Autogenerated update (2019-12-12)
Update: - cloudiot_v1 - cloudresourcemanager_v1 - cloudresourcemanager_v1beta1 - cloudresourcemanager_v2 - cloudresourcemanager_v2beta1 - cloudsearch_v1 - cloudtasks_v2 - containeranalysis_v1alpha1 - containeranalysis_v1beta1 - dlp_v2 - iap_v1 - serviceconsumermanagement_v1
This commit is contained in:
parent
923277c6a7
commit
26bb4d3f05
|
@ -26,7 +26,7 @@ module Google
|
|||
# @see https://cloud.google.com/iot
|
||||
module CloudiotV1
|
||||
VERSION = 'V1'
|
||||
REVISION = '20191112'
|
||||
REVISION = '20191203'
|
||||
|
||||
# View and manage your data across Google Cloud Platform services
|
||||
AUTH_CLOUD_PLATFORM = 'https://www.googleapis.com/auth/cloud-platform'
|
||||
|
|
|
@ -87,6 +87,23 @@ module Google
|
|||
# account. For example, `my-other-app@appspot.gserviceaccount.com`.
|
||||
# * `group:`emailid``: An email address that represents a Google group.
|
||||
# For example, `admins@example.com`.
|
||||
# * `deleted:user:`emailid`?uid=`uniqueid``: An email address (plus unique
|
||||
# identifier) representing a user that has been recently deleted. For
|
||||
# example, `alice@example.com?uid=123456789012345678901`. If the user is
|
||||
# recovered, this value reverts to `user:`emailid`` and the recovered user
|
||||
# retains the role in the binding.
|
||||
# * `deleted:serviceAccount:`emailid`?uid=`uniqueid``: An email address (plus
|
||||
# unique identifier) representing a service account that has been recently
|
||||
# deleted. For example,
|
||||
# `my-other-app@appspot.gserviceaccount.com?uid=123456789012345678901`.
|
||||
# If the service account is undeleted, this value reverts to
|
||||
# `serviceAccount:`emailid`` and the undeleted service account retains the
|
||||
# role in the binding.
|
||||
# * `deleted:group:`emailid`?uid=`uniqueid``: An email address (plus unique
|
||||
# identifier) representing a Google group that has been recently
|
||||
# deleted. For example, `admins@example.com?uid=123456789012345678901`. If
|
||||
# the group is recovered, this value reverts to `group:`emailid`` and the
|
||||
# recovered group retains the role in the binding.
|
||||
# * `domain:`domain``: The G Suite domain (primary) that represents all the
|
||||
# users of that domain. For example, `google.com` or `example.com`.
|
||||
# Corresponds to the JSON property `members`
|
||||
|
@ -793,16 +810,18 @@ module Google
|
|||
end
|
||||
end
|
||||
|
||||
# Defines an Identity and Access Management (IAM) policy. It is used to
|
||||
# specify access control policies for Cloud Platform resources.
|
||||
# An Identity and Access Management (IAM) policy, which specifies access
|
||||
# controls for Google Cloud resources.
|
||||
# A `Policy` is a collection of `bindings`. A `binding` binds one or more
|
||||
# `members` to a single `role`. Members can be user accounts, service accounts,
|
||||
# Google groups, and domains (such as G Suite). A `role` is a named list of
|
||||
# permissions (defined by IAM or configured by users). A `binding` can
|
||||
# optionally specify a `condition`, which is a logic expression that further
|
||||
# constrains the role binding based on attributes about the request and/or
|
||||
# target resource.
|
||||
# **JSON Example**
|
||||
# permissions; each `role` can be an IAM predefined role or a user-created
|
||||
# custom role.
|
||||
# Optionally, a `binding` can specify a `condition`, which is a logical
|
||||
# expression that allows access to a resource only if the expression evaluates
|
||||
# to `true`. A condition can add constraints based on attributes of the
|
||||
# request, the resource, or both.
|
||||
# **JSON example:**
|
||||
# `
|
||||
# "bindings": [
|
||||
# `
|
||||
|
@ -820,13 +839,15 @@ module Google
|
|||
# "condition": `
|
||||
# "title": "expirable access",
|
||||
# "description": "Does not grant access after Sep 2020",
|
||||
# "expression": "request.time <
|
||||
# timestamp('2020-10-01T00:00:00.000Z')",
|
||||
# "expression": "request.time < timestamp('2020-10-01T00:00:00.000Z')
|
||||
# ",
|
||||
# `
|
||||
# `
|
||||
# ]
|
||||
# ],
|
||||
# "etag": "BwWWja0YfJA=",
|
||||
# "version": 3
|
||||
# `
|
||||
# **YAML Example**
|
||||
# **YAML example:**
|
||||
# bindings:
|
||||
# - members:
|
||||
# - user:mike@example.com
|
||||
|
@ -841,14 +862,16 @@ module Google
|
|||
# title: expirable access
|
||||
# description: Does not grant access after Sep 2020
|
||||
# expression: request.time < timestamp('2020-10-01T00:00:00.000Z')
|
||||
# - etag: BwWWja0YfJA=
|
||||
# - version: 3
|
||||
# For a description of IAM and its features, see the
|
||||
# [IAM developer's guide](https://cloud.google.com/iam/docs).
|
||||
# [IAM documentation](https://cloud.google.com/iam/docs/).
|
||||
class Policy
|
||||
include Google::Apis::Core::Hashable
|
||||
|
||||
# Associates a list of `members` to a `role`. Optionally may specify a
|
||||
# `condition` that determines when binding is in effect.
|
||||
# `bindings` with no members will result in an error.
|
||||
# Associates a list of `members` to a `role`. Optionally, may specify a
|
||||
# `condition` that determines how and when the `bindings` are applied. Each
|
||||
# of the `bindings` must contain at least one member.
|
||||
# Corresponds to the JSON property `bindings`
|
||||
# @return [Array<Google::Apis::CloudiotV1::Binding>]
|
||||
attr_accessor :bindings
|
||||
|
@ -860,26 +883,31 @@ module Google
|
|||
# conditions: An `etag` is returned in the response to `getIamPolicy`, and
|
||||
# systems are expected to put that etag in the request to `setIamPolicy` to
|
||||
# ensure that their change will be applied to the same version of the policy.
|
||||
# If no `etag` is provided in the call to `setIamPolicy`, then the existing
|
||||
# policy is overwritten. Due to blind-set semantics of an etag-less policy,
|
||||
# 'setIamPolicy' will not fail even if the incoming policy version does not
|
||||
# meet the requirements for modifying the stored policy.
|
||||
# **Important:** If you use IAM Conditions, you must include the `etag` field
|
||||
# whenever you call `setIamPolicy`. If you omit this field, then IAM allows
|
||||
# you to overwrite a version `3` policy with a version `1` policy, and all of
|
||||
# the conditions in the version `3` policy are lost.
|
||||
# Corresponds to the JSON property `etag`
|
||||
# NOTE: Values are automatically base64 encoded/decoded in the client library.
|
||||
# @return [String]
|
||||
attr_accessor :etag
|
||||
|
||||
# Specifies the format of the policy.
|
||||
# Valid values are 0, 1, and 3. Requests specifying an invalid value will be
|
||||
# rejected.
|
||||
# Operations affecting conditional bindings must specify version 3. This can
|
||||
# be either setting a conditional policy, modifying a conditional binding,
|
||||
# or removing a binding (conditional or unconditional) from the stored
|
||||
# conditional policy.
|
||||
# Operations on non-conditional policies may specify any valid value or
|
||||
# leave the field unset.
|
||||
# If no etag is provided in the call to `setIamPolicy`, version compliance
|
||||
# checks against the stored policy is skipped.
|
||||
# Valid values are `0`, `1`, and `3`. Requests that specify an invalid value
|
||||
# are rejected.
|
||||
# Any operation that affects conditional role bindings must specify version
|
||||
# `3`. This requirement applies to the following operations:
|
||||
# * Getting a policy that includes a conditional role binding
|
||||
# * Adding a conditional role binding to a policy
|
||||
# * Changing a conditional role binding in a policy
|
||||
# * Removing any role binding, with or without a condition, from a policy
|
||||
# that includes conditions
|
||||
# **Important:** If you use IAM Conditions, you must include the `etag` field
|
||||
# whenever you call `setIamPolicy`. If you omit this field, then IAM allows
|
||||
# you to overwrite a version `3` policy with a version `1` policy, and all of
|
||||
# the conditions in the version `3` policy are lost.
|
||||
# If a policy does not include any conditions, operations on that policy may
|
||||
# specify any valid version or leave the field unset.
|
||||
# Corresponds to the JSON property `version`
|
||||
# @return [Fixnum]
|
||||
attr_accessor :version
|
||||
|
@ -1018,16 +1046,18 @@ module Google
|
|||
class SetIamPolicyRequest
|
||||
include Google::Apis::Core::Hashable
|
||||
|
||||
# Defines an Identity and Access Management (IAM) policy. It is used to
|
||||
# specify access control policies for Cloud Platform resources.
|
||||
# An Identity and Access Management (IAM) policy, which specifies access
|
||||
# controls for Google Cloud resources.
|
||||
# A `Policy` is a collection of `bindings`. A `binding` binds one or more
|
||||
# `members` to a single `role`. Members can be user accounts, service accounts,
|
||||
# Google groups, and domains (such as G Suite). A `role` is a named list of
|
||||
# permissions (defined by IAM or configured by users). A `binding` can
|
||||
# optionally specify a `condition`, which is a logic expression that further
|
||||
# constrains the role binding based on attributes about the request and/or
|
||||
# target resource.
|
||||
# **JSON Example**
|
||||
# permissions; each `role` can be an IAM predefined role or a user-created
|
||||
# custom role.
|
||||
# Optionally, a `binding` can specify a `condition`, which is a logical
|
||||
# expression that allows access to a resource only if the expression evaluates
|
||||
# to `true`. A condition can add constraints based on attributes of the
|
||||
# request, the resource, or both.
|
||||
# **JSON example:**
|
||||
# `
|
||||
# "bindings": [
|
||||
# `
|
||||
|
@ -1045,13 +1075,15 @@ module Google
|
|||
# "condition": `
|
||||
# "title": "expirable access",
|
||||
# "description": "Does not grant access after Sep 2020",
|
||||
# "expression": "request.time <
|
||||
# timestamp('2020-10-01T00:00:00.000Z')",
|
||||
# "expression": "request.time < timestamp('2020-10-01T00:00:00.000Z')
|
||||
# ",
|
||||
# `
|
||||
# `
|
||||
# ]
|
||||
# ],
|
||||
# "etag": "BwWWja0YfJA=",
|
||||
# "version": 3
|
||||
# `
|
||||
# **YAML Example**
|
||||
# **YAML example:**
|
||||
# bindings:
|
||||
# - members:
|
||||
# - user:mike@example.com
|
||||
|
@ -1066,8 +1098,10 @@ module Google
|
|||
# title: expirable access
|
||||
# description: Does not grant access after Sep 2020
|
||||
# expression: request.time < timestamp('2020-10-01T00:00:00.000Z')
|
||||
# - etag: BwWWja0YfJA=
|
||||
# - version: 3
|
||||
# For a description of IAM and its features, see the
|
||||
# [IAM developer's guide](https://cloud.google.com/iam/docs).
|
||||
# [IAM documentation](https://cloud.google.com/iam/docs/).
|
||||
# Corresponds to the JSON property `policy`
|
||||
# @return [Google::Apis::CloudiotV1::Policy]
|
||||
attr_accessor :policy
|
||||
|
|
|
@ -26,7 +26,7 @@ module Google
|
|||
# @see https://cloud.google.com/resource-manager
|
||||
module CloudresourcemanagerV1
|
||||
VERSION = 'V1'
|
||||
REVISION = '20191115'
|
||||
REVISION = '20191206'
|
||||
|
||||
# View and manage your data across Google Cloud Platform services
|
||||
AUTH_CLOUD_PLATFORM = 'https://www.googleapis.com/auth/cloud-platform'
