google-apis-accesscontextmanager_v1 0.26.0 → 0.27.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: e15d24c42e1bb60e748d1f9835ec9902a52b03601366642571b3556c1930b6c2
-  data.tar.gz: 31af635b3818d17c1e7f8f974558bd72c44d466aca6cbea070d67c771823ceab
+  metadata.gz: 58fa7e865f2c86db504a6ab7d5538349b62664545d8643ea8f481a17a7514796
+  data.tar.gz: '058059c637418a093059f95d0accc4d28b933c67d9ef18fd203bd48c1234e4b4'
 SHA512:
-  metadata.gz: 5512e2ac726f3f417e0422341094d13f215058757e1dd550e96bcffa7be2781ae95feeb41aeee63edbeb61a1542fe1c083da86cc6f3559bc5d680971dfb652e7
-  data.tar.gz: a64b576b506f67d6b424b4161986c2b23568c013258a4094c0d0d59998a382c438f0e0f765927b91494d4fe9165700ab1912b5728a431de28b64a2d19c8a5e9d
+  metadata.gz: fba53db8fb7232cc81d3b4fffa009222bd08f412a81680a3e41832d85e4ba205676b8258524de4786a37ec9efaaced54cfde0f9b0eab3b7a596b4c250c88193d
+  data.tar.gz: 38685a9b30181faed96a68b2b3d3afe8be25825453924ba171def3cb5c327bb70738c00371de9195d22c6f2d6291d6bf03f804af8de466cce7c229d6d0c00406

data/CHANGELOG.md

@@ -1,5 +1,9 @@
 # Release history for google-apis-accesscontextmanager_v1
 
+### v0.27.0 (2023-02-05)
+
+* Regenerated from discovery document revision 20230130
+
 ### v0.26.0 (2023-01-15)
 
 * Regenerated from discovery document revision 20230109

data/lib/google/apis/accesscontextmanager_v1/classes.rb

@@ -248,47 +248,49 @@ module Google
         end
       end
       
-      # `AuthorizedOrgsDesc` is a resource that contains a list of organizations for a
-      # authorization type and asset type and its authorization direction.
+      # `AuthorizedOrgsDesc` contains data for an organization's authorization policy.
       class AuthorizedOrgsDesc
         include Google::Apis::Core::Hashable
       
-        # The asset type of this authorized orgs desc. e.g. device, credential strength.
+        # The asset type of this authorized orgs desc. Valid values are `
+        # ASSET_TYPE_DEVICE`, and `ASSET_TYPE_CREDENTIAL_STRENGTH`.
         # Corresponds to the JSON property `assetType`
         # @return [String]
         attr_accessor :asset_type
       
-        # Authorization direction of this authorization relationship. i.e. Whether to
-        # allow specified orgs to evaluate this org's traffic, or allow specified orgs'
-        # traffic to be evaluated by this org. Orgs specified as `
-        # AUTHORIZATION_DIRECTION_TO` in this AuthorizedOrgsDesc[com.google.identity.
-        # accesscontextmanager.v1.AuthorizedOrgsDesc] must also specify this org as the `
-        # AUTHORIZATION_DIRECTION_FROM` in their own AuthorizedOrgsDesc in order for
-        # this relationship to take effect. Orgs specified as `
-        # AUTHORIZATION_DIRECTION_FROM` in this AuthorizedOrgsDesc[com.google.identity.
-        # accesscontextmanager.v1.AuthorizedOrgsDesc] must also specify this org as the `
-        # AUTHORIZATION_DIRECTION_TO` in their own AuthorizedOrgsDesc in order for this
-        # relationship to take effect.
+        # The direction of the authorization relationship between this organization and
+        # the organizations listed in the `orgs` field. The valid values for this field
+        # include the following: `AUTHORIZATION_DIRECTION_FROM`: Allows this
+        # organization to evaluate traffic in the organizations listed in the `orgs`
+        # field. `AUTHORIZATION_DIRECTION_TO`: Allows the organizations listed in the `
+        # orgs` field to evaluate the traffic in this organization. For the
+        # authorization relationship to take effect, all of the organizations must
+        # authorize and specify the appropriate relationship direction. For example, if
+        # organization A authorized organization B and C to evaluate its traffic, by
+        # specifying `AUTHORIZATION_DIRECTION_TO` as the authorization direction,
+        # organizations B and C must specify `AUTHORIZATION_DIRECTION_FROM` as the
+        # authorization direction in their `AuthorizedOrgsDesc` resource.
         # Corresponds to the JSON property `authorizationDirection`
         # @return [String]
         attr_accessor :authorization_direction
       
