google-api-client 0.39.1 → 0.40.0

data/generated/google/apis/cloudbuild_v1alpha2/service.rb

@@ -47,6 +47,127 @@ module Google
           @batch_path = 'batch'
         end
         
+        # Starts asynchronous cancellation on a long-running operation.  The server
+        # makes a best effort to cancel the operation, but success is not
+        # guaranteed.  If the server doesn't support this method, it returns
+        # `google.rpc.Code.UNIMPLEMENTED`.  Clients can use
+        # Operations.GetOperation or
+        # other methods to check whether the cancellation succeeded or whether the
+        # operation completed despite cancellation. On successful cancellation,
+        # the operation is not deleted; instead, it becomes an operation with
+        # an Operation.error value with a google.rpc.Status.code of 1,
+        # corresponding to `Code.CANCELLED`.
+        # @param [String] name
+        #   The name of the operation resource to be cancelled.
+        # @param [Google::Apis::CloudbuildV1alpha2::CancelOperationRequest] cancel_operation_request_object
+        # @param [String] fields
+        #   Selector specifying which fields to include in a partial response.
+        # @param [String] quota_user
+        #   Available to use for quota purposes for server-side applications. Can be any
+        #   arbitrary string assigned to a user, but should not exceed 40 characters.
+        # @param [Google::Apis::RequestOptions] options
+        #   Request-specific options
+        #
+        # @yield [result, err] Result & error if block supplied
+        # @yieldparam result [Google::Apis::CloudbuildV1alpha2::Empty] parsed result object
+        # @yieldparam err [StandardError] error object if request failed
+        #
+        # @return [Google::Apis::CloudbuildV1alpha2::Empty]
+        #
+        # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
+        # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
+        # @raise [Google::Apis::AuthorizationError] Authorization is required
+        def cancel_operation(name, cancel_operation_request_object = nil, fields: nil, quota_user: nil, options: nil, &block)
+          command = make_simple_command(:post, 'v1alpha2/{+name}:cancel', options)
+          command.request_representation = Google::Apis::CloudbuildV1alpha2::CancelOperationRequest::Representation
+          command.request_object = cancel_operation_request_object
+          command.response_representation = Google::Apis::CloudbuildV1alpha2::Empty::Representation
+          command.response_class = Google::Apis::CloudbuildV1alpha2::Empty
+          command.params['name'] = name unless name.nil?
+          command.query['fields'] = fields unless fields.nil?
+          command.query['quotaUser'] = quota_user unless quota_user.nil?
+          execute_or_queue_command(command, &block)
+        end
+        
+        # Gets the latest state of a long-running operation.  Clients can use this
+        # method to poll the operation result at intervals as recommended by the API
+        # service.
+        # @param [String] name
+        #   The name of the operation resource.
+        # @param [String] fields
+        #   Selector specifying which fields to include in a partial response.
+        # @param [String] quota_user
+        #   Available to use for quota purposes for server-side applications. Can be any
+        #   arbitrary string assigned to a user, but should not exceed 40 characters.
+        # @param [Google::Apis::RequestOptions] options
+        #   Request-specific options
+        #
+        # @yield [result, err] Result & error if block supplied
+        # @yieldparam result [Google::Apis::CloudbuildV1alpha2::Operation] parsed result object
+        # @yieldparam err [StandardError] error object if request failed
+        #
+        # @return [Google::Apis::CloudbuildV1alpha2::Operation]
+        #
+        # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
+        # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
+        # @raise [Google::Apis::AuthorizationError] Authorization is required
+        def get_project_location_operation(name, fields: nil, quota_user: nil, options: nil, &block)
+          command = make_simple_command(:get, 'v1alpha2/{+name}', options)
+          command.response_representation = Google::Apis::CloudbuildV1alpha2::Operation::Representation
+          command.response_class = Google::Apis::CloudbuildV1alpha2::Operation
+          command.params['name'] = name unless name.nil?
+          command.query['fields'] = fields unless fields.nil?
+          command.query['quotaUser'] = quota_user unless quota_user.nil?
+          execute_or_queue_command(command, &block)
+        end
+        
+        # Lists operations that match the specified filter in the request. If the
+        # server doesn't support this method, it returns `UNIMPLEMENTED`.
+        # NOTE: the `name` binding allows API services to override the binding
+        # to use different resource name schemes, such as `users/*/operations`. To
+        # override the binding, API services can add a binding such as
+        # `"/v1/`name=users/*`/operations"` to their service configuration.
+        # For backwards compatibility, the default name includes the operations
+        # collection id, however overriding users must ensure the name binding
+        # is the parent resource, without the operations collection id.
+        # @param [String] name
+        #   The name of the operation's parent resource.
+        # @param [String] filter
+        #   The standard list filter.
+        # @param [Fixnum] page_size
+        #   The standard list page size.
+        # @param [String] page_token
+        #   The standard list page token.
+        # @param [String] fields
+        #   Selector specifying which fields to include in a partial response.
+        # @param [String] quota_user
+        #   Available to use for quota purposes for server-side applications. Can be any
+        #   arbitrary string assigned to a user, but should not exceed 40 characters.
+        # @param [Google::Apis::RequestOptions] options
+        #   Request-specific options
+        #
+        # @yield [result, err] Result & error if block supplied
+        # @yieldparam result [Google::Apis::CloudbuildV1alpha2::ListOperationsResponse] parsed result object
+        # @yieldparam err [StandardError] error object if request failed
+        #
+        # @return [Google::Apis::CloudbuildV1alpha2::ListOperationsResponse]
+        #
+        # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
+        # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
+        # @raise [Google::Apis::AuthorizationError] Authorization is required
+        def list_project_location_operations(name, filter: nil, page_size: nil, page_token: nil, fields: nil, quota_user: nil, options: nil, &block)
+          command = make_simple_command(:get, 'v1alpha2/{+name}/operations', options)
+          command.response_representation = Google::Apis::CloudbuildV1alpha2::ListOperationsResponse::Representation
+          command.response_class = Google::Apis::CloudbuildV1alpha2::ListOperationsResponse
+          command.params['name'] = name unless name.nil?
+          command.query['filter'] = filter unless filter.nil?
+          command.query['pageSize'] = page_size unless page_size.nil?
+          command.query['pageToken'] = page_token unless page_token.nil?
+          command.query['fields'] = fields unless fields.nil?
+          command.query['quotaUser'] = quota_user unless quota_user.nil?
+          execute_or_queue_command(command, &block)
+        end
+        
         # Creates a `WorkerPool` to run the builds, and returns the new worker pool.
         # @param [String] parent
         #   Required. The parent resource where this book will be created.

