google-apis-cloudasset_v1 0.62.0 → 0.64.0

Sign up to get free protection for your applications and to get access to all the features.
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: e035c81e3258e51a5a1ba2e87c562a3d540b10bf80508f57d24f3b48b729eb54
4
- data.tar.gz: e552e512b420cd381be4a36072de4fa75a1d900324d4d79f04741d9ab5788ef0
3
+ metadata.gz: 383761e6d51de1f3784b4f44e82b89e517e93db9145d9f2faa0af3ceaf2f97fe
4
+ data.tar.gz: 54024f464e6ce6e51b6e7e829f91aea0c75581458b7d071cd81c8845a8fa5126
5
5
  SHA512:
6
- metadata.gz: 7fc141d149bedb530102eee38ea44ba82c92d5f11cab30ff1cc3f23bd081fbe807f5784bbed070f27626685d5317b111d653c1871a77ff70ffb11ee179d0bf42
7
- data.tar.gz: 7ce98f77aa1aaf113e03e40fb7f94c5b43499be69134133577ae267a53d356cf7f9a7db29ddc0af9baffe27e2a59febe91827183af261fc93b609749aa07225b
6
+ metadata.gz: 2345a838d99b0a32f6773191bd9dda45d7649188bf06aa2d4e837156d84453f7c6b7d10a4df55e0d9d6e89d40309966699bb472ecd9f3f4abfd20d19a3295d9b
7
+ data.tar.gz: 78a490543d93b7df228aca1ca3ac70c906f849f9a6051f30fe99a5801f7ff381fe094121d4bb2a51469b66fe9c7a071c3636fb3ae2c646a98f8fa189f17871c9
data/CHANGELOG.md CHANGED
@@ -1,5 +1,13 @@
1
1
  # Release history for google-apis-cloudasset_v1
2
2
 
3
+ ### v0.64.0 (2023-09-17)
4
+
5
+ * Regenerated from discovery document revision 20230908
6
+
7
+ ### v0.63.0 (2023-09-10)
8
+
9
+ * Regenerated from discovery document revision 20230902
10
+
3
11
  ### v0.62.0 (2023-08-13)
4
12
 
5
13
  * Regenerated from discovery document revision 20230805
@@ -2749,17 +2749,16 @@ module Google
2749
2749
  # @return [String]
2750
2750
  attr_accessor :parent
2751
2751
 
2752
- # The scopes of a policy define which resources an ACM policy can restrict, and
2753
- # where ACM resources can be referenced. For example, a policy with scopes=["
2754
- # folders/123"] has the following behavior: - vpcsc perimeters can only restrict
2755
- # projects within folders/123 - access levels can only be referenced by
2756
- # resources within folders/123. If empty, there are no limitations on which
2757
- # resources can be restricted by an ACM policy, and there are no limitations on
2758
- # where ACM resources can be referenced. Only one policy can include a given
2759
- # scope (attempting to create a second policy which includes "folders/123" will
2760
- # result in an error). Currently, scopes cannot be modified after a policy is
2761
- # created. Currently, policies can only have a single scope. Format: list of `
2762
- # folders/`folder_number`` or `projects/`project_number``
2752
+ # The scopes of the AccessPolicy. Scopes define which resources a policy can
2753
+ # restrict and where its resources can be referenced. For example, policy A with
2754
+ # `scopes=["folders/123"]` has the following behavior: - ServicePerimeter can
2755
+ # only restrict projects within `folders/123`. - ServicePerimeter within policy
2756
+ # A can only reference access levels defined within policy A. - Only one policy
2757
+ # can include a given scope; thus, attempting to create a second policy which
2758
+ # includes `folders/123` will result in an error. If no scopes are provided,
2759
+ # then any resource within the organization can be restricted. Scopes cannot be
2760
+ # modified after a policy is created. Policies can only have a single scope.
2761
+ # Format: list of `folders/`folder_number`` or `projects/`project_number``
2763
2762
  # Corresponds to the JSON property `scopes`
2764
2763
  # @return [Array<String>]
2765
2764
  attr_accessor :scopes
@@ -2902,6 +2901,12 @@ module Google
2902
2901
  # @return [Array<String>]
2903
2902
  attr_accessor :required_access_levels
2904
2903
 
