google-api-client 0.47.0 → 0.48.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: d524ef58d95f6f40c49a4fb929d11531ccf407e18e635633baadd56f5fda8c9c
-  data.tar.gz: 1ecf5486e4f008bf233fd3a57180bd0f87b9cda76acab4ea376a52aa206cb195
+  metadata.gz: d72877f1c43ea818c98a641a7c86f5992f0f5f8d00b7e15ca22ce5721ffe1a80
+  data.tar.gz: df97df3400372ad44cc9c46399219e6826a3ef86a7721dde0c100a37b996a9b7
 SHA512:
-  metadata.gz: ed2dff67297f014322e3e12a6ee97c3e7888b8987b658a667ee6f7380816543e73cb1e2d2eba5e9e192da7e99d598aefbf66dcdf296208d7f3be0ee0b8b1594b
-  data.tar.gz: 48943a46b9f8683863635061cec57dec0b36981c753544ab6e647480f12254f485081614dbb60f425dcba7771c32ff737be75c0a5adc8c93f671b2b89121746a
+  metadata.gz: 9f8f5d7323df4dbfaec5fbc5d7e5738a0414a38114b5ab7305babe946e3a61e92cfba4666b14c5ab392cc1dfd7fa6886799e027a5deb6533e7a2864157fd4cf0
+  data.tar.gz: 614b1b0317f39b34da21d326cbfeeb67abb0a75b99552c1c3a76784cca7a3e2d05b8247034e0aacc411c808aa7a5b6b42779f41c6d75331758a90b354b59fc4e

data/.github/workflows/release-please.yml

@@ -0,0 +1,77 @@
+on:
+  schedule:
+    - cron: '49 8 * * 1'
+  workflow_dispatch:
+
+name: release-please
+jobs:
+  release-please:
+    env:
+      ENABLE_AUTO_APPROVE: ${{ secrets.ENABLE_AUTO_APPROVE }}
+    runs-on: ubuntu-latest
+    steps:
+      - name: ReleasePlease
+        uses: GoogleCloudPlatform/release-please-action@v2.5.7
+        with:
+          command: release-pr
+          token: ${{ secrets.YOSHI_CODE_BOT_TOKEN }}
+          fork: true
+          release-type: ruby
+          package-name: google-api-ruby-client
+          version-file: lib/google/apis/version.rb
+          monorepo-tags: true
+          bump-minor-pre-major: true
+      - name: AutoApprove
+        if: ${{ always() }}
+        uses: actions/github-script@v2
+        with:
+          github-token: ${{secrets.YOSHI_APPROVER_TOKEN}}
+          script: |
+            let found = false;
+            for (let tries = 3; tries > 0; tries--) {
+              await new Promise(r => setTimeout(r, 2000));
+              const prs = await github.pulls.list({
+                owner: 'googleapis',
+                repo: 'google-api-ruby-client',
+                state: 'open',
+                sort: 'created',
+                direction: 'desc',
+                per_page: 10
+              });
+              prs.data.forEach(function(pr) {
+                if (found || pr.user.login != "yoshi-code-bot" || !pr.title.startsWith("Release ")) {
+                  return;
+                }
+                core.info("AutoApprove: Found release PR " + pr.number);
+                if (process.env.ENABLE_AUTO_APPROVE) {
+                  core.info("ENABLE_AUTO_APPROVE is set; labeling and approving");
+                  github.pulls.createReview({
+                    owner: 'googleapis',
+                    repo: 'google-api-ruby-client',
+                    body: "AutoApprove: Rubber stamped release!",
+                    pull_number: pr.number,
+                    event: "APPROVE"
+                  });
+                  github.issues.addLabels({
+                    owner: 'googleapis',
+                    repo: 'google-api-ruby-client',
+                    issue_number: pr.number,
+                    labels: ["autorelease: pending", "automerge", "kokoro:force-run"]
+                  });
+                } else {
+                  core.info("ENABLE_AUTO_APPROVE is not set; labeling release only");
+                  github.issues.addLabels({
+                    owner: 'googleapis',
+                    repo: 'google-api-ruby-client',
+                    issue_number: pr.number,
+                    labels: ["autorelease: pending", "kokoro:force-run"]
+                  });
+                }
+                core.info("AutoApprove: complete!");
+                found = true;
+                tries = 0;
+              });
+            }
+            if (!found) {
+              core.setFailed("Unable to find release PR after 3 tries.");
+            }

