Autogenerated update (2019-12-12)

Update:
- cloudiot_v1
- cloudresourcemanager_v1
- cloudresourcemanager_v1beta1
- cloudresourcemanager_v2
- cloudresourcemanager_v2beta1
- cloudsearch_v1
- cloudtasks_v2
- containeranalysis_v1alpha1
- containeranalysis_v1beta1
- dlp_v2
- iap_v1
- serviceconsumermanagement_v1
This commit is contained in:
Google APIs 2019-12-12 00:37:33 +00:00
parent 923277c6a7
commit 26bb4d3f05
30 changed files with 1470 additions and 411 deletions

View File

@ -26,7 +26,7 @@ module Google
# @see https://cloud.google.com/iot # @see https://cloud.google.com/iot
module CloudiotV1 module CloudiotV1
VERSION = 'V1' VERSION = 'V1'
REVISION = '20191112' REVISION = '20191203'
# View and manage your data across Google Cloud Platform services # View and manage your data across Google Cloud Platform services
AUTH_CLOUD_PLATFORM = 'https://www.googleapis.com/auth/cloud-platform' AUTH_CLOUD_PLATFORM = 'https://www.googleapis.com/auth/cloud-platform'

View File

@ -87,6 +87,23 @@ module Google
# account. For example, `my-other-app@appspot.gserviceaccount.com`. # account. For example, `my-other-app@appspot.gserviceaccount.com`.
# * `group:`emailid``: An email address that represents a Google group. # * `group:`emailid``: An email address that represents a Google group.
# For example, `admins@example.com`. # For example, `admins@example.com`.
# * `deleted:user:`emailid`?uid=`uniqueid``: An email address (plus unique
# identifier) representing a user that has been recently deleted. For
# example, `alice@example.com?uid=123456789012345678901`. If the user is
# recovered, this value reverts to `user:`emailid`` and the recovered user
# retains the role in the binding.
# * `deleted:serviceAccount:`emailid`?uid=`uniqueid``: An email address (plus
# unique identifier) representing a service account that has been recently
# deleted. For example,
# `my-other-app@appspot.gserviceaccount.com?uid=123456789012345678901`.
# If the service account is undeleted, this value reverts to
# `serviceAccount:`emailid`` and the undeleted service account retains the
# role in the binding.
# * `deleted:group:`emailid`?uid=`uniqueid``: An email address (plus unique
# identifier) representing a Google group that has been recently
# deleted. For example, `admins@example.com?uid=123456789012345678901`. If
# the group is recovered, this value reverts to `group:`emailid`` and the
# recovered group retains the role in the binding.
# * `domain:`domain``: The G Suite domain (primary) that represents all the # * `domain:`domain``: The G Suite domain (primary) that represents all the
# users of that domain. For example, `google.com` or `example.com`. # users of that domain. For example, `google.com` or `example.com`.
# Corresponds to the JSON property `members` # Corresponds to the JSON property `members`
@ -793,16 +810,18 @@ module Google
end end
end end
# Defines an Identity and Access Management (IAM) policy. It is used to # An Identity and Access Management (IAM) policy, which specifies access
# specify access control policies for Cloud Platform resources. # controls for Google Cloud resources.
# A `Policy` is a collection of `bindings`. A `binding` binds one or more # A `Policy` is a collection of `bindings`. A `binding` binds one or more
# `members` to a single `role`. Members can be user accounts, service accounts, # `members` to a single `role`. Members can be user accounts, service accounts,
# Google groups, and domains (such as G Suite). A `role` is a named list of # Google groups, and domains (such as G Suite). A `role` is a named list of
# permissions (defined by IAM or configured by users). A `binding` can # permissions; each `role` can be an IAM predefined role or a user-created
# optionally specify a `condition`, which is a logic expression that further # custom role.
# constrains the role binding based on attributes about the request and/or # Optionally, a `binding` can specify a `condition`, which is a logical
# target resource. # expression that allows access to a resource only if the expression evaluates
# **JSON Example** # to `true`. A condition can add constraints based on attributes of the
# request, the resource, or both.
# **JSON example:**
# ` # `
# "bindings": [ # "bindings": [
# ` # `
@ -820,13 +839,15 @@ module Google
# "condition": ` # "condition": `
# "title": "expirable access", # "title": "expirable access",
# "description": "Does not grant access after Sep 2020", # "description": "Does not grant access after Sep 2020",
# "expression": "request.time < # "expression": "request.time < timestamp('2020-10-01T00:00:00.000Z')
# timestamp('2020-10-01T00:00:00.000Z')", # ",
# ` # `
# ` # `
# ] # ],
# "etag": "BwWWja0YfJA=",
# "version": 3
# ` # `
# **YAML Example** # **YAML example:**
# bindings: # bindings:
# - members: # - members:
# - user:mike@example.com # - user:mike@example.com
@ -841,14 +862,16 @@ module Google
# title: expirable access # title: expirable access
# description: Does not grant access after Sep 2020 # description: Does not grant access after Sep 2020
# expression: request.time < timestamp('2020-10-01T00:00:00.000Z') # expression: request.time < timestamp('2020-10-01T00:00:00.000Z')
# - etag: BwWWja0YfJA=
# - version: 3
# For a description of IAM and its features, see the # For a description of IAM and its features, see the
# [IAM developer's guide](https://cloud.google.com/iam/docs). # [IAM documentation](https://cloud.google.com/iam/docs/).
class Policy class Policy
include Google::Apis::Core::Hashable include Google::Apis::Core::Hashable
# Associates a list of `members` to a `role`. Optionally may specify a # Associates a list of `members` to a `role`. Optionally, may specify a
# `condition` that determines when binding is in effect. # `condition` that determines how and when the `bindings` are applied. Each
# `bindings` with no members will result in an error. # of the `bindings` must contain at least one member.
# Corresponds to the JSON property `bindings` # Corresponds to the JSON property `bindings`
# @return [Array<Google::Apis::CloudiotV1::Binding>] # @return [Array<Google::Apis::CloudiotV1::Binding>]
attr_accessor :bindings attr_accessor :bindings
@ -860,26 +883,31 @@ module Google
# conditions: An `etag` is returned in the response to `getIamPolicy`, and # conditions: An `etag` is returned in the response to `getIamPolicy`, and
# systems are expected to put that etag in the request to `setIamPolicy` to # systems are expected to put that etag in the request to `setIamPolicy` to
# ensure that their change will be applied to the same version of the policy. # ensure that their change will be applied to the same version of the policy.
# If no `etag` is provided in the call to `setIamPolicy`, then the existing # **Important:** If you use IAM Conditions, you must include the `etag` field
# policy is overwritten. Due to blind-set semantics of an etag-less policy, # whenever you call `setIamPolicy`. If you omit this field, then IAM allows
# 'setIamPolicy' will not fail even if the incoming policy version does not # you to overwrite a version `3` policy with a version `1` policy, and all of
# meet the requirements for modifying the stored policy. # the conditions in the version `3` policy are lost.
# Corresponds to the JSON property `etag` # Corresponds to the JSON property `etag`
# NOTE: Values are automatically base64 encoded/decoded in the client library. # NOTE: Values are automatically base64 encoded/decoded in the client library.
# @return [String] # @return [String]
attr_accessor :etag attr_accessor :etag
# Specifies the format of the policy. # Specifies the format of the policy.
# Valid values are 0, 1, and 3. Requests specifying an invalid value will be # Valid values are `0`, `1`, and `3`. Requests that specify an invalid value
# rejected. # are rejected.
# Operations affecting conditional bindings must specify version 3. This can # Any operation that affects conditional role bindings must specify version
# be either setting a conditional policy, modifying a conditional binding, # `3`. This requirement applies to the following operations:
# or removing a binding (conditional or unconditional) from the stored # * Getting a policy that includes a conditional role binding
# conditional policy. # * Adding a conditional role binding to a policy
# Operations on non-conditional policies may specify any valid value or # * Changing a conditional role binding in a policy
# leave the field unset. # * Removing any role binding, with or without a condition, from a policy
# If no etag is provided in the call to `setIamPolicy`, version compliance # that includes conditions
# checks against the stored policy is skipped. # **Important:** If you use IAM Conditions, you must include the `etag` field
# whenever you call `setIamPolicy`. If you omit this field, then IAM allows
# you to overwrite a version `3` policy with a version `1` policy, and all of
# the conditions in the version `3` policy are lost.
# If a policy does not include any conditions, operations on that policy may
# specify any valid version or leave the field unset.
# Corresponds to the JSON property `version` # Corresponds to the JSON property `version`
# @return [Fixnum] # @return [Fixnum]
attr_accessor :version attr_accessor :version
@ -1018,16 +1046,18 @@ module Google
class SetIamPolicyRequest class SetIamPolicyRequest
include Google::Apis::Core::Hashable include Google::Apis::Core::Hashable
# Defines an Identity and Access Management (IAM) policy. It is used to # An Identity and Access Management (IAM) policy, which specifies access
# specify access control policies for Cloud Platform resources. # controls for Google Cloud resources.
# A `Policy` is a collection of `bindings`. A `binding` binds one or more # A `Policy` is a collection of `bindings`. A `binding` binds one or more
# `members` to a single `role`. Members can be user accounts, service accounts, # `members` to a single `role`. Members can be user accounts, service accounts,
# Google groups, and domains (such as G Suite). A `role` is a named list of # Google groups, and domains (such as G Suite). A `role` is a named list of
# permissions (defined by IAM or configured by users). A `binding` can # permissions; each `role` can be an IAM predefined role or a user-created
# optionally specify a `condition`, which is a logic expression that further # custom role.
# constrains the role binding based on attributes about the request and/or # Optionally, a `binding` can specify a `condition`, which is a logical
# target resource. # expression that allows access to a resource only if the expression evaluates
# **JSON Example** # to `true`. A condition can add constraints based on attributes of the
# request, the resource, or both.
# **JSON example:**
# ` # `
# "bindings": [ # "bindings": [
# ` # `
@ -1045,13 +1075,15 @@ module Google
# "condition": ` # "condition": `
# "title": "expirable access", # "title": "expirable access",
# "description": "Does not grant access after Sep 2020", # "description": "Does not grant access after Sep 2020",
# "expression": "request.time < # "expression": "request.time < timestamp('2020-10-01T00:00:00.000Z')
# timestamp('2020-10-01T00:00:00.000Z')", # ",
# ` # `
# ` # `
# ] # ],
# "etag": "BwWWja0YfJA=",
# "version": 3
# ` # `
# **YAML Example** # **YAML example:**
# bindings: # bindings:
# - members: # - members:
# - user:mike@example.com # - user:mike@example.com
@ -1066,8 +1098,10 @@ module Google
# title: expirable access # title: expirable access
# description: Does not grant access after Sep 2020 # description: Does not grant access after Sep 2020
# expression: request.time < timestamp('2020-10-01T00:00:00.000Z') # expression: request.time < timestamp('2020-10-01T00:00:00.000Z')
# - etag: BwWWja0YfJA=
# - version: 3
# For a description of IAM and its features, see the # For a description of IAM and its features, see the
# [IAM developer's guide](https://cloud.google.com/iam/docs). # [IAM documentation](https://cloud.google.com/iam/docs/).
# Corresponds to the JSON property `policy` # Corresponds to the JSON property `policy`
# @return [Google::Apis::CloudiotV1::Policy] # @return [Google::Apis::CloudiotV1::Policy]
attr_accessor :policy attr_accessor :policy

View File

@ -26,7 +26,7 @@ module Google
# @see https://cloud.google.com/resource-manager # @see https://cloud.google.com/resource-manager
module CloudresourcemanagerV1 module CloudresourcemanagerV1
VERSION = 'V1' VERSION = 'V1'
REVISION = '20191115' REVISION = '20191206'
# View and manage your data across Google Cloud Platform services # View and manage your data across Google Cloud Platform services
AUTH_CLOUD_PLATFORM = 'https://www.googleapis.com/auth/cloud-platform' AUTH_CLOUD_PLATFORM = 'https://www.googleapis.com/auth/cloud-platform'

View File

@ -184,6 +184,23 @@ module Google
# account. For example, `my-other-app@appspot.gserviceaccount.com`. # account. For example, `my-other-app@appspot.gserviceaccount.com`.
# * `group:`emailid``: An email address that represents a Google group. # * `group:`emailid``: An email address that represents a Google group.
# For example, `admins@example.com`. # For example, `admins@example.com`.
# * `deleted:user:`emailid`?uid=`uniqueid``: An email address (plus unique
# identifier) representing a user that has been recently deleted. For
# example, `alice@example.com?uid=123456789012345678901`. If the user is
# recovered, this value reverts to `user:`emailid`` and the recovered user
# retains the role in the binding.
# * `deleted:serviceAccount:`emailid`?uid=`uniqueid``: An email address (plus
# unique identifier) representing a service account that has been recently
# deleted. For example,
# `my-other-app@appspot.gserviceaccount.com?uid=123456789012345678901`.
# If the service account is undeleted, this value reverts to
# `serviceAccount:`emailid`` and the undeleted service account retains the
# role in the binding.
# * `deleted:group:`emailid`?uid=`uniqueid``: An email address (plus unique
# identifier) representing a Google group that has been recently
# deleted. For example, `admins@example.com?uid=123456789012345678901`. If
# the group is recovered, this value reverts to `group:`emailid`` and the
# recovered group retains the role in the binding.
# * `domain:`domain``: The G Suite domain (primary) that represents all the # * `domain:`domain``: The G Suite domain (primary) that represents all the
# users of that domain. For example, `google.com` or `example.com`. # users of that domain. For example, `google.com` or `example.com`.
# Corresponds to the JSON property `members` # Corresponds to the JSON property `members`
@ -1289,16 +1306,18 @@ module Google
end end
end end
# Defines an Identity and Access Management (IAM) policy. It is used to # An Identity and Access Management (IAM) policy, which specifies access
# specify access control policies for Cloud Platform resources. # controls for Google Cloud resources.
# A `Policy` is a collection of `bindings`. A `binding` binds one or more # A `Policy` is a collection of `bindings`. A `binding` binds one or more
# `members` to a single `role`. Members can be user accounts, service accounts, # `members` to a single `role`. Members can be user accounts, service accounts,
# Google groups, and domains (such as G Suite). A `role` is a named list of # Google groups, and domains (such as G Suite). A `role` is a named list of
# permissions (defined by IAM or configured by users). A `binding` can # permissions; each `role` can be an IAM predefined role or a user-created
# optionally specify a `condition`, which is a logic expression that further # custom role.
# constrains the role binding based on attributes about the request and/or # Optionally, a `binding` can specify a `condition`, which is a logical
# target resource. # expression that allows access to a resource only if the expression evaluates
# **JSON Example** # to `true`. A condition can add constraints based on attributes of the
# request, the resource, or both.
# **JSON example:**
# ` # `
# "bindings": [ # "bindings": [
# ` # `
@ -1316,13 +1335,15 @@ module Google
# "condition": ` # "condition": `
# "title": "expirable access", # "title": "expirable access",
# "description": "Does not grant access after Sep 2020", # "description": "Does not grant access after Sep 2020",
# "expression": "request.time < # "expression": "request.time < timestamp('2020-10-01T00:00:00.000Z')
# timestamp('2020-10-01T00:00:00.000Z')", # ",
# ` # `
# ` # `
# ] # ],
# "etag": "BwWWja0YfJA=",
# "version": 3
# ` # `
# **YAML Example** # **YAML example:**
# bindings: # bindings:
# - members: # - members:
# - user:mike@example.com # - user:mike@example.com
@ -1337,8 +1358,10 @@ module Google
# title: expirable access # title: expirable access
# description: Does not grant access after Sep 2020 # description: Does not grant access after Sep 2020
# expression: request.time < timestamp('2020-10-01T00:00:00.000Z') # expression: request.time < timestamp('2020-10-01T00:00:00.000Z')
# - etag: BwWWja0YfJA=
# - version: 3
# For a description of IAM and its features, see the # For a description of IAM and its features, see the
# [IAM developer's guide](https://cloud.google.com/iam/docs). # [IAM documentation](https://cloud.google.com/iam/docs/).
class Policy class Policy
include Google::Apis::Core::Hashable include Google::Apis::Core::Hashable
@ -1347,9 +1370,9 @@ module Google
# @return [Array<Google::Apis::CloudresourcemanagerV1::AuditConfig>] # @return [Array<Google::Apis::CloudresourcemanagerV1::AuditConfig>]
attr_accessor :audit_configs attr_accessor :audit_configs
# Associates a list of `members` to a `role`. Optionally may specify a # Associates a list of `members` to a `role`. Optionally, may specify a
# `condition` that determines when binding is in effect. # `condition` that determines how and when the `bindings` are applied. Each
# `bindings` with no members will result in an error. # of the `bindings` must contain at least one member.
# Corresponds to the JSON property `bindings` # Corresponds to the JSON property `bindings`
# @return [Array<Google::Apis::CloudresourcemanagerV1::Binding>] # @return [Array<Google::Apis::CloudresourcemanagerV1::Binding>]
attr_accessor :bindings attr_accessor :bindings
@ -1361,26 +1384,31 @@ module Google
# conditions: An `etag` is returned in the response to `getIamPolicy`, and # conditions: An `etag` is returned in the response to `getIamPolicy`, and
# systems are expected to put that etag in the request to `setIamPolicy` to # systems are expected to put that etag in the request to `setIamPolicy` to
# ensure that their change will be applied to the same version of the policy. # ensure that their change will be applied to the same version of the policy.
# If no `etag` is provided in the call to `setIamPolicy`, then the existing # **Important:** If you use IAM Conditions, you must include the `etag` field
# policy is overwritten. Due to blind-set semantics of an etag-less policy, # whenever you call `setIamPolicy`. If you omit this field, then IAM allows
# 'setIamPolicy' will not fail even if the incoming policy version does not # you to overwrite a version `3` policy with a version `1` policy, and all of
# meet the requirements for modifying the stored policy. # the conditions in the version `3` policy are lost.
# Corresponds to the JSON property `etag` # Corresponds to the JSON property `etag`
# NOTE: Values are automatically base64 encoded/decoded in the client library. # NOTE: Values are automatically base64 encoded/decoded in the client library.
# @return [String] # @return [String]
attr_accessor :etag attr_accessor :etag
# Specifies the format of the policy. # Specifies the format of the policy.
# Valid values are 0, 1, and 3. Requests specifying an invalid value will be # Valid values are `0`, `1`, and `3`. Requests that specify an invalid value
# rejected. # are rejected.
# Operations affecting conditional bindings must specify version 3. This can # Any operation that affects conditional role bindings must specify version
# be either setting a conditional policy, modifying a conditional binding, # `3`. This requirement applies to the following operations:
# or removing a binding (conditional or unconditional) from the stored # * Getting a policy that includes a conditional role binding
# conditional policy. # * Adding a conditional role binding to a policy
# Operations on non-conditional policies may specify any valid value or # * Changing a conditional role binding in a policy
# leave the field unset. # * Removing any role binding, with or without a condition, from a policy
# If no etag is provided in the call to `setIamPolicy`, version compliance # that includes conditions
# checks against the stored policy is skipped. # **Important:** If you use IAM Conditions, you must include the `etag` field
# whenever you call `setIamPolicy`. If you omit this field, then IAM allows
# you to overwrite a version `3` policy with a version `1` policy, and all of
# the conditions in the version `3` policy are lost.
# If a policy does not include any conditions, operations on that policy may
# specify any valid version or leave the field unset.
# Corresponds to the JSON property `version` # Corresponds to the JSON property `version`
# @return [Fixnum] # @return [Fixnum]
attr_accessor :version attr_accessor :version
@ -1648,16 +1676,18 @@ module Google
class SetIamPolicyRequest class SetIamPolicyRequest
include Google::Apis::Core::Hashable include Google::Apis::Core::Hashable
# Defines an Identity and Access Management (IAM) policy. It is used to # An Identity and Access Management (IAM) policy, which specifies access
# specify access control policies for Cloud Platform resources. # controls for Google Cloud resources.
# A `Policy` is a collection of `bindings`. A `binding` binds one or more # A `Policy` is a collection of `bindings`. A `binding` binds one or more
# `members` to a single `role`. Members can be user accounts, service accounts, # `members` to a single `role`. Members can be user accounts, service accounts,
# Google groups, and domains (such as G Suite). A `role` is a named list of # Google groups, and domains (such as G Suite). A `role` is a named list of
# permissions (defined by IAM or configured by users). A `binding` can # permissions; each `role` can be an IAM predefined role or a user-created
# optionally specify a `condition`, which is a logic expression that further # custom role.
# constrains the role binding based on attributes about the request and/or # Optionally, a `binding` can specify a `condition`, which is a logical
# target resource. # expression that allows access to a resource only if the expression evaluates
# **JSON Example** # to `true`. A condition can add constraints based on attributes of the
# request, the resource, or both.
# **JSON example:**
# ` # `
# "bindings": [ # "bindings": [
# ` # `
@ -1675,13 +1705,15 @@ module Google
# "condition": ` # "condition": `
# "title": "expirable access", # "title": "expirable access",
# "description": "Does not grant access after Sep 2020", # "description": "Does not grant access after Sep 2020",
# "expression": "request.time < # "expression": "request.time < timestamp('2020-10-01T00:00:00.000Z')
# timestamp('2020-10-01T00:00:00.000Z')", # ",
# ` # `
# ` # `
# ] # ],
# "etag": "BwWWja0YfJA=",
# "version": 3
# ` # `
# **YAML Example** # **YAML example:**
# bindings: # bindings:
# - members: # - members:
# - user:mike@example.com # - user:mike@example.com
@ -1696,8 +1728,10 @@ module Google
# title: expirable access # title: expirable access
# description: Does not grant access after Sep 2020 # description: Does not grant access after Sep 2020
# expression: request.time < timestamp('2020-10-01T00:00:00.000Z') # expression: request.time < timestamp('2020-10-01T00:00:00.000Z')
# - etag: BwWWja0YfJA=
# - version: 3
# For a description of IAM and its features, see the # For a description of IAM and its features, see the
# [IAM developer's guide](https://cloud.google.com/iam/docs). # [IAM documentation](https://cloud.google.com/iam/docs/).
# Corresponds to the JSON property `policy` # Corresponds to the JSON property `policy`
# @return [Google::Apis::CloudresourcemanagerV1::Policy] # @return [Google::Apis::CloudresourcemanagerV1::Policy]
attr_accessor :policy attr_accessor :policy