2904
+ # The request must originate from one of the provided VPC networks in Google
2905
+ # Cloud. Cannot specify this field together with `ip_subnetworks`.
2906
+ # Corresponds to the JSON property `vpcNetworkSources`
2907
+ # @return [Array<Google::Apis::CloudassetV1::GoogleIdentityAccesscontextmanagerV1VpcNetworkSource>]
2908
+ attr_accessor :vpc_network_sources
2909
+
2905
2910
  def initialize(**args)
2906
2911
  update!(**args)
2907
2912
  end
@@ -2914,6 +2919,7 @@ module Google
2914
2919
  @negate = args[:negate] if args.key?(:negate)
2915
2920
  @regions = args[:regions] if args.key?(:regions)
2916
2921
  @required_access_levels = args[:required_access_levels] if args.key?(:required_access_levels)
2922
+ @vpc_network_sources = args[:vpc_network_sources] if args.key?(:vpc_network_sources)
2917
2923
  end
2918
2924
  end
2919
2925
 
@@ -3034,6 +3040,19 @@ module Google
3034
3040
  # @return [String]
3035
3041
  attr_accessor :identity_type
3036
3042
 
3043
+ # Whether to enforce traffic restrictions based on `sources` field. If the `
3044
+ # sources` fields is non-empty, then this field must be set to `
3045
+ # SOURCE_RESTRICTION_ENABLED`.
3046
+ # Corresponds to the JSON property `sourceRestriction`
3047
+ # @return [String]
3048
+ attr_accessor :source_restriction
3049
+
3050
+ # Sources that this EgressPolicy authorizes access from. If this field is not
3051
+ # empty, then `source_restriction` must be set to `SOURCE_RESTRICTION_ENABLED`.
3052
+ # Corresponds to the JSON property `sources`
3053
+ # @return [Array<Google::Apis::CloudassetV1::GoogleIdentityAccesscontextmanagerV1EgressSource>]
3054
+ attr_accessor :sources
3055
+
3037
3056
  def initialize(**args)
3038
3057
  update!(**args)
3039
3058
  end
@@ -3042,6 +3061,8 @@ module Google
3042
3061
  def update!(**args)
3043
3062
  @identities = args[:identities] if args.key?(:identities)
3044
3063
  @identity_type = args[:identity_type] if args.key?(:identity_type)
3064
+ @source_restriction = args[:source_restriction] if args.key?(:source_restriction)
3065
+ @sources = args[:sources] if args.key?(:sources)
3045
3066
  end
3046
3067
  end
3047
3068
 
@@ -3091,6 +3112,33 @@ module Google
3091
3112
  end
3092
3113
  end
3093
3114
 
3115
+ # The source that EgressPolicy authorizes access from inside the
3116
+ # ServicePerimeter to somewhere outside the ServicePerimeter boundaries.
3117
+ class GoogleIdentityAccesscontextmanagerV1EgressSource
3118
+ include Google::Apis::Core::Hashable
3119
+
3120
+ # An AccessLevel resource name that allows protected resources inside the
3121
+ # ServicePerimeters to access outside the ServicePerimeter boundaries.
3122
+ # AccessLevels listed must be in the same policy as this ServicePerimeter.
3123
+ # Referencing a nonexistent AccessLevel will cause an error. If an AccessLevel
3124
+ # name is not specified, only resources within the perimeter can be accessed
3125
+ # through Google Cloud calls with request origins within the perimeter. Example:
3126
+ # `accessPolicies/MY_POLICY/accessLevels/MY_LEVEL`. If a single `*` is specified
3127
+ # for `access_level`, then all EgressSources will be allowed.
3128
+ # Corresponds to the JSON property `accessLevel`
3129
+ # @return [String]
3130
+ attr_accessor :access_level
3131
+
3132
+ def initialize(**args)
3133
+ update!(**args)
3134
+ end
3135
+
3136
+ # Update properties of this object
3137
+ def update!(**args)
3138
+ @access_level = args[:access_level] if args.key?(:access_level)
3139
+ end
3140
+ end
3141
+
3094
3142
  # Defines the conditions under which an EgressPolicy matches a request.
3095
3143
  # Conditions are based on information about the ApiOperation intended to be
3096
3144
  # performed on the `resources` specified. Note that if the destination of the
@@ -3529,6 +3577,59 @@ module Google
3529
3577
  end
3530
3578
  end
3531
3579
 
