google-apis-assuredworkloads_v1beta1 0.1.0

data/lib/google/apis/assuredworkloads_v1beta1/classes.rb

@@ -0,0 +1,914 @@
+# Copyright 2020 Google LLC
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#      http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+require 'date'
+require 'google/apis/core/base_service'
+require 'google/apis/core/json_representation'
+require 'google/apis/core/hashable'
+require 'google/apis/errors'
+
+module Google
+  module Apis
+    module AssuredworkloadsV1beta1
+      
+      # Request for acknowledging the violation Next Id: 4
+      class GoogleCloudAssuredworkloadsV1beta1AcknowledgeViolationRequest
+        include Google::Apis::Core::Hashable
+      
+        # Required. Business justification explaining the need for violation
+        # acknowledgement
+        # Corresponds to the JSON property `comment`
+        # @return [String]
+        attr_accessor :comment
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @comment = args[:comment] if args.key?(:comment)
+        end
+      end
+      
+      # Response for violation acknowledgement
+      class GoogleCloudAssuredworkloadsV1beta1AcknowledgeViolationResponse
+        include Google::Apis::Core::Hashable
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+        end
+      end
+      
+      # A response that includes the analysis of the hypothetical resource move.
+      class GoogleCloudAssuredworkloadsV1beta1AnalyzeWorkloadMoveResponse
+        include Google::Apis::Core::Hashable
+      
+        # A list of blockers that should be addressed before moving the source project
+        # or project-based workload to the destination folder-based workload.
+        # Corresponds to the JSON property `blockers`
+        # @return [Array<String>]
+        attr_accessor :blockers
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @blockers = args[:blockers] if args.key?(:blockers)
+        end
+      end
+      
+      # Response of ListViolations endpoint.
+      class GoogleCloudAssuredworkloadsV1beta1ListViolationsResponse
+        include Google::Apis::Core::Hashable
+      
+        # The next page token. Returns empty if reached the last page.
+        # Corresponds to the JSON property `nextPageToken`
+        # @return [String]
+        attr_accessor :next_page_token
+      
+        # List of Violations under a Workload.
+        # Corresponds to the JSON property `violations`
+        # @return [Array<Google::Apis::AssuredworkloadsV1beta1::GoogleCloudAssuredworkloadsV1beta1Violation>]
+        attr_accessor :violations
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @next_page_token = args[:next_page_token] if args.key?(:next_page_token)
+          @violations = args[:violations] if args.key?(:violations)
+        end
+      end
+      
+      # Response of ListWorkloads endpoint.
+      class GoogleCloudAssuredworkloadsV1beta1ListWorkloadsResponse
+        include Google::Apis::Core::Hashable
+      
+        # The next page token. Return empty if reached the last page.
+        # Corresponds to the JSON property `nextPageToken`
+        # @return [String]
+        attr_accessor :next_page_token
+      
+        # List of Workloads under a given parent.
+        # Corresponds to the JSON property `workloads`
+        # @return [Array<Google::Apis::AssuredworkloadsV1beta1::GoogleCloudAssuredworkloadsV1beta1Workload>]
+        attr_accessor :workloads
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @next_page_token = args[:next_page_token] if args.key?(:next_page_token)
+          @workloads = args[:workloads] if args.key?(:workloads)
+        end
+      end
+      
+      # Request for restricting list of available resources in Workload environment.
+      class GoogleCloudAssuredworkloadsV1beta1RestrictAllowedResourcesRequest
+        include Google::Apis::Core::Hashable
+      
+        # Required. The type of restriction for using gcp products in the Workload
+        # environment.
+        # Corresponds to the JSON property `restrictionType`
+        # @return [String]
+        attr_accessor :restriction_type
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @restriction_type = args[:restriction_type] if args.key?(:restriction_type)
+        end
+      end
+      
+      # Response for restricting the list of allowed resources.
+      class GoogleCloudAssuredworkloadsV1beta1RestrictAllowedResourcesResponse
+        include Google::Apis::Core::Hashable
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+        end
+      end
+      
+      # Workload monitoring Violation.
