feat: Automated regeneration of cloudasset v1 client (#1804)

This PR was generated using Autosynth. 🌈


<details><summary>Log from Synthtool</summary>

```
2020-12-18 01:51:05,479 synthtool [DEBUG] > Executing /home/kbuilder/.cache/synthtool/google-api-ruby-client/synth.py.
On branch autosynth-cloudasset-v1
nothing to commit, working tree clean
2020-12-18 01:51:05,509 synthtool [DEBUG] > Running: docker run --rm -v/home/kbuilder/.cache/synthtool/google-api-ruby-client:/workspace -v/var/run/docker.sock:/var/run/docker.sock -w /workspace --entrypoint script/synth.rb gcr.io/cloud-devrel-kokoro-resources/yoshi-ruby/autosynth cloudasset v1
DEBUG:synthtool:Running: docker run --rm -v/home/kbuilder/.cache/synthtool/google-api-ruby-client:/workspace -v/var/run/docker.sock:/var/run/docker.sock -w /workspace --entrypoint script/synth.rb gcr.io/cloud-devrel-kokoro-resources/yoshi-ruby/autosynth cloudasset v1
bundle install
Don't run Bundler as root. Bundler can ask for sudo if it is needed, and
installing your bundle as root will break this application for all non-root
users on this machine.
The dependency jruby-openssl (>= 0) will be unused by any of the platforms Bundler is installing for. Bundler is installing for ruby but the dependency is only for java. To add those platforms to the bundle, run `bundle lock --add-platform java`.
Fetching gem metadata from https://rubygems.org/.........
Fetching gem metadata from https://rubygems.org/.
Resolving dependencies...
Fetching rake 11.3.0
Installing rake 11.3.0
Fetching concurrent-ruby 1.1.7
Installing concurrent-ruby 1.1.7
Fetching i18n 1.8.5
Installing i18n 1.8.5
Fetching minitest 5.14.2
Installing minitest 5.14.2
Fetching thread_safe 0.3.6
Installing thread_safe 0.3.6
Fetching tzinfo 1.2.9
Installing tzinfo 1.2.9
Fetching activesupport 5.0.7.2
Installing activesupport 5.0.7.2
Fetching public_suffix 4.0.6
Installing public_suffix 4.0.6
Fetching addressable 2.7.0
Installing addressable 2.7.0
Fetching ast 2.4.1
Installing ast 2.4.1
Using bundler 2.1.4
Fetching byebug 11.1.3
Installing byebug 11.1.3 with native extensions
Fetching coderay 1.1.3
Installing coderay 1.1.3
Fetching json 2.4.1
Installing json 2.4.1 with native extensions
Fetching docile 1.3.2
Installing docile 1.3.2
Fetching simplecov-html 0.10.2
Installing simplecov-html 0.10.2
Fetching simplecov 0.16.1
Installing simplecov 0.16.1
Using sync 0.5.0
Fetching tins 1.26.0
Installing tins 1.26.0
Fetching term-ansicolor 1.7.1
Installing term-ansicolor 1.7.1
Fetching thor 0.20.3
Installing thor 0.20.3
Fetching coveralls 0.8.23
Installing coveralls 0.8.23
Fetching crack 0.4.4
Installing crack 0.4.4
Fetching declarative 0.0.20
Installing declarative 0.0.20
Fetching declarative-option 0.1.0
Installing declarative-option 0.1.0
Fetching diff-lcs 1.4.4
Installing diff-lcs 1.4.4
Fetching dotenv 2.7.6
Installing dotenv 2.7.6
Fetching fakefs 0.20.1
Installing fakefs 0.20.1
Fetching multipart-post 2.1.1
Installing multipart-post 2.1.1
Fetching ruby2_keywords 0.0.2
Installing ruby2_keywords 0.0.2
Fetching faraday 1.1.0
Installing faraday 1.1.0
Fetching gems 1.2.0
Installing gems 1.2.0
Fetching github-markup 1.7.0
Installing github-markup 1.7.0
Fetching jwt 2.2.2
Installing jwt 2.2.2
Fetching memoist 0.16.2
Installing memoist 0.16.2
Fetching multi_json 1.15.0
Installing multi_json 1.15.0
Fetching os 0.9.6
Installing os 0.9.6
Fetching signet 0.14.0
Installing signet 0.14.0
Fetching googleauth 0.14.0
Installing googleauth 0.14.0
Fetching httpclient 2.8.3
Installing httpclient 2.8.3
Fetching mini_mime 1.0.2
Installing mini_mime 1.0.2
Fetching uber 0.1.0
Installing uber 0.1.0
Fetching representable 3.0.4
Installing representable 3.0.4
Fetching retriable 3.1.2
Installing retriable 3.1.2
Fetching rexml 3.2.4
Installing rexml 3.2.4
