google-api-client 0.9.14 → 0.9.15

data/generated/google/apis/datastore_v1/service.rb

@@ -0,0 +1,259 @@
+# Copyright 2015 Google Inc.
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#      http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+require 'google/apis/core/base_service'
+require 'google/apis/core/json_representation'
+require 'google/apis/core/hashable'
+require 'google/apis/errors'
+
+module Google
+  module Apis
+    module DatastoreV1
+      # Google Cloud Datastore API
+      #
+      # Accesses the schemaless NoSQL database to provide fully managed, robust,
+      #  scalable storage for your application.
+      #
+      # @example
+      #    require 'google/apis/datastore_v1'
+      #
+      #    Datastore = Google::Apis::DatastoreV1 # Alias the module
+      #    service = Datastore::DatastoreService.new
+      #
+      # @see https://cloud.google.com/datastore/
+      class DatastoreService < Google::Apis::Core::BaseService
+        # @return [String]
+        #  API key. Your API key identifies your project and provides you with API access,
+        #  quota, and reports. Required unless you provide an OAuth 2.0 token.
+        attr_accessor :key
+
+        # @return [String]
+        #  Available to use for quota purposes for server-side applications. Can be any
+        #  arbitrary string assigned to a user, but should not exceed 40 characters.
+        attr_accessor :quota_user
+
+        def initialize
+          super('https://datastore.googleapis.com/', '')
+        end
+        
+        # Queries for entities.
+        # @param [String] project_id
+        #   The ID of the project against which to make the request.
+        # @param [Google::Apis::DatastoreV1::RunQueryRequest] run_query_request_object
+        # @param [String] quota_user
+        #   Available to use for quota purposes for server-side applications. Can be any
+        #   arbitrary string assigned to a user, but should not exceed 40 characters.
+        # @param [String] fields
+        #   Selector specifying which fields to include in a partial response.
+        # @param [Google::Apis::RequestOptions] options
+        #   Request-specific options
+        #
+        # @yield [result, err] Result & error if block supplied
+        # @yieldparam result [Google::Apis::DatastoreV1::RunQueryResponse] parsed result object
+        # @yieldparam err [StandardError] error object if request failed
+        #
+        # @return [Google::Apis::DatastoreV1::RunQueryResponse]
+        #
+        # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
+        # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
+        # @raise [Google::Apis::AuthorizationError] Authorization is required
+        def run_project_query(project_id, run_query_request_object = nil, quota_user: nil, fields: nil, options: nil, &block)
+          command =  make_simple_command(:post, 'v1/projects/{projectId}:runQuery', options)
+          command.request_representation = Google::Apis::DatastoreV1::RunQueryRequest::Representation
+          command.request_object = run_query_request_object
+          command.response_representation = Google::Apis::DatastoreV1::RunQueryResponse::Representation
+          command.response_class = Google::Apis::DatastoreV1::RunQueryResponse
+          command.params['projectId'] = project_id unless project_id.nil?
+          command.query['quotaUser'] = quota_user unless quota_user.nil?
+          command.query['fields'] = fields unless fields.nil?
+          execute_or_queue_command(command, &block)
+        end
+        
+        # Begins a new transaction.
+        # @param [String] project_id
+        #   The ID of the project against which to make the request.
+        # @param [Google::Apis::DatastoreV1::BeginTransactionRequest] begin_transaction_request_object
+        # @param [String] quota_user
+        #   Available to use for quota purposes for server-side applications. Can be any
+        #   arbitrary string assigned to a user, but should not exceed 40 characters.
+        # @param [String] fields
+        #   Selector specifying which fields to include in a partial response.
+        # @param [Google::Apis::RequestOptions] options
+        #   Request-specific options
+        #
+        # @yield [result, err] Result & error if block supplied
+        # @yieldparam result [Google::Apis::DatastoreV1::BeginTransactionResponse] parsed result object
+        # @yieldparam err [StandardError] error object if request failed
+        #
+        # @return [Google::Apis::DatastoreV1::BeginTransactionResponse]
+        #
+        # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
+        # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
