google-apis-cloudasset_v1 0.50.0 → 0.52.0

data/lib/google/apis/cloudasset_v1/service.rb

@@ -22,7 +22,8 @@ module Google
     module CloudassetV1
       # Cloud Asset API
       #
-      # The cloud asset API manages the history and inventory of cloud resources.
+      # The Cloud Asset API manages the history and inventory of Google Cloud
+      #  resources.
       #
       # @example
       #    require 'google/apis/cloudasset_v1'
@@ -387,8 +388,8 @@ module Google
         # @param [String] saved_query_id
         #   Required. The ID to use for the saved query, which must be unique in the
         #   specified parent. It will become the final component of the saved query's
-        #   resource name. This value should be 4-63 characters, and valid characters are /
-        #   a-z-/. Notice that this field is required in the saved query creation, and the
+        #   resource name. This value should be 4-63 characters, and valid characters are `
+        #   a-z-`. Notice that this field is required in the saved query creation, and the
         #   `name` field of the `saved_query` will be ignored.
         # @param [String] fields
         #   Selector specifying which fields to include in a partial response.
@@ -607,19 +608,19 @@ module Google
         #   Optional. If true, the response will include access analysis from identities
         #   to resources via service account impersonation. This is a very expensive
         #   operation, because many derived queries will be executed. We highly recommend
-        #   you use AssetService.AnalyzeIamPolicyLongrunning rpc instead. For example, if
+        #   you use AssetService.AnalyzeIamPolicyLongrunning RPC instead. For example, if
         #   the request analyzes for which resources user A has permission P, and there's
         #   an IAM policy states user A has iam.serviceAccounts.getAccessToken permission
         #   to a service account SA, and there's another IAM policy states service account
-        #   SA has permission P to a GCP folder F, then user A potentially has access to
-        #   the GCP folder F. And those advanced analysis results will be included in
-        #   AnalyzeIamPolicyResponse.service_account_impersonation_analysis. Another
-        #   example, if the request analyzes for who has permission P to a GCP folder F,
-        #   and there's an IAM policy states user A has iam.serviceAccounts.actAs
-        #   permission to a service account SA, and there's another IAM policy states
-        #   service account SA has permission P to the GCP folder F, then user A
-        #   potentially has access to the GCP folder F. And those advanced analysis
-        #   results will be included in AnalyzeIamPolicyResponse.
+        #   SA has permission P to a Google Cloud folder F, then user A potentially has
+        #   access to the Google Cloud folder F. And those advanced analysis results will
+        #   be included in AnalyzeIamPolicyResponse.service_account_impersonation_analysis.
+        #   Another example, if the request analyzes for who has permission P to a Google
+        #   Cloud folder F, and there's an IAM policy states user A has iam.
+        #   serviceAccounts.actAs permission to a service account SA, and there's another
+        #   IAM policy states service account SA has permission P to the Google Cloud
+        #   folder F, then user A potentially has access to the Google Cloud folder F. And
+        #   those advanced analysis results will be included in AnalyzeIamPolicyResponse.
         #   service_account_impersonation_analysis. Only the following permissions are
         #   considered in this analysis: * `iam.serviceAccounts.actAs` * `iam.
         #   serviceAccounts.signBlob` * `iam.serviceAccounts.signJwt` * `iam.
@@ -637,17 +638,18 @@ module Google
         #   specified, the resource section of the result will expand any resource
         #   attached to an IAM policy to include resources lower in the resource hierarchy.
         #   For example, if the request analyzes for which resources user A has
-        #   permission P, and the results include an IAM policy with P on a GCP folder,
-        #   the results will also include resources in that folder with permission P. If
-        #   true and IamPolicyAnalysisQuery.resource_selector is specified, the resource
-        #   section of the result will expand the specified resource to include resources
-        #   lower in the resource hierarchy. Only project or lower resources are supported.
-        #   Folder and organization resource cannot be used together with this option.
