google-apis-binaryauthorization_v1beta1 0.1.0 → 0.6.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/CHANGELOG.md +22 -0
- data/lib/google/apis/binaryauthorization_v1beta1.rb +1 -1
- data/lib/google/apis/binaryauthorization_v1beta1/classes.rb +29 -5
- data/lib/google/apis/binaryauthorization_v1beta1/gem_version.rb +3 -3
- data/lib/google/apis/binaryauthorization_v1beta1/representations.rb +6 -0
- data/lib/google/apis/binaryauthorization_v1beta1/service.rb +31 -0
- metadata +5 -5
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: 66fee0948aa5035db2ec904b2a59f29e2b530ef9649d5a98f97b35612312fdeb
|
|
4
|
+
data.tar.gz: 739e1da3b41580dc99a39d7a5f7ec3e8c821fff7b2a7bdf571268ba4cfc26f39
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 665c3e6cfdbdcbe2ff458a31b2d9343e76e9d3ba84c6952ce787194fe14471fa302e8277e47fa03f1d653c825762ad57fd4d72c543b93ef3752fd5bfdfaa5758
|
|
7
|
+
data.tar.gz: 2d30a636a4d33e1f235698c0c929e73ee9b37909758447a9be0772d8eb3f204e3bca6a19fb775e8ad9242994f0ff35a05d2d4d207b2114936b2a476c6d3f2270
|
data/CHANGELOG.md
CHANGED
|
@@ -1,5 +1,27 @@
|
|
|
1
1
|
# Release history for google-apis-binaryauthorization_v1beta1
|
|
2
2
|
|
|
3
|
+
### v0.6.0 (2021-05-19)
|
|
4
|
+
|
|
5
|
+
* Unspecified changes
|
|
6
|
+
|
|
7
|
+
### v0.5.0 (2021-05-01)
|
|
8
|
+
|
|
9
|
+
* Regenerated from discovery document revision 20210422
|
|
10
|
+
* Regenerated using generator version 0.2.0
|
|
11
|
+
|
|
12
|
+
### v0.4.0 (2021-03-04)
|
|
13
|
+
|
|
14
|
+
* Unspecified changes
|
|
15
|
+
|
|
16
|
+
### v0.3.0 (2021-02-19)
|
|
17
|
+
|
|
18
|
+
* Regenerated from discovery document revision 20210212
|
|
19
|
+
|
|
20
|
+
### v0.2.0 (2021-02-06)
|
|
21
|
+
|
|
22
|
+
* Regenerated from discovery document revision 20210129
|
|
23
|
+
* Regenerated using generator version 0.1.2
|
|
24
|
+
|
|
3
25
|
### v0.1.0 (2021-01-07)
|
|
4
26
|
|
|
5
27
|
* Regenerated using generator version 0.1.1
|
|
@@ -30,7 +30,7 @@ module Google
|
|
|
30
30
|
# This is NOT the gem version.
|
|
31
31
|
VERSION = 'V1beta1'
|
|
32
32
|
|
|
33
|
-
#
|
|
33
|
+
# See, edit, configure, and delete your Google Cloud Platform data
|
|
34
34
|
AUTH_CLOUD_PLATFORM = 'https://www.googleapis.com/auth/cloud-platform'