View File

@ -26,7 +26,7 @@ module Google
# @see https://cloud.google.com/resource-manager # @see https://cloud.google.com/resource-manager
module CloudresourcemanagerV1beta1 module CloudresourcemanagerV1beta1
VERSION = 'V1beta1' VERSION = 'V1beta1'
REVISION = '20191115' REVISION = '20191206'
# View and manage your data across Google Cloud Platform services # View and manage your data across Google Cloud Platform services
AUTH_CLOUD_PLATFORM = 'https://www.googleapis.com/auth/cloud-platform' AUTH_CLOUD_PLATFORM = 'https://www.googleapis.com/auth/cloud-platform'

View File

@ -184,6 +184,23 @@ module Google
# account. For example, `my-other-app@appspot.gserviceaccount.com`. # account. For example, `my-other-app@appspot.gserviceaccount.com`.
# * `group:`emailid``: An email address that represents a Google group. # * `group:`emailid``: An email address that represents a Google group.
# For example, `admins@example.com`. # For example, `admins@example.com`.
# * `deleted:user:`emailid`?uid=`uniqueid``: An email address (plus unique
# identifier) representing a user that has been recently deleted. For
# example, `alice@example.com?uid=123456789012345678901`. If the user is
# recovered, this value reverts to `user:`emailid`` and the recovered user
# retains the role in the binding.
# * `deleted:serviceAccount:`emailid`?uid=`uniqueid``: An email address (plus
# unique identifier) representing a service account that has been recently
# deleted. For example,
# `my-other-app@appspot.gserviceaccount.com?uid=123456789012345678901`.
# If the service account is undeleted, this value reverts to
# `serviceAccount:`emailid`` and the undeleted service account retains the
# role in the binding.
# * `deleted:group:`emailid`?uid=`uniqueid``: An email address (plus unique
# identifier) representing a Google group that has been recently
# deleted. For example, `admins@example.com?uid=123456789012345678901`. If
# the group is recovered, this value reverts to `group:`emailid`` and the
# recovered group retains the role in the binding.
# * `domain:`domain``: The G Suite domain (primary) that represents all the # * `domain:`domain``: The G Suite domain (primary) that represents all the
# users of that domain. For example, `google.com` or `example.com`. # users of that domain. For example, `google.com` or `example.com`.
# Corresponds to the JSON property `members` # Corresponds to the JSON property `members`
@ -560,16 +577,18 @@ module Google
end end
end end
# Defines an Identity and Access Management (IAM) policy. It is used to # An Identity and Access Management (IAM) policy, which specifies access
# specify access control policies for Cloud Platform resources. # controls for Google Cloud resources.
# A `Policy` is a collection of `bindings`. A `binding` binds one or more # A `Policy` is a collection of `bindings`. A `binding` binds one or more
# `members` to a single `role`. Members can be user accounts, service accounts, # `members` to a single `role`. Members can be user accounts, service accounts,
# Google groups, and domains (such as G Suite). A `role` is a named list of # Google groups, and domains (such as G Suite). A `role` is a named list of
# permissions (defined by IAM or configured by users). A `binding` can # permissions; each `role` can be an IAM predefined role or a user-created
# optionally specify a `condition`, which is a logic expression that further # custom role.
# constrains the role binding based on attributes about the request and/or # Optionally, a `binding` can specify a `condition`, which is a logical
# target resource. # expression that allows access to a resource only if the expression evaluates
# **JSON Example** # to `true`. A condition can add constraints based on attributes of the
# request, the resource, or both.
# **JSON example:**
# ` # `
# "bindings": [ # "bindings": [
# ` # `
@ -587,13 +606,15 @@ module Google
# "condition": ` # "condition": `
# "title": "expirable access", # "title": "expirable access",
# "description": "Does not grant access after Sep 2020", # "description": "Does not grant access after Sep 2020",
# "expression": "request.time < # "expression": "request.time < timestamp('2020-10-01T00:00:00.000Z')
# timestamp('2020-10-01T00:00:00.000Z')", # ",
# ` # `
# ` # `
# ] # ],
# "etag": "BwWWja0YfJA=",
# "version": 3
# ` # `
# **YAML Example** # **YAML example:**
# bindings: # bindings:
# - members: # - members:
# - user:mike@example.com # - user:mike@example.com
@ -608,8 +629,10 @@ module Google
# title: expirable access # title: expirable access
# description: Does not grant access after Sep 2020 # description: Does not grant access after Sep 2020
# expression: request.time < timestamp('2020-10-01T00:00:00.000Z') # expression: request.time < timestamp('2020-10-01T00:00:00.000Z')
# - etag: BwWWja0YfJA=
# - version: 3
# For a description of IAM and its features, see the # For a description of IAM and its features, see the
# [IAM developer's guide](https://cloud.google.com/iam/docs). # [IAM documentation](https://cloud.google.com/iam/docs/).
class Policy class Policy
include Google::Apis::Core::Hashable include Google::Apis::Core::Hashable
@ -618,9 +641,9 @@ module Google
# @return [Array<Google::Apis::CloudresourcemanagerV1beta1::AuditConfig>] # @return [Array<Google::Apis::CloudresourcemanagerV1beta1::AuditConfig>]
attr_accessor :audit_configs attr_accessor :audit_configs
# Associates a list of `members` to a `role`. Optionally may specify a # Associates a list of `members` to a `role`. Optionally, may specify a
# `condition` that determines when binding is in effect. # `condition` that determines how and when the `bindings` are applied. Each
# `bindings` with no members will result in an error. # of the `bindings` must contain at least one member.
# Corresponds to the JSON property `bindings` # Corresponds to the JSON property `bindings`
# @return [Array<Google::Apis::CloudresourcemanagerV1beta1::Binding>] # @return [Array<Google::Apis::CloudresourcemanagerV1beta1::Binding>]
attr_accessor :bindings attr_accessor :bindings
@ -632,26 +655,31 @@ module Google
# conditions: An `etag` is returned in the response to `getIamPolicy`, and # conditions: An `etag` is returned in the response to `getIamPolicy`, and
# systems are expected to put that etag in the request to `setIamPolicy` to # systems are expected to put that etag in the request to `setIamPolicy` to
# ensure that their change will be applied to the same version of the policy. # ensure that their change will be applied to the same version of the policy.
# If no `etag` is provided in the call to `setIamPolicy`, then the existing # **Important:** If you use IAM Conditions, you must include the `etag` field
# policy is overwritten. Due to blind-set semantics of an etag-less policy, # whenever you call `setIamPolicy`. If you omit this field, then IAM allows
# 'setIamPolicy' will not fail even if the incoming policy version does not # you to overwrite a version `3` policy with a version `1` policy, and all of
# meet the requirements for modifying the stored policy. # the conditions in the version `3` policy are lost.
# Corresponds to the JSON property `etag` # Corresponds to the JSON property `etag`
# NOTE: Values are automatically base64 encoded/decoded in the client library. # NOTE: Values are automatically base64 encoded/decoded in the client library.
# @return [String] # @return [String]
attr_accessor :etag attr_accessor :etag
# Specifies the format of the policy. # Specifies the format of the policy.
# Valid values are 0, 1, and 3. Requests specifying an invalid value will be # Valid values are `0`, `1`, and `3`. Requests that specify an invalid value
# rejected. # are rejected.
# Operations affecting conditional bindings must specify version 3. This can # Any operation that affects conditional role bindings must specify version
# be either setting a conditional policy, modifying a conditional binding, # `3`. This requirement applies to the following operations:
# or removing a binding (conditional or unconditional) from the stored # * Getting a policy that includes a conditional role binding
# conditional policy. # * Adding a conditional role binding to a policy
# Operations on non-conditional policies may specify any valid value or # * Changing a conditional role binding in a policy
# leave the field unset. # * Removing any role binding, with or without a condition, from a policy
# If no etag is provided in the call to `setIamPolicy`, version compliance # that includes conditions
# checks against the stored policy is skipped. # **Important:** If you use IAM Conditions, you must include the `etag` field
# whenever you call `setIamPolicy`. If you omit this field, then IAM allows
# you to overwrite a version `3` policy with a version `1` policy, and all of
# the conditions in the version `3` policy are lost.
# If a policy does not include any conditions, operations on that policy may
# specify any valid version or leave the field unset.
# Corresponds to the JSON property `version` # Corresponds to the JSON property `version`
# @return [Fixnum] # @return [Fixnum]
attr_accessor :version attr_accessor :version
@ -824,16 +852,18 @@ module Google
class SetIamPolicyRequest class SetIamPolicyRequest
include Google::Apis::Core::Hashable include Google::Apis::Core::Hashable
# Defines an Identity and Access Management (IAM) policy. It is used to # An Identity and Access Management (IAM) policy, which specifies access
# specify access control policies for Cloud Platform resources. # controls for Google Cloud resources.
# A `Policy` is a collection of `bindings`. A `binding` binds one or more # A `Policy` is a collection of `bindings`. A `binding` binds one or more
# `members` to a single `role`. Members can be user accounts, service accounts, # `members` to a single `role`. Members can be user accounts, service accounts,
# Google groups, and domains (such as G Suite). A `role` is a named list of # Google groups, and domains (such as G Suite). A `role` is a named list of
# permissions (defined by IAM or configured by users). A `binding` can # permissions; each `role` can be an IAM predefined role or a user-created
# optionally specify a `condition`, which is a logic expression that further # custom role.
# constrains the role binding based on attributes about the request and/or # Optionally, a `binding` can specify a `condition`, which is a logical
# target resource. # expression that allows access to a resource only if the expression evaluates
# **JSON Example** # to `true`. A condition can add constraints based on attributes of the
# request, the resource, or both.
# **JSON example:**
# ` # `
# "bindings": [ # "bindings": [
# ` # `
@ -851,13 +881,15 @@ module Google
# "condition": ` # "condition": `
# "title": "expirable access", # "title": "expirable access",
# "description": "Does not grant access after Sep 2020", # "description": "Does not grant access after Sep 2020",
# "expression": "request.time < # "expression": "request.time < timestamp('2020-10-01T00:00:00.000Z')
# timestamp('2020-10-01T00:00:00.000Z')", # ",
# ` # `
# ` # `
# ] # ],
# "etag": "BwWWja0YfJA=",
# "version": 3
# ` # `
# **YAML Example** # **YAML example:**
# bindings: # bindings:
# - members: # - members:
# - user:mike@example.com # - user:mike@example.com
@ -872,8 +904,10 @@ module Google
# title: expirable access # title: expirable access
# description: Does not grant access after Sep 2020 # description: Does not grant access after Sep 2020
# expression: request.time < timestamp('2020-10-01T00:00:00.000Z') # expression: request.time < timestamp('2020-10-01T00:00:00.000Z')
# - etag: BwWWja0YfJA=
# - version: 3
# For a description of IAM and its features, see the # For a description of IAM and its features, see the
# [IAM developer's guide](https://cloud.google.com/iam/docs). # [IAM documentation](https://cloud.google.com/iam/docs/).
# Corresponds to the JSON property `policy` # Corresponds to the JSON property `policy`
# @return [Google::Apis::CloudresourcemanagerV1beta1::Policy] # @return [Google::Apis::CloudresourcemanagerV1beta1::Policy]
attr_accessor :policy attr_accessor :policy

View File

@ -290,7 +290,7 @@ module Google
# (/billing/reference/rest/v1/projects/updateBillingInfo) method. # (/billing/reference/rest/v1/projects/updateBillingInfo) method.
# @param [Google::Apis::CloudresourcemanagerV1beta1::Project] project_object # @param [Google::Apis::CloudresourcemanagerV1beta1::Project] project_object
# @param [Boolean] use_legacy_stack # @param [Boolean] use_legacy_stack
# A safety hatch to opt out of the new reliable project creation process. # A now unused experiment opt-out option.
# @param [String] fields # @param [String] fields
# Selector specifying which fields to include in a partial response. # Selector specifying which fields to include in a partial response.
# @param [String] quota_user # @param [String] quota_user

View File

@ -26,7 +26,7 @@ module Google
# @see https://cloud.google.com/resource-manager # @see https://cloud.google.com/resource-manager
module CloudresourcemanagerV2 module CloudresourcemanagerV2
VERSION = 'V2' VERSION = 'V2'
REVISION = '20191115' REVISION = '20191206'
# View and manage your data across Google Cloud Platform services # View and manage your data across Google Cloud Platform services
AUTH_CLOUD_PLATFORM = 'https://www.googleapis.com/auth/cloud-platform' AUTH_CLOUD_PLATFORM = 'https://www.googleapis.com/auth/cloud-platform'

