google-apis-accessapproval_v1 0.43.0 → 0.44.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 953c55fb5015191b3261c390484c89380a726fedc6953fd14bd9dbab668e835a
-  data.tar.gz: 7f57e9ee563c35c311ba522afb3d37f4c65cd73df8a1111fecafec1867c9635f
+  metadata.gz: 03b6773b6dd641eccfdf2a8768986bbec7a25a48f4ee453e47e97a1d390d36f8
+  data.tar.gz: 99afd5c94baf25a461b0db551c51f0084a70c46ead7b11e8f9cbf4e7f0e153a4
 SHA512:
-  metadata.gz: 0f410f20941fb88df4e7c90f51bcd4bc76404597fd17e790d3c91199d997a10ed8a98234d4b3afb9272f9b6f78726a7ab4e743d7300c9080e6172273026479cd
-  data.tar.gz: 5559fbb420537e7c9f70102aa0ccc5cfe858d01c29f29a214746135a77966ff66348ee81ca14f1836ca2c12bcc38f1f426b583cee9e5cc621e0721c97147002a
+  metadata.gz: 3fc8dd21f3b23cc6ce4c8c0038adfd26b06cb8c0759a54179ac92657c2773a4cc2a6a092ec53712996a82ecb4f87434b2be82d79790e5b50c4c93673af72fd5a
+  data.tar.gz: 2dd38ccf8e9847becf11b720595efc2b956c11148c88be5b31fb5c4bfcb56aaec51c76505ccb3bfdea1438028e63a91ae3af5592a6ccaab30dcc19f9129764eb

data/CHANGELOG.md

@@ -1,5 +1,10 @@
 # Release history for google-apis-accessapproval_v1
 
+### v0.44.0 (2025-09-21)
+
+* Regenerated from discovery document revision 20250912
+* Regenerated using generator version 0.18.0
+
 ### v0.43.0 (2025-05-04)
 
 * Regenerated using generator version 0.17.0

data/lib/google/apis/accessapproval_v1/classes.rb

@@ -97,9 +97,7 @@ module Google
         # If name refers to an organization, enrollment can be done for individual
         # services. If name refers to a folder or project, enrollment can only be done
         # on an all or nothing basis. If a cloud_product is repeated in this list, the
-        # first entry will be honored and all following entries will be discarded. A
-        # maximum of 10 enrolled services will be enforced, to be expanded as the set of
-        # supported services is expanded.
+        # first entry will be honored and all following entries will be discarded.
         # Corresponds to the JSON property `enrolledServices`
         # @return [Array<Google::Apis::AccessapprovalV1::EnrolledService>]
         attr_accessor :enrolled_services
@@ -131,34 +129,38 @@ module Google
         # @return [Array<String>]
         attr_accessor :notification_emails
       
-        # Optional. A pubsub topic to which notifications relating to approval requests
-        # should be sent.
+        # Optional. A pubsub topic that notifications relating to access approval are
+        # published to. Notifications include pre-approved accesses.
         # Corresponds to the JSON property `notificationPubsubTopic`
         # @return [String]
         attr_accessor :notification_pubsub_topic
       
-        # This preference is communicated to Google personnel when sending an approval
-        # request but can be overridden if necessary.
+        # This field is used to set a preference for granularity of an access approval
+        # request. If true, Google personnel will be asked to send resource-level
+        # requests when possible. If false, Google personnel will be asked to send
+        # requests at the project level.
         # Corresponds to the JSON property `preferNoBroadApprovalRequests`
         # @return [Boolean]
         attr_accessor :prefer_no_broad_approval_requests
         alias_method :prefer_no_broad_approval_requests?, :prefer_no_broad_approval_requests
       
-        # This preference is shared with Google personnel, but can be overridden if said
-        # personnel deems necessary. The approver ultimately can set the expiration at
-        # approval time.
+        # Set the default access approval request expiration time. This value is able to
+        # be set directly by the customer at the time of approval, overriding this
+        # suggested value. We recommend setting this value to 30 days.
         # Corresponds to the JSON property `preferredRequestExpirationDays`
         # @return [Fixnum]
         attr_accessor :preferred_request_expiration_days
       
