google-api-client 0.40.1 → 0.40.2
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/CHANGELOG.md +65 -0
- data/generated/google/apis/androidenterprise_v1.rb +1 -1
- data/generated/google/apis/androidpublisher_v3.rb +3 -3
- data/generated/google/apis/androidpublisher_v3/classes.rb +468 -750
- data/generated/google/apis/androidpublisher_v3/representations.rb +9 -202
- data/generated/google/apis/androidpublisher_v3/service.rb +531 -863
- data/generated/google/apis/apigee_v1.rb +1 -1
- data/generated/google/apis/apigee_v1/classes.rb +12 -6
- data/generated/google/apis/apigee_v1/representations.rb +1 -0
- data/generated/google/apis/appsmarket_v2.rb +1 -1
- data/generated/google/apis/artifactregistry_v1beta1.rb +1 -1
- data/generated/google/apis/artifactregistry_v1beta1/classes.rb +113 -0
- data/generated/google/apis/artifactregistry_v1beta1/representations.rb +61 -0
- data/generated/google/apis/bigquery_v2.rb +1 -1
- data/generated/google/apis/bigquery_v2/classes.rb +15 -7
- data/generated/google/apis/binaryauthorization_v1.rb +1 -1
- data/generated/google/apis/binaryauthorization_v1/classes.rb +1 -4
- data/generated/google/apis/books_v1.rb +1 -1
- data/generated/google/apis/books_v1/service.rb +2 -2
- data/generated/google/apis/cloudasset_v1.rb +1 -1
- data/generated/google/apis/cloudasset_v1/classes.rb +25 -342
- data/generated/google/apis/cloudasset_v1/representations.rb +1 -96
- data/generated/google/apis/cloudasset_v1/service.rb +11 -186
- data/generated/google/apis/cloudasset_v1beta1.rb +1 -1
- data/generated/google/apis/cloudasset_v1beta1/classes.rb +6 -6
- data/generated/google/apis/cloudasset_v1beta1/service.rb +4 -4
- data/generated/google/apis/cloudasset_v1p1beta1.rb +1 -1
- data/generated/google/apis/cloudasset_v1p1beta1/classes.rb +6 -6
- data/generated/google/apis/cloudasset_v1p1beta1/service.rb +15 -16
- data/generated/google/apis/cloudasset_v1p4beta1.rb +1 -1
- data/generated/google/apis/cloudasset_v1p4beta1/classes.rb +26 -8
- data/generated/google/apis/cloudasset_v1p4beta1/service.rb +24 -3
- data/generated/google/apis/cloudbuild_v1.rb +1 -1
- data/generated/google/apis/cloudbuild_v1/classes.rb +2 -2
- data/generated/google/apis/cloudbuild_v1alpha1.rb +1 -1
- data/generated/google/apis/cloudbuild_v1alpha1/classes.rb +2 -2
- data/generated/google/apis/cloudbuild_v1alpha2.rb +1 -1
- data/generated/google/apis/cloudbuild_v1alpha2/classes.rb +2 -2
- data/generated/google/apis/cloudkms_v1.rb +1 -1
- data/generated/google/apis/cloudkms_v1/classes.rb +7 -7
- data/generated/google/apis/cloudresourcemanager_v1.rb +1 -1
- data/generated/google/apis/cloudresourcemanager_v1/classes.rb +6 -6
- data/generated/google/apis/cloudresourcemanager_v1/service.rb +6 -8
- data/generated/google/apis/cloudresourcemanager_v1beta1.rb +1 -1
- data/generated/google/apis/cloudresourcemanager_v1beta1/classes.rb +6 -6
- data/generated/google/apis/cloudresourcemanager_v1beta1/service.rb +8 -8
- data/generated/google/apis/cloudresourcemanager_v2.rb +1 -1
- data/generated/google/apis/cloudresourcemanager_v2/classes.rb +6 -6
- data/generated/google/apis/cloudresourcemanager_v2beta1.rb +1 -1
- data/generated/google/apis/cloudresourcemanager_v2beta1/classes.rb +6 -6
- data/generated/google/apis/compute_alpha.rb +1 -1
- data/generated/google/apis/compute_alpha/classes.rb +91 -3
- data/generated/google/apis/compute_alpha/representations.rb +36 -0
- data/generated/google/apis/compute_beta.rb +1 -1
- data/generated/google/apis/compute_beta/classes.rb +15 -3
- data/generated/google/apis/compute_beta/representations.rb +2 -0
- data/generated/google/apis/compute_v1.rb +1 -1
- data/generated/google/apis/compute_v1/classes.rb +3 -3
- data/generated/google/apis/datafusion_v1beta1.rb +1 -1
- data/generated/google/apis/datafusion_v1beta1/classes.rb +64 -19
- data/generated/google/apis/datafusion_v1beta1/representations.rb +16 -0
- data/generated/google/apis/datafusion_v1beta1/service.rb +49 -2
- data/generated/google/apis/displayvideo_v1.rb +1 -1
- data/generated/google/apis/displayvideo_v1/classes.rb +1 -1
- data/generated/google/apis/displayvideo_v1/service.rb +4 -0
- data/generated/google/apis/dlp_v2.rb +1 -1
- data/generated/google/apis/dlp_v2/classes.rb +8 -6
- data/generated/google/apis/dlp_v2/service.rb +170 -64
- data/generated/google/apis/fcm_v1.rb +1 -1
- data/generated/google/apis/file_v1.rb +1 -1
- data/generated/google/apis/file_v1beta1.rb +1 -1
- data/generated/google/apis/genomics_v2alpha1.rb +1 -1
- data/generated/google/apis/genomics_v2alpha1/classes.rb +84 -0
- data/generated/google/apis/genomics_v2alpha1/representations.rb +28 -0
- data/generated/google/apis/genomics_v2alpha1/service.rb +38 -2
- data/generated/google/apis/gmail_v1.rb +3 -2
- data/generated/google/apis/gmail_v1/classes.rb +263 -200
- data/generated/google/apis/gmail_v1/service.rb +551 -743
- data/generated/google/apis/groupsmigration_v1.rb +3 -2
- data/generated/google/apis/groupsmigration_v1/service.rb +10 -17
- data/generated/google/apis/iam_v1.rb +1 -1
- data/generated/google/apis/iam_v1/classes.rb +87 -81
- data/generated/google/apis/iam_v1/service.rb +163 -148
- data/generated/google/apis/iamcredentials_v1.rb +1 -1
- data/generated/google/apis/iamcredentials_v1/classes.rb +4 -3
- data/generated/google/apis/jobs_v3.rb +1 -1
- data/generated/google/apis/jobs_v3/classes.rb +4 -2
- data/generated/google/apis/jobs_v3p1beta1.rb +1 -1
- data/generated/google/apis/jobs_v3p1beta1/classes.rb +4 -2
- data/generated/google/apis/memcache_v1beta2.rb +1 -1
- data/generated/google/apis/memcache_v1beta2/classes.rb +6 -6
- data/generated/google/apis/monitoring_v1.rb +1 -1
- data/generated/google/apis/monitoring_v1/classes.rb +46 -0
- data/generated/google/apis/monitoring_v1/representations.rb +18 -0
- data/generated/google/apis/monitoring_v3.rb +1 -1
- data/generated/google/apis/monitoring_v3/classes.rb +10 -0
- data/generated/google/apis/monitoring_v3/representations.rb +1 -0
- data/generated/google/apis/osconfig_v1.rb +1 -1
- data/generated/google/apis/osconfig_v1/classes.rb +2 -2
- data/generated/google/apis/osconfig_v1beta.rb +1 -1
- data/generated/google/apis/osconfig_v1beta/classes.rb +6 -7
- data/generated/google/apis/pagespeedonline_v5.rb +1 -1
- data/generated/google/apis/pagespeedonline_v5/classes.rb +7 -0
- data/generated/google/apis/pagespeedonline_v5/representations.rb +1 -0
- data/generated/google/apis/people_v1.rb +1 -1
- data/generated/google/apis/people_v1/classes.rb +118 -2
