RubyGems - google-apis-cloudasset_v1 - Versions diffs - 0.58.0 → 0.59.0 - Mend

google-apis-cloudasset_v1 0.58.0 → 0.59.0

Files changed (7) hide show

checksums.yaml +4 -4
data/CHANGELOG.md +4 -0
data/lib/google/apis/cloudasset_v1/classes.rb +4 -293
data/lib/google/apis/cloudasset_v1/gem_version.rb +2 -2
data/lib/google/apis/cloudasset_v1/representations.rb +0 -116
data/lib/google/apis/cloudasset_v1/service.rb +14 -18
metadata +3 -3

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 1fdefe7e18c6654d569638cae54a34ec8d4c5105b3ffd0b4512ea9826c08c053
-  data.tar.gz: 260e95c05fc33702058600c9f58dd81e873e33f797b5e565042d7e3cb13edc5e
+  metadata.gz: 3547a26a28726490468cccddb7219aba4c5ee869f3efc08f93ea2d1573cbca83
+  data.tar.gz: 2d5bf2060ab06f0b7f8f3a2a740310b5b3193cc3428a78eaf14f577606e90caf
 SHA512:
-  metadata.gz: dfff1bb558cbdaad1b60bbdc5c3c35b6266a71a759442bf05a429f4f565bab3845663ccd7bc82a2386e21966e83db2f57de94d6694bd42ef55726b1496503208
-  data.tar.gz: ed7ef1f085dfd1d559cce257e3e9702901e1d1dc92f33f3af8b23a486aaa35d00bc25ef87a5caf75ba9b927c042846275c749356271b08e54c091267649ab20a
+  metadata.gz: '097bec98de51b52a3151299b858a794657ee40e70b1957cc5f42aab42a4a1a2633f9c5c2c7ff9089a19aee457731634425e211c0fd791f90248cc8d706d327bc'
+  data.tar.gz: 983468c68c93cae531d6db2c617846e08843fdcde49d31d175534ddad1cceb4e91cdbaee7c2f90fff69e00232a39de64a80708a3b4011cba36aa37beb120247b

data/CHANGELOG.md CHANGED Viewed

@@ -1,5 +1,9 @@
 # Release history for google-apis-cloudasset_v1
+### v0.59.0 (2023-06-18)
+* Regenerated from discovery document revision 20230609
 ### v0.58.0 (2023-05-21)
 * Regenerated from discovery document revision 20230513