-        #   For example, if the request analyzes for which users have permission P on a
-        #   GCP project with this option enabled, the results will include all users who
-        #   have permission P on that project or any lower resource. If true, the default
-        #   max expansion per resource is 1000 for AssetService.AnalyzeIamPolicy][] and
-        #   100000 for AssetService.AnalyzeIamPolicyLongrunning][]. Default is false.
+        #   permission P, and the results include an IAM policy with P on a Google Cloud
+        #   folder, the results will also include resources in that folder with permission
+        #   P. If true and IamPolicyAnalysisQuery.resource_selector is specified, the
+        #   resource section of the result will expand the specified resource to include
+        #   resources lower in the resource hierarchy. Only project or lower resources are
+        #   supported. Folder and organization resources cannot be used together with this
+        #   option. For example, if the request analyzes for which users have permission P
+        #   on a Google Cloud project with this option enabled, the results will include
+        #   all users who have permission P on that project or any lower resource. If true,
+        #   the default max expansion per resource is 1000 for AssetService.
+        #   AnalyzeIamPolicy][] and 100000 for AssetService.AnalyzeIamPolicyLongrunning][].
+        #   Default is false.
         # @param [Boolean] analysis_query_options_expand_roles
         #   Optional. If true, the access section of result will expand any roles
         #   appearing in IAM policy bindings to include their permissions. If
@@ -780,14 +782,15 @@ module Google
         # and configuration are subject to change before the actual resource migration
         # takes place.
         # @param [String] resource
-        #   Required. Name of the resource to perform the analysis against. Only GCP
-        #   Project are supported as of today. Hence, this can only be Project ID (such as
-        #   "projects/my-project-id") or a Project Number (such as "projects/12345").
+        #   Required. Name of the resource to perform the analysis against. Only Google
+        #   Cloud projects are supported as of today. Hence, this can only be a project ID
+        #   (such as "projects/my-project-id") or a project number (such as "projects/
+        #   12345").
         # @param [String] destination_parent
-        #   Required. Name of the GCP Folder or Organization to reparent the target
-        #   resource. The analysis will be performed against hypothetically moving the
-        #   resource to this specified desitination parent. This can only be a Folder
-        #   number (such as "folders/123") or an Organization number (such as "
+        #   Required. Name of the Google Cloud folder or organization to reparent the
+        #   target resource. The analysis will be performed against hypothetically moving
+        #   the resource to this specified desitination parent. This can only be a folder
+        #   number (such as "folders/123") or an organization number (such as "
         #   organizations/123").
         # @param [String] view
         #   Analysis view indicating what information should be included in the analysis
@@ -821,6 +824,176 @@ module Google
           execute_or_queue_command(command, &block)
         end
         
+        # Analyzes organization policies under a scope.
+        # @param [String] scope
+        #   Required. The organization to scope the request. Only organization policies
+        #   within the scope will be analyzed. * organizations/`ORGANIZATION_NUMBER` (e.g.,
+        #   "organizations/123456")
+        # @param [String] constraint
+        #   Required. The name of the constraint to analyze organization policies for. The
+        #   response only contains analyzed organization policies for the provided
+        #   constraint.
+        # @param [String] filter
+        #   The expression to filter AnalyzeOrgPoliciesResponse.org_policy_results. The
+        #   only supported field is `consolidated_policy.attached_resource`, and the only
+        #   supported operator is `=`. Example: consolidated_policy.attached_resource="//
+        #   cloudresourcemanager.googleapis.com/folders/001" will return the org policy
+        #   results of"folders/001".
+        # @param [Fixnum] page_size
+        #   The maximum number of items to return per page. If unspecified,
+        #   AnalyzeOrgPoliciesResponse.org_policy_results will contain 20 items with a
+        #   maximum of 200.
+        # @param [String] page_token
+        #   The pagination token to retrieve the next page.
+        # @param [String] fields
+        #   Selector specifying which fields to include in a partial response.