data/CHANGELOG.md

@@ -1,5 +1,69 @@
 # Release History
 
+## [0.48.0](https://www.github.com/googleapis/google-api-ruby-client/compare/v0.47.0...v0.48.0) (2020-11-02)
+
+
+### Features
+
+* Automated regeneration of bigquery v2 client ([#1329](https://www.github.com/googleapis/google-api-ruby-client/issues/1329)) ([768d393](https://www.github.com/googleapis/google-api-ruby-client/commit/768d3937e6c487b755846b65267c20674e52a10c))
+* Automated regeneration of billingbudgets v1 client ([#1288](https://www.github.com/googleapis/google-api-ruby-client/issues/1288)) ([43f8c49](https://www.github.com/googleapis/google-api-ruby-client/commit/43f8c49906a20d835a392b53ed58950473dfe285))
+* Automated regeneration of billingbudgets v1beta1 client ([#1289](https://www.github.com/googleapis/google-api-ruby-client/issues/1289)) ([f091ed0](https://www.github.com/googleapis/google-api-ruby-client/commit/f091ed02ddb82dac41cc1762939611270586fdb3))
+* Automated regeneration of cloudasset v1 client ([#1290](https://www.github.com/googleapis/google-api-ruby-client/issues/1290)) ([9a89003](https://www.github.com/googleapis/google-api-ruby-client/commit/9a89003a7c09c1981bf1d46ddd74c9997efaf69d))
+* Automated regeneration of compute v1 client ([#1291](https://www.github.com/googleapis/google-api-ruby-client/issues/1291)) ([297ae6a](https://www.github.com/googleapis/google-api-ruby-client/commit/297ae6a7ec94d8fd6b1b7efcb0ae2f5fe1185a20))
+* Automated regeneration of content v2 client ([#1316](https://www.github.com/googleapis/google-api-ruby-client/issues/1316)) ([678ac02](https://www.github.com/googleapis/google-api-ruby-client/commit/678ac02bab8db2cc5c59760e3a486dc4a192c845))
+* Automated regeneration of content v2.1 client ([#1292](https://www.github.com/googleapis/google-api-ruby-client/issues/1292)) ([c69bbb4](https://www.github.com/googleapis/google-api-ruby-client/commit/c69bbb4048752c91a4e4db997a4cf2486f6054dc))
+* Automated regeneration of content v2.1 client ([#1315](https://www.github.com/googleapis/google-api-ruby-client/issues/1315)) ([e707531](https://www.github.com/googleapis/google-api-ruby-client/commit/e707531a8836a261435c57c2cae1f424c2a6293a))
+* Automated regeneration of datacatalog v1beta1 client ([#1293](https://www.github.com/googleapis/google-api-ruby-client/issues/1293)) ([c0d3e53](https://www.github.com/googleapis/google-api-ruby-client/commit/c0d3e5354e0b94feefd7fd6578233a8a2d76f022))
+* Automated regeneration of dataflow v1b3 client ([#1317](https://www.github.com/googleapis/google-api-ruby-client/issues/1317)) ([76adefd](https://www.github.com/googleapis/google-api-ruby-client/commit/76adefdc4519394d4ea678814244ee0093ace26b))
+* Automated regeneration of datalabeling v1beta1 client ([#1318](https://www.github.com/googleapis/google-api-ruby-client/issues/1318)) ([387d0ce](https://www.github.com/googleapis/google-api-ruby-client/commit/387d0cebfe9dbddda004a6cc579cbc8399ed82de))
+* Automated regeneration of datastore v1 client ([#1294](https://www.github.com/googleapis/google-api-ruby-client/issues/1294)) ([d425140](https://www.github.com/googleapis/google-api-ruby-client/commit/d42514033d982d153d8f78727f23f0b4d49ea629))
+* Automated regeneration of datastore v1beta3 client ([#1295](https://www.github.com/googleapis/google-api-ruby-client/issues/1295)) ([9840c48](https://www.github.com/googleapis/google-api-ruby-client/commit/9840c481849200572321532ecc3b128bebbc1583))
+* Automated regeneration of deploymentmanager v2 client ([#1319](https://www.github.com/googleapis/google-api-ruby-client/issues/1319)) ([047de22](https://www.github.com/googleapis/google-api-ruby-client/commit/047de22f9c1084a4ccaef33cf7efe54f0055971b))
+* Automated regeneration of deploymentmanager v2beta client ([#1320](https://www.github.com/googleapis/google-api-ruby-client/issues/1320)) ([af15d56](https://www.github.com/googleapis/google-api-ruby-client/commit/af15d561f1922e936be21bb35cbccac8415f2e2e))
+* Automated regeneration of dialogflow v2 client ([#1330](https://www.github.com/googleapis/google-api-ruby-client/issues/1330)) ([27e25ea](https://www.github.com/googleapis/google-api-ruby-client/commit/27e25ea099e5c987b7435748b867e0795ac52666))
+* Automated regeneration of dialogflow v2beta1 client ([#1321](https://www.github.com/googleapis/google-api-ruby-client/issues/1321)) ([5bae04c](https://www.github.com/googleapis/google-api-ruby-client/commit/5bae04cbb55e0f0fe15fc3a96842f378b2d8d4ac))
+* Automated regeneration of dialogflow v3beta1 client ([#1331](https://www.github.com/googleapis/google-api-ruby-client/issues/1331)) ([4d5b98f](https://www.github.com/googleapis/google-api-ruby-client/commit/4d5b98ffca7eaf905a28939051f53ff2881aaf64))
+* Automated regeneration of displayvideo v1 client ([#1342](https://www.github.com/googleapis/google-api-ruby-client/issues/1342)) ([1a0c4a7](https://www.github.com/googleapis/google-api-ruby-client/commit/1a0c4a7b0f26aaefb051e7117cc464830308304b))
+* Automated regeneration of domains v1alpha2 client ([#1332](https://www.github.com/googleapis/google-api-ruby-client/issues/1332)) ([dda2e6c](https://www.github.com/googleapis/google-api-ruby-client/commit/dda2e6c739363210e2b27d728f9262b2caa32bab))
+* Automated regeneration of domains v1beta1 client ([#1343](https://www.github.com/googleapis/google-api-ruby-client/issues/1343)) ([2dca59f](https://www.github.com/googleapis/google-api-ruby-client/commit/2dca59f8925f1e235b8b5803ab984b0a2e2a7b98))
+* Automated regeneration of eventarc v1beta1 client ([#1296](https://www.github.com/googleapis/google-api-ruby-client/issues/1296)) ([6f144f7](https://www.github.com/googleapis/google-api-ruby-client/commit/6f144f7ea06cdd427ddcdeace5263e68f378a979))
+* Automated regeneration of firebase v1beta1 client ([#1322](https://www.github.com/googleapis/google-api-ruby-client/issues/1322)) ([1a4c898](https://www.github.com/googleapis/google-api-ruby-client/commit/1a4c898fc88855eadc75fe7042e14ce6e4377120))
+* Automated regeneration of firebasehosting v1beta1 client ([#1323](https://www.github.com/googleapis/google-api-ruby-client/issues/1323)) ([4d6973e](https://www.github.com/googleapis/google-api-ruby-client/commit/4d6973e487635b017e7f9ad0589b616bf4b00bee))
+* Automated regeneration of firestore v1 client ([#1297](https://www.github.com/googleapis/google-api-ruby-client/issues/1297)) ([4cc5ac9](https://www.github.com/googleapis/google-api-ruby-client/commit/4cc5ac9a04f3465310c8acd191ab3efe7afa3069))
+* Automated regeneration of firestore v1beta1 client ([#1298](https://www.github.com/googleapis/google-api-ruby-client/issues/1298)) ([1f36075](https://www.github.com/googleapis/google-api-ruby-client/commit/1f36075071530d3d0c4125641bd5fcddbb470db6))
