
Saml This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeSaml
ServiceToken This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeServiceToken
AnyValidServiceToken This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeAnyValidServiceToken
An empty object which matches on all service tokens.
AuthContext This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeAuthContext
AuthMethod This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeAuthMethod
AzureAd This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeAzureAd
Certificate This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeCertificate
CommonName This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeCommonName
DevicePosture This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeDevicePosture
Email This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeEmail
EmailDomain This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeEmailDomain
EmailList This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeEmailList
Everyone This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeEveryone
An empty object which matches on all users.
ExternalEvaluation This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeExternalEvaluation
Geo This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeGeo
GithubOrganization This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeGithubOrganization
Group This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeGroup
Gsuite This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeGsuite
Ip This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeIp
IpList This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeIpList
LoginMethod This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeLoginMethod
Okta This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeOkta
Saml This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeSaml
ServiceToken This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeServiceToken
anyValidServiceToken This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeAnyValidServiceToken
An empty object which matches on all service tokens.
authContext This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeAuthContext
authMethod This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeAuthMethod
azureAd This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeAzureAd
certificate This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeCertificate
commonName This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeCommonName
devicePosture This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeDevicePosture
email This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeEmail
emailDomain This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeEmailDomain
emailList This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeEmailList
everyone This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeEveryone
An empty object which matches on all users.
externalEvaluation This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeExternalEvaluation
geo This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeGeo
githubOrganization This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeGithubOrganization
group This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeGroup
gsuite This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeGsuite
ip This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeIp
ipList This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeIpList
loginMethod This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeLoginMethod
okta This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeOkta
saml This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeSaml
serviceToken This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeServiceToken
anyValidServiceToken This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeAnyValidServiceToken
An empty object which matches on all service tokens.
authContext This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeAuthContext
authMethod This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeAuthMethod
azureAd This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeAzureAd
certificate This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeCertificate
commonName This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeCommonName
devicePosture This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeDevicePosture
email This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeEmail
emailDomain This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeEmailDomain
emailList This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeEmailList
everyone This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeEveryone
An empty object which matches on all users.
externalEvaluation This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeExternalEvaluation
geo This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeGeo
githubOrganization This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeGithubOrganization
group This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeGroup
gsuite This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeGsuite
ip This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeIp
ipList This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeIpList
loginMethod This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeLoginMethod
okta This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeOkta
saml This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeSaml
serviceToken This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeServiceToken
any_valid_service_token This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeAnyValidServiceToken
An empty object which matches on all service tokens.
auth_context This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeAuthContext
auth_method This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeAuthMethod
azure_ad This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeAzureAd
certificate This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeCertificate
common_name This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeCommonName
device_posture This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeDevicePosture
email This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeEmail
email_domain This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeEmailDomain
email_list This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeEmailList
everyone This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeEveryone
An empty object which matches on all users.
external_evaluation This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeExternalEvaluation
geo This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeGeo
github_organization This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeGithubOrganization
group This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeGroup
gsuite This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeGsuite
ip This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeIp
ip_list This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeIpList
login_method This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeLoginMethod
okta This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeOkta
saml This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeSaml
service_token This property is required. GetZeroTrustAccessApplicationsResultPolicyExcludeServiceToken
anyValidServiceToken This property is required. Property Map
An empty object which matches on all service tokens.
authContext This property is required. Property Map
authMethod This property is required. Property Map
azureAd This property is required. Property Map
certificate This property is required. Property Map
commonName This property is required. Property Map
devicePosture This property is required. Property Map
email This property is required. Property Map
emailDomain This property is required. Property Map
emailList This property is required. Property Map
everyone This property is required. Property Map
An empty object which matches on all users.
externalEvaluation This property is required. Property Map
geo This property is required. Property Map
githubOrganization This property is required. Property Map
group This property is required. Property Map
gsuite This property is required. Property Map
ip This property is required. Property Map
ipList This property is required. Property Map
loginMethod This property is required. Property Map
okta This property is required. Property Map
saml This property is required. Property Map
serviceToken This property is required. Property Map

GetZeroTrustAccessApplicationsResultPolicyExcludeAuthContext

AcId This property is required. string
The ACID of an Authentication context.
Id This property is required. string
The ID of an Authentication context.
IdentityProviderId This property is required. string
The ID of your Azure identity provider.
AcId This property is required. string
The ACID of an Authentication context.
Id This property is required. string
The ID of an Authentication context.
IdentityProviderId This property is required. string
The ID of your Azure identity provider.
acId This property is required. String
The ACID of an Authentication context.
id This property is required. String
The ID of an Authentication context.
identityProviderId This property is required. String
The ID of your Azure identity provider.
acId This property is required. string
The ACID of an Authentication context.
id This property is required. string
The ID of an Authentication context.
identityProviderId This property is required. string
The ID of your Azure identity provider.
ac_id This property is required. str
The ACID of an Authentication context.
id This property is required. str
The ID of an Authentication context.
identity_provider_id This property is required. str
The ID of your Azure identity provider.
acId This property is required. String
The ACID of an Authentication context.
id This property is required. String
The ID of an Authentication context.
identityProviderId This property is required. String
The ID of your Azure identity provider.

GetZeroTrustAccessApplicationsResultPolicyExcludeAuthMethod

AuthMethod This property is required. string
The type of authentication method https://datatracker.ietf.org/doc/html/rfc8176#section-2.
AuthMethod This property is required. string
The type of authentication method https://datatracker.ietf.org/doc/html/rfc8176#section-2.
authMethod This property is required. String
The type of authentication method https://datatracker.ietf.org/doc/html/rfc8176#section-2.
authMethod This property is required. string
The type of authentication method https://datatracker.ietf.org/doc/html/rfc8176#section-2.
auth_method This property is required. str
The type of authentication method https://datatracker.ietf.org/doc/html/rfc8176#section-2.
authMethod This property is required. String
The type of authentication method https://datatracker.ietf.org/doc/html/rfc8176#section-2.

GetZeroTrustAccessApplicationsResultPolicyExcludeAzureAd

Id This property is required. string
The ID of an Azure group.
IdentityProviderId This property is required. string
The ID of your Azure identity provider.
Id This property is required. string
The ID of an Azure group.
IdentityProviderId This property is required. string
The ID of your Azure identity provider.
id This property is required. String
The ID of an Azure group.
identityProviderId This property is required. String
The ID of your Azure identity provider.
id This property is required. string
The ID of an Azure group.
identityProviderId This property is required. string
The ID of your Azure identity provider.
id This property is required. str
The ID of an Azure group.
identity_provider_id This property is required. str
The ID of your Azure identity provider.
id This property is required. String
The ID of an Azure group.
identityProviderId This property is required. String
The ID of your Azure identity provider.

GetZeroTrustAccessApplicationsResultPolicyExcludeCommonName

CommonName This property is required. string
The common name to match.
CommonName This property is required. string
The common name to match.
commonName This property is required. String
The common name to match.
commonName This property is required. string
The common name to match.
common_name This property is required. str
The common name to match.
commonName This property is required. String
The common name to match.

GetZeroTrustAccessApplicationsResultPolicyExcludeDevicePosture

IntegrationUid This property is required. string
The ID of a device posture integration.
IntegrationUid This property is required. string
The ID of a device posture integration.
integrationUid This property is required. String
The ID of a device posture integration.
integrationUid This property is required. string
The ID of a device posture integration.
integration_uid This property is required. str
The ID of a device posture integration.
integrationUid This property is required. String
The ID of a device posture integration.

GetZeroTrustAccessApplicationsResultPolicyExcludeEmail

Email This property is required. string
The email of the user.
Email This property is required. string
The email of the user.
email This property is required. String
The email of the user.
email This property is required. string
The email of the user.
email This property is required. str
The email of the user.
email This property is required. String
The email of the user.

GetZeroTrustAccessApplicationsResultPolicyExcludeEmailDomain

Domain This property is required. string
The email domain to match.
Domain This property is required. string
The email domain to match.
domain This property is required. String
The email domain to match.
domain This property is required. string
The email domain to match.
domain This property is required. str
The email domain to match.
domain This property is required. String
The email domain to match.

GetZeroTrustAccessApplicationsResultPolicyExcludeEmailList

Id This property is required. string
The ID of a previously created email list.
Id This property is required. string
The ID of a previously created email list.
id This property is required. String
The ID of a previously created email list.
id This property is required. string
The ID of a previously created email list.
id This property is required. str
The ID of a previously created email list.
id This property is required. String
The ID of a previously created email list.

GetZeroTrustAccessApplicationsResultPolicyExcludeExternalEvaluation

EvaluateUrl This property is required. string
The API endpoint containing your business logic.
KeysUrl This property is required. string
The API endpoint containing the key that Access uses to verify that the response came from your API.
EvaluateUrl This property is required. string
The API endpoint containing your business logic.
KeysUrl This property is required. string
The API endpoint containing the key that Access uses to verify that the response came from your API.
evaluateUrl This property is required. String
The API endpoint containing your business logic.
keysUrl This property is required. String
The API endpoint containing the key that Access uses to verify that the response came from your API.
evaluateUrl This property is required. string
The API endpoint containing your business logic.
keysUrl This property is required. string
The API endpoint containing the key that Access uses to verify that the response came from your API.
evaluate_url This property is required. str
The API endpoint containing your business logic.
keys_url This property is required. str
The API endpoint containing the key that Access uses to verify that the response came from your API.
evaluateUrl This property is required. String
The API endpoint containing your business logic.
keysUrl This property is required. String
The API endpoint containing the key that Access uses to verify that the response came from your API.

GetZeroTrustAccessApplicationsResultPolicyExcludeGeo

CountryCode This property is required. string
The country code that should be matched.
CountryCode This property is required. string
The country code that should be matched.
countryCode This property is required. String
The country code that should be matched.
countryCode This property is required. string
The country code that should be matched.
country_code This property is required. str
The country code that should be matched.
countryCode This property is required. String
The country code that should be matched.

GetZeroTrustAccessApplicationsResultPolicyExcludeGithubOrganization

IdentityProviderId This property is required. string
The ID of your Github identity provider.
Name This property is required. string
The name of the organization.
Team This property is required. string
The name of the team
IdentityProviderId This property is required. string
The ID of your Github identity provider.
Name This property is required. string
The name of the organization.
Team This property is required. string
The name of the team
identityProviderId This property is required. String
The ID of your Github identity provider.
name This property is required. String
The name of the organization.
team This property is required. String
The name of the team
identityProviderId This property is required. string
The ID of your Github identity provider.
name This property is required. string
The name of the organization.
team This property is required. string
The name of the team
identity_provider_id This property is required. str
The ID of your Github identity provider.
name This property is required. str
The name of the organization.
team This property is required. str
The name of the team
identityProviderId This property is required. String
The ID of your Github identity provider.
name This property is required. String
The name of the organization.
team This property is required. String
The name of the team

GetZeroTrustAccessApplicationsResultPolicyExcludeGroup

Id This property is required. string
The ID of a previously created Access group.
Id This property is required. string
The ID of a previously created Access group.
id This property is required. String
The ID of a previously created Access group.
id This property is required. string
The ID of a previously created Access group.
id This property is required. str
The ID of a previously created Access group.
id This property is required. String
The ID of a previously created Access group.