data/generated/google/apis/cloudidentity_v1beta1.rb

@@ -25,7 +25,7 @@ module Google
     # @see https://cloud.google.com/identity/
     module CloudidentityV1beta1
       VERSION = 'V1beta1'
-      REVISION = '20200502'
+      REVISION = '20200516'
 
       # See, change, create, and delete any of the Cloud Identity Groups that you can access, including the members of each group
       AUTH_CLOUD_IDENTITY_GROUPS = 'https://www.googleapis.com/auth/cloud-identity.groups'

data/generated/google/apis/cloudidentity_v1beta1/classes.rb

@@ -472,6 +472,11 @@ module Google
         # @return [String]
         attr_accessor :compromised_state
       
+        # When the user first signed in to the device
+        # Corresponds to the JSON property `createTime`
+        # @return [String]
+        attr_accessor :create_time
+      
         # Output only. Most recent time when user registered with this service.
         # Corresponds to the JSON property `firstSyncTime`
         # @return [String]
@@ -522,6 +527,7 @@ module Google
         # Update properties of this object
         def update!(**args)
           @compromised_state = args[:compromised_state] if args.key?(:compromised_state)
+          @create_time = args[:create_time] if args.key?(:create_time)
           @first_sync_time = args[:first_sync_time] if args.key?(:first_sync_time)
           @language_code = args[:language_code] if args.key?(:language_code)
           @last_sync_time = args[:last_sync_time] if args.key?(:last_sync_time)

data/generated/google/apis/cloudidentity_v1beta1/representations.rb

@@ -329,6 +329,7 @@ module Google
         # @private
         class Representation < Google::Apis::Core::JsonRepresentation
           property :compromised_state, as: 'compromisedState'
+          property :create_time, as: 'createTime'
           property :first_sync_time, as: 'firstSyncTime'
           property :language_code, as: 'languageCode'
           property :last_sync_time, as: 'lastSyncTime'

data/generated/google/apis/cloudiot_v1.rb

@@ -26,7 +26,7 @@ module Google
     # @see https://cloud.google.com/iot
     module CloudiotV1
       VERSION = 'V1'
-      REVISION = '20200414'
+      REVISION = '20200519'
 