-        # The authorization type of this authorized orgs desc. e.g.authorization,
-        # troubleshooting or logging.
+        # A granular control type for authorization levels. Valid value is `
+        # AUTHORIZATION_TYPE_TRUST`.
         # Corresponds to the JSON property `authorizationType`
         # @return [String]
         attr_accessor :authorization_type
       
-        # Assigned by the server during creation. The last segment has an arbitrary
-        # length and has only URI unreserved characters (as defined by [RFC 3986 Section
-        # 2.3](https://tools.ietf.org/html/rfc3986#section-2.3)). Should not be
-        # specified by the client during creation. Example: "accessPolicies/122256/
-        # authorizedOrgs/b3-BhcX_Ud5N"
+        # Resource name for the `AuthorizedOrgsDesc`. Format: `accessPolicies/`
+        # access_policy`/authorizedOrgsDescs/`authorized_orgs_desc``. The `
+        # authorized_orgs_desc` component must begin with a letter, followed by
+        # alphanumeric characters or `_`. After you create an `AuthorizedOrgsDesc`, you
+        # cannot change its `name`.
         # Corresponds to the JSON property `name`
         # @return [String]
         attr_accessor :name
       
-        # The list of organization ids in this AuthorizedOrgsDesc.
+        # The list of organization ids in this AuthorizedOrgsDesc. Format: `
+        # organizations/` Example: `organizations/123456`
         # Corresponds to the JSON property `orgs`
         # @return [Array<String>]
         attr_accessor :orgs
@@ -374,22 +376,22 @@ module Google
         # kubernetes-engine/docs/how-to/kubernetes-service-accounts). For example, `my-
         # project.svc.id.goog[my-namespace/my-kubernetes-sa]`. * `group:`emailid``: An
         # email address that represents a Google group. For example, `admins@example.com`
-        # . * `deleted:user:`emailid`?uid=`uniqueid``: An email address (plus unique
-        # identifier) representing a user that has been recently deleted. For example, `
-        # alice@example.com?uid=123456789012345678901`. If the user is recovered, this
-        # value reverts to `user:`emailid`` and the recovered user retains the role in
-        # the binding. * `deleted:serviceAccount:`emailid`?uid=`uniqueid``: An email
-        # address (plus unique identifier) representing a service account that has been
-        # recently deleted. For example, `my-other-app@appspot.gserviceaccount.com?uid=
+        # . * `domain:`domain``: The G Suite domain (primary) that represents all the
+        # users of that domain. For example, `google.com` or `example.com`. * `deleted:
+        # user:`emailid`?uid=`uniqueid``: An email address (plus unique identifier)
+        # representing a user that has been recently deleted. For example, `alice@
+        # example.com?uid=123456789012345678901`. If the user is recovered, this value
+        # reverts to `user:`emailid`` and the recovered user retains the role in the
+        # binding. * `deleted:serviceAccount:`emailid`?uid=`uniqueid``: An email address
+        # (plus unique identifier) representing a service account that has been recently
+        # deleted. For example, `my-other-app@appspot.gserviceaccount.com?uid=
         # 123456789012345678901`. If the service account is undeleted, this value
         # reverts to `serviceAccount:`emailid`` and the undeleted service account
         # retains the role in the binding. * `deleted:group:`emailid`?uid=`uniqueid``:
         # An email address (plus unique identifier) representing a Google group that has
         # been recently deleted. For example, `admins@example.com?uid=
         # 123456789012345678901`. If the group is recovered, this value reverts to `
-        # group:`emailid`` and the recovered group retains the role in the binding. * `
-        # domain:`domain``: The G Suite domain (primary) that represents all the users
-        # of that domain. For example, `google.com` or `example.com`.
+        # group:`emailid`` and the recovered group retains the role in the binding.
         # Corresponds to the JSON property `members`
         # @return [Array<String>]
         attr_accessor :members
@@ -1039,10 +1041,10 @@ module Google
         # A Google Cloud resource that is allowed to ingress the perimeter. Requests
         # from these resources will be allowed to access perimeter data. Currently only
         # projects and VPCs are allowed. Project format: `projects/`project_number`` VPC
-        # format: `//compute.googleapis.com/projects/`PROJECT_ID`/global/networks/`NAME``
-        # . The project may be in any Google Cloud organization, not just the
-        # organization that the perimeter is defined in. `*` is not allowed, the case of
-        # allowing all Google Cloud resources only is not supported.
+        # network format: `//compute.googleapis.com/projects/`PROJECT_ID`/global/
+        # networks/`NAME``. The project may be in any Google Cloud organization, not
+        # just the organization that the perimeter is defined in. `*` is not allowed,
+        # the case of allowing all Google Cloud resources only is not supported.
         # Corresponds to the JSON property `resource`
         # @return [String]
         attr_accessor :resource
@@ -1146,7 +1148,7 @@ module Google
       class ListAuthorizedOrgsDescsResponse
         include Google::Apis::Core::Hashable
       
