google-api-client 0.43.0 → 0.45.1
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/CHANGELOG.md +462 -0
- data/api_names.yaml +1 -0
- data/docs/oauth-server.md +4 -6
- data/generated/google/apis/acceleratedmobilepageurl_v1.rb +1 -1
- data/generated/google/apis/acceleratedmobilepageurl_v1/classes.rb +7 -9
- data/generated/google/apis/acceleratedmobilepageurl_v1/service.rb +2 -2
- data/generated/google/apis/accessapproval_v1.rb +1 -1
- data/generated/google/apis/accessapproval_v1/classes.rb +53 -86
- data/generated/google/apis/accessapproval_v1/service.rb +93 -132
- data/generated/google/apis/accesscontextmanager_v1.rb +1 -1
- data/generated/google/apis/accesscontextmanager_v1/classes.rb +198 -236
- data/generated/google/apis/accesscontextmanager_v1/service.rb +128 -171
- data/generated/google/apis/accesscontextmanager_v1beta.rb +1 -1
- data/generated/google/apis/accesscontextmanager_v1beta/classes.rb +153 -184
- data/generated/google/apis/accesscontextmanager_v1beta/service.rb +82 -111
- data/generated/google/apis/adexchangebuyer2_v2beta1.rb +1 -1
- data/generated/google/apis/adexchangebuyer2_v2beta1/classes.rb +17 -6
- data/generated/google/apis/adexchangebuyer2_v2beta1/representations.rb +1 -0
- data/generated/google/apis/adexchangebuyer_v1_4.rb +1 -1
- data/generated/google/apis/adexchangebuyer_v1_4/classes.rb +47 -2
- data/generated/google/apis/adexchangebuyer_v1_4/representations.rb +18 -0
- data/generated/google/apis/adexperiencereport_v1.rb +1 -1
- data/generated/google/apis/admin_datatransfer_v1.rb +6 -4
- data/generated/google/apis/admin_datatransfer_v1/classes.rb +16 -4
- data/generated/google/apis/admin_datatransfer_v1/service.rb +30 -48
- data/generated/google/apis/admin_directory_v1.rb +6 -8
- data/generated/google/apis/admin_directory_v1/classes.rb +209 -242
- data/generated/google/apis/admin_directory_v1/representations.rb +0 -39
- data/generated/google/apis/admin_directory_v1/service.rb +535 -998
- data/generated/google/apis/admin_reports_v1.rb +6 -5
- data/generated/google/apis/admin_reports_v1/classes.rb +31 -33
- data/generated/google/apis/admin_reports_v1/service.rb +131 -187
- data/generated/google/apis/admob_v1.rb +4 -1
- data/generated/google/apis/admob_v1/classes.rb +2 -2
- data/generated/google/apis/alertcenter_v1beta1.rb +1 -1
- data/generated/google/apis/analyticsadmin_v1alpha.rb +43 -0
- data/generated/google/apis/analyticsadmin_v1alpha/classes.rb +1361 -0
- data/generated/google/apis/analyticsadmin_v1alpha/representations.rb +610 -0
- data/generated/google/apis/analyticsadmin_v1alpha/service.rb +2135 -0
- data/generated/google/apis/analyticsdata_v1alpha.rb +37 -0
- data/generated/google/apis/analyticsdata_v1alpha/classes.rb +1610 -0
- data/generated/google/apis/analyticsdata_v1alpha/representations.rb +789 -0
- data/generated/google/apis/analyticsdata_v1alpha/service.rb +220 -0
- data/generated/google/apis/analyticsreporting_v4.rb +1 -1
- data/generated/google/apis/androidenterprise_v1.rb +1 -1
- data/generated/google/apis/androidenterprise_v1/service.rb +2 -2
- data/generated/google/apis/androidmanagement_v1.rb +1 -1
- data/generated/google/apis/androidmanagement_v1/classes.rb +98 -61
- data/generated/google/apis/androidmanagement_v1/representations.rb +17 -0
- data/generated/google/apis/androidpublisher_v3.rb +1 -1
- data/generated/google/apis/androidpublisher_v3/service.rb +2 -2
- data/generated/google/apis/apigateway_v1alpha1.rb +34 -0
- data/generated/google/apis/apigateway_v1alpha1/classes.rb +633 -0
- data/generated/google/apis/apigateway_v1alpha1/representations.rb +250 -0
- data/generated/google/apis/apigateway_v1alpha1/service.rb +623 -0
- data/generated/google/apis/apigateway_v1alpha2.rb +34 -0
- data/generated/google/apis/apigateway_v1alpha2/classes.rb +633 -0
- data/generated/google/apis/apigateway_v1alpha2/representations.rb +250 -0
- data/generated/google/apis/apigateway_v1alpha2/service.rb +623 -0
- data/generated/google/apis/apigateway_v1beta.rb +34 -0
- data/generated/google/apis/apigateway_v1beta/classes.rb +1162 -0
- data/generated/google/apis/{memcache_v1 → apigateway_v1beta}/representations.rb +156 -157
- data/generated/google/apis/apigateway_v1beta/service.rb +1172 -0
- data/generated/google/apis/apigee_v1.rb +6 -7
- data/generated/google/apis/apigee_v1/classes.rb +432 -82
- data/generated/google/apis/apigee_v1/representations.rb +139 -1
- data/generated/google/apis/apigee_v1/service.rb +158 -41
- data/generated/google/apis/appengine_v1.rb +1 -1
- data/generated/google/apis/appengine_v1/classes.rb +96 -59
- data/generated/google/apis/appengine_v1/representations.rb +17 -0
- data/generated/google/apis/appengine_v1/service.rb +38 -47
- data/generated/google/apis/appengine_v1alpha.rb +1 -1
- data/generated/google/apis/appengine_v1alpha/classes.rb +9 -11
- data/generated/google/apis/appengine_v1beta.rb +1 -1
- data/generated/google/apis/appengine_v1beta/classes.rb +103 -59
- data/generated/google/apis/appengine_v1beta/representations.rb +18 -0
- data/generated/google/apis/appengine_v1beta/service.rb +37 -47
- data/generated/google/apis/appsmarket_v2.rb +1 -1
- data/generated/google/apis/appsmarket_v2/classes.rb +14 -16
- data/generated/google/apis/artifactregistry_v1beta1.rb +1 -1
- data/generated/google/apis/artifactregistry_v1beta1/classes.rb +242 -337
- data/generated/google/apis/artifactregistry_v1beta1/representations.rb +1 -0
- data/generated/google/apis/artifactregistry_v1beta1/service.rb +44 -57
- data/generated/google/apis/{accessapproval_v1beta1.rb → assuredworkloads_v1beta1.rb} +8 -8
- data/generated/google/apis/assuredworkloads_v1beta1/classes.rb +458 -0
- data/generated/google/apis/assuredworkloads_v1beta1/representations.rb +230 -0
- data/generated/google/apis/assuredworkloads_v1beta1/service.rb +328 -0
- data/generated/google/apis/bigquery_v2.rb +1 -1
- data/generated/google/apis/bigquery_v2/classes.rb +403 -553
- data/generated/google/apis/bigquery_v2/representations.rb +17 -0
- data/generated/google/apis/bigquery_v2/service.rb +32 -40
- data/generated/google/apis/bigqueryconnection_v1beta1.rb +1 -1
- data/generated/google/apis/bigqueryconnection_v1beta1/classes.rb +192 -337
- data/generated/google/apis/bigqueryconnection_v1beta1/service.rb +29 -32
- data/generated/google/apis/bigquerydatatransfer_v1.rb +1 -1
- data/generated/google/apis/bigquerydatatransfer_v1/classes.rb +132 -158
- data/generated/google/apis/bigquerydatatransfer_v1/service.rb +232 -282
- data/generated/google/apis/bigqueryreservation_v1.rb +1 -1
- data/generated/google/apis/bigqueryreservation_v1/classes.rb +116 -123
- data/generated/google/apis/bigqueryreservation_v1/representations.rb +2 -0
- data/generated/google/apis/bigqueryreservation_v1/service.rb +137 -183
- data/generated/google/apis/bigqueryreservation_v1alpha2.rb +1 -1
- data/generated/google/apis/bigqueryreservation_v1alpha2/classes.rb +88 -100
- data/generated/google/apis/bigqueryreservation_v1alpha2/service.rb +77 -100
- data/generated/google/apis/bigqueryreservation_v1beta1.rb +1 -1
- data/generated/google/apis/bigqueryreservation_v1beta1/classes.rb +93 -98
- data/generated/google/apis/bigqueryreservation_v1beta1/representations.rb +2 -0
- data/generated/google/apis/bigqueryreservation_v1beta1/service.rb +114 -151
- data/generated/google/apis/bigtableadmin_v1.rb +1 -1
- data/generated/google/apis/bigtableadmin_v1/classes.rb +137 -119
- data/generated/google/apis/bigtableadmin_v1/representations.rb +29 -0
- data/generated/google/apis/bigtableadmin_v2.rb +1 -1
- data/generated/google/apis/bigtableadmin_v2/classes.rb +455 -607
- data/generated/google/apis/bigtableadmin_v2/representations.rb +29 -0
- data/generated/google/apis/bigtableadmin_v2/service.rb +194 -247
- data/generated/google/apis/billingbudgets_v1beta1.rb +4 -1
- data/generated/google/apis/billingbudgets_v1beta1/classes.rb +15 -5
- data/generated/google/apis/billingbudgets_v1beta1/representations.rb +1 -0
- data/generated/google/apis/binaryauthorization_v1.rb +1 -1
- data/generated/google/apis/binaryauthorization_v1/classes.rb +433 -354
- data/generated/google/apis/binaryauthorization_v1/representations.rb +75 -0
- data/generated/google/apis/binaryauthorization_v1/service.rb +109 -89
- data/generated/google/apis/binaryauthorization_v1beta1.rb +1 -1
- data/generated/google/apis/binaryauthorization_v1beta1/classes.rb +433 -354
- data/generated/google/apis/binaryauthorization_v1beta1/representations.rb +75 -0
- data/generated/google/apis/binaryauthorization_v1beta1/service.rb +109 -89
- data/generated/google/apis/calendar_v3.rb +1 -1
- data/generated/google/apis/calendar_v3/classes.rb +13 -10
- data/generated/google/apis/chat_v1.rb +1 -1
- data/generated/google/apis/chat_v1/classes.rb +165 -116
- data/generated/google/apis/chat_v1/representations.rb +35 -0
- data/generated/google/apis/chat_v1/service.rb +30 -42
- data/generated/google/apis/civicinfo_v2.rb +1 -1
- data/generated/google/apis/civicinfo_v2/classes.rb +18 -8
- data/generated/google/apis/civicinfo_v2/representations.rb +2 -0
- data/generated/google/apis/classroom_v1.rb +7 -1
- data/generated/google/apis/classroom_v1/classes.rb +132 -0
- data/generated/google/apis/classroom_v1/representations.rb +43 -0
- data/generated/google/apis/classroom_v1/service.rb +240 -0
- data/generated/google/apis/cloudasset_v1.rb +1 -1
- data/generated/google/apis/cloudasset_v1/classes.rb +764 -1039
- data/generated/google/apis/cloudasset_v1/representations.rb +16 -0
- data/generated/google/apis/cloudasset_v1/service.rb +125 -167
- data/generated/google/apis/cloudasset_v1beta1.rb +1 -1
- data/generated/google/apis/cloudasset_v1beta1/classes.rb +531 -777
- data/generated/google/apis/cloudasset_v1beta1/service.rb +59 -75
- data/generated/google/apis/cloudasset_v1p1beta1.rb +1 -1
- data/generated/google/apis/cloudasset_v1p1beta1/classes.rb +204 -349
- data/generated/google/apis/cloudasset_v1p1beta1/service.rb +35 -47
- data/generated/google/apis/cloudasset_v1p4beta1.rb +1 -1
- data/generated/google/apis/cloudasset_v1p4beta1/classes.rb +222 -276
- data/generated/google/apis/cloudasset_v1p4beta1/service.rb +75 -93
- data/generated/google/apis/cloudasset_v1p5beta1.rb +1 -1
- data/generated/google/apis/cloudasset_v1p5beta1/classes.rb +481 -720
- data/generated/google/apis/cloudasset_v1p5beta1/service.rb +25 -28
- data/generated/google/apis/cloudbilling_v1.rb +7 -1
- data/generated/google/apis/cloudbilling_v1/classes.rb +284 -445
- data/generated/google/apis/cloudbilling_v1/service.rb +104 -124
- data/generated/google/apis/cloudbuild_v1.rb +1 -1
- data/generated/google/apis/cloudbuild_v1/classes.rb +337 -343
- data/generated/google/apis/cloudbuild_v1/representations.rb +8 -0
- data/generated/google/apis/cloudbuild_v1/service.rb +268 -66
- data/generated/google/apis/cloudbuild_v1alpha1.rb +1 -1
- data/generated/google/apis/cloudbuild_v1alpha1/classes.rb +291 -329
- data/generated/google/apis/cloudbuild_v1alpha1/representations.rb +2 -0
- data/generated/google/apis/cloudbuild_v1alpha1/service.rb +15 -18
- data/generated/google/apis/cloudbuild_v1alpha2.rb +1 -1
- data/generated/google/apis/cloudbuild_v1alpha2/classes.rb +277 -313
- data/generated/google/apis/cloudbuild_v1alpha2/representations.rb +2 -0
- data/generated/google/apis/cloudbuild_v1alpha2/service.rb +22 -28
- data/generated/google/apis/clouddebugger_v2.rb +1 -1
- data/generated/google/apis/clouddebugger_v2/classes.rb +185 -252
- data/generated/google/apis/clouddebugger_v2/service.rb +53 -59
- data/generated/google/apis/clouderrorreporting_v1beta1.rb +1 -1
- data/generated/google/apis/clouderrorreporting_v1beta1/classes.rb +127 -156
- data/generated/google/apis/clouderrorreporting_v1beta1/service.rb +53 -69
- data/generated/google/apis/cloudfunctions_v1.rb +1 -1
- data/generated/google/apis/cloudfunctions_v1/classes.rb +335 -494
- data/generated/google/apis/cloudfunctions_v1/representations.rb +1 -0
- data/generated/google/apis/cloudfunctions_v1/service.rb +79 -93
- data/generated/google/apis/cloudidentity_v1.rb +4 -1
- data/generated/google/apis/cloudidentity_v1/classes.rb +943 -75
- data/generated/google/apis/cloudidentity_v1/representations.rb +371 -0
- data/generated/google/apis/cloudidentity_v1/service.rb +841 -62
- data/generated/google/apis/cloudidentity_v1beta1.rb +4 -1
- data/generated/google/apis/cloudidentity_v1beta1/classes.rb +1233 -307
- data/generated/google/apis/cloudidentity_v1beta1/representations.rb +424 -21
- data/generated/google/apis/cloudidentity_v1beta1/service.rb +906 -96
- data/generated/google/apis/cloudiot_v1.rb +1 -1
- data/generated/google/apis/cloudiot_v1/classes.rb +270 -373
- data/generated/google/apis/cloudiot_v1/representations.rb +1 -0
- data/generated/google/apis/cloudiot_v1/service.rb +147 -154
- data/generated/google/apis/cloudkms_v1.rb +1 -1
- data/generated/google/apis/cloudkms_v1/classes.rb +509 -692
- data/generated/google/apis/cloudkms_v1/representations.rb +18 -0
- data/generated/google/apis/cloudkms_v1/service.rb +170 -216
- data/generated/google/apis/cloudprofiler_v2.rb +1 -1
- data/generated/google/apis/cloudprofiler_v2/classes.rb +28 -33
- data/generated/google/apis/cloudprofiler_v2/service.rb +17 -19
- data/generated/google/apis/cloudresourcemanager_v1.rb +1 -1
- data/generated/google/apis/cloudresourcemanager_v1/classes.rb +14 -7
- data/generated/google/apis/cloudresourcemanager_v1/representations.rb +1 -0
- data/generated/google/apis/cloudresourcemanager_v1/service.rb +62 -60
- data/generated/google/apis/cloudresourcemanager_v1beta1.rb +1 -1
- data/generated/google/apis/cloudresourcemanager_v1beta1/classes.rb +11 -4
- data/generated/google/apis/cloudresourcemanager_v1beta1/representations.rb +1 -0
- data/generated/google/apis/cloudresourcemanager_v1beta1/service.rb +26 -25
- data/generated/google/apis/cloudresourcemanager_v2.rb +1 -1
- data/generated/google/apis/cloudresourcemanager_v2/classes.rb +7 -0
- data/generated/google/apis/cloudresourcemanager_v2/representations.rb +1 -0
- data/generated/google/apis/cloudresourcemanager_v2beta1.rb +1 -1
- data/generated/google/apis/cloudresourcemanager_v2beta1/classes.rb +7 -0
- data/generated/google/apis/cloudresourcemanager_v2beta1/representations.rb +1 -0
- data/generated/google/apis/cloudscheduler_v1.rb +1 -1
- data/generated/google/apis/cloudscheduler_v1/classes.rb +272 -383
- data/generated/google/apis/cloudscheduler_v1/service.rb +45 -62
- data/generated/google/apis/cloudscheduler_v1beta1.rb +1 -1
- data/generated/google/apis/cloudscheduler_v1beta1/classes.rb +273 -384
- data/generated/google/apis/cloudscheduler_v1beta1/service.rb +45 -62
- data/generated/google/apis/cloudsearch_v1.rb +2 -2
- data/generated/google/apis/cloudsearch_v1/classes.rb +650 -781
- data/generated/google/apis/cloudsearch_v1/representations.rb +15 -0
- data/generated/google/apis/cloudsearch_v1/service.rb +286 -326
- data/generated/google/apis/cloudshell_v1.rb +1 -1
- data/generated/google/apis/cloudshell_v1/classes.rb +36 -227
- data/generated/google/apis/cloudshell_v1/representations.rb +0 -67
- data/generated/google/apis/cloudshell_v1/service.rb +21 -25
- data/generated/google/apis/cloudshell_v1alpha1.rb +1 -1