- data/generated/google/apis/people_v1/representations.rb +51 -0
- data/generated/google/apis/people_v1/service.rb +336 -67
- data/generated/google/apis/playcustomapp_v1.rb +3 -3
- data/generated/google/apis/playcustomapp_v1/classes.rb +7 -0
- data/generated/google/apis/playcustomapp_v1/representations.rb +1 -0
- data/generated/google/apis/playcustomapp_v1/service.rb +11 -19
- data/generated/google/apis/policytroubleshooter_v1.rb +1 -1
- data/generated/google/apis/policytroubleshooter_v1/classes.rb +6 -6
- data/generated/google/apis/policytroubleshooter_v1beta.rb +1 -1
- data/generated/google/apis/policytroubleshooter_v1beta/classes.rb +6 -6
- data/generated/google/apis/pubsub_v1.rb +1 -1
- data/generated/google/apis/pubsub_v1/classes.rb +49 -7
- data/generated/google/apis/pubsub_v1/representations.rb +16 -0
- data/generated/google/apis/secretmanager_v1.rb +1 -1
- data/generated/google/apis/secretmanager_v1/classes.rb +6 -6
- data/generated/google/apis/secretmanager_v1beta1.rb +1 -1
- data/generated/google/apis/secretmanager_v1beta1/classes.rb +6 -6
- data/generated/google/apis/securitycenter_v1.rb +1 -1
- data/generated/google/apis/securitycenter_v1/classes.rb +106 -6
- data/generated/google/apis/securitycenter_v1/representations.rb +38 -0
- data/generated/google/apis/securitycenter_v1beta1.rb +1 -1
- data/generated/google/apis/securitycenter_v1beta1/classes.rb +106 -6
- data/generated/google/apis/securitycenter_v1beta1/representations.rb +38 -0
- data/generated/google/apis/securitycenter_v1p1alpha1.rb +1 -1
- data/generated/google/apis/securitycenter_v1p1alpha1/classes.rb +100 -0
- data/generated/google/apis/securitycenter_v1p1alpha1/representations.rb +38 -0
- data/generated/google/apis/securitycenter_v1p1beta1.rb +1 -1
- data/generated/google/apis/securitycenter_v1p1beta1/classes.rb +106 -6
- data/generated/google/apis/securitycenter_v1p1beta1/representations.rb +38 -0
- data/generated/google/apis/serviceconsumermanagement_v1.rb +1 -1
- data/generated/google/apis/serviceconsumermanagement_v1/classes.rb +108 -44
- data/generated/google/apis/serviceconsumermanagement_v1/representations.rb +0 -1
- data/generated/google/apis/serviceconsumermanagement_v1beta1.rb +1 -1
- data/generated/google/apis/serviceconsumermanagement_v1beta1/classes.rb +114 -44
- data/generated/google/apis/serviceconsumermanagement_v1beta1/representations.rb +1 -1
- data/generated/google/apis/servicemanagement_v1.rb +1 -1
- data/generated/google/apis/servicemanagement_v1/classes.rb +6 -12
- data/generated/google/apis/servicemanagement_v1/representations.rb +0 -1
- data/generated/google/apis/servicenetworking_v1.rb +1 -1
- data/generated/google/apis/servicenetworking_v1/classes.rb +109 -44
- data/generated/google/apis/servicenetworking_v1/representations.rb +0 -1
- data/generated/google/apis/servicenetworking_v1beta.rb +1 -1
- data/generated/google/apis/servicenetworking_v1beta/classes.rb +109 -44
- data/generated/google/apis/servicenetworking_v1beta/representations.rb +0 -1
- data/generated/google/apis/serviceusage_v1.rb +1 -1
- data/generated/google/apis/serviceusage_v1/classes.rb +109 -45
- data/generated/google/apis/serviceusage_v1/representations.rb +0 -1
- data/generated/google/apis/serviceusage_v1beta1.rb +1 -1
- data/generated/google/apis/serviceusage_v1beta1/classes.rb +115 -45
- data/generated/google/apis/serviceusage_v1beta1/representations.rb +1 -1
- data/generated/google/apis/serviceusage_v1beta1/service.rb +34 -0
- data/generated/google/apis/texttospeech_v1.rb +1 -1
- data/generated/google/apis/texttospeech_v1/classes.rb +1 -1
- data/generated/google/apis/texttospeech_v1beta1.rb +1 -1
- data/generated/google/apis/texttospeech_v1beta1/classes.rb +1 -1
- data/lib/google/apis/version.rb +1 -1
- metadata +3 -3
@@ -20,12 +20,13 @@ module Google
|
|
20
20
|
module Apis
|
21
21
|
# Groups Migration API
|
22
22
|
#
|
23
|
-
# Groups Migration
|
23
|
+
# The Groups Migration API allows domain administrators to archive
|
24
|
+
# emails into Google groups.
|
24
25
|
#
|
25
26
|
# @see https://developers.google.com/google-apps/groups-migration/
|
26
27
|
module GroupsmigrationV1
|
27
28
|
VERSION = 'V1'
|
28
|
-
REVISION = '
|
29
|
+
REVISION = '20200608'
|
29
30
|
|
30
31
|
# Manage messages in groups on your domain
|
31
32
|
AUTH_APPS_GROUPS_MIGRATION = 'https://www.googleapis.com/auth/apps.groups.migration'
|
@@ -22,7 +22,8 @@ module Google
|
|
22
22
|
module GroupsmigrationV1
|
23
23
|
# Groups Migration API
|
24
24
|
#
|
25
|
-
# Groups Migration
|
25
|
+
# The Groups Migration API allows domain administrators to archive
|
26
|
+
# emails into Google groups.
|
26
27
|
#
|
27
28
|
# @example
|
28
29
|
# require 'google/apis/groupsmigration_v1'
|
@@ -38,16 +39,12 @@ module Google
|
|
38
39
|
attr_accessor :key
|
39
40
|
|
40
41
|
# @return [String]
|
41
|
-
#
|
42
|
-
# characters.
|
42
|
+
# Available to use for quota purposes for server-side applications. Can be any
|
43
|
+
# arbitrary string assigned to a user, but should not exceed 40 characters.
|
43
44
|
attr_accessor :quota_user
|
44
45
|
|
45
|
-
# @return [String]
|
46
|
-
# Deprecated. Please use quotaUser instead.
|
47
|
-
attr_accessor :user_ip
|
48
|
-
|
49
46
|
def initialize
|
50
|
-
super('https://www.googleapis.com/', '
|
47
|
+
super('https://www.googleapis.com/', '')
|
51
48
|
@batch_path = 'batch/groupsmigration/v1'
|
52
49
|
end
|
53
50
|
|
@@ -57,10 +54,8 @@ module Google
|
|
57
54
|
# @param [String] fields
|
58
55
|
# Selector specifying which fields to include in a partial response.
|
59
56
|
# @param [String] quota_user
|
60
|
-
#
|
61
|
-
# characters.
|
62
|
-
# @param [String] user_ip
|
63
|
-
# Deprecated. Please use quotaUser instead.
|
57
|
+
# Available to use for quota purposes for server-side applications. Can be any
|
58
|
+
# arbitrary string assigned to a user, but should not exceed 40 characters.
|
64
59
|
# @param [IO, String] upload_source
|
65
60
|
# IO stream or filename containing content to upload
|
66
61
|
# @param [String] content_type
|
@@ -77,11 +72,11 @@ module Google
|
|
77
72
|
# @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
|
78
73
|
# @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
|
79
74
|
# @raise [Google::Apis::AuthorizationError] Authorization is required
|
80
|
-
def insert_archive(group_id, fields: nil, quota_user: nil,
|
75
|
+
def insert_archive(group_id, fields: nil, quota_user: nil, upload_source: nil, content_type: nil, options: nil, &block)
|
81
76
|
if upload_source.nil?
