google-apis-accesscontextmanager_v1 0.32.0 → 0.34.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA256:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: 404cf5af24149bed316282bb8ada1cd844a1bd19d120489649392f75dc0b2044
|
4
|
+
data.tar.gz: 2f944e15ab98b91afce4e7e9fe91c50a589c905b9ff1b34c627dfc733cb37924
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: 2c96ed3492427595748b0848fa135332f982b98f833af0048cb840a82a925292e166bede46724257e14c4574a4b4a4647f2efd7f748cba42e56b67389ece16b8
|
7
|
+
data.tar.gz: e2b7128d404ef1d50b0cdbfdd020fcde8cf5a69c16a858ca6e89cd5ae607ef9782557d9a5135e01f5164fa77b7060747740db2fb9bdde45b340c53818bebfd9b
|
data/CHANGELOG.md
CHANGED
@@ -1,5 +1,13 @@
|
|
1
1
|
# Release history for google-apis-accesscontextmanager_v1
|
2
2
|
|
3
|
+
### v0.34.0 (2023-09-17)
|
4
|
+
|
5
|
+
* Regenerated from discovery document revision 20230910
|
6
|
+
|
7
|
+
### v0.33.0 (2023-09-10)
|
8
|
+
|
9
|
+
* Regenerated from discovery document revision 20230903
|
10
|
+
|
3
11
|
### v0.32.0 (2023-08-13)
|
4
12
|
|
5
13
|
* Regenerated from discovery document revision 20230806
|
@@ -113,17 +113,16 @@ module Google
|
|
113
113
|
# @return [String]
|
114
114
|
attr_accessor :parent
|
115
115
|
|
116
|
-
# The scopes of
|
117
|
-
# where
|
118
|
-
# folders/123"] has the following behavior: -
|
119
|
-
# projects within folders/123 -
|
120
|
-
#
|
121
|
-
#
|
122
|
-
#
|
123
|
-
#
|
124
|
-
#
|
125
|
-
#
|
126
|
-
# folders/`folder_number`` or `projects/`project_number``
|
116
|
+
# The scopes of the AccessPolicy. Scopes define which resources a policy can
|
117
|
+
# restrict and where its resources can be referenced. For example, policy A with
|
118
|
+
# `scopes=["folders/123"]` has the following behavior: - ServicePerimeter can
|
119
|
+
# only restrict projects within `folders/123`. - ServicePerimeter within policy
|
120
|
+
# A can only reference access levels defined within policy A. - Only one policy
|
121
|
+
# can include a given scope; thus, attempting to create a second policy which
|
122
|
+
# includes `folders/123` will result in an error. If no scopes are provided,
|
123
|
+
# then any resource within the organization can be restricted. Scopes cannot be
|
124
|
+
# modified after a policy is created. Policies can only have a single scope.
|
125
|
+
# Format: list of `folders/`folder_number`` or `projects/`project_number``
|
127
126
|
# Corresponds to the JSON property `scopes`
|
128
127
|
# @return [Array<String>]
|
129
128
|
attr_accessor :scopes
|
@@ -532,6 +531,12 @@ module Google
|
|
532
531
|
# @return [Array<String>]
|
533
532
|
attr_accessor :required_access_levels
|
534
533
|
|
534
|
+
# The request must originate from one of the provided VPC networks in Google
|
535
|
+
# Cloud. Cannot specify this field together with `ip_subnetworks`.
|
536
|
+
# Corresponds to the JSON property `vpcNetworkSources`
|
537
|
+
# @return [Array<Google::Apis::AccesscontextmanagerV1::VpcNetworkSource>]
|
538
|
+
attr_accessor :vpc_network_sources
|
539
|
+
|
535
540
|
def initialize(**args)
|
536
541
|
update!(**args)
|
537
542
|
end
|
@@ -544,6 +549,7 @@ module Google
|
|
544
549
|
@negate = args[:negate] if args.key?(:negate)
|
545
550
|
@regions = args[:regions] if args.key?(:regions)
|
546
551
|
@required_access_levels = args[:required_access_levels] if args.key?(:required_access_levels)
|
552
|
+
@vpc_network_sources = args[:vpc_network_sources] if args.key?(:vpc_network_sources)