- data/generated/google/apis/cloudshell_v1alpha1/classes.rb +69 -78
- data/generated/google/apis/cloudshell_v1alpha1/service.rb +20 -24
- data/generated/google/apis/cloudtasks_v2.rb +1 -1
- data/generated/google/apis/cloudtasks_v2/classes.rb +612 -933
- data/generated/google/apis/cloudtasks_v2/representations.rb +1 -0
- data/generated/google/apis/cloudtasks_v2/service.rb +146 -217
- data/generated/google/apis/cloudtasks_v2beta2.rb +1 -1
- data/generated/google/apis/cloudtasks_v2beta2/classes.rb +608 -964
- data/generated/google/apis/cloudtasks_v2beta2/representations.rb +1 -0
- data/generated/google/apis/cloudtasks_v2beta2/service.rb +178 -270
- data/generated/google/apis/cloudtasks_v2beta3.rb +1 -1
- data/generated/google/apis/cloudtasks_v2beta3/classes.rb +616 -938
- data/generated/google/apis/cloudtasks_v2beta3/representations.rb +1 -0
- data/generated/google/apis/cloudtasks_v2beta3/service.rb +146 -217
- data/generated/google/apis/cloudtrace_v1.rb +1 -1
- data/generated/google/apis/cloudtrace_v1/classes.rb +39 -61
- data/generated/google/apis/cloudtrace_v1/service.rb +37 -51
- data/generated/google/apis/cloudtrace_v2.rb +1 -1
- data/generated/google/apis/cloudtrace_v2/classes.rb +92 -107
- data/generated/google/apis/cloudtrace_v2/service.rb +8 -11
- data/generated/google/apis/cloudtrace_v2beta1.rb +1 -1
- data/generated/google/apis/cloudtrace_v2beta1/classes.rb +23 -33
- data/generated/google/apis/cloudtrace_v2beta1/service.rb +30 -37
- data/generated/google/apis/composer_v1.rb +1 -1
- data/generated/google/apis/composer_v1/classes.rb +190 -242
- data/generated/google/apis/composer_v1/service.rb +79 -150
- data/generated/google/apis/composer_v1beta1.rb +1 -1
- data/generated/google/apis/composer_v1beta1/classes.rb +203 -262
- data/generated/google/apis/composer_v1beta1/service.rb +92 -179
- data/generated/google/apis/compute_alpha.rb +1 -1
- data/generated/google/apis/compute_alpha/classes.rb +681 -127
- data/generated/google/apis/compute_alpha/representations.rb +110 -6
- data/generated/google/apis/compute_alpha/service.rb +695 -692
- data/generated/google/apis/compute_beta.rb +1 -1
- data/generated/google/apis/compute_beta/classes.rb +570 -70
- data/generated/google/apis/compute_beta/representations.rb +112 -1
- data/generated/google/apis/compute_beta/service.rb +608 -605
- data/generated/google/apis/compute_v1.rb +1 -1
- data/generated/google/apis/compute_v1/classes.rb +977 -85
- data/generated/google/apis/compute_v1/representations.rb +372 -0
- data/generated/google/apis/compute_v1/service.rb +747 -15
- data/generated/google/apis/container_v1.rb +1 -1
- data/generated/google/apis/container_v1/classes.rb +970 -965
- data/generated/google/apis/container_v1/representations.rb +60 -0
- data/generated/google/apis/container_v1/service.rb +435 -502
- data/generated/google/apis/container_v1beta1.rb +1 -1
- data/generated/google/apis/container_v1beta1/classes.rb +1094 -1044
- data/generated/google/apis/container_v1beta1/representations.rb +91 -0
- data/generated/google/apis/container_v1beta1/service.rb +403 -466
- data/generated/google/apis/containeranalysis_v1alpha1.rb +1 -1
- data/generated/google/apis/containeranalysis_v1alpha1/classes.rb +463 -596
- data/generated/google/apis/containeranalysis_v1alpha1/representations.rb +1 -0
- data/generated/google/apis/containeranalysis_v1alpha1/service.rb +149 -169
- data/generated/google/apis/containeranalysis_v1beta1.rb +1 -1
- data/generated/google/apis/containeranalysis_v1beta1/classes.rb +461 -613
- data/generated/google/apis/containeranalysis_v1beta1/representations.rb +1 -0
- data/generated/google/apis/containeranalysis_v1beta1/service.rb +75 -90
- data/generated/google/apis/content_v2.rb +1 -1
- data/generated/google/apis/content_v2/classes.rb +5 -2
- data/generated/google/apis/content_v2_1.rb +1 -1
- data/generated/google/apis/content_v2_1/classes.rb +107 -5
- data/generated/google/apis/content_v2_1/representations.rb +35 -0
- data/generated/google/apis/content_v2_1/service.rb +54 -3
- data/generated/google/apis/customsearch_v1.rb +1 -1
- data/generated/google/apis/customsearch_v1/service.rb +2 -2
- data/generated/google/apis/datacatalog_v1beta1.rb +1 -1
- data/generated/google/apis/datacatalog_v1beta1/classes.rb +389 -573
- data/generated/google/apis/datacatalog_v1beta1/representations.rb +1 -0
- data/generated/google/apis/datacatalog_v1beta1/service.rb +319 -440
- data/generated/google/apis/dataflow_v1b3.rb +1 -1
- data/generated/google/apis/dataflow_v1b3/classes.rb +1162 -973
- data/generated/google/apis/dataflow_v1b3/representations.rb +145 -0
- data/generated/google/apis/dataflow_v1b3/service.rb +308 -257
- data/generated/google/apis/datafusion_v1.rb +5 -8
- data/generated/google/apis/datafusion_v1/classes.rb +283 -397
- data/generated/google/apis/datafusion_v1/representations.rb +5 -0
- data/generated/google/apis/datafusion_v1/service.rb +76 -89
- data/generated/google/apis/datafusion_v1beta1.rb +5 -8
- data/generated/google/apis/datafusion_v1beta1/classes.rb +283 -397
- data/generated/google/apis/datafusion_v1beta1/representations.rb +5 -0
- data/generated/google/apis/datafusion_v1beta1/service.rb +81 -95
- data/generated/google/apis/dataproc_v1.rb +1 -1
- data/generated/google/apis/dataproc_v1/classes.rb +60 -14
- data/generated/google/apis/dataproc_v1/representations.rb +18 -0
- data/generated/google/apis/dataproc_v1beta2.rb +1 -1
- data/generated/google/apis/dataproc_v1beta2/classes.rb +80 -10
- data/generated/google/apis/dataproc_v1beta2/representations.rb +33 -0
- data/generated/google/apis/datastore_v1.rb +1 -1
- data/generated/google/apis/datastore_v1/classes.rb +330 -472
- data/generated/google/apis/datastore_v1/service.rb +52 -63
- data/generated/google/apis/datastore_v1beta1.rb +1 -1
- data/generated/google/apis/datastore_v1beta1/classes.rb +150 -217
- data/generated/google/apis/datastore_v1beta1/service.rb +11 -12
- data/generated/google/apis/datastore_v1beta3.rb +1 -1
- data/generated/google/apis/datastore_v1beta3/classes.rb +255 -371
- data/generated/google/apis/datastore_v1beta3/service.rb +1 -2
- data/generated/google/apis/dfareporting_v3_3.rb +2 -2
- data/generated/google/apis/dfareporting_v3_3/classes.rb +162 -339
- data/generated/google/apis/dfareporting_v3_3/service.rb +646 -1262
- data/generated/google/apis/dfareporting_v3_4.rb +2 -2
- data/generated/google/apis/dfareporting_v3_4/classes.rb +184 -350
- data/generated/google/apis/dfareporting_v3_4/representations.rb +1 -0
- data/generated/google/apis/dfareporting_v3_4/service.rb +681 -1261
- data/generated/google/apis/dialogflow_v2.rb +1 -1
- data/generated/google/apis/dialogflow_v2/classes.rb +199 -70
- data/generated/google/apis/dialogflow_v2/representations.rb +104 -15
- data/generated/google/apis/dialogflow_v2beta1.rb +1 -1
- data/generated/google/apis/dialogflow_v2beta1/classes.rb +210 -78
- data/generated/google/apis/dialogflow_v2beta1/representations.rb +104 -15
- data/generated/google/apis/dialogflow_v2beta1/service.rb +500 -325
- data/generated/google/apis/{securitycenter_v1p1alpha1.rb → dialogflow_v3beta1.rb} +13 -10
- data/generated/google/apis/dialogflow_v3beta1/classes.rb +8352 -0
- data/generated/google/apis/dialogflow_v3beta1/representations.rb +3544 -0
- data/generated/google/apis/dialogflow_v3beta1/service.rb +2812 -0
- data/generated/google/apis/digitalassetlinks_v1.rb +1 -1
- data/generated/google/apis/digitalassetlinks_v1/classes.rb +66 -92
- data/generated/google/apis/digitalassetlinks_v1/service.rb +131 -188
- data/generated/google/apis/displayvideo_v1.rb +1 -1
- data/generated/google/apis/displayvideo_v1/classes.rb +63 -8
- data/generated/google/apis/displayvideo_v1/representations.rb +6 -0
- data/generated/google/apis/displayvideo_v1/service.rb +47 -35
- data/generated/google/apis/displayvideo_v1beta.rb +38 -0
- data/generated/google/apis/displayvideo_v1beta/classes.rb +146 -0
- data/generated/google/apis/displayvideo_v1beta/representations.rb +72 -0
- data/generated/google/apis/displayvideo_v1beta/service.rb +161 -0
- data/generated/google/apis/displayvideo_v1beta2.rb +38 -0
- data/generated/google/apis/displayvideo_v1beta2/classes.rb +146 -0
- data/generated/google/apis/displayvideo_v1beta2/representations.rb +72 -0
- data/generated/google/apis/displayvideo_v1beta2/service.rb +130 -0
- data/generated/google/apis/displayvideo_v1dev.rb +38 -0
- data/generated/google/apis/displayvideo_v1dev/classes.rb +146 -0
- data/generated/google/apis/displayvideo_v1dev/representations.rb +72 -0
- data/generated/google/apis/displayvideo_v1dev/service.rb +130 -0
- data/generated/google/apis/dlp_v2.rb +1 -1
- data/generated/google/apis/dlp_v2/classes.rb +1102 -1302
- data/generated/google/apis/dlp_v2/representations.rb +16 -0
- data/generated/google/apis/dlp_v2/service.rb +962 -905
- data/generated/google/apis/dns_v1.rb +1 -1
- data/generated/google/apis/dns_v1/classes.rb +175 -198
- data/generated/google/apis/dns_v1/service.rb +82 -97
- data/generated/google/apis/dns_v1beta2.rb +1 -1
- data/generated/google/apis/dns_v1beta2/classes.rb +180 -205
- data/generated/google/apis/dns_v1beta2/service.rb +82 -97
- data/generated/google/apis/docs_v1.rb +1 -1
- data/generated/google/apis/docs_v1/classes.rb +894 -1229
- data/generated/google/apis/docs_v1/service.rb +17 -22
- data/generated/google/apis/documentai_v1beta2.rb +1 -1
- data/generated/google/apis/documentai_v1beta2/classes.rb +2253 -824
- data/generated/google/apis/documentai_v1beta2/representations.rb +701 -0
- data/generated/google/apis/documentai_v1beta2/service.rb +22 -24
- data/generated/google/apis/doubleclickbidmanager_v1.rb +3 -2
- data/generated/google/apis/doubleclickbidmanager_v1/classes.rb +7 -14
- data/generated/google/apis/doubleclickbidmanager_v1/service.rb +33 -64
- data/generated/google/apis/doubleclickbidmanager_v1_1.rb +3 -2
- data/generated/google/apis/doubleclickbidmanager_v1_1/classes.rb +12 -20
- data/generated/google/apis/doubleclickbidmanager_v1_1/service.rb +33 -64
- data/generated/google/apis/doubleclicksearch_v2.rb +1 -1
- data/generated/google/apis/doubleclicksearch_v2/service.rb +2 -2
- data/generated/google/apis/drive_v2.rb +1 -1
- data/generated/google/apis/drive_v2/classes.rb +14 -6
- data/generated/google/apis/drive_v2/representations.rb +1 -0
- data/generated/google/apis/drive_v2/service.rb +79 -15
- data/generated/google/apis/drive_v3.rb +1 -1
- data/generated/google/apis/drive_v3/classes.rb +14 -6
- data/generated/google/apis/drive_v3/representations.rb +1 -0
- data/generated/google/apis/drive_v3/service.rb +59 -11
- data/generated/google/apis/file_v1.rb +1 -1
- data/generated/google/apis/file_v1/classes.rb +154 -173
- data/generated/google/apis/file_v1/service.rb +43 -52
- data/generated/google/apis/file_v1beta1.rb +1 -1
- data/generated/google/apis/file_v1beta1/classes.rb +334 -193
- data/generated/google/apis/file_v1beta1/representations.rb +55 -0
- data/generated/google/apis/file_v1beta1/service.rb +267 -55
- data/generated/google/apis/firebase_v1beta1.rb +1 -1
- data/generated/google/apis/firebase_v1beta1/classes.rb +33 -51
- data/generated/google/apis/firebase_v1beta1/representations.rb +2 -16
- data/generated/google/apis/firebase_v1beta1/service.rb +8 -1
- data/generated/google/apis/firebasedynamiclinks_v1.rb +1 -1
- data/generated/google/apis/firebasehosting_v1beta1.rb +1 -1
- data/generated/google/apis/firebasehosting_v1beta1/classes.rb +186 -0
- data/generated/google/apis/firebasehosting_v1beta1/representations.rb +83 -0
- data/generated/google/apis/firebasehosting_v1beta1/service.rb +418 -4
- data/generated/google/apis/firebaseml_v1beta2.rb +1 -1
- data/generated/google/apis/firebaseml_v1beta2/classes.rb +8 -8
- data/generated/google/apis/firebaseml_v1beta2/representations.rb +1 -1
- data/generated/google/apis/firebaserules_v1.rb +1 -1
- data/generated/google/apis/firebaserules_v1/classes.rb +102 -137
- data/generated/google/apis/firebaserules_v1/service.rb +87 -110
- data/generated/google/apis/firestore_v1.rb +1 -1
- data/generated/google/apis/firestore_v1/classes.rb +402 -498
- data/generated/google/apis/firestore_v1/service.rb +165 -201
- data/generated/google/apis/firestore_v1beta1.rb +1 -1
- data/generated/google/apis/firestore_v1beta1/classes.rb +334 -409
- data/generated/google/apis/firestore_v1beta1/service.rb +106 -122
- data/generated/google/apis/firestore_v1beta2.rb +1 -1
- data/generated/google/apis/firestore_v1beta2/classes.rb +135 -165
- data/generated/google/apis/firestore_v1beta2/service.rb +65 -86
- data/generated/google/apis/fitness_v1.rb +85 -0
- data/generated/google/apis/fitness_v1/classes.rb +982 -0
- data/generated/google/apis/fitness_v1/representations.rb +398 -0
- data/generated/google/apis/fitness_v1/service.rb +626 -0
- data/generated/google/apis/games_configuration_v1configuration.rb +1 -1
- data/generated/google/apis/games_configuration_v1configuration/classes.rb +2 -3
- data/generated/google/apis/games_configuration_v1configuration/service.rb +6 -6
- data/generated/google/apis/games_management_v1management.rb +2 -3
- data/generated/google/apis/games_management_v1management/classes.rb +14 -20
- data/generated/google/apis/games_management_v1management/service.rb +35 -36
- data/generated/google/apis/games_v1.rb +2 -3
- data/generated/google/apis/games_v1/classes.rb +76 -83
- data/generated/google/apis/games_v1/representations.rb +2 -0
- data/generated/google/apis/games_v1/service.rb +84 -90
- data/generated/google/apis/gameservices_v1.rb +1 -1
- data/generated/google/apis/gameservices_v1/classes.rb +7 -0
- data/generated/google/apis/gameservices_v1/representations.rb +1 -0
- data/generated/google/apis/gameservices_v1beta.rb +1 -1
- data/generated/google/apis/gameservices_v1beta/classes.rb +7 -0
- data/generated/google/apis/gameservices_v1beta/representations.rb +1 -0
- data/generated/google/apis/genomics_v1.rb +1 -1
- data/generated/google/apis/genomics_v1/classes.rb +70 -76
- data/generated/google/apis/genomics_v1/service.rb +28 -43
- data/generated/google/apis/genomics_v1alpha2.rb +1 -1
- data/generated/google/apis/genomics_v1alpha2/classes.rb +223 -290
- data/generated/google/apis/genomics_v1alpha2/service.rb +54 -76
- data/generated/google/apis/genomics_v2alpha1.rb +1 -1
- data/generated/google/apis/genomics_v2alpha1/classes.rb +252 -275
- data/generated/google/apis/genomics_v2alpha1/representations.rb +1 -0
- data/generated/google/apis/genomics_v2alpha1/service.rb +47 -66
- data/generated/google/apis/gmail_v1.rb +1 -1
- data/generated/google/apis/gmail_v1/classes.rb +37 -43
- data/generated/google/apis/gmail_v1/service.rb +5 -4
- data/generated/google/apis/gmailpostmastertools_v1beta1.rb +2 -2
- data/generated/google/apis/gmailpostmastertools_v1beta1/service.rb +1 -1
- data/generated/google/apis/groupsmigration_v1.rb +35 -0
- data/generated/google/apis/groupsmigration_v1/classes.rb +51 -0
- data/generated/google/apis/groupsmigration_v1/representations.rb +40 -0
- data/generated/google/apis/groupsmigration_v1/service.rb +100 -0
- data/generated/google/apis/healthcare_v1.rb +1 -1
- data/generated/google/apis/healthcare_v1/classes.rb +637 -826
- data/generated/google/apis/healthcare_v1/representations.rb +32 -0