|
82
|
-
command = make_simple_command(:post, '{groupId}/archive', options)
|
77
|
+
command = make_simple_command(:post, 'groups/v1/groups/{groupId}/archive', options)
|
83
78
|
else
|
84
|
-
command = make_upload_command(:post, '{groupId}/archive', options)
|
79
|
+
command = make_upload_command(:post, 'groups/v1/groups/{groupId}/archive', options)
|
85
80
|
command.upload_source = upload_source
|
86
81
|
command.upload_content_type = content_type
|
87
82
|
end
|
@@ -90,7 +85,6 @@ module Google
|
|
90
85
|
command.params['groupId'] = group_id unless group_id.nil?
|
91
86
|
command.query['fields'] = fields unless fields.nil?
|
92
87
|
command.query['quotaUser'] = quota_user unless quota_user.nil?
|
93
|
-
command.query['userIp'] = user_ip unless user_ip.nil?
|
94
88
|
execute_or_queue_command(command, &block)
|
95
89
|
end
|
96
90
|
|
@@ -99,7 +93,6 @@ module Google
|
|
99
93
|
def apply_command_defaults(command)
|
100
94
|
command.query['key'] = key unless key.nil?
|
101
95
|
command.query['quotaUser'] = quota_user unless quota_user.nil?
|
102
|
-
command.query['userIp'] = user_ip unless user_ip.nil?
|
103
96
|
end
|
104
97
|
end
|
105
98
|
end
|
@@ -27,7 +27,7 @@ module Google
|
|
27
27
|
# @see https://cloud.google.com/iam/
|
28
28
|
module IamV1
|
29
29
|
VERSION = 'V1'
|
30
|
-
REVISION = '
|
30
|
+
REVISION = '20200605'
|
31
31
|
|
32
32
|
# View and manage your data across Google Cloud Platform services
|
33
33
|
AUTH_CLOUD_PLATFORM = 'https://www.googleapis.com/auth/cloud-platform'