|
|
35
35
|
end
|
|
36
36
|
end
|
|
@@ -25,7 +25,7 @@ module Google
|
|
|
25
25
|
# An admission rule specifies either that all container images used in a pod
|
|
26
26
|
# creation request must be attested to by one or more attestors, that all pod
|
|
27
27
|
# creations will be allowed, or that all pod creations will be denied. Images
|
|
28
|
-
# matching an admission
|
|
28
|
+
# matching an admission allowlist pattern are exempted from admission rules and
|
|
29
29
|
# will never block a pod creation.
|
|
30
30
|
class AdmissionRule
|
|
31
31
|
include Google::Apis::Core::Hashable
|
|
@@ -62,14 +62,16 @@ module Google
|
|
|
62
62
|
end
|
|
63
63
|
end
|
|
64
64
|
|
|
65
|
-
# An admission
|
|
65
|
+
# An admission allowlist pattern exempts images from checks by admission rules.
|
|
66
66
|
class AdmissionWhitelistPattern
|
|
67
67
|
include Google::Apis::Core::Hashable
|
|
68
68
|
|
|
69
69
|
# An image name pattern to allowlist, in the form `registry/path/to/image`. This
|
|
70
70
|
# supports a trailing `*` as a wildcard, but this is allowed only in text after
|
|
71
|
-
# the `registry/` part.
|
|
72
|
-
# matches gcr.io/nginx@latest, but it does not match gcr.io/nginx/image.
|
|
71
|
+
# the `registry/` part. `*` wildcard does not match `/`, i.e., gcr.io/nginx*
|
|
72
|
+
# matches gcr.io/nginx@latest, but it does not match gcr.io/nginx/image. This
|
|
73
|
+
# also supports a trailing `**` wildcard which matches subdirectories, i.e., gcr.
|
|
74
|
+
# io/nginx** matches gcr.io/nginx/image.
|
|
73
75
|
# Corresponds to the JSON property `namePattern`
|
|
74
76
|
# @return [String]
|
|
75
77
|
attr_accessor :name_pattern
|
|
@@ -549,7 +551,7 @@ module Google
|
|
|
549
551
|
# An admission rule specifies either that all container images used in a pod
|
|
550
552
|
# creation request must be attested to by one or more attestors, that all pod
|
|
551
553
|
# creations will be allowed, or that all pod creations will be denied. Images
|
|
552
|
-
# matching an admission
|
|
554
|
+
# matching an admission allowlist pattern are exempted from admission rules and
|
|
553
555
|
# will never block a pod creation.
|
|
554
556
|
# Corresponds to the JSON property `defaultAdmissionRule`
|
|
555
557
|
# @return [Google::Apis::BinaryauthorizationV1beta1::AdmissionRule]
|
|
@@ -568,6 +570,25 @@ module Google
|
|
|
568
570
|
# @return [String]
|
|
569
571
|
attr_accessor :global_policy_evaluation_mode
|
|
570
572
|
|
|
573
|
+
# Optional. Per-istio-service-identity admission rules. Istio service identity
|
|
574
|
+
# spec format: spiffe:///ns//sa/ or /ns//sa/ e.g. spiffe://example.com/ns/test-
|
|
575
|
+
# ns/sa/default
|
|
576
|
+
# Corresponds to the JSON property `istioServiceIdentityAdmissionRules`
|
|
577
|
+
# @return [Hash<String,Google::Apis::BinaryauthorizationV1beta1::AdmissionRule>]
|
|
578
|
+
attr_accessor :istio_service_identity_admission_rules
|
|
579
|
+
|
|
580
|
+
# Optional. Per-kubernetes-namespace admission rules. K8s namespace spec format:
|
|
581
|
+
# [a-z.-]+, e.g. 'some-namespace'
|
|
582
|
+
# Corresponds to the JSON property `kubernetesNamespaceAdmissionRules`
|
|
583
|
+
# @return [Hash<String,Google::Apis::BinaryauthorizationV1beta1::AdmissionRule>]
|
|
584
|
+
attr_accessor :kubernetes_namespace_admission_rules
|
|
585
|
+
|
|
586
|
+