       # View and manage your data across Google Cloud Platform services
       AUTH_CLOUD_PLATFORM = 'https://www.googleapis.com/auth/cloud-platform'

data/generated/google/apis/cloudiot_v1/classes.rb

@@ -667,6 +667,9 @@ module Google
         # Requests for policies with any conditional bindings must specify version 3.
         # Policies without any conditional bindings may specify any valid value or
         # leave the field unset.
+        # To learn which resources support conditions in their IAM policies, see the
+        # [IAM
+        # documentation](https://cloud.google.com/iam/help/conditions/resource-policies).
         # Corresponds to the JSON property `requestedPolicyVersion`
         # @return [Fixnum]
         attr_accessor :requested_policy_version
@@ -851,10 +854,13 @@ module Google
       # Google groups, and domains (such as G Suite). A `role` is a named list of
       # permissions; each `role` can be an IAM predefined role or a user-created
       # custom role.
-      # Optionally, a `binding` can specify a `condition`, which is a logical
-      # expression that allows access to a resource only if the expression evaluates
-      # to `true`. A condition can add constraints based on attributes of the
-      # request, the resource, or both.
+      # For some types of Google Cloud resources, a `binding` can also specify a
+      # `condition`, which is a logical expression that allows access to a resource
+      # only if the expression evaluates to `true`. A condition can add constraints
+      # based on attributes of the request, the resource, or both. To learn which
+      # resources support conditions in their IAM policies, see the
+      # [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-
+      # policies).
       # **JSON example:**
       # `
       # "bindings": [
@@ -869,7 +875,9 @@ module Google
       # `,
       # `
       # "role": "roles/resourcemanager.organizationViewer",
-      # "members": ["user:eve@example.com"],
+      # "members": [
+      # "user:eve@example.com"
+      # ],
       # "condition": `
       # "title": "expirable access",
       # "description": "Does not grant access after Sep 2020",
@@ -942,6 +950,9 @@ module Google
         # the conditions in the version `3` policy are lost.
         # If a policy does not include any conditions, operations on that policy may
         # specify any valid version or leave the field unset.
+        # To learn which resources support conditions in their IAM policies, see the
+        # [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-
+        # policies).
         # Corresponds to the JSON property `version`
         # @return [Fixnum]
         attr_accessor :version
@@ -1087,10 +1098,13 @@ module Google
         # Google groups, and domains (such as G Suite). A `role` is a named list of
         # permissions; each `role` can be an IAM predefined role or a user-created
         # custom role.
-        # Optionally, a `binding` can specify a `condition`, which is a logical
-        # expression that allows access to a resource only if the expression evaluates
-        # to `true`. A condition can add constraints based on attributes of the
-        # request, the resource, or both.
+        # For some types of Google Cloud resources, a `binding` can also specify a
+        # `condition`, which is a logical expression that allows access to a resource
+        # only if the expression evaluates to `true`. A condition can add constraints
+        # based on attributes of the request, the resource, or both. To learn which
+        # resources support conditions in their IAM policies, see the
+        # [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-
+        # policies).
         # **JSON example:**
         # `
         # "bindings": [
@@ -1105,7 +1119,9 @@ module Google
         # `,
         # `
         # "role": "roles/resourcemanager.organizationViewer",
-        # "members": ["user:eve@example.com"],
+        # "members": [
+        # "user:eve@example.com"
+        # ],
         # "condition": `
         # "title": "expirable access",
         # "description": "Does not grant access after Sep 2020",

data/generated/google/apis/cloudkms_v1.rb

@@ -26,7 +26,7 @@ module Google
     # @see https://cloud.google.com/kms/
     module CloudkmsV1
       VERSION = 'V1'
-      REVISION = '20200221'
+      REVISION = '20200522'
 
       # View and manage your data across Google Cloud Platform services
       AUTH_CLOUD_PLATFORM = 'https://www.googleapis.com/auth/cloud-platform'

data/generated/google/apis/cloudkms_v1/classes.rb

@@ -33,6 +33,25 @@ module Google
         # @return [String]
         attr_accessor :ciphertext
       
+        # Optional. An optional CRC32C checksum of the AsymmetricDecryptRequest.
+        # ciphertext.
+        # If specified, KeyManagementService will verify the integrity of the
+        # received AsymmetricDecryptRequest.ciphertext using this checksum.
+        # KeyManagementService will report an error if the checksum verification
+        # fails. If you receive a checksum error, your client should verify that
+        # CRC32C(AsymmetricDecryptRequest.ciphertext) is equal to
+        # AsymmetricDecryptRequest.ciphertext_crc32c, and if so, perform a
+        # limited number of retries. A persistent mismatch may indicate an issue in
+        # your computation of the CRC32C checksum.
+        # Note: This field is defined as int64 for reasons of compatibility across
+        # different languages. However, it is a non-negative integer, which will
+        # never exceed 2^32-1, and can be safely downconverted to uint32 in languages
+        # that support this type.
+        # NOTE: This field is in Beta.
+        # Corresponds to the JSON property `ciphertextCrc32c`
+        # @return [Fixnum]
+        attr_accessor :ciphertext_crc32c
+      
         def initialize(**args)
            update!(**args)
         end
@@ -40,6 +59,7 @@ module Google
         # Update properties of this object
         def update!(**args)
           @ciphertext = args[:ciphertext] if args.key?(:ciphertext)
+          @ciphertext_crc32c = args[:ciphertext_crc32c] if args.key?(:ciphertext_crc32c)
         end
       end
       