|
||||
|
|
|
@ -184,6 +184,23 @@ module Google
|
|||
# account. For example, `my-other-app@appspot.gserviceaccount.com`.
|
||||
# * `group:`emailid``: An email address that represents a Google group.
|
||||
# For example, `admins@example.com`.
|
||||
# * `deleted:user:`emailid`?uid=`uniqueid``: An email address (plus unique
|
||||
# identifier) representing a user that has been recently deleted. For
|
||||
# example, `alice@example.com?uid=123456789012345678901`. If the user is
|
||||
# recovered, this value reverts to `user:`emailid`` and the recovered user
|
||||
# retains the role in the binding.
|
||||
# * `deleted:serviceAccount:`emailid`?uid=`uniqueid``: An email address (plus
|
||||
# unique identifier) representing a service account that has been recently
|
||||
# deleted. For example,
|
||||
# `my-other-app@appspot.gserviceaccount.com?uid=123456789012345678901`.
|
||||
# If the service account is undeleted, this value reverts to
|
||||
# `serviceAccount:`emailid`` and the undeleted service account retains the
|
||||
# role in the binding.
|
||||
# * `deleted:group:`emailid`?uid=`uniqueid``: An email address (plus unique
|
||||
# identifier) representing a Google group that has been recently
|
||||
# deleted. For example, `admins@example.com?uid=123456789012345678901`. If
|
||||
# the group is recovered, this value reverts to `group:`emailid`` and the
|
||||
# recovered group retains the role in the binding.
|
||||
# * `domain:`domain``: The G Suite domain (primary) that represents all the
|
||||
# users of that domain. For example, `google.com` or `example.com`.
|
||||
# Corresponds to the JSON property `members`
|
||||
|
@ -1289,16 +1306,18 @@ module Google
|
|||
end
|
||||
end
|
||||
|
||||
# Defines an Identity and Access Management (IAM) policy. It is used to
|
||||
# specify access control policies for Cloud Platform resources.
|
||||
# An Identity and Access Management (IAM) policy, which specifies access
|
||||
# controls for Google Cloud resources.
|
||||
# A `Policy` is a collection of `bindings`. A `binding` binds one or more
|
||||
# `members` to a single `role`. Members can be user accounts, service accounts,
|
||||
# Google groups, and domains (such as G Suite). A `role` is a named list of
|
||||
# permissions (defined by IAM or configured by users). A `binding` can
|
||||
# optionally specify a `condition`, which is a logic expression that further
|
||||
# constrains the role binding based on attributes about the request and/or
|
||||
# target resource.
|
||||
# **JSON Example**
|
||||
# permissions; each `role` can be an IAM predefined role or a user-created
|
||||
# custom role.
|
||||
# Optionally, a `binding` can specify a `condition`, which is a logical
|
||||
# expression that allows access to a resource only if the expression evaluates
|
||||
# to `true`. A condition can add constraints based on attributes of the
|
||||
# request, the resource, or both.
|
||||
# **JSON example:**
|
||||
# `
|
||||
# "bindings": [
|
||||
# `
|
||||
|
@ -1316,13 +1335,15 @@ module Google
|
|||
# "condition": `
|
||||
# "title": "expirable access",
|
||||
# "description": "Does not grant access after Sep 2020",
|
||||
# "expression": "request.time <
|
||||
# timestamp('2020-10-01T00:00:00.000Z')",
|
||||
# "expression": "request.time < timestamp('2020-10-01T00:00:00.000Z')
|
||||
# ",
|
||||
# `
|
||||
# `
|
||||
# ]
|
||||
# ],
|
||||
# "etag": "BwWWja0YfJA=",
|
||||
# "version": 3
|
||||
# `
|
||||
# **YAML Example**
|
||||
# **YAML example:**
|
||||
# bindings:
|
||||
# - members:
|
||||
# - user:mike@example.com
|
||||
|
@ -1337,8 +1358,10 @@ module Google
|
|||
# title: expirable access
|
||||
# description: Does not grant access after Sep 2020
|
||||
# expression: request.time < timestamp('2020-10-01T00:00:00.000Z')
|
||||
# - etag: BwWWja0YfJA=
|
||||
# - version: 3
|
||||
# For a description of IAM and its features, see the
|
||||
# [IAM developer's guide](https://cloud.google.com/iam/docs).
|
||||
# [IAM documentation](https://cloud.google.com/iam/docs/).
|
||||
class Policy
|
||||
include Google::Apis::Core::Hashable
|
||||
|
||||
|
@ -1347,9 +1370,9 @@ module Google
|
|||
# @return [Array<Google::Apis::CloudresourcemanagerV1::AuditConfig>]
|
||||
attr_accessor :audit_configs
|
||||
|
||||
# Associates a list of `members` to a `role`. Optionally may specify a
|
||||
# `condition` that determines when binding is in effect.
|
||||
# `bindings` with no members will result in an error.
|
||||
# Associates a list of `members` to a `role`. Optionally, may specify a
|
||||
# `condition` that determines how and when the `bindings` are applied. Each
|
||||
# of the `bindings` must contain at least one member.
|
||||
# Corresponds to the JSON property `bindings`
|
||||
# @return [Array<Google::Apis::CloudresourcemanagerV1::Binding>]
|
||||
attr_accessor :bindings
|
||||
|
@ -1361,26 +1384,31 @@ module Google
|
|||
# conditions: An `etag` is returned in the response to `getIamPolicy`, and
|
||||
# systems are expected to put that etag in the request to `setIamPolicy` to
|
||||
# ensure that their change will be applied to the same version of the policy.
|
||||
# If no `etag` is provided in the call to `setIamPolicy`, then the existing
|
||||
# policy is overwritten. Due to blind-set semantics of an etag-less policy,
|
||||
# 'setIamPolicy' will not fail even if the incoming policy version does not
|
||||
# meet the requirements for modifying the stored policy.
|
||||
# **Important:** If you use IAM Conditions, you must include the `etag` field
|
||||
# whenever you call `setIamPolicy`. If you omit this field, then IAM allows
|
||||
# you to overwrite a version `3` policy with a version `1` policy, and all of
|
||||
# the conditions in the version `3` policy are lost.
|
||||
# Corresponds to the JSON property `etag`
|
||||
# NOTE: Values are automatically base64 encoded/decoded in the client library.
|
||||
# @return [String]
|
||||
attr_accessor :etag
|
||||
|
||||
# Specifies the format of the policy.
|
||||
# Valid values are 0, 1, and 3. Requests specifying an invalid value will be
|
||||
# rejected.
|
||||
# Operations affecting conditional bindings must specify version 3. This can
|
||||
# be either setting a conditional policy, modifying a conditional binding,
|
||||
# or removing a binding (conditional or unconditional) from the stored
|
||||
# conditional policy.
|
||||
# Operations on non-conditional policies may specify any valid value or
|
||||
# leave the field unset.
|
||||
# If no etag is provided in the call to `setIamPolicy`, version compliance
|
||||
# checks against the stored policy is skipped.
|
||||
# Valid values are `0`, `1`, and `3`. Requests that specify an invalid value
|
||||
# are rejected.
|
||||
# Any operation that affects conditional role bindings must specify version
|
||||
# `3`. This requirement applies to the following operations:
|
||||
# * Getting a policy that includes a conditional role binding
|
||||
# * Adding a conditional role binding to a policy
|
||||
# * Changing a conditional role binding in a policy
|
||||
# * Removing any role binding, with or without a condition, from a policy
|
||||
# that includes conditions
|
||||
# **Important:** If you use IAM Conditions, you must include the `etag` field
|
||||
# whenever you call `setIamPolicy`. If you omit this field, then IAM allows
|
||||
# you to overwrite a version `3` policy with a version `1` policy, and all of
|
||||
# the conditions in the version `3` policy are lost.
|
||||
# If a policy does not include any conditions, operations on that policy may
|
||||
# specify any valid version or leave the field unset.
|
||||
# Corresponds to the JSON property `version`
|
||||
# @return [Fixnum]
|
||||
attr_accessor :version
|
||||
|
@ -1648,16 +1676,18 @@ module Google
|
|||
class SetIamPolicyRequest
|
||||
include Google::Apis::Core::Hashable
|
||||
|
||||
# Defines an Identity and Access Management (IAM) policy. It is used to
|
||||
# specify access control policies for Cloud Platform resources.
|
||||
# An Identity and Access Management (IAM) policy, which specifies access
|
||||
# controls for Google Cloud resources.
|
||||
# A `Policy` is a collection of `bindings`. A `binding` binds one or more
|
||||
# `members` to a single `role`. Members can be user accounts, service accounts,
|
||||
# Google groups, and domains (such as G Suite). A `role` is a named list of
|
||||
# permissions (defined by IAM or configured by users). A `binding` can
|
||||
# optionally specify a `condition`, which is a logic expression that further
|
||||
# constrains the role binding based on attributes about the request and/or
|
||||
# target resource.
|
||||
# **JSON Example**
|
||||
# permissions; each `role` can be an IAM predefined role or a user-created
|
||||
# custom role.
|
||||
# Optionally, a `binding` can specify a `condition`, which is a logical
|
||||
# expression that allows access to a resource only if the expression evaluates
|
||||
# to `true`. A condition can add constraints based on attributes of the
|
||||
# request, the resource, or both.
|
||||
# **JSON example:**
|
||||
# `
|
||||
# "bindings": [
|
||||
# `
|
||||
|
@ -1675,13 +1705,15 @@ module Google
|
|||
# "condition": `
|
||||
# "title": "expirable access",
|
||||
# "description": "Does not grant access after Sep 2020",
|
||||
# "expression": "request.time <
|
||||
# timestamp('2020-10-01T00:00:00.000Z')",
|
||||
# "expression": "request.time < timestamp('2020-10-01T00:00:00.000Z')
|
||||
# ",
|
||||
# `
|
||||
# `
|
||||
# ]
|
||||
# ],
|
||||
# "etag": "BwWWja0YfJA=",
|
||||
# "version": 3
|
||||
# `
|
||||
# **YAML Example**
|
||||
# **YAML example:**
|
||||
# bindings:
|
||||
# - members:
|
||||
# - user:mike@example.com
|
||||
|
@ -1696,8 +1728,10 @@ module Google
|
|||
# title: expirable access
|
||||
# description: Does not grant access after Sep 2020
|
||||
# expression: request.time < timestamp('2020-10-01T00:00:00.000Z')
|
||||
# - etag: BwWWja0YfJA=
|
||||
# - version: 3
|
||||
# For a description of IAM and its features, see the
|
||||
# [IAM developer's guide](https://cloud.google.com/iam/docs).
|
||||
# [IAM documentation](https://cloud.google.com/iam/docs/).
|
||||
# Corresponds to the JSON property `policy`
|
||||
# @return [Google::Apis::CloudresourcemanagerV1::Policy]
|
||||
attr_accessor :policy
|
||||
|
|
|
@ -26,7 +26,7 @@ module Google
|
|||
# @see https://cloud.google.com/resource-manager
|
||||
module CloudresourcemanagerV1beta1
|
||||
VERSION = 'V1beta1'
|
||||
REVISION = '20191115'
|
||||
REVISION = '20191206'
|
||||
|
||||
# View and manage your data across Google Cloud Platform services
|
||||
AUTH_CLOUD_PLATFORM = 'https://www.googleapis.com/auth/cloud-platform'
|
||||
|
|
|
@ -184,6 +184,23 @@ module Google
|
|||
# account. For example, `my-other-app@appspot.gserviceaccount.com`.
|
||||
# * `group:`emailid``: An email address that represents a Google group.
|
||||
# For example, `admins@example.com`.
|
||||
# * `deleted:user:`emailid`?uid=`uniqueid``: An email address (plus unique
|
||||
# identifier) representing a user that has been recently deleted. For
|
||||
# example, `alice@example.com?uid=123456789012345678901`. If the user is
|
||||
# recovered, this value reverts to `user:`emailid`` and the recovered user
|
||||
# retains the role in the binding.
|
||||
# * `deleted:serviceAccount:`emailid`?uid=`uniqueid``: An email address (plus
|
||||
# unique identifier) representing a service account that has been recently
|
||||
# deleted. For example,
|
||||
# `my-other-app@appspot.gserviceaccount.com?uid=123456789012345678901`.
|
||||
# If the service account is undeleted, this value reverts to
|
||||
# `serviceAccount:`emailid`` and the undeleted service account retains the
|
||||
# role in the binding.
|
||||
# * `deleted:group:`emailid`?uid=`uniqueid``: An email address (plus unique
|
||||
# identifier) representing a Google group that has been recently
|
||||
# deleted. For example, `admins@example.com?uid=123456789012345678901`. If
|
||||
# the group is recovered, this value reverts to `group:`emailid`` and the
|
||||
# recovered group retains the role in the binding.
|
||||
# * `domain:`domain``: The G Suite domain (primary) that represents all the
|
||||
# users of that domain. For example, `google.com` or `example.com`.
|
||||
# Corresponds to the JSON property `members`
|
||||
|
@ -560,16 +577,18 @@ module Google
|
|||
end
|
||||
end
|
||||
|
||||
# Defines an Identity and Access Management (IAM) policy. It is used to
|
||||
# specify access control policies for Cloud Platform resources.
|
||||
# An Identity and Access Management (IAM) policy, which specifies access
|
||||
# controls for Google Cloud resources.
|
||||
# A `Policy` is a collection of `bindings`. A `binding` binds one or more
|
||||
# `members` to a single `role`. Members can be user accounts, service accounts,
|
||||
# Google groups, and domains (such as G Suite). A `role` is a named list of
|
||||
# permissions (defined by IAM or configured by users). A `binding` can
|
||||
# optionally specify a `condition`, which is a logic expression that further
|
||||
# constrains the role binding based on attributes about the request and/or
|
||||
# target resource.
|
||||
# **JSON Example**
|
||||
# permissions; each `role` can be an IAM predefined role or a user-created
|
||||
# custom role.
|
||||
# Optionally, a `binding` can specify a `condition`, which is a logical
|
||||
# expression that allows access to a resource only if the expression evaluates
|
||||
# to `true`. A condition can add constraints based on attributes of the
|
||||
# request, the resource, or both.
|
||||
# **JSON example:**
|
||||
# `
|
||||
# "bindings": [
|
||||
# `
|
||||
|
@ -587,13 +606,15 @@ module Google
|
|||
# "condition": `
|
||||
# "title": "expirable access",
|
||||
# "description": "Does not grant access after Sep 2020",
|
||||
# "expression": "request.time <
|
||||
# timestamp('2020-10-01T00:00:00.000Z')",
|
||||
# "expression": "request.time < timestamp('2020-10-01T00:00:00.000Z')
|
||||
# ",
|
||||
# `
|
||||
# `
|
||||
# ]
|
||||
# ],
|
||||
# "etag": "BwWWja0YfJA=",
|
||||
# "version": 3
|
||||
# `
|
||||
# **YAML Example**
|
||||
# **YAML example:**
|
||||
# bindings:
|
||||
# - members:
|
||||
# - user:mike@example.com
|
||||
|
@ -608,8 +629,10 @@ module Google
|
|||
# title: expirable access
|
||||
# description: Does not grant access after Sep 2020
|
||||
# expression: request.time < timestamp('2020-10-01T00:00:00.000Z')
|
||||
# - etag: BwWWja0YfJA=
|
||||
# - version: 3
|
||||
# For a description of IAM and its features, see the
|
||||
# [IAM developer's guide](https://cloud.google.com/iam/docs).
|
||||
# [IAM documentation](https://cloud.google.com/iam/docs/).
|
||||
class Policy
|
||||
include Google::Apis::Core::Hashable
|
||||
|
||||
|
@ -618,9 +641,9 @@ module Google
|
|||
# @return [Array<Google::Apis::CloudresourcemanagerV1beta1::AuditConfig>]
|
||||
attr_accessor :audit_configs
|
||||
|
||||
# Associates a list of `members` to a `role`. Optionally may specify a
|
||||
# `condition` that determines when binding is in effect.
|
||||
# `bindings` with no members will result in an error.
|
||||
# Associates a list of `members` to a `role`. Optionally, may specify a
|
||||
# `condition` that determines how and when the `bindings` are applied. Each
|
||||
# of the `bindings` must contain at least one member.
|
||||
# Corresponds to the JSON property `bindings`
|
||||
# @return [Array<Google::Apis::CloudresourcemanagerV1beta1::Binding>]
|
||||
attr_accessor :bindings
|
||||
|
@ -632,26 +655,31 @@ module Google
|
|||
# conditions: An `etag` is returned in the response to `getIamPolicy`, and
|
||||
# systems are expected to put that etag in the request to `setIamPolicy` to
|
||||
# ensure that their change will be applied to the same version of the policy.
|
||||
# If no `etag` is provided in the call to `setIamPolicy`, then the existing
|
||||
# policy is overwritten. Due to blind-set semantics of an etag-less policy,
|
||||
# 'setIamPolicy' will not fail even if the incoming policy version does not
|
||||
# meet the requirements for modifying the stored policy.
|
||||
# **Important:** If you use IAM Conditions, you must include the `etag` field
|
||||
# whenever you call `setIamPolicy`. If you omit this field, then IAM allows
|
||||
# you to overwrite a version `3` policy with a version `1` policy, and all of
|
||||
# the conditions in the version `3` policy are lost.
|
||||
# Corresponds to the JSON property `etag`
|
||||
# NOTE: Values are automatically base64 encoded/decoded in the client library.
|
||||
# @return [String]
|
||||
attr_accessor :etag
|
||||
|
||||
# Specifies the format of the policy.
|
||||
# Valid values are 0, 1, and 3. Requests specifying an invalid value will be
|
||||
# rejected.
|
||||
# Operations affecting conditional bindings must specify version 3. This can
|
||||
# be either setting a conditional policy, modifying a conditional binding,
|
||||
# or removing a binding (conditional or unconditional) from the stored
|
||||
# conditional policy.
|
||||
# Operations on non-conditional policies may specify any valid value or
|
||||
# leave the field unset.
|
||||
# If no etag is provided in the call to `setIamPolicy`, version compliance
|
||||
# checks against the stored policy is skipped.
|
||||
# Valid values are `0`, `1`, and `3`. Requests that specify an invalid value
|
||||
# are rejected.
|
||||
# Any operation that affects conditional role bindings must specify version
|
||||
# `3`. This requirement applies to the following operations:
|
||||
# * Getting a policy that includes a conditional role binding
|
||||
# * Adding a conditional role binding to a policy
|
||||
# * Changing a conditional role binding in a policy
|
||||
# * Removing any role binding, with or without a condition, from a policy
|
||||
# that includes conditions
|
||||
# **Important:** If you use IAM Conditions, you must include the `etag` field
|
||||
# whenever you call `setIamPolicy`. If you omit this field, then IAM allows
|
||||
# you to overwrite a version `3` policy with a version `1` policy, and all of
|
||||
# the conditions in the version `3` policy are lost.
|
||||
# If a policy does not include any conditions, operations on that policy may
|
||||
# specify any valid version or leave the field unset.
|
||||
# Corresponds to the JSON property `version`
|
||||
# @return [Fixnum]
|
||||
attr_accessor :version
|
||||
|
@ -824,16 +852,18 @@ module Google
|
|||
class SetIamPolicyRequest
|
||||
include Google::Apis::Core::Hashable
|
||||
|
||||
# Defines an Identity and Access Management (IAM) policy. It is used to
|
||||
# specify access control policies for Cloud Platform resources.
|
||||
# An Identity and Access Management (IAM) policy, which specifies access
|
||||
# controls for Google Cloud resources.
|
||||
# A `Policy` is a collection of `bindings`. A `binding` binds one or more
|
||||
# `members` to a single `role`. Members can be user accounts, service accounts,
|
||||
# Google groups, and domains (such as G Suite). A `role` is a named list of
|
||||
# permissions (defined by IAM or configured by users). A `binding` can
|
||||
# optionally specify a `condition`, which is a logic expression that further
|
||||
# constrains the role binding based on attributes about the request and/or
|
||||
# target resource.
|
||||
# **JSON Example**
|
||||
# permissions; each `role` can be an IAM predefined role or a user-created
|
||||
# custom role.
|
||||
# Optionally, a `binding` can specify a `condition`, which is a logical
|
||||
# expression that allows access to a resource only if the expression evaluates
|
||||
# to `true`. A condition can add constraints based on attributes of the
|
||||
# request, the resource, or both.
|
||||
# **JSON example:**
|
||||
# `
|
||||
# "bindings": [
|
||||
# `
|
||||
|
@ -851,13 +881,15 @@ module Google
|
|||
# "condition": `
|
||||
# "title": "expirable access",
|
||||
# "description": "Does not grant access after Sep 2020",
|
||||
# "expression": "request.time <
|
||||
# timestamp('2020-10-01T00:00:00.000Z')",
|
||||
# "expression": "request.time < timestamp('2020-10-01T00:00:00.000Z')
|
||||
# ",
|
||||
# `
|
||||
# `
|
||||
# ]
|
||||
# ],
|
||||
# "etag": "BwWWja0YfJA=",
|
||||
# "version": 3
|
||||
# `
|
||||
# **YAML Example**
|
||||
# **YAML example:**
|
||||
# bindings:
|
||||
# - members:
|
||||
# - user:mike@example.com
|
||||
|
@ -872,8 +904,10 @@ module Google
|
|||
# title: expirable access
|
||||
# description: Does not grant access after Sep 2020
|
||||
# expression: request.time < timestamp('2020-10-01T00:00:00.000Z')
|
||||
# - etag: BwWWja0YfJA=
|
||||
# - version: 3
|
||||
# For a description of IAM and its features, see the
|
||||
# [IAM developer's guide](https://cloud.google.com/iam/docs).
|
||||
# [IAM documentation](https://cloud.google.com/iam/docs/).
|
||||
# Corresponds to the JSON property `policy`
|
||||
# @return [Google::Apis::CloudresourcemanagerV1beta1::Policy]
|
||||
attr_accessor :policy
|
||||
|
|
|
@ -290,7 +290,7 @@ module Google
|
|||
# (/billing/reference/rest/v1/projects/updateBillingInfo) method.
|
||||
# @param [Google::Apis::CloudresourcemanagerV1beta1::Project] project_object
|
||||
# @param [Boolean] use_legacy_stack
|
||||
# A safety hatch to opt out of the new reliable project creation process.
|
||||
# A now unused experiment opt-out option.
|
||||
# @param [String] fields
|
||||
# Selector specifying which fields to include in a partial response.
|
||||
# @param [String] quota_user
|
||||
|
|
|
@ -26,7 +26,7 @@ module Google
|
|||
# @see https://cloud.google.com/resource-manager
|
||||
module CloudresourcemanagerV2
|
||||
VERSION = 'V2'
|
||||
REVISION = '20191115'
|
||||
REVISION = '20191206'
|
||||
|
||||
# View and manage your data across Google Cloud Platform services
|
||||
AUTH_CLOUD_PLATFORM = 'https://www.googleapis.com/auth/cloud-platform'