# Optional. Per-kubernetes-service-account admission rules. Service account spec
|
|
587
|
+
# format: `namespace:serviceaccount`. e.g. 'test-ns:default'
|
|
588
|
+
# Corresponds to the JSON property `kubernetesServiceAccountAdmissionRules`
|
|
589
|
+
# @return [Hash<String,Google::Apis::BinaryauthorizationV1beta1::AdmissionRule>]
|
|
590
|
+
attr_accessor :kubernetes_service_account_admission_rules
|
|
591
|
+
|
|
571
592
|
# Output only. The resource name, in the format `projects/*/policy`. There is at
|
|
572
593
|
# most one policy per project.
|
|
573
594
|
# Corresponds to the JSON property `name`
|
|
@@ -590,6 +611,9 @@ module Google
|
|
|
590
611
|
@default_admission_rule = args[:default_admission_rule] if args.key?(:default_admission_rule)
|
|
591
612
|
@description = args[:description] if args.key?(:description)
|
|
592
613
|
@global_policy_evaluation_mode = args[:global_policy_evaluation_mode] if args.key?(:global_policy_evaluation_mode)
|
|
614
|
+
@istio_service_identity_admission_rules = args[:istio_service_identity_admission_rules] if args.key?(:istio_service_identity_admission_rules)
|
|
615
|
+
@kubernetes_namespace_admission_rules = args[:kubernetes_namespace_admission_rules] if args.key?(:kubernetes_namespace_admission_rules)
|
|
616
|
+
@kubernetes_service_account_admission_rules = args[:kubernetes_service_account_admission_rules] if args.key?(:kubernetes_service_account_admission_rules)
|
|
593
617
|
@name = args[:name] if args.key?(:name)
|
|
594
618
|
@update_time = args[:update_time] if args.key?(:update_time)
|
|
595
619
|
end
|
|
@@ -16,13 +16,13 @@ module Google
|
|
|
16
16
|
module Apis
|
|
17
17
|
module BinaryauthorizationV1beta1
|
|
18
18
|
# Version of the google-apis-binaryauthorization_v1beta1 gem
|
|
19
|
-
GEM_VERSION = "0.
|
|
19
|
+
GEM_VERSION = "0.6.0"
|
|
20
20
|
|
|
21
21
|
# Version of the code generator used to generate this client
|
|
22
|
-
GENERATOR_VERSION = "0.
|
|
22
|
+
GENERATOR_VERSION = "0.2.0"
|
|
23
23
|
|
|
24
24
|
# Revision of the discovery document this client was generated from
|
|
25
|
-
REVISION = "
|
|
25
|
+
REVISION = "20210422"
|
|
26
26
|
end
|
|
27
27
|
end
|
|
28
28
|
end
|
|
@@ -262,6 +262,12 @@ module Google
|
|
|
262
262
|
|
|
263
263
|
property :description, as: 'description'
|
|
264
264
|
property :global_policy_evaluation_mode, as: 'globalPolicyEvaluationMode'
|
|
265
|
+
hash :istio_service_identity_admission_rules, as: 'istioServiceIdentityAdmissionRules', class: Google::Apis::BinaryauthorizationV1beta1::AdmissionRule, decorator: Google::Apis::BinaryauthorizationV1beta1::AdmissionRule::Representation
|
|
266
|
+
|
|
267
|
+
hash :kubernetes_namespace_admission_rules, as: 'kubernetesNamespaceAdmissionRules', class: Google::Apis::BinaryauthorizationV1beta1::AdmissionRule, decorator: Google::Apis::BinaryauthorizationV1beta1::AdmissionRule::Representation
|
|
268
|
+
|
|
269
|
+
hash :kubernetes_service_account_admission_rules, as: 'kubernetesServiceAccountAdmissionRules', class: Google::Apis::BinaryauthorizationV1beta1::AdmissionRule, decorator: Google::Apis::BinaryauthorizationV1beta1::AdmissionRule::Representation
|
|
270
|
+
|
|
265
271
|
property :name, as: 'name'
|
|
266
272
|
property :update_time, as: 'updateTime'
|
|
267
273
|
end
|
|
@@ -560,6 +560,37 @@ module Google
|
|
|
560
560
|
command.query['quotaUser'] = quota_user unless quota_user.nil?