+        # @param [String] quota_user
+        #   Available to use for quota purposes for server-side applications. Can be any
+        #   arbitrary string assigned to a user, but should not exceed 40 characters.
+        # @param [Google::Apis::RequestOptions] options
+        #   Request-specific options
+        #
+        # @yield [result, err] Result & error if block supplied
+        # @yieldparam result [Google::Apis::CloudassetV1::AnalyzeOrgPoliciesResponse] parsed result object
+        # @yieldparam err [StandardError] error object if request failed
+        #
+        # @return [Google::Apis::CloudassetV1::AnalyzeOrgPoliciesResponse]
+        #
+        # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
+        # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
+        # @raise [Google::Apis::AuthorizationError] Authorization is required
+        def analyze_org_policies(scope, constraint: nil, filter: nil, page_size: nil, page_token: nil, fields: nil, quota_user: nil, options: nil, &block)
+          command = make_simple_command(:get, 'v1/{+scope}:analyzeOrgPolicies', options)
+          command.response_representation = Google::Apis::CloudassetV1::AnalyzeOrgPoliciesResponse::Representation
+          command.response_class = Google::Apis::CloudassetV1::AnalyzeOrgPoliciesResponse
+          command.params['scope'] = scope unless scope.nil?
+          command.query['constraint'] = constraint unless constraint.nil?
+          command.query['filter'] = filter unless filter.nil?
+          command.query['pageSize'] = page_size unless page_size.nil?
+          command.query['pageToken'] = page_token unless page_token.nil?
+          command.query['fields'] = fields unless fields.nil?
+          command.query['quotaUser'] = quota_user unless quota_user.nil?
+          execute_or_queue_command(command, &block)
+        end
+        
+        # Analyzes organization policies governed assets (Google Cloud resources or
+        # policies) under a scope. This RPC supports custom constraints and the
+        # following 10 canned constraints: * storage.uniformBucketLevelAccess * iam.
+        # disableServiceAccountKeyCreation * iam.allowedPolicyMemberDomains * compute.
+        # vmExternalIpAccess * appengine.enforceServiceAccountActAsCheck * gcp.
+        # resourceLocations * compute.trustedImageProjects * compute.
+        # skipDefaultNetworkCreation * compute.requireOsLogin * compute.
+        # disableNestedVirtualization This RPC only returns either resources of types
+        # supported by [searchable asset types](https://cloud.google.com/asset-inventory/
+        # docs/supported-asset-types#searchable_asset_types), or IAM policies.
+        # @param [String] scope
+        #   Required. The organization to scope the request. Only organization policies
+        #   within the scope will be analyzed. The output assets will also be limited to
+        #   the ones governed by those in-scope organization policies. * organizations/`
+        #   ORGANIZATION_NUMBER` (e.g., "organizations/123456")
+        # @param [String] constraint
+        #   Required. The name of the constraint to analyze governed assets for. The
+        #   analysis only contains analyzed organization policies for the provided
+        #   constraint.
+        # @param [String] filter
+        #   The expression to filter the governed assets in result. The only supported
+        #   fields for governed resources are `governed_resource.project` and `
+        #   governed_resource.folders`. The only supported fields for governed iam
+        #   policies are `governed_iam_policy.project` and `governed_iam_policy.folders`.
+        #   The only supported operator is `=`. Example 1: governed_resource.project="
+        #   projects/12345678" filter will return all governed resources under projects/
+        #   12345678 including the project ifself, if applicable. Example 2:
+        #   governed_iam_policy.folders="folders/12345678" filter will return all governed
+        #   iam policies under folders/12345678, if applicable.
+        # @param [Fixnum] page_size
+        #   The maximum number of items to return per page. If unspecified,
+        #   AnalyzeOrgPolicyGovernedAssetsResponse.governed_assets will contain 100 items
+        #   with a maximum of 200.