@@ -53,6 +73,36 @@ module Google
         # @return [String]
         attr_accessor :plaintext
       
+        # Integrity verification field. A CRC32C checksum of the returned
+        # AsymmetricDecryptResponse.plaintext. An integrity check of
+        # AsymmetricDecryptResponse.plaintext can be performed by computing the
+        # CRC32C checksum of AsymmetricDecryptResponse.plaintext and comparing
+        # your results to this field. Discard the response in case of non-matching
+        # checksum values, and perform a limited number of retries. A persistent
+        # mismatch may indicate an issue in your computation of the CRC32C checksum.
+        # Note: This field is defined as int64 for reasons of compatibility across
+        # different languages. However, it is a non-negative integer, which will
+        # never exceed 2^32-1, and can be safely downconverted to uint32 in languages
+        # that support this type.
+        # NOTE: This field is in Beta.
+        # Corresponds to the JSON property `plaintextCrc32c`
+        # @return [Fixnum]
+        attr_accessor :plaintext_crc32c
+      
+        # Integrity verification field. A flag indicating whether
+        # AsymmetricDecryptRequest.ciphertext_crc32c was received by
+        # KeyManagementService and used for the integrity verification of the
+        # ciphertext. A false value of this
+        # field indicates either that AsymmetricDecryptRequest.ciphertext_crc32c
+        # was left unset or that it was not delivered to KeyManagementService. If
+        # you've set AsymmetricDecryptRequest.ciphertext_crc32c but this field is
+        # still false, discard the response and perform a limited number of retries.
+        # NOTE: This field is in Beta.
+        # Corresponds to the JSON property `verifiedCiphertextCrc32c`
+        # @return [Boolean]
+        attr_accessor :verified_ciphertext_crc32c
+        alias_method :verified_ciphertext_crc32c?, :verified_ciphertext_crc32c
+      
         def initialize(**args)
            update!(**args)
         end
@@ -60,6 +110,8 @@ module Google
         # Update properties of this object
         def update!(**args)
           @plaintext = args[:plaintext] if args.key?(:plaintext)
+          @plaintext_crc32c = args[:plaintext_crc32c] if args.key?(:plaintext_crc32c)
+          @verified_ciphertext_crc32c = args[:verified_ciphertext_crc32c] if args.key?(:verified_ciphertext_crc32c)
         end
       end
       
@@ -72,6 +124,24 @@ module Google
         # @return [Google::Apis::CloudkmsV1::Digest]
         attr_accessor :digest
       
+        # Optional. An optional CRC32C checksum of the AsymmetricSignRequest.digest. If
+        # specified, KeyManagementService will verify the integrity of the
+        # received AsymmetricSignRequest.digest using this checksum.
+        # KeyManagementService will report an error if the checksum verification
+        # fails. If you receive a checksum error, your client should verify that
+        # CRC32C(AsymmetricSignRequest.digest) is equal to
+        # AsymmetricSignRequest.digest_crc32c, and if so, perform a limited
+        # number of retries. A persistent mismatch may indicate an issue in your
+        # computation of the CRC32C checksum.
+        # Note: This field is defined as int64 for reasons of compatibility across
+        # different languages. However, it is a non-negative integer, which will
+        # never exceed 2^32-1, and can be safely downconverted to uint32 in languages
+        # that support this type.
+        # NOTE: This field is in Beta.
+        # Corresponds to the JSON property `digestCrc32c`
+        # @return [Fixnum]
+        attr_accessor :digest_crc32c
+      
         def initialize(**args)
            update!(**args)
         end
@@ -79,6 +149,7 @@ module Google
         # Update properties of this object
         def update!(**args)
           @digest = args[:digest] if args.key?(:digest)
+          @digest_crc32c = args[:digest_crc32c] if args.key?(:digest_crc32c)
         end
       end
       
@@ -86,19 +157,59 @@ module Google
       class AsymmetricSignResponse
         include Google::Apis::Core::Hashable
       
+        # The resource name of the CryptoKeyVersion used for signing. Check
+        # this field to verify that the intended resource was used for signing.
+        # NOTE: This field is in Beta.
+        # Corresponds to the JSON property `name`
+        # @return [String]
+        attr_accessor :name
+      
         # The created signature.
         # Corresponds to the JSON property `signature`
         # NOTE: Values are automatically base64 encoded/decoded in the client library.
         # @return [String]
         attr_accessor :signature
       