|
547
553
|
end
|
548
554
|
end
|
549
555
|
|
@@ -664,6 +670,19 @@ module Google
|
|
664
670
|
# @return [String]
|
665
671
|
attr_accessor :identity_type
|
666
672
|
|
673
|
+
# Whether to enforce traffic restrictions based on `sources` field. If the `
|
674
|
+
# sources` fields is non-empty, then this field must be set to `
|
675
|
+
# SOURCE_RESTRICTION_ENABLED`.
|
676
|
+
# Corresponds to the JSON property `sourceRestriction`
|
677
|
+
# @return [String]
|
678
|
+
attr_accessor :source_restriction
|
679
|
+
|
680
|
+
# Sources that this EgressPolicy authorizes access from. If this field is not
|
681
|
+
# empty, then `source_restriction` must be set to `SOURCE_RESTRICTION_ENABLED`.
|
682
|
+
# Corresponds to the JSON property `sources`
|
683
|
+
# @return [Array<Google::Apis::AccesscontextmanagerV1::EgressSource>]
|
684
|
+
attr_accessor :sources
|
685
|
+
|
667
686
|
def initialize(**args)
|
668
687
|
update!(**args)
|
669
688
|
end
|
@@ -672,6 +691,8 @@ module Google
|
|
672
691
|
def update!(**args)
|
673
692
|
@identities = args[:identities] if args.key?(:identities)
|
674
693
|
@identity_type = args[:identity_type] if args.key?(:identity_type)
|
694
|
+
@source_restriction = args[:source_restriction] if args.key?(:source_restriction)
|
695
|
+
@sources = args[:sources] if args.key?(:sources)
|
675
696
|
end
|
676
697
|
end
|
677
698
|
|
@@ -721,6 +742,33 @@ module Google
|
|
721
742
|
end
|
722
743
|
end
|
723
744
|
|
745
|
+
# The source that EgressPolicy authorizes access from inside the
|
746
|
+
# ServicePerimeter to somewhere outside the ServicePerimeter boundaries.
|
747
|
+
class EgressSource
|
748
|
+
include Google::Apis::Core::Hashable
|
749
|
+
|
750
|
+
# An AccessLevel resource name that allows protected resources inside the
|
751
|
+
# ServicePerimeters to access outside the ServicePerimeter boundaries.
|
752
|
+
# AccessLevels listed must be in the same policy as this ServicePerimeter.
|
753
|
+
# Referencing a nonexistent AccessLevel will cause an error. If an AccessLevel
|
754
|
+
# name is not specified, only resources within the perimeter can be accessed
|
755
|
+
# through Google Cloud calls with request origins within the perimeter. Example:
|
756
|
+
# `accessPolicies/MY_POLICY/accessLevels/MY_LEVEL`. If a single `*` is specified
|
757
|
+
# for `access_level`, then all EgressSources will be allowed.
|
758
|
+
# Corresponds to the JSON property `accessLevel`
|
759
|
+
# @return [String]
|
760
|
+
attr_accessor :access_level
|
761
|
+
|
762
|
+
def initialize(**args)
|
763
|
+
update!(**args)
|
764
|
+
end
|
765
|
+
|
766
|
+
# Update properties of this object
|
767
|
+
def update!(**args)
|
768
|
+
@access_level = args[:access_level] if args.key?(:access_level)
|
769
|
+
end
|
770
|
+
end
|
771
|
+
|
724
772
|
# Defines the conditions under which an EgressPolicy matches a request.
|
725
773
|
# Conditions are based on information about the ApiOperation intended to be
|
726
774
|
# performed on the `resources` specified. Note that if the destination of the
|
@@ -1889,6 +1937,59 @@ module Google
|
|
1889
1937
|
@enable_restriction = args[:enable_restriction] if args.key?(:enable_restriction)
|
1890
1938
|
end
|
1891
1939
|
end
|
1940
|
+
|
1941
|
+
# The originating network source in Google Cloud.
|
1942
|
+
class VpcNetworkSource
|
1943
|
+
include Google::Apis::Core::Hashable
|
1944
|
+
|
1945
|
+
# Sub-segment ranges inside of a VPC Network.
|
1946
|
+
# Corresponds to the JSON property `vpcSubnetwork`
|
1947
|
+
# @return [Google::Apis::AccesscontextmanagerV1::VpcSubNetwork]
|
1948
|
+
attr_accessor :vpc_subnetwork
|
1949
|
+
|
1950
|
+
def initialize(**args)
|
1951
|
+
update!(**args)
|
1952
|
+
end
|
1953
|
+
|
1954
|
+
# Update properties of this object
|
1955
|
+
def update!(**args)
|
1956
|
+
@vpc_subnetwork = args[:vpc_subnetwork] if args.key?(:vpc_subnetwork)