-        # List of the Authorized Orgs Desc instances.
+        # List of all the Authorized Orgs Desc instances.
         # Corresponds to the JSON property `authorizedOrgsDescs`
         # @return [Array<Google::Apis::AccesscontextmanagerV1::AuthorizedOrgsDesc>]
         attr_accessor :authorized_orgs_descs
@@ -1576,9 +1578,10 @@ module Google
       # has a target outside of the `ServicePerimeter`, the request will be blocked.
       # Otherwise the request is allowed. There are two types of Service Perimeter -
       # Regular and Bridge. Regular Service Perimeters cannot overlap, a single Google
-      # Cloud project can only belong to a single regular Service Perimeter. Service
-      # Perimeter Bridges can contain only Google Cloud projects as members, a single
-      # Google Cloud project may belong to multiple Service Perimeter Bridges.
+      # Cloud project or VPC network can only belong to a single regular Service
+      # Perimeter. Service Perimeter Bridges can contain only Google Cloud projects as
+      # members, a single Google Cloud project may belong to multiple Service
+      # Perimeter Bridges.
       class ServicePerimeter
         include Google::Apis::Core::Hashable
       
@@ -1595,11 +1598,11 @@ module Google
         # @return [String]
         attr_accessor :name
       
-        # Perimeter type indicator. A single project is allowed to be a member of single
-        # regular perimeter, but multiple service perimeter bridges. A project cannot be
-        # a included in a perimeter bridge without being included in regular perimeter.
-        # For perimeter bridges, the restricted service list as well as access level
-        # lists must be empty.
+        # Perimeter type indicator. A single project or VPC network is allowed to be a
+        # member of single regular perimeter, but multiple service perimeter bridges. A
+        # project cannot be a included in a perimeter bridge without being included in
+        # regular perimeter. For perimeter bridges, the restricted service list as well
+        # as access level lists must be empty.
         # Corresponds to the JSON property `perimeterType`
         # @return [String]
         attr_accessor :perimeter_type
@@ -1683,8 +1686,8 @@ module Google
       
         # A list of Google Cloud resources that are inside of the service perimeter.
         # Currently only projects and VPCs are allowed. Project format: `projects/`
-        # project_number`` VPC format: `//compute.googleapis.com/projects/`PROJECT_ID`/
-        # global/networks/`NAME``.
+        # project_number`` VPC network format: `//compute.googleapis.com/projects/`
+        # PROJECT_ID`/global/networks/`NAME``.
         # Corresponds to the JSON property `resources`
         # @return [Array<String>]
         attr_accessor :resources

data/lib/google/apis/accesscontextmanager_v1/gem_version.rb

@@ -16,13 +16,13 @@ module Google
   module Apis
     module AccesscontextmanagerV1
       # Version of the google-apis-accesscontextmanager_v1 gem
-      GEM_VERSION = "0.26.0"
+      GEM_VERSION = "0.27.0"
 
       # Version of the code generator used to generate this client
       GENERATOR_VERSION = "0.11.1"
 
       # Revision of the discovery document this client was generated from
-      REVISION = "20230109"
+      REVISION = "20230130"
     end
   end
 end

data/lib/google/apis/accesscontextmanager_v1/service.rb

@@ -22,7 +22,8 @@ module Google
     module AccesscontextmanagerV1
       # Access Context Manager API
       #
-      # An API for setting attribute based access control to requests to GCP services.
+      # An API for setting attribute based access control to requests to Google Cloud
+      #  services.
       #
       # @example
       #    require 'google/apis/accesscontextmanager_v1'
@@ -604,8 +605,8 @@ module Google
           execute_or_queue_command(command, &block)
         end
         