|
@@ -56,7 +56,7 @@ module Google
|
|
56
56
|
# `
|
57
57
|
# "audit_configs": [
|
58
58
|
# `
|
59
|
-
# "service": "allServices"
|
59
|
+
# "service": "allServices",
|
60
60
|
# "audit_log_configs": [
|
61
61
|
# `
|
62
62
|
# "log_type": "DATA_READ",
|
@@ -65,18 +65,18 @@ module Google
|
|
65
65
|
# ]
|
66
66
|
# `,
|
67
67
|
# `
|
68
|
-
# "log_type": "DATA_WRITE"
|
68
|
+
# "log_type": "DATA_WRITE"
|
69
69
|
# `,
|
70
70
|
# `
|
71
|
-
# "log_type": "ADMIN_READ"
|
71
|
+
# "log_type": "ADMIN_READ"
|
72
72
|
# `
|
73
73
|
# ]
|
74
74
|
# `,
|
75
75
|
# `
|
76
|
-
# "service": "sampleservice.googleapis.com"
|
76
|
+
# "service": "sampleservice.googleapis.com",
|
77
77
|
# "audit_log_configs": [
|
78
78
|
# `
|
79
|
-
# "log_type": "DATA_READ"
|
79
|
+
# "log_type": "DATA_READ"
|
80
80
|
# `,
|
81
81
|
# `
|
82
82
|
# "log_type": "DATA_WRITE",
|
@@ -149,7 +149,7 @@ module Google
|
|
149
149
|
# ]
|
150
150
|
# `,
|
151
151
|
# `
|
152
|
-
# "log_type": "DATA_WRITE"
|
152
|
+
# "log_type": "DATA_WRITE"
|
153
153
|
# `
|
154
154
|
# ]
|
155
155
|
# `
|
@@ -414,19 +414,15 @@ module Google
|
|
414
414
|
# @return [String]
|
415
415
|
attr_accessor :account_id
|
416
416
|
|
417
|
-
#
|
418
|
-
#
|
419
|
-
#
|
420
|
-
#
|
421
|
-
#
|
422
|
-
#
|
423
|
-
#
|
424
|
-
#
|
425
|
-
#
|
426
|
-
# `projects/`PROJECT_ID`/serviceAccounts/`ACCOUNT``.
|
427
|
-
# Using `-` as a wildcard for the `PROJECT_ID` will infer the project from
|
428
|
-
# the account. The `ACCOUNT` value can be the `email` address or the
|
429
|
-
# `unique_id` of the service account.
|
417
|
+
# An IAM service account.
|
418
|
+
# A service account is an account for an application or a virtual machine (VM)
|
419
|
+
# instance, not a person. You can use a service account to call Google APIs. To
|
420
|
+
# learn more, read the [overview of service
|
421
|
+
# accounts](https://cloud.google.com/iam/help/service-accounts/overview).
|
422
|
+
# When you create a service account, you specify the project ID that owns the
|
423
|
+
# service account, as well as a name that must be unique within the project.
|
424
|
+
# IAM uses these values to create an email address that identifies the service
|
425
|
+
# account.
|
430
426
|
# Corresponds to the JSON property `serviceAccount`
|
431
427
|
# @return [Google::Apis::IamV1::ServiceAccount]
|
432
428
|
attr_accessor :service_account
|
@@ -751,23 +747,24 @@ module Google
|
|
751
747
|
end
|
752
748
|
end
|
753
749
|
|
754
|
-
# The
|
750
|
+
# The request for
|
751
|
+
# PatchServiceAccount.
|
752
|
+
# You can patch only the `display_name` and `description` fields. You must use
|
753
|
+
# the `update_mask` field to specify which of these fields you want to patch.
|
754
|
+
# Only the fields specified in the request are guaranteed to be returned in
|
755
|
+
# the response. Other fields may be empty in the response.
|
755
756
|
class PatchServiceAccountRequest
|
756
757
|
include Google::Apis::Core::Hashable
|
757
758
|
|
758
|
-
#
|
759
|
-
#
|
760
|
-
#
|
761
|
-
#
|
762
|
-
#
|
763
|
-
#
|
764
|
-
#
|
765
|
-
#
|
766
|
-
#
|
767
|
-
# `projects/`PROJECT_ID`/serviceAccounts/`ACCOUNT``.
|
768
|
-
# Using `-` as a wildcard for the `PROJECT_ID` will infer the project from
|
769
|
-
# the account. The `ACCOUNT` value can be the `email` address or the
|
770
|
-
# `unique_id` of the service account.
|
759
|
+
# An IAM service account.
|
760
|
+
# A service account is an account for an application or a virtual machine (VM)
|
761
|
+
# instance, not a person. You can use a service account to call Google APIs. To
|
762
|
+
# learn more, read the [overview of service
|
763
|
+
# accounts](https://cloud.google.com/iam/help/service-accounts/overview).
|
764
|
+
# When you create a service account, you specify the project ID that owns the
|
765
|
+
# service account, as well as a name that must be unique within the project.
|
766
|
+
# IAM uses these values to create an email address that identifies the service
|
767
|
+
# account.
|
771
768
|
# Corresponds to the JSON property `serviceAccount`
|
772
769
|
# @return [Google::Apis::IamV1::ServiceAccount]
|
773
770
|
attr_accessor :service_account
|
@@ -1262,77 +1259,82 @@ module Google
|
|
1262
1259
|
end
|
1263
1260
|
end
|
1264
1261
|
|
1265
|
-
#
|
1266
|
-
#
|
1267
|
-
#
|
1268
|
-
#
|
1269
|
-
#
|
1270
|
-
#
|
1271
|
-
#
|
1272
|
-
#
|
1273
|
-
#
|
1274
|
-
# `projects/`PROJECT_ID`/serviceAccounts/`ACCOUNT``.
|
1275
|
-
# Using `-` as a wildcard for the `PROJECT_ID` will infer the project from
|
1276
|
-
# the account. The `ACCOUNT` value can be the `email` address or the
|
1277
|
-
# `unique_id` of the service account.
|
1262
|
+
# An IAM service account.
|
1263
|
+
# A service account is an account for an application or a virtual machine (VM)
|
1264
|
+
# instance, not a person. You can use a service account to call Google APIs. To
|
1265
|
+
# learn more, read the [overview of service
|
1266
|
+
# accounts](https://cloud.google.com/iam/help/service-accounts/overview).
|
1267
|
+
# When you create a service account, you specify the project ID that owns the
|
1268
|
+
# service account, as well as a name that must be unique within the project.
|
1269
|
+
# IAM uses these values to create an email address that identifies the service
|
1270
|
+
# account.
|
1278
1271
|
class ServiceAccount
|
1279
1272
|
include Google::Apis::Core::Hashable
|
1280
1273
|
|
1281
|
-
# Optional. A user-specified
|
1282
|
-
#
|
1274
|
+
# Optional. A user-specified, human-readable description of the service account.
|
1275
|
+
# The
|
1276
|
+
# maximum length is 256 UTF-8 bytes.
|
1283
1277
|
# Corresponds to the JSON property `description`
|
1284
1278
|
# @return [String]
|
1285
1279
|
attr_accessor :description
|
1286
1280
|
|
1287
|
-
#
|
1288
|
-
# The field is currently in alpha phase.
|
1281
|
+
# Output only. Whether the service account is disabled.
|
1289
1282
|
# Corresponds to the JSON property `disabled`
|
1290
1283
|
# @return [Boolean]
|
1291
1284
|
attr_accessor :disabled
|
1292
1285
|
alias_method :disabled?, :disabled
|
1293
1286
|
|
1294
|
-
# Optional. A user-specified name for the service account.
|
1295
|
-
#
|
1287
|
+
# Optional. A user-specified, human-readable name for the service account. The
|
1288
|
+
# maximum
|
1289
|
+
# length is 100 UTF-8 bytes.
|
1296
1290
|
# Corresponds to the JSON property `displayName`
|
1297
1291
|
# @return [String]
|
1298
1292
|
attr_accessor :display_name
|
1299
1293
|
|
1300
|
-
#
|
1294
|
+
# Output only. The email address of the service account.
|
1301
1295
|
# Corresponds to the JSON property `email`
|
1302
1296
|
# @return [String]
|
1303
1297
|
attr_accessor :email
|
1304
1298
|
|
1305
|
-
#
|
1306
|
-
# for backwards compatibility.
|
1299
|
+
# Deprecated. Do not use.
|
1307
1300
|
# Corresponds to the JSON property `etag`
|
1308
1301
|
# NOTE: Values are automatically base64 encoded/decoded in the client library.
|
1309
1302
|
# @return [String]
|
1310
1303
|
attr_accessor :etag
|
1311
1304
|
|
1312
|
-
# The resource name of the service account
|
1313
|
-
#
|
1314
|
-
#
|
1315
|
-
#
|
1316
|
-
#
|
1317
|
-
#
|
1318
|
-
# `projects
|
1305
|
+
# The resource name of the service account.
|
1306
|
+
# Use one of the following formats:
|
1307
|
+
# * `projects/`PROJECT_ID`/serviceAccounts/`EMAIL_ADDRESS``
|
1308
|
+
# * `projects/`PROJECT_ID`/serviceAccounts/`UNIQUE_ID``
|
1309
|
+
# As an alternative, you can use the `-` wildcard character instead of the
|
1310
|
+
# project ID:
|
1311
|
+
# * `projects/-/serviceAccounts/`EMAIL_ADDRESS``
|
1312
|
+
# * `projects/-/serviceAccounts/`UNIQUE_ID``
|
1313
|
+
# When possible, avoid using the `-` wildcard character, because it can cause
|
1314
|
+
# response messages to contain misleading error codes. For example, if you
|
1315
|
+
# try to get the service account
|
1316
|
+
# `projects/-/serviceAccounts/fake@example.com`, which does not exist, the
|
1317
|
+
# response contains an HTTP `403 Forbidden` error instead of a `404 Not
|
1318
|
+
# Found` error.
|
1319
1319
|
# Corresponds to the JSON property `name`
|
1320
1320
|
# @return [String]
|
1321
1321
|
attr_accessor :name
|
1322
1322
|
|
1323
|
-
#
|
1324
|
-
# This is used in conjunction with the OAuth2 clientconfig API to make
|
1325
|
-
# three legged OAuth2 (3LO) flows to access the data of Google users.
|
1323
|
+
# Output only. The OAuth 2.0 client ID for the service account.
|