-        # Optional. A setting to indicate the maximum width of an Access Approval
-        # request.
+        # Optional. A setting that indicates the maximum scope of an Access Approval
+        # request: either organization, folder, or project. Google administrators will
+        # be asked to send requests no broader than the configured scope.
         # Corresponds to the JSON property `requestScopeMaxWidthPreference`
         # @return [String]
         attr_accessor :request_scope_max_width_preference
       
-        # Optional. A setting to require approval request justifications to be customer
-        # visible.
+        # Optional. When enabled, Google will only be able to send approval requests for
+        # access reasons with a customer accessible case ID in the reason detail. Also
+        # known as "Require customer initiated support case justification"
         # Corresponds to the JSON property `requireCustomerVisibleJustification`
         # @return [Boolean]
         attr_accessor :require_customer_visible_justification
@@ -187,26 +189,27 @@ module Google
         end
       end
       
-      # Home office and physical location of the principal.
+      # Physical assigned office and physical location of the Google administrator
+      # performing the access.
       class AccessLocations
         include Google::Apis::Core::Hashable
       
-        # The "home office" location of the principal. A two-letter country code (ISO
-        # 3166-1 alpha-2), such as "US", "DE" or "GB" or a region code. In some limited
-        # situations Google systems may refer refer to a region code instead of a
-        # country code. Possible Region Codes: * ASI: Asia * EUR: Europe * OCE: Oceania *
-        # AFR: Africa * NAM: North America * SAM: South America * ANT: Antarctica * ANY:
-        # Any location
+        # The "home office" location of the Google administrator. A two-letter country
+        # code (ISO 3166-1 alpha-2), such as "US", "DE" or "GB" or a region code. In
+        # some limited situations Google systems may refer refer to a region code
+        # instead of a country code. Possible Region Codes: * ASI: Asia * EUR: Europe *
+        # OCE: Oceania * AFR: Africa * NAM: North America * SAM: South America * ANT:
+        # Antarctica * ANY: Any location
         # Corresponds to the JSON property `principalOfficeCountry`
         # @return [String]
         attr_accessor :principal_office_country
       
-        # Physical location of the principal at the time of the access. A two-letter
-        # country code (ISO 3166-1 alpha-2), such as "US", "DE" or "GB" or a region code.
-        # In some limited situations Google systems may refer refer to a region code
-        # instead of a country code. Possible Region Codes: * ASI: Asia * EUR: Europe *
-        # OCE: Oceania * AFR: Africa * NAM: North America * SAM: South America * ANT:
-        # Antarctica * ANY: Any location
+        # Physical location of the Google administrator at the time of the access. A two-
+        # letter country code (ISO 3166-1 alpha-2), such as "US", "DE" or "GB" or a
+        # region code. In some limited situations Google systems may refer refer to a
+        # region code instead of a country code. Possible Region Codes: * ASI: Asia *
+        # EUR: Europe * OCE: Oceania * AFR: Africa * NAM: North America * SAM: South
+        # America * ANT: Antarctica * ANY: Any location
         # Corresponds to the JSON property `principalPhysicalLocationCountry`
         # @return [String]
         attr_accessor :principal_physical_location_country
@@ -231,7 +234,7 @@ module Google
         # @return [String]
         attr_accessor :detail
       
-        # Type of access justification.
+        # Type of access reason.
         # Corresponds to the JSON property `type`
         # @return [String]
         attr_accessor :type
@@ -272,7 +275,8 @@ module Google
         # @return [String]
         attr_accessor :request_time
       
-        # This field contains the augmented information of the request.
+        # This field contains the augmented information of the request. Requires
+        # augmented administrative access to be enabled.
         # Corresponds to the JSON property `requestedAugmentedInfo`
         # @return [Google::Apis::AccessapprovalV1::AugmentedInfo]
         attr_accessor :requested_augmented_info
@@ -288,12 +292,13 @@ module Google
         # @return [String]
         attr_accessor :requested_expiration
       
-        # Home office and physical location of the principal.
+        # Physical assigned office and physical location of the Google administrator
+        # performing the access.
         # Corresponds to the JSON property `requestedLocations`
         # @return [Google::Apis::AccessapprovalV1::AccessLocations]
         attr_accessor :requested_locations
       