Using google-api-client 0.52.0 from source at `.`
Fetching google-id-token 1.4.2
Installing google-id-token 1.4.2
Fetching hashdiff 1.0.1
Installing hashdiff 1.0.1
Fetching mime-types-data 3.2020.1104
Installing mime-types-data 3.2020.1104
Fetching mime-types 3.3.1
Installing mime-types 3.3.1
Fetching multi_xml 0.6.0
Installing multi_xml 0.6.0
Fetching httparty 0.18.1
Installing httparty 0.18.1
Fetching rspec-support 3.10.0
Installing rspec-support 3.10.0
Fetching rspec-core 3.10.0
Installing rspec-core 3.10.0
Fetching rspec-expectations 3.10.0
Installing rspec-expectations 3.10.0
Fetching rspec-mocks 3.10.0
Installing rspec-mocks 3.10.0
Fetching rspec 3.10.0
Installing rspec 3.10.0
Fetching json_spec 1.1.5
Installing json_spec 1.1.5
Fetching launchy 2.5.0
Installing launchy 2.5.0
Fetching little-plugger 1.1.4
Installing little-plugger 1.1.4
Fetching logging 2.3.0
Installing logging 2.3.0
Fetching method_source 1.0.0
Installing method_source 1.0.0
Fetching opencensus 0.5.0
Installing opencensus 0.5.0
Fetching parallel 1.20.1
Installing parallel 1.20.1
Fetching parser 2.7.2.0
Installing parser 2.7.2.0
Fetching powerpack 0.1.3
Installing powerpack 0.1.3
Fetching pry 0.13.1
Installing pry 0.13.1
Fetching pry-byebug 3.9.0
Installing pry-byebug 3.9.0
Fetching yard 0.9.25
Installing yard 0.9.25
Fetching pry-doc 0.13.5
Installing pry-doc 0.13.5
Fetching rainbow 2.2.2
Installing rainbow 2.2.2 with native extensions
Fetching redcarpet 3.5.1
Installing redcarpet 3.5.1 with native extensions
Fetching redis 3.3.5
Installing redis 3.3.5
Fetching rmail 1.1.4
Installing rmail 1.1.4
Fetching ruby-progressbar 1.10.1
Installing ruby-progressbar 1.10.1
Fetching unicode-display_width 1.7.0
Installing unicode-display_width 1.7.0
Fetching rubocop 0.49.1
Installing rubocop 0.49.1
Fetching webmock 2.3.2
Installing webmock 2.3.2
Bundle complete! 31 Gemfile dependencies, 78 gems now installed.
Use `bundle info [gemname]` to see where a bundled gem is installed.
Post-install message from i18n:

HEADS UP! i18n 1.1 changed fallbacks to exclude default locale.
But that may break your application.

If you are upgrading your Rails application from an older version of Rails:

Please check your Rails app for 'config.i18n.fallbacks = true'.
If you're using I18n (>= 1.1.0) and Rails (< 5.2.2), this should be
'config.i18n.fallbacks = [I18n.default_locale]'.
If not, fallbacks will be broken in your app by I18n 1.1.x.

If you are starting a NEW Rails application, you can ignore this notice.

For more info see:
https://github.com/svenfuchs/i18n/releases/tag/v1.1.0

Post-install message from httparty:
When you HTTParty, you must party hard!
echo a | bundle exec bin/generate-api gen generated --api=cloudasset.v1 --names-out=/workspace/api_names_out.yaml
Loading cloudasset, version v1 from https://raw.githubusercontent.com/googleapis/discovery-artifact-manager/master/discoveries/cloudasset.v1.json
W, [2020-12-18T09:51:26.826914 #240]  WARN -- : Found reserved property 'method'
W, [2020-12-18T09:51:26.826978 #240]  WARN -- : Changed to 'method_prop'
    conflict  google/apis/cloudasset_v1.rb
<s/cloudasset_v1.rb? (enter "h" for help) [Ynaqdhm] a
       force  google/apis/cloudasset_v1.rb
   identical  google/apis/cloudasset_v1/service.rb
    conflict  google/apis/cloudasset_v1/classes.rb
       force  google/apis/cloudasset_v1/classes.rb
    conflict  google/apis/cloudasset_v1/representations.rb
       force  google/apis/cloudasset_v1/representations.rb
    conflict  /workspace/api_names_out.yaml
       force  /workspace/api_names_out.yaml
2020-12-18 01:51:30,881 synthtool [DEBUG] > Wrote metadata to generated/google/apis/cloudasset_v1/synth.metadata.
DEBUG:synthtool:Wrote metadata to generated/google/apis/cloudasset_v1/synth.metadata.

