google-apis-cloudasset_v1 0.6.0 → 0.7.0
Sign up to get free protection for your applications and to get access to all the features.
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA256:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: 29b2fb0fff69b8ef5b76dc3a6ade6c0c49ca8779d6e191738232eb56feba6ec2
|
4
|
+
data.tar.gz: 613c440f2f00a9f061523c9ab1ab0b11d4988cb2a1252e7e63bab43c4074c3ea
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: 35446a89ac501a688bae7c75819a94bd60ad7f5e4ff36c790cf442d955e386ab59ee2d8a752a8cfd1e5baa371644e6145d87b143d5d2d4c916578325376b62a1
|
7
|
+
data.tar.gz: 586b19cd1f9b1af34a1b491a3e4c9981018fa11f82c1231ec54f7167de554abe366464f05647e35a28680857a3cdc3906f24a26eb6fd96c47ffa8e6db2433869
|
data/CHANGELOG.md
CHANGED
@@ -127,8 +127,9 @@ module Google
|
|
127
127
|
# resource hierarchy](https://cloud.google.com/resource-manager/docs/cloud-
|
128
128
|
# platform-resource-hierarchy), a resource outside the Google Cloud resource
|
129
129
|
# hierarchy (such as Google Kubernetes Engine clusters and objects), or a policy
|
130
|
-
# (e.g. Cloud IAM policy)
|
131
|
-
#
|
130
|
+
# (e.g. Cloud IAM policy), or a relationship (e.g. an INSTANCE_TO_INSTANCEGROUP
|
131
|
+
# relationship). See [Supported asset types](https://cloud.google.com/asset-
|
132
|
+
# inventory/docs/supported-asset-types) for more information.
|
132
133
|
class Asset
|
133
134
|
include Google::Apis::Core::Hashable
|
134
135
|
|
@@ -493,6 +494,46 @@ module Google
|
|
493
494
|
end
|
494
495
|
end
|
495
496
|
|
497
|
+
# The IAM conditions context.
|
498
|
+
class ConditionContext
|
499
|
+
include Google::Apis::Core::Hashable
|
500
|
+
|
501
|
+
# The hypothetical access timestamp to evaluate IAM conditions. Note that this
|
502
|
+
# value must not be earlier than the current time; otherwise, an
|
503
|
+
# INVALID_ARGUMENT error will be returned.
|
504
|
+
# Corresponds to the JSON property `accessTime`
|
505
|
+
# @return [String]
|
506
|
+
attr_accessor :access_time
|
507
|
+
|
508
|
+
def initialize(**args)
|
509
|
+
update!(**args)
|
510
|
+
end
|
511
|
+
|
512
|
+
# Update properties of this object
|
513
|
+
def update!(**args)
|
514
|
+
@access_time = args[:access_time] if args.key?(:access_time)
|
515
|
+
end
|
516
|
+
end
|
517
|
+
|
518
|
+
# The Condition evaluation.
|
519
|
+
class ConditionEvaluation
|
520
|
+
include Google::Apis::Core::Hashable
|
521
|
+
|
522
|
+
# The evaluation result.
|
523
|
+
# Corresponds to the JSON property `evaluationValue`
|
524
|
+
# @return [String]
|
525
|
+
attr_accessor :evaluation_value
|
526
|
+
|
527
|
+
def initialize(**args)
|
528
|
+
update!(**args)
|
529
|
+
end
|
530
|
+
|
531
|
+
# Update properties of this object
|
532
|
+
def update!(**args)
|
533
|
+
@evaluation_value = args[:evaluation_value] if args.key?(:evaluation_value)
|
534
|
+
end
|
535
|
+
end
|
536
|
+
|
496
537
|
# Create asset feed request.
|
497
538
|
class CreateFeedRequest
|
498
539
|
include Google::Apis::Core::Hashable
|
@@ -857,6 +898,11 @@ module Google
|
|
857
898
|
# @return [Array<Google::Apis::CloudassetV1::GoogleCloudAssetV1Access>]
|
858
899
|
attr_accessor :accesses
|
859
900
|
|
901
|
+
# The Condition evaluation.
|
902
|
+
# Corresponds to the JSON property `conditionEvaluation`
|
903
|
+
# @return [Google::Apis::CloudassetV1::ConditionEvaluation]
|
904
|
+
attr_accessor :condition_evaluation
|
905
|
+
|
860
906
|
# Resource edges of the graph starting from the policy attached resource to any
|
861
907
|
# descendant resources. The Edge.source_node contains the full resource name of
|
862
908
|
# a parent resource and Edge.target_node contains the full resource name of a
|
@@ -880,6 +926,7 @@ module Google
|
|
880
926
|
# Update properties of this object
|
881
927
|
def update!(**args)
|
882
928
|
@accesses = args[:accesses] if args.key?(:accesses)
|
929
|
+
@condition_evaluation = args[:condition_evaluation] if args.key?(:condition_evaluation)
|
883
930
|
@resource_edges = args[:resource_edges] if args.key?(:resource_edges)
|
884
931
|
@resources = args[:resources] if args.key?(:resources)