+      class GoogleCloudAssuredworkloadsV1beta1Violation
+        include Google::Apis::Core::Hashable
+      
+        # A boolean that indicates if the violation is acknowledged
+        # Corresponds to the JSON property `acknowledged`
+        # @return [Boolean]
+        attr_accessor :acknowledged
+        alias_method :acknowledged?, :acknowledged
+      
+        # Optional. Timestamp when this violation was acknowledged last. This will be
+        # absent when acknowledged field is marked as false.
+        # Corresponds to the JSON property `acknowledgementTime`
+        # @return [String]
+        attr_accessor :acknowledgement_time
+      
+        # Output only. Immutable. Audit Log Link for violated resource Format: https://
+        # console.cloud.google.com/logs/query;query=`logName``protoPayload.resourceName``
+        # timeRange``folder`
+        # Corresponds to the JSON property `auditLogLink`
+        # @return [String]
+        attr_accessor :audit_log_link
+      
+        # Output only. Time of the event which triggered the Violation.
+        # Corresponds to the JSON property `beginTime`
+        # @return [String]
+        attr_accessor :begin_time
+      
+        # Output only. Category under which this violation is mapped. e.g. Location,
+        # Service Usage, Access, Encryption, etc.
+        # Corresponds to the JSON property `category`
+        # @return [String]
+        attr_accessor :category
+      
+        # Output only. Description for the Violation. e.g. OrgPolicy gcp.
+        # resourceLocations has non compliant value.
+        # Corresponds to the JSON property `description`
+        # @return [String]
+        attr_accessor :description
+      
+        # Output only. Immutable. Audit Log link to find business justification provided
+        # for violation exception. Format: https://console.cloud.google.com/logs/query;
+        # query=`logName``protoPayload.resourceName``protoPayload.methodName``timeRange``
+        # organization`
+        # Corresponds to the JSON property `exceptionAuditLogLink`
+        # @return [String]
+        attr_accessor :exception_audit_log_link
+      
+        # Output only. Immutable. Name of the Violation. Format: organizations/`
+        # organization`/locations/`location`/workloads/`workload_id`/violations/`
+        # violations_id`
+        # Corresponds to the JSON property `name`
+        # @return [String]
+        attr_accessor :name
+      
+        # Output only. Immutable. Name of the OrgPolicy which was modified with non-
+        # compliant change and resulted this violation. Format: projects/`project_number`
+        # /policies/`constraint_name` folders/`folder_id`/policies/`constraint_name`
+        # organizations/`organization_id`/policies/`constraint_name`
+        # Corresponds to the JSON property `nonCompliantOrgPolicy`
+        # @return [String]
+        attr_accessor :non_compliant_org_policy
+      
+        # Output only. Immutable. The org-policy-constraint that was incorrectly changed,
+        # which resulted in this violation.
+        # Corresponds to the JSON property `orgPolicyConstraint`
+        # @return [String]
+        attr_accessor :org_policy_constraint
+      
+        # Represents remediation guidance to resolve compliance violation for
+        # AssuredWorkload
+        # Corresponds to the JSON property `remediation`
+        # @return [Google::Apis::AssuredworkloadsV1beta1::GoogleCloudAssuredworkloadsV1beta1ViolationRemediation]
+        attr_accessor :remediation
+      
+        # Output only. Time of the event which fixed the Violation. If the violation is
+        # ACTIVE this will be empty.
+        # Corresponds to the JSON property `resolveTime`
+        # @return [String]
+        attr_accessor :resolve_time
+      
+        # Output only. State of the violation
+        # Corresponds to the JSON property `state`
+        # @return [String]
+        attr_accessor :state
+      
+        # Output only. The last time when the Violation record was updated.