```
</details>

Full log will be available here:
https://source.cloud.google.com/results/invocations/bfba791c-49aa-4881-a8c1-062890b5fd09/targets

- [ ] To automatically regenerate this PR, check this box.
This commit is contained in:
Yoshi Automation Bot 2020-12-18 02:04:02 -08:00 committed by GitHub
parent e023fd6f01
commit 4fec8552da
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
5 changed files with 507 additions and 2 deletions

View File

@ -21402,6 +21402,10 @@
"/cloudasset:v1/GoogleIdentityAccesscontextmanagerV1AccessPolicy/name": name "/cloudasset:v1/GoogleIdentityAccesscontextmanagerV1AccessPolicy/name": name
"/cloudasset:v1/GoogleIdentityAccesscontextmanagerV1AccessPolicy/parent": parent "/cloudasset:v1/GoogleIdentityAccesscontextmanagerV1AccessPolicy/parent": parent
"/cloudasset:v1/GoogleIdentityAccesscontextmanagerV1AccessPolicy/title": title "/cloudasset:v1/GoogleIdentityAccesscontextmanagerV1AccessPolicy/title": title
"/cloudasset:v1/GoogleIdentityAccesscontextmanagerV1ApiOperation": google_identity_accesscontextmanager_v1_api_operation
"/cloudasset:v1/GoogleIdentityAccesscontextmanagerV1ApiOperation/methodSelectors": method_selectors
"/cloudasset:v1/GoogleIdentityAccesscontextmanagerV1ApiOperation/methodSelectors/method_selector": method_selector
"/cloudasset:v1/GoogleIdentityAccesscontextmanagerV1ApiOperation/serviceName": service_name
"/cloudasset:v1/GoogleIdentityAccesscontextmanagerV1BasicLevel": google_identity_accesscontextmanager_v1_basic_level "/cloudasset:v1/GoogleIdentityAccesscontextmanagerV1BasicLevel": google_identity_accesscontextmanager_v1_basic_level
"/cloudasset:v1/GoogleIdentityAccesscontextmanagerV1BasicLevel/combiningFunction": combining_function "/cloudasset:v1/GoogleIdentityAccesscontextmanagerV1BasicLevel/combiningFunction": combining_function
"/cloudasset:v1/GoogleIdentityAccesscontextmanagerV1BasicLevel/conditions": conditions "/cloudasset:v1/GoogleIdentityAccesscontextmanagerV1BasicLevel/conditions": conditions
@ -21429,6 +21433,38 @@
"/cloudasset:v1/GoogleIdentityAccesscontextmanagerV1DevicePolicy/requireAdminApproval": require_admin_approval "/cloudasset:v1/GoogleIdentityAccesscontextmanagerV1DevicePolicy/requireAdminApproval": require_admin_approval
"/cloudasset:v1/GoogleIdentityAccesscontextmanagerV1DevicePolicy/requireCorpOwned": require_corp_owned "/cloudasset:v1/GoogleIdentityAccesscontextmanagerV1DevicePolicy/requireCorpOwned": require_corp_owned
"/cloudasset:v1/GoogleIdentityAccesscontextmanagerV1DevicePolicy/requireScreenlock": require_screenlock "/cloudasset:v1/GoogleIdentityAccesscontextmanagerV1DevicePolicy/requireScreenlock": require_screenlock
"/cloudasset:v1/GoogleIdentityAccesscontextmanagerV1EgressFrom": google_identity_accesscontextmanager_v1_egress_from
"/cloudasset:v1/GoogleIdentityAccesscontextmanagerV1EgressFrom/identities": identities
"/cloudasset:v1/GoogleIdentityAccesscontextmanagerV1EgressFrom/identities/identity": identity
"/cloudasset:v1/GoogleIdentityAccesscontextmanagerV1EgressFrom/identityType": identity_type
"/cloudasset:v1/GoogleIdentityAccesscontextmanagerV1EgressPolicy": google_identity_accesscontextmanager_v1_egress_policy
"/cloudasset:v1/GoogleIdentityAccesscontextmanagerV1EgressPolicy/egressFrom": egress_from
"/cloudasset:v1/GoogleIdentityAccesscontextmanagerV1EgressPolicy/egressTo": egress_to
"/cloudasset:v1/GoogleIdentityAccesscontextmanagerV1EgressTo": google_identity_accesscontextmanager_v1_egress_to
"/cloudasset:v1/GoogleIdentityAccesscontextmanagerV1EgressTo/operations": operations
"/cloudasset:v1/GoogleIdentityAccesscontextmanagerV1EgressTo/operations/operation": operation
"/cloudasset:v1/GoogleIdentityAccesscontextmanagerV1EgressTo/resources": resources
"/cloudasset:v1/GoogleIdentityAccesscontextmanagerV1EgressTo/resources/resource": resource
"/cloudasset:v1/GoogleIdentityAccesscontextmanagerV1IngressFrom": google_identity_accesscontextmanager_v1_ingress_from
"/cloudasset:v1/GoogleIdentityAccesscontextmanagerV1IngressFrom/identities": identities
"/cloudasset:v1/GoogleIdentityAccesscontextmanagerV1IngressFrom/identities/identity": identity
