When I call list_users method for IdentityClient, It enlists the users (Including IDP users.) I have created the IDP Group Mapping in OCI Console. Now I want something where I can identify every specific IDP user's, IDP Group or the Permissions they have without using Identity Console or IDCS API.
Do we have any Provision, where I can enlist IDP group users, or any way to identify, this IDP user, belongs to this IDP group so that on the basis of IDP group mapping I can say this IDP user has these permissions.
I have been running into the same problem.
You need the OCI SDK to get IDP groups, and IDP groupmappings, but to get the IDP users and IDP groups, you need to create use the IDP APIs. To do so you need to create an app that has the right credentials, autheticate as the app and then use the IDP API endpoint to get the info.
With IDCS, you need to use the API documented here:
https://docs.oracle.com/en/cloud/paas/identity-cloud/rest-api/api-identity-groups.html
and
https://docs.oracle.com/en/cloud/paas/identity-cloud/rest-api/api-identity-users.html