-        # Creates a authorized orgs desc. The long-running operation from this RPC has a
-        # successful status after the authorized orgs desc propagates to long-lasting
+        # Creates an authorized orgs desc. The long-running operation from this RPC has
+        # a successful status after the authorized orgs desc propagates to long-lasting
         # storage. If a authorized orgs desc contains errors, an error response is
         # returned for the first error encountered. The name of this `AuthorizedOrgsDesc`
         # will be assigned during creation.
@@ -642,7 +643,7 @@ module Google
           execute_or_queue_command(command, &block)
         end
         
-        # Deletes a authorized orgs desc based on the resource name. The long-running
+        # Deletes an authorized orgs desc based on the resource name. The long-running
         # operation from this RPC has a successful status after the authorized orgs desc
         # is removed from long-lasting storage.
         # @param [String] name
@@ -675,7 +676,7 @@ module Google
           execute_or_queue_command(command, &block)
         end
         
-        # Gets a authorized orgs desc based on the resource name.
+        # Gets an authorized orgs desc based on the resource name.
         # @param [String] name
         #   Required. Resource name for the Authorized Orgs Desc. Format: `accessPolicies/`
         #   policy_id`/authorizedOrgsDescs/`authorized_orgs_descs_id``
@@ -744,18 +745,18 @@ module Google
           execute_or_queue_command(command, &block)
         end
         
-        # Updates a authorized orgs desc. The long-running operation from this RPC has a
-        # successful status after the authorized orgs desc propagates to long-lasting
+        # Updates an authorized orgs desc. The long-running operation from this RPC has
+        # a successful status after the authorized orgs desc propagates to long-lasting
         # storage. If a authorized orgs desc contains errors, an error response is
         # returned for the first error encountered. Only the organization list in `
         # AuthorizedOrgsDesc` can be updated. The name, authorization_type, asset_type
         # and authorization_direction cannot be updated.
         # @param [String] name
-        #   Assigned by the server during creation. The last segment has an arbitrary
-        #   length and has only URI unreserved characters (as defined by [RFC 3986 Section
-        #   2.3](https://tools.ietf.org/html/rfc3986#section-2.3)). Should not be
-        #   specified by the client during creation. Example: "accessPolicies/122256/
-        #   authorizedOrgs/b3-BhcX_Ud5N"
+        #   Resource name for the `AuthorizedOrgsDesc`. Format: `accessPolicies/`
+        #   access_policy`/authorizedOrgsDescs/`authorized_orgs_desc``. The `
+        #   authorized_orgs_desc` component must begin with a letter, followed by
+        #   alphanumeric characters or `_`. After you create an `AuthorizedOrgsDesc`, you
+        #   cannot change its `name`.
         # @param [Google::Apis::AccesscontextmanagerV1::AuthorizedOrgsDesc] authorized_orgs_desc_object
         # @param [String] update_mask
         #   Required. Mask to control which fields get updated. Must be non-empty.

data/lib/google/apis/accesscontextmanager_v1.rb

@@ -21,7 +21,8 @@ module Google
   module Apis
     # Access Context Manager API
     #
-    # An API for setting attribute based access control to requests to GCP services.
+    # An API for setting attribute based access control to requests to Google Cloud
+    # services.
     #
     # @see https://cloud.google.com/access-context-manager/docs/reference/rest/
     module AccesscontextmanagerV1

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: google-apis-accesscontextmanager_v1
 version: !ruby/object:Gem::Version
-  version: 0.26.0
+  version: 0.27.0
 platform: ruby
 authors:
 - Google LLC
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2023-01-15 00:00:00.000000000 Z
+date: 2023-02-05 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: google-apis-core
@@ -58,7 +58,7 @@ licenses:
 metadata:
   bug_tracker_uri: https://github.com/googleapis/google-api-ruby-client/issues
   changelog_uri: https://github.com/googleapis/google-api-ruby-client/tree/main/generated/google-apis-accesscontextmanager_v1/CHANGELOG.md
-  documentation_uri: https://googleapis.dev/ruby/google-apis-accesscontextmanager_v1/v0.26.0
+  documentation_uri: https://googleapis.dev/ruby/google-apis-accesscontextmanager_v1/v0.27.0
   source_code_uri: https://github.com/googleapis/google-api-ruby-client/tree/main/generated/google-apis-accesscontextmanager_v1
 post_install_message: 
 rdoc_options: []