+        # @param [String] page_token
+        #   The pagination token to retrieve the next page.
+        # @param [String] fields
+        #   Selector specifying which fields to include in a partial response.
+        # @param [String] quota_user
+        #   Available to use for quota purposes for server-side applications. Can be any
+        #   arbitrary string assigned to a user, but should not exceed 40 characters.
+        # @param [Google::Apis::RequestOptions] options
+        #   Request-specific options
+        #
+        # @yield [result, err] Result & error if block supplied
+        # @yieldparam result [Google::Apis::CloudassetV1::AnalyzeOrgPolicyGovernedAssetsResponse] parsed result object
+        # @yieldparam err [StandardError] error object if request failed
+        #
+        # @return [Google::Apis::CloudassetV1::AnalyzeOrgPolicyGovernedAssetsResponse]
+        #
+        # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
+        # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
+        # @raise [Google::Apis::AuthorizationError] Authorization is required
+        def analyze_org_policy_governed_assets(scope, constraint: nil, filter: nil, page_size: nil, page_token: nil, fields: nil, quota_user: nil, options: nil, &block)
+          command = make_simple_command(:get, 'v1/{+scope}:analyzeOrgPolicyGovernedAssets', options)
+          command.response_representation = Google::Apis::CloudassetV1::AnalyzeOrgPolicyGovernedAssetsResponse::Representation
+          command.response_class = Google::Apis::CloudassetV1::AnalyzeOrgPolicyGovernedAssetsResponse
+          command.params['scope'] = scope unless scope.nil?
+          command.query['constraint'] = constraint unless constraint.nil?
+          command.query['filter'] = filter unless filter.nil?
+          command.query['pageSize'] = page_size unless page_size.nil?
+          command.query['pageToken'] = page_token unless page_token.nil?
+          command.query['fields'] = fields unless fields.nil?
+          command.query['quotaUser'] = quota_user unless quota_user.nil?
+          execute_or_queue_command(command, &block)
+        end
+        
+        # Analyzes organization policies governed containers (projects, folders or
+        # organization) under a scope.
+        # @param [String] scope
+        #   Required. The organization to scope the request. Only organization policies
+        #   within the scope will be analyzed. The output containers will also be limited
+        #   to the ones governed by those in-scope organization policies. * organizations/`
+        #   ORGANIZATION_NUMBER` (e.g., "organizations/123456")
+        # @param [String] constraint
+        #   Required. The name of the constraint to analyze governed containers for. The
+        #   analysis only contains organization policies for the provided constraint.
+        # @param [String] filter
+        #   The expression to filter the governed containers in result. The only supported
+        #   field is `parent`, and the only supported operator is `=`. Example: parent="//
+        #   cloudresourcemanager.googleapis.com/folders/001" will return all containers
+        #   under "folders/001".
+        # @param [Fixnum] page_size
+        #   The maximum number of items to return per page. If unspecified,
+        #   AnalyzeOrgPolicyGovernedContainersResponse.governed_containers will contain
+        #   100 items with a maximum of 200.
+        # @param [String] page_token
+        #   The pagination token to retrieve the next page.
+        # @param [String] fields
+        #   Selector specifying which fields to include in a partial response.
+        # @param [String] quota_user
+        #   Available to use for quota purposes for server-side applications. Can be any
+        #   arbitrary string assigned to a user, but should not exceed 40 characters.