View File

@ -162,6 +162,23 @@ module Google
# account. For example, `my-other-app@appspot.gserviceaccount.com`. # account. For example, `my-other-app@appspot.gserviceaccount.com`.
# * `group:`emailid``: An email address that represents a Google group. # * `group:`emailid``: An email address that represents a Google group.
# For example, `admins@example.com`. # For example, `admins@example.com`.
# * `deleted:user:`emailid`?uid=`uniqueid``: An email address (plus unique
# identifier) representing a user that has been recently deleted. For
# example, `alice@example.com?uid=123456789012345678901`. If the user is
# recovered, this value reverts to `user:`emailid`` and the recovered user
# retains the role in the binding.
# * `deleted:serviceAccount:`emailid`?uid=`uniqueid``: An email address (plus
# unique identifier) representing a service account that has been recently
# deleted. For example,
# `my-other-app@appspot.gserviceaccount.com?uid=123456789012345678901`.
# If the service account is undeleted, this value reverts to
# `serviceAccount:`emailid`` and the undeleted service account retains the
# role in the binding.
# * `deleted:group:`emailid`?uid=`uniqueid``: An email address (plus unique
# identifier) representing a Google group that has been recently
# deleted. For example, `admins@example.com?uid=123456789012345678901`. If
# the group is recovered, this value reverts to `group:`emailid`` and the
# recovered group retains the role in the binding.
# * `domain:`domain``: The G Suite domain (primary) that represents all the # * `domain:`domain``: The G Suite domain (primary) that represents all the
# users of that domain. For example, `google.com` or `example.com`. # users of that domain. For example, `google.com` or `example.com`.
# Corresponds to the JSON property `members` # Corresponds to the JSON property `members`
@ -502,16 +519,18 @@ module Google
end end
end end
# Defines an Identity and Access Management (IAM) policy. It is used to # An Identity and Access Management (IAM) policy, which specifies access
# specify access control policies for Cloud Platform resources. # controls for Google Cloud resources.
# A `Policy` is a collection of `bindings`. A `binding` binds one or more # A `Policy` is a collection of `bindings`. A `binding` binds one or more
# `members` to a single `role`. Members can be user accounts, service accounts, # `members` to a single `role`. Members can be user accounts, service accounts,
# Google groups, and domains (such as G Suite). A `role` is a named list of # Google groups, and domains (such as G Suite). A `role` is a named list of
# permissions (defined by IAM or configured by users). A `binding` can # permissions; each `role` can be an IAM predefined role or a user-created
# optionally specify a `condition`, which is a logic expression that further # custom role.
# constrains the role binding based on attributes about the request and/or # Optionally, a `binding` can specify a `condition`, which is a logical
# target resource. # expression that allows access to a resource only if the expression evaluates
# **JSON Example** # to `true`. A condition can add constraints based on attributes of the
# request, the resource, or both.
# **JSON example:**
# ` # `
# "bindings": [ # "bindings": [
# ` # `
@ -529,13 +548,15 @@ module Google
# "condition": ` # "condition": `
# "title": "expirable access", # "title": "expirable access",
# "description": "Does not grant access after Sep 2020", # "description": "Does not grant access after Sep 2020",
# "expression": "request.time < # "expression": "request.time < timestamp('2020-10-01T00:00:00.000Z')
# timestamp('2020-10-01T00:00:00.000Z')", # ",
# ` # `
# ` # `
# ] # ],
# "etag": "BwWWja0YfJA=",
# "version": 3
# ` # `
# **YAML Example** # **YAML example:**
# bindings: # bindings:
# - members: # - members:
# - user:mike@example.com # - user:mike@example.com
@ -550,8 +571,10 @@ module Google
# title: expirable access # title: expirable access
# description: Does not grant access after Sep 2020 # description: Does not grant access after Sep 2020
# expression: request.time < timestamp('2020-10-01T00:00:00.000Z') # expression: request.time < timestamp('2020-10-01T00:00:00.000Z')
# - etag: BwWWja0YfJA=
# - version: 3
# For a description of IAM and its features, see the # For a description of IAM and its features, see the
# [IAM developer's guide](https://cloud.google.com/iam/docs). # [IAM documentation](https://cloud.google.com/iam/docs/).
class Policy class Policy
include Google::Apis::Core::Hashable include Google::Apis::Core::Hashable
@ -560,9 +583,9 @@ module Google
# @return [Array<Google::Apis::CloudresourcemanagerV2::AuditConfig>] # @return [Array<Google::Apis::CloudresourcemanagerV2::AuditConfig>]
attr_accessor :audit_configs attr_accessor :audit_configs
# Associates a list of `members` to a `role`. Optionally may specify a # Associates a list of `members` to a `role`. Optionally, may specify a
# `condition` that determines when binding is in effect. # `condition` that determines how and when the `bindings` are applied. Each
# `bindings` with no members will result in an error. # of the `bindings` must contain at least one member.
# Corresponds to the JSON property `bindings` # Corresponds to the JSON property `bindings`
# @return [Array<Google::Apis::CloudresourcemanagerV2::Binding>] # @return [Array<Google::Apis::CloudresourcemanagerV2::Binding>]
attr_accessor :bindings attr_accessor :bindings
@ -574,26 +597,31 @@ module Google
# conditions: An `etag` is returned in the response to `getIamPolicy`, and # conditions: An `etag` is returned in the response to `getIamPolicy`, and
# systems are expected to put that etag in the request to `setIamPolicy` to # systems are expected to put that etag in the request to `setIamPolicy` to
# ensure that their change will be applied to the same version of the policy. # ensure that their change will be applied to the same version of the policy.
# If no `etag` is provided in the call to `setIamPolicy`, then the existing # **Important:** If you use IAM Conditions, you must include the `etag` field
# policy is overwritten. Due to blind-set semantics of an etag-less policy, # whenever you call `setIamPolicy`. If you omit this field, then IAM allows
# 'setIamPolicy' will not fail even if the incoming policy version does not # you to overwrite a version `3` policy with a version `1` policy, and all of
# meet the requirements for modifying the stored policy. # the conditions in the version `3` policy are lost.
# Corresponds to the JSON property `etag` # Corresponds to the JSON property `etag`
# NOTE: Values are automatically base64 encoded/decoded in the client library. # NOTE: Values are automatically base64 encoded/decoded in the client library.
# @return [String] # @return [String]
attr_accessor :etag attr_accessor :etag
# Specifies the format of the policy. # Specifies the format of the policy.
# Valid values are 0, 1, and 3. Requests specifying an invalid value will be # Valid values are `0`, `1`, and `3`. Requests that specify an invalid value
# rejected. # are rejected.
# Operations affecting conditional bindings must specify version 3. This can # Any operation that affects conditional role bindings must specify version
# be either setting a conditional policy, modifying a conditional binding, # `3`. This requirement applies to the following operations:
# or removing a binding (conditional or unconditional) from the stored # * Getting a policy that includes a conditional role binding
# conditional policy. # * Adding a conditional role binding to a policy
# Operations on non-conditional policies may specify any valid value or # * Changing a conditional role binding in a policy
# leave the field unset. # * Removing any role binding, with or without a condition, from a policy
# If no etag is provided in the call to `setIamPolicy`, version compliance # that includes conditions
# checks against the stored policy is skipped. # **Important:** If you use IAM Conditions, you must include the `etag` field
# whenever you call `setIamPolicy`. If you omit this field, then IAM allows
# you to overwrite a version `3` policy with a version `1` policy, and all of
# the conditions in the version `3` policy are lost.
# If a policy does not include any conditions, operations on that policy may
# specify any valid version or leave the field unset.
# Corresponds to the JSON property `version` # Corresponds to the JSON property `version`
# @return [Fixnum] # @return [Fixnum]
attr_accessor :version attr_accessor :version
@ -729,16 +757,18 @@ module Google
class SetIamPolicyRequest class SetIamPolicyRequest
include Google::Apis::Core::Hashable include Google::Apis::Core::Hashable
# Defines an Identity and Access Management (IAM) policy. It is used to # An Identity and Access Management (IAM) policy, which specifies access
# specify access control policies for Cloud Platform resources. # controls for Google Cloud resources.
# A `Policy` is a collection of `bindings`. A `binding` binds one or more # A `Policy` is a collection of `bindings`. A `binding` binds one or more
# `members` to a single `role`. Members can be user accounts, service accounts, # `members` to a single `role`. Members can be user accounts, service accounts,
# Google groups, and domains (such as G Suite). A `role` is a named list of # Google groups, and domains (such as G Suite). A `role` is a named list of
# permissions (defined by IAM or configured by users). A `binding` can # permissions; each `role` can be an IAM predefined role or a user-created
# optionally specify a `condition`, which is a logic expression that further # custom role.
# constrains the role binding based on attributes about the request and/or # Optionally, a `binding` can specify a `condition`, which is a logical
# target resource. # expression that allows access to a resource only if the expression evaluates
# **JSON Example** # to `true`. A condition can add constraints based on attributes of the
# request, the resource, or both.
# **JSON example:**
# ` # `
# "bindings": [ # "bindings": [
# ` # `
@ -756,13 +786,15 @@ module Google
# "condition": ` # "condition": `
# "title": "expirable access", # "title": "expirable access",
# "description": "Does not grant access after Sep 2020", # "description": "Does not grant access after Sep 2020",
# "expression": "request.time < # "expression": "request.time < timestamp('2020-10-01T00:00:00.000Z')
# timestamp('2020-10-01T00:00:00.000Z')", # ",
# ` # `
# ` # `
# ] # ],
# "etag": "BwWWja0YfJA=",
# "version": 3
# ` # `
# **YAML Example** # **YAML example:**
# bindings: # bindings:
# - members: # - members:
# - user:mike@example.com # - user:mike@example.com
@ -777,8 +809,10 @@ module Google
# title: expirable access # title: expirable access
# description: Does not grant access after Sep 2020 # description: Does not grant access after Sep 2020
# expression: request.time < timestamp('2020-10-01T00:00:00.000Z') # expression: request.time < timestamp('2020-10-01T00:00:00.000Z')
# - etag: BwWWja0YfJA=
# - version: 3
# For a description of IAM and its features, see the # For a description of IAM and its features, see the
# [IAM developer's guide](https://cloud.google.com/iam/docs). # [IAM documentation](https://cloud.google.com/iam/docs/).
# Corresponds to the JSON property `policy` # Corresponds to the JSON property `policy`
# @return [Google::Apis::CloudresourcemanagerV2::Policy] # @return [Google::Apis::CloudresourcemanagerV2::Policy]
attr_accessor :policy attr_accessor :policy

View File

@ -26,7 +26,7 @@ module Google
# @see https://cloud.google.com/resource-manager # @see https://cloud.google.com/resource-manager
module CloudresourcemanagerV2beta1 module CloudresourcemanagerV2beta1
VERSION = 'V2beta1' VERSION = 'V2beta1'
REVISION = '20191115' REVISION = '20191206'
# View and manage your data across Google Cloud Platform services # View and manage your data across Google Cloud Platform services
AUTH_CLOUD_PLATFORM = 'https://www.googleapis.com/auth/cloud-platform' AUTH_CLOUD_PLATFORM = 'https://www.googleapis.com/auth/cloud-platform'

View File

@ -162,6 +162,23 @@ module Google
# account. For example, `my-other-app@appspot.gserviceaccount.com`. # account. For example, `my-other-app@appspot.gserviceaccount.com`.
# * `group:`emailid``: An email address that represents a Google group. # * `group:`emailid``: An email address that represents a Google group.
# For example, `admins@example.com`. # For example, `admins@example.com`.
# * `deleted:user:`emailid`?uid=`uniqueid``: An email address (plus unique
# identifier) representing a user that has been recently deleted. For
# example, `alice@example.com?uid=123456789012345678901`. If the user is
# recovered, this value reverts to `user:`emailid`` and the recovered user
# retains the role in the binding.
# * `deleted:serviceAccount:`emailid`?uid=`uniqueid``: An email address (plus
# unique identifier) representing a service account that has been recently
# deleted. For example,
# `my-other-app@appspot.gserviceaccount.com?uid=123456789012345678901`.
# If the service account is undeleted, this value reverts to
# `serviceAccount:`emailid`` and the undeleted service account retains the
# role in the binding.
# * `deleted:group:`emailid`?uid=`uniqueid``: An email address (plus unique
# identifier) representing a Google group that has been recently
# deleted. For example, `admins@example.com?uid=123456789012345678901`. If
# the group is recovered, this value reverts to `group:`emailid`` and the
# recovered group retains the role in the binding.
# * `domain:`domain``: The G Suite domain (primary) that represents all the # * `domain:`domain``: The G Suite domain (primary) that represents all the
# users of that domain. For example, `google.com` or `example.com`. # users of that domain. For example, `google.com` or `example.com`.
# Corresponds to the JSON property `members` # Corresponds to the JSON property `members`
@ -502,16 +519,18 @@ module Google
end end
end end
# Defines an Identity and Access Management (IAM) policy. It is used to # An Identity and Access Management (IAM) policy, which specifies access
# specify access control policies for Cloud Platform resources. # controls for Google Cloud resources.
# A `Policy` is a collection of `bindings`. A `binding` binds one or more # A `Policy` is a collection of `bindings`. A `binding` binds one or more
# `members` to a single `role`. Members can be user accounts, service accounts, # `members` to a single `role`. Members can be user accounts, service accounts,
# Google groups, and domains (such as G Suite). A `role` is a named list of # Google groups, and domains (such as G Suite). A `role` is a named list of
# permissions (defined by IAM or configured by users). A `binding` can # permissions; each `role` can be an IAM predefined role or a user-created
# optionally specify a `condition`, which is a logic expression that further # custom role.
# constrains the role binding based on attributes about the request and/or # Optionally, a `binding` can specify a `condition`, which is a logical
# target resource. # expression that allows access to a resource only if the expression evaluates
# **JSON Example** # to `true`. A condition can add constraints based on attributes of the
# request, the resource, or both.
# **JSON example:**
# ` # `
# "bindings": [ # "bindings": [
# ` # `
@ -529,13 +548,15 @@ module Google
# "condition": ` # "condition": `
# "title": "expirable access", # "title": "expirable access",
# "description": "Does not grant access after Sep 2020", # "description": "Does not grant access after Sep 2020",
# "expression": "request.time < # "expression": "request.time < timestamp('2020-10-01T00:00:00.000Z')
# timestamp('2020-10-01T00:00:00.000Z')", # ",
# ` # `
# ` # `
# ] # ],
# "etag": "BwWWja0YfJA=",
# "version": 3
# ` # `
# **YAML Example** # **YAML example:**
# bindings: # bindings:
# - members: # - members:
# - user:mike@example.com # - user:mike@example.com
@ -550,8 +571,10 @@ module Google
# title: expirable access # title: expirable access
# description: Does not grant access after Sep 2020 # description: Does not grant access after Sep 2020
# expression: request.time < timestamp('2020-10-01T00:00:00.000Z') # expression: request.time < timestamp('2020-10-01T00:00:00.000Z')
# - etag: BwWWja0YfJA=
# - version: 3
# For a description of IAM and its features, see the # For a description of IAM and its features, see the
# [IAM developer's guide](https://cloud.google.com/iam/docs). # [IAM documentation](https://cloud.google.com/iam/docs/).
class Policy class Policy
include Google::Apis::Core::Hashable include Google::Apis::Core::Hashable
@ -560,9 +583,9 @@ module Google
# @return [Array<Google::Apis::CloudresourcemanagerV2beta1::AuditConfig>] # @return [Array<Google::Apis::CloudresourcemanagerV2beta1::AuditConfig>]
attr_accessor :audit_configs attr_accessor :audit_configs
# Associates a list of `members` to a `role`. Optionally may specify a # Associates a list of `members` to a `role`. Optionally, may specify a
# `condition` that determines when binding is in effect. # `condition` that determines how and when the `bindings` are applied. Each
# `bindings` with no members will result in an error. # of the `bindings` must contain at least one member.
# Corresponds to the JSON property `bindings` # Corresponds to the JSON property `bindings`
# @return [Array<Google::Apis::CloudresourcemanagerV2beta1::Binding>] # @return [Array<Google::Apis::CloudresourcemanagerV2beta1::Binding>]
attr_accessor :bindings attr_accessor :bindings
@ -574,26 +597,31 @@ module Google
# conditions: An `etag` is returned in the response to `getIamPolicy`, and # conditions: An `etag` is returned in the response to `getIamPolicy`, and
# systems are expected to put that etag in the request to `setIamPolicy` to # systems are expected to put that etag in the request to `setIamPolicy` to
# ensure that their change will be applied to the same version of the policy. # ensure that their change will be applied to the same version of the policy.
# If no `etag` is provided in the call to `setIamPolicy`, then the existing # **Important:** If you use IAM Conditions, you must include the `etag` field
# policy is overwritten. Due to blind-set semantics of an etag-less policy, # whenever you call `setIamPolicy`. If you omit this field, then IAM allows
# 'setIamPolicy' will not fail even if the incoming policy version does not # you to overwrite a version `3` policy with a version `1` policy, and all of
# meet the requirements for modifying the stored policy. # the conditions in the version `3` policy are lost.
# Corresponds to the JSON property `etag` # Corresponds to the JSON property `etag`
# NOTE: Values are automatically base64 encoded/decoded in the client library. # NOTE: Values are automatically base64 encoded/decoded in the client library.
# @return [String] # @return [String]
attr_accessor :etag attr_accessor :etag
# Specifies the format of the policy. # Specifies the format of the policy.
# Valid values are 0, 1, and 3. Requests specifying an invalid value will be # Valid values are `0`, `1`, and `3`. Requests that specify an invalid value
# rejected. # are rejected.
# Operations affecting conditional bindings must specify version 3. This can # Any operation that affects conditional role bindings must specify version
# be either setting a conditional policy, modifying a conditional binding, # `3`. This requirement applies to the following operations:
# or removing a binding (conditional or unconditional) from the stored # * Getting a policy that includes a conditional role binding
# conditional policy. # * Adding a conditional role binding to a policy
# Operations on non-conditional policies may specify any valid value or # * Changing a conditional role binding in a policy
# leave the field unset. # * Removing any role binding, with or without a condition, from a policy
# If no etag is provided in the call to `setIamPolicy`, version compliance # that includes conditions
# checks against the stored policy is skipped. # **Important:** If you use IAM Conditions, you must include the `etag` field
# whenever you call `setIamPolicy`. If you omit this field, then IAM allows
# you to overwrite a version `3` policy with a version `1` policy, and all of
# the conditions in the version `3` policy are lost.
# If a policy does not include any conditions, operations on that policy may
# specify any valid version or leave the field unset.
# Corresponds to the JSON property `version` # Corresponds to the JSON property `version`
# @return [Fixnum] # @return [Fixnum]
attr_accessor :version attr_accessor :version
@ -729,16 +757,18 @@ module Google
class SetIamPolicyRequest class SetIamPolicyRequest
include Google::Apis::Core::Hashable include Google::Apis::Core::Hashable
# Defines an Identity and Access Management (IAM) policy. It is used to # An Identity and Access Management (IAM) policy, which specifies access
# specify access control policies for Cloud Platform resources. # controls for Google Cloud resources.
# A `Policy` is a collection of `bindings`. A `binding` binds one or more # A `Policy` is a collection of `bindings`. A `binding` binds one or more
# `members` to a single `role`. Members can be user accounts, service accounts, # `members` to a single `role`. Members can be user accounts, service accounts,
# Google groups, and domains (such as G Suite). A `role` is a named list of # Google groups, and domains (such as G Suite). A `role` is a named list of
# permissions (defined by IAM or configured by users). A `binding` can # permissions; each `role` can be an IAM predefined role or a user-created
# optionally specify a `condition`, which is a logic expression that further # custom role.
# constrains the role binding based on attributes about the request and/or # Optionally, a `binding` can specify a `condition`, which is a logical
# target resource. # expression that allows access to a resource only if the expression evaluates
# **JSON Example** # to `true`. A condition can add constraints based on attributes of the
# request, the resource, or both.
# **JSON example:**
# ` # `
# "bindings": [ # "bindings": [
# ` # `
@ -756,13 +786,15 @@ module Google
# "condition": ` # "condition": `
# "title": "expirable access", # "title": "expirable access",
# "description": "Does not grant access after Sep 2020", # "description": "Does not grant access after Sep 2020",
# "expression": "request.time < # "expression": "request.time < timestamp('2020-10-01T00:00:00.000Z')
# timestamp('2020-10-01T00:00:00.000Z')", # ",
# ` # `
# ` # `
# ] # ],
# "etag": "BwWWja0YfJA=",
# "version": 3
# ` # `
# **YAML Example** # **YAML example:**
# bindings: # bindings:
# - members: # - members:
# - user:mike@example.com # - user:mike@example.com
@ -777,8 +809,10 @@ module Google
# title: expirable access # title: expirable access
# description: Does not grant access after Sep 2020 # description: Does not grant access after Sep 2020
# expression: request.time < timestamp('2020-10-01T00:00:00.000Z') # expression: request.time < timestamp('2020-10-01T00:00:00.000Z')
# - etag: BwWWja0YfJA=
# - version: 3
# For a description of IAM and its features, see the # For a description of IAM and its features, see the
# [IAM developer's guide](https://cloud.google.com/iam/docs). # [IAM documentation](https://cloud.google.com/iam/docs/).
# Corresponds to the JSON property `policy` # Corresponds to the JSON property `policy`
# @return [Google::Apis::CloudresourcemanagerV2beta1::Policy] # @return [Google::Apis::CloudresourcemanagerV2beta1::Policy]
attr_accessor :policy attr_accessor :policy

View File

@ -26,7 +26,7 @@ module Google
# @see https://developers.google.com/cloud-search/docs/guides/ # @see https://developers.google.com/cloud-search/docs/guides/
module CloudsearchV1 module CloudsearchV1
VERSION = 'V1' VERSION = 'V1'
REVISION = '20191112' REVISION = '20191202'
# Index and serve your organization's data with Cloud Search # Index and serve your organization's data with Cloud Search
AUTH_CLOUD_SEARCH = 'https://www.googleapis.com/auth/cloud_search' AUTH_CLOUD_SEARCH = 'https://www.googleapis.com/auth/cloud_search'

View File

@ -3254,7 +3254,7 @@ module Google
# The interpretation of the query used in search. For example, queries with # The interpretation of the query used in search. For example, queries with
# natural language intent like "email from john" will be interpreted as # natural language intent like "email from john" will be interpreted as
# "from:john source:mail". This field will not be filled when the reason is # "from:john source:mail". This field will not be filled when the reason is
# NO_RESULTS_FOUND_FOR_USER_QUERY. # NOT_ENOUGH_RESULTS_FOUND_FOR_USER_QUERY.
# Corresponds to the JSON property `interpretedQuery` # Corresponds to the JSON property `interpretedQuery`
# @return [String] # @return [String]
attr_accessor :interpreted_query attr_accessor :interpreted_query
@ -4994,7 +4994,8 @@ module Google
# @return [Google::Apis::CloudsearchV1::Schema] # @return [Google::Apis::CloudsearchV1::Schema]
attr_accessor :schema attr_accessor :schema
# If true, the request will be validated without side effects. # If true, the schema will be checked for validity,
# but will not be registered with the data source, even if valid.
# Corresponds to the JSON property `validateOnly` # Corresponds to the JSON property `validateOnly`
# @return [Boolean] # @return [Boolean]
attr_accessor :validate_only attr_accessor :validate_only