+        # Corresponds to the JSON property `updateTime`
+        # @return [String]
+        attr_accessor :update_time
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @acknowledged = args[:acknowledged] if args.key?(:acknowledged)
+          @acknowledgement_time = args[:acknowledgement_time] if args.key?(:acknowledgement_time)
+          @audit_log_link = args[:audit_log_link] if args.key?(:audit_log_link)
+          @begin_time = args[:begin_time] if args.key?(:begin_time)
+          @category = args[:category] if args.key?(:category)
+          @description = args[:description] if args.key?(:description)
+          @exception_audit_log_link = args[:exception_audit_log_link] if args.key?(:exception_audit_log_link)
+          @name = args[:name] if args.key?(:name)
+          @non_compliant_org_policy = args[:non_compliant_org_policy] if args.key?(:non_compliant_org_policy)
+          @org_policy_constraint = args[:org_policy_constraint] if args.key?(:org_policy_constraint)
+          @remediation = args[:remediation] if args.key?(:remediation)
+          @resolve_time = args[:resolve_time] if args.key?(:resolve_time)
+          @state = args[:state] if args.key?(:state)
+          @update_time = args[:update_time] if args.key?(:update_time)
+        end
+      end
+      
+      # Represents remediation guidance to resolve compliance violation for
+      # AssuredWorkload
+      class GoogleCloudAssuredworkloadsV1beta1ViolationRemediation
+        include Google::Apis::Core::Hashable
+      
+        # Values that can resolve the violation For example: for list org policy
+        # violations, this will either be the list of allowed or denied values
+        # Corresponds to the JSON property `compliantValues`
+        # @return [Array<String>]
+        attr_accessor :compliant_values
+      
+        # Instructions to remediate violation
+        # Corresponds to the JSON property `instructions`
+        # @return [Google::Apis::AssuredworkloadsV1beta1::GoogleCloudAssuredworkloadsV1beta1ViolationRemediationInstructions]
+        attr_accessor :instructions
+      
+        # Output only. Reemediation type based on the type of org policy values violated
+        # Corresponds to the JSON property `remediationType`
+        # @return [String]
+        attr_accessor :remediation_type
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @compliant_values = args[:compliant_values] if args.key?(:compliant_values)
+          @instructions = args[:instructions] if args.key?(:instructions)
+          @remediation_type = args[:remediation_type] if args.key?(:remediation_type)
+        end
+      end
+      
+      # Instructions to remediate violation
+      class GoogleCloudAssuredworkloadsV1beta1ViolationRemediationInstructions
+        include Google::Apis::Core::Hashable
+      
+        # Remediation instructions to resolve violation via cloud console
+        # Corresponds to the JSON property `consoleInstructions`
+        # @return [Google::Apis::AssuredworkloadsV1beta1::GoogleCloudAssuredworkloadsV1beta1ViolationRemediationInstructionsConsole]
+        attr_accessor :console_instructions
+      
+        # Remediation instructions to resolve violation via gcloud cli
+        # Corresponds to the JSON property `gcloudInstructions`
+        # @return [Google::Apis::AssuredworkloadsV1beta1::GoogleCloudAssuredworkloadsV1beta1ViolationRemediationInstructionsGcloud]
+        attr_accessor :gcloud_instructions
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @console_instructions = args[:console_instructions] if args.key?(:console_instructions)
+          @gcloud_instructions = args[:gcloud_instructions] if args.key?(:gcloud_instructions)
+        end
+      end
+      
+      # Remediation instructions to resolve violation via cloud console
+      class GoogleCloudAssuredworkloadsV1beta1ViolationRemediationInstructionsConsole
+        include Google::Apis::Core::Hashable
+      
+        # Additional urls for more information about steps
+        # Corresponds to the JSON property `additionalLinks`
+        # @return [Array<String>]
+        attr_accessor :additional_links
+      
+        # Link to console page where violations can be resolved
+        # Corresponds to the JSON property `consoleUris`
+        # @return [Array<String>]
+        attr_accessor :console_uris
+      
+        # Steps to resolve violation via cloud console
+        # Corresponds to the JSON property `steps`
+        # @return [Array<String>]
+        attr_accessor :steps
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @additional_links = args[:additional_links] if args.key?(:additional_links)
+          @console_uris = args[:console_uris] if args.key?(:console_uris)
+          @steps = args[:steps] if args.key?(:steps)
+        end
+      end
+      
+      # Remediation instructions to resolve violation via gcloud cli
+      class GoogleCloudAssuredworkloadsV1beta1ViolationRemediationInstructionsGcloud
+        include Google::Apis::Core::Hashable
+      
+        # Additional urls for more information about steps
+        # Corresponds to the JSON property `additionalLinks`
+        # @return [Array<String>]
+        attr_accessor :additional_links
+      
+        # Gcloud command to resolve violation
+        # Corresponds to the JSON property `gcloudCommands`
+        # @return [Array<String>]
+        attr_accessor :gcloud_commands
+      
+        # Steps to resolve violation via gcloud cli
+        # Corresponds to the JSON property `steps`
+        # @return [Array<String>]
+        attr_accessor :steps
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @additional_links = args[:additional_links] if args.key?(:additional_links)
+          @gcloud_commands = args[:gcloud_commands] if args.key?(:gcloud_commands)
+          @steps = args[:steps] if args.key?(:steps)
+        end
+      end
+      
+      # An Workload object for managing highly regulated workloads of cloud customers.
