diff --git a/api_names_out.yaml b/api_names_out.yaml index 0e89b3d40..a8320b66d 100644 --- a/api_names_out.yaml +++ b/api_names_out.yaml @@ -121642,6 +121642,437 @@ "/prediction:v1.6/prediction.trainedmodels.update/project": project "/prediction:v1.6/quotaUser": quota_user "/prediction:v1.6/userIp": user_ip +"/privateca:v1beta1/AccessUrls": access_urls +"/privateca:v1beta1/AccessUrls/caCertificateAccessUrl": ca_certificate_access_url +"/privateca:v1beta1/AccessUrls/crlAccessUrl": crl_access_url +"/privateca:v1beta1/ActivateCertificateAuthorityRequest": activate_certificate_authority_request +"/privateca:v1beta1/ActivateCertificateAuthorityRequest/pemCaCertificate": pem_ca_certificate +"/privateca:v1beta1/ActivateCertificateAuthorityRequest/requestId": request_id +"/privateca:v1beta1/ActivateCertificateAuthorityRequest/subordinateConfig": subordinate_config +"/privateca:v1beta1/AllowedConfigList": allowed_config_list +"/privateca:v1beta1/AllowedConfigList/allowedConfigValues": allowed_config_values +"/privateca:v1beta1/AllowedConfigList/allowedConfigValues/allowed_config_value": allowed_config_value +"/privateca:v1beta1/AllowedSubjectAltNames": allowed_subject_alt_names +"/privateca:v1beta1/AllowedSubjectAltNames/allowCustomSans": allow_custom_sans +"/privateca:v1beta1/AllowedSubjectAltNames/allowGlobbingDnsWildcards": allow_globbing_dns_wildcards +"/privateca:v1beta1/AllowedSubjectAltNames/allowedDnsNames": allowed_dns_names +"/privateca:v1beta1/AllowedSubjectAltNames/allowedDnsNames/allowed_dns_name": allowed_dns_name +"/privateca:v1beta1/AllowedSubjectAltNames/allowedEmailAddresses": allowed_email_addresses +"/privateca:v1beta1/AllowedSubjectAltNames/allowedEmailAddresses/allowed_email_address": allowed_email_address +"/privateca:v1beta1/AllowedSubjectAltNames/allowedIps": allowed_ips +"/privateca:v1beta1/AllowedSubjectAltNames/allowedIps/allowed_ip": allowed_ip +"/privateca:v1beta1/AllowedSubjectAltNames/allowedUris": allowed_uris +"/privateca:v1beta1/AllowedSubjectAltNames/allowedUris/allowed_uri": allowed_uri +"/privateca:v1beta1/AuditConfig": audit_config +"/privateca:v1beta1/AuditConfig/auditLogConfigs": audit_log_configs +"/privateca:v1beta1/AuditConfig/auditLogConfigs/audit_log_config": audit_log_config +"/privateca:v1beta1/AuditConfig/service": service +"/privateca:v1beta1/AuditLogConfig": audit_log_config +"/privateca:v1beta1/AuditLogConfig/exemptedMembers": exempted_members +"/privateca:v1beta1/AuditLogConfig/exemptedMembers/exempted_member": exempted_member +"/privateca:v1beta1/AuditLogConfig/logType": log_type +"/privateca:v1beta1/Binding": binding +"/privateca:v1beta1/Binding/condition": condition +"/privateca:v1beta1/Binding/members": members +"/privateca:v1beta1/Binding/members/member": member +"/privateca:v1beta1/Binding/role": role +"/privateca:v1beta1/CaOptions": ca_options +"/privateca:v1beta1/CaOptions/isCa": is_ca +"/privateca:v1beta1/CaOptions/maxIssuerPathLength": max_issuer_path_length +"/privateca:v1beta1/CancelOperationRequest": cancel_operation_request +"/privateca:v1beta1/Certificate": certificate +"/privateca:v1beta1/Certificate/certificateDescription": certificate_description +"/privateca:v1beta1/Certificate/config": config +"/privateca:v1beta1/Certificate/createTime": create_time +"/privateca:v1beta1/Certificate/labels": labels +"/privateca:v1beta1/Certificate/labels/label": label +"/privateca:v1beta1/Certificate/lifetime": lifetime +"/privateca:v1beta1/Certificate/name": name +"/privateca:v1beta1/Certificate/pemCertificate": pem_certificate +"/privateca:v1beta1/Certificate/pemCertificateChain": pem_certificate_chain +"/privateca:v1beta1/Certificate/pemCertificateChain/pem_certificate_chain": pem_certificate_chain +"/privateca:v1beta1/Certificate/pemCsr": pem_csr +"/privateca:v1beta1/Certificate/revocationDetails": revocation_details +"/privateca:v1beta1/Certificate/updateTime": update_time +"/privateca:v1beta1/CertificateAuthority": certificate_authority +"/privateca:v1beta1/CertificateAuthority/accessUrls": access_urls +"/privateca:v1beta1/CertificateAuthority/caCertificateDescriptions": ca_certificate_descriptions +"/privateca:v1beta1/CertificateAuthority/caCertificateDescriptions/ca_certificate_description": ca_certificate_description +"/privateca:v1beta1/CertificateAuthority/certificatePolicy": certificate_policy +"/privateca:v1beta1/CertificateAuthority/config": config +"/privateca:v1beta1/CertificateAuthority/createTime": create_time +"/privateca:v1beta1/CertificateAuthority/deleteTime": delete_time +"/privateca:v1beta1/CertificateAuthority/gcsBucket": gcs_bucket +"/privateca:v1beta1/CertificateAuthority/issuingOptions": issuing_options +"/privateca:v1beta1/CertificateAuthority/keySpec": key_spec +"/privateca:v1beta1/CertificateAuthority/labels": labels +"/privateca:v1beta1/CertificateAuthority/labels/label": label +"/privateca:v1beta1/CertificateAuthority/lifetime": lifetime +"/privateca:v1beta1/CertificateAuthority/name": name +"/privateca:v1beta1/CertificateAuthority/pemCaCertificates": pem_ca_certificates +"/privateca:v1beta1/CertificateAuthority/pemCaCertificates/pem_ca_certificate": pem_ca_certificate +"/privateca:v1beta1/CertificateAuthority/state": state +"/privateca:v1beta1/CertificateAuthority/subordinateConfig": subordinate_config +"/privateca:v1beta1/CertificateAuthority/tier": tier +"/privateca:v1beta1/CertificateAuthority/type": type +"/privateca:v1beta1/CertificateAuthority/updateTime": update_time +"/privateca:v1beta1/CertificateAuthorityPolicy": certificate_authority_policy +"/privateca:v1beta1/CertificateAuthorityPolicy/allowedCommonNames": allowed_common_names +"/privateca:v1beta1/CertificateAuthorityPolicy/allowedCommonNames/allowed_common_name": allowed_common_name +"/privateca:v1beta1/CertificateAuthorityPolicy/allowedConfigList": allowed_config_list +"/privateca:v1beta1/CertificateAuthorityPolicy/allowedIssuanceModes": allowed_issuance_modes +"/privateca:v1beta1/CertificateAuthorityPolicy/allowedLocationsAndOrganizations": allowed_locations_and_organizations +"/privateca:v1beta1/CertificateAuthorityPolicy/allowedLocationsAndOrganizations/allowed_locations_and_organization": allowed_locations_and_organization +"/privateca:v1beta1/CertificateAuthorityPolicy/allowedSans": allowed_sans +"/privateca:v1beta1/CertificateAuthorityPolicy/maximumLifetime": maximum_lifetime +"/privateca:v1beta1/CertificateAuthorityPolicy/overwriteConfigValues": overwrite_config_values +"/privateca:v1beta1/CertificateConfig": certificate_config +"/privateca:v1beta1/CertificateConfig/publicKey": public_key +"/privateca:v1beta1/CertificateConfig/reusableConfig": reusable_config +"/privateca:v1beta1/CertificateConfig/subjectConfig": subject_config +"/privateca:v1beta1/CertificateDescription": certificate_description +"/privateca:v1beta1/CertificateDescription/aiaIssuingCertificateUrls": aia_issuing_certificate_urls +"/privateca:v1beta1/CertificateDescription/aiaIssuingCertificateUrls/aia_issuing_certificate_url": aia_issuing_certificate_url +"/privateca:v1beta1/CertificateDescription/authorityKeyId": authority_key_id +"/privateca:v1beta1/CertificateDescription/certFingerprint": cert_fingerprint +"/privateca:v1beta1/CertificateDescription/configValues": config_values +"/privateca:v1beta1/CertificateDescription/crlDistributionPoints": crl_distribution_points +"/privateca:v1beta1/CertificateDescription/crlDistributionPoints/crl_distribution_point": crl_distribution_point +"/privateca:v1beta1/CertificateDescription/publicKey": public_key +"/privateca:v1beta1/CertificateDescription/subjectDescription": subject_description +"/privateca:v1beta1/CertificateDescription/subjectKeyId": subject_key_id +"/privateca:v1beta1/CertificateFingerprint": certificate_fingerprint +"/privateca:v1beta1/CertificateFingerprint/sha256Hash": sha256_hash +"/privateca:v1beta1/CertificateRevocationList": certificate_revocation_list +"/privateca:v1beta1/CertificateRevocationList/accessUrl": access_url +"/privateca:v1beta1/CertificateRevocationList/createTime": create_time +"/privateca:v1beta1/CertificateRevocationList/labels": labels +"/privateca:v1beta1/CertificateRevocationList/labels/label": label +"/privateca:v1beta1/CertificateRevocationList/name": name +"/privateca:v1beta1/CertificateRevocationList/pemCrl": pem_crl +"/privateca:v1beta1/CertificateRevocationList/revokedCertificates": revoked_certificates +"/privateca:v1beta1/CertificateRevocationList/revokedCertificates/revoked_certificate": revoked_certificate +"/privateca:v1beta1/CertificateRevocationList/sequenceNumber": sequence_number +"/privateca:v1beta1/CertificateRevocationList/state": state +"/privateca:v1beta1/CertificateRevocationList/updateTime": update_time +"/privateca:v1beta1/DisableCertificateAuthorityRequest": disable_certificate_authority_request +"/privateca:v1beta1/DisableCertificateAuthorityRequest/requestId": request_id +"/privateca:v1beta1/Empty": empty +"/privateca:v1beta1/EnableCertificateAuthorityRequest": enable_certificate_authority_request +"/privateca:v1beta1/EnableCertificateAuthorityRequest/requestId": request_id +"/privateca:v1beta1/Expr": expr +"/privateca:v1beta1/Expr/description": description +"/privateca:v1beta1/Expr/expression": expression +"/privateca:v1beta1/Expr/location": location +"/privateca:v1beta1/Expr/title": title +"/privateca:v1beta1/ExtendedKeyUsageOptions": extended_key_usage_options +"/privateca:v1beta1/ExtendedKeyUsageOptions/clientAuth": client_auth +"/privateca:v1beta1/ExtendedKeyUsageOptions/codeSigning": code_signing +"/privateca:v1beta1/ExtendedKeyUsageOptions/emailProtection": email_protection +"/privateca:v1beta1/ExtendedKeyUsageOptions/ocspSigning": ocsp_signing +"/privateca:v1beta1/ExtendedKeyUsageOptions/serverAuth": server_auth +"/privateca:v1beta1/ExtendedKeyUsageOptions/timeStamping": time_stamping +"/privateca:v1beta1/FetchCertificateAuthorityCsrResponse": fetch_certificate_authority_csr_response +"/privateca:v1beta1/FetchCertificateAuthorityCsrResponse/pemCsr": pem_csr +"/privateca:v1beta1/IssuanceModes": issuance_modes +"/privateca:v1beta1/IssuanceModes/allowConfigBasedIssuance": allow_config_based_issuance +"/privateca:v1beta1/IssuanceModes/allowCsrBasedIssuance": allow_csr_based_issuance +"/privateca:v1beta1/IssuingOptions": issuing_options +"/privateca:v1beta1/IssuingOptions/includeCaCertUrl": include_ca_cert_url +"/privateca:v1beta1/IssuingOptions/includeCrlAccessUrl": include_crl_access_url +"/privateca:v1beta1/KeyId": key_id +"/privateca:v1beta1/KeyId/keyId": key_id +"/privateca:v1beta1/KeyUsage": key_usage +"/privateca:v1beta1/KeyUsage/baseKeyUsage": base_key_usage +"/privateca:v1beta1/KeyUsage/extendedKeyUsage": extended_key_usage +"/privateca:v1beta1/KeyUsage/unknownExtendedKeyUsages": unknown_extended_key_usages +"/privateca:v1beta1/KeyUsage/unknownExtendedKeyUsages/unknown_extended_key_usage": unknown_extended_key_usage +"/privateca:v1beta1/KeyUsageOptions": key_usage_options +"/privateca:v1beta1/KeyUsageOptions/certSign": cert_sign +"/privateca:v1beta1/KeyUsageOptions/contentCommitment": content_commitment +"/privateca:v1beta1/KeyUsageOptions/crlSign": crl_sign +"/privateca:v1beta1/KeyUsageOptions/dataEncipherment": data_encipherment +"/privateca:v1beta1/KeyUsageOptions/decipherOnly": decipher_only +"/privateca:v1beta1/KeyUsageOptions/digitalSignature": digital_signature +"/privateca:v1beta1/KeyUsageOptions/encipherOnly": encipher_only +"/privateca:v1beta1/KeyUsageOptions/keyAgreement": key_agreement +"/privateca:v1beta1/KeyUsageOptions/keyEncipherment": key_encipherment +"/privateca:v1beta1/KeyVersionSpec": key_version_spec +"/privateca:v1beta1/KeyVersionSpec/algorithm": algorithm +"/privateca:v1beta1/KeyVersionSpec/cloudKmsKeyVersion": cloud_kms_key_version +"/privateca:v1beta1/ListCertificateAuthoritiesResponse": list_certificate_authorities_response +"/privateca:v1beta1/ListCertificateAuthoritiesResponse/certificateAuthorities": certificate_authorities +"/privateca:v1beta1/ListCertificateAuthoritiesResponse/certificateAuthorities/certificate_authority": certificate_authority +"/privateca:v1beta1/ListCertificateAuthoritiesResponse/nextPageToken": next_page_token +"/privateca:v1beta1/ListCertificateAuthoritiesResponse/unreachable": unreachable +"/privateca:v1beta1/ListCertificateAuthoritiesResponse/unreachable/unreachable": unreachable +"/privateca:v1beta1/ListCertificateRevocationListsResponse": list_certificate_revocation_lists_response +"/privateca:v1beta1/ListCertificateRevocationListsResponse/certificateRevocationLists": certificate_revocation_lists +"/privateca:v1beta1/ListCertificateRevocationListsResponse/certificateRevocationLists/certificate_revocation_list": certificate_revocation_list +"/privateca:v1beta1/ListCertificateRevocationListsResponse/nextPageToken": next_page_token +"/privateca:v1beta1/ListCertificateRevocationListsResponse/unreachable": unreachable +"/privateca:v1beta1/ListCertificateRevocationListsResponse/unreachable/unreachable": unreachable +"/privateca:v1beta1/ListCertificatesResponse": list_certificates_response +"/privateca:v1beta1/ListCertificatesResponse/certificates": certificates +"/privateca:v1beta1/ListCertificatesResponse/certificates/certificate": certificate +"/privateca:v1beta1/ListCertificatesResponse/nextPageToken": next_page_token +"/privateca:v1beta1/ListCertificatesResponse/unreachable": unreachable +"/privateca:v1beta1/ListCertificatesResponse/unreachable/unreachable": unreachable +"/privateca:v1beta1/ListLocationsResponse": list_locations_response +"/privateca:v1beta1/ListLocationsResponse/locations": locations +"/privateca:v1beta1/ListLocationsResponse/locations/location": location +"/privateca:v1beta1/ListLocationsResponse/nextPageToken": next_page_token +"/privateca:v1beta1/ListOperationsResponse": list_operations_response +"/privateca:v1beta1/ListOperationsResponse/nextPageToken": next_page_token +"/privateca:v1beta1/ListOperationsResponse/operations": operations +"/privateca:v1beta1/ListOperationsResponse/operations/operation": operation +"/privateca:v1beta1/ListReusableConfigsResponse": list_reusable_configs_response +"/privateca:v1beta1/ListReusableConfigsResponse/nextPageToken": next_page_token +"/privateca:v1beta1/ListReusableConfigsResponse/reusableConfigs": reusable_configs +"/privateca:v1beta1/ListReusableConfigsResponse/reusableConfigs/reusable_config": reusable_config +"/privateca:v1beta1/ListReusableConfigsResponse/unreachable": unreachable +"/privateca:v1beta1/ListReusableConfigsResponse/unreachable/unreachable": unreachable +"/privateca:v1beta1/Location": location +"/privateca:v1beta1/Location/displayName": display_name +"/privateca:v1beta1/Location/labels": labels +"/privateca:v1beta1/Location/labels/label": label +"/privateca:v1beta1/Location/locationId": location_id +"/privateca:v1beta1/Location/metadata": metadata +"/privateca:v1beta1/Location/metadata/metadatum": metadatum +"/privateca:v1beta1/Location/name": name +"/privateca:v1beta1/ObjectId": object_id_prop +"/privateca:v1beta1/ObjectId/objectIdPath": object_id_path +"/privateca:v1beta1/ObjectId/objectIdPath/object_id_path": object_id_path +"/privateca:v1beta1/Operation": operation +"/privateca:v1beta1/Operation/done": done +"/privateca:v1beta1/Operation/error": error +"/privateca:v1beta1/Operation/metadata": metadata +"/privateca:v1beta1/Operation/metadata/metadatum": metadatum +"/privateca:v1beta1/Operation/name": name +"/privateca:v1beta1/Operation/response": response +"/privateca:v1beta1/Operation/response/response": response +"/privateca:v1beta1/OperationMetadata": operation_metadata +"/privateca:v1beta1/OperationMetadata/apiVersion": api_version +"/privateca:v1beta1/OperationMetadata/createTime": create_time +"/privateca:v1beta1/OperationMetadata/endTime": end_time +"/privateca:v1beta1/OperationMetadata/requestedCancellation": requested_cancellation +"/privateca:v1beta1/OperationMetadata/statusMessage": status_message +"/privateca:v1beta1/OperationMetadata/target": target +"/privateca:v1beta1/OperationMetadata/verb": verb +"/privateca:v1beta1/Policy": policy +"/privateca:v1beta1/Policy/auditConfigs": audit_configs +"/privateca:v1beta1/Policy/auditConfigs/audit_config": audit_config +"/privateca:v1beta1/Policy/bindings": bindings +"/privateca:v1beta1/Policy/bindings/binding": binding +"/privateca:v1beta1/Policy/etag": etag +"/privateca:v1beta1/Policy/version": version +"/privateca:v1beta1/PublicKey": public_key +"/privateca:v1beta1/PublicKey/key": key +"/privateca:v1beta1/PublicKey/type": type +"/privateca:v1beta1/RestoreCertificateAuthorityRequest": restore_certificate_authority_request +"/privateca:v1beta1/RestoreCertificateAuthorityRequest/requestId": request_id +"/privateca:v1beta1/ReusableConfig": reusable_config +"/privateca:v1beta1/ReusableConfig/createTime": create_time +"/privateca:v1beta1/ReusableConfig/description": description +"/privateca:v1beta1/ReusableConfig/labels": labels +"/privateca:v1beta1/ReusableConfig/labels/label": label +"/privateca:v1beta1/ReusableConfig/name": name +"/privateca:v1beta1/ReusableConfig/updateTime": update_time +"/privateca:v1beta1/ReusableConfig/values": values +"/privateca:v1beta1/ReusableConfigValues": reusable_config_values +"/privateca:v1beta1/ReusableConfigValues/additionalExtensions": additional_extensions +"/privateca:v1beta1/ReusableConfigValues/additionalExtensions/additional_extension": additional_extension +"/privateca:v1beta1/ReusableConfigValues/aiaOcspServers": aia_ocsp_servers +"/privateca:v1beta1/ReusableConfigValues/aiaOcspServers/aia_ocsp_server": aia_ocsp_server +"/privateca:v1beta1/ReusableConfigValues/caOptions": ca_options +"/privateca:v1beta1/ReusableConfigValues/keyUsage": key_usage +"/privateca:v1beta1/ReusableConfigValues/policyIds": policy_ids +"/privateca:v1beta1/ReusableConfigValues/policyIds/policy_id": policy_id +"/privateca:v1beta1/ReusableConfigWrapper": reusable_config_wrapper +"/privateca:v1beta1/ReusableConfigWrapper/reusableConfig": reusable_config +"/privateca:v1beta1/ReusableConfigWrapper/reusableConfigValues": reusable_config_values +"/privateca:v1beta1/RevocationDetails": revocation_details +"/privateca:v1beta1/RevocationDetails/revocationState": revocation_state +"/privateca:v1beta1/RevocationDetails/revocationTime": revocation_time +"/privateca:v1beta1/RevokeCertificateRequest": revoke_certificate_request +"/privateca:v1beta1/RevokeCertificateRequest/reason": reason +"/privateca:v1beta1/RevokeCertificateRequest/requestId": request_id +"/privateca:v1beta1/RevokedCertificate": revoked_certificate +"/privateca:v1beta1/RevokedCertificate/certificate": certificate +"/privateca:v1beta1/RevokedCertificate/hexSerialNumber": hex_serial_number +"/privateca:v1beta1/RevokedCertificate/revocationReason": revocation_reason +"/privateca:v1beta1/ScheduleDeleteCertificateAuthorityRequest": schedule_delete_certificate_authority_request +"/privateca:v1beta1/ScheduleDeleteCertificateAuthorityRequest/requestId": request_id +"/privateca:v1beta1/SetIamPolicyRequest": set_iam_policy_request +"/privateca:v1beta1/SetIamPolicyRequest/policy": policy +"/privateca:v1beta1/SetIamPolicyRequest/updateMask": update_mask +"/privateca:v1beta1/Status": status +"/privateca:v1beta1/Status/code": code +"/privateca:v1beta1/Status/details": details +"/privateca:v1beta1/Status/details/detail": detail +"/privateca:v1beta1/Status/details/detail/detail": detail +"/privateca:v1beta1/Status/message": message +"/privateca:v1beta1/Subject": subject +"/privateca:v1beta1/Subject/countryCode": country_code +"/privateca:v1beta1/Subject/locality": locality +"/privateca:v1beta1/Subject/organization": organization +"/privateca:v1beta1/Subject/organizationalUnit": organizational_unit +"/privateca:v1beta1/Subject/postalCode": postal_code +"/privateca:v1beta1/Subject/province": province +"/privateca:v1beta1/Subject/streetAddress": street_address +"/privateca:v1beta1/SubjectAltNames": subject_alt_names +"/privateca:v1beta1/SubjectAltNames/customSans": custom_sans +"/privateca:v1beta1/SubjectAltNames/customSans/custom_san": custom_san +"/privateca:v1beta1/SubjectAltNames/dnsNames": dns_names +"/privateca:v1beta1/SubjectAltNames/dnsNames/dns_name": dns_name +"/privateca:v1beta1/SubjectAltNames/emailAddresses": email_addresses +"/privateca:v1beta1/SubjectAltNames/emailAddresses/email_address": email_address +"/privateca:v1beta1/SubjectAltNames/ipAddresses": ip_addresses +"/privateca:v1beta1/SubjectAltNames/ipAddresses/ip_address": ip_address +"/privateca:v1beta1/SubjectAltNames/uris": uris +"/privateca:v1beta1/SubjectAltNames/uris/uri": uri +"/privateca:v1beta1/SubjectConfig": subject_config +"/privateca:v1beta1/SubjectConfig/commonName": common_name +"/privateca:v1beta1/SubjectConfig/subject": subject +"/privateca:v1beta1/SubjectConfig/subjectAltName": subject_alt_name +"/privateca:v1beta1/SubjectDescription": subject_description +"/privateca:v1beta1/SubjectDescription/commonName": common_name +"/privateca:v1beta1/SubjectDescription/hexSerialNumber": hex_serial_number +"/privateca:v1beta1/SubjectDescription/lifetime": lifetime +"/privateca:v1beta1/SubjectDescription/notAfterTime": not_after_time +"/privateca:v1beta1/SubjectDescription/notBeforeTime": not_before_time +"/privateca:v1beta1/SubjectDescription/subject": subject +"/privateca:v1beta1/SubjectDescription/subjectAltName": subject_alt_name +"/privateca:v1beta1/SubordinateConfig": subordinate_config +"/privateca:v1beta1/SubordinateConfig/certificateAuthority": certificate_authority +"/privateca:v1beta1/SubordinateConfig/pemIssuerChain": pem_issuer_chain +"/privateca:v1beta1/SubordinateConfigChain": subordinate_config_chain +"/privateca:v1beta1/SubordinateConfigChain/pemCertificates": pem_certificates +"/privateca:v1beta1/SubordinateConfigChain/pemCertificates/pem_certificate": pem_certificate +"/privateca:v1beta1/TestIamPermissionsRequest": test_iam_permissions_request +"/privateca:v1beta1/TestIamPermissionsRequest/permissions": permissions +"/privateca:v1beta1/TestIamPermissionsRequest/permissions/permission": permission +"/privateca:v1beta1/TestIamPermissionsResponse": test_iam_permissions_response +"/privateca:v1beta1/TestIamPermissionsResponse/permissions": permissions +"/privateca:v1beta1/TestIamPermissionsResponse/permissions/permission": permission +"/privateca:v1beta1/X509Extension": x509_extension +"/privateca:v1beta1/X509Extension/critical": critical +"/privateca:v1beta1/X509Extension/objectId": object_id_prop +"/privateca:v1beta1/X509Extension/value": value +"/privateca:v1beta1/fields": fields +"/privateca:v1beta1/key": key +"/privateca:v1beta1/privateca.projects.locations.certificateAuthorities.activate": activate_certificate_authority +"/privateca:v1beta1/privateca.projects.locations.certificateAuthorities.activate/name": name +"/privateca:v1beta1/privateca.projects.locations.certificateAuthorities.certificateRevocationLists.create": create_project_location_certificate_authority_certificate_revocation_list +? "/privateca:v1beta1/privateca.projects.locations.certificateAuthorities.certificateRevocationLists.create/certificateRevocationListId" +: certificate_revocation_list_id +"/privateca:v1beta1/privateca.projects.locations.certificateAuthorities.certificateRevocationLists.create/parent": parent +"/privateca:v1beta1/privateca.projects.locations.certificateAuthorities.certificateRevocationLists.create/requestId": request_id +"/privateca:v1beta1/privateca.projects.locations.certificateAuthorities.certificateRevocationLists.get": get_project_location_certificate_authority_certificate_revocation_list +"/privateca:v1beta1/privateca.projects.locations.certificateAuthorities.certificateRevocationLists.get/name": name +"/privateca:v1beta1/privateca.projects.locations.certificateAuthorities.certificateRevocationLists.getIamPolicy": get_project_location_certificate_authority_certificate_revocation_list_iam_policy +? "/privateca:v1beta1/privateca.projects.locations.certificateAuthorities.certificateRevocationLists.getIamPolicy/options.requestedPolicyVersion" +: options_requested_policy_version +"/privateca:v1beta1/privateca.projects.locations.certificateAuthorities.certificateRevocationLists.getIamPolicy/resource": resource +"/privateca:v1beta1/privateca.projects.locations.certificateAuthorities.certificateRevocationLists.list": list_project_location_certificate_authority_certificate_revocation_lists +"/privateca:v1beta1/privateca.projects.locations.certificateAuthorities.certificateRevocationLists.list/filter": filter +"/privateca:v1beta1/privateca.projects.locations.certificateAuthorities.certificateRevocationLists.list/orderBy": order_by +"/privateca:v1beta1/privateca.projects.locations.certificateAuthorities.certificateRevocationLists.list/pageSize": page_size +"/privateca:v1beta1/privateca.projects.locations.certificateAuthorities.certificateRevocationLists.list/pageToken": page_token +"/privateca:v1beta1/privateca.projects.locations.certificateAuthorities.certificateRevocationLists.list/parent": parent +"/privateca:v1beta1/privateca.projects.locations.certificateAuthorities.certificateRevocationLists.patch": patch_project_location_certificate_authority_certificate_revocation_list +"/privateca:v1beta1/privateca.projects.locations.certificateAuthorities.certificateRevocationLists.patch/name": name +"/privateca:v1beta1/privateca.projects.locations.certificateAuthorities.certificateRevocationLists.patch/requestId": request_id +"/privateca:v1beta1/privateca.projects.locations.certificateAuthorities.certificateRevocationLists.patch/updateMask": update_mask +"/privateca:v1beta1/privateca.projects.locations.certificateAuthorities.certificateRevocationLists.setIamPolicy": set_certificate_revocation_list_iam_policy +"/privateca:v1beta1/privateca.projects.locations.certificateAuthorities.certificateRevocationLists.setIamPolicy/resource": resource +"/privateca:v1beta1/privateca.projects.locations.certificateAuthorities.certificateRevocationLists.testIamPermissions": test_certificate_revocation_list_iam_permissions +"/privateca:v1beta1/privateca.projects.locations.certificateAuthorities.certificateRevocationLists.testIamPermissions/resource": resource +"/privateca:v1beta1/privateca.projects.locations.certificateAuthorities.certificates.create": create_project_location_certificate_authority_certificate +"/privateca:v1beta1/privateca.projects.locations.certificateAuthorities.certificates.create/certificateId": certificate_id +"/privateca:v1beta1/privateca.projects.locations.certificateAuthorities.certificates.create/parent": parent +"/privateca:v1beta1/privateca.projects.locations.certificateAuthorities.certificates.create/requestId": request_id +"/privateca:v1beta1/privateca.projects.locations.certificateAuthorities.certificates.get": get_project_location_certificate_authority_certificate +"/privateca:v1beta1/privateca.projects.locations.certificateAuthorities.certificates.get/name": name +"/privateca:v1beta1/privateca.projects.locations.certificateAuthorities.certificates.list": list_project_location_certificate_authority_certificates +"/privateca:v1beta1/privateca.projects.locations.certificateAuthorities.certificates.list/filter": filter +"/privateca:v1beta1/privateca.projects.locations.certificateAuthorities.certificates.list/orderBy": order_by +"/privateca:v1beta1/privateca.projects.locations.certificateAuthorities.certificates.list/pageSize": page_size +"/privateca:v1beta1/privateca.projects.locations.certificateAuthorities.certificates.list/pageToken": page_token +"/privateca:v1beta1/privateca.projects.locations.certificateAuthorities.certificates.list/parent": parent +"/privateca:v1beta1/privateca.projects.locations.certificateAuthorities.certificates.patch": patch_project_location_certificate_authority_certificate +"/privateca:v1beta1/privateca.projects.locations.certificateAuthorities.certificates.patch/name": name +"/privateca:v1beta1/privateca.projects.locations.certificateAuthorities.certificates.patch/requestId": request_id +"/privateca:v1beta1/privateca.projects.locations.certificateAuthorities.certificates.patch/updateMask": update_mask +"/privateca:v1beta1/privateca.projects.locations.certificateAuthorities.certificates.revoke": revoke_certificate +"/privateca:v1beta1/privateca.projects.locations.certificateAuthorities.certificates.revoke/name": name +"/privateca:v1beta1/privateca.projects.locations.certificateAuthorities.create": create_project_location_certificate_authority +"/privateca:v1beta1/privateca.projects.locations.certificateAuthorities.create/certificateAuthorityId": certificate_authority_id +"/privateca:v1beta1/privateca.projects.locations.certificateAuthorities.create/parent": parent +"/privateca:v1beta1/privateca.projects.locations.certificateAuthorities.create/requestId": request_id +"/privateca:v1beta1/privateca.projects.locations.certificateAuthorities.disable": disable_certificate_authority +"/privateca:v1beta1/privateca.projects.locations.certificateAuthorities.disable/name": name +"/privateca:v1beta1/privateca.projects.locations.certificateAuthorities.enable": enable_certificate_authority +"/privateca:v1beta1/privateca.projects.locations.certificateAuthorities.enable/name": name +"/privateca:v1beta1/privateca.projects.locations.certificateAuthorities.fetch": fetch_project_location_certificate_authority +"/privateca:v1beta1/privateca.projects.locations.certificateAuthorities.fetch/name": name +"/privateca:v1beta1/privateca.projects.locations.certificateAuthorities.get": get_project_location_certificate_authority +"/privateca:v1beta1/privateca.projects.locations.certificateAuthorities.get/name": name +"/privateca:v1beta1/privateca.projects.locations.certificateAuthorities.getIamPolicy": get_project_location_certificate_authority_iam_policy +"/privateca:v1beta1/privateca.projects.locations.certificateAuthorities.getIamPolicy/options.requestedPolicyVersion": options_requested_policy_version +"/privateca:v1beta1/privateca.projects.locations.certificateAuthorities.getIamPolicy/resource": resource +"/privateca:v1beta1/privateca.projects.locations.certificateAuthorities.list": list_project_location_certificate_authorities +"/privateca:v1beta1/privateca.projects.locations.certificateAuthorities.list/filter": filter +"/privateca:v1beta1/privateca.projects.locations.certificateAuthorities.list/orderBy": order_by +"/privateca:v1beta1/privateca.projects.locations.certificateAuthorities.list/pageSize": page_size +"/privateca:v1beta1/privateca.projects.locations.certificateAuthorities.list/pageToken": page_token +"/privateca:v1beta1/privateca.projects.locations.certificateAuthorities.list/parent": parent +"/privateca:v1beta1/privateca.projects.locations.certificateAuthorities.patch": patch_project_location_certificate_authority +"/privateca:v1beta1/privateca.projects.locations.certificateAuthorities.patch/name": name +"/privateca:v1beta1/privateca.projects.locations.certificateAuthorities.patch/requestId": request_id +"/privateca:v1beta1/privateca.projects.locations.certificateAuthorities.patch/updateMask": update_mask +"/privateca:v1beta1/privateca.projects.locations.certificateAuthorities.restore": restore_certificate_authority +"/privateca:v1beta1/privateca.projects.locations.certificateAuthorities.restore/name": name +"/privateca:v1beta1/privateca.projects.locations.certificateAuthorities.scheduleDelete": schedule_delete_certificate_authority +"/privateca:v1beta1/privateca.projects.locations.certificateAuthorities.scheduleDelete/name": name +"/privateca:v1beta1/privateca.projects.locations.certificateAuthorities.setIamPolicy": set_certificate_authority_iam_policy +"/privateca:v1beta1/privateca.projects.locations.certificateAuthorities.setIamPolicy/resource": resource +"/privateca:v1beta1/privateca.projects.locations.certificateAuthorities.testIamPermissions": test_certificate_authority_iam_permissions +"/privateca:v1beta1/privateca.projects.locations.certificateAuthorities.testIamPermissions/resource": resource +"/privateca:v1beta1/privateca.projects.locations.get": get_project_location +"/privateca:v1beta1/privateca.projects.locations.get/name": name +"/privateca:v1beta1/privateca.projects.locations.list": list_project_locations +"/privateca:v1beta1/privateca.projects.locations.list/filter": filter +"/privateca:v1beta1/privateca.projects.locations.list/name": name +"/privateca:v1beta1/privateca.projects.locations.list/pageSize": page_size +"/privateca:v1beta1/privateca.projects.locations.list/pageToken": page_token +"/privateca:v1beta1/privateca.projects.locations.operations.cancel": cancel_operation +"/privateca:v1beta1/privateca.projects.locations.operations.cancel/name": name +"/privateca:v1beta1/privateca.projects.locations.operations.delete": delete_project_location_operation +"/privateca:v1beta1/privateca.projects.locations.operations.delete/name": name +"/privateca:v1beta1/privateca.projects.locations.operations.get": get_project_location_operation +"/privateca:v1beta1/privateca.projects.locations.operations.get/name": name +"/privateca:v1beta1/privateca.projects.locations.operations.list": list_project_location_operations +"/privateca:v1beta1/privateca.projects.locations.operations.list/filter": filter +"/privateca:v1beta1/privateca.projects.locations.operations.list/name": name +"/privateca:v1beta1/privateca.projects.locations.operations.list/pageSize": page_size +"/privateca:v1beta1/privateca.projects.locations.operations.list/pageToken": page_token +"/privateca:v1beta1/privateca.projects.locations.reusableConfigs.get": get_project_location_reusable_config +"/privateca:v1beta1/privateca.projects.locations.reusableConfigs.get/name": name +"/privateca:v1beta1/privateca.projects.locations.reusableConfigs.getIamPolicy": get_project_location_reusable_config_iam_policy +"/privateca:v1beta1/privateca.projects.locations.reusableConfigs.getIamPolicy/options.requestedPolicyVersion": options_requested_policy_version +"/privateca:v1beta1/privateca.projects.locations.reusableConfigs.getIamPolicy/resource": resource +"/privateca:v1beta1/privateca.projects.locations.reusableConfigs.list": list_project_location_reusable_configs +"/privateca:v1beta1/privateca.projects.locations.reusableConfigs.list/filter": filter +"/privateca:v1beta1/privateca.projects.locations.reusableConfigs.list/orderBy": order_by +"/privateca:v1beta1/privateca.projects.locations.reusableConfigs.list/pageSize": page_size +"/privateca:v1beta1/privateca.projects.locations.reusableConfigs.list/pageToken": page_token +"/privateca:v1beta1/privateca.projects.locations.reusableConfigs.list/parent": parent +"/privateca:v1beta1/privateca.projects.locations.reusableConfigs.setIamPolicy": set_reusable_config_iam_policy +"/privateca:v1beta1/privateca.projects.locations.reusableConfigs.setIamPolicy/resource": resource +"/privateca:v1beta1/privateca.projects.locations.reusableConfigs.testIamPermissions": test_reusable_config_iam_permissions +"/privateca:v1beta1/privateca.projects.locations.reusableConfigs.testIamPermissions/resource": resource +"/privateca:v1beta1/quotaUser": quota_user "/prod_tt_sasportal:v1alpha1/SasPortalAssignment": sas_portal_assignment "/prod_tt_sasportal:v1alpha1/SasPortalAssignment/members": members "/prod_tt_sasportal:v1alpha1/SasPortalAssignment/members/member": member diff --git a/generated/google/apis/privateca_v1beta1.rb b/generated/google/apis/privateca_v1beta1.rb new file mode 100644 index 000000000..2b4b2f339 --- /dev/null +++ b/generated/google/apis/privateca_v1beta1.rb @@ -0,0 +1,34 @@ +# Copyright 2015 Google Inc. +# +# Licensed under the Apache License, Version 2.0 (the "License"); +# you may not use this file except in compliance with the License. +# You may obtain a copy of the License at +# +# http://www.apache.org/licenses/LICENSE-2.0 +# +# Unless required by applicable law or agreed to in writing, software +# distributed under the License is distributed on an "AS IS" BASIS, +# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +# See the License for the specific language governing permissions and +# limitations under the License. + +require 'google/apis/privateca_v1beta1/service.rb' +require 'google/apis/privateca_v1beta1/classes.rb' +require 'google/apis/privateca_v1beta1/representations.rb' + +module Google + module Apis + # Certificate Authority API + # + # + # + # @see https://cloud.google.com/ + module PrivatecaV1beta1 + VERSION = 'V1beta1' + REVISION = '20201022' + + # View and manage your data across Google Cloud Platform services + AUTH_CLOUD_PLATFORM = 'https://www.googleapis.com/auth/cloud-platform' + end + end +end diff --git a/generated/google/apis/privateca_v1beta1/classes.rb b/generated/google/apis/privateca_v1beta1/classes.rb new file mode 100644 index 000000000..9e93e7e9f --- /dev/null +++ b/generated/google/apis/privateca_v1beta1/classes.rb @@ -0,0 +1,2466 @@ +# Copyright 2015 Google Inc. +# +# Licensed under the Apache License, Version 2.0 (the "License"); +# you may not use this file except in compliance with the License. +# You may obtain a copy of the License at +# +# http://www.apache.org/licenses/LICENSE-2.0 +# +# Unless required by applicable law or agreed to in writing, software +# distributed under the License is distributed on an "AS IS" BASIS, +# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +# See the License for the specific language governing permissions and +# limitations under the License. + +require 'date' +require 'google/apis/core/base_service' +require 'google/apis/core/json_representation' +require 'google/apis/core/hashable' +require 'google/apis/errors' + +module Google + module Apis + module PrivatecaV1beta1 + + # URLs where a CertificateAuthority will publish content. + class AccessUrls + include Google::Apis::Core::Hashable + + # The URL where this CertificateAuthority's CA certificate is published. This + # will only be set for CAs that have been activated. + # Corresponds to the JSON property `caCertificateAccessUrl` + # @return [String] + attr_accessor :ca_certificate_access_url + + # The URL where this CertificateAuthority's CRLs are published. This will only + # be set for CAs that have been activated. + # Corresponds to the JSON property `crlAccessUrl` + # @return [String] + attr_accessor :crl_access_url + + def initialize(**args) + update!(**args) + end + + # Update properties of this object + def update!(**args) + @ca_certificate_access_url = args[:ca_certificate_access_url] if args.key?(:ca_certificate_access_url) + @crl_access_url = args[:crl_access_url] if args.key?(:crl_access_url) + end + end + + # Request message for CertificateAuthorityService.ActivateCertificateAuthority. + class ActivateCertificateAuthorityRequest + include Google::Apis::Core::Hashable + + # Required. The signed CA certificate issued from + # FetchCertificateAuthorityCsrResponse.pem_csr. + # Corresponds to the JSON property `pemCaCertificate` + # @return [String] + attr_accessor :pem_ca_certificate + + # Optional. An ID to identify requests. Specify a unique request ID so that if + # you must retry your request, the server will know to ignore the request if it + # has already been completed. The server will guarantee that for at least 60 + # minutes since the first request. For example, consider a situation where you + # make an initial request and t he request times out. If you make the request + # again with the same request ID, the server can check if original operation + # with the same request ID was received, and if so, will ignore the second + # request. This prevents clients from accidentally creating duplicate + # commitments. The request ID must be a valid UUID with the exception that zero + # UUID is not supported (00000000-0000-0000-0000-000000000000). + # Corresponds to the JSON property `requestId` + # @return [String] + attr_accessor :request_id + + # Describes a subordinate CA's issuers. This is either a resource path to a + # known issuing CertificateAuthority, or a PEM issuer certificate chain. + # Corresponds to the JSON property `subordinateConfig` + # @return [Google::Apis::PrivatecaV1beta1::SubordinateConfig] + attr_accessor :subordinate_config + + def initialize(**args) + update!(**args) + end + + # Update properties of this object + def update!(**args) + @pem_ca_certificate = args[:pem_ca_certificate] if args.key?(:pem_ca_certificate) + @request_id = args[:request_id] if args.key?(:request_id) + @subordinate_config = args[:subordinate_config] if args.key?(:subordinate_config) + end + end + + # + class AllowedConfigList + include Google::Apis::Core::Hashable + + # Required. All Certificates issued by the CertificateAuthority must match at + # least one listed ReusableConfigWrapper. If a ReusableConfigWrapper has an + # empty field, any value will be allowed for that field. + # Corresponds to the JSON property `allowedConfigValues` + # @return [Array] + attr_accessor :allowed_config_values + + def initialize(**args) + update!(**args) + end + + # Update properties of this object + def update!(**args) + @allowed_config_values = args[:allowed_config_values] if args.key?(:allowed_config_values) + end + end + + # AllowedSubjectAltNames specifies the allowed values for SubjectAltNames by the + # CertificateAuthority when issuing Certificates. + class AllowedSubjectAltNames + include Google::Apis::Core::Hashable + + # Optional. Specifies if to allow custom X509Extension values. + # Corresponds to the JSON property `allowCustomSans` + # @return [Boolean] + attr_accessor :allow_custom_sans + alias_method :allow_custom_sans?, :allow_custom_sans + + # Optional. Specifies if glob patterns used for allowed_dns_names allow wildcard + # certificates. If this is set, certificate requests with wildcard domains will + # be permitted to match a glob pattern specified in allowed_dns_names. Otherwise, + # certificate requests with wildcard domains will be permitted only if + # allowed_dns_names contains a literal wildcard. + # Corresponds to the JSON property `allowGlobbingDnsWildcards` + # @return [Boolean] + attr_accessor :allow_globbing_dns_wildcards + alias_method :allow_globbing_dns_wildcards?, :allow_globbing_dns_wildcards + + # Optional. Contains valid, fully-qualified host names. Glob patterns are also + # supported. To allow an explicit wildcard certificate, escape with backlash (i. + # e. "\*"). E.g. for globbed entries: '*bar.com' will allow 'foo.bar.com', but + # not '*.bar.com', unless the allow_globbing_dns_wildcards field is set. E.g. + # for wildcard entries: '\*.bar.com' will allow '*.bar.com', but not 'foo.bar. + # com'. + # Corresponds to the JSON property `allowedDnsNames` + # @return [Array] + attr_accessor :allowed_dns_names + + # Optional. Contains valid RFC 2822 E-mail addresses. Glob patterns are also + # supported. + # Corresponds to the JSON property `allowedEmailAddresses` + # @return [Array] + attr_accessor :allowed_email_addresses + + # Optional. Contains valid 32-bit IPv4 addresses and subnet ranges or RFC 4291 + # IPv6 addresses and subnet ranges. Subnet ranges are specified using the '/' + # notation (e.g. 10.0.0.0/8, 2001:700:300:1800::/64). Glob patterns are + # supported only for ip address entries (i.e. not for subnet ranges). + # Corresponds to the JSON property `allowedIps` + # @return [Array] + attr_accessor :allowed_ips + + # Optional. Contains valid RFC 3986 URIs. Glob patterns are also supported. To + # match across path seperators (i.e. '/') use the double star glob pattern (i.e. + # '**'). + # Corresponds to the JSON property `allowedUris` + # @return [Array] + attr_accessor :allowed_uris + + def initialize(**args) + update!(**args) + end + + # Update properties of this object + def update!(**args) + @allow_custom_sans = args[:allow_custom_sans] if args.key?(:allow_custom_sans) + @allow_globbing_dns_wildcards = args[:allow_globbing_dns_wildcards] if args.key?(:allow_globbing_dns_wildcards) + @allowed_dns_names = args[:allowed_dns_names] if args.key?(:allowed_dns_names) + @allowed_email_addresses = args[:allowed_email_addresses] if args.key?(:allowed_email_addresses) + @allowed_ips = args[:allowed_ips] if args.key?(:allowed_ips) + @allowed_uris = args[:allowed_uris] if args.key?(:allowed_uris) + end + end + + # Specifies the audit configuration for a service. The configuration determines + # which permission types are logged, and what identities, if any, are exempted + # from logging. An AuditConfig must have one or more AuditLogConfigs. If there + # are AuditConfigs for both `allServices` and a specific service, the union of + # the two AuditConfigs is used for that service: the log_types specified in each + # AuditConfig are enabled, and the exempted_members in each AuditLogConfig are + # exempted. Example Policy with multiple AuditConfigs: ` "audit_configs": [ ` " + # service": "allServices", "audit_log_configs": [ ` "log_type": "DATA_READ", " + # exempted_members": [ "user:jose@example.com" ] `, ` "log_type": "DATA_WRITE" `, + # ` "log_type": "ADMIN_READ" ` ] `, ` "service": "sampleservice.googleapis.com", + # "audit_log_configs": [ ` "log_type": "DATA_READ" `, ` "log_type": "DATA_WRITE" + # , "exempted_members": [ "user:aliya@example.com" ] ` ] ` ] ` For sampleservice, + # this policy enables DATA_READ, DATA_WRITE and ADMIN_READ logging. It also + # exempts jose@example.com from DATA_READ logging, and aliya@example.com from + # DATA_WRITE logging. + class AuditConfig + include Google::Apis::Core::Hashable + + # The configuration for logging of each type of permission. + # Corresponds to the JSON property `auditLogConfigs` + # @return [Array] + attr_accessor :audit_log_configs + + # Specifies a service that will be enabled for audit logging. For example, ` + # storage.googleapis.com`, `cloudsql.googleapis.com`. `allServices` is a special + # value that covers all services. + # Corresponds to the JSON property `service` + # @return [String] + attr_accessor :service + + def initialize(**args) + update!(**args) + end + + # Update properties of this object + def update!(**args) + @audit_log_configs = args[:audit_log_configs] if args.key?(:audit_log_configs) + @service = args[:service] if args.key?(:service) + end + end + + # Provides the configuration for logging a type of permissions. Example: ` " + # audit_log_configs": [ ` "log_type": "DATA_READ", "exempted_members": [ "user: + # jose@example.com" ] `, ` "log_type": "DATA_WRITE" ` ] ` This enables ' + # DATA_READ' and 'DATA_WRITE' logging, while exempting jose@example.com from + # DATA_READ logging. + class AuditLogConfig + include Google::Apis::Core::Hashable + + # Specifies the identities that do not cause logging for this type of permission. + # Follows the same format of Binding.members. + # Corresponds to the JSON property `exemptedMembers` + # @return [Array] + attr_accessor :exempted_members + + # The log type that this config enables. + # Corresponds to the JSON property `logType` + # @return [String] + attr_accessor :log_type + + def initialize(**args) + update!(**args) + end + + # Update properties of this object + def update!(**args) + @exempted_members = args[:exempted_members] if args.key?(:exempted_members) + @log_type = args[:log_type] if args.key?(:log_type) + end + end + + # Associates `members` with a `role`. + class Binding + include Google::Apis::Core::Hashable + + # Represents a textual expression in the Common Expression Language (CEL) syntax. + # CEL is a C-like expression language. The syntax and semantics of CEL are + # documented at https://github.com/google/cel-spec. Example (Comparison): title: + # "Summary size limit" description: "Determines if a summary is less than 100 + # chars" expression: "document.summary.size() < 100" Example (Equality): title: " + # Requestor is owner" description: "Determines if requestor is the document + # owner" expression: "document.owner == request.auth.claims.email" Example ( + # Logic): title: "Public documents" description: "Determine whether the document + # should be publicly visible" expression: "document.type != 'private' && + # document.type != 'internal'" Example (Data Manipulation): title: "Notification + # string" description: "Create a notification string with a timestamp." + # expression: "'New message received at ' + string(document.create_time)" The + # exact variables and functions that may be referenced within an expression are + # determined by the service that evaluates it. See the service documentation for + # additional information. + # Corresponds to the JSON property `condition` + # @return [Google::Apis::PrivatecaV1beta1::Expr] + attr_accessor :condition + + # Specifies the identities requesting access for a Cloud Platform resource. ` + # members` can have the following values: * `allUsers`: A special identifier + # that represents anyone who is on the internet; with or without a Google + # account. * `allAuthenticatedUsers`: A special identifier that represents + # anyone who is authenticated with a Google account or a service account. * ` + # user:`emailid``: An email address that represents a specific Google account. + # For example, `alice@example.com` . * `serviceAccount:`emailid``: An email + # address that represents a service account. For example, `my-other-app@appspot. + # gserviceaccount.com`. * `group:`emailid``: An email address that represents a + # Google group. For example, `admins@example.com`. * `deleted:user:`emailid`?uid= + # `uniqueid``: An email address (plus unique identifier) representing a user + # that has been recently deleted. For example, `alice@example.com?uid= + # 123456789012345678901`. If the user is recovered, this value reverts to `user:` + # emailid`` and the recovered user retains the role in the binding. * `deleted: + # serviceAccount:`emailid`?uid=`uniqueid``: An email address (plus unique + # identifier) representing a service account that has been recently deleted. For + # example, `my-other-app@appspot.gserviceaccount.com?uid=123456789012345678901`. + # If the service account is undeleted, this value reverts to `serviceAccount:` + # emailid`` and the undeleted service account retains the role in the binding. * + # `deleted:group:`emailid`?uid=`uniqueid``: An email address (plus unique + # identifier) representing a Google group that has been recently deleted. For + # example, `admins@example.com?uid=123456789012345678901`. If the group is + # recovered, this value reverts to `group:`emailid`` and the recovered group + # retains the role in the binding. * `domain:`domain``: The G Suite domain ( + # primary) that represents all the users of that domain. For example, `google. + # com` or `example.com`. + # Corresponds to the JSON property `members` + # @return [Array] + attr_accessor :members + + # Role that is assigned to `members`. For example, `roles/viewer`, `roles/editor` + # , or `roles/owner`. + # Corresponds to the JSON property `role` + # @return [String] + attr_accessor :role + + def initialize(**args) + update!(**args) + end + + # Update properties of this object + def update!(**args) + @condition = args[:condition] if args.key?(:condition) + @members = args[:members] if args.key?(:members) + @role = args[:role] if args.key?(:role) + end + end + + # Describes values that are relevant in a CA certificate. + class CaOptions + include Google::Apis::Core::Hashable + + # Optional. Refers to the "CA" X.509 extension, which is a boolean value. When + # this value is missing, the extension will be omitted from the CA certificate. + # Corresponds to the JSON property `isCa` + # @return [Boolean] + attr_accessor :is_ca + alias_method :is_ca?, :is_ca + + # Optional. Refers to the path length restriction X.509 extension. For a CA + # certificate, this value describes the depth of subordinate CA certificates + # that are allowed. If this value is less than 0, the request will fail. If this + # value is missing, the max path length will be omitted from the CA certificate. + # Corresponds to the JSON property `maxIssuerPathLength` + # @return [Fixnum] + attr_accessor :max_issuer_path_length + + def initialize(**args) + update!(**args) + end + + # Update properties of this object + def update!(**args) + @is_ca = args[:is_ca] if args.key?(:is_ca) + @max_issuer_path_length = args[:max_issuer_path_length] if args.key?(:max_issuer_path_length) + end + end + + # The request message for Operations.CancelOperation. + class CancelOperationRequest + include Google::Apis::Core::Hashable + + def initialize(**args) + update!(**args) + end + + # Update properties of this object + def update!(**args) + end + end + + # A Certificate corresponds to a signed X.509 certificate issued by a + # CertificateAuthority. + class Certificate + include Google::Apis::Core::Hashable + + # A CertificateDescription describes an X.509 certificate or CSR that has been + # issued, as an alternative to using ASN.1 / X.509. + # Corresponds to the JSON property `certificateDescription` + # @return [Google::Apis::PrivatecaV1beta1::CertificateDescription] + attr_accessor :certificate_description + + # A CertificateConfig describes an X.509 certificate or CSR that is to be + # created, as an alternative to using ASN.1. + # Corresponds to the JSON property `config` + # @return [Google::Apis::PrivatecaV1beta1::CertificateConfig] + attr_accessor :config + + # Output only. The time at which this Certificate was created. + # Corresponds to the JSON property `createTime` + # @return [String] + attr_accessor :create_time + + # Optional. Labels with user-defined metadata. + # Corresponds to the JSON property `labels` + # @return [Hash] + attr_accessor :labels + + # Required. Immutable. The desired lifetime of a certificate. Used to create the + # "not_before_time" and "not_after_time" fields inside an X.509 certificate. + # Note that the lifetime may be truncated if it would extend past the life of + # any certificate authority in the issuing chain. + # Corresponds to the JSON property `lifetime` + # @return [String] + attr_accessor :lifetime + + # Output only. The resource path for this Certificate in the format `projects/*/ + # locations/*/certificateAuthorities/*/certificates/*`. + # Corresponds to the JSON property `name` + # @return [String] + attr_accessor :name + + # Output only. The pem-encoded, signed X.509 certificate. + # Corresponds to the JSON property `pemCertificate` + # @return [String] + attr_accessor :pem_certificate + + # Output only. The chain that may be used to verify the X.509 certificate. + # Expected to be in issuer-to-root order according to RFC 5246. + # Corresponds to the JSON property `pemCertificateChain` + # @return [Array] + attr_accessor :pem_certificate_chain + + # Immutable. A pem-encoded X.509 certificate signing request (CSR). + # Corresponds to the JSON property `pemCsr` + # @return [String] + attr_accessor :pem_csr + + # Describes fields that are relavent to the revocation of a Certificate. + # Corresponds to the JSON property `revocationDetails` + # @return [Google::Apis::PrivatecaV1beta1::RevocationDetails] + attr_accessor :revocation_details + + # Output only. The time at which this Certificate was updated. + # Corresponds to the JSON property `updateTime` + # @return [String] + attr_accessor :update_time + + def initialize(**args) + update!(**args) + end + + # Update properties of this object + def update!(**args) + @certificate_description = args[:certificate_description] if args.key?(:certificate_description) + @config = args[:config] if args.key?(:config) + @create_time = args[:create_time] if args.key?(:create_time) + @labels = args[:labels] if args.key?(:labels) + @lifetime = args[:lifetime] if args.key?(:lifetime) + @name = args[:name] if args.key?(:name) + @pem_certificate = args[:pem_certificate] if args.key?(:pem_certificate) + @pem_certificate_chain = args[:pem_certificate_chain] if args.key?(:pem_certificate_chain) + @pem_csr = args[:pem_csr] if args.key?(:pem_csr) + @revocation_details = args[:revocation_details] if args.key?(:revocation_details) + @update_time = args[:update_time] if args.key?(:update_time) + end + end + + # A CertificateAuthority represents an individual Certificate Authority. A + # CertificateAuthority can be used to create Certificates. + class CertificateAuthority + include Google::Apis::Core::Hashable + + # URLs where a CertificateAuthority will publish content. + # Corresponds to the JSON property `accessUrls` + # @return [Google::Apis::PrivatecaV1beta1::AccessUrls] + attr_accessor :access_urls + + # Output only. A structured description of this CertificateAuthority's CA + # certificate and its issuers. Ordered as self-to-root. + # Corresponds to the JSON property `caCertificateDescriptions` + # @return [Array] + attr_accessor :ca_certificate_descriptions + + # The issuing policy for a CertificateAuthority. Certificates will not be + # successfully issued from this CertificateAuthority if they violate the policy. + # Corresponds to the JSON property `certificatePolicy` + # @return [Google::Apis::PrivatecaV1beta1::CertificateAuthorityPolicy] + attr_accessor :certificate_policy + + # A CertificateConfig describes an X.509 certificate or CSR that is to be + # created, as an alternative to using ASN.1. + # Corresponds to the JSON property `config` + # @return [Google::Apis::PrivatecaV1beta1::CertificateConfig] + attr_accessor :config + + # Output only. The time at which this CertificateAuthority was created. + # Corresponds to the JSON property `createTime` + # @return [String] + attr_accessor :create_time + + # Output only. The time at which this CertificateAuthority will be deleted, if + # scheduled for deletion. + # Corresponds to the JSON property `deleteTime` + # @return [String] + attr_accessor :delete_time + + # Immutable. The name of a Cloud Storage bucket where this CertificateAuthority + # will publish content, such as the CA certificate and CRLs. This must be a + # bucket name, without any prefixes (such as `gs://`) or suffixes (such as `. + # googleapis.com`). For example, to use a bucket named `my-bucket`, you would + # simply specify `my-bucket`. If not specified, a managed bucket will be created. + # Corresponds to the JSON property `gcsBucket` + # @return [String] + attr_accessor :gcs_bucket + + # Options that affect all certificates issued by a CertificateAuthority. + # Corresponds to the JSON property `issuingOptions` + # @return [Google::Apis::PrivatecaV1beta1::IssuingOptions] + attr_accessor :issuing_options + + # A Cloud KMS key configuration that a CertificateAuthority will use. + # Corresponds to the JSON property `keySpec` + # @return [Google::Apis::PrivatecaV1beta1::KeyVersionSpec] + attr_accessor :key_spec + + # Optional. Labels with user-defined metadata. + # Corresponds to the JSON property `labels` + # @return [Hash] + attr_accessor :labels + + # Required. The desired lifetime of the CA certificate. Used to create the " + # not_before_time" and "not_after_time" fields inside an X.509 certificate. + # Corresponds to the JSON property `lifetime` + # @return [String] + attr_accessor :lifetime + + # Output only. The resource name for this CertificateAuthority in the format ` + # projects/*/locations/*/certificateAuthorities/*`. + # Corresponds to the JSON property `name` + # @return [String] + attr_accessor :name + + # Output only. This CertificateAuthority's certificate chain, including the + # current CertificateAuthority's certificate. Ordered such that the root issuer + # is the final element (consistent with RFC 5246). For a self-signed CA, this + # will only list the current CertificateAuthority's certificate. + # Corresponds to the JSON property `pemCaCertificates` + # @return [Array] + attr_accessor :pem_ca_certificates + + # Output only. The State for this CertificateAuthority. + # Corresponds to the JSON property `state` + # @return [String] + attr_accessor :state + + # Describes a subordinate CA's issuers. This is either a resource path to a + # known issuing CertificateAuthority, or a PEM issuer certificate chain. + # Corresponds to the JSON property `subordinateConfig` + # @return [Google::Apis::PrivatecaV1beta1::SubordinateConfig] + attr_accessor :subordinate_config + + # Required. Immutable. The Tier of this CertificateAuthority. + # Corresponds to the JSON property `tier` + # @return [String] + attr_accessor :tier + + # Required. Immutable. The Type of this CertificateAuthority. + # Corresponds to the JSON property `type` + # @return [String] + attr_accessor :type + + # Output only. The time at which this CertificateAuthority was updated. + # Corresponds to the JSON property `updateTime` + # @return [String] + attr_accessor :update_time + + def initialize(**args) + update!(**args) + end + + # Update properties of this object + def update!(**args) + @access_urls = args[:access_urls] if args.key?(:access_urls) + @ca_certificate_descriptions = args[:ca_certificate_descriptions] if args.key?(:ca_certificate_descriptions) + @certificate_policy = args[:certificate_policy] if args.key?(:certificate_policy) + @config = args[:config] if args.key?(:config) + @create_time = args[:create_time] if args.key?(:create_time) + @delete_time = args[:delete_time] if args.key?(:delete_time) + @gcs_bucket = args[:gcs_bucket] if args.key?(:gcs_bucket) + @issuing_options = args[:issuing_options] if args.key?(:issuing_options) + @key_spec = args[:key_spec] if args.key?(:key_spec) + @labels = args[:labels] if args.key?(:labels) + @lifetime = args[:lifetime] if args.key?(:lifetime) + @name = args[:name] if args.key?(:name) + @pem_ca_certificates = args[:pem_ca_certificates] if args.key?(:pem_ca_certificates) + @state = args[:state] if args.key?(:state) + @subordinate_config = args[:subordinate_config] if args.key?(:subordinate_config) + @tier = args[:tier] if args.key?(:tier) + @type = args[:type] if args.key?(:type) + @update_time = args[:update_time] if args.key?(:update_time) + end + end + + # The issuing policy for a CertificateAuthority. Certificates will not be + # successfully issued from this CertificateAuthority if they violate the policy. + class CertificateAuthorityPolicy + include Google::Apis::Core::Hashable + + # Optional. If any value is specified here, then all Certificates issued by the + # CertificateAuthority must match at least one listed value. If no value is + # specified, all values will be allowed for this fied. Glob patterns are also + # supported. + # Corresponds to the JSON property `allowedCommonNames` + # @return [Array] + attr_accessor :allowed_common_names + + # Optional. All Certificates issued by the CertificateAuthority must match at + # least one listed ReusableConfigWrapper in the list. + # Corresponds to the JSON property `allowedConfigList` + # @return [Google::Apis::PrivatecaV1beta1::AllowedConfigList] + attr_accessor :allowed_config_list + + # IssuanceModes specifies the allowed ways in which Certificates may be + # requested from this CertificateAuthority. + # Corresponds to the JSON property `allowedIssuanceModes` + # @return [Google::Apis::PrivatecaV1beta1::IssuanceModes] + attr_accessor :allowed_issuance_modes + + # Optional. If any Subject is specified here, then all Certificates issued by + # the CertificateAuthority must match at least one listed Subject. If a Subject + # has an empty field, any value will be allowed for that field. + # Corresponds to the JSON property `allowedLocationsAndOrganizations` + # @return [Array] + attr_accessor :allowed_locations_and_organizations + + # AllowedSubjectAltNames specifies the allowed values for SubjectAltNames by the + # CertificateAuthority when issuing Certificates. + # Corresponds to the JSON property `allowedSans` + # @return [Google::Apis::PrivatecaV1beta1::AllowedSubjectAltNames] + attr_accessor :allowed_sans + + # Optional. The maximum lifetime allowed by the CertificateAuthority. Note that + # if the any part if the issuing chain expires before a Certificate's requested + # maximum_lifetime, the effective lifetime will be explicitly truncated. + # Corresponds to the JSON property `maximumLifetime` + # @return [String] + attr_accessor :maximum_lifetime + + # A ReusableConfigWrapper describes values that may assist in creating an X.509 + # certificate, or a reference to a pre-defined set of values. + # Corresponds to the JSON property `overwriteConfigValues` + # @return [Google::Apis::PrivatecaV1beta1::ReusableConfigWrapper] + attr_accessor :overwrite_config_values + + def initialize(**args) + update!