1326
1324
|
# Corresponds to the JSON property `oauth2ClientId`
|
1327
1325
|
# @return [String]
|
1328
1326
|
attr_accessor :oauth2_client_id
|
1329
1327
|
|
1330
|
-
#
|
1328
|
+
# Output only. The ID of the project that owns the service account.
|
1331
1329
|
# Corresponds to the JSON property `projectId`
|
1332
1330
|
# @return [String]
|
1333
1331
|
attr_accessor :project_id
|
1334
1332
|
|
1335
|
-
#
|
1333
|
+
# Output only. The unique, stable numeric ID for the service account.
|
1334
|
+
# Each service account retains its unique ID even if you delete the service
|
1335
|
+
# account. For example, if you delete a service account, then create a new
|
1336
|
+
# service account with the same name, the new service account has a different
|
1337
|
+
# unique ID than the deleted service account.
|
1336
1338
|
# Corresponds to the JSON property `uniqueId`
|
1337
1339
|
# @return [String]
|
1338
1340
|
attr_accessor :unique_id
|
@@ -1589,7 +1591,15 @@ module Google
|
|
1589
1591
|
class SignJwtRequest
|
1590
1592
|
include Google::Apis::Core::Hashable
|
1591
1593
|
|
1592
|
-
# Required. The JWT payload to sign
|
1594
|
+
# Required. The JWT payload to sign. Must be a serialized JSON object that
|
1595
|
+
# contains a
|
1596
|
+
# JWT Claims Set. For example: ``"sub": "user@example.com", "iat": 313435``
|
1597
|
+
# If the JWT Claims Set contains an expiration time (`exp`) claim, it must be
|
1598
|
+
# an integer timestamp that is not in the past and no more than 1 hour in the
|
1599
|
+
# future.
|
1600
|
+
# If the JWT Claims Set does not contain an expiration time (`exp`) claim,
|
1601
|
+
# this claim is added automatically, with a timestamp that is 1 hour in the
|
1602
|
+
# future.
|
1593
1603
|
# Corresponds to the JSON property `payload`
|
1594
1604
|
# @return [String]
|
1595
1605
|
attr_accessor :payload
|
@@ -1708,19 +1718,15 @@ module Google
|
|
1708
1718
|
class UndeleteServiceAccountResponse
|
1709
1719
|
include Google::Apis::Core::Hashable
|
1710
1720
|
|
1711
|
-
#
|
1712
|
-
#
|
1713
|
-
#
|
1714
|
-
#
|
1715
|
-
#
|
1716
|
-
#
|
1717
|
-
#
|
1718
|
-
#
|
1719
|
-
#
|
1720
|
-
# `projects/`PROJECT_ID`/serviceAccounts/`ACCOUNT``.
|
1721
|
-
# Using `-` as a wildcard for the `PROJECT_ID` will infer the project from
|
1722
|
-
# the account. The `ACCOUNT` value can be the `email` address or the
|
1723
|
-
# `unique_id` of the service account.
|
1721
|
+
# An IAM service account.
|
1722
|
+
# A service account is an account for an application or a virtual machine (VM)
|
1723
|
+
# instance, not a person. You can use a service account to call Google APIs. To
|
1724
|
+
# learn more, read the [overview of service
|
1725
|
+
# accounts](https://cloud.google.com/iam/help/service-accounts/overview).
|
1726
|
+
# When you create a service account, you specify the project ID that owns the
|
1727
|
+
# service account, as well as a name that must be unique within the project.
|
1728
|
+
# IAM uses these values to create an email address that identifies the service
|
1729
|
+
# account.
|
1724
1730
|
# Corresponds to the JSON property `restoredAccount`
|
1725
1731
|
# @return [Google::Apis::IamV1::ServiceAccount]
|
1726
1732
|
attr_accessor :restored_account
|
@@ -49,16 +49,11 @@ module Google
|
|
49
49
|
@batch_path = 'batch'
|
50
50
|
end
|
51
51
|
|
52
|
-
# Lints
|
53
|
-
# google.iam.v1.Binding.condition
|
54
|
-
#
|
55
|
-
#
|
56
|
-
#
|
57
|
-
# result.
|
58
|
-
# The set of applicable validation units is determined by the Cloud IAM
|
59
|
-
# server and is not configurable.
|
60
|
-
# Regardless of any lint issues or their severities, successful calls to
|
61
|
-
# `lintPolicy` return an HTTP 200 OK status code.
|
52
|
+
# Lints, or validates, an IAM policy. Currently checks the
|
53
|
+
# google.iam.v1.Binding.condition field, which contains a condition
|
54
|
+
# expression for a role binding.
|
55
|
+
# Successful calls to this method always return an HTTP `200 OK` status code,
|
56
|
+
# even if the linter detects an issue in the IAM policy.
|
62
57
|
# @param [Google::Apis::IamV1::LintPolicyRequest] lint_policy_request_object
|
63
58
|
# @param [String] fields
|
64
59
|
# Selector specifying which fields to include in a partial response.
|
@@ -88,8 +83,10 @@ module Google
|
|
88
83
|
execute_or_queue_command(command, &block)
|
89
84
|
end
|
90
85
|
|
91
|
-
# Returns a list of services that
|
92
|
-
#
|
86
|
+
# Returns a list of services that allow you to opt into audit logs that are
|
87
|
+
# not generated by default.
|
88
|
+
# To learn more about audit logs, see the [Logging
|
89
|
+
# documentation](https://cloud.google.com/logging/docs/audit).
|
93
90
|
# @param [Google::Apis::IamV1::QueryAuditableServicesRequest] query_auditable_services_request_object
|
94
91
|
# @param [String] fields
|
95
92
|
# Selector specifying which fields to include in a partial response.
|
@@ -119,7 +116,7 @@ module Google
|
|
119
116
|
execute_or_queue_command(command, &block)
|
120
117
|
end
|
121
118
|
|
122
|
-
# Creates a new Role.
|
119
|
+
# Creates a new custom Role.
|
123
120
|
# @param [String] parent
|
124
121
|
# The `parent` parameter's value depends on the target resource for the
|
125
122
|
# request, namely
|
@@ -169,13 +166,19 @@ module Google
|
|
169
166
|
execute_or_queue_command(command, &block)
|
170
167
|
end
|
171
168
|
|
172
|
-
#
|
173
|
-
#
|
174
|
-
#
|
175
|
-
#
|
176
|
-
# Existing
|
177
|
-
#
|
178
|
-
#
|
169
|
+
# Deletes a custom Role.
|
170
|
+
# When you delete a custom role, the following changes occur immediately:
|
171
|
+
# * You cannot bind a member to the custom role in an IAM
|
172
|
+
# Policy.
|
173
|
+
# * Existing bindings to the custom role are not changed, but they have no
|
174
|
+
# effect.
|
175
|
+
# * By default, the response from ListRoles does not include the custom
|
176
|
+
# role.
|
177
|
+
# You have 7 days to undelete the custom role. After 7 days, the following
|
178
|
+
# changes occur:
|
179
|
+
# * The custom role is permanently deleted and cannot be recovered.
|
180
|
+
# * If an IAM policy contains a binding to the custom role, the binding is
|
181
|
+
# permanently removed.
|
179
182
|
# @param [String] name
|
180
183
|
# The `name` parameter's value depends on the target resource for the
|
181
184
|
# request, namely
|
@@ -226,7 +229,7 @@ module Google
|
|
226
229
|
execute_or_queue_command(command, &block)
|
227
230
|
end
|
228
231
|
|
229
|
-
# Gets a Role
|
232
|
+
# Gets the definition of a Role.
|
230
233
|
# @param [String] name
|
231
234
|
# The `name` parameter's value depends on the target resource for the
|
232
235
|
# request, namely
|
@@ -280,7 +283,8 @@ module Google
|
|
280
283
|
execute_or_queue_command(command, &block)
|
281
284
|
end
|
282
285
|
|
283
|
-
# Lists
|
286
|
+
# Lists every predefined Role that IAM supports, or every custom role
|
287
|
+
# that is defined for an organization or project.
|
284
288
|
# @param [String] parent
|
285
289
|
# The `parent` parameter's value depends on the target resource for the
|
286
290
|
# request, namely
|
@@ -348,7 +352,7 @@ module Google
|
|
348
352
|
execute_or_queue_command(command, &block)
|
349
353
|
end
|
350
354
|
|
351
|
-
# Updates a Role
|
355
|
+
# Updates the definition of a custom Role.
|
352
356
|
# @param [String] name
|
353
357
|
# The `name` parameter's value depends on the target resource for the
|
354
358
|
# request, namely
|
@@ -402,7 +406,7 @@ module Google
|
|
402
406
|
execute_or_queue_command(command, &block)
|
403
407
|
end
|
404
408
|
|
405
|
-
#
|
409
|
+
# Undeletes a custom Role.
|
406
410
|
# @param [String] name
|
407
411
|
# The `name` parameter's value depends on the target resource for the
|
408
412
|
# request, namely
|
@@ -454,8 +458,9 @@ module Google
|
|
454
458
|
execute_or_queue_command(command, &block)
|
455
459
|
end
|
456
460
|
|
457
|
-
# Lists
|
458
|
-
#
|
461
|
+
# Lists every permission that you can test on a resource. A permission is
|
462
|
+
# testable if you can check whether a member has that permission on the
|
463
|
+
# resource.
|
459
464
|
# @param [Google::Apis::IamV1::QueryTestablePermissionsRequest] query_testable_permissions_request_object
|
460
465
|
# @param [String] fields
|
461
466
|
# Selector specifying which fields to include in a partial response.
|
@@ -485,7 +490,7 @@ module Google
|
|
485
490
|
execute_or_queue_command(command, &block)