- data/generated/google/apis/healthcare_v1/service.rb +840 -854
- data/generated/google/apis/healthcare_v1beta1.rb +1 -1
- data/generated/google/apis/healthcare_v1beta1/classes.rb +1833 -1102
- data/generated/google/apis/healthcare_v1beta1/representations.rb +474 -0
- data/generated/google/apis/healthcare_v1beta1/service.rb +2476 -1281
- data/generated/google/apis/homegraph_v1.rb +4 -1
- data/generated/google/apis/homegraph_v1/classes.rb +76 -164
- data/generated/google/apis/homegraph_v1/service.rb +23 -35
- data/generated/google/apis/iam_v1.rb +5 -2
- data/generated/google/apis/iam_v1/classes.rb +395 -592
- data/generated/google/apis/iam_v1/representations.rb +1 -0
- data/generated/google/apis/iam_v1/service.rb +431 -556
- data/generated/google/apis/iamcredentials_v1.rb +4 -2
- data/generated/google/apis/iamcredentials_v1/classes.rb +75 -85
- data/generated/google/apis/iamcredentials_v1/service.rb +15 -13
- data/generated/google/apis/iap_v1.rb +1 -1
- data/generated/google/apis/iap_v1/classes.rb +253 -355
- data/generated/google/apis/iap_v1/representations.rb +1 -0
- data/generated/google/apis/iap_v1/service.rb +61 -71
- data/generated/google/apis/iap_v1beta1.rb +1 -1
- data/generated/google/apis/iap_v1beta1/classes.rb +164 -254
- data/generated/google/apis/iap_v1beta1/representations.rb +1 -0
- data/generated/google/apis/iap_v1beta1/service.rb +17 -19
- data/generated/google/apis/indexing_v3.rb +1 -1
- data/generated/google/apis/indexing_v3/classes.rb +11 -11
- data/generated/google/apis/jobs_v2.rb +1 -1
- data/generated/google/apis/jobs_v2/classes.rb +786 -1086
- data/generated/google/apis/jobs_v2/service.rb +85 -126
- data/generated/google/apis/jobs_v3.rb +1 -1
- data/generated/google/apis/jobs_v3/classes.rb +637 -856
- data/generated/google/apis/jobs_v3/service.rb +101 -139
- data/generated/google/apis/jobs_v3p1beta1.rb +1 -1
- data/generated/google/apis/jobs_v3p1beta1/classes.rb +762 -1023
- data/generated/google/apis/jobs_v3p1beta1/service.rb +103 -142
- data/generated/google/apis/kgsearch_v1.rb +1 -1
- data/generated/google/apis/kgsearch_v1/classes.rb +4 -4
- data/generated/google/apis/kgsearch_v1/service.rb +11 -11
- data/generated/google/apis/licensing_v1.rb +4 -3
- data/generated/google/apis/licensing_v1/classes.rb +1 -1
- data/generated/google/apis/licensing_v1/service.rb +55 -85
- data/generated/google/apis/lifesciences_v2beta.rb +1 -1
- data/generated/google/apis/lifesciences_v2beta/classes.rb +262 -290
- data/generated/google/apis/lifesciences_v2beta/service.rb +30 -42
- data/generated/google/apis/localservices_v1.rb +31 -0
- data/generated/google/apis/localservices_v1/classes.rb +419 -0
- data/generated/google/apis/localservices_v1/representations.rb +172 -0
- data/generated/google/apis/localservices_v1/service.rb +199 -0
- data/generated/google/apis/logging_v2.rb +1 -1
- data/generated/google/apis/logging_v2/classes.rb +230 -227
- data/generated/google/apis/logging_v2/representations.rb +47 -0
- data/generated/google/apis/logging_v2/service.rb +2056 -673
- data/generated/google/apis/managedidentities_v1alpha1.rb +1 -1
- data/generated/google/apis/managedidentities_v1alpha1/classes.rb +8 -0
- data/generated/google/apis/managedidentities_v1alpha1/representations.rb +1 -0
- data/generated/google/apis/managedidentities_v1beta1.rb +1 -1
- data/generated/google/apis/managedidentities_v1beta1/classes.rb +8 -0
- data/generated/google/apis/managedidentities_v1beta1/representations.rb +1 -0
- data/generated/google/apis/manufacturers_v1.rb +1 -1
- data/generated/google/apis/manufacturers_v1/classes.rb +99 -109
- data/generated/google/apis/manufacturers_v1/service.rb +44 -55
- data/generated/google/apis/memcache_v1beta2.rb +1 -1
- data/generated/google/apis/memcache_v1beta2/classes.rb +170 -249
- data/generated/google/apis/memcache_v1beta2/representations.rb +0 -19
- data/generated/google/apis/memcache_v1beta2/service.rb +58 -71
- data/generated/google/apis/ml_v1.rb +1 -1
- data/generated/google/apis/ml_v1/classes.rb +956 -1144
- data/generated/google/apis/ml_v1/representations.rb +65 -0
- data/generated/google/apis/ml_v1/service.rb +194 -253
- data/generated/google/apis/monitoring_v1.rb +1 -1
- data/generated/google/apis/monitoring_v1/classes.rb +107 -26
- data/generated/google/apis/monitoring_v1/representations.rb +35 -0
- data/generated/google/apis/monitoring_v1/service.rb +10 -11
- data/generated/google/apis/monitoring_v3.rb +1 -1
- data/generated/google/apis/monitoring_v3/classes.rb +232 -328
- data/generated/google/apis/monitoring_v3/service.rb +121 -140
- data/generated/google/apis/networkmanagement_v1.rb +1 -1
- data/generated/google/apis/networkmanagement_v1/classes.rb +273 -429
- data/generated/google/apis/networkmanagement_v1/service.rb +97 -120
- data/generated/google/apis/networkmanagement_v1beta1.rb +1 -1
- data/generated/google/apis/networkmanagement_v1beta1/classes.rb +456 -429
- data/generated/google/apis/networkmanagement_v1beta1/representations.rb +63 -0
- data/generated/google/apis/networkmanagement_v1beta1/service.rb +97 -120
- data/generated/google/apis/osconfig_v1.rb +1 -1
- data/generated/google/apis/osconfig_v1/classes.rb +154 -902
- data/generated/google/apis/osconfig_v1/representations.rb +0 -337
- data/generated/google/apis/osconfig_v1/service.rb +22 -27
- data/generated/google/apis/osconfig_v1beta.rb +1 -1
- data/generated/google/apis/osconfig_v1beta/classes.rb +327 -411
- data/generated/google/apis/osconfig_v1beta/service.rb +39 -52
- data/generated/google/apis/oslogin_v1.rb +1 -1
- data/generated/google/apis/oslogin_v1/classes.rb +14 -12
- data/generated/google/apis/oslogin_v1/representations.rb +1 -0
- data/generated/google/apis/oslogin_v1/service.rb +12 -16
- data/generated/google/apis/oslogin_v1alpha.rb +1 -1
- data/generated/google/apis/oslogin_v1alpha/classes.rb +16 -14
- data/generated/google/apis/oslogin_v1alpha/representations.rb +1 -0
- data/generated/google/apis/oslogin_v1alpha/service.rb +17 -17
- data/generated/google/apis/oslogin_v1beta.rb +1 -1
- data/generated/google/apis/oslogin_v1beta/classes.rb +14 -12
- data/generated/google/apis/oslogin_v1beta/representations.rb +1 -0
- data/generated/google/apis/oslogin_v1beta/service.rb +12 -16
- data/generated/google/apis/pagespeedonline_v5.rb +2 -2
- data/generated/google/apis/pagespeedonline_v5/classes.rb +18 -24
- data/generated/google/apis/pagespeedonline_v5/service.rb +3 -4
- data/generated/google/apis/people_v1.rb +1 -1
- data/generated/google/apis/people_v1/classes.rb +121 -12
- data/generated/google/apis/people_v1/representations.rb +41 -0
- data/generated/google/apis/people_v1/service.rb +47 -45
- data/generated/google/apis/playablelocations_v3.rb +1 -1
- data/generated/google/apis/playablelocations_v3/classes.rb +108 -155
- data/generated/google/apis/playablelocations_v3/service.rb +10 -10
- data/generated/google/apis/playcustomapp_v1.rb +1 -1
- data/generated/google/apis/playcustomapp_v1/service.rb +2 -2
- data/generated/google/apis/prod_tt_sasportal_v1alpha1.rb +1 -1
- data/generated/google/apis/prod_tt_sasportal_v1alpha1/classes.rb +26 -0
- data/generated/google/apis/prod_tt_sasportal_v1alpha1/representations.rb +14 -0
- data/generated/google/apis/prod_tt_sasportal_v1alpha1/service.rb +479 -0
- data/generated/google/apis/pubsub_v1.rb +1 -1
- data/generated/google/apis/pubsub_v1/classes.rb +399 -518
- data/generated/google/apis/pubsub_v1/representations.rb +2 -0
- data/generated/google/apis/pubsub_v1/service.rb +220 -246
- data/generated/google/apis/pubsub_v1beta1a.rb +1 -1
- data/generated/google/apis/pubsub_v1beta1a/classes.rb +71 -86
- data/generated/google/apis/pubsub_v1beta1a/service.rb +31 -38
- data/generated/google/apis/pubsub_v1beta2.rb +1 -1
- data/generated/google/apis/pubsub_v1beta2/classes.rb +251 -354
- data/generated/google/apis/pubsub_v1beta2/representations.rb +1 -0
- data/generated/google/apis/pubsub_v1beta2/service.rb +96 -108
- data/generated/google/apis/{memcache_v1.rb → pubsublite_v1.rb} +8 -9
- data/generated/google/apis/pubsublite_v1/classes.rb +461 -0
- data/generated/google/apis/pubsublite_v1/representations.rb +261 -0
- data/generated/google/apis/{memcache_v1 → pubsublite_v1}/service.rb +228 -228
- data/generated/google/apis/realtimebidding_v1.rb +1 -1
- data/generated/google/apis/realtimebidding_v1/classes.rb +4 -4
- data/generated/google/apis/realtimebidding_v1/service.rb +4 -1
- data/generated/google/apis/recommendationengine_v1beta1.rb +1 -1
- data/generated/google/apis/recommendationengine_v1beta1/classes.rb +335 -456
- data/generated/google/apis/recommendationengine_v1beta1/representations.rb +0 -16
- data/generated/google/apis/recommendationengine_v1beta1/service.rb +140 -206
- data/generated/google/apis/redis_v1.rb +1 -1
- data/generated/google/apis/redis_v1/classes.rb +91 -513
- data/generated/google/apis/redis_v1/representations.rb +0 -139
- data/generated/google/apis/redis_v1/service.rb +93 -110
- data/generated/google/apis/redis_v1beta1.rb +1 -1
- data/generated/google/apis/redis_v1beta1/classes.rb +95 -517
- data/generated/google/apis/redis_v1beta1/representations.rb +0 -139
- data/generated/google/apis/redis_v1beta1/service.rb +93 -110
- data/generated/google/apis/remotebuildexecution_v1.rb +1 -1
- data/generated/google/apis/remotebuildexecution_v1/classes.rb +951 -1078
- data/generated/google/apis/remotebuildexecution_v1/representations.rb +61 -0
- data/generated/google/apis/remotebuildexecution_v1/service.rb +26 -33
- data/generated/google/apis/remotebuildexecution_v1alpha.rb +1 -1
- data/generated/google/apis/remotebuildexecution_v1alpha/classes.rb +946 -1071
- data/generated/google/apis/remotebuildexecution_v1alpha/representations.rb +61 -0
- data/generated/google/apis/remotebuildexecution_v1alpha/service.rb +103 -65
- data/generated/google/apis/remotebuildexecution_v2.rb +1 -1
- data/generated/google/apis/remotebuildexecution_v2/classes.rb +1099 -1250
- data/generated/google/apis/remotebuildexecution_v2/representations.rb +61 -0
- data/generated/google/apis/remotebuildexecution_v2/service.rb +147 -206
- data/generated/google/apis/reseller_v1.rb +2 -2
- data/generated/google/apis/reseller_v1/classes.rb +151 -219
- data/generated/google/apis/reseller_v1/service.rb +122 -173
- data/generated/google/apis/run_v1.rb +1 -1
- data/generated/google/apis/run_v1/classes.rb +12 -135
- data/generated/google/apis/run_v1/representations.rb +1 -62
- data/generated/google/apis/run_v1/service.rb +0 -342
- data/generated/google/apis/run_v1alpha1.rb +1 -1
- data/generated/google/apis/run_v1alpha1/classes.rb +1 -1
- data/generated/google/apis/run_v1alpha1/representations.rb +1 -1
- data/generated/google/apis/run_v1beta1.rb +1 -1
- data/generated/google/apis/run_v1beta1/classes.rb +3 -2
- data/generated/google/apis/runtimeconfig_v1beta1.rb +1 -1
- data/generated/google/apis/runtimeconfig_v1beta1/classes.rb +302 -412
- data/generated/google/apis/runtimeconfig_v1beta1/representations.rb +1 -0
- data/generated/google/apis/runtimeconfig_v1beta1/service.rb +135 -159
- data/generated/google/apis/safebrowsing_v4.rb +1 -1
- data/generated/google/apis/safebrowsing_v4/classes.rb +55 -64
- data/generated/google/apis/safebrowsing_v4/service.rb +4 -4
- data/generated/google/apis/sasportal_v1alpha1.rb +1 -1
- data/generated/google/apis/sasportal_v1alpha1/classes.rb +26 -0
- data/generated/google/apis/sasportal_v1alpha1/representations.rb +14 -0
- data/generated/google/apis/sasportal_v1alpha1/service.rb +479 -0
- data/generated/google/apis/script_v1.rb +1 -1
- data/generated/google/apis/script_v1/classes.rb +88 -111
- data/generated/google/apis/script_v1/service.rb +63 -69
- data/generated/google/apis/searchconsole_v1.rb +7 -1
- data/generated/google/apis/searchconsole_v1/classes.rb +388 -0
- data/generated/google/apis/searchconsole_v1/representations.rb +162 -0
- data/generated/google/apis/searchconsole_v1/service.rb +287 -0
- data/generated/google/apis/secretmanager_v1.rb +1 -1
- data/generated/google/apis/secretmanager_v1/classes.rb +379 -365
- data/generated/google/apis/secretmanager_v1/representations.rb +92 -0
- data/generated/google/apis/secretmanager_v1/service.rb +66 -82
- data/generated/google/apis/secretmanager_v1beta1.rb +1 -1
- data/generated/google/apis/secretmanager_v1beta1/classes.rb +218 -363
- data/generated/google/apis/secretmanager_v1beta1/representations.rb +1 -0
- data/generated/google/apis/secretmanager_v1beta1/service.rb +66 -82
- data/generated/google/apis/securitycenter_v1.rb +1 -1
- data/generated/google/apis/securitycenter_v1/classes.rb +20 -204
- data/generated/google/apis/securitycenter_v1/representations.rb +1 -72
- data/generated/google/apis/securitycenter_v1beta1.rb +1 -1
- data/generated/google/apis/securitycenter_v1beta1/classes.rb +22 -204
- data/generated/google/apis/securitycenter_v1beta1/representations.rb +1 -72
- data/generated/google/apis/{securitycenter_v1p1beta1.rb → securitycenter_v1beta2.rb} +6 -6
- data/generated/google/apis/{securitycenter_v1p1alpha1 → securitycenter_v1beta2}/classes.rb +275 -291
- data/generated/google/apis/{securitycenter_v1p1alpha1 → securitycenter_v1beta2}/representations.rb +83 -84
- data/generated/google/apis/securitycenter_v1beta2/service.rb +1494 -0
- data/generated/google/apis/serviceconsumermanagement_v1.rb +1 -1
- data/generated/google/apis/serviceconsumermanagement_v1/classes.rb +30 -60
- data/generated/google/apis/serviceconsumermanagement_v1/service.rb +31 -29
- data/generated/google/apis/serviceconsumermanagement_v1beta1.rb +1 -1
- data/generated/google/apis/serviceconsumermanagement_v1beta1/classes.rb +19 -49
- data/generated/google/apis/servicecontrol_v1.rb +1 -1
- data/generated/google/apis/servicecontrol_v1/classes.rb +525 -641
- data/generated/google/apis/servicecontrol_v1/service.rb +36 -46
- data/generated/google/apis/servicecontrol_v2.rb +1 -1
- data/generated/google/apis/servicecontrol_v2/classes.rb +281 -325
- data/generated/google/apis/servicecontrol_v2/service.rb +33 -43
- data/generated/google/apis/servicedirectory_v1beta1.rb +1 -1
- data/generated/google/apis/servicedirectory_v1beta1/classes.rb +221 -333
- data/generated/google/apis/servicedirectory_v1beta1/representations.rb +1 -0
- data/generated/google/apis/servicedirectory_v1beta1/service.rb +94 -129
- data/generated/google/apis/servicemanagement_v1.rb +1 -1
- data/generated/google/apis/servicemanagement_v1/classes.rb +1263 -2135
- data/generated/google/apis/servicemanagement_v1/representations.rb +0 -13
- data/generated/google/apis/servicemanagement_v1/service.rb +141 -228
- data/generated/google/apis/servicenetworking_v1.rb +1 -1
- data/generated/google/apis/servicenetworking_v1/classes.rb +93 -57
- data/generated/google/apis/servicenetworking_v1/representations.rb +52 -1
- data/generated/google/apis/servicenetworking_v1/service.rb +116 -0
- data/generated/google/apis/servicenetworking_v1beta.rb +1 -1
- data/generated/google/apis/servicenetworking_v1beta/classes.rb +74 -48
- data/generated/google/apis/servicenetworking_v1beta/representations.rb +38 -0
- data/generated/google/apis/serviceusage_v1.rb +1 -1
- data/generated/google/apis/serviceusage_v1/classes.rb +52 -48