(**args) + end + + # Update properties of this object + def update!(**args) + @allowed_common_names = args[:allowed_common_names] if args.key?(:allowed_common_names) + @allowed_config_list = args[:allowed_config_list] if args.key?(:allowed_config_list) + @allowed_issuance_modes = args[:allowed_issuance_modes] if args.key?(:allowed_issuance_modes) + @allowed_locations_and_organizations = args[:allowed_locations_and_organizations] if args.key?(:allowed_locations_and_organizations) + @allowed_sans = args[:allowed_sans] if args.key?(:allowed_sans) + @maximum_lifetime = args[:maximum_lifetime] if args.key?(:maximum_lifetime) + @overwrite_config_values = args[:overwrite_config_values] if args.key?(:overwrite_config_values) + end + end + + # A CertificateConfig describes an X.509 certificate or CSR that is to be + # created, as an alternative to using ASN.1. + class CertificateConfig + include Google::Apis::Core::Hashable + + # A PublicKey describes a public key. + # Corresponds to the JSON property `publicKey` + # @return [Google::Apis::PrivatecaV1beta1::PublicKey] + attr_accessor :public_key + + # A ReusableConfigWrapper describes values that may assist in creating an X.509 + # certificate, or a reference to a pre-defined set of values. + # Corresponds to the JSON property `reusableConfig` + # @return [Google::Apis::PrivatecaV1beta1::ReusableConfigWrapper] + attr_accessor :reusable_config + + # These values are used to create the distinguished name and subject alternative + # name fields in an X.509 certificate. + # Corresponds to the JSON property `subjectConfig` + # @return [Google::Apis::PrivatecaV1beta1::SubjectConfig] + attr_accessor :subject_config + + def initialize(**args) + update!(**args) + end + + # Update properties of this object + def update!(**args) + @public_key = args[:public_key] if args.key?(:public_key) + @reusable_config = args[:reusable_config] if args.key?(:reusable_config) + @subject_config = args[:subject_config] if args.key?(:subject_config) + end + end + + # A CertificateDescription describes an X.509 certificate or CSR that has been + # issued, as an alternative to using ASN.1 / X.509. + class CertificateDescription + include Google::Apis::Core::Hashable + + # Describes lists of issuer CA certificate URLs that appear in the "Authority + # Information Access" extension in the certificate. + # Corresponds to the JSON property `aiaIssuingCertificateUrls` + # @return [Array] + attr_accessor :aia_issuing_certificate_urls + + # A KeyId identifies a specific public key, usually by hashing the public key. + # Corresponds to the JSON property `authorityKeyId` + # @return [Google::Apis::PrivatecaV1beta1::KeyId] + attr_accessor :authority_key_id + + # A group of fingerprints for the x509 certificate. + # Corresponds to the JSON property `certFingerprint` + # @return [Google::Apis::PrivatecaV1beta1::CertificateFingerprint] + attr_accessor :cert_fingerprint + + # A ReusableConfigValues is used to describe certain fields of an X.509 + # certificate, such as the key usage fields, fields specific to CA certificates, + # certificate policy extensions and custom extensions. + # Corresponds to the JSON property `configValues` + # @return [Google::Apis::PrivatecaV1beta1::ReusableConfigValues] + attr_accessor :config_values + + # Describes a list of locations to obtain CRL information, i.e. the + # DistributionPoint.fullName described by https://tools.ietf.org/html/rfc5280# + # section-4.2.1.13 + # Corresponds to the JSON property `crlDistributionPoints` + # @return [Array] + attr_accessor :crl_distribution_points + + # A PublicKey describes a public key. + # Corresponds to the JSON property `publicKey` + # @return [Google::Apis::PrivatecaV1beta1::PublicKey] + attr_accessor :public_key + + # These values describe fields in an issued X.509 certificate such as the + # distinguished name, subject alternative names, serial number, and lifetime. + # Corresponds to the JSON property `subjectDescription` + # @return [Google::Apis::PrivatecaV1beta1::SubjectDescription] + attr_accessor :subject_description + + # A KeyId identifies a specific public key, usually by hashing the public key. + # Corresponds to the JSON property `subjectKeyId` + # @return [Google::Apis::PrivatecaV1beta1::KeyId] + attr_accessor :subject_key_id + + def initialize(**args) + update!(**args) + end + + # Update properties of this object + def update!(**args) + @aia_issuing_certificate_urls = args[:aia_issuing_certificate_urls] if args.key?(:aia_issuing_certificate_urls) + @authority_key_id = args[:authority_key_id] if args.key?(:authority_key_id) + @cert_fingerprint = args[:cert_fingerprint] if args.key?(:cert_fingerprint) + @config_values = args[:config_values] if args.key?(:config_values) + @crl_distribution_points = args[:crl_distribution_points] if args.key?(:crl_distribution_points) + @public_key = args[:public_key] if args.key?(:public_key) + @subject_description = args[:subject_description] if args.key?(:subject_description) + @subject_key_id = args[:subject_key_id] if args.key?(:subject_key_id) + end + end + + # A group of fingerprints for the x509 certificate. + class CertificateFingerprint + include Google::Apis::Core::Hashable + + # The SHA 256 hash, encoded in hexadecimal, of the DER x509 certificate. + # Corresponds to the JSON property `sha256Hash` + # @return [String] + attr_accessor :sha256_hash + + def initialize(**args) + update!(**args) + end + + # Update properties of this object + def update!(**args) + @sha256_hash = args[:sha256_hash] if args.key?(:sha256_hash) + end + end + + # A CertificateRevocationList corresponds to a signed X.509 certificate + # Revocation List (CRL). A CRL contains the serial numbers of certificates that + # should no longer be trusted. + class CertificateRevocationList + include Google::Apis::Core::Hashable + + # Output only. The location where 'pem_crl' can be accessed. + # Corresponds to the JSON property `accessUrl` + # @return [String] + attr_accessor :access_url + + # Output only. The time at which this CertificateRevocationList was created. + # Corresponds to the JSON property `createTime` + # @return [String] + attr_accessor :create_time + + # Optional. Labels with user-defined metadata. + # Corresponds to the JSON property `labels` + # @return [Hash] + attr_accessor :labels + + # Output only. The resource path for this CertificateRevocationList in the + # format `projects/*/locations/*/certificateAuthorities/*/ + # certificateRevocationLists/*`. + # Corresponds to the JSON property `name` + # @return [String] + attr_accessor :name + + # Output only. The PEM-encoded X.509 CRL. + # Corresponds to the JSON property `pemCrl` + # @return [String] + attr_accessor :pem_crl + + # Output only. The revoked serial numbers that appear in pem_crl. + # Corresponds to the JSON property `revokedCertificates` + # @return [Array] + attr_accessor :revoked_certificates + + # Output only. The CRL sequence number that appears in pem_crl. + # Corresponds to the JSON property `sequenceNumber` + # @return [Fixnum] + attr_accessor :sequence_number + + # Output only. The State for this CertificateRevocationList. + # Corresponds to the JSON property `state` + # @return [String] + attr_accessor :state + + # Output only. The time at which this CertificateRevocationList was updated. + # Corresponds to the JSON property `updateTime` + # @return [String] + attr_accessor :update_time + + def initialize(**args) + update!(**args) + end + + # Update properties of this object + def update!(**args) + @access_url = args[:access_url] if args.key?(:access_url) + @create_time = args[:create_time] if args.key?(:create_time) + @labels = args[:labels] if args.key?(:labels) + @name = args[:name] if args.key?(:name) + @pem_crl = args[:pem_crl] if args.key?(:pem_crl) + @revoked_certificates = args[:revoked_certificates] if args.key?(:revoked_certificates) + @sequence_number = args[:sequence_number] if args.key?(:sequence_number) + @state = args[:state] if args.key?(:state) + @update_time = args[:update_time] if args.key?(:update_time) + end + end + + # Request message for CertificateAuthorityService.DisableCertificateAuthority. + class DisableCertificateAuthorityRequest + include Google::Apis::Core::Hashable + + # Optional. An ID to identify requests. Specify a unique request ID so that if + # you must retry your request, the server will know to ignore the request if it + # has already been completed. The server will guarantee that for at least 60 + # minutes since the first request. For example, consider a situation where you + # make an initial request and t he request times out. If you make the request + # again with the same request ID, the server can check if original operation + # with the same request ID was received, and if so, will ignore the second + # request. This prevents clients from accidentally creating duplicate + # commitments. The request ID must be a valid UUID with the exception that zero + # UUID is not supported (00000000-0000-0000-0000-000000000000). + # Corresponds to the JSON property `requestId` + # @return [String] + attr_accessor :request_id + + def initialize(**args) + update!(**args) + end + + # Update properties of this object + def update!(**args) + @request_id = args[:request_id] if args.key?(:request_id) + end + end + + # A generic empty message that you can re-use to avoid defining duplicated empty + # messages in your APIs. A typical example is to use it as the request or the + # response type of an API method. For instance: service Foo ` rpc Bar(google. + # protobuf.Empty) returns (google.protobuf.Empty); ` The JSON representation for + # `Empty` is empty JSON object ````. + class Empty + include Google::Apis::Core::Hashable + + def initialize(**args) + update!(**args) + end + + # Update properties of this object + def update!(**args) + end + end + + # Request message for CertificateAuthorityService.EnableCertificateAuthority. + class EnableCertificateAuthorityRequest + include Google::Apis::Core::Hashable + + # Optional. An ID to identify requests. Specify a unique request ID so that if + # you must retry your request, the server will know to ignore the request if it + # has already been completed. The server will guarantee that for at least 60 + # minutes since the first request. For example, consider a situation where you + # make an initial request and t he request times out. If you make the request + # again with the same request ID, the server can check if original operation + # with the same request ID was received, and if so, will ignore the second + # request. This prevents clients from accidentally creating duplicate + # commitments. The request ID must be a valid UUID with the exception that zero + # UUID is not supported (00000000-0000-0000-0000-000000000000). + # Corresponds to the JSON property `requestId` + # @return [String] + attr_accessor :request_id + + def initialize(**args) + update!(**args) + end + + # Update properties of this object + def update!(**args) + @request_id = args[:request_id] if args.key?(:request_id) + end + end + + # Represents a textual expression in the Common Expression Language (CEL) syntax. + # CEL is a C-like expression language. The syntax and semantics of CEL are + # documented at https://github.com/google/cel-spec. Example (Comparison): title: + # "Summary size limit" description: "Determines if a summary is less than 100 + # chars" expression: "document.summary.size() < 100" Example (Equality): title: " + # Requestor is owner" description: "Determines if requestor is the document + # owner" expression: "document.owner == request.auth.claims.email" Example ( + # Logic): title: "Public documents" description: "Determine whether the document + # should be publicly visible" expression: "document.type != 'private' && + # document.type != 'internal'" Example (Data Manipulation): title: "Notification + # string" description: "Create a notification string with a timestamp." + # expression: "'New message received at ' + string(document.create_time)" The + # exact variables and functions that may be referenced within an expression are + # determined by the service that evaluates it. See the service documentation for + # additional information. + class Expr + include Google::Apis::Core::Hashable + + # Optional. Description of the expression. This is a longer text which describes + # the expression, e.g. when hovered over it in a UI. + # Corresponds to the JSON property `description` + # @return [String] + attr_accessor :description + + # Textual representation of an expression in Common Expression Language syntax. + # Corresponds to the JSON property `expression` + # @return [String] + attr_accessor :expression + + # Optional. String indicating the location of the expression for error reporting, + # e.g. a file name and a position in the file. + # Corresponds to the JSON property `location` + # @return [String] + attr_accessor :location + + # Optional. Title for the expression, i.e. a short string describing its purpose. + # This can be used e.g. in UIs which allow to enter the expression. + # Corresponds to the JSON property `title` + # @return [String] + attr_accessor :title + + def initialize(**args) + update!(**args) + end + + # Update properties of this object + def update!(**args) + @description = args[:description] if args.key?(:description) + @expression = args[:expression] if args.key?(:expression) + @location = args[:location] if args.key?(:location) + @title = args[:title] if args.key?(:title) + end + end + + # KeyUsage.ExtendedKeyUsageOptions has fields that correspond to certain common + # OIDs that could be specified as an extended key usage value. + class ExtendedKeyUsageOptions + include Google::Apis::Core::Hashable + + # Corresponds to OID 1.3.6.1.5.5.7.3.2. Officially described as "TLS WWW client + # authentication", though regularly used for non-WWW TLS. + # Corresponds to the JSON property `clientAuth` + # @return [Boolean] + attr_accessor :client_auth + alias_method :client_auth?, :client_auth + + # Corresponds to OID 1.3.6.1.5.5.7.3.3. Officially described as "Signing of + # downloadable executable code client authentication". + # Corresponds to the JSON property `codeSigning` + # @return [Boolean] + attr_accessor :code_signing + alias_method :code_signing?, :code_signing + + # Corresponds to OID 1.3.6.1.5.5.7.3.4. Officially described as "Email + # protection". + # Corresponds to the JSON property `emailProtection` + # @return [Boolean] + attr_accessor :email_protection + alias_method :email_protection?, :email_protection + + # Corresponds to OID 1.3.6.1.5.5.7.3.9. Officially described as "Signing OCSP + # responses". + # Corresponds to the JSON property `ocspSigning` + # @return [Boolean] + attr_accessor :ocsp_signing + alias_method :ocsp_signing?, :ocsp_signing + + # Corresponds to OID 1.3.6.1.5.5.7.3.1. Officially described as "TLS WWW server + # authentication", though regularly used for non-WWW TLS. + # Corresponds to the JSON property `serverAuth` + # @return [Boolean] + attr_accessor :server_auth + alias_method :server_auth?, :server_auth + + # Corresponds to OID 1.3.6.1.5.5.7.3.8. Officially described as "Binding the + # hash of an object to a time". + # Corresponds to the JSON property `timeStamping` + # @return [Boolean] + attr_accessor :time_stamping + alias_method :time_stamping?, :time_stamping + + def initialize(**args) + update!(**args) + end + + # Update properties of this object + def update!(**args) + @client_auth = args[:client_auth] if args.key?(:client_auth) + @code_signing = args[:code_signing] if args.key?(:code_signing) + @email_protection = args[:email_protection] if args.key?(:email_protection) + @ocsp_signing = args[:ocsp_signing] if args.key?(:ocsp_signing) + @server_auth = args[:server_auth] if args.key?(:server_auth) + @time_stamping = args[:time_stamping] if args.key?(:time_stamping) + end + end + + # Response message for CertificateAuthorityService.FetchCertificateAuthorityCsr. + class FetchCertificateAuthorityCsrResponse + include Google::Apis::Core::Hashable + + # Output only. The PEM-encoded signed certificate signing request (CSR). + # Corresponds to the JSON property `pemCsr` + # @return [String] + attr_accessor :pem_csr + + def initialize(**args) + update!(**args) + end + + # Update properties of this object + def update!(**args) + @pem_csr = args[:pem_csr] if args.key?(:pem_csr) + end + end + + # IssuanceModes specifies the allowed ways in which Certificates may be + # requested from this CertificateAuthority. + class IssuanceModes + include Google::Apis::Core::Hashable + + # Required. When true, allows callers to create Certificates by specifying a + # CertificateConfig. + # Corresponds to the JSON property `allowConfigBasedIssuance` + # @return [Boolean] + attr_accessor :allow_config_based_issuance + alias_method :allow_config_based_issuance?, :allow_config_based_issuance + + # Required. When true, allows callers to create Certificates by specifying a CSR. + # Corresponds to the JSON property `allowCsrBasedIssuance` + # @return [Boolean] + attr_accessor :allow_csr_based_issuance + alias_method :allow_csr_based_issuance?, :allow_csr_based_issuance + + def initialize(**args) + update!(**args) + end + + # Update properties of this object + def update!(**args) + @allow_config_based_issuance = args[:allow_config_based_issuance] if args.key?(:allow_config_based_issuance) + @allow_csr_based_issuance = args[:allow_csr_based_issuance] if args.key?(:allow_csr_based_issuance) + end + end + + # Options that affect all certificates issued by a CertificateAuthority. + class IssuingOptions + include Google::Apis::Core::Hashable + + # Required. When true, includes a URL to the issuing CA certificate in the " + # authority information access" X.509 extension. + # Corresponds to the JSON property `includeCaCertUrl` + # @return [Boolean] + attr_accessor :include_ca_cert_url + alias_method :include_ca_cert_url?, :include_ca_cert_url + + # Required. When true, includes a URL to the CRL corresponding to certificates + # issued from a CertificateAuthority. CRLs will expire 7 days from their + # creation. However, we will rebuild daily. CRLs are also rebuilt shortly after + # a certificate is revoked. + # Corresponds to the JSON property `includeCrlAccessUrl` + # @return [Boolean] + attr_accessor :include_crl_access_url + alias_method :include_crl_access_url?, :include_crl_access_url + + def initialize(**args) + update!(**args) + end + + # Update properties of this object + def update!(**args) + @include_ca_cert_url = args[:include_ca_cert_url] if args.key?(:include_ca_cert_url) + @include_crl_access_url = args[:include_crl_access_url] if args.key?(:include_crl_access_url) + end + end + + # A KeyId identifies a specific public key, usually by hashing the public key. + class KeyId + include Google::Apis::Core::Hashable + + # Optional. The value of this KeyId encoded in lowercase hexadecimal. This is + # most likely the 160 bit SHA-1 hash of the public key. + # Corresponds to the JSON property `keyId` + # @return [String] + attr_accessor :key_id + + def initialize(**args) + update!(**args) + end + + # Update properties of this object + def update!(**args) + @key_id = args[:key_id] if args.key?(:key_id) + end + end + + # A KeyUsage describes key usage values that may appear in an X.509 certificate. + class KeyUsage + include Google::Apis::Core::Hashable + + # KeyUsage.KeyUsageOptions corresponds to the key usage values described in + # https://tools.ietf.org/html/rfc5280#section-4.2.1.3. + # Corresponds to the JSON property `baseKeyUsage` + # @return [Google::Apis::PrivatecaV1beta1::KeyUsageOptions] + attr_accessor :base_key_usage + + # KeyUsage.ExtendedKeyUsageOptions has fields that correspond to certain common + # OIDs that could be specified as an extended key usage value. + # Corresponds to the JSON property `extendedKeyUsage` + # @return [Google::Apis::PrivatecaV1beta1::ExtendedKeyUsageOptions] + attr_accessor :extended_key_usage + + # Used to describe extended key usages that are not listed in the KeyUsage. + # ExtendedKeyUsageOptions message. + # Corresponds to the JSON property `unknownExtendedKeyUsages` + # @return [Array] + attr_accessor :unknown_extended_key_usages + + def initialize(**args) + update!(**args) + end + + # Update properties of this object + def update!(**args) + @base_key_usage = args[:base_key_usage] if args.key?(:base_key_usage) + @extended_key_usage = args[:extended_key_usage] if args.key?(:extended_key_usage) + @unknown_extended_key_usages = args[:unknown_extended_key_usages] if args.key?(:unknown_extended_key_usages) + end + end + + # KeyUsage.KeyUsageOptions corresponds to the key usage values described in + # https://tools.ietf.org/html/rfc5280#section-4.2.1.3. + class KeyUsageOptions + include Google::Apis::Core::Hashable + + # The key may be used to sign certificates. + # Corresponds to the JSON property `certSign` + # @return [Boolean] + attr_accessor :cert_sign + alias_method :cert_sign?, :cert_sign + + # The key may be used for cryptographic commitments. Note that this may also be + # referred to as "non-repudiation". + # Corresponds to the JSON property `contentCommitment` + # @return [Boolean] + attr_accessor :content_commitment + alias_method :content_commitment?, :content_commitment + + # The key may be used sign certificate revocation lists. + # Corresponds to the JSON property `crlSign` + # @return [Boolean] + attr_accessor :crl_sign + alias_method :crl_sign?, :crl_sign + + # The key may be used to encipher data. + # Corresponds to the JSON property `dataEncipherment` + # @return [Boolean] + attr_accessor :data_encipherment + alias_method :data_encipherment?, :data_encipherment + + # The key may be used to decipher only. + # Corresponds to the JSON property `decipherOnly` + # @return [Boolean] + attr_accessor :decipher_only + alias_method :decipher_only?, :decipher_only + + # The key may be used for digital signatures. + # Corresponds to the JSON property `digitalSignature` + # @return [Boolean] + attr_accessor :digital_signature + alias_method :digital_signature?, :digital_signature + + # The key may be used to encipher only. + # Corresponds to the JSON property `encipherOnly` + # @return [Boolean] + attr_accessor :encipher_only + alias_method :encipher_only?, :encipher_only + + # The key may be used in a key agreement protocol. + # Corresponds to the JSON property `keyAgreement` + # @return [Boolean] + attr_accessor :key_agreement + alias_method :key_agreement?, :key_agreement + + # The key may be used to encipher other keys. + # Corresponds to the JSON property `keyEncipherment` + # @return [Boolean] + attr_accessor :key_encipherment + alias_method :key_encipherment?, :key_encipherment + + def initialize(**args) + update!(**args) + end + + # Update properties of this object + def update!(**args) + @cert_sign = args[:cert_sign] if args.key?(:cert_sign) + @content_commitment = args[:content_commitment] if args.key?(:content_commitment) + @crl_sign = args[:crl_sign] if args.key?(:crl_sign) + @data_encipherment = args[:data_encipherment] if args.key?(:data_encipherment) + @decipher_only = args[:decipher_only] if args.key?(:decipher_only) + @digital_signature = args[:digital_signature] if args.key?(:digital_signature) + @encipher_only = args[:encipher_only] if args.key?(:encipher_only) + @key_agreement = args[:key_agreement] if args.key?(:key_agreement) + @key_encipherment = args[:key_encipherment] if args.key?(:key_encipherment) + end + end + + # A Cloud KMS key configuration that a CertificateAuthority will use. + class KeyVersionSpec + include Google::Apis::Core::Hashable + + # Required. The algorithm to use for creating a managed Cloud KMS key for a for + # a simplified experience. All managed keys will be have their ProtectionLevel + # as `HSM`. + # Corresponds to the JSON property `algorithm` + # @return [String] + attr_accessor :algorithm + + # Required. The resource name for an existing Cloud KMS CryptoKeyVersion in the + # format `projects/*/locations/*/keyRings/*/cryptoKeys/*/cryptoKeyVersions/*`. + # This option enables full flexibility in the key's capabilities and properties. + # Corresponds to the JSON property `cloudKmsKeyVersion` + # @return [String] + attr_accessor :cloud_kms_key_version + + def initialize(**args) + update!(**args) + end + + # Update properties of this object + def update!(**args) + @algorithm = args[:algorithm] if args.key?(:algorithm) + @cloud_kms_key_version = args[:cloud_kms_key_version] if args.key?(:cloud_kms_key_version) + end + end + + # Response message for CertificateAuthorityService.ListCertificateAuthorities. + class ListCertificateAuthoritiesResponse + include Google::Apis::Core::Hashable + + # The list of CertificateAuthorities. + # Corresponds to the JSON property `certificateAuthorities` + # @return [Array] + attr_accessor :certificate_authorities + + # A token to retrieve next page of results. Pass this value in + # ListCertificateAuthoritiesRequest.next_page_token to retrieve the next page of + # results. + # Corresponds to the JSON property `nextPageToken` + # @return [String] + attr_accessor :next_page_token + + # A list of locations (e.g. "us-west1") that could not be reached. + # Corresponds to the JSON property `unreachable` + # @return [Array] + attr_accessor :unreachable + + def initialize(**args) + update!(**args) + end + + # Update properties of this object + def update!(**args) + @certificate_authorities = args[:certificate_authorities] if args.key?(:certificate_authorities) + @next_page_token = args[:next_page_token] if args.key?(:next_page_token) + @unreachable = args[:unreachable] if args.key?(:unreachable) + end + end + + # Response message for CertificateAuthorityService. + # ListCertificateRevocationLists. + class ListCertificateRevocationListsResponse + include Google::Apis::Core::Hashable + + # The list of CertificateRevocationLists. + # Corresponds to the JSON property `certificateRevocationLists` + # @return [Array] + attr_accessor :certificate_revocation_lists + + # A token to retrieve next page of results. Pass this value in + # ListCertificateRevocationListsRequest.next_page_token to retrieve the next + # page of results. + # Corresponds to the JSON property `nextPageToken` + # @return [String] + attr_accessor :next_page_token + + # A list of locations (e.g. "us-west1") that could not be reached. + # Corresponds to the JSON property `unreachable` + # @return [Array] + attr_accessor :unreachable + + def initialize(**args) + update!(**args) + end + + # Update properties of this object + def update!(**args) + @certificate_revocation_lists = args[:certificate_revocation_lists] if args.key?(:certificate_revocation_lists) + @next_page_token = args[:next_page_token] if args.key?(:next_page_token) + @unreachable = args[:unreachable] if args.key?(:unreachable) + end + end + + # Response message for CertificateAuthorityService.ListCertificates. + class ListCertificatesResponse + include Google::Apis::Core::Hashable + + # The list of Certificates. + # Corresponds to the JSON property `certificates` + # @return [Array] + attr_accessor :certificates + + # A token to retrieve next page of results. Pass this value in + # ListCertificatesRequest.next_page_token to retrieve the next page of results. + # Corresponds to the JSON property `nextPageToken` + # @return [String] + attr_accessor :next_page_token + + # A list of locations (e.g. "us-west1") that could not be reached. + # Corresponds to the JSON property `unreachable` + # @return [Array] + attr_accessor :unreachable + + def initialize(**args) + update!(**args) + end + + # Update properties of this object + def update!(**args) + @certificates = args[:certificates] if args.key?(:certificates) + @next_page_token = args[:next_page_token] if args.key?(:next_page_token) + @unreachable = args[:unreachable] if args.key?(:unreachable) + end + end + + # The response message for Locations.ListLocations. + class ListLocationsResponse + include Google::Apis::Core::Hashable + + # A list of locations that matches the specified filter in the request. + # Corresponds to the JSON property `locations` + # @return [Array] + attr_accessor :locations + + # The standard List next-page token. + # Corresponds to the JSON property `nextPageToken` + # @return [String] + attr_accessor :next_page_token + + def initialize(**args) + update!(**args) + end + + # Update properties of this object + def update!(**args) + @locations = args[:locations] if args.key?(:locations) + @next_page_token = args[:next_page_token] if args.key?(:next_page_token) + end + end + + # The response message for Operations.ListOperations. + class ListOperationsResponse + include Google::Apis::Core::Hashable + + # The standard List next-page token. + # Corresponds to the JSON property `nextPageToken` + # @return [String] + attr_accessor :next_page_token + + # A list of operations that matches the specified filter in the request. + # Corresponds to the JSON property `operations` + # @return [Array] + attr_accessor :operations + + def initialize(**args) + update!(**args) + end + + # Update properties of this object + def update!(**args) + @next_page_token = args[:next_page_token] if args.key?(:next_page_token) + @operations = args[:operations] if args.key?(:operations) + end + end + + # Response message for CertificateAuthorityService.ListReusableConfigs. + class ListReusableConfigsResponse + include Google::Apis::Core::Hashable + + # A token to retrieve next page of results. Pass this value in + # ListReusableConfigsRequest.next_page_token to retrieve the next page of + # results. + # Corresponds to the JSON property `nextPageToken` + # @return [String] + attr_accessor :next_page_token + + # The list of ReusableConfigs. + # Corresponds to the JSON property `reusableConfigs` + # @return [Array] + attr_accessor :reusable_configs + + # A list of locations (e.g. "us-west1") that could not be reached. + # Corresponds to the JSON property `unreachable` + # @return [Array] + attr_accessor :unreachable + + def initialize(**args) + update!(**args) + end + + # Update properties of this object + def update!(**args) + @next_page_token = args[:next_page_token] if args.key?(:next_page_token) + @reusable_configs = args[:reusable_configs] if args.key?(:reusable_configs) + @unreachable = args[:unreachable] if args.key?