+        # @raise [Google::Apis::AuthorizationError] Authorization is required
+        def begin_project_transaction(project_id, begin_transaction_request_object = nil, quota_user: nil, fields: nil, options: nil, &block)
+          command =  make_simple_command(:post, 'v1/projects/{projectId}:beginTransaction', options)
+          command.request_representation = Google::Apis::DatastoreV1::BeginTransactionRequest::Representation
+          command.request_object = begin_transaction_request_object
+          command.response_representation = Google::Apis::DatastoreV1::BeginTransactionResponse::Representation
+          command.response_class = Google::Apis::DatastoreV1::BeginTransactionResponse
+          command.params['projectId'] = project_id unless project_id.nil?
+          command.query['quotaUser'] = quota_user unless quota_user.nil?
+          command.query['fields'] = fields unless fields.nil?
+          execute_or_queue_command(command, &block)
+        end
+        
+        # Allocates IDs for the given keys, which is useful for referencing an entity
+        # before it is inserted.
+        # @param [String] project_id
+        #   The ID of the project against which to make the request.
+        # @param [Google::Apis::DatastoreV1::AllocateIdsRequest] allocate_ids_request_object
+        # @param [String] quota_user
+        #   Available to use for quota purposes for server-side applications. Can be any
+        #   arbitrary string assigned to a user, but should not exceed 40 characters.
+        # @param [String] fields
+        #   Selector specifying which fields to include in a partial response.
+        # @param [Google::Apis::RequestOptions] options
+        #   Request-specific options
+        #
+        # @yield [result, err] Result & error if block supplied
+        # @yieldparam result [Google::Apis::DatastoreV1::AllocateIdsResponse] parsed result object
+        # @yieldparam err [StandardError] error object if request failed
+        #
+        # @return [Google::Apis::DatastoreV1::AllocateIdsResponse]
+        #
+        # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
+        # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
+        # @raise [Google::Apis::AuthorizationError] Authorization is required
+        def allocate_project_ids(project_id, allocate_ids_request_object = nil, quota_user: nil, fields: nil, options: nil, &block)
+          command =  make_simple_command(:post, 'v1/projects/{projectId}:allocateIds', options)
+          command.request_representation = Google::Apis::DatastoreV1::AllocateIdsRequest::Representation
+          command.request_object = allocate_ids_request_object
+          command.response_representation = Google::Apis::DatastoreV1::AllocateIdsResponse::Representation
+          command.response_class = Google::Apis::DatastoreV1::AllocateIdsResponse
+          command.params['projectId'] = project_id unless project_id.nil?
+          command.query['quotaUser'] = quota_user unless quota_user.nil?
+          command.query['fields'] = fields unless fields.nil?
+          execute_or_queue_command(command, &block)
+        end
+        
+        # Looks up entities by key.
+        # @param [String] project_id
+        #   The ID of the project against which to make the request.
+        # @param [Google::Apis::DatastoreV1::LookupRequest] lookup_request_object
+        # @param [String] quota_user
+        #   Available to use for quota purposes for server-side applications. Can be any
+        #   arbitrary string assigned to a user, but should not exceed 40 characters.
+        # @param [String] fields
+        #   Selector specifying which fields to include in a partial response.
+        # @param [Google::Apis::RequestOptions] options
+        #   Request-specific options
+        #
+        # @yield [result, err] Result & error if block supplied
+        # @yieldparam result [Google::Apis::DatastoreV1::LookupResponse] parsed result object
+        # @yieldparam err [StandardError] error object if request failed
+        #
+        # @return [Google::Apis::DatastoreV1::LookupResponse]
+        #
+        # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
+        # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
+        # @raise [Google::Apis::AuthorizationError] Authorization is required
+        def lookup_project(project_id, lookup_request_object = nil, quota_user: nil, fields: nil, options: nil, &block)
+          command =  make_simple_command(:post, 'v1/projects/{projectId}:lookup', options)
+          command.request_representation = Google::Apis::DatastoreV1::LookupRequest::Representation
+          command.request_object = lookup_request_object
+          command.response_representation = Google::Apis::DatastoreV1::LookupResponse::Representation