+        # @param [Google::Apis::RequestOptions] options
+        #   Request-specific options
+        #
+        # @yield [result, err] Result & error if block supplied
+        # @yieldparam result [Google::Apis::CloudassetV1::AnalyzeOrgPolicyGovernedContainersResponse] parsed result object
+        # @yieldparam err [StandardError] error object if request failed
+        #
+        # @return [Google::Apis::CloudassetV1::AnalyzeOrgPolicyGovernedContainersResponse]
+        #
+        # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
+        # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
+        # @raise [Google::Apis::AuthorizationError] Authorization is required
+        def analyze_org_policy_governed_containers(scope, constraint: nil, filter: nil, page_size: nil, page_token: nil, fields: nil, quota_user: nil, options: nil, &block)
+          command = make_simple_command(:get, 'v1/{+scope}:analyzeOrgPolicyGovernedContainers', options)
+          command.response_representation = Google::Apis::CloudassetV1::AnalyzeOrgPolicyGovernedContainersResponse::Representation
+          command.response_class = Google::Apis::CloudassetV1::AnalyzeOrgPolicyGovernedContainersResponse
+          command.params['scope'] = scope unless scope.nil?
+          command.query['constraint'] = constraint unless constraint.nil?
+          command.query['filter'] = filter unless filter.nil?
+          command.query['pageSize'] = page_size unless page_size.nil?
+          command.query['pageToken'] = page_token unless page_token.nil?
+          command.query['fields'] = fields unless fields.nil?
+          command.query['quotaUser'] = quota_user unless quota_user.nil?
+          execute_or_queue_command(command, &block)
+        end
+        
         # Batch gets the update history of assets that overlap a time window. For
         # IAM_POLICY content, this API outputs history when the asset and its attached
         # IAM POLICY both exist. This can create gaps in the output history. Otherwise,
@@ -931,6 +1104,51 @@ module Google
           execute_or_queue_command(command, &block)
         end
         
+        # Issue a job that queries assets using a SQL statement compatible with [
+        # BigQuery Standard SQL](http://cloud/bigquery/docs/reference/standard-sql/
+        # enabling-standard-sql). If the query execution finishes within timeout and
+        # there's no pagination, the full query results will be returned in the `
+        # QueryAssetsResponse`. Otherwise, full query results can be obtained by issuing
+        # extra requests with the `job_reference` from the a previous `QueryAssets` call.
+        # Note, the query result has approximately 10 GB limitation enforced by
+        # BigQuery https://cloud.google.com/bigquery/docs/best-practices-performance-
+        # output, queries return larger results will result in errors.
+        # @param [String] parent
+        #   Required. The relative name of the root asset. This can only be an
+        #   organization number (such as "organizations/123"), a project ID (such as "
+        #   projects/my-project-id"), or a project number (such as "projects/12345"), or a
+        #   folder number (such as "folders/123"). Only assets belonging to the `parent`
+        #   will be returned.
+        # @param [Google::Apis::CloudassetV1::QueryAssetsRequest] query_assets_request_object
+        # @param [String] fields
+        #   Selector specifying which fields to include in a partial response.
+        # @param [String] quota_user
+        #   Available to use for quota purposes for server-side applications. Can be any
+        #   arbitrary string assigned to a user, but should not exceed 40 characters.
+        # @param [Google::Apis::RequestOptions] options
+        #   Request-specific options
+        #
+        # @yield [result, err] Result & error if block supplied
+        # @yieldparam result [Google::Apis::CloudassetV1::QueryAssetsResponse] parsed result object
+        # @yieldparam err [StandardError] error object if request failed
+        #
+        # @return [Google::Apis::CloudassetV1::QueryAssetsResponse]
+        #
+        # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
+        # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
+        # @raise [Google::Apis::AuthorizationError] Authorization is required
+        def query_assets(parent, query_assets_request_object = nil, fields: nil, quota_user: nil, options: nil, &block)
+          command = make_simple_command(:post, 'v1/{+parent}:queryAssets', options)
+          command.request_representation = Google::Apis::CloudassetV1::QueryAssetsRequest::Representation
+          command.request_object = query_assets_request_object
+          command.response_representation = Google::Apis::CloudassetV1::QueryAssetsResponse::Representation
+          command.response_class = Google::Apis::CloudassetV1::QueryAssetsResponse
+          command.params['parent'] = parent unless parent.nil?
+          command.query['fields'] = fields unless fields.nil?
+          command.query['quotaUser'] = quota_user unless quota_user.nil?