|
486
491
|
end
|
487
492
|
|
488
|
-
# Creates a new Role.
|
493
|
+
# Creates a new custom Role.
|
489
494
|
# @param [String] parent
|
490
495
|
# The `parent` parameter's value depends on the target resource for the
|
491
496
|
# request, namely
|
@@ -535,13 +540,19 @@ module Google
|
|
535
540
|
execute_or_queue_command(command, &block)
|
536
541
|
end
|
537
542
|
|
538
|
-
#
|
539
|
-
#
|
540
|
-
#
|
541
|
-
#
|
542
|
-
# Existing
|
543
|
-
#
|
544
|
-
#
|
543
|
+
# Deletes a custom Role.
|
544
|
+
# When you delete a custom role, the following changes occur immediately:
|
545
|
+
# * You cannot bind a member to the custom role in an IAM
|
546
|
+
# Policy.
|
547
|
+
# * Existing bindings to the custom role are not changed, but they have no
|
548
|
+
# effect.
|
549
|
+
# * By default, the response from ListRoles does not include the custom
|
550
|
+
# role.
|
551
|
+
# You have 7 days to undelete the custom role. After 7 days, the following
|
552
|
+
# changes occur:
|
553
|
+
# * The custom role is permanently deleted and cannot be recovered.
|
554
|
+
# * If an IAM policy contains a binding to the custom role, the binding is
|
555
|
+
# permanently removed.
|
545
556
|
# @param [String] name
|
546
557
|
# The `name` parameter's value depends on the target resource for the
|
547
558
|
# request, namely
|
@@ -592,7 +603,7 @@ module Google
|
|
592
603
|
execute_or_queue_command(command, &block)
|
593
604
|
end
|
594
605
|
|
595
|
-
# Gets a Role
|
606
|
+
# Gets the definition of a Role.
|
596
607
|
# @param [String] name
|
597
608
|
# The `name` parameter's value depends on the target resource for the
|
598
609
|
# request, namely
|
@@ -646,7 +657,8 @@ module Google
|
|
646
657
|
execute_or_queue_command(command, &block)
|
647
658
|
end
|
648
659
|
|
649
|
-
# Lists
|
660
|
+
# Lists every predefined Role that IAM supports, or every custom role
|
661
|
+
# that is defined for an organization or project.
|
650
662
|
# @param [String] parent
|
651
663
|
# The `parent` parameter's value depends on the target resource for the
|
652
664
|
# request, namely
|
@@ -714,7 +726,7 @@ module Google
|
|
714
726
|
execute_or_queue_command(command, &block)
|
715
727
|
end
|
716
728
|
|
717
|
-
# Updates a Role
|
729
|
+
# Updates the definition of a custom Role.
|
718
730
|
# @param [String] name
|
719
731
|
# The `name` parameter's value depends on the target resource for the
|
720
732
|
# request, namely
|
@@ -768,7 +780,7 @@ module Google
|
|
768
780
|
execute_or_queue_command(command, &block)
|
769
781
|
end
|
770
782
|
|
771
|
-
#
|
783
|
+
# Undeletes a custom Role.
|
772
784
|
# @param [String] name
|
773
785
|
# The `name` parameter's value depends on the target resource for the
|
774
786
|
# request, namely
|
@@ -820,8 +832,7 @@ module Google
|
|
820
832
|
execute_or_queue_command(command, &block)
|
821
833
|
end
|
822
834
|
|
823
|
-
# Creates a ServiceAccount
|
824
|
-
# and returns it.
|
835
|
+
# Creates a ServiceAccount.
|
825
836
|
# @param [String] name
|
826
837
|
# Required. The resource name of the project associated with the service
|
827
838
|
# accounts, such as `projects/my-project-123`.
|
@@ -856,6 +867,17 @@ module Google
|
|
856
867
|
end
|
857
868
|
|
858
869
|
# Deletes a ServiceAccount.
|
870
|
+
# **Warning:** After you delete a service account, you might not be able to
|
871
|
+
# undelete it. If you know that you need to re-enable the service account in
|
872
|
+
# the future, use DisableServiceAccount instead.
|
873
|
+
# If you delete a service account, IAM permanently removes the service
|
874
|
+
# account 30 days later. Google Cloud cannot recover the service account
|
875
|
+
# after it is permanently removed, even if you file a support request.
|
876
|
+
# To help avoid unplanned outages, we recommend that you disable the service
|
877
|
+
# account before you delete it. Use DisableServiceAccount to disable the
|
878
|
+
# service account, then wait at least 24 hours and watch for unintended
|
879
|
+
# consequences. If there are no unintended consequences, you can delete the
|
880
|
+
# service account.
|
859
881
|
# @param [String] name
|
860
882
|
# Required. The resource name of the service account in the following format:
|
861
883
|
# `projects/`PROJECT_ID`/serviceAccounts/`ACCOUNT``.
|
@@ -889,24 +911,19 @@ module Google
|
|
889
911
|
execute_or_queue_command(command, &block)
|
890
912
|
end
|
891
913
|
|
892
|
-
#
|
893
|
-
#
|
894
|
-
#
|
895
|
-
#
|
896
|
-
#
|
897
|
-
#
|
898
|
-
#
|
899
|
-
#
|
900
|
-
#
|
901
|
-
#
|
902
|
-
#
|
903
|
-
#
|
904
|
-
#
|
905
|
-
# is disabled.
|
906
|
-
# To improve reliability of your services and avoid unexpected outages, it
|
907
|
-
# is recommended to first disable a service account rather than delete it.
|
908
|
-
# After disabling the service account, wait at least 24 hours to verify there
|
909
|
-
# are no unintended consequences, and then delete the service account.
|
914
|
+
# Disables a ServiceAccount immediately.
|
915
|
+
# If an application uses the service account to authenticate, that
|
916
|
+
# application can no longer call Google APIs or access Google Cloud
|
917
|
+
# resources. Existing access tokens for the service account are rejected, and
|
918
|
+
# requests for new access tokens will fail.
|
919
|
+
# To re-enable the service account, use EnableServiceAccount. After you
|
920
|
+
# re-enable the service account, its existing access tokens will be accepted,
|
921
|
+
# and you can request new access tokens.
|
922
|
+
# To help avoid unplanned outages, we recommend that you disable the service
|
923
|
+
# account before you delete it. Use this method to disable the service
|
924
|
+
# account, then wait at least 24 hours and watch for unintended consequences.
|
925
|
+
# If there are no unintended consequences, you can delete the service account
|
926
|
+
# with DeleteServiceAccount.
|
910
927
|
# @param [String] name
|
911
928
|
# The resource name of the service account in the following format:
|
912
929
|
# `projects/`PROJECT_ID`/serviceAccounts/`ACCOUNT``.
|
@@ -943,14 +960,12 @@ module Google
|
|
943
960
|
execute_or_queue_command(command, &block)