|
||||
|
|
|
@ -162,6 +162,23 @@ module Google
|
|||
# account. For example, `my-other-app@appspot.gserviceaccount.com`.
|
||||
# * `group:`emailid``: An email address that represents a Google group.
|
||||
# For example, `admins@example.com`.
|
||||
# * `deleted:user:`emailid`?uid=`uniqueid``: An email address (plus unique
|
||||
# identifier) representing a user that has been recently deleted. For
|
||||
# example, `alice@example.com?uid=123456789012345678901`. If the user is
|
||||
# recovered, this value reverts to `user:`emailid`` and the recovered user
|
||||
# retains the role in the binding.
|
||||
# * `deleted:serviceAccount:`emailid`?uid=`uniqueid``: An email address (plus
|
||||
# unique identifier) representing a service account that has been recently
|
||||
# deleted. For example,
|
||||
# `my-other-app@appspot.gserviceaccount.com?uid=123456789012345678901`.
|
||||
# If the service account is undeleted, this value reverts to
|
||||
# `serviceAccount:`emailid`` and the undeleted service account retains the
|
||||
# role in the binding.
|
||||
# * `deleted:group:`emailid`?uid=`uniqueid``: An email address (plus unique
|
||||
# identifier) representing a Google group that has been recently
|
||||
# deleted. For example, `admins@example.com?uid=123456789012345678901`. If
|
||||
# the group is recovered, this value reverts to `group:`emailid`` and the
|
||||
# recovered group retains the role in the binding.
|
||||
# * `domain:`domain``: The G Suite domain (primary) that represents all the
|
||||
# users of that domain. For example, `google.com` or `example.com`.
|
||||
# Corresponds to the JSON property `members`
|
||||
|
@ -502,16 +519,18 @@ module Google
|
|||
end
|
||||
end
|
||||
|
||||
# Defines an Identity and Access Management (IAM) policy. It is used to
|
||||
# specify access control policies for Cloud Platform resources.
|
||||
# An Identity and Access Management (IAM) policy, which specifies access
|
||||
# controls for Google Cloud resources.
|
||||
# A `Policy` is a collection of `bindings`. A `binding` binds one or more
|
||||
# `members` to a single `role`. Members can be user accounts, service accounts,
|
||||
# Google groups, and domains (such as G Suite). A `role` is a named list of
|
||||
# permissions (defined by IAM or configured by users). A `binding` can
|
||||
# optionally specify a `condition`, which is a logic expression that further
|
||||
# constrains the role binding based on attributes about the request and/or
|
||||
# target resource.
|
||||
# **JSON Example**
|
||||
# permissions; each `role` can be an IAM predefined role or a user-created
|
||||
# custom role.
|
||||
# Optionally, a `binding` can specify a `condition`, which is a logical
|
||||
# expression that allows access to a resource only if the expression evaluates
|
||||
# to `true`. A condition can add constraints based on attributes of the
|
||||
# request, the resource, or both.
|
||||
# **JSON example:**
|
||||
# `
|
||||
# "bindings": [
|
||||
# `
|
||||
|
@ -529,13 +548,15 @@ module Google
|
|||
# "condition": `
|
||||
# "title": "expirable access",
|
||||
# "description": "Does not grant access after Sep 2020",
|
||||
# "expression": "request.time <
|
||||
# timestamp('2020-10-01T00:00:00.000Z')",
|
||||
# "expression": "request.time < timestamp('2020-10-01T00:00:00.000Z')
|
||||
# ",
|
||||
# `
|
||||
# `
|
||||
# ]
|
||||
# ],
|
||||
# "etag": "BwWWja0YfJA=",
|
||||
# "version": 3
|
||||
# `
|
||||
# **YAML Example**
|
||||
# **YAML example:**
|
||||
# bindings:
|
||||
# - members:
|
||||
# - user:mike@example.com
|
||||
|
@ -550,8 +571,10 @@ module Google
|
|||
# title: expirable access
|
||||
# description: Does not grant access after Sep 2020
|
||||
# expression: request.time < timestamp('2020-10-01T00:00:00.000Z')
|
||||
# - etag: BwWWja0YfJA=
|
||||
# - version: 3
|
||||
# For a description of IAM and its features, see the
|
||||
# [IAM developer's guide](https://cloud.google.com/iam/docs).
|
||||
# [IAM documentation](https://cloud.google.com/iam/docs/).
|
||||
class Policy
|
||||
include Google::Apis::Core::Hashable
|
||||
|
||||
|
@ -560,9 +583,9 @@ module Google
|
|||
# @return [Array<Google::Apis::CloudresourcemanagerV2::AuditConfig>]
|
||||
attr_accessor :audit_configs
|
||||
|
||||
# Associates a list of `members` to a `role`. Optionally may specify a
|
||||
# `condition` that determines when binding is in effect.
|
||||
# `bindings` with no members will result in an error.
|
||||
# Associates a list of `members` to a `role`. Optionally, may specify a
|
||||
# `condition` that determines how and when the `bindings` are applied. Each
|
||||
# of the `bindings` must contain at least one member.
|
||||
# Corresponds to the JSON property `bindings`
|
||||
# @return [Array<Google::Apis::CloudresourcemanagerV2::Binding>]
|
||||
attr_accessor :bindings
|
||||
|
@ -574,26 +597,31 @@ module Google
|
|||
# conditions: An `etag` is returned in the response to `getIamPolicy`, and
|
||||
# systems are expected to put that etag in the request to `setIamPolicy` to
|
||||
# ensure that their change will be applied to the same version of the policy.
|
||||
# If no `etag` is provided in the call to `setIamPolicy`, then the existing
|
||||
# policy is overwritten. Due to blind-set semantics of an etag-less policy,
|
||||
# 'setIamPolicy' will not fail even if the incoming policy version does not
|
||||
# meet the requirements for modifying the stored policy.
|
||||
# **Important:** If you use IAM Conditions, you must include the `etag` field
|
||||
# whenever you call `setIamPolicy`. If you omit this field, then IAM allows
|
||||
# you to overwrite a version `3` policy with a version `1` policy, and all of
|
||||
# the conditions in the version `3` policy are lost.
|
||||
# Corresponds to the JSON property `etag`
|
||||
# NOTE: Values are automatically base64 encoded/decoded in the client library.
|
||||
# @return [String]
|
||||
attr_accessor :etag
|
||||
|
||||
# Specifies the format of the policy.
|
||||
# Valid values are 0, 1, and 3. Requests specifying an invalid value will be
|
||||
# rejected.
|
||||
# Operations affecting conditional bindings must specify version 3. This can
|
||||
# be either setting a conditional policy, modifying a conditional binding,
|
||||
# or removing a binding (conditional or unconditional) from the stored
|
||||
# conditional policy.
|
||||
# Operations on non-conditional policies may specify any valid value or
|
||||
# leave the field unset.
|
||||
# If no etag is provided in the call to `setIamPolicy`, version compliance
|
||||
# checks against the stored policy is skipped.
|
||||
# Valid values are `0`, `1`, and `3`. Requests that specify an invalid value
|
||||
# are rejected.
|
||||
# Any operation that affects conditional role bindings must specify version
|
||||
# `3`. This requirement applies to the following operations:
|
||||
# * Getting a policy that includes a conditional role binding
|
||||
# * Adding a conditional role binding to a policy
|
||||
# * Changing a conditional role binding in a policy
|
||||
# * Removing any role binding, with or without a condition, from a policy
|
||||
# that includes conditions
|
||||
# **Important:** If you use IAM Conditions, you must include the `etag` field
|
||||
# whenever you call `setIamPolicy`. If you omit this field, then IAM allows
|
||||
# you to overwrite a version `3` policy with a version `1` policy, and all of
|
||||
# the conditions in the version `3` policy are lost.
|
||||
# If a policy does not include any conditions, operations on that policy may
|
||||
# specify any valid version or leave the field unset.
|
||||
# Corresponds to the JSON property `version`
|
||||
# @return [Fixnum]
|
||||
attr_accessor :version
|
||||
|
@ -729,16 +757,18 @@ module Google
|
|||
class SetIamPolicyRequest
|
||||
include Google::Apis::Core::Hashable
|
||||
|
||||
# Defines an Identity and Access Management (IAM) policy. It is used to
|
||||
# specify access control policies for Cloud Platform resources.
|
||||
# An Identity and Access Management (IAM) policy, which specifies access
|
||||
# controls for Google Cloud resources.
|
||||
# A `Policy` is a collection of `bindings`. A `binding` binds one or more
|
||||
# `members` to a single `role`. Members can be user accounts, service accounts,
|
||||
# Google groups, and domains (such as G Suite). A `role` is a named list of
|
||||
# permissions (defined by IAM or configured by users). A `binding` can
|
||||
# optionally specify a `condition`, which is a logic expression that further
|
||||
# constrains the role binding based on attributes about the request and/or
|
||||
# target resource.
|
||||
# **JSON Example**
|
||||
# permissions; each `role` can be an IAM predefined role or a user-created
|
||||
# custom role.
|
||||
# Optionally, a `binding` can specify a `condition`, which is a logical
|
||||
# expression that allows access to a resource only if the expression evaluates
|
||||
# to `true`. A condition can add constraints based on attributes of the
|
||||
# request, the resource, or both.
|
||||
# **JSON example:**
|
||||
# `
|
||||
# "bindings": [
|
||||
# `
|
||||
|
@ -756,13 +786,15 @@ module Google
|
|||
# "condition": `
|
||||
# "title": "expirable access",
|
||||
# "description": "Does not grant access after Sep 2020",
|
||||
# "expression": "request.time <
|
||||
# timestamp('2020-10-01T00:00:00.000Z')",
|
||||
# "expression": "request.time < timestamp('2020-10-01T00:00:00.000Z')
|
||||
# ",
|
||||
# `
|
||||
# `
|
||||
# ]
|
||||
# ],
|
||||
# "etag": "BwWWja0YfJA=",
|
||||
# "version": 3
|
||||
# `
|
||||
# **YAML Example**
|
||||
# **YAML example:**
|
||||
# bindings:
|
||||
# - members:
|
||||
# - user:mike@example.com
|
||||
|
@ -777,8 +809,10 @@ module Google
|
|||
# title: expirable access
|
||||
# description: Does not grant access after Sep 2020
|
||||
# expression: request.time < timestamp('2020-10-01T00:00:00.000Z')
|
||||
# - etag: BwWWja0YfJA=
|
||||
# - version: 3
|
||||
# For a description of IAM and its features, see the
|
||||
# [IAM developer's guide](https://cloud.google.com/iam/docs).
|
||||
# [IAM documentation](https://cloud.google.com/iam/docs/).
|
||||
# Corresponds to the JSON property `policy`
|
||||
# @return [Google::Apis::CloudresourcemanagerV2::Policy]
|
||||
attr_accessor :policy
|
||||
|
|
|
@ -26,7 +26,7 @@ module Google
|
|||
# @see https://cloud.google.com/resource-manager
|
||||
module CloudresourcemanagerV2beta1
|
||||
VERSION = 'V2beta1'
|
||||
REVISION = '20191115'
|
||||
REVISION = '20191206'
|
||||
|
||||
# View and manage your data across Google Cloud Platform services
|
||||
AUTH_CLOUD_PLATFORM = 'https://www.googleapis.com/auth/cloud-platform'
|
||||
|
|
|
@ -162,6 +162,23 @@ module Google
|
|||
# account. For example, `my-other-app@appspot.gserviceaccount.com`.
|
||||
# * `group:`emailid``: An email address that represents a Google group.
|
||||
# For example, `admins@example.com`.
|
||||
# * `deleted:user:`emailid`?uid=`uniqueid``: An email address (plus unique
|
||||
# identifier) representing a user that has been recently deleted. For
|
||||
# example, `alice@example.com?uid=123456789012345678901`. If the user is
|
||||
# recovered, this value reverts to `user:`emailid`` and the recovered user
|
||||
# retains the role in the binding.
|
||||
# * `deleted:serviceAccount:`emailid`?uid=`uniqueid``: An email address (plus
|
||||
# unique identifier) representing a service account that has been recently
|
||||
# deleted. For example,
|
||||
# `my-other-app@appspot.gserviceaccount.com?uid=123456789012345678901`.
|
||||
# If the service account is undeleted, this value reverts to
|
||||
# `serviceAccount:`emailid`` and the undeleted service account retains the
|
||||
# role in the binding.
|
||||
# * `deleted:group:`emailid`?uid=`uniqueid``: An email address (plus unique
|
||||
# identifier) representing a Google group that has been recently
|
||||
# deleted. For example, `admins@example.com?uid=123456789012345678901`. If
|
||||
# the group is recovered, this value reverts to `group:`emailid`` and the
|
||||
# recovered group retains the role in the binding.
|
||||
# * `domain:`domain``: The G Suite domain (primary) that represents all the
|
||||
# users of that domain. For example, `google.com` or `example.com`.
|
||||
# Corresponds to the JSON property `members`
|
||||
|
@ -502,16 +519,18 @@ module Google
|
|||
end
|
||||
end
|
||||
|
||||
# Defines an Identity and Access Management (IAM) policy. It is used to
|
||||
# specify access control policies for Cloud Platform resources.
|
||||
# An Identity and Access Management (IAM) policy, which specifies access
|
||||
# controls for Google Cloud resources.
|
||||
# A `Policy` is a collection of `bindings`. A `binding` binds one or more
|
||||
# `members` to a single `role`. Members can be user accounts, service accounts,
|
||||
# Google groups, and domains (such as G Suite). A `role` is a named list of
|
||||
# permissions (defined by IAM or configured by users). A `binding` can
|
||||
# optionally specify a `condition`, which is a logic expression that further
|
||||
# constrains the role binding based on attributes about the request and/or
|
||||
# target resource.
|
||||
# **JSON Example**
|
||||
# permissions; each `role` can be an IAM predefined role or a user-created
|
||||
# custom role.
|
||||
# Optionally, a `binding` can specify a `condition`, which is a logical
|
||||
# expression that allows access to a resource only if the expression evaluates
|
||||
# to `true`. A condition can add constraints based on attributes of the
|
||||
# request, the resource, or both.
|
||||
# **JSON example:**
|
||||
# `
|
||||
# "bindings": [
|
||||
# `
|
||||
|
@ -529,13 +548,15 @@ module Google
|
|||
# "condition": `
|
||||
# "title": "expirable access",
|
||||
# "description": "Does not grant access after Sep 2020",
|
||||
# "expression": "request.time <
|
||||
# timestamp('2020-10-01T00:00:00.000Z')",
|
||||
# "expression": "request.time < timestamp('2020-10-01T00:00:00.000Z')
|
||||
# ",
|
||||
# `
|
||||
# `
|
||||
# ]
|
||||
# ],
|
||||
# "etag": "BwWWja0YfJA=",
|
||||
# "version": 3
|
||||
# `
|
||||
# **YAML Example**
|
||||
# **YAML example:**
|
||||
# bindings:
|
||||
# - members:
|
||||
# - user:mike@example.com
|
||||
|
@ -550,8 +571,10 @@ module Google
|
|||
# title: expirable access
|
||||
# description: Does not grant access after Sep 2020
|
||||
# expression: request.time < timestamp('2020-10-01T00:00:00.000Z')
|
||||
# - etag: BwWWja0YfJA=
|
||||
# - version: 3
|
||||
# For a description of IAM and its features, see the
|
||||
# [IAM developer's guide](https://cloud.google.com/iam/docs).
|
||||
# [IAM documentation](https://cloud.google.com/iam/docs/).
|
||||
class Policy
|
||||
include Google::Apis::Core::Hashable
|
||||
|
||||
|
@ -560,9 +583,9 @@ module Google
|
|||
# @return [Array<Google::Apis::CloudresourcemanagerV2beta1::AuditConfig>]
|
||||
attr_accessor :audit_configs
|
||||
|
||||
# Associates a list of `members` to a `role`. Optionally may specify a
|
||||
# `condition` that determines when binding is in effect.
|
||||
# `bindings` with no members will result in an error.
|
||||
# Associates a list of `members` to a `role`. Optionally, may specify a
|
||||
# `condition` that determines how and when the `bindings` are applied. Each
|
||||
# of the `bindings` must contain at least one member.
|
||||
# Corresponds to the JSON property `bindings`
|
||||
# @return [Array<Google::Apis::CloudresourcemanagerV2beta1::Binding>]
|
||||
attr_accessor :bindings
|
||||
|
@ -574,26 +597,31 @@ module Google
|
|||
# conditions: An `etag` is returned in the response to `getIamPolicy`, and
|
||||
# systems are expected to put that etag in the request to `setIamPolicy` to
|
||||
# ensure that their change will be applied to the same version of the policy.
|
||||
# If no `etag` is provided in the call to `setIamPolicy`, then the existing
|
||||
# policy is overwritten. Due to blind-set semantics of an etag-less policy,
|
||||
# 'setIamPolicy' will not fail even if the incoming policy version does not
|
||||
# meet the requirements for modifying the stored policy.
|
||||
# **Important:** If you use IAM Conditions, you must include the `etag` field
|
||||
# whenever you call `setIamPolicy`. If you omit this field, then IAM allows
|
||||
# you to overwrite a version `3` policy with a version `1` policy, and all of
|
||||
# the conditions in the version `3` policy are lost.
|
||||
# Corresponds to the JSON property `etag`
|
||||
# NOTE: Values are automatically base64 encoded/decoded in the client library.
|
||||
# @return [String]
|
||||
attr_accessor :etag
|
||||
|
||||
# Specifies the format of the policy.
|
||||
# Valid values are 0, 1, and 3. Requests specifying an invalid value will be
|
||||
# rejected.
|
||||
# Operations affecting conditional bindings must specify version 3. This can
|
||||
# be either setting a conditional policy, modifying a conditional binding,
|
||||
# or removing a binding (conditional or unconditional) from the stored
|
||||
# conditional policy.
|
||||
# Operations on non-conditional policies may specify any valid value or
|
||||
# leave the field unset.
|
||||
# If no etag is provided in the call to `setIamPolicy`, version compliance
|
||||
# checks against the stored policy is skipped.
|
||||
# Valid values are `0`, `1`, and `3`. Requests that specify an invalid value
|
||||
# are rejected.
|
||||
# Any operation that affects conditional role bindings must specify version
|
||||
# `3`. This requirement applies to the following operations:
|
||||
# * Getting a policy that includes a conditional role binding
|
||||
# * Adding a conditional role binding to a policy
|
||||
# * Changing a conditional role binding in a policy
|
||||
# * Removing any role binding, with or without a condition, from a policy
|
||||
# that includes conditions
|
||||
# **Important:** If you use IAM Conditions, you must include the `etag` field
|
||||
# whenever you call `setIamPolicy`. If you omit this field, then IAM allows
|
||||
# you to overwrite a version `3` policy with a version `1` policy, and all of
|
||||
# the conditions in the version `3` policy are lost.
|
||||
# If a policy does not include any conditions, operations on that policy may
|
||||
# specify any valid version or leave the field unset.
|
||||
# Corresponds to the JSON property `version`
|
||||
# @return [Fixnum]
|
||||
attr_accessor :version
|
||||
|
@ -729,16 +757,18 @@ module Google
|
|||
class SetIamPolicyRequest
|
||||
include Google::Apis::Core::Hashable
|
||||
|
||||
# Defines an Identity and Access Management (IAM) policy. It is used to
|
||||
# specify access control policies for Cloud Platform resources.
|
||||
# An Identity and Access Management (IAM) policy, which specifies access
|
||||
# controls for Google Cloud resources.
|
||||
# A `Policy` is a collection of `bindings`. A `binding` binds one or more
|
||||
# `members` to a single `role`. Members can be user accounts, service accounts,
|
||||
# Google groups, and domains (such as G Suite). A `role` is a named list of
|
||||
# permissions (defined by IAM or configured by users). A `binding` can
|
||||
# optionally specify a `condition`, which is a logic expression that further
|
||||
# constrains the role binding based on attributes about the request and/or
|
||||
# target resource.
|
||||
# **JSON Example**
|
||||
# permissions; each `role` can be an IAM predefined role or a user-created
|
||||
# custom role.
|
||||
# Optionally, a `binding` can specify a `condition`, which is a logical
|
||||
# expression that allows access to a resource only if the expression evaluates
|
||||
# to `true`. A condition can add constraints based on attributes of the
|
||||
# request, the resource, or both.
|
||||
# **JSON example:**
|
||||
# `
|
||||
# "bindings": [
|
||||
# `
|
||||
|
@ -756,13 +786,15 @@ module Google
|
|||
# "condition": `
|
||||
# "title": "expirable access",
|
||||
# "description": "Does not grant access after Sep 2020",
|
||||
# "expression": "request.time <
|
||||
# timestamp('2020-10-01T00:00:00.000Z')",
|
||||
# "expression": "request.time < timestamp('2020-10-01T00:00:00.000Z')
|
||||
# ",
|
||||
# `
|
||||
# `
|
||||
# ]
|
||||
# ],
|
||||
# "etag": "BwWWja0YfJA=",
|
||||
# "version": 3
|
||||
# `
|
||||
# **YAML Example**
|
||||
# **YAML example:**
|
||||
# bindings:
|
||||
# - members:
|
||||
# - user:mike@example.com
|
||||
|
@ -777,8 +809,10 @@ module Google
|
|||
# title: expirable access
|
||||
# description: Does not grant access after Sep 2020
|
||||
# expression: request.time < timestamp('2020-10-01T00:00:00.000Z')
|
||||
# - etag: BwWWja0YfJA=
|
||||
# - version: 3
|
||||
# For a description of IAM and its features, see the
|
||||
# [IAM developer's guide](https://cloud.google.com/iam/docs).
|
||||
# [IAM documentation](https://cloud.google.com/iam/docs/).
|
||||
# Corresponds to the JSON property `policy`
|
||||
# @return [Google::Apis::CloudresourcemanagerV2beta1::Policy]
|
||||
attr_accessor :policy
|
||||
|
|
|
@ -26,7 +26,7 @@ module Google
|
|||
# @see https://developers.google.com/cloud-search/docs/guides/
|
||||
module CloudsearchV1
|
||||
VERSION = 'V1'
|
||||
REVISION = '20191112'
|
||||
REVISION = '20191202'
|
||||
|
||||
# Index and serve your organization's data with Cloud Search
|
||||
AUTH_CLOUD_SEARCH = 'https://www.googleapis.com/auth/cloud_search'
|
||||
|
|
|
@ -3254,7 +3254,7 @@ module Google
|
|||
# The interpretation of the query used in search. For example, queries with
|
||||
# natural language intent like "email from john" will be interpreted as
|
||||
# "from:john source:mail". This field will not be filled when the reason is
|
||||
# NO_RESULTS_FOUND_FOR_USER_QUERY.
|
||||
# NOT_ENOUGH_RESULTS_FOUND_FOR_USER_QUERY.
|
||||
# Corresponds to the JSON property `interpretedQuery`
|
||||
# @return [String]
|
||||
attr_accessor :interpreted_query
|
||||
|
@ -4994,7 +4994,8 @@ module Google
|
|||
# @return [Google::Apis::CloudsearchV1::Schema]
|
||||
attr_accessor :schema
|
||||
|
||||
# If true, the request will be validated without side effects.
|
||||
# If true, the schema will be checked for validity,
|
||||
# but will not be registered with the data source, even if valid.
|
||||
# Corresponds to the JSON property `validateOnly`
|
||||
# @return [Boolean]
|
||||
attr_accessor :validate_only
|
||||
|
|
|
@ -25,7 +25,7 @@ module Google
|
|||
# @see https://cloud.google.com/tasks/
|
||||
module CloudtasksV2
|
||||
VERSION = 'V2'
|
||||
REVISION = '20191111'
|
||||
REVISION = '20191202'
|
||||
|
||||
# View and manage your data across Google Cloud Platform services
|
||||
AUTH_CLOUD_PLATFORM = 'https://www.googleapis.com/auth/cloud-platform'