GetZeroTrustAccessApplicationsResultPolicyExcludeGsuite

Email This property is required. string
The email of the Google Workspace group.
IdentityProviderId This property is required. string
The ID of your Google Workspace identity provider.
Email This property is required. string
The email of the Google Workspace group.
IdentityProviderId This property is required. string
The ID of your Google Workspace identity provider.
email This property is required. String
The email of the Google Workspace group.
identityProviderId This property is required. String
The ID of your Google Workspace identity provider.
email This property is required. string
The email of the Google Workspace group.
identityProviderId This property is required. string
The ID of your Google Workspace identity provider.
email This property is required. str
The email of the Google Workspace group.
identity_provider_id This property is required. str
The ID of your Google Workspace identity provider.
email This property is required. String
The email of the Google Workspace group.
identityProviderId This property is required. String
The ID of your Google Workspace identity provider.

GetZeroTrustAccessApplicationsResultPolicyExcludeIp

Ip This property is required. string
An IPv4 or IPv6 CIDR block.
Ip This property is required. string
An IPv4 or IPv6 CIDR block.
ip This property is required. String
An IPv4 or IPv6 CIDR block.
ip This property is required. string
An IPv4 or IPv6 CIDR block.
ip This property is required. str
An IPv4 or IPv6 CIDR block.
ip This property is required. String
An IPv4 or IPv6 CIDR block.

GetZeroTrustAccessApplicationsResultPolicyExcludeIpList

Id This property is required. string
The ID of a previously created IP list.
Id This property is required. string
The ID of a previously created IP list.
id This property is required. String
The ID of a previously created IP list.
id This property is required. string
The ID of a previously created IP list.
id This property is required. str
The ID of a previously created IP list.
id This property is required. String
The ID of a previously created IP list.

GetZeroTrustAccessApplicationsResultPolicyExcludeLoginMethod

Id This property is required. string
The ID of an identity provider.
Id This property is required. string
The ID of an identity provider.
id This property is required. String
The ID of an identity provider.
id This property is required. string
The ID of an identity provider.
id This property is required. str
The ID of an identity provider.
id This property is required. String
The ID of an identity provider.

GetZeroTrustAccessApplicationsResultPolicyExcludeOkta

IdentityProviderId This property is required. string
The ID of your Okta identity provider.
Name This property is required. string
The name of the Okta group.
IdentityProviderId This property is required. string
The ID of your Okta identity provider.
Name This property is required. string
The name of the Okta group.
identityProviderId This property is required. String
The ID of your Okta identity provider.
name This property is required. String
The name of the Okta group.
identityProviderId This property is required. string
The ID of your Okta identity provider.
name This property is required. string
The name of the Okta group.
identity_provider_id This property is required. str
The ID of your Okta identity provider.
name This property is required. str
The name of the Okta group.
identityProviderId This property is required. String
The ID of your Okta identity provider.
name This property is required. String
The name of the Okta group.

GetZeroTrustAccessApplicationsResultPolicyExcludeSaml

AttributeName This property is required. string
The name of the SAML attribute.
AttributeValue This property is required. string
The SAML attribute value to look for.
IdentityProviderId This property is required. string
The ID of your SAML identity provider.
AttributeName This property is required. string
The name of the SAML attribute.
AttributeValue This property is required. string
The SAML attribute value to look for.
IdentityProviderId This property is required. string
The ID of your SAML identity provider.
attributeName This property is required. String
The name of the SAML attribute.
attributeValue This property is required. String
The SAML attribute value to look for.
identityProviderId This property is required. String
The ID of your SAML identity provider.
attributeName This property is required. string
The name of the SAML attribute.
attributeValue This property is required. string
The SAML attribute value to look for.
identityProviderId This property is required. string
The ID of your SAML identity provider.
attribute_name This property is required. str
The name of the SAML attribute.
attribute_value This property is required. str
The SAML attribute value to look for.
identity_provider_id This property is required. str
The ID of your SAML identity provider.
attributeName This property is required. String
The name of the SAML attribute.
attributeValue This property is required. String
The SAML attribute value to look for.
identityProviderId This property is required. String
The ID of your SAML identity provider.

GetZeroTrustAccessApplicationsResultPolicyExcludeServiceToken

TokenId This property is required. string
The ID of a Service Token.
TokenId This property is required. string
The ID of a Service Token.
tokenId This property is required. String
The ID of a Service Token.
tokenId This property is required. string
The ID of a Service Token.
token_id This property is required. str
The ID of a Service Token.
tokenId This property is required. String
The ID of a Service Token.

GetZeroTrustAccessApplicationsResultPolicyInclude

AnyValidServiceToken This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeAnyValidServiceToken
An empty object which matches on all service tokens.
AuthContext This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeAuthContext
AuthMethod This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeAuthMethod
AzureAd This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeAzureAd
Certificate This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeCertificate
CommonName This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeCommonName
DevicePosture This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeDevicePosture
Email This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeEmail
EmailDomain This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeEmailDomain
EmailList This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeEmailList
Everyone This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeEveryone
An empty object which matches on all users.
ExternalEvaluation This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeExternalEvaluation
Geo This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeGeo
GithubOrganization This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeGithubOrganization
Group This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeGroup
Gsuite This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeGsuite
Ip This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeIp
IpList This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeIpList
LoginMethod This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeLoginMethod
Okta This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeOkta
Saml This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeSaml
ServiceToken This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeServiceToken
AnyValidServiceToken This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeAnyValidServiceToken
An empty object which matches on all service tokens.
AuthContext This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeAuthContext
AuthMethod This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeAuthMethod
AzureAd This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeAzureAd
Certificate This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeCertificate
CommonName This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeCommonName
DevicePosture This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeDevicePosture
Email This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeEmail
EmailDomain This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeEmailDomain
EmailList This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeEmailList
Everyone This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeEveryone
An empty object which matches on all users.
ExternalEvaluation This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeExternalEvaluation
Geo This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeGeo
GithubOrganization This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeGithubOrganization
Group This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeGroup
Gsuite This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeGsuite
Ip This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeIp
IpList This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeIpList
LoginMethod This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeLoginMethod
Okta This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeOkta
Saml This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeSaml
ServiceToken This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeServiceToken
anyValidServiceToken This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeAnyValidServiceToken
An empty object which matches on all service tokens.
authContext This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeAuthContext
authMethod This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeAuthMethod
azureAd This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeAzureAd
certificate This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeCertificate
commonName This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeCommonName
devicePosture This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeDevicePosture
email This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeEmail
emailDomain This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeEmailDomain
emailList This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeEmailList
everyone This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeEveryone
An empty object which matches on all users.
externalEvaluation This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeExternalEvaluation
geo This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeGeo
githubOrganization This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeGithubOrganization
group This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeGroup
gsuite This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeGsuite
ip This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeIp
ipList This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeIpList
loginMethod This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeLoginMethod
okta This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeOkta
saml This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeSaml
serviceToken This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeServiceToken
anyValidServiceToken This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeAnyValidServiceToken
An empty object which matches on all service tokens.
authContext This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeAuthContext
authMethod This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeAuthMethod
azureAd This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeAzureAd
certificate This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeCertificate
commonName This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeCommonName
devicePosture This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeDevicePosture
email This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeEmail
emailDomain This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeEmailDomain
emailList This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeEmailList
everyone This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeEveryone
An empty object which matches on all users.
externalEvaluation This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeExternalEvaluation
geo This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeGeo
githubOrganization This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeGithubOrganization
group This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeGroup
gsuite This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeGsuite
ip This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeIp
ipList This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeIpList
loginMethod This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeLoginMethod
okta This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeOkta
saml This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeSaml
serviceToken This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeServiceToken
any_valid_service_token This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeAnyValidServiceToken
An empty object which matches on all service tokens.
auth_context This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeAuthContext
auth_method This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeAuthMethod
azure_ad This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeAzureAd
certificate This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeCertificate
common_name This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeCommonName
device_posture This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeDevicePosture
email This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeEmail
email_domain This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeEmailDomain
email_list This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeEmailList
everyone This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeEveryone
An empty object which matches on all users.
external_evaluation This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeExternalEvaluation
geo This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeGeo
github_organization This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeGithubOrganization
group This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeGroup
gsuite This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeGsuite
ip This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeIp
ip_list This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeIpList
login_method This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeLoginMethod
okta This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeOkta
saml This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeSaml
service_token This property is required. GetZeroTrustAccessApplicationsResultPolicyIncludeServiceToken
anyValidServiceToken This property is required. Property Map
An empty object which matches on all service tokens.
authContext This property is required. Property Map
authMethod This property is required. Property Map
azureAd This property is required. Property Map
certificate This property is required. Property Map
commonName This property is required. Property Map
devicePosture This property is required. Property Map
email This property is required. Property Map
emailDomain This property is required. Property Map
emailList This property is required. Property Map
everyone This property is required. Property Map
An empty object which matches on all users.
externalEvaluation This property is required. Property Map
geo This property is required. Property Map
githubOrganization This property is required. Property Map
group This property is required. Property Map
gsuite This property is required. Property Map
ip This property is required. Property Map
ipList This property is required. Property Map
loginMethod This property is required. Property Map
okta This property is required. Property Map
saml This property is required. Property Map
serviceToken This property is required. Property Map

GetZeroTrustAccessApplicationsResultPolicyIncludeAuthContext

AcId This property is required. string
The ACID of an Authentication context.
Id This property is required. string
The ID of an Authentication context.
IdentityProviderId This property is required. string
The ID of your Azure identity provider.
AcId This property is required. string
The ACID of an Authentication context.
Id This property is required. string
The ID of an Authentication context.
IdentityProviderId This property is required. string
The ID of your Azure identity provider.
acId This property is required. String
The ACID of an Authentication context.
id This property is required. String
The ID of an Authentication context.
identityProviderId This property is required. String
The ID of your Azure identity provider.
acId This property is required. string
The ACID of an Authentication context.
id This property is required. string
The ID of an Authentication context.
identityProviderId This property is required. string
The ID of your Azure identity provider.
ac_id This property is required. str
The ACID of an Authentication context.
id This property is required. str
The ID of an Authentication context.
identity_provider_id This property is required. str
The ID of your Azure identity provider.
acId This property is required. String
The ACID of an Authentication context.
id This property is required. String
The ID of an Authentication context.
identityProviderId This property is required. String
The ID of your Azure identity provider.

GetZeroTrustAccessApplicationsResultPolicyIncludeAuthMethod

AuthMethod This property is required. string
The type of authentication method https://datatracker.ietf.org/doc/html/rfc8176#section-2.
AuthMethod This property is required. string
The type of authentication method https://datatracker.ietf.org/doc/html/rfc8176#section-2.
authMethod This property is required. String
The type of authentication method https://datatracker.ietf.org/doc/html/rfc8176#section-2.
authMethod This property is required. string
The type of authentication method https://datatracker.ietf.org/doc/html/rfc8176#section-2.
auth_method This property is required. str
The type of authentication method https://datatracker.ietf.org/doc/html/rfc8176#section-2.
authMethod This property is required. String
The type of authentication method https://datatracker.ietf.org/doc/html/rfc8176#section-2.

GetZeroTrustAccessApplicationsResultPolicyIncludeAzureAd

Id This property is required. string
The ID of an Azure group.
IdentityProviderId This property is required. string
The ID of your Azure identity provider.
Id This property is required. string
The ID of an Azure group.
IdentityProviderId This property is required. string
The ID of your Azure identity provider.
id This property is required. String
The ID of an Azure group.
identityProviderId This property is required. String
The ID of your Azure identity provider.
id This property is required. string
The ID of an Azure group.
identityProviderId This property is required. string
The ID of your Azure identity provider.
id This property is required. str
The ID of an Azure group.
identity_provider_id This property is required. str
The ID of your Azure identity provider.
id This property is required. String
The ID of an Azure group.
identityProviderId This property is required. String
The ID of your Azure identity provider.