- data/generated/google/apis/serviceusage_v1/representations.rb +4 -0
- data/generated/google/apis/serviceusage_v1/service.rb +5 -1
- data/generated/google/apis/serviceusage_v1beta1.rb +1 -1
- data/generated/google/apis/serviceusage_v1beta1/classes.rb +87 -49
- data/generated/google/apis/serviceusage_v1beta1/representations.rb +8 -0
- data/generated/google/apis/sheets_v4.rb +1 -1
- data/generated/google/apis/sheets_v4/classes.rb +3933 -5008
- data/generated/google/apis/sheets_v4/representations.rb +625 -0
- data/generated/google/apis/sheets_v4/service.rb +113 -149
- data/generated/google/apis/site_verification_v1.rb +1 -1
- data/generated/google/apis/slides_v1.rb +1 -1
- data/generated/google/apis/slides_v1/classes.rb +841 -1114
- data/generated/google/apis/slides_v1/service.rb +23 -30
- data/generated/google/apis/smartdevicemanagement_v1.rb +35 -0
- data/generated/google/apis/smartdevicemanagement_v1/classes.rb +313 -0
- data/generated/google/apis/{accessapproval_v1beta1 → smartdevicemanagement_v1}/representations.rb +44 -73
- data/generated/google/apis/smartdevicemanagement_v1/service.rb +312 -0
- data/generated/google/apis/sourcerepo_v1.rb +1 -1
- data/generated/google/apis/sourcerepo_v1/classes.rb +250 -400
- data/generated/google/apis/sourcerepo_v1/service.rb +40 -49
- data/generated/google/apis/spanner_v1.rb +1 -1
- data/generated/google/apis/spanner_v1/classes.rb +1553 -2157
- data/generated/google/apis/spanner_v1/representations.rb +1 -0
- data/generated/google/apis/spanner_v1/service.rb +443 -618
- data/generated/google/apis/speech_v1.rb +1 -1
- data/generated/google/apis/speech_v1/classes.rb +174 -220
- data/generated/google/apis/speech_v1/service.rb +27 -32
- data/generated/google/apis/speech_v1p1beta1.rb +1 -1
- data/generated/google/apis/speech_v1p1beta1/classes.rb +253 -306
- data/generated/google/apis/speech_v1p1beta1/service.rb +27 -32
- data/generated/google/apis/speech_v2beta1.rb +1 -1
- data/generated/google/apis/speech_v2beta1/classes.rb +66 -76
- data/generated/google/apis/speech_v2beta1/service.rb +10 -12
- data/generated/google/apis/{sql_v1beta4.rb → sqladmin_v1beta4.rb} +5 -5
- data/generated/google/apis/{sql_v1beta4 → sqladmin_v1beta4}/classes.rb +469 -452
- data/generated/google/apis/{sql_v1beta4 → sqladmin_v1beta4}/representations.rb +122 -87
- data/generated/google/apis/{sql_v1beta4 → sqladmin_v1beta4}/service.rb +295 -300
- data/generated/google/apis/storage_v1.rb +1 -1
- data/generated/google/apis/storage_v1/classes.rb +8 -7
- data/generated/google/apis/storage_v1/representations.rb +2 -2
- data/generated/google/apis/storagetransfer_v1.rb +1 -1
- data/generated/google/apis/storagetransfer_v1/classes.rb +261 -339
- data/generated/google/apis/storagetransfer_v1/service.rb +43 -64
- data/generated/google/apis/streetviewpublish_v1.rb +1 -1
- data/generated/google/apis/streetviewpublish_v1/classes.rb +106 -148
- data/generated/google/apis/streetviewpublish_v1/service.rb +94 -177
- data/generated/google/apis/sts_v1.rb +32 -0
- data/generated/google/apis/sts_v1/classes.rb +120 -0
- data/generated/google/apis/sts_v1/representations.rb +59 -0
- data/generated/google/apis/sts_v1/service.rb +90 -0
- data/generated/google/apis/sts_v1beta.rb +32 -0
- data/generated/google/apis/sts_v1beta/classes.rb +194 -0
- data/generated/google/apis/{oauth2_v2 → sts_v1beta}/representations.rb +14 -21
- data/generated/google/apis/sts_v1beta/service.rb +92 -0
- data/generated/google/apis/tagmanager_v1.rb +1 -1
- data/generated/google/apis/tagmanager_v1/service.rb +2 -2
- data/generated/google/apis/tagmanager_v2.rb +1 -1
- data/generated/google/apis/tagmanager_v2/service.rb +2 -2
- data/generated/google/apis/tasks_v1.rb +1 -1
- data/generated/google/apis/tasks_v1/classes.rb +21 -22
- data/generated/google/apis/tasks_v1/service.rb +19 -19
- data/generated/google/apis/testing_v1.rb +1 -1
- data/generated/google/apis/testing_v1/classes.rb +317 -382
- data/generated/google/apis/testing_v1/representations.rb +2 -0
- data/generated/google/apis/testing_v1/service.rb +22 -28
- data/generated/google/apis/texttospeech_v1.rb +1 -1
- data/generated/google/apis/texttospeech_v1/classes.rb +51 -57
- data/generated/google/apis/texttospeech_v1/service.rb +9 -10
- data/generated/google/apis/texttospeech_v1beta1.rb +1 -1
- data/generated/google/apis/texttospeech_v1beta1/classes.rb +96 -57
- data/generated/google/apis/texttospeech_v1beta1/representations.rb +19 -0
- data/generated/google/apis/texttospeech_v1beta1/service.rb +9 -10
- data/generated/google/apis/toolresults_v1beta3.rb +1 -1
- data/generated/google/apis/toolresults_v1beta3/classes.rb +7 -0
- data/generated/google/apis/toolresults_v1beta3/representations.rb +1 -0
- data/generated/google/apis/tpu_v1.rb +1 -1
- data/generated/google/apis/tpu_v1/classes.rb +54 -0
- data/generated/google/apis/tpu_v1/representations.rb +19 -0
- data/generated/google/apis/tpu_v1alpha1.rb +1 -1
- data/generated/google/apis/tpu_v1alpha1/classes.rb +54 -0
- data/generated/google/apis/tpu_v1alpha1/representations.rb +19 -0
- data/generated/google/apis/trafficdirector_v2.rb +34 -0
- data/generated/google/apis/trafficdirector_v2/classes.rb +1347 -0
- data/generated/google/apis/trafficdirector_v2/representations.rb +620 -0
- data/generated/google/apis/trafficdirector_v2/service.rb +89 -0
- data/generated/google/apis/translate_v3.rb +1 -1
- data/generated/google/apis/translate_v3/classes.rb +148 -175
- data/generated/google/apis/translate_v3/service.rb +122 -151
- data/generated/google/apis/translate_v3beta1.rb +1 -1
- data/generated/google/apis/translate_v3beta1/classes.rb +149 -170
- data/generated/google/apis/translate_v3beta1/service.rb +122 -151
- data/generated/google/apis/vault_v1.rb +1 -1
- data/generated/google/apis/vault_v1/classes.rb +80 -103
- data/generated/google/apis/vault_v1/service.rb +31 -37
- data/generated/google/apis/vectortile_v1.rb +1 -1
- data/generated/google/apis/vectortile_v1/classes.rb +185 -267
- data/generated/google/apis/vectortile_v1/service.rb +75 -88
- data/generated/google/apis/verifiedaccess_v1.rb +1 -1
- data/generated/google/apis/verifiedaccess_v1/classes.rb +20 -27
- data/generated/google/apis/videointelligence_v1.rb +1 -1
- data/generated/google/apis/videointelligence_v1/classes.rb +753 -918
- data/generated/google/apis/videointelligence_v1/service.rb +71 -48
- data/generated/google/apis/videointelligence_v1beta2.rb +1 -1
- data/generated/google/apis/videointelligence_v1beta2/classes.rb +748 -911
- data/generated/google/apis/videointelligence_v1beta2/service.rb +4 -4
- data/generated/google/apis/videointelligence_v1p1beta1.rb +1 -1
- data/generated/google/apis/videointelligence_v1p1beta1/classes.rb +748 -911
- data/generated/google/apis/videointelligence_v1p1beta1/service.rb +4 -4
- data/generated/google/apis/videointelligence_v1p2beta1.rb +1 -1
- data/generated/google/apis/videointelligence_v1p2beta1/classes.rb +748 -911
- data/generated/google/apis/videointelligence_v1p2beta1/service.rb +4 -4
- data/generated/google/apis/videointelligence_v1p3beta1.rb +1 -1
- data/generated/google/apis/videointelligence_v1p3beta1/classes.rb +754 -920
- data/generated/google/apis/videointelligence_v1p3beta1/service.rb +4 -4
- data/generated/google/apis/vision_v1.rb +1 -1
- data/generated/google/apis/vision_v1p1beta1.rb +1 -1
- data/generated/google/apis/vision_v1p2beta1.rb +1 -1
- data/generated/google/apis/webfonts_v1.rb +2 -3
- data/generated/google/apis/webfonts_v1/classes.rb +1 -2
- data/generated/google/apis/webfonts_v1/service.rb +2 -4
- data/generated/google/apis/websecurityscanner_v1.rb +1 -1
- data/generated/google/apis/websecurityscanner_v1alpha.rb +1 -1
- data/generated/google/apis/websecurityscanner_v1beta.rb +1 -1
- data/generated/google/apis/workflowexecutions_v1beta.rb +34 -0
- data/generated/google/apis/workflowexecutions_v1beta/classes.rb +155 -0
- data/generated/google/apis/workflowexecutions_v1beta/representations.rb +88 -0
- data/generated/google/apis/{securitycenter_v1p1alpha1 → workflowexecutions_v1beta}/service.rb +73 -69
- data/generated/google/apis/workflows_v1beta.rb +34 -0
- data/generated/google/apis/workflows_v1beta/classes.rb +406 -0
- data/generated/google/apis/workflows_v1beta/representations.rb +173 -0
- data/generated/google/apis/workflows_v1beta/service.rb +437 -0
- data/generated/google/apis/youtube_partner_v1.rb +1 -1
- data/generated/google/apis/youtube_v3.rb +1 -1
- data/generated/google/apis/youtube_v3/classes.rb +0 -586
- data/generated/google/apis/youtube_v3/representations.rb +0 -269
- data/generated/google/apis/youtube_v3/service.rb +0 -117
- data/google-api-client.gemspec +2 -1
- data/lib/google/apis/version.rb +1 -1
- metadata +106 -40
- data/generated/google/apis/accessapproval_v1beta1/classes.rb +0 -417
- data/generated/google/apis/accessapproval_v1beta1/service.rb +0 -857
- data/generated/google/apis/dns_v2beta1.rb +0 -43
- data/generated/google/apis/dns_v2beta1/classes.rb +0 -1447
- data/generated/google/apis/dns_v2beta1/representations.rb +0 -588
- data/generated/google/apis/dns_v2beta1/service.rb +0 -928
- data/generated/google/apis/memcache_v1/classes.rb +0 -1157
- data/generated/google/apis/oauth2_v2.rb +0 -40
- data/generated/google/apis/oauth2_v2/classes.rb +0 -165
- data/generated/google/apis/oauth2_v2/service.rb +0 -158
- data/generated/google/apis/plus_v1.rb +0 -43
- data/generated/google/apis/plus_v1/classes.rb +0 -2094
- data/generated/google/apis/plus_v1/representations.rb +0 -907
- data/generated/google/apis/plus_v1/service.rb +0 -451
- data/generated/google/apis/securitycenter_v1p1beta1/classes.rb +0 -2059
- data/generated/google/apis/securitycenter_v1p1beta1/representations.rb +0 -789
- data/generated/google/apis/securitycenter_v1p1beta1/service.rb +0 -1243
- data/generated/google/apis/storage_v1beta2.rb +0 -40
- data/generated/google/apis/storage_v1beta2/classes.rb +0 -1047
- data/generated/google/apis/storage_v1beta2/representations.rb +0 -425
- data/generated/google/apis/storage_v1beta2/service.rb +0 -1667
@@ -34,6 +34,12 @@ module Google
|
|
34
34
|
include Google::Apis::Core::JsonObjectSupport
|
35
35
|
end
|
36
36
|
|
37
|
+
class AttestationOccurrence
|
38
|
+
class Representation < Google::Apis::Core::JsonRepresentation; end
|
39
|
+
|
40
|
+
include Google::Apis::Core::JsonObjectSupport
|
41
|
+
end
|
42
|
+
|
37
43
|
class Attestor
|
38
44
|
class Representation < Google::Apis::Core::JsonRepresentation; end
|
39
45
|
|
@@ -70,6 +76,12 @@ module Google
|
|
70
76
|
include Google::Apis::Core::JsonObjectSupport
|
71
77
|
end
|
72
78
|
|
79
|
+
class Jwt
|
80
|
+
class Representation < Google::Apis::Core::JsonRepresentation; end
|
81
|
+
|
82
|
+
include Google::Apis::Core::JsonObjectSupport
|
83
|
+
end
|
84
|
+
|
73
85
|
class ListAttestorsResponse
|
74
86
|
class Representation < Google::Apis::Core::JsonRepresentation; end
|
75
87
|
|
@@ -94,6 +106,12 @@ module Google
|
|
94
106
|
include Google::Apis::Core::JsonObjectSupport
|
95
107
|
end
|
96
108
|
|
109
|
+
class Signature
|
110
|
+
class Representation < Google::Apis::Core::JsonRepresentation; end
|
111
|
+
|
112
|
+
include Google::Apis::Core::JsonObjectSupport
|
113
|
+
end
|
114
|
+
|
97
115
|
class TestIamPermissionsRequest
|
98
116
|
class Representation < Google::Apis::Core::JsonRepresentation; end
|
99
117
|
|
@@ -112,6 +130,18 @@ module Google
|
|
112
130
|
include Google::Apis::Core::JsonObjectSupport
|
113
131
|
end
|
114
132
|
|
133
|
+
class ValidateAttestationOccurrenceRequest
|
134
|
+
class Representation < Google::Apis::Core::JsonRepresentation; end
|
135
|
+
|
136
|
+
include Google::Apis::Core::JsonObjectSupport
|
137
|
+
end
|
138
|
+
|
139
|
+
class ValidateAttestationOccurrenceResponse
|
140
|
+
class Representation < Google::Apis::Core::JsonRepresentation; end
|
141
|
+
|
142
|
+
include Google::Apis::Core::JsonObjectSupport
|
143
|
+
end
|
144
|
+
|
115
145
|
class AdmissionRule
|
116
146
|
# @private
|
117
147
|
class Representation < Google::Apis::Core::JsonRepresentation
|
@@ -128,6 +158,17 @@ module Google
|
|
128
158
|
end
|
129
159
|
end
|
130
160
|
|
161
|
+
class AttestationOccurrence
|
162
|
+
# @private
|
163
|
+
class Representation < Google::Apis::Core::JsonRepresentation
|
164
|
+
collection :jwts, as: 'jwts', class: Google::Apis::BinaryauthorizationV1::Jwt, decorator: Google::Apis::BinaryauthorizationV1::Jwt::Representation
|
165
|
+
|
166
|
+
property :serialized_payload, :base64 => true, as: 'serializedPayload'
|
167
|
+
collection :signatures, as: 'signatures', class: Google::Apis::BinaryauthorizationV1::Signature, decorator: Google::Apis::BinaryauthorizationV1::Signature::Representation
|
168
|
+
|
169
|
+
end
|
170
|
+
end
|
171
|
+
|
131
172
|
class Attestor
|
132
173
|
# @private
|
133
174
|
class Representation < Google::Apis::Core::JsonRepresentation
|
@@ -153,6 +194,7 @@ module Google
|
|
153
194
|
class Binding
|
154
195
|
# @private
|
155
196
|
class Representation < Google::Apis::Core::JsonRepresentation
|
197
|
+
property :binding_id, as: 'bindingId'
|
156
198
|
property :condition, as: 'condition', class: Google::Apis::BinaryauthorizationV1::Expr, decorator: Google::Apis::BinaryauthorizationV1::Expr::Representation
|
157
199
|
|
158
200
|
collection :members, as: 'members'
|
@@ -186,6 +228,13 @@ module Google
|
|
186
228
|
end
|
187
229
|
end
|
188
230
|
|
231
|
+
class Jwt
|
232
|
+
# @private
|
233
|
+
class Representation < Google::Apis::Core::JsonRepresentation
|
234
|
+
property :compact_jwt, as: 'compactJwt'
|
235
|
+
end
|
236
|
+
end
|
237
|
+
|
189
238
|
class ListAttestorsResponse
|
190
239
|
# @private
|
191
240
|
class Representation < Google::Apis::Core::JsonRepresentation
|
@@ -227,6 +276,14 @@ module Google
|
|
227
276
|
end
|
228
277
|
end
|
229
278
|
|
279
|
+
class Signature
|
280
|
+
# @private
|
281
|
+
class Representation < Google::Apis::Core::JsonRepresentation
|
282
|
+
property :public_key_id, as: 'publicKeyId'
|
283
|
+
property :signature, :base64 => true, as: 'signature'
|
284
|
+
end
|
285
|
+
end
|
286
|
+
|
230
287
|
class TestIamPermissionsRequest
|
231
288
|
# @private
|
232
289
|
class Representation < Google::Apis::Core::JsonRepresentation
|
@@ -250,6 +307,24 @@ module Google
|
|
250
307
|
|
251
308
|
end
|
252
309
|
end
|
310
|
+
|
311
|
+
class ValidateAttestationOccurrenceRequest
|
312
|
+
# @private
|
313
|
+
class Representation < Google::Apis::Core::JsonRepresentation
|
314
|
+
property :attestation, as: 'attestation', class: Google::Apis::BinaryauthorizationV1::AttestationOccurrence, decorator: Google::Apis::BinaryauthorizationV1::AttestationOccurrence::Representation
|
315
|
+
|
316
|
+
property :occurrence_note, as: 'occurrenceNote'
|
317
|
+
property :occurrence_resource_uri, as: 'occurrenceResourceUri'
|
318
|
+
end
|
319
|
+
end
|
320
|
+
|
321
|
+
class ValidateAttestationOccurrenceResponse
|
322
|
+
# @private
|
323
|
+
class Representation < Google::Apis::Core::JsonRepresentation
|
324
|
+
property :denial_reason, as: 'denialReason'
|
325
|
+
property :result, as: 'result'
|
326
|
+
end
|
327
|
+
end
|
253
328
|
end
|
254
329
|
end
|
255
330
|
end
|
@@ -48,15 +48,14 @@ module Google
|
|
48
48
|
@batch_path = 'batch'