|
||||
|
|
|
@ -138,8 +138,8 @@ module Google
|
|||
# In addition, Cloud Tasks sets some headers when the task is dispatched,
|
||||
# such as headers containing information about the task; see
|
||||
# [request
|
||||
# headers](https://cloud.google.com/appengine/docs/python/taskqueue/push/
|
||||
# creating-handlers#reading_request_headers).
|
||||
# headers](https://cloud.google.com/tasks/docs/creating-appengine-handlers#
|
||||
# reading_request_headers).
|
||||
# These headers are set only when the task is dispatched, so they are not
|
||||
# visible when the task is returned in a Cloud Tasks response.
|
||||
# Although there is no specific limit for the maximum number of headers or
|
||||
|
@ -363,6 +363,23 @@ module Google
|
|||
# account. For example, `my-other-app@appspot.gserviceaccount.com`.
|
||||
# * `group:`emailid``: An email address that represents a Google group.
|
||||
# For example, `admins@example.com`.
|
||||
# * `deleted:user:`emailid`?uid=`uniqueid``: An email address (plus unique
|
||||
# identifier) representing a user that has been recently deleted. For
|
||||
# example, `alice@example.com?uid=123456789012345678901`. If the user is
|
||||
# recovered, this value reverts to `user:`emailid`` and the recovered user
|
||||
# retains the role in the binding.
|
||||
# * `deleted:serviceAccount:`emailid`?uid=`uniqueid``: An email address (plus
|
||||
# unique identifier) representing a service account that has been recently
|
||||
# deleted. For example,
|
||||
# `my-other-app@appspot.gserviceaccount.com?uid=123456789012345678901`.
|
||||
# If the service account is undeleted, this value reverts to
|
||||
# `serviceAccount:`emailid`` and the undeleted service account retains the
|
||||
# role in the binding.
|
||||
# * `deleted:group:`emailid`?uid=`uniqueid``: An email address (plus unique
|
||||
# identifier) representing a Google group that has been recently
|
||||
# deleted. For example, `admins@example.com?uid=123456789012345678901`. If
|
||||
# the group is recovered, this value reverts to `group:`emailid`` and the
|
||||
# recovered group retains the role in the binding.
|
||||
# * `domain:`domain``: The G Suite domain (primary) that represents all the
|
||||
# users of that domain. For example, `google.com` or `example.com`.
|
||||
# Corresponds to the JSON property `members`
|
||||
|
@ -533,7 +550,7 @@ module Google
|
|||
# HTTP request.
|
||||
# The task will be pushed to the worker as an HTTP request. If the worker
|
||||
# or the redirected worker acknowledges the task by returning a successful HTTP
|
||||
# response code ([`200` - `299`]), the task will removed from the queue. If
|
||||
# response code ([`200` - `299`]), the task will be removed from the queue. If
|
||||
# any other HTTP response code is returned or no response is received, the
|
||||
# task will be retried according to the following:
|
||||
# * User-specified throttling: retry configuration,
|
||||
|
@ -547,7 +564,7 @@ module Google
|
|||
# `429` (Too Many Requests), `503` (Service Unavailable), or the rate of
|
||||
# errors is high, Cloud Tasks will use a higher backoff rate. The retry
|
||||
# specified in the `Retry-After` HTTP response header is considered.
|
||||
# * To prevent traffic spikes and to smooth sudden large traffic spikes,
|
||||
# * To prevent traffic spikes and to smooth sudden increases in traffic,
|
||||
# dispatches ramp up slowly when the queue is newly created or idle and
|
||||
# if large numbers of tasks suddenly become available to dispatch (due to
|
||||
# spikes in create task rates, the queue being unpaused, or many tasks
|
||||
|
@ -851,16 +868,18 @@ module Google
|
|||
end
|
||||
end
|
||||
|
||||
# Defines an Identity and Access Management (IAM) policy. It is used to
|
||||
# specify access control policies for Cloud Platform resources.
|
||||
# An Identity and Access Management (IAM) policy, which specifies access
|
||||
# controls for Google Cloud resources.
|
||||
# A `Policy` is a collection of `bindings`. A `binding` binds one or more
|
||||
# `members` to a single `role`. Members can be user accounts, service accounts,
|
||||
# Google groups, and domains (such as G Suite). A `role` is a named list of
|
||||
# permissions (defined by IAM or configured by users). A `binding` can
|
||||
# optionally specify a `condition`, which is a logic expression that further
|
||||
# constrains the role binding based on attributes about the request and/or
|
||||
# target resource.
|
||||
# **JSON Example**
|
||||
# permissions; each `role` can be an IAM predefined role or a user-created
|
||||
# custom role.
|
||||
# Optionally, a `binding` can specify a `condition`, which is a logical
|
||||
# expression that allows access to a resource only if the expression evaluates
|
||||
# to `true`. A condition can add constraints based on attributes of the
|
||||
# request, the resource, or both.
|
||||
# **JSON example:**
|
||||
# `
|
||||
# "bindings": [
|
||||
# `
|
||||
|
@ -878,13 +897,15 @@ module Google
|
|||
# "condition": `
|
||||
# "title": "expirable access",
|
||||
# "description": "Does not grant access after Sep 2020",
|
||||
# "expression": "request.time <
|
||||
# timestamp('2020-10-01T00:00:00.000Z')",
|
||||
# "expression": "request.time < timestamp('2020-10-01T00:00:00.000Z')
|
||||
# ",
|
||||
# `
|
||||
# `
|
||||
# ]
|
||||
# ],
|
||||
# "etag": "BwWWja0YfJA=",
|
||||
# "version": 3
|
||||
# `
|
||||
# **YAML Example**
|
||||
# **YAML example:**
|
||||
# bindings:
|
||||
# - members:
|
||||
# - user:mike@example.com
|
||||
|
@ -899,14 +920,16 @@ module Google
|
|||
# title: expirable access
|
||||
# description: Does not grant access after Sep 2020
|
||||
# expression: request.time < timestamp('2020-10-01T00:00:00.000Z')
|
||||
# - etag: BwWWja0YfJA=
|
||||
# - version: 3
|
||||
# For a description of IAM and its features, see the
|
||||
# [IAM developer's guide](https://cloud.google.com/iam/docs).
|
||||
# [IAM documentation](https://cloud.google.com/iam/docs/).
|
||||
class Policy
|
||||
include Google::Apis::Core::Hashable
|
||||
|
||||
# Associates a list of `members` to a `role`. Optionally may specify a
|
||||
# `condition` that determines when binding is in effect.
|
||||
# `bindings` with no members will result in an error.
|
||||
# Associates a list of `members` to a `role`. Optionally, may specify a
|
||||
# `condition` that determines how and when the `bindings` are applied. Each
|
||||
# of the `bindings` must contain at least one member.
|
||||
# Corresponds to the JSON property `bindings`
|
||||
# @return [Array<Google::Apis::CloudtasksV2::Binding>]
|
||||
attr_accessor :bindings
|
||||
|
@ -918,26 +941,31 @@ module Google
|
|||
# conditions: An `etag` is returned in the response to `getIamPolicy`, and
|
||||
# systems are expected to put that etag in the request to `setIamPolicy` to
|
||||
# ensure that their change will be applied to the same version of the policy.
|
||||
# If no `etag` is provided in the call to `setIamPolicy`, then the existing
|
||||
# policy is overwritten. Due to blind-set semantics of an etag-less policy,
|
||||
# 'setIamPolicy' will not fail even if the incoming policy version does not
|
||||
# meet the requirements for modifying the stored policy.
|
||||
# **Important:** If you use IAM Conditions, you must include the `etag` field
|
||||
# whenever you call `setIamPolicy`. If you omit this field, then IAM allows
|
||||
# you to overwrite a version `3` policy with a version `1` policy, and all of
|
||||
# the conditions in the version `3` policy are lost.
|
||||
# Corresponds to the JSON property `etag`
|
||||
# NOTE: Values are automatically base64 encoded/decoded in the client library.
|
||||
# @return [String]
|
||||
attr_accessor :etag
|
||||
|
||||
# Specifies the format of the policy.
|
||||
# Valid values are 0, 1, and 3. Requests specifying an invalid value will be
|
||||
# rejected.
|
||||
# Operations affecting conditional bindings must specify version 3. This can
|
||||
# be either setting a conditional policy, modifying a conditional binding,
|
||||
# or removing a binding (conditional or unconditional) from the stored
|
||||
# conditional policy.
|
||||
# Operations on non-conditional policies may specify any valid value or
|
||||
# leave the field unset.
|
||||
# If no etag is provided in the call to `setIamPolicy`, version compliance
|
||||
# checks against the stored policy is skipped.
|
||||
# Valid values are `0`, `1`, and `3`. Requests that specify an invalid value
|
||||
# are rejected.
|
||||
# Any operation that affects conditional role bindings must specify version
|
||||
# `3`. This requirement applies to the following operations:
|
||||
# * Getting a policy that includes a conditional role binding
|
||||
# * Adding a conditional role binding to a policy
|
||||
# * Changing a conditional role binding in a policy
|
||||
# * Removing any role binding, with or without a condition, from a policy
|
||||
# that includes conditions
|
||||
# **Important:** If you use IAM Conditions, you must include the `etag` field
|
||||
# whenever you call `setIamPolicy`. If you omit this field, then IAM allows
|
||||
# you to overwrite a version `3` policy with a version `1` policy, and all of
|
||||
# the conditions in the version `3` policy are lost.
|
||||
# If a policy does not include any conditions, operations on that policy may
|
||||
# specify any valid version or leave the field unset.
|
||||
# Corresponds to the JSON property `version`
|
||||
# @return [Fixnum]
|
||||
attr_accessor :version
|
||||
|
@ -1310,16 +1338,18 @@ module Google
|
|||
class SetIamPolicyRequest
|
||||
include Google::Apis::Core::Hashable
|
||||
|
||||
# Defines an Identity and Access Management (IAM) policy. It is used to
|
||||
# specify access control policies for Cloud Platform resources.
|
||||
# An Identity and Access Management (IAM) policy, which specifies access
|
||||
# controls for Google Cloud resources.
|
||||
# A `Policy` is a collection of `bindings`. A `binding` binds one or more
|
||||
# `members` to a single `role`. Members can be user accounts, service accounts,
|
||||
# Google groups, and domains (such as G Suite). A `role` is a named list of
|
||||
# permissions (defined by IAM or configured by users). A `binding` can
|
||||
# optionally specify a `condition`, which is a logic expression that further
|
||||
# constrains the role binding based on attributes about the request and/or
|
||||
# target resource.
|
||||
# **JSON Example**
|
||||
# permissions; each `role` can be an IAM predefined role or a user-created
|
||||
# custom role.
|
||||
# Optionally, a `binding` can specify a `condition`, which is a logical
|
||||
# expression that allows access to a resource only if the expression evaluates
|
||||
# to `true`. A condition can add constraints based on attributes of the
|
||||
# request, the resource, or both.
|
||||
# **JSON example:**
|
||||
# `
|
||||
# "bindings": [
|
||||
# `
|
||||
|
@ -1337,13 +1367,15 @@ module Google
|
|||
# "condition": `
|
||||
# "title": "expirable access",
|
||||
# "description": "Does not grant access after Sep 2020",
|
||||
# "expression": "request.time <
|
||||
# timestamp('2020-10-01T00:00:00.000Z')",
|
||||
# "expression": "request.time < timestamp('2020-10-01T00:00:00.000Z')
|
||||
# ",
|
||||
# `
|
||||
# `
|
||||
# ]
|
||||
# ],
|
||||
# "etag": "BwWWja0YfJA=",
|
||||
# "version": 3
|
||||
# `
|
||||
# **YAML Example**
|
||||
# **YAML example:**
|
||||
# bindings:
|
||||
# - members:
|
||||
# - user:mike@example.com
|
||||
|
@ -1358,8 +1390,10 @@ module Google
|
|||
# title: expirable access
|
||||
# description: Does not grant access after Sep 2020
|
||||
# expression: request.time < timestamp('2020-10-01T00:00:00.000Z')
|
||||
# - etag: BwWWja0YfJA=
|
||||
# - version: 3
|
||||
# For a description of IAM and its features, see the
|
||||
# [IAM developer's guide](https://cloud.google.com/iam/docs).
|
||||
# [IAM documentation](https://cloud.google.com/iam/docs/).
|
||||
# Corresponds to the JSON property `policy`
|
||||
# @return [Google::Apis::CloudtasksV2::Policy]
|
||||
attr_accessor :policy
|
||||
|
@ -1526,7 +1560,7 @@ module Google
|
|||
# HTTP request.
|
||||
# The task will be pushed to the worker as an HTTP request. If the worker
|
||||
# or the redirected worker acknowledges the task by returning a successful HTTP
|
||||
# response code ([`200` - `299`]), the task will removed from the queue. If
|
||||
# response code ([`200` - `299`]), the task will be removed from the queue. If
|
||||
# any other HTTP response code is returned or no response is received, the
|
||||
# task will be retried according to the following:
|
||||
# * User-specified throttling: retry configuration,
|
||||
|
@ -1540,7 +1574,7 @@ module Google
|
|||
# `429` (Too Many Requests), `503` (Service Unavailable), or the rate of
|
||||
# errors is high, Cloud Tasks will use a higher backoff rate. The retry
|
||||
# specified in the `Retry-After` HTTP response header is considered.
|
||||
# * To prevent traffic spikes and to smooth sudden large traffic spikes,
|
||||
# * To prevent traffic spikes and to smooth sudden increases in traffic,
|
||||
# dispatches ramp up slowly when the queue is newly created or idle and
|
||||
# if large numbers of tasks suddenly become available to dispatch (due to
|
||||
# spikes in create task rates, the queue being unpaused, or many tasks
|
||||
|
|
|
@ -26,7 +26,7 @@ module Google
|
|||
# @see https://cloud.google.com/container-analysis/api/reference/rest/
|
||||
module ContaineranalysisV1alpha1
|
||||
VERSION = 'V1alpha1'
|
||||
REVISION = '20191118'
|
||||
REVISION = '20191209'
|
||||
|
||||
# View and manage your data across Google Cloud Platform services
|
||||
AUTH_CLOUD_PLATFORM = 'https://www.googleapis.com/auth/cloud-platform'