|
1957
|
+
end
|
1958
|
+
end
|
1959
|
+
|
1960
|
+
# Sub-segment ranges inside of a VPC Network.
|
1961
|
+
class VpcSubNetwork
|
1962
|
+
include Google::Apis::Core::Hashable
|
1963
|
+
|
1964
|
+
# Required. Network name. If the network is not part of the organization, the `
|
1965
|
+
# compute.network.get` permission must be granted to the caller. Format: `//
|
1966
|
+
# compute.googleapis.com/projects/`PROJECT_ID`/global/networks/`NETWORK_NAME``
|
1967
|
+
# Example: `//compute.googleapis.com/projects/my-project/global/networks/network-
|
1968
|
+
# 1`
|
1969
|
+
# Corresponds to the JSON property `network`
|
1970
|
+
# @return [String]
|
1971
|
+
attr_accessor :network
|
1972
|
+
|
1973
|
+
# CIDR block IP subnetwork specification. The IP address must be an IPv4 address
|
1974
|
+
# and can be a public or private IP address. Note that for a CIDR IP address
|
1975
|
+
# block, the specified IP address portion must be properly truncated (i.e. all
|
1976
|
+
# the host bits must be zero) or the input is considered malformed. For example,
|
1977
|
+
# "192.0.2.0/24" is accepted but "192.0.2.1/24" is not. If empty, all IP
|
1978
|
+
# addresses are allowed.
|
1979
|
+
# Corresponds to the JSON property `vpcIpSubnetworks`
|
1980
|
+
# @return [Array<String>]
|
1981
|
+
attr_accessor :vpc_ip_subnetworks
|
1982
|
+
|
1983
|
+
def initialize(**args)
|
1984
|
+
update!(**args)
|
1985
|
+
end
|
1986
|
+
|
1987
|
+
# Update properties of this object
|
1988
|
+
def update!(**args)
|
1989
|
+
@network = args[:network] if args.key?(:network)
|
1990
|
+
@vpc_ip_subnetworks = args[:vpc_ip_subnetworks] if args.key?(:vpc_ip_subnetworks)
|
1991
|
+
end
|
1992
|
+
end
|
1892
1993
|
end
|
1893
1994
|
end
|
1894
1995
|
end
|
@@ -16,13 +16,13 @@ module Google
|
|
16
16
|
module Apis
|
17
17
|
module AccesscontextmanagerV1
|
18
18
|
# Version of the google-apis-accesscontextmanager_v1 gem
|
19
|
-
GEM_VERSION = "0.
|
19
|
+
GEM_VERSION = "0.34.0"
|
20
20
|
|
21
21
|
# Version of the code generator used to generate this client
|
22
22
|
GENERATOR_VERSION = "0.12.0"
|
23
23
|
|
24
24
|
# Revision of the discovery document this client was generated from
|
25
|
-
REVISION = "
|
25
|
+
REVISION = "20230910"
|
26
26
|
end
|
27
27
|
end
|
28
28
|
end
|
@@ -124,6 +124,12 @@ module Google
|
|
124
124
|
include Google::Apis::Core::JsonObjectSupport
|
125
125
|
end
|
126
126
|
|
127
|
+
class EgressSource
|
128
|
+
class Representation < Google::Apis::Core::JsonRepresentation; end
|
129
|
+
|
130
|
+
include Google::Apis::Core::JsonObjectSupport
|
131
|
+
end
|
132
|
+
|
127
133
|
class EgressTo
|
128
134
|
class Representation < Google::Apis::Core::JsonRepresentation; end
|
129
135
|
|
@@ -316,6 +322,18 @@ module Google
|
|
316
322
|
include Google::Apis::Core::JsonObjectSupport
|
317
323
|
end
|
318
324
|
|
325
|
+
class VpcNetworkSource
|
326
|
+
class Representation < Google::Apis::Core::JsonRepresentation; end
|
327
|
+
|
328
|
+
include Google::Apis::Core::JsonObjectSupport
|
329
|
+
end
|
330
|
+
|
331
|
+
class VpcSubNetwork
|
332
|
+
class Representation < Google::Apis::Core::JsonRepresentation; end
|
333
|
+
|
334
|
+
include Google::Apis::Core::JsonObjectSupport
|
335
|
+
end
|
336
|
+
|
319
337
|
class AccessContextManagerOperationMetadata
|
320
338
|
# @private
|
321
339
|
class Representation < Google::Apis::Core::JsonRepresentation
|
@@ -433,6 +451,8 @@ module Google
|
|
433
451
|
property :negate, as: 'negate'
|
434
452
|
collection :regions, as: 'regions'
|
435
453
|
collection :required_access_levels, as: 'requiredAccessLevels'