|
49
49
|
end
|
50
50
|
|
51
|
-
# A policy specifies the attestors that must attest to
|
52
|
-
#
|
53
|
-
#
|
54
|
-
#
|
55
|
-
#
|
56
|
-
# policy if the project does not have one.
|
51
|
+
# A policy specifies the attestors that must attest to a container image, before
|
52
|
+
# the project is allowed to deploy that image. There is at most one policy per
|
53
|
+
# project. All image admission requests are permitted if a project has no policy.
|
54
|
+
# Gets the policy for this project. Returns a default policy if the project
|
55
|
+
# does not have one.
|
57
56
|
# @param [String] name
|
58
|
-
# Required. The resource name of the policy to retrieve,
|
59
|
-
#
|
57
|
+
# Required. The resource name of the policy to retrieve, in the format `projects/
|
58
|
+
# */policy`.
|
60
59
|
# @param [String] fields
|
61
60
|
# Selector specifying which fields to include in a partial response.
|
62
61
|
# @param [String] quota_user
|
@@ -84,14 +83,13 @@ module Google
|
|
84
83
|
execute_or_queue_command(command, &block)
|
85
84
|
end
|
86
85
|
|
87
|
-
# Creates or updates a project's policy, and returns a copy of the
|
88
|
-
#
|
89
|
-
#
|
90
|
-
#
|
91
|
-
# if the request is malformed.
|
86
|
+
# Creates or updates a project's policy, and returns a copy of the new policy. A
|
87
|
+
# policy is always updated as a whole, to avoid race conditions with concurrent
|
88
|
+
# policy enforcement (or management!) requests. Returns NOT_FOUND if the project
|
89
|
+
# does not exist, INVALID_ARGUMENT if the request is malformed.
|
92
90
|
# @param [String] name
|
93
|
-
# Output only. The resource name, in the format `projects/*/policy`. There is
|
94
|
-
#
|
91
|
+
# Output only. The resource name, in the format `projects/*/policy`. There is at
|
92
|
+
# most one policy per project.
|
95
93
|
# @param [Google::Apis::BinaryauthorizationV1::Policy] policy_object
|
96
94
|
# @param [String] fields
|
97
95
|
# Selector specifying which fields to include in a partial response.
|
@@ -122,10 +120,9 @@ module Google
|
|
122
120
|
execute_or_queue_command(command, &block)
|
123
121
|
end
|
124
122
|
|
125
|
-
# Creates an attestor, and returns a copy of the new
|
126
|
-
#
|
127
|
-
#
|
128
|
-
# attestor already exists.
|
123
|
+
# Creates an attestor, and returns a copy of the new attestor. Returns NOT_FOUND
|
124
|
+
# if the project does not exist, INVALID_ARGUMENT if the request is malformed,
|
125
|
+
# ALREADY_EXISTS if the attestor already exists.
|
129
126
|
# @param [String] parent
|
130
127
|
# Required. The parent of this attestor.
|
131
128
|
# @param [Google::Apis::BinaryauthorizationV1::Attestor] attestor_object
|
@@ -161,11 +158,10 @@ module Google
|
|
161
158
|
execute_or_queue_command(command, &block)
|
162
159
|
end
|
163
160
|
|
164
|
-
# Deletes an attestor. Returns NOT_FOUND if the
|
165
|
-
# attestor does not exist.
|
161
|
+
# Deletes an attestor. Returns NOT_FOUND if the attestor does not exist.
|
166
162
|
# @param [String] name
|
167
|
-
# Required. The name of the attestors to delete, in the format
|
168
|
-
#
|
163
|
+
# Required. The name of the attestors to delete, in the format `projects/*/
|
164
|
+
# attestors/*`.
|
169
165
|
# @param [String] fields
|
170
166
|
# Selector specifying which fields to include in a partial response.
|
171
167
|
# @param [String] quota_user
|
@@ -193,11 +189,10 @@ module Google
|
|
193
189
|
execute_or_queue_command(command, &block)
|
194
190
|
end
|
195
191
|
|
196
|
-
# Gets an attestor.
|
197
|
-
# Returns NOT_FOUND if the attestor does not exist.
|
192
|
+
# Gets an attestor. Returns NOT_FOUND if the attestor does not exist.
|
198
193
|
# @param [String] name
|
199
|
-
# Required. The name of the attestor to retrieve, in the format
|
200
|
-
#
|
194
|
+
# Required. The name of the attestor to retrieve, in the format `projects/*/
|
195
|
+
# attestors/*`.
|
201
196
|
# @param [String] fields
|
202
197
|
# Selector specifying which fields to include in a partial response.
|
203
198
|
# @param [String] quota_user
|
@@ -225,22 +220,19 @@ module Google
|
|
225
220
|
execute_or_queue_command(command, &block)
|
226
221
|
end
|
227
222
|
|
228
|
-
# Gets the access control policy for a resource.
|
229
|
-
#
|
230
|
-
# set.
|
223
|
+
# Gets the access control policy for a resource. Returns an empty policy if the
|
224
|
+
# resource exists and does not have a policy set.
|
231
225
|
# @param [String] resource
|
232
|
-
# REQUIRED: The resource for which the policy is being requested.
|
233
|
-
#
|
226
|
+
# REQUIRED: The resource for which the policy is being requested. See the
|
227
|
+
# operation documentation for the appropriate value for this field.
|
234
228
|
# @param [Fixnum] options_requested_policy_version
|
235
|
-
# Optional. The policy format version to be returned.
|
236
|
-
#
|
237
|
-
#
|
238
|
-
#
|
239
|
-
#
|
240
|
-
#
|
241
|
-
#
|
242
|
-
# [IAM
|
243
|
-
# documentation](https://cloud.google.com/iam/help/conditions/resource-policies).
|
229
|
+
# Optional. The policy format version to be returned. Valid values are 0, 1, and
|
230
|
+
# 3. Requests specifying an invalid value will be rejected. Requests for
|
231
|
+
# policies with any conditional bindings must specify version 3. Policies
|
232
|
+
# without any conditional bindings may specify any valid value or leave the
|
233
|
+
# field unset. To learn which resources support conditions in their IAM policies,
|
234
|
+
# see the [IAM documentation](https://cloud.google.com/iam/help/conditions/
|
235
|
+
# resource-policies).
|
244
236
|
# @param [String] fields
|
245
237
|
# Selector specifying which fields to include in a partial response.
|
246
238
|
# @param [String] quota_user
|
@@ -269,18 +261,17 @@ module Google
|
|
269
261
|
execute_or_queue_command(command, &block)
|
270
262
|
end
|
271
263
|
|
272
|
-
# Lists attestors.
|
273
|
-
# Returns INVALID_ARGUMENT if the project does not exist.
|
264
|
+
# Lists attestors. Returns INVALID_ARGUMENT if the project does not exist.
|
274
265
|
# @param [String] parent
|
275
|
-
# Required. The resource name of the project associated with the
|
276
|
-
#
|
266
|
+
# Required. The resource name of the project associated with the attestors, in
|
267
|
+
# the format `projects/*`.
|
277
268
|
# @param [Fixnum] page_size
|
278
269
|
# Requested page size. The server may return fewer results than requested. If
|
279
270
|
# unspecified, the server will pick an appropriate default.
|
280
271
|
# @param [String] page_token
|
281
272
|
# A token identifying a page of results the server should return. Typically,
|
282
|
-
# this is the value of ListAttestorsResponse.next_page_token returned
|
283
|
-
#
|
273
|
+
# this is the value of ListAttestorsResponse.next_page_token returned from the
|
274
|
+
# previous call to the `ListAttestors` method.
|
284
275
|
# @param [String] fields
|
285
276
|
# Selector specifying which fields to include in a partial response.
|
286
277
|
# @param [String] quota_user
|
@@ -311,11 +302,11 @@ module Google
|
|
311
302
|
end
|
312
303
|
|
313
304
|
# Sets the access control policy on the specified resource. Replaces any
|
314
|
-
# existing policy.
|
315
|
-
#
|
305
|
+
# existing policy. Can return `NOT_FOUND`, `INVALID_ARGUMENT`, and `
|
306
|
+
# PERMISSION_DENIED` errors.
|
316
307
|
# @param [String] resource
|
317
|
-
# REQUIRED: The resource for which the policy is being specified.
|
318
|
-
#
|
308
|
+
# REQUIRED: The resource for which the policy is being specified. See the
|
309
|
+
# operation documentation for the appropriate value for this field.
|
319
310
|
# @param [Google::Apis::BinaryauthorizationV1::SetIamPolicyRequest] set_iam_policy_request_object
|
320
311
|
# @param [String] fields
|
321
312
|
# Selector specifying which fields to include in a partial response.
|
@@ -346,15 +337,14 @@ module Google
|
|
346
337
|
execute_or_queue_command(command, &block)
|
347
338
|
end
|
348
339
|
|
349
|
-
# Returns permissions that a caller has on the specified resource.
|
350
|
-
#
|
351
|
-
#
|
352
|
-
#
|
353
|
-
#
|
354
|
-
# may "fail open" without warning.
|
340
|
+
# Returns permissions that a caller has on the specified resource. If the
|
341
|
+
# resource does not exist, this will return an empty set of permissions, not a `
|
342
|
+
# NOT_FOUND` error. Note: This operation is designed to be used for building
|
343
|
+
# permission-aware UIs and command-line tools, not for authorization checking.
|
344
|
+
# This operation may "fail open" without warning.
|
355
345
|
# @param [String] resource
|
356
|
-
# REQUIRED: The resource for which the policy detail is being requested.
|
357
|
-
#
|
346
|
+
# REQUIRED: The resource for which the policy detail is being requested. See the
|
347
|
+
# operation documentation for the appropriate value for this field.
|
358
348
|
# @param [Google::Apis::BinaryauthorizationV1::TestIamPermissionsRequest] test_iam_permissions_request_object
|
359
349
|
# @param [String] fields
|
360
350
|
# Selector specifying which fields to include in a partial response.
|
@@ -385,11 +375,10 @@ module Google
|
|
385
375
|
execute_or_queue_command(command, &block)
|
386
376
|
end
|
387
377
|
|
388
|
-
# Updates an attestor.
|
389
|
-
# Returns NOT_FOUND if the attestor does not exist.
|
378
|
+
# Updates an attestor. Returns NOT_FOUND if the attestor does not exist.
|
390
379
|
# @param [String] name
|
391
|
-
# Required. The resource name, in the format:
|
392
|
-
#
|
380
|
+
# Required. The resource name, in the format: `projects/*/attestors/*`. This
|
381
|
+
# field may not be updated.
|
393
382
|
# @param [Google::Apis::BinaryauthorizationV1::Attestor] attestor_object
|
394
383
|
# @param [String] fields
|
395
384
|
# Selector specifying which fields to include in a partial response.
|
@@ -420,22 +409,54 @@ module Google
|
|
420
409
|
execute_or_queue_command(command, &block)
|
421
410
|
end
|
422
411
|
|
423
|
-
#
|
424
|
-
#
|
425
|
-
#
|
412
|
+
# Returns whether the given Attestation for the given image URI was signed by
|
413
|
+
# the given Attestor
|
414
|
+
# @param [String] attestor
|
415
|
+
# Required. The resource name of the Attestor of the occurrence, in the format `
|
416
|
+
# projects/*/attestors/*`.
|
417
|
+
# @param [Google::Apis::BinaryauthorizationV1::ValidateAttestationOccurrenceRequest] validate_attestation_occurrence_request_object
|
418
|
+
# @param [String] fields
|
419
|
+
# Selector specifying which fields to include in a partial response.
|
420
|
+
# @param [String] quota_user
|
421
|
+
# Available to use for quota purposes for server-side applications. Can be any
|
422
|
+
# arbitrary string assigned to a user, but should not exceed 40 characters.
|
423
|
+
# @param [Google::Apis::RequestOptions] options
|
424
|
+
# Request-specific options
|
425
|
+
#
|
426
|
+
# @yield [result, err] Result & error if block supplied
|
427
|
+
# @yieldparam result [Google::Apis::BinaryauthorizationV1::ValidateAttestationOccurrenceResponse] parsed result object
|
428
|
+
# @yieldparam err [StandardError] error object if request failed
|
429
|
+
#
|
430
|
+
# @return [Google::Apis::BinaryauthorizationV1::ValidateAttestationOccurrenceResponse]
|
431
|
+
#
|
432
|
+
# @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
|
433
|
+
# @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
|
434
|
+
# @raise [Google::Apis::AuthorizationError] Authorization is required
|
435
|
+
def validate_attestor_attestation_occurrence(attestor, validate_attestation_occurrence_request_object = nil, fields: nil, quota_user: nil, options: nil, &block)
|
436
|
+
command = make_simple_command(:post, 'v1/{+attestor}:validateAttestationOccurrence', options)
|
437
|
+
command.request_representation = Google::Apis::BinaryauthorizationV1::ValidateAttestationOccurrenceRequest::Representation
|
438
|
+
command.request_object = validate_attestation_occurrence_request_object
|
439
|
+
command.response_representation = Google::Apis::BinaryauthorizationV1::ValidateAttestationOccurrenceResponse::Representation
|
440
|
+
command.response_class = Google::Apis::BinaryauthorizationV1::ValidateAttestationOccurrenceResponse
|
441
|
+
command.params['attestor'] = attestor unless attestor.nil?
|
442
|
+
command.query['fields'] = fields unless fields.nil?
|
443
|
+
command.query['quotaUser'] = quota_user unless quota_user.nil?
|
444
|
+
execute_or_queue_command(command, &block)
|
445
|
+
end
|
446
|
+
|
447
|
+
# Gets the access control policy for a resource. Returns an empty policy if the
|
448
|
+
# resource exists and does not have a policy set.
|
426
449
|
# @param [String] resource
|
427
|
-
# REQUIRED: The resource for which the policy is being requested.
|
428
|
-
#
|
450
|
+
# REQUIRED: The resource for which the policy is being requested. See the
|
451
|
+
# operation documentation for the appropriate value for this field.
|
429
452
|
# @param [Fixnum] options_requested_policy_version
|
430
|
-
# Optional. The policy format version to be returned.
|
431
|
-
#
|
432
|
-
#
|
433
|
-
#
|
434
|
-
#
|
435
|
-
#
|
436
|
-
#
|
437
|
-
# [IAM
|
438
|
-
# documentation](https://cloud.google.com/iam/help/conditions/resource-policies).
|
453
|
+
# Optional. The policy format version to be returned. Valid values are 0, 1, and
|
454
|
+
# 3. Requests specifying an invalid value will be rejected. Requests for
|
455
|
+
# policies with any conditional bindings must specify version 3. Policies
|
456
|
+
# without any conditional bindings may specify any valid value or leave the
|
457
|
+
# field unset. To learn which resources support conditions in their IAM policies,
|
458
|
+
# see the [IAM documentation](https://cloud.google.com/iam/help/conditions/
|
459
|
+
# resource-policies).
|
439
460
|
# @param [String] fields
|
440
461
|
# Selector specifying which fields to include in a partial response.
|
441
462
|
# @param [String] quota_user
|
@@ -465,11 +486,11 @@ module Google
|
|
465
486
|
end
|
466
487
|
|
467
488
|
# Sets the access control policy on the specified resource. Replaces any
|
468
|
-
# existing policy.
|
469
|
-
#
|
489
|
+
# existing policy. Can return `NOT_FOUND`, `INVALID_ARGUMENT`, and `
|
490
|
+
# PERMISSION_DENIED` errors.
|
470
491
|
# @param [String] resource
|
471
|
-
# REQUIRED: The resource for which the policy is being specified.
|
472
|
-
#
|
492
|
+
# REQUIRED: The resource for which the policy is being specified. See the
|
493
|
+
# operation documentation for the appropriate value for this field.
|
473
494
|
# @param [Google::Apis::BinaryauthorizationV1::SetIamPolicyRequest] set_iam_policy_request_object
|
474
495
|
# @param [String] fields
|
475
496
|
# Selector specifying which fields to include in a partial response.
|
@@ -500,15 +521,14 @@ module Google
|
|
500
521
|
execute_or_queue_command(command, &block)
|
501
522
|
end
|
502
523
|
|
503
|
-
# Returns permissions that a caller has on the specified resource.
|
504
|
-
#
|
505
|
-
#
|
506
|
-
#
|
507
|
-
#
|
508
|
-
# may "fail open" without warning.
|
524
|
+
# Returns permissions that a caller has on the specified resource. If the
|
525
|
+
# resource does not exist, this will return an empty set of permissions, not a `
|
526
|
+
# NOT_FOUND` error. Note: This operation is designed to be used for building
|
527
|
+
# permission-aware UIs and command-line tools, not for authorization checking.
|
528
|
+
# This operation may "fail open" without warning.
|
509
529
|
# @param [String] resource
|
510
|
-
# REQUIRED: The resource for which the policy detail is being requested.
|
511
|
-
#
|
530
|
+
# REQUIRED: The resource for which the policy detail is being requested. See the
|
531
|
+
# operation documentation for the appropriate value for this field.
|
512
532
|
# @param [Google::Apis::BinaryauthorizationV1::TestIamPermissionsRequest] test_iam_permissions_request_object
|
513
533
|
# @param [String] fields
|
514
534
|
# Selector specifying which fields to include in a partial response.
|
@@ -26,7 +26,7 @@ module Google
|
|
26
26
|
# @see https://cloud.google.com/binary-authorization/
|
27
27
|
module BinaryauthorizationV1beta1
|
28
28
|
VERSION = 'V1beta1'
|
29
|
-
REVISION = '
|
29
|
+
REVISION = '20200918'
|
30
30
|
|
31
31
|
# View and manage your data across Google Cloud Platform services
|
32
32
|
AUTH_CLOUD_PLATFORM = 'https://www.googleapis.com/auth/cloud-platform'