|
||||
|
|
|
@ -210,6 +210,23 @@ module Google
|
|||
# account. For example, `my-other-app@appspot.gserviceaccount.com`.
|
||||
# * `group:`emailid``: An email address that represents a Google group.
|
||||
# For example, `admins@example.com`.
|
||||
# * `deleted:user:`emailid`?uid=`uniqueid``: An email address (plus unique
|
||||
# identifier) representing a user that has been recently deleted. For
|
||||
# example, `alice@example.com?uid=123456789012345678901`. If the user is
|
||||
# recovered, this value reverts to `user:`emailid`` and the recovered user
|
||||
# retains the role in the binding.
|
||||
# * `deleted:serviceAccount:`emailid`?uid=`uniqueid``: An email address (plus
|
||||
# unique identifier) representing a service account that has been recently
|
||||
# deleted. For example,
|
||||
# `my-other-app@appspot.gserviceaccount.com?uid=123456789012345678901`.
|
||||
# If the service account is undeleted, this value reverts to
|
||||
# `serviceAccount:`emailid`` and the undeleted service account retains the
|
||||
# role in the binding.
|
||||
# * `deleted:group:`emailid`?uid=`uniqueid``: An email address (plus unique
|
||||
# identifier) representing a Google group that has been recently
|
||||
# deleted. For example, `admins@example.com?uid=123456789012345678901`. If
|
||||
# the group is recovered, this value reverts to `group:`emailid`` and the
|
||||
# recovered group retains the role in the binding.
|
||||
# * `domain:`domain``: The G Suite domain (primary) that represents all the
|
||||
# users of that domain. For example, `google.com` or `example.com`.
|
||||
# Corresponds to the JSON property `members`
|
||||
|
@ -1937,16 +1954,18 @@ module Google
|
|||
end
|
||||
end
|
||||
|
||||
# Defines an Identity and Access Management (IAM) policy. It is used to
|
||||
# specify access control policies for Cloud Platform resources.
|
||||
# An Identity and Access Management (IAM) policy, which specifies access
|
||||
# controls for Google Cloud resources.
|
||||
# A `Policy` is a collection of `bindings`. A `binding` binds one or more
|
||||
# `members` to a single `role`. Members can be user accounts, service accounts,
|
||||
# Google groups, and domains (such as G Suite). A `role` is a named list of
|
||||
# permissions (defined by IAM or configured by users). A `binding` can
|
||||
# optionally specify a `condition`, which is a logic expression that further
|
||||
# constrains the role binding based on attributes about the request and/or
|
||||
# target resource.
|
||||
# **JSON Example**
|
||||
# permissions; each `role` can be an IAM predefined role or a user-created
|
||||
# custom role.
|
||||
# Optionally, a `binding` can specify a `condition`, which is a logical
|
||||
# expression that allows access to a resource only if the expression evaluates
|
||||
# to `true`. A condition can add constraints based on attributes of the
|
||||
# request, the resource, or both.
|
||||
# **JSON example:**
|
||||
# `
|
||||
# "bindings": [
|
||||
# `
|
||||
|
@ -1964,13 +1983,15 @@ module Google
|
|||
# "condition": `
|
||||
# "title": "expirable access",
|
||||
# "description": "Does not grant access after Sep 2020",
|
||||
# "expression": "request.time <
|
||||
# timestamp('2020-10-01T00:00:00.000Z')",
|
||||
# "expression": "request.time < timestamp('2020-10-01T00:00:00.000Z')
|
||||
# ",
|
||||
# `
|
||||
# `
|
||||
# ]
|
||||
# ],
|
||||
# "etag": "BwWWja0YfJA=",
|
||||
# "version": 3
|
||||
# `
|
||||
# **YAML Example**
|
||||
# **YAML example:**
|
||||
# bindings:
|
||||
# - members:
|
||||
# - user:mike@example.com
|
||||
|
@ -1985,14 +2006,16 @@ module Google
|
|||
# title: expirable access
|
||||
# description: Does not grant access after Sep 2020
|
||||
# expression: request.time < timestamp('2020-10-01T00:00:00.000Z')
|
||||
# - etag: BwWWja0YfJA=
|
||||
# - version: 3
|
||||
# For a description of IAM and its features, see the
|
||||
# [IAM developer's guide](https://cloud.google.com/iam/docs).
|
||||
# [IAM documentation](https://cloud.google.com/iam/docs/).
|
||||
class Policy
|
||||
include Google::Apis::Core::Hashable
|
||||
|
||||
# Associates a list of `members` to a `role`. Optionally may specify a
|
||||
# `condition` that determines when binding is in effect.
|
||||
# `bindings` with no members will result in an error.
|
||||
# Associates a list of `members` to a `role`. Optionally, may specify a
|
||||
# `condition` that determines how and when the `bindings` are applied. Each
|
||||
# of the `bindings` must contain at least one member.
|
||||
# Corresponds to the JSON property `bindings`
|
||||
# @return [Array<Google::Apis::ContaineranalysisV1alpha1::Binding>]
|
||||
attr_accessor :bindings
|
||||
|
@ -2004,26 +2027,31 @@ module Google
|
|||
# conditions: An `etag` is returned in the response to `getIamPolicy`, and
|
||||
# systems are expected to put that etag in the request to `setIamPolicy` to
|
||||
# ensure that their change will be applied to the same version of the policy.
|
||||
# If no `etag` is provided in the call to `setIamPolicy`, then the existing
|
||||
# policy is overwritten. Due to blind-set semantics of an etag-less policy,
|
||||
# 'setIamPolicy' will not fail even if the incoming policy version does not
|
||||
# meet the requirements for modifying the stored policy.
|
||||
# **Important:** If you use IAM Conditions, you must include the `etag` field
|
||||
# whenever you call `setIamPolicy`. If you omit this field, then IAM allows
|
||||
# you to overwrite a version `3` policy with a version `1` policy, and all of
|
||||
# the conditions in the version `3` policy are lost.
|
||||
# Corresponds to the JSON property `etag`
|
||||
# NOTE: Values are automatically base64 encoded/decoded in the client library.
|
||||
# @return [String]
|
||||
attr_accessor :etag
|
||||
|
||||
# Specifies the format of the policy.
|
||||
# Valid values are 0, 1, and 3. Requests specifying an invalid value will be
|
||||
# rejected.
|
||||
# Operations affecting conditional bindings must specify version 3. This can
|
||||
# be either setting a conditional policy, modifying a conditional binding,
|
||||
# or removing a binding (conditional or unconditional) from the stored
|
||||
# conditional policy.
|
||||
# Operations on non-conditional policies may specify any valid value or
|
||||
# leave the field unset.
|
||||
# If no etag is provided in the call to `setIamPolicy`, version compliance
|
||||
# checks against the stored policy is skipped.
|
||||
# Valid values are `0`, `1`, and `3`. Requests that specify an invalid value
|
||||
# are rejected.
|
||||
# Any operation that affects conditional role bindings must specify version
|
||||
# `3`. This requirement applies to the following operations:
|
||||
# * Getting a policy that includes a conditional role binding
|
||||
# * Adding a conditional role binding to a policy
|
||||
# * Changing a conditional role binding in a policy
|
||||
# * Removing any role binding, with or without a condition, from a policy
|
||||
# that includes conditions
|
||||
# **Important:** If you use IAM Conditions, you must include the `etag` field
|
||||
# whenever you call `setIamPolicy`. If you omit this field, then IAM allows
|
||||
# you to overwrite a version `3` policy with a version `1` policy, and all of
|
||||
# the conditions in the version `3` policy are lost.
|
||||
# If a policy does not include any conditions, operations on that policy may
|
||||
# specify any valid version or leave the field unset.
|
||||
# Corresponds to the JSON property `version`
|
||||
# @return [Fixnum]
|
||||
attr_accessor :version
|
||||
|
@ -2190,16 +2218,18 @@ module Google
|
|||
class SetIamPolicyRequest
|
||||
include Google::Apis::Core::Hashable
|
||||
|
||||
# Defines an Identity and Access Management (IAM) policy. It is used to
|
||||
# specify access control policies for Cloud Platform resources.
|
||||
# An Identity and Access Management (IAM) policy, which specifies access
|
||||
# controls for Google Cloud resources.
|
||||
# A `Policy` is a collection of `bindings`. A `binding` binds one or more
|
||||
# `members` to a single `role`. Members can be user accounts, service accounts,
|
||||
# Google groups, and domains (such as G Suite). A `role` is a named list of
|
||||
# permissions (defined by IAM or configured by users). A `binding` can
|
||||
# optionally specify a `condition`, which is a logic expression that further
|
||||
# constrains the role binding based on attributes about the request and/or
|
||||
# target resource.
|
||||
# **JSON Example**
|
||||
# permissions; each `role` can be an IAM predefined role or a user-created
|
||||
# custom role.
|
||||
# Optionally, a `binding` can specify a `condition`, which is a logical
|
||||
# expression that allows access to a resource only if the expression evaluates
|
||||
# to `true`. A condition can add constraints based on attributes of the
|
||||
# request, the resource, or both.
|
||||
# **JSON example:**
|
||||
# `
|
||||
# "bindings": [
|
||||
# `
|
||||
|
@ -2217,13 +2247,15 @@ module Google
|
|||
# "condition": `
|
||||
# "title": "expirable access",
|
||||
# "description": "Does not grant access after Sep 2020",
|
||||
# "expression": "request.time <
|
||||
# timestamp('2020-10-01T00:00:00.000Z')",
|
||||
# "expression": "request.time < timestamp('2020-10-01T00:00:00.000Z')
|
||||
# ",
|
||||
# `
|
||||
# `
|
||||
# ]
|
||||
# ],
|
||||
# "etag": "BwWWja0YfJA=",
|
||||
# "version": 3
|
||||
# `
|
||||
# **YAML Example**
|
||||
# **YAML example:**
|
||||
# bindings:
|
||||
# - members:
|
||||
# - user:mike@example.com
|
||||
|
@ -2238,8 +2270,10 @@ module Google
|
|||
# title: expirable access
|
||||
# description: Does not grant access after Sep 2020
|
||||
# expression: request.time < timestamp('2020-10-01T00:00:00.000Z')
|
||||
# - etag: BwWWja0YfJA=
|
||||
# - version: 3
|
||||
# For a description of IAM and its features, see the
|
||||
# [IAM developer's guide](https://cloud.google.com/iam/docs).
|
||||
# [IAM documentation](https://cloud.google.com/iam/docs/).
|
||||
# Corresponds to the JSON property `policy`
|
||||
# @return [Google::Apis::ContaineranalysisV1alpha1::Policy]
|
||||
attr_accessor :policy
|
||||
|
|
|
@ -26,7 +26,7 @@ module Google
|
|||
# @see https://cloud.google.com/container-analysis/api/reference/rest/
|
||||
module ContaineranalysisV1beta1
|
||||
VERSION = 'V1beta1'
|
||||
REVISION = '20191118'
|
||||
REVISION = '20191209'
|
||||
|
||||
# View and manage your data across Google Cloud Platform services
|
||||
AUTH_CLOUD_PLATFORM = 'https://www.googleapis.com/auth/cloud-platform'