+* Automated regeneration of games v1 client ([#1299](https://www.github.com/googleapis/google-api-ruby-client/issues/1299)) ([8c087d1](https://www.github.com/googleapis/google-api-ruby-client/commit/8c087d1968c21d8a147ebf3a28d641701f304d7a))
+* Automated regeneration of gameservices v1 client ([#1300](https://www.github.com/googleapis/google-api-ruby-client/issues/1300)) ([0c57d8e](https://www.github.com/googleapis/google-api-ruby-client/commit/0c57d8eecde12869e62dd8c9a1708c9abb9b3ef1))
+* Automated regeneration of gameservices v1beta client ([#1301](https://www.github.com/googleapis/google-api-ruby-client/issues/1301)) ([80a722f](https://www.github.com/googleapis/google-api-ruby-client/commit/80a722fbaf04229624afeab663043537e3981bb9))
+* Automated regeneration of iam v1 client ([855ba09](https://www.github.com/googleapis/google-api-ruby-client/commit/855ba09d7b9ac63ff240437edf413cc9d8b0a3b4))
+* Automated regeneration of iamcredentials v1 client ([#1333](https://www.github.com/googleapis/google-api-ruby-client/issues/1333)) ([df6b1b1](https://www.github.com/googleapis/google-api-ruby-client/commit/df6b1b134dc28a641db3cc4abf1f99bfa2db2ae3))
+* Automated regeneration of logging v2 client ([#1344](https://www.github.com/googleapis/google-api-ruby-client/issues/1344)) ([6c995ec](https://www.github.com/googleapis/google-api-ruby-client/commit/6c995ec7c638370205b0d30c849233dec1c5ff5e))
+* Automated regeneration of people v1 client ([#1303](https://www.github.com/googleapis/google-api-ruby-client/issues/1303)) ([79a43ec](https://www.github.com/googleapis/google-api-ruby-client/commit/79a43ec56f0591043ce631e889c3354471f07c7b))
+* Automated regeneration of privateca v1beta1 client ([#1304](https://www.github.com/googleapis/google-api-ruby-client/issues/1304)) ([ad7cdc7](https://www.github.com/googleapis/google-api-ruby-client/commit/ad7cdc79f8d83906fb282cc9643973f2c469cbc5))
+* Automated regeneration of recommendationengine v1beta1 client ([#1345](https://www.github.com/googleapis/google-api-ruby-client/issues/1345)) ([c25cd83](https://www.github.com/googleapis/google-api-ruby-client/commit/c25cd8320b4de2875191aadea85e159b15b3c250))
+* Automated regeneration of runtimeconfig v1beta1 client ([#1324](https://www.github.com/googleapis/google-api-ruby-client/issues/1324)) ([d18ef56](https://www.github.com/googleapis/google-api-ruby-client/commit/d18ef56eead6936295b0789924e90d0c7b016689))
+* Automated regeneration of safebrowsing v4 client ([#1305](https://www.github.com/googleapis/google-api-ruby-client/issues/1305)) ([599f53b](https://www.github.com/googleapis/google-api-ruby-client/commit/599f53bfa0e9276349445de8267f338370e4974a))
+* Automated regeneration of secretmanager v1 client ([#1346](https://www.github.com/googleapis/google-api-ruby-client/issues/1346)) ([cc4bc75](https://www.github.com/googleapis/google-api-ruby-client/commit/cc4bc758031ea9a9236244df0e530a8ead89dd1a))
+* Automated regeneration of secretmanager v1beta1 client ([#1347](https://www.github.com/googleapis/google-api-ruby-client/issues/1347)) ([ba2823f](https://www.github.com/googleapis/google-api-ruby-client/commit/ba2823f94308d71bb19733235f50ec6962e3347d))
+* Automated regeneration of servicecontrol v1 client ([#1325](https://www.github.com/googleapis/google-api-ruby-client/issues/1325)) ([0a00165](https://www.github.com/googleapis/google-api-ruby-client/commit/0a00165a12c24b7d9497c58015ccc067a1623331))
+* Automated regeneration of servicecontrol v2 client ([#1326](https://www.github.com/googleapis/google-api-ruby-client/issues/1326)) ([6e63895](https://www.github.com/googleapis/google-api-ruby-client/commit/6e6389574238c38dde4446161925a2fc2e7877b8))
+* Automated regeneration of servicemanagement v1 client ([#1306](https://www.github.com/googleapis/google-api-ruby-client/issues/1306)) ([c2c1be2](https://www.github.com/googleapis/google-api-ruby-client/commit/c2c1be2be34335d6cfc0093dec0768a83d2f087d))
+* Automated regeneration of serviceusage v1beta1 client ([#1334](https://www.github.com/googleapis/google-api-ruby-client/issues/1334)) ([2378835](https://www.github.com/googleapis/google-api-ruby-client/commit/237883527a4366623d777cbc863904a8b5225883))
+* Automated regeneration of smartdevicemanagement v1 client ([#1307](https://www.github.com/googleapis/google-api-ruby-client/issues/1307)) ([56d73b5](https://www.github.com/googleapis/google-api-ruby-client/commit/56d73b589325345a024edf088e6d3d647375f6b2))
+* Automated regeneration of sqladmin v1beta4 client ([#1335](https://www.github.com/googleapis/google-api-ruby-client/issues/1335)) ([4ef0d44](https://www.github.com/googleapis/google-api-ruby-client/commit/4ef0d445ab819d9d706bb1217e0ddd87babb6471))
+* Automated regeneration of storagetransfer v1 client ([#1327](https://www.github.com/googleapis/google-api-ruby-client/issues/1327)) ([2b4a559](https://www.github.com/googleapis/google-api-ruby-client/commit/2b4a559f06b8068ef28a2ca37c1d48bef6dc58db))
+* Automated regeneration of toolresults v1beta3 client ([#1336](https://www.github.com/googleapis/google-api-ruby-client/issues/1336)) ([7ab948e](https://www.github.com/googleapis/google-api-ruby-client/commit/7ab948e13218d4426dd16e2d4ba861d1f1b7a123))
+* Automated regeneration of translate v3 client ([#1308](https://www.github.com/googleapis/google-api-ruby-client/issues/1308)) ([10416aa](https://www.github.com/googleapis/google-api-ruby-client/commit/10416aa795a5582905349143d0080458328c242f))
+* Automated regeneration of translate v3beta1 client ([#1309](https://www.github.com/googleapis/google-api-ruby-client/issues/1309)) ([6f71109](https://www.github.com/googleapis/google-api-ruby-client/commit/6f71109e3823ae0ea988240a76bbf887ffe0696b))
+* Automated regeneration of vision v1 client ([#1310](https://www.github.com/googleapis/google-api-ruby-client/issues/1310)) ([e15dc63](https://www.github.com/googleapis/google-api-ruby-client/commit/e15dc632cfd4474103ef157e2ec915ee49aa46dc))
+* Automated regeneration of vision v1p1beta1 client ([#1311](https://www.github.com/googleapis/google-api-ruby-client/issues/1311)) ([73b17a4](https://www.github.com/googleapis/google-api-ruby-client/commit/73b17a488f1d86317f6492d682b5f552af45e5cf))
+* Automated regeneration of vision v1p2beta1 client ([#1312](https://www.github.com/googleapis/google-api-ruby-client/issues/1312)) ([4ea7309](https://www.github.com/googleapis/google-api-ruby-client/commit/4ea7309e56e8a6e3c450d7aeba0df3ebaa84d281))
+* Automated regeneration of youtube v3 client ([#1313](https://www.github.com/googleapis/google-api-ruby-client/issues/1313)) ([50ce2aa](https://www.github.com/googleapis/google-api-ruby-client/commit/50ce2aaa152cc7a9abe128e4db09b7c795825077))
+
+
+### Bug Fixes
+
+* Fix incorrect variable name in gem publish script ([8d2ef13](https://www.github.com/googleapis/google-api-ruby-client/commit/8d2ef13ecc4fd0426870bf3ab35770b4782063cf))
+
 ### 0.47.0 / 2020-10-27
 