3580
+ # The originating network source in Google Cloud.
3581
+ class GoogleIdentityAccesscontextmanagerV1VpcNetworkSource
3582
+ include Google::Apis::Core::Hashable
3583
+
3584
+ # Sub-segment ranges inside of a VPC Network.
3585
+ # Corresponds to the JSON property `vpcSubnetwork`
3586
+ # @return [Google::Apis::CloudassetV1::GoogleIdentityAccesscontextmanagerV1VpcSubNetwork]
3587
+ attr_accessor :vpc_subnetwork
3588
+
3589
+ def initialize(**args)
3590
+ update!(**args)
3591
+ end
3592
+
3593
+ # Update properties of this object
3594
+ def update!(**args)
3595
+ @vpc_subnetwork = args[:vpc_subnetwork] if args.key?(:vpc_subnetwork)
3596
+ end
3597
+ end
3598
+
3599
+ # Sub-segment ranges inside of a VPC Network.
3600
+ class GoogleIdentityAccesscontextmanagerV1VpcSubNetwork
3601
+ include Google::Apis::Core::Hashable
3602
+
3603
+ # Required. Network name. If the network is not part of the organization, the `
3604
+ # compute.network.get` permission must be granted to the caller. Format: `//
3605
+ # compute.googleapis.com/projects/`PROJECT_ID`/global/networks/`NETWORK_NAME``
3606
+ # Example: `//compute.googleapis.com/projects/my-project/global/networks/network-
3607
+ # 1`
3608
+ # Corresponds to the JSON property `network`
3609
+ # @return [String]
3610
+ attr_accessor :network
3611
+
3612
+ # CIDR block IP subnetwork specification. The IP address must be an IPv4 address
3613
+ # and can be a public or private IP address. Note that for a CIDR IP address
3614
+ # block, the specified IP address portion must be properly truncated (i.e. all
3615
+ # the host bits must be zero) or the input is considered malformed. For example,
3616
+ # "192.0.2.0/24" is accepted but "192.0.2.1/24" is not. If empty, all IP
3617
+ # addresses are allowed.
3618
+ # Corresponds to the JSON property `vpcIpSubnetworks`
3619
+ # @return [Array<String>]
3620
+ attr_accessor :vpc_ip_subnetworks
3621
+
3622
+ def initialize(**args)
3623
+ update!(**args)
3624
+ end
3625
+
3626
+ # Update properties of this object
3627
+ def update!(**args)
3628
+ @network = args[:network] if args.key?(:network)
3629
+ @vpc_ip_subnetworks = args[:vpc_ip_subnetworks] if args.key?(:vpc_ip_subnetworks)
3630
+ end
3631
+ end
3632
+
3532
3633
  # An analysis message to group the query and results.
3533
3634
  class IamPolicyAnalysis
3534
3635
  include Google::Apis::Core::Hashable
@@ -5238,6 +5339,18 @@ module Google
5238
5339
  # @return [Hash<String,Google::Apis::CloudassetV1::RelatedResources>]
5239
5340
  attr_accessor :relationships
5240
5341
 