|
|
561
561
|
execute_or_queue_command(command, &block)
|
|
562
562
|
end
|
|
563
|
+
|
|
564
|
+
# Gets the current system policy in the specified location.
|
|
565
|
+
# @param [String] name
|
|
566
|
+
# Required. The resource name, in the format `locations/*/policy`. Note that the
|
|
567
|
+
# system policy is not associated with a project.
|
|
568
|
+
# @param [String] fields
|
|
569
|
+
# Selector specifying which fields to include in a partial response.
|
|
570
|
+
# @param [String] quota_user
|
|
571
|
+
# Available to use for quota purposes for server-side applications. Can be any
|
|
572
|
+
# arbitrary string assigned to a user, but should not exceed 40 characters.
|
|
573
|
+
# @param [Google::Apis::RequestOptions] options
|
|
574
|
+
# Request-specific options
|
|
575
|
+
#
|
|
576
|
+
# @yield [result, err] Result & error if block supplied
|
|
577
|
+
# @yieldparam result [Google::Apis::BinaryauthorizationV1beta1::Policy] parsed result object
|
|
578
|
+
# @yieldparam err [StandardError] error object if request failed
|
|
579
|
+
#
|
|
580
|
+
# @return [Google::Apis::BinaryauthorizationV1beta1::Policy]
|
|
581
|
+
#
|
|
582
|
+
# @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
|
|
583
|
+
# @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
|
|
584
|
+
# @raise [Google::Apis::AuthorizationError] Authorization is required
|
|
585
|
+
def get_systempolicy_policy(name, fields: nil, quota_user: nil, options: nil, &block)
|
|
586
|
+
command = make_simple_command(:get, 'v1beta1/{+name}', options)
|
|
587
|
+
command.response_representation = Google::Apis::BinaryauthorizationV1beta1::Policy::Representation
|
|
588
|
+
command.response_class = Google::Apis::BinaryauthorizationV1beta1::Policy
|
|
589
|
+
command.params['name'] = name unless name.nil?
|
|
590
|
+
command.query['fields'] = fields unless fields.nil?
|
|
591
|
+
command.query['quotaUser'] = quota_user unless quota_user.nil?
|
|
592
|
+
execute_or_queue_command(command, &block)
|
|
593
|
+
end
|
|
563
594
|
|
|
564
595
|
protected
|
|
565
596
|
|
metadata
CHANGED
|
@@ -1,14 +1,14 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: google-apis-binaryauthorization_v1beta1
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 0.
|
|
4
|
+
version: 0.6.0
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Google LLC
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: bin
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date: 2021-
|
|
11
|
+
date: 2021-05-24 00:00:00.000000000 Z
|
|
12
12
|
dependencies:
|
|
13
13
|
- !ruby/object:Gem::Dependency
|
|
14
14
|
name: google-apis-core
|
|
@@ -52,7 +52,7 @@ licenses:
|
|
|
52
52
|
metadata:
|
|
53
53
|
bug_tracker_uri: https://github.com/googleapis/google-api-ruby-client/issues
|
|
54
54
|
changelog_uri: https://github.com/googleapis/google-api-ruby-client/tree/master/generated/google-apis-binaryauthorization_v1beta1/CHANGELOG.md
|
|
55
|
-
documentation_uri: https://googleapis.dev/ruby/google-apis-binaryauthorization_v1beta1/v0.
|
|
55
|
+
documentation_uri: https://googleapis.dev/ruby/google-apis-binaryauthorization_v1beta1/v0.6.0
|
|
56
56
|
source_code_uri: https://github.com/googleapis/google-api-ruby-client/tree/master/generated/google-apis-binaryauthorization_v1beta1
|
|
57
57
|
post_install_message:
|
|
58
58
|
rdoc_options: []
|
|
@@ -62,14 +62,14 @@ required_ruby_version: !ruby/object:Gem::Requirement
|
|
|
62
62
|
requirements:
|
|
63
63
|
- - ">="
|
|
64
64
|
- !ruby/object:Gem::Version
|
|
65
|
-
version: '2.
|
|
65
|
+
version: '2.5'
|
|
66
66
|
required_rubygems_version: !ruby/object:Gem::Requirement
|
|
67
67
|
requirements:
|
|
68
68
|
- - ">="
|
|
69
69
|
- !ruby/object:Gem::Version
|
|
70
70
|
version: '0'
|
|
71
71
|
requirements: []
|
|
72
|
-
rubygems_version: 3.
|
|
72
|
+
rubygems_version: 3.2.17
|
|
73
73
|
signing_key:
|
|
74
74
|
specification_version: 4
|
|
75
75
|
summary: Simple REST client for Binary Authorization API V1beta1
|