google-apis-binaryauthorization_v1 0.1.0 → 0.6.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: a20b0fd5d53fadda8a61c7ee79491bb316e22f28991ae974f61f55d3fe2508a3
-  data.tar.gz: ce31aed5834429439e060be87c8a2c0b6bdec2891701cdbda75e7ed4be0eb5ef
+  metadata.gz: 944fb229d826a230668f83d5d97b9fd1b50a109abed47353e069909f4ff4e15b
+  data.tar.gz: 14e6a29dad5ca5985311e7c44c55b45fb8ef16326206aff99d0420113ba38fcb
 SHA512:
-  metadata.gz: a758f8b34661656f0c5195a6153cd0cb4715ab55fe16eb0e6cf013a6fa593cefde4e865b4d1e4db24a42bb38325342e19ea0ffb6928f8f8f9eba74b1d1504be4
-  data.tar.gz: 536d28939fac7762f56e20e6e0e4c5af47c657a0b2e2a0023cfcbfb75ae46785d7caa315feee28bbbc012284e4115b16fec9c60e43f9fdc99b9d5e5cc8b52eb5
+  metadata.gz: 95e7e7d697f588a5965f9032b51b11a424cbccc721880375caddbabc2cec521aa67d290d69c1042c29c054fdd3d8ece71cd14c2d59a47f4e3134c8f33ac01629
+  data.tar.gz: a98132113ce8463cc399a68f878bc1ca6b91e3298d1b5a46d40910a9efc6660e2af838429326e517513f7d995829731f7be5289c0e43c5a8ca219b38d5d2c116

data/CHANGELOG.md

@@ -1,5 +1,27 @@
 # Release history for google-apis-binaryauthorization_v1
 
+### v0.6.0 (2021-05-19)
+
+* Unspecified changes
+
+### v0.5.0 (2021-05-01)
+
+* Regenerated from discovery document revision 20210422
+* Regenerated using generator version 0.2.0
+
+### v0.4.0 (2021-03-04)
+
+* Unspecified changes
+
+### v0.3.0 (2021-02-20)
+
+* Regenerated from discovery document revision 20210212
+
+### v0.2.0 (2021-02-04)
+
+* Regenerated from discovery document revision 20210129
+* Regenerated using generator version 0.1.2
+
 ### v0.1.0 (2021-01-07)
 
 * Regenerated using generator version 0.1.1

data/lib/google/apis/binaryauthorization_v1.rb

@@ -30,7 +30,7 @@ module Google
       # This is NOT the gem version.
       VERSION = 'V1'
 
-      # View and manage your data across Google Cloud Platform services
+      # See, edit, configure, and delete your Google Cloud Platform data
       AUTH_CLOUD_PLATFORM = 'https://www.googleapis.com/auth/cloud-platform'
     end
   end

data/lib/google/apis/binaryauthorization_v1/classes.rb

@@ -25,7 +25,7 @@ module Google
       # An admission rule specifies either that all container images used in a pod
       # creation request must be attested to by one or more attestors, that all pod
       # creations will be allowed, or that all pod creations will be denied. Images
-      # matching an admission whitelist pattern are exempted from admission rules and
+      # matching an admission allowlist pattern are exempted from admission rules and
       # will never block a pod creation.
       class AdmissionRule
         include Google::Apis::Core::Hashable
@@ -62,13 +62,14 @@ module Google
         end
       end
       
-      # An admission whitelist pattern exempts images from checks by admission rules.
+      # An admission allowlist pattern exempts images from checks by admission rules.
       class AdmissionWhitelistPattern
         include Google::Apis::Core::Hashable
       