+          command.response_class = Google::Apis::DatastoreV1::LookupResponse
+          command.params['projectId'] = project_id unless project_id.nil?
+          command.query['quotaUser'] = quota_user unless quota_user.nil?
+          command.query['fields'] = fields unless fields.nil?
+          execute_or_queue_command(command, &block)
+        end
+        
+        # Commits a transaction, optionally creating, deleting or modifying some
+        # entities.
+        # @param [String] project_id
+        #   The ID of the project against which to make the request.
+        # @param [Google::Apis::DatastoreV1::CommitRequest] commit_request_object
+        # @param [String] quota_user
+        #   Available to use for quota purposes for server-side applications. Can be any
+        #   arbitrary string assigned to a user, but should not exceed 40 characters.
+        # @param [String] fields
+        #   Selector specifying which fields to include in a partial response.
+        # @param [Google::Apis::RequestOptions] options
+        #   Request-specific options
+        #
+        # @yield [result, err] Result & error if block supplied
+        # @yieldparam result [Google::Apis::DatastoreV1::CommitResponse] parsed result object
+        # @yieldparam err [StandardError] error object if request failed
+        #
+        # @return [Google::Apis::DatastoreV1::CommitResponse]
+        #
+        # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
+        # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
+        # @raise [Google::Apis::AuthorizationError] Authorization is required
+        def commit_project(project_id, commit_request_object = nil, quota_user: nil, fields: nil, options: nil, &block)
+          command =  make_simple_command(:post, 'v1/projects/{projectId}:commit', options)
+          command.request_representation = Google::Apis::DatastoreV1::CommitRequest::Representation
+          command.request_object = commit_request_object
+          command.response_representation = Google::Apis::DatastoreV1::CommitResponse::Representation
+          command.response_class = Google::Apis::DatastoreV1::CommitResponse
+          command.params['projectId'] = project_id unless project_id.nil?
+          command.query['quotaUser'] = quota_user unless quota_user.nil?
+          command.query['fields'] = fields unless fields.nil?
+          execute_or_queue_command(command, &block)
+        end
+        
+        # Rolls back a transaction.
+        # @param [String] project_id
+        #   The ID of the project against which to make the request.
+        # @param [Google::Apis::DatastoreV1::RollbackRequest] rollback_request_object
+        # @param [String] quota_user
+        #   Available to use for quota purposes for server-side applications. Can be any
+        #   arbitrary string assigned to a user, but should not exceed 40 characters.
+        # @param [String] fields
+        #   Selector specifying which fields to include in a partial response.
+        # @param [Google::Apis::RequestOptions] options
+        #   Request-specific options
+        #
+        # @yield [result, err] Result & error if block supplied
+        # @yieldparam result [Google::Apis::DatastoreV1::RollbackResponse] parsed result object
+        # @yieldparam err [StandardError] error object if request failed
+        #
+        # @return [Google::Apis::DatastoreV1::RollbackResponse]
+        #
+        # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
+        # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
+        # @raise [Google::Apis::AuthorizationError] Authorization is required
+        def rollback_project(project_id, rollback_request_object = nil, quota_user: nil, fields: nil, options: nil, &block)
+          command =  make_simple_command(:post, 'v1/projects/{projectId}:rollback', options)
+          command.request_representation = Google::Apis::DatastoreV1::RollbackRequest::Representation
+          command.request_object = rollback_request_object
+          command.response_representation = Google::Apis::DatastoreV1::RollbackResponse::Representation
+          command.response_class = Google::Apis::DatastoreV1::RollbackResponse
+          command.params['projectId'] = project_id unless project_id.nil?
+          command.query['quotaUser'] = quota_user unless quota_user.nil?
+          command.query['fields'] = fields unless fields.nil?
+          execute_or_queue_command(command, &block)
+        end
+
+        protected
+
+        def apply_command_defaults(command)
+          command.query['key'] = key unless key.nil?
+          command.query['quotaUser'] = quota_user unless quota_user.nil?
+        end
+      end
+    end
+  end
+end