+      class GoogleCloudAssuredworkloadsV1beta1Workload
+        include Google::Apis::Core::Hashable
+      
+        # Optional. The billing account used for the resources which are direct children
+        # of workload. This billing account is initially associated with the resources
+        # created as part of Workload creation. After the initial creation of these
+        # resources, the customer can change the assigned billing account. The resource
+        # name has the form `billingAccounts/`billing_account_id``. For example, `
+        # billingAccounts/012345-567890-ABCDEF`.
+        # Corresponds to the JSON property `billingAccount`
+        # @return [String]
+        attr_accessor :billing_account
+      
+        # Settings specific to resources needed for CJIS.
+        # Corresponds to the JSON property `cjisSettings`
+        # @return [Google::Apis::AssuredworkloadsV1beta1::GoogleCloudAssuredworkloadsV1beta1WorkloadCjisSettings]
+        attr_accessor :cjis_settings
+      
+        # Required. Immutable. Compliance Regime associated with this workload.
+        # Corresponds to the JSON property `complianceRegime`
+        # @return [String]
+        attr_accessor :compliance_regime
+      
+        # Represents the Compliance Status of this workload
+        # Corresponds to the JSON property `complianceStatus`
+        # @return [Google::Apis::AssuredworkloadsV1beta1::GoogleCloudAssuredworkloadsV1beta1WorkloadComplianceStatus]
+        attr_accessor :compliance_status
+      
+        # Output only. Urls for services which are compliant for this Assured Workload,
+        # but which are currently disallowed by the ResourceUsageRestriction org policy.
+        # Invoke RestrictAllowedResources endpoint to allow your project developers to
+        # use these services in their environment."
+        # Corresponds to the JSON property `compliantButDisallowedServices`
+        # @return [Array<String>]
+        attr_accessor :compliant_but_disallowed_services
+      
+        # Output only. Immutable. The Workload creation timestamp.
+        # Corresponds to the JSON property `createTime`
+        # @return [String]
+        attr_accessor :create_time
+      
+        # Required. The user-assigned display name of the Workload. When present it must
+        # be between 4 to 30 characters. Allowed characters are: lowercase and uppercase
+        # letters, numbers, hyphen, and spaces. Example: My Workload
+        # Corresponds to the JSON property `displayName`
+        # @return [String]
+        attr_accessor :display_name
+      
+        # Optional. Indicates the sovereignty status of the given workload. Currently
+        # meant to be used by Europe/Canada customers.
+        # Corresponds to the JSON property `enableSovereignControls`
+        # @return [Boolean]
+        attr_accessor :enable_sovereign_controls
+        alias_method :enable_sovereign_controls?, :enable_sovereign_controls
+      
+        # Optional. ETag of the workload, it is calculated on the basis of the Workload
+        # contents. It will be used in Update & Delete operations.
+        # Corresponds to the JSON property `etag`
+        # @return [String]
+        attr_accessor :etag
+      
+        # Settings specific to resources needed for FedRAMP High.
+        # Corresponds to the JSON property `fedrampHighSettings`
+        # @return [Google::Apis::AssuredworkloadsV1beta1::GoogleCloudAssuredworkloadsV1beta1WorkloadFedrampHighSettings]
+        attr_accessor :fedramp_high_settings
+      
+        # Settings specific to resources needed for FedRAMP Moderate.
+        # Corresponds to the JSON property `fedrampModerateSettings`
+        # @return [Google::Apis::AssuredworkloadsV1beta1::GoogleCloudAssuredworkloadsV1beta1WorkloadFedrampModerateSettings]
+        attr_accessor :fedramp_moderate_settings
+      
+        # Settings specific to resources needed for IL4.