|
944
961
|
end
|
945
962
|
|
946
|
-
#
|
947
|
-
#
|
948
|
-
#
|
949
|
-
#
|
950
|
-
#
|
951
|
-
#
|
952
|
-
# not disabled. Enabling an already enabled service account will have no
|
953
|
-
# effect.
|
963
|
+
# Enables a ServiceAccount that was disabled by
|
964
|
+
# DisableServiceAccount.
|
965
|
+
# If the service account is already enabled, then this method has no effect.
|
966
|
+
# If the service account was disabled by other means—for example, if Google
|
967
|
+
# disabled the service account because it was compromised—you cannot use this
|
968
|
+
# method to enable the service account.
|
954
969
|
# @param [String] name
|
955
970
|
# The resource name of the service account in the following format:
|
956
971
|
# `projects/`PROJECT_ID`/serviceAccounts/`ACCOUNT``.
|
@@ -1021,19 +1036,15 @@ module Google
|
|
1021
1036
|
execute_or_queue_command(command, &block)
|
1022
1037
|
end
|
1023
1038
|
|
1024
|
-
#
|
1025
|
-
#
|
1026
|
-
#
|
1027
|
-
#
|
1028
|
-
#
|
1029
|
-
#
|
1030
|
-
#
|
1031
|
-
#
|
1032
|
-
#
|
1033
|
-
# `getIamPolicy` method on the target resource. For example, to view grants
|
1034
|
-
# for a project, call the
|
1035
|
-
# [projects.getIamPolicy](/resource-manager/reference/rest/v1/projects/
|
1036
|
-
# getIamPolicy)
|
1039
|
+
# Gets the IAM policy that is attached to a ServiceAccount. This IAM
|
1040
|
+
# policy specifies which members have access to the service account.
|
1041
|
+
# This method does not tell you whether the service account has been granted
|
1042
|
+
# any roles on other resources. To check whether a service account has role
|
1043
|
+
# grants on a resource, use the `getIamPolicy` method for that resource. For
|
1044
|
+
# example, to view the role grants for a project, call the Resource Manager
|
1045
|
+
# API's
|
1046
|
+
# [`projects.getIamPolicy`](https://cloud.google.com/resource-manager/reference/
|
1047
|
+
# rest/v1/projects/getIamPolicy)
|
1037
1048
|
# method.
|
1038
1049
|
# @param [String] resource
|
1039
1050
|
# REQUIRED: The resource for which the policy is being requested.
|
@@ -1076,7 +1087,7 @@ module Google
|
|
1076
1087
|
execute_or_queue_command(command, &block)
|
1077
1088
|
end
|
1078
1089
|
|
1079
|
-
# Lists
|
1090
|
+
# Lists every ServiceAccount that belongs to a specific project.
|
1080
1091
|
# @param [String] name
|
1081
1092
|
# Required. The resource name of the project associated with the service
|
1082
1093
|
# accounts, such as `projects/my-project-123`.
|
@@ -1118,19 +1129,21 @@ module Google
|
|
1118
1129
|
end
|
1119
1130
|
|
1120
1131
|
# Patches a ServiceAccount.
|
1121
|
-
# Currently, only the following fields are updatable:
|
1122
|
-
# `display_name` and `description`.
|
1123
|
-
# Only fields specified in the request are guaranteed to be returned in
|
1124
|
-
# the response. Other fields in the response may be empty.
|
1125
|
-
# Note: The field mask is required.
|
1126
1132
|
# @param [String] name
|
1127
|
-
# The resource name of the service account
|
1128
|
-
#
|
1129
|
-
#
|
1130
|
-
#
|
1131
|
-
#
|
1132
|
-
#
|
1133
|
-
# `projects
|
1133
|
+
# The resource name of the service account.
|
1134
|
+
# Use one of the following formats:
|
1135
|
+
# * `projects/`PROJECT_ID`/serviceAccounts/`EMAIL_ADDRESS``
|
1136
|
+
# * `projects/`PROJECT_ID`/serviceAccounts/`UNIQUE_ID``
|
1137
|
+
# As an alternative, you can use the `-` wildcard character instead of the
|
1138
|
+
# project ID:
|
1139
|
+
# * `projects/-/serviceAccounts/`EMAIL_ADDRESS``
|
1140
|
+
# * `projects/-/serviceAccounts/`UNIQUE_ID``
|
1141
|
+
# When possible, avoid using the `-` wildcard character, because it can cause
|
1142
|
+
# response messages to contain misleading error codes. For example, if you
|
1143
|
+
# try to get the service account
|
1144
|
+
# `projects/-/serviceAccounts/fake@example.com`, which does not exist, the
|
1145
|
+
# response contains an HTTP `403 Forbidden` error instead of a `404 Not
|
1146
|
+
# Found` error.
|
1134
1147
|
# @param [Google::Apis::IamV1::PatchServiceAccountRequest] patch_service_account_request_object
|
1135
1148
|
# @param [String] fields
|
1136
1149
|
# Selector specifying which fields to include in a partial response.
|
@@ -1161,21 +1174,20 @@ module Google
|
|
1161
1174
|
execute_or_queue_command(command, &block)
|
1162
1175
|
end
|
1163
1176
|
|
1164
|
-
# Sets the
|
1165
|
-
#
|
1166
|
-
#
|
1167
|
-
#
|
1168
|
-
#
|
1169
|
-
#
|
1170
|
-
#
|
1171
|
-
#
|
1172
|
-
#
|
1173
|
-
#
|
1174
|
-
#
|
1175
|
-
#
|
1176
|
-
#
|
1177
|
-
#
|
1178
|
-
# method.
|
1177
|
+
# Sets the IAM policy that is attached to a ServiceAccount.
|
1178
|
+
# Use this method to grant or revoke access to the service account. For
|
1179
|
+
# example, you could grant a member the ability to impersonate the service
|
1180
|
+
# account.
|
1181
|
+
# This method does not enable the service account to access other resources.
|
1182
|
+
# To grant roles to a service account on a resource, follow these steps:
|
1183
|
+
# 1. Call the resource's `getIamPolicy` method to get its current IAM policy.
|
1184
|
+
# 2. Edit the policy so that it binds the service account to an IAM role for
|
1185
|
+
# the resource.
|
1186
|
+
# 3. Call the resource's `setIamPolicy` method to update its IAM policy.
|
1187
|
+
# For detailed instructions, see
|
1188
|
+
# [Granting roles to a service account for specific
|
1189
|
+
# resources](https://cloud.google.com/iam/help/service-accounts/granting-access-
|
1190
|
+
# to-service-accounts).
|
1179
1191
|
# @param [String] resource
|
1180
1192
|
# REQUIRED: The resource for which the policy is being specified.
|
1181
1193
|
# See the operation documentation for the appropriate value for this field.
|
@@ -1209,11 +1221,11 @@ module Google
|
|
1209
1221
|
execute_or_queue_command(command, &block)
|
1210
1222
|
end
|
1211
1223
|
|
1212
|
-
# **Note
|
1213
|
-
# [`signBlob
|
1214
|
-
# signBlob)
|
1215
|
-
# method
|
1216
|
-
# Signs a blob using
|
1224
|
+
# **Note:** We are in the process of deprecating this method. Use the
|
1225
|
+
# [`signBlob`](https://cloud.google.com/iam/help/rest-credentials/v1/projects.
|
1226
|
+
# serviceAccounts/signBlob)
|
1227
|
+
# method in the IAM Service Account Credentials API instead.
|
1228
|
+
# Signs a blob using the system-managed private key for a ServiceAccount.
|
1217
1229
|
# @param [String] name
|
1218
1230
|
# Required. The resource name of the service account in the following format:
|
1219
1231
|
# `projects/`PROJECT_ID`/serviceAccounts/`ACCOUNT``.
|
@@ -1250,14 +1262,12 @@ module Google
|
|
1250
1262
|
execute_or_queue_command(command, &block)