 * Support adding query params to request options

data/generated/google/apis/bigquery_v2.rb

@@ -25,7 +25,7 @@ module Google
     # @see https://cloud.google.com/bigquery/
     module BigqueryV2
       VERSION = 'V2'
-      REVISION = '20201015'
+      REVISION = '20201022'
 
       # View and manage your data in Google BigQuery
       AUTH_BIGQUERY = 'https://www.googleapis.com/auth/bigquery'

data/generated/google/apis/bigquery_v2/service.rb

@@ -47,7 +47,7 @@ module Google
         attr_accessor :user_ip
 
         def initialize
-          super('https://bigquery.googleapis.com/', 'bigquery/v2/')
+          super('https://www.googleapis.com/', 'bigquery/v2/')
           @batch_path = 'batch/bigquery/v2'
         end
         

data/generated/google/apis/billingbudgets_v1.rb

@@ -26,7 +26,7 @@ module Google
     # @see https://cloud.google.com/billing/docs/how-to/budget-api-overview
     module BillingbudgetsV1
       VERSION = 'V1'
-      REVISION = '20201012'
+      REVISION = '20201026'
 
       # View and manage your Google Cloud Platform billing accounts
       AUTH_CLOUD_BILLING = 'https://www.googleapis.com/auth/cloud-billing'

data/generated/google/apis/billingbudgets_v1/classes.rb

@@ -119,6 +119,16 @@ module Google
       class GoogleCloudBillingBudgetsV1Filter
         include Google::Apis::Core::Hashable
       
+        # Optional. A list of credit types to be subtracted from gross cost to determine
+        # the spend for threshold calculations if and only if credit_types_treatment is
+        # INCLUDE_SPECIFIED_CREDITS. If credit_types_treatment is not
+        # INCLUDE_SPECIFIED_CREDITS, this field must be empty. See credits.type on https:
+        # //cloud.google.com/billing/docs/how-to/export-data-bigquery-tables#data-schema
+        # for a list of acceptable credit type values in this field.
+        # Corresponds to the JSON property `creditTypes`
+        # @return [Array<String>]
+        attr_accessor :credit_types
+      
         # Optional. If not set, default behavior is `INCLUDE_ALL_CREDITS`.
         # Corresponds to the JSON property `creditTypesTreatment`
         # @return [String]
@@ -165,6 +175,7 @@ module Google
       
         # Update properties of this object
         def update!(**args)
+          @credit_types = args[:credit_types] if args.key?(:credit_types)
           @credit_types_treatment = args[:credit_types_treatment] if args.key?(:credit_types_treatment)
           @labels = args[:labels] if args.key?(:labels)
           @projects = args[:projects] if args.key?(:projects)

data/generated/google/apis/billingbudgets_v1/representations.rb

@@ -106,6 +106,7 @@ module Google
       class GoogleCloudBillingBudgetsV1Filter
         # @private
         class Representation < Google::Apis::Core::JsonRepresentation
+          collection :credit_types, as: 'creditTypes'
           property :credit_types_treatment, as: 'creditTypesTreatment'
           hash :labels, as: 'labels', :class => Array do
         include Representable::JSON::Collection

data/generated/google/apis/billingbudgets_v1beta1.rb

@@ -26,7 +26,7 @@ module Google
     # @see https://cloud.google.com/billing/docs/how-to/budget-api-overview
     module BillingbudgetsV1beta1
       VERSION = 'V1beta1'
-      REVISION = '20201012'
+      REVISION = '20201026'
 
       # View and manage your Google Cloud Platform billing accounts
       AUTH_CLOUD_BILLING = 'https://www.googleapis.com/auth/cloud-billing'

data/generated/google/apis/billingbudgets_v1beta1/classes.rb

@@ -199,6 +199,16 @@ module Google
       class GoogleCloudBillingBudgetsV1beta1Filter
         include Google::Apis::Core::Hashable
       
+        # Optional. A list of credit types to be subtracted from gross cost to determine
+        # the spend for threshold calculations if and only if credit_types_treatment is
+        # INCLUDE_SPECIFIED_CREDITS. If credit_types_treatment is not
+        # INCLUDE_SPECIFIED_CREDITS, this field must be empty. See credits.type at https:
+        # //cloud.google.com/billing/docs/how-to/export-data-bigquery-tables#data-schema
+        # for a list of acceptable credit type values in this field.
+        # Corresponds to the JSON property `creditTypes`
+        # @return [Array<String>]
+        attr_accessor :credit_types
+      
         # Optional. If not set, default behavior is `INCLUDE_ALL_CREDITS`.
         # Corresponds to the JSON property `creditTypesTreatment`
         # @return [String]
@@ -245,6 +255,7 @@ module Google
       
         # Update properties of this object
         def update!(**args)
+          @credit_types = args[:credit_types] if args.key?(:credit_types)
           @credit_types_treatment = args[:credit_types_treatment] if args.key?(:credit_types_treatment)
           @labels = args[:labels] if args.key?(:labels)
           @projects = args[:projects] if args.key?(:projects)

data/generated/google/apis/billingbudgets_v1beta1/representations.rb

@@ -136,6 +136,7 @@ module Google
       class GoogleCloudBillingBudgetsV1beta1Filter
         # @private
         class Representation < Google::Apis::Core::JsonRepresentation
+          collection :credit_types, as: 'creditTypes'
           property :credit_types_treatment, as: 'creditTypesTreatment'
           hash :labels, as: 'labels', :class => Array do
         include Representable::JSON::Collection

data/generated/google/apis/cloudasset_v1.rb

@@ -25,7 +25,7 @@ module Google
     # @see https://cloud.google.com/asset-inventory/docs/quickstart
     module CloudassetV1
       VERSION = 'V1'
-      REVISION = '20200911'
+      REVISION = '20201023'
 