+        # Integrity verification field. A CRC32C checksum of the returned
+        # AsymmetricSignResponse.signature. An integrity check of
+        # AsymmetricSignResponse.signature can be performed by computing the
+        # CRC32C checksum of AsymmetricSignResponse.signature and comparing your
+        # results to this field. Discard the response in case of non-matching
+        # checksum values, and perform a limited number of retries. A persistent
+        # mismatch may indicate an issue in your computation of the CRC32C checksum.
+        # Note: This field is defined as int64 for reasons of compatibility across
+        # different languages. However, it is a non-negative integer, which will
+        # never exceed 2^32-1, and can be safely downconverted to uint32 in languages
+        # that support this type.
+        # NOTE: This field is in Beta.
+        # Corresponds to the JSON property `signatureCrc32c`
+        # @return [Fixnum]
+        attr_accessor :signature_crc32c
+      
+        # Integrity verification field. A flag indicating whether
+        # AsymmetricSignRequest.digest_crc32c was received by
+        # KeyManagementService and used for the integrity verification of the
+        # digest. A false value of this field
+        # indicates either that AsymmetricSignRequest.digest_crc32c was left
+        # unset or that it was not delivered to KeyManagementService. If you've
+        # set AsymmetricSignRequest.digest_crc32c but this field is still false,
+        # discard the response and perform a limited number of retries.
+        # NOTE: This field is in Beta.
+        # Corresponds to the JSON property `verifiedDigestCrc32c`
+        # @return [Boolean]
+        attr_accessor :verified_digest_crc32c
+        alias_method :verified_digest_crc32c?, :verified_digest_crc32c
+      
         def initialize(**args)
            update!(**args)
         end
       
         # Update properties of this object
         def update!(**args)
+          @name = args[:name] if args.key?(:name)
           @signature = args[:signature] if args.key?(:signature)
+          @signature_crc32c = args[:signature_crc32c] if args.key?(:signature_crc32c)
+          @verified_digest_crc32c = args[:verified_digest_crc32c] if args.key?(:verified_digest_crc32c)
         end
       end
       
@@ -303,8 +414,8 @@ module Google
       
       # A CryptoKey represents a logical key that can be used for cryptographic
       # operations.
-      # A CryptoKey is made up of one or more versions, which
-      # represent the actual key material used in cryptographic operations.
+      # A CryptoKey is made up of zero or more versions,
+      # which represent the actual key material used in cryptographic operations.
       class CryptoKey
         include Google::Apis::Core::Hashable
       
@@ -551,6 +662,25 @@ module Google
         # @return [String]
         attr_accessor :additional_authenticated_data
       
+        # Optional. An optional CRC32C checksum of the
+        # DecryptRequest.additional_authenticated_data. If specified,
+        # KeyManagementService will verify the integrity of the received
+        # DecryptRequest.additional_authenticated_data using this checksum.
+        # KeyManagementService will report an error if the checksum verification
+        # fails. If you receive a checksum error, your client should verify that
+        # CRC32C(DecryptRequest.additional_authenticated_data) is equal to
+        # DecryptRequest.additional_authenticated_data_crc32c, and if so, perform
+        # a limited number of retries. A persistent mismatch may indicate an issue in
+        # your computation of the CRC32C checksum.
+        # Note: This field is defined as int64 for reasons of compatibility across
+        # different languages. However, it is a non-negative integer, which will
+        # never exceed 2^32-1, and can be safely downconverted to uint32 in languages
+        # that support this type.
+        # NOTE: This field is in Beta.
+        # Corresponds to the JSON property `additionalAuthenticatedDataCrc32c`
+        # @return [Fixnum]
+        attr_accessor :additional_authenticated_data_crc32c
+      
         # Required. The encrypted data originally returned in
         # EncryptResponse.ciphertext.
         # Corresponds to the JSON property `ciphertext`
@@ -558,6 +688,24 @@ module Google
         # @return [String]
         attr_accessor :ciphertext
       