|
@@ -22,12 +22,11 @@ module Google
|
|
22
22
|
module Apis
|
23
23
|
module BinaryauthorizationV1beta1
|
24
24
|
|
25
|
-
# An admission rule specifies either that all container images
|
26
|
-
#
|
27
|
-
#
|
28
|
-
#
|
29
|
-
#
|
30
|
-
# are exempted from admission rules and will never block a pod creation.
|
25
|
+
# An admission rule specifies either that all container images used in a pod
|
26
|
+
# creation request must be attested to by one or more attestors, that all pod
|
27
|
+
# creations will be allowed, or that all pod creations will be denied. Images
|
28
|
+
# matching an admission whitelist pattern are exempted from admission rules and
|
29
|
+
# will never block a pod creation.
|
31
30
|
class AdmissionRule
|
32
31
|
include Google::Apis::Core::Hashable
|
33
32
|
|
@@ -41,11 +40,10 @@ module Google
|
|
41
40
|
# @return [String]
|
42
41
|
attr_accessor :evaluation_mode
|
43
42
|
|
44
|
-
# Optional. The resource names of the attestors that must attest to
|
45
|
-
#
|
46
|
-
#
|
47
|
-
#
|
48
|
-
# to read the attestor resource.
|
43
|
+
# Optional. The resource names of the attestors that must attest to a container
|
44
|
+
# image, in the format `projects/*/attestors/*`. Each attestor must exist before
|
45
|
+
# a policy can reference it. To add an attestor to a policy the principal
|
46
|
+
# issuing the policy change request must be able to read the attestor resource.
|
49
47
|
# Note: this field must be non-empty when the evaluation_mode field specifies
|
50
48
|
# REQUIRE_ATTESTATION, otherwise it must be empty.
|
51
49
|
# Corresponds to the JSON property `requireAttestationsBy`
|
@@ -64,14 +62,13 @@ module Google
|
|
64
62
|
end
|
65
63
|
end
|
66
64
|
|
67
|
-
# An admission whitelist pattern exempts images
|
68
|
-
# from checks by admission rules.
|
65
|
+
# An admission whitelist pattern exempts images from checks by admission rules.
|
69
66
|
class AdmissionWhitelistPattern
|
70
67
|
include Google::Apis::Core::Hashable
|
71
68
|
|
72
|
-
# An image name pattern to whitelist, in the form `registry/path/to/image`.
|
73
|
-
#
|
74
|
-
#
|
69
|
+
# An image name pattern to whitelist, in the form `registry/path/to/image`. This
|
70
|
+
# supports a trailing `*` as a wildcard, but this is allowed only in text after
|
71
|
+
# the `registry/` part.
|
75
72
|
# Corresponds to the JSON property `namePattern`
|
76
73
|
# @return [String]
|
77
74
|
attr_accessor :name_pattern
|
@@ -86,20 +83,66 @@ module Google
|
|
86
83
|
end
|
87
84
|
end
|
88
85
|
|
89
|
-
#
|
90
|
-
#
|
91
|
-
#
|
86
|
+
# Occurrence that represents a single "attestation". The authenticity of an
|
87
|
+
# attestation can be verified using the attached signature. If the verifier
|
88
|
+
# trusts the public key of the signer, then verifying the signature is
|
89
|
+
# sufficient to establish trust. In this circumstance, the authority to which
|
90
|
+
# this attestation is attached is primarily useful for lookup (how to find this
|
91
|
+
# attestation if you already know the authority and artifact to be verified) and
|
92
|
+
# intent (for which authority this attestation was intended to sign.
|
93
|
+
class AttestationOccurrence
|
94
|
+
include Google::Apis::Core::Hashable
|
95
|
+
|
96
|
+
# One or more JWTs encoding a self-contained attestation. Each JWT encodes the
|
97
|
+
# payload that it verifies within the JWT itself. Verifier implementation SHOULD
|
98
|
+
# ignore the `serialized_payload` field when verifying these JWTs. If only JWTs
|
99
|
+
# are present on this AttestationOccurrence, then the `serialized_payload`
|
100
|
+
# SHOULD be left empty. Each JWT SHOULD encode a claim specific to the `
|
101
|
+
# resource_uri` of this Occurrence, but this is not validated by Grafeas
|
102
|
+
# metadata API implementations. The JWT itself is opaque to Grafeas.
|
103
|
+
# Corresponds to the JSON property `jwts`
|
104
|
+
# @return [Array<Google::Apis::BinaryauthorizationV1beta1::Jwt>]
|
105
|
+
attr_accessor :jwts
|
106
|
+
|
107
|
+
# Required. The serialized payload that is verified by one or more `signatures`.
|
108
|
+
# Corresponds to the JSON property `serializedPayload`
|
109
|
+
# NOTE: Values are automatically base64 encoded/decoded in the client library.
|
110
|
+
# @return [String]
|
111
|
+
attr_accessor :serialized_payload
|
112
|
+
|
113
|
+
# One or more signatures over `serialized_payload`. Verifier implementations
|
114
|
+
# should consider this attestation message verified if at least one `signature`
|
115
|
+
# verifies `serialized_payload`. See `Signature` in common.proto for more
|
116
|
+
# details on signature structure and verification.
|
117
|
+
# Corresponds to the JSON property `signatures`
|
118
|
+
# @return [Array<Google::Apis::BinaryauthorizationV1beta1::Signature>]
|
119
|
+
attr_accessor :signatures
|
120
|
+
|
121
|
+
def initialize(**args)
|
122
|
+
update!(**args)
|
123
|
+
end
|
124
|
+
|
125
|
+
# Update properties of this object
|
126
|
+
def update!(**args)
|
127
|
+
@jwts = args[:jwts] if args.key?(:jwts)
|
128
|
+
@serialized_payload = args[:serialized_payload] if args.key?(:serialized_payload)
|
129
|
+
@signatures = args[:signatures] if args.key?(:signatures)
|
130
|
+
end
|
131
|
+
end
|
132
|
+
|
133
|
+
# An attestor that attests to container image artifacts. An existing attestor
|
134
|
+
# cannot be modified except where indicated.
|
92
135
|
class Attestor
|
93
136
|
include Google::Apis::Core::Hashable
|
94
137
|
|
95
|
-
# Optional. A descriptive comment.
|
96
|
-
#
|
138
|
+
# Optional. A descriptive comment. This field may be updated. The field may be
|
139
|
+
# displayed in chooser dialogs.
|
97
140
|
# Corresponds to the JSON property `description`
|
98
141
|
# @return [String]
|
99
142
|
attr_accessor :description
|
100
143
|
|
101
|
-
# Required. The resource name, in the format:
|
102
|
-
#
|
144
|
+
# Required. The resource name, in the format: `projects/*/attestors/*`. This
|
145
|
+
# field may not be updated.
|
103
146
|
# Corresponds to the JSON property `name`
|
104
147
|
# @return [String]
|
105
148
|
attr_accessor :name
|
@@ -109,8 +152,8 @@ module Google
|
|
109
152
|
# @return [String]
|
110
153
|
attr_accessor :update_time
|
111
154
|
|
112
|
-
# An user owned drydock note references a Drydock
|
113
|
-
#
|
155
|
+
# An user owned drydock note references a Drydock ATTESTATION_AUTHORITY Note
|
156
|
+
# created by the user.
|
114
157
|
# Corresponds to the JSON property `userOwnedDrydockNote`
|
115
158
|
# @return [Google::Apis::BinaryauthorizationV1beta1::UserOwnedDrydockNote]
|
116
159
|
attr_accessor :user_owned_drydock_note
|
@@ -128,19 +171,17 @@ module Google
|
|
128
171
|
end
|
129
172
|
end
|
130
173
|
|
131
|
-
# An attestor public key that will be used to verify
|
132
|
-
#
|
174
|
+
# An attestor public key that will be used to verify attestations signed by this
|
175
|
+
# attestor.
|
133
176
|
class AttestorPublicKey
|
134
177
|
include Google::Apis::Core::Hashable
|
135
178
|
|
136
|
-
# ASCII-armored representation of a PGP public key, as the entire output by
|
137
|
-
#
|
138
|
-
#
|
139
|
-
#
|
140
|
-
#
|
141
|
-
#
|
142
|
-
# upper-case hex. If `id` is provided by the caller, it will be
|
143
|
-
# overwritten by the API-calculated ID.
|
179
|
+
# ASCII-armored representation of a PGP public key, as the entire output by the
|
180
|
+
# command `gpg --export --armor foo@example.com` (either LF or CRLF line endings)
|
181
|
+
# . When using this field, `id` should be left blank. The BinAuthz API handlers
|
182
|
+
# will calculate the ID and fill it in automatically. BinAuthz computes this ID
|
183
|
+
# as the OpenPGP RFC4880 V4 fingerprint, represented as upper-case hex. If `id`
|
184
|
+
# is provided by the caller, it will be overwritten by the API-calculated ID.
|
144
185
|
# Corresponds to the JSON property `asciiArmoredPgpPublicKey`
|
145
186
|
# @return [String]
|
146
187
|
attr_accessor :ascii_armored_pgp_public_key
|
@@ -150,21 +191,18 @@ module Google
|
|
150
191
|
# @return [String]
|
151
192
|
attr_accessor :comment
|
152
193
|
|
153
|
-
# The ID of this public key.
|
154
|
-
#
|
155
|
-
#
|
156
|
-
#
|
157
|
-
#
|
158
|
-
# key type is encapsulated. See the documentation on `public_key` cases below
|
159
|
-
# for details.
|
194
|
+
# The ID of this public key. Signatures verified by BinAuthz must include the ID
|
195
|
+
# of the public key that can be used to verify them, and that ID must match the
|
196
|
+
# contents of this field exactly. Additional restrictions on this field can be
|
197
|
+
# imposed based on which public key type is encapsulated. See the documentation
|
198
|
+
# on `public_key` cases below for details.
|
160
199
|
# Corresponds to the JSON property `id`
|
161
200
|
# @return [String]
|
162
201
|
attr_accessor :id
|
163
202
|
|
164
|
-
# A public key in the PkixPublicKey format (see
|
165
|
-
#
|
166
|
-
#
|
167
|
-
# format.
|
203
|
+
# A public key in the PkixPublicKey format (see https://tools.ietf.org/html/
|
204
|
+
# rfc5280#section-4.1.2.7 for details). Public keys of this type are typically
|
205
|
+
# textually encoded using the PEM format.
|
168
206
|
# Corresponds to the JSON property `pkixPublicKey`
|
169
207
|
# @return [Google::Apis::BinaryauthorizationV1beta1::PkixPublicKey]
|
170
208
|
attr_accessor :pkix_public_key
|
@@ -186,69 +224,63 @@ module Google
|
|
186
224
|
class Binding
|
187
225
|
include Google::Apis::Core::Hashable
|
188
226
|
|
189
|
-
#
|
190
|
-
#
|
191
|
-
#
|
192
|
-
#
|
193
|
-
|
194
|
-
|
195
|
-
# expression
|
196
|
-
#
|
197
|
-
#
|
198
|
-
# description: "Determines if
|
199
|
-
# expression: "document.
|
200
|
-
#
|
201
|
-
#
|
202
|
-
# description: "Determine whether the document
|
203
|
-
# expression: "document.type != 'private' &&
|
204
|
-
# Example (Data Manipulation):
|
205
|
-
#
|
206
|
-
#
|
207
|
-
#
|
208
|
-
#
|
209
|
-
#
|
210
|
-
# documentation for additional information.
|
227
|
+
# A client-specified ID for this binding. Expected to be globally unique to
|
228
|
+
# support the internal bindings-by-ID API.
|
229
|
+
# Corresponds to the JSON property `bindingId`
|
230
|
+
# @return [String]
|
231
|
+
attr_accessor :binding_id
|
232
|
+
|
233
|
+
# Represents a textual expression in the Common Expression Language (CEL) syntax.
|
234
|
+
# CEL is a C-like expression language. The syntax and semantics of CEL are
|
235
|
+
# documented at https://github.com/google/cel-spec. Example (Comparison): title:
|
236
|
+
# "Summary size limit" description: "Determines if a summary is less than 100
|
237
|
+
# chars" expression: "document.summary.size() < 100" Example (Equality): title: "
|
238
|
+
# Requestor is owner" description: "Determines if requestor is the document
|
239
|
+
# owner" expression: "document.owner == request.auth.claims.email" Example (
|
240
|
+
# Logic): title: "Public documents" description: "Determine whether the document
|
241
|
+
# should be publicly visible" expression: "document.type != 'private' &&
|
242
|
+
# document.type != 'internal'" Example (Data Manipulation): title: "Notification
|
243
|
+
# string" description: "Create a notification string with a timestamp."
|
244
|
+
# expression: "'New message received at ' + string(document.create_time)" The
|
245
|
+
# exact variables and functions that may be referenced within an expression are
|
246
|
+
# determined by the service that evaluates it. See the service documentation for
|
247
|
+
# additional information.
|
211
248
|
# Corresponds to the JSON property `condition`
|
212
249
|
# @return [Google::Apis::BinaryauthorizationV1beta1::Expr]
|
213
250
|
attr_accessor :condition
|
214
251
|
|
215
|
-
# Specifies the identities requesting access for a Cloud Platform resource.
|
216
|
-
#
|
217
|
-
#
|
218
|
-
#
|
219
|
-
#
|
220
|
-
#
|
221
|
-
# * `
|
222
|
-
# account. For example, `
|
223
|
-
# * `
|
224
|
-
#
|
225
|
-
#
|
226
|
-
# For example, `
|
227
|
-
#
|
228
|
-
#
|
229
|
-
#
|
230
|
-
#
|
231
|
-
#
|
232
|
-
#
|
233
|
-
#
|
234
|
-
# deleted
|
235
|
-
#
|
236
|
-
# If the
|
237
|
-
# `
|
238
|
-
# role in the binding.
|
239
|
-
#
|
240
|
-
#
|
241
|
-
# deleted. For example, `admins@example.com?uid=123456789012345678901`. If
|
242
|
-
# the group is recovered, this value reverts to `group:`emailid`` and the
|
243
|
-
# recovered group retains the role in the binding.
|
244
|
-
# * `domain:`domain``: The G Suite domain (primary) that represents all the
|
245
|
-
# users of that domain. For example, `google.com` or `example.com`.
|
252
|
+
# Specifies the identities requesting access for a Cloud Platform resource. `
|
253
|
+
# members` can have the following values: * `allUsers`: A special identifier
|
254
|
+
# that represents anyone who is on the internet; with or without a Google
|
255
|
+
# account. * `allAuthenticatedUsers`: A special identifier that represents
|
256
|
+
# anyone who is authenticated with a Google account or a service account. * `
|
257
|
+
# user:`emailid``: An email address that represents a specific Google account.
|
258
|
+
# For example, `alice@example.com` . * `serviceAccount:`emailid``: An email
|
259
|
+
# address that represents a service account. For example, `my-other-app@appspot.
|
260
|
+
# gserviceaccount.com`. * `group:`emailid``: An email address that represents a
|
261
|
+
# Google group. For example, `admins@example.com`. * `deleted:user:`emailid`?uid=
|
262
|
+
# `uniqueid``: An email address (plus unique identifier) representing a user
|
263
|
+
# that has been recently deleted. For example, `alice@example.com?uid=
|
264
|
+
# 123456789012345678901`. If the user is recovered, this value reverts to `user:`
|
265
|
+
# emailid`` and the recovered user retains the role in the binding. * `deleted:
|
266
|
+
# serviceAccount:`emailid`?uid=`uniqueid``: An email address (plus unique
|
267
|
+
# identifier) representing a service account that has been recently deleted. For
|
268
|
+
# example, `my-other-app@appspot.gserviceaccount.com?uid=123456789012345678901`.
|
269
|
+
# If the service account is undeleted, this value reverts to `serviceAccount:`
|
270
|
+
# emailid`` and the undeleted service account retains the role in the binding. *
|
271
|
+
# `deleted:group:`emailid`?uid=`uniqueid``: An email address (plus unique
|
272
|
+
# identifier) representing a Google group that has been recently deleted. For
|
273
|
+
# example, `admins@example.com?uid=123456789012345678901`. If the group is
|
274
|
+
# recovered, this value reverts to `group:`emailid`` and the recovered group
|
275
|
+
# retains the role in the binding. * `domain:`domain``: The G Suite domain (
|
276
|
+
# primary) that represents all the users of that domain. For example, `google.
|
277
|
+
# com` or `example.com`.
|
246
278
|
# Corresponds to the JSON property `members`
|
247
279
|
# @return [Array<String>]
|
248
280
|
attr_accessor :members
|
249
281
|
|
250
|
-
# Role that is assigned to `members`.
|
251
|
-
#
|
282
|
+
# Role that is assigned to `members`. For example, `roles/viewer`, `roles/editor`
|
283
|
+
# , or `roles/owner`.
|
252
284
|
# Corresponds to the JSON property `role`
|
253
285
|
# @return [String]
|
254
286
|
attr_accessor :role
|
@@ -259,19 +291,18 @@ module Google
|
|
259
291
|
|
260
292
|
# Update properties of this object
|
261
293
|
def update!(**args)
|
294
|
+
@binding_id = args[:binding_id] if args.key?(:binding_id)
|
262
295
|
@condition = args[:condition] if args.key?(:condition)
|
263
296
|
@members = args[:members] if args.key?(:members)
|
264
297
|
@role = args[:role] if args.key?(:role)