-        # The justification for which approval is being requested.
+        # The access reason for which approval is being requested.
         # Corresponds to the JSON property `requestedReason`
         # @return [Google::Apis::AccessapprovalV1::AccessReason]
         attr_accessor :requested_reason
@@ -402,7 +407,8 @@ module Google
         end
       end
       
-      # This field contains the augmented information of the request.
+      # This field contains the augmented information of the request. Requires
+      # augmented administrative access to be enabled.
       class AugmentedInfo
         include Google::Apis::Core::Hashable
       
@@ -503,27 +509,50 @@ module Google
         include Google::Apis::Core::Hashable
       
         # The product for which Access Approval will be enrolled. Allowed values are
-        # listed below (case-sensitive): * all * GA * App Engine * Artifact Registry *
-        # BigQuery * Certificate Authority Service * Cloud Bigtable * Cloud Key
-        # Management Service * Compute Engine * Cloud Composer * Cloud Dataflow * Cloud
-        # Dataproc * Cloud DLP * Cloud EKM * Cloud Firestore * Cloud HSM * Cloud
-        # Identity and Access Management * Cloud Logging * Cloud NAT * Cloud Pub/Sub *
-        # Cloud Spanner * Cloud SQL * Cloud Storage * Eventarc * Google Kubernetes
-        # Engine * Organization Policy Serivice * Persistent Disk * Resource Manager *
-        # Secret Manager * Speaker ID Note: These values are supported as input for
-        # legacy purposes, but will not be returned from the API. * all * ga-only *
-        # appengine.googleapis.com * artifactregistry.googleapis.com * bigquery.
-        # googleapis.com * bigtable.googleapis.com * container.googleapis.com * cloudkms.
-        # googleapis.com * cloudresourcemanager.googleapis.com * cloudsql.googleapis.com
-        # * compute.googleapis.com * dataflow.googleapis.com * dataproc.googleapis.com *
-        # dlp.googleapis.com * iam.googleapis.com * logging.googleapis.com * orgpolicy.
-        # googleapis.com * pubsub.googleapis.com * spanner.googleapis.com *
-        # secretmanager.googleapis.com * speakerid.googleapis.com * storage.googleapis.
-        # com Calls to UpdateAccessApprovalSettings using 'all' or any of the XXX.
-        # googleapis.com will be translated to the associated product name ('all', 'App
-        # Engine', etc.). Note: 'all' will enroll the resource in all products supported
-        # at both 'GA' and 'Preview' levels. More information about levels of support is
-        # available at https://cloud.google.com/access-approval/docs/supported-services
+        # listed below (case-sensitive): * all * GA * Access Context Manager * Anthos
+        # Identity Service * AlloyDB for PostgreSQL * Apigee * Application Integration *
+        # App Hub * Artifact Registry * Anthos Service Mesh * Access Transparency *
+        # BigQuery * Certificate Authority Service * Cloud Bigtable * CCAI Assist and
+        # Knowledge * Cloud Dataflow * Cloud Dataproc * CEP Security Gateway *
+        # Compliance Evaluation Service * Cloud Firestore * Cloud Healthcare API *
+        # Chronicle * Cloud AI Companion Gateway - Titan * Google Cloud Armor * Cloud
+        # Asset Inventory * Cloud Asset Search * Cloud Deploy * Cloud DNS * Cloud
+        # Latency * Cloud Memorystore for Redis * CloudNet Control * Cloud Riptide *
+        # Cloud Tasks * Cloud Trace * Cloud Data Transfer * Cloud Composer * Integration
+        # Connectors * Contact Center AI Insights * Cloud Pub/Sub * Cloud Run * Resource
+        # Manager * Cloud Spanner * Database Center * Cloud Dataform * Cloud Data Fusion
+        # * Dataplex * Dialogflow Customer Experience Edition * Cloud DLP * Document AI *
+        # Edge Container * Edge Network * Cloud EKM * Eventarc * Firebase Data Connect *
+        # Firebase Rules * App Engine * Cloud Build * Compute Engine * Cloud Functions (
+        # 2nd Gen) * Cloud Filestore * Cloud Interconnect * Cloud NetApp Volumes * Cloud
+        # Storage * Generative AI App Builder * Google Kubernetes Engine * Backup for
+        # GKE API * GKE Connect * GKE Hub * Hoverboard * Cloud HSM * Cloud Identity and
+        # Access Management * Cloud Identity-Aware Proxy * Infrastructure Manager *
+        # Identity Storage Service * Key Access Justifications * Cloud Key Management
+        # Service * Cloud Logging * Looker (Google Cloud core) * Looker Studio *
+        # Management Hub * Model Armor * Cloud Monitoring * Cloud NAT * Connectivity Hub
+        # * External passthrough Network Load Balancer * OIDC One * Organization Policy
+        # Service * Org Lifecycle * Persistent Disk * Parameter Manager * Private
+        # Services Access * Regional Internal Application Load Balancer * Storage Batch
+        # Operations * Cloud Security Command Center * Secure Source Manager * Seeker *
+        # Service Provisioning * Speaker ID * Secret Manager * Cloud SQL * Cloud Speech-
+        # to-Text * Traffic Director * Cloud Text-to-Speech * USPS Andromeda * Vertex AI
+        # * Virtual Private Cloud (VPC) * VPC Access * VPC Service Controls
+        # Troubleshooter * VPC virtnet * Cloud Workstations * Web Risk Note: These
+        # values are supported as input for legacy purposes, but will not be returned
+        # from the API. * all * ga-only * appengine.googleapis.com * artifactregistry.
+        # googleapis.com * bigquery.googleapis.com * bigtable.googleapis.com * container.
+        # googleapis.com * cloudkms.googleapis.com * cloudresourcemanager.googleapis.com
+        # * cloudsql.googleapis.com * compute.googleapis.com * dataflow.googleapis.com *
+        # dataproc.googleapis.com * dlp.googleapis.com * iam.googleapis.com * logging.
+        # googleapis.com * orgpolicy.googleapis.com * pubsub.googleapis.com * spanner.
+        # googleapis.com * secretmanager.googleapis.com * speakerid.googleapis.com *
+        # storage.googleapis.com Calls to UpdateAccessApprovalSettings using 'all' or
+        # any of the XXX.googleapis.com will be translated to the associated product
+        # name ('all', 'App Engine', etc.). Note: 'all' will enroll the resource in all
+        # products supported at both 'GA' and 'Preview' levels. More information about
+        # levels of support is available at https://cloud.google.com/access-approval/
+        # docs/supported-services
         # Corresponds to the JSON property `cloudProduct`
         # @return [String]
         attr_accessor :cloud_product

