InboundTrafficPolicies
The inbound traffic policies in the environment.
Table-Specific Information
We recommend using the built-in Client Application Developer role to read and write data for this table.
SELECT
Reading data from this table requires Read Inbound Traffic Policy/traffic:read:inboundTrafficPolicy permission.The provider uses the PingOne Platform API to process WHERE clause conditions built with the following columns and operators.
- Id supports the following operators: =.
All other filters are processed client-side within the provider.
For example, the following queries are processed server-side:
SELECT * FROM Administrators.InboundTrafficPolicies WHERE Id = '8bfe1f41-8dd3-4847-94ab-14f9344d8a81';
INSERT
Creating data in this table requires Create Inbound Traffic Policy/traffic:create:inboundTrafficPolicy permission.Refer to the query example below:
INSERT INTO Administrators.InboundTrafficPolicies (Name, Priority, ClientIpRule, TrafficRuleTpye, Enabled, HeaderRules, TrafficRule, VerifyRules) VALUES ('Allow Corporate Network', 1, '{"type":"SOCKET"}', 'ALLOW', 'True', '[{ "name": "content-policy", "required": true }]', '{"type":"ALLOW"}', '[{"type":"SECRET", "sha256Secrets":[ "9e33f87fbef"]}]');
UPDATE
Updating data in this table requires Update Inbound Traffic Policy/traffic:update:inboundTrafficPolicy permission.Refer to the query example below:
UPDATE Administrators.InboundTrafficPolicies SET Name = 'Allow Corporate Network (Updated)' WHERE Id = '8bfe1f41-8dd3-4847-94ab-14f9344d8a81'
DELETE
Deleting data from this table requires Delete Inbound Traffic Policy/traffic:delete:inboundTrafficPolicy permission.Refer to the query example below:
DELETE FROM Administrators.InboundTrafficPolicies WHERE Id = 'ea6a22d3-e616-4fc7-835b-e898f5e49a96'
Columns
| Name | Type | ReadOnly | References | Description |
| Id [KEY] | String | True |
The inbound traffic policy identifier (UUID). | |
| EnvironmentId | String | True |
he environment resource’s unique identifier associated with the resource. | |
| Name | String | False |
The name of the inbound traffic policy. | |
| Enabled | Boolean | False |
Specifies whether the policy is enabled or disabled. A disabled policy is ignored when matching requests. It does not imply that a matching request is blocked. | |
| Priority | Int | False |
The order in which the policy is evaluated. A lower priority is evaluated first. Must be greater than or equal to 1. | |
| ClientIpRule | String | False |
Defines how the client IP address is determined for the request. This information is represented in JSON format (aggregate). Sub-fields: type (SOCKET, HEADER, or HEADER_CSV), name, index, cardinality. | |
| TrafficRuleType | String | False |
Controls how matching inbound traffic is handled. | |
| HeaderRules | String | False |
The list of custom header rules to extract from the request. This information is represented in JSON format (aggregate array). Each item has sub-fields: name, required. | |
| VerifyRules | String | False |
The list of verification rules applied to the request. This information is represented in JSON format (aggregate array). Each item has sub-fields: type (SIGNATURE, MTLS_THUMBPRINT, SECRET, or IP_ADDRESS), jwks, sha256Thumbprints, sha256Secrets, cidrRanges. | |
| CreatedAt | Datetime | True |
The time at which the inbound traffic policy was created. | |
| UpdatedAt | Datetime | True |
The time at which the inbound traffic policy was last updated. |