(:unreachable) + end + end + + # A resource that represents Google Cloud Platform location. + class Location + include Google::Apis::Core::Hashable + + # The friendly name for this location, typically a nearby city name. For example, + # "Tokyo". + # Corresponds to the JSON property `displayName` + # @return [String] + attr_accessor :display_name + + # Cross-service attributes for the location. For example `"cloud.googleapis.com/ + # region": "us-east1"` + # Corresponds to the JSON property `labels` + # @return [Hash] + attr_accessor :labels + + # The canonical id for this location. For example: `"us-east1"`. + # Corresponds to the JSON property `locationId` + # @return [String] + attr_accessor :location_id + + # Service-specific metadata. For example the available capacity at the given + # location. + # Corresponds to the JSON property `metadata` + # @return [Hash] + attr_accessor :metadata + + # Resource name for the location, which may vary between implementations. For + # example: `"projects/example-project/locations/us-east1"` + # Corresponds to the JSON property `name` + # @return [String] + attr_accessor :name + + def initialize(**args) + update!(**args) + end + + # Update properties of this object + def update!(**args) + @display_name = args[:display_name] if args.key?(:display_name) + @labels = args[:labels] if args.key?(:labels) + @location_id = args[:location_id] if args.key?(:location_id) + @metadata = args[:metadata] if args.key?(:metadata) + @name = args[:name] if args.key?(:name) + end + end + + # An ObjectId specifies an object identifier (OID). These provide context and + # describe types in ASN.1 messages. + class ObjectIdProp + include Google::Apis::Core::Hashable + + # Required. The parts of an OID path. The most significant parts of the path + # come first. + # Corresponds to the JSON property `objectIdPath` + # @return [Array] + attr_accessor :object_id_path + + def initialize(**args) + update!(**args) + end + + # Update properties of this object + def update!(**args) + @object_id_path = args[:object_id_path] if args.key?(:object_id_path) + end + end + + # This resource represents a long-running operation that is the result of a + # network API call. + class Operation + include Google::Apis::Core::Hashable + + # If the value is `false`, it means the operation is still in progress. If `true` + # , the operation is completed, and either `error` or `response` is available. + # Corresponds to the JSON property `done` + # @return [Boolean] + attr_accessor :done + alias_method :done?, :done + + # The `Status` type defines a logical error model that is suitable for different + # programming environments, including REST APIs and RPC APIs. It is used by [ + # gRPC](https://github.com/grpc). Each `Status` message contains three pieces of + # data: error code, error message, and error details. You can find out more + # about this error model and how to work with it in the [API Design Guide](https: + # //cloud.google.com/apis/design/errors). + # Corresponds to the JSON property `error` + # @return [Google::Apis::PrivatecaV1beta1::Status] + attr_accessor :error + + # Service-specific metadata associated with the operation. It typically contains + # progress information and common metadata such as create time. Some services + # might not provide such metadata. Any method that returns a long-running + # operation should document the metadata type, if any. + # Corresponds to the JSON property `metadata` + # @return [Hash] + attr_accessor :metadata + + # The server-assigned name, which is only unique within the same service that + # originally returns it. If you use the default HTTP mapping, the `name` should + # be a resource name ending with `operations/`unique_id``. + # Corresponds to the JSON property `name` + # @return [String] + attr_accessor :name + + # The normal response of the operation in case of success. If the original + # method returns no data on success, such as `Delete`, the response is `google. + # protobuf.Empty`. If the original method is standard `Get`/`Create`/`Update`, + # the response should be the resource. For other methods, the response should + # have the type `XxxResponse`, where `Xxx` is the original method name. For + # example, if the original method name is `TakeSnapshot()`, the inferred + # response type is `TakeSnapshotResponse`. + # Corresponds to the JSON property `response` + # @return [Hash] + attr_accessor :response + + def initialize(**args) + update!(**args) + end + + # Update properties of this object + def update!(**args) + @done = args[:done] if args.key?(:done) + @error = args[:error] if args.key?(:error) + @metadata = args[:metadata] if args.key?(:metadata) + @name = args[:name] if args.key?(:name) + @response = args[:response] if args.key?(:response) + end + end + + # Represents the metadata of the long-running operation. + class OperationMetadata + include Google::Apis::Core::Hashable + + # Output only. API version used to start the operation. + # Corresponds to the JSON property `apiVersion` + # @return [String] + attr_accessor :api_version + + # Output only. The time the operation was created. + # Corresponds to the JSON property `createTime` + # @return [String] + attr_accessor :create_time + + # Output only. The time the operation finished running. + # Corresponds to the JSON property `endTime` + # @return [String] + attr_accessor :end_time + + # Output only. Identifies whether the user has requested cancellation of the + # operation. Operations that have successfully been cancelled have Operation. + # error value with a google.rpc.Status.code of 1, corresponding to `Code. + # CANCELLED`. + # Corresponds to the JSON property `requestedCancellation` + # @return [Boolean] + attr_accessor :requested_cancellation + alias_method :requested_cancellation?, :requested_cancellation + + # Output only. Human-readable status of the operation, if any. + # Corresponds to the JSON property `statusMessage` + # @return [String] + attr_accessor :status_message + + # Output only. Server-defined resource path for the target of the operation. + # Corresponds to the JSON property `target` + # @return [String] + attr_accessor :target + + # Output only. Name of the verb executed by the operation. + # Corresponds to the JSON property `verb` + # @return [String] + attr_accessor :verb + + def initialize(**args) + update!(**args) + end + + # Update properties of this object + def update!(**args) + @api_version = args[:api_version] if args.key?(:api_version) + @create_time = args[:create_time] if args.key?(:create_time) + @end_time = args[:end_time] if args.key?(:end_time) + @requested_cancellation = args[:requested_cancellation] if args.key?(:requested_cancellation) + @status_message = args[:status_message] if args.key?(:status_message) + @target = args[:target] if args.key?(:target) + @verb = args[:verb] if args.key?(:verb) + end + end + + # An Identity and Access Management (IAM) policy, which specifies access + # controls for Google Cloud resources. A `Policy` is a collection of `bindings`. + # A `binding` binds one or more `members` to a single `role`. Members can be + # user accounts, service accounts, Google groups, and domains (such as G Suite). + # A `role` is a named list of permissions; each `role` can be an IAM predefined + # role or a user-created custom role. For some types of Google Cloud resources, + # a `binding` can also specify a `condition`, which is a logical expression that + # allows access to a resource only if the expression evaluates to `true`. A + # condition can add constraints based on attributes of the request, the resource, + # or both. To learn which resources support conditions in their IAM policies, + # see the [IAM documentation](https://cloud.google.com/iam/help/conditions/ + # resource-policies). **JSON example:** ` "bindings": [ ` "role": "roles/ + # resourcemanager.organizationAdmin", "members": [ "user:mike@example.com", " + # group:admins@example.com", "domain:google.com", "serviceAccount:my-project-id@ + # appspot.gserviceaccount.com" ] `, ` "role": "roles/resourcemanager. + # organizationViewer", "members": [ "user:eve@example.com" ], "condition": ` " + # title": "expirable access", "description": "Does not grant access after Sep + # 2020", "expression": "request.time < timestamp('2020-10-01T00:00:00.000Z')", ` + # ` ], "etag": "BwWWja0YfJA=", "version": 3 ` **YAML example:** bindings: - + # members: - user:mike@example.com - group:admins@example.com - domain:google. + # com - serviceAccount:my-project-id@appspot.gserviceaccount.com role: roles/ + # resourcemanager.organizationAdmin - members: - user:eve@example.com role: + # roles/resourcemanager.organizationViewer condition: title: expirable access + # description: Does not grant access after Sep 2020 expression: request.time < + # timestamp('2020-10-01T00:00:00.000Z') - etag: BwWWja0YfJA= - version: 3 For a + # description of IAM and its features, see the [IAM documentation](https://cloud. + # google.com/iam/docs/). + class Policy + include Google::Apis::Core::Hashable + + # Specifies cloud audit logging configuration for this policy. + # Corresponds to the JSON property `auditConfigs` + # @return [Array] + attr_accessor :audit_configs + + # Associates a list of `members` to a `role`. Optionally, may specify a ` + # condition` that determines how and when the `bindings` are applied. Each of + # the `bindings` must contain at least one member. + # Corresponds to the JSON property `bindings` + # @return [Array] + attr_accessor :bindings + + # `etag` is used for optimistic concurrency control as a way to help prevent + # simultaneous updates of a policy from overwriting each other. It is strongly + # suggested that systems make use of the `etag` in the read-modify-write cycle + # to perform policy updates in order to avoid race conditions: An `etag` is + # returned in the response to `getIamPolicy`, and systems are expected to put + # that etag in the request to `setIamPolicy` to ensure that their change will be + # applied to the same version of the policy. **Important:** If you use IAM + # Conditions, you must include the `etag` field whenever you call `setIamPolicy`. + # If you omit this field, then IAM allows you to overwrite a version `3` policy + # with a version `1` policy, and all of the conditions in the version `3` policy + # are lost. + # Corresponds to the JSON property `etag` + # NOTE: Values are automatically base64 encoded/decoded in the client library. + # @return [String] + attr_accessor :etag + + # Specifies the format of the policy. Valid values are `0`, `1`, and `3`. + # Requests that specify an invalid value are rejected. Any operation that + # affects conditional role bindings must specify version `3`. This requirement + # applies to the following operations: * Getting a policy that includes a + # conditional role binding * Adding a conditional role binding to a policy * + # Changing a conditional role binding in a policy * Removing any role binding, + # with or without a condition, from a policy that includes conditions ** + # Important:** If you use IAM Conditions, you must include the `etag` field + # whenever you call `setIamPolicy`. If you omit this field, then IAM allows you + # to overwrite a version `3` policy with a version `1` policy, and all of the + # conditions in the version `3` policy are lost. If a policy does not include + # any conditions, operations on that policy may specify any valid version or + # leave the field unset. To learn which resources support conditions in their + # IAM policies, see the [IAM documentation](https://cloud.google.com/iam/help/ + # conditions/resource-policies). + # Corresponds to the JSON property `version` + # @return [Fixnum] + attr_accessor :version + + def initialize(**args) + update!(**args) + end + + # Update properties of this object + def update!(**args) + @audit_configs = args[:audit_configs] if args.key?(:audit_configs) + @bindings = args[:bindings] if args.key?(:bindings) + @etag = args[:etag] if args.key?(:etag) + @version = args[:version] if args.key?(:version) + end + end + + # A PublicKey describes a public key. + class PublicKey + include Google::Apis::Core::Hashable + + # Required. A public key. When this is specified in a request, the padding and + # encoding can be any of the options described by the respective 'KeyType' value. + # When this is generated by the service, it will always be an RFC 5280 [ + # SubjectPublicKeyInfo](https://tools.ietf.org/html/rfc5280#section-4.1) + # structure containing an algorithm identifier and a key. + # Corresponds to the JSON property `key` + # NOTE: Values are automatically base64 encoded/decoded in the client library. + # @return [String] + attr_accessor :key + + # Required. The type of public key. + # Corresponds to the JSON property `type` + # @return [String] + attr_accessor :type + + def initialize(**args) + update!(**args) + end + + # Update properties of this object + def update!(**args) + @key = args[:key] if args.key?(:key) + @type = args[:type] if args.key?(:type) + end + end + + # Request message for CertificateAuthorityService.RestoreCertificateAuthority. + class RestoreCertificateAuthorityRequest + include Google::Apis::Core::Hashable + + # Optional. An ID to identify requests. Specify a unique request ID so that if + # you must retry your request, the server will know to ignore the request if it + # has already been completed. The server will guarantee that for at least 60 + # minutes since the first request. For example, consider a situation where you + # make an initial request and t he request times out. If you make the request + # again with the same request ID, the server can check if original operation + # with the same request ID was received, and if so, will ignore the second + # request. This prevents clients from accidentally creating duplicate + # commitments. The request ID must be a valid UUID with the exception that zero + # UUID is not supported (00000000-0000-0000-0000-000000000000). + # Corresponds to the JSON property `requestId` + # @return [String] + attr_accessor :request_id + + def initialize(**args) + update!(**args) + end + + # Update properties of this object + def update!(**args) + @request_id = args[:request_id] if args.key?(:request_id) + end + end + + # A ReusableConfig refers to a managed ReusableConfigValues. Those, in turn, are + # used to describe certain fields of an X.509 certificate, such as the key usage + # fields, fields specific to CA certificates, certificate policy extensions and + # custom extensions. + class ReusableConfig + include Google::Apis::Core::Hashable + + # Output only. The time at which this ReusableConfig was created. + # Corresponds to the JSON property `createTime` + # @return [String] + attr_accessor :create_time + + # Optional. A human-readable description of scenarios these ReusableConfigValues + # may be compatible with. + # Corresponds to the JSON property `description` + # @return [String] + attr_accessor :description + + # Optional. Labels with user-defined metadata. + # Corresponds to the JSON property `labels` + # @return [Hash] + attr_accessor :labels + + # Output only. The resource path for this ReusableConfig in the format `projects/ + # */locations/*/reusableConfigs/*`. + # Corresponds to the JSON property `name` + # @return [String] + attr_accessor :name + + # Output only. The time at which this ReusableConfig was updated. + # Corresponds to the JSON property `updateTime` + # @return [String] + attr_accessor :update_time + + # A ReusableConfigValues is used to describe certain fields of an X.509 + # certificate, such as the key usage fields, fields specific to CA certificates, + # certificate policy extensions and custom extensions. + # Corresponds to the JSON property `values` + # @return [Google::Apis::PrivatecaV1beta1::ReusableConfigValues] + attr_accessor :values + + def initialize(**args) + update!(**args) + end + + # Update properties of this object + def update!(**args) + @create_time = args[:create_time] if args.key?(:create_time) + @description = args[:description] if args.key?(:description) + @labels = args[:labels] if args.key?(:labels) + @name = args[:name] if args.key?(:name) + @update_time = args[:update_time] if args.key?(:update_time) + @values = args[:values] if args.key?(:values) + end + end + + # A ReusableConfigValues is used to describe certain fields of an X.509 + # certificate, such as the key usage fields, fields specific to CA certificates, + # certificate policy extensions and custom extensions. + class ReusableConfigValues + include Google::Apis::Core::Hashable + + # Optional. Describes custom X.509 extensions. + # Corresponds to the JSON property `additionalExtensions` + # @return [Array] + attr_accessor :additional_extensions + + # Optional. Describes Online Certificate Status Protocol (OCSP) endpoint + # addresses that appear in the "Authority Information Access" extension in the + # certificate. + # Corresponds to the JSON property `aiaOcspServers` + # @return [Array] + attr_accessor :aia_ocsp_servers + + # Describes values that are relevant in a CA certificate. + # Corresponds to the JSON property `caOptions` + # @return [Google::Apis::PrivatecaV1beta1::CaOptions] + attr_accessor :ca_options + + # A KeyUsage describes key usage values that may appear in an X.509 certificate. + # Corresponds to the JSON property `keyUsage` + # @return [Google::Apis::PrivatecaV1beta1::KeyUsage] + attr_accessor :key_usage + + # Optional. Describes the X.509 certificate policy object identifiers, per https: + # //tools.ietf.org/html/rfc5280#section-4.2.1.4. + # Corresponds to the JSON property `policyIds` + # @return [Array] + attr_accessor :policy_ids + + def initialize(**args) + update!(**args) + end + + # Update properties of this object + def update!(**args) + @additional_extensions = args[:additional_extensions] if args.key?(:additional_extensions) + @aia_ocsp_servers = args[:aia_ocsp_servers] if args.key?(:aia_ocsp_servers) + @ca_options = args[:ca_options] if args.key?(:ca_options) + @key_usage = args[:key_usage] if args.key?(:key_usage) + @policy_ids = args[:policy_ids] if args.key?(:policy_ids) + end + end + + # A ReusableConfigWrapper describes values that may assist in creating an X.509 + # certificate, or a reference to a pre-defined set of values. + class ReusableConfigWrapper + include Google::Apis::Core::Hashable + + # Required. A resource path to a ReusableConfig in the format `projects/*/ + # locations/*/reusableConfigs/*`. + # Corresponds to the JSON property `reusableConfig` + # @return [String] + attr_accessor :reusable_config + + # A ReusableConfigValues is used to describe certain fields of an X.509 + # certificate, such as the key usage fields, fields specific to CA certificates, + # certificate policy extensions and custom extensions. + # Corresponds to the JSON property `reusableConfigValues` + # @return [Google::Apis::PrivatecaV1beta1::ReusableConfigValues] + attr_accessor :reusable_config_values + + def initialize(**args) + update!(**args) + end + + # Update properties of this object + def update!(**args) + @reusable_config = args[:reusable_config] if args.key?(:reusable_config) + @reusable_config_values = args[:reusable_config_values] if args.key?(:reusable_config_values) + end + end + + # Describes fields that are relavent to the revocation of a Certificate. + class RevocationDetails + include Google::Apis::Core::Hashable + + # Indicates why a Certificate was revoked. + # Corresponds to the JSON property `revocationState` + # @return [String] + attr_accessor :revocation_state + + # The time at which this Certificate was revoked. + # Corresponds to the JSON property `revocationTime` + # @return [String] + attr_accessor :revocation_time + + def initialize(**args) + update!(**args) + end + + # Update properties of this object + def update!(**args) + @revocation_state = args[:revocation_state] if args.key?(:revocation_state) + @revocation_time = args[:revocation_time] if args.key?(:revocation_time) + end + end + + # Request message for CertificateAuthorityService.RevokeCertificate. + class RevokeCertificateRequest + include Google::Apis::Core::Hashable + + # Required. The RevocationReason for revoking this certificate. + # Corresponds to the JSON property `reason` + # @return [String] + attr_accessor :reason + + # Optional. An ID to identify requests. Specify a unique request ID so that if + # you must retry your request, the server will know to ignore the request if it + # has already been completed. The server will guarantee that for at least 60 + # minutes since the first request. For example, consider a situation where you + # make an initial request and t he request times out. If you make the request + # again with the same request ID, the server can check if original operation + # with the same request ID was received, and if so, will ignore the second + # request. This prevents clients from accidentally creating duplicate + # commitments. The request ID must be a valid UUID with the exception that zero + # UUID is not supported (00000000-0000-0000-0000-000000000000). + # Corresponds to the JSON property `requestId` + # @return [String] + attr_accessor :request_id + + def initialize(**args) + update!(**args) + end + + # Update properties of this object + def update!(**args) + @reason = args[:reason] if args.key?(:reason) + @request_id = args[:request_id] if args.key?(:request_id) + end + end + + # Describes a revoked Certificate. + class RevokedCertificate + include Google::Apis::Core::Hashable + + # The resource path for the Certificate in the format `projects/*/locations/*/ + # certificateAuthorities/*/certificates/*`. + # Corresponds to the JSON property `certificate` + # @return [String] + attr_accessor :certificate + + # The serial number of the Certificate. + # Corresponds to the JSON property `hexSerialNumber` + # @return [String] + attr_accessor :hex_serial_number + + # The reason the Certificate was revoked. + # Corresponds to the JSON property `revocationReason` + # @return [String] + attr_accessor :revocation_reason + + def initialize(**args) + update!(**args) + end + + # Update properties of this object + def update!(**args) + @certificate = args[:certificate] if args.key?(:certificate) + @hex_serial_number = args[:hex_serial_number] if args.key?(:hex_serial_number) + @revocation_reason = args[:revocation_reason] if args.key?(:revocation_reason) + end + end + + # Request message for CertificateAuthorityService. + # ScheduleDeleteCertificateAuthority. + class ScheduleDeleteCertificateAuthorityRequest + include Google::Apis::Core::Hashable + + # Optional. An ID to identify requests. Specify a unique request ID so that if + # you must retry your request, the server will know to ignore the request if it + # has already been completed. The server will guarantee that for at least 60 + # minutes since the first request. For example, consider a situation where you + # make an initial request and t he request times out. If you make the request + # again with the same request ID, the server can check if original operation + # with the same request ID was received, and if so, will ignore the second + # request. This prevents clients from accidentally creating duplicate + # commitments. The request ID must be a valid UUID with the exception that zero + # UUID is not supported (00000000-0000-0000-0000-000000000000). + # Corresponds to the JSON property `requestId` + # @return [String] + attr_accessor :request_id + + def initialize(**args) + update!(**args) + end + + # Update properties of this object + def update!(**args) + @request_id = args[:request_id] if args.key?(:request_id) + end + end + + # Request message for `SetIamPolicy` method. + class SetIamPolicyRequest + include Google::Apis::Core::Hashable + + # An Identity and Access Management (IAM) policy, which specifies access + # controls for Google Cloud resources. A `Policy` is a collection of `bindings`. + # A `binding` binds one or more `members` to a single `role`. Members can be + # user accounts, service accounts, Google groups, and domains (such as G Suite). + # A `role` is a named list of permissions; each `role` can be an IAM predefined + # role or a user-created custom role. For some types of Google Cloud resources, + # a `binding` can also specify a `condition`, which is a logical expression that + # allows access to a resource only if the expression evaluates to `true`. A + # condition can add constraints based on attributes of the request, the resource, + # or both. To learn which resources support conditions in their IAM policies, + # see the [IAM documentation](https://cloud.google.com/iam/help/conditions/ + # resource-policies). **JSON example:** ` "bindings": [ ` "role": "roles/ + # resourcemanager.organizationAdmin", "members": [ "user:mike@example.com", " + # group:admins@example.com", "domain:google.com", "serviceAccount:my-project-id@ + # appspot.gserviceaccount.com" ] `, ` "role": "roles/resourcemanager. + # organizationViewer", "members": [ "user:eve@example.com" ], "condition": ` " + # title": "expirable access", "description": "Does not grant access after Sep + # 2020", "expression": "request.time < timestamp('2020-10-01T00:00:00.000Z')", ` + # ` ], "etag": "BwWWja0YfJA=", "version": 3 ` **YAML example:** bindings: - + # members: - user:mike@example.com - group:admins@example.com - domain:google. + # com - serviceAccount:my-project-id@appspot.gserviceaccount.com role: roles/ + # resourcemanager.organizationAdmin - members: - user:eve@example.com role: + # roles/resourcemanager.organizationViewer condition: title: expirable access + # description: Does not grant access after Sep 2020 expression: request.time < + # timestamp('2020-10-01T00:00:00.000Z') - etag: BwWWja0YfJA= - version: 3 For a + # description of IAM and its features, see the [IAM documentation](https://cloud. + # google.com/iam/docs/). + # Corresponds to the JSON property `policy` + # @return [Google::Apis::PrivatecaV1beta1::Policy] + attr_accessor :policy + + # OPTIONAL: A FieldMask specifying which fields of the policy to modify. Only + # the fields in the mask will be modified. If no mask is provided, the following + # default mask is used: `paths: "bindings, etag"` + # Corresponds to the JSON property `updateMask` + # @return [String] + attr_accessor :update_mask + + def initialize(**args) + update!(**args) + end + + # Update properties of this object + def update!(**args) + @policy = args[:policy] if args.key?(:policy) + @update_mask = args[:update_mask] if args.key?(:update_mask) + end + end + + # The `Status` type defines a logical error model that is suitable for different + # programming environments, including REST APIs and RPC APIs. It is used by [ + # gRPC](https://github.com/grpc). Each `Status` message contains three pieces of + # data: error code, error message, and error details. You can find out more + # about this error model and how to work with it in the [API Design Guide](https: + # //cloud.google.com/apis/design/errors). + class Status + include Google::Apis::Core::Hashable + + # The status code, which should be an enum value of google.rpc.Code. + # Corresponds to the JSON property `code` + # @return [Fixnum] + attr_accessor :code + + # A list of messages that carry the error details. There is a common set of + # message types for APIs to use. + # Corresponds to the JSON property `details` + # @return [Array>] + attr_accessor :details + + # A developer-facing error message, which should be in English. Any user-facing + # error message should be localized and sent in the google.rpc.Status.details + # field, or localized by the client. + # Corresponds to the JSON property `message` + # @return [String] + attr_accessor :message + + def initialize(**args) + update!(**args) + end + + # Update properties of this object + def update!(**args) + @code = args[:code] if args.key?(:code) + @details = args[:details] if args.key?(:details) + @message = args[:message] if args.key?(:message) + end + end + + # Subject describes parts of a distinguished name that, in turn, describes the + # subject of the certificate. + class Subject + include Google::Apis::Core::Hashable + + # The country code of the subject. + # Corresponds to the JSON property `countryCode` + # @return [String] + attr_accessor :country_code + + # The locality or city of the subject. + # Corresponds to the JSON property `locality` + # @return [String] + attr_accessor :locality + + # The organization of the subject. + # Corresponds to the JSON property `organization` + # @return [String] + attr_accessor :organization + + # The organizational_unit of the subject. + # Corresponds to the JSON property `organizationalUnit` + # @return [String] + attr_accessor :organizational_unit + + # The postal code of the subject. + # Corresponds to the JSON property `postalCode` + # @return [String] + attr_accessor :postal_code + + # The province, territory, or regional state of the subject. + # Corresponds to the JSON property `province` + # @return [String] + attr_accessor :province + + # The street address of the subject. + # Corresponds to the JSON property `streetAddress` + # @return [String] + attr_accessor :street_address + + def initialize(**args) + update!(**args) + end + + # Update properties of this object + def update!(**args) + @country_code = args[:country_code] if args.key?(:country_code) + @locality = args[:locality] if args.key?(:locality) + @organization = args[:organization] if args.key?(:organization) + @organizational_unit = args[:organizational_unit] if args.key?(:organizational_unit) + @postal_code = args[:postal_code] if args.key?(:postal_code) + @province = args[:province] if args.key?(:province) + @street_address = args[:street_address] if args.key?(:street_address) + end + end + + # SubjectAltNames corresponds to a more modern way of listing what the asserted + # identity is in a certificate (i.e., compared to the "common name" in the + # distinguished name). + class SubjectAltNames + include Google::Apis::Core::Hashable + + # Contains additional subject alternative name values. + # Corresponds to the JSON property `customSans` + # @return [Array] + attr_accessor :custom_sans + + # Contains only valid, fully-qualified host names. + # Corresponds to the JSON property `dnsNames` + # @return [Array] + attr_accessor :dns_names + + # Contains only valid RFC 2822 E-mail addresses. + # Corresponds to the JSON property `emailAddresses` + # @return [Array] + attr_accessor :email_addresses + + # Contains only valid 32-bit IPv4 addresses or RFC 4291 IPv6 addresses. + # Corresponds to the JSON property `ipAddresses` + # @return [Array] + attr_accessor :ip_addresses + + # Contains only valid RFC 3986 URIs. + # Corresponds to the JSON property `uris` + # @return [Array] + attr_accessor :uris + + def initialize(**args) + update!(**args) + end + + # Update properties of this object + def update!(**args) + @custom_sans = args[:custom_sans] if args.key?(:custom_sans) + @dns_names = args[:dns_names] if args.key?(:dns_names) + @email_addresses = args[:email_addresses] if args.key?(:email_addresses) + @ip_addresses = args[:ip_addresses] if args.key?(:ip_addresses) + @uris = args[:uris] if args.key?(:uris) + end + end + + # These values are used to create the distinguished name and subject alternative + # name fields in an X.509 certificate. + class SubjectConfig + include Google::Apis::Core::Hashable + + # Optional. The "common name" of the distinguished name. + # Corresponds to the JSON property `commonName` + # @return [String] + attr_accessor :common_name + + # Subject describes parts of a distinguished name that, in turn, describes the + # subject of the certificate. + # Corresponds to the JSON property `subject` + # @return [Google::Apis::PrivatecaV1beta1::Subject] + attr_accessor :subject + + # SubjectAltNames corresponds to a more modern way of listing what the asserted + # identity is in a certificate (i.e., compared to the "common name" in the + # distinguished name). + # Corresponds to the JSON property `subjectAltName` + # @return [Google::Apis::PrivatecaV1beta1::SubjectAltNames] + attr_accessor :subject_alt_name + + def initialize(**args) + update!