data/lib/google/apis/accessapproval_v1/gem_version.rb

@@ -16,13 +16,13 @@ module Google
   module Apis
     module AccessapprovalV1
       # Version of the google-apis-accessapproval_v1 gem
-      GEM_VERSION = "0.43.0"
+      GEM_VERSION = "0.44.0"
 
       # Version of the code generator used to generate this client
-      GENERATOR_VERSION = "0.17.0"
+      GENERATOR_VERSION = "0.18.0"
 
       # Revision of the discovery document this client was generated from
-      REVISION = "20250411"
+      REVISION = "20250912"
     end
   end
 end

data/lib/google/apis/accessapproval_v1/service.rb

@@ -52,10 +52,10 @@ module Google
         end
         
         # Deletes the settings associated with a project, folder, or organization. This
-        # will have the effect of disabling Access Approval for the project, folder, or
-        # organization, but only if all ancestors also have Access Approval disabled. If
-        # Access Approval is enabled at a higher level of the hierarchy, then Access
-        # Approval will still be enabled at this level as the settings are inherited.
+        # will have the effect of disabling Access Approval for the resource. Access
+        # Approval may remain active based on parent resource settings. To confirm the
+        # effective settings, call GetAccessApprovalSettings and verify effective
+        # setting is disabled.
         # @param [String] name
         #   Name of the AccessApprovalSettings to delete.
         # @param [String] fields
@@ -85,7 +85,8 @@ module Google
           execute_or_queue_command(command, &block)
         end
         