5342
+ # The actual content of Security Command Center security marks associated with
5343
+ # the asset. Note that both staging & prod SecurityMarks are attached on prod
5344
+ # resources. In CAS preprod/prod, both staging & prod SecurityMarks are ingested
5345
+ # and returned in the following `security_marks` map. In that case, the prefix "
5346
+ # staging." will be added to the keys of all the staging marks. To search
5347
+ # against SCC SecurityMarks field: * Use a field query: - query by a given key
5348
+ # value pair. Example: `sccSecurityMarks.foo=bar` - query by a given key's
5349
+ # existence. Example: `sccSecurityMarks.foo:*`
5350
+ # Corresponds to the JSON property `sccSecurityMarks`
5351
+ # @return [Hash<String,String>]
5352
+ attr_accessor :scc_security_marks
5353
+
5241
5354
  # The state of this resource. Different resources types have different state
5242
5355
  # definitions that are mapped from various fields of different resource types.
5243
5356
  # This field is available only when the resource's Protobuf contains it. Example:
@@ -5322,6 +5435,7 @@ module Google
5322
5435
  @parent_full_resource_name = args[:parent_full_resource_name] if args.key?(:parent_full_resource_name)
5323
5436
  @project = args[:project] if args.key?(:project)
5324
5437
  @relationships = args[:relationships] if args.key?(:relationships)
5438
+ @scc_security_marks = args[:scc_security_marks] if args.key?(:scc_security_marks)
5325
5439
  @state = args[:state] if args.key?(:state)
5326
5440
  @tag_keys = args[:tag_keys] if args.key?(:tag_keys)
5327
5441
  @tag_value_ids = args[:tag_value_ids] if args.key?(:tag_value_ids)
@@ -16,13 +16,13 @@ module Google
16
16
  module Apis
17
17
  module CloudassetV1
18
18
  # Version of the google-apis-cloudasset_v1 gem
19
- GEM_VERSION = "0.62.0"
19
+ GEM_VERSION = "0.64.0"
20
20
 
21
21
  # Version of the code generator used to generate this client
22
22
  GENERATOR_VERSION = "0.12.0"
23
23
 
24
24
  # Revision of the discovery document this client was generated from
25
- REVISION = "20230805"
25
+ REVISION = "20230908"
26
26
  end
27
27
  end
28
28
  end
@@ -430,6 +430,12 @@ module Google
430
430
  include Google::Apis::Core::JsonObjectSupport
431
431
  end
432
432
 
433
+ class GoogleIdentityAccesscontextmanagerV1EgressSource
434
+ class Representation < Google::Apis::Core::JsonRepresentation; end
435
+
436
+ include Google::Apis::Core::JsonObjectSupport
437
+ end
438
+
433
439
  class GoogleIdentityAccesscontextmanagerV1EgressTo
434
440
  class Representation < Google::Apis::Core::JsonRepresentation; end
435
441
 
@@ -490,6 +496,18 @@ module Google
490
496
  include Google::Apis::Core::JsonObjectSupport
491
497
  end
492
498
 
499
+ class GoogleIdentityAccesscontextmanagerV1VpcNetworkSource
500
+ class Representation < Google::Apis::Core::JsonRepresentation; end
501
+
502
+ include Google::Apis::Core::JsonObjectSupport
503
+ end
504
+
505
+ class GoogleIdentityAccesscontextmanagerV1VpcSubNetwork
506
+ class Representation < Google::Apis::Core::JsonRepresentation; end
507
+
508
+ include Google::Apis::Core::JsonObjectSupport
509
+ end
510
+
493
511
  class IamPolicyAnalysis
494
512
  class Representation < Google::Apis::Core::JsonRepresentation; end
495
513
 
@@ -1481,6 +1499,8 @@ module Google
1481
1499
  property :negate, as: 'negate'
1482
1500
  collection :regions, as: 'regions'
1483
1501
  collection :required_access_levels, as: 'requiredAccessLevels'
1502
+ collection :vpc_network_sources, as: 'vpcNetworkSources', class: Google::Apis::CloudassetV1::GoogleIdentityAccesscontextmanagerV1VpcNetworkSource, decorator: Google::Apis::CloudassetV1::GoogleIdentityAccesscontextmanagerV1VpcNetworkSource::Representation
1503
+
1484
1504
  end
1485
1505
  end
1486
1506
 
@@ -1510,6 +1530,9 @@ module Google
1510
1530
  class Representation < Google::Apis::Core::JsonRepresentation
1511
1531
  collection :identities, as: 'identities'
1512
1532
  property :identity_type, as: 'identityType'
1533
+ property :source_restriction, as: 'sourceRestriction'
1534
+ collection :sources, as: 'sources', class: Google::Apis::CloudassetV1::GoogleIdentityAccesscontextmanagerV1EgressSource, decorator: Google::Apis::CloudassetV1::GoogleIdentityAccesscontextmanagerV1EgressSource::Representation
1535
+
1513
1536
  end
1514
1537
  end
1515
1538
 