View File

@ -25,7 +25,7 @@ module Google
# @see https://cloud.google.com/tasks/ # @see https://cloud.google.com/tasks/
module CloudtasksV2 module CloudtasksV2
VERSION = 'V2' VERSION = 'V2'
REVISION = '20191111' REVISION = '20191202'
# View and manage your data across Google Cloud Platform services # View and manage your data across Google Cloud Platform services
AUTH_CLOUD_PLATFORM = 'https://www.googleapis.com/auth/cloud-platform' AUTH_CLOUD_PLATFORM = 'https://www.googleapis.com/auth/cloud-platform'

View File

@ -138,8 +138,8 @@ module Google
# In addition, Cloud Tasks sets some headers when the task is dispatched, # In addition, Cloud Tasks sets some headers when the task is dispatched,
# such as headers containing information about the task; see # such as headers containing information about the task; see
# [request # [request
# headers](https://cloud.google.com/appengine/docs/python/taskqueue/push/ # headers](https://cloud.google.com/tasks/docs/creating-appengine-handlers#
# creating-handlers#reading_request_headers). # reading_request_headers).
# These headers are set only when the task is dispatched, so they are not # These headers are set only when the task is dispatched, so they are not
# visible when the task is returned in a Cloud Tasks response. # visible when the task is returned in a Cloud Tasks response.
# Although there is no specific limit for the maximum number of headers or # Although there is no specific limit for the maximum number of headers or
@ -363,6 +363,23 @@ module Google
# account. For example, `my-other-app@appspot.gserviceaccount.com`. # account. For example, `my-other-app@appspot.gserviceaccount.com`.
# * `group:`emailid``: An email address that represents a Google group. # * `group:`emailid``: An email address that represents a Google group.
# For example, `admins@example.com`. # For example, `admins@example.com`.
# * `deleted:user:`emailid`?uid=`uniqueid``: An email address (plus unique
# identifier) representing a user that has been recently deleted. For
# example, `alice@example.com?uid=123456789012345678901`. If the user is
# recovered, this value reverts to `user:`emailid`` and the recovered user
# retains the role in the binding.
# * `deleted:serviceAccount:`emailid`?uid=`uniqueid``: An email address (plus
# unique identifier) representing a service account that has been recently
# deleted. For example,
# `my-other-app@appspot.gserviceaccount.com?uid=123456789012345678901`.
# If the service account is undeleted, this value reverts to
# `serviceAccount:`emailid`` and the undeleted service account retains the
# role in the binding.
# * `deleted:group:`emailid`?uid=`uniqueid``: An email address (plus unique
# identifier) representing a Google group that has been recently
# deleted. For example, `admins@example.com?uid=123456789012345678901`. If
# the group is recovered, this value reverts to `group:`emailid`` and the
# recovered group retains the role in the binding.
# * `domain:`domain``: The G Suite domain (primary) that represents all the # * `domain:`domain``: The G Suite domain (primary) that represents all the
# users of that domain. For example, `google.com` or `example.com`. # users of that domain. For example, `google.com` or `example.com`.
# Corresponds to the JSON property `members` # Corresponds to the JSON property `members`
@ -533,7 +550,7 @@ module Google
# HTTP request. # HTTP request.
# The task will be pushed to the worker as an HTTP request. If the worker # The task will be pushed to the worker as an HTTP request. If the worker
# or the redirected worker acknowledges the task by returning a successful HTTP # or the redirected worker acknowledges the task by returning a successful HTTP
# response code ([`200` - `299`]), the task will removed from the queue. If # response code ([`200` - `299`]), the task will be removed from the queue. If
# any other HTTP response code is returned or no response is received, the # any other HTTP response code is returned or no response is received, the
# task will be retried according to the following: # task will be retried according to the following:
# * User-specified throttling: retry configuration, # * User-specified throttling: retry configuration,
@ -547,7 +564,7 @@ module Google
# `429` (Too Many Requests), `503` (Service Unavailable), or the rate of # `429` (Too Many Requests), `503` (Service Unavailable), or the rate of
# errors is high, Cloud Tasks will use a higher backoff rate. The retry # errors is high, Cloud Tasks will use a higher backoff rate. The retry
# specified in the `Retry-After` HTTP response header is considered. # specified in the `Retry-After` HTTP response header is considered.
# * To prevent traffic spikes and to smooth sudden large traffic spikes, # * To prevent traffic spikes and to smooth sudden increases in traffic,
# dispatches ramp up slowly when the queue is newly created or idle and # dispatches ramp up slowly when the queue is newly created or idle and
# if large numbers of tasks suddenly become available to dispatch (due to # if large numbers of tasks suddenly become available to dispatch (due to
# spikes in create task rates, the queue being unpaused, or many tasks # spikes in create task rates, the queue being unpaused, or many tasks
@ -851,16 +868,18 @@ module Google
end end
end end
# Defines an Identity and Access Management (IAM) policy. It is used to # An Identity and Access Management (IAM) policy, which specifies access
# specify access control policies for Cloud Platform resources. # controls for Google Cloud resources.
# A `Policy` is a collection of `bindings`. A `binding` binds one or more # A `Policy` is a collection of `bindings`. A `binding` binds one or more
# `members` to a single `role`. Members can be user accounts, service accounts, # `members` to a single `role`. Members can be user accounts, service accounts,
# Google groups, and domains (such as G Suite). A `role` is a named list of # Google groups, and domains (such as G Suite). A `role` is a named list of
# permissions (defined by IAM or configured by users). A `binding` can # permissions; each `role` can be an IAM predefined role or a user-created
# optionally specify a `condition`, which is a logic expression that further # custom role.
# constrains the role binding based on attributes about the request and/or # Optionally, a `binding` can specify a `condition`, which is a logical
# target resource. # expression that allows access to a resource only if the expression evaluates
# **JSON Example** # to `true`. A condition can add constraints based on attributes of the
# request, the resource, or both.
# **JSON example:**
# ` # `
# "bindings": [ # "bindings": [
# ` # `
@ -878,13 +897,15 @@ module Google
# "condition": ` # "condition": `
# "title": "expirable access", # "title": "expirable access",
# "description": "Does not grant access after Sep 2020", # "description": "Does not grant access after Sep 2020",
# "expression": "request.time < # "expression": "request.time < timestamp('2020-10-01T00:00:00.000Z')
# timestamp('2020-10-01T00:00:00.000Z')", # ",
# ` # `
# ` # `
# ] # ],
# "etag": "BwWWja0YfJA=",
# "version": 3
# ` # `
# **YAML Example** # **YAML example:**
# bindings: # bindings:
# - members: # - members:
# - user:mike@example.com # - user:mike@example.com
@ -899,14 +920,16 @@ module Google
# title: expirable access # title: expirable access
# description: Does not grant access after Sep 2020 # description: Does not grant access after Sep 2020
# expression: request.time < timestamp('2020-10-01T00:00:00.000Z') # expression: request.time < timestamp('2020-10-01T00:00:00.000Z')
# - etag: BwWWja0YfJA=
# - version: 3
# For a description of IAM and its features, see the # For a description of IAM and its features, see the
# [IAM developer's guide](https://cloud.google.com/iam/docs). # [IAM documentation](https://cloud.google.com/iam/docs/).
class Policy class Policy
include Google::Apis::Core::Hashable include Google::Apis::Core::Hashable
# Associates a list of `members` to a `role`. Optionally may specify a # Associates a list of `members` to a `role`. Optionally, may specify a
# `condition` that determines when binding is in effect. # `condition` that determines how and when the `bindings` are applied. Each
# `bindings` with no members will result in an error. # of the `bindings` must contain at least one member.
# Corresponds to the JSON property `bindings` # Corresponds to the JSON property `bindings`
# @return [Array<Google::Apis::CloudtasksV2::Binding>] # @return [Array<Google::Apis::CloudtasksV2::Binding>]
attr_accessor :bindings attr_accessor :bindings
@ -918,26 +941,31 @@ module Google
# conditions: An `etag` is returned in the response to `getIamPolicy`, and # conditions: An `etag` is returned in the response to `getIamPolicy`, and
# systems are expected to put that etag in the request to `setIamPolicy` to # systems are expected to put that etag in the request to `setIamPolicy` to
# ensure that their change will be applied to the same version of the policy. # ensure that their change will be applied to the same version of the policy.
# If no `etag` is provided in the call to `setIamPolicy`, then the existing # **Important:** If you use IAM Conditions, you must include the `etag` field
# policy is overwritten. Due to blind-set semantics of an etag-less policy, # whenever you call `setIamPolicy`. If you omit this field, then IAM allows
# 'setIamPolicy' will not fail even if the incoming policy version does not # you to overwrite a version `3` policy with a version `1` policy, and all of
# meet the requirements for modifying the stored policy. # the conditions in the version `3` policy are lost.
# Corresponds to the JSON property `etag` # Corresponds to the JSON property `etag`
# NOTE: Values are automatically base64 encoded/decoded in the client library. # NOTE: Values are automatically base64 encoded/decoded in the client library.
# @return [String] # @return [String]
attr_accessor :etag attr_accessor :etag
# Specifies the format of the policy. # Specifies the format of the policy.
# Valid values are 0, 1, and 3. Requests specifying an invalid value will be # Valid values are `0`, `1`, and `3`. Requests that specify an invalid value
# rejected. # are rejected.
# Operations affecting conditional bindings must specify version 3. This can # Any operation that affects conditional role bindings must specify version
# be either setting a conditional policy, modifying a conditional binding, # `3`. This requirement applies to the following operations:
# or removing a binding (conditional or unconditional) from the stored # * Getting a policy that includes a conditional role binding
# conditional policy. # * Adding a conditional role binding to a policy
# Operations on non-conditional policies may specify any valid value or # * Changing a conditional role binding in a policy
# leave the field unset. # * Removing any role binding, with or without a condition, from a policy
# If no etag is provided in the call to `setIamPolicy`, version compliance # that includes conditions
# checks against the stored policy is skipped. # **Important:** If you use IAM Conditions, you must include the `etag` field
# whenever you call `setIamPolicy`. If you omit this field, then IAM allows
# you to overwrite a version `3` policy with a version `1` policy, and all of
# the conditions in the version `3` policy are lost.
# If a policy does not include any conditions, operations on that policy may
# specify any valid version or leave the field unset.
# Corresponds to the JSON property `version` # Corresponds to the JSON property `version`
# @return [Fixnum] # @return [Fixnum]
attr_accessor :version attr_accessor :version
@ -1310,16 +1338,18 @@ module Google
class SetIamPolicyRequest class SetIamPolicyRequest
include Google::Apis::Core::Hashable include Google::Apis::Core::Hashable
# Defines an Identity and Access Management (IAM) policy. It is used to # An Identity and Access Management (IAM) policy, which specifies access
# specify access control policies for Cloud Platform resources. # controls for Google Cloud resources.
# A `Policy` is a collection of `bindings`. A `binding` binds one or more # A `Policy` is a collection of `bindings`. A `binding` binds one or more
# `members` to a single `role`. Members can be user accounts, service accounts, # `members` to a single `role`. Members can be user accounts, service accounts,
# Google groups, and domains (such as G Suite). A `role` is a named list of # Google groups, and domains (such as G Suite). A `role` is a named list of
# permissions (defined by IAM or configured by users). A `binding` can # permissions; each `role` can be an IAM predefined role or a user-created
# optionally specify a `condition`, which is a logic expression that further # custom role.
# constrains the role binding based on attributes about the request and/or # Optionally, a `binding` can specify a `condition`, which is a logical
# target resource. # expression that allows access to a resource only if the expression evaluates
# **JSON Example** # to `true`. A condition can add constraints based on attributes of the
# request, the resource, or both.
# **JSON example:**
# ` # `
# "bindings": [ # "bindings": [
# ` # `
@ -1337,13 +1367,15 @@ module Google
# "condition": ` # "condition": `
# "title": "expirable access", # "title": "expirable access",
# "description": "Does not grant access after Sep 2020", # "description": "Does not grant access after Sep 2020",
# "expression": "request.time < # "expression": "request.time < timestamp('2020-10-01T00:00:00.000Z')
# timestamp('2020-10-01T00:00:00.000Z')", # ",
# ` # `
# ` # `
# ] # ],
# "etag": "BwWWja0YfJA=",
# "version": 3
# ` # `
# **YAML Example** # **YAML example:**
# bindings: # bindings:
# - members: # - members:
# - user:mike@example.com # - user:mike@example.com
@ -1358,8 +1390,10 @@ module Google
# title: expirable access # title: expirable access
# description: Does not grant access after Sep 2020 # description: Does not grant access after Sep 2020
# expression: request.time < timestamp('2020-10-01T00:00:00.000Z') # expression: request.time < timestamp('2020-10-01T00:00:00.000Z')
# - etag: BwWWja0YfJA=
# - version: 3
# For a description of IAM and its features, see the # For a description of IAM and its features, see the
# [IAM developer's guide](https://cloud.google.com/iam/docs). # [IAM documentation](https://cloud.google.com/iam/docs/).
# Corresponds to the JSON property `policy` # Corresponds to the JSON property `policy`
# @return [Google::Apis::CloudtasksV2::Policy] # @return [Google::Apis::CloudtasksV2::Policy]
attr_accessor :policy attr_accessor :policy
@ -1526,7 +1560,7 @@ module Google
# HTTP request. # HTTP request.
# The task will be pushed to the worker as an HTTP request. If the worker # The task will be pushed to the worker as an HTTP request. If the worker
# or the redirected worker acknowledges the task by returning a successful HTTP # or the redirected worker acknowledges the task by returning a successful HTTP
# response code ([`200` - `299`]), the task will removed from the queue. If # response code ([`200` - `299`]), the task will be removed from the queue. If
# any other HTTP response code is returned or no response is received, the # any other HTTP response code is returned or no response is received, the
# task will be retried according to the following: # task will be retried according to the following:
# * User-specified throttling: retry configuration, # * User-specified throttling: retry configuration,
@ -1540,7 +1574,7 @@ module Google
# `429` (Too Many Requests), `503` (Service Unavailable), or the rate of # `429` (Too Many Requests), `503` (Service Unavailable), or the rate of
# errors is high, Cloud Tasks will use a higher backoff rate. The retry # errors is high, Cloud Tasks will use a higher backoff rate. The retry
# specified in the `Retry-After` HTTP response header is considered. # specified in the `Retry-After` HTTP response header is considered.
# * To prevent traffic spikes and to smooth sudden large traffic spikes, # * To prevent traffic spikes and to smooth sudden increases in traffic,
# dispatches ramp up slowly when the queue is newly created or idle and # dispatches ramp up slowly when the queue is newly created or idle and
# if large numbers of tasks suddenly become available to dispatch (due to # if large numbers of tasks suddenly become available to dispatch (due to
# spikes in create task rates, the queue being unpaused, or many tasks # spikes in create task rates, the queue being unpaused, or many tasks

View File

@ -26,7 +26,7 @@ module Google
# @see https://cloud.google.com/container-analysis/api/reference/rest/ # @see https://cloud.google.com/container-analysis/api/reference/rest/
module ContaineranalysisV1alpha1 module ContaineranalysisV1alpha1
VERSION = 'V1alpha1' VERSION = 'V1alpha1'
REVISION = '20191118' REVISION = '20191209'
# View and manage your data across Google Cloud Platform services # View and manage your data across Google Cloud Platform services
AUTH_CLOUD_PLATFORM = 'https://www.googleapis.com/auth/cloud-platform' AUTH_CLOUD_PLATFORM = 'https://www.googleapis.com/auth/cloud-platform'