GetZeroTrustAccessApplicationsResultPolicyIncludeCommonName

CommonName This property is required. string
The common name to match.
CommonName This property is required. string
The common name to match.
commonName This property is required. String
The common name to match.
commonName This property is required. string
The common name to match.
common_name This property is required. str
The common name to match.
commonName This property is required. String
The common name to match.

GetZeroTrustAccessApplicationsResultPolicyIncludeDevicePosture

IntegrationUid This property is required. string
The ID of a device posture integration.
IntegrationUid This property is required. string
The ID of a device posture integration.
integrationUid This property is required. String
The ID of a device posture integration.
integrationUid This property is required. string
The ID of a device posture integration.
integration_uid This property is required. str
The ID of a device posture integration.
integrationUid This property is required. String
The ID of a device posture integration.

GetZeroTrustAccessApplicationsResultPolicyIncludeEmail

Email This property is required. string
The email of the user.
Email This property is required. string
The email of the user.
email This property is required. String
The email of the user.
email This property is required. string
The email of the user.
email This property is required. str
The email of the user.
email This property is required. String
The email of the user.

GetZeroTrustAccessApplicationsResultPolicyIncludeEmailDomain

Domain This property is required. string
The email domain to match.
Domain This property is required. string
The email domain to match.
domain This property is required. String
The email domain to match.
domain This property is required. string
The email domain to match.
domain This property is required. str
The email domain to match.
domain This property is required. String
The email domain to match.

GetZeroTrustAccessApplicationsResultPolicyIncludeEmailList

Id This property is required. string
The ID of a previously created email list.
Id This property is required. string
The ID of a previously created email list.
id This property is required. String
The ID of a previously created email list.
id This property is required. string
The ID of a previously created email list.
id This property is required. str
The ID of a previously created email list.
id This property is required. String
The ID of a previously created email list.

GetZeroTrustAccessApplicationsResultPolicyIncludeExternalEvaluation

EvaluateUrl This property is required. string
The API endpoint containing your business logic.
KeysUrl This property is required. string
The API endpoint containing the key that Access uses to verify that the response came from your API.
EvaluateUrl This property is required. string
The API endpoint containing your business logic.
KeysUrl This property is required. string
The API endpoint containing the key that Access uses to verify that the response came from your API.
evaluateUrl This property is required. String
The API endpoint containing your business logic.
keysUrl This property is required. String
The API endpoint containing the key that Access uses to verify that the response came from your API.
evaluateUrl This property is required. string
The API endpoint containing your business logic.
keysUrl This property is required. string
The API endpoint containing the key that Access uses to verify that the response came from your API.
evaluate_url This property is required. str
The API endpoint containing your business logic.
keys_url This property is required. str
The API endpoint containing the key that Access uses to verify that the response came from your API.
evaluateUrl This property is required. String
The API endpoint containing your business logic.
keysUrl This property is required. String
The API endpoint containing the key that Access uses to verify that the response came from your API.

GetZeroTrustAccessApplicationsResultPolicyIncludeGeo

CountryCode This property is required. string
The country code that should be matched.
CountryCode This property is required. string
The country code that should be matched.
countryCode This property is required. String
The country code that should be matched.
countryCode This property is required. string
The country code that should be matched.
country_code This property is required. str
The country code that should be matched.
countryCode This property is required. String
The country code that should be matched.

GetZeroTrustAccessApplicationsResultPolicyIncludeGithubOrganization

IdentityProviderId This property is required. string
The ID of your Github identity provider.
Name This property is required. string
The name of the organization.
Team This property is required. string
The name of the team
IdentityProviderId This property is required. string
The ID of your Github identity provider.
Name This property is required. string
The name of the organization.
Team This property is required. string
The name of the team
identityProviderId This property is required. String
The ID of your Github identity provider.
name This property is required. String
The name of the organization.
team This property is required. String
The name of the team
identityProviderId This property is required. string
The ID of your Github identity provider.
name This property is required. string
The name of the organization.
team This property is required. string
The name of the team
identity_provider_id This property is required. str
The ID of your Github identity provider.
name This property is required. str
The name of the organization.
team This property is required. str
The name of the team
identityProviderId This property is required. String
The ID of your Github identity provider.
name This property is required. String
The name of the organization.
team This property is required. String
The name of the team

GetZeroTrustAccessApplicationsResultPolicyIncludeGroup

Id This property is required. string
The ID of a previously created Access group.
Id This property is required. string
The ID of a previously created Access group.
id This property is required. String
The ID of a previously created Access group.
id This property is required. string
The ID of a previously created Access group.
id This property is required. str
The ID of a previously created Access group.
id This property is required. String
The ID of a previously created Access group.

GetZeroTrustAccessApplicationsResultPolicyIncludeGsuite

Email This property is required. string
The email of the Google Workspace group.
IdentityProviderId This property is required. string
The ID of your Google Workspace identity provider.
Email This property is required. string
The email of the Google Workspace group.
IdentityProviderId This property is required. string
The ID of your Google Workspace identity provider.
email This property is required. String
The email of the Google Workspace group.
identityProviderId This property is required. String
The ID of your Google Workspace identity provider.
email This property is required. string
The email of the Google Workspace group.
identityProviderId This property is required. string
The ID of your Google Workspace identity provider.
email This property is required. str
The email of the Google Workspace group.
identity_provider_id This property is required. str
The ID of your Google Workspace identity provider.
email This property is required. String
The email of the Google Workspace group.
identityProviderId This property is required. String
The ID of your Google Workspace identity provider.

GetZeroTrustAccessApplicationsResultPolicyIncludeIp

Ip This property is required. string
An IPv4 or IPv6 CIDR block.
Ip This property is required. string
An IPv4 or IPv6 CIDR block.
ip This property is required. String
An IPv4 or IPv6 CIDR block.
ip This property is required. string
An IPv4 or IPv6 CIDR block.
ip This property is required. str
An IPv4 or IPv6 CIDR block.
ip This property is required. String
An IPv4 or IPv6 CIDR block.

GetZeroTrustAccessApplicationsResultPolicyIncludeIpList

Id This property is required. string
The ID of a previously created IP list.
Id This property is required. string
The ID of a previously created IP list.
id This property is required. String
The ID of a previously created IP list.
id This property is required. string
The ID of a previously created IP list.
id This property is required. str
The ID of a previously created IP list.
id This property is required. String
The ID of a previously created IP list.

GetZeroTrustAccessApplicationsResultPolicyIncludeLoginMethod

Id This property is required. string
The ID of an identity provider.
Id This property is required. string
The ID of an identity provider.
id This property is required. String
The ID of an identity provider.
id This property is required. string
The ID of an identity provider.
id This property is required. str
The ID of an identity provider.
id This property is required. String
The ID of an identity provider.

GetZeroTrustAccessApplicationsResultPolicyIncludeOkta

IdentityProviderId This property is required. string
The ID of your Okta identity provider.
Name This property is required. string
The name of the Okta group.
IdentityProviderId This property is required. string
The ID of your Okta identity provider.
Name This property is required. string
The name of the Okta group.
identityProviderId This property is required. String
The ID of your Okta identity provider.
name This property is required. String
The name of the Okta group.
identityProviderId This property is required. string
The ID of your Okta identity provider.
name This property is required. string
The name of the Okta group.
identity_provider_id This property is required. str
The ID of your Okta identity provider.
name This property is required. str
The name of the Okta group.
identityProviderId This property is required. String
The ID of your Okta identity provider.
name This property is required. String
The name of the Okta group.

GetZeroTrustAccessApplicationsResultPolicyIncludeSaml

AttributeName This property is required. string
The name of the SAML attribute.
AttributeValue This property is required. string
The SAML attribute value to look for.
IdentityProviderId This property is required. string
The ID of your SAML identity provider.
AttributeName This property is required. string
The name of the SAML attribute.
AttributeValue This property is required. string
The SAML attribute value to look for.
IdentityProviderId This property is required. string
The ID of your SAML identity provider.
attributeName This property is required. String
The name of the SAML attribute.
attributeValue This property is required. String
The SAML attribute value to look for.
identityProviderId This property is required. String
The ID of your SAML identity provider.
attributeName This property is required. string
The name of the SAML attribute.
attributeValue This property is required. string
The SAML attribute value to look for.
identityProviderId This property is required. string
The ID of your SAML identity provider.
attribute_name This property is required. str
The name of the SAML attribute.
attribute_value This property is required. str
The SAML attribute value to look for.
identity_provider_id This property is required. str
The ID of your SAML identity provider.
attributeName This property is required. String
The name of the SAML attribute.
attributeValue This property is required. String
The SAML attribute value to look for.
identityProviderId This property is required. String
The ID of your SAML identity provider.

GetZeroTrustAccessApplicationsResultPolicyIncludeServiceToken

TokenId This property is required. string
The ID of a Service Token.
TokenId This property is required. string
The ID of a Service Token.
tokenId This property is required. String
The ID of a Service Token.
tokenId This property is required. string
The ID of a Service Token.
token_id This property is required. str
The ID of a Service Token.
tokenId This property is required. String
The ID of a Service Token.

GetZeroTrustAccessApplicationsResultPolicyRequire

AnyValidServiceToken This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireAnyValidServiceToken
An empty object which matches on all service tokens.
AuthContext This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireAuthContext
AuthMethod This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireAuthMethod
AzureAd This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireAzureAd
Certificate This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireCertificate
CommonName This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireCommonName
DevicePosture This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireDevicePosture
Email This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireEmail
EmailDomain This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireEmailDomain
EmailList This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireEmailList
Everyone This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireEveryone
An empty object which matches on all users.
ExternalEvaluation This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireExternalEvaluation
Geo This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireGeo
GithubOrganization This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireGithubOrganization
Group This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireGroup
Gsuite This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireGsuite
Ip This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireIp
IpList This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireIpList
LoginMethod This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireLoginMethod
Okta This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireOkta
Saml This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireSaml
ServiceToken This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireServiceToken
AnyValidServiceToken This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireAnyValidServiceToken
An empty object which matches on all service tokens.
AuthContext This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireAuthContext
AuthMethod This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireAuthMethod
AzureAd This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireAzureAd
Certificate This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireCertificate
CommonName This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireCommonName
DevicePosture This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireDevicePosture
Email This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireEmail
EmailDomain This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireEmailDomain
EmailList This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireEmailList
Everyone This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireEveryone
An empty object which matches on all users.
ExternalEvaluation This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireExternalEvaluation
Geo This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireGeo
GithubOrganization This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireGithubOrganization
Group This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireGroup
Gsuite This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireGsuite
Ip This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireIp
IpList This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireIpList
LoginMethod This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireLoginMethod
Okta This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireOkta
Saml This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireSaml
ServiceToken This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireServiceToken
anyValidServiceToken This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireAnyValidServiceToken
An empty object which matches on all service tokens.
authContext This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireAuthContext
authMethod This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireAuthMethod
azureAd This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireAzureAd
certificate This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireCertificate
commonName This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireCommonName
devicePosture This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireDevicePosture
email This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireEmail
emailDomain This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireEmailDomain
emailList This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireEmailList
everyone This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireEveryone
An empty object which matches on all users.
externalEvaluation This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireExternalEvaluation
geo This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireGeo
githubOrganization This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireGithubOrganization
group This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireGroup
gsuite This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireGsuite
ip This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireIp
ipList This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireIpList
loginMethod This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireLoginMethod
okta This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireOkta
saml This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireSaml
serviceToken This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireServiceToken
anyValidServiceToken This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireAnyValidServiceToken
An empty object which matches on all service tokens.
authContext This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireAuthContext
authMethod This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireAuthMethod
azureAd This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireAzureAd
certificate This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireCertificate
commonName This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireCommonName
devicePosture This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireDevicePosture
email This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireEmail
emailDomain This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireEmailDomain
emailList This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireEmailList
everyone This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireEveryone
An empty object which matches on all users.
externalEvaluation This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireExternalEvaluation
geo This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireGeo
githubOrganization This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireGithubOrganization
group This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireGroup
gsuite This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireGsuite
ip This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireIp
ipList This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireIpList
loginMethod This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireLoginMethod
okta This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireOkta
saml This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireSaml
serviceToken This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireServiceToken
any_valid_service_token This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireAnyValidServiceToken
An empty object which matches on all service tokens.
auth_context This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireAuthContext
auth_method This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireAuthMethod
azure_ad This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireAzureAd
certificate This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireCertificate
common_name This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireCommonName
device_posture This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireDevicePosture
email This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireEmail
email_domain This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireEmailDomain
email_list This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireEmailList
everyone This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireEveryone
An empty object which matches on all users.
external_evaluation This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireExternalEvaluation
geo This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireGeo
github_organization This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireGithubOrganization
group This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireGroup
gsuite This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireGsuite
ip This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireIp
ip_list This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireIpList
login_method This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireLoginMethod
okta This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireOkta
saml This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireSaml
service_token This property is required. GetZeroTrustAccessApplicationsResultPolicyRequireServiceToken
anyValidServiceToken This property is required. Property Map
An empty object which matches on all service tokens.
authContext This property is required. Property Map
authMethod This property is required. Property Map
azureAd This property is required. Property Map
certificate This property is required. Property Map
commonName This property is required. Property Map
devicePosture This property is required. Property Map
email This property is required. Property Map
emailDomain This property is required. Property Map
emailList This property is required. Property Map
everyone This property is required. Property Map
An empty object which matches on all users.
externalEvaluation This property is required. Property Map
geo This property is required. Property Map
githubOrganization This property is required. Property Map
group This property is required. Property Map
gsuite This property is required. Property Map
ip This property is required. Property Map
ipList This property is required. Property Map
loginMethod This property is required. Property Map
okta This property is required. Property Map
saml This property is required. Property Map
serviceToken This property is required. Property Map