+        # Optional. An optional CRC32C checksum of the DecryptRequest.ciphertext. If
+        # specified, KeyManagementService will verify the integrity of the
+        # received DecryptRequest.ciphertext using this checksum.
+        # KeyManagementService will report an error if the checksum verification
+        # fails. If you receive a checksum error, your client should verify that
+        # CRC32C(DecryptRequest.ciphertext) is equal to
+        # DecryptRequest.ciphertext_crc32c, and if so, perform a limited number
+        # of retries. A persistent mismatch may indicate an issue in your computation
+        # of the CRC32C checksum.
+        # Note: This field is defined as int64 for reasons of compatibility across
+        # different languages. However, it is a non-negative integer, which will
+        # never exceed 2^32-1, and can be safely downconverted to uint32 in languages
+        # that support this type.
+        # NOTE: This field is in Beta.
+        # Corresponds to the JSON property `ciphertextCrc32c`
+        # @return [Fixnum]
+        attr_accessor :ciphertext_crc32c
+      
         def initialize(**args)
            update!(**args)
         end
@@ -565,7 +713,9 @@ module Google
         # Update properties of this object
         def update!(**args)
           @additional_authenticated_data = args[:additional_authenticated_data] if args.key?(:additional_authenticated_data)
+          @additional_authenticated_data_crc32c = args[:additional_authenticated_data_crc32c] if args.key?(:additional_authenticated_data_crc32c)
           @ciphertext = args[:ciphertext] if args.key?(:ciphertext)
+          @ciphertext_crc32c = args[:ciphertext_crc32c] if args.key?(:ciphertext_crc32c)
         end
       end
       
@@ -579,6 +729,24 @@ module Google
         # @return [String]
         attr_accessor :plaintext
       
+        # Integrity verification field. A CRC32C checksum of the returned
+        # DecryptResponse.plaintext. An integrity check of
+        # DecryptResponse.plaintext can be performed by computing the CRC32C
+        # checksum of DecryptResponse.plaintext and comparing your results to
+        # this field. Discard the response in case of non-matching checksum values,
+        # and perform a limited number of retries. A persistent mismatch may indicate
+        # an issue in your computation of the CRC32C checksum. Note: receiving this
+        # response message indicates that KeyManagementService is able to
+        # successfully decrypt the ciphertext.
+        # Note: This field is defined as int64 for reasons of compatibility across
+        # different languages. However, it is a non-negative integer, which will
+        # never exceed 2^32-1, and can be safely downconverted to uint32 in languages
+        # that support this type.
+        # NOTE: This field is in Beta.
+        # Corresponds to the JSON property `plaintextCrc32c`
+        # @return [Fixnum]
+        attr_accessor :plaintext_crc32c
+      
         def initialize(**args)
            update!(**args)
         end
@@ -586,6 +754,7 @@ module Google
         # Update properties of this object
         def update!(**args)
           @plaintext = args[:plaintext] if args.key?(:plaintext)
+          @plaintext_crc32c = args[:plaintext_crc32c] if args.key?(:plaintext_crc32c)
         end
       end
       
@@ -654,6 +823,25 @@ module Google
         # @return [String]
         attr_accessor :additional_authenticated_data
       
+        # Optional. An optional CRC32C checksum of the
+        # EncryptRequest.additional_authenticated_data. If specified,
+        # KeyManagementService will verify the integrity of the received
+        # EncryptRequest.additional_authenticated_data using this checksum.
+        # KeyManagementService will report an error if the checksum verification
+        # fails. If you receive a checksum error, your client should verify that
+        # CRC32C(EncryptRequest.additional_authenticated_data) is equal to
+        # EncryptRequest.additional_authenticated_data_crc32c, and if so, perform
+        # a limited number of retries. A persistent mismatch may indicate an issue in
+        # your computation of the CRC32C checksum.
+        # Note: This field is defined as int64 for reasons of compatibility across
+        # different languages. However, it is a non-negative integer, which will
+        # never exceed 2^32-1, and can be safely downconverted to uint32 in languages
+        # that support this type.
+        # NOTE: This field is in Beta.
+        # Corresponds to the JSON property `additionalAuthenticatedDataCrc32c`
+        # @return [Fixnum]
+        attr_accessor :additional_authenticated_data_crc32c
+      
         # Required. The data to encrypt. Must be no larger than 64KiB.
         # The maximum size depends on the key version's
         # protection_level. For
@@ -666,6 +854,24 @@ module Google
         # @return [String]
         attr_accessor :plaintext
       
+        # Optional. An optional CRC32C checksum of the EncryptRequest.plaintext. If
+        # specified, KeyManagementService will verify the integrity of the
+        # received EncryptRequest.plaintext using this checksum.
+        # KeyManagementService will report an error if the checksum verification
+        # fails. If you receive a checksum error, your client should verify that
+        # CRC32C(EncryptRequest.plaintext) is equal to
+        # EncryptRequest.plaintext_crc32c, and if so, perform a limited number of
+        # retries. A persistent mismatch may indicate an issue in your computation of
+        # the CRC32C checksum.
+        # Note: This field is defined as int64 for reasons of compatibility across
+        # different languages. However, it is a non-negative integer, which will
+        # never exceed 2^32-1, and can be safely downconverted to uint32 in languages
+        # that support this type.
+        # NOTE: This field is in Beta.
+        # Corresponds to the JSON property `plaintextCrc32c`
+        # @return [Fixnum]
+        attr_accessor :plaintext_crc32c
+      
         def initialize(**args)
            update!(**args)
         end
@@ -673,7 +879,9 @@ module Google
         # Update properties of this object
         def update!(**args)
           @additional_authenticated_data = args[:additional_authenticated_data] if args.key?(:additional_authenticated_data)
+          @additional_authenticated_data_crc32c = args[:additional_authenticated_data_crc32c] if args.key?(:additional_authenticated_data_crc32c)
           @plaintext = args[:plaintext] if args.key?(:plaintext)
+          @plaintext_crc32c = args[:plaintext_crc32c] if args.key?(:plaintext_crc32c)
         end
       end
       