|
265
298
|
end
|
266
299
|
end
|
267
300
|
|
268
|
-
# A generic empty message that you can re-use to avoid defining duplicated
|
269
|
-
#
|
270
|
-
#
|
271
|
-
#
|
272
|
-
#
|
273
|
-
# `
|
274
|
-
# The JSON representation for `Empty` is empty JSON object ````.
|
301
|
+
# A generic empty message that you can re-use to avoid defining duplicated empty
|
302
|
+
# messages in your APIs. A typical example is to use it as the request or the
|
303
|
+
# response type of an API method. For instance: service Foo ` rpc Bar(google.
|
304
|
+
# protobuf.Empty) returns (google.protobuf.Empty); ` The JSON representation for
|
305
|
+
# `Empty` is empty JSON object ````.
|
275
306
|
class Empty
|
276
307
|
include Google::Apis::Core::Hashable
|
277
308
|
|
@@ -284,52 +315,43 @@ module Google
|
|
284
315
|
end
|
285
316
|
end
|
286
317
|
|
287
|
-
# Represents a textual expression in the Common Expression Language (CEL)
|
288
|
-
#
|
289
|
-
#
|
290
|
-
#
|
291
|
-
#
|
292
|
-
# description: "Determines if
|
293
|
-
# expression: "document.
|
294
|
-
#
|
295
|
-
#
|
296
|
-
#
|
297
|
-
#
|
298
|
-
#
|
299
|
-
#
|
300
|
-
#
|
301
|
-
#
|
302
|
-
# Example (Data Manipulation):
|
303
|
-
# title: "Notification string"
|
304
|
-
# description: "Create a notification string with a timestamp."
|
305
|
-
# expression: "'New message received at ' + string(document.create_time)"
|
306
|
-
# The exact variables and functions that may be referenced within an expression
|
307
|
-
# are determined by the service that evaluates it. See the service
|
308
|
-
# documentation for additional information.
|
318
|
+
# Represents a textual expression in the Common Expression Language (CEL) syntax.
|
319
|
+
# CEL is a C-like expression language. The syntax and semantics of CEL are
|
320
|
+
# documented at https://github.com/google/cel-spec. Example (Comparison): title:
|
321
|
+
# "Summary size limit" description: "Determines if a summary is less than 100
|
322
|
+
# chars" expression: "document.summary.size() < 100" Example (Equality): title: "
|
323
|
+
# Requestor is owner" description: "Determines if requestor is the document
|
324
|
+
# owner" expression: "document.owner == request.auth.claims.email" Example (
|
325
|
+
# Logic): title: "Public documents" description: "Determine whether the document
|
326
|
+
# should be publicly visible" expression: "document.type != 'private' &&
|
327
|
+
# document.type != 'internal'" Example (Data Manipulation): title: "Notification
|
328
|
+
# string" description: "Create a notification string with a timestamp."
|
329
|
+
# expression: "'New message received at ' + string(document.create_time)" The
|
330
|
+
# exact variables and functions that may be referenced within an expression are
|
331
|
+
# determined by the service that evaluates it. See the service documentation for
|
332
|
+
# additional information.
|
309
333
|
class Expr
|
310
334
|
include Google::Apis::Core::Hashable
|
311
335
|
|
312
|
-
# Optional. Description of the expression. This is a longer text which
|
313
|
-
#
|
336
|
+
# Optional. Description of the expression. This is a longer text which describes
|
337
|
+
# the expression, e.g. when hovered over it in a UI.
|
314
338
|
# Corresponds to the JSON property `description`
|
315
339
|
# @return [String]
|
316
340
|
attr_accessor :description
|
317
341
|
|
318
|
-
# Textual representation of an expression in Common Expression Language
|
319
|
-
# syntax.
|
342
|
+
# Textual representation of an expression in Common Expression Language syntax.
|
320
343
|
# Corresponds to the JSON property `expression`
|
321
344
|
# @return [String]
|
322
345
|
attr_accessor :expression
|
323
346
|
|
324
|
-
# Optional. String indicating the location of the expression for error
|
325
|
-
#
|
347
|
+
# Optional. String indicating the location of the expression for error reporting,
|
348
|
+
# e.g. a file name and a position in the file.
|
326
349
|
# Corresponds to the JSON property `location`
|
327
350
|
# @return [String]
|
328
351
|
attr_accessor :location
|
329
352
|
|
330
|
-
# Optional. Title for the expression, i.e. a short string describing
|
331
|
-
#
|
332
|
-
# expression.
|
353
|
+
# Optional. Title for the expression, i.e. a short string describing its purpose.
|
354
|
+
# This can be used e.g. in UIs which allow to enter the expression.
|
333
355
|
# Corresponds to the JSON property `title`
|
334
356
|
# @return [String]
|
335
357
|
attr_accessor :title
|
@@ -348,111 +370,73 @@ module Google
|
|
348
370
|
end
|
349
371
|
|
350
372
|
# An Identity and Access Management (IAM) policy, which specifies access
|
351
|
-
# controls for Google Cloud resources.
|
352
|
-
# A `
|
353
|
-
#
|
354
|
-
#
|
355
|
-
#
|
356
|
-
#
|
357
|
-
#
|
358
|
-
#
|
359
|
-
#
|
360
|
-
#
|
361
|
-
#
|
362
|
-
# [
|
363
|
-
#
|
364
|
-
#
|
365
|
-
# `
|
366
|
-
# "
|
367
|
-
# `
|
368
|
-
# "
|
369
|
-
#
|
370
|
-
#
|
371
|
-
#
|
372
|
-
#
|
373
|
-
#
|
374
|
-
#
|
375
|
-
#
|
376
|
-
#
|
377
|
-
# "role": "roles/resourcemanager.organizationViewer",
|
378
|
-
# "members": [
|
379
|
-
# "user:eve@example.com"
|
380
|
-
# ],
|
381
|
-
# "condition": `
|
382
|
-
# "title": "expirable access",
|
383
|
-
# "description": "Does not grant access after Sep 2020",
|
384
|
-
# "expression": "request.time < timestamp('2020-10-01T00:00:00.000Z')
|
385
|
-
# ",
|
386
|
-
# `
|
387
|
-
# `
|
388
|
-
# ],
|
389
|
-
# "etag": "BwWWja0YfJA=",
|
390
|
-
# "version": 3
|
391
|
-
# `
|
392
|
-
# **YAML example:**
|
393
|
-
# bindings:
|
394
|
-
# - members:
|
395
|
-
# - user:mike@example.com
|
396
|
-
# - group:admins@example.com
|
397
|
-
# - domain:google.com
|
398
|
-
# - serviceAccount:my-project-id@appspot.gserviceaccount.com
|
399
|
-
# role: roles/resourcemanager.organizationAdmin
|
400
|
-
# - members:
|
401
|
-
# - user:eve@example.com
|
402
|
-
# role: roles/resourcemanager.organizationViewer
|
403
|
-
# condition:
|
404
|
-
# title: expirable access
|
405
|
-
# description: Does not grant access after Sep 2020
|
406
|
-
# expression: request.time < timestamp('2020-10-01T00:00:00.000Z')
|
407
|
-
# - etag: BwWWja0YfJA=
|
408
|
-
# - version: 3
|
409
|
-
# For a description of IAM and its features, see the
|
410
|
-
# [IAM documentation](https://cloud.google.com/iam/docs/).
|
373
|
+
# controls for Google Cloud resources. A `Policy` is a collection of `bindings`.
|
374
|
+
# A `binding` binds one or more `members` to a single `role`. Members can be
|
375
|
+
# user accounts, service accounts, Google groups, and domains (such as G Suite).
|
376
|
+
# A `role` is a named list of permissions; each `role` can be an IAM predefined
|
377
|
+
# role or a user-created custom role. For some types of Google Cloud resources,
|
378
|
+
# a `binding` can also specify a `condition`, which is a logical expression that
|
379
|
+
# allows access to a resource only if the expression evaluates to `true`. A
|
380
|
+
# condition can add constraints based on attributes of the request, the resource,
|
381
|
+
# or both. To learn which resources support conditions in their IAM policies,
|
382
|
+
# see the [IAM documentation](https://cloud.google.com/iam/help/conditions/
|
383
|
+
# resource-policies). **JSON example:** ` "bindings": [ ` "role": "roles/
|
384
|
+
# resourcemanager.organizationAdmin", "members": [ "user:mike@example.com", "
|
385
|
+
# group:admins@example.com", "domain:google.com", "serviceAccount:my-project-id@
|
386
|
+
# appspot.gserviceaccount.com" ] `, ` "role": "roles/resourcemanager.
|
387
|
+
# organizationViewer", "members": [ "user:eve@example.com" ], "condition": ` "
|
388
|
+
# title": "expirable access", "description": "Does not grant access after Sep
|
389
|
+
# 2020", "expression": "request.time < timestamp('2020-10-01T00:00:00.000Z')", `
|
390
|
+
# ` ], "etag": "BwWWja0YfJA=", "version": 3 ` **YAML example:** bindings: -
|
391
|
+
# members: - user:mike@example.com - group:admins@example.com - domain:google.
|
392
|
+
# com - serviceAccount:my-project-id@appspot.gserviceaccount.com role: roles/
|
393
|
+
# resourcemanager.organizationAdmin - members: - user:eve@example.com role:
|
394
|
+
# roles/resourcemanager.organizationViewer condition: title: expirable access
|
395
|
+
# description: Does not grant access after Sep 2020 expression: request.time <
|
396
|
+
# timestamp('2020-10-01T00:00:00.000Z') - etag: BwWWja0YfJA= - version: 3 For a
|
397
|
+
# description of IAM and its features, see the [IAM documentation](https://cloud.
|
398
|
+
# google.com/iam/docs/).
|
411
399
|
class IamPolicy
|
412
400
|
include Google::Apis::Core::Hashable
|
413
401
|
|
414
|
-
# Associates a list of `members` to a `role`. Optionally, may specify a
|
415
|
-
#
|
416
|
-
#
|
402
|
+
# Associates a list of `members` to a `role`. Optionally, may specify a `
|
403
|
+
# condition` that determines how and when the `bindings` are applied. Each of
|
404
|
+
# the `bindings` must contain at least one member.
|
417
405
|
# Corresponds to the JSON property `bindings`
|
418
406
|
# @return [Array<Google::Apis::BinaryauthorizationV1beta1::Binding>]
|
419
407
|
attr_accessor :bindings
|
420
408
|
|
421
|
-
# `etag` is used for optimistic concurrency control as a way to help
|
422
|
-
#
|
423
|
-
#
|
424
|
-
#
|
425
|
-
#
|
426
|
-
#
|
427
|
-
#
|
428
|
-
#
|
429
|
-
#
|
430
|
-
#
|
431
|
-
#
|
409
|
+
# `etag` is used for optimistic concurrency control as a way to help prevent
|
410
|
+
# simultaneous updates of a policy from overwriting each other. It is strongly
|
411
|
+
# suggested that systems make use of the `etag` in the read-modify-write cycle
|
412
|
+
# to perform policy updates in order to avoid race conditions: An `etag` is
|
413
|
+
# returned in the response to `getIamPolicy`, and systems are expected to put
|
414
|
+
# that etag in the request to `setIamPolicy` to ensure that their change will be
|
415
|
+
# applied to the same version of the policy. **Important:** If you use IAM
|
416
|
+
# Conditions, you must include the `etag` field whenever you call `setIamPolicy`.
|
417
|
+
# If you omit this field, then IAM allows you to overwrite a version `3` policy
|
418
|
+
# with a version `1` policy, and all of the conditions in the version `3` policy
|
419
|
+
# are lost.
|
432
420
|
# Corresponds to the JSON property `etag`
|
433
421
|
# NOTE: Values are automatically base64 encoded/decoded in the client library.
|
434
422
|
# @return [String]
|
435
423
|
attr_accessor :etag
|
436
424
|
|
437
|
-
# Specifies the format of the policy.
|
438
|
-
#
|
439
|
-
#
|
440
|
-
#
|
441
|
-
#
|
442
|
-
#
|
443
|
-
#
|
444
|
-
#
|
445
|
-
#
|
446
|
-
#
|
447
|
-
#
|
448
|
-
#
|
449
|
-
#
|
450
|
-
#
|
451
|
-
#
|
452
|
-
# specify any valid version or leave the field unset.
|
453
|
-
# To learn which resources support conditions in their IAM policies, see the
|
454
|
-
# [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-
|
455
|
-
# policies).
|
425
|
+
# Specifies the format of the policy. Valid values are `0`, `1`, and `3`.
|
426
|
+
# Requests that specify an invalid value are rejected. Any operation that
|
427
|
+
# affects conditional role bindings must specify version `3`. This requirement
|
428
|
+
# applies to the following operations: * Getting a policy that includes a
|
429
|
+
# conditional role binding * Adding a conditional role binding to a policy *
|
430
|
+
# Changing a conditional role binding in a policy * Removing any role binding,
|
431
|
+
# with or without a condition, from a policy that includes conditions **
|
432
|
+
# Important:** If you use IAM Conditions, you must include the `etag` field
|
433
|
+
# whenever you call `setIamPolicy`. If you omit this field, then IAM allows you
|
434
|
+
# to overwrite a version `3` policy with a version `1` policy, and all of the
|
435
|
+
# conditions in the version `3` policy are lost. If a policy does not include
|
436
|
+
# any conditions, operations on that policy may specify any valid version or
|
437
|
+
# leave the field unset. To learn which resources support conditions in their
|
438
|
+
# IAM policies, see the [IAM documentation](https://cloud.google.com/iam/help/
|
439
|
+
# conditions/resource-policies).
|
456
440
|
# Corresponds to the JSON property `version`
|
457
441
|
# @return [Fixnum]
|
458
442
|
attr_accessor :version
|
@@ -469,6 +453,27 @@ module Google
|
|
469
453
|
end
|
470
454
|
end
|
471
455
|
|
456
|
+
#
|
457
|
+
class Jwt
|
458
|
+
include Google::Apis::Core::Hashable
|
459
|
+
|
460
|
+
# The compact encoding of a JWS, which is always three base64 encoded strings
|
461
|
+
# joined by periods. For details, see: https://tools.ietf.org/html/rfc7515.html#
|
462
|
+
# section-3.1
|
463
|
+
# Corresponds to the JSON property `compactJwt`
|
464
|
+
# @return [String]
|
465
|
+
attr_accessor :compact_jwt
|
466
|
+
|
467
|
+
def initialize(**args)
|
468
|
+
update!(**args)
|
469
|
+
end
|
470
|
+
|
471
|
+
# Update properties of this object
|
472
|
+
def update!(**args)
|
473
|
+
@compact_jwt = args[:compact_jwt] if args.key?(:compact_jwt)