"/cloudasset:v1/GoogleIdentityAccesscontextmanagerV1IngressFrom/identityType": identity_type
"/cloudasset:v1/GoogleIdentityAccesscontextmanagerV1IngressFrom/sources": sources
"/cloudasset:v1/GoogleIdentityAccesscontextmanagerV1IngressFrom/sources/source": source
"/cloudasset:v1/GoogleIdentityAccesscontextmanagerV1IngressPolicy": google_identity_accesscontextmanager_v1_ingress_policy
"/cloudasset:v1/GoogleIdentityAccesscontextmanagerV1IngressPolicy/ingressFrom": ingress_from
"/cloudasset:v1/GoogleIdentityAccesscontextmanagerV1IngressPolicy/ingressTo": ingress_to
"/cloudasset:v1/GoogleIdentityAccesscontextmanagerV1IngressSource": google_identity_accesscontextmanager_v1_ingress_source
"/cloudasset:v1/GoogleIdentityAccesscontextmanagerV1IngressSource/accessLevel": access_level
"/cloudasset:v1/GoogleIdentityAccesscontextmanagerV1IngressSource/resource": resource
"/cloudasset:v1/GoogleIdentityAccesscontextmanagerV1IngressTo": google_identity_accesscontextmanager_v1_ingress_to
"/cloudasset:v1/GoogleIdentityAccesscontextmanagerV1IngressTo/operations": operations
"/cloudasset:v1/GoogleIdentityAccesscontextmanagerV1IngressTo/operations/operation": operation
"/cloudasset:v1/GoogleIdentityAccesscontextmanagerV1IngressTo/resources": resources
"/cloudasset:v1/GoogleIdentityAccesscontextmanagerV1IngressTo/resources/resource": resource
"/cloudasset:v1/GoogleIdentityAccesscontextmanagerV1MethodSelector": google_identity_accesscontextmanager_v1_method_selector
"/cloudasset:v1/GoogleIdentityAccesscontextmanagerV1MethodSelector/method": method_prop
"/cloudasset:v1/GoogleIdentityAccesscontextmanagerV1MethodSelector/permission": permission
"/cloudasset:v1/GoogleIdentityAccesscontextmanagerV1OsConstraint": google_identity_accesscontextmanager_v1_os_constraint "/cloudasset:v1/GoogleIdentityAccesscontextmanagerV1OsConstraint": google_identity_accesscontextmanager_v1_os_constraint
"/cloudasset:v1/GoogleIdentityAccesscontextmanagerV1OsConstraint/minimumVersion": minimum_version "/cloudasset:v1/GoogleIdentityAccesscontextmanagerV1OsConstraint/minimumVersion": minimum_version
"/cloudasset:v1/GoogleIdentityAccesscontextmanagerV1OsConstraint/osType": os_type "/cloudasset:v1/GoogleIdentityAccesscontextmanagerV1OsConstraint/osType": os_type
@ -21444,6 +21480,10 @@
"/cloudasset:v1/GoogleIdentityAccesscontextmanagerV1ServicePerimeterConfig": google_identity_accesscontextmanager_v1_service_perimeter_config "/cloudasset:v1/GoogleIdentityAccesscontextmanagerV1ServicePerimeterConfig": google_identity_accesscontextmanager_v1_service_perimeter_config
"/cloudasset:v1/GoogleIdentityAccesscontextmanagerV1ServicePerimeterConfig/accessLevels": access_levels "/cloudasset:v1/GoogleIdentityAccesscontextmanagerV1ServicePerimeterConfig/accessLevels": access_levels
"/cloudasset:v1/GoogleIdentityAccesscontextmanagerV1ServicePerimeterConfig/accessLevels/access_level": access_level "/cloudasset:v1/GoogleIdentityAccesscontextmanagerV1ServicePerimeterConfig/accessLevels/access_level": access_level
"/cloudasset:v1/GoogleIdentityAccesscontextmanagerV1ServicePerimeterConfig/egressPolicies": egress_policies
"/cloudasset:v1/GoogleIdentityAccesscontextmanagerV1ServicePerimeterConfig/egressPolicies/egress_policy": egress_policy
"/cloudasset:v1/GoogleIdentityAccesscontextmanagerV1ServicePerimeterConfig/ingressPolicies": ingress_policies
"/cloudasset:v1/GoogleIdentityAccesscontextmanagerV1ServicePerimeterConfig/ingressPolicies/ingress_policy": ingress_policy
"/cloudasset:v1/GoogleIdentityAccesscontextmanagerV1ServicePerimeterConfig/resources": resources "/cloudasset:v1/GoogleIdentityAccesscontextmanagerV1ServicePerimeterConfig/resources": resources
"/cloudasset:v1/GoogleIdentityAccesscontextmanagerV1ServicePerimeterConfig/resources/resource": resource "/cloudasset:v1/GoogleIdentityAccesscontextmanagerV1ServicePerimeterConfig/resources/resource": resource
"/cloudasset:v1/GoogleIdentityAccesscontextmanagerV1ServicePerimeterConfig/restrictedServices": restricted_services "/cloudasset:v1/GoogleIdentityAccesscontextmanagerV1ServicePerimeterConfig/restrictedServices": restricted_services