data/generated/google/apis/deploymentmanager_v2.rb

@@ -25,7 +25,7 @@ module Google
     # @see https://cloud.google.com/deployment-manager/
     module DeploymentmanagerV2
       VERSION = 'V2'
-      REVISION = '20160913'
+      REVISION = '20160915'
 
       # View and manage your data across Google Cloud Platform services
       AUTH_CLOUD_PLATFORM = 'https://www.googleapis.com/auth/cloud-platform'

data/generated/google/apis/deploymentmanager_v2/classes.rb

@@ -22,6 +22,124 @@ module Google
   module Apis
     module DeploymentmanagerV2
       
+      # Enables "data access" audit logging for a service and specifies a list of
+      # members that are log-exempted.
+      class AuditConfig
+        include Google::Apis::Core::Hashable
+      
+        # Specifies the identities that are exempted from "data access" audit logging
+        # for the `service` specified above. Follows the same format of Binding.members.
+        # Corresponds to the JSON property `exemptedMembers`
+        # @return [Array<String>]
+        attr_accessor :exempted_members
+      
+        # Specifies a service that will be enabled for "data access" audit logging. For
+        # example, `resourcemanager`, `storage`, `compute`. `allServices` is a special
+        # value that covers all services.
+        # Corresponds to the JSON property `service`
+        # @return [String]
+        attr_accessor :service
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @exempted_members = args[:exempted_members] if args.key?(:exempted_members)
+          @service = args[:service] if args.key?(:service)
+        end
+      end
+      
+      # Associates `members` with a `role`.
+      class Binding
+        include Google::Apis::Core::Hashable
+      
+        # Specifies the identities requesting access for a Cloud Platform resource. `
+        # members` can have the following values:
+        # * `allUsers`: A special identifier that represents anyone who is on the
+        # internet; with or without a Google account.
+        # * `allAuthenticatedUsers`: A special identifier that represents anyone who is
+        # authenticated with a Google account or a service account.
+        # * `user:`emailid``: An email address that represents a specific Google account.
+        # For example, `alice@gmail.com` or `joe@example.com`.
+        # * `serviceAccount:`emailid``: An email address that represents a service
+        # account. For example, `my-other-app@appspot.gserviceaccount.com`.
+        # * `group:`emailid``: An email address that represents a Google group. For
+        # example, `admins@example.com`.
+        # * `domain:`domain``: A Google Apps domain name that represents all the users
+        # of that domain. For example, `google.com` or `example.com`.
+        # Corresponds to the JSON property `members`
+        # @return [Array<String>]
+        attr_accessor :members
+      
+        # Role that is assigned to `members`. For example, `roles/viewer`, `roles/editor`
+        # , or `roles/owner`.
+        # Corresponds to the JSON property `role`
+        # @return [String]
+        attr_accessor :role
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @members = args[:members] if args.key?(:members)
+          @role = args[:role] if args.key?(:role)
+        end
+      end
+      
+      # A condition to be met.
+      class Condition
+        include Google::Apis::Core::Hashable
+      
+        # Trusted attributes supplied by the IAM system.
+        # Corresponds to the JSON property `iam`
+        # @return [String]
+        attr_accessor :iam
+      
+        # An operator to apply the subject with.
+        # Corresponds to the JSON property `op`
+        # @return [String]
+        attr_accessor :op
+      
+        # Trusted attributes discharged by the service.
+        # Corresponds to the JSON property `svc`
+        # @return [String]
+        attr_accessor :svc
+      
+        # Trusted attributes supplied by any service that owns resources and uses the
+        # IAM system for access control.
+        # Corresponds to the JSON property `sys`
+        # @return [String]
+        attr_accessor :sys
+      
+        # DEPRECATED. Use 'values' instead.
+        # Corresponds to the JSON property `value`
+        # @return [String]
+        attr_accessor :value
+      
+        # The objects of the condition. This is mutually exclusive with 'value'.
+        # Corresponds to the JSON property `values`
+        # @return [Array<String>]
+        attr_accessor :values
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @iam = args[:iam] if args.key?(:iam)
+          @op = args[:op] if args.key?(:op)
+          @svc = args[:svc] if args.key?(:svc)
+          @sys = args[:sys] if args.key?(:sys)
+          @value = args[:value] if args.key?(:value)
+          @values = args[:values] if args.key?(:values)
+        end
+      end
+      
       # 
       class ConfigFile
         include Google::Apis::Core::Hashable
@@ -323,6 +441,50 @@ module Google
         end
       end
       