         # An image name pattern to allowlist, in the form `registry/path/to/image`. This
-        # supports a trailing `*` as a wildcard, but this is allowed only in text after
-        # the `registry/` part.
+        # supports a trailing `*` wildcard, but this is allowed only in text after the `
+        # registry/` part. This also supports a trailing `**` wildcard which matches
+        # subdirectories of a given entry.
         # Corresponds to the JSON property `namePattern`
         # @return [String]
         attr_accessor :name_pattern
@@ -548,7 +549,7 @@ module Google
         # An admission rule specifies either that all container images used in a pod
         # creation request must be attested to by one or more attestors, that all pod
         # creations will be allowed, or that all pod creations will be denied. Images
-        # matching an admission whitelist pattern are exempted from admission rules and
+        # matching an admission allowlist pattern are exempted from admission rules and
         # will never block a pod creation.
         # Corresponds to the JSON property `defaultAdmissionRule`
         # @return [Google::Apis::BinaryauthorizationV1::AdmissionRule]
@@ -567,6 +568,25 @@ module Google
         # @return [String]
         attr_accessor :global_policy_evaluation_mode
       
+        # Optional. Per-istio-service-identity admission rules. Istio service identity
+        # spec format: spiffe:///ns//sa/ or /ns//sa/ e.g. spiffe://example.com/ns/test-
+        # ns/sa/default
+        # Corresponds to the JSON property `istioServiceIdentityAdmissionRules`
+        # @return [Hash<String,Google::Apis::BinaryauthorizationV1::AdmissionRule>]
+        attr_accessor :istio_service_identity_admission_rules
+      
+        # Optional. Per-kubernetes-namespace admission rules. K8s namespace spec format:
+        # [a-z.-]+, e.g. 'some-namespace'
+        # Corresponds to the JSON property `kubernetesNamespaceAdmissionRules`
+        # @return [Hash<String,Google::Apis::BinaryauthorizationV1::AdmissionRule>]
+        attr_accessor :kubernetes_namespace_admission_rules
+      
+        # Optional. Per-kubernetes-service-account admission rules. Service account spec
+        # format: `namespace:serviceaccount`. e.g. 'test-ns:default'
+        # Corresponds to the JSON property `kubernetesServiceAccountAdmissionRules`
+        # @return [Hash<String,Google::Apis::BinaryauthorizationV1::AdmissionRule>]
+        attr_accessor :kubernetes_service_account_admission_rules
+      
         # Output only. The resource name, in the format `projects/*/policy`. There is at
         # most one policy per project.
         # Corresponds to the JSON property `name`
@@ -589,6 +609,9 @@ module Google
           @default_admission_rule = args[:default_admission_rule] if args.key?(:default_admission_rule)
           @description = args[:description] if args.key?(:description)
           @global_policy_evaluation_mode = args[:global_policy_evaluation_mode] if args.key?(:global_policy_evaluation_mode)
+          @istio_service_identity_admission_rules = args[:istio_service_identity_admission_rules] if args.key?(:istio_service_identity_admission_rules)
+          @kubernetes_namespace_admission_rules = args[:kubernetes_namespace_admission_rules] if args.key?(:kubernetes_namespace_admission_rules)
+          @kubernetes_service_account_admission_rules = args[:kubernetes_service_account_admission_rules] if args.key?(:kubernetes_service_account_admission_rules)
           @name = args[:name] if args.key?(:name)
           @update_time = args[:update_time] if args.key?(:update_time)
         end

data/lib/google/apis/binaryauthorization_v1/gem_version.rb

@@ -16,13 +16,13 @@ module Google
   module Apis
     module BinaryauthorizationV1
       # Version of the google-apis-binaryauthorization_v1 gem
-      GEM_VERSION = "0.1.0"
+      GEM_VERSION = "0.6.0"
 
       # Version of the code generator used to generate this client
-      GENERATOR_VERSION = "0.1.1"
+      GENERATOR_VERSION = "0.2.0"
 