+        # Corresponds to the JSON property `il4Settings`
+        # @return [Google::Apis::AssuredworkloadsV1beta1::GoogleCloudAssuredworkloadsV1beta1WorkloadIl4Settings]
+        attr_accessor :il4_settings
+      
+        # Output only. Represents the KAJ enrollment state of the given workload.
+        # Corresponds to the JSON property `kajEnrollmentState`
+        # @return [String]
+        attr_accessor :kaj_enrollment_state
+      
+        # Settings specific to the Key Management Service.
+        # Corresponds to the JSON property `kmsSettings`
+        # @return [Google::Apis::AssuredworkloadsV1beta1::GoogleCloudAssuredworkloadsV1beta1WorkloadKmsSettings]
+        attr_accessor :kms_settings
+      
+        # Optional. Labels applied to the workload.
+        # Corresponds to the JSON property `labels`
+        # @return [Hash<String,String>]
+        attr_accessor :labels
+      
+        # Optional. The resource name of the workload. Format: organizations/`
+        # organization`/locations/`location`/workloads/`workload` Read-only.
+        # Corresponds to the JSON property `name`
+        # @return [String]
+        attr_accessor :name
+      
+        # Optional. Compliance Regime associated with this workload.
+        # Corresponds to the JSON property `partner`
+        # @return [String]
+        attr_accessor :partner
+      
+        # Input only. The parent resource for the resources managed by this Assured
+        # Workload. May be either empty or a folder resource which is a child of the
+        # Workload parent. If not specified all resources are created under the parent
+        # organization. Format: folders/`folder_id`
+        # Corresponds to the JSON property `provisionedResourcesParent`
+        # @return [String]
+        attr_accessor :provisioned_resources_parent
+      
+        # Input only. Resource properties that are used to customize workload resources.
+        # These properties (such as custom project id) will be used to create workload
+        # resources if possible. This field is optional.
+        # Corresponds to the JSON property `resourceSettings`
+        # @return [Array<Google::Apis::AssuredworkloadsV1beta1::GoogleCloudAssuredworkloadsV1beta1WorkloadResourceSettings>]
+        attr_accessor :resource_settings
+      
+        # Output only. The resources associated with this workload. These resources will
+        # be created when creating the workload. If any of the projects already exist,
+        # the workload creation will fail. Always read only.
+        # Corresponds to the JSON property `resources`
+        # @return [Array<Google::Apis::AssuredworkloadsV1beta1::GoogleCloudAssuredworkloadsV1beta1WorkloadResourceInfo>]
+        attr_accessor :resources
+      
+        # Signed Access Approvals (SAA) enrollment response.
+        # Corresponds to the JSON property `saaEnrollmentResponse`
+        # @return [Google::Apis::AssuredworkloadsV1beta1::GoogleCloudAssuredworkloadsV1beta1WorkloadSaaEnrollmentResponse]
+        attr_accessor :saa_enrollment_response
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @billing_account = args[:billing_account] if args.key?(:billing_account)
+          @cjis_settings = args[:cjis_settings] if args.key?(:cjis_settings)
+          @compliance_regime = args[:compliance_regime] if args.key?(:compliance_regime)
+          @compliance_status = args[:compliance_status] if args.key?(:compliance_status)
+          @compliant_but_disallowed_services = args[:compliant_but_disallowed_services] if args.key?(:compliant_but_disallowed_services)
+          @create_time = args[:create_time] if args.key?(:create_time)
+          @display_name = args[:display_name] if args.key?(:display_name)
+          @enable_sovereign_controls = args[:enable_sovereign_controls] if args.key?(:enable_sovereign_controls)
+          @etag = args[:etag] if args.key?(:etag)
+          @fedramp_high_settings = args[:fedramp_high_settings] if args.key?(:fedramp_high_settings)
+          @fedramp_moderate_settings = args[:fedramp_moderate_settings] if args.key?(:fedramp_moderate_settings)
+          @il4_settings = args[:il4_settings] if args.key?(:il4_settings)
+          @kaj_enrollment_state = args[:kaj_enrollment_state] if args.key?(:kaj_enrollment_state)
+          @kms_settings = args[:kms_settings] if args.key?(:kms_settings)
+          @labels = args[:labels] if args.key?(:labels)
+          @name = args[:name] if args.key?(:name)
+          @partner = args[:partner] if args.key?(:partner)
+          @provisioned_resources_parent = args[:provisioned_resources_parent] if args.key?(:provisioned_resources_parent)
+          @resource_settings = args[:resource_settings] if args.key?(:resource_settings)
+          @resources = args[:resources] if args.key?(:resources)
+          @saa_enrollment_response = args[:saa_enrollment_response] if args.key?(:saa_enrollment_response)
+        end
+      end
+      
+      # Settings specific to resources needed for CJIS.