+      # Specifies what kind of log the caller must write
+      class LogConfig
+        include Google::Apis::Core::Hashable
+      
+        # Options for counters
+        # Corresponds to the JSON property `counter`
+        # @return [Google::Apis::DeploymentmanagerV2::LogConfigCounterOptions]
+        attr_accessor :counter
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @counter = args[:counter] if args.key?(:counter)
+        end
+      end
+      
+      # Options for counters
+      class LogConfigCounterOptions
+        include Google::Apis::Core::Hashable
+      
+        # The field value to attribute.
+        # Corresponds to the JSON property `field`
+        # @return [String]
+        attr_accessor :field
+      
+        # The metric to update.
+        # Corresponds to the JSON property `metric`
+        # @return [String]
+        attr_accessor :metric
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @field = args[:field] if args.key?(:field)
+          @metric = args[:metric] if args.key?(:metric)
+        end
+      end
+      
       # 
       class Manifest
         include Google::Apis::Core::Hashable
@@ -726,10 +888,97 @@ module Google
         end
       end
       
+      # Defines an Identity and Access Management (IAM) policy. It is used to specify
+      # access control policies for Cloud Platform resources.
+      # A `Policy` consists of a list of `bindings`. A `Binding` binds a list of `
+      # members` to a `role`, where the members can be user accounts, Google groups,
+      # Google domains, and service accounts. A `role` is a named list of permissions
+      # defined by IAM.
+      # **Example**
+      # ` "bindings": [ ` "role": "roles/owner", "members": [ "user:mike@example.com",
+      # "group:admins@example.com", "domain:google.com", "serviceAccount:my-other-app@
+      # appspot.gserviceaccount.com", ] `, ` "role": "roles/viewer", "members": ["user:
+      # sean@example.com"] ` ] `
+      # For a description of IAM and its features, see the [IAM developer's guide](
+      # https://cloud.google.com/iam).
+      class Policy
+        include Google::Apis::Core::Hashable
+      
+        # Specifies audit logging configs for "data access". "data access": generally
+        # refers to data reads/writes and admin reads. "admin activity": generally
+        # refers to admin writes.
+        # Note: `AuditConfig` doesn't apply to "admin activity", which always enables
+        # audit logging.
+        # Corresponds to the JSON property `auditConfigs`
+        # @return [Array<Google::Apis::DeploymentmanagerV2::AuditConfig>]
+        attr_accessor :audit_configs
+      
+        # Associates a list of `members` to a `role`. Multiple `bindings` must not be
+        # specified for the same `role`. `bindings` with no members will result in an
+        # error.
+        # Corresponds to the JSON property `bindings`
+        # @return [Array<Google::Apis::DeploymentmanagerV2::Binding>]
+        attr_accessor :bindings
+      
+        # `etag` is used for optimistic concurrency control as a way to help prevent
+        # simultaneous updates of a policy from overwriting each other. It is strongly
+        # suggested that systems make use of the `etag` in the read-modify-write cycle
+        # to perform policy updates in order to avoid race conditions: An `etag` is
+        # returned in the response to `getIamPolicy`, and systems are expected to put
+        # that etag in the request to `setIamPolicy` to ensure that their change will be
+        # applied to the same version of the policy.
+        # If no `etag` is provided in the call to `setIamPolicy`, then the existing