View File

@ -25,7 +25,7 @@ module Google
# @see https://cloud.google.com/asset-inventory/docs/quickstart # @see https://cloud.google.com/asset-inventory/docs/quickstart
module CloudassetV1 module CloudassetV1
VERSION = 'V1' VERSION = 'V1'
REVISION = '20201204' REVISION = '20201211'
# View and manage your data across Google Cloud Platform services # View and manage your data across Google Cloud Platform services
AUTH_CLOUD_PLATFORM = 'https://www.googleapis.com/auth/cloud-platform' AUTH_CLOUD_PLATFORM = 'https://www.googleapis.com/auth/cloud-platform'

View File

@ -1433,6 +1433,36 @@ module Google
end end
end end
# Identification for an API Operation.
class GoogleIdentityAccesscontextmanagerV1ApiOperation
include Google::Apis::Core::Hashable
# API methods or permissions to allow. Method or permission must belong to the
# service specified by `service_name` field. A single MethodSelector entry with `
# *` specified for the `method` field will allow all methods AND permissions for
# the service specified in `service_name`.
# Corresponds to the JSON property `methodSelectors`
# @return [Array<Google::Apis::CloudassetV1::GoogleIdentityAccesscontextmanagerV1MethodSelector>]
attr_accessor :method_selectors
# The name of the API whose methods or permissions the IngressPolicy or
# EgressPolicy want to allow. A single ApiOperation with `service_name` field
# set to `*` will allow all methods AND permissions for all services.
# Corresponds to the JSON property `serviceName`
# @return [String]
attr_accessor :service_name
def initialize(**args)
update!(**args)
end
# Update properties of this object
def update!(**args)
@method_selectors = args[:method_selectors] if args.key?(:method_selectors)
@service_name = args[:service_name] if args.key?(:service_name)
end
end
# `BasicLevel` is an `AccessLevel` using a set of recommended features. # `BasicLevel` is an `AccessLevel` using a set of recommended features.
class GoogleIdentityAccesscontextmanagerV1BasicLevel class GoogleIdentityAccesscontextmanagerV1BasicLevel
include Google::Apis::Core::Hashable include Google::Apis::Core::Hashable
@ -1632,6 +1662,286 @@ module Google
end end
end end
# Defines the conditions under which an EgressPolicy matches a request.
# Conditions based on information about the source of the request. Note that if
# the destination of the request is protected by a ServicePerimeter, then that
# ServicePerimeter must have an IngressPolicy which allows access in order for
# this request to succeed.
class GoogleIdentityAccesscontextmanagerV1EgressFrom
include Google::Apis::Core::Hashable
# A list of identities that are allowed access through this [EgressPolicy].
# Should be in the format of email address. The email address should represent
# individual user or service account only.
# Corresponds to the JSON property `identities`
# @return [Array<String>]
attr_accessor :identities
# Specifies the type of identities that are allowed access to outside the
# perimeter. If left unspecified, then members of `identities` field will be
# allowed access.
# Corresponds to the JSON property `identityType`
# @return [String]
attr_accessor :identity_type
def initialize(**args)
update!(**args)
end
# Update properties of this object
def update!(**args)
@identities = args[:identities] if args.key?(:identities)
@identity_type = args[:identity_type] if args.key?(:identity_type)
end
end
# Policy for egress from perimeter. EgressPolicies match requests based on `
# egress_from` and `egress_to` stanzas. For an EgressPolicy to match, both `
# egress_from` and `egress_to` stanzas must be matched. If an EgressPolicy
# matches a request, the request is allowed to span the ServicePerimeter
# boundary. For example, an EgressPolicy can be used to allow VMs on networks
# within the ServicePerimeter to access a defined set of projects outside the
# perimeter in certain contexts (e.g. to read data from a Cloud Storage bucket
# or query against a BigQuery dataset). EgressPolicies are concerned with the *
# resources* that a request relates as well as the API services and API actions
# being used. They do not related to the direction of data movement. More
# detailed documentation for this concept can be found in the descriptions of
# EgressFrom and EgressTo.
class GoogleIdentityAccesscontextmanagerV1EgressPolicy
include Google::Apis::Core::Hashable
# Defines the conditions under which an EgressPolicy matches a request.
# Conditions based on information about the source of the request. Note that if
# the destination of the request is protected by a ServicePerimeter, then that
# ServicePerimeter must have an IngressPolicy which allows access in order for
# this request to succeed.
# Corresponds to the JSON property `egressFrom`
# @return [Google::Apis::CloudassetV1::GoogleIdentityAccesscontextmanagerV1EgressFrom]
attr_accessor :egress_from
# Defines the conditions under which an EgressPolicy matches a request.
# Conditions are based on information about the ApiOperation intended to be
# performed on the `resources` specified. Note that if the destination of the
# request is protected by a ServicePerimeter, then that ServicePerimeter must
# have an IngressPolicy which allows access in order for this request to succeed.
# Corresponds to the JSON property `egressTo`
# @return [Google::Apis::CloudassetV1::GoogleIdentityAccesscontextmanagerV1EgressTo]
attr_accessor :egress_to
def initialize(**args)
update!(**args)
end