       # View and manage your data across Google Cloud Platform services
       AUTH_CLOUD_PLATFORM = 'https://www.googleapis.com/auth/cloud-platform'

data/generated/google/apis/cloudasset_v1/classes.rb

@@ -22,6 +22,94 @@ module Google
   module Apis
     module CloudassetV1
       
+      # Specifies roles and/or permissions to analyze, to determine both the
+      # identities possessing them and the resources they control. If multiple values
+      # are specified, results will include roles or permissions matching any of them.
+      # The total number of roles and permissions should be equal or less than 10.
+      class AccessSelector
+        include Google::Apis::Core::Hashable
+      
+        # Optional. The permissions to appear in result.
+        # Corresponds to the JSON property `permissions`
+        # @return [Array<String>]
+        attr_accessor :permissions
+      
+        # Optional. The roles to appear in result.
+        # Corresponds to the JSON property `roles`
+        # @return [Array<String>]
+        attr_accessor :roles
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @permissions = args[:permissions] if args.key?(:permissions)
+          @roles = args[:roles] if args.key?(:roles)
+        end
+      end
+      
+      # A request message for AssetService.AnalyzeIamPolicyLongrunning.
+      class AnalyzeIamPolicyLongrunningRequest
+        include Google::Apis::Core::Hashable
+      
+        # IAM policy analysis query message.
+        # Corresponds to the JSON property `analysisQuery`
+        # @return [Google::Apis::CloudassetV1::IamPolicyAnalysisQuery]
+        attr_accessor :analysis_query
+      
+        # Output configuration for export IAM policy analysis destination.
+        # Corresponds to the JSON property `outputConfig`
+        # @return [Google::Apis::CloudassetV1::IamPolicyAnalysisOutputConfig]
+        attr_accessor :output_config
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @analysis_query = args[:analysis_query] if args.key?(:analysis_query)
+          @output_config = args[:output_config] if args.key?(:output_config)
+        end
+      end
+      
+      # A response message for AssetService.AnalyzeIamPolicy.
+      class AnalyzeIamPolicyResponse
+        include Google::Apis::Core::Hashable
+      
+        # Represents whether all entries in the main_analysis and
+        # service_account_impersonation_analysis have been fully explored to answer the
+        # query in the request.
+        # Corresponds to the JSON property `fullyExplored`
+        # @return [Boolean]
+        attr_accessor :fully_explored
+        alias_method :fully_explored?, :fully_explored
+      
+        # An analysis message to group the query and results.
+        # Corresponds to the JSON property `mainAnalysis`
+        # @return [Google::Apis::CloudassetV1::IamPolicyAnalysis]
+        attr_accessor :main_analysis
+      
+        # The service account impersonation analysis if AnalyzeIamPolicyRequest.
+        # analyze_service_account_impersonation is enabled.
+        # Corresponds to the JSON property `serviceAccountImpersonationAnalysis`
+        # @return [Array<Google::Apis::CloudassetV1::IamPolicyAnalysis>]
+        attr_accessor :service_account_impersonation_analysis
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @fully_explored = args[:fully_explored] if args.key?(:fully_explored)
+          @main_analysis = args[:main_analysis] if args.key?(:main_analysis)
+          @service_account_impersonation_analysis = args[:service_account_impersonation_analysis] if args.key?(:service_account_impersonation_analysis)
+        end
+      end
+      
       # An asset in Google Cloud. An asset can be any resource in the Google Cloud [
       # resource hierarchy](https://cloud.google.com/resource-manager/docs/cloud-
       # platform-resource-hierarchy), a resource outside the Google Cloud resource
@@ -697,6 +785,273 @@ module Google
         end
       end
       