+          execute_or_queue_command(command, &block)
+        end
+        
         # Searches all IAM policies within the specified scope, such as a project,
         # folder, or organization. The caller must be granted the `cloudasset.assets.
         # searchAllIamPolicies` permission on the desired scope, otherwise the request
@@ -979,16 +1197,16 @@ module Google
         #   google.com/asset-inventory/docs/searching-iam-policies#
         #   how_to_construct_a_query) for more information. If not specified or empty, it
         #   will search all the IAM policies within the specified `scope`. Note that the
-        #   query string is compared against each Cloud IAM policy binding, including its
-        #   principals, roles, and Cloud IAM conditions. The returned Cloud IAM policies
-        #   will only contain the bindings that match your query. To learn more about the
-        #   IAM policy structure, see the [IAM policy documentation](https://cloud.google.
-        #   com/iam/help/allow-policies/structure). Examples: * `policy:amy@gmail.com` to
-        #   find IAM policy bindings that specify user "amy@gmail.com". * `policy:roles/
-        #   compute.admin` to find IAM policy bindings that specify the Compute Admin role.
-        #   * `policy:comp*` to find IAM policy bindings that contain "comp" as a prefix
-        #   of any word in the binding. * `policy.role.permissions:storage.buckets.update`
-        #   to find IAM policy bindings that specify a role containing "storage.buckets.
+        #   query string is compared against each IAM policy binding, including its
+        #   principals, roles, and IAM conditions. The returned IAM policies will only
+        #   contain the bindings that match your query. To learn more about the IAM policy
+        #   structure, see the [IAM policy documentation](https://cloud.google.com/iam/
+        #   help/allow-policies/structure). Examples: * `policy:amy@gmail.com` to find IAM
+        #   policy bindings that specify user "amy@gmail.com". * `policy:roles/compute.
+        #   admin` to find IAM policy bindings that specify the Compute Admin role. * `
+        #   policy:comp*` to find IAM policy bindings that contain "comp" as a prefix of
+        #   any word in the binding. * `policy.role.permissions:storage.buckets.update` to
+        #   find IAM policy bindings that specify a role containing "storage.buckets.
         #   update" permission. Note that if callers don't have `iam.roles.get` access to
         #   a role's included permissions, policy bindings that specify this role will be
         #   dropped from the search results. * `policy.role.permissions:upd*` to find IAM
@@ -1038,10 +1256,10 @@ module Google
           execute_or_queue_command(command, &block)
         end
         
-        # Searches all Cloud resources within the specified scope, such as a project,
-        # folder, or organization. The caller must be granted the `cloudasset.assets.
-        # searchAllResources` permission on the desired scope, otherwise the request
-        # will be rejected.
+        # Searches all Google Cloud resources within the specified scope, such as a
+        # project, folder, or organization. The caller must be granted the `cloudasset.
+        # assets.searchAllResources` permission on the desired scope, otherwise the
+        # request will be rejected.
         # @param [String] scope
         #   Required. A scope can be a project, a folder, or an organization. The search
         #   is limited to the resources within the `scope`. The caller must be granted the
@@ -1087,38 +1305,40 @@ module Google
         #   google.com/asset-inventory/docs/searching-resources#how_to_construct_a_query)
         #   for more information. If not specified or empty, it will search all the
         #   resources within the specified `scope`. Examples: * `name:Important` to find
-        #   Cloud resources whose name contains "Important" as a word. * `name=Important`
-        #   to find the Cloud resource whose name is exactly "Important". * `displayName:
-        #   Impor*` to find Cloud resources whose display name contains "Impor" as a
-        #   prefix of any word in the field. * `location:us-west*` to find Cloud resources
-        #   whose location contains both "us" and "west" as prefixes. * `labels:prod` to
-        #   find Cloud resources whose labels contain "prod" as a key or value. * `labels.