-        # Gets the settings associated with a project, folder, or organization.
+        # Gets the Access Approval settings associated with a project, folder, or
+        # organization.
         # @param [String] name
         #   The name of the AccessApprovalSettings to retrieve. Format: "`projects|folders|
         #   organizations`/`id`/accessApprovalSettings"
@@ -227,11 +228,11 @@ module Google
           execute_or_queue_command(command, &block)
         end
         
-        # Dismisses a request. Returns the updated ApprovalRequest. NOTE: This does not
-        # deny access to the resource if another request has been made and approved. It
-        # is equivalent in effect to ignoring the request altogether. Returns NOT_FOUND
-        # if the request does not exist. Returns FAILED_PRECONDITION if the request
-        # exists but is not in a pending state.
+        # Dismisses a request. Returns the updated ApprovalRequest. NOTE: When a request
+        # is dismissed, it is considered ignored. Dismissing a request does not prevent
+        # access granted by other Access Approval requests. Returns NOT_FOUND if the
+        # request does not exist. Returns FAILED_PRECONDITION if the request exists but
+        # is not in a pending state.
         # @param [String] name
         #   Name of the ApprovalRequest to dismiss.
         # @param [Google::Apis::AccessapprovalV1::DismissApprovalRequestMessage] dismiss_approval_request_message_object
@@ -296,8 +297,8 @@ module Google
         end
         
         # Invalidates an existing ApprovalRequest. Returns the updated ApprovalRequest.
-        # NOTE: This does not deny access to the resource if another request has been
-        # made and approved. It only invalidates a single approval. Returns
+        # NOTE: This action revokes Google access based on this approval request. If the
+        # resource has other active approvals, access will remain granted. Returns
         # FAILED_PRECONDITION if the request exists but is not in an approved state.
         # @param [String] name
         #   Name of the ApprovalRequest to invalidate.
@@ -380,10 +381,10 @@ module Google
         end
         
         # Deletes the settings associated with a project, folder, or organization. This
-        # will have the effect of disabling Access Approval for the project, folder, or
-        # organization, but only if all ancestors also have Access Approval disabled. If
-        # Access Approval is enabled at a higher level of the hierarchy, then Access
-        # Approval will still be enabled at this level as the settings are inherited.
+        # will have the effect of disabling Access Approval for the resource. Access
+        # Approval may remain active based on parent resource settings. To confirm the
+        # effective settings, call GetAccessApprovalSettings and verify effective
+        # setting is disabled.
         # @param [String] name
         #   Name of the AccessApprovalSettings to delete.
         # @param [String] fields
@@ -413,7 +414,8 @@ module Google
           execute_or_queue_command(command, &block)
         end
         
-        # Gets the settings associated with a project, folder, or organization.
+        # Gets the Access Approval settings associated with a project, folder, or
+        # organization.
         # @param [String] name
         #   The name of the AccessApprovalSettings to retrieve. Format: "`projects|folders|
         #   organizations`/`id`/accessApprovalSettings"
@@ -555,11 +557,11 @@ module Google
           execute_or_queue_command(command, &block)
         end
         
-        # Dismisses a request. Returns the updated ApprovalRequest. NOTE: This does not
-        # deny access to the resource if another request has been made and approved. It
-        # is equivalent in effect to ignoring the request altogether. Returns NOT_FOUND
-        # if the request does not exist. Returns FAILED_PRECONDITION if the request
-        # exists but is not in a pending state.
+        # Dismisses a request. Returns the updated ApprovalRequest. NOTE: When a request
+        # is dismissed, it is considered ignored. Dismissing a request does not prevent
+        # access granted by other Access Approval requests. Returns NOT_FOUND if the
+        # request does not exist. Returns FAILED_PRECONDITION if the request exists but
+        # is not in a pending state.
         # @param [String] name
         #   Name of the ApprovalRequest to dismiss.
         # @param [Google::Apis::AccessapprovalV1::DismissApprovalRequestMessage] dismiss_approval_request_message_object
@@ -624,8 +626,8 @@ module Google
         end
         