+      # An IAM role or permission under analysis.
+      class GoogleCloudAssetV1Access
+        include Google::Apis::Core::Hashable
+      
+        # Represents the detailed state of an entity under analysis, such as a resource,
+        # an identity or an access.
+        # Corresponds to the JSON property `analysisState`
+        # @return [Google::Apis::CloudassetV1::IamPolicyAnalysisState]
+        attr_accessor :analysis_state
+      
+        # The permission.
+        # Corresponds to the JSON property `permission`
+        # @return [String]
+        attr_accessor :permission
+      
+        # The role.
+        # Corresponds to the JSON property `role`
+        # @return [String]
+        attr_accessor :role
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @analysis_state = args[:analysis_state] if args.key?(:analysis_state)
+          @permission = args[:permission] if args.key?(:permission)
+          @role = args[:role] if args.key?(:role)
+        end
+      end
+      
+      # An access control list, derived from the above IAM policy binding, which
+      # contains a set of resources and accesses. May include one item from each set
+      # to compose an access control entry. NOTICE that there could be multiple access
+      # control lists for one IAM policy binding. The access control lists are created
+      # based on resource and access combinations. For example, assume we have the
+      # following cases in one IAM policy binding: - Permission P1 and P2 apply to
+      # resource R1 and R2; - Permission P3 applies to resource R2 and R3; This will
+      # result in the following access control lists: - AccessControlList 1: [R1, R2],
+      # [P1, P2] - AccessControlList 2: [R2, R3], [P3]
+      class GoogleCloudAssetV1AccessControlList
+        include Google::Apis::Core::Hashable
+      
+        # The accesses that match one of the following conditions: - The access_selector,
+        # if it is specified in request; - Otherwise, access specifiers reachable from
+        # the policy binding's role.
+        # Corresponds to the JSON property `accesses`
+        # @return [Array<Google::Apis::CloudassetV1::GoogleCloudAssetV1Access>]
+        attr_accessor :accesses
+      
+        # Resource edges of the graph starting from the policy attached resource to any
+        # descendant resources. The Edge.source_node contains the full resource name of
+        # a parent resource and Edge.target_node contains the full resource name of a
+        # child resource. This field is present only if the output_resource_edges option
+        # is enabled in request.
+        # Corresponds to the JSON property `resourceEdges`
+        # @return [Array<Google::Apis::CloudassetV1::GoogleCloudAssetV1Edge>]
+        attr_accessor :resource_edges
+      
+        # The resources that match one of the following conditions: - The
+        # resource_selector, if it is specified in request; - Otherwise, resources
+        # reachable from the policy attached resource.
+        # Corresponds to the JSON property `resources`
+        # @return [Array<Google::Apis::CloudassetV1::GoogleCloudAssetV1Resource>]
+        attr_accessor :resources
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @accesses = args[:accesses] if args.key?(:accesses)
+          @resource_edges = args[:resource_edges] if args.key?(:resource_edges)
+          @resources = args[:resources] if args.key?(:resources)
+        end
+      end
+      
+      # A BigQuery destination.
+      class GoogleCloudAssetV1BigQueryDestination
+        include Google::Apis::Core::Hashable
+      
+        # Required. The BigQuery dataset in format "projects/projectId/datasets/
+        # datasetId", to which the analysis results should be exported. If this dataset
+        # does not exist, the export call will return an INVALID_ARGUMENT error.
+        # Corresponds to the JSON property `dataset`
+        # @return [String]
+        attr_accessor :dataset
+      
+        # The partition key for BigQuery partitioned table.
+        # Corresponds to the JSON property `partitionKey`
+        # @return [String]
+        attr_accessor :partition_key
+      
+        # Required. The prefix of the BigQuery tables to which the analysis results will
+        # be written. Tables will be created based on this table_prefix if not exist: *
+        # _analysis table will contain export operation's metadata. * _analysis_result
+        # will contain all the IamPolicyAnalysisResult. When [partition_key] is
+        # specified, both tables will be partitioned based on the [partition_key].
+        # Corresponds to the JSON property `tablePrefix`
+        # @return [String]
+        attr_accessor :table_prefix
+      
+        # Optional. Specifies the action that occurs if the destination table or
+        # partition already exists. The following values are supported: * WRITE_TRUNCATE:
+        # If the table or partition already exists, BigQuery overwrites the entire
+        # table or all the partitions data. * WRITE_APPEND: If the table or partition
+        # already exists, BigQuery appends the data to the table or the latest partition.
+        # * WRITE_EMPTY: If the table already exists and contains data, an error is
+        # returned. The default value is WRITE_APPEND. Each action is atomic and only
+        # occurs if BigQuery is able to complete the job successfully. Details are at
+        # https://cloud.google.com/bigquery/docs/loading-data-local#
+        # appending_to_or_overwriting_a_table_using_a_local_file.
+        # Corresponds to the JSON property `writeDisposition`
+        # @return [String]
+        attr_accessor :write_disposition
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @dataset = args[:dataset] if args.key?(:dataset)
+          @partition_key = args[:partition_key] if args.key?(:partition_key)
+          @table_prefix = args[:table_prefix] if args.key?(:table_prefix)
+          @write_disposition = args[:write_disposition] if args.key?(:write_disposition)
+        end
+      end
+      
+      # A directional edge.
+      class GoogleCloudAssetV1Edge
+        include Google::Apis::Core::Hashable
+      
+        # The source node of the edge. For example, it could be a full resource name for
+        # a resource node or an email of an identity.
+        # Corresponds to the JSON property `sourceNode`
+        # @return [String]
+        attr_accessor :source_node
+      
+        # The target node of the edge. For example, it could be a full resource name for
+        # a resource node or an email of an identity.
+        # Corresponds to the JSON property `targetNode`
+        # @return [String]
+        attr_accessor :target_node
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @source_node = args[:source_node] if args.key?(:source_node)
+          @target_node = args[:target_node] if args.key?(:target_node)
+        end
+      end
+      
+      # A Cloud Storage location.
+      class GoogleCloudAssetV1GcsDestination
+        include Google::Apis::Core::Hashable
+      
+        # Required. The uri of the Cloud Storage object. It's the same uri that is used
+        # by gsutil. For example: "gs://bucket_name/object_name". See [Quickstart: Using
+        # the gsutil tool] (https://cloud.google.com/storage/docs/quickstart-gsutil) for
+        # examples.
+        # Corresponds to the JSON property `uri`
+        # @return [String]
+        attr_accessor :uri
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @uri = args[:uri] if args.key?(:uri)
+        end
+      end
+      
+      # An identity under analysis.
+      class GoogleCloudAssetV1Identity
+        include Google::Apis::Core::Hashable
+      
+        # Represents the detailed state of an entity under analysis, such as a resource,
+        # an identity or an access.
+        # Corresponds to the JSON property `analysisState`
+        # @return [Google::Apis::CloudassetV1::IamPolicyAnalysisState]
+        attr_accessor :analysis_state
+      
+        # The identity name in any form of members appear in [IAM policy binding](https:/
+        # /cloud.google.com/iam/reference/rest/v1/Binding), such as: - user:foo@google.
+        # com - group:group1@google.com - serviceAccount:s1@prj1.iam.gserviceaccount.com
+        # - projectOwner:some_project_id - domain:google.com - allUsers - etc.
+        # Corresponds to the JSON property `name`
+        # @return [String]
+        attr_accessor :name
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @analysis_state = args[:analysis_state] if args.key?(:analysis_state)
+          @name = args[:name] if args.key?(:name)
+        end
+      end
+      
+      # The identities and group edges.
+      class GoogleCloudAssetV1IdentityList
+        include Google::Apis::Core::Hashable
+      
+        # Group identity edges of the graph starting from the binding's group members to
+        # any node of the identities. The Edge.source_node contains a group, such as `
+        # group:parent@google.com`. The Edge.target_node contains a member of the group,
+        # such as `group:child@google.com` or `user:foo@google.com`. This field is
+        # present only if the output_group_edges option is enabled in request.
+        # Corresponds to the JSON property `groupEdges`
+        # @return [Array<Google::Apis::CloudassetV1::GoogleCloudAssetV1Edge>]
+        attr_accessor :group_edges
+      
+        # Only the identities that match one of the following conditions will be
+        # presented: - The identity_selector, if it is specified in request; - Otherwise,
+        # identities reachable from the policy binding's members.
+        # Corresponds to the JSON property `identities`
+        # @return [Array<Google::Apis::CloudassetV1::GoogleCloudAssetV1Identity>]
+        attr_accessor :identities
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @group_edges = args[:group_edges] if args.key?(:group_edges)
+          @identities = args[:identities] if args.key?(:identities)
+        end
+      end
+      
+      # A Google Cloud resource under analysis.
+      class GoogleCloudAssetV1Resource
+        include Google::Apis::Core::Hashable
+      
+        # Represents the detailed state of an entity under analysis, such as a resource,
+        # an identity or an access.
+        # Corresponds to the JSON property `analysisState`
+        # @return [Google::Apis::CloudassetV1::IamPolicyAnalysisState]
+        attr_accessor :analysis_state
+      
+        # The [full resource name](https://cloud.google.com/asset-inventory/docs/
+        # resource-name-format)
+        # Corresponds to the JSON property `fullResourceName`
+        # @return [String]
+        attr_accessor :full_resource_name
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @analysis_state = args[:analysis_state] if args.key?(:analysis_state)
+          @full_resource_name = args[:full_resource_name] if args.key?(:full_resource_name)
+        end
+      end
+      
       # Used in `policy_type` to specify how `boolean_policy` will behave at this
       # resource.
       class GoogleCloudOrgpolicyV1BooleanPolicy
@@ -1464,6 +1819,206 @@ module Google
         end
       end
       