|
885
932
|
end
|
@@ -2000,9 +2047,9 @@ module Google
|
|
2000
2047
|
|
2001
2048
|
# Defines the conditions under which an EgressPolicy matches a request.
|
2002
2049
|
# Conditions based on information about the source of the request. Note that if
|
2003
|
-
# the destination of the request is protected by a ServicePerimeter, then
|
2004
|
-
# ServicePerimeter must have an IngressPolicy which allows access in order
|
2005
|
-
# this request to succeed.
|
2050
|
+
# the destination of the request is also protected by a ServicePerimeter, then
|
2051
|
+
# that ServicePerimeter must have an IngressPolicy which allows access in order
|
2052
|
+
# for this request to succeed.
|
2006
2053
|
class GoogleIdentityAccesscontextmanagerV1EgressFrom
|
2007
2054
|
include Google::Apis::Core::Hashable
|
2008
2055
|
|
@@ -2048,9 +2095,9 @@ module Google
|
|
2048
2095
|
|
2049
2096
|
# Defines the conditions under which an EgressPolicy matches a request.
|
2050
2097
|
# Conditions based on information about the source of the request. Note that if
|
2051
|
-
# the destination of the request is protected by a ServicePerimeter, then
|
2052
|
-
# ServicePerimeter must have an IngressPolicy which allows access in order
|
2053
|
-
# this request to succeed.
|
2098
|
+
# the destination of the request is also protected by a ServicePerimeter, then
|
2099
|
+
# that ServicePerimeter must have an IngressPolicy which allows access in order
|
2100
|
+
# for this request to succeed.
|
2054
2101
|
# Corresponds to the JSON property `egressFrom`
|
2055
2102
|
# @return [Google::Apis::CloudassetV1::GoogleIdentityAccesscontextmanagerV1EgressFrom]
|
2056
2103
|
attr_accessor :egress_from
|
@@ -2058,8 +2105,10 @@ module Google
|
|
2058
2105
|
# Defines the conditions under which an EgressPolicy matches a request.
|
2059
2106
|
# Conditions are based on information about the ApiOperation intended to be
|
2060
2107
|
# performed on the `resources` specified. Note that if the destination of the
|
2061
|
-
# request is protected by a ServicePerimeter, then that ServicePerimeter
|
2062
|
-
# have an IngressPolicy which allows access in order for this request to
|
2108
|
+
# request is also protected by a ServicePerimeter, then that ServicePerimeter
|
2109
|
+
# must have an IngressPolicy which allows access in order for this request to
|
2110
|
+
# succeed. The request must match `operations` AND `resources` fields in order
|
2111
|
+
# to be allowed egress out of the perimeter.
|
2063
2112
|
# Corresponds to the JSON property `egressTo`
|
2064
2113
|
# @return [Google::Apis::CloudassetV1::GoogleIdentityAccesscontextmanagerV1EgressTo]
|
2065
2114
|
attr_accessor :egress_to
|
@@ -2078,21 +2127,25 @@ module Google
|
|
2078
2127
|
# Defines the conditions under which an EgressPolicy matches a request.
|
2079
2128
|
# Conditions are based on information about the ApiOperation intended to be
|
2080
2129
|
# performed on the `resources` specified. Note that if the destination of the
|
2081
|
-
# request is protected by a ServicePerimeter, then that ServicePerimeter
|
2082
|
-
# have an IngressPolicy which allows access in order for this request to
|
2130
|
+
# request is also protected by a ServicePerimeter, then that ServicePerimeter
|
2131
|
+
# must have an IngressPolicy which allows access in order for this request to
|
2132
|
+
# succeed. The request must match `operations` AND `resources` fields in order
|
2133
|
+
# to be allowed egress out of the perimeter.
|
2083
2134
|
class GoogleIdentityAccesscontextmanagerV1EgressTo
|
2084
2135
|
include Google::Apis::Core::Hashable
|
2085
2136
|
|
2086
|
-
# A list of ApiOperations
|
2087
|
-
# it
|
2137
|
+
# A list of ApiOperations allowed to be performed by the sources specified in
|
2138
|
+
# the corresponding EgressFrom. A request matches if it uses an operation/
|
