oci_psa_private_service_access

This resource provides the Private Service Access resource in Oracle Cloud Infrastructure Psa service.

Creates a private service access in the specified subnet (in the consumer’s VCN) and the specified compartment for a particular service.

Example Usage

resource "oci_psa_private_service_access" "test_private_service_access" {
	#Required
	compartment_id = var.compartment_id
	service_id = oci_psa_psa_service.test_psa_service.id
	subnet_id = oci_core_subnet.test_subnet.id

	#Optional
	defined_tags = {"Operations.CostCenter"= "42"}
	description = var.private_service_access_description
	display_name = var.private_service_access_display_name
	freeform_tags = {"Department"= "Finance"}
	ipv4ip = var.private_service_access_ipv4ip
	nsg_ids = var.private_service_access_nsg_ids
	security_attributes = var.private_service_access_security_attributes
}

Argument Reference

The following arguments are supported:

• compartment_id - (Required) (Updatable) The OCID of the compartment to contain the private service access.
• defined_tags - (Optional) (Updatable) Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags. Example: {"Operations.CostCenter": "42"}
• description - (Optional) (Updatable) A description of this private service accesss.
• display_name - (Optional) (Updatable) A user-friendly name. Does not have to be unique, and it’s changeable. Avoid entering confidential information.
• freeform_tags - (Optional) (Updatable) Free-form tags for this resource. Each tag is a simple key-value pair with no predefined name, type, or namespace. For more information, see Resource Tags. Example: {"Department": "Finance"}
• ipv4ip - (Optional) The private IPv4 address (in the consumer’s VCN) that represents the access point for the associated service.
• nsg_ids - (Optional) (Updatable) A list of the OCIDs of the network security groups (NSGs) to add the private service access’s VNIC to. For more information about NSGs, see NetworkSecurityGroup.
• security_attributes - (Optional) (Updatable) Security attributes are labels for a resource that can be referenced in a Zero Trust Packet Routing (ZPR) policy to control access to ZPR-supported resources. Example: {"Oracle-DataSecurity-ZPR": {"MaxEgressCount": {"value":"42","mode":"audit"}}}
• service_id - (Required) A unique service identifier for which the private service access was created.
• subnet_id - (Required) The OCID of the VCN’s subnet where the private service access’s VNIC will reside.

** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values

Attributes Reference

The following attributes are exported:

• compartment_id - The OCID of the compartment that contains the private service access.
• defined_tags - Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags. Example: {"Operations.CostCenter": "42"}
• description - A description of this private service access.
• display_name - A user-friendly name. Does not have to be unique, and it’s changeable. Avoid entering confidential information.
• fqdns - The private service access FQDNs, which are going to be used to access the service. Example: xyz.oraclecloud.com
• freeform_tags - Free-form tags for this resource. Each tag is a simple key-value pair with no predefined name, type, or namespace. For more information, see Resource Tags. Example: {"Department": "Finance"}
• id - The OCID of the private service access.
• ipv4ip - The private IPv4 address (in the consumer’s VCN) that represents the access point for the associated service.
• nsg_ids - A list of the OCIDs of the network security groups that the private service access’s VNIC belongs to. For more information about NSGs, see NetworkSecurityGroup.
• security_attributes - Security attributes are labels for a resource that can be referenced in a Zero Trust Packet Routing (ZPR) policy to control access to ZPR-supported resources. Example: {"Oracle-DataSecurity-ZPR": {"MaxEgressCount": {"value":"42","mode":"audit"}}}
• service_id - A unique service identifier for which the private service access was created.
• state - The private service access’s current lifecycle state.
• subnet_id - The OCID of the subnet that the private service access belongs to.
• system_tags - System tags for this resource. Each key is predefined and scoped to a namespace. Example: {"orcl-cloud.free-tier-retained": "true"}
• time_created - The date and time the private service access was created, in the format defined by RFC3339. Example: 2016-08-25T21:10:29.600Z
• time_updated - The date and time the PrivateServiceAccess was updated, in the format defined by RFC 3339. Example: 2016-08-25T21:10:29.600Z
• vcn_id - The OCID of the VCN that the private service access belongs to.
• vnic_id - An OCID of the private service access’s VNIC, which resides in the private service access’s VCN .

Timeouts

The timeouts block allows you to specify timeouts for certain operations: * create - (Defaults to 20 minutes), when creating the Private Service Access * update - (Defaults to 20 minutes), when updating the Private Service Access * delete - (Defaults to 20 minutes), when destroying the Private Service Access

Import

PrivateServiceAccess can be imported using the id, e.g.

$ terraform import oci_psa_private_service_acces.test_private_service_acces "privateServiceAccess/{privateServiceAccessId}"