|
||||
|
|
|
@ -187,7 +187,7 @@ module Google
|
|||
class BatchCreateNotesRequest
|
||||
include Google::Apis::Core::Hashable
|
||||
|
||||
# The notes to create. Max allowed length is 1000.
|
||||
# Required. The notes to create. Max allowed length is 1000.
|
||||
# Corresponds to the JSON property `notes`
|
||||
# @return [Hash<String,Google::Apis::ContaineranalysisV1beta1::Note>]
|
||||
attr_accessor :notes
|
||||
|
@ -225,7 +225,7 @@ module Google
|
|||
class BatchCreateOccurrencesRequest
|
||||
include Google::Apis::Core::Hashable
|
||||
|
||||
# The occurrences to create. Max allowed length is 1000.
|
||||
# Required. The occurrences to create. Max allowed length is 1000.
|
||||
# Corresponds to the JSON property `occurrences`
|
||||
# @return [Array<Google::Apis::ContaineranalysisV1beta1::Occurrence>]
|
||||
attr_accessor :occurrences
|
||||
|
@ -283,6 +283,23 @@ module Google
|
|||
# account. For example, `my-other-app@appspot.gserviceaccount.com`.
|
||||
# * `group:`emailid``: An email address that represents a Google group.
|
||||
# For example, `admins@example.com`.
|
||||
# * `deleted:user:`emailid`?uid=`uniqueid``: An email address (plus unique
|
||||
# identifier) representing a user that has been recently deleted. For
|
||||
# example, `alice@example.com?uid=123456789012345678901`. If the user is
|
||||
# recovered, this value reverts to `user:`emailid`` and the recovered user
|
||||
# retains the role in the binding.
|
||||
# * `deleted:serviceAccount:`emailid`?uid=`uniqueid``: An email address (plus
|
||||
# unique identifier) representing a service account that has been recently
|
||||
# deleted. For example,
|
||||
# `my-other-app@appspot.gserviceaccount.com?uid=123456789012345678901`.
|
||||
# If the service account is undeleted, this value reverts to
|
||||
# `serviceAccount:`emailid`` and the undeleted service account retains the
|
||||
# role in the binding.
|
||||
# * `deleted:group:`emailid`?uid=`uniqueid``: An email address (plus unique
|
||||
# identifier) representing a Google group that has been recently
|
||||
# deleted. For example, `admins@example.com?uid=123456789012345678901`. If
|
||||
# the group is recovered, this value reverts to `group:`emailid`` and the
|
||||
# recovered group retains the role in the binding.
|
||||
# * `domain:`domain``: The G Suite domain (primary) that represents all the
|
||||
# users of that domain. For example, `google.com` or `example.com`.
|
||||
# Corresponds to the JSON property `members`
|
||||
|
@ -2125,16 +2142,18 @@ module Google
|
|||
end
|
||||
end
|
||||
|
||||
# Defines an Identity and Access Management (IAM) policy. It is used to
|
||||
# specify access control policies for Cloud Platform resources.
|
||||
# An Identity and Access Management (IAM) policy, which specifies access
|
||||
# controls for Google Cloud resources.
|
||||
# A `Policy` is a collection of `bindings`. A `binding` binds one or more
|
||||
# `members` to a single `role`. Members can be user accounts, service accounts,
|
||||
# Google groups, and domains (such as G Suite). A `role` is a named list of
|
||||
# permissions (defined by IAM or configured by users). A `binding` can
|
||||
# optionally specify a `condition`, which is a logic expression that further
|
||||
# constrains the role binding based on attributes about the request and/or
|
||||
# target resource.
|
||||
# **JSON Example**
|
||||
# permissions; each `role` can be an IAM predefined role or a user-created
|
||||
# custom role.
|
||||
# Optionally, a `binding` can specify a `condition`, which is a logical
|
||||
# expression that allows access to a resource only if the expression evaluates
|
||||
# to `true`. A condition can add constraints based on attributes of the
|
||||
# request, the resource, or both.
|
||||
# **JSON example:**
|
||||
# `
|
||||
# "bindings": [
|
||||
# `
|
||||
|
@ -2152,13 +2171,15 @@ module Google
|
|||
# "condition": `
|
||||
# "title": "expirable access",
|
||||
# "description": "Does not grant access after Sep 2020",
|
||||
# "expression": "request.time <
|
||||
# timestamp('2020-10-01T00:00:00.000Z')",
|
||||
# "expression": "request.time < timestamp('2020-10-01T00:00:00.000Z')
|
||||
# ",
|
||||
# `
|
||||
# `
|
||||
# ]
|
||||
# ],
|
||||
# "etag": "BwWWja0YfJA=",
|
||||
# "version": 3
|
||||
# `
|
||||
# **YAML Example**
|
||||
# **YAML example:**
|
||||
# bindings:
|
||||
# - members:
|
||||
# - user:mike@example.com
|
||||
|
@ -2173,14 +2194,16 @@ module Google
|
|||
# title: expirable access
|
||||
# description: Does not grant access after Sep 2020
|
||||
# expression: request.time < timestamp('2020-10-01T00:00:00.000Z')
|
||||
# - etag: BwWWja0YfJA=
|
||||
# - version: 3
|
||||
# For a description of IAM and its features, see the
|
||||
# [IAM developer's guide](https://cloud.google.com/iam/docs).
|
||||
# [IAM documentation](https://cloud.google.com/iam/docs/).
|
||||
class Policy
|
||||
include Google::Apis::Core::Hashable
|
||||
|
||||
# Associates a list of `members` to a `role`. Optionally may specify a
|
||||
# `condition` that determines when binding is in effect.
|
||||
# `bindings` with no members will result in an error.
|
||||
# Associates a list of `members` to a `role`. Optionally, may specify a
|
||||
# `condition` that determines how and when the `bindings` are applied. Each
|
||||
# of the `bindings` must contain at least one member.
|
||||
# Corresponds to the JSON property `bindings`
|
||||
# @return [Array<Google::Apis::ContaineranalysisV1beta1::Binding>]
|
||||
attr_accessor :bindings
|
||||
|
@ -2192,26 +2215,31 @@ module Google
|
|||
# conditions: An `etag` is returned in the response to `getIamPolicy`, and
|
||||
# systems are expected to put that etag in the request to `setIamPolicy` to
|
||||
# ensure that their change will be applied to the same version of the policy.
|
||||
# If no `etag` is provided in the call to `setIamPolicy`, then the existing
|
||||
# policy is overwritten. Due to blind-set semantics of an etag-less policy,
|
||||
# 'setIamPolicy' will not fail even if the incoming policy version does not
|
||||
# meet the requirements for modifying the stored policy.
|
||||
# **Important:** If you use IAM Conditions, you must include the `etag` field
|
||||
# whenever you call `setIamPolicy`. If you omit this field, then IAM allows
|
||||
# you to overwrite a version `3` policy with a version `1` policy, and all of
|
||||
# the conditions in the version `3` policy are lost.
|
||||
# Corresponds to the JSON property `etag`
|
||||
# NOTE: Values are automatically base64 encoded/decoded in the client library.
|
||||
# @return [String]
|
||||
attr_accessor :etag
|
||||
|
||||
# Specifies the format of the policy.
|
||||
# Valid values are 0, 1, and 3. Requests specifying an invalid value will be
|
||||
# rejected.
|
||||
# Operations affecting conditional bindings must specify version 3. This can
|
||||
# be either setting a conditional policy, modifying a conditional binding,
|
||||
# or removing a binding (conditional or unconditional) from the stored
|
||||
# conditional policy.
|
||||
# Operations on non-conditional policies may specify any valid value or
|
||||
# leave the field unset.
|
||||
# If no etag is provided in the call to `setIamPolicy`, version compliance
|
||||
# checks against the stored policy is skipped.
|
||||
# Valid values are `0`, `1`, and `3`. Requests that specify an invalid value
|
||||
# are rejected.
|
||||
# Any operation that affects conditional role bindings must specify version
|
||||
# `3`. This requirement applies to the following operations:
|
||||
# * Getting a policy that includes a conditional role binding
|
||||
# * Adding a conditional role binding to a policy
|
||||
# * Changing a conditional role binding in a policy
|
||||
# * Removing any role binding, with or without a condition, from a policy
|
||||
# that includes conditions
|
||||
# **Important:** If you use IAM Conditions, you must include the `etag` field
|
||||
# whenever you call `setIamPolicy`. If you omit this field, then IAM allows
|
||||
# you to overwrite a version `3` policy with a version `1` policy, and all of
|
||||
# the conditions in the version `3` policy are lost.
|
||||
# If a policy does not include any conditions, operations on that policy may
|
||||
# specify any valid version or leave the field unset.
|
||||
# Corresponds to the JSON property `version`
|
||||
# @return [Fixnum]
|
||||
attr_accessor :version
|
||||
|
@ -2391,16 +2419,18 @@ module Google
|
|||
class SetIamPolicyRequest
|
||||
include Google::Apis::Core::Hashable
|
||||
|
||||
# Defines an Identity and Access Management (IAM) policy. It is used to
|
||||
# specify access control policies for Cloud Platform resources.
|
||||
# An Identity and Access Management (IAM) policy, which specifies access
|
||||
# controls for Google Cloud resources.
|
||||
# A `Policy` is a collection of `bindings`. A `binding` binds one or more
|
||||
# `members` to a single `role`. Members can be user accounts, service accounts,
|
||||
# Google groups, and domains (such as G Suite). A `role` is a named list of
|
||||
# permissions (defined by IAM or configured by users). A `binding` can
|
||||
# optionally specify a `condition`, which is a logic expression that further
|
||||
# constrains the role binding based on attributes about the request and/or
|
||||
# target resource.
|
||||
# **JSON Example**
|
||||
# permissions; each `role` can be an IAM predefined role or a user-created
|
||||
# custom role.
|
||||
# Optionally, a `binding` can specify a `condition`, which is a logical
|
||||
# expression that allows access to a resource only if the expression evaluates
|
||||
# to `true`. A condition can add constraints based on attributes of the
|
||||
# request, the resource, or both.
|
||||
# **JSON example:**
|
||||
# `
|
||||
# "bindings": [
|
||||
# `
|
||||
|
@ -2418,13 +2448,15 @@ module Google
|
|||
# "condition": `
|
||||
# "title": "expirable access",
|
||||
# "description": "Does not grant access after Sep 2020",
|
||||
# "expression": "request.time <
|
||||
# timestamp('2020-10-01T00:00:00.000Z')",
|
||||
# "expression": "request.time < timestamp('2020-10-01T00:00:00.000Z')
|
||||
# ",
|
||||
# `
|
||||
# `
|
||||
# ]
|
||||
# ],
|
||||
# "etag": "BwWWja0YfJA=",
|
||||
# "version": 3
|
||||
# `
|
||||
# **YAML Example**
|
||||
# **YAML example:**
|
||||
# bindings:
|
||||
# - members:
|
||||
# - user:mike@example.com
|
||||
|
@ -2439,8 +2471,10 @@ module Google
|
|||
# title: expirable access
|
||||
# description: Does not grant access after Sep 2020
|
||||
# expression: request.time < timestamp('2020-10-01T00:00:00.000Z')
|
||||
# - etag: BwWWja0YfJA=
|
||||
# - version: 3
|
||||
# For a description of IAM and its features, see the
|
||||
# [IAM developer's guide](https://cloud.google.com/iam/docs).
|
||||
# [IAM documentation](https://cloud.google.com/iam/docs/).
|
||||
# Corresponds to the JSON property `policy`
|
||||
# @return [Google::Apis::ContaineranalysisV1beta1::Policy]
|
||||
attr_accessor :policy
|
||||
|
|
|
@ -50,7 +50,8 @@ module Google
|
|||
|
||||
# Creates new notes in batch.
|
||||
# @param [String] parent
|
||||
# The name of the project in the form of `projects/[PROJECT_ID]`, under which
|
||||
# Required. The name of the project in the form of `projects/[PROJECT_ID]`,
|
||||
# under which
|
||||
# the notes are to be created.
|
||||
# @param [Google::Apis::ContaineranalysisV1beta1::BatchCreateNotesRequest] batch_create_notes_request_object
|
||||
# @param [String] fields
|
||||
|
@ -84,11 +85,12 @@ module Google
|
|||
|
||||
# Creates a new note.
|
||||
# @param [String] parent
|
||||
# The name of the project in the form of `projects/[PROJECT_ID]`, under which
|
||||
# Required. The name of the project in the form of `projects/[PROJECT_ID]`,
|
||||
# under which
|
||||
# the note is to be created.
|
||||
# @param [Google::Apis::ContaineranalysisV1beta1::Note] note_object
|
||||
# @param [String] note_id
|
||||
# The ID to use for this note.
|
||||
# Required. The ID to use for this note.
|
||||
# @param [String] fields
|
||||
# Selector specifying which fields to include in a partial response.
|
||||
# @param [String] quota_user
|
||||
|
@ -121,7 +123,7 @@ module Google
|
|||
|
||||
# Deletes the specified note.
|
||||
# @param [String] name
|
||||
# The name of the note in the form of
|
||||
# Required. The name of the note in the form of
|
||||
# `projects/[PROVIDER_ID]/notes/[NOTE_ID]`.
|
||||
# @param [String] fields
|
||||
# Selector specifying which fields to include in a partial response.
|
||||
|
@ -152,7 +154,7 @@ module Google
|
|||
|
||||
# Gets the specified note.
|
||||
# @param [String] name
|
||||
# The name of the note in the form of
|
||||
# Required. The name of the note in the form of
|
||||
# `projects/[PROVIDER_ID]/notes/[NOTE_ID]`.
|
||||
# @param [String] fields
|
||||
# Selector specifying which fields to include in a partial response.
|
||||
|
@ -223,7 +225,7 @@ module Google
|
|||
|
||||
# Lists notes for the specified project.
|
||||
# @param [String] parent
|
||||
# The name of the project to list notes for in the form of
|
||||
# Required. The name of the project to list notes for in the form of
|
||||
# `projects/[PROJECT_ID]`.
|
||||
# @param [String] filter
|
||||
# The filter expression.
|
||||
|
@ -264,7 +266,7 @@ module Google
|
|||
|
||||
# Updates the specified note.
|
||||
# @param [String] name
|
||||
# The name of the note in the form of
|
||||
# Required. The name of the note in the form of
|
||||
# `projects/[PROVIDER_ID]/notes/[NOTE_ID]`.
|
||||
# @param [Google::Apis::ContaineranalysisV1beta1::Note] note_object
|
||||
# @param [String] update_mask
|
||||
|
@ -382,7 +384,7 @@ module Google
|
|||
# this method to get all occurrences across consumer projects referencing the
|
||||
# specified note.
|
||||
# @param [String] name
|
||||
# The name of the note to list occurrences for in the form of
|
||||
# Required. The name of the note to list occurrences for in the form of
|
||||
# `projects/[PROVIDER_ID]/notes/[NOTE_ID]`.
|
||||
# @param [String] filter
|
||||
# The filter expression.
|
||||
|
@ -422,7 +424,8 @@ module Google
|
|||
|
||||
# Creates new occurrences in batch.
|
||||
# @param [String] parent
|
||||
# The name of the project in the form of `projects/[PROJECT_ID]`, under which
|
||||
# Required. The name of the project in the form of `projects/[PROJECT_ID]`,
|
||||
# under which
|
||||
# the occurrences are to be created.
|
||||
# @param [Google::Apis::ContaineranalysisV1beta1::BatchCreateOccurrencesRequest] batch_create_occurrences_request_object
|
||||
# @param [String] fields
|
||||
|
@ -456,7 +459,8 @@ module Google
|
|||
|
||||
# Creates a new occurrence.
|
||||
# @param [String] parent
|
||||
# The name of the project in the form of `projects/[PROJECT_ID]`, under which
|
||||
# Required. The name of the project in the form of `projects/[PROJECT_ID]`,
|
||||
# under which
|
||||
# the occurrence is to be created.
|
||||
# @param [Google::Apis::ContaineranalysisV1beta1::Occurrence] occurrence_object
|
||||
# @param [String] fields
|
||||
|
@ -492,7 +496,7 @@ module Google
|
|||
# occurrence when the occurrence is no longer applicable for the given
|
||||
# resource.
|
||||
# @param [String] name
|
||||
# The name of the occurrence in the form of
|
||||
# Required. The name of the occurrence in the form of
|
||||
# `projects/[PROJECT_ID]/occurrences/[OCCURRENCE_ID]`.
|
||||
# @param [String] fields
|
||||
# Selector specifying which fields to include in a partial response.
|
||||
|
@ -523,7 +527,7 @@ module Google
|
|||
|
||||
# Gets the specified occurrence.
|
||||
# @param [String] name
|
||||
# The name of the occurrence in the form of
|
||||
# Required. The name of the occurrence in the form of
|
||||
# `projects/[PROJECT_ID]/occurrences/[OCCURRENCE_ID]`.
|
||||
# @param [String] fields
|
||||
# Selector specifying which fields to include in a partial response.
|
||||
|
@ -595,7 +599,7 @@ module Google
|
|||
# Gets the note attached to the specified occurrence. Consumer projects can
|
||||
# use this method to get a note that belongs to a provider project.
|
||||
# @param [String] name
|
||||
# The name of the occurrence in the form of
|
||||
# Required. The name of the occurrence in the form of
|
||||
# `projects/[PROJECT_ID]/occurrences/[OCCURRENCE_ID]`.
|
||||
# @param [String] fields
|
||||
# Selector specifying which fields to include in a partial response.
|
||||
|
@ -626,7 +630,8 @@ module Google
|
|||
|
||||
# Gets a summary of the number and severity of occurrences.
|
||||
# @param [String] parent
|
||||
# The name of the project to get a vulnerability summary for in the form of
|
||||
# Required. The name of the project to get a vulnerability summary for in the
|
||||
# form of
|
||||
# `projects/[PROJECT_ID]`.
|
||||
# @param [String] filter
|
||||
# The filter expression.
|
||||
|
@ -660,7 +665,7 @@ module Google
|
|||
|
||||
# Lists occurrences for the specified project.
|
||||
# @param [String] parent
|
||||
# The name of the project to list occurrences for in the form of
|
||||
# Required. The name of the project to list occurrences for in the form of
|
||||
# `projects/[PROJECT_ID]`.
|
||||
# @param [String] filter
|
||||
# The filter expression.
|
||||
|
@ -701,7 +706,7 @@ module Google
|
|||
|
||||
# Updates the specified occurrence.
|
||||
# @param [String] name
|
||||
# The name of the occurrence in the form of
|
||||
# Required. The name of the occurrence in the form of
|
||||
# `projects/[PROJECT_ID]/occurrences/[OCCURRENCE_ID]`.
|
||||
# @param [Google::Apis::ContaineranalysisV1beta1::Occurrence] occurrence_object
|
||||
# @param [String] update_mask
|
||||
|
@ -817,7 +822,7 @@ module Google
|
|||
|
||||
# Gets the specified scan configuration.
|
||||
# @param [String] name
|
||||
# The name of the scan configuration in the form of
|
||||
# Required. The name of the scan configuration in the form of
|
||||
# `projects/[PROJECT_ID]/scanConfigs/[SCAN_CONFIG_ID]`.
|
||||
# @param [String] fields
|
||||
# Selector specifying which fields to include in a partial response.
|
||||
|
@ -848,10 +853,11 @@ module Google
|
|||
|
||||
# Lists scan configurations for the specified project.
|
||||
# @param [String] parent
|
||||
# The name of the project to list scan configurations for in the form of
|
||||
# Required. The name of the project to list scan configurations for in the form
|
||||
# of
|
||||
# `projects/[PROJECT_ID]`.
|
||||
# @param [String] filter
|
||||
# The filter expression.
|
||||
# Required. The filter expression.
|
||||
# @param [Fixnum] page_size
|
||||
# The number of scan configs to return in the list.
|
||||
# @param [String] page_token
|
||||
|
@ -888,7 +894,7 @@ module Google
|
|||
|
||||
# Updates the specified scan configuration.
|
||||
# @param [String] name
|
||||
# The name of the scan configuration in the form of
|
||||
# Required. The name of the scan configuration in the form of
|
||||
# `projects/[PROJECT_ID]/scanConfigs/[SCAN_CONFIG_ID]`.
|
||||
# @param [Google::Apis::ContaineranalysisV1beta1::ScanConfig] scan_config_object
|
||||
# @param [String] fields
|
||||
|
|
|
@ -27,7 +27,7 @@ module Google
|
|||
# @see https://cloud.google.com/dlp/docs/
|
||||
module DlpV2
|
||||
VERSION = 'V2'
|
||||
REVISION = '20191202'
|
||||
REVISION = '20191206'
|
||||
|
||||
# View and manage your data across Google Cloud Platform services
|
||||
AUTH_CLOUD_PLATFORM = 'https://www.googleapis.com/auth/cloud-platform'
|
||||
|
|
|
@ -1682,6 +1682,18 @@ module Google
|
|||
# @return [Google::Apis::DlpV2::GooglePrivacyDlpV2RecordTransformations]
|
||||
attr_accessor :record_transformations
|
||||
|
||||
# How to handle transformation errors during de-identification. A
|
||||
# transformation error occurs when the requested transformation is incompatible
|
||||
# with the data. For example, trying to de-identify an IP address using a
|
||||
# `DateShift` transformation would result in a transformation error, since date
|
||||
# info cannot be extracted from an IP address.
|
||||
# Information about any incompatible transformations, and how they were
|
||||
# handled, is returned in the response as part of the
|
||||
# `TransformationOverviews`.
|
||||
# Corresponds to the JSON property `transformationErrorHandling`
|
||||
# @return [Google::Apis::DlpV2::GooglePrivacyDlpV2TransformationErrorHandling]
|
||||
attr_accessor :transformation_error_handling
|
||||
|
||||
def initialize(**args)
|
||||
update!(**args)
|
||||
end
|
||||
|
@ -1690,6 +1702,7 @@ module Google
|
|||
def update!(**args)
|
||||
@info_type_transformations = args[:info_type_transformations] if args.key?(:info_type_transformations)
|
||||
@record_transformations = args[:record_transformations] if args.key?(:record_transformations)
|
||||
@transformation_error_handling = args[:transformation_error_handling] if args.key?(:transformation_error_handling)
|
||||
end
|
||||
end
|
||||
|
||||
|
@ -3808,6 +3821,22 @@ module Google
|
|||
end
|
||||
end
|
||||
|
||||
# Skips the data without modifying it if the requested transformation would
|
||||
# cause an error. For example, if a `DateShift` transformation were applied
|
||||
# an an IP address, this mode would leave the IP address unchanged in the
|
||||
# response.
|
||||
class GooglePrivacyDlpV2LeaveUntransformed
|
||||
include Google::Apis::Core::Hashable
|
||||
|
||||
def initialize(**args)
|
||||
update!(**args)
|
||||
end
|
||||
|
||||
# Update properties of this object
|
||||
def update!(**args)
|
||||
end
|
||||
end
|
||||
|
||||
# Message for specifying an adjustment to the likelihood of a finding as
|
||||
# part of a detection rule.
|
||||
class GooglePrivacyDlpV2LikelihoodAdjustment
|
||||
|
@ -5575,6 +5604,19 @@ module Google
|
|||
end
|
||||
end
|
||||
|
||||
# Throw an error and fail the request when a transformation error occurs.
|
||||
class GooglePrivacyDlpV2ThrowError
|
||||
include Google::Apis::Core::Hashable
|
||||
|
||||
def initialize(**args)
|
||||
update!(**args)
|
||||
end
|
||||
|
||||
# Update properties of this object
|
||||
def update!(**args)
|
||||
end
|
||||
end
|
||||
|
||||
# For use with `Date`, `Timestamp`, and `TimeOfDay`, extract or preserve a
|
||||
# portion of the value.
|
||||
class GooglePrivacyDlpV2TimePartConfig
|
||||
|
@ -5658,6 +5700,41 @@ module Google
|
|||
end
|
||||
end
|
||||
|
||||
# How to handle transformation errors during de-identification. A
|
||||
# transformation error occurs when the requested transformation is incompatible
|
||||
# with the data. For example, trying to de-identify an IP address using a
|
||||
# `DateShift` transformation would result in a transformation error, since date
|
||||
# info cannot be extracted from an IP address.
|
||||
# Information about any incompatible transformations, and how they were
|
||||
# handled, is returned in the response as part of the
|
||||
# `TransformationOverviews`.
|
||||
class GooglePrivacyDlpV2TransformationErrorHandling
|
||||
include Google::Apis::Core::Hashable
|
||||
|
||||
# Skips the data without modifying it if the requested transformation would
|
||||
# cause an error. For example, if a `DateShift` transformation were applied
|
||||
# an an IP address, this mode would leave the IP address unchanged in the
|
||||
# response.
|
||||
# Corresponds to the JSON property `leaveUntransformed`
|
||||
# @return [Google::Apis::DlpV2::GooglePrivacyDlpV2LeaveUntransformed]
|
||||
attr_accessor :leave_untransformed
|
||||
|
||||
# Throw an error and fail the request when a transformation error occurs.
|
||||
# Corresponds to the JSON property `throwError`
|
||||
# @return [Google::Apis::DlpV2::GooglePrivacyDlpV2ThrowError]
|
||||
attr_accessor :throw_error
|
||||
|
||||
def initialize(**args)
|
||||
update!(**args)
|
||||
end
|
||||
|
||||
# Update properties of this object
|
||||
def update!(**args)
|
||||
@leave_untransformed = args[:leave_untransformed] if args.key?(:leave_untransformed)
|
||||
@throw_error = args[:throw_error] if args.key?(:throw_error)
|
||||
end
|
||||
end
|
||||
|
||||
# Overview of the modifications that occurred.
|
||||
class GooglePrivacyDlpV2TransformationOverview
|
||||
include Google::Apis::Core::Hashable
|
||||
|
|
|
@ -628,6 +628,12 @@ module Google
|
|||
include Google::Apis::Core::JsonObjectSupport
|
||||
end
|
||||
|
||||
class GooglePrivacyDlpV2LeaveUntransformed
|
||||
class Representation < Google::Apis::Core::JsonRepresentation; end
|
||||
|
||||
include Google::Apis::Core::JsonObjectSupport
|
||||
end
|
||||
|
||||
class GooglePrivacyDlpV2LikelihoodAdjustment
|
||||
class Representation < Google::Apis::Core::JsonRepresentation; end
|
||||
|
||||
|
@ -964,6 +970,12 @@ module Google
|
|||
include Google::Apis::Core::JsonObjectSupport
|
||||
end
|
||||
|
||||
class GooglePrivacyDlpV2ThrowError
|
||||
class Representation < Google::Apis::Core::JsonRepresentation; end
|
||||
|
||||
include Google::Apis::Core::JsonObjectSupport
|
||||
end
|
||||
|
||||
class GooglePrivacyDlpV2TimePartConfig
|
||||
class Representation < Google::Apis::Core::JsonRepresentation; end
|
||||
|
||||
|
@ -982,6 +994,12 @@ module Google
|
|||
include Google::Apis::Core::JsonObjectSupport
|
||||
end
|
||||
|
||||
class GooglePrivacyDlpV2TransformationErrorHandling
|
||||
class Representation < Google::Apis::Core::JsonRepresentation; end
|
||||
|
||||
include Google::Apis::Core::JsonObjectSupport
|
||||
end
|
||||
|
||||
class GooglePrivacyDlpV2TransformationOverview
|
||||
class Representation < Google::Apis::Core::JsonRepresentation; end
|
||||
|
||||
|
@ -1529,6 +1547,8 @@ module Google
|
|||
|
||||
property :record_transformations, as: 'recordTransformations', class: Google::Apis::DlpV2::GooglePrivacyDlpV2RecordTransformations, decorator: Google::Apis::DlpV2::GooglePrivacyDlpV2RecordTransformations::Representation
|
||||
|
||||
property :transformation_error_handling, as: 'transformationErrorHandling', class: Google::Apis::DlpV2::GooglePrivacyDlpV2TransformationErrorHandling, decorator: Google::Apis::DlpV2::GooglePrivacyDlpV2TransformationErrorHandling::Representation
|
||||
|
||||
end
|
||||
end
|
||||
|
||||
|
@ -2144,6 +2164,12 @@ module Google
|
|||
end
|
||||
end
|
||||
|
||||
class GooglePrivacyDlpV2LeaveUntransformed
|
||||
# @private
|
||||
class Representation < Google::Apis::Core::JsonRepresentation
|
||||
end
|
||||
end
|
||||
|
||||
class GooglePrivacyDlpV2LikelihoodAdjustment
|
||||
# @private
|
||||
class Representation < Google::Apis::Core::JsonRepresentation
|
||||
|
@ -2692,6 +2718,12 @@ module Google
|
|||
end
|
||||
end
|
||||
|
||||
class GooglePrivacyDlpV2ThrowError
|
||||
# @private
|
||||
class Representation < Google::Apis::Core::JsonRepresentation
|
||||
end
|
||||
end
|
||||
|
||||
class GooglePrivacyDlpV2TimePartConfig
|
||||
# @private
|
||||
class Representation < Google::Apis::Core::JsonRepresentation
|
||||
|
@ -2717,6 +2749,16 @@ module Google
|
|||
end
|
||||
end
|
||||
|
||||
class GooglePrivacyDlpV2TransformationErrorHandling
|
||||
# @private
|
||||
class Representation < Google::Apis::Core::JsonRepresentation
|
||||
property :leave_untransformed, as: 'leaveUntransformed', class: Google::Apis::DlpV2::GooglePrivacyDlpV2LeaveUntransformed, decorator: Google::Apis::DlpV2::GooglePrivacyDlpV2LeaveUntransformed::Representation
|
||||
|
||||
property :throw_error, as: 'throwError', class: Google::Apis::DlpV2::GooglePrivacyDlpV2ThrowError, decorator: Google::Apis::DlpV2::GooglePrivacyDlpV2ThrowError::Representation
|
||||
|
||||
end
|
||||
end
|
||||
|
||||
class GooglePrivacyDlpV2TransformationOverview
|
||||
# @private
|
||||
class Representation < Google::Apis::Core::JsonRepresentation
|
||||
|
|
|
@ -25,7 +25,7 @@ module Google
|
|||
# @see https://cloud.google.com/iap
|
||||
module IapV1
|
||||
VERSION = 'V1'
|
||||
REVISION = '20191011'
|
||||
REVISION = '20191206'
|
||||
|
||||
# View and manage your data across Google Cloud Platform services
|
||||
AUTH_CLOUD_PLATFORM = 'https://www.googleapis.com/auth/cloud-platform'
|
||||
|
|
|
@ -100,6 +100,23 @@ module Google
|
|||
# account. For example, `my-other-app@appspot.gserviceaccount.com`.
|
||||
# * `group:`emailid``: An email address that represents a Google group.
|
||||
# For example, `admins@example.com`.
|
||||
# * `deleted:user:`emailid`?uid=`uniqueid``: An email address (plus unique
|
||||
# identifier) representing a user that has been recently deleted. For
|
||||
# example, `alice@example.com?uid=123456789012345678901`. If the user is
|
||||
# recovered, this value reverts to `user:`emailid`` and the recovered user
|
||||
# retains the role in the binding.
|
||||
# * `deleted:serviceAccount:`emailid`?uid=`uniqueid``: An email address (plus
|
||||
# unique identifier) representing a service account that has been recently
|
||||
# deleted. For example,
|
||||
# `my-other-app@appspot.gserviceaccount.com?uid=123456789012345678901`.
|
||||
# If the service account is undeleted, this value reverts to
|
||||
# `serviceAccount:`emailid`` and the undeleted service account retains the
|
||||
# role in the binding.
|
||||
# * `deleted:group:`emailid`?uid=`uniqueid``: An email address (plus unique
|
||||
# identifier) representing a Google group that has been recently
|
||||
# deleted. For example, `admins@example.com?uid=123456789012345678901`. If
|
||||
# the group is recovered, this value reverts to `group:`emailid`` and the
|
||||
# recovered group retains the role in the binding.
|
||||
# * `domain:`domain``: The G Suite domain (primary) that represents all the
|
||||
# users of that domain. For example, `google.com` or `example.com`.
|
||||
# Corresponds to the JSON property `members`
|
||||
|
@ -124,6 +141,48 @@ module Google
|
|||
end
|
||||
end
|
||||
|
||||
# OAuth brand data.
|
||||
# NOTE: Only contains a portion of the data that describes a brand.
|
||||
class Brand
|
||||
include Google::Apis::Core::Hashable
|
||||
|
||||
# Application name displayed on OAuth consent screen.
|
||||
# Corresponds to the JSON property `applicationTitle`
|
||||
# @return [String]
|
||||
attr_accessor :application_title
|
||||
|
||||
# Output only. Identifier of the brand.
|
||||
# NOTE: GCP project number achieves the same brand identification purpose as
|
||||
# only one brand per project can be created.
|
||||
# Corresponds to the JSON property `name`
|
||||
# @return [String]
|
||||
attr_accessor :name
|
||||
|
||||
# Output only. Whether the brand is only intended for usage inside the
|
||||
# GSuite organization only.
|
||||
# Corresponds to the JSON property `orgInternalOnly`
|
||||
# @return [Boolean]
|
||||
attr_accessor :org_internal_only
|
||||
alias_method :org_internal_only?, :org_internal_only
|
||||
|
||||
# Support email displayed on the OAuth consent screen.
|
||||
# Corresponds to the JSON property `supportEmail`
|
||||
# @return [String]
|
||||
attr_accessor :support_email
|
||||
|
||||
def initialize(**args)
|
||||
update!(**args)
|
||||
end
|
||||
|
||||
# Update properties of this object
|
||||
def update!(**args)
|
||||
@application_title = args[:application_title] if args.key?(:application_title)
|
||||
@name = args[:name] if args.key?(:name)
|
||||
@org_internal_only = args[:org_internal_only] if args.key?(:org_internal_only)
|
||||
@support_email = args[:support_email] if args.key?(:support_email)
|
||||
end
|
||||
end
|
||||
|
||||
# Allows customers to configure HTTP request paths that'll allow HTTP OPTIONS
|
||||
# call to bypass authentication and authorization.
|
||||
class CorsSettings
|
||||
|
@ -169,6 +228,25 @@ module Google
|
|||
end
|
||||
end
|
||||
|
||||
# A generic empty message that you can re-use to avoid defining duplicated
|
||||
# empty messages in your APIs. A typical example is to use it as the request
|
||||
# or the response type of an API method. For instance:
|
||||
# service Foo `
|
||||
# rpc Bar(google.protobuf.Empty) returns (google.protobuf.Empty);
|
||||
# `
|
||||
# The JSON representation for `Empty` is empty JSON object ````.
|
||||
class Empty
|
||||
include Google::Apis::Core::Hashable
|
||||
|
||||
def initialize(**args)
|
||||
update!(**args)
|
||||
end
|
||||
|
||||
# Update properties of this object
|
||||
def update!(**args)
|
||||
end
|
||||
end
|
||||
|
||||
# Represents an expression text. Example:
|
||||
# title: "User account presence"
|
||||
# description: "Determines whether the request has a user account"
|
||||
|
@ -322,6 +400,82 @@ module Google
|
|||
end
|
||||
end
|
||||
|
||||
# Contains the data that describes an Identity Aware Proxy owned client.
|
||||
class IdentityAwareProxyClient
|
||||
include Google::Apis::Core::Hashable
|
||||
|
||||
# Human-friendly name given to the OAuth client.
|
||||
# Corresponds to the JSON property `displayName`
|
||||
# @return [String]
|
||||
attr_accessor :display_name
|
||||
|
||||
# Output only. Unique identifier of the OAuth client.
|
||||
# Corresponds to the JSON property `name`
|
||||
# @return [String]
|
||||
attr_accessor :name
|
||||
|
||||
# Output only. Client secret of the OAuth client.
|
||||
# Corresponds to the JSON property `secret`
|
||||
# @return [String]
|
||||
attr_accessor :secret
|
||||
|
||||
def initialize(**args)
|
||||
update!(**args)
|
||||
end
|
||||
|
||||
# Update properties of this object
|
||||
def update!(**args)
|
||||
@display_name = args[:display_name] if args.key?(:display_name)
|
||||
@name = args[:name] if args.key?(:name)
|
||||
@secret = args[:secret] if args.key?(:secret)
