vw_federation_policies
Creates, updates, deletes, gets or lists a vw_federation_policies resource.
Overview
| Name | vw_federation_policies |
| Type | View |
| Id | databricks_account.oauth2.vw_federation_policies |
Fields
The following fields are returned by this view:
| Name | Datatype | Description |
|---|---|---|
account_id | string | Databricks account ID used to scope the query. |
policy_id | string | Unique identifier for the federation policy. |
uid | string | Globally unique identifier for the federation policy. |
name | string | Human-readable name of the federation policy. |
description | string | Optional description of the federation policy. |
service_principal_id | integer | ID of the service principal this federation policy is associated with. |
create_time | string | Timestamp when the federation policy was created (ISO 8601). |
update_time | string | Timestamp when the federation policy was last updated (ISO 8601). |
oidc_issuer | string | OIDC token issuer URL for the federation policy. |
oidc_subject | string | Expected subject claim value in the OIDC token. |
oidc_subject_claim | string | Name of the claim in the OIDC token used as the subject identifier. |
oidc_audiences | array | List of acceptable audience values in the OIDC token. |
oidc_jwks_uri | string | URI of the JWKS endpoint used to verify the OIDC token signature. |
oidc_jwks_json | string | Inline JWKS JSON used to verify the OIDC token signature (alternative to jwks_uri). |
Required Parameters
The following parameters are required by this view:
| Name | Datatype | Description |
|---|---|---|
account_id | string | Databricks account ID used to scope the query. |
SELECT Examples
SELECT
account_id,
policy_id,
uid,
name,
description,
service_principal_id,
create_time,
update_time,
oidc_issuer,
oidc_subject,
oidc_subject_claim,
oidc_audiences,
oidc_jwks_uri,
oidc_jwks_json
FROM databricks_account.oauth2.vw_federation_policies
WHERE account_id = '{{ account_id }}';
SQL Definition
- Sqlite3
- Postgres
SELECT
fp.account_id,
fp.policy_id,
fp.uid,
fp.name,
fp.description,
fp.service_principal_id,
fp.create_time,
fp.update_time,
JSON_EXTRACT(fp.oidc_policy, '$.issuer') AS oidc_issuer,
JSON_EXTRACT(fp.oidc_policy, '$.subject') AS oidc_subject,
JSON_EXTRACT(fp.oidc_policy, '$.subject_claim') AS oidc_subject_claim,
JSON_EXTRACT(fp.oidc_policy, '$.audiences') AS oidc_audiences,
JSON_EXTRACT(fp.oidc_policy, '$.jwks_uri') AS oidc_jwks_uri,
JSON_EXTRACT(fp.oidc_policy, '$.jwks_json') AS oidc_jwks_json
FROM databricks_account.oauth2.account_federation_policy fp
WHERE account_id = '{{ account_id }}'
SELECT
fp.account_id,
fp.policy_id,
fp.uid,
fp.name,
fp.description,
fp.service_principal_id,
fp.create_time,
fp.update_time,
fp.oidc_policy->>'issuer' AS oidc_issuer,
fp.oidc_policy->>'subject' AS oidc_subject,
fp.oidc_policy->>'subject_claim' AS oidc_subject_claim,
fp.oidc_policy->'audiences' AS oidc_audiences,
fp.oidc_policy->>'jwks_uri' AS oidc_jwks_uri,
fp.oidc_policy->>'jwks_json' AS oidc_jwks_json
FROM databricks_account.oauth2.account_federation_policy fp
WHERE account_id = '{{ account_id }}'