-        #   env:prod` to find Cloud resources that have a label "env" and its value is "
-        #   prod". * `labels.env:*` to find Cloud resources that have a label "env". * `
-        #   kmsKey:key` to find Cloud resources encrypted with a customer-managed
-        #   encryption key whose name contains "key" as a word. This field is deprecated.
-        #   Please use the `kmsKeys` field to retrieve KMS key information. * `kmsKeys:key`
-        #   to find Cloud resources encrypted with customer-managed encryption keys whose
-        #   name contains the word "key". * `relationships:instance-group-1` to find Cloud
-        #   resources that have relationships with "instance-group-1" in the related
-        #   resource name. * `relationships:INSTANCE_TO_INSTANCEGROUP` to find compute
-        #   instances that have relationships of type "INSTANCE_TO_INSTANCEGROUP". * `
-        #   relationships.INSTANCE_TO_INSTANCEGROUP:instance-group-1` to find compute
-        #   instances that have relationships with "instance-group-1" in the compute
-        #   instance group resource name, for relationship type "INSTANCE_TO_INSTANCEGROUP"
-        #   . * `state:ACTIVE` to find Cloud resources whose state contains "ACTIVE" as a
-        #   word. * `NOT state:ACTIVE` to find Cloud resources whose state doesn't contain
-        #   "ACTIVE" as a word. * `createTime<1609459200` to find Cloud resources that
-        #   were created before "2021-01-01 00:00:00 UTC". 1609459200 is the epoch
-        #   timestamp of "2021-01-01 00:00:00 UTC" in seconds. * `updateTime>1609459200`
-        #   to find Cloud resources that were updated after "2021-01-01 00:00:00 UTC".
-        #   1609459200 is the epoch timestamp of "2021-01-01 00:00:00 UTC" in seconds. * `
-        #   Important` to find Cloud resources that contain "Important" as a word in any
-        #   of the searchable fields. * `Impor*` to find Cloud resources that contain "
+        #   Google Cloud resources whose name contains "Important" as a word. * `name=
+        #   Important` to find the Google Cloud resource whose name is exactly "Important".
+        #   * `displayName:Impor*` to find Google Cloud resources whose display name
+        #   contains "Impor" as a prefix of any word in the field. * `location:us-west*`
+        #   to find Google Cloud resources whose location contains both "us" and "west" as
+        #   prefixes. * `labels:prod` to find Google Cloud resources whose labels contain "
+        #   prod" as a key or value. * `labels.env:prod` to find Google Cloud resources
+        #   that have a label "env" and its value is "prod". * `labels.env:*` to find
+        #   Google Cloud resources that have a label "env". * `kmsKey:key` to find Google
+        #   Cloud resources encrypted with a customer-managed encryption key whose name
+        #   contains "key" as a word. This field is deprecated. Please use the `kmsKeys`
+        #   field to retrieve Cloud KMS key information. * `kmsKeys:key` to find Google
+        #   Cloud resources encrypted with customer-managed encryption keys whose name
+        #   contains the word "key". * `relationships:instance-group-1` to find Google
+        #   Cloud resources that have relationships with "instance-group-1" in the related
+        #   resource name. * `relationships:INSTANCE_TO_INSTANCEGROUP` to find Compute
+        #   Engine instances that have relationships of type "INSTANCE_TO_INSTANCEGROUP". *
+        #   `relationships.INSTANCE_TO_INSTANCEGROUP:instance-group-1` to find Compute
+        #   Engine instances that have relationships with "instance-group-1" in the
+        #   Compute Engine instance group resource name, for relationship type "
+        #   INSTANCE_TO_INSTANCEGROUP". * `state:ACTIVE` to find Google Cloud resources
+        #   whose state contains "ACTIVE" as a word. * `NOT state:ACTIVE` to find Google
+        #   Cloud resources whose state doesn't contain "ACTIVE" as a word. * `createTime<
+        #   1609459200` to find Google Cloud resources that were created before "2021-01-
+        #   01 00:00:00 UTC". 1609459200 is the epoch timestamp of "2021-01-01 00:00:00
+        #   UTC" in seconds. * `updateTime>1609459200` to find Google Cloud resources that
+        #   were updated after "2021-01-01 00:00:00 UTC". 1609459200 is the epoch
+        #   timestamp of "2021-01-01 00:00:00 UTC" in seconds. * `Important` to find
+        #   Google Cloud resources that contain "Important" as a word in any of the
+        #   searchable fields. * `Impor*` to find Google Cloud resources that contain "
         #   Impor" as a prefix of any word in any of the searchable fields. * `Important
-        #   location:(us-west1 OR global)` to find Cloud resources that contain "Important"
-        #   as a word in any of the searchable fields and are also located in the "us-
-        #   west1" region or the "global" location.