2139
|
+
# service in this list.
|
2088
2140
|
# Corresponds to the JSON property `operations`
|
2089
2141
|
# @return [Array<Google::Apis::CloudassetV1::GoogleIdentityAccesscontextmanagerV1ApiOperation>]
|
2090
2142
|
attr_accessor :operations
|
2091
2143
|
|
2092
|
-
# A list of resources, currently only projects in the form `projects/`, that
|
2093
|
-
#
|
2094
|
-
#
|
2095
|
-
#
|
2144
|
+
# A list of resources, currently only projects in the form `projects/`, that are
|
2145
|
+
# allowed to be accessed by sources defined in the corresponding EgressFrom. A
|
2146
|
+
# request matches if it contains a resource in this list. If `*` is specified
|
2147
|
+
# for `resources`, then this EgressTo rule will authorize access to all
|
2148
|
+
# resources outside the perimeter.
|
2096
2149
|
# Corresponds to the JSON property `resources`
|
2097
2150
|
# @return [Array<String>]
|
2098
2151
|
attr_accessor :resources
|
@@ -2109,7 +2162,9 @@ module Google
|
|
2109
2162
|
end
|
2110
2163
|
|
2111
2164
|
# Defines the conditions under which an IngressPolicy matches a request.
|
2112
|
-
# Conditions are based on information about the source of the request.
|
2165
|
+
# Conditions are based on information about the source of the request. The
|
2166
|
+
# request must satisfy what is defined in `sources` AND identity related fields
|
2167
|
+
# in order to match.
|
2113
2168
|
class GoogleIdentityAccesscontextmanagerV1IngressFrom
|
2114
2169
|
include Google::Apis::Core::Hashable
|
2115
2170
|
|
@@ -2158,14 +2213,17 @@ module Google
|
|
2158
2213
|
include Google::Apis::Core::Hashable
|
2159
2214
|
|
2160
2215
|
# Defines the conditions under which an IngressPolicy matches a request.
|
2161
|
-
# Conditions are based on information about the source of the request.
|
2216
|
+
# Conditions are based on information about the source of the request. The
|
2217
|
+
# request must satisfy what is defined in `sources` AND identity related fields
|
2218
|
+
# in order to match.
|
2162
2219
|
# Corresponds to the JSON property `ingressFrom`
|
2163
2220
|
# @return [Google::Apis::CloudassetV1::GoogleIdentityAccesscontextmanagerV1IngressFrom]
|
2164
2221
|
attr_accessor :ingress_from
|
2165
2222
|
|
2166
2223
|
# Defines the conditions under which an IngressPolicy matches a request.
|
2167
2224
|
# Conditions are based on information about the ApiOperation intended to be
|
2168
|
-
# performed on the
|
2225
|
+
# performed on the target resource of the request. The request must satisfy what
|
2226
|
+
# is defined in `operations` AND `resources` in order to match.
|
2169
2227
|
# Corresponds to the JSON property `ingressTo`
|
2170
2228
|
# @return [Google::Apis::CloudassetV1::GoogleIdentityAccesscontextmanagerV1IngressTo]
|
2171
2229
|
attr_accessor :ingress_to
|
@@ -2191,7 +2249,8 @@ module Google
|
|
2191
2249
|
# cause an error. If no AccessLevel names are listed, resources within the
|
2192
2250
|
# perimeter can only be accessed via Google Cloud calls with request origins
|
2193
2251
|
# within the perimeter. Example: `accessPolicies/MY_POLICY/accessLevels/MY_LEVEL`
|
2194
|
-
# . If `*` is specified
|
2252
|
+
# . If a single `*` is specified for `access_level`, then all IngressSources
|
2253
|
+
# will be allowed.
|
2195
2254
|
# Corresponds to the JSON property `accessLevel`
|
2196
2255
|
# @return [String]
|
2197
2256
|
attr_accessor :access_level
|
@@ -2219,22 +2278,21 @@ module Google
|
|
2219
2278
|
|
2220
2279
|
# Defines the conditions under which an IngressPolicy matches a request.
|
2221
2280
|
# Conditions are based on information about the ApiOperation intended to be
|
2222
|
-
# performed on the
|
2281
|
+
# performed on the target resource of the request. The request must satisfy what
|
2282
|
+