View File

@ -210,6 +210,23 @@ module Google
# account. For example, `my-other-app@appspot.gserviceaccount.com`. # account. For example, `my-other-app@appspot.gserviceaccount.com`.
# * `group:`emailid``: An email address that represents a Google group. # * `group:`emailid``: An email address that represents a Google group.
# For example, `admins@example.com`. # For example, `admins@example.com`.
# * `deleted:user:`emailid`?uid=`uniqueid``: An email address (plus unique
# identifier) representing a user that has been recently deleted. For
# example, `alice@example.com?uid=123456789012345678901`. If the user is
# recovered, this value reverts to `user:`emailid`` and the recovered user
# retains the role in the binding.
# * `deleted:serviceAccount:`emailid`?uid=`uniqueid``: An email address (plus
# unique identifier) representing a service account that has been recently
# deleted. For example,
# `my-other-app@appspot.gserviceaccount.com?uid=123456789012345678901`.
# If the service account is undeleted, this value reverts to
# `serviceAccount:`emailid`` and the undeleted service account retains the
# role in the binding.
# * `deleted:group:`emailid`?uid=`uniqueid``: An email address (plus unique
# identifier) representing a Google group that has been recently
# deleted. For example, `admins@example.com?uid=123456789012345678901`. If
# the group is recovered, this value reverts to `group:`emailid`` and the
# recovered group retains the role in the binding.
# * `domain:`domain``: The G Suite domain (primary) that represents all the # * `domain:`domain``: The G Suite domain (primary) that represents all the
# users of that domain. For example, `google.com` or `example.com`. # users of that domain. For example, `google.com` or `example.com`.
# Corresponds to the JSON property `members` # Corresponds to the JSON property `members`
@ -1937,16 +1954,18 @@ module Google
end end
end end
# Defines an Identity and Access Management (IAM) policy. It is used to # An Identity and Access Management (IAM) policy, which specifies access
# specify access control policies for Cloud Platform resources. # controls for Google Cloud resources.
# A `Policy` is a collection of `bindings`. A `binding` binds one or more # A `Policy` is a collection of `bindings`. A `binding` binds one or more
# `members` to a single `role`. Members can be user accounts, service accounts, # `members` to a single `role`. Members can be user accounts, service accounts,
# Google groups, and domains (such as G Suite). A `role` is a named list of # Google groups, and domains (such as G Suite). A `role` is a named list of
# permissions (defined by IAM or configured by users). A `binding` can # permissions; each `role` can be an IAM predefined role or a user-created
# optionally specify a `condition`, which is a logic expression that further # custom role.
# constrains the role binding based on attributes about the request and/or # Optionally, a `binding` can specify a `condition`, which is a logical
# target resource. # expression that allows access to a resource only if the expression evaluates
# **JSON Example** # to `true`. A condition can add constraints based on attributes of the
# request, the resource, or both.
# **JSON example:**
# ` # `
# "bindings": [ # "bindings": [
# ` # `
@ -1964,13 +1983,15 @@ module Google
# "condition": ` # "condition": `
# "title": "expirable access", # "title": "expirable access",
# "description": "Does not grant access after Sep 2020", # "description": "Does not grant access after Sep 2020",
# "expression": "request.time < # "expression": "request.time < timestamp('2020-10-01T00:00:00.000Z')
# timestamp('2020-10-01T00:00:00.000Z')", # ",
# ` # `
# ` # `
# ] # ],
# "etag": "BwWWja0YfJA=",
# "version": 3
# ` # `
# **YAML Example** # **YAML example:**
# bindings: # bindings:
# - members: # - members:
# - user:mike@example.com # - user:mike@example.com
@ -1985,14 +2006,16 @@ module Google
# title: expirable access # title: expirable access
# description: Does not grant access after Sep 2020 # description: Does not grant access after Sep 2020
# expression: request.time < timestamp('2020-10-01T00:00:00.000Z') # expression: request.time < timestamp('2020-10-01T00:00:00.000Z')
# - etag: BwWWja0YfJA=
# - version: 3
# For a description of IAM and its features, see the # For a description of IAM and its features, see the
# [IAM developer's guide](https://cloud.google.com/iam/docs). # [IAM documentation](https://cloud.google.com/iam/docs/).
class Policy class Policy
include Google::Apis::Core::Hashable include Google::Apis::Core::Hashable
# Associates a list of `members` to a `role`. Optionally may specify a # Associates a list of `members` to a `role`. Optionally, may specify a
# `condition` that determines when binding is in effect. # `condition` that determines how and when the `bindings` are applied. Each
# `bindings` with no members will result in an error. # of the `bindings` must contain at least one member.
# Corresponds to the JSON property `bindings` # Corresponds to the JSON property `bindings`
# @return [Array<Google::Apis::ContaineranalysisV1alpha1::Binding>] # @return [Array<Google::Apis::ContaineranalysisV1alpha1::Binding>]
attr_accessor :bindings attr_accessor :bindings
@ -2004,26 +2027,31 @@ module Google
# conditions: An `etag` is returned in the response to `getIamPolicy`, and # conditions: An `etag` is returned in the response to `getIamPolicy`, and
# systems are expected to put that etag in the request to `setIamPolicy` to # systems are expected to put that etag in the request to `setIamPolicy` to
# ensure that their change will be applied to the same version of the policy. # ensure that their change will be applied to the same version of the policy.
# If no `etag` is provided in the call to `setIamPolicy`, then the existing # **Important:** If you use IAM Conditions, you must include the `etag` field
# policy is overwritten. Due to blind-set semantics of an etag-less policy, # whenever you call `setIamPolicy`. If you omit this field, then IAM allows
# 'setIamPolicy' will not fail even if the incoming policy version does not # you to overwrite a version `3` policy with a version `1` policy, and all of
# meet the requirements for modifying the stored policy. # the conditions in the version `3` policy are lost.
# Corresponds to the JSON property `etag` # Corresponds to the JSON property `etag`
# NOTE: Values are automatically base64 encoded/decoded in the client library. # NOTE: Values are automatically base64 encoded/decoded in the client library.
# @return [String] # @return [String]
attr_accessor :etag attr_accessor :etag
# Specifies the format of the policy. # Specifies the format of the policy.
# Valid values are 0, 1, and 3. Requests specifying an invalid value will be # Valid values are `0`, `1`, and `3`. Requests that specify an invalid value
# rejected. # are rejected.
# Operations affecting conditional bindings must specify version 3. This can # Any operation that affects conditional role bindings must specify version
# be either setting a conditional policy, modifying a conditional binding, # `3`. This requirement applies to the following operations:
# or removing a binding (conditional or unconditional) from the stored # * Getting a policy that includes a conditional role binding
# conditional policy. # * Adding a conditional role binding to a policy
# Operations on non-conditional policies may specify any valid value or # * Changing a conditional role binding in a policy
# leave the field unset. # * Removing any role binding, with or without a condition, from a policy
# If no etag is provided in the call to `setIamPolicy`, version compliance # that includes conditions
# checks against the stored policy is skipped. # **Important:** If you use IAM Conditions, you must include the `etag` field
# whenever you call `setIamPolicy`. If you omit this field, then IAM allows
# you to overwrite a version `3` policy with a version `1` policy, and all of
# the conditions in the version `3` policy are lost.
# If a policy does not include any conditions, operations on that policy may
# specify any valid version or leave the field unset.
# Corresponds to the JSON property `version` # Corresponds to the JSON property `version`
# @return [Fixnum] # @return [Fixnum]
attr_accessor :version attr_accessor :version
@ -2190,16 +2218,18 @@ module Google
class SetIamPolicyRequest class SetIamPolicyRequest
include Google::Apis::Core::Hashable include Google::Apis::Core::Hashable
# Defines an Identity and Access Management (IAM) policy. It is used to # An Identity and Access Management (IAM) policy, which specifies access
# specify access control policies for Cloud Platform resources. # controls for Google Cloud resources.
# A `Policy` is a collection of `bindings`. A `binding` binds one or more # A `Policy` is a collection of `bindings`. A `binding` binds one or more
# `members` to a single `role`. Members can be user accounts, service accounts, # `members` to a single `role`. Members can be user accounts, service accounts,
# Google groups, and domains (such as G Suite). A `role` is a named list of # Google groups, and domains (such as G Suite). A `role` is a named list of
# permissions (defined by IAM or configured by users). A `binding` can # permissions; each `role` can be an IAM predefined role or a user-created
# optionally specify a `condition`, which is a logic expression that further # custom role.
# constrains the role binding based on attributes about the request and/or # Optionally, a `binding` can specify a `condition`, which is a logical
# target resource. # expression that allows access to a resource only if the expression evaluates
# **JSON Example** # to `true`. A condition can add constraints based on attributes of the
# request, the resource, or both.
# **JSON example:**
# ` # `
# "bindings": [ # "bindings": [
# ` # `
@ -2217,13 +2247,15 @@ module Google
# "condition": ` # "condition": `
# "title": "expirable access", # "title": "expirable access",
# "description": "Does not grant access after Sep 2020", # "description": "Does not grant access after Sep 2020",
# "expression": "request.time < # "expression": "request.time < timestamp('2020-10-01T00:00:00.000Z')
# timestamp('2020-10-01T00:00:00.000Z')", # ",
# ` # `
# ` # `
# ] # ],
# "etag": "BwWWja0YfJA=",
# "version": 3
# ` # `
# **YAML Example** # **YAML example:**
# bindings: # bindings:
# - members: # - members:
# - user:mike@example.com # - user:mike@example.com
@ -2238,8 +2270,10 @@ module Google
# title: expirable access # title: expirable access
# description: Does not grant access after Sep 2020 # description: Does not grant access after Sep 2020
# expression: request.time < timestamp('2020-10-01T00:00:00.000Z') # expression: request.time < timestamp('2020-10-01T00:00:00.000Z')
# - etag: BwWWja0YfJA=
# - version: 3
# For a description of IAM and its features, see the # For a description of IAM and its features, see the
# [IAM developer's guide](https://cloud.google.com/iam/docs). # [IAM documentation](https://cloud.google.com/iam/docs/).
# Corresponds to the JSON property `policy` # Corresponds to the JSON property `policy`
# @return [Google::Apis::ContaineranalysisV1alpha1::Policy] # @return [Google::Apis::ContaineranalysisV1alpha1::Policy]
attr_accessor :policy attr_accessor :policy

View File

@ -26,7 +26,7 @@ module Google
# @see https://cloud.google.com/container-analysis/api/reference/rest/ # @see https://cloud.google.com/container-analysis/api/reference/rest/
module ContaineranalysisV1beta1 module ContaineranalysisV1beta1
VERSION = 'V1beta1' VERSION = 'V1beta1'
REVISION = '20191118' REVISION = '20191209'
# View and manage your data across Google Cloud Platform services # View and manage your data across Google Cloud Platform services
AUTH_CLOUD_PLATFORM = 'https://www.googleapis.com/auth/cloud-platform' AUTH_CLOUD_PLATFORM = 'https://www.googleapis.com/auth/cloud-platform'

View File

@ -187,7 +187,7 @@ module Google
class BatchCreateNotesRequest class BatchCreateNotesRequest
include Google::Apis::Core::Hashable include Google::Apis::Core::Hashable
# The notes to create. Max allowed length is 1000. # Required. The notes to create. Max allowed length is 1000.
# Corresponds to the JSON property `notes` # Corresponds to the JSON property `notes`
# @return [Hash<String,Google::Apis::ContaineranalysisV1beta1::Note>] # @return [Hash<String,Google::Apis::ContaineranalysisV1beta1::Note>]
attr_accessor :notes attr_accessor :notes
@ -225,7 +225,7 @@ module Google
class BatchCreateOccurrencesRequest class BatchCreateOccurrencesRequest
include Google::Apis::Core::Hashable include Google::Apis::Core::Hashable
# The occurrences to create. Max allowed length is 1000. # Required. The occurrences to create. Max allowed length is 1000.
# Corresponds to the JSON property `occurrences` # Corresponds to the JSON property `occurrences`
# @return [Array<Google::Apis::ContaineranalysisV1beta1::Occurrence>] # @return [Array<Google::Apis::ContaineranalysisV1beta1::Occurrence>]
attr_accessor :occurrences attr_accessor :occurrences
@ -283,6 +283,23 @@ module Google
# account. For example, `my-other-app@appspot.gserviceaccount.com`. # account. For example, `my-other-app@appspot.gserviceaccount.com`.
# * `group:`emailid``: An email address that represents a Google group. # * `group:`emailid``: An email address that represents a Google group.
# For example, `admins@example.com`. # For example, `admins@example.com`.
# * `deleted:user:`emailid`?uid=`uniqueid``: An email address (plus unique
# identifier) representing a user that has been recently deleted. For
# example, `alice@example.com?uid=123456789012345678901`. If the user is
# recovered, this value reverts to `user:`emailid`` and the recovered user
# retains the role in the binding.
# * `deleted:serviceAccount:`emailid`?uid=`uniqueid``: An email address (plus
# unique identifier) representing a service account that has been recently
# deleted. For example,
# `my-other-app@appspot.gserviceaccount.com?uid=123456789012345678901`.
# If the service account is undeleted, this value reverts to
# `serviceAccount:`emailid`` and the undeleted service account retains the
# role in the binding.
# * `deleted:group:`emailid`?uid=`uniqueid``: An email address (plus unique
# identifier) representing a Google group that has been recently
# deleted. For example, `admins@example.com?uid=123456789012345678901`. If
# the group is recovered, this value reverts to `group:`emailid`` and the
# recovered group retains the role in the binding.
# * `domain:`domain``: The G Suite domain (primary) that represents all the # * `domain:`domain``: The G Suite domain (primary) that represents all the
# users of that domain. For example, `google.com` or `example.com`. # users of that domain. For example, `google.com` or `example.com`.
# Corresponds to the JSON property `members` # Corresponds to the JSON property `members`
@ -2125,16 +2142,18 @@ module Google
end end
end end
# Defines an Identity and Access Management (IAM) policy. It is used to # An Identity and Access Management (IAM) policy, which specifies access
# specify access control policies for Cloud Platform resources. # controls for Google Cloud resources.
# A `Policy` is a collection of `bindings`. A `binding` binds one or more # A `Policy` is a collection of `bindings`. A `binding` binds one or more
# `members` to a single `role`. Members can be user accounts, service accounts, # `members` to a single `role`. Members can be user accounts, service accounts,
# Google groups, and domains (such as G Suite). A `role` is a named list of # Google groups, and domains (such as G Suite). A `role` is a named list of
# permissions (defined by IAM or configured by users). A `binding` can # permissions; each `role` can be an IAM predefined role or a user-created
# optionally specify a `condition`, which is a logic expression that further # custom role.
# constrains the role binding based on attributes about the request and/or # Optionally, a `binding` can specify a `condition`, which is a logical
# target resource. # expression that allows access to a resource only if the expression evaluates
# **JSON Example** # to `true`. A condition can add constraints based on attributes of the
# request, the resource, or both.
# **JSON example:**
# ` # `
# "bindings": [ # "bindings": [
# ` # `
@ -2152,13 +2171,15 @@ module Google
# "condition": ` # "condition": `
# "title": "expirable access", # "title": "expirable access",
# "description": "Does not grant access after Sep 2020", # "description": "Does not grant access after Sep 2020",
# "expression": "request.time < # "expression": "request.time < timestamp('2020-10-01T00:00:00.000Z')
# timestamp('2020-10-01T00:00:00.000Z')", # ",
# ` # `
# ` # `
# ] # ],
# "etag": "BwWWja0YfJA=",
# "version": 3
# ` # `
# **YAML Example** # **YAML example:**
# bindings: # bindings:
# - members: # - members:
# - user:mike@example.com # - user:mike@example.com
@ -2173,14 +2194,16 @@ module Google
# title: expirable access # title: expirable access
# description: Does not grant access after Sep 2020 # description: Does not grant access after Sep 2020
# expression: request.time < timestamp('2020-10-01T00:00:00.000Z') # expression: request.time < timestamp('2020-10-01T00:00:00.000Z')
# - etag: BwWWja0YfJA=
# - version: 3
# For a description of IAM and its features, see the # For a description of IAM and its features, see the
# [IAM developer's guide](https://cloud.google.com/iam/docs). # [IAM documentation](https://cloud.google.com/iam/docs/).
class Policy class Policy
include Google::Apis::Core::Hashable include Google::Apis::Core::Hashable
# Associates a list of `members` to a `role`. Optionally may specify a # Associates a list of `members` to a `role`. Optionally, may specify a
# `condition` that determines when binding is in effect. # `condition` that determines how and when the `bindings` are applied. Each
# `bindings` with no members will result in an error. # of the `bindings` must contain at least one member.
# Corresponds to the JSON property `bindings` # Corresponds to the JSON property `bindings`
# @return [Array<Google::Apis::ContaineranalysisV1beta1::Binding>] # @return [Array<Google::Apis::ContaineranalysisV1beta1::Binding>]
attr_accessor :bindings attr_accessor :bindings
@ -2192,26 +2215,31 @@ module Google
# conditions: An `etag` is returned in the response to `getIamPolicy`, and # conditions: An `etag` is returned in the response to `getIamPolicy`, and
# systems are expected to put that etag in the request to `setIamPolicy` to # systems are expected to put that etag in the request to `setIamPolicy` to
# ensure that their change will be applied to the same version of the policy. # ensure that their change will be applied to the same version of the policy.
# If no `etag` is provided in the call to `setIamPolicy`, then the existing # **Important:** If you use IAM Conditions, you must include the `etag` field
# policy is overwritten. Due to blind-set semantics of an etag-less policy, # whenever you call `setIamPolicy`. If you omit this field, then IAM allows
# 'setIamPolicy' will not fail even if the incoming policy version does not # you to overwrite a version `3` policy with a version `1` policy, and all of
# meet the requirements for modifying the stored policy. # the conditions in the version `3` policy are lost.
# Corresponds to the JSON property `etag` # Corresponds to the JSON property `etag`
# NOTE: Values are automatically base64 encoded/decoded in the client library. # NOTE: Values are automatically base64 encoded/decoded in the client library.
# @return [String] # @return [String]
attr_accessor :etag attr_accessor :etag
# Specifies the format of the policy. # Specifies the format of the policy.
# Valid values are 0, 1, and 3. Requests specifying an invalid value will be # Valid values are `0`, `1`, and `3`. Requests that specify an invalid value
# rejected. # are rejected.
# Operations affecting conditional bindings must specify version 3. This can # Any operation that affects conditional role bindings must specify version
# be either setting a conditional policy, modifying a conditional binding, # `3`. This requirement applies to the following operations:
# or removing a binding (conditional or unconditional) from the stored # * Getting a policy that includes a conditional role binding
# conditional policy. # * Adding a conditional role binding to a policy
# Operations on non-conditional policies may specify any valid value or # * Changing a conditional role binding in a policy
# leave the field unset. # * Removing any role binding, with or without a condition, from a policy
# If no etag is provided in the call to `setIamPolicy`, version compliance # that includes conditions
# checks against the stored policy is skipped. # **Important:** If you use IAM Conditions, you must include the `etag` field
# whenever you call `setIamPolicy`. If you omit this field, then IAM allows
# you to overwrite a version `3` policy with a version `1` policy, and all of
# the conditions in the version `3` policy are lost.
# If a policy does not include any conditions, operations on that policy may
# specify any valid version or leave the field unset.
# Corresponds to the JSON property `version` # Corresponds to the JSON property `version`
# @return [Fixnum] # @return [Fixnum]
attr_accessor :version attr_accessor :version
@ -2391,16 +2419,18 @@ module Google
class SetIamPolicyRequest class SetIamPolicyRequest
include Google::Apis::Core::Hashable include Google::Apis::Core::Hashable
# Defines an Identity and Access Management (IAM) policy. It is used to # An Identity and Access Management (IAM) policy, which specifies access
# specify access control policies for Cloud Platform resources. # controls for Google Cloud resources.
# A `Policy` is a collection of `bindings`. A `binding` binds one or more # A `Policy` is a collection of `bindings`. A `binding` binds one or more
# `members` to a single `role`. Members can be user accounts, service accounts, # `members` to a single `role`. Members can be user accounts, service accounts,
# Google groups, and domains (such as G Suite). A `role` is a named list of # Google groups, and domains (such as G Suite). A `role` is a named list of
# permissions (defined by IAM or configured by users). A `binding` can # permissions; each `role` can be an IAM predefined role or a user-created
# optionally specify a `condition`, which is a logic expression that further # custom role.
# constrains the role binding based on attributes about the request and/or # Optionally, a `binding` can specify a `condition`, which is a logical
# target resource. # expression that allows access to a resource only if the expression evaluates
# **JSON Example** # to `true`. A condition can add constraints based on attributes of the
# request, the resource, or both.
# **JSON example:**
# ` # `
# "bindings": [ # "bindings": [
# ` # `
@ -2418,13 +2448,15 @@ module Google
# "condition": ` # "condition": `
# "title": "expirable access", # "title": "expirable access",
# "description": "Does not grant access after Sep 2020", # "description": "Does not grant access after Sep 2020",
# "expression": "request.time < # "expression": "request.time < timestamp('2020-10-01T00:00:00.000Z')
# timestamp('2020-10-01T00:00:00.000Z')", # ",
# ` # `
# ` # `
# ] # ],
# "etag": "BwWWja0YfJA=",
# "version": 3
# ` # `
# **YAML Example** # **YAML example:**
# bindings: # bindings:
# - members: # - members:
# - user:mike@example.com # - user:mike@example.com
@ -2439,8 +2471,10 @@ module Google
# title: expirable access # title: expirable access
# description: Does not grant access after Sep 2020 # description: Does not grant access after Sep 2020
# expression: request.time < timestamp('2020-10-01T00:00:00.000Z') # expression: request.time < timestamp('2020-10-01T00:00:00.000Z')
# - etag: BwWWja0YfJA=
# - version: 3
# For a description of IAM and its features, see the # For a description of IAM and its features, see the
# [IAM developer's guide](https://cloud.google.com/iam/docs). # [IAM documentation](https://cloud.google.com/iam/docs/).
# Corresponds to the JSON property `policy` # Corresponds to the JSON property `policy`
# @return [Google::Apis::ContaineranalysisV1beta1::Policy] # @return [Google::Apis::ContaineranalysisV1beta1::Policy]
attr_accessor :policy attr_accessor :policy