@@ -687,12 +895,57 @@ module Google
         # @return [String]
         attr_accessor :ciphertext
       
+        # Integrity verification field. A CRC32C checksum of the returned
+        # EncryptResponse.ciphertext. An integrity check of
+        # EncryptResponse.ciphertext can be performed by computing the CRC32C
+        # checksum of EncryptResponse.ciphertext and comparing your results to
+        # this field. Discard the response in case of non-matching checksum values,
+        # and perform a limited number of retries. A persistent mismatch may indicate
+        # an issue in your computation of the CRC32C checksum.
+        # Note: This field is defined as int64 for reasons of compatibility across
+        # different languages. However, it is a non-negative integer, which will
+        # never exceed 2^32-1, and can be safely downconverted to uint32 in languages
+        # that support this type.
+        # NOTE: This field is in Beta.
+        # Corresponds to the JSON property `ciphertextCrc32c`
+        # @return [Fixnum]
+        attr_accessor :ciphertext_crc32c
+      
         # The resource name of the CryptoKeyVersion used in encryption. Check
         # this field to verify that the intended resource was used for encryption.
         # Corresponds to the JSON property `name`
         # @return [String]
         attr_accessor :name
       
+        # Integrity verification field. A flag indicating whether
+        # EncryptRequest.additional_authenticated_data_crc32c was received by
+        # KeyManagementService and used for the integrity verification of the
+        # AAD. A false value of this
+        # field indicates either that
+        # EncryptRequest.additional_authenticated_data_crc32c was left unset or
+        # that it was not delivered to KeyManagementService. If you've set
+        # EncryptRequest.additional_authenticated_data_crc32c but this field is
+        # still false, discard the response and perform a limited number of retries.
+        # NOTE: This field is in Beta.
+        # Corresponds to the JSON property `verifiedAdditionalAuthenticatedDataCrc32c`
+        # @return [Boolean]
+        attr_accessor :verified_additional_authenticated_data_crc32c
+        alias_method :verified_additional_authenticated_data_crc32c?, :verified_additional_authenticated_data_crc32c
+      
+        # Integrity verification field. A flag indicating whether
+        # EncryptRequest.plaintext_crc32c was received by
+        # KeyManagementService and used for the integrity verification of the
+        # plaintext. A false value of this field
+        # indicates either that EncryptRequest.plaintext_crc32c was left unset or
+        # that it was not delivered to KeyManagementService. If you've set
+        # EncryptRequest.plaintext_crc32c but this field is still false, discard
+        # the response and perform a limited number of retries.
+        # NOTE: This field is in Beta.
+        # Corresponds to the JSON property `verifiedPlaintextCrc32c`
+        # @return [Boolean]
+        attr_accessor :verified_plaintext_crc32c
+        alias_method :verified_plaintext_crc32c?, :verified_plaintext_crc32c
+      
         def initialize(**args)
            update!(**args)
         end
@@ -700,7 +953,10 @@ module Google
         # Update properties of this object
         def update!(**args)
           @ciphertext = args[:ciphertext] if args.key?(:ciphertext)
+          @ciphertext_crc32c = args[:ciphertext_crc32c] if args.key?(:ciphertext_crc32c)
           @name = args[:name] if args.key?(:name)
+          @verified_additional_authenticated_data_crc32c = args[:verified_additional_authenticated_data_crc32c] if args.key?(:verified_additional_authenticated_data_crc32c)
+          @verified_plaintext_crc32c = args[:verified_plaintext_crc32c] if args.key?(:verified_plaintext_crc32c)
         end
       end
       