# Update properties of this object
def update!(**args)
@egress_from = args[:egress_from] if args.key?(:egress_from)
@egress_to = args[:egress_to] if args.key?(:egress_to)
end
end
# Defines the conditions under which an EgressPolicy matches a request.
# Conditions are based on information about the ApiOperation intended to be
# performed on the `resources` specified. Note that if the destination of the
# request is protected by a ServicePerimeter, then that ServicePerimeter must
# have an IngressPolicy which allows access in order for this request to succeed.
class GoogleIdentityAccesscontextmanagerV1EgressTo
include Google::Apis::Core::Hashable
# A list of ApiOperations that this egress rule applies to. A request matches if
# it contains an operation/service in this list.
# Corresponds to the JSON property `operations`
# @return [Array<Google::Apis::CloudassetV1::GoogleIdentityAccesscontextmanagerV1ApiOperation>]
attr_accessor :operations
# A list of resources, currently only projects in the form `projects/`, that
# match this to stanza. A request matches if it contains a resource in this list.
# If `*` is specified for resources, then this EgressTo rule will authorize
# access to all resources outside the perimeter.
# Corresponds to the JSON property `resources`
# @return [Array<String>]
attr_accessor :resources
def initialize(**args)
update!(**args)
end
# Update properties of this object
def update!(**args)
@operations = args[:operations] if args.key?(:operations)
@resources = args[:resources] if args.key?(:resources)
end
end
# Defines the conditions under which an IngressPolicy matches a request.
# Conditions are based on information about the source of the request.
class GoogleIdentityAccesscontextmanagerV1IngressFrom
include Google::Apis::Core::Hashable
# A list of identities that are allowed access through this ingress policy.
# Should be in the format of email address. The email address should represent
# individual user or service account only.
# Corresponds to the JSON property `identities`
# @return [Array<String>]
attr_accessor :identities
# Specifies the type of identities that are allowed access from outside the
# perimeter. If left unspecified, then members of `identities` field will be
# allowed access.
# Corresponds to the JSON property `identityType`
# @return [String]
attr_accessor :identity_type
# Sources that this IngressPolicy authorizes access from.
# Corresponds to the JSON property `sources`
# @return [Array<Google::Apis::CloudassetV1::GoogleIdentityAccesscontextmanagerV1IngressSource>]
attr_accessor :sources
def initialize(**args)
update!(**args)
end
# Update properties of this object
def update!(**args)
@identities = args[:identities] if args.key?(:identities)
@identity_type = args[:identity_type] if args.key?(:identity_type)
@sources = args[:sources] if args.key?(:sources)
end
end
# Policy for ingress into ServicePerimeter. IngressPolicies match requests based
# on `ingress_from` and `ingress_to` stanzas. For an ingress policy to match,
# both the `ingress_from` and `ingress_to` stanzas must be matched. If an
# IngressPolicy matches a request, the request is allowed through the perimeter
# boundary from outside the perimeter. For example, access from the internet can
# be allowed either based on an AccessLevel or, for traffic hosted on Google
# Cloud, the project of the source network. For access from private networks,
# using the project of the hosting network is required. Individual ingress
# policies can be limited by restricting which services and/or actions they
# match using the `ingress_to` field.
class GoogleIdentityAccesscontextmanagerV1IngressPolicy
include Google::Apis::Core::Hashable
# Defines the conditions under which an IngressPolicy matches a request.
# Conditions are based on information about the source of the request.
# Corresponds to the JSON property `ingressFrom`
# @return [Google::Apis::CloudassetV1::GoogleIdentityAccesscontextmanagerV1IngressFrom]
attr_accessor :ingress_from
# Defines the conditions under which an IngressPolicy matches a request.
# Conditions are based on information about the ApiOperation intended to be
# performed on the destination of the request.
# Corresponds to the JSON property `ingressTo`
# @return [Google::Apis::CloudassetV1::GoogleIdentityAccesscontextmanagerV1IngressTo]
attr_accessor :ingress_to
def initialize(**args)
update!(**args)
end
# Update properties of this object
def update!(**args)
@ingress_from = args[:ingress_from] if args.key?(:ingress_from)
@ingress_to = args[:ingress_to] if args.key?(:ingress_to)
end
end
# The source that IngressPolicy authorizes access from.
class GoogleIdentityAccesscontextmanagerV1IngressSource
include Google::Apis::Core::Hashable
# An AccessLevel resource name that allow resources within the ServicePerimeters
# to be accessed from the internet. AccessLevels listed must be in the same
# policy as this ServicePerimeter. Referencing a nonexistent AccessLevel will
# cause an error. If no AccessLevel names are listed, resources within the
# perimeter can only be accessed via Google Cloud calls with request origins
# within the perimeter. Example: `accessPolicies/MY_POLICY/accessLevels/MY_LEVEL`
# . If `*` is specified, then all IngressSources will be allowed.
# Corresponds to the JSON property `accessLevel`
# @return [String]
attr_accessor :access_level