+        # policy is overwritten blindly.
+        # Corresponds to the JSON property `etag`
+        # @return [String]
+        attr_accessor :etag
+      
+        # 
+        # Corresponds to the JSON property `iamOwned`
+        # @return [Boolean]
+        attr_accessor :iam_owned
+        alias_method :iam_owned?, :iam_owned
+      
+        # If more than one rule is specified, the rules are applied in the following
+        # manner: - All matching LOG rules are always applied. - If any DENY/
+        # DENY_WITH_LOG rule matches, permission is denied. Logging will be applied if
+        # one or more matching rule requires logging. - Otherwise, if any ALLOW/
+        # ALLOW_WITH_LOG rule matches, permission is granted. Logging will be applied if
+        # one or more matching rule requires logging. - Otherwise, if no rule applies,
+        # permission is denied.
+        # Corresponds to the JSON property `rules`
+        # @return [Array<Google::Apis::DeploymentmanagerV2::Rule>]
+        attr_accessor :rules
+      
+        # Version of the `Policy`. The default version is 0.
+        # Corresponds to the JSON property `version`
+        # @return [Fixnum]
+        attr_accessor :version
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @audit_configs = args[:audit_configs] if args.key?(:audit_configs)
+          @bindings = args[:bindings] if args.key?(:bindings)
+          @etag = args[:etag] if args.key?(:etag)
+          @iam_owned = args[:iam_owned] if args.key?(:iam_owned)
+          @rules = args[:rules] if args.key?(:rules)
+          @version = args[:version] if args.key?(:version)
+        end
+      end
+      
       # 
       class Resource
         include Google::Apis::Core::Hashable
       
+        # The access controls set on the resource.
+        # Corresponds to the JSON property `accessControl`
+        # @return [Google::Apis::DeploymentmanagerV2::ResourceAccessControl]
+        attr_accessor :access_control
+      
         # [Output Only] The evaluated properties of the resource with references
         # expanded. Returned as serialized YAML.
         # Corresponds to the JSON property `finalProperties`
@@ -797,6 +1046,7 @@ module Google
       
         # Update properties of this object
         def update!(**args)
+          @access_control = args[:access_control] if args.key?(:access_control)
           @final_properties = args[:final_properties] if args.key?(:final_properties)
           @id = args[:id] if args.key?(:id)
           @insert_time = args[:insert_time] if args.key?(:insert_time)
@@ -875,10 +1125,34 @@ module Google
         end
       end
       
+      # The access controls set on the resource.
+      class ResourceAccessControl
+        include Google::Apis::Core::Hashable
+      
+        # The GCP IAM Policy to set on the resource.
+        # Corresponds to the JSON property `gcpIamPolicy`
+        # @return [String]
+        attr_accessor :gcp_iam_policy
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @gcp_iam_policy = args[:gcp_iam_policy] if args.key?(:gcp_iam_policy)
+        end
+      end
+      
       # 
       class ResourceUpdate
         include Google::Apis::Core::Hashable
       
+        # The access controls set on the resource.
+        # Corresponds to the JSON property `accessControl`
+        # @return [Google::Apis::DeploymentmanagerV2::ResourceAccessControl]
+        attr_accessor :access_control
+      
         # [Output Only] If errors are generated during update of the resource, this
         # field will be populated.
         # Corresponds to the JSON property `error`
@@ -925,6 +1199,7 @@ module Google
       