         # Invalidates an existing ApprovalRequest. Returns the updated ApprovalRequest.
-        # NOTE: This does not deny access to the resource if another request has been
-        # made and approved. It only invalidates a single approval. Returns
+        # NOTE: This action revokes Google access based on this approval request. If the
+        # resource has other active approvals, access will remain granted. Returns
         # FAILED_PRECONDITION if the request exists but is not in an approved state.
         # @param [String] name
         #   Name of the ApprovalRequest to invalidate.
@@ -708,10 +710,10 @@ module Google
         end
         
         # Deletes the settings associated with a project, folder, or organization. This
-        # will have the effect of disabling Access Approval for the project, folder, or
-        # organization, but only if all ancestors also have Access Approval disabled. If
-        # Access Approval is enabled at a higher level of the hierarchy, then Access
-        # Approval will still be enabled at this level as the settings are inherited.
+        # will have the effect of disabling Access Approval for the resource. Access
+        # Approval may remain active based on parent resource settings. To confirm the
+        # effective settings, call GetAccessApprovalSettings and verify effective
+        # setting is disabled.
         # @param [String] name
         #   Name of the AccessApprovalSettings to delete.
         # @param [String] fields
@@ -741,7 +743,8 @@ module Google
           execute_or_queue_command(command, &block)
         end
         
-        # Gets the settings associated with a project, folder, or organization.
+        # Gets the Access Approval settings associated with a project, folder, or
+        # organization.
         # @param [String] name
         #   The name of the AccessApprovalSettings to retrieve. Format: "`projects|folders|
         #   organizations`/`id`/accessApprovalSettings"
@@ -883,11 +886,11 @@ module Google
           execute_or_queue_command(command, &block)
         end
         
-        # Dismisses a request. Returns the updated ApprovalRequest. NOTE: This does not
-        # deny access to the resource if another request has been made and approved. It
-        # is equivalent in effect to ignoring the request altogether. Returns NOT_FOUND
-        # if the request does not exist. Returns FAILED_PRECONDITION if the request
-        # exists but is not in a pending state.
+        # Dismisses a request. Returns the updated ApprovalRequest. NOTE: When a request
+        # is dismissed, it is considered ignored. Dismissing a request does not prevent
+        # access granted by other Access Approval requests. Returns NOT_FOUND if the
+        # request does not exist. Returns FAILED_PRECONDITION if the request exists but
+        # is not in a pending state.
         # @param [String] name
         #   Name of the ApprovalRequest to dismiss.
         # @param [Google::Apis::AccessapprovalV1::DismissApprovalRequestMessage] dismiss_approval_request_message_object
@@ -952,8 +955,8 @@ module Google
         end
         
         # Invalidates an existing ApprovalRequest. Returns the updated ApprovalRequest.
-        # NOTE: This does not deny access to the resource if another request has been
-        # made and approved. It only invalidates a single approval. Returns
+        # NOTE: This action revokes Google access based on this approval request. If the
+        # resource has other active approvals, access will remain granted. Returns
         # FAILED_PRECONDITION if the request exists but is not in an approved state.
         # @param [String] name
         #   Name of the ApprovalRequest to invalidate.

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: google-apis-accessapproval_v1
 version: !ruby/object:Gem::Version
-  version: 0.43.0
+  version: 0.44.0
 platform: ruby
 authors:
 - Google LLC
@@ -57,7 +57,7 @@ licenses:
 metadata:
   bug_tracker_uri: https://github.com/googleapis/google-api-ruby-client/issues
   changelog_uri: https://github.com/googleapis/google-api-ruby-client/tree/main/generated/google-apis-accessapproval_v1/CHANGELOG.md
-  documentation_uri: https://googleapis.dev/ruby/google-apis-accessapproval_v1/v0.43.0
+  documentation_uri: https://googleapis.dev/ruby/google-apis-accessapproval_v1/v0.44.0
   source_code_uri: https://github.com/googleapis/google-api-ruby-client/tree/main/generated/google-apis-accessapproval_v1
 rdoc_options: []
 require_paths:
@@ -73,7 +73,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.6.8
+rubygems_version: 3.6.9
 specification_version: 4
 summary: Simple REST client for Access Approval API V1
 test_files: []