# A Google Cloud resource that is allowed to ingress the perimeter. Requests
# from these resources will be allowed to access perimeter data. Currently only
# projects are allowed. Format: `projects/`project_number`` The project may be
# in any Google Cloud organization, not just the organization that the perimeter
# is defined in. `*` is not allowed, the case of allowing all Google Cloud
# resources only is not supported.
# Corresponds to the JSON property `resource`
# @return [String]
attr_accessor :resource
def initialize(**args)
update!(**args)
end
# Update properties of this object
def update!(**args)
@access_level = args[:access_level] if args.key?(:access_level)
@resource = args[:resource] if args.key?(:resource)
end
end
# Defines the conditions under which an IngressPolicy matches a request.
# Conditions are based on information about the ApiOperation intended to be
# performed on the destination of the request.
class GoogleIdentityAccesscontextmanagerV1IngressTo
include Google::Apis::Core::Hashable
# A list of ApiOperations the sources specified in corresponding IngressFrom are
# allowed to perform in this ServicePerimeter.
# Corresponds to the JSON property `operations`
# @return [Array<Google::Apis::CloudassetV1::GoogleIdentityAccesscontextmanagerV1ApiOperation>]
attr_accessor :operations
# A list of resources, currently only projects in the form `projects/`,
# protected by this ServicePerimeter that are allowed to be accessed by sources
# defined in the corresponding IngressFrom. A request matches if it contains a
# resource in this list. If `*` is specified for resources, then this IngressTo
# rule will authorize access to all resources inside the perimeter, provided
# that the request also matches the `operations` field.
# Corresponds to the JSON property `resources`
# @return [Array<String>]
attr_accessor :resources
def initialize(**args)
update!(**args)
end
# Update properties of this object
def update!(**args)
@operations = args[:operations] if args.key?(:operations)
@resources = args[:resources] if args.key?(:resources)
end
end
# An allowed method or permission of a service specified in ApiOperation.
class GoogleIdentityAccesscontextmanagerV1MethodSelector
include Google::Apis::Core::Hashable
# Value for `method` should be a valid method name for the corresponding `
# service_name` in ApiOperation. If `*` used as value for `method`, then ALL
# methods and permissions are allowed.
# Corresponds to the JSON property `method`
# @return [String]
attr_accessor :method_prop
# Value for `permission` should be a valid Cloud IAM permission for the
# corresponding `service_name` in ApiOperation.
# Corresponds to the JSON property `permission`
# @return [String]
attr_accessor :permission
def initialize(**args)
update!(**args)
end
# Update properties of this object
def update!(**args)
@method_prop = args[:method_prop] if args.key?(:method_prop)
@permission = args[:permission] if args.key?(:permission)
end
end
# A restriction on the OS type and version of devices making requests. # A restriction on the OS type and version of devices making requests.
class GoogleIdentityAccesscontextmanagerV1OsConstraint class GoogleIdentityAccesscontextmanagerV1OsConstraint
include Google::Apis::Core::Hashable include Google::Apis::Core::Hashable
@ -1765,6 +2075,20 @@ module Google
# @return [Array<String>] # @return [Array<String>]
attr_accessor :access_levels attr_accessor :access_levels
# List of EgressPolicies to apply to the perimeter. A perimeter may have
# multiple EgressPolicies, each of which is evaluated separately. Access is
# granted if any EgressPolicy grants it. Must be empty for a perimeter bridge.
# Corresponds to the JSON property `egressPolicies`
# @return [Array<Google::Apis::CloudassetV1::GoogleIdentityAccesscontextmanagerV1EgressPolicy>]
attr_accessor :egress_policies
# List of IngressPolicies to apply to the perimeter. A perimeter may have
# multiple IngressPolicies, each of which is evaluated separately. Access is
# granted if any Ingress Policy grants it. Must be empty for a perimeter bridge.
# Corresponds to the JSON property `ingressPolicies`
# @return [Array<Google::Apis::CloudassetV1::GoogleIdentityAccesscontextmanagerV1IngressPolicy>]
attr_accessor :ingress_policies
# A list of Google Cloud resources that are inside of the service perimeter. # A list of Google Cloud resources that are inside of the service perimeter.
# Currently only projects are allowed. Format: `projects/`project_number`` # Currently only projects are allowed. Format: `projects/`project_number``
# Corresponds to the JSON property `resources` # Corresponds to the JSON property `resources`
@ -1790,6 +2114,8 @@ module Google
# Update properties of this object # Update properties of this object
def update!(**args) def update!(**args)
@access_levels = args[:access_levels] if args.key?(:access_levels) @access_levels = args[:access_levels] if args.key?(:access_levels)
@egress_policies = args[:egress_policies] if args.key?(:egress_policies)
@ingress_policies = args[:ingress_policies] if args.key?(:ingress_policies)
@resources = args[:resources] if args.key?(:resources) @resources = args[:resources] if args.key?(:resources)
@restricted_services = args[:restricted_services] if args.key?(:restricted_services) @restricted_services = args[:restricted_services] if args.key?(:restricted_services)
@vpc_accessible_services = args[:vpc_accessible_services] if args.key?(:vpc_accessible_services) @vpc_accessible_services = args[:vpc_accessible_services] if args.key?(:vpc_accessible_services)