GetZeroTrustAccessApplicationsResultPolicyRequireAuthContext

AcId This property is required. string
The ACID of an Authentication context.
Id This property is required. string
The ID of an Authentication context.
IdentityProviderId This property is required. string
The ID of your Azure identity provider.
AcId This property is required. string
The ACID of an Authentication context.
Id This property is required. string
The ID of an Authentication context.
IdentityProviderId This property is required. string
The ID of your Azure identity provider.
acId This property is required. String
The ACID of an Authentication context.
id This property is required. String
The ID of an Authentication context.
identityProviderId This property is required. String
The ID of your Azure identity provider.
acId This property is required. string
The ACID of an Authentication context.
id This property is required. string
The ID of an Authentication context.
identityProviderId This property is required. string
The ID of your Azure identity provider.
ac_id This property is required. str
The ACID of an Authentication context.
id This property is required. str
The ID of an Authentication context.
identity_provider_id This property is required. str
The ID of your Azure identity provider.
acId This property is required. String
The ACID of an Authentication context.
id This property is required. String
The ID of an Authentication context.
identityProviderId This property is required. String
The ID of your Azure identity provider.

GetZeroTrustAccessApplicationsResultPolicyRequireAuthMethod

AuthMethod This property is required. string
The type of authentication method https://datatracker.ietf.org/doc/html/rfc8176#section-2.
AuthMethod This property is required. string
The type of authentication method https://datatracker.ietf.org/doc/html/rfc8176#section-2.
authMethod This property is required. String
The type of authentication method https://datatracker.ietf.org/doc/html/rfc8176#section-2.
authMethod This property is required. string
The type of authentication method https://datatracker.ietf.org/doc/html/rfc8176#section-2.
auth_method This property is required. str
The type of authentication method https://datatracker.ietf.org/doc/html/rfc8176#section-2.
authMethod This property is required. String
The type of authentication method https://datatracker.ietf.org/doc/html/rfc8176#section-2.

GetZeroTrustAccessApplicationsResultPolicyRequireAzureAd

Id This property is required. string
The ID of an Azure group.
IdentityProviderId This property is required. string
The ID of your Azure identity provider.
Id This property is required. string
The ID of an Azure group.
IdentityProviderId This property is required. string
The ID of your Azure identity provider.
id This property is required. String
The ID of an Azure group.
identityProviderId This property is required. String
The ID of your Azure identity provider.
id This property is required. string
The ID of an Azure group.
identityProviderId This property is required. string
The ID of your Azure identity provider.
id This property is required. str
The ID of an Azure group.
identity_provider_id This property is required. str
The ID of your Azure identity provider.
id This property is required. String
The ID of an Azure group.
identityProviderId This property is required. String
The ID of your Azure identity provider.

GetZeroTrustAccessApplicationsResultPolicyRequireCommonName

CommonName This property is required. string
The common name to match.
CommonName This property is required. string
The common name to match.
commonName This property is required. String
The common name to match.
commonName This property is required. string
The common name to match.
common_name This property is required. str
The common name to match.
commonName This property is required. String
The common name to match.

GetZeroTrustAccessApplicationsResultPolicyRequireDevicePosture

IntegrationUid This property is required. string
The ID of a device posture integration.
IntegrationUid This property is required. string
The ID of a device posture integration.
integrationUid This property is required. String
The ID of a device posture integration.
integrationUid This property is required. string
The ID of a device posture integration.
integration_uid This property is required. str
The ID of a device posture integration.
integrationUid This property is required. String
The ID of a device posture integration.

GetZeroTrustAccessApplicationsResultPolicyRequireEmail

Email This property is required. string
The email of the user.
Email This property is required. string
The email of the user.
email This property is required. String
The email of the user.
email This property is required. string
The email of the user.
email This property is required. str
The email of the user.
email This property is required. String
The email of the user.

GetZeroTrustAccessApplicationsResultPolicyRequireEmailDomain

Domain This property is required. string
The email domain to match.
Domain This property is required. string
The email domain to match.
domain This property is required. String
The email domain to match.
domain This property is required. string
The email domain to match.
domain This property is required. str
The email domain to match.
domain This property is required. String
The email domain to match.

GetZeroTrustAccessApplicationsResultPolicyRequireEmailList

Id This property is required. string
The ID of a previously created email list.
Id This property is required. string
The ID of a previously created email list.
id This property is required. String
The ID of a previously created email list.
id This property is required. string
The ID of a previously created email list.
id This property is required. str
The ID of a previously created email list.
id This property is required. String
The ID of a previously created email list.

GetZeroTrustAccessApplicationsResultPolicyRequireExternalEvaluation

EvaluateUrl This property is required. string
The API endpoint containing your business logic.
KeysUrl This property is required. string
The API endpoint containing the key that Access uses to verify that the response came from your API.
EvaluateUrl This property is required. string
The API endpoint containing your business logic.
KeysUrl This property is required. string
The API endpoint containing the key that Access uses to verify that the response came from your API.
evaluateUrl This property is required. String
The API endpoint containing your business logic.
keysUrl This property is required. String
The API endpoint containing the key that Access uses to verify that the response came from your API.
evaluateUrl This property is required. string
The API endpoint containing your business logic.
keysUrl This property is required. string
The API endpoint containing the key that Access uses to verify that the response came from your API.
evaluate_url This property is required. str
The API endpoint containing your business logic.
keys_url This property is required. str
The API endpoint containing the key that Access uses to verify that the response came from your API.
evaluateUrl This property is required. String
The API endpoint containing your business logic.
keysUrl This property is required. String
The API endpoint containing the key that Access uses to verify that the response came from your API.

GetZeroTrustAccessApplicationsResultPolicyRequireGeo

CountryCode This property is required. string
The country code that should be matched.
CountryCode This property is required. string
The country code that should be matched.
countryCode This property is required. String
The country code that should be matched.
countryCode This property is required. string
The country code that should be matched.
country_code This property is required. str
The country code that should be matched.
countryCode This property is required. String
The country code that should be matched.

GetZeroTrustAccessApplicationsResultPolicyRequireGithubOrganization

IdentityProviderId This property is required. string
The ID of your Github identity provider.
Name This property is required. string
The name of the organization.
Team This property is required. string
The name of the team
IdentityProviderId This property is required. string
The ID of your Github identity provider.
Name This property is required. string
The name of the organization.
Team This property is required. string
The name of the team
identityProviderId This property is required. String
The ID of your Github identity provider.
name This property is required. String
The name of the organization.
team This property is required. String
The name of the team
identityProviderId This property is required. string
The ID of your Github identity provider.
name This property is required. string
The name of the organization.
team This property is required. string
The name of the team
identity_provider_id This property is required. str
The ID of your Github identity provider.
name This property is required. str
The name of the organization.
team This property is required. str
The name of the team
identityProviderId This property is required. String
The ID of your Github identity provider.
name This property is required. String
The name of the organization.
team This property is required. String
The name of the team

GetZeroTrustAccessApplicationsResultPolicyRequireGroup

Id This property is required. string
The ID of a previously created Access group.
Id This property is required. string
The ID of a previously created Access group.
id This property is required. String
The ID of a previously created Access group.
id This property is required. string
The ID of a previously created Access group.
id This property is required. str
The ID of a previously created Access group.
id This property is required. String
The ID of a previously created Access group.

GetZeroTrustAccessApplicationsResultPolicyRequireGsuite

Email This property is required. string
The email of the Google Workspace group.
IdentityProviderId This property is required. string
The ID of your Google Workspace identity provider.
Email This property is required. string
The email of the Google Workspace group.
IdentityProviderId This property is required. string
The ID of your Google Workspace identity provider.
email This property is required. String
The email of the Google Workspace group.
identityProviderId This property is required. String
The ID of your Google Workspace identity provider.
email This property is required. string
The email of the Google Workspace group.
identityProviderId This property is required. string
The ID of your Google Workspace identity provider.
email This property is required. str
The email of the Google Workspace group.
identity_provider_id This property is required. str
The ID of your Google Workspace identity provider.
email This property is required. String
The email of the Google Workspace group.
identityProviderId This property is required. String
The ID of your Google Workspace identity provider.

GetZeroTrustAccessApplicationsResultPolicyRequireIp

Ip This property is required. string
An IPv4 or IPv6 CIDR block.
Ip This property is required. string
An IPv4 or IPv6 CIDR block.
ip This property is required. String
An IPv4 or IPv6 CIDR block.
ip This property is required. string
An IPv4 or IPv6 CIDR block.
ip This property is required. str
An IPv4 or IPv6 CIDR block.
ip This property is required. String
An IPv4 or IPv6 CIDR block.

GetZeroTrustAccessApplicationsResultPolicyRequireIpList

Id This property is required. string
The ID of a previously created IP list.
Id This property is required. string
The ID of a previously created IP list.
id This property is required. String
The ID of a previously created IP list.
id This property is required. string
The ID of a previously created IP list.
id This property is required. str
The ID of a previously created IP list.
id This property is required. String
The ID of a previously created IP list.

GetZeroTrustAccessApplicationsResultPolicyRequireLoginMethod

Id This property is required. string
The ID of an identity provider.
Id This property is required. string
The ID of an identity provider.
id This property is required. String
The ID of an identity provider.
id This property is required. string
The ID of an identity provider.
id This property is required. str
The ID of an identity provider.
id This property is required. String
The ID of an identity provider.