View File

@ -50,7 +50,8 @@ module Google
# Creates new notes in batch. # Creates new notes in batch.
# @param [String] parent # @param [String] parent
# The name of the project in the form of `projects/[PROJECT_ID]`, under which # Required. The name of the project in the form of `projects/[PROJECT_ID]`,
# under which
# the notes are to be created. # the notes are to be created.
# @param [Google::Apis::ContaineranalysisV1beta1::BatchCreateNotesRequest] batch_create_notes_request_object # @param [Google::Apis::ContaineranalysisV1beta1::BatchCreateNotesRequest] batch_create_notes_request_object
# @param [String] fields # @param [String] fields
@ -84,11 +85,12 @@ module Google
# Creates a new note. # Creates a new note.
# @param [String] parent # @param [String] parent
# The name of the project in the form of `projects/[PROJECT_ID]`, under which # Required. The name of the project in the form of `projects/[PROJECT_ID]`,
# under which
# the note is to be created. # the note is to be created.
# @param [Google::Apis::ContaineranalysisV1beta1::Note] note_object # @param [Google::Apis::ContaineranalysisV1beta1::Note] note_object
# @param [String] note_id # @param [String] note_id
# The ID to use for this note. # Required. The ID to use for this note.
# @param [String] fields # @param [String] fields
# Selector specifying which fields to include in a partial response. # Selector specifying which fields to include in a partial response.
# @param [String] quota_user # @param [String] quota_user
@ -121,7 +123,7 @@ module Google
# Deletes the specified note. # Deletes the specified note.
# @param [String] name # @param [String] name
# The name of the note in the form of # Required. The name of the note in the form of
# `projects/[PROVIDER_ID]/notes/[NOTE_ID]`. # `projects/[PROVIDER_ID]/notes/[NOTE_ID]`.
# @param [String] fields # @param [String] fields
# Selector specifying which fields to include in a partial response. # Selector specifying which fields to include in a partial response.
@ -152,7 +154,7 @@ module Google
# Gets the specified note. # Gets the specified note.
# @param [String] name # @param [String] name
# The name of the note in the form of # Required. The name of the note in the form of
# `projects/[PROVIDER_ID]/notes/[NOTE_ID]`. # `projects/[PROVIDER_ID]/notes/[NOTE_ID]`.
# @param [String] fields # @param [String] fields
# Selector specifying which fields to include in a partial response. # Selector specifying which fields to include in a partial response.
@ -223,7 +225,7 @@ module Google
# Lists notes for the specified project. # Lists notes for the specified project.
# @param [String] parent # @param [String] parent
# The name of the project to list notes for in the form of # Required. The name of the project to list notes for in the form of
# `projects/[PROJECT_ID]`. # `projects/[PROJECT_ID]`.
# @param [String] filter # @param [String] filter
# The filter expression. # The filter expression.
@ -264,7 +266,7 @@ module Google
# Updates the specified note. # Updates the specified note.
# @param [String] name # @param [String] name
# The name of the note in the form of # Required. The name of the note in the form of
# `projects/[PROVIDER_ID]/notes/[NOTE_ID]`. # `projects/[PROVIDER_ID]/notes/[NOTE_ID]`.
# @param [Google::Apis::ContaineranalysisV1beta1::Note] note_object # @param [Google::Apis::ContaineranalysisV1beta1::Note] note_object
# @param [String] update_mask # @param [String] update_mask
@ -382,7 +384,7 @@ module Google
# this method to get all occurrences across consumer projects referencing the # this method to get all occurrences across consumer projects referencing the
# specified note. # specified note.
# @param [String] name # @param [String] name
# The name of the note to list occurrences for in the form of # Required. The name of the note to list occurrences for in the form of
# `projects/[PROVIDER_ID]/notes/[NOTE_ID]`. # `projects/[PROVIDER_ID]/notes/[NOTE_ID]`.
# @param [String] filter # @param [String] filter
# The filter expression. # The filter expression.
@ -422,7 +424,8 @@ module Google
# Creates new occurrences in batch. # Creates new occurrences in batch.
# @param [String] parent # @param [String] parent
# The name of the project in the form of `projects/[PROJECT_ID]`, under which # Required. The name of the project in the form of `projects/[PROJECT_ID]`,
# under which
# the occurrences are to be created. # the occurrences are to be created.
# @param [Google::Apis::ContaineranalysisV1beta1::BatchCreateOccurrencesRequest] batch_create_occurrences_request_object # @param [Google::Apis::ContaineranalysisV1beta1::BatchCreateOccurrencesRequest] batch_create_occurrences_request_object
# @param [String] fields # @param [String] fields
@ -456,7 +459,8 @@ module Google
# Creates a new occurrence. # Creates a new occurrence.
# @param [String] parent # @param [String] parent
# The name of the project in the form of `projects/[PROJECT_ID]`, under which # Required. The name of the project in the form of `projects/[PROJECT_ID]`,
# under which
# the occurrence is to be created. # the occurrence is to be created.
# @param [Google::Apis::ContaineranalysisV1beta1::Occurrence] occurrence_object # @param [Google::Apis::ContaineranalysisV1beta1::Occurrence] occurrence_object
# @param [String] fields # @param [String] fields
@ -492,7 +496,7 @@ module Google
# occurrence when the occurrence is no longer applicable for the given # occurrence when the occurrence is no longer applicable for the given
# resource. # resource.
# @param [String] name # @param [String] name
# The name of the occurrence in the form of # Required. The name of the occurrence in the form of
# `projects/[PROJECT_ID]/occurrences/[OCCURRENCE_ID]`. # `projects/[PROJECT_ID]/occurrences/[OCCURRENCE_ID]`.
# @param [String] fields # @param [String] fields
# Selector specifying which fields to include in a partial response. # Selector specifying which fields to include in a partial response.
@ -523,7 +527,7 @@ module Google
# Gets the specified occurrence. # Gets the specified occurrence.
# @param [String] name # @param [String] name
# The name of the occurrence in the form of # Required. The name of the occurrence in the form of
# `projects/[PROJECT_ID]/occurrences/[OCCURRENCE_ID]`. # `projects/[PROJECT_ID]/occurrences/[OCCURRENCE_ID]`.
# @param [String] fields # @param [String] fields
# Selector specifying which fields to include in a partial response. # Selector specifying which fields to include in a partial response.
@ -595,7 +599,7 @@ module Google
# Gets the note attached to the specified occurrence. Consumer projects can # Gets the note attached to the specified occurrence. Consumer projects can
# use this method to get a note that belongs to a provider project. # use this method to get a note that belongs to a provider project.
# @param [String] name # @param [String] name
# The name of the occurrence in the form of # Required. The name of the occurrence in the form of
# `projects/[PROJECT_ID]/occurrences/[OCCURRENCE_ID]`. # `projects/[PROJECT_ID]/occurrences/[OCCURRENCE_ID]`.
# @param [String] fields # @param [String] fields
# Selector specifying which fields to include in a partial response. # Selector specifying which fields to include in a partial response.
@ -626,7 +630,8 @@ module Google
# Gets a summary of the number and severity of occurrences. # Gets a summary of the number and severity of occurrences.
# @param [String] parent # @param [String] parent
# The name of the project to get a vulnerability summary for in the form of # Required. The name of the project to get a vulnerability summary for in the
# form of
# `projects/[PROJECT_ID]`. # `projects/[PROJECT_ID]`.
# @param [String] filter # @param [String] filter
# The filter expression. # The filter expression.
@ -660,7 +665,7 @@ module Google
# Lists occurrences for the specified project. # Lists occurrences for the specified project.
# @param [String] parent # @param [String] parent
# The name of the project to list occurrences for in the form of # Required. The name of the project to list occurrences for in the form of
# `projects/[PROJECT_ID]`. # `projects/[PROJECT_ID]`.
# @param [String] filter # @param [String] filter
# The filter expression. # The filter expression.
@ -701,7 +706,7 @@ module Google
# Updates the specified occurrence. # Updates the specified occurrence.
# @param [String] name # @param [String] name
# The name of the occurrence in the form of # Required. The name of the occurrence in the form of
# `projects/[PROJECT_ID]/occurrences/[OCCURRENCE_ID]`. # `projects/[PROJECT_ID]/occurrences/[OCCURRENCE_ID]`.
# @param [Google::Apis::ContaineranalysisV1beta1::Occurrence] occurrence_object # @param [Google::Apis::ContaineranalysisV1beta1::Occurrence] occurrence_object
# @param [String] update_mask # @param [String] update_mask
@ -817,7 +822,7 @@ module Google
# Gets the specified scan configuration. # Gets the specified scan configuration.
# @param [String] name # @param [String] name
# The name of the scan configuration in the form of # Required. The name of the scan configuration in the form of
# `projects/[PROJECT_ID]/scanConfigs/[SCAN_CONFIG_ID]`. # `projects/[PROJECT_ID]/scanConfigs/[SCAN_CONFIG_ID]`.
# @param [String] fields # @param [String] fields
# Selector specifying which fields to include in a partial response. # Selector specifying which fields to include in a partial response.
@ -848,10 +853,11 @@ module Google
# Lists scan configurations for the specified project. # Lists scan configurations for the specified project.
# @param [String] parent # @param [String] parent
# The name of the project to list scan configurations for in the form of # Required. The name of the project to list scan configurations for in the form
# of
# `projects/[PROJECT_ID]`. # `projects/[PROJECT_ID]`.
# @param [String] filter # @param [String] filter
# The filter expression. # Required. The filter expression.
# @param [Fixnum] page_size # @param [Fixnum] page_size
# The number of scan configs to return in the list. # The number of scan configs to return in the list.
# @param [String] page_token # @param [String] page_token
@ -888,7 +894,7 @@ module Google
# Updates the specified scan configuration. # Updates the specified scan configuration.
# @param [String] name # @param [String] name
# The name of the scan configuration in the form of # Required. The name of the scan configuration in the form of
# `projects/[PROJECT_ID]/scanConfigs/[SCAN_CONFIG_ID]`. # `projects/[PROJECT_ID]/scanConfigs/[SCAN_CONFIG_ID]`.
# @param [Google::Apis::ContaineranalysisV1beta1::ScanConfig] scan_config_object # @param [Google::Apis::ContaineranalysisV1beta1::ScanConfig] scan_config_object
# @param [String] fields # @param [String] fields

View File

@ -27,7 +27,7 @@ module Google
# @see https://cloud.google.com/dlp/docs/ # @see https://cloud.google.com/dlp/docs/
module DlpV2 module DlpV2
VERSION = 'V2' VERSION = 'V2'
REVISION = '20191202' REVISION = '20191206'
# View and manage your data across Google Cloud Platform services # View and manage your data across Google Cloud Platform services
AUTH_CLOUD_PLATFORM = 'https://www.googleapis.com/auth/cloud-platform' AUTH_CLOUD_PLATFORM = 'https://www.googleapis.com/auth/cloud-platform'

View File

@ -1682,6 +1682,18 @@ module Google
# @return [Google::Apis::DlpV2::GooglePrivacyDlpV2RecordTransformations] # @return [Google::Apis::DlpV2::GooglePrivacyDlpV2RecordTransformations]
attr_accessor :record_transformations attr_accessor :record_transformations
# How to handle transformation errors during de-identification. A
# transformation error occurs when the requested transformation is incompatible
# with the data. For example, trying to de-identify an IP address using a
# `DateShift` transformation would result in a transformation error, since date
# info cannot be extracted from an IP address.
# Information about any incompatible transformations, and how they were
# handled, is returned in the response as part of the
# `TransformationOverviews`.
# Corresponds to the JSON property `transformationErrorHandling`
# @return [Google::Apis::DlpV2::GooglePrivacyDlpV2TransformationErrorHandling]
attr_accessor :transformation_error_handling
def initialize(**args) def initialize(**args)
update!(**args) update!(**args)
end end
@ -1690,6 +1702,7 @@ module Google
def update!(**args) def update!(**args)
@info_type_transformations = args[:info_type_transformations] if args.key?(:info_type_transformations) @info_type_transformations = args[:info_type_transformations] if args.key?(:info_type_transformations)
@record_transformations = args[:record_transformations] if args.key?(:record_transformations) @record_transformations = args[:record_transformations] if args.key?(:record_transformations)
@transformation_error_handling = args[:transformation_error_handling] if args.key?(:transformation_error_handling)
end end
end end
@ -3808,6 +3821,22 @@ module Google
end end
end end
# Skips the data without modifying it if the requested transformation would
# cause an error. For example, if a `DateShift` transformation were applied
# an an IP address, this mode would leave the IP address unchanged in the
# response.
class GooglePrivacyDlpV2LeaveUntransformed
include Google::Apis::Core::Hashable
def initialize(**args)
update!(**args)
end
# Update properties of this object
def update!(**args)
end
end
# Message for specifying an adjustment to the likelihood of a finding as # Message for specifying an adjustment to the likelihood of a finding as
# part of a detection rule. # part of a detection rule.
class GooglePrivacyDlpV2LikelihoodAdjustment class GooglePrivacyDlpV2LikelihoodAdjustment
@ -5575,6 +5604,19 @@ module Google
end end
end end
# Throw an error and fail the request when a transformation error occurs.
class GooglePrivacyDlpV2ThrowError
include Google::Apis::Core::Hashable
def initialize(**args)
update!(**args)
end
# Update properties of this object
def update!(**args)
end
end
# For use with `Date`, `Timestamp`, and `TimeOfDay`, extract or preserve a # For use with `Date`, `Timestamp`, and `TimeOfDay`, extract or preserve a
# portion of the value. # portion of the value.
class GooglePrivacyDlpV2TimePartConfig class GooglePrivacyDlpV2TimePartConfig
@ -5658,6 +5700,41 @@ module Google
end end
end end
# How to handle transformation errors during de-identification. A
# transformation error occurs when the requested transformation is incompatible
# with the data. For example, trying to de-identify an IP address using a
# `DateShift` transformation would result in a transformation error, since date
# info cannot be extracted from an IP address.
# Information about any incompatible transformations, and how they were
# handled, is returned in the response as part of the
# `TransformationOverviews`.
class GooglePrivacyDlpV2TransformationErrorHandling
include Google::Apis::Core::Hashable
# Skips the data without modifying it if the requested transformation would
# cause an error. For example, if a `DateShift` transformation were applied
# an an IP address, this mode would leave the IP address unchanged in the
# response.
# Corresponds to the JSON property `leaveUntransformed`
# @return [Google::Apis::DlpV2::GooglePrivacyDlpV2LeaveUntransformed]
attr_accessor :leave_untransformed
# Throw an error and fail the request when a transformation error occurs.
# Corresponds to the JSON property `throwError`
# @return [Google::Apis::DlpV2::GooglePrivacyDlpV2ThrowError]
attr_accessor :throw_error
def initialize(**args)
update!(**args)
end
# Update properties of this object
def update!(**args)
@leave_untransformed = args[:leave_untransformed] if args.key?(:leave_untransformed)
@throw_error = args[:throw_error] if args.key?(:throw_error)
end
end
# Overview of the modifications that occurred. # Overview of the modifications that occurred.
class GooglePrivacyDlpV2TransformationOverview class GooglePrivacyDlpV2TransformationOverview
include Google::Apis::Core::Hashable include Google::Apis::Core::Hashable

View File

@ -628,6 +628,12 @@ module Google
include Google::Apis::Core::JsonObjectSupport include Google::Apis::Core::JsonObjectSupport
end end
class GooglePrivacyDlpV2LeaveUntransformed
class Representation < Google::Apis::Core::JsonRepresentation; end
include Google::Apis::Core::JsonObjectSupport
end
class GooglePrivacyDlpV2LikelihoodAdjustment class GooglePrivacyDlpV2LikelihoodAdjustment
class Representation < Google::Apis::Core::JsonRepresentation; end class Representation < Google::Apis::Core::JsonRepresentation; end
@ -964,6 +970,12 @@ module Google
include Google::Apis::Core::JsonObjectSupport include Google::Apis::Core::JsonObjectSupport
end end
class GooglePrivacyDlpV2ThrowError
class Representation < Google::Apis::Core::JsonRepresentation; end
include Google::Apis::Core::JsonObjectSupport
end
class GooglePrivacyDlpV2TimePartConfig class GooglePrivacyDlpV2TimePartConfig
class Representation < Google::Apis::Core::JsonRepresentation; end class Representation < Google::Apis::Core::JsonRepresentation; end
@ -982,6 +994,12 @@ module Google
include Google::Apis::Core::JsonObjectSupport include Google::Apis::Core::JsonObjectSupport
end end
class GooglePrivacyDlpV2TransformationErrorHandling
class Representation < Google::Apis::Core::JsonRepresentation; end
include Google::Apis::Core::JsonObjectSupport
end
class GooglePrivacyDlpV2TransformationOverview class GooglePrivacyDlpV2TransformationOverview
class Representation < Google::Apis::Core::JsonRepresentation; end class Representation < Google::Apis::Core::JsonRepresentation; end
@ -1529,6 +1547,8 @@ module Google
property :record_transformations, as: 'recordTransformations', class: Google::Apis::DlpV2::GooglePrivacyDlpV2RecordTransformations, decorator: Google::Apis::DlpV2::GooglePrivacyDlpV2RecordTransformations::Representation property :record_transformations, as: 'recordTransformations', class: Google::Apis::DlpV2::GooglePrivacyDlpV2RecordTransformations, decorator: Google::Apis::DlpV2::GooglePrivacyDlpV2RecordTransformations::Representation
property :transformation_error_handling, as: 'transformationErrorHandling', class: Google::Apis::DlpV2::GooglePrivacyDlpV2TransformationErrorHandling, decorator: Google::Apis::DlpV2::GooglePrivacyDlpV2TransformationErrorHandling::Representation
end end
end end
@ -2144,6 +2164,12 @@ module Google
end end
end end
class GooglePrivacyDlpV2LeaveUntransformed
# @private
class Representation < Google::Apis::Core::JsonRepresentation
end
end
class GooglePrivacyDlpV2LikelihoodAdjustment class GooglePrivacyDlpV2LikelihoodAdjustment
# @private # @private
class Representation < Google::Apis::Core::JsonRepresentation class Representation < Google::Apis::Core::JsonRepresentation
@ -2692,6 +2718,12 @@ module Google
end end
end end
class GooglePrivacyDlpV2ThrowError
# @private
class Representation < Google::Apis::Core::JsonRepresentation
end
end
class GooglePrivacyDlpV2TimePartConfig class GooglePrivacyDlpV2TimePartConfig
# @private # @private
class Representation < Google::Apis::Core::JsonRepresentation class Representation < Google::Apis::Core::JsonRepresentation
@ -2717,6 +2749,16 @@ module Google
end end
end end
class GooglePrivacyDlpV2TransformationErrorHandling
# @private
class Representation < Google::Apis::Core::JsonRepresentation
property :leave_untransformed, as: 'leaveUntransformed', class: Google::Apis::DlpV2::GooglePrivacyDlpV2LeaveUntransformed, decorator: Google::Apis::DlpV2::GooglePrivacyDlpV2LeaveUntransformed::Representation
property :throw_error, as: 'throwError', class: Google::Apis::DlpV2::GooglePrivacyDlpV2ThrowError, decorator: Google::Apis::DlpV2::GooglePrivacyDlpV2ThrowError::Representation
end
end
class GooglePrivacyDlpV2TransformationOverview class GooglePrivacyDlpV2TransformationOverview
# @private # @private
class Representation < Google::Apis::Core::JsonRepresentation class Representation < Google::Apis::Core::JsonRepresentation