|
||||
end
|
||||
end
|
||||
|
||||
# Response message for ListBrands.
|
||||
class ListBrandsResponse
|
||||
include Google::Apis::Core::Hashable
|
||||
|
||||
# Brands existing in the project.
|
||||
# Corresponds to the JSON property `brands`
|
||||
# @return [Array<Google::Apis::IapV1::Brand>]
|
||||
attr_accessor :brands
|
||||
|
||||
def initialize(**args)
|
||||
update!(**args)
|
||||
end
|
||||
|
||||
# Update properties of this object
|
||||
def update!(**args)
|
||||
@brands = args[:brands] if args.key?(:brands)
|
||||
end
|
||||
end
|
||||
|
||||
# Response message for ListIdentityAwareProxyClients.
|
||||
class ListIdentityAwareProxyClientsResponse
|
||||
include Google::Apis::Core::Hashable
|
||||
|
||||
# Clients existing in the brand.
|
||||
# Corresponds to the JSON property `identityAwareProxyClients`
|
||||
# @return [Array<Google::Apis::IapV1::IdentityAwareProxyClient>]
|
||||
attr_accessor :identity_aware_proxy_clients
|
||||
|
||||
# A token, which can be send as `page_token` to retrieve the next page.
|
||||
# If this field is omitted, there are no subsequent pages.
|
||||
# Corresponds to the JSON property `nextPageToken`
|
||||
# @return [String]
|
||||
attr_accessor :next_page_token
|
||||
|
||||
def initialize(**args)
|
||||
update!(**args)
|
||||
end
|
||||
|
||||
# Update properties of this object
|
||||
def update!(**args)
|
||||
@identity_aware_proxy_clients = args[:identity_aware_proxy_clients] if args.key?(:identity_aware_proxy_clients)
|
||||
@next_page_token = args[:next_page_token] if args.key?(:next_page_token)
|
||||
end
|
||||
end
|
||||
|
||||
# Configuration for OAuth login&consent flow behavior.
|
||||
class OAuthSettings
|
||||
include Google::Apis::Core::Hashable
|
||||
|
@ -345,16 +499,18 @@ module Google
|
|||
end
|
||||
end
|
||||
|
||||
# Defines an Identity and Access Management (IAM) policy. It is used to
|
||||
# specify access control policies for Cloud Platform resources.
|
||||
# An Identity and Access Management (IAM) policy, which specifies access
|
||||
# controls for Google Cloud resources.
|
||||
# A `Policy` is a collection of `bindings`. A `binding` binds one or more
|
||||
# `members` to a single `role`. Members can be user accounts, service accounts,
|
||||
# Google groups, and domains (such as G Suite). A `role` is a named list of
|
||||
# permissions (defined by IAM or configured by users). A `binding` can
|
||||
# optionally specify a `condition`, which is a logic expression that further
|
||||
# constrains the role binding based on attributes about the request and/or
|
||||
# target resource.
|
||||
# **JSON Example**
|
||||
# permissions; each `role` can be an IAM predefined role or a user-created
|
||||
# custom role.
|
||||
# Optionally, a `binding` can specify a `condition`, which is a logical
|
||||
# expression that allows access to a resource only if the expression evaluates
|
||||
# to `true`. A condition can add constraints based on attributes of the
|
||||
# request, the resource, or both.
|
||||
# **JSON example:**
|
||||
# `
|
||||
# "bindings": [
|
||||
# `
|
||||
|
@ -372,13 +528,15 @@ module Google
|
|||
# "condition": `
|
||||
# "title": "expirable access",
|
||||
# "description": "Does not grant access after Sep 2020",
|
||||
# "expression": "request.time <
|
||||
# timestamp('2020-10-01T00:00:00.000Z')",
|
||||
# "expression": "request.time < timestamp('2020-10-01T00:00:00.000Z')
|
||||
# ",
|
||||
# `
|
||||
# `
|
||||
# ]
|
||||
# ],
|
||||
# "etag": "BwWWja0YfJA=",
|
||||
# "version": 3
|
||||
# `
|
||||
# **YAML Example**
|
||||
# **YAML example:**
|
||||
# bindings:
|
||||
# - members:
|
||||
# - user:mike@example.com
|
||||
|
@ -393,14 +551,16 @@ module Google
|
|||
# title: expirable access
|
||||
# description: Does not grant access after Sep 2020
|
||||
# expression: request.time < timestamp('2020-10-01T00:00:00.000Z')
|
||||
# - etag: BwWWja0YfJA=
|
||||
# - version: 3
|
||||
# For a description of IAM and its features, see the
|
||||
# [IAM developer's guide](https://cloud.google.com/iam/docs).
|
||||
# [IAM documentation](https://cloud.google.com/iam/docs/).
|
||||
class Policy
|
||||
include Google::Apis::Core::Hashable
|
||||
|
||||
# Associates a list of `members` to a `role`. Optionally may specify a
|
||||
# `condition` that determines when binding is in effect.
|
||||
# `bindings` with no members will result in an error.
|
||||
# Associates a list of `members` to a `role`. Optionally, may specify a
|
||||
# `condition` that determines how and when the `bindings` are applied. Each
|
||||
# of the `bindings` must contain at least one member.
|
||||
# Corresponds to the JSON property `bindings`
|
||||
# @return [Array<Google::Apis::IapV1::Binding>]
|
||||
attr_accessor :bindings
|
||||
|
@ -412,25 +572,31 @@ module Google
|
|||
# conditions: An `etag` is returned in the response to `getIamPolicy`, and
|
||||
# systems are expected to put that etag in the request to `setIamPolicy` to
|
||||
# ensure that their change will be applied to the same version of the policy.
|
||||
# If no `etag` is provided in the call to `setIamPolicy`, then the existing
|
||||
# policy is overwritten. Due to blind-set semantics of an etag-less policy,
|
||||
# 'setIamPolicy' will not fail even if either of incoming or stored policy
|
||||
# does not meet the version requirements.
|
||||
# **Important:** If you use IAM Conditions, you must include the `etag` field
|
||||
# whenever you call `setIamPolicy`. If you omit this field, then IAM allows
|
||||
# you to overwrite a version `3` policy with a version `1` policy, and all of
|
||||
# the conditions in the version `3` policy are lost.
|
||||
# Corresponds to the JSON property `etag`
|
||||
# NOTE: Values are automatically base64 encoded/decoded in the client library.
|
||||
# @return [String]
|
||||
attr_accessor :etag
|
||||
|
||||
# Specifies the format of the policy.
|
||||
# Valid values are 0, 1, and 3. Requests specifying an invalid value will be
|
||||
# rejected.
|
||||
# Operations affecting conditional bindings must specify version 3. This can
|
||||
# be either setting a conditional policy, modifying a conditional binding,
|
||||
# or removing a conditional binding from the stored conditional policy.
|
||||
# Operations on non-conditional policies may specify any valid value or
|
||||
# leave the field unset.
|
||||
# If no etag is provided in the call to `setIamPolicy`, any version
|
||||
# compliance checks on the incoming and/or stored policy is skipped.
|
||||
# Valid values are `0`, `1`, and `3`. Requests that specify an invalid value
|
||||
# are rejected.
|
||||
# Any operation that affects conditional role bindings must specify version
|
||||
# `3`. This requirement applies to the following operations:
|
||||
# * Getting a policy that includes a conditional role binding
|
||||
# * Adding a conditional role binding to a policy
|
||||
# * Changing a conditional role binding in a policy
|
||||
# * Removing any role binding, with or without a condition, from a policy
|
||||
# that includes conditions
|
||||
# **Important:** If you use IAM Conditions, you must include the `etag` field
|
||||
# whenever you call `setIamPolicy`. If you omit this field, then IAM allows
|
||||
# you to overwrite a version `3` policy with a version `1` policy, and all of
|
||||
# the conditions in the version `3` policy are lost.
|
||||
# If a policy does not include any conditions, operations on that policy may
|
||||
# specify any valid version or leave the field unset.
|
||||
# Corresponds to the JSON property `version`
|
||||
# @return [Fixnum]
|
||||
attr_accessor :version
|
||||
|
@ -447,20 +613,35 @@ module Google
|
|||
end
|
||||
end
|
||||
|
||||
# The request sent to ResetIdentityAwareProxyClientSecret.
|
||||
class ResetIdentityAwareProxyClientSecretRequest
|
||||
include Google::Apis::Core::Hashable
|
||||
|
||||
def initialize(**args)
|
||||
update!(**args)
|
||||
end
|
||||
|
||||
# Update properties of this object
|
||||
def update!(**args)
|
||||
end
|
||||
end
|
||||
|
||||
# Request message for `SetIamPolicy` method.
|
||||
class SetIamPolicyRequest
|
||||
include Google::Apis::Core::Hashable
|
||||
|
||||
# Defines an Identity and Access Management (IAM) policy. It is used to
|
||||
# specify access control policies for Cloud Platform resources.
|
||||
# An Identity and Access Management (IAM) policy, which specifies access
|
||||
# controls for Google Cloud resources.
|
||||
# A `Policy` is a collection of `bindings`. A `binding` binds one or more
|
||||
# `members` to a single `role`. Members can be user accounts, service accounts,
|
||||
# Google groups, and domains (such as G Suite). A `role` is a named list of
|
||||
# permissions (defined by IAM or configured by users). A `binding` can
|
||||
# optionally specify a `condition`, which is a logic expression that further
|
||||
# constrains the role binding based on attributes about the request and/or
|
||||
# target resource.
|
||||
# **JSON Example**
|
||||
# permissions; each `role` can be an IAM predefined role or a user-created
|
||||
# custom role.
|
||||
# Optionally, a `binding` can specify a `condition`, which is a logical
|
||||
# expression that allows access to a resource only if the expression evaluates
|
||||
# to `true`. A condition can add constraints based on attributes of the
|
||||
# request, the resource, or both.
|
||||
# **JSON example:**
|
||||
# `
|
||||
# "bindings": [
|
||||
# `
|
||||
|
@ -478,13 +659,15 @@ module Google
|
|||
# "condition": `
|
||||
# "title": "expirable access",
|
||||
# "description": "Does not grant access after Sep 2020",
|
||||
# "expression": "request.time <
|
||||
# timestamp('2020-10-01T00:00:00.000Z')",
|
||||
# "expression": "request.time < timestamp('2020-10-01T00:00:00.000Z')
|
||||
# ",
|
||||
# `
|
||||
# `
|
||||
# ]
|
||||
# ],
|
||||
# "etag": "BwWWja0YfJA=",
|
||||
# "version": 3
|
||||
# `
|
||||
# **YAML Example**
|
||||
# **YAML example:**
|
||||
# bindings:
|
||||
# - members:
|
||||
# - user:mike@example.com
|
||||
|
@ -499,8 +682,10 @@ module Google
|
|||
# title: expirable access
|
||||
# description: Does not grant access after Sep 2020
|
||||
# expression: request.time < timestamp('2020-10-01T00:00:00.000Z')
|
||||
# - etag: BwWWja0YfJA=
|
||||
# - version: 3
|
||||
# For a description of IAM and its features, see the
|
||||
# [IAM developer's guide](https://cloud.google.com/iam/docs).
|
||||
# [IAM documentation](https://cloud.google.com/iam/docs/).
|
||||
# Corresponds to the JSON property `policy`
|
||||
# @return [Google::Apis::IapV1::Policy]
|
||||
attr_accessor :policy
|
||||
|
|
|
@ -40,6 +40,12 @@ module Google
|
|||
include Google::Apis::Core::JsonObjectSupport
|
||||
end
|
||||
|
||||
class Brand
|
||||
class Representation < Google::Apis::Core::JsonRepresentation; end
|
||||
|
||||
include Google::Apis::Core::JsonObjectSupport
|
||||
end
|
||||
|
||||
class CorsSettings
|
||||
class Representation < Google::Apis::Core::JsonRepresentation; end
|
||||
|
||||
|
@ -52,6 +58,12 @@ module Google
|
|||
include Google::Apis::Core::JsonObjectSupport
|
||||
end
|
||||
|
||||
class Empty
|
||||
class Representation < Google::Apis::Core::JsonRepresentation; end
|
||||
|
||||
include Google::Apis::Core::JsonObjectSupport
|
||||
end
|
||||
|
||||
class Expr
|
||||
class Representation < Google::Apis::Core::JsonRepresentation; end
|
||||
|
||||
|
@ -82,6 +94,24 @@ module Google
|
|||
include Google::Apis::Core::JsonObjectSupport
|
||||
end
|
||||
|
||||
class IdentityAwareProxyClient
|
||||
class Representation < Google::Apis::Core::JsonRepresentation; end
|
||||
|
||||
include Google::Apis::Core::JsonObjectSupport
|
||||
end
|
||||
|
||||
class ListBrandsResponse
|
||||
class Representation < Google::Apis::Core::JsonRepresentation; end
|
||||
|
||||
include Google::Apis::Core::JsonObjectSupport
|
||||
end
|
||||
|
||||
class ListIdentityAwareProxyClientsResponse
|
||||
class Representation < Google::Apis::Core::JsonRepresentation; end
|
||||
|
||||
include Google::Apis::Core::JsonObjectSupport
|
||||
end
|
||||
|
||||
class OAuthSettings
|
||||
class Representation < Google::Apis::Core::JsonRepresentation; end
|
||||
|
||||
|
@ -94,6 +124,12 @@ module Google
|
|||
include Google::Apis::Core::JsonObjectSupport
|
||||
end
|
||||
|
||||
class ResetIdentityAwareProxyClientSecretRequest
|
||||
class Representation < Google::Apis::Core::JsonRepresentation; end
|
||||
|
||||
include Google::Apis::Core::JsonObjectSupport
|
||||
end
|
||||
|
||||
class SetIamPolicyRequest
|
||||
class Representation < Google::Apis::Core::JsonRepresentation; end
|
||||
|
||||
|
@ -142,6 +178,16 @@ module Google
|
|||
end
|
||||
end
|
||||
|
||||
class Brand
|
||||
# @private
|
||||
class Representation < Google::Apis::Core::JsonRepresentation
|
||||
property :application_title, as: 'applicationTitle'
|
||||
property :name, as: 'name'
|
||||
property :org_internal_only, as: 'orgInternalOnly'
|
||||
property :support_email, as: 'supportEmail'
|
||||
end
|
||||
end
|
||||
|
||||
class CorsSettings
|
||||
# @private
|
||||
class Representation < Google::Apis::Core::JsonRepresentation
|
||||
|
@ -156,6 +202,12 @@ module Google
|
|||
end
|
||||
end
|
||||
|
||||
class Empty
|
||||
# @private
|
||||
class Representation < Google::Apis::Core::JsonRepresentation
|
||||
end
|
||||
end
|
||||
|
||||
class Expr
|
||||
# @private
|
||||
class Representation < Google::Apis::Core::JsonRepresentation
|
||||
|
@ -200,6 +252,32 @@ module Google
|
|||
end
|
||||
end
|
||||
|
||||
class IdentityAwareProxyClient
|
||||
# @private
|
||||
class Representation < Google::Apis::Core::JsonRepresentation
|
||||
property :display_name, as: 'displayName'
|
||||
property :name, as: 'name'
|
||||
property :secret, as: 'secret'
|
||||
end
|
||||
end
|
||||
|
||||
class ListBrandsResponse
|
||||
# @private
|
||||
class Representation < Google::Apis::Core::JsonRepresentation
|
||||
collection :brands, as: 'brands', class: Google::Apis::IapV1::Brand, decorator: Google::Apis::IapV1::Brand::Representation
|
||||
|
||||
end
|
||||
end
|
||||
|
||||
class ListIdentityAwareProxyClientsResponse
|
||||
# @private
|
||||
class Representation < Google::Apis::Core::JsonRepresentation
|
||||
collection :identity_aware_proxy_clients, as: 'identityAwareProxyClients', class: Google::Apis::IapV1::IdentityAwareProxyClient, decorator: Google::Apis::IapV1::IdentityAwareProxyClient::Representation
|
||||
|
||||
property :next_page_token, as: 'nextPageToken'
|
||||
end
|
||||
end
|
||||
|
||||
class OAuthSettings
|
||||
# @private
|
||||
class Representation < Google::Apis::Core::JsonRepresentation
|
||||
|
@ -217,6 +295,12 @@ module Google
|
|||
end
|
||||
end
|
||||
|
||||
class ResetIdentityAwareProxyClientSecretRequest
|
||||
# @private
|
||||
class Representation < Google::Apis::Core::JsonRepresentation
|
||||
end
|
||||
end
|
||||
|
||||
class SetIamPolicyRequest
|
||||
# @private
|
||||
class Representation < Google::Apis::Core::JsonRepresentation
|
||||
|
|
|
@ -47,6 +47,298 @@ module Google
|
|||
@batch_path = 'batch'
|
||||
end
|
||||
|
||||
# Constructs a new OAuth brand for the project if one does not exists.
|
||||
# The created brand is 'internal only', meaning that OAuth clients created
|
||||
# under it only accept requests from users who belong to the same GSuites
|
||||
# account as the project. The brand is created in un-reviewed status.
|
||||
# NOTE: the 'internal_only' can be manually changed in Pantheon UI.
|
||||
# Requires that brand does not already exists for the project.
|
||||
# @param [String] parent
|
||||
# Required. GCP Project number/id under which the brand is to be created.
|
||||
# In the following format: projects/`project_number/id`.
|
||||
# @param [Google::Apis::IapV1::Brand] brand_object
|
||||
# @param [String] fields
|
||||
# Selector specifying which fields to include in a partial response.
|
||||
# @param [String] quota_user
|
||||
# Available to use for quota purposes for server-side applications. Can be any
|
||||
# arbitrary string assigned to a user, but should not exceed 40 characters.
|
||||
# @param [Google::Apis::RequestOptions] options
|
||||
# Request-specific options
|
||||
#
|
||||
# @yield [result, err] Result & error if block supplied
|
||||
# @yieldparam result [Google::Apis::IapV1::Brand] parsed result object
|
||||
# @yieldparam err [StandardError] error object if request failed
|
||||
#
|
||||
# @return [Google::Apis::IapV1::Brand]
|
||||
#
|
||||
# @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
|
||||
# @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
|
||||
# @raise [Google::Apis::AuthorizationError] Authorization is required
|
||||
def create_oauth_project_brand(parent, brand_object = nil, fields: nil, quota_user: nil, options: nil, &block)
|
||||
command = make_simple_command(:post, 'v1/oauth/{+parent}/brands', options)
|
||||
command.request_representation = Google::Apis::IapV1::Brand::Representation
|
||||
command.request_object = brand_object
|
||||
command.response_representation = Google::Apis::IapV1::Brand::Representation
|
||||
command.response_class = Google::Apis::IapV1::Brand
|
||||
command.params['parent'] = parent unless parent.nil?
|
||||
command.query['fields'] = fields unless fields.nil?
|
||||
command.query['quotaUser'] = quota_user unless quota_user.nil?
|
||||
execute_or_queue_command(command, &block)
|
||||
end
|
||||
|
||||
# Retrieves the OAuth brand of the project.
|
||||
# @param [String] name
|
||||
# Required. Name of the brand to be fetched.
|
||||
# In the following format: projects/`project_number/id`/brands/`brand`.
|
||||
# @param [String] fields
|
||||
# Selector specifying which fields to include in a partial response.
|
||||
# @param [String] quota_user
|
||||
# Available to use for quota purposes for server-side applications. Can be any
|
||||
# arbitrary string assigned to a user, but should not exceed 40 characters.
|
||||
# @param [Google::Apis::RequestOptions] options
|
||||
# Request-specific options
|
||||
#
|
||||
# @yield [result, err] Result & error if block supplied
|
||||
# @yieldparam result [Google::Apis::IapV1::Brand] parsed result object
|
||||
# @yieldparam err [StandardError] error object if request failed
|
||||
#
|
||||
# @return [Google::Apis::IapV1::Brand]
|
||||
#
|
||||
# @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
|
||||
# @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
|
||||
# @raise [Google::Apis::AuthorizationError] Authorization is required
|
||||
def get_oauth_project_brand(name, fields: nil, quota_user: nil, options: nil, &block)
|
||||
command = make_simple_command(:get, 'v1/oauth/{+name}', options)
|
||||
command.response_representation = Google::Apis::IapV1::Brand::Representation
|
||||
command.response_class = Google::Apis::IapV1::Brand
|
||||
command.params['name'] = name unless name.nil?