GetZeroTrustAccessApplicationsResultPolicyRequireOkta

IdentityProviderId This property is required. string
The ID of your Okta identity provider.
Name This property is required. string
The name of the Okta group.
IdentityProviderId This property is required. string
The ID of your Okta identity provider.
Name This property is required. string
The name of the Okta group.
identityProviderId This property is required. String
The ID of your Okta identity provider.
name This property is required. String
The name of the Okta group.
identityProviderId This property is required. string
The ID of your Okta identity provider.
name This property is required. string
The name of the Okta group.
identity_provider_id This property is required. str
The ID of your Okta identity provider.
name This property is required. str
The name of the Okta group.
identityProviderId This property is required. String
The ID of your Okta identity provider.
name This property is required. String
The name of the Okta group.

GetZeroTrustAccessApplicationsResultPolicyRequireSaml

AttributeName This property is required. string
The name of the SAML attribute.
AttributeValue This property is required. string
The SAML attribute value to look for.
IdentityProviderId This property is required. string
The ID of your SAML identity provider.
AttributeName This property is required. string
The name of the SAML attribute.
AttributeValue This property is required. string
The SAML attribute value to look for.
IdentityProviderId This property is required. string
The ID of your SAML identity provider.
attributeName This property is required. String
The name of the SAML attribute.
attributeValue This property is required. String
The SAML attribute value to look for.
identityProviderId This property is required. String
The ID of your SAML identity provider.
attributeName This property is required. string
The name of the SAML attribute.
attributeValue This property is required. string
The SAML attribute value to look for.
identityProviderId This property is required. string
The ID of your SAML identity provider.
attribute_name This property is required. str
The name of the SAML attribute.
attribute_value This property is required. str
The SAML attribute value to look for.
identity_provider_id This property is required. str
The ID of your SAML identity provider.
attributeName This property is required. String
The name of the SAML attribute.
attributeValue This property is required. String
The SAML attribute value to look for.
identityProviderId This property is required. String
The ID of your SAML identity provider.

GetZeroTrustAccessApplicationsResultPolicyRequireServiceToken

TokenId This property is required. string
The ID of a Service Token.
TokenId This property is required. string
The ID of a Service Token.
tokenId This property is required. String
The ID of a Service Token.
tokenId This property is required. string
The ID of a Service Token.
token_id This property is required. str
The ID of a Service Token.
tokenId This property is required. String
The ID of a Service Token.

GetZeroTrustAccessApplicationsResultSaasApp

AccessTokenLifetime This property is required. string
The lifetime of the OIDC Access Token after creation. Valid units are m,h. Must be greater than or equal to 1m and less than or equal to 24h.
AllowPkceWithoutClientSecret This property is required. bool
If client secret should be required on the token endpoint when authorizationcodewith_pkce grant is used.
AppLauncherUrl This property is required. string
The URL where this applications tile redirects users
AuthType This property is required. string
Optional identifier indicating the authentication protocol used for the saas app. Required for OIDC. Default if unset is "saml" Available values: "saml", "oidc".
ClientId This property is required. string
The application client id
ClientSecret This property is required. string
The application client secret, only returned on POST request.
ConsumerServiceUrl This property is required. string
The service provider's endpoint that is responsible for receiving and parsing a SAML assertion.
CreatedAt This property is required. string
CustomAttributes This property is required. List<GetZeroTrustAccessApplicationsResultSaasAppCustomAttribute>
CustomClaims This property is required. List<GetZeroTrustAccessApplicationsResultSaasAppCustomClaim>
DefaultRelayState This property is required. string
The URL that the user will be redirected to after a successful login for IDP initiated logins.
GrantTypes This property is required. List<string>
The OIDC flows supported by this application
GroupFilterRegex This property is required. string
A regex to filter Cloudflare groups returned in ID token and userinfo endpoint
HybridAndImplicitOptions This property is required. GetZeroTrustAccessApplicationsResultSaasAppHybridAndImplicitOptions
IdpEntityId This property is required. string
The unique identifier for your SaaS application.
NameIdFormat This property is required. string
The format of the name identifier sent to the SaaS application. Available values: "id", "email".
NameIdTransformJsonata This property is required. string
A JSONata expression that transforms an application's user identities into a NameID value for its SAML assertion. This expression should evaluate to a singular string. The output of this expression can override the name_id_format setting.
PublicKey This property is required. string
The Access public certificate that will be used to verify your identity.
RedirectUris This property is required. List<string>
The permitted URL's for Cloudflare to return Authorization codes and Access/ID tokens
RefreshTokenOptions This property is required. GetZeroTrustAccessApplicationsResultSaasAppRefreshTokenOptions
SamlAttributeTransformJsonata This property is required. string
A JSONata expression that transforms an application's user identities into attribute assertions in the SAML response. The expression can transform id, email, name, and groups values. It can also transform fields listed in the samlattributes or oidcfields of the identity provider used to authenticate. The output of this expression must be a JSON object.
Scopes This property is required. List<string>
Define the user information shared with access, "offline_access" scope will be automatically enabled if refresh tokens are enabled
SpEntityId This property is required. string
A globally unique name for an identity or service provider.
SsoEndpoint This property is required. string
The endpoint where your SaaS application will send login requests.
UpdatedAt This property is required. string
AccessTokenLifetime This property is required. string
The lifetime of the OIDC Access Token after creation. Valid units are m,h. Must be greater than or equal to 1m and less than or equal to 24h.
AllowPkceWithoutClientSecret This property is required. bool
If client secret should be required on the token endpoint when authorizationcodewith_pkce grant is used.
AppLauncherUrl This property is required. string
The URL where this applications tile redirects users
AuthType This property is required. string
Optional identifier indicating the authentication protocol used for the saas app. Required for OIDC. Default if unset is "saml" Available values: "saml", "oidc".
ClientId This property is required. string
The application client id
ClientSecret This property is required. string
The application client secret, only returned on POST request.
ConsumerServiceUrl This property is required. string
The service provider's endpoint that is responsible for receiving and parsing a SAML assertion.
CreatedAt This property is required. string
CustomAttributes This property is required. []GetZeroTrustAccessApplicationsResultSaasAppCustomAttribute
CustomClaims This property is required. []GetZeroTrustAccessApplicationsResultSaasAppCustomClaim
DefaultRelayState This property is required. string
The URL that the user will be redirected to after a successful login for IDP initiated logins.
GrantTypes This property is required. []string
The OIDC flows supported by this application
GroupFilterRegex This property is required. string
A regex to filter Cloudflare groups returned in ID token and userinfo endpoint
HybridAndImplicitOptions This property is required. GetZeroTrustAccessApplicationsResultSaasAppHybridAndImplicitOptions
IdpEntityId This property is required. string
The unique identifier for your SaaS application.
NameIdFormat This property is required. string
The format of the name identifier sent to the SaaS application. Available values: "id", "email".
NameIdTransformJsonata This property is required. string
A JSONata expression that transforms an application's user identities into a NameID value for its SAML assertion. This expression should evaluate to a singular string. The output of this expression can override the name_id_format setting.
PublicKey This property is required. string
The Access public certificate that will be used to verify your identity.
RedirectUris This property is required. []string
The permitted URL's for Cloudflare to return Authorization codes and Access/ID tokens
RefreshTokenOptions This property is required. GetZeroTrustAccessApplicationsResultSaasAppRefreshTokenOptions
SamlAttributeTransformJsonata This property is required. string
A JSONata expression that transforms an application's user identities into attribute assertions in the SAML response. The expression can transform id, email, name, and groups values. It can also transform fields listed in the samlattributes or oidcfields of the identity provider used to authenticate. The output of this expression must be a JSON object.
Scopes This property is required. []string
Define the user information shared with access, "offline_access" scope will be automatically enabled if refresh tokens are enabled
SpEntityId This property is required. string
A globally unique name for an identity or service provider.
SsoEndpoint This property is required. string
The endpoint where your SaaS application will send login requests.
UpdatedAt This property is required. string
accessTokenLifetime This property is required. String
The lifetime of the OIDC Access Token after creation. Valid units are m,h. Must be greater than or equal to 1m and less than or equal to 24h.
allowPkceWithoutClientSecret This property is required. Boolean
If client secret should be required on the token endpoint when authorizationcodewith_pkce grant is used.
appLauncherUrl This property is required. String
The URL where this applications tile redirects users
authType This property is required. String
Optional identifier indicating the authentication protocol used for the saas app. Required for OIDC. Default if unset is "saml" Available values: "saml", "oidc".
clientId This property is required. String
The application client id
clientSecret This property is required. String
The application client secret, only returned on POST request.
consumerServiceUrl This property is required. String
The service provider's endpoint that is responsible for receiving and parsing a SAML assertion.
createdAt This property is required. String
customAttributes This property is required. List<GetZeroTrustAccessApplicationsResultSaasAppCustomAttribute>
customClaims This property is required. List<GetZeroTrustAccessApplicationsResultSaasAppCustomClaim>
defaultRelayState This property is required. String
The URL that the user will be redirected to after a successful login for IDP initiated logins.
grantTypes This property is required. List<String>
The OIDC flows supported by this application
groupFilterRegex This property is required. String
A regex to filter Cloudflare groups returned in ID token and userinfo endpoint
hybridAndImplicitOptions This property is required. GetZeroTrustAccessApplicationsResultSaasAppHybridAndImplicitOptions
idpEntityId This property is required. String
The unique identifier for your SaaS application.
nameIdFormat This property is required. String
The format of the name identifier sent to the SaaS application. Available values: "id", "email".
nameIdTransformJsonata This property is required. String
A JSONata expression that transforms an application's user identities into a NameID value for its SAML assertion. This expression should evaluate to a singular string. The output of this expression can override the name_id_format setting.
publicKey This property is required. String
The Access public certificate that will be used to verify your identity.
redirectUris This property is required. List<String>
The permitted URL's for Cloudflare to return Authorization codes and Access/ID tokens
refreshTokenOptions This property is required. GetZeroTrustAccessApplicationsResultSaasAppRefreshTokenOptions
samlAttributeTransformJsonata This property is required. String
A JSONata expression that transforms an application's user identities into attribute assertions in the SAML response. The expression can transform id, email, name, and groups values. It can also transform fields listed in the samlattributes or oidcfields of the identity provider used to authenticate. The output of this expression must be a JSON object.
scopes This property is required. List<String>
Define the user information shared with access, "offline_access" scope will be automatically enabled if refresh tokens are enabled
spEntityId This property is required. String
A globally unique name for an identity or service provider.
ssoEndpoint This property is required. String
The endpoint where your SaaS application will send login requests.
updatedAt This property is required. String
accessTokenLifetime This property is required. string
The lifetime of the OIDC Access Token after creation. Valid units are m,h. Must be greater than or equal to 1m and less than or equal to 24h.
allowPkceWithoutClientSecret This property is required. boolean
If client secret should be required on the token endpoint when authorizationcodewith_pkce grant is used.
appLauncherUrl This property is required. string
The URL where this applications tile redirects users
authType This property is required. string
Optional identifier indicating the authentication protocol used for the saas app. Required for OIDC. Default if unset is "saml" Available values: "saml", "oidc".
clientId This property is required. string
The application client id
clientSecret This property is required. string
The application client secret, only returned on POST request.
consumerServiceUrl This property is required. string
The service provider's endpoint that is responsible for receiving and parsing a SAML assertion.
createdAt This property is required. string
customAttributes This property is required. GetZeroTrustAccessApplicationsResultSaasAppCustomAttribute[]
customClaims This property is required. GetZeroTrustAccessApplicationsResultSaasAppCustomClaim[]
defaultRelayState This property is required. string
The URL that the user will be redirected to after a successful login for IDP initiated logins.
grantTypes This property is required. string[]
The OIDC flows supported by this application
groupFilterRegex This property is required. string
A regex to filter Cloudflare groups returned in ID token and userinfo endpoint
hybridAndImplicitOptions This property is required. GetZeroTrustAccessApplicationsResultSaasAppHybridAndImplicitOptions
idpEntityId This property is required. string
The unique identifier for your SaaS application.
nameIdFormat This property is required. string
The format of the name identifier sent to the SaaS application. Available values: "id", "email".
nameIdTransformJsonata This property is required. string
A JSONata expression that transforms an application's user identities into a NameID value for its SAML assertion. This expression should evaluate to a singular string. The output of this expression can override the name_id_format setting.
publicKey This property is required. string
The Access public certificate that will be used to verify your identity.
redirectUris This property is required. string[]
The permitted URL's for Cloudflare to return Authorization codes and Access/ID tokens
refreshTokenOptions This property is required. GetZeroTrustAccessApplicationsResultSaasAppRefreshTokenOptions
samlAttributeTransformJsonata This property is required. string
A JSONata expression that transforms an application's user identities into attribute assertions in the SAML response. The expression can transform id, email, name, and groups values. It can also transform fields listed in the samlattributes or oidcfields of the identity provider used to authenticate. The output of this expression must be a JSON object.
scopes This property is required. string[]
Define the user information shared with access, "offline_access" scope will be automatically enabled if refresh tokens are enabled
spEntityId This property is required. string
A globally unique name for an identity or service provider.
ssoEndpoint This property is required. string
The endpoint where your SaaS application will send login requests.
updatedAt This property is required. string
access_token_lifetime This property is required. str
The lifetime of the OIDC Access Token after creation. Valid units are m,h. Must be greater than or equal to 1m and less than or equal to 24h.
allow_pkce_without_client_secret This property is required. bool
If client secret should be required on the token endpoint when authorizationcodewith_pkce grant is used.
app_launcher_url This property is required. str
The URL where this applications tile redirects users
auth_type This property is required. str
Optional identifier indicating the authentication protocol used for the saas app. Required for OIDC. Default if unset is "saml" Available values: "saml", "oidc".
client_id This property is required. str
The application client id
client_secret This property is required. str
The application client secret, only returned on POST request.
consumer_service_url This property is required. str
The service provider's endpoint that is responsible for receiving and parsing a SAML assertion.
created_at This property is required. str
custom_attributes This property is required. Sequence[GetZeroTrustAccessApplicationsResultSaasAppCustomAttribute]
custom_claims This property is required. Sequence[GetZeroTrustAccessApplicationsResultSaasAppCustomClaim]
default_relay_state This property is required. str
The URL that the user will be redirected to after a successful login for IDP initiated logins.
grant_types This property is required. Sequence[str]
The OIDC flows supported by this application
group_filter_regex This property is required. str
A regex to filter Cloudflare groups returned in ID token and userinfo endpoint
hybrid_and_implicit_options This property is required. GetZeroTrustAccessApplicationsResultSaasAppHybridAndImplicitOptions
idp_entity_id This property is required. str
The unique identifier for your SaaS application.
name_id_format This property is required. str
The format of the name identifier sent to the SaaS application. Available values: "id", "email".
name_id_transform_jsonata This property is required. str
A JSONata expression that transforms an application's user identities into a NameID value for its SAML assertion. This expression should evaluate to a singular string. The output of this expression can override the name_id_format setting.
public_key This property is required. str
The Access public certificate that will be used to verify your identity.
redirect_uris This property is required. Sequence[str]
The permitted URL's for Cloudflare to return Authorization codes and Access/ID tokens
refresh_token_options This property is required. GetZeroTrustAccessApplicationsResultSaasAppRefreshTokenOptions
saml_attribute_transform_jsonata This property is required. str
A JSONata expression that transforms an application's user identities into attribute assertions in the SAML response. The expression can transform id, email, name, and groups values. It can also transform fields listed in the samlattributes or oidcfields of the identity provider used to authenticate. The output of this expression must be a JSON object.
scopes This property is required. Sequence[str]
Define the user information shared with access, "offline_access" scope will be automatically enabled if refresh tokens are enabled
sp_entity_id This property is required. str
A globally unique name for an identity or service provider.
sso_endpoint This property is required. str
The endpoint where your SaaS application will send login requests.
updated_at This property is required. str
accessTokenLifetime This property is required. String
The lifetime of the OIDC Access Token after creation. Valid units are m,h. Must be greater than or equal to 1m and less than or equal to 24h.
allowPkceWithoutClientSecret This property is required. Boolean
If client secret should be required on the token endpoint when authorizationcodewith_pkce grant is used.
appLauncherUrl This property is required. String
The URL where this applications tile redirects users
authType This property is required. String
Optional identifier indicating the authentication protocol used for the saas app. Required for OIDC. Default if unset is "saml" Available values: "saml", "oidc".
clientId This property is required. String
The application client id
clientSecret This property is required. String
The application client secret, only returned on POST request.
consumerServiceUrl This property is required. String
The service provider's endpoint that is responsible for receiving and parsing a SAML assertion.
createdAt This property is required. String
customAttributes This property is required. List<Property Map>
customClaims This property is required. List<Property Map>
defaultRelayState This property is required. String
The URL that the user will be redirected to after a successful login for IDP initiated logins.
grantTypes This property is required. List<String>
The OIDC flows supported by this application
groupFilterRegex This property is required. String
A regex to filter Cloudflare groups returned in ID token and userinfo endpoint
hybridAndImplicitOptions This property is required. Property Map
idpEntityId This property is required. String
The unique identifier for your SaaS application.
nameIdFormat This property is required. String
The format of the name identifier sent to the SaaS application. Available values: "id", "email".
nameIdTransformJsonata This property is required. String
A JSONata expression that transforms an application's user identities into a NameID value for its SAML assertion. This expression should evaluate to a singular string. The output of this expression can override the name_id_format setting.
publicKey This property is required. String
The Access public certificate that will be used to verify your identity.
redirectUris This property is required. List<String>
The permitted URL's for Cloudflare to return Authorization codes and Access/ID tokens
refreshTokenOptions This property is required. Property Map
samlAttributeTransformJsonata This property is required. String
A JSONata expression that transforms an application's user identities into attribute assertions in the SAML response. The expression can transform id, email, name, and groups values. It can also transform fields listed in the samlattributes or oidcfields of the identity provider used to authenticate. The output of this expression must be a JSON object.
scopes This property is required. List<String>
Define the user information shared with access, "offline_access" scope will be automatically enabled if refresh tokens are enabled
spEntityId This property is required. String
A globally unique name for an identity or service provider.
ssoEndpoint This property is required. String
The endpoint where your SaaS application will send login requests.
updatedAt This property is required. String