data/lib/google/apis/cloudasset_v1/classes.rb CHANGED Viewed

@@ -928,32 +928,6 @@ module Google
         end
       end
-      # A denied access contains details about an access tuple that is blocked by IAM
-      # deny policies.
-      class DeniedAccess
-        include Google::Apis::Core::Hashable
-        # An access tuple contains a tuple of a resource, an identity and an access.
-        # Corresponds to the JSON property `deniedAccessTuple`
-        # @return [Google::Apis::CloudassetV1::GoogleCloudAssetV1DeniedAccessAccessTuple]
-        attr_accessor :denied_access_tuple
-        # The details about how denied_access_tuple is denied.
-        # Corresponds to the JSON property `denyDetails`
-        # @return [Array<Google::Apis::CloudassetV1::GoogleCloudAssetV1DeniedAccessDenyDetail>]
-        attr_accessor :deny_details
-        def initialize(**args)
-           update!(**args)
-        end
-        # Update properties of this object
-        def update!(**args)
-          @denied_access_tuple = args[:denied_access_tuple] if args.key?(:denied_access_tuple)
-          @deny_details = args[:deny_details] if args.key?(:deny_details)
-        end
-      end
       # The effective IAM policies on one resource.
       class EffectiveIamPolicy
         include Google::Apis::Core::Hashable
@@ -1750,160 +1724,6 @@ module Google
         end
       end
-      # An IAM role or permission under analysis.
-      class GoogleCloudAssetV1DeniedAccessAccess
-        include Google::Apis::Core::Hashable
-        # The IAM permission in [v1 format](https://cloud.google.com/iam/docs/
-        # permissions-reference)
-        # Corresponds to the JSON property `permission`
-        # @return [String]
-        attr_accessor :permission
-        # The IAM role.
-        # Corresponds to the JSON property `role`
-        # @return [String]
-        attr_accessor :role
-        def initialize(**args)
-           update!(**args)
-        end
-        # Update properties of this object
-        def update!(**args)
-          @permission = args[:permission] if args.key?(:permission)
-          @role = args[:role] if args.key?(:role)
-        end
-      end
-      # An access tuple contains a tuple of a resource, an identity and an access.
-      class GoogleCloudAssetV1DeniedAccessAccessTuple
-        include Google::Apis::Core::Hashable
-        # An IAM role or permission under analysis.
-        # Corresponds to the JSON property `access`
-        # @return [Google::Apis::CloudassetV1::GoogleCloudAssetV1DeniedAccessAccess]
-        attr_accessor :access
-        # An identity under analysis.
-        # Corresponds to the JSON property `identity`
-        # @return [Google::Apis::CloudassetV1::GoogleCloudAssetV1DeniedAccessIdentity]
-        attr_accessor :identity
-        # A Google Cloud resource under analysis.
-        # Corresponds to the JSON property `resource`
-        # @return [Google::Apis::CloudassetV1::GoogleCloudAssetV1DeniedAccessResource]
-        attr_accessor :resource
-        def initialize(**args)
-           update!(**args)
-        end
-        # Update properties of this object
-        def update!(**args)
-          @access = args[:access] if args.key?(:access)
-          @identity = args[:identity] if args.key?(:identity)
-          @resource = args[:resource] if args.key?(:resource)
-        end
-      end
-      # A deny detail that explains which IAM deny rule denies the denied_access_tuple.
-      class GoogleCloudAssetV1DeniedAccessDenyDetail
-        include Google::Apis::Core::Hashable
-        # The denied accesses. If this deny_rule fully denies the denied_access_tuple,
-        # this field will be same as AccessTuple.access. Otherwise, this field can
-        # contain AccessTuple.access and its descendant accesses, such as a subset of
-        # IAM permissions contained in an IAM role.
-        # Corresponds to the JSON property `accesses`
-        # @return [Array<Google::Apis::CloudassetV1::GoogleCloudAssetV1DeniedAccessAccess>]
-        attr_accessor :accesses
-        # A deny rule in an IAM deny policy.
-        # Corresponds to the JSON property `denyRule`
-        # @return [Google::Apis::CloudassetV1::GoogleIamV2DenyRule]
-        attr_accessor :deny_rule
-        # Whether the deny_rule fully denies all access granted by the
-        # denied_access_tuple. `True` means the deny rule fully blocks the access tuple.
-        # `False` means the deny rule partially blocks the access tuple."
-        # Corresponds to the JSON property `fullyDenied`
-        # @return [Boolean]
-        attr_accessor :fully_denied
-        alias_method :fully_denied?, :fully_denied
-        # If this deny_rule fully denies the denied_access_tuple, this field will be
-        # same as AccessTuple.identity. Otherwise, this field can contain AccessTuple.
-        # identity and its descendant identities, such as a subset of users in a group.
-        # Corresponds to the JSON property `identities`
-        # @return [Array<Google::Apis::CloudassetV1::GoogleCloudAssetV1DeniedAccessIdentity>]
-        attr_accessor :identities
-        # The resources that the identities are denied access to. If this deny_rule
-        # fully denies the denied_access_tuple, this field will be same as AccessTuple.
-        # resource. Otherwise, this field can contain AccessTuple.resource and its
-        # descendant resources.
-        # Corresponds to the JSON property `resources`
-        # @return [Array<Google::Apis::CloudassetV1::GoogleCloudAssetV1DeniedAccessResource>]
-        attr_accessor :resources
-        def initialize(**args)
-           update!(**args)
-        end
-        # Update properties of this object
-        def update!(**args)
-          @accesses = args[:accesses] if args.key?(:accesses)