@@ -1244,10 +1500,13 @@ module Google
       # Google groups, and domains (such as G Suite). A `role` is a named list of
       # permissions; each `role` can be an IAM predefined role or a user-created
       # custom role.
-      # Optionally, a `binding` can specify a `condition`, which is a logical
-      # expression that allows access to a resource only if the expression evaluates
-      # to `true`. A condition can add constraints based on attributes of the
-      # request, the resource, or both.
+      # For some types of Google Cloud resources, a `binding` can also specify a
+      # `condition`, which is a logical expression that allows access to a resource
+      # only if the expression evaluates to `true`. A condition can add constraints
+      # based on attributes of the request, the resource, or both. To learn which
+      # resources support conditions in their IAM policies, see the
+      # [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-
+      # policies).
       # **JSON example:**
       # `
       # "bindings": [
@@ -1262,7 +1521,9 @@ module Google
       # `,
       # `
       # "role": "roles/resourcemanager.organizationViewer",
-      # "members": ["user:eve@example.com"],
+      # "members": [
+      # "user:eve@example.com"
+      # ],
       # "condition": `
       # "title": "expirable access",
       # "description": "Does not grant access after Sep 2020",
@@ -1340,6 +1601,9 @@ module Google
         # the conditions in the version `3` policy are lost.
         # If a policy does not include any conditions, operations on that policy may
         # specify any valid version or leave the field unset.
+        # To learn which resources support conditions in their IAM policies, see the
+        # [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-
+        # policies).
         # Corresponds to the JSON property `version`
         # @return [Fixnum]
         attr_accessor :version
@@ -1368,6 +1632,13 @@ module Google
         # @return [String]
         attr_accessor :algorithm
       
+        # The name of the CryptoKeyVersion public key.
+        # Provided here for verification.
+        # NOTE: This field is in Beta.
+        # Corresponds to the JSON property `name`
+        # @return [String]
+        attr_accessor :name
+      
         # The public key, encoded in PEM format. For more information, see the
         # [RFC 7468](https://tools.ietf.org/html/rfc7468) sections for
         # [General Considerations](https://tools.ietf.org/html/rfc7468#section-2) and
@@ -1377,6 +1648,22 @@ module Google
         # @return [String]
         attr_accessor :pem
       
+        # Integrity verification field. A CRC32C checksum of the returned
+        # PublicKey.pem. An integrity check of PublicKey.pem can be performed
+        # by computing the CRC32C checksum of PublicKey.pem and
+        # comparing your results to this field. Discard the response in case of
+        # non-matching checksum values, and perform a limited number of retries. A
+        # persistent mismatch may indicate an issue in your computation of the CRC32C
+        # checksum.
+        # Note: This field is defined as int64 for reasons of compatibility across
+        # different languages. However, it is a non-negative integer, which will
+        # never exceed 2^32-1, and can be safely downconverted to uint32 in languages
+        # that support this type.
+        # NOTE: This field is in Beta.
+        # Corresponds to the JSON property `pemCrc32c`
+        # @return [Fixnum]
+        attr_accessor :pem_crc32c
+      
         def initialize(**args)
            update!(**args)
         end
@@ -1384,7 +1671,9 @@ module Google
         # Update properties of this object
         def update!(**args)
           @algorithm = args[:algorithm] if args.key?(:algorithm)
+          @name = args[:name] if args.key?(:name)
           @pem = args[:pem] if args.key?(:pem)
+          @pem_crc32c = args[:pem_crc32c] if args.key?(:pem_crc32c)
         end
       end
       
@@ -1412,10 +1701,13 @@ module Google
         # Google groups, and domains (such as G Suite). A `role` is a named list of
         # permissions; each `role` can be an IAM predefined role or a user-created
         # custom role.
-        # Optionally, a `binding` can specify a `condition`, which is a logical
-        # expression that allows access to a resource only if the expression evaluates
-        # to `true`. A condition can add constraints based on attributes of the
-        # request, the resource, or both.
+        # For some types of Google Cloud resources, a `binding` can also specify a
+        # `condition`, which is a logical expression that allows access to a resource
+        # only if the expression evaluates to `true`. A condition can add constraints
+        # based on attributes of the request, the resource, or both. To learn which
+        # resources support conditions in their IAM policies, see the
+        # [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-
+        # policies).
         # **JSON example:**
         # `
         # "bindings": [
@@ -1430,7 +1722,9 @@ module Google
         # `,
         # `
         # "role": "roles/resourcemanager.organizationViewer",
-        # "members": ["user:eve@example.com"],
+        # "members": [
+        # "user:eve@example.com"
+        # ],
         # "condition": `
         # "title": "expirable access",
         # "description": "Does not grant access after Sep 2020",
@@ -1468,8 +1762,7 @@ module Google
         # OPTIONAL: A FieldMask specifying which fields of the policy to modify. Only
         # the fields in the mask will be modified. If no mask is provided, the
         # following default mask is used:
-        # paths: "bindings, etag"
-        # This field is only used by Cloud IAM.
+        # `paths: "bindings, etag"`
         # Corresponds to the JSON property `updateMask`
         # @return [String]
         attr_accessor :update_mask