+      # An analysis message to group the query and results.
+      class IamPolicyAnalysis
+        include Google::Apis::Core::Hashable
+      
+        # IAM policy analysis query message.
+        # Corresponds to the JSON property `analysisQuery`
+        # @return [Google::Apis::CloudassetV1::IamPolicyAnalysisQuery]
+        attr_accessor :analysis_query
+      
+        # A list of IamPolicyAnalysisResult that matches the analysis query, or empty if
+        # no result is found.
+        # Corresponds to the JSON property `analysisResults`
+        # @return [Array<Google::Apis::CloudassetV1::IamPolicyAnalysisResult>]
+        attr_accessor :analysis_results
+      
+        # Represents whether all entries in the analysis_results have been fully
+        # explored to answer the query.
+        # Corresponds to the JSON property `fullyExplored`
+        # @return [Boolean]
+        attr_accessor :fully_explored
+        alias_method :fully_explored?, :fully_explored
+      
+        # A list of non-critical errors happened during the query handling.
+        # Corresponds to the JSON property `nonCriticalErrors`
+        # @return [Array<Google::Apis::CloudassetV1::IamPolicyAnalysisState>]
+        attr_accessor :non_critical_errors
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @analysis_query = args[:analysis_query] if args.key?(:analysis_query)
+          @analysis_results = args[:analysis_results] if args.key?(:analysis_results)
+          @fully_explored = args[:fully_explored] if args.key?(:fully_explored)
+          @non_critical_errors = args[:non_critical_errors] if args.key?(:non_critical_errors)
+        end
+      end
+      
+      # Output configuration for export IAM policy analysis destination.
+      class IamPolicyAnalysisOutputConfig
+        include Google::Apis::Core::Hashable
+      
+        # A BigQuery destination.
+        # Corresponds to the JSON property `bigqueryDestination`
+        # @return [Google::Apis::CloudassetV1::GoogleCloudAssetV1BigQueryDestination]
+        attr_accessor :bigquery_destination
+      
+        # A Cloud Storage location.
+        # Corresponds to the JSON property `gcsDestination`
+        # @return [Google::Apis::CloudassetV1::GoogleCloudAssetV1GcsDestination]
+        attr_accessor :gcs_destination
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @bigquery_destination = args[:bigquery_destination] if args.key?(:bigquery_destination)
+          @gcs_destination = args[:gcs_destination] if args.key?(:gcs_destination)
+        end
+      end
+      
+      # IAM policy analysis query message.
+      class IamPolicyAnalysisQuery
+        include Google::Apis::Core::Hashable
+      
+        # Specifies roles and/or permissions to analyze, to determine both the
+        # identities possessing them and the resources they control. If multiple values
+        # are specified, results will include roles or permissions matching any of them.
+        # The total number of roles and permissions should be equal or less than 10.
+        # Corresponds to the JSON property `accessSelector`
+        # @return [Google::Apis::CloudassetV1::AccessSelector]
+        attr_accessor :access_selector
+      
+        # Specifies an identity for which to determine resource access, based on roles
+        # assigned either directly to them or to the groups they belong to, directly or
+        # indirectly.
+        # Corresponds to the JSON property `identitySelector`
+        # @return [Google::Apis::CloudassetV1::IdentitySelector]
+        attr_accessor :identity_selector
+      
+        # Contains query options.
+        # Corresponds to the JSON property `options`
+        # @return [Google::Apis::CloudassetV1::Options]
+        attr_accessor :options
+      
+        # Specifies the resource to analyze for access policies, which may be set
+        # directly on the resource, or on ancestors such as organizations, folders or
+        # projects.
+        # Corresponds to the JSON property `resourceSelector`
+        # @return [Google::Apis::CloudassetV1::ResourceSelector]
+        attr_accessor :resource_selector
+      
+        # Required. The relative name of the root asset. Only resources and IAM policies
+        # within the scope will be analyzed. This can only be an organization number (
+        # such as "organizations/123"), a folder number (such as "folders/123"), a
+        # project ID (such as "projects/my-project-id"), or a project number (such as "
+        # projects/12345"). To know how to get organization id, visit [here ](https://
+        # cloud.google.com/resource-manager/docs/creating-managing-organization#
+        # retrieving_your_organization_id). To know how to get folder or project id,
+        # visit [here ](https://cloud.google.com/resource-manager/docs/creating-managing-
+        # folders#viewing_or_listing_folders_and_projects).
+        # Corresponds to the JSON property `scope`
+        # @return [String]
+        attr_accessor :scope
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @access_selector = args[:access_selector] if args.key?(:access_selector)
+          @identity_selector = args[:identity_selector] if args.key?(:identity_selector)
+          @options = args[:options] if args.key?(:options)
+          @resource_selector = args[:resource_selector] if args.key?(:resource_selector)
+          @scope = args[:scope] if args.key?(:scope)
+        end
+      end
+      
+      # IAM Policy analysis result, consisting of one IAM policy binding and derived
+      # access control lists.
+      class IamPolicyAnalysisResult
+        include Google::Apis::Core::Hashable
+      
+        # The access control lists derived from the iam_binding that match or
+        # potentially match resource and access selectors specified in the request.
+        # Corresponds to the JSON property `accessControlLists`
+        # @return [Array<Google::Apis::CloudassetV1::GoogleCloudAssetV1AccessControlList>]
+        attr_accessor :access_control_lists
+      
+        # The [full resource name](https://cloud.google.com/asset-inventory/docs/
+        # resource-name-format) of the resource to which the iam_binding policy attaches.
+        # Corresponds to the JSON property `attachedResourceFullName`
+        # @return [String]
+        attr_accessor :attached_resource_full_name
+      
+        # Represents whether all analyses on the iam_binding have successfully finished.
+        # Corresponds to the JSON property `fullyExplored`
+        # @return [Boolean]
+        attr_accessor :fully_explored
+        alias_method :fully_explored?, :fully_explored
+      
+        # Associates `members` with a `role`.
+        # Corresponds to the JSON property `iamBinding`
+        # @return [Google::Apis::CloudassetV1::Binding]
+        attr_accessor :iam_binding
+      
+        # The identities and group edges.
+        # Corresponds to the JSON property `identityList`
+        # @return [Google::Apis::CloudassetV1::GoogleCloudAssetV1IdentityList]
+        attr_accessor :identity_list
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @access_control_lists = args[:access_control_lists] if args.key?(:access_control_lists)
+          @attached_resource_full_name = args[:attached_resource_full_name] if args.key?(:attached_resource_full_name)
+          @fully_explored = args[:fully_explored] if args.key?(:fully_explored)
+          @iam_binding = args[:iam_binding] if args.key?(:iam_binding)
+          @identity_list = args[:identity_list] if args.key?(:identity_list)
+        end
+      end
+      
+      # Represents the detailed state of an entity under analysis, such as a resource,
+      # an identity or an access.
+      class IamPolicyAnalysisState
+        include Google::Apis::Core::Hashable
+      
+        # The human-readable description of the cause of failure.
+        # Corresponds to the JSON property `cause`
+        # @return [String]
+        attr_accessor :cause
+      
+        # The Google standard error code that best describes the state. For example: -
+        # OK means the analysis on this entity has been successfully finished; -
+        # PERMISSION_DENIED means an access denied error is encountered; -
+        # DEADLINE_EXCEEDED means the analysis on this entity hasn't been started in
+        # time;
+        # Corresponds to the JSON property `code`
+        # @return [String]
+        attr_accessor :code
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @cause = args[:cause] if args.key?(:cause)
+          @code = args[:code] if args.key?(:code)
+        end
+      end
+      
       # A result of IAM Policy search, containing information of an IAM policy.
       class IamPolicySearchResult
         include Google::Apis::Core::Hashable
@@ -1537,6 +2092,32 @@ module Google
         end
       end
       