# is defined in `operations` AND `resources` in order to match.
|
2223
2283
|
class GoogleIdentityAccesscontextmanagerV1IngressTo
|
2224
2284
|
include Google::Apis::Core::Hashable
|
2225
2285
|
|
2226
|
-
# A list of ApiOperations the sources specified in
|
2227
|
-
#
|
2286
|
+
# A list of ApiOperations allowed to be performed by the sources specified in
|
2287
|
+
# corresponding IngressFrom in this ServicePerimeter.
|
2228
2288
|
# Corresponds to the JSON property `operations`
|
2229
2289
|
# @return [Array<Google::Apis::CloudassetV1::GoogleIdentityAccesscontextmanagerV1ApiOperation>]
|
2230
2290
|
attr_accessor :operations
|
2231
2291
|
|
2232
2292
|
# A list of resources, currently only projects in the form `projects/`,
|
2233
2293
|
# protected by this ServicePerimeter that are allowed to be accessed by sources
|
2234
|
-
# defined in the corresponding IngressFrom.
|
2235
|
-
#
|
2236
|
-
# rule will authorize access to all resources inside the perimeter, provided
|
2237
|
-
# that the request also matches the `operations` field.
|
2294
|
+
# defined in the corresponding IngressFrom. If a single `*` is specified, then
|
2295
|
+
# access to all resources inside the perimeter are allowed.
|
2238
2296
|
# Corresponds to the JSON property `resources`
|
2239
2297
|
# @return [Array<String>]
|
2240
2298
|
attr_accessor :resources
|
@@ -2565,6 +2623,11 @@ module Google
|
|
2565
2623
|
# @return [Google::Apis::CloudassetV1::AccessSelector]
|
2566
2624
|
attr_accessor :access_selector
|
2567
2625
|
|
2626
|
+
# The IAM conditions context.
|
2627
|
+
# Corresponds to the JSON property `conditionContext`
|
2628
|
+
# @return [Google::Apis::CloudassetV1::ConditionContext]
|
2629
|
+
attr_accessor :condition_context
|
2630
|
+
|
2568
2631
|
# Specifies an identity for which to determine resource access, based on roles
|
2569
2632
|
# assigned either directly to them or to the groups they belong to, directly or
|
2570
2633
|
# indirectly.
|
@@ -2604,6 +2667,7 @@ module Google
|
|
2604
2667
|
# Update properties of this object
|
2605
2668
|
def update!(**args)
|
2606
2669
|
@access_selector = args[:access_selector] if args.key?(:access_selector)
|
2670
|
+
@condition_context = args[:condition_context] if args.key?(:condition_context)
|
2607
2671
|
@identity_selector = args[:identity_selector] if args.key?(:identity_selector)
|
2608
2672
|
@options = args[:options] if args.key?(:options)
|
2609
2673
|
@resource_selector = args[:resource_selector] if args.key?(:resource_selector)
|
@@ -2869,6 +2933,39 @@ module Google
|
|
2869
2933
|
end
|
2870
2934
|
end
|
2871
2935
|
|
2936
|
+
# ListAssets response.
|
2937
|
+
class ListAssetsResponse
|
2938
|
+
include Google::Apis::Core::Hashable
|
2939
|
+
|
2940
|
+
# Assets.
|
2941
|
+
# Corresponds to the JSON property `assets`
|
2942
|
+
# @return [Array<Google::Apis::CloudassetV1::Asset>]
|
2943
|
+
attr_accessor :assets
|
2944
|
+
|
2945
|
+
# Token to retrieve the next page of results. It expires 72 hours after the page
|
2946
|
+
# token for the first page is generated. Set to empty if there are no remaining
|
2947
|
+
# results.
|
2948
|
+
# Corresponds to the JSON property `nextPageToken`
|
2949
|
+
# @return [String]
|
2950
|
+
attr_accessor :next_page_token
|
2951
|
+
|
2952
|
+
# Time the snapshot was taken.
|
2953
|
+
# Corresponds to the JSON property `readTime`
|
2954
|
+
# @return [String]
|
2955
|
+
attr_accessor :read_time
|
2956
|
+
|
2957
|
+
def initialize(**args)
|
2958
|
+
update!(**args)
|
2959
|
+
end
|
2960
|
+
|
2961
|
+
# Update properties of this object
|
2962
|
+
def update!(**args)
|
2963
|
+
@assets = args[:assets] if args.key?(:assets)
|
2964
|
+
@next_page_token = args[:next_page_token] if args.key?(:next_page_token)
|
2965
|
+
@read_time = args[:read_time] if args.key?(:read_time)