|
474
|
+
end
|
475
|
+
end
|
476
|
+
|
472
477
|
# Response message for BinauthzManagementService.ListAttestors.
|
473
478
|
class ListAttestorsResponse
|
474
479
|
include Google::Apis::Core::Hashable
|
@@ -479,8 +484,8 @@ module Google
|
|
479
484
|
attr_accessor :attestors
|
480
485
|
|
481
486
|
# A token to retrieve the next page of results. Pass this value in the
|
482
|
-
# ListAttestorsRequest.page_token field in the subsequent call to the
|
483
|
-
#
|
487
|
+
# ListAttestorsRequest.page_token field in the subsequent call to the `
|
488
|
+
# ListAttestors` method to retrieve the next page of results.
|
484
489
|
# Corresponds to the JSON property `nextPageToken`
|
485
490
|
# @return [String]
|
486
491
|
attr_accessor :next_page_token
|
@@ -496,24 +501,22 @@ module Google
|
|
496
501
|
end
|
497
502
|
end
|
498
503
|
|
499
|
-
# A public key in the PkixPublicKey format (see
|
500
|
-
#
|
501
|
-
#
|
502
|
-
# format.
|
504
|
+
# A public key in the PkixPublicKey format (see https://tools.ietf.org/html/
|
505
|
+
# rfc5280#section-4.1.2.7 for details). Public keys of this type are typically
|
506
|
+
# textually encoded using the PEM format.
|
503
507
|
class PkixPublicKey
|
504
508
|
include Google::Apis::Core::Hashable
|
505
509
|
|
506
|
-
# A PEM-encoded public key, as described in
|
507
|
-
#
|
510
|
+
# A PEM-encoded public key, as described in https://tools.ietf.org/html/rfc7468#
|
511
|
+
# section-13
|
508
512
|
# Corresponds to the JSON property `publicKeyPem`
|
509
513
|
# @return [String]
|
510
514
|
attr_accessor :public_key_pem
|
511
515
|
|
512
516
|
# The signature algorithm used to verify a message against a signature using
|
513
|
-
# this key.
|
514
|
-
#
|
515
|
-
#
|
516
|
-
# that of the public key).
|
517
|
+
# this key. These signature algorithm must match the structure and any object
|
518
|
+
# identifiers encoded in `public_key_pem` (i.e. this algorithm must match that
|
519
|
+
# of the public key).
|
517
520
|
# Corresponds to the JSON property `signatureAlgorithm`
|
518
521
|
# @return [String]
|
519
522
|
attr_accessor :signature_algorithm
|
@@ -534,30 +537,26 @@ module Google
|
|
534
537
|
include Google::Apis::Core::Hashable
|
535
538
|
|
536
539
|
# Optional. Admission policy whitelisting. A matching admission request will
|
537
|
-
# always be permitted. This feature is typically used to exclude Google or
|
538
|
-
#
|
540
|
+
# always be permitted. This feature is typically used to exclude Google or third-
|
541
|
+
# party infrastructure images from Binary Authorization policies.
|
539
542
|
# Corresponds to the JSON property `admissionWhitelistPatterns`
|
540
543
|
# @return [Array<Google::Apis::BinaryauthorizationV1beta1::AdmissionWhitelistPattern>]
|
541
544
|
attr_accessor :admission_whitelist_patterns
|
542
545
|
|
543
|
-
# Optional. Per-cluster admission rules. Cluster spec format:
|
544
|
-
#
|
545
|
-
#
|
546
|
-
#
|
547
|
-
#
|
548
|
-
# For `clusterId` syntax restrictions see
|
549
|
-
# https://cloud.google.com/container-engine/reference/rest/v1/projects.zones.
|
550
|
-
# clusters.
|
546
|
+
# Optional. Per-cluster admission rules. Cluster spec format: `location.
|
547
|
+
# clusterId`. There can be at most one admission rule per cluster spec. A `
|
548
|
+
# location` is either a compute zone (e.g. us-central1-a) or a region (e.g. us-
|
549
|
+
# central1). For `clusterId` syntax restrictions see https://cloud.google.com/
|
550
|
+
# container-engine/reference/rest/v1/projects.zones.clusters.
|
551
551
|
# Corresponds to the JSON property `clusterAdmissionRules`
|
552
552
|
# @return [Hash<String,Google::Apis::BinaryauthorizationV1beta1::AdmissionRule>]
|
553
553
|
attr_accessor :cluster_admission_rules
|
554
554
|
|
555
|
-
# An admission rule specifies either that all container images
|
556
|
-
#
|
557
|
-
#
|
558
|
-
#
|
559
|
-
#
|
560
|
-
# are exempted from admission rules and will never block a pod creation.
|
555
|
+
# An admission rule specifies either that all container images used in a pod
|
556
|
+
# creation request must be attested to by one or more attestors, that all pod
|
557
|
+
# creations will be allowed, or that all pod creations will be denied. Images
|
558
|
+
# matching an admission whitelist pattern are exempted from admission rules and
|
559
|
+
# will never block a pod creation.
|
561
560
|
# Corresponds to the JSON property `defaultAdmissionRule`
|
562
561
|
# @return [Google::Apis::BinaryauthorizationV1beta1::AdmissionRule]
|
563
562
|
attr_accessor :default_admission_rule
|
@@ -568,15 +567,15 @@ module Google
|
|
568
567
|
attr_accessor :description
|
569
568
|
|
570
569
|
# Optional. Controls the evaluation of a Google-maintained global admission
|
571
|
-
# policy for common system-level images. Images not covered by the global
|
572
|
-
#
|
573
|
-
#
|
570
|
+
# policy for common system-level images. Images not covered by the global policy
|
571
|
+
# will be subject to the project admission policy. This setting has no effect
|
572
|
+
# when specified inside a global admission policy.
|
574
573
|
# Corresponds to the JSON property `globalPolicyEvaluationMode`
|
575
574
|
# @return [String]
|
576
575
|
attr_accessor :global_policy_evaluation_mode
|
577
576
|
|
578
|
-
# Output only. The resource name, in the format `projects/*/policy`. There is
|
579
|
-
#
|
577
|
+
# Output only. The resource name, in the format `projects/*/policy`. There is at
|
578
|
+
# most one policy per project.
|
580
579
|
# Corresponds to the JSON property `name`
|
581
580
|
# @return [String]
|
582
581
|
attr_accessor :name
|
@@ -607,66 +606,32 @@ module Google
|
|
607
606
|
include Google::Apis::Core::Hashable
|
608
607
|
|
609
608
|
# An Identity and Access Management (IAM) policy, which specifies access
|
610
|
-
# controls for Google Cloud resources.
|
611
|
-
# A `
|
612
|
-
#
|
613
|
-
#
|
614
|
-
#
|
615
|
-
#
|
616
|
-
#
|
617
|
-
#
|
618
|
-
#
|
619
|
-
#
|
620
|
-
#
|
621
|
-
# [
|
622
|
-
#
|
623
|
-
#
|
624
|
-
# `
|
625
|
-
# "
|
626
|
-
# `
|
627
|
-
# "
|
628
|
-
#
|
629
|
-
#
|
630
|
-
#
|
631
|
-
#
|
632
|
-
#
|
633
|
-
#
|
634
|
-
#
|
635
|
-
#
|
636
|
-
# "role": "roles/resourcemanager.organizationViewer",
|
637
|
-
# "members": [
|
638
|
-
# "user:eve@example.com"
|
639
|
-
# ],
|
640
|
-
# "condition": `
|
641
|
-
# "title": "expirable access",
|
642
|
-
# "description": "Does not grant access after Sep 2020",
|
643
|
-
# "expression": "request.time < timestamp('2020-10-01T00:00:00.000Z')
|
644
|
-
# ",
|
645
|
-
# `
|
646
|
-
# `
|
647
|
-
# ],
|
648
|
-
# "etag": "BwWWja0YfJA=",
|
649
|
-
# "version": 3
|
650
|
-
# `
|
651
|
-
# **YAML example:**
|
652
|
-
# bindings:
|
653
|
-
# - members:
|
654
|
-
# - user:mike@example.com
|
655
|
-
# - group:admins@example.com
|
656
|
-
# - domain:google.com
|
657
|
-
# - serviceAccount:my-project-id@appspot.gserviceaccount.com
|
658
|
-
# role: roles/resourcemanager.organizationAdmin
|
659
|
-
# - members:
|
660
|
-
# - user:eve@example.com
|
661
|
-
# role: roles/resourcemanager.organizationViewer
|
662
|
-
# condition:
|
663
|
-
# title: expirable access
|
664
|
-
# description: Does not grant access after Sep 2020
|
665
|
-
# expression: request.time < timestamp('2020-10-01T00:00:00.000Z')
|
666
|
-
# - etag: BwWWja0YfJA=
|
667
|
-
# - version: 3
|
668
|
-
# For a description of IAM and its features, see the
|
669
|
-
# [IAM documentation](https://cloud.google.com/iam/docs/).
|
609
|
+
# controls for Google Cloud resources. A `Policy` is a collection of `bindings`.
|
610
|
+
# A `binding` binds one or more `members` to a single `role`. Members can be
|
611
|
+
# user accounts, service accounts, Google groups, and domains (such as G Suite).
|
612
|
+
# A `role` is a named list of permissions; each `role` can be an IAM predefined
|
613
|
+
# role or a user-created custom role. For some types of Google Cloud resources,
|
614
|
+
# a `binding` can also specify a `condition`, which is a logical expression that
|
615
|
+
# allows access to a resource only if the expression evaluates to `true`. A
|
616
|
+
# condition can add constraints based on attributes of the request, the resource,
|
617
|
+
# or both. To learn which resources support conditions in their IAM policies,
|
618
|
+
# see the [IAM documentation](https://cloud.google.com/iam/help/conditions/
|
619
|
+
# resource-policies). **JSON example:** ` "bindings": [ ` "role": "roles/
|
620
|
+
# resourcemanager.organizationAdmin", "members": [ "user:mike@example.com", "
|
621
|
+
# group:admins@example.com", "domain:google.com", "serviceAccount:my-project-id@
|
622
|
+
# appspot.gserviceaccount.com" ] `, ` "role": "roles/resourcemanager.
|
623
|
+
# organizationViewer", "members": [ "user:eve@example.com" ], "condition": ` "
|
624
|
+
# title": "expirable access", "description": "Does not grant access after Sep
|
625
|
+
# 2020", "expression": "request.time < timestamp('2020-10-01T00:00:00.000Z')", `
|
626
|
+
# ` ], "etag": "BwWWja0YfJA=", "version": 3 ` **YAML example:** bindings: -
|
627
|
+
# members: - user:mike@example.com - group:admins@example.com - domain:google.
|
628
|
+
# com - serviceAccount:my-project-id@appspot.gserviceaccount.com role: roles/
|
629
|
+
# resourcemanager.organizationAdmin - members: - user:eve@example.com role:
|
630
|
+
# roles/resourcemanager.organizationViewer condition: title: expirable access
|
631
|
+
# description: Does not grant access after Sep 2020 expression: request.time <
|
632
|
+
# timestamp('2020-10-01T00:00:00.000Z') - etag: BwWWja0YfJA= - version: 3 For a
|
633
|
+
# description of IAM and its features, see the [IAM documentation](https://cloud.
|
634
|
+
# google.com/iam/docs/).
|
670
635
|
# Corresponds to the JSON property `policy`
|
671
636
|
# @return [Google::Apis::BinaryauthorizationV1beta1::IamPolicy]
|
672
637
|
attr_accessor :policy
|
@@ -681,14 +646,68 @@ module Google
|
|
681
646
|
end
|
682
647
|
end
|
683
648
|
|
649
|
+
# Verifiers (e.g. Kritis implementations) MUST verify signatures with respect to
|
650
|
+
# the trust anchors defined in policy (e.g. a Kritis policy). Typically this
|
651
|
+
# means that the verifier has been configured with a map from `public_key_id` to
|
652
|
+
# public key material (and any required parameters, e.g. signing algorithm). In
|
653
|
+
# particular, verification implementations MUST NOT treat the signature `
|
654
|
+
# public_key_id` as anything more than a key lookup hint. The `public_key_id`
|
655
|
+
# DOES NOT validate or authenticate a public key; it only provides a mechanism
|
656
|
+
# for quickly selecting a public key ALREADY CONFIGURED on the verifier through
|
657
|
+
# a trusted channel. Verification implementations MUST reject signatures in any
|
658
|
+
# of the following circumstances: * The `public_key_id` is not recognized by the
|
659
|
+
# verifier. * The public key that `public_key_id` refers to does not verify the
|
660
|
+
# signature with respect to the payload. The `signature` contents SHOULD NOT be "
|
661
|
+
# attached" (where the payload is included with the serialized `signature` bytes)
|
662
|
+
# . Verifiers MUST ignore any "attached" payload and only verify signatures with
|
663
|
+
# respect to explicitly provided payload (e.g. a `payload` field on the proto
|
664
|
+
# message that holds this Signature, or the canonical serialization of the proto
|
665
|
+
# message that holds this signature).
|
666
|
+
class Signature
|
667
|
+
include Google::Apis::Core::Hashable
|
668
|
+
|
669
|
+
# The identifier for the public key that verifies this signature. * The `
|
670
|
+
# public_key_id` is required. * The `public_key_id` SHOULD be an RFC3986
|
671
|
+
# conformant URI. * When possible, the `public_key_id` SHOULD be an immutable
|
672
|
+
# reference, such as a cryptographic digest. Examples of valid `public_key_id`s:
|
673
|
+
# OpenPGP V4 public key fingerprint: * "openpgp4fpr:
|
674
|
+
# 74FAF3B861BDA0870C7B6DEF607E48D2A663AEEA" See https://www.iana.org/assignments/
|
675
|
+
# uri-schemes/prov/openpgp4fpr for more details on this scheme. RFC6920 digest-
|
676
|
+
# named SubjectPublicKeyInfo (digest of the DER serialization): * "ni:///sha-256;
|
677
|
+
# cD9o9Cq6LG3jD0iKXqEi_vdjJGecm_iXkbqVoScViaU" * "nih:///sha-256;
|
678
|
+
# 703f68f42aba2c6de30f488a5ea122fef76324679c9bf89791ba95a1271589a5"
|
679
|
+
# Corresponds to the JSON property `publicKeyId`
|
680
|
+
# @return [String]
|
681
|
+
attr_accessor :public_key_id
|
682
|
+
|
683
|
+
# The content of the signature, an opaque bytestring. The payload that this
|
684
|
+
# signature verifies MUST be unambiguously provided with the Signature during
|
685
|
+
# verification. A wrapper message might provide the payload explicitly.
|
686
|
+
# Alternatively, a message might have a canonical serialization that can always
|
687
|
+
# be unambiguously computed to derive the payload.
|
688
|
+
# Corresponds to the JSON property `signature`
|
689
|
+
# NOTE: Values are automatically base64 encoded/decoded in the client library.
|
690
|
+
# @return [String]
|
691
|
+
attr_accessor :signature
|
692
|
+
|
693
|
+
def initialize(**args)
|
694
|
+
update!(**args)
|
695
|
+
end
|
696
|
+
|
697
|
+
# Update properties of this object
|
698
|
+
def update!(**args)
|
699
|
+
@public_key_id = args[:public_key_id] if args.key?(:public_key_id)
|
700
|
+
@signature = args[:signature] if args.key?(:signature)
|
701
|
+
end
|
702
|
+
end
|
703
|
+
|
684
704
|
# Request message for `TestIamPermissions` method.
|
685
705
|
class TestIamPermissionsRequest
|
686
706
|
include Google::Apis::Core::Hashable
|
687
707
|
|
688
|
-
# The set of permissions to check for the `resource`. Permissions with
|
689
|
-
#
|
690
|
-
#
|
691
|
-
# [IAM Overview](https://cloud.google.com/iam/docs/overview#permissions).
|
708
|
+
# The set of permissions to check for the `resource`. Permissions with wildcards
|
709
|
+
# (such as '*' or 'storage.*') are not allowed. For more information see [IAM
|
710
|
+
# Overview](https://cloud.google.com/iam/docs/overview#permissions).
|
692
711
|
# Corresponds to the JSON property `permissions`
|
693
712
|
# @return [Array<String>]
|
694
713
|
attr_accessor :permissions
|
@@ -707,8 +726,7 @@ module Google
|
|
707
726
|
class TestIamPermissionsResponse
|
708
727
|
include Google::Apis::Core::Hashable
|
709
728
|
|
710
|
-
# A subset of `TestPermissionsRequest.permissions` that the caller is
|
711
|
-
# allowed.
|
729
|
+
# A subset of `TestPermissionsRequest.permissions` that the caller is allowed.
|
712
730
|
# Corresponds to the JSON property `permissions`
|
713
731
|
# @return [Array<String>]
|
714
732
|
attr_accessor :permissions
|
@@ -723,40 +741,37 @@ module Google
|
|
723
741
|
end
|
724
742
|
end
|
725
743
|
|
726
|
-
# An user owned drydock note references a Drydock
|
727
|
-
#
|
744
|
+
# An user owned drydock note references a Drydock ATTESTATION_AUTHORITY Note
|
745
|
+
# created by the user.
|
728
746
|
class UserOwnedDrydockNote
|
729
747
|
include Google::Apis::Core::Hashable
|
730
748
|
|
731
|
-
# Output only. This field will contain the service account email address
|
732
|
-
#
|
733
|
-
#
|
734
|
-
#
|
735
|
-
#
|
736
|
-
#
|
737
|
-
#
|
738
|
-
#
|
749
|
+
# Output only. This field will contain the service account email address that
|
750
|
+
# this Attestor will use as the principal when querying Container Analysis.
|
751
|
+
# Attestor administrators must grant this service account the IAM role needed to
|
752
|
+
# read attestations from the note_reference in Container Analysis (`
|
753
|
+
# containeranalysis.notes.occurrences.viewer`). This email address is fixed for
|
754
|
+
# the lifetime of the Attestor, but callers should not make any other
|
755
|
+
# assumptions about the service account email; future versions may use an email
|
756
|
+
# based on a different naming pattern.
|
739
757
|
# Corresponds to the JSON property `delegationServiceAccountEmail`
|
740
758
|
# @return [String]
|
741
759
|
attr_accessor :delegation_service_account_email
|
742
760
|
|
743
|
-
# Required. The Drydock resource name of a ATTESTATION_AUTHORITY Note,
|
744
|
-
#
|
745
|
-
#
|
746
|
-
#
|
747
|
-
#
|
748
|
-
# links to this Note. Drydock is an external dependency.
|
761
|
+
# Required. The Drydock resource name of a ATTESTATION_AUTHORITY Note, created
|
762
|
+
# by the user, in the format: `projects/*/notes/*` (or the legacy `providers/*/
|
763
|
+
# notes/*`). This field may not be updated. An attestation by this attestor is
|
764
|
+
# stored as a Drydock ATTESTATION_AUTHORITY Occurrence that names a container
|
765
|
+
# image and that links to this Note. Drydock is an external dependency.
|
749
766
|
# Corresponds to the JSON property `noteReference`
|
750
767
|
# @return [String]
|
751
768
|
attr_accessor :note_reference
|
752
769
|
|
753
|
-
# Optional. Public keys that verify attestations signed by this
|
754
|
-
#
|
755
|
-
#
|
756
|
-
#
|
757
|
-
#
|
758
|
-
# If this field is empty, this attestor always returns that no
|
759
|
-
# valid attestations exist.
|
770
|
+
# Optional. Public keys that verify attestations signed by this attestor. This
|
771
|
+
# field may be updated. If this field is non-empty, one of the specified public
|
772
|
+
# keys must verify that an attestation was signed by this attestor for the image
|
773
|
+
# specified in the admission request. If this field is empty, this attestor
|
774
|
+
# always returns that no valid attestations exist.
|
760
775
|
# Corresponds to the JSON property `publicKeys`
|
761
776
|
# @return [Array<Google::Apis::BinaryauthorizationV1beta1::AttestorPublicKey>]
|
762
777
|
attr_accessor :public_keys
|
@@ -772,6 +787,70 @@ module Google
|
|
772
787
|
@public_keys = args[:public_keys] if args.key?(:public_keys)
|
773
788
|
end
|
774
789
|
end
|
790
|
+
|
791
|
+
# Request message for ValidationHelperV1.ValidateAttestationOccurrence.
|
792
|
+
class ValidateAttestationOccurrenceRequest
|
793
|
+
include Google::Apis::Core::Hashable
|
794
|
+
|
795
|
+
# Occurrence that represents a single "attestation". The authenticity of an
|
796
|
+
# attestation can be verified using the attached signature. If the verifier
|
797
|
+
# trusts the public key of the signer, then verifying the signature is
|
798
|
+
# sufficient to establish trust. In this circumstance, the authority to which
|
799
|
+
# this attestation is attached is primarily useful for lookup (how to find this
|
800
|
+
# attestation if you already know the authority and artifact to be verified) and
|
801
|
+
# intent (for which authority this attestation was intended to sign.
|
802
|
+
# Corresponds to the JSON property `attestation`
|
803
|
+
# @return [Google::Apis::BinaryauthorizationV1beta1::AttestationOccurrence]
|
804
|
+
attr_accessor :attestation
|
805
|
+
|
806
|
+
# Required. The resource name of the Note to which the containing Occurrence is
|
807
|
+
# associated.
|
808
|
+
# Corresponds to the JSON property `occurrenceNote`
|
809
|
+
# @return [String]
|
810
|
+
attr_accessor :occurrence_note
|
811
|
+
|
812
|
+
# Required. The URI of the artifact (e.g. container image) that is the subject
|
813
|
+
# of the containing Occurrence.
|
814
|
+
# Corresponds to the JSON property `occurrenceResourceUri`
|
815
|
+
# @return [String]
|
816
|
+
attr_accessor :occurrence_resource_uri
|
817
|
+
|
818
|
+
def initialize(**args)
|
819
|
+
update!(**args)
|
820
|
+
end
|
821
|
+
|
822
|
+
# Update properties of this object
|
823
|
+
def update!(**args)
|
824
|
+
@attestation = args[:attestation] if args.key?(:attestation)
|
825
|
+
@occurrence_note = args[:occurrence_note] if args.key?(:occurrence_note)
|
826
|
+
@occurrence_resource_uri = args[:occurrence_resource_uri] if args.key?(:occurrence_resource_uri)
|
827
|
+
end
|
828
|
+
end
|
829
|
+
|
830
|
+
# Response message for ValidationHelperV1.ValidateAttestationOccurrence.
|
831
|
+
class ValidateAttestationOccurrenceResponse
|
832
|
+
include Google::Apis::Core::Hashable
|
833
|
+
|
834
|
+
# The reason for denial if the Attestation couldn't be validated.
|
835
|
+
# Corresponds to the JSON property `denialReason`
|
836
|
+
# @return [String]
|
837
|
+
attr_accessor :denial_reason
|
838
|
+
|
839
|
+
# The result of the Attestation validation.
|
840
|
+
# Corresponds to the JSON property `result`
|
841
|
+
# @return [String]
|
842
|
+
attr_accessor :result
|
843
|
+
|
844
|
+
def initialize(**args)
|
845
|
+
update!(**args)
|
846
|
+
end
|
847
|
+
|
848
|
+
# Update properties of this object
|
849
|
+
def update!(**args)
|
850
|
+
@denial_reason = args[:denial_reason] if args.key?(:denial_reason)
|
851
|
+
@result = args[:result] if args.key?(:result)
|
852
|
+
end
|
853
|
+
end
|
775
854
|
end
|
776
855
|
end
|
777
856
|
end
|