(**args) + end + + # Update properties of this object + def update!(**args) + @common_name = args[:common_name] if args.key?(:common_name) + @subject = args[:subject] if args.key?(:subject) + @subject_alt_name = args[:subject_alt_name] if args.key?(:subject_alt_name) + end + end + + # These values describe fields in an issued X.509 certificate such as the + # distinguished name, subject alternative names, serial number, and lifetime. + class SubjectDescription + include Google::Apis::Core::Hashable + + # The "common name" of the distinguished name. + # Corresponds to the JSON property `commonName` + # @return [String] + attr_accessor :common_name + + # The serial number encoded in lowercase hexadecimal. + # Corresponds to the JSON property `hexSerialNumber` + # @return [String] + attr_accessor :hex_serial_number + + # For convenience, the actual lifetime of an issued certificate. Corresponds to ' + # not_after_time' - 'not_before_time'. + # Corresponds to the JSON property `lifetime` + # @return [String] + attr_accessor :lifetime + + # The time at which the certificate expires. + # Corresponds to the JSON property `notAfterTime` + # @return [String] + attr_accessor :not_after_time + + # The time at which the certificate becomes valid. + # Corresponds to the JSON property `notBeforeTime` + # @return [String] + attr_accessor :not_before_time + + # Subject describes parts of a distinguished name that, in turn, describes the + # subject of the certificate. + # Corresponds to the JSON property `subject` + # @return [Google::Apis::PrivatecaV1beta1::Subject] + attr_accessor :subject + + # SubjectAltNames corresponds to a more modern way of listing what the asserted + # identity is in a certificate (i.e., compared to the "common name" in the + # distinguished name). + # Corresponds to the JSON property `subjectAltName` + # @return [Google::Apis::PrivatecaV1beta1::SubjectAltNames] + attr_accessor :subject_alt_name + + def initialize(**args) + update!(**args) + end + + # Update properties of this object + def update!(**args) + @common_name = args[:common_name] if args.key?(:common_name) + @hex_serial_number = args[:hex_serial_number] if args.key?(:hex_serial_number) + @lifetime = args[:lifetime] if args.key?(:lifetime) + @not_after_time = args[:not_after_time] if args.key?(:not_after_time) + @not_before_time = args[:not_before_time] if args.key?(:not_before_time) + @subject = args[:subject] if args.key?(:subject) + @subject_alt_name = args[:subject_alt_name] if args.key?(:subject_alt_name) + end + end + + # Describes a subordinate CA's issuers. This is either a resource path to a + # known issuing CertificateAuthority, or a PEM issuer certificate chain. + class SubordinateConfig + include Google::Apis::Core::Hashable + + # Required. This can refer to a CertificateAuthority in the same project that + # was used to create a subordinate CertificateAuthority. This field is used for + # information and usability purposes only. The resource name is in the format ` + # projects/*/locations/*/certificateAuthorities/*`. + # Corresponds to the JSON property `certificateAuthority` + # @return [String] + attr_accessor :certificate_authority + + # This message describes a subordinate CA's issuer certificate chain. This + # wrapper exists for compatibility reasons. + # Corresponds to the JSON property `pemIssuerChain` + # @return [Google::Apis::PrivatecaV1beta1::SubordinateConfigChain] + attr_accessor :pem_issuer_chain + + def initialize(**args) + update!(**args) + end + + # Update properties of this object + def update!(**args) + @certificate_authority = args[:certificate_authority] if args.key?(:certificate_authority) + @pem_issuer_chain = args[:pem_issuer_chain] if args.key?(:pem_issuer_chain) + end + end + + # This message describes a subordinate CA's issuer certificate chain. This + # wrapper exists for compatibility reasons. + class SubordinateConfigChain + include Google::Apis::Core::Hashable + + # Required. Expected to be in leaf-to-root order according to RFC 5246. + # Corresponds to the JSON property `pemCertificates` + # @return [Array] + attr_accessor :pem_certificates + + def initialize(**args) + update!(**args) + end + + # Update properties of this object + def update!(**args) + @pem_certificates = args[:pem_certificates] if args.key?(:pem_certificates) + end + end + + # Request message for `TestIamPermissions` method. + class TestIamPermissionsRequest + include Google::Apis::Core::Hashable + + # The set of permissions to check for the `resource`. Permissions with wildcards + # (such as '*' or 'storage.*') are not allowed. For more information see [IAM + # Overview](https://cloud.google.com/iam/docs/overview#permissions). + # Corresponds to the JSON property `permissions` + # @return [Array] + attr_accessor :permissions + + def initialize(**args) + update!(**args) + end + + # Update properties of this object + def update!(**args) + @permissions = args[:permissions] if args.key?(:permissions) + end + end + + # Response message for `TestIamPermissions` method. + class TestIamPermissionsResponse + include Google::Apis::Core::Hashable + + # A subset of `TestPermissionsRequest.permissions` that the caller is allowed. + # Corresponds to the JSON property `permissions` + # @return [Array] + attr_accessor :permissions + + def initialize(**args) + update!(**args) + end + + # Update properties of this object + def update!(**args) + @permissions = args[:permissions] if args.key?(:permissions) + end + end + + # An X509Extension specifies an X.509 extension, which may be used in different + # parts of X.509 objects like certificates, CSRs, and CRLs. + class X509Extension + include Google::Apis::Core::Hashable + + # Required. Indicates whether or not this extension is critical (i.e., if the + # client does not know how to handle this extension, the client should consider + # this to be an error). + # Corresponds to the JSON property `critical` + # @return [Boolean] + attr_accessor :critical + alias_method :critical?, :critical + + # An ObjectId specifies an object identifier (OID). These provide context and + # describe types in ASN.1 messages. + # Corresponds to the JSON property `objectId` + # @return [Google::Apis::PrivatecaV1beta1::ObjectIdProp] + attr_accessor :object_id_prop + + # Required. The value of this X.509 extension. + # Corresponds to the JSON property `value` + # NOTE: Values are automatically base64 encoded/decoded in the client library. + # @return [String] + attr_accessor :value + + def initialize(**args) + update!(**args) + end + + # Update properties of this object + def update!(**args) + @critical = args[:critical] if args.key?(:critical) + @object_id_prop = args[:object_id_prop] if args.key?(:object_id_prop) + @value = args[:value] if args.key?(:value) + end + end + end + end +end diff --git a/generated/google/apis/privateca_v1beta1/representations.rb b/generated/google/apis/privateca_v1beta1/representations.rb new file mode 100644 index 000000000..767f08e51 --- /dev/null +++ b/generated/google/apis/privateca_v1beta1/representations.rb @@ -0,0 +1,996 @@ +# Copyright 2015 Google Inc. +# +# Licensed under the Apache License, Version 2.0 (the "License"); +# you may not use this file except in compliance with the License. +# You may obtain a copy of the License at +# +# http://www.apache.org/licenses/LICENSE-2.0 +# +# Unless required by applicable law or agreed to in writing, software +# distributed under the License is distributed on an "AS IS" BASIS, +# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +# See the License for the specific language governing permissions and +# limitations under the License. + +require 'date' +require 'google/apis/core/base_service' +require 'google/apis/core/json_representation' +require 'google/apis/core/hashable' +require 'google/apis/errors' + +module Google + module Apis + module PrivatecaV1beta1 + + class AccessUrls + class Representation < Google::Apis::Core::JsonRepresentation; end + + include Google::Apis::Core::JsonObjectSupport + end + + class ActivateCertificateAuthorityRequest + class Representation < Google::Apis::Core::JsonRepresentation; end + + include Google::Apis::Core::JsonObjectSupport + end + + class AllowedConfigList + class Representation < Google::Apis::Core::JsonRepresentation; end + + include Google::Apis::Core::JsonObjectSupport + end + + class AllowedSubjectAltNames + class Representation < Google::Apis::Core::JsonRepresentation; end + + include Google::Apis::Core::JsonObjectSupport + end + + class AuditConfig + class Representation < Google::Apis::Core::JsonRepresentation; end + + include Google::Apis::Core::JsonObjectSupport + end + + class AuditLogConfig + class Representation < Google::Apis::Core::JsonRepresentation; end + + include Google::Apis::Core::JsonObjectSupport + end + + class Binding + class Representation < Google::Apis::Core::JsonRepresentation; end + + include Google::Apis::Core::JsonObjectSupport + end + + class CaOptions + class Representation < Google::Apis::Core::JsonRepresentation; end + + include Google::Apis::Core::JsonObjectSupport + end + + class CancelOperationRequest + class Representation < Google::Apis::Core::JsonRepresentation; end + + include Google::Apis::Core::JsonObjectSupport + end + + class Certificate + class Representation < Google::Apis::Core::JsonRepresentation; end + + include Google::Apis::Core::JsonObjectSupport + end + + class CertificateAuthority + class Representation < Google::Apis::Core::JsonRepresentation; end + + include Google::Apis::Core::JsonObjectSupport + end + + class CertificateAuthorityPolicy + class Representation < Google::Apis::Core::JsonRepresentation; end + + include Google::Apis::Core::JsonObjectSupport + end + + class CertificateConfig + class Representation < Google::Apis::Core::JsonRepresentation; end + + include Google::Apis::Core::JsonObjectSupport + end + + class CertificateDescription + class Representation < Google::Apis::Core::JsonRepresentation; end + + include Google::Apis::Core::JsonObjectSupport + end + + class CertificateFingerprint + class Representation < Google::Apis::Core::JsonRepresentation; end + + include Google::Apis::Core::JsonObjectSupport + end + + class CertificateRevocationList + class Representation < Google::Apis::Core::JsonRepresentation; end + + include Google::Apis::Core::JsonObjectSupport + end + + class DisableCertificateAuthorityRequest + class Representation < Google::Apis::Core::JsonRepresentation; end + + include Google::Apis::Core::JsonObjectSupport + end + + class Empty + class Representation < Google::Apis::Core::JsonRepresentation; end + + include Google::Apis::Core::JsonObjectSupport + end + + class EnableCertificateAuthorityRequest + class Representation < Google::Apis::Core::JsonRepresentation; end + + include Google::Apis::Core::JsonObjectSupport + end + + class Expr + class Representation < Google::Apis::Core::JsonRepresentation; end + + include Google::Apis::Core::JsonObjectSupport + end + + class ExtendedKeyUsageOptions + class Representation < Google::Apis::Core::JsonRepresentation; end + + include Google::Apis::Core::JsonObjectSupport + end + + class FetchCertificateAuthorityCsrResponse + class Representation < Google::Apis::Core::JsonRepresentation; end + + include Google::Apis::Core::JsonObjectSupport + end + + class IssuanceModes + class Representation < Google::Apis::Core::JsonRepresentation; end + + include Google::Apis::Core::JsonObjectSupport + end + + class IssuingOptions + class Representation < Google::Apis::Core::JsonRepresentation; end + + include Google::Apis::Core::JsonObjectSupport + end + + class KeyId + class Representation < Google::Apis::Core::JsonRepresentation; end + + include Google::Apis::Core::JsonObjectSupport + end + + class KeyUsage + class Representation < Google::Apis::Core::JsonRepresentation; end + + include Google::Apis::Core::JsonObjectSupport + end + + class KeyUsageOptions + class Representation < Google::Apis::Core::JsonRepresentation; end + + include Google::Apis::Core::JsonObjectSupport + end + + class KeyVersionSpec + class Representation < Google::Apis::Core::JsonRepresentation; end + + include Google::Apis::Core::JsonObjectSupport + end + + class ListCertificateAuthoritiesResponse + class Representation < Google::Apis::Core::JsonRepresentation; end + + include Google::Apis::Core::JsonObjectSupport + end + + class ListCertificateRevocationListsResponse + class Representation < Google::Apis::Core::JsonRepresentation; end + + include Google::Apis::Core::JsonObjectSupport + end + + class ListCertificatesResponse + class Representation < Google::Apis::Core::JsonRepresentation; end + + include Google::Apis::Core::JsonObjectSupport + end + + class ListLocationsResponse + class Representation < Google::Apis::Core::JsonRepresentation; end + + include Google::Apis::Core::JsonObjectSupport + end + + class ListOperationsResponse + class Representation < Google::Apis::Core::JsonRepresentation; end + + include Google::Apis::Core::JsonObjectSupport + end + + class ListReusableConfigsResponse + class Representation < Google::Apis::Core::JsonRepresentation; end + + include Google::Apis::Core::JsonObjectSupport + end + + class Location + class Representation < Google::Apis::Core::JsonRepresentation; end + + include Google::Apis::Core::JsonObjectSupport + end + + class ObjectIdProp + class Representation < Google::Apis::Core::JsonRepresentation; end + + include Google::Apis::Core::JsonObjectSupport + end + + class Operation + class Representation < Google::Apis::Core::JsonRepresentation; end + + include Google::Apis::Core::JsonObjectSupport + end + + class OperationMetadata + class Representation < Google::Apis::Core::JsonRepresentation; end + + include Google::Apis::Core::JsonObjectSupport + end + + class Policy + class Representation < Google::Apis::Core::JsonRepresentation; end + + include Google::Apis::Core::JsonObjectSupport + end + + class PublicKey + class Representation < Google::Apis::Core::JsonRepresentation; end + + include Google::Apis::Core::JsonObjectSupport + end + + class RestoreCertificateAuthorityRequest + class Representation < Google::Apis::Core::JsonRepresentation; end + + include Google::Apis::Core::JsonObjectSupport + end + + class ReusableConfig + class Representation < Google::Apis::Core::JsonRepresentation; end + + include Google::Apis::Core::JsonObjectSupport + end + + class ReusableConfigValues + class Representation < Google::Apis::Core::JsonRepresentation; end + + include Google::Apis::Core::JsonObjectSupport + end + + class ReusableConfigWrapper + class Representation < Google::Apis::Core::JsonRepresentation; end + + include Google::Apis::Core::JsonObjectSupport + end + + class RevocationDetails + class Representation < Google::Apis::Core::JsonRepresentation; end + + include Google::Apis::Core::JsonObjectSupport + end + + class RevokeCertificateRequest + class Representation < Google::Apis::Core::JsonRepresentation; end + + include Google::Apis::Core::JsonObjectSupport + end + + class RevokedCertificate + class Representation < Google::Apis::Core::JsonRepresentation; end + + include Google::Apis::Core::JsonObjectSupport + end + + class ScheduleDeleteCertificateAuthorityRequest + class Representation < Google::Apis::Core::JsonRepresentation; end + + include Google::Apis::Core::JsonObjectSupport + end + + class SetIamPolicyRequest + class Representation < Google::Apis::Core::JsonRepresentation; end + + include Google::Apis::Core::JsonObjectSupport + end + + class Status + class Representation < Google::Apis::Core::JsonRepresentation; end + + include Google::Apis::Core::JsonObjectSupport + end + + class Subject + class Representation < Google::Apis::Core::JsonRepresentation; end + + include Google::Apis::Core::JsonObjectSupport + end + + class SubjectAltNames + class Representation < Google::Apis::Core::JsonRepresentation; end + + include Google::Apis::Core::JsonObjectSupport + end + + class SubjectConfig + class Representation < Google::Apis::Core::JsonRepresentation; end + + include Google::Apis::Core::JsonObjectSupport + end + + class SubjectDescription + class Representation < Google::Apis::Core::JsonRepresentation; end + + include Google::Apis::Core::JsonObjectSupport + end + + class SubordinateConfig + class Representation < Google::Apis::Core::JsonRepresentation; end + + include Google::Apis::Core::JsonObjectSupport + end + + class SubordinateConfigChain + class Representation < Google::Apis::Core::JsonRepresentation; end + + include Google::Apis::Core::JsonObjectSupport + end + + class TestIamPermissionsRequest + class Representation < Google::Apis::Core::JsonRepresentation; end + + include Google::Apis::Core::JsonObjectSupport + end + + class TestIamPermissionsResponse + class Representation < Google::Apis::Core::JsonRepresentation; end + + include Google::Apis::Core::JsonObjectSupport + end + + class X509Extension + class Representation < Google::Apis::Core::JsonRepresentation; end + + include Google::Apis::Core::JsonObjectSupport + end + + class AccessUrls + # @private + class Representation < Google::Apis::Core::JsonRepresentation + property :ca_certificate_access_url, as: 'caCertificateAccessUrl' + property :crl_access_url, as: 'crlAccessUrl' + end + end + + class ActivateCertificateAuthorityRequest + # @private + class Representation < Google::Apis::Core::JsonRepresentation + property :pem_ca_certificate, as: 'pemCaCertificate' + property :request_id, as: 'requestId' + property :subordinate_config, as: 'subordinateConfig', class: Google::Apis::PrivatecaV1beta1::SubordinateConfig, decorator: Google::Apis::PrivatecaV1beta1::SubordinateConfig::Representation + + end + end + + class AllowedConfigList + # @private + class Representation < Google::Apis::Core::JsonRepresentation + collection :allowed_config_values, as: 'allowedConfigValues', class: Google::Apis::PrivatecaV1beta1::ReusableConfigWrapper, decorator: Google::Apis::PrivatecaV1beta1::ReusableConfigWrapper::Representation + + end + end + + class AllowedSubjectAltNames + # @private + class Representation < Google::Apis::Core::JsonRepresentation + property :allow_custom_sans, as: 'allowCustomSans' + property :allow_globbing_dns_wildcards, as: 'allowGlobbingDnsWildcards' + collection :allowed_dns_names, as: 'allowedDnsNames' + collection :allowed_email_addresses, as: 'allowedEmailAddresses' + collection :allowed_ips, as: 'allowedIps' + collection :allowed_uris, as: 'allowedUris' + end + end + + class AuditConfig + # @private + class Representation < Google::Apis::Core::JsonRepresentation + collection :audit_log_configs, as: 'auditLogConfigs', class: Google::Apis::PrivatecaV1beta1::AuditLogConfig, decorator: Google::Apis::PrivatecaV1beta1::AuditLogConfig::Representation + + property :service, as: 'service' + end + end + + class AuditLogConfig + # @private + class Representation < Google::Apis::Core::JsonRepresentation + collection :exempted_members, as: 'exemptedMembers' + property :log_type, as: 'logType' + end + end + + class Binding + # @private + class Representation < Google::Apis::Core::JsonRepresentation + property :condition, as: 'condition', class: Google::Apis::PrivatecaV1beta1::Expr, decorator: Google::Apis::PrivatecaV1beta1::Expr::Representation + + collection :members, as: 'members' + property :role, as: 'role' + end + end + + class CaOptions + # @private + class Representation < Google::Apis::Core::JsonRepresentation + property :is_ca, as: 'isCa' + property :max_issuer_path_length, as: 'maxIssuerPathLength' + end + end + + class CancelOperationRequest + # @private + class Representation < Google::Apis::Core::JsonRepresentation + end + end + + class Certificate + # @private + class Representation < Google::Apis::Core::JsonRepresentation + property :certificate_description, as: 'certificateDescription', class: Google::Apis::PrivatecaV1beta1::CertificateDescription, decorator: Google::Apis::PrivatecaV1beta1::CertificateDescription::Representation + + property :config, as: 'config', class: Google::Apis::PrivatecaV1beta1::CertificateConfig, decorator: Google::Apis::PrivatecaV1beta1::CertificateConfig::Representation + + property :create_time, as: 'createTime' + hash :labels, as: 'labels' + property :lifetime, as: 'lifetime' + property :name, as: 'name' + property :pem_certificate, as: 'pemCertificate' + collection :pem_certificate_chain, as: 'pemCertificateChain' + property :pem_csr, as: 'pemCsr' + property :revocation_details, as: 'revocationDetails', class: Google::Apis::PrivatecaV1beta1::RevocationDetails, decorator: Google::Apis::PrivatecaV1beta1::RevocationDetails::Representation + + property :update_time, as: 'updateTime' + end + end + + class CertificateAuthority + # @private + class Representation < Google::Apis::Core::JsonRepresentation + property :access_urls, as: 'accessUrls', class: Google::Apis::PrivatecaV1beta1::AccessUrls, decorator: Google::Apis::PrivatecaV1beta1::AccessUrls::Representation + + collection :ca_certificate_descriptions, as: 'caCertificateDescriptions', class: Google::Apis::PrivatecaV1beta1::CertificateDescription, decorator: Google::Apis::PrivatecaV1beta1::CertificateDescription::Representation + + property :certificate_policy, as: 'certificatePolicy', class: Google::Apis::PrivatecaV1beta1::CertificateAuthorityPolicy, decorator: Google::Apis::PrivatecaV1beta1::CertificateAuthorityPolicy::Representation + + property :config, as: 'config', class: Google::Apis::PrivatecaV1beta1::CertificateConfig, decorator: Google::Apis::PrivatecaV1beta1::CertificateConfig::Representation + + property :create_time, as: 'createTime' + property :delete_time, as: 'deleteTime' + property :gcs_bucket, as: 'gcsBucket' + property :issuing_options, as: 'issuingOptions', class: Google::Apis::PrivatecaV1beta1::IssuingOptions, decorator: Google::Apis::PrivatecaV1beta1::IssuingOptions::Representation + + property :key_spec, as: 'keySpec', class: Google::Apis::PrivatecaV1beta1::KeyVersionSpec, decorator: Google::Apis::PrivatecaV1beta1::KeyVersionSpec::Representation + + hash :labels, as: 'labels' + property :lifetime, as: 'lifetime' + property :name, as: 'name' + collection :pem_ca_certificates, as: 'pemCaCertificates' + property :state, as: 'state' + property :subordinate_config, as: 'subordinateConfig', class: Google::Apis::PrivatecaV1beta1::SubordinateConfig, decorator: Google::Apis::PrivatecaV1beta1::SubordinateConfig::Representation + + property :tier, as: 'tier' + property :type, as: 'type' + property :update_time, as: 'updateTime' + end + end + + class CertificateAuthorityPolicy + # @private + class Representation < Google::Apis::Core::JsonRepresentation + collection :allowed_common_names, as: 'allowedCommonNames' + property :allowed_config_list, as: 'allowedConfigList', class: Google::Apis::PrivatecaV1beta1::AllowedConfigList, decorator: Google::Apis::PrivatecaV1beta1::AllowedConfigList::Representation + + property :allowed_issuance_modes, as: 'allowedIssuanceModes', class: Google::Apis::PrivatecaV1beta1::IssuanceModes, decorator: Google::Apis::PrivatecaV1beta1::IssuanceModes::Representation + + collection :allowed_locations_and_organizations, as: 'allowedLocationsAndOrganizations', class: Google::Apis::PrivatecaV1beta1::Subject, decorator: Google::Apis::PrivatecaV1beta1::Subject::Representation + + property :allowed_sans, as: 'allowedSans', class: Google::Apis::PrivatecaV1beta1::AllowedSubjectAltNames, decorator: Google::Apis::PrivatecaV1beta1::AllowedSubjectAltNames::Representation + + property :maximum_lifetime, as: 'maximumLifetime' + property :overwrite_config_values, as: 'overwriteConfigValues', class: Google::Apis::PrivatecaV1beta1::ReusableConfigWrapper, decorator: Google::Apis::PrivatecaV1beta1::ReusableConfigWrapper::Representation + + end + end + + class CertificateConfig + # @private + class Representation < Google::Apis::Core::JsonRepresentation + property :public_key, as: 'publicKey', class: Google::Apis::PrivatecaV1beta1::PublicKey, decorator: Google::Apis::PrivatecaV1beta1::PublicKey::Representation + + property :reusable_config, as: 'reusableConfig', class: Google::Apis::PrivatecaV1beta1::ReusableConfigWrapper, decorator: Google::Apis::PrivatecaV1beta1::ReusableConfigWrapper::Representation + + property :subject_config, as: 'subjectConfig', class: Google::Apis::PrivatecaV1beta1::SubjectConfig, decorator: Google::Apis::PrivatecaV1beta1::SubjectConfig::Representation + + end + end + + class CertificateDescription + # @private + class Representation < Google::Apis::Core::JsonRepresentation + collection :aia_issuing_certificate_urls, as: 'aiaIssuingCertificateUrls' + property :authority_key_id, as: 'authorityKeyId', class: Google::Apis::PrivatecaV1beta1::KeyId, decorator: Google::Apis::PrivatecaV1beta1::KeyId::Representation + + property :cert_fingerprint, as: 'certFingerprint', class: Google::Apis::PrivatecaV1beta1::CertificateFingerprint, decorator: Google::Apis::PrivatecaV1beta1::CertificateFingerprint::Representation + + property :config_values, as: 'configValues', class: Google::Apis::PrivatecaV1beta1::ReusableConfigValues, decorator: Google::Apis::PrivatecaV1beta1::ReusableConfigValues::Representation + + collection :crl_distribution_points, as: 'crlDistributionPoints' + property :public_key, as: 'publicKey', class: Google::Apis::PrivatecaV1beta1::PublicKey, decorator: Google::Apis::PrivatecaV1beta1::PublicKey::Representation + + property :subject_description, as: 'subjectDescription', class: Google::Apis::PrivatecaV1beta1::SubjectDescription, decorator: Google::Apis::PrivatecaV1beta1::SubjectDescription::Representation + + property :subject_key_id, as: 'subjectKeyId', class: Google::Apis::PrivatecaV1beta1::KeyId, decorator: Google::Apis::PrivatecaV1beta1::KeyId::Representation + + end + end + + class CertificateFingerprint + # @private + class Representation < Google::Apis::Core::JsonRepresentation + property :sha256_hash, as: 'sha256Hash' + end + end + + class CertificateRevocationList + # @private + class Representation < Google::Apis::Core::JsonRepresentation + property :access_url, as: 'accessUrl' + property :create_time, as: 'createTime' + hash :labels, as: 'labels' + property :name, as: 'name' + property :pem_crl, as: 'pemCrl' + collection :revoked_certificates, as: 'revokedCertificates', class: Google::Apis::PrivatecaV1beta1::RevokedCertificate, decorator: Google::Apis::PrivatecaV1beta1::RevokedCertificate::Representation + + property :sequence_number, :numeric_string => true, as: 'sequenceNumber' + property :state, as: 'state' + property :update_time, as: 'updateTime' + end + end + + class DisableCertificateAuthorityRequest + # @private + class Representation < Google::Apis::Core::JsonRepresentation + property :request_id, as: 'requestId' + end + end + + class Empty + # @private + class Representation < Google::Apis::Core::JsonRepresentation + end + end + + class EnableCertificateAuthorityRequest + # @private + class Representation < Google::Apis::Core::JsonRepresentation + property :request_id, as: 'requestId' + end + end + + class Expr + # @private + class Representation < Google::Apis::Core::JsonRepresentation + property :description, as: 'description' + property :expression, as: 'expression' + property :location, as: 'location' + property :title, as: 'title' + end + end + + class ExtendedKeyUsageOptions + # @private + class Representation < Google::Apis::Core::JsonRepresentation + property :client_auth, as: 'clientAuth' + property :code_signing, as: 'codeSigning' + property :email_protection, as: 'emailProtection' + property :ocsp_signing, as: 'ocspSigning' + property :server_auth, as: 'serverAuth' + property :time_stamping, as: 'timeStamping' + end + end + + class FetchCertificateAuthorityCsrResponse + # @private + class Representation < Google::Apis::Core::JsonRepresentation + property :pem_csr, as: 'pemCsr' + end + end + + class IssuanceModes + # @private + class Representation < Google::Apis::Core::JsonRepresentation + property :allow_config_based_issuance, as: 'allowConfigBasedIssuance' + property :allow_csr_based_issuance, as: 'allowCsrBasedIssuance' + end + end + + class IssuingOptions + # @private + class Representation < Google::Apis::Core::JsonRepresentation + property :include_ca_cert_url, as: 'includeCaCertUrl' + property :include_crl_access_url, as: 'includeCrlAccessUrl' + end + end + + class KeyId + # @private + class Representation < Google::Apis::Core::JsonRepresentation + property :key_id, as: 'keyId' + end + end + + class KeyUsage + # @private + class Representation < Google::Apis::Core::JsonRepresentation + property :base_key_usage, as: 'baseKeyUsage', class: Google::Apis::PrivatecaV1beta1::KeyUsageOptions, decorator: Google::Apis::PrivatecaV1beta1::KeyUsageOptions::Representation + + property :extended_key_usage, as: 'extendedKeyUsage', class: Google::Apis::PrivatecaV1beta1::ExtendedKeyUsageOptions, decorator: Google::Apis::PrivatecaV1beta1::ExtendedKeyUsageOptions::Representation + + collection :unknown_extended_key_usages, as: 'unknownExtendedKeyUsages', class: Google::Apis::PrivatecaV1beta1::ObjectIdProp, decorator: Google::Apis::PrivatecaV1beta1::ObjectIdProp::Representation + + end + end + + class KeyUsageOptions + # @private + class Representation < Google::Apis::Core::JsonRepresentation + property :cert_sign, as: 'certSign' + property :content_commitment, as: 'contentCommitment' + property :crl_sign, as: 'crlSign' + property :data_encipherment, as: 'dataEncipherment' + property :decipher_only, as: 'decipherOnly' + property :digital_signature, as: 'digitalSignature' + property :encipher_only, as: 'encipherOnly' + property :key_agreement, as: 'keyAgreement' + property :key_encipherment, as: 'keyEncipherment' + end + end + + class KeyVersionSpec + # @private + class Representation < Google::Apis::Core::JsonRepresentation + property :algorithm, as: 'algorithm' + property :cloud_kms_key_version, as: 'cloudKmsKeyVersion' + end + end + + class ListCertificateAuthoritiesResponse + # @private + class Representation < Google::Apis::Core::JsonRepresentation + collection :certificate_authorities, as: 'certificateAuthorities', class: Google::Apis::PrivatecaV1beta1::CertificateAuthority, decorator: Google::Apis::PrivatecaV1beta1::CertificateAuthority::Representation + + property :next_page_token, as: 'nextPageToken' + collection :unreachable, as: 'unreachable' + end + end + + class ListCertificateRevocationListsResponse + # @private + class Representation < Google::Apis::Core::JsonRepresentation + collection :certificate_revocation_lists, as: 'certificateRevocationLists', class: Google::Apis::PrivatecaV1beta1::CertificateRevocationList, decorator: Google::Apis::PrivatecaV1beta1::CertificateRevocationList::Representation + + property :next_page_token, as: 'nextPageToken' + collection :unreachable, as: 'unreachable' + end + end + + class ListCertificatesResponse + # @private + class Representation < Google::Apis::Core::JsonRepresentation + collection :certificates, as: 'certificates', class: Google::Apis::PrivatecaV1beta1::Certificate, decorator: Google::Apis::PrivatecaV1beta1::Certificate::Representation + + property :next_page_token, as: 'nextPageToken' + collection :unreachable, as: 'unreachable' + end + end + + class ListLocationsResponse + # @private + class Representation < Google::Apis::Core::JsonRepresentation + collection :locations, as: 'locations', class: Google::Apis::PrivatecaV1beta1::Location, decorator: Google::Apis::PrivatecaV1beta1::Location::Representation + + property :next_page_token, as: 'nextPageToken' + end + end + + class ListOperationsResponse + # @private + class Representation < Google::Apis::Core::JsonRepresentation + property :next_page_token, as: 'nextPageToken' + collection :operations, as: 'operations', class: Google::Apis::PrivatecaV1beta1::Operation, decorator: Google::Apis::PrivatecaV1beta1::Operation::Representation + + end + end + + class ListReusableConfigsResponse + # @private + class Representation < Google::Apis::Core::JsonRepresentation + property :next_page_token, as: 'nextPageToken' + collection :reusable_configs, as: 'reusableConfigs', class: Google::Apis::PrivatecaV1beta1::ReusableConfig, decorator: Google::Apis::PrivatecaV1beta1::ReusableConfig::Representation + + collection :unreachable, as: 'unreachable' + end + end + + class Location + # @private + class Representation < Google::Apis::Core::JsonRepresentation + property :display_name, as: 'displayName' + hash :labels, as: 'labels' + property :location_id, as: 'locationId' + hash :metadata, as: 'metadata' + property :name, as: 'name' + end + end + + class ObjectIdProp + # @private + class Representation < Google::Apis::Core::JsonRepresentation + collection :object_id_path, as: 'objectIdPath' + end + end + + class Operation + # @private + class Representation < Google::Apis::Core::JsonRepresentation + property :done, as: 'done' + property :error, as: 'error', class: Google::Apis::PrivatecaV1beta1::Status, decorator: Google::Apis::PrivatecaV1beta1::Status::Representation + + hash :metadata, as: 'metadata' + property :name, as: 'name' + hash :response, as: 'response' + end + end + + class OperationMetadata + # @private + class Representation < Google::Apis::Core::JsonRepresentation + property :api_version, as: 'apiVersion' + property :create_time, as: 'createTime' + property :end_time, as: 'endTime' + property :requested_cancellation, as: 'requestedCancellation' + property :status_message, as: 'statusMessage' + property :target, as: 'target' + property :verb, as: 'verb' + end + end + + class Policy + # @private + class Representation < Google::Apis::Core::JsonRepresentation + collection :audit_configs, as: 'auditConfigs', class: Google::Apis::PrivatecaV1beta1::AuditConfig, decorator: Google::Apis::PrivatecaV1beta1::AuditConfig::Representation + + collection :bindings, as: 'bindings', class: Google::Apis::PrivatecaV1beta1::Binding, decorator: Google::Apis::PrivatecaV1beta1::Binding::Representation + + property :etag, :base64 => true, as: 'etag' + property :version, as: 'version' + end + end + + class PublicKey + # @private + class Representation < Google::Apis::Core::JsonRepresentation + property :key, :base64 => true, as: 'key' + property :type, as: 'type' + end + end + + class RestoreCertificateAuthorityRequest + # @private + class Representation < Google::Apis::Core::JsonRepresentation + property :request_id, as: 'requestId' + end + end + + class ReusableConfig + # @private + class Representation < Google::Apis::Core::JsonRepresentation + property :create_time, as: 'createTime' + property :description, as: 'description' + hash :labels, as: 'labels' + property :name, as: 'name' + property :update_time, as: 'updateTime' + property :values, as: 'values', class: Google::Apis::PrivatecaV1beta1::ReusableConfigValues, decorator: Google::Apis::PrivatecaV1beta1::ReusableConfigValues::Representation + + end + end + + class ReusableConfigValues + # @private + class Representation < Google::Apis::Core::JsonRepresentation + collection :additional_extensions, as: 'additionalExtensions', class: Google::Apis::PrivatecaV1beta1::X509Extension, decorator: Google::Apis::PrivatecaV1beta1::X509Extension::Representation + + collection :aia_ocsp_servers, as: 'aiaOcspServers' + property :ca_options, as: 'caOptions', class: Google::Apis::PrivatecaV1beta1::CaOptions, decorator: Google::Apis::PrivatecaV1beta1::CaOptions::Representation + + property :key_usage, as: 'keyUsage', class: Google::Apis::PrivatecaV1beta1::KeyUsage, decorator: Google::Apis::PrivatecaV1beta1::KeyUsage::Representation + + collection :policy_ids, as: 'policyIds', class: Google::Apis::PrivatecaV1beta1::ObjectIdProp, decorator: Google::Apis::PrivatecaV1beta1::ObjectIdProp::Representation + + end + end + + class ReusableConfigWrapper + # @private + class Representation < Google::Apis::Core::JsonRepresentation + property :reusable_config, as: 'reusableConfig' + property :reusable_config_values, as: 'reusableConfigValues', class: Google::Apis::PrivatecaV1beta1::ReusableConfigValues, decorator: Google::Apis::PrivatecaV1beta1::ReusableConfigValues::Representation + + end + end + + class RevocationDetails + # @private + class Representation < Google::Apis::Core::JsonRepresentation + property :revocation_state, as: 'revocationState' + property :revocation_time, as: 'revocationTime' + end + end + + class RevokeCertificateRequest + # @private + class Representation < Google::Apis::Core::JsonRepresentation + property :reason, as: 'reason' + property :request_id, as: 'requestId' + end + end + + class RevokedCertificate + # @private + class Representation < Google::Apis::Core::JsonRepresentation + property :certificate, as: 'certificate' + property :hex_serial_number, as: 'hexSerialNumber' + property :revocation_reason, as: 'revocationReason' + end + end + + class ScheduleDeleteCertificateAuthorityRequest + # @private + class Representation < Google::Apis::Core::JsonRepresentation + property :request_id, as: 'requestId' + end + end + + class SetIamPolicyRequest + # @private + class Representation < Google::Apis::Core::JsonRepresentation + property :policy, as: 'policy', class: Google::Apis::PrivatecaV1beta1::Policy, decorator: Google::Apis::PrivatecaV1beta1::Policy::Representation + + property :update_mask, as: 'updateMask' + end + end + + class Status + # @private + class Representation < Google::Apis::Core::JsonRepresentation + property :code, as: 'code' + collection :details, as: 'details' + property :message, as: 'message' + end + end + + class Subject + # @private + class Representation < Google::Apis::Core::JsonRepresentation + property :country_code, as: 'countryCode' + property :locality, as: 'locality' + property :organization, as: 'organization' + property :organizational_unit, as: 'organizationalUnit' + property :postal_code, as: 'postalCode' + property :province, as: 'province' + property :street_address, as: 'streetAddress' + end + end + + class SubjectAltNames + # @private + class Representation < Google::Apis::Core::JsonRepresentation + collection :custom_sans, as: 'customSans', class: Google::Apis::PrivatecaV1beta1::X509Extension, decorator: Google::Apis::PrivatecaV1beta1::X509Extension::Representation + + collection :dns_names, as: 'dnsNames' + collection :email_addresses, as: 'emailAddresses' + collection :ip_addresses, as: 'ipAddresses' + collection :uris, as: 'uris' + end + end + + class SubjectConfig + # @private + class Representation < Google::Apis::Core::JsonRepresentation + property :common_name, as: 'commonName' + property :subject, as: 'subject', class: Google::Apis::PrivatecaV1beta1::Subject, decorator: Google::Apis::PrivatecaV1beta1::Subject::Representation + + property :subject_alt_name, as: 'subjectAltName', class: Google::Apis::PrivatecaV1beta1::SubjectAltNames, decorator: Google::Apis::PrivatecaV1beta1::SubjectAltNames::Representation + + end + end + + class SubjectDescription + # @private + class Representation < Google::Apis::Core::JsonRepresentation + property :common_name, as: 'commonName' + property :hex_serial_number, as: 'hexSerialNumber' + property :lifetime, as: 'lifetime' + property :not_after_time, as: 'notAfterTime' + property :not_before_time, as: 'notBeforeTime' + property :subject, as: 'subject', class: Google::Apis::PrivatecaV1beta1::Subject, decorator: Google::Apis::PrivatecaV1beta1::Subject::Representation + + property :subject_alt_name, as: 'subjectAltName', class: Google::Apis::PrivatecaV1beta1::SubjectAltNames, decorator: Google::Apis::PrivatecaV1beta1::SubjectAltNames::Representation + + end + end + + class SubordinateConfig + # @private + class Representation < Google::Apis::Core::JsonRepresentation + property :certificate_authority, as: 'certificateAuthority' + property :pem_issuer_chain, as: 'pemIssuerChain', class: Google::Apis::PrivatecaV1beta1::SubordinateConfigChain, decorator: Google::Apis::PrivatecaV1beta1::SubordinateConfigChain::Representation + + end + end + + class SubordinateConfigChain + # @private + class Representation < Google::Apis::Core::JsonRepresentation + collection :pem_certificates, as: 'pemCertificates' + end + end + + class TestIamPermissionsRequest + # @private + class Representation < Google::Apis::Core::JsonRepresentation + collection :permissions, as: 'permissions' + end + end + + class TestIamPermissionsResponse + # @private + class Representation < Google::Apis::Core::JsonRepresentation + collection :permissions, as: 'permissions' + end + end + + class X509Extension + # @private + class Representation < Google::Apis::Core::JsonRepresentation + property :critical, as: 'critical' + property :object_id_prop, as: 'objectId', class: Google::Apis::PrivatecaV1beta1::ObjectIdProp, decorator: Google::Apis::PrivatecaV1beta1::ObjectIdProp::Representation + + property :value, :base64 => true, as: 'value' + end + end + end + end +end diff --git a/generated/google/apis/privateca_v1beta1/service.rb b/generated/google/apis/privateca_v1beta1/service.rb new file mode 100644 index 000000000..bafdb9787 --- /dev/null +++ b/generated/google/apis/privateca_v1beta1/service.rb @@ -0,0 +1,1487 @@ +# Copyright 2015 Google Inc. +# +# Licensed under the Apache License, Version 2.0 (the "License"); +# you may not use this file except in compliance with the License. +# You may obtain a copy of the License at +# +# http://www.apache.org/licenses/LICENSE-2.0 +# +# Unless required by applicable law or agreed to in writing, software +# distributed under the License is distributed on an "AS IS" BASIS, +# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +# See the License for the specific language governing permissions and +# limitations under the License. + +require 'google/apis/core/base_service' +require 'google/apis/core/json_representation' +require 'google/apis/core/hashable' +require 'google/apis/errors' + +module Google + module Apis + module PrivatecaV1beta1 + # Certificate Authority API + # + # + # + # @example + # require 'google/apis/privateca_v1beta1' + # + # Privateca = Google::Apis::PrivatecaV1beta1 # Alias the module + # service = Privateca::CertificateAuthorityServiceService.new + # + # @see https://cloud.google.com/ + class CertificateAuthorityServiceService < Google::Apis::Core::BaseService + # @return [String] + # API key. Your API key identifies your project and provides you with API access, + # quota, and reports. Required unless you provide an OAuth 2.0 token. + attr_accessor :key + + # @return [String] + # Available to use for quota purposes for server-side applications. Can be any + # arbitrary string assigned to a user, but should not exceed 40 characters. + attr_accessor :quota_user + + def initialize + super('https://privateca.googleapis.com/', '') + @batch_path = 'batch' + end + + # Gets information about a location. + # @param [String] name + # Resource name for the location. + # @param [String] fields + # Selector specifying which fields to include in a partial response. + # @param [String] quota_user + # Available to use for quota purposes for server-side applications. Can be any + # arbitrary string assigned to a user, but should not exceed 40 characters. + # @param [Google::Apis::RequestOptions] options + # Request-specific options + # + # @yield [result, err] Result & error if block supplied + # @yieldparam result [Google::Apis::PrivatecaV1beta1::Location] parsed result object + # @yieldparam err [StandardError] error object if request failed + # + # @return [Google::Apis::PrivatecaV1beta1::Location] + # + # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried + # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification + # @raise [Google::Apis::AuthorizationError] Authorization is required + def get_project_location(name, fields: nil, quota_user: nil, options: nil, &block) + command = make_simple_command(:get, 'v1beta1/{+name}', options) + command.response_representation = Google::Apis::PrivatecaV1beta1::Location::Representation + command.response_class = Google::Apis::PrivatecaV1beta1::Location + command.params['name'] = name unless name.nil? + command.query['fields'] = fields unless fields.nil? + command.query['quotaUser'] = quota_user unless quota_user.nil? + execute_or_queue_command(command, &block) + end + + # Lists information about the supported locations for this service. + # @param [String] name + # The resource that owns the locations collection, if applicable. + # @param [String] filter + # The standard list filter. + # @param [Fixnum] page_size + # The standard list page size. + # @param [String] page_token + # The standard list page token. + # @param [String] fields + # Selector specifying which fields to include in a partial response. + # @param [String] quota_user + # Available to use for quota purposes for server-side applications. Can be any + # arbitrary string assigned to a user, but should not exceed 40 characters. + # @param [Google::Apis::RequestOptions] options + # Request-specific options + # + # @yield [result, err] Result & error if block supplied + # @yieldparam result [Google::Apis::PrivatecaV1beta1::ListLocationsResponse] parsed result object + # @yieldparam err [StandardError] error object if request failed + # + # @return [Google::Apis::PrivatecaV1beta1::ListLocationsResponse] + # + # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried + # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification + # @raise [Google::Apis::AuthorizationError] Authorization is required + def list_project_locations(name, filter: nil, page_size: nil, page_token: nil, fields: nil, quota_user: nil, options: nil, &block) + command = make_simple_command(:get, 'v1beta1/{+name}/locations', options) + command.response_representation = Google::Apis::PrivatecaV1beta1::ListLocationsResponse::Representation + command.response_class = Google::Apis::PrivatecaV1beta1::ListLocationsResponse + command.params['name'] = name unless name.nil? + command.query['filter'] = filter unless filter.nil? + command.query['pageSize'] = page_size unless page_size.nil? + command.query['pageToken'] = page_token unless page_token.nil? + command.query['fields'] = fields unless fields.nil? + command.query['quotaUser'] = quota_user unless quota_user.nil? + execute_or_queue_command(command, &block) + end + + # Activate a CertificateAuthority that is in state PENDING_ACTIVATION and is of + # type SUBORDINATE. After the parent Certificate Authority signs a certificate + # signing request from FetchCertificateAuthorityCsr, this method can complete + # the activation process. + # @param [String] name + # Required. The resource name for this CertificateAuthority in the format ` + # projects/*/locations/*/certificateAuthorities/*`. + # @param [Google::Apis::PrivatecaV1beta1::ActivateCertificateAuthorityRequest] activate_certificate_authority_request_object + # @param [String] fields + # Selector specifying which fields to include in a partial response. + # @param [String] quota_user + # Available to use for quota purposes for server-side applications. Can be any + # arbitrary string assigned to a user, but should not exceed 40 characters. + # @param [Google::Apis::RequestOptions] options + # Request-specific options + # + # @yield [result, err] Result & error if block supplied + # @yieldparam result [Google::Apis::PrivatecaV1beta1::Operation] parsed result object + # @yieldparam err [StandardError] error object if request failed + # + # @return [Google::Apis::PrivatecaV1beta1::Operation] + # + # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried + # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification + # @raise [Google::Apis::AuthorizationError] Authorization is required + def activate_certificate_authority(name, activate_certificate_authority_request_object = nil, fields: nil, quota_user: nil, options: nil, &block) + command = make_simple_command(:post, 'v1beta1/{+name}:activate', options) + command.request_representation = Google::Apis::PrivatecaV1beta1::ActivateCertificateAuthorityRequest::Representation + command.request_object = activate_certificate_authority_request_object + command.response_representation = Google::Apis::PrivatecaV1beta1::Operation::Representation + command.response_class = Google::Apis::PrivatecaV1beta1::Operation + command.params['name'] = name unless name.nil? + command.query['fields'] = fields unless fields.nil? + command.query['quotaUser'] = quota_user unless quota_user.nil? + execute_or_queue_command(command, &block) + end + + # Create a new CertificateAuthority in a given Project and Location. + # @param [String] parent + # Required. The resource name of the location associated with the + # CertificateAuthorities, in the format `projects/*/locations/*`. + # @param [Google::Apis::PrivatecaV1beta1::CertificateAuthority] certificate_authority_object + # @param [String] certificate_authority_id + # Required. It must be unique within a location and match the regular expression + # `[a-zA-Z0-9_-]`1,63`` + # @param [String] request_id + # Optional. An ID to identify requests. Specify a unique request ID so that if + # you must retry your request, the server will know to ignore the request if it + # has already been completed. The server will guarantee that for at least 60 + # minutes since the first request. For example, consider a situation where you + # make an initial request and t he request times out. If you make the request + # again with the same request ID, the server can check if original operation + # with the same request ID was received, and if so, will ignore the second + # request. This prevents clients from accidentally creating duplicate + # commitments. The request ID must be a valid UUID with the exception that zero + # UUID is not supported (00000000-0000-0000-0000-000000000000). + # @param [String] fields + # Selector specifying which fields to include in a partial response. + # @param [String] quota_user + # Available to use for quota purposes for server-side applications. Can be any + # arbitrary string assigned to a user, but should not exceed 40 characters. + # @param [Google::Apis::RequestOptions] options + # Request-specific options + # + # @yield [result, err] Result & error if block supplied + # @yieldparam result [Google::Apis::PrivatecaV1beta1::Operation] parsed result object + # @yieldparam err [StandardError] error object if request failed + # + # @return [Google::Apis::PrivatecaV1beta1::Operation] + # + # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried + # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification + # @raise [Google::Apis::AuthorizationError] Authorization is required + def create_project_location_certificate_authority(parent, certificate_authority_object = nil, certificate_authority_id: nil, request_id: nil, fields: nil, quota_user: nil, options: nil, &block) + command = make_simple_command(:post, 'v1beta1/{+parent}/certificateAuthorities', options) + command.request_representation = Google::Apis::PrivatecaV1beta1::CertificateAuthority::Representation + command.request_object = certificate_authority_object + command.response_representation = Google::Apis::PrivatecaV1beta1::Operation::Representation + command.response_class = Google::Apis::PrivatecaV1beta1::Operation + command.params['parent'] = parent unless parent.nil? + command.query['certificateAuthorityId'] = certificate_authority_id unless certificate_authority_id.nil? + command.query['requestId'] = request_id unless request_id.nil? + command.query['fields'] = fields unless fields.nil? + command.query['quotaUser'] = quota_user unless quota_user.nil? + execute_or_queue_command(command, &block) + end + + # Disable a CertificateAuthority. + # @param [String] name + # Required. The resource name for this CertificateAuthority in the format ` + # projects/*/locations/*/certificateAuthorities/*`. + # @param [Google::Apis::PrivatecaV1beta1::DisableCertificateAuthorityRequest] disable_certificate_authority_request_object + # @param [String] fields + # Selector specifying which fields to include in a partial response. + # @param [String] quota_user + # Available to use for quota purposes for server-side applications. Can be any + # arbitrary string assigned to a user, but should not exceed 40 characters. + # @param [Google::Apis::RequestOptions] options + # Request-specific options + # + # @yield [result, err] Result & error if block supplied + # @yieldparam result [Google::Apis::PrivatecaV1beta1::Operation] parsed result object + # @yieldparam err [StandardError] error object if request failed + # + # @return [Google::Apis::PrivatecaV1beta1::Operation] + # + # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried + # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification + # @raise [Google::Apis::AuthorizationError] Authorization is required + def disable_certificate_authority(name, disable_certificate_authority_request_object = nil, fields: nil, quota_user: nil, options: nil, &block) + command = make_simple_command(:post, 'v1beta1/{+name}:disable', options) + command.request_representation = Google::Apis::PrivatecaV1beta1::DisableCertificateAuthorityRequest::Representation + command.request_object = disable_certificate_authority_request_object + command.response_representation = Google::Apis::PrivatecaV1beta1::Operation::Representation + command.response_class = Google::Apis::PrivatecaV1beta1::Operation + command.params['name'] = name unless name.nil? + command.query['fields'] = fields unless fields.nil? + command.query['quotaUser'] = quota_user unless quota_user.nil? + execute_or_queue_command(command, &block) + end + + # Enable a CertificateAuthority. + # @param [String] name + # Required. The resource name for this CertificateAuthority in the format ` + # projects/*/locations/*/certificateAuthorities/*`. + # @param [Google::Apis::PrivatecaV1beta1::EnableCertificateAuthorityRequest] enable_certificate_authority_request_object + # @param [String] fields + # Selector specifying which fields to include in a partial response. + # @param [String] quota_user + # Available to use for quota purposes for server-side applications. Can be any + # arbitrary string assigned to a user, but should not exceed 40 characters. + # @param [Google::Apis::RequestOptions] options + # Request-specific options + # + # @yield [result, err] Result & error if block supplied + # @yieldparam result [Google::Apis::PrivatecaV1beta1::Operation] parsed result object + # @yieldparam err [StandardError] error object if request failed + # + # @return [Google::Apis::PrivatecaV1beta1::Operation] + # + # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried + # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification + # @raise [Google::Apis::AuthorizationError] Authorization is required + def enable_certificate_authority(name, enable_certificate_authority_request_object = nil, fields: nil, quota_user: nil, options: nil, &block) + command = make_simple_command(:post, 'v1beta1/{+name}:enable', options) + command.request_representation = Google::Apis::PrivatecaV1beta1::EnableCertificateAuthorityRequest::Representation + command.request_object = enable_certificate_authority_request_object + command.response_representation = Google::Apis::PrivatecaV1beta1::Operation::Representation + command.response_class = Google::Apis::PrivatecaV1beta1::Operation + command.params['name'] = name unless name.nil? + command.query['fields'] = fields unless fields.nil? + command.query['quotaUser'] = quota_user unless quota_user.nil? + execute_or_queue_command(command, &block) + end + + # Fetch a certificate signing request (CSR) from a CertificateAuthority that is + # in state PENDING_ACTIVATION and is of type SUBORDINATE. The CSR must then be + # signed by the desired parent Certificate Authority, which could be another + # CertificateAuthority resource, or could be an on-prem certificate authority. + # See also ActivateCertificateAuthority. + # @param [String] name + # Required. The resource name for this CertificateAuthority in the format ` + # projects/*/locations/*/certificateAuthorities/*`. + # @param [String] fields + # Selector specifying which fields to include in a partial response. + # @param [String] quota_user + # Available to use for quota purposes for server-side applications. Can be any + # arbitrary string assigned to a user, but should not exceed 40 characters. + # @param [Google::Apis::RequestOptions] options + # Request-specific options + # + # @yield [result, err] Result & error if block supplied + # @yieldparam result [Google::Apis::PrivatecaV1beta1::FetchCertificateAuthorityCsrResponse] parsed result object + # @yieldparam err [StandardError] error object if request failed + # + # @return [Google::Apis::PrivatecaV1beta1::FetchCertificateAuthorityCsrResponse] + # + # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried + # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification + # @raise [Google::Apis::AuthorizationError] Authorization is required + def fetch_project_location_certificate_authority(name, fields: nil, quota_user: nil, options: nil, &block) + command = make_simple_command(:get, 'v1beta1/{+name}:fetch', options) + command.response_representation = Google::Apis::PrivatecaV1beta1::FetchCertificateAuthorityCsrResponse::Representation + command.response_class = Google::Apis::PrivatecaV1beta1::FetchCertificateAuthorityCsrResponse + command.params['name'] = name unless name.nil? + command.query['fields'] = fields unless fields.nil? + command.query['quotaUser'] = quota_user unless quota_user.nil? + execute_or_queue_command(command, &block) + end + + # Returns a CertificateAuthority. + # @param [String] name + # Required. The name of the CertificateAuthority to get. + # @param [String] fields + # Selector specifying which fields to include in a partial response. + # @param [String] quota_user + # Available to use for quota purposes for server-side applications. Can be any + # arbitrary string assigned to a user, but should not exceed 40 characters. + # @param [Google::Apis::RequestOptions] options + # Request-specific options + # + # @yield [result, err] Result & error if block supplied + # @yieldparam result [Google::Apis::PrivatecaV1beta1::CertificateAuthority] parsed result object + # @yieldparam err [StandardError] error object if request failed + # + # @return [Google::Apis::PrivatecaV1beta1::CertificateAuthority] + # + # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried + # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification + # @raise [Google::Apis::AuthorizationError] Authorization is required + def get_project_location_certificate_authority(name, fields: nil, quota_user: nil, options: nil, &block) + command = make_simple_command(:get, 'v1beta1/{+name}', options) + command.response_representation = Google::Apis::PrivatecaV1beta1::CertificateAuthority::Representation + command.response_class = Google::Apis::PrivatecaV1beta1::CertificateAuthority + command.params['name'] = name unless name.nil? + command.query['fields'] = fields unless fields.nil? + command.query['quotaUser'] = quota_user unless quota_user.nil? + execute_or_queue_command(command, &block) + end + + # Gets the access control policy for a resource. Returns an empty policy if the + # resource exists and does not have a policy set. + # @param [String] resource + # REQUIRED: The resource for which the policy is being requested. See the + # operation documentation for the appropriate value for this field. + # @param [Fixnum] options_requested_policy_version + # Optional. The policy format version to be returned. Valid values are 0, 1, and + # 3. Requests specifying an invalid value will be rejected. Requests for + # policies with any conditional bindings must specify version 3. Policies + # without any conditional bindings may specify any valid value or leave the + # field unset. To learn which resources support conditions in their IAM policies, + # see the [IAM documentation](https://cloud.google.com/iam/help/conditions/ + # resource-policies). + # @param [String] fields + # Selector specifying which fields to include in a partial response. + # @param [String] quota_user + # Available to use for quota purposes for server-side applications. Can be any + # arbitrary string assigned to a user, but should not exceed 40 characters. + # @param [Google::Apis::RequestOptions] options + # Request-specific options + # + # @yield [result, err] Result & error if block supplied + # @yieldparam result [Google::Apis::PrivatecaV1beta1::Policy] parsed result object + # @yieldparam err [StandardError] error object if request failed + # + # @return [Google::Apis::PrivatecaV1beta1::Policy] + # + # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried + # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification + # @raise [Google::Apis::AuthorizationError] Authorization is required + def get_project_location_certificate_authority_iam_policy(resource, options_requested_policy_version: nil, fields: nil, quota_user: nil, options: nil, &block) + command = make_simple_command(:get, 'v1beta1/{+resource}:getIamPolicy', options) + command.response_representation = Google::Apis::PrivatecaV1beta1::Policy::Representation + command.response_class = Google::Apis::PrivatecaV1beta1::Policy + command.params['resource'] = resource unless resource.nil? + command.query['options.requestedPolicyVersion'] = options_requested_policy_version unless options_requested_policy_version.nil? + command.query['fields'] = fields unless fields.nil? + command.query['quotaUser'] = quota_user unless quota_user.nil? + execute_or_queue_command(command, &block) + end + + # Lists CertificateAuthorities. + # @param [String] parent + # Required. The resource name of the location associated with the + # CertificateAuthorities, in the format `projects/*/locations/*`. + # @param [String] filter + # Optional. Only include resources that match the filter in the response. + # @param [String] order_by + # Optional. Specify how the results should be sorted. + # @param [Fixnum] page_size + # Optional. Limit on the number of CertificateAuthorities to include in the + # response. Further CertificateAuthorities can subsequently be obtained by + # including the ListCertificateAuthoritiesResponse.next_page_token in a + # subsequent request. If unspecified, the server will pick an appropriate + # default. + # @param [String] page_token + # Optional. Pagination token, returned earlier via + # ListCertificateAuthoritiesResponse.next_page_token. + # @param [String] fields + # Selector specifying which fields to include in a partial response. + # @param [String] quota_user + # Available to use for quota purposes for server-side applications. Can be any + # arbitrary string assigned to a user, but should not exceed 40 characters. + # @param [Google::Apis::RequestOptions] options + # Request-specific options + # + # @yield [result, err] Result & error if block supplied + # @yieldparam result [Google::Apis::PrivatecaV1beta1::ListCertificateAuthoritiesResponse] parsed result object + # @yieldparam err [StandardError] error object if request failed + # + # @return [Google::Apis::PrivatecaV1beta1::ListCertificateAuthoritiesResponse] + # + # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried + # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification + # @raise [Google::Apis::AuthorizationError] Authorization is required + def list_project_location_certificate_authorities(parent, filter: nil, order_by: nil, page_size: nil, page_token: nil, fields: nil, quota_user: nil, options: nil, &block) + command = make_simple_command(:get, 'v1beta1/{+parent}/certificateAuthorities', options) + command.response_representation = Google::Apis::PrivatecaV1beta1::ListCertificateAuthoritiesResponse::Representation + command.response_class = Google::Apis::PrivatecaV1beta1::ListCertificateAuthoritiesResponse + command.params['parent'] = parent unless parent.nil? + command.query['filter'] = filter unless filter.nil? + command.query['orderBy'] = order_by unless order_by.nil? + command.query['pageSize'] = page_size unless page_size.nil? + command.query['pageToken'] = page_token unless page_token.nil? + command.query['fields'] = fields unless fields.nil? + command.query['quotaUser'] = quota_user unless quota_user.nil? + execute_or_queue_command(command, &block) + end + + # Update a CertificateAuthority. + # @param [String] name + # Output only. The resource name for this CertificateAuthority in the format ` + # projects/*/locations/*/certificateAuthorities/*`. + # @param [Google::Apis::PrivatecaV1beta1::CertificateAuthority] certificate_authority_object + # @param [String] request_id + # Optional. An ID to identify requests. Specify a unique request ID so that if + # you must retry your request, the server will know to ignore the request if it + # has already been completed. The server will guarantee that for at least 60 + # minutes since the first request. For example, consider a situation where you + # make an initial request and t he request times out. If you make the request + # again with the same request ID, the server can check if original operation + # with the same request ID was received, and if so, will ignore the second + # request. This prevents clients from accidentally creating duplicate + # commitments. The request ID must be a valid UUID with the exception that zero + # UUID is not supported (00000000-0000-0000-0000-000000000000). + # @param [String] update_mask + # Required. A list of fields to be updated in this request. + # @param [String] fields + # Selector specifying which fields to include in a partial response. + # @param [String] quota_user + # Available to use for quota purposes for server-side applications. Can be any + # arbitrary string assigned to a user, but should not exceed 40 characters. + # @param [Google::Apis::RequestOptions] options + # Request-specific options + # + # @yield [result, err] Result & error if block supplied + # @yieldparam result [Google::Apis::PrivatecaV1beta1::Operation] parsed result object + # @yieldparam err [StandardError] error object if request failed + # + # @return [Google::Apis::PrivatecaV1beta1::Operation] + # + # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried + # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification + # @raise [Google::Apis::AuthorizationError] Authorization is required + def patch_project_location_certificate_authority(name, certificate_authority_object = nil, request_id: nil, update_mask: nil, fields: nil, quota_user: nil, options: nil, &block) + command = make_simple_command(:patch, 'v1beta1/{+name}', options) + command.request_representation = Google::Apis::PrivatecaV1beta1::CertificateAuthority::Representation + command.request_object = certificate_authority_object + command.response_representation = Google::Apis::PrivatecaV1beta1::Operation::Representation + command.response_class = Google::Apis::PrivatecaV1beta1::Operation + command.params['name'] = name unless name.nil? + command.query['requestId'] = request_id unless request_id.nil? + command.query['updateMask'] = update_mask unless update_mask.nil? + command.query['fields'] = fields unless fields.nil? + command.query['quotaUser'] = quota_user unless quota_user.nil? + execute_or_queue_command(command, &block) + end + + # Restore a CertificateAuthority that is scheduled for deletion. + # @param [String] name + # Required. The resource name for this CertificateAuthority in the format ` + # projects/*/locations/*/certificateAuthorities/*`. + # @param [Google::Apis::PrivatecaV1beta1::RestoreCertificateAuthorityRequest] restore_certificate_authority_request_object + # @param [String] fields + # Selector specifying which fields to include in a partial response. + # @param [String] quota_user + # Available to use for quota purposes for server-side applications. Can be any + # arbitrary string assigned to a user, but should not exceed 40 characters. + # @param [Google::Apis::RequestOptions] options + # Request-specific options + # + # @yield [result, err] Result & error if block supplied + # @yieldparam result [Google::Apis::PrivatecaV1beta1::Operation] parsed result object + # @yieldparam err [StandardError] error object if request failed + # + # @return [Google::Apis::PrivatecaV1beta1::Operation] + # + # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried + # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification + # @raise [Google::Apis::AuthorizationError] Authorization is required + def restore_certificate_authority(name, restore_certificate_authority_request_object = nil, fields: nil, quota_user: nil, options: nil, &block) + command = make_simple_command(:post, 'v1beta1/{+name}:restore', options) + command.request_representation = Google::Apis::PrivatecaV1beta1::RestoreCertificateAuthorityRequest::Representation + command.request_object = restore_certificate_authority_request_object + command.response_representation = Google::Apis::PrivatecaV1beta1::Operation::Representation + command.response_class = Google::Apis::PrivatecaV1beta1::Operation + command.params['name'] = name unless name.nil? + command.query['fields'] = fields unless fields.nil? + command.query['quotaUser'] = quota_user unless quota_user.nil? + execute_or_queue_command(command, &block) + end + + # Schedule a CertificateAuthority for deletion. + # @param [String] name + # Required. The resource name for this CertificateAuthority in the format ` + # projects/*/locations/*/certificateAuthorities/*`. + # @param [Google::Apis::PrivatecaV1beta1::ScheduleDeleteCertificateAuthorityRequest] schedule_delete_certificate_authority_request_object + # @param [String] fields + # Selector specifying which fields to include in a partial response. + # @param [String] quota_user + # Available to use for quota purposes for server-side applications. Can be any + # arbitrary string assigned to a user, but should not exceed 40 characters. + # @param [Google::Apis::RequestOptions] options + # Request-specific options + # + # @yield [result, err] Result & error if block supplied + # @yieldparam result [Google::Apis::PrivatecaV1beta1::Operation] parsed result object + # @yieldparam err [StandardError] error object if request failed + # + # @return [Google::Apis::PrivatecaV1beta1::Operation] + # + # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried + # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification + # @raise [Google::Apis::AuthorizationError] Authorization is required + def schedule_delete_certificate_authority(name, schedule_delete_certificate_authority_request_object = nil, fields: nil, quota_user: nil, options: nil, &block) + command = make_simple_command(:post, 'v1beta1/{+name}:scheduleDelete', options) + command.request_representation = Google::Apis::PrivatecaV1beta1::ScheduleDeleteCertificateAuthorityRequest::Representation + command.request_object = schedule_delete_certificate_authority_request_object + command.response_representation = Google::Apis::PrivatecaV1beta1::Operation::Representation + command.response_class = Google::Apis::PrivatecaV1beta1::Operation + command.params['name'] = name unless name.nil? + command.query['fields'] = fields unless fields.nil? + command.query['quotaUser'] = quota_user unless quota_user.nil? + execute_or_queue_command(command, &block) + end + + # Sets the access control policy on the specified resource. Replaces any + # existing policy. Can return `NOT_FOUND`, `INVALID_ARGUMENT`, and ` + # PERMISSION_DENIED` errors. + # @param [String] resource + # REQUIRED: The resource for which the policy is being specified. See the + # operation documentation for the appropriate value for this field. + # @param [Google::Apis::PrivatecaV1beta1::SetIamPolicyRequest] set_iam_policy_request_object + # @param [String] fields + # Selector specifying which fields to include in a partial response. + # @param [String] quota_user + # Available to use for quota purposes for server-side applications. Can be any + # arbitrary string assigned to a user, but should not exceed 40 characters. + # @param [Google::Apis::RequestOptions] options + # Request-specific options + # + # @yield [result, err] Result & error if block supplied + # @yieldparam result [Google::Apis::PrivatecaV1beta1::Policy] parsed result object + # @yieldparam err [StandardError] error object if request failed + # + # @return [Google::Apis::PrivatecaV1beta1::Policy] + # + # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried + # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification + # @raise [Google::Apis::AuthorizationError] Authorization is required + def set_certificate_authority_iam_policy(resource, set_iam_policy_request_object = nil, fields: nil, quota_user: nil, options: nil, &block) + command = make_simple_command(:post, 'v1beta1/{+resource}:setIamPolicy', options) + command.request_representation = Google::Apis::PrivatecaV1beta1::SetIamPolicyRequest::Representation + command.request_object = set_iam_policy_request_object + command.response_representation = Google::Apis::PrivatecaV1beta1::Policy::Representation + command.response_class = Google::Apis::PrivatecaV1beta1::Policy + command.params['resource'] = resource unless resource.nil? + command.query['fields'] = fields unless fields.nil? + command.query['quotaUser'] = quota_user unless quota_user.nil? + execute_or_queue_command(command, &block) + end + + # Returns permissions that a caller has on the specified resource. If the + # resource does not exist, this will return an empty set of permissions, not a ` + # NOT_FOUND` error. Note: This operation is designed to be used for building + # permission-aware UIs and command-line tools, not for authorization checking. + # This operation may "fail open" without warning. + # @param [String] resource + # REQUIRED: The resource for which the policy detail is being requested. See the + # operation documentation for the appropriate value for this field. + # @param [Google::Apis::PrivatecaV1beta1::TestIamPermissionsRequest] test_iam_permissions_request_object + # @param [String] fields + # Selector specifying which fields to include in a partial response. + # @param [String] quota_user + # Available to use for quota purposes for server-side applications. Can be any + # arbitrary string assigned to a user, but should not exceed 40 characters. + # @param [Google::Apis::RequestOptions] options + # Request-specific options + # + # @yield [result, err] Result & error if block supplied + # @yieldparam result [Google::Apis::PrivatecaV1beta1::TestIamPermissionsResponse] parsed result object + # @yieldparam err [StandardError] error object if request failed + # + # @return [Google::Apis::PrivatecaV1beta1::TestIamPermissionsResponse] + # + # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried + # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification + # @raise [Google::Apis::AuthorizationError] Authorization is required + def test_certificate_authority_iam_permissions(resource, test_iam_permissions_request_object = nil, fields: nil, quota_user: nil, options: nil, &block) + command = make_simple_command(:post, 'v1beta1/{+resource}:testIamPermissions', options) + command.request_representation = Google::Apis::PrivatecaV1beta1::TestIamPermissionsRequest::Representation + command.request_object = test_iam_permissions_request_object + command.response_representation = Google::Apis::PrivatecaV1beta1::TestIamPermissionsResponse::Representation + command.response_class = Google::Apis::PrivatecaV1beta1::TestIamPermissionsResponse + command.params['resource'] = resource unless resource.nil? + command.query['fields'] = fields unless fields.nil? + command.query['quotaUser'] = quota_user unless quota_user.nil? + execute_or_queue_command(command, &block) + end + + # Create a new CertificateRevocationList in a given Project, Location for a + # particular CertificateAuthority. + # @param [String] parent + # Required. The resource name of the location and CertificateAuthority + # associated with the CertificateRevocationList, in the format `projects/*/ + # locations/*/certificateAuthorities/*`. + # @param [Google::Apis::PrivatecaV1beta1::CertificateRevocationList] certificate_revocation_list_object + # @param [String] certificate_revocation_list_id + # Required. It must be unique within a location and match the regular expression + # `[a-zA-Z0-9_-]`1,63`` + # @param [String] request_id + # Optional. An ID to identify requests. Specify a unique request ID so that if + # you must retry your request, the server will know to ignore the request if it + # has already been completed. The server will guarantee that for at least 60 + # minutes since the first request. For example, consider a situation where you + # make an initial request and t he request times out. If you make the request + # again with the same request ID, the server can check if original operation + # with the same request ID was received, and if so, will ignore the second + # request. This prevents clients from accidentally creating duplicate + # commitments. The request ID must be a valid UUID with the exception that zero + # UUID is not supported (00000000-0000-0000-0000-000000000000). + # @param [String] fields + # Selector specifying which fields to include in a partial response. + # @param [String] quota_user + # Available to use for quota purposes for server-side applications. Can be any + # arbitrary string assigned to a user, but should not exceed 40 characters. + # @param [Google::Apis::RequestOptions] options + # Request-specific options + # + # @yield [result, err] Result & error if block supplied + # @yieldparam result [Google::Apis::PrivatecaV1beta1::Operation] parsed result object + # @yieldparam err [StandardError] error object if request failed + # + # @return [Google::Apis::PrivatecaV1beta1::Operation] + # + # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried + # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification + # @raise [Google::Apis::AuthorizationError] Authorization is required + def create_project_location_certificate_authority_certificate_revocation_list(parent, certificate_revocation_list_object = nil, certificate_revocation_list_id: nil, request_id: nil, fields: nil, quota_user: nil, options: nil, &block) + command = make_simple_command(:post, 'v1beta1/{+parent}/certificateRevocationLists', options) + command.request_representation = Google::Apis::PrivatecaV1beta1::CertificateRevocationList::Representation + command.request_object = certificate_revocation_list_object + command.response_representation = Google::Apis::PrivatecaV1beta1::Operation::Representation + command.response_class = Google::Apis::PrivatecaV1beta1::Operation + command.params['parent'] = parent unless parent.nil? + command.query['certificateRevocationListId'] = certificate_revocation_list_id unless certificate_revocation_list_id.nil? + command.query['requestId'] = request_id unless request_id.nil? + command.query['fields'] = fields unless fields.nil? + command.query['quotaUser'] = quota_user unless quota_user.nil? + execute_or_queue_command(command, &block) + end + + # Returns a CertificateRevocationList. + # @param [String] name + # Required. The name of the CertificateRevocationList to get. + # @param [String] fields + # Selector specifying which fields to include in a partial response. + # @param [String] quota_user + # Available to use for quota purposes for server-side applications. Can be any + # arbitrary string assigned to a user, but should not exceed 40 characters. + # @param [Google::Apis::RequestOptions] options + # Request-specific options + # + # @yield [result, err] Result & error if block supplied + # @yieldparam result [Google::Apis::PrivatecaV1beta1::CertificateRevocationList] parsed result object + # @yieldparam err [StandardError] error object if request failed + # + # @return [Google::Apis::PrivatecaV1beta1::CertificateRevocationList] + # + # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried + # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification + # @raise [Google::Apis::AuthorizationError] Authorization is required + def get_project_location_certificate_authority_certificate_revocation_list(name, fields: nil, quota_user: nil, options: nil, &block) + command = make_simple_command(:get, 'v1beta1/{+name}', options) + command.response_representation = Google::Apis::PrivatecaV1beta1::CertificateRevocationList::Representation + command.response_class = Google::Apis::PrivatecaV1beta1::CertificateRevocationList + command.params['name'] = name unless name.nil? + command.query['fields'] = fields unless fields.nil? + command.query['quotaUser'] = quota_user unless quota_user.nil? + execute_or_queue_command(command, &block) + end + + # Gets the access control policy for a resource. Returns an empty policy if the + # resource exists and does not have a policy set. + # @param [String] resource + # REQUIRED: The resource for which the policy is being requested. See the + # operation documentation for the appropriate value for this field. + # @param [Fixnum] options_requested_policy_version + # Optional. The policy format version to be returned. Valid values are 0, 1, and + # 3. Requests specifying an invalid value will be rejected. Requests for + # policies with any conditional bindings must specify version 3. Policies + # without any conditional bindings may specify any valid value or leave the + # field unset. To learn which resources support conditions in their IAM policies, + # see the [IAM documentation](https://cloud.google.com/iam/help/conditions/ + # resource-policies). + # @param [String] fields + # Selector specifying which fields to include in a partial response. + # @param [String] quota_user + # Available to use for quota purposes for server-side applications. Can be any + # arbitrary string assigned to a user, but should not exceed 40 characters. + # @param [Google::Apis::RequestOptions] options + # Request-specific options + # + # @yield [result, err] Result & error if block supplied + # @yieldparam result [Google::Apis::PrivatecaV1beta1::Policy] parsed result object + # @yieldparam err [StandardError] error object if request failed + # + # @return [Google::Apis::PrivatecaV1beta1::Policy] + # + # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried + # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification + # @raise [Google::Apis::AuthorizationError] Authorization is required + def get_project_location_certificate_authority_certificate_revocation_list_iam_policy(resource, options_requested_policy_version: nil, fields: nil, quota_user: nil, options: nil, &block) + command = make_simple_command(:get, 'v1beta1/{+resource}:getIamPolicy', options) + command.response_representation = Google::Apis::PrivatecaV1beta1::Policy::Representation + command.response_class = Google::Apis::PrivatecaV1beta1::Policy + command.params['resource'] = resource unless resource.nil? + command.query['options.requestedPolicyVersion'] = options_requested_policy_version unless options_requested_policy_version.nil? + command.query['fields'] = fields unless fields.nil? + command.query['quotaUser'] = quota_user unless quota_user.nil? + execute_or_queue_command(command, &block) + end + + # Lists CertificateRevocationLists. + # @param [String] parent + # Required. The resource name of the location associated with the + # CertificateRevocationLists, in the format `projects/*/locations/*/ + # certificateauthorities/*`. + # @param [String] filter + # Optional. Only include resources that match the filter in the response. + # @param [String] order_by + # Optional. Specify how the results should be sorted. + # @param [Fixnum] page_size + # Optional. Limit on the number of CertificateRevocationLists to include in the + # response. Further CertificateRevocationLists can subsequently be obtained by + # including the ListCertificateRevocationListsResponse.next_page_token in a + # subsequent request. If unspecified, the server will pick an appropriate + # default. + # @param [String] page_token + # Optional. Pagination token, returned earlier via + # ListCertificateRevocationListsResponse.next_page_token. + # @param [String] fields + # Selector specifying which fields to include in a partial response. + # @param [String] quota_user + # Available to use for quota purposes for server-side applications. Can be any + # arbitrary string assigned to a user, but should not exceed 40 characters. + # @param [Google::Apis::RequestOptions] options + # Request-specific options + # + # @yield [result, err] Result & error if block supplied + # @yieldparam result [Google::Apis::PrivatecaV1beta1::ListCertificateRevocationListsResponse] parsed result object + # @yieldparam err [StandardError] error object if request failed + # + # @return [Google::Apis::PrivatecaV1beta1::ListCertificateRevocationListsResponse] + # + # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried + # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification + # @raise [Google::Apis::AuthorizationError] Authorization is required + def list_project_location_certificate_authority_certificate_revocation_lists(parent, filter: nil, order_by: nil, page_size: nil, page_token: nil, fields: nil, quota_user: nil, options: nil, &block) + command = make_simple_command(:get, 'v1beta1/{+parent}/certificateRevocationLists', options) + command.response_representation = Google::Apis::PrivatecaV1beta1::ListCertificateRevocationListsResponse::Representation + command.response_class = Google::Apis::PrivatecaV1beta1::ListCertificateRevocationListsResponse + command.params['parent'] = parent unless parent.nil? + command.query['filter'] = filter unless filter.nil? + command.query['orderBy'] = order_by unless order_by.nil? + command.query['pageSize'] = page_size unless page_size.nil? + command.query['pageToken'] = page_token unless page_token.nil? + command.query['fields'] = fields unless fields.nil? + command.query['quotaUser'] = quota_user unless quota_user.nil? + execute_or_queue_command(command, &block) + end + + # Update a CertificateRevocationList. + # @param [String] name + # Output only. The resource path for this CertificateRevocationList in the + # format `projects/*/locations/*/certificateAuthorities/*/ + # certificateRevocationLists/*`. + # @param [Google::Apis::PrivatecaV1beta1::CertificateRevocationList] certificate_revocation_list_object + # @param [String] request_id + # Optional. An ID to identify requests. Specify a unique request ID so that if + # you must retry your request, the server will know to ignore the request if it + # has already been completed. The server will guarantee that for at least 60 + # minutes since the first request. For example, consider a situation where you + # make an initial request and t he request times out. If you make the request + # again with the same request ID, the server can check if original operation + # with the same request ID was received, and if so, will ignore the second + # request. This prevents clients from accidentally creating duplicate + # commitments. The request ID must be a valid UUID with the exception that zero + # UUID is not supported (00000000-0000-0000-0000-000000000000). + # @param [String] update_mask + # Required. A list of fields to be updated in this request. + # @param [String] fields + # Selector specifying which fields to include in a partial response. + # @param [String] quota_user + # Available to use for quota purposes for server-side applications. Can be any + # arbitrary string assigned to a user, but should not exceed 40 characters. + # @param [Google::Apis::RequestOptions] options + # Request-specific options + # + # @yield [result, err] Result & error if block supplied + # @yieldparam result [Google::Apis::PrivatecaV1beta1::Operation] parsed result object + # @yieldparam err [StandardError] error object if request failed + # + # @return [Google::Apis::PrivatecaV1beta1::Operation] + # + # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried + # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification + # @raise [Google::Apis::AuthorizationError] Authorization is required + def patch_project_location_certificate_authority_certificate_revocation_list(name, certificate_revocation_list_object = nil, request_id: nil, update_mask: nil, fields: nil, quota_user: nil, options: nil, &block) + command = make_simple_command(:patch, 'v1beta1/{+name}', options) + command.request_representation = Google::Apis::PrivatecaV1beta1::CertificateRevocationList::Representation + command.request_object = certificate_revocation_list_object + command.response_representation = Google::Apis::PrivatecaV1beta1::Operation::Representation + command.response_class = Google::Apis::PrivatecaV1beta1::Operation + command.params['name'] = name unless name.nil? + command.query['requestId'] = request_id unless request_id.nil? + command.query['updateMask'] = update_mask unless update_mask.nil? + command.query['fields'] = fields unless fields.nil? + command.query['quotaUser'] = quota_user unless quota_user.nil? + execute_or_queue_command(command, &block) + end + + # Sets the access control policy on the specified resource. Replaces any + # existing policy. Can return `NOT_FOUND`, `INVALID_ARGUMENT`, and ` + # PERMISSION_DENIED` errors. + # @param [String] resource + # REQUIRED: The resource for which the policy is being specified. See the + # operation documentation for the appropriate value for this field. + # @param [Google::Apis::PrivatecaV1beta1::SetIamPolicyRequest] set_iam_policy_request_object + # @param [String] fields + # Selector specifying which fields to include in a partial response. + # @param [String] quota_user + # Available to use for quota purposes for server-side applications. Can be any + # arbitrary string assigned to a user, but should not exceed 40 characters. + # @param [Google::Apis::RequestOptions] options + # Request-specific options + # + # @yield [result, err] Result & error if block supplied + # @yieldparam result [Google::Apis::PrivatecaV1beta1::Policy] parsed result object + # @yieldparam err [StandardError] error object if request failed + # + # @return [Google::Apis::PrivatecaV1beta1::Policy] + # + # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried + # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification + # @raise [Google::Apis::AuthorizationError] Authorization is required + def set_certificate_revocation_list_iam_policy(resource, set_iam_policy_request_object = nil, fields: nil, quota_user: nil, options: nil, &block) + command = make_simple_command(:post, 'v1beta1/{+resource}:setIamPolicy', options) + command.request_representation = Google::Apis::PrivatecaV1beta1::SetIamPolicyRequest::Representation + command.request_object = set_iam_policy_request_object + command.response_representation = Google::Apis::PrivatecaV1beta1::Policy::Representation + command.response_class = Google::Apis::PrivatecaV1beta1::Policy + command.params['resource'] = resource unless resource.nil? + command.query['fields'] = fields unless fields.nil? + command.query['quotaUser'] = quota_user unless quota_user.nil? + execute_or_queue_command(command, &block) + end + + # Returns permissions that a caller has on the specified resource. If the + # resource does not exist, this will return an empty set of permissions, not a ` + # NOT_FOUND` error. Note: This operation is designed to be used for building + # permission-aware UIs and command-line tools, not for authorization checking. + # This operation may "fail open" without warning. + # @param [String] resource + # REQUIRED: The resource for which the policy detail is being requested. See the + # operation documentation for the appropriate value for this field. + # @param [Google::Apis::PrivatecaV1beta1::TestIamPermissionsRequest] test_iam_permissions_request_object + # @param [String] fields + # Selector specifying which fields to include in a partial response. + # @param [String] quota_user + # Available to use for quota purposes for server-side applications. Can be any + # arbitrary string assigned to a user, but should not exceed 40 characters. + # @param [Google::Apis::RequestOptions] options + # Request-specific options + # + # @yield [result, err] Result & error if block supplied + # @yieldparam result [Google::Apis::PrivatecaV1beta1::TestIamPermissionsResponse] parsed result object + # @yieldparam err [StandardError] error object if request failed + # + # @return [Google::Apis::PrivatecaV1beta1::TestIamPermissionsResponse] + # + # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried + # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification + # @raise [Google::Apis::AuthorizationError] Authorization is required + def test_certificate_revocation_list_iam_permissions(resource, test_iam_permissions_request_object = nil, fields: nil, quota_user: nil, options: nil, &block) + command = make_simple_command(:post, 'v1beta1/{+resource}:testIamPermissions', options) + command.request_representation = Google::Apis::PrivatecaV1beta1::TestIamPermissionsRequest::Representation + command.request_object = test_iam_permissions_request_object + command.response_representation = Google::Apis::PrivatecaV1beta1::TestIamPermissionsResponse::Representation + command.response_class = Google::Apis::PrivatecaV1beta1::TestIamPermissionsResponse + command.params['resource'] = resource unless resource.nil? + command.query['fields'] = fields unless fields.nil? + command.query['quotaUser'] = quota_user unless quota_user.nil? + execute_or_queue_command(command, &block) + end + + # Create a new Certificate in a given Project, Location from a particular + # CertificateAuthority. + # @param [String] parent + # Required. The resource name of the location and CertificateAuthority + # associated with the Certificate, in the format `projects/*/locations/*/ + # certificateAuthorities/*`. + # @param [Google::Apis::PrivatecaV1beta1::Certificate] certificate_object + # @param [String] certificate_id + # Optional. It must be unique within a location and match the regular expression + # `[a-zA-Z0-9_-]`1,63``. This field is required when using a + # CertificateAuthority in the Enterprise CertificateAuthority.Tier, but is + # optional and its value is ignored otherwise. + # @param [String] request_id + # Optional. An ID to identify requests. Specify a unique request ID so that if + # you must retry your request, the server will know to ignore the request if it + # has already been completed. The server will guarantee that for at least 60 + # minutes since the first request. For example, consider a situation where you + # make an initial request and t he request times out. If you make the request + # again with the