|
2966
|
+
end
|
2967
|
+
end
|
2968
|
+
|
2872
2969
|
#
|
2873
2970
|
class ListFeedsResponse
|
2874
2971
|
include Google::Apis::Core::Hashable
|
@@ -3379,8 +3476,10 @@ module Google
|
|
3379
3476
|
# The create timestamp of this resource, at which the resource was created. The
|
3380
3477
|
# granularity is in seconds. Timestamp.nanos will always be 0. This field is
|
3381
3478
|
# available only when the resource's proto contains it. To search against `
|
3382
|
-
# create_time`: * use a field query
|
3383
|
-
#
|
3479
|
+
# create_time`: * use a field query. - value in seconds since unix epoch.
|
3480
|
+
# Example: `createTime > 1609459200` - value in date string. Example: `
|
3481
|
+
# createTime > 2021-01-01` - value in date-time string (must be quoted). Example:
|
3482
|
+
# `createTime > "2021-01-01T00:00:00"`
|
3384
3483
|
# Corresponds to the JSON property `createTime`
|
3385
3484
|
# @return [String]
|
3386
3485
|
attr_accessor :create_time
|
@@ -3516,8 +3615,10 @@ module Google
|
|
3516
3615
|
# The last update timestamp of this resource, at which the resource was last
|
3517
3616
|
# modified or deleted. The granularity is in seconds. Timestamp.nanos will
|
3518
3617
|
# always be 0. This field is available only when the resource's proto contains
|
3519
|
-
# it. To search against `update_time`: * use a field query
|
3520
|
-
# Example: `updateTime <
|
3618
|
+
# it. To search against `update_time`: * use a field query. - value in seconds
|
3619
|
+
# since unix epoch. Example: `updateTime < 1609459200` - value in date string.
|
3620
|
+
# Example: `updateTime < 2021-01-01` - value in date-time string (must be quoted)
|
3621
|
+
# . Example: `updateTime < "2021-01-01T00:00:00"`
|
3521
3622
|
# Corresponds to the JSON property `updateTime`
|
3522
3623
|
# @return [String]
|
3523
3624
|
attr_accessor :update_time
|
@@ -3747,8 +3848,9 @@ module Google
|
|
3747
3848
|
# resource hierarchy](https://cloud.google.com/resource-manager/docs/cloud-
|
3748
3849
|
# platform-resource-hierarchy), a resource outside the Google Cloud resource
|
3749
3850
|
# hierarchy (such as Google Kubernetes Engine clusters and objects), or a policy
|
3750
|
-
# (e.g. Cloud IAM policy)
|
3751
|
-
#
|
3851
|
+
# (e.g. Cloud IAM policy), or a relationship (e.g. an INSTANCE_TO_INSTANCEGROUP
|
3852
|
+
# relationship). See [Supported asset types](https://cloud.google.com/asset-
|
3853
|
+
# inventory/docs/supported-asset-types) for more information.
|
3752
3854
|
# Corresponds to the JSON property `asset`
|
3753
3855
|
# @return [Google::Apis::CloudassetV1::Asset]
|
3754
3856
|
attr_accessor :asset
|
@@ -3763,8 +3865,9 @@ module Google
|
|
3763
3865
|
# resource hierarchy](https://cloud.google.com/resource-manager/docs/cloud-
|
3764
3866
|
# platform-resource-hierarchy), a resource outside the Google Cloud resource
|
3765
3867
|
# hierarchy (such as Google Kubernetes Engine clusters and objects), or a policy
|
3766
|
-
# (e.g. Cloud IAM policy)
|
3767
|
-
#
|
3868
|
+
# (e.g. Cloud IAM policy), or a relationship (e.g. an INSTANCE_TO_INSTANCEGROUP
|
3869
|
+
# relationship). See [Supported asset types](https://cloud.google.com/asset-
|
3870
|
+
# inventory/docs/supported-asset-types) for more information.
|
3768
3871
|
# Corresponds to the JSON property `priorAsset`
|
3769
3872
|
# @return [Google::Apis::CloudassetV1::Asset]
|
3770
3873
|
attr_accessor :prior_asset
|
@@ -16,13 +16,13 @@ module Google
|
|
16
16
|
module Apis
|
17
17
|
module CloudassetV1
|
18
18
|
# Version of the google-apis-cloudasset_v1 gem
|
19
|
-
GEM_VERSION = "0.
|
19
|
+
GEM_VERSION = "0.7.0"
|
20
20
|
|
21
21
|
# Version of the code generator used to generate this client
|
22
22
|
GENERATOR_VERSION = "0.2.0"
|
23
23
|
|
24
24
|
# Revision of the discovery document this client was generated from
|
25
|
-
REVISION = "
|
25
|
+
REVISION = "20210507"
|
26
26
|
end
|
27
27
|
end
|
28
28
|
end
|
@@ -82,6 +82,18 @@ module Google
|
|
82
82
|
include Google::Apis::Core::JsonObjectSupport
|
83
83
|
end
|
84
84
|
|
85
|
+
class ConditionContext
|
86
|
+