-          @deny_rule = args[:deny_rule] if args.key?(:deny_rule)
-          @fully_denied = args[:fully_denied] if args.key?(:fully_denied)
-          @identities = args[:identities] if args.key?(:identities)
-          @resources = args[:resources] if args.key?(:resources)
-        end
-      end
-      # An identity under analysis.
-      class GoogleCloudAssetV1DeniedAccessIdentity
-        include Google::Apis::Core::Hashable
-        # The identity of members, formatted as appear in an [IAM policy binding](https:/
-        # /cloud.google.com/iam/reference/rest/v1/Binding). For example, they might be
-        # formatted like the following: - user:foo@google.com - group:group1@google.com -
-        # serviceAccount:s1@prj1.iam.gserviceaccount.com - projectOwner:some_project_id
-        # - domain:google.com - allUsers
-        # Corresponds to the JSON property `name`
-        # @return [String]
-        attr_accessor :name
-        def initialize(**args)
-           update!(**args)
-        end
-        # Update properties of this object
-        def update!(**args)
-          @name = args[:name] if args.key?(:name)
-        end
-      end
-      # A Google Cloud resource under analysis.
-      class GoogleCloudAssetV1DeniedAccessResource
-        include Google::Apis::Core::Hashable
-        # The [full resource name](https://cloud.google.com/asset-inventory/docs/
-        # resource-name-format)
-        # Corresponds to the JSON property `fullResourceName`
-        # @return [String]
-        attr_accessor :full_resource_name
-        def initialize(**args)
-           update!(**args)
-        end
-        # Update properties of this object
-        def update!(**args)
-          @full_resource_name = args[:full_resource_name] if args.key?(:full_resource_name)
-        end
-      end
       # A directional edge.
       class GoogleCloudAssetV1Edge
         include Google::Apis::Core::Hashable
@@ -2161,7 +1981,10 @@ module Google
         end
       end
-      # Represents a rule defined in an organization policy
+      # This rule message is a customized version of the one defined in the
+      # Organization Policy system. In addition to the fields defined in the original
+      # organization policy, it contains additional field(s) under specific
+      # circumstances to support analysis results.
       class GoogleCloudAssetV1Rule
         include Google::Apis::Core::Hashable
@@ -2848,101 +2671,6 @@ module Google
         end
       end
-      # A deny rule in an IAM deny policy.
-      class GoogleIamV2DenyRule
-        include Google::Apis::Core::Hashable
-        # Represents a textual expression in the Common Expression Language (CEL) syntax.
-        # CEL is a C-like expression language. The syntax and semantics of CEL are
-        # documented at https://github.com/google/cel-spec. Example (Comparison): title:
-        # "Summary size limit" description: "Determines if a summary is less than 100
-        # chars" expression: "document.summary.size() < 100" Example (Equality): title: "
-        # Requestor is owner" description: "Determines if requestor is the document
-        # owner" expression: "document.owner == request.auth.claims.email" Example (
-        # Logic): title: "Public documents" description: "Determine whether the document
-        # should be publicly visible" expression: "document.type != 'private' &&
-        # document.type != 'internal'" Example (Data Manipulation): title: "Notification
-        # string" description: "Create a notification string with a timestamp."
-        # expression: "'New message received at ' + string(document.create_time)" The
-        # exact variables and functions that may be referenced within an expression are
-        # determined by the service that evaluates it. See the service documentation for
-        # additional information.
-        # Corresponds to the JSON property `denialCondition`
-        # @return [Google::Apis::CloudassetV1::Expr]
-        attr_accessor :denial_condition
-        # The permissions that are explicitly denied by this rule. Each permission uses
-        # the format ``service_fqdn`/`resource`.`verb``, where ``service_fqdn`` is the
-        # fully qualified domain name for the service. For example, `iam.googleapis.com/
-        # roles.list`.
-        # Corresponds to the JSON property `deniedPermissions`
-        # @return [Array<String>]
-        attr_accessor :denied_permissions
-        # The identities that are prevented from using one or more permissions on Google
-        # Cloud resources. This field can contain the following values: * `principalSet:/
-        # /goog/public:all`: A special identifier that represents any principal that is
-        # on the internet, even if they do not have a Google Account or are not logged
-        # in. * `principal://goog/subject/`email_id``: A specific Google Account.
-        # Includes Gmail, Cloud Identity, and Google Workspace user accounts. For
-        # example, `principal://goog/subject/alice@example.com`. * `deleted:principal://
-        # goog/subject/`email_id`?uid=`uid``: A specific Google Account that was deleted
-        # recently. For example, `deleted:principal://goog/subject/alice@example.com?uid=
-        # 1234567890`. If the Google Account is recovered, this identifier reverts to
-        # the standard identifier for a Google Account. * `principalSet://goog/group/`
-        # group_id``: A Google group. For example, `principalSet://goog/group/admins@
-        # example.com`. * `deleted:principalSet://goog/group/`group_id`?uid=`uid``: A
-        # Google group that was deleted recently. For example, `deleted:principalSet://
-        # goog/group/admins@example.com?uid=1234567890`. If the Google group is restored,