GetZeroTrustAccessApplicationsResultSaasAppCustomAttribute

FriendlyName This property is required. string
The SAML FriendlyName of the attribute.
Name This property is required. string
The name of the attribute.
NameFormat This property is required. string
A globally unique name for an identity or service provider. Available values: "urn:oasis:names:tc:SAML:2.0:attrname-format:unspecified", "urn:oasis:names:tc:SAML:2.0:attrname-format:basic", "urn:oasis:names:tc:SAML:2.0:attrname-format:uri".
Required This property is required. bool
If the attribute is required when building a SAML assertion.
Source This property is required. GetZeroTrustAccessApplicationsResultSaasAppCustomAttributeSource
FriendlyName This property is required. string
The SAML FriendlyName of the attribute.
Name This property is required. string
The name of the attribute.
NameFormat This property is required. string
A globally unique name for an identity or service provider. Available values: "urn:oasis:names:tc:SAML:2.0:attrname-format:unspecified", "urn:oasis:names:tc:SAML:2.0:attrname-format:basic", "urn:oasis:names:tc:SAML:2.0:attrname-format:uri".
Required This property is required. bool
If the attribute is required when building a SAML assertion.
Source This property is required. GetZeroTrustAccessApplicationsResultSaasAppCustomAttributeSource
friendlyName This property is required. String
The SAML FriendlyName of the attribute.
name This property is required. String
The name of the attribute.
nameFormat This property is required. String
A globally unique name for an identity or service provider. Available values: "urn:oasis:names:tc:SAML:2.0:attrname-format:unspecified", "urn:oasis:names:tc:SAML:2.0:attrname-format:basic", "urn:oasis:names:tc:SAML:2.0:attrname-format:uri".
required This property is required. Boolean
If the attribute is required when building a SAML assertion.
source This property is required. GetZeroTrustAccessApplicationsResultSaasAppCustomAttributeSource
friendlyName This property is required. string
The SAML FriendlyName of the attribute.
name This property is required. string
The name of the attribute.
nameFormat This property is required. string
A globally unique name for an identity or service provider. Available values: "urn:oasis:names:tc:SAML:2.0:attrname-format:unspecified", "urn:oasis:names:tc:SAML:2.0:attrname-format:basic", "urn:oasis:names:tc:SAML:2.0:attrname-format:uri".
required This property is required. boolean
If the attribute is required when building a SAML assertion.
source This property is required. GetZeroTrustAccessApplicationsResultSaasAppCustomAttributeSource
friendly_name This property is required. str
The SAML FriendlyName of the attribute.
name This property is required. str
The name of the attribute.
name_format This property is required. str
A globally unique name for an identity or service provider. Available values: "urn:oasis:names:tc:SAML:2.0:attrname-format:unspecified", "urn:oasis:names:tc:SAML:2.0:attrname-format:basic", "urn:oasis:names:tc:SAML:2.0:attrname-format:uri".
required This property is required. bool
If the attribute is required when building a SAML assertion.
source This property is required. GetZeroTrustAccessApplicationsResultSaasAppCustomAttributeSource
friendlyName This property is required. String
The SAML FriendlyName of the attribute.
name This property is required. String
The name of the attribute.
nameFormat This property is required. String
A globally unique name for an identity or service provider. Available values: "urn:oasis:names:tc:SAML:2.0:attrname-format:unspecified", "urn:oasis:names:tc:SAML:2.0:attrname-format:basic", "urn:oasis:names:tc:SAML:2.0:attrname-format:uri".
required This property is required. Boolean
If the attribute is required when building a SAML assertion.
source This property is required. Property Map

GetZeroTrustAccessApplicationsResultSaasAppCustomAttributeSource

Name This property is required. string
The name of the IdP attribute.
NameByIdps This property is required. List<GetZeroTrustAccessApplicationsResultSaasAppCustomAttributeSourceNameByIdp>
A mapping from IdP ID to attribute name.
Name This property is required. string
The name of the IdP attribute.
NameByIdps This property is required. []GetZeroTrustAccessApplicationsResultSaasAppCustomAttributeSourceNameByIdp
A mapping from IdP ID to attribute name.
name This property is required. String
The name of the IdP attribute.
nameByIdps This property is required. List<GetZeroTrustAccessApplicationsResultSaasAppCustomAttributeSourceNameByIdp>
A mapping from IdP ID to attribute name.
name This property is required. string
The name of the IdP attribute.
nameByIdps This property is required. GetZeroTrustAccessApplicationsResultSaasAppCustomAttributeSourceNameByIdp[]
A mapping from IdP ID to attribute name.
name This property is required. str
The name of the IdP attribute.
name_by_idps This property is required. Sequence[GetZeroTrustAccessApplicationsResultSaasAppCustomAttributeSourceNameByIdp]
A mapping from IdP ID to attribute name.
name This property is required. String
The name of the IdP attribute.
nameByIdps This property is required. List<Property Map>
A mapping from IdP ID to attribute name.