       # Revision of the discovery document this client was generated from
-      REVISION = "20201113"
+      REVISION = "20210422"
     end
   end
 end

data/lib/google/apis/binaryauthorization_v1/representations.rb

@@ -262,6 +262,12 @@ module Google
       
           property :description, as: 'description'
           property :global_policy_evaluation_mode, as: 'globalPolicyEvaluationMode'
+          hash :istio_service_identity_admission_rules, as: 'istioServiceIdentityAdmissionRules', class: Google::Apis::BinaryauthorizationV1::AdmissionRule, decorator: Google::Apis::BinaryauthorizationV1::AdmissionRule::Representation
+      
+          hash :kubernetes_namespace_admission_rules, as: 'kubernetesNamespaceAdmissionRules', class: Google::Apis::BinaryauthorizationV1::AdmissionRule, decorator: Google::Apis::BinaryauthorizationV1::AdmissionRule::Representation
+      
+          hash :kubernetes_service_account_admission_rules, as: 'kubernetesServiceAccountAdmissionRules', class: Google::Apis::BinaryauthorizationV1::AdmissionRule, decorator: Google::Apis::BinaryauthorizationV1::AdmissionRule::Representation
+      
           property :name, as: 'name'
           property :update_time, as: 'updateTime'
         end

data/lib/google/apis/binaryauthorization_v1/service.rb

@@ -560,6 +560,37 @@ module Google
           command.query['quotaUser'] = quota_user unless quota_user.nil?
           execute_or_queue_command(command, &block)
         end
+        
+        # Gets the current system policy in the specified location.
+        # @param [String] name
+        #   Required. The resource name, in the format `locations/*/policy`. Note that the
+        #   system policy is not associated with a project.
+        # @param [String] fields
+        #   Selector specifying which fields to include in a partial response.
+        # @param [String] quota_user
+        #   Available to use for quota purposes for server-side applications. Can be any
+        #   arbitrary string assigned to a user, but should not exceed 40 characters.
+        # @param [Google::Apis::RequestOptions] options
+        #   Request-specific options
+        #
+        # @yield [result, err] Result & error if block supplied
+        # @yieldparam result [Google::Apis::BinaryauthorizationV1::Policy] parsed result object
+        # @yieldparam err [StandardError] error object if request failed
+        #
+        # @return [Google::Apis::BinaryauthorizationV1::Policy]
+        #
+        # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
+        # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
+        # @raise [Google::Apis::AuthorizationError] Authorization is required
+        def get_systempolicy_policy(name, fields: nil, quota_user: nil, options: nil, &block)
+          command = make_simple_command(:get, 'v1/{+name}', options)
+          command.response_representation = Google::Apis::BinaryauthorizationV1::Policy::Representation
+          command.response_class = Google::Apis::BinaryauthorizationV1::Policy
+          command.params['name'] = name unless name.nil?
+          command.query['fields'] = fields unless fields.nil?
+          command.query['quotaUser'] = quota_user unless quota_user.nil?
+          execute_or_queue_command(command, &block)
+        end
 
         protected
 

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: google-apis-binaryauthorization_v1
 version: !ruby/object:Gem::Version
-  version: 0.1.0
+  version: 0.6.0
 platform: ruby
 authors:
 - Google LLC
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2021-01-08 00:00:00.000000000 Z
+date: 2021-05-24 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: google-apis-core
@@ -52,7 +52,7 @@ licenses:
 metadata:
   bug_tracker_uri: https://github.com/googleapis/google-api-ruby-client/issues
   changelog_uri: https://github.com/googleapis/google-api-ruby-client/tree/master/generated/google-apis-binaryauthorization_v1/CHANGELOG.md
-  documentation_uri: https://googleapis.dev/ruby/google-apis-binaryauthorization_v1/v0.1.0
+  documentation_uri: https://googleapis.dev/ruby/google-apis-binaryauthorization_v1/v0.6.0
   source_code_uri: https://github.com/googleapis/google-api-ruby-client/tree/master/generated/google-apis-binaryauthorization_v1
 post_install_message: 
 rdoc_options: []
@@ -62,14 +62,14 @@ required_ruby_version: !ruby/object:Gem::Requirement
   requirements:
   - - ">="
     - !ruby/object:Gem::Version
-      version: '2.4'
+      version: '2.5'
 required_rubygems_version: !ruby/object:Gem::Requirement
   requirements:
   - - ">="
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.1.4
+rubygems_version: 3.2.17
 signing_key: 
 specification_version: 4
 summary: Simple REST client for Binary Authorization API V1