-        # this identifier reverts to the standard identifier for a Google group. * `
-        # principal://iam.googleapis.com/projects/-/serviceAccounts/`service_account_id``
-        # : A Google Cloud service account. For example, `principal://iam.googleapis.com/
-        # projects/-/serviceAccounts/my-service-account@iam.gserviceaccount.com`. * `
-        # deleted:principal://iam.googleapis.com/projects/-/serviceAccounts/`
-        # service_account_id`?uid=`uid``: A Google Cloud service account that was
-        # deleted recently. For example, `deleted:principal://iam.googleapis.com/
-        # projects/-/serviceAccounts/my-service-account@iam.gserviceaccount.com?uid=
-        # 1234567890`. If the service account is undeleted, this identifier reverts to
-        # the standard identifier for a service account. * `principalSet://goog/
-        # cloudIdentityCustomerId/`customer_id``: All of the principals associated with
-        # the specified Google Workspace or Cloud Identity customer ID. For example, `
-        # principalSet://goog/cloudIdentityCustomerId/C01Abc35`.
-        # Corresponds to the JSON property `deniedPrincipals`
-        # @return [Array<String>]
-        attr_accessor :denied_principals
-        # Specifies the permissions that this rule excludes from the set of denied
-        # permissions given by `denied_permissions`. If a permission appears in `
-        # denied_permissions` _and_ in `exception_permissions` then it will _not_ be
-        # denied. The excluded permissions can be specified using the same syntax as `
-        # denied_permissions`.
-        # Corresponds to the JSON property `exceptionPermissions`
-        # @return [Array<String>]
-        attr_accessor :exception_permissions
-        # The identities that are excluded from the deny rule, even if they are listed
-        # in the `denied_principals`. For example, you could add a Google group to the `
-        # denied_principals`, then exclude specific users who belong to that group. This
-        # field can contain the same values as the `denied_principals` field, excluding `
-        # principalSet://goog/public:all`, which represents all users on the internet.
-        # Corresponds to the JSON property `exceptionPrincipals`
-        # @return [Array<String>]
-        attr_accessor :exception_principals
-        def initialize(**args)
-           update!(**args)
-        end
-        # Update properties of this object
-        def update!(**args)
-          @denial_condition = args[:denial_condition] if args.key?(:denial_condition)
-          @denied_permissions = args[:denied_permissions] if args.key?(:denied_permissions)
-          @denied_principals = args[:denied_principals] if args.key?(:denied_principals)
-          @exception_permissions = args[:exception_permissions] if args.key?(:exception_permissions)
-          @exception_principals = args[:exception_principals] if args.key?(:exception_principals)
-        end
-      end
       # An `AccessLevel` is a label that can be applied to requests to Google Cloud
       # services, along with a list of requirements necessary for the label to be
       # applied.
@@ -3816,14 +3544,6 @@ module Google
         # @return [Array<Google::Apis::CloudassetV1::IamPolicyAnalysisResult>]
         attr_accessor :analysis_results
-        # A list of DeniedAccess, which contains all access tuples in the
-        # analysis_results that are denied by IAM deny policies. If no access tuples are
-        # denied, the list is empty. This is only populated when IamPolicyAnalysisQuery.
-        # Options.include_deny_policy_analysis is true.
-        # Corresponds to the JSON property `deniedAccesses`
-        # @return [Array<Google::Apis::CloudassetV1::DeniedAccess>]
-        attr_accessor :denied_accesses
         # Represents whether all entries in the analysis_results have been fully
         # explored to answer the query.
         # Corresponds to the JSON property `fullyExplored`
@@ -3844,7 +3564,6 @@ module Google
         def update!(**args)
           @analysis_query = args[:analysis_query] if args.key?(:analysis_query)
           @analysis_results = args[:analysis_results] if args.key?(:analysis_results)
-          @denied_accesses = args[:denied_accesses] if args.key?(:denied_accesses)
           @fully_explored = args[:fully_explored] if args.key?(:fully_explored)
           @non_critical_errors = args[:non_critical_errors] if args.key?(:non_critical_errors)
         end
@@ -4538,13 +4257,6 @@ module Google
         attr_accessor :expand_roles
         alias_method :expand_roles?, :expand_roles
-        # Optional. If true, the response includes deny policy analysis results, and you
-        # can see which access tuples are denied. Default is false.
-        # Corresponds to the JSON property `includeDenyPolicyAnalysis`
-        # @return [Boolean]
-        attr_accessor :include_deny_policy_analysis
-        alias_method :include_deny_policy_analysis?, :include_deny_policy_analysis
         # Optional. If true, the result will output the relevant membership
         # relationships between groups and other groups, and between groups and
         # principals. Default is false.
@@ -4570,7 +4282,6 @@ module Google
           @expand_groups = args[:expand_groups] if args.key?(:expand_groups)
           @expand_resources = args[:expand_resources] if args.key?(:expand_resources)
           @expand_roles = args[:expand_roles] if args.key?(:expand_roles)
-          @include_deny_policy_analysis = args[:include_deny_policy_analysis] if args.key?(:include_deny_policy_analysis)
           @output_group_edges = args[:output_group_edges] if args.key?(:output_group_edges)
           @output_resource_edges = args[:output_resource_edges] if args.key?(:output_resource_edges)
         end