class Representation < Google::Apis::Core::JsonRepresentation; end
|
87
|
+
|
88
|
+
include Google::Apis::Core::JsonObjectSupport
|
89
|
+
end
|
90
|
+
|
91
|
+
class ConditionEvaluation
|
92
|
+
class Representation < Google::Apis::Core::JsonRepresentation; end
|
93
|
+
|
94
|
+
include Google::Apis::Core::JsonObjectSupport
|
95
|
+
end
|
96
|
+
|
85
97
|
class CreateFeedRequest
|
86
98
|
class Representation < Google::Apis::Core::JsonRepresentation; end
|
87
99
|
|
@@ -400,6 +412,12 @@ module Google
|
|
400
412
|
include Google::Apis::Core::JsonObjectSupport
|
401
413
|
end
|
402
414
|
|
415
|
+
class ListAssetsResponse
|
416
|
+
class Representation < Google::Apis::Core::JsonRepresentation; end
|
417
|
+
|
418
|
+
include Google::Apis::Core::JsonObjectSupport
|
419
|
+
end
|
420
|
+
|
403
421
|
class ListFeedsResponse
|
404
422
|
class Representation < Google::Apis::Core::JsonRepresentation; end
|
405
423
|
|
@@ -650,6 +668,20 @@ module Google
|
|
650
668
|
end
|
651
669
|
end
|
652
670
|
|
671
|
+
class ConditionContext
|
672
|
+
# @private
|
673
|
+
class Representation < Google::Apis::Core::JsonRepresentation
|
674
|
+
property :access_time, as: 'accessTime'
|
675
|
+
end
|
676
|
+
end
|
677
|
+
|
678
|
+
class ConditionEvaluation
|
679
|
+
# @private
|
680
|
+
class Representation < Google::Apis::Core::JsonRepresentation
|
681
|
+
property :evaluation_value, as: 'evaluationValue'
|
682
|
+
end
|
683
|
+
end
|
684
|
+
|
653
685
|
class CreateFeedRequest
|
654
686
|
# @private
|
655
687
|
class Representation < Google::Apis::Core::JsonRepresentation
|
@@ -739,6 +771,8 @@ module Google
|
|
739
771
|
class Representation < Google::Apis::Core::JsonRepresentation
|
740
772
|
collection :accesses, as: 'accesses', class: Google::Apis::CloudassetV1::GoogleCloudAssetV1Access, decorator: Google::Apis::CloudassetV1::GoogleCloudAssetV1Access::Representation
|
741
773
|
|
774
|
+
property :condition_evaluation, as: 'conditionEvaluation', class: Google::Apis::CloudassetV1::ConditionEvaluation, decorator: Google::Apis::CloudassetV1::ConditionEvaluation::Representation
|
775
|
+
|
742
776
|
collection :resource_edges, as: 'resourceEdges', class: Google::Apis::CloudassetV1::GoogleCloudAssetV1Edge, decorator: Google::Apis::CloudassetV1::GoogleCloudAssetV1Edge::Representation
|
743
777
|
|
744
778
|
collection :resources, as: 'resources', class: Google::Apis::CloudassetV1::GoogleCloudAssetV1Resource, decorator: Google::Apis::CloudassetV1::GoogleCloudAssetV1Resource::Representation
|
@@ -1127,6 +1161,8 @@ module Google
|
|
1127
1161
|
class Representation < Google::Apis::Core::JsonRepresentation
|
1128
1162
|
property :access_selector, as: 'accessSelector', class: Google::Apis::CloudassetV1::AccessSelector, decorator: Google::Apis::CloudassetV1::AccessSelector::Representation
|
1129
1163
|
|
1164
|
+
property :condition_context, as: 'conditionContext', class: Google::Apis::CloudassetV1::ConditionContext, decorator: Google::Apis::CloudassetV1::ConditionContext::Representation
|
1165
|
+
|
1130
1166
|
property :identity_selector, as: 'identitySelector', class: Google::Apis::CloudassetV1::IdentitySelector, decorator: Google::Apis::CloudassetV1::IdentitySelector::Representation
|
1131
1167
|
|
1132
1168
|
property :options, as: 'options', class: Google::Apis::CloudassetV1::Options, decorator: Google::Apis::CloudassetV1::Options::Representation
|
@@ -1203,6 +1239,16 @@ module Google
|
|
1203
1239
|
end
|
1204
1240
|
end
|
1205
1241
|
|
1242
|
+
class ListAssetsResponse
|
1243
|
+
# @private
|
1244
|
+
class Representation < Google::Apis::Core::JsonRepresentation
|
1245
|
+
collection :assets, as: 'assets', class: Google::Apis::CloudassetV1::Asset, decorator: Google::Apis::CloudassetV1::Asset::Representation
|
1246
|
+
|
1247
|
+
property :next_page_token, as: 'nextPageToken'
|
1248
|
+
property :read_time, as: 'readTime'
|
1249
|
+
end
|
1250
|
+
end
|
1251
|
+
|
1206
1252
|
class ListFeedsResponse
|
1207
1253
|
# @private
|
1208
1254
|
class Representation < Google::Apis::Core::JsonRepresentation
|
@@ -49,6 +49,73 @@ module Google
|
|
49
49
|
@batch_path = 'batch'