View File

@ -25,7 +25,7 @@ module Google
# @see https://cloud.google.com/iap # @see https://cloud.google.com/iap
module IapV1 module IapV1
VERSION = 'V1' VERSION = 'V1'
REVISION = '20191011' REVISION = '20191206'
# View and manage your data across Google Cloud Platform services # View and manage your data across Google Cloud Platform services
AUTH_CLOUD_PLATFORM = 'https://www.googleapis.com/auth/cloud-platform' AUTH_CLOUD_PLATFORM = 'https://www.googleapis.com/auth/cloud-platform'

View File

@ -100,6 +100,23 @@ module Google
# account. For example, `my-other-app@appspot.gserviceaccount.com`. # account. For example, `my-other-app@appspot.gserviceaccount.com`.
# * `group:`emailid``: An email address that represents a Google group. # * `group:`emailid``: An email address that represents a Google group.
# For example, `admins@example.com`. # For example, `admins@example.com`.
# * `deleted:user:`emailid`?uid=`uniqueid``: An email address (plus unique
# identifier) representing a user that has been recently deleted. For
# example, `alice@example.com?uid=123456789012345678901`. If the user is
# recovered, this value reverts to `user:`emailid`` and the recovered user
# retains the role in the binding.
# * `deleted:serviceAccount:`emailid`?uid=`uniqueid``: An email address (plus
# unique identifier) representing a service account that has been recently
# deleted. For example,
# `my-other-app@appspot.gserviceaccount.com?uid=123456789012345678901`.
# If the service account is undeleted, this value reverts to
# `serviceAccount:`emailid`` and the undeleted service account retains the
# role in the binding.
# * `deleted:group:`emailid`?uid=`uniqueid``: An email address (plus unique
# identifier) representing a Google group that has been recently
# deleted. For example, `admins@example.com?uid=123456789012345678901`. If
# the group is recovered, this value reverts to `group:`emailid`` and the
# recovered group retains the role in the binding.
# * `domain:`domain``: The G Suite domain (primary) that represents all the # * `domain:`domain``: The G Suite domain (primary) that represents all the
# users of that domain. For example, `google.com` or `example.com`. # users of that domain. For example, `google.com` or `example.com`.
# Corresponds to the JSON property `members` # Corresponds to the JSON property `members`
@ -124,6 +141,48 @@ module Google
end end
end end
# OAuth brand data.
# NOTE: Only contains a portion of the data that describes a brand.
class Brand
include Google::Apis::Core::Hashable
# Application name displayed on OAuth consent screen.
# Corresponds to the JSON property `applicationTitle`
# @return [String]
attr_accessor :application_title
# Output only. Identifier of the brand.
# NOTE: GCP project number achieves the same brand identification purpose as
# only one brand per project can be created.
# Corresponds to the JSON property `name`
# @return [String]
attr_accessor :name
# Output only. Whether the brand is only intended for usage inside the
# GSuite organization only.
# Corresponds to the JSON property `orgInternalOnly`
# @return [Boolean]
attr_accessor :org_internal_only
alias_method :org_internal_only?, :org_internal_only
# Support email displayed on the OAuth consent screen.
# Corresponds to the JSON property `supportEmail`
# @return [String]
attr_accessor :support_email
def initialize(**args)
update!(**args)
end
# Update properties of this object
def update!(**args)
@application_title = args[:application_title] if args.key?(:application_title)
@name = args[:name] if args.key?(:name)
@org_internal_only = args[:org_internal_only] if args.key?(:org_internal_only)
@support_email = args[:support_email] if args.key?(:support_email)
end
end
# Allows customers to configure HTTP request paths that'll allow HTTP OPTIONS # Allows customers to configure HTTP request paths that'll allow HTTP OPTIONS
# call to bypass authentication and authorization. # call to bypass authentication and authorization.
class CorsSettings class CorsSettings
@ -169,6 +228,25 @@ module Google
end end
end end
# A generic empty message that you can re-use to avoid defining duplicated
# empty messages in your APIs. A typical example is to use it as the request
# or the response type of an API method. For instance:
# service Foo `
# rpc Bar(google.protobuf.Empty) returns (google.protobuf.Empty);
# `
# The JSON representation for `Empty` is empty JSON object ````.
class Empty
include Google::Apis::Core::Hashable
def initialize(**args)
update!(**args)
end
# Update properties of this object
def update!(**args)
end
end
# Represents an expression text. Example: # Represents an expression text. Example:
# title: "User account presence" # title: "User account presence"
# description: "Determines whether the request has a user account" # description: "Determines whether the request has a user account"
@ -322,6 +400,82 @@ module Google
end end
end end
# Contains the data that describes an Identity Aware Proxy owned client.
class IdentityAwareProxyClient
include Google::Apis::Core::Hashable
# Human-friendly name given to the OAuth client.
# Corresponds to the JSON property `displayName`
# @return [String]
attr_accessor :display_name
# Output only. Unique identifier of the OAuth client.
# Corresponds to the JSON property `name`
# @return [String]
attr_accessor :name
# Output only. Client secret of the OAuth client.
# Corresponds to the JSON property `secret`
# @return [String]
attr_accessor :secret
def initialize(**args)
update!(**args)
end
# Update properties of this object
def update!(**args)
@display_name = args[:display_name] if args.key?(:display_name)
@name = args[:name] if args.key?(:name)
@secret = args[:secret] if args.key?(:secret)
end
end
# Response message for ListBrands.
class ListBrandsResponse
include Google::Apis::Core::Hashable
# Brands existing in the project.
# Corresponds to the JSON property `brands`
# @return [Array<Google::Apis::IapV1::Brand>]
attr_accessor :brands
def initialize(**args)
update!(**args)
end
# Update properties of this object
def update!(**args)
@brands = args[:brands] if args.key?(:brands)
end
end
# Response message for ListIdentityAwareProxyClients.
class ListIdentityAwareProxyClientsResponse
include Google::Apis::Core::Hashable
# Clients existing in the brand.
# Corresponds to the JSON property `identityAwareProxyClients`
# @return [Array<Google::Apis::IapV1::IdentityAwareProxyClient>]
attr_accessor :identity_aware_proxy_clients
# A token, which can be send as `page_token` to retrieve the next page.
# If this field is omitted, there are no subsequent pages.
# Corresponds to the JSON property `nextPageToken`
# @return [String]
attr_accessor :next_page_token
def initialize(**args)
update!(**args)
end
# Update properties of this object
def update!(**args)
@identity_aware_proxy_clients = args[:identity_aware_proxy_clients] if args.key?(:identity_aware_proxy_clients)
@next_page_token = args[:next_page_token] if args.key?(:next_page_token)
end
end
# Configuration for OAuth login&consent flow behavior. # Configuration for OAuth login&consent flow behavior.
class OAuthSettings class OAuthSettings
include Google::Apis::Core::Hashable include Google::Apis::Core::Hashable
@ -345,16 +499,18 @@ module Google
end end
end end
# Defines an Identity and Access Management (IAM) policy. It is used to # An Identity and Access Management (IAM) policy, which specifies access
# specify access control policies for Cloud Platform resources. # controls for Google Cloud resources.
# A `Policy` is a collection of `bindings`. A `binding` binds one or more # A `Policy` is a collection of `bindings`. A `binding` binds one or more
# `members` to a single `role`. Members can be user accounts, service accounts, # `members` to a single `role`. Members can be user accounts, service accounts,
# Google groups, and domains (such as G Suite). A `role` is a named list of # Google groups, and domains (such as G Suite). A `role` is a named list of
# permissions (defined by IAM or configured by users). A `binding` can # permissions; each `role` can be an IAM predefined role or a user-created
# optionally specify a `condition`, which is a logic expression that further # custom role.
# constrains the role binding based on attributes about the request and/or # Optionally, a `binding` can specify a `condition`, which is a logical
# target resource. # expression that allows access to a resource only if the expression evaluates
# **JSON Example** # to `true`. A condition can add constraints based on attributes of the
# request, the resource, or both.
# **JSON example:**
# ` # `
# "bindings": [ # "bindings": [
# ` # `
@ -372,13 +528,15 @@ module Google
# "condition": ` # "condition": `
# "title": "expirable access", # "title": "expirable access",
# "description": "Does not grant access after Sep 2020", # "description": "Does not grant access after Sep 2020",
# "expression": "request.time < # "expression": "request.time < timestamp('2020-10-01T00:00:00.000Z')
# timestamp('2020-10-01T00:00:00.000Z')", # ",
# ` # `
# ` # `
# ] # ],
# "etag": "BwWWja0YfJA=",
# "version": 3
# ` # `
# **YAML Example** # **YAML example:**
# bindings: # bindings:
# - members: # - members:
# - user:mike@example.com # - user:mike@example.com
@ -393,14 +551,16 @@ module Google
# title: expirable access # title: expirable access
# description: Does not grant access after Sep 2020 # description: Does not grant access after Sep 2020
# expression: request.time < timestamp('2020-10-01T00:00:00.000Z') # expression: request.time < timestamp('2020-10-01T00:00:00.000Z')
# - etag: BwWWja0YfJA=
# - version: 3
# For a description of IAM and its features, see the # For a description of IAM and its features, see the
# [IAM developer's guide](https://cloud.google.com/iam/docs). # [IAM documentation](https://cloud.google.com/iam/docs/).
class Policy class Policy
include Google::Apis::Core::Hashable include Google::Apis::Core::Hashable
# Associates a list of `members` to a `role`. Optionally may specify a # Associates a list of `members` to a `role`. Optionally, may specify a
# `condition` that determines when binding is in effect. # `condition` that determines how and when the `bindings` are applied. Each
# `bindings` with no members will result in an error. # of the `bindings` must contain at least one member.
# Corresponds to the JSON property `bindings` # Corresponds to the JSON property `bindings`
# @return [Array<Google::Apis::IapV1::Binding>] # @return [Array<Google::Apis::IapV1::Binding>]
attr_accessor :bindings attr_accessor :bindings
@ -412,25 +572,31 @@ module Google
# conditions: An `etag` is returned in the response to `getIamPolicy`, and # conditions: An `etag` is returned in the response to `getIamPolicy`, and
# systems are expected to put that etag in the request to `setIamPolicy` to # systems are expected to put that etag in the request to `setIamPolicy` to
# ensure that their change will be applied to the same version of the policy. # ensure that their change will be applied to the same version of the policy.
# If no `etag` is provided in the call to `setIamPolicy`, then the existing # **Important:** If you use IAM Conditions, you must include the `etag` field
# policy is overwritten. Due to blind-set semantics of an etag-less policy, # whenever you call `setIamPolicy`. If you omit this field, then IAM allows
# 'setIamPolicy' will not fail even if either of incoming or stored policy # you to overwrite a version `3` policy with a version `1` policy, and all of
# does not meet the version requirements. # the conditions in the version `3` policy are lost.
# Corresponds to the JSON property `etag` # Corresponds to the JSON property `etag`
# NOTE: Values are automatically base64 encoded/decoded in the client library. # NOTE: Values are automatically base64 encoded/decoded in the client library.
# @return [String] # @return [String]
attr_accessor :etag attr_accessor :etag
# Specifies the format of the policy. # Specifies the format of the policy.
# Valid values are 0, 1, and 3. Requests specifying an invalid value will be # Valid values are `0`, `1`, and `3`. Requests that specify an invalid value
# rejected. # are rejected.
# Operations affecting conditional bindings must specify version 3. This can # Any operation that affects conditional role bindings must specify version
# be either setting a conditional policy, modifying a conditional binding, # `3`. This requirement applies to the following operations:
# or removing a conditional binding from the stored conditional policy. # * Getting a policy that includes a conditional role binding
# Operations on non-conditional policies may specify any valid value or # * Adding a conditional role binding to a policy
# leave the field unset. # * Changing a conditional role binding in a policy
# If no etag is provided in the call to `setIamPolicy`, any version # * Removing any role binding, with or without a condition, from a policy
# compliance checks on the incoming and/or stored policy is skipped. # that includes conditions
# **Important:** If you use IAM Conditions, you must include the `etag` field
# whenever you call `setIamPolicy`. If you omit this field, then IAM allows
# you to overwrite a version `3` policy with a version `1` policy, and all of
# the conditions in the version `3` policy are lost.
# If a policy does not include any conditions, operations on that policy may
# specify any valid version or leave the field unset.
# Corresponds to the JSON property `version` # Corresponds to the JSON property `version`
# @return [Fixnum] # @return [Fixnum]
attr_accessor :version attr_accessor :version
@ -447,20 +613,35 @@ module Google
end end
end end
# The request sent to ResetIdentityAwareProxyClientSecret.
class ResetIdentityAwareProxyClientSecretRequest
include Google::Apis::Core::Hashable
def initialize(**args)
update!(**args)
end
# Update properties of this object
def update!(**args)
end
end
# Request message for `SetIamPolicy` method. # Request message for `SetIamPolicy` method.
class SetIamPolicyRequest class SetIamPolicyRequest
include Google::Apis::Core::Hashable include Google::Apis::Core::Hashable
# Defines an Identity and Access Management (IAM) policy. It is used to # An Identity and Access Management (IAM) policy, which specifies access
# specify access control policies for Cloud Platform resources. # controls for Google Cloud resources.
# A `Policy` is a collection of `bindings`. A `binding` binds one or more # A `Policy` is a collection of `bindings`. A `binding` binds one or more
# `members` to a single `role`. Members can be user accounts, service accounts, # `members` to a single `role`. Members can be user accounts, service accounts,
# Google groups, and domains (such as G Suite). A `role` is a named list of # Google groups, and domains (such as G Suite). A `role` is a named list of
# permissions (defined by IAM or configured by users). A `binding` can # permissions; each `role` can be an IAM predefined role or a user-created
# optionally specify a `condition`, which is a logic expression that further # custom role.
# constrains the role binding based on attributes about the request and/or # Optionally, a `binding` can specify a `condition`, which is a logical
# target resource. # expression that allows access to a resource only if the expression evaluates
# **JSON Example** # to `true`. A condition can add constraints based on attributes of the
# request, the resource, or both.
# **JSON example:**
# ` # `
# "bindings": [ # "bindings": [
# ` # `
@ -478,13 +659,15 @@ module Google
# "condition": ` # "condition": `
# "title": "expirable access", # "title": "expirable access",
# "description": "Does not grant access after Sep 2020", # "description": "Does not grant access after Sep 2020",
# "expression": "request.time < # "expression": "request.time < timestamp('2020-10-01T00:00:00.000Z')
# timestamp('2020-10-01T00:00:00.000Z')", # ",
# ` # `
# ` # `
# ] # ],
# "etag": "BwWWja0YfJA=",
# "version": 3
# ` # `
# **YAML Example** # **YAML example:**
# bindings: # bindings:
# - members: # - members:
# - user:mike@example.com # - user:mike@example.com
@ -499,8 +682,10 @@ module Google
# title: expirable access # title: expirable access
# description: Does not grant access after Sep 2020 # description: Does not grant access after Sep 2020
# expression: request.time < timestamp('2020-10-01T00:00:00.000Z') # expression: request.time < timestamp('2020-10-01T00:00:00.000Z')
# - etag: BwWWja0YfJA=
# - version: 3
# For a description of IAM and its features, see the # For a description of IAM and its features, see the
# [IAM developer's guide](https://cloud.google.com/iam/docs). # [IAM documentation](https://cloud.google.com/iam/docs/).
# Corresponds to the JSON property `policy` # Corresponds to the JSON property `policy`
# @return [Google::Apis::IapV1::Policy] # @return [Google::Apis::IapV1::Policy]
attr_accessor :policy attr_accessor :policy

View File

@ -40,6 +40,12 @@ module Google
include Google::Apis::Core::JsonObjectSupport include Google::Apis::Core::JsonObjectSupport
end end
class Brand
class Representation < Google::Apis::Core::JsonRepresentation; end
include Google::Apis::Core::JsonObjectSupport
end
class CorsSettings class CorsSettings
class Representation < Google::Apis::Core::JsonRepresentation; end class Representation < Google::Apis::Core::JsonRepresentation; end
@ -52,6 +58,12 @@ module Google
include Google::Apis::Core::JsonObjectSupport include Google::Apis::Core::JsonObjectSupport
end end
class Empty
class Representation < Google::Apis::Core::JsonRepresentation; end
include Google::Apis::Core::JsonObjectSupport
end
class Expr class Expr
class Representation < Google::Apis::Core::JsonRepresentation; end class Representation < Google::Apis::Core::JsonRepresentation; end
@ -82,6 +94,24 @@ module Google
include Google::Apis::Core::JsonObjectSupport include Google::Apis::Core::JsonObjectSupport
end end
class IdentityAwareProxyClient
class Representation < Google::Apis::Core::JsonRepresentation; end
include Google::Apis::Core::JsonObjectSupport
end
class ListBrandsResponse
class Representation < Google::Apis::Core::JsonRepresentation; end
include Google::Apis::Core::JsonObjectSupport
end
class ListIdentityAwareProxyClientsResponse
class Representation < Google::Apis::Core::JsonRepresentation; end
include Google::Apis::Core::JsonObjectSupport
end
class OAuthSettings class OAuthSettings
class Representation < Google::Apis::Core::JsonRepresentation; end class Representation < Google::Apis::Core::JsonRepresentation; end
@ -94,6 +124,12 @@ module Google
include Google::Apis::Core::JsonObjectSupport include Google::Apis::Core::JsonObjectSupport
end end
class ResetIdentityAwareProxyClientSecretRequest
class Representation < Google::Apis::Core::JsonRepresentation; end
include Google::Apis::Core::JsonObjectSupport
end
class SetIamPolicyRequest class SetIamPolicyRequest
class Representation < Google::Apis::Core::JsonRepresentation; end class Representation < Google::Apis::Core::JsonRepresentation; end
@ -142,6 +178,16 @@ module Google
end end
end end
class Brand
# @private
class Representation < Google::Apis::Core::JsonRepresentation
property :application_title, as: 'applicationTitle'
property :name, as: 'name'
property :org_internal_only, as: 'orgInternalOnly'
property :support_email, as: 'supportEmail'
end
end
class CorsSettings class CorsSettings
# @private # @private
class Representation < Google::Apis::Core::JsonRepresentation class Representation < Google::Apis::Core::JsonRepresentation
@ -156,6 +202,12 @@ module Google
end end
end end
class Empty
# @private
class Representation < Google::Apis::Core::JsonRepresentation
end
end
class Expr class Expr
# @private # @private
class Representation < Google::Apis::Core::JsonRepresentation class Representation < Google::Apis::Core::JsonRepresentation
@ -200,6 +252,32 @@ module Google
end end
end end
class IdentityAwareProxyClient
# @private
class Representation < Google::Apis::Core::JsonRepresentation
property :display_name, as: 'displayName'
property :name, as: 'name'
property :secret, as: 'secret'
end
end
class ListBrandsResponse
# @private
class Representation < Google::Apis::Core::JsonRepresentation
collection :brands, as: 'brands', class: Google::Apis::IapV1::Brand, decorator: Google::Apis::IapV1::Brand::Representation
end
end
class ListIdentityAwareProxyClientsResponse
# @private
class Representation < Google::Apis::Core::JsonRepresentation
collection :identity_aware_proxy_clients, as: 'identityAwareProxyClients', class: Google::Apis::IapV1::IdentityAwareProxyClient, decorator: Google::Apis::IapV1::IdentityAwareProxyClient::Representation
property :next_page_token, as: 'nextPageToken'
end
end
class OAuthSettings class OAuthSettings
# @private # @private
class Representation < Google::Apis::Core::JsonRepresentation class Representation < Google::Apis::Core::JsonRepresentation
@ -217,6 +295,12 @@ module Google
end end
end end
class ResetIdentityAwareProxyClientSecretRequest
# @private
class Representation < Google::Apis::Core::JsonRepresentation
end
end
class SetIamPolicyRequest class SetIamPolicyRequest
# @private # @private
class Representation < Google::Apis::Core::JsonRepresentation class Representation < Google::Apis::Core::JsonRepresentation