|
454
|
+
collection :vpc_network_sources, as: 'vpcNetworkSources', class: Google::Apis::AccesscontextmanagerV1::VpcNetworkSource, decorator: Google::Apis::AccesscontextmanagerV1::VpcNetworkSource::Representation
|
455
|
+
|
436
456
|
end
|
437
457
|
end
|
438
458
|
|
@@ -462,6 +482,9 @@ module Google
|
|
462
482
|
class Representation < Google::Apis::Core::JsonRepresentation
|
463
483
|
collection :identities, as: 'identities'
|
464
484
|
property :identity_type, as: 'identityType'
|
485
|
+
property :source_restriction, as: 'sourceRestriction'
|
486
|
+
collection :sources, as: 'sources', class: Google::Apis::AccesscontextmanagerV1::EgressSource, decorator: Google::Apis::AccesscontextmanagerV1::EgressSource::Representation
|
487
|
+
|
465
488
|
end
|
466
489
|
end
|
467
490
|
|
@@ -475,6 +498,13 @@ module Google
|
|
475
498
|
end
|
476
499
|
end
|
477
500
|
|
501
|
+
class EgressSource
|
502
|
+
# @private
|
503
|
+
class Representation < Google::Apis::Core::JsonRepresentation
|
504
|
+
property :access_level, as: 'accessLevel'
|
505
|
+
end
|
506
|
+
end
|
507
|
+
|
478
508
|
class EgressTo
|
479
509
|
# @private
|
480
510
|
class Representation < Google::Apis::Core::JsonRepresentation
|
@@ -767,6 +797,22 @@ module Google
|
|
767
797
|
property :enable_restriction, as: 'enableRestriction'
|
768
798
|
end
|
769
799
|
end
|
800
|
+
|
801
|
+
class VpcNetworkSource
|
802
|
+
# @private
|
803
|
+
class Representation < Google::Apis::Core::JsonRepresentation
|
804
|
+
property :vpc_subnetwork, as: 'vpcSubnetwork', class: Google::Apis::AccesscontextmanagerV1::VpcSubNetwork, decorator: Google::Apis::AccesscontextmanagerV1::VpcSubNetwork::Representation
|
805
|
+
|
806
|
+
end
|
807
|
+
end
|
808
|
+
|
809
|
+
class VpcSubNetwork
|
810
|
+
# @private
|
811
|
+
class Representation < Google::Apis::Core::JsonRepresentation
|
812
|
+
property :network, as: 'network'
|
813
|
+
collection :vpc_ip_subnetworks, as: 'vpcIpSubnetworks'
|
814
|
+
end
|
815
|
+
end
|
770
816
|
end
|
771
817
|
end
|
772
818
|
end
|
metadata
CHANGED
@@ -1,14 +1,14 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: google-apis-accesscontextmanager_v1
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 0.
|
4
|
+
version: 0.34.0
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- Google LLC
|
8
8
|
autorequire:
|
9
9
|
bindir: bin
|
10
10
|
cert_chain: []
|
11
|
-
date: 2023-
|
11
|
+
date: 2023-09-17 00:00:00.000000000 Z
|
12
12
|
dependencies:
|
13
13
|
- !ruby/object:Gem::Dependency
|
14
14
|
name: google-apis-core
|
@@ -58,7 +58,7 @@ licenses:
|
|
58
58
|
metadata:
|
59
59
|
bug_tracker_uri: https://github.com/googleapis/google-api-ruby-client/issues
|
60
60
|
changelog_uri: https://github.com/googleapis/google-api-ruby-client/tree/main/generated/google-apis-accesscontextmanager_v1/CHANGELOG.md
|
61
|
-
documentation_uri: https://googleapis.dev/ruby/google-apis-accesscontextmanager_v1/v0.
|
61
|
+
documentation_uri: https://googleapis.dev/ruby/google-apis-accesscontextmanager_v1/v0.34.0
|
62
62
|
source_code_uri: https://github.com/googleapis/google-api-ruby-client/tree/main/generated/google-apis-accesscontextmanager_v1
|
63
63
|
post_install_message:
|
64
64
|
rdoc_options: []
|
@@ -75,7 +75,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
|
|
75
75
|
- !ruby/object:Gem::Version
|
76
76
|
version: '0'
|
77
77
|
requirements: []
|
78
|
-
rubygems_version: 3.4.
|
78
|
+
rubygems_version: 3.4.19
|
79
79
|
signing_key:
|
80
80
|
specification_version: 4
|
81
81
|
summary: Simple REST client for Access Context Manager API V1
|