@@ -1523,6 +1546,13 @@ module Google
1523
1546
  end
1524
1547
  end
1525
1548
 
1549
+ class GoogleIdentityAccesscontextmanagerV1EgressSource
1550
+ # @private
1551
+ class Representation < Google::Apis::Core::JsonRepresentation
1552
+ property :access_level, as: 'accessLevel'
1553
+ end
1554
+ end
1555
+
1526
1556
  class GoogleIdentityAccesscontextmanagerV1EgressTo
1527
1557
  # @private
1528
1558
  class Representation < Google::Apis::Core::JsonRepresentation
@@ -1625,6 +1655,22 @@ module Google
1625
1655
  end
1626
1656
  end
1627
1657
 
1658
+ class GoogleIdentityAccesscontextmanagerV1VpcNetworkSource
1659
+ # @private
1660
+ class Representation < Google::Apis::Core::JsonRepresentation
1661
+ property :vpc_subnetwork, as: 'vpcSubnetwork', class: Google::Apis::CloudassetV1::GoogleIdentityAccesscontextmanagerV1VpcSubNetwork, decorator: Google::Apis::CloudassetV1::GoogleIdentityAccesscontextmanagerV1VpcSubNetwork::Representation
1662
+
1663
+ end
1664
+ end
1665
+
1666
+ class GoogleIdentityAccesscontextmanagerV1VpcSubNetwork
1667
+ # @private
1668
+ class Representation < Google::Apis::Core::JsonRepresentation
1669
+ property :network, as: 'network'
1670
+ collection :vpc_ip_subnetworks, as: 'vpcIpSubnetworks'
1671
+ end
1672
+ end
1673
+
1628
1674
  class IamPolicyAnalysis
1629
1675
  # @private
1630
1676
  class Representation < Google::Apis::Core::JsonRepresentation
@@ -2030,6 +2076,7 @@ module Google
2030
2076
  property :project, as: 'project'
2031
2077
  hash :relationships, as: 'relationships', class: Google::Apis::CloudassetV1::RelatedResources, decorator: Google::Apis::CloudassetV1::RelatedResources::Representation
2032
2078
 
2079
+ hash :scc_security_marks, as: 'sccSecurityMarks'
2033
2080
  property :state, as: 'state'
2034
2081
  collection :tag_keys, as: 'tagKeys'
2035
2082
  collection :tag_value_ids, as: 'tagValueIds'
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: google-apis-cloudasset_v1
3
3
  version: !ruby/object:Gem::Version
4
- version: 0.62.0
4
+ version: 0.64.0
5
5
  platform: ruby
6
6
  authors:
7
7
  - Google LLC
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2023-08-13 00:00:00.000000000 Z
11
+ date: 2023-09-17 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: google-apis-core
@@ -58,7 +58,7 @@ licenses:
58
58
  metadata:
59
59
  bug_tracker_uri: https://github.com/googleapis/google-api-ruby-client/issues
60
60
  changelog_uri: https://github.com/googleapis/google-api-ruby-client/tree/main/generated/google-apis-cloudasset_v1/CHANGELOG.md
61
- documentation_uri: https://googleapis.dev/ruby/google-apis-cloudasset_v1/v0.62.0
61
+ documentation_uri: https://googleapis.dev/ruby/google-apis-cloudasset_v1/v0.64.0
62
62
  source_code_uri: https://github.com/googleapis/google-api-ruby-client/tree/main/generated/google-apis-cloudasset_v1
63
63
  post_install_message:
64
64
  rdoc_options: []
@@ -75,7 +75,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
75
75
  - !ruby/object:Gem::Version
76
76
  version: '0'
77
77
  requirements: []
78
- rubygems_version: 3.4.2
78
+ rubygems_version: 3.4.19
79
79
  signing_key:
80
80
  specification_version: 4
81
81
  summary: Simple REST client for Cloud Asset API V1