View File

@ -47,6 +47,298 @@ module Google
@batch_path = 'batch' @batch_path = 'batch'
end end
# Constructs a new OAuth brand for the project if one does not exists.
# The created brand is 'internal only', meaning that OAuth clients created
# under it only accept requests from users who belong to the same GSuites
# account as the project. The brand is created in un-reviewed status.
# NOTE: the 'internal_only' can be manually changed in Pantheon UI.
# Requires that brand does not already exists for the project.
# @param [String] parent
# Required. GCP Project number/id under which the brand is to be created.
# In the following format: projects/`project_number/id`.
# @param [Google::Apis::IapV1::Brand] brand_object
# @param [String] fields
# Selector specifying which fields to include in a partial response.
# @param [String] quota_user
# Available to use for quota purposes for server-side applications. Can be any
# arbitrary string assigned to a user, but should not exceed 40 characters.
# @param [Google::Apis::RequestOptions] options
# Request-specific options
#
# @yield [result, err] Result & error if block supplied
# @yieldparam result [Google::Apis::IapV1::Brand] parsed result object
# @yieldparam err [StandardError] error object if request failed
#
# @return [Google::Apis::IapV1::Brand]
#
# @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
# @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
# @raise [Google::Apis::AuthorizationError] Authorization is required
def create_oauth_project_brand(parent, brand_object = nil, fields: nil, quota_user: nil, options: nil, &block)
command = make_simple_command(:post, 'v1/oauth/{+parent}/brands', options)
command.request_representation = Google::Apis::IapV1::Brand::Representation
command.request_object = brand_object
command.response_representation = Google::Apis::IapV1::Brand::Representation
command.response_class = Google::Apis::IapV1::Brand
command.params['parent'] = parent unless parent.nil?
command.query['fields'] = fields unless fields.nil?
command.query['quotaUser'] = quota_user unless quota_user.nil?
execute_or_queue_command(command, &block)
end
# Retrieves the OAuth brand of the project.
# @param [String] name
# Required. Name of the brand to be fetched.
# In the following format: projects/`project_number/id`/brands/`brand`.
# @param [String] fields
# Selector specifying which fields to include in a partial response.
# @param [String] quota_user
# Available to use for quota purposes for server-side applications. Can be any
# arbitrary string assigned to a user, but should not exceed 40 characters.
# @param [Google::Apis::RequestOptions] options
# Request-specific options
#
# @yield [result, err] Result & error if block supplied
# @yieldparam result [Google::Apis::IapV1::Brand] parsed result object
# @yieldparam err [StandardError] error object if request failed
#
# @return [Google::Apis::IapV1::Brand]
#
# @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
# @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
# @raise [Google::Apis::AuthorizationError] Authorization is required
def get_oauth_project_brand(name, fields: nil, quota_user: nil, options: nil, &block)
command = make_simple_command(:get, 'v1/oauth/{+name}', options)
command.response_representation = Google::Apis::IapV1::Brand::Representation
command.response_class = Google::Apis::IapV1::Brand
command.params['name'] = name unless name.nil?
command.query['fields'] = fields unless fields.nil?
command.query['quotaUser'] = quota_user unless quota_user.nil?
execute_or_queue_command(command, &block)
end
# Lists the existing brands for the project.
# @param [String] parent
# Required. GCP Project number/id.
# In the following format: projects/`project_number/id`.
# @param [String] fields
# Selector specifying which fields to include in a partial response.
# @param [String] quota_user
# Available to use for quota purposes for server-side applications. Can be any
# arbitrary string assigned to a user, but should not exceed 40 characters.
# @param [Google::Apis::RequestOptions] options
# Request-specific options
#
# @yield [result, err] Result & error if block supplied
# @yieldparam result [Google::Apis::IapV1::ListBrandsResponse] parsed result object
# @yieldparam err [StandardError] error object if request failed
#
# @return [Google::Apis::IapV1::ListBrandsResponse]
#
# @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
# @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
# @raise [Google::Apis::AuthorizationError] Authorization is required
def list_oauth_project_brands(parent, fields: nil, quota_user: nil, options: nil, &block)
command = make_simple_command(:get, 'v1/oauth/{+parent}/brands', options)
command.response_representation = Google::Apis::IapV1::ListBrandsResponse::Representation
command.response_class = Google::Apis::IapV1::ListBrandsResponse
command.params['parent'] = parent unless parent.nil?
command.query['fields'] = fields unless fields.nil?
command.query['quotaUser'] = quota_user unless quota_user.nil?
execute_or_queue_command(command, &block)
end
# Creates an Identity Aware Proxy (IAP) OAuth client, the client is owned
# by IAP.
# Requires that the brand for the project exists and that it is set for
# internal only use.
# @param [String] parent
# Required. Path to create the client in.
# In the following format:
# projects/`project_number/id`/brands/`brand`.
# The project must belong to a GSuite account.
# @param [Google::Apis::IapV1::IdentityAwareProxyClient] identity_aware_proxy_client_object
# @param [String] fields
# Selector specifying which fields to include in a partial response.
# @param [String] quota_user
# Available to use for quota purposes for server-side applications. Can be any
# arbitrary string assigned to a user, but should not exceed 40 characters.
# @param [Google::Apis::RequestOptions] options
# Request-specific options
#
# @yield [result, err] Result & error if block supplied
# @yieldparam result [Google::Apis::IapV1::IdentityAwareProxyClient] parsed result object
# @yieldparam err [StandardError] error object if request failed
#
# @return [Google::Apis::IapV1::IdentityAwareProxyClient]
#
# @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
# @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
# @raise [Google::Apis::AuthorizationError] Authorization is required
def create_oauth_project_brand_identity_aware_proxy_client(parent, identity_aware_proxy_client_object = nil, fields: nil, quota_user: nil, options: nil, &block)
command = make_simple_command(:post, 'v1/oauth/{+parent}/identityAwareProxyClients', options)
command.request_representation = Google::Apis::IapV1::IdentityAwareProxyClient::Representation
command.request_object = identity_aware_proxy_client_object
command.response_representation = Google::Apis::IapV1::IdentityAwareProxyClient::Representation
command.response_class = Google::Apis::IapV1::IdentityAwareProxyClient
command.params['parent'] = parent unless parent.nil?
command.query['fields'] = fields unless fields.nil?
command.query['quotaUser'] = quota_user unless quota_user.nil?
execute_or_queue_command(command, &block)
end
# Deletes an Identity Aware Proxy (IAP) OAuth client. Useful if the secret
# was compromised.
# Requires that the client is owned by IAP.
# @param [String] name
# Required. Name of the Identity Aware Proxy client to be deleted.
# In the following format:
# projects/`project_number/id`/brands/`brand`/identityAwareProxyClients/`
# client_id`.
# @param [String] fields
# Selector specifying which fields to include in a partial response.
# @param [String] quota_user
# Available to use for quota purposes for server-side applications. Can be any
# arbitrary string assigned to a user, but should not exceed 40 characters.
# @param [Google::Apis::RequestOptions] options
# Request-specific options
#
# @yield [result, err] Result & error if block supplied
# @yieldparam result [Google::Apis::IapV1::Empty] parsed result object
# @yieldparam err [StandardError] error object if request failed
#
# @return [Google::Apis::IapV1::Empty]
#
# @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
# @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
# @raise [Google::Apis::AuthorizationError] Authorization is required
def delete_oauth_project_brand_identity_aware_proxy_client(name, fields: nil, quota_user: nil, options: nil, &block)
command = make_simple_command(:delete, 'v1/oauth/{+name}', options)
command.response_representation = Google::Apis::IapV1::Empty::Representation
command.response_class = Google::Apis::IapV1::Empty
command.params['name'] = name unless name.nil?
command.query['fields'] = fields unless fields.nil?
command.query['quotaUser'] = quota_user unless quota_user.nil?
execute_or_queue_command(command, &block)
end
# Retrieves an Identity Aware Proxy (IAP) OAuth client.
# Requires that the client is owned by IAP.
# @param [String] name
# Required. Name of the Identity Aware Proxy client to be fetched.
# In the following format:
# projects/`project_number/id`/brands/`brand`/identityAwareProxyClients/`
# client_id`.
# @param [String] fields
# Selector specifying which fields to include in a partial response.
# @param [String] quota_user
# Available to use for quota purposes for server-side applications. Can be any
# arbitrary string assigned to a user, but should not exceed 40 characters.
# @param [Google::Apis::RequestOptions] options
# Request-specific options
#
# @yield [result, err] Result & error if block supplied
# @yieldparam result [Google::Apis::IapV1::IdentityAwareProxyClient] parsed result object
# @yieldparam err [StandardError] error object if request failed
#
# @return [Google::Apis::IapV1::IdentityAwareProxyClient]
#
# @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
# @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
# @raise [Google::Apis::AuthorizationError] Authorization is required
def get_oauth_project_brand_identity_aware_proxy_client(name, fields: nil, quota_user: nil, options: nil, &block)
command = make_simple_command(:get, 'v1/oauth/{+name}', options)
command.response_representation = Google::Apis::IapV1::IdentityAwareProxyClient::Representation
command.response_class = Google::Apis::IapV1::IdentityAwareProxyClient
command.params['name'] = name unless name.nil?
command.query['fields'] = fields unless fields.nil?
command.query['quotaUser'] = quota_user unless quota_user.nil?
execute_or_queue_command(command, &block)
end
# Lists the existing clients for the brand.
# @param [String] parent
# Required. Full brand path.
# In the following format: projects/`project_number/id`/brands/`brand`.
# @param [Fixnum] page_size
# The maximum number of clients to return. The service may return fewer than
# this value.
# If unspecified, at most 100 clients will be returned.
# The maximum value is 1000; values above 1000 will be coerced to 1000.
# @param [String] page_token
# A page token, received from a previous `ListIdentityAwareProxyClients`
# call. Provide this to retrieve the subsequent page.
# When paginating, all other parameters provided to
# `ListIdentityAwareProxyClients` must match the call that provided the page
# token.
# @param [String] fields
# Selector specifying which fields to include in a partial response.
# @param [String] quota_user
# Available to use for quota purposes for server-side applications. Can be any
# arbitrary string assigned to a user, but should not exceed 40 characters.
# @param [Google::Apis::RequestOptions] options
# Request-specific options
#
# @yield [result, err] Result & error if block supplied
# @yieldparam result [Google::Apis::IapV1::ListIdentityAwareProxyClientsResponse] parsed result object
# @yieldparam err [StandardError] error object if request failed
#
# @return [Google::Apis::IapV1::ListIdentityAwareProxyClientsResponse]
#
# @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
# @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
# @raise [Google::Apis::AuthorizationError] Authorization is required
def list_oauth_project_brand_identity_aware_proxy_clients(parent, page_size: nil, page_token: nil, fields: nil, quota_user: nil, options: nil, &block)
command = make_simple_command(:get, 'v1/oauth/{+parent}/identityAwareProxyClients', options)
command.response_representation = Google::Apis::IapV1::ListIdentityAwareProxyClientsResponse::Representation
command.response_class = Google::Apis::IapV1::ListIdentityAwareProxyClientsResponse
command.params['parent'] = parent unless parent.nil?
command.query['pageSize'] = page_size unless page_size.nil?
command.query['pageToken'] = page_token unless page_token.nil?
command.query['fields'] = fields unless fields.nil?
command.query['quotaUser'] = quota_user unless quota_user.nil?
execute_or_queue_command(command, &block)
end
# Resets an Identity Aware Proxy (IAP) OAuth client secret. Useful for
# removing obsolete clients, managing the number of clients in a given
# project, and cleaning up after tests.
# Requires that the client is owned by IAP.
# @param [String] name
# Required. Name of the Identity Aware Proxy client to that will have its
# secret reset. In the following format:
# projects/`project_number/id`/brands/`brand`/identityAwareProxyClients/`
# client_id`.
# @param [Google::Apis::IapV1::ResetIdentityAwareProxyClientSecretRequest] reset_identity_aware_proxy_client_secret_request_object
# @param [String] fields
# Selector specifying which fields to include in a partial response.
# @param [String] quota_user
# Available to use for quota purposes for server-side applications. Can be any
# arbitrary string assigned to a user, but should not exceed 40 characters.
# @param [Google::Apis::RequestOptions] options
# Request-specific options
#
# @yield [result, err] Result & error if block supplied
# @yieldparam result [Google::Apis::IapV1::IdentityAwareProxyClient] parsed result object
# @yieldparam err [StandardError] error object if request failed
#
# @return [Google::Apis::IapV1::IdentityAwareProxyClient]
#
# @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
# @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
# @raise [Google::Apis::AuthorizationError] Authorization is required
def reset_oauth_project_brand_identity_aware_proxy_client_secret(name, reset_identity_aware_proxy_client_secret_request_object = nil, fields: nil, quota_user: nil, options: nil, &block)
command = make_simple_command(:post, 'v1/oauth/{+name}:resetSecret', options)
command.request_representation = Google::Apis::IapV1::ResetIdentityAwareProxyClientSecretRequest::Representation
command.request_object = reset_identity_aware_proxy_client_secret_request_object
command.response_representation = Google::Apis::IapV1::IdentityAwareProxyClient::Representation
command.response_class = Google::Apis::IapV1::IdentityAwareProxyClient
command.params['name'] = name unless name.nil?
command.query['fields'] = fields unless fields.nil?
command.query['quotaUser'] = quota_user unless quota_user.nil?
execute_or_queue_command(command, &block)
end
# Gets the access control policy for an Identity-Aware Proxy protected # Gets the access control policy for an Identity-Aware Proxy protected
# resource. # resource.
# More information about managing access via IAP can be found at: # More information about managing access via IAP can be found at:

View File

@ -25,7 +25,7 @@ module Google
# @see https://cloud.google.com/service-consumer-management/docs/overview # @see https://cloud.google.com/service-consumer-management/docs/overview
module ServiceconsumermanagementV1 module ServiceconsumermanagementV1
VERSION = 'V1' VERSION = 'V1'
REVISION = '20191206' REVISION = '20191210'
# View and manage your data across Google Cloud Platform services # View and manage your data across Google Cloud Platform services
AUTH_CLOUD_PLATFORM = 'https://www.googleapis.com/auth/cloud-platform' AUTH_CLOUD_PLATFORM = 'https://www.googleapis.com/auth/cloud-platform'

View File

@ -3979,6 +3979,40 @@ module Google
end end
end end
# A default identity in the Identity and Access Management API.
class V1DefaultIdentity
include Google::Apis::Core::Hashable
# The email address of the default identity.
# Corresponds to the JSON property `email`
# @return [String]
attr_accessor :email
# Default identity resource name.
# An example name would be:
# `services/serviceconsumermanagement.googleapis.com/projects/123/
# defaultIdentity`
# Corresponds to the JSON property `name`
# @return [String]
attr_accessor :name
# The unique and stable id of the default identity.
# Corresponds to the JSON property `uniqueId`
# @return [String]
attr_accessor :unique_id
def initialize(**args)
update!(**args)
end
# Update properties of this object
def update!(**args)
@email = args[:email] if args.key?(:email)
@name = args[:name] if args.key?(:name)
@unique_id = args[:unique_id] if args.key?(:unique_id)
end
end
# Response message for the `DisableConsumer` method. # Response message for the `DisableConsumer` method.
# This response message is assigned to the `response` field of the returned # This response message is assigned to the `response` field of the returned
# Operation when that operation is done. # Operation when that operation is done.
@ -4009,6 +4043,41 @@ module Google
end end
end end
# Response message for the `GenerateDefaultIdentity` method.
# This response message is assigned to the `response` field of the returned
# Operation when that operation is done.
class V1GenerateDefaultIdentityResponse
include Google::Apis::Core::Hashable
# Status of the role attachment. Under development (go/si-attach-role),
# currently always return ATTACH_STATUS_UNSPECIFIED)
# Corresponds to the JSON property `attachStatus`
# @return [String]
attr_accessor :attach_status
# A default identity in the Identity and Access Management API.
# Corresponds to the JSON property `identity`
# @return [Google::Apis::ServiceconsumermanagementV1::V1DefaultIdentity]
attr_accessor :identity
# Role attached to consumer project. Empty if not attached in this
# request. (Under development, currently always return empty.)
# Corresponds to the JSON property `role`
# @return [String]
attr_accessor :role
def initialize(**args)
update!(**args)
end
# Update properties of this object
def update!(**args)
@attach_status = args[:attach_status] if args.key?(:attach_status)
@identity = args[:identity] if args.key?(:identity)
@role = args[:role] if args.key?(:role)
end
end
# Response message for the `GenerateServiceAccount` method. # Response message for the `GenerateServiceAccount` method.
# This response message is assigned to the `response` field of the returned # This response message is assigned to the `response` field of the returned
# Operation when that operation is done. # Operation when that operation is done.

View File

@ -496,6 +496,12 @@ module Google
include Google::Apis::Core::JsonObjectSupport include Google::Apis::Core::JsonObjectSupport
end end
class V1DefaultIdentity
class Representation < Google::Apis::Core::JsonRepresentation; end
include Google::Apis::Core::JsonObjectSupport
end
class V1DisableConsumerResponse class V1DisableConsumerResponse
class Representation < Google::Apis::Core::JsonRepresentation; end class Representation < Google::Apis::Core::JsonRepresentation; end
@ -508,6 +514,12 @@ module Google
include Google::Apis::Core::JsonObjectSupport include Google::Apis::Core::JsonObjectSupport
end end
class V1GenerateDefaultIdentityResponse
class Representation < Google::Apis::Core::JsonRepresentation; end
include Google::Apis::Core::JsonObjectSupport
end
class V1GenerateServiceAccountResponse class V1GenerateServiceAccountResponse
class Representation < Google::Apis::Core::JsonRepresentation; end class Representation < Google::Apis::Core::JsonRepresentation; end
@ -1340,6 +1352,15 @@ module Google
end end
end end
class V1DefaultIdentity
# @private
class Representation < Google::Apis::Core::JsonRepresentation
property :email, as: 'email'
property :name, as: 'name'
property :unique_id, as: 'uniqueId'
end
end
class V1DisableConsumerResponse class V1DisableConsumerResponse
# @private # @private
class Representation < Google::Apis::Core::JsonRepresentation class Representation < Google::Apis::Core::JsonRepresentation
@ -1352,6 +1373,16 @@ module Google
end end
end end
class V1GenerateDefaultIdentityResponse
# @private
class Representation < Google::Apis::Core::JsonRepresentation
property :attach_status, as: 'attachStatus'
property :identity, as: 'identity', class: Google::Apis::ServiceconsumermanagementV1::V1DefaultIdentity, decorator: Google::Apis::ServiceconsumermanagementV1::V1DefaultIdentity::Representation
property :role, as: 'role'
end
end
class V1GenerateServiceAccountResponse class V1GenerateServiceAccountResponse
# @private # @private
class Representation < Google::Apis::Core::JsonRepresentation class Representation < Google::Apis::Core::JsonRepresentation