         # Update properties of this object
         def update!(**args)
+          @access_control = args[:access_control] if args.key?(:access_control)
           @error = args[:error] if args.key?(:error)
           @final_properties = args[:final_properties] if args.key?(:final_properties)
           @intent = args[:intent] if args.key?(:intent)
@@ -1077,6 +1352,66 @@ module Google
         end
       end
       
+      # A rule to be applied in a Policy.
+      class Rule
+        include Google::Apis::Core::Hashable
+      
+        # Required
+        # Corresponds to the JSON property `action`
+        # @return [String]
+        attr_accessor :action
+      
+        # Additional restrictions that must be met
+        # Corresponds to the JSON property `conditions`
+        # @return [Array<Google::Apis::DeploymentmanagerV2::Condition>]
+        attr_accessor :conditions
+      
+        # Human-readable description of the rule.
+        # Corresponds to the JSON property `description`
+        # @return [String]
+        attr_accessor :description
+      
+        # If one or more 'in' clauses are specified, the rule matches if the PRINCIPAL/
+        # AUTHORITY_SELECTOR is in at least one of these entries.
+        # Corresponds to the JSON property `ins`
+        # @return [Array<String>]
+        attr_accessor :ins
+      
+        # The config returned to callers of tech.iam.IAM.CheckPolicy for any entries
+        # that match the LOG action.
+        # Corresponds to the JSON property `logConfigs`
+        # @return [Array<Google::Apis::DeploymentmanagerV2::LogConfig>]
+        attr_accessor :log_configs
+      
+        # If one or more 'not_in' clauses are specified, the rule matches if the
+        # PRINCIPAL/AUTHORITY_SELECTOR is in none of the entries.
+        # Corresponds to the JSON property `notIns`
+        # @return [Array<String>]
+        attr_accessor :not_ins
+      
+        # A permission is a string of form '..' (e.g., 'storage.buckets.list'). A value
+        # of '*' matches all permissions, and a verb part of '*' (e.g., 'storage.buckets.
+        # *') matches all verbs.
+        # Corresponds to the JSON property `permissions`
+        # @return [Array<String>]
+        attr_accessor :permissions
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @action = args[:action] if args.key?(:action)
+          @conditions = args[:conditions] if args.key?(:conditions)
+          @description = args[:description] if args.key?(:description)
+          @ins = args[:ins] if args.key?(:ins)
+          @log_configs = args[:log_configs] if args.key?(:log_configs)
+          @not_ins = args[:not_ins] if args.key?(:not_ins)
+          @permissions = args[:permissions] if args.key?(:permissions)
+        end
+      end
+      
       # 
       class TargetConfiguration
         include Google::Apis::Core::Hashable
@@ -1104,6 +1439,45 @@ module Google
         end
       end
       
+      # 
+      class TestPermissionsRequest
+        include Google::Apis::Core::Hashable
+      
+        # The set of permissions to check for the 'resource'. Permissions with wildcards
+        # (such as '*' or 'storage.*') are not allowed.
+        # Corresponds to the JSON property `permissions`
+        # @return [Array<String>]
+        attr_accessor :permissions
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @permissions = args[:permissions] if args.key?(:permissions)
+        end
+      end
+      
+      # 
+      class TestPermissionsResponse
+        include Google::Apis::Core::Hashable
+      
+        # A subset of `TestPermissionsRequest.permissions` that the caller is allowed.
+        # Corresponds to the JSON property `permissions`
+        # @return [Array<String>]
+        attr_accessor :permissions
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @permissions = args[:permissions] if args.key?(:permissions)
+        end
+      end
+      
       # A resource type supported by Deployment Manager.
       class Type
         include Google::Apis::Core::Hashable