View File

@ -208,6 +208,12 @@ module Google
include Google::Apis::Core::JsonObjectSupport include Google::Apis::Core::JsonObjectSupport
end end
class GoogleIdentityAccesscontextmanagerV1ApiOperation
class Representation < Google::Apis::Core::JsonRepresentation; end
include Google::Apis::Core::JsonObjectSupport
end
class GoogleIdentityAccesscontextmanagerV1BasicLevel class GoogleIdentityAccesscontextmanagerV1BasicLevel
class Representation < Google::Apis::Core::JsonRepresentation; end class Representation < Google::Apis::Core::JsonRepresentation; end
@ -232,6 +238,54 @@ module Google
include Google::Apis::Core::JsonObjectSupport include Google::Apis::Core::JsonObjectSupport
end end
class GoogleIdentityAccesscontextmanagerV1EgressFrom
class Representation < Google::Apis::Core::JsonRepresentation; end
include Google::Apis::Core::JsonObjectSupport
end
class GoogleIdentityAccesscontextmanagerV1EgressPolicy
class Representation < Google::Apis::Core::JsonRepresentation; end
include Google::Apis::Core::JsonObjectSupport
end
class GoogleIdentityAccesscontextmanagerV1EgressTo
class Representation < Google::Apis::Core::JsonRepresentation; end
include Google::Apis::Core::JsonObjectSupport
end
class GoogleIdentityAccesscontextmanagerV1IngressFrom
class Representation < Google::Apis::Core::JsonRepresentation; end
include Google::Apis::Core::JsonObjectSupport
end
class GoogleIdentityAccesscontextmanagerV1IngressPolicy
class Representation < Google::Apis::Core::JsonRepresentation; end
include Google::Apis::Core::JsonObjectSupport
end
class GoogleIdentityAccesscontextmanagerV1IngressSource
class Representation < Google::Apis::Core::JsonRepresentation; end
include Google::Apis::Core::JsonObjectSupport
end
class GoogleIdentityAccesscontextmanagerV1IngressTo
class Representation < Google::Apis::Core::JsonRepresentation; end
include Google::Apis::Core::JsonObjectSupport
end
class GoogleIdentityAccesscontextmanagerV1MethodSelector
class Representation < Google::Apis::Core::JsonRepresentation; end
include Google::Apis::Core::JsonObjectSupport
end
class GoogleIdentityAccesscontextmanagerV1OsConstraint class GoogleIdentityAccesscontextmanagerV1OsConstraint
class Representation < Google::Apis::Core::JsonRepresentation; end class Representation < Google::Apis::Core::JsonRepresentation; end
@ -766,6 +820,15 @@ module Google
end end
end end
class GoogleIdentityAccesscontextmanagerV1ApiOperation
# @private
class Representation < Google::Apis::Core::JsonRepresentation
collection :method_selectors, as: 'methodSelectors', class: Google::Apis::CloudassetV1::GoogleIdentityAccesscontextmanagerV1MethodSelector, decorator: Google::Apis::CloudassetV1::GoogleIdentityAccesscontextmanagerV1MethodSelector::Representation
property :service_name, as: 'serviceName'
end
end
class GoogleIdentityAccesscontextmanagerV1BasicLevel class GoogleIdentityAccesscontextmanagerV1BasicLevel
# @private # @private
class Representation < Google::Apis::Core::JsonRepresentation class Representation < Google::Apis::Core::JsonRepresentation
@ -809,6 +872,78 @@ module Google
end end
end end
class GoogleIdentityAccesscontextmanagerV1EgressFrom
# @private
class Representation < Google::Apis::Core::JsonRepresentation
collection :identities, as: 'identities'
property :identity_type, as: 'identityType'
end
end
class GoogleIdentityAccesscontextmanagerV1EgressPolicy
# @private
class Representation < Google::Apis::Core::JsonRepresentation
property :egress_from, as: 'egressFrom', class: Google::Apis::CloudassetV1::GoogleIdentityAccesscontextmanagerV1EgressFrom, decorator: Google::Apis::CloudassetV1::GoogleIdentityAccesscontextmanagerV1EgressFrom::Representation
property :egress_to, as: 'egressTo', class: Google::Apis::CloudassetV1::GoogleIdentityAccesscontextmanagerV1EgressTo, decorator: Google::Apis::CloudassetV1::GoogleIdentityAccesscontextmanagerV1EgressTo::Representation
end
end
class GoogleIdentityAccesscontextmanagerV1EgressTo
# @private
class Representation < Google::Apis::Core::JsonRepresentation
collection :operations, as: 'operations', class: Google::Apis::CloudassetV1::GoogleIdentityAccesscontextmanagerV1ApiOperation, decorator: Google::Apis::CloudassetV1::GoogleIdentityAccesscontextmanagerV1ApiOperation::Representation
collection :resources, as: 'resources'
end
end
class GoogleIdentityAccesscontextmanagerV1IngressFrom
# @private
class Representation < Google::Apis::Core::JsonRepresentation
collection :identities, as: 'identities'
property :identity_type, as: 'identityType'
collection :sources, as: 'sources', class: Google::Apis::CloudassetV1::GoogleIdentityAccesscontextmanagerV1IngressSource, decorator: Google::Apis::CloudassetV1::GoogleIdentityAccesscontextmanagerV1IngressSource::Representation
end
end
class GoogleIdentityAccesscontextmanagerV1IngressPolicy
# @private
class Representation < Google::Apis::Core::JsonRepresentation
property :ingress_from, as: 'ingressFrom', class: Google::Apis::CloudassetV1::GoogleIdentityAccesscontextmanagerV1IngressFrom, decorator: Google::Apis::CloudassetV1::GoogleIdentityAccesscontextmanagerV1IngressFrom::Representation
property :ingress_to, as: 'ingressTo', class: Google::Apis::CloudassetV1::GoogleIdentityAccesscontextmanagerV1IngressTo, decorator: Google::Apis::CloudassetV1::GoogleIdentityAccesscontextmanagerV1IngressTo::Representation
end
end
class GoogleIdentityAccesscontextmanagerV1IngressSource
# @private
class Representation < Google::Apis::Core::JsonRepresentation
property :access_level, as: 'accessLevel'
property :resource, as: 'resource'
end
end
class GoogleIdentityAccesscontextmanagerV1IngressTo
# @private
class Representation < Google::Apis::Core::JsonRepresentation
collection :operations, as: 'operations', class: Google::Apis::CloudassetV1::GoogleIdentityAccesscontextmanagerV1ApiOperation, decorator: Google::Apis::CloudassetV1::GoogleIdentityAccesscontextmanagerV1ApiOperation::Representation
collection :resources, as: 'resources'
end
end
class GoogleIdentityAccesscontextmanagerV1MethodSelector
# @private
class Representation < Google::Apis::Core::JsonRepresentation
property :method_prop, as: 'method'
property :permission, as: 'permission'
end
end
class GoogleIdentityAccesscontextmanagerV1OsConstraint class GoogleIdentityAccesscontextmanagerV1OsConstraint
# @private # @private
class Representation < Google::Apis::Core::JsonRepresentation class Representation < Google::Apis::Core::JsonRepresentation
@ -837,6 +972,10 @@ module Google
# @private # @private
class Representation < Google::Apis::Core::JsonRepresentation class Representation < Google::Apis::Core::JsonRepresentation
collection :access_levels, as: 'accessLevels' collection :access_levels, as: 'accessLevels'
collection :egress_policies, as: 'egressPolicies', class: Google::Apis::CloudassetV1::GoogleIdentityAccesscontextmanagerV1EgressPolicy, decorator: Google::Apis::CloudassetV1::GoogleIdentityAccesscontextmanagerV1EgressPolicy::Representation
collection :ingress_policies, as: 'ingressPolicies', class: Google::Apis::CloudassetV1::GoogleIdentityAccesscontextmanagerV1IngressPolicy, decorator: Google::Apis::CloudassetV1::GoogleIdentityAccesscontextmanagerV1IngressPolicy::Representation
collection :resources, as: 'resources' collection :resources, as: 'resources'
collection :restricted_services, as: 'restrictedServices' collection :restricted_services, as: 'restrictedServices'
property :vpc_accessible_services, as: 'vpcAccessibleServices', class: Google::Apis::CloudassetV1::GoogleIdentityAccesscontextmanagerV1VpcAccessibleServices, decorator: Google::Apis::CloudassetV1::GoogleIdentityAccesscontextmanagerV1VpcAccessibleServices::Representation property :vpc_accessible_services, as: 'vpcAccessibleServices', class: Google::Apis::CloudassetV1::GoogleIdentityAccesscontextmanagerV1VpcAccessibleServices, decorator: Google::Apis::CloudassetV1::GoogleIdentityAccesscontextmanagerV1VpcAccessibleServices::Representation

View File

@ -4,7 +4,7 @@
"git": { "git": {
"name": ".", "name": ".",
"remote": "https://github.com/googleapis/google-api-ruby-client.git", "remote": "https://github.com/googleapis/google-api-ruby-client.git",
"sha": "85b8de4633912ce1429172d3cc8fe49dbfdd6a81" "sha": "e023fd6f01de7cda74a2820cb217f0b3ad2a65ae"
} }
} }
] ]