+      # Specifies an identity for which to determine resource access, based on roles
+      # assigned either directly to them or to the groups they belong to, directly or
+      # indirectly.
+      class IdentitySelector
+        include Google::Apis::Core::Hashable
+      
+        # Required. The identity appear in the form of members in [IAM policy binding](
+        # https://cloud.google.com/iam/reference/rest/v1/Binding). The examples of
+        # supported forms are: "user:mike@example.com", "group:admins@example.com", "
+        # domain:google.com", "serviceAccount:my-project-id@appspot.gserviceaccount.com".
+        # Notice that wildcard characters (such as * and ?) are not supported. You must
+        # give a specific identity.
+        # Corresponds to the JSON property `identity`
+        # @return [String]
+        attr_accessor :identity
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @identity = args[:identity] if args.key?(:identity)
+        end
+      end
+      
       # 
       class ListFeedsResponse
         include Google::Apis::Core::Hashable
@@ -1618,6 +2199,98 @@ module Google
         end
       end
       
+      # Contains query options.
+      class Options
+        include Google::Apis::Core::Hashable
+      
+        # Optional. If true, the response will include access analysis from identities
+        # to resources via service account impersonation. This is a very expensive
+        # operation, because many derived queries will be executed. We highly recommend
+        # you use AssetService.AnalyzeIamPolicyLongrunning rpc instead. For example, if
+        # the request analyzes for which resources user A has permission P, and there's
+        # an IAM policy states user A has iam.serviceAccounts.getAccessToken permission
+        # to a service account SA, and there's another IAM policy states service account
+        # SA has permission P to a GCP folder F, then user A potentially has access to
+        # the GCP folder F. And those advanced analysis results will be included in
+        # AnalyzeIamPolicyResponse.service_account_impersonation_analysis. Another
+        # example, if the request analyzes for who has permission P to a GCP folder F,
+        # and there's an IAM policy states user A has iam.serviceAccounts.actAs
+        # permission to a service account SA, and there's another IAM policy states
+        # service account SA has permission P to the GCP folder F, then user A
+        # potentially has access to the GCP folder F. And those advanced analysis
+        # results will be included in AnalyzeIamPolicyResponse.
+        # service_account_impersonation_analysis. Default is false.
+        # Corresponds to the JSON property `analyzeServiceAccountImpersonation`
+        # @return [Boolean]
+        attr_accessor :analyze_service_account_impersonation
+        alias_method :analyze_service_account_impersonation?, :analyze_service_account_impersonation
+      
+        # Optional. If true, the identities section of the result will expand any Google
+        # groups appearing in an IAM policy binding. If IamPolicyAnalysisQuery.
+        # identity_selector is specified, the identity in the result will be determined
+        # by the selector, and this flag is not allowed to set. Default is false.
+        # Corresponds to the JSON property `expandGroups`
+        # @return [Boolean]
+        attr_accessor :expand_groups
+        alias_method :expand_groups?, :expand_groups
+      
+        # Optional. If true and IamPolicyAnalysisQuery.resource_selector is not
+        # specified, the resource section of the result will expand any resource
+        # attached to an IAM policy to include resources lower in the resource hierarchy.
+        # For example, if the request analyzes for which resources user A has
+        # permission P, and the results include an IAM policy with P on a GCP folder,
+        # the results will also include resources in that folder with permission P. If
+        # true and IamPolicyAnalysisQuery.resource_selector is specified, the resource
+        # section of the result will expand the specified resource to include resources
+        # lower in the resource hierarchy. Only project or lower resources are supported.
+        # Folder and organization resource cannot be used together with this option.
+        # For example, if the request analyzes for which users have permission P on a
+        # GCP project with this option enabled, the results will include all users who
+        # have permission P on that project or any lower resource. Default is false.
+        # Corresponds to the JSON property `expandResources`
+        # @return [Boolean]
+        attr_accessor :expand_resources
+        alias_method :expand_resources?, :expand_resources
+      
+        # Optional. If true, the access section of result will expand any roles
+        # appearing in IAM policy bindings to include their permissions. If
+        # IamPolicyAnalysisQuery.access_selector is specified, the access section of the
+        # result will be determined by the selector, and this flag is not allowed to set.
+        # Default is false.
+        # Corresponds to the JSON property `expandRoles`
+        # @return [Boolean]
+        attr_accessor :expand_roles
+        alias_method :expand_roles?, :expand_roles
+      
+        # Optional. If true, the result will output group identity edges, starting from
+        # the binding's group members, to any expanded identities. Default is false.
+        # Corresponds to the JSON property `outputGroupEdges`
+        # @return [Boolean]
+        attr_accessor :output_group_edges
+        alias_method :output_group_edges?, :output_group_edges
+      
+        # Optional. If true, the result will output resource edges, starting from the
+        # policy attached resource, to any expanded resources. Default is false.
+        # Corresponds to the JSON property `outputResourceEdges`
+        # @return [Boolean]
+        attr_accessor :output_resource_edges
+        alias_method :output_resource_edges?, :output_resource_edges
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @analyze_service_account_impersonation = args[:analyze_service_account_impersonation] if args.key?(:analyze_service_account_impersonation)
+          @expand_groups = args[:expand_groups] if args.key?(:expand_groups)
+          @expand_resources = args[:expand_resources] if args.key?(:expand_resources)
+          @expand_roles = args[:expand_roles] if args.key?(:expand_roles)
+          @output_group_edges = args[:output_group_edges] if args.key?(:output_group_edges)
+          @output_resource_edges = args[:output_resource_edges] if args.key?(:output_resource_edges)
+        end
+      end
+      
       # Output configuration for export assets destination.
       class OutputConfig
         include Google::Apis::Core::Hashable
@@ -1968,6 +2641,30 @@ module Google
         end
       end
       
+      # Specifies the resource to analyze for access policies, which may be set
+      # directly on the resource, or on ancestors such as organizations, folders or
+      # projects.
+      class ResourceSelector
+        include Google::Apis::Core::Hashable
+      
+        # Required. The [full resource name] (https://cloud.google.com/asset-inventory/
+        # docs/resource-name-format) of a resource of [supported resource types](https://
+        # cloud.google.com/asset-inventory/docs/supported-asset-types#
+        # analyzable_asset_types).
+        # Corresponds to the JSON property `fullResourceName`
+        # @return [String]
+        attr_accessor :full_resource_name
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @full_resource_name = args[:full_resource_name] if args.key?(:full_resource_name)
+        end
+      end
+      
       # Search all IAM policies response.
       class SearchAllIamPoliciesResponse
         include Google::Apis::Core::Hashable