GetZeroTrustAccessApplicationsResultSaasAppCustomAttributeSourceNameByIdp

IdpId This property is required. string
The UID of the IdP.
SourceName This property is required. string
The name of the IdP provided attribute.
IdpId This property is required. string
The UID of the IdP.
SourceName This property is required. string
The name of the IdP provided attribute.
idpId This property is required. String
The UID of the IdP.
sourceName This property is required. String
The name of the IdP provided attribute.
idpId This property is required. string
The UID of the IdP.
sourceName This property is required. string
The name of the IdP provided attribute.
idp_id This property is required. str
The UID of the IdP.
source_name This property is required. str
The name of the IdP provided attribute.
idpId This property is required. String
The UID of the IdP.
sourceName This property is required. String
The name of the IdP provided attribute.

GetZeroTrustAccessApplicationsResultSaasAppCustomClaim

Name This property is required. string
The name of the claim.
Required This property is required. bool
If the claim is required when building an OIDC token.
Scope This property is required. string
The scope of the claim. Available values: "groups", "profile", "email", "openid".
Source This property is required. GetZeroTrustAccessApplicationsResultSaasAppCustomClaimSource
Name This property is required. string
The name of the claim.
Required This property is required. bool
If the claim is required when building an OIDC token.
Scope This property is required. string
The scope of the claim. Available values: "groups", "profile", "email", "openid".
Source This property is required. GetZeroTrustAccessApplicationsResultSaasAppCustomClaimSource
name This property is required. String
The name of the claim.
required This property is required. Boolean
If the claim is required when building an OIDC token.
scope This property is required. String
The scope of the claim. Available values: "groups", "profile", "email", "openid".
source This property is required. GetZeroTrustAccessApplicationsResultSaasAppCustomClaimSource
name This property is required. string
The name of the claim.
required This property is required. boolean
If the claim is required when building an OIDC token.
scope This property is required. string
The scope of the claim. Available values: "groups", "profile", "email", "openid".
source This property is required. GetZeroTrustAccessApplicationsResultSaasAppCustomClaimSource
name This property is required. str
The name of the claim.
required This property is required. bool
If the claim is required when building an OIDC token.
scope This property is required. str
The scope of the claim. Available values: "groups", "profile", "email", "openid".
source This property is required. GetZeroTrustAccessApplicationsResultSaasAppCustomClaimSource
name This property is required. String
The name of the claim.
required This property is required. Boolean
If the claim is required when building an OIDC token.
scope This property is required. String
The scope of the claim. Available values: "groups", "profile", "email", "openid".
source This property is required. Property Map

GetZeroTrustAccessApplicationsResultSaasAppCustomClaimSource

Name This property is required. string
The name of the IdP claim.
NameByIdp This property is required. Dictionary<string, string>
A mapping from IdP ID to claim name.
Name This property is required. string
The name of the IdP claim.
NameByIdp This property is required. map[string]string
A mapping from IdP ID to claim name.
name This property is required. String
The name of the IdP claim.
nameByIdp This property is required. Map<String,String>
A mapping from IdP ID to claim name.
name This property is required. string
The name of the IdP claim.
nameByIdp This property is required. {[key: string]: string}
A mapping from IdP ID to claim name.
name This property is required. str
The name of the IdP claim.
name_by_idp This property is required. Mapping[str, str]
A mapping from IdP ID to claim name.
name This property is required. String
The name of the IdP claim.
nameByIdp This property is required. Map<String>
A mapping from IdP ID to claim name.

GetZeroTrustAccessApplicationsResultSaasAppHybridAndImplicitOptions

ReturnAccessTokenFromAuthorizationEndpoint This property is required. bool
If an Access Token should be returned from the OIDC Authorization endpoint
ReturnIdTokenFromAuthorizationEndpoint This property is required. bool
If an ID Token should be returned from the OIDC Authorization endpoint
ReturnAccessTokenFromAuthorizationEndpoint This property is required. bool
If an Access Token should be returned from the OIDC Authorization endpoint
ReturnIdTokenFromAuthorizationEndpoint This property is required. bool
If an ID Token should be returned from the OIDC Authorization endpoint
returnAccessTokenFromAuthorizationEndpoint This property is required. Boolean
If an Access Token should be returned from the OIDC Authorization endpoint
returnIdTokenFromAuthorizationEndpoint This property is required. Boolean
If an ID Token should be returned from the OIDC Authorization endpoint
returnAccessTokenFromAuthorizationEndpoint This property is required. boolean
If an Access Token should be returned from the OIDC Authorization endpoint
returnIdTokenFromAuthorizationEndpoint This property is required. boolean
If an ID Token should be returned from the OIDC Authorization endpoint
return_access_token_from_authorization_endpoint This property is required. bool
If an Access Token should be returned from the OIDC Authorization endpoint
return_id_token_from_authorization_endpoint This property is required. bool
If an ID Token should be returned from the OIDC Authorization endpoint
returnAccessTokenFromAuthorizationEndpoint This property is required. Boolean
If an Access Token should be returned from the OIDC Authorization endpoint
returnIdTokenFromAuthorizationEndpoint This property is required. Boolean
If an ID Token should be returned from the OIDC Authorization endpoint

GetZeroTrustAccessApplicationsResultSaasAppRefreshTokenOptions

Lifetime This property is required. string
How long a refresh token will be valid for after creation. Valid units are m,h,d. Must be longer than 1m.
Lifetime This property is required. string
How long a refresh token will be valid for after creation. Valid units are m,h,d. Must be longer than 1m.
lifetime This property is required. String
How long a refresh token will be valid for after creation. Valid units are m,h,d. Must be longer than 1m.
lifetime This property is required. string
How long a refresh token will be valid for after creation. Valid units are m,h,d. Must be longer than 1m.
lifetime This property is required. str
How long a refresh token will be valid for after creation. Valid units are m,h,d. Must be longer than 1m.
lifetime This property is required. String
How long a refresh token will be valid for after creation. Valid units are m,h,d. Must be longer than 1m.

GetZeroTrustAccessApplicationsResultScimConfig

Authentication This property is required. GetZeroTrustAccessApplicationsResultScimConfigAuthentication
Attributes for configuring HTTP Basic authentication scheme for SCIM provisioning to an application.
DeactivateOnDelete This property is required. bool
If false, propagates DELETE requests to the target application for SCIM resources. If true, sets 'active' to false on the SCIM resource. Note: Some targets do not support DELETE operations.
Enabled This property is required. bool
Whether SCIM provisioning is turned on for this application.
IdpUid This property is required. string
The UID of the IdP to use as the source for SCIM resources to provision to this application.
Mappings This property is required. List<GetZeroTrustAccessApplicationsResultScimConfigMapping>
A list of mappings to apply to SCIM resources before provisioning them in this application. These can transform or filter the resources to be provisioned.
RemoteUri This property is required. string
The base URI for the application's SCIM-compatible API.
Authentication This property is required. GetZeroTrustAccessApplicationsResultScimConfigAuthentication
Attributes for configuring HTTP Basic authentication scheme for SCIM provisioning to an application.
DeactivateOnDelete This property is required. bool
If false, propagates DELETE requests to the target application for SCIM resources. If true, sets 'active' to false on the SCIM resource. Note: Some targets do not support DELETE operations.
Enabled This property is required. bool
Whether SCIM provisioning is turned on for this application.
IdpUid This property is required. string
The UID of the IdP to use as the source for SCIM resources to provision to this application.
Mappings This property is required. []GetZeroTrustAccessApplicationsResultScimConfigMapping
A list of mappings to apply to SCIM resources before provisioning them in this application. These can transform or filter the resources to be provisioned.
RemoteUri This property is required. string
The base URI for the application's SCIM-compatible API.
authentication This property is required. GetZeroTrustAccessApplicationsResultScimConfigAuthentication
Attributes for configuring HTTP Basic authentication scheme for SCIM provisioning to an application.
deactivateOnDelete This property is required. Boolean
If false, propagates DELETE requests to the target application for SCIM resources. If true, sets 'active' to false on the SCIM resource. Note: Some targets do not support DELETE operations.
enabled This property is required. Boolean
Whether SCIM provisioning is turned on for this application.
idpUid This property is required. String
The UID of the IdP to use as the source for SCIM resources to provision to this application.
mappings This property is required. List<GetZeroTrustAccessApplicationsResultScimConfigMapping>
A list of mappings to apply to SCIM resources before provisioning them in this application. These can transform or filter the resources to be provisioned.
remoteUri This property is required. String
The base URI for the application's SCIM-compatible API.
authentication This property is required. GetZeroTrustAccessApplicationsResultScimConfigAuthentication
Attributes for configuring HTTP Basic authentication scheme for SCIM provisioning to an application.
deactivateOnDelete This property is required. boolean
If false, propagates DELETE requests to the target application for SCIM resources. If true, sets 'active' to false on the SCIM resource. Note: Some targets do not support DELETE operations.
enabled This property is required. boolean
Whether SCIM provisioning is turned on for this application.
idpUid This property is required. string
The UID of the IdP to use as the source for SCIM resources to provision to this application.
mappings This property is required. GetZeroTrustAccessApplicationsResultScimConfigMapping[]
A list of mappings to apply to SCIM resources before provisioning them in this application. These can transform or filter the resources to be provisioned.
remoteUri This property is required. string
The base URI for the application's SCIM-compatible API.
authentication This property is required. GetZeroTrustAccessApplicationsResultScimConfigAuthentication
Attributes for configuring HTTP Basic authentication scheme for SCIM provisioning to an application.
deactivate_on_delete This property is required. bool
If false, propagates DELETE requests to the target application for SCIM resources. If true, sets 'active' to false on the SCIM resource. Note: Some targets do not support DELETE operations.
enabled This property is required. bool
Whether SCIM provisioning is turned on for this application.
idp_uid This property is required. str
The UID of the IdP to use as the source for SCIM resources to provision to this application.
mappings This property is required. Sequence[GetZeroTrustAccessApplicationsResultScimConfigMapping]
A list of mappings to apply to SCIM resources before provisioning them in this application. These can transform or filter the resources to be provisioned.
remote_uri This property is required. str
The base URI for the application's SCIM-compatible API.
authentication This property is required. Property Map
Attributes for configuring HTTP Basic authentication scheme for SCIM provisioning to an application.
deactivateOnDelete This property is required. Boolean
If false, propagates DELETE requests to the target application for SCIM resources. If true, sets 'active' to false on the SCIM resource. Note: Some targets do not support DELETE operations.
enabled This property is required. Boolean
Whether SCIM provisioning is turned on for this application.
idpUid This property is required. String
The UID of the IdP to use as the source for SCIM resources to provision to this application.
mappings This property is required. List<Property Map>
A list of mappings to apply to SCIM resources before provisioning them in this application. These can transform or filter the resources to be provisioned.
remoteUri This property is required. String
The base URI for the application's SCIM-compatible API.