|
1251
1263
|
end
|
1252
1264
|
|
1253
|
-
# **Note
|
1254
|
-
# [`signJwt
|
1255
|
-
# signJwt)
|
1256
|
-
# method
|
1257
|
-
# Signs a JWT using
|
1258
|
-
#
|
1259
|
-
# an expiry time of one hour by default. If you request an expiry time of
|
1260
|
-
# more than one hour, the request will fail.
|
1265
|
+
# **Note:** We are in the process of deprecating this method. Use the
|
1266
|
+
# [`signJwt`](https://cloud.google.com/iam/help/rest-credentials/v1/projects.
|
1267
|
+
# serviceAccounts/signJwt)
|
1268
|
+
# method in the IAM Service Account Credentials API instead.
|
1269
|
+
# Signs a JSON Web Token (JWT) using the system-managed private key for a
|
1270
|
+
# ServiceAccount.
|
1261
1271
|
# @param [String] name
|
1262
1272
|
# Required. The resource name of the service account in the following format:
|
1263
1273
|
# `projects/`PROJECT_ID`/serviceAccounts/`ACCOUNT``.
|
@@ -1294,8 +1304,8 @@ module Google
|
|
1294
1304
|
execute_or_queue_command(command, &block)
|
1295
1305
|
end
|
1296
1306
|
|
1297
|
-
# Tests the
|
1298
|
-
#
|
1307
|
+
# Tests whether the caller has the specified permissions on a
|
1308
|
+
# ServiceAccount.
|
1299
1309
|
# @param [String] resource
|
1300
1310
|
# REQUIRED: The resource for which the policy detail is being requested.
|
1301
1311
|
# See the operation documentation for the appropriate value for this field.
|
@@ -1330,8 +1340,11 @@ module Google
|
|
1330
1340
|
end
|
1331
1341
|
|
1332
1342
|
# Restores a deleted ServiceAccount.
|
1333
|
-
#
|
1334
|
-
#
|
1343
|
+
# **Important:** It is not always possible to restore a deleted service
|
1344
|
+
# account. Use this method only as a last resort.
|
1345
|
+
# After you delete a service account, IAM permanently removes the service
|
1346
|
+
# account 30 days later. There is no way to restore a deleted service account
|
1347
|
+
# that has been permanently removed.
|
1335
1348
|
# @param [String] name
|
1336
1349
|
# The resource name of the service account in the following format:
|
1337
1350
|
# `projects/`PROJECT_ID`/serviceAccounts/`ACCOUNT_UNIQUE_ID``.
|
@@ -1367,19 +1380,25 @@ module Google
|
|
1367
1380
|
execute_or_queue_command(command, &block)
|
1368
1381
|
end
|
1369
1382
|
|
1370
|
-
# Note
|
1383
|
+
# **Note:** We are in the process of deprecating this method. Use
|
1371
1384
|
# PatchServiceAccount instead.
|
1372
1385
|
# Updates a ServiceAccount.
|
1373
|
-
#
|
1374
|
-
# `display_name` and `description`.
|
1386
|
+
# You can update only the `display_name` and `description` fields.
|
1375
1387
|
# @param [String] name
|
1376
|
-
# The resource name of the service account
|
1377
|
-
#
|
1378
|
-
#
|
1379
|
-
#
|
1380
|
-
#
|
1381
|
-
#
|
1382
|
-
# `projects
|
1388
|
+
# The resource name of the service account.
|
1389
|
+
# Use one of the following formats:
|
1390
|
+
# * `projects/`PROJECT_ID`/serviceAccounts/`EMAIL_ADDRESS``
|
1391
|
+
# * `projects/`PROJECT_ID`/serviceAccounts/`UNIQUE_ID``
|
1392
|
+
# As an alternative, you can use the `-` wildcard character instead of the
|
1393
|
+
# project ID:
|
1394
|
+
# * `projects/-/serviceAccounts/`EMAIL_ADDRESS``
|
1395
|
+
# * `projects/-/serviceAccounts/`UNIQUE_ID``
|
1396
|
+
# When possible, avoid using the `-` wildcard character, because it can cause
|
1397
|
+
# response messages to contain misleading error codes. For example, if you
|
1398
|
+
# try to get the service account
|
1399
|
+
# `projects/-/serviceAccounts/fake@example.com`, which does not exist, the
|
1400
|
+
# response contains an HTTP `403 Forbidden` error instead of a `404 Not
|
1401
|
+
# Found` error.
|
1383
1402
|
# @param [Google::Apis::IamV1::ServiceAccount] service_account_object
|
1384
1403
|
# @param [String] fields
|
1385
1404
|
# Selector specifying which fields to include in a partial response.
|
@@ -1410,8 +1429,7 @@ module Google
|
|
1410
1429
|
execute_or_queue_command(command, &block)
|
1411
1430
|
end
|
1412
1431
|
|
1413
|
-
# Creates a ServiceAccountKey
|
1414
|
-
# and returns it.
|
1432
|
+
# Creates a ServiceAccountKey.
|
1415
1433
|
# @param [String] name
|
1416
1434
|
# Required. The resource name of the service account in the following format:
|
1417
1435
|
# `projects/`PROJECT_ID`/serviceAccounts/`ACCOUNT``.
|
@@ -1482,8 +1500,7 @@ module Google
|
|
1482
1500
|
execute_or_queue_command(command, &block)
|
1483
1501
|
end
|
1484
1502
|
|
1485
|
-
# Gets
|
1486
|
-
# by key id.
|
1503
|
+
# Gets a ServiceAccountKey.
|
1487
1504
|
# @param [String] name
|
1488
1505
|
# Required. The resource name of the service account key in the following format:
|
1489
1506
|
# `projects/`PROJECT_ID`/serviceAccounts/`ACCOUNT`/keys/`key``.
|
@@ -1521,7 +1538,7 @@ module Google
|
|
1521
1538
|
execute_or_queue_command(command, &block)
|
1522
1539
|
end
|
1523
1540
|
|
1524
|
-
# Lists
|
1541
|
+
# Lists every ServiceAccountKey for a service account.
|
1525
1542
|
# @param [String] name
|
1526
1543
|
# Required. The resource name of the service account in the following format:
|
1527
1544
|
# `projects/`PROJECT_ID`/serviceAccounts/`ACCOUNT``.
|
@@ -1560,10 +1577,7 @@ module Google
|
|
1560
1577
|
execute_or_queue_command(command, &block)
|
1561
1578
|
end
|
1562
1579
|
|
1563
|
-
#
|
1564
|
-
# This rpc will create a
|
1565
|
-
# ServiceAccountKey that has the
|
1566
|
-
# provided public key and returns it.
|
1580
|
+
# Creates a ServiceAccountKey, using a public key that you provide.
|
1567
1581
|
# @param [String] name
|
1568
1582
|
# The resource name of the service account in the following format:
|
1569
1583
|
# `projects/`PROJECT_ID`/serviceAccounts/`ACCOUNT``.
|
@@ -1600,7 +1614,7 @@ module Google
|
|
1600
1614
|
execute_or_queue_command(command, &block)
|
1601
1615
|
end
|
1602
1616
|
|
1603
|
-
# Gets a Role
|
1617
|
+
# Gets the definition of a Role.
|
1604
1618
|
# @param [String] name
|
1605
1619
|
# The `name` parameter's value depends on the target resource for the
|
1606
1620
|
# request, namely
|
@@ -1654,7 +1668,8 @@ module Google
|
|
1654
1668
|
execute_or_queue_command(command, &block)
|
1655
1669
|
end
|
1656
1670
|
|
1657
|
-
# Lists
|
1671
|
+
# Lists every predefined Role that IAM supports, or every custom role
|
1672
|
+
# that is defined for an organization or project.
|
1658
1673
|
# @param [Fixnum] page_size
|
1659
1674
|
# Optional limit on the number of roles to include in the response.
|
1660
1675
|
# @param [String] page_token
|
@@ -1722,9 +1737,9 @@ module Google
|
|
1722
1737
|
execute_or_queue_command(command, &block)
|
1723
1738
|
end
|
1724
1739
|
|
1725
|
-
#
|
1726
|
-
#
|
1727
|
-
#
|
1740
|
+
# Lists roles that can be granted on a Google Cloud resource. A role is
|
1741
|
+
# grantable if the IAM policy for the resource can contain bindings to the
|
1742
|
+
# role.
|
1728
1743
|
# @param [Google::Apis::IamV1::QueryGrantableRolesRequest] query_grantable_roles_request_object
|
1729
1744
|
# @param [String] fields
|
1730
1745
|
# Selector specifying which fields to include in a partial response.
|