+      class GoogleCloudAssuredworkloadsV1beta1WorkloadCjisSettings
+        include Google::Apis::Core::Hashable
+      
+        # Settings specific to the Key Management Service.
+        # Corresponds to the JSON property `kmsSettings`
+        # @return [Google::Apis::AssuredworkloadsV1beta1::GoogleCloudAssuredworkloadsV1beta1WorkloadKmsSettings]
+        attr_accessor :kms_settings
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @kms_settings = args[:kms_settings] if args.key?(:kms_settings)
+        end
+      end
+      
+      # Represents the Compliance Status of this workload
+      class GoogleCloudAssuredworkloadsV1beta1WorkloadComplianceStatus
+        include Google::Apis::Core::Hashable
+      
+        # Count of active Violations which are acknowledged in the Workload.
+        # Corresponds to the JSON property `acknowledgedViolationCount`
+        # @return [Fixnum]
+        attr_accessor :acknowledged_violation_count
+      
+        # Count of active Violations which haven't been acknowledged.
+        # Corresponds to the JSON property `activeViolationCount`
+        # @return [Fixnum]
+        attr_accessor :active_violation_count
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @acknowledged_violation_count = args[:acknowledged_violation_count] if args.key?(:acknowledged_violation_count)
+          @active_violation_count = args[:active_violation_count] if args.key?(:active_violation_count)
+        end
+      end
+      
+      # Settings specific to resources needed for FedRAMP High.
+      class GoogleCloudAssuredworkloadsV1beta1WorkloadFedrampHighSettings
+        include Google::Apis::Core::Hashable
+      
+        # Settings specific to the Key Management Service.
+        # Corresponds to the JSON property `kmsSettings`
+        # @return [Google::Apis::AssuredworkloadsV1beta1::GoogleCloudAssuredworkloadsV1beta1WorkloadKmsSettings]
+        attr_accessor :kms_settings
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @kms_settings = args[:kms_settings] if args.key?(:kms_settings)
+        end
+      end
+      
+      # Settings specific to resources needed for FedRAMP Moderate.
+      class GoogleCloudAssuredworkloadsV1beta1WorkloadFedrampModerateSettings
+        include Google::Apis::Core::Hashable
+      
+        # Settings specific to the Key Management Service.
+        # Corresponds to the JSON property `kmsSettings`
+        # @return [Google::Apis::AssuredworkloadsV1beta1::GoogleCloudAssuredworkloadsV1beta1WorkloadKmsSettings]
+        attr_accessor :kms_settings
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @kms_settings = args[:kms_settings] if args.key?(:kms_settings)
+        end
+      end
+      
+      # Settings specific to resources needed for IL4.
+      class GoogleCloudAssuredworkloadsV1beta1WorkloadIl4Settings
+        include Google::Apis::Core::Hashable
+      
+        # Settings specific to the Key Management Service.
+        # Corresponds to the JSON property `kmsSettings`
+        # @return [Google::Apis::AssuredworkloadsV1beta1::GoogleCloudAssuredworkloadsV1beta1WorkloadKmsSettings]
+        attr_accessor :kms_settings
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @kms_settings = args[:kms_settings] if args.key?(:kms_settings)
+        end
+      end
+      
+      # Settings specific to the Key Management Service.
+      class GoogleCloudAssuredworkloadsV1beta1WorkloadKmsSettings
+        include Google::Apis::Core::Hashable
+      
+        # Required. Input only. Immutable. The time at which the Key Management Service
+        # will automatically create a new version of the crypto key and mark it as the
+        # primary.