|
50
50
|
end
|
51
51
|
|
52
|
+
# Lists assets with time and resource types and returns paged results in
|
53
|
+
# response.
|
54
|
+
# @param [String] parent
|
55
|
+
# Required. Name of the organization or project the assets belong to. Format: "
|
56
|
+
# organizations/[organization-number]" (such as "organizations/123"), "projects/[
|
57
|
+
# project-number]" (such as "projects/my-project-id"), or "projects/[project-id]"
|
58
|
+
# (such as "projects/12345").
|
59
|
+
# @param [Array<String>, String] asset_types
|
60
|
+
# A list of asset types to take a snapshot for. For example: "compute.googleapis.
|
61
|
+
# com/Disk". Regular expression is also supported. For example: * "compute.
|
62
|
+
# googleapis.com.*" snapshots resources whose asset type starts with "compute.
|
63
|
+
# googleapis.com". * ".*Instance" snapshots resources whose asset type ends with
|
64
|
+
# "Instance". * ".*Instance.*" snapshots resources whose asset type contains "
|
65
|
+
# Instance". See [RE2](https://github.com/google/re2/wiki/Syntax) for all
|
66
|
+
# supported regular expression syntax. If the regular expression does not match
|
67
|
+
# any supported asset type, an INVALID_ARGUMENT error will be returned. If
|
68
|
+
# specified, only matching assets will be returned, otherwise, it will snapshot
|
69
|
+
# all asset types. See [Introduction to Cloud Asset Inventory](https://cloud.
|
70
|
+
# google.com/asset-inventory/docs/overview) for all supported asset types.
|
71
|
+
# @param [String] content_type
|
72
|
+
# Asset content type. If not specified, no content but the asset name will be
|
73
|
+
# returned.
|
74
|
+
# @param [Fixnum] page_size
|
75
|
+
# The maximum number of assets to be returned in a single response. Default is
|
76
|
+
# 100, minimum is 1, and maximum is 1000.
|
77
|
+
# @param [String] page_token
|
78
|
+
# The `next_page_token` returned from the previous `ListAssetsResponse`, or
|
79
|
+
# unspecified for the first `ListAssetsRequest`. It is a continuation of a prior
|
80
|
+
# `ListAssets` call, and the API should return the next page of assets.
|
81
|
+
# @param [String] read_time
|
82
|
+
# Timestamp to take an asset snapshot. This can only be set to a timestamp
|
83
|
+
# between the current time and the current time minus 35 days (inclusive). If
|
84
|
+
# not specified, the current time will be used. Due to delays in resource data
|
85
|
+
# collection and indexing, there is a volatile window during which running the
|
86
|
+
# same query may get different results.
|
87
|
+
# @param [String] fields
|
88
|
+
# Selector specifying which fields to include in a partial response.
|
89
|
+
# @param [String] quota_user
|
90
|
+
# Available to use for quota purposes for server-side applications. Can be any
|
91
|
+
# arbitrary string assigned to a user, but should not exceed 40 characters.
|
92
|
+
# @param [Google::Apis::RequestOptions] options
|
93
|
+
# Request-specific options
|
94
|
+
#
|
95
|
+
# @yield [result, err] Result & error if block supplied
|
96
|
+
# @yieldparam result [Google::Apis::CloudassetV1::ListAssetsResponse] parsed result object
|
97
|
+
# @yieldparam err [StandardError] error object if request failed
|
98
|
+
#
|
99
|
+
# @return [Google::Apis::CloudassetV1::ListAssetsResponse]
|
100
|
+
#
|
101
|
+
# @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
|
102
|
+
# @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
|
103
|
+
# @raise [Google::Apis::AuthorizationError] Authorization is required
|
104
|
+
def list_assets(parent, asset_types: nil, content_type: nil, page_size: nil, page_token: nil, read_time: nil, fields: nil, quota_user: nil, options: nil, &block)
|
105
|
+
command = make_simple_command(:get, 'v1/{+parent}/assets', options)
|
106
|
+
command.response_representation = Google::Apis::CloudassetV1::ListAssetsResponse::Representation
|
107
|
+
command.response_class = Google::Apis::CloudassetV1::ListAssetsResponse
|
108
|
+
command.params['parent'] = parent unless parent.nil?
|
109
|
+
command.query['assetTypes'] = asset_types unless asset_types.nil?
|
110
|
+
command.query['contentType'] = content_type unless content_type.nil?
|
111
|
+
command.query['pageSize'] = page_size unless page_size.nil?
|
112
|
+
command.query['pageToken'] = page_token unless page_token.nil?
|
113
|
+
command.query['readTime'] = read_time unless read_time.nil?
|
114
|
+
command.query['fields'] = fields unless fields.nil?
|
115
|
+
command.query['quotaUser'] = quota_user unless quota_user.nil?
|
116
|
+
execute_or_queue_command(command, &block)
|
117
|
+
end
|
118
|
+
|
52
119
|
# Creates a feed in a parent project/folder/organization to listen to its asset
|
53
120
|
# updates.
|
54
121
|
# @param [String] parent
|
@@ -266,6 +333,10 @@ module Google
|
|
266
333
|
# Optional. The permissions to appear in result.
|
267
334
|
# @param [Array<String>, String] analysis_query_access_selector_roles
|
268
335
|
# Optional. The roles to appear in result.
|
336
|
+
# @param [String] analysis_query_condition_context_access_time
|
337
|
+
# The hypothetical access timestamp to evaluate IAM conditions. Note that this
|
338
|
+
# value must not be earlier than the current time; otherwise, an
|
339
|
+
# INVALID_ARGUMENT error will be returned.
|
269
340
|
# @param [String] analysis_query_identity_selector_identity
|
270
341
|
# Required. The identity appear in the form of members in [IAM policy binding](
|
271
342
|
# https://cloud.google.com/iam/reference/rest/v1/Binding). The examples of
|
@@ -352,13 +423,14 @@ module Google
|
|
352
423
|
# @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
|
353
424
|
# @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
|
354
425
|
# @raise [Google::Apis::AuthorizationError] Authorization is required
|
355
|
-
def analyze_iam_policy(scope, analysis_query_access_selector_permissions: nil, analysis_query_access_selector_roles: nil, analysis_query_identity_selector_identity: nil, analysis_query_options_analyze_service_account_impersonation: nil, analysis_query_options_expand_groups: nil, analysis_query_options_expand_resources: nil, analysis_query_options_expand_roles: nil, analysis_query_options_output_group_edges: nil, analysis_query_options_output_resource_edges: nil, analysis_query_resource_selector_full_resource_name: nil, execution_timeout: nil, fields: nil, quota_user: nil, options: nil, &block)
|
426
|
+
def analyze_iam_policy(scope, analysis_query_access_selector_permissions: nil, analysis_query_access_selector_roles: nil, analysis_query_condition_context_access_time: nil, analysis_query_identity_selector_identity: nil, analysis_query_options_analyze_service_account_impersonation: nil, analysis_query_options_expand_groups: nil, analysis_query_options_expand_resources: nil, analysis_query_options_expand_roles: nil, analysis_query_options_output_group_edges: nil, analysis_query_options_output_resource_edges: nil, analysis_query_resource_selector_full_resource_name: nil, execution_timeout: nil, fields: nil, quota_user: nil, options: nil, &block)
|
356
427
|
command = make_simple_command(:get, 'v1/{+scope}:analyzeIamPolicy', options)
|
357
428
|
command.response_representation = Google::Apis::CloudassetV1::AnalyzeIamPolicyResponse::Representation
|
358
429
|
command.response_class = Google::Apis::CloudassetV1::AnalyzeIamPolicyResponse
|
359
430
|
command.params['scope'] = scope unless scope.nil?