GetZeroTrustAccessApplicationsResultScimConfigAuthentication

AuthorizationUrl This property is required. string
URL used to generate the auth code used during token generation.
ClientId This property is required. string
Client ID used to authenticate when generating a token for authenticating with the remote SCIM service.
ClientSecret This property is required. string
Secret used to authenticate when generating a token for authenticating with the remove SCIM service.
Password This property is required. string
Password used to authenticate with the remote SCIM service.
Scheme This property is required. string
The authentication scheme to use when making SCIM requests to this application. Available values: "httpbasic".
Scopes This property is required. List<string>
The authorization scopes to request when generating the token used to authenticate with the remove SCIM service.
Token This property is required. string
Token used to authenticate with the remote SCIM service.
TokenUrl This property is required. string
URL used to generate the token used to authenticate with the remote SCIM service.
User This property is required. string
User name used to authenticate with the remote SCIM service.
AuthorizationUrl This property is required. string
URL used to generate the auth code used during token generation.
ClientId This property is required. string
Client ID used to authenticate when generating a token for authenticating with the remote SCIM service.
ClientSecret This property is required. string
Secret used to authenticate when generating a token for authenticating with the remove SCIM service.
Password This property is required. string
Password used to authenticate with the remote SCIM service.
Scheme This property is required. string
The authentication scheme to use when making SCIM requests to this application. Available values: "httpbasic".
Scopes This property is required. []string
The authorization scopes to request when generating the token used to authenticate with the remove SCIM service.
Token This property is required. string
Token used to authenticate with the remote SCIM service.
TokenUrl This property is required. string
URL used to generate the token used to authenticate with the remote SCIM service.
User This property is required. string
User name used to authenticate with the remote SCIM service.
authorizationUrl This property is required. String
URL used to generate the auth code used during token generation.
clientId This property is required. String
Client ID used to authenticate when generating a token for authenticating with the remote SCIM service.
clientSecret This property is required. String
Secret used to authenticate when generating a token for authenticating with the remove SCIM service.
password This property is required. String
Password used to authenticate with the remote SCIM service.
scheme This property is required. String
The authentication scheme to use when making SCIM requests to this application. Available values: "httpbasic".
scopes This property is required. List<String>
The authorization scopes to request when generating the token used to authenticate with the remove SCIM service.
token This property is required. String
Token used to authenticate with the remote SCIM service.
tokenUrl This property is required. String
URL used to generate the token used to authenticate with the remote SCIM service.
user This property is required. String
User name used to authenticate with the remote SCIM service.
authorizationUrl This property is required. string
URL used to generate the auth code used during token generation.
clientId This property is required. string
Client ID used to authenticate when generating a token for authenticating with the remote SCIM service.
clientSecret This property is required. string
Secret used to authenticate when generating a token for authenticating with the remove SCIM service.
password This property is required. string
Password used to authenticate with the remote SCIM service.
scheme This property is required. string
The authentication scheme to use when making SCIM requests to this application. Available values: "httpbasic".
scopes This property is required. string[]
The authorization scopes to request when generating the token used to authenticate with the remove SCIM service.
token This property is required. string
Token used to authenticate with the remote SCIM service.
tokenUrl This property is required. string
URL used to generate the token used to authenticate with the remote SCIM service.
user This property is required. string
User name used to authenticate with the remote SCIM service.
authorization_url This property is required. str
URL used to generate the auth code used during token generation.
client_id This property is required. str
Client ID used to authenticate when generating a token for authenticating with the remote SCIM service.
client_secret This property is required. str
Secret used to authenticate when generating a token for authenticating with the remove SCIM service.
password This property is required. str
Password used to authenticate with the remote SCIM service.
scheme This property is required. str
The authentication scheme to use when making SCIM requests to this application. Available values: "httpbasic".
scopes This property is required. Sequence[str]
The authorization scopes to request when generating the token used to authenticate with the remove SCIM service.
token This property is required. str
Token used to authenticate with the remote SCIM service.
token_url This property is required. str
URL used to generate the token used to authenticate with the remote SCIM service.
user This property is required. str
User name used to authenticate with the remote SCIM service.
authorizationUrl This property is required. String
URL used to generate the auth code used during token generation.
clientId This property is required. String
Client ID used to authenticate when generating a token for authenticating with the remote SCIM service.
clientSecret This property is required. String
Secret used to authenticate when generating a token for authenticating with the remove SCIM service.
password This property is required. String
Password used to authenticate with the remote SCIM service.
scheme This property is required. String
The authentication scheme to use when making SCIM requests to this application. Available values: "httpbasic".
scopes This property is required. List<String>
The authorization scopes to request when generating the token used to authenticate with the remove SCIM service.
token This property is required. String
Token used to authenticate with the remote SCIM service.
tokenUrl This property is required. String
URL used to generate the token used to authenticate with the remote SCIM service.
user This property is required. String
User name used to authenticate with the remote SCIM service.

GetZeroTrustAccessApplicationsResultScimConfigMapping

Enabled This property is required. bool
Whether or not this mapping is enabled.
Filter This property is required. string
A SCIM filter expression that matches resources that should be provisioned to this application.
Operations This property is required. GetZeroTrustAccessApplicationsResultScimConfigMappingOperations
Whether or not this mapping applies to creates, updates, or deletes.
Schema This property is required. string
Which SCIM resource type this mapping applies to.
Strictness This property is required. string
The level of adherence to outbound resource schemas when provisioning to this mapping. ‘Strict’ removes unknown values, while ‘passthrough’ passes unknown values to the target. Available values: "strict", "passthrough".
TransformJsonata This property is required. string
A JSONata expression that transforms the resource before provisioning it in the application.
Enabled This property is required. bool
Whether or not this mapping is enabled.
Filter This property is required. string
A SCIM filter expression that matches resources that should be provisioned to this application.
Operations This property is required. GetZeroTrustAccessApplicationsResultScimConfigMappingOperations
Whether or not this mapping applies to creates, updates, or deletes.
Schema This property is required. string
Which SCIM resource type this mapping applies to.
Strictness This property is required. string
The level of adherence to outbound resource schemas when provisioning to this mapping. ‘Strict’ removes unknown values, while ‘passthrough’ passes unknown values to the target. Available values: "strict", "passthrough".
TransformJsonata This property is required. string
A JSONata expression that transforms the resource before provisioning it in the application.
enabled This property is required. Boolean
Whether or not this mapping is enabled.
filter This property is required. String
A SCIM filter expression that matches resources that should be provisioned to this application.
operations This property is required. GetZeroTrustAccessApplicationsResultScimConfigMappingOperations
Whether or not this mapping applies to creates, updates, or deletes.
schema This property is required. String
Which SCIM resource type this mapping applies to.
strictness This property is required. String
The level of adherence to outbound resource schemas when provisioning to this mapping. ‘Strict’ removes unknown values, while ‘passthrough’ passes unknown values to the target. Available values: "strict", "passthrough".
transformJsonata This property is required. String
A JSONata expression that transforms the resource before provisioning it in the application.
enabled This property is required. boolean
Whether or not this mapping is enabled.
filter This property is required. string
A SCIM filter expression that matches resources that should be provisioned to this application.
operations This property is required. GetZeroTrustAccessApplicationsResultScimConfigMappingOperations
Whether or not this mapping applies to creates, updates, or deletes.
schema This property is required. string
Which SCIM resource type this mapping applies to.
strictness This property is required. string
The level of adherence to outbound resource schemas when provisioning to this mapping. ‘Strict’ removes unknown values, while ‘passthrough’ passes unknown values to the target. Available values: "strict", "passthrough".
transformJsonata This property is required. string
A JSONata expression that transforms the resource before provisioning it in the application.
enabled This property is required. bool
Whether or not this mapping is enabled.
filter This property is required. str
A SCIM filter expression that matches resources that should be provisioned to this application.
operations This property is required. GetZeroTrustAccessApplicationsResultScimConfigMappingOperations
Whether or not this mapping applies to creates, updates, or deletes.
schema This property is required. str
Which SCIM resource type this mapping applies to.
strictness This property is required. str
The level of adherence to outbound resource schemas when provisioning to this mapping. ‘Strict’ removes unknown values, while ‘passthrough’ passes unknown values to the target. Available values: "strict", "passthrough".
transform_jsonata This property is required. str
A JSONata expression that transforms the resource before provisioning it in the application.
enabled This property is required. Boolean
Whether or not this mapping is enabled.
filter This property is required. String
A SCIM filter expression that matches resources that should be provisioned to this application.
operations This property is required. Property Map
Whether or not this mapping applies to creates, updates, or deletes.
schema This property is required. String
Which SCIM resource type this mapping applies to.
strictness This property is required. String
The level of adherence to outbound resource schemas when provisioning to this mapping. ‘Strict’ removes unknown values, while ‘passthrough’ passes unknown values to the target. Available values: "strict", "passthrough".
transformJsonata This property is required. String
A JSONata expression that transforms the resource before provisioning it in the application.

GetZeroTrustAccessApplicationsResultScimConfigMappingOperations

Create This property is required. bool
Whether or not this mapping applies to create (POST) operations.
Delete This property is required. bool
Whether or not this mapping applies to DELETE operations.
Update This property is required. bool
Whether or not this mapping applies to update (PATCH/PUT) operations.
Create This property is required. bool
Whether or not this mapping applies to create (POST) operations.
Delete This property is required. bool
Whether or not this mapping applies to DELETE operations.
Update This property is required. bool
Whether or not this mapping applies to update (PATCH/PUT) operations.
create This property is required. Boolean
Whether or not this mapping applies to create (POST) operations.
delete This property is required. Boolean
Whether or not this mapping applies to DELETE operations.
update This property is required. Boolean
Whether or not this mapping applies to update (PATCH/PUT) operations.
create This property is required. boolean
Whether or not this mapping applies to create (POST) operations.
delete This property is required. boolean
Whether or not this mapping applies to DELETE operations.
update This property is required. boolean
Whether or not this mapping applies to update (PATCH/PUT) operations.
create This property is required. bool
Whether or not this mapping applies to create (POST) operations.
delete This property is required. bool
Whether or not this mapping applies to DELETE operations.
update This property is required. bool
Whether or not this mapping applies to update (PATCH/PUT) operations.
create This property is required. Boolean
Whether or not this mapping applies to create (POST) operations.
delete This property is required. Boolean
Whether or not this mapping applies to DELETE operations.
update This property is required. Boolean
Whether or not this mapping applies to update (PATCH/PUT) operations.

GetZeroTrustAccessApplicationsResultTargetCriteria

Port This property is required. int
The port that the targets use for the chosen communication protocol. A port cannot be assigned to multiple protocols.
Protocol This property is required. string
The communication protocol your application secures. Available values: "ssh".
TargetAttributes This property is required. Dictionary<string, ImmutableArray<string>>
Contains a map of target attribute keys to target attribute values.
Port This property is required. int
The port that the targets use for the chosen communication protocol. A port cannot be assigned to multiple protocols.
Protocol This property is required. string
The communication protocol your application secures. Available values: "ssh".
TargetAttributes This property is required. map[string][]string
Contains a map of target attribute keys to target attribute values.
port This property is required. Integer
The port that the targets use for the chosen communication protocol. A port cannot be assigned to multiple protocols.
protocol This property is required. String
The communication protocol your application secures. Available values: "ssh".
targetAttributes This property is required. Map<String,List<String>>
Contains a map of target attribute keys to target attribute values.
port This property is required. number
The port that the targets use for the chosen communication protocol. A port cannot be assigned to multiple protocols.
protocol This property is required. string
The communication protocol your application secures. Available values: "ssh".
targetAttributes This property is required. {[key: string]: string[]}
Contains a map of target attribute keys to target attribute values.
port This property is required. int
The port that the targets use for the chosen communication protocol. A port cannot be assigned to multiple protocols.
protocol This property is required. str
The communication protocol your application secures. Available values: "ssh".
target_attributes This property is required. Mapping[str, Sequence[str]]
Contains a map of target attribute keys to target attribute values.
port This property is required. Number
The port that the targets use for the chosen communication protocol. A port cannot be assigned to multiple protocols.
protocol This property is required. String
The communication protocol your application secures. Available values: "ssh".
targetAttributes This property is required. Map<List<String>>
Contains a map of target attribute keys to target attribute values.

Package Details

Repository
Cloudflare pulumi/pulumi-cloudflare
License
Apache-2.0
Notes
This Pulumi package is based on the cloudflare Terraform Provider.