same request ID, the server can check if original operation + # with the same request ID was received, and if so, will ignore the second + # request. This prevents clients from accidentally creating duplicate + # commitments. The request ID must be a valid UUID with the exception that zero + # UUID is not supported (00000000-0000-0000-0000-000000000000). + # @param [String] fields + # Selector specifying which fields to include in a partial response. + # @param [String] quota_user + # Available to use for quota purposes for server-side applications. Can be any + # arbitrary string assigned to a user, but should not exceed 40 characters. + # @param [Google::Apis::RequestOptions] options + # Request-specific options + # + # @yield [result, err] Result & error if block supplied + # @yieldparam result [Google::Apis::PrivatecaV1beta1::Certificate] parsed result object + # @yieldparam err [StandardError] error object if request failed + # + # @return [Google::Apis::PrivatecaV1beta1::Certificate] + # + # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried + # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification + # @raise [Google::Apis::AuthorizationError] Authorization is required + def create_project_location_certificate_authority_certificate(parent, certificate_object = nil, certificate_id: nil, request_id: nil, fields: nil, quota_user: nil, options: nil, &block) + command = make_simple_command(:post, 'v1beta1/{+parent}/certificates', options) + command.request_representation = Google::Apis::PrivatecaV1beta1::Certificate::Representation + command.request_object = certificate_object + command.response_representation = Google::Apis::PrivatecaV1beta1::Certificate::Representation + command.response_class = Google::Apis::PrivatecaV1beta1::Certificate + command.params['parent'] = parent unless parent.nil? + command.query['certificateId'] = certificate_id unless certificate_id.nil? + command.query['requestId'] = request_id unless request_id.nil? + command.query['fields'] = fields unless fields.nil? + command.query['quotaUser'] = quota_user unless quota_user.nil? + execute_or_queue_command(command, &block) + end + + # Returns a Certificate. + # @param [String] name + # Required. The name of the Certificate to get. + # @param [String] fields + # Selector specifying which fields to include in a partial response. + # @param [String] quota_user + # Available to use for quota purposes for server-side applications. Can be any + # arbitrary string assigned to a user, but should not exceed 40 characters. + # @param [Google::Apis::RequestOptions] options + # Request-specific options + # + # @yield [result, err] Result & error if block supplied + # @yieldparam result [Google::Apis::PrivatecaV1beta1::Certificate] parsed result object + # @yieldparam err [StandardError] error object if request failed + # + # @return [Google::Apis::PrivatecaV1beta1::Certificate] + # + # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried + # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification + # @raise [Google::Apis::AuthorizationError] Authorization is required + def get_project_location_certificate_authority_certificate(name, fields: nil, quota_user: nil, options: nil, &block) + command = make_simple_command(:get, 'v1beta1/{+name}', options) + command.response_representation = Google::Apis::PrivatecaV1beta1::Certificate::Representation + command.response_class = Google::Apis::PrivatecaV1beta1::Certificate + command.params['name'] = name unless name.nil? + command.query['fields'] = fields unless fields.nil? + command.query['quotaUser'] = quota_user unless quota_user.nil? + execute_or_queue_command(command, &block) + end + + # Lists Certificates. + # @param [String] parent + # Required. The resource name of the location associated with the Certificates, + # in the format `projects/*/locations/*/certificateauthorities/*`. + # @param [String] filter + # Optional. Only include resources that match the filter in the response. For + # details on supported filters and syntax, see [Certificates Filtering + # documentation](https://cloud.google.com/certificate-authority-service/docs/ + # sorting-filtering-certificates#filtering_support). + # @param [String] order_by + # Optional. Specify how the results should be sorted. For details on supported + # fields and syntax, see [Certificates Sorting documentation](https://cloud. + # google.com/certificate-authority-service/docs/sorting-filtering-certificates# + # sorting_support). + # @param [Fixnum] page_size + # Optional. Limit on the number of Certificates to include in the response. + # Further Certificates can subsequently be obtained by including the + # ListCertificatesResponse.next_page_token in a subsequent request. If + # unspecified, the server will pick an appropriate default. + # @param [String] page_token + # Optional. Pagination token, returned earlier via ListCertificatesResponse. + # next_page_token. + # @param [String] fields + # Selector specifying which fields to include in a partial response. + # @param [String] quota_user + # Available to use for quota purposes for server-side applications. Can be any + # arbitrary string assigned to a user, but should not exceed 40 characters. + # @param [Google::Apis::RequestOptions] options + # Request-specific options + # + # @yield [result, err] Result & error if block supplied + # @yieldparam result [Google::Apis::PrivatecaV1beta1::ListCertificatesResponse] parsed result object + # @yieldparam err [StandardError] error object if request failed + # + # @return [Google::Apis::PrivatecaV1beta1::ListCertificatesResponse] + # + # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried + # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification + # @raise [Google::Apis::AuthorizationError] Authorization is required + def list_project_location_certificate_authority_certificates(parent, filter: nil, order_by: nil, page_size: nil, page_token: nil, fields: nil, quota_user: nil, options: nil, &block) + command = make_simple_command(:get, 'v1beta1/{+parent}/certificates', options) + command.response_representation = Google::Apis::PrivatecaV1beta1::ListCertificatesResponse::Representation + command.response_class = Google::Apis::PrivatecaV1beta1::ListCertificatesResponse + command.params['parent'] = parent unless parent.nil? + command.query['filter'] = filter unless filter.nil? + command.query['orderBy'] = order_by unless order_by.nil? + command.query['pageSize'] = page_size unless page_size.nil? + command.query['pageToken'] = page_token unless page_token.nil? + command.query['fields'] = fields unless fields.nil? + command.query['quotaUser'] = quota_user unless quota_user.nil? + execute_or_queue_command(command, &block) + end + + # Update a Certificate. Currently, the only field you can update is the labels + # field. + # @param [String] name + # Output only. The resource path for this Certificate in the format `projects/*/ + # locations/*/certificateAuthorities/*/certificates/*`. + # @param [Google::Apis::PrivatecaV1beta1::Certificate] certificate_object + # @param [String] request_id + # Optional. An ID to identify requests. Specify a unique request ID so that if + # you must retry your request, the server will know to ignore the request if it + # has already been completed. The server will guarantee that for at least 60 + # minutes since the first request. For example, consider a situation where you + # make an initial request and t he request times out. If you make the request + # again with the same request ID, the server can check if original operation + # with the same request ID was received, and if so, will ignore the second + # request. This prevents clients from accidentally creating duplicate + # commitments. The request ID must be a valid UUID with the exception that zero + # UUID is not supported (00000000-0000-0000-0000-000000000000). + # @param [String] update_mask + # Required. A list of fields to be updated in this request. + # @param [String] fields + # Selector specifying which fields to include in a partial response. + # @param [String] quota_user + # Available to use for quota purposes for server-side applications. Can be any + # arbitrary string assigned to a user, but should not exceed 40 characters. + # @param [Google::Apis::RequestOptions] options + # Request-specific options + # + # @yield [result, err] Result & error if block supplied + # @yieldparam result [Google::Apis::PrivatecaV1beta1::Certificate] parsed result object + # @yieldparam err [StandardError] error object if request failed + # + # @return [Google::Apis::PrivatecaV1beta1::Certificate] + # + # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried + # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification + # @raise [Google::Apis::AuthorizationError] Authorization is required + def patch_project_location_certificate_authority_certificate(name, certificate_object = nil, request_id: nil, update_mask: nil, fields: nil, quota_user: nil, options: nil, &block) + command = make_simple_command(:patch, 'v1beta1/{+name}', options) + command.request_representation = Google::Apis::PrivatecaV1beta1::Certificate::Representation + command.request_object = certificate_object + command.response_representation = Google::Apis::PrivatecaV1beta1::Certificate::Representation + command.response_class = Google::Apis::PrivatecaV1beta1::Certificate + command.params['name'] = name unless name.nil? + command.query['requestId'] = request_id unless request_id.nil? + command.query['updateMask'] = update_mask unless update_mask.nil? + command.query['fields'] = fields unless fields.nil? + command.query['quotaUser'] = quota_user unless quota_user.nil? + execute_or_queue_command(command, &block) + end + + # Revoke a Certificate. + # @param [String] name + # Required. The resource name for this Certificate in the format `projects/*/ + # locations/*/certificateAuthorities/*/certificates/*`. + # @param [Google::Apis::PrivatecaV1beta1::RevokeCertificateRequest] revoke_certificate_request_object + # @param [String] fields + # Selector specifying which fields to include in a partial response. + # @param [String] quota_user + # Available to use for quota purposes for server-side applications. Can be any + # arbitrary string assigned to a user, but should not exceed 40 characters. + # @param [Google::Apis::RequestOptions] options + # Request-specific options + # + # @yield [result, err] Result & error if block supplied + # @yieldparam result [Google::Apis::PrivatecaV1beta1::Certificate] parsed result object + # @yieldparam err [StandardError] error object if request failed + # + # @return [Google::Apis::PrivatecaV1beta1::Certificate] + # + # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried + # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification + # @raise [Google::Apis::AuthorizationError] Authorization is required + def revoke_certificate(name, revoke_certificate_request_object = nil, fields: nil, quota_user: nil, options: nil, &block) + command = make_simple_command(:post, 'v1beta1/{+name}:revoke', options) + command.request_representation = Google::Apis::PrivatecaV1beta1::RevokeCertificateRequest::Representation + command.request_object = revoke_certificate_request_object + command.response_representation = Google::Apis::PrivatecaV1beta1::Certificate::Representation + command.response_class = Google::Apis::PrivatecaV1beta1::Certificate + command.params['name'] = name unless name.nil? + command.query['fields'] = fields unless fields.nil? + command.query['quotaUser'] = quota_user unless quota_user.nil? + execute_or_queue_command(command, &block) + end + + # Starts asynchronous cancellation on a long-running operation. The server makes + # a best effort to cancel the operation, but success is not guaranteed. If the + # server doesn't support this method, it returns `google.rpc.Code.UNIMPLEMENTED`. + # Clients can use Operations.GetOperation or other methods to check whether the + # cancellation succeeded or whether the operation completed despite cancellation. + # On successful cancellation, the operation is not deleted; instead, it becomes + # an operation with an Operation.error value with a google.rpc.Status.code of 1, + # corresponding to `Code.CANCELLED`. + # @param [String] name + # The name of the operation resource to be cancelled. + # @param [Google::Apis::PrivatecaV1beta1::CancelOperationRequest] cancel_operation_request_object + # @param [String] fields + # Selector specifying which fields to include in a partial response. + # @param [String] quota_user + # Available to use for quota purposes for server-side applications. Can be any + # arbitrary string assigned to a user, but should not exceed 40 characters. + # @param [Google::Apis::RequestOptions] options + # Request-specific options + # + # @yield [result, err] Result & error if block supplied + # @yieldparam result [Google::Apis::PrivatecaV1beta1::Empty] parsed result object + # @yieldparam err [StandardError] error object if request failed + # + # @return [Google::Apis::PrivatecaV1beta1::Empty] + # + # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried + # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification + # @raise [Google::Apis::AuthorizationError] Authorization is required + def cancel_operation(name, cancel_operation_request_object = nil, fields: nil, quota_user: nil, options: nil, &block) + command = make_simple_command(:post, 'v1beta1/{+name}:cancel', options) + command.request_representation = Google::Apis::PrivatecaV1beta1::CancelOperationRequest::Representation + command.request_object = cancel_operation_request_object + command.response_representation = Google::Apis::PrivatecaV1beta1::Empty::Representation + command.response_class = Google::Apis::PrivatecaV1beta1::Empty + command.params['name'] = name unless name.nil? + command.query['fields'] = fields unless fields.nil? + command.query['quotaUser'] = quota_user unless quota_user.nil? + execute_or_queue_command(command, &block) + end + + # Deletes a long-running operation. This method indicates that the client is no + # longer interested in the operation result. It does not cancel the operation. + # If the server doesn't support this method, it returns `google.rpc.Code. + # UNIMPLEMENTED`. + # @param [String] name + # The name of the operation resource to be deleted. + # @param [String] fields + # Selector specifying which fields to include in a partial response. + # @param [String] quota_user + # Available to use for quota purposes for server-side applications. Can be any + # arbitrary string assigned to a user, but should not exceed 40 characters. + # @param [Google::Apis::RequestOptions] options + # Request-specific options + # + # @yield [result, err] Result & error if block supplied + # @yieldparam result [Google::Apis::PrivatecaV1beta1::Empty] parsed result object + # @yieldparam err [StandardError] error object if request failed + # + # @return [Google::Apis::PrivatecaV1beta1::Empty] + # + # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried + # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification + # @raise [Google::Apis::AuthorizationError] Authorization is required + def delete_project_location_operation(name, fields: nil, quota_user: nil, options: nil, &block) + command = make_simple_command(:delete, 'v1beta1/{+name}', options) + command.response_representation = Google::Apis::PrivatecaV1beta1::Empty::Representation + command.response_class = Google::Apis::PrivatecaV1beta1::Empty + command.params['name'] = name unless name.nil? + command.query['fields'] = fields unless fields.nil? + command.query['quotaUser'] = quota_user unless quota_user.nil? + execute_or_queue_command(command, &block) + end + + # Gets the latest state of a long-running operation. Clients can use this method + # to poll the operation result at intervals as recommended by the API service. + # @param [String] name + # The name of the operation resource. + # @param [String] fields + # Selector specifying which fields to include in a partial response. + # @param [String] quota_user + # Available to use for quota purposes for server-side applications. Can be any + # arbitrary string assigned to a user, but should not exceed 40 characters. + # @param [Google::Apis::RequestOptions] options + # Request-specific options + # + # @yield [result, err] Result & error if block supplied + # @yieldparam result [Google::Apis::PrivatecaV1beta1::Operation] parsed result object + # @yieldparam err [StandardError] error object if request failed + # + # @return [Google::Apis::PrivatecaV1beta1::Operation] + # + # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried + # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification + # @raise [Google::Apis::AuthorizationError] Authorization is required + def get_project_location_operation(name, fields: nil, quota_user: nil, options: nil, &block) + command = make_simple_command(:get, 'v1beta1/{+name}', options) + command.response_representation = Google::Apis::PrivatecaV1beta1::Operation::Representation + command.response_class = Google::Apis::PrivatecaV1beta1::Operation + command.params['name'] = name unless name.nil? + command.query['fields'] = fields unless fields.nil? + command.query['quotaUser'] = quota_user unless quota_user.nil? + execute_or_queue_command(command, &block) + end + + # Lists operations that match the specified filter in the request. If the server + # doesn't support this method, it returns `UNIMPLEMENTED`. NOTE: the `name` + # binding allows API services to override the binding to use different resource + # name schemes, such as `users/*/operations`. To override the binding, API + # services can add a binding such as `"/v1/`name=users/*`/operations"` to their + # service configuration. For backwards compatibility, the default name includes + # the operations collection id, however overriding users must ensure the name + # binding is the parent resource, without the operations collection id. + # @param [String] name + # The name of the operation's parent resource. + # @param [String] filter + # The standard list filter. + # @param [Fixnum] page_size + # The standard list page size. + # @param [String] page_token + # The standard list page token. + # @param [String] fields + # Selector specifying which fields to include in a partial response. + # @param [String] quota_user + # Available to use for quota purposes for server-side applications. Can be any + # arbitrary string assigned to a user, but should not exceed 40 characters. + # @param [Google::Apis::RequestOptions] options + # Request-specific options + # + # @yield [result, err] Result & error if block supplied + # @yieldparam result [Google::Apis::PrivatecaV1beta1::ListOperationsResponse] parsed result object + # @yieldparam err [StandardError] error object if request failed + # + # @return [Google::Apis::PrivatecaV1beta1::ListOperationsResponse] + # + # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried + # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification + # @raise [Google::Apis::AuthorizationError] Authorization is required + def list_project_location_operations(name, filter: nil, page_size: nil, page_token: nil, fields: nil, quota_user: nil, options: nil, &block) + command = make_simple_command(:get, 'v1beta1/{+name}/operations', options) + command.response_representation = Google::Apis::PrivatecaV1beta1::ListOperationsResponse::Representation + command.response_class = Google::Apis::PrivatecaV1beta1::ListOperationsResponse + command.params['name'] = name unless name.nil? + command.query['filter'] = filter unless filter.nil? + command.query['pageSize'] = page_size unless page_size.nil? + command.query['pageToken'] = page_token unless page_token.nil? + command.query['fields'] = fields unless fields.nil? + command.query['quotaUser'] = quota_user unless quota_user.nil? + execute_or_queue_command(command, &block) + end + + # Returns a ReusableConfig. + # @param [String] name + # Required. The name of the ReusableConfigs to get. + # @param [String] fields + # Selector specifying which fields to include in a partial response. + # @param [String] quota_user + # Available to use for quota purposes for server-side applications. Can be any + # arbitrary string assigned to a user, but should not exceed 40 characters. + # @param [Google::Apis::RequestOptions] options + # Request-specific options + # + # @yield [result, err] Result & error if block supplied + # @yieldparam result [Google::Apis::PrivatecaV1beta1::ReusableConfig] parsed result object + # @yieldparam err [StandardError] error object if request failed + # + # @return [Google::Apis::PrivatecaV1beta1::ReusableConfig] + # + # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried + # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification + # @raise [Google::Apis::AuthorizationError] Authorization is required + def get_project_location_reusable_config(name, fields: nil, quota_user: nil, options: nil, &block) + command = make_simple_command(:get, 'v1beta1/{+name}', options) + command.response_representation = Google::Apis::PrivatecaV1beta1::ReusableConfig::Representation + command.response_class = Google::Apis::PrivatecaV1beta1::ReusableConfig + command.params['name'] = name unless name.nil? + command.query['fields'] = fields unless fields.nil? + command.query['quotaUser'] = quota_user unless quota_user.nil? + execute_or_queue_command(command, &block) + end + + # Gets the access control policy for a resource. Returns an empty policy if the + # resource exists and does not have a policy set. + # @param [String] resource + # REQUIRED: The resource for which the policy is being requested. See the + # operation documentation for the appropriate value for this field. + # @param [Fixnum] options_requested_policy_version + # Optional. The policy format version to be returned. Valid values are 0, 1, and + # 3. Requests specifying an invalid value will be rejected. Requests for + # policies with any conditional bindings must specify version 3. Policies + # without any conditional bindings may specify any valid value or leave the + # field unset. To learn which resources support conditions in their IAM policies, + # see the [IAM documentation](https://cloud.google.com/iam/help/conditions/ + # resource-policies). + # @param [String] fields + # Selector specifying which fields to include in a partial response. + # @param [String] quota_user + # Available to use for quota purposes for server-side applications. Can be any + # arbitrary string assigned to a user, but should not exceed 40 characters. + # @param [Google::Apis::RequestOptions] options + # Request-specific options + # + # @yield [result, err] Result & error if block supplied + # @yieldparam result [Google::Apis::PrivatecaV1beta1::Policy] parsed result object + # @yieldparam err [StandardError] error object if request failed + # + # @return [Google::Apis::PrivatecaV1beta1::Policy] + # + # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried + # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification + # @raise [Google::Apis::AuthorizationError] Authorization is required + def get_project_location_reusable_config_iam_policy(resource, options_requested_policy_version: nil, fields: nil, quota_user: nil, options: nil, &block) + command = make_simple_command(:get, 'v1beta1/{+resource}:getIamPolicy', options) + command.response_representation = Google::Apis::PrivatecaV1beta1::Policy::Representation + command.response_class = Google::Apis::PrivatecaV1beta1::Policy + command.params['resource'] = resource unless resource.nil? + command.query['options.requestedPolicyVersion'] = options_requested_policy_version unless options_requested_policy_version.nil? + command.query['fields'] = fields unless fields.nil? + command.query['quotaUser'] = quota_user unless quota_user.nil? + execute_or_queue_command(command, &block) + end + + # Lists ReusableConfigs. + # @param [String] parent + # Required. The resource name of the location associated with the + # ReusableConfigs, in the format `projects/*/locations/*`. + # @param [String] filter + # Optional. Only include resources that match the filter in the response. + # @param [String] order_by + # Optional. Specify how the results should be sorted. + # @param [Fixnum] page_size + # Optional. Limit on the number of ReusableConfigs to include in the response. + # Further ReusableConfigs can subsequently be obtained by including the + # ListReusableConfigsResponse.next_page_token in a subsequent request. If + # unspecified, the server will pick an appropriate default. + # @param [String] page_token + # Optional. Pagination token, returned earlier via ListReusableConfigsResponse. + # next_page_token. + # @param [String] fields + # Selector specifying which fields to include in a partial response. + # @param [String] quota_user + # Available to use for quota purposes for server-side applications. Can be any + # arbitrary string assigned to a user, but should not exceed 40 characters. + # @param [Google::Apis::RequestOptions] options + # Request-specific options + # + # @yield [result, err] Result & error if block supplied + # @yieldparam result [Google::Apis::PrivatecaV1beta1::ListReusableConfigsResponse] parsed result object + # @yieldparam err [StandardError] error object if request failed + # + # @return [Google::Apis::PrivatecaV1beta1::ListReusableConfigsResponse] + # + # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried + # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification + # @raise [Google::Apis::AuthorizationError] Authorization is required + def list_project_location_reusable_configs(parent, filter: nil, order_by: nil, page_size: nil, page_token: nil, fields: nil, quota_user: nil, options: nil, &block) + command = make_simple_command(:get, 'v1beta1/{+parent}/reusableConfigs', options) + command.response_representation = Google::Apis::PrivatecaV1beta1::ListReusableConfigsResponse::Representation + command.response_class = Google::Apis::PrivatecaV1beta1::ListReusableConfigsResponse + command.params['parent'] = parent unless parent.nil? + command.query['filter'] = filter unless filter.nil? + command.query['orderBy'] = order_by unless order_by.nil? + command.query['pageSize'] = page_size unless page_size.nil? + command.query['pageToken'] = page_token unless page_token.nil? + command.query['fields'] = fields unless fields.nil? + command.query['quotaUser'] = quota_user unless quota_user.nil? + execute_or_queue_command(command, &block) + end + + # Sets the access control policy on the specified resource. Replaces any + # existing policy. Can return `NOT_FOUND`, `INVALID_ARGUMENT`, and ` + # PERMISSION_DENIED` errors. + # @param [String] resource + # REQUIRED: The resource for which the policy is being specified. See the + # operation documentation for the appropriate value for this field. + # @param [Google::Apis::PrivatecaV1beta1::SetIamPolicyRequest] set_iam_policy_request_object + # @param [String] fields + # Selector specifying which fields to include in a partial response. + # @param [String] quota_user + # Available to use for quota purposes for server-side applications. Can be any + # arbitrary string assigned to a user, but should not exceed 40 characters. + # @param [Google::Apis::RequestOptions] options + # Request-specific options + # + # @yield [result, err] Result & error if block supplied + # @yieldparam result [Google::Apis::PrivatecaV1beta1::Policy] parsed result object + # @yieldparam err [StandardError] error object if request failed + # + # @return [Google::Apis::PrivatecaV1beta1::Policy] + # + # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried + # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification + # @raise [Google::Apis::AuthorizationError] Authorization is required + def set_reusable_config_iam_policy(resource, set_iam_policy_request_object = nil, fields: nil, quota_user: nil, options: nil, &block) + command = make_simple_command(:post, 'v1beta1/{+resource}:setIamPolicy', options) + command.request_representation = Google::Apis::PrivatecaV1beta1::SetIamPolicyRequest::Representation + command.request_object = set_iam_policy_request_object + command.response_representation = Google::Apis::PrivatecaV1beta1::Policy::Representation + command.response_class = Google::Apis::PrivatecaV1beta1::Policy + command.params['resource'] = resource unless resource.nil? + command.query['fields'] = fields unless fields.nil? + command.query['quotaUser'] = quota_user unless quota_user.nil? + execute_or_queue_command(command, &block) + end + + # Returns permissions that a caller has on the specified resource. If the + # resource does not exist, this will return an empty set of permissions, not a ` + # NOT_FOUND` error. Note: This operation is designed to be used for building + # permission-aware UIs and command-line tools, not for authorization checking. + # This operation may "fail open" without warning. + # @param [String] resource + # REQUIRED: The resource for which the policy detail is being requested. See the + # operation documentation for the appropriate value for this field. + # @param [Google::Apis::PrivatecaV1beta1::TestIamPermissionsRequest] test_iam_permissions_request_object + # @param [String] fields + # Selector specifying which fields to include in a partial response. + # @param [String] quota_user + # Available to use for quota purposes for server-side applications. Can be any + # arbitrary string assigned to a user, but should not exceed 40 characters. + # @param [Google::Apis::RequestOptions] options + # Request-specific options + # + # @yield [result, err] Result & error if block supplied + # @yieldparam result [Google::Apis::PrivatecaV1beta1::TestIamPermissionsResponse] parsed result object + # @yieldparam err [StandardError] error object if request failed + # + # @return [Google::Apis::PrivatecaV1beta1::TestIamPermissionsResponse] + # + # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried + # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification + # @raise [Google::Apis::AuthorizationError] Authorization is required + def test_reusable_config_iam_permissions(resource, test_iam_permissions_request_object = nil, fields: nil, quota_user: nil, options: nil, &block) + command = make_simple_command(:post, 'v1beta1/{+resource}:testIamPermissions', options) + command.request_representation = Google::Apis::PrivatecaV1beta1::TestIamPermissionsRequest::Representation + command.request_object = test_iam_permissions_request_object + command.response_representation = Google::Apis::PrivatecaV1beta1::TestIamPermissionsResponse::Representation + command.response_class = Google::Apis::PrivatecaV1beta1::TestIamPermissionsResponse + command.params['resource'] = resource unless resource.nil? + command.query['fields'] = fields unless fields.nil? + command.query['quotaUser'] = quota_user unless quota_user.nil? + execute_or_queue_command(command, &block) + end + + protected + + def apply_command_defaults(command) + command.query['key'] = key unless key.nil? + command.query['quotaUser'] = quota_user unless quota_user.nil? + end + end + end + end +end diff --git a/generated/google/apis/privateca_v1beta1/synth.metadata b/generated/google/apis/privateca_v1beta1/synth.metadata new file mode 100644 index 000000000..fb5a74b21 --- /dev/null +++ b/generated/google/apis/privateca_v1beta1/synth.metadata @@ -0,0 +1,11 @@ +{ + "sources": [ + { + "git": { + "name": ".", + "remote": "https://github.com/googleapis/google-api-ruby-client.git", + "sha": "9840c481849200572321532ecc3b128bebbc1583" + } + } + ] +} \ No newline at end of file