|
||||
command.query['fields'] = fields unless fields.nil?
|
||||
command.query['quotaUser'] = quota_user unless quota_user.nil?
|
||||
execute_or_queue_command(command, &block)
|
||||
end
|
||||
|
||||
# Lists the existing brands for the project.
|
||||
# @param [String] parent
|
||||
# Required. GCP Project number/id.
|
||||
# In the following format: projects/`project_number/id`.
|
||||
# @param [String] fields
|
||||
# Selector specifying which fields to include in a partial response.
|
||||
# @param [String] quota_user
|
||||
# Available to use for quota purposes for server-side applications. Can be any
|
||||
# arbitrary string assigned to a user, but should not exceed 40 characters.
|
||||
# @param [Google::Apis::RequestOptions] options
|
||||
# Request-specific options
|
||||
#
|
||||
# @yield [result, err] Result & error if block supplied
|
||||
# @yieldparam result [Google::Apis::IapV1::ListBrandsResponse] parsed result object
|
||||
# @yieldparam err [StandardError] error object if request failed
|
||||
#
|
||||
# @return [Google::Apis::IapV1::ListBrandsResponse]
|
||||
#
|
||||
# @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
|
||||
# @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
|
||||
# @raise [Google::Apis::AuthorizationError] Authorization is required
|
||||
def list_oauth_project_brands(parent, fields: nil, quota_user: nil, options: nil, &block)
|
||||
command = make_simple_command(:get, 'v1/oauth/{+parent}/brands', options)
|
||||
command.response_representation = Google::Apis::IapV1::ListBrandsResponse::Representation
|
||||
command.response_class = Google::Apis::IapV1::ListBrandsResponse
|
||||
command.params['parent'] = parent unless parent.nil?
|
||||
command.query['fields'] = fields unless fields.nil?
|
||||
command.query['quotaUser'] = quota_user unless quota_user.nil?
|
||||
execute_or_queue_command(command, &block)
|
||||
end
|
||||
|
||||
# Creates an Identity Aware Proxy (IAP) OAuth client, the client is owned
|
||||
# by IAP.
|
||||
# Requires that the brand for the project exists and that it is set for
|
||||
# internal only use.
|
||||
# @param [String] parent
|
||||
# Required. Path to create the client in.
|
||||
# In the following format:
|
||||
# projects/`project_number/id`/brands/`brand`.
|
||||
# The project must belong to a GSuite account.
|
||||
# @param [Google::Apis::IapV1::IdentityAwareProxyClient] identity_aware_proxy_client_object
|
||||
# @param [String] fields
|
||||
# Selector specifying which fields to include in a partial response.
|
||||
# @param [String] quota_user
|
||||
# Available to use for quota purposes for server-side applications. Can be any
|
||||
# arbitrary string assigned to a user, but should not exceed 40 characters.
|
||||
# @param [Google::Apis::RequestOptions] options
|
||||
# Request-specific options
|
||||
#
|
||||
# @yield [result, err] Result & error if block supplied
|
||||
# @yieldparam result [Google::Apis::IapV1::IdentityAwareProxyClient] parsed result object
|
||||
# @yieldparam err [StandardError] error object if request failed
|
||||
#
|
||||
# @return [Google::Apis::IapV1::IdentityAwareProxyClient]
|
||||
#
|
||||
# @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
|
||||
# @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
|
||||
# @raise [Google::Apis::AuthorizationError] Authorization is required
|
||||
def create_oauth_project_brand_identity_aware_proxy_client(parent, identity_aware_proxy_client_object = nil, fields: nil, quota_user: nil, options: nil, &block)
|
||||
command = make_simple_command(:post, 'v1/oauth/{+parent}/identityAwareProxyClients', options)
|
||||
command.request_representation = Google::Apis::IapV1::IdentityAwareProxyClient::Representation
|
||||
command.request_object = identity_aware_proxy_client_object
|
||||
command.response_representation = Google::Apis::IapV1::IdentityAwareProxyClient::Representation
|
||||
command.response_class = Google::Apis::IapV1::IdentityAwareProxyClient
|
||||
command.params['parent'] = parent unless parent.nil?
|
||||
command.query['fields'] = fields unless fields.nil?
|
||||
command.query['quotaUser'] = quota_user unless quota_user.nil?
|
||||
execute_or_queue_command(command, &block)
|
||||
end
|
||||
|
||||
# Deletes an Identity Aware Proxy (IAP) OAuth client. Useful if the secret
|
||||
# was compromised.
|
||||
# Requires that the client is owned by IAP.
|
||||
# @param [String] name
|
||||
# Required. Name of the Identity Aware Proxy client to be deleted.
|
||||
# In the following format:
|
||||
# projects/`project_number/id`/brands/`brand`/identityAwareProxyClients/`
|
||||
# client_id`.
|
||||
# @param [String] fields
|
||||
# Selector specifying which fields to include in a partial response.
|
||||
# @param [String] quota_user
|
||||
# Available to use for quota purposes for server-side applications. Can be any
|
||||
# arbitrary string assigned to a user, but should not exceed 40 characters.
|
||||
# @param [Google::Apis::RequestOptions] options
|
||||
# Request-specific options
|
||||
#
|
||||
# @yield [result, err] Result & error if block supplied
|
||||
# @yieldparam result [Google::Apis::IapV1::Empty] parsed result object
|
||||
# @yieldparam err [StandardError] error object if request failed
|
||||
#
|
||||
# @return [Google::Apis::IapV1::Empty]
|
||||
#
|
||||
# @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
|
||||
# @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
|
||||
# @raise [Google::Apis::AuthorizationError] Authorization is required
|
||||
def delete_oauth_project_brand_identity_aware_proxy_client(name, fields: nil, quota_user: nil, options: nil, &block)
|
||||
command = make_simple_command(:delete, 'v1/oauth/{+name}', options)
|
||||
command.response_representation = Google::Apis::IapV1::Empty::Representation
|
||||
command.response_class = Google::Apis::IapV1::Empty
|
||||
command.params['name'] = name unless name.nil?
|
||||
command.query['fields'] = fields unless fields.nil?
|
||||
command.query['quotaUser'] = quota_user unless quota_user.nil?
|
||||
execute_or_queue_command(command, &block)
|
||||
end
|
||||
|
||||
# Retrieves an Identity Aware Proxy (IAP) OAuth client.
|
||||
# Requires that the client is owned by IAP.
|
||||
# @param [String] name
|
||||
# Required. Name of the Identity Aware Proxy client to be fetched.
|
||||
# In the following format:
|
||||
# projects/`project_number/id`/brands/`brand`/identityAwareProxyClients/`
|
||||
# client_id`.
|
||||
# @param [String] fields
|
||||
# Selector specifying which fields to include in a partial response.
|
||||
# @param [String] quota_user
|
||||
# Available to use for quota purposes for server-side applications. Can be any
|
||||
# arbitrary string assigned to a user, but should not exceed 40 characters.
|
||||
# @param [Google::Apis::RequestOptions] options
|
||||
# Request-specific options
|
||||
#
|
||||
# @yield [result, err] Result & error if block supplied
|
||||
# @yieldparam result [Google::Apis::IapV1::IdentityAwareProxyClient] parsed result object
|
||||
# @yieldparam err [StandardError] error object if request failed
|
||||
#
|
||||
# @return [Google::Apis::IapV1::IdentityAwareProxyClient]
|
||||
#
|
||||
# @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
|
||||
# @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
|
||||
# @raise [Google::Apis::AuthorizationError] Authorization is required
|
||||
def get_oauth_project_brand_identity_aware_proxy_client(name, fields: nil, quota_user: nil, options: nil, &block)
|
||||
command = make_simple_command(:get, 'v1/oauth/{+name}', options)
|
||||
command.response_representation = Google::Apis::IapV1::IdentityAwareProxyClient::Representation
|
||||
command.response_class = Google::Apis::IapV1::IdentityAwareProxyClient
|
||||
command.params['name'] = name unless name.nil?
|
||||
command.query['fields'] = fields unless fields.nil?
|
||||
command.query['quotaUser'] = quota_user unless quota_user.nil?
|
||||
execute_or_queue_command(command, &block)
|
||||
end
|
||||
|
||||
# Lists the existing clients for the brand.
|
||||
# @param [String] parent
|
||||
# Required. Full brand path.
|
||||
# In the following format: projects/`project_number/id`/brands/`brand`.
|
||||
# @param [Fixnum] page_size
|
||||
# The maximum number of clients to return. The service may return fewer than
|
||||
# this value.
|
||||
# If unspecified, at most 100 clients will be returned.
|
||||
# The maximum value is 1000; values above 1000 will be coerced to 1000.
|
||||
# @param [String] page_token
|
||||
# A page token, received from a previous `ListIdentityAwareProxyClients`
|
||||
# call. Provide this to retrieve the subsequent page.
|
||||
# When paginating, all other parameters provided to
|
||||
# `ListIdentityAwareProxyClients` must match the call that provided the page
|
||||
# token.
|
||||
# @param [String] fields
|
||||
# Selector specifying which fields to include in a partial response.
|
||||
# @param [String] quota_user
|
||||
# Available to use for quota purposes for server-side applications. Can be any
|
||||
# arbitrary string assigned to a user, but should not exceed 40 characters.
|
||||
# @param [Google::Apis::RequestOptions] options
|
||||
# Request-specific options
|
||||
#
|
||||
# @yield [result, err] Result & error if block supplied
|
||||
# @yieldparam result [Google::Apis::IapV1::ListIdentityAwareProxyClientsResponse] parsed result object
|
||||
# @yieldparam err [StandardError] error object if request failed
|
||||
#
|
||||
# @return [Google::Apis::IapV1::ListIdentityAwareProxyClientsResponse]
|
||||
#
|
||||
# @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
|
||||
# @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
|
||||
# @raise [Google::Apis::AuthorizationError] Authorization is required
|
||||
def list_oauth_project_brand_identity_aware_proxy_clients(parent, page_size: nil, page_token: nil, fields: nil, quota_user: nil, options: nil, &block)
|
||||
command = make_simple_command(:get, 'v1/oauth/{+parent}/identityAwareProxyClients', options)
|
||||
command.response_representation = Google::Apis::IapV1::ListIdentityAwareProxyClientsResponse::Representation
|
||||
command.response_class = Google::Apis::IapV1::ListIdentityAwareProxyClientsResponse
|
||||
command.params['parent'] = parent unless parent.nil?
|
||||
command.query['pageSize'] = page_size unless page_size.nil?
|
||||
command.query['pageToken'] = page_token unless page_token.nil?
|
||||
command.query['fields'] = fields unless fields.nil?
|
||||
command.query['quotaUser'] = quota_user unless quota_user.nil?
|
||||
execute_or_queue_command(command, &block)
|
||||
end
|
||||
|
||||
# Resets an Identity Aware Proxy (IAP) OAuth client secret. Useful for
|
||||
# removing obsolete clients, managing the number of clients in a given
|
||||
# project, and cleaning up after tests.
|
||||
# Requires that the client is owned by IAP.
|
||||
# @param [String] name
|
||||
# Required. Name of the Identity Aware Proxy client to that will have its
|
||||
# secret reset. In the following format:
|
||||
# projects/`project_number/id`/brands/`brand`/identityAwareProxyClients/`
|
||||
# client_id`.
|
||||
# @param [Google::Apis::IapV1::ResetIdentityAwareProxyClientSecretRequest] reset_identity_aware_proxy_client_secret_request_object
|
||||
# @param [String] fields
|
||||
# Selector specifying which fields to include in a partial response.
|
||||
# @param [String] quota_user
|
||||
# Available to use for quota purposes for server-side applications. Can be any
|
||||
# arbitrary string assigned to a user, but should not exceed 40 characters.
|
||||
# @param [Google::Apis::RequestOptions] options
|
||||
# Request-specific options
|
||||
#
|
||||
# @yield [result, err] Result & error if block supplied
|
||||
# @yieldparam result [Google::Apis::IapV1::IdentityAwareProxyClient] parsed result object
|
||||
# @yieldparam err [StandardError] error object if request failed
|
||||
#
|
||||
# @return [Google::Apis::IapV1::IdentityAwareProxyClient]
|
||||
#
|
||||
# @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
|
||||
# @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
|
||||
# @raise [Google::Apis::AuthorizationError] Authorization is required
|
||||
def reset_oauth_project_brand_identity_aware_proxy_client_secret(name, reset_identity_aware_proxy_client_secret_request_object = nil, fields: nil, quota_user: nil, options: nil, &block)
|
||||
command = make_simple_command(:post, 'v1/oauth/{+name}:resetSecret', options)
|
||||
command.request_representation = Google::Apis::IapV1::ResetIdentityAwareProxyClientSecretRequest::Representation
|
||||
command.request_object = reset_identity_aware_proxy_client_secret_request_object
|
||||
command.response_representation = Google::Apis::IapV1::IdentityAwareProxyClient::Representation
|
||||
command.response_class = Google::Apis::IapV1::IdentityAwareProxyClient
|
||||
command.params['name'] = name unless name.nil?
|
||||
command.query['fields'] = fields unless fields.nil?
|
||||
command.query['quotaUser'] = quota_user unless quota_user.nil?
|
||||
execute_or_queue_command(command, &block)
|
||||
end
|
||||
|
||||
# Gets the access control policy for an Identity-Aware Proxy protected
|
||||
# resource.
|
||||
# More information about managing access via IAP can be found at:
|
||||
|
|
|
@ -25,7 +25,7 @@ module Google
|
|||
# @see https://cloud.google.com/service-consumer-management/docs/overview
|
||||
module ServiceconsumermanagementV1
|
||||
VERSION = 'V1'
|
||||
REVISION = '20191206'
|
||||
REVISION = '20191210'
|
||||
|
||||
# View and manage your data across Google Cloud Platform services
|
||||
AUTH_CLOUD_PLATFORM = 'https://www.googleapis.com/auth/cloud-platform'
|
||||
|
|
|
@ -3979,6 +3979,40 @@ module Google
|
|||
end
|
||||
end
|
||||
|
||||
# A default identity in the Identity and Access Management API.
|
||||
class V1DefaultIdentity
|
||||
include Google::Apis::Core::Hashable
|
||||
|
||||
# The email address of the default identity.
|
||||
# Corresponds to the JSON property `email`
|
||||
# @return [String]
|
||||
attr_accessor :email
|
||||
|
||||
# Default identity resource name.
|
||||
# An example name would be:
|
||||
# `services/serviceconsumermanagement.googleapis.com/projects/123/
|
||||
# defaultIdentity`
|
||||
# Corresponds to the JSON property `name`
|
||||
# @return [String]
|
||||
attr_accessor :name
|
||||
|
||||
# The unique and stable id of the default identity.
|
||||
# Corresponds to the JSON property `uniqueId`
|
||||
# @return [String]
|
||||
attr_accessor :unique_id
|
||||
|
||||
def initialize(**args)
|
||||
update!(**args)
|
||||
end
|
||||
|
||||
# Update properties of this object
|
||||
def update!(**args)
|
||||
@email = args[:email] if args.key?(:email)
|
||||
@name = args[:name] if args.key?(:name)
|
||||
@unique_id = args[:unique_id] if args.key?(:unique_id)
|
||||
end
|
||||
end
|
||||
|
||||
# Response message for the `DisableConsumer` method.
|
||||
# This response message is assigned to the `response` field of the returned
|
||||
# Operation when that operation is done.
|
||||
|
@ -4009,6 +4043,41 @@ module Google
|
|||
end
|
||||
end
|
||||
|
||||
# Response message for the `GenerateDefaultIdentity` method.
|
||||
# This response message is assigned to the `response` field of the returned
|
||||
# Operation when that operation is done.
|
||||
class V1GenerateDefaultIdentityResponse
|
||||
include Google::Apis::Core::Hashable
|
||||
|
||||
# Status of the role attachment. Under development (go/si-attach-role),
|
||||
# currently always return ATTACH_STATUS_UNSPECIFIED)
|
||||
# Corresponds to the JSON property `attachStatus`
|
||||
# @return [String]
|
||||
attr_accessor :attach_status
|
||||
|
||||
# A default identity in the Identity and Access Management API.
|
||||
# Corresponds to the JSON property `identity`
|
||||
# @return [Google::Apis::ServiceconsumermanagementV1::V1DefaultIdentity]
|
||||
attr_accessor :identity
|
||||
|
||||
# Role attached to consumer project. Empty if not attached in this
|
||||
# request. (Under development, currently always return empty.)
|
||||
# Corresponds to the JSON property `role`
|
||||
# @return [String]
|
||||
attr_accessor :role
|
||||
|
||||
def initialize(**args)
|
||||
update!(**args)
|
||||
end
|
||||
|
||||
# Update properties of this object
|
||||
def update!(**args)
|
||||
@attach_status = args[:attach_status] if args.key?(:attach_status)
|
||||
@identity = args[:identity] if args.key?(:identity)
|
||||
@role = args[:role] if args.key?(:role)
|
||||
end
|
||||
end
|
||||
|
||||
# Response message for the `GenerateServiceAccount` method.
|
||||
# This response message is assigned to the `response` field of the returned
|
||||
# Operation when that operation is done.
|
||||
|
|
|
@ -496,6 +496,12 @@ module Google
|
|||
include Google::Apis::Core::JsonObjectSupport
|
||||
end
|
||||
|
||||
class V1DefaultIdentity
|
||||
class Representation < Google::Apis::Core::JsonRepresentation; end
|
||||
|
||||
include Google::Apis::Core::JsonObjectSupport
|
||||
end
|
||||
|
||||
class V1DisableConsumerResponse
|
||||
class Representation < Google::Apis::Core::JsonRepresentation; end
|
||||
|
||||
|
@ -508,6 +514,12 @@ module Google
|
|||
include Google::Apis::Core::JsonObjectSupport
|
||||
end
|
||||
|
||||
class V1GenerateDefaultIdentityResponse
|
||||
class Representation < Google::Apis::Core::JsonRepresentation; end
|
||||
|
||||
include Google::Apis::Core::JsonObjectSupport
|
||||
end
|
||||
|
||||
class V1GenerateServiceAccountResponse
|
||||
class Representation < Google::Apis::Core::JsonRepresentation; end
|
||||
|
||||
|
@ -1340,6 +1352,15 @@ module Google
|
|||
end
|
||||
end
|
||||
|
||||
class V1DefaultIdentity
|
||||
# @private
|
||||
class Representation < Google::Apis::Core::JsonRepresentation
|
||||
property :email, as: 'email'
|
||||
property :name, as: 'name'
|
||||
property :unique_id, as: 'uniqueId'
|
||||
end
|
||||
end
|
||||
|
||||
class V1DisableConsumerResponse
|
||||
# @private
|
||||
class Representation < Google::Apis::Core::JsonRepresentation
|
||||
|
@ -1352,6 +1373,16 @@ module Google
|
|||
end
|
||||
end
|
||||
|
||||
class V1GenerateDefaultIdentityResponse
|
||||
# @private
|
||||
class Representation < Google::Apis::Core::JsonRepresentation
|
||||
property :attach_status, as: 'attachStatus'
|
||||
property :identity, as: 'identity', class: Google::Apis::ServiceconsumermanagementV1::V1DefaultIdentity, decorator: Google::Apis::ServiceconsumermanagementV1::V1DefaultIdentity::Representation
|
||||
|
||||
property :role, as: 'role'
|
||||
end
|
||||
end
|
||||
|
||||
class V1GenerateServiceAccountResponse
|
||||
# @private
|
||||
class Representation < Google::Apis::Core::JsonRepresentation
|
||||
|
|
Loading…
Reference in New Issue