+        # Corresponds to the JSON property `nextRotationTime`
+        # @return [String]
+        attr_accessor :next_rotation_time
+      
+        # Required. Input only. Immutable. [next_rotation_time] will be advanced by this
+        # period when the Key Management Service automatically rotates a key. Must be at
+        # least 24 hours and at most 876,000 hours.
+        # Corresponds to the JSON property `rotationPeriod`
+        # @return [String]
+        attr_accessor :rotation_period
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @next_rotation_time = args[:next_rotation_time] if args.key?(:next_rotation_time)
+          @rotation_period = args[:rotation_period] if args.key?(:rotation_period)
+        end
+      end
+      
+      # Represent the resources that are children of this Workload.
+      class GoogleCloudAssuredworkloadsV1beta1WorkloadResourceInfo
+        include Google::Apis::Core::Hashable
+      
+        # Resource identifier. For a project this represents project_number.
+        # Corresponds to the JSON property `resourceId`
+        # @return [Fixnum]
+        attr_accessor :resource_id
+      
+        # Indicates the type of resource.
+        # Corresponds to the JSON property `resourceType`
+        # @return [String]
+        attr_accessor :resource_type
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @resource_id = args[:resource_id] if args.key?(:resource_id)
+          @resource_type = args[:resource_type] if args.key?(:resource_type)
+        end
+      end
+      
+      # Represent the custom settings for the resources to be created.
+      class GoogleCloudAssuredworkloadsV1beta1WorkloadResourceSettings
+        include Google::Apis::Core::Hashable
+      
+        # User-assigned resource display name. If not empty it will be used to create a
+        # resource with the specified name.
+        # Corresponds to the JSON property `displayName`
+        # @return [String]
+        attr_accessor :display_name
+      
+        # Resource identifier. For a project this represents project_id. If the project
+        # is already taken, the workload creation will fail. For KeyRing, this
+        # represents the keyring_id. For a folder, don't set this value as folder_id is
+        # assigned by Google.
+        # Corresponds to the JSON property `resourceId`
+        # @return [String]
+        attr_accessor :resource_id
+      
+        # Indicates the type of resource. This field should be specified to correspond
+        # the id to the right project type (CONSUMER_PROJECT or ENCRYPTION_KEYS_PROJECT)
+        # Corresponds to the JSON property `resourceType`
+        # @return [String]
+        attr_accessor :resource_type
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @display_name = args[:display_name] if args.key?(:display_name)
+          @resource_id = args[:resource_id] if args.key?(:resource_id)
+          @resource_type = args[:resource_type] if args.key?(:resource_type)
+        end
+      end
+      
+      # Signed Access Approvals (SAA) enrollment response.
+      class GoogleCloudAssuredworkloadsV1beta1WorkloadSaaEnrollmentResponse
+        include Google::Apis::Core::Hashable
+      
+        # Indicates SAA enrollment setup error if any.
+        # Corresponds to the JSON property `setupErrors`
+        # @return [Array<String>]
+        attr_accessor :setup_errors
+      
+        # Indicates SAA enrollment status of a given workload.
+        # Corresponds to the JSON property `setupStatus`
+        # @return [String]
+        attr_accessor :setup_status
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @setup_errors = args[:setup_errors] if args.key?(:setup_errors)
+          @setup_status = args[:setup_status] if args.key?(:setup_status)
+        end
+      end
+      
+      # The response message for Operations.ListOperations.
+      class GoogleLongrunningListOperationsResponse
+        include Google::Apis::Core::Hashable
+      
+        # The standard List next-page token.
+        # Corresponds to the JSON property `nextPageToken`
+        # @return [String]
+        attr_accessor :next_page_token
+      
+        # A list of operations that matches the specified filter in the request.
+        # Corresponds to the JSON property `operations`
+        # @return [Array<Google::Apis::AssuredworkloadsV1beta1::GoogleLongrunningOperation>]
+        attr_accessor :operations
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @next_page_token = args[:next_page_token] if args.key?(:next_page_token)
+          @operations = args[:operations] if args.key?(:operations)
+        end
+      end
+      
+      # This resource represents a long-running operation that is the result of a
+      # network API call.