|
360
431
|
command.query['analysisQuery.accessSelector.permissions'] = analysis_query_access_selector_permissions unless analysis_query_access_selector_permissions.nil?
|
361
432
|
command.query['analysisQuery.accessSelector.roles'] = analysis_query_access_selector_roles unless analysis_query_access_selector_roles.nil?
|
433
|
+
command.query['analysisQuery.conditionContext.accessTime'] = analysis_query_condition_context_access_time unless analysis_query_condition_context_access_time.nil?
|
362
434
|
command.query['analysisQuery.identitySelector.identity'] = analysis_query_identity_selector_identity unless analysis_query_identity_selector_identity.nil?
|
363
435
|
command.query['analysisQuery.options.analyzeServiceAccountImpersonation'] = analysis_query_options_analyze_service_account_impersonation unless analysis_query_options_analyze_service_account_impersonation.nil?
|
364
436
|
command.query['analysisQuery.options.expandGroups'] = analysis_query_options_expand_groups unless analysis_query_options_expand_groups.nil?
|
@@ -657,17 +729,19 @@ module Google
|
|
657
729
|
# prod". * `labels.env:*` to find Cloud resources that have a label "env". * `
|
658
730
|
# kmsKey:key` to find Cloud resources encrypted with a customer-managed
|
659
731
|
# encryption key whose name contains the word "key". * `state:ACTIVE` to find
|
660
|
-
# Cloud resources whose state contains "ACTIVE" as a word. * `
|
661
|
-
#
|
662
|
-
#
|
663
|
-
#
|
664
|
-
#
|
665
|
-
# 01 00:00:00 UTC"
|
666
|
-
#
|
667
|
-
#
|
668
|
-
#
|
669
|
-
#
|
670
|
-
#
|
732
|
+
# Cloud resources whose state contains "ACTIVE" as a word. * `NOT state:ACTIVE`
|
733
|
+
# to find ``gcp_name`` resources whose state doesn't contain "ACTIVE" as a word.
|
734
|
+
# * `createTime<1609459200` to find Cloud resources that were created before "
|
735
|
+
# 2021-01-01 00:00:00 UTC". 1609459200 is the epoch timestamp of "2021-01-01 00:
|
736
|
+
# 00:00 UTC" in seconds. * `updateTime>1609459200` to find Cloud resources that
|
737
|
+
# were updated after "2021-01-01 00:00:00 UTC". 1609459200 is the epoch
|
738
|
+
# timestamp of "2021-01-01 00:00:00 UTC" in seconds. * `Important` to find Cloud
|
739
|
+
# resources that contain "Important" as a word in any of the searchable fields. *
|
740
|
+
# `Impor*` to find Cloud resources that contain "Impor" as a prefix of any word
|
741
|
+
# in any of the searchable fields. * `Important location:(us-west1 OR global)`
|
742
|
+
# to find Cloud resources that contain "Important" as a word in any of the
|
743
|
+
# searchable fields and are also located in the "us-west1" region or the "global"
|
744
|
+
# location.
|
671
745
|
# @param [String] fields
|
672
746
|
# Selector specifying which fields to include in a partial response.
|
673
747
|
# @param [String] quota_user
|
metadata
CHANGED
@@ -1,14 +1,14 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: google-apis-cloudasset_v1
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 0.
|
4
|
+
version: 0.7.0
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- Google LLC
|
8
8
|
autorequire:
|
9
9
|
bindir: bin
|
10
10
|
cert_chain: []
|
11
|
-
date: 2021-
|
11
|
+
date: 2021-05-18 00:00:00.000000000 Z
|
12
12
|
dependencies:
|
13
13
|
- !ruby/object:Gem::Dependency
|
14
14
|
name: google-apis-core
|
@@ -52,7 +52,7 @@ licenses:
|
|
52
52
|
metadata:
|
53
53
|
bug_tracker_uri: https://github.com/googleapis/google-api-ruby-client/issues
|
54
54
|
changelog_uri: https://github.com/googleapis/google-api-ruby-client/tree/master/generated/google-apis-cloudasset_v1/CHANGELOG.md
|
55
|
-
documentation_uri: https://googleapis.dev/ruby/google-apis-cloudasset_v1/v0.
|
55
|
+
documentation_uri: https://googleapis.dev/ruby/google-apis-cloudasset_v1/v0.7.0
|
56
56
|
source_code_uri: https://github.com/googleapis/google-api-ruby-client/tree/master/generated/google-apis-cloudasset_v1
|
57
57
|
post_install_message:
|
58
58
|
rdoc_options: []
|
@@ -69,7 +69,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
|
|
69
69
|
- !ruby/object:Gem::Version
|
70
70
|
version: '0'
|
71
71
|
requirements: []
|
72
|
-
rubygems_version: 3.2.
|
72
|
+
rubygems_version: 3.2.17
|
73
73
|
signing_key:
|
74
74
|
specification_version: 4
|
75
75
|
summary: Simple REST client for Cloud Asset API V1
|