+        #   location:(us-west1 OR global)` to find Google Cloud resources that contain "
+        #   Important" as a word in any of the searchable fields and are also located in
+        #   the "us-west1" region or the "global" location.
         # @param [String] read_mask
         #   Optional. A comma-separated list of fields specifying which fields to be
         #   returned in ResourceSearchResult. Only '*' or combination of top level fields
@@ -1128,11 +1348,11 @@ module Google
         #   camelCase are supported): * name * assetType * project * displayName *
         #   description * location * tagKeys * tagValues * tagValueIds * labels *
         #   networkTags * kmsKey (This field is deprecated. Please use the `kmsKeys` field
-        #   to retrieve KMS key information.) * kmsKeys * createTime * updateTime * state *
-        #   additionalAttributes * versionedResources If read_mask is not specified, all
-        #   fields except versionedResources will be returned. If only '*' is specified,
-        #   all fields including versionedResources will be returned. Any invalid field
-        #   path will trigger INVALID_ARGUMENT error.
+        #   to retrieve Cloud KMS key information.) * kmsKeys * createTime * updateTime *
+        #   state * additionalAttributes * versionedResources If read_mask is not
+        #   specified, all fields except versionedResources will be returned. If only '*'
+        #   is specified, all fields including versionedResources will be returned. Any
+        #   invalid field path will trigger INVALID_ARGUMENT error.
         # @param [String] fields
         #   Selector specifying which fields to include in a partial response.
         # @param [String] quota_user

data/lib/google/apis/cloudasset_v1.rb

@@ -21,7 +21,8 @@ module Google
   module Apis
     # Cloud Asset API
     #
-    # The cloud asset API manages the history and inventory of cloud resources.
+    # The Cloud Asset API manages the history and inventory of Google Cloud
+    # resources.
     #
     # @see https://cloud.google.com/asset-inventory/docs/quickstart
     module CloudassetV1

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: google-apis-cloudasset_v1
 version: !ruby/object:Gem::Version
-  version: 0.50.0
+  version: 0.52.0
 platform: ruby
 authors:
 - Google LLC
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2022-10-31 00:00:00.000000000 Z
+date: 2023-01-22 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: google-apis-core
@@ -58,7 +58,7 @@ licenses:
 metadata:
   bug_tracker_uri: https://github.com/googleapis/google-api-ruby-client/issues
   changelog_uri: https://github.com/googleapis/google-api-ruby-client/tree/main/generated/google-apis-cloudasset_v1/CHANGELOG.md
-  documentation_uri: https://googleapis.dev/ruby/google-apis-cloudasset_v1/v0.50.0
+  documentation_uri: https://googleapis.dev/ruby/google-apis-cloudasset_v1/v0.52.0
   source_code_uri: https://github.com/googleapis/google-api-ruby-client/tree/main/generated/google-apis-cloudasset_v1
 post_install_message: 
 rdoc_options: []
@@ -75,7 +75,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.3.14
+rubygems_version: 3.4.2
 signing_key: 
 specification_version: 4
 summary: Simple REST client for Cloud Asset API V1