data/lib/google/apis/cloudasset_v1/gem_version.rb CHANGED Viewed

@@ -16,13 +16,13 @@ module Google
   module Apis
     module CloudassetV1
       # Version of the google-apis-cloudasset_v1 gem
-      GEM_VERSION = "0.58.0"
+      GEM_VERSION = "0.59.0"
       # Version of the code generator used to generate this client
       GENERATOR_VERSION = "0.12.0"
       # Revision of the discovery document this client was generated from
-      REVISION = "20230513"
+      REVISION = "20230609"
     end
   end
 end

data/lib/google/apis/cloudasset_v1/representations.rb CHANGED Viewed

@@ -160,12 +160,6 @@ module Google
         include Google::Apis::Core::JsonObjectSupport
       end
-      class DeniedAccess
-        class Representation < Google::Apis::Core::JsonRepresentation; end
-        include Google::Apis::Core::JsonObjectSupport
-      end
       class EffectiveIamPolicy
         class Representation < Google::Apis::Core::JsonRepresentation; end
@@ -268,36 +262,6 @@ module Google
         include Google::Apis::Core::JsonObjectSupport
       end
-      class GoogleCloudAssetV1DeniedAccessAccess
-        class Representation < Google::Apis::Core::JsonRepresentation; end
-        include Google::Apis::Core::JsonObjectSupport
-      end
-      class GoogleCloudAssetV1DeniedAccessAccessTuple
-        class Representation < Google::Apis::Core::JsonRepresentation; end
-        include Google::Apis::Core::JsonObjectSupport
-      end
-      class GoogleCloudAssetV1DeniedAccessDenyDetail
-        class Representation < Google::Apis::Core::JsonRepresentation; end
-        include Google::Apis::Core::JsonObjectSupport
-      end
-      class GoogleCloudAssetV1DeniedAccessIdentity
-        class Representation < Google::Apis::Core::JsonRepresentation; end
-        include Google::Apis::Core::JsonObjectSupport
-      end
-      class GoogleCloudAssetV1DeniedAccessResource
-        class Representation < Google::Apis::Core::JsonRepresentation; end
-        include Google::Apis::Core::JsonObjectSupport
-      end
       class GoogleCloudAssetV1Edge
         class Representation < Google::Apis::Core::JsonRepresentation; end
@@ -412,12 +376,6 @@ module Google
         include Google::Apis::Core::JsonObjectSupport
       end
-      class GoogleIamV2DenyRule
-        class Representation < Google::Apis::Core::JsonRepresentation; end
-        include Google::Apis::Core::JsonObjectSupport
-      end
       class GoogleIdentityAccesscontextmanagerV1AccessLevel
         class Representation < Google::Apis::Core::JsonRepresentation; end
@@ -1092,16 +1050,6 @@ module Google
         end
       end
-      class DeniedAccess
-        # @private
-        class Representation < Google::Apis::Core::JsonRepresentation
-          property :denied_access_tuple, as: 'deniedAccessTuple', class: Google::Apis::CloudassetV1::GoogleCloudAssetV1DeniedAccessAccessTuple, decorