google-api-ruby-client/generated/google/apis/iam_v1/service.rb

608 lines
36 KiB
Ruby
Raw Normal View History

2016-03-11 22:41:20 +00:00
# Copyright 2015 Google Inc.
#
# Licensed under the Apache License, Version 2.0 (the "License");
# you may not use this file except in compliance with the License.
# You may obtain a copy of the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.
require 'google/apis/core/base_service'
require 'google/apis/core/json_representation'
require 'google/apis/core/hashable'
require 'google/apis/errors'
module Google
module Apis
module IamV1
2016-10-04 00:27:26 +00:00
# Google Identity and Access Management (IAM) API
2016-03-11 22:41:20 +00:00
#
# Manages identity and access control for Google Cloud Platform resources,
# including the creation of service accounts, which you can use to authenticate
# to Google and make API calls.
#
# @example
# require 'google/apis/iam_v1'
#
# Iam = Google::Apis::IamV1 # Alias the module
# service = Iam::IamService.new
#
# @see https://cloud.google.com/iam/
class IamService < Google::Apis::Core::BaseService
# @return [String]
# API key. Your API key identifies your project and provides you with API access,
# quota, and reports. Required unless you provide an OAuth 2.0 token.
attr_accessor :key
# @return [String]
# Available to use for quota purposes for server-side applications. Can be any
# arbitrary string assigned to a user, but should not exceed 40 characters.
attr_accessor :quota_user
def initialize
super('https://iam.googleapis.com/', '')
end
2017-03-30 22:30:51 +00:00
# Gets a ServiceAccount.
# @param [String] name
# The resource name of the service account in the following format:
# `projects/`PROJECT_ID`/serviceAccounts/`SERVICE_ACCOUNT_EMAIL``.
# Using `-` as a wildcard for the project will infer the project from
# the account. The `account` value can be the `email` address or the
# `unique_id` of the service account.
2017-03-27 22:14:47 +00:00
# @param [String] fields
# Selector specifying which fields to include in a partial response.
# @param [String] quota_user
# Available to use for quota purposes for server-side applications. Can be any
# arbitrary string assigned to a user, but should not exceed 40 characters.
# @param [Google::Apis::RequestOptions] options
# Request-specific options
#
# @yield [result, err] Result & error if block supplied
2017-03-30 22:30:51 +00:00
# @yieldparam result [Google::Apis::IamV1::ServiceAccount] parsed result object
2017-03-27 22:14:47 +00:00
# @yieldparam err [StandardError] error object if request failed
#
2017-03-30 22:30:51 +00:00
# @return [Google::Apis::IamV1::ServiceAccount]
2017-03-27 22:14:47 +00:00
#
# @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
# @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
# @raise [Google::Apis::AuthorizationError] Authorization is required
2017-03-30 22:30:51 +00:00
def get_project_service_account(name, fields: nil, quota_user: nil, options: nil, &block)
command = make_simple_command(:get, 'v1/{+name}', options)
command.response_representation = Google::Apis::IamV1::ServiceAccount::Representation
command.response_class = Google::Apis::IamV1::ServiceAccount
command.params['name'] = name unless name.nil?
2017-03-27 22:14:47 +00:00
command.query['fields'] = fields unless fields.nil?
command.query['quotaUser'] = quota_user unless quota_user.nil?
execute_or_queue_command(command, &block)
end
# Updates a ServiceAccount.
# Currently, only the following fields are updatable:
# `display_name` .
# The `etag` is mandatory.
2017-03-10 21:11:09 +00:00
# @param [String] name
# The resource name of the service account in the following format:
# `projects/`PROJECT_ID`/serviceAccounts/`SERVICE_ACCOUNT_EMAIL``.
2017-03-27 22:14:47 +00:00
# Requests using `-` as a wildcard for the project will infer the project
# from the `account` and the `account` value can be the `email` address or
# the `unique_id` of the service account.
# In responses the resource name will always be in the format
# `projects/`PROJECT_ID`/serviceAccounts/`SERVICE_ACCOUNT_EMAIL``.
# @param [Google::Apis::IamV1::ServiceAccount] service_account_object
2017-03-10 21:11:09 +00:00
# @param [String] fields
# Selector specifying which fields to include in a partial response.
# @param [String] quota_user
# Available to use for quota purposes for server-side applications. Can be any
# arbitrary string assigned to a user, but should not exceed 40 characters.
# @param [Google::Apis::RequestOptions] options
# Request-specific options
#
# @yield [result, err] Result & error if block supplied
2017-03-27 22:14:47 +00:00
# @yieldparam result [Google::Apis::IamV1::ServiceAccount] parsed result object
2017-03-10 21:11:09 +00:00
# @yieldparam err [StandardError] error object if request failed
#
2017-03-27 22:14:47 +00:00
# @return [Google::Apis::IamV1::ServiceAccount]
2017-03-10 21:11:09 +00:00
#
# @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
# @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
# @raise [Google::Apis::AuthorizationError] Authorization is required
2017-03-27 22:14:47 +00:00
def update_project_service_account(name, service_account_object = nil, fields: nil, quota_user: nil, options: nil, &block)
command = make_simple_command(:put, 'v1/{+name}', options)
command.request_representation = Google::Apis::IamV1::ServiceAccount::Representation
command.request_object = service_account_object
command.response_representation = Google::Apis::IamV1::ServiceAccount::Representation
command.response_class = Google::Apis::IamV1::ServiceAccount
2017-03-10 21:11:09 +00:00
command.params['name'] = name unless name.nil?
command.query['fields'] = fields unless fields.nil?
command.query['quotaUser'] = quota_user unless quota_user.nil?
execute_or_queue_command(command, &block)
end
2017-03-27 22:14:47 +00:00
# Tests the specified permissions against the IAM access control policy
# for a ServiceAccount.
# @param [String] resource
# REQUIRED: The resource for which the policy detail is being requested.
# See the operation documentation for the appropriate value for this field.
# @param [Google::Apis::IamV1::TestIamPermissionsRequest] test_iam_permissions_request_object
# @param [String] fields
# Selector specifying which fields to include in a partial response.
# @param [String] quota_user
# Available to use for quota purposes for server-side applications. Can be any
# arbitrary string assigned to a user, but should not exceed 40 characters.
# @param [Google::Apis::RequestOptions] options
# Request-specific options
#
# @yield [result, err] Result & error if block supplied
# @yieldparam result [Google::Apis::IamV1::TestIamPermissionsResponse] parsed result object
# @yieldparam err [StandardError] error object if request failed
#
# @return [Google::Apis::IamV1::TestIamPermissionsResponse]
#
# @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
# @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
# @raise [Google::Apis::AuthorizationError] Authorization is required
def test_service_account_iam_permissions(resource, test_iam_permissions_request_object = nil, fields: nil, quota_user: nil, options: nil, &block)
command = make_simple_command(:post, 'v1/{+resource}:testIamPermissions', options)
command.request_representation = Google::Apis::IamV1::TestIamPermissionsRequest::Representation
command.request_object = test_iam_permissions_request_object
command.response_representation = Google::Apis::IamV1::TestIamPermissionsResponse::Representation
command.response_class = Google::Apis::IamV1::TestIamPermissionsResponse
command.params['resource'] = resource unless resource.nil?
command.query['fields'] = fields unless fields.nil?
command.query['quotaUser'] = quota_user unless quota_user.nil?
execute_or_queue_command(command, &block)
end
# Deletes a ServiceAccount.
2016-03-11 22:41:20 +00:00
# @param [String] name
2017-03-27 22:14:47 +00:00
# The resource name of the service account in the following format:
# `projects/`PROJECT_ID`/serviceAccounts/`SERVICE_ACCOUNT_EMAIL``.
# Using `-` as a wildcard for the project will infer the project from
# the account. The `account` value can be the `email` address or the
# `unique_id` of the service account.
2016-03-11 22:41:20 +00:00
# @param [String] fields
# Selector specifying which fields to include in a partial response.
# @param [String] quota_user
# Available to use for quota purposes for server-side applications. Can be any
# arbitrary string assigned to a user, but should not exceed 40 characters.
# @param [Google::Apis::RequestOptions] options
# Request-specific options
#
# @yield [result, err] Result & error if block supplied
2017-03-27 22:14:47 +00:00
# @yieldparam result [Google::Apis::IamV1::Empty] parsed result object
2016-03-11 22:41:20 +00:00
# @yieldparam err [StandardError] error object if request failed
#
2017-03-27 22:14:47 +00:00
# @return [Google::Apis::IamV1::Empty]
2016-03-11 22:41:20 +00:00
#
# @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
# @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
# @raise [Google::Apis::AuthorizationError] Authorization is required
2017-03-27 22:14:47 +00:00
def delete_project_service_account(name, fields: nil, quota_user: nil, options: nil, &block)
command = make_simple_command(:delete, 'v1/{+name}', options)
command.response_representation = Google::Apis::IamV1::Empty::Representation
command.response_class = Google::Apis::IamV1::Empty
2017-03-10 21:11:09 +00:00
command.params['name'] = name unless name.nil?
command.query['fields'] = fields unless fields.nil?
command.query['quotaUser'] = quota_user unless quota_user.nil?
execute_or_queue_command(command, &block)
end
2017-03-27 22:14:47 +00:00
# Lists ServiceAccounts for a project.
2016-03-11 22:41:20 +00:00
# @param [String] name
2017-03-27 22:14:47 +00:00
# Required. The resource name of the project associated with the service
# accounts, such as `projects/my-project-123`.
# @param [String] page_token
# Optional pagination token returned in an earlier
# ListServiceAccountsResponse.next_page_token.
# @param [Fixnum] page_size
# Optional limit on the number of service accounts to include in the
# response. Further accounts can subsequently be obtained by including the
# ListServiceAccountsResponse.next_page_token
# in a subsequent request.
2016-03-11 22:41:20 +00:00
# @param [String] fields
# Selector specifying which fields to include in a partial response.
# @param [String] quota_user
# Available to use for quota purposes for server-side applications. Can be any
# arbitrary string assigned to a user, but should not exceed 40 characters.
# @param [Google::Apis::RequestOptions] options
# Request-specific options
#
# @yield [result, err] Result & error if block supplied
2017-03-27 22:14:47 +00:00
# @yieldparam result [Google::Apis::IamV1::ListServiceAccountsResponse] parsed result object
2016-03-11 22:41:20 +00:00
# @yieldparam err [StandardError] error object if request failed
#
2017-03-27 22:14:47 +00:00
# @return [Google::Apis::IamV1::ListServiceAccountsResponse]
2016-03-11 22:41:20 +00:00
#
# @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
# @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
# @raise [Google::Apis::AuthorizationError] Authorization is required
2017-03-27 22:14:47 +00:00
def list_project_service_accounts(name, page_token: nil, page_size: nil, fields: nil, quota_user: nil, options: nil, &block)
command = make_simple_command(:get, 'v1/{+name}/serviceAccounts', options)
command.response_representation = Google::Apis::IamV1::ListServiceAccountsResponse::Representation
command.response_class = Google::Apis::IamV1::ListServiceAccountsResponse
2016-03-11 22:41:20 +00:00
command.params['name'] = name unless name.nil?
2017-03-27 22:14:47 +00:00
command.query['pageToken'] = page_token unless page_token.nil?
command.query['pageSize'] = page_size unless page_size.nil?
2016-03-11 22:41:20 +00:00
command.query['fields'] = fields unless fields.nil?
command.query['quotaUser'] = quota_user unless quota_user.nil?
execute_or_queue_command(command, &block)
end
2017-03-30 22:30:51 +00:00
# Signs a blob using a service account's system-managed private key.
2017-03-10 21:11:09 +00:00
# @param [String] name
2017-03-30 22:30:51 +00:00
# The resource name of the service account in the following format:
# `projects/`PROJECT_ID`/serviceAccounts/`SERVICE_ACCOUNT_EMAIL``.
# Using `-` as a wildcard for the project will infer the project from
# the account. The `account` value can be the `email` address or the
# `unique_id` of the service account.
# @param [Google::Apis::IamV1::SignBlobRequest] sign_blob_request_object
2017-03-10 21:11:09 +00:00
# @param [String] fields
# Selector specifying which fields to include in a partial response.
# @param [String] quota_user
# Available to use for quota purposes for server-side applications. Can be any
# arbitrary string assigned to a user, but should not exceed 40 characters.
# @param [Google::Apis::RequestOptions] options
# Request-specific options
#
# @yield [result, err] Result & error if block supplied
2017-03-30 22:30:51 +00:00
# @yieldparam result [Google::Apis::IamV1::SignBlobResponse] parsed result object
2017-03-10 21:11:09 +00:00
# @yieldparam err [StandardError] error object if request failed
#
2017-03-30 22:30:51 +00:00
# @return [Google::Apis::IamV1::SignBlobResponse]
2017-03-10 21:11:09 +00:00
#
# @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
# @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
# @raise [Google::Apis::AuthorizationError] Authorization is required
2017-03-30 22:30:51 +00:00
def sign_service_account_blob(name, sign_blob_request_object = nil, fields: nil, quota_user: nil, options: nil, &block)
command = make_simple_command(:post, 'v1/{+name}:signBlob', options)
command.request_representation = Google::Apis::IamV1::SignBlobRequest::Representation
command.request_object = sign_blob_request_object
command.response_representation = Google::Apis::IamV1::SignBlobResponse::Representation
command.response_class = Google::Apis::IamV1::SignBlobResponse
2017-03-10 21:11:09 +00:00
command.params['name'] = name unless name.nil?
command.query['fields'] = fields unless fields.nil?
command.query['quotaUser'] = quota_user unless quota_user.nil?
execute_or_queue_command(command, &block)
end
2017-03-30 22:30:51 +00:00
# Creates a ServiceAccount
# and returns it.
2017-03-27 22:14:47 +00:00
# @param [String] name
2017-03-30 22:30:51 +00:00
# Required. The resource name of the project associated with the service
# accounts, such as `projects/my-project-123`.
# @param [Google::Apis::IamV1::CreateServiceAccountRequest] create_service_account_request_object
2017-03-27 22:14:47 +00:00
# @param [String] fields
# Selector specifying which fields to include in a partial response.
# @param [String] quota_user
# Available to use for quota purposes for server-side applications. Can be any
# arbitrary string assigned to a user, but should not exceed 40 characters.
# @param [Google::Apis::RequestOptions] options
# Request-specific options
#
# @yield [result, err] Result & error if block supplied
2017-03-30 22:30:51 +00:00
# @yieldparam result [Google::Apis::IamV1::ServiceAccount] parsed result object
2017-03-27 22:14:47 +00:00
# @yieldparam err [StandardError] error object if request failed
#
2017-03-30 22:30:51 +00:00
# @return [Google::Apis::IamV1::ServiceAccount]
2017-03-27 22:14:47 +00:00
#
# @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
# @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
# @raise [Google::Apis::AuthorizationError] Authorization is required
2017-03-30 22:30:51 +00:00
def create_service_account(name, create_service_account_request_object = nil, fields: nil, quota_user: nil, options: nil, &block)
command = make_simple_command(:post, 'v1/{+name}/serviceAccounts', options)
command.request_representation = Google::Apis::IamV1::CreateServiceAccountRequest::Representation
command.request_object = create_service_account_request_object
command.response_representation = Google::Apis::IamV1::ServiceAccount::Representation
command.response_class = Google::Apis::IamV1::ServiceAccount
2017-03-27 22:14:47 +00:00
command.params['name'] = name unless name.nil?
command.query['fields'] = fields unless fields.nil?
command.query['quotaUser'] = quota_user unless quota_user.nil?
execute_or_queue_command(command, &block)
end
# Sets the IAM access control policy for a
# ServiceAccount.
# @param [String] resource
# REQUIRED: The resource for which the policy is being specified.
2017-03-27 22:14:47 +00:00
# See the operation documentation for the appropriate value for this field.
# @param [Google::Apis::IamV1::SetIamPolicyRequest] set_iam_policy_request_object
2016-03-11 22:41:20 +00:00
# @param [String] fields
# Selector specifying which fields to include in a partial response.
# @param [String] quota_user
# Available to use for quota purposes for server-side applications. Can be any
# arbitrary string assigned to a user, but should not exceed 40 characters.
# @param [Google::Apis::RequestOptions] options
# Request-specific options
#
# @yield [result, err] Result & error if block supplied
# @yieldparam result [Google::Apis::IamV1::Policy] parsed result object
2016-03-11 22:41:20 +00:00
# @yieldparam err [StandardError] error object if request failed
#
# @return [Google::Apis::IamV1::Policy]
2016-03-11 22:41:20 +00:00
#
# @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
# @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
# @raise [Google::Apis::AuthorizationError] Authorization is required
def set_service_account_iam_policy(resource, set_iam_policy_request_object = nil, fields: nil, quota_user: nil, options: nil, &block)
command = make_simple_command(:post, 'v1/{+resource}:setIamPolicy', options)
command.request_representation = Google::Apis::IamV1::SetIamPolicyRequest::Representation
command.request_object = set_iam_policy_request_object
command.response_representation = Google::Apis::IamV1::Policy::Representation
command.response_class = Google::Apis::IamV1::Policy
command.params['resource'] = resource unless resource.nil?
2016-03-11 22:41:20 +00:00
command.query['fields'] = fields unless fields.nil?
command.query['quotaUser'] = quota_user unless quota_user.nil?
execute_or_queue_command(command, &block)
end
2017-03-30 22:30:51 +00:00
# Signs a JWT using a service account's system-managed private key.
# If no expiry time (`exp`) is provided in the `SignJwtRequest`, IAM sets an
# an expiry time of one hour by default. If you request an expiry time of
# more than one hour, the request will fail.
# @param [String] name
# The resource name of the service account in the following format:
# `projects/`PROJECT_ID`/serviceAccounts/`SERVICE_ACCOUNT_EMAIL``.
# Using `-` as a wildcard for the project will infer the project from
# the account. The `account` value can be the `email` address or the
# `unique_id` of the service account.
# @param [Google::Apis::IamV1::SignJwtRequest] sign_jwt_request_object
# @param [String] fields
# Selector specifying which fields to include in a partial response.
# @param [String] quota_user
# Available to use for quota purposes for server-side applications. Can be any
# arbitrary string assigned to a user, but should not exceed 40 characters.
# @param [Google::Apis::RequestOptions] options
# Request-specific options
#
# @yield [result, err] Result & error if block supplied
2017-03-30 22:30:51 +00:00
# @yieldparam result [Google::Apis::IamV1::SignJwtResponse] parsed result object
# @yieldparam err [StandardError] error object if request failed
#
2017-03-30 22:30:51 +00:00
# @return [Google::Apis::IamV1::SignJwtResponse]
#
# @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
# @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
# @raise [Google::Apis::AuthorizationError] Authorization is required
2017-03-30 22:30:51 +00:00
def sign_service_account_jwt(name, sign_jwt_request_object = nil, fields: nil, quota_user: nil, options: nil, &block)
command = make_simple_command(:post, 'v1/{+name}:signJwt', options)
command.request_representation = Google::Apis::IamV1::SignJwtRequest::Representation
command.request_object = sign_jwt_request_object
command.response_representation = Google::Apis::IamV1::SignJwtResponse::Representation
command.response_class = Google::Apis::IamV1::SignJwtResponse
command.params['name'] = name unless name.nil?
command.query['fields'] = fields unless fields.nil?
command.query['quotaUser'] = quota_user unless quota_user.nil?
execute_or_queue_command(command, &block)
end
2017-03-30 22:30:51 +00:00
# Returns the IAM access control policy for a
# ServiceAccount.
# @param [String] resource
# REQUIRED: The resource for which the policy is being requested.
# See the operation documentation for the appropriate value for this field.
2016-03-11 22:41:20 +00:00
# @param [String] fields
# Selector specifying which fields to include in a partial response.
# @param [String] quota_user
# Available to use for quota purposes for server-side applications. Can be any
# arbitrary string assigned to a user, but should not exceed 40 characters.
# @param [Google::Apis::RequestOptions] options
# Request-specific options
#
# @yield [result, err] Result & error if block supplied
2017-03-30 22:30:51 +00:00
# @yieldparam result [Google::Apis::IamV1::Policy] parsed result object
2016-03-11 22:41:20 +00:00
# @yieldparam err [StandardError] error object if request failed
#
2017-03-30 22:30:51 +00:00
# @return [Google::Apis::IamV1::Policy]
2016-03-11 22:41:20 +00:00
#
# @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
# @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
# @raise [Google::Apis::AuthorizationError] Authorization is required
2017-03-30 22:30:51 +00:00
def get_project_service_account_iam_policy(resource, fields: nil, quota_user: nil, options: nil, &block)
command = make_simple_command(:post, 'v1/{+resource}:getIamPolicy', options)
command.response_representation = Google::Apis::IamV1::Policy::Representation
command.response_class = Google::Apis::IamV1::Policy
command.params['resource'] = resource unless resource.nil?
2016-03-11 22:41:20 +00:00
command.query['fields'] = fields unless fields.nil?
command.query['quotaUser'] = quota_user unless quota_user.nil?
execute_or_queue_command(command, &block)
end
2017-03-27 22:14:47 +00:00
# Deletes a ServiceAccountKey.
2016-03-11 22:41:20 +00:00
# @param [String] name
2017-03-27 22:14:47 +00:00
# The resource name of the service account key in the following format:
# `projects/`PROJECT_ID`/serviceAccounts/`SERVICE_ACCOUNT_EMAIL`/keys/`key``.
# Using `-` as a wildcard for the project will infer the project from
# the account. The `account` value can be the `email` address or the
# `unique_id` of the service account.
2016-03-11 22:41:20 +00:00
# @param [String] fields
# Selector specifying which fields to include in a partial response.
# @param [String] quota_user
# Available to use for quota purposes for server-side applications. Can be any
# arbitrary string assigned to a user, but should not exceed 40 characters.
# @param [Google::Apis::RequestOptions] options
# Request-specific options
#
# @yield [result, err] Result & error if block supplied
2017-03-27 22:14:47 +00:00
# @yieldparam result [Google::Apis::IamV1::Empty] parsed result object
2016-03-11 22:41:20 +00:00
# @yieldparam err [StandardError] error object if request failed
#
2017-03-27 22:14:47 +00:00
# @return [Google::Apis::IamV1::Empty]
2016-03-11 22:41:20 +00:00
#
# @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
# @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
# @raise [Google::Apis::AuthorizationError] Authorization is required
2017-03-27 22:14:47 +00:00
def delete_project_service_account_key(name, fields: nil, quota_user: nil, options: nil, &block)
command = make_simple_command(:delete, 'v1/{+name}', options)
command.response_representation = Google::Apis::IamV1::Empty::Representation
command.response_class = Google::Apis::IamV1::Empty
2016-03-11 22:41:20 +00:00
command.params['name'] = name unless name.nil?
command.query['fields'] = fields unless fields.nil?
command.query['quotaUser'] = quota_user unless quota_user.nil?
execute_or_queue_command(command, &block)