+      class GoogleLongrunningOperation
+        include Google::Apis::Core::Hashable
+      
+        # If the value is `false`, it means the operation is still in progress. If `true`
+        # , the operation is completed, and either `error` or `response` is available.
+        # Corresponds to the JSON property `done`
+        # @return [Boolean]
+        attr_accessor :done
+        alias_method :done?, :done
+      
+        # The `Status` type defines a logical error model that is suitable for different
+        # programming environments, including REST APIs and RPC APIs. It is used by [
+        # gRPC](https://github.com/grpc). Each `Status` message contains three pieces of
+        # data: error code, error message, and error details. You can find out more
+        # about this error model and how to work with it in the [API Design Guide](https:
+        # //cloud.google.com/apis/design/errors).
+        # Corresponds to the JSON property `error`
+        # @return [Google::Apis::AssuredworkloadsV1beta1::GoogleRpcStatus]
+        attr_accessor :error
+      
+        # Service-specific metadata associated with the operation. It typically contains
+        # progress information and common metadata such as create time. Some services
+        # might not provide such metadata. Any method that returns a long-running
+        # operation should document the metadata type, if any.
+        # Corresponds to the JSON property `metadata`
+        # @return [Hash<String,Object>]
+        attr_accessor :metadata
+      
+        # The server-assigned name, which is only unique within the same service that
+        # originally returns it. If you use the default HTTP mapping, the `name` should
+        # be a resource name ending with `operations/`unique_id``.
+        # Corresponds to the JSON property `name`
+        # @return [String]
+        attr_accessor :name
+      
+        # The normal response of the operation in case of success. If the original
+        # method returns no data on success, such as `Delete`, the response is `google.
+        # protobuf.Empty`. If the original method is standard `Get`/`Create`/`Update`,
+        # the response should be the resource. For other methods, the response should
+        # have the type `XxxResponse`, where `Xxx` is the original method name. For
+        # example, if the original method name is `TakeSnapshot()`, the inferred
+        # response type is `TakeSnapshotResponse`.
+        # Corresponds to the JSON property `response`
+        # @return [Hash<String,Object>]
+        attr_accessor :response
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @done = args[:done] if args.key?(:done)
+          @error = args[:error] if args.key?(:error)
+          @metadata = args[:metadata] if args.key?(:metadata)
+          @name = args[:name] if args.key?(:name)
+          @response = args[:response] if args.key?(:response)
+        end
+      end
+      
+      # A generic empty message that you can re-use to avoid defining duplicated empty
+      # messages in your APIs. A typical example is to use it as the request or the
+      # response type of an API method. For instance: service Foo ` rpc Bar(google.
+      # protobuf.Empty) returns (google.protobuf.Empty); `
+      class GoogleProtobufEmpty
+        include Google::Apis::Core::Hashable
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+        end
+      end
+      
+      # The `Status` type defines a logical error model that is suitable for different
+      # programming environments, including REST APIs and RPC APIs. It is used by [
+      # gRPC](https://github.com/grpc). Each `Status` message contains three pieces of
+      # data: error code, error message, and error details. You can find out more
+      # about this error model and how to work with it in the [API Design Guide](https:
+      # //cloud.google.com/apis/design/errors).
+      class GoogleRpcStatus
+        include Google::Apis::Core::Hashable
+      
+        # The status code, which should be an enum value of google.rpc.Code.
+        # Corresponds to the JSON property `code`
+        # @return [Fixnum]
+        attr_accessor :code
+      
+        # A list of messages that carry the error details. There is a common set of
+        # message types for APIs to use.
+        # Corresponds to the JSON property `details`
+        # @return [Array<Hash<String,Object>>]
+        attr_accessor :details
+      
+        # A developer-facing error message, which should be in English. Any user-facing
+        # error message should be localized and sent in the google.rpc.Status.details
+        # field, or localized by the client.
+        # Corresponds to the JSON property `message`
+        # @return [String]
+        attr_accessor :message
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @code = args[:code] if args.key?(:code)
+          @details = args[:details] if args.key?(:details)
+          @message = args[:message] if args.key?(:message)
+        end
+      end
+    end
+  end
+end