end
2017-03-10 21:11:09 +00:00
# Lists ServiceAccountKeys.
# @param [String] name
# The resource name of the service account in the following format:
# `projects/`PROJECT_ID`/serviceAccounts/`SERVICE_ACCOUNT_EMAIL``.
2017-03-10 21:11:09 +00:00
# Using `-` as a wildcard for the project, will infer the project from
# the account. The `account` value can be the `email` address or the
# `unique_id` of the service account.
2017-03-10 21:11:09 +00:00
# @param [Array<String>, String] key_types
# Filters the types of keys the user wants to include in the list
# response. Duplicate key types are not allowed. If no key type
# is provided, all keys are returned.
2016-03-11 22:41:20 +00:00
# @param [String] fields
# Selector specifying which fields to include in a partial response.
# @param [String] quota_user
# Available to use for quota purposes for server-side applications. Can be any
# arbitrary string assigned to a user, but should not exceed 40 characters.
# @param [Google::Apis::RequestOptions] options
# Request-specific options
#
# @yield [result, err] Result & error if block supplied
2017-03-10 21:11:09 +00:00
# @yieldparam result [Google::Apis::IamV1::ListServiceAccountKeysResponse] parsed result object
2016-03-11 22:41:20 +00:00
# @yieldparam err [StandardError] error object if request failed
#
2017-03-10 21:11:09 +00:00
# @return [Google::Apis::IamV1::ListServiceAccountKeysResponse]
2016-03-11 22:41:20 +00:00
#
# @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
# @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
# @raise [Google::Apis::AuthorizationError] Authorization is required
2017-03-10 21:11:09 +00:00
def list_project_service_account_keys(name, key_types: nil, fields: nil, quota_user: nil, options: nil, &block)
command = make_simple_command(:get, 'v1/{+name}/keys', options)
command.response_representation = Google::Apis::IamV1::ListServiceAccountKeysResponse::Representation
command.response_class = Google::Apis::IamV1::ListServiceAccountKeysResponse
command.params['name'] = name unless name.nil?
2017-03-10 21:11:09 +00:00
command.query['keyTypes'] = key_types unless key_types.nil?
2016-03-11 22:41:20 +00:00
command.query['fields'] = fields unless fields.nil?
command.query['quotaUser'] = quota_user unless quota_user.nil?
execute_or_queue_command(command, &block)
end
2017-03-10 21:11:09 +00:00
# Gets the ServiceAccountKey
# by key id.
2017-02-13 23:28:52 +00:00
# @param [String] name
2017-03-10 21:11:09 +00:00
# The resource name of the service account key in the following format:
# `projects/`PROJECT_ID`/serviceAccounts/`SERVICE_ACCOUNT_EMAIL`/keys/`key``.
2017-02-13 23:28:52 +00:00
# Using `-` as a wildcard for the project will infer the project from
# the account. The `account` value can be the `email` address or the
# `unique_id` of the service account.
2017-03-10 21:11:09 +00:00
# @param [String] public_key_type
# The output format of the public key requested.
# X509_PEM is the default output format.
2016-03-11 22:41:20 +00:00
# @param [String] fields
# Selector specifying which fields to include in a partial response.
# @param [String] quota_user
# Available to use for quota purposes for server-side applications. Can be any
# arbitrary string assigned to a user, but should not exceed 40 characters.
# @param [Google::Apis::RequestOptions] options
# Request-specific options
#
# @yield [result, err] Result & error if block supplied
2017-03-10 21:11:09 +00:00
# @yieldparam result [Google::Apis::IamV1::ServiceAccountKey] parsed result object
2016-03-11 22:41:20 +00:00
# @yieldparam err [StandardError] error object if request failed
#
2017-03-10 21:11:09 +00:00
# @return [Google::Apis::IamV1::ServiceAccountKey]
2016-03-11 22:41:20 +00:00
#
# @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
# @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
# @raise [Google::Apis::AuthorizationError] Authorization is required
2017-03-10 21:11:09 +00:00
def get_project_service_account_key(name, public_key_type: nil, fields: nil, quota_user: nil, options: nil, &block)
command = make_simple_command(:get, 'v1/{+name}', options)
command.response_representation = Google::Apis::IamV1::ServiceAccountKey::Representation
command.response_class = Google::Apis::IamV1::ServiceAccountKey
command.params['name'] = name unless name.nil?
2017-03-10 21:11:09 +00:00
command.query['publicKeyType'] = public_key_type unless public_key_type.nil?
2016-03-11 22:41:20 +00:00
command.query['fields'] = fields unless fields.nil?
command.query['quotaUser'] = quota_user unless quota_user.nil?
execute_or_queue_command(command, &block)
end
2017-02-13 23:28:52 +00:00
# Creates a ServiceAccountKey
# and returns it.
2016-03-11 22:41:20 +00:00
# @param [String] name
# The resource name of the service account in the following format:
# `projects/`PROJECT_ID`/serviceAccounts/`SERVICE_ACCOUNT_EMAIL``.
# Using `-` as a wildcard for the project will infer the project from
# the account. The `account` value can be the `email` address or the
# `unique_id` of the service account.
2017-02-13 23:28:52 +00:00
# @param [Google::Apis::IamV1::CreateServiceAccountKeyRequest] create_service_account_key_request_object
2016-03-11 22:41:20 +00:00
# @param [String] fields
# Selector specifying which fields to include in a partial response.
# @param [String] quota_user
# Available to use for quota purposes for server-side applications. Can be any
# arbitrary string assigned to a user, but should not exceed 40 characters.
# @param [Google::Apis::RequestOptions] options
# Request-specific options
#
# @yield [result, err] Result & error if block supplied
2017-02-13 23:28:52 +00:00
# @yieldparam result [Google::Apis::IamV1::ServiceAccountKey] parsed result object
2016-03-11 22:41:20 +00:00
# @yieldparam err [StandardError] error object if request failed
#
2017-02-13 23:28:52 +00:00
# @return [Google::Apis::IamV1::ServiceAccountKey]
2016-03-11 22:41:20 +00:00
#
# @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
# @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
# @raise [Google::Apis::AuthorizationError] Authorization is required
2017-02-13 23:28:52 +00:00
def create_service_account_key(name, create_service_account_key_request_object = nil, fields: nil, quota_user: nil, options: nil, &block)
command = make_simple_command(:post, 'v1/{+name}/keys', options)
command.request_representation = Google::Apis::IamV1::CreateServiceAccountKeyRequest::Representation
command.request_object = create_service_account_key_request_object
command.response_representation = Google::Apis::IamV1::ServiceAccountKey::Representation
command.response_class = Google::Apis::IamV1::ServiceAccountKey
2016-03-11 22:41:20 +00:00
command.params['name'] = name unless name.nil?
command.query['fields'] = fields unless fields.nil?
command.query['quotaUser'] = quota_user unless quota_user.nil?
execute_or_queue_command(command, &block)
end
2017-03-30 22:30:51 +00:00
# Queries roles that can be granted on a particular resource.
# A role is grantable if it can be used as the role in a binding for a policy
# for that resource.
# @param [Google::Apis::IamV1::QueryGrantableRolesRequest] query_grantable_roles_request_object
# @param [String] fields
# Selector specifying which fields to include in a partial response.
# @param [String] quota_user
# Available to use for quota purposes for server-side applications. Can be any
# arbitrary string assigned to a user, but should not exceed 40 characters.
# @param [Google::Apis::RequestOptions] options
# Request-specific options
#
# @yield [result, err] Result & error if block supplied
# @yieldparam result [Google::Apis::IamV1::QueryGrantableRolesResponse] parsed result object
# @yieldparam err [StandardError] error object if request failed
#
# @return [Google::Apis::IamV1::QueryGrantableRolesResponse]
#
# @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
# @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
# @raise [Google::Apis::AuthorizationError] Authorization is required
def query_grantable_roles(query_grantable_roles_request_object = nil, fields: nil, quota_user: nil, options: nil, &block)
command = make_simple_command(:post, 'v1/roles:queryGrantableRoles', options)
command.request_representation = Google::Apis::IamV1::QueryGrantableRolesRequest::Representation
command.request_object = query_grantable_roles_request_object
command.response_representation = Google::Apis::IamV1::QueryGrantableRolesResponse::Representation
command.response_class = Google::Apis::IamV1::QueryGrantableRolesResponse
command.query['fields'] = fields unless fields.nil?
command.query['quotaUser'] = quota_user unless quota_user.nil?
execute_or_queue_command(command, &block)
end
2016-03-11 22:41:20 +00:00
protected
def apply_command_defaults(command)
command.query['key'] = key unless key.nil?
command.query['quotaUser'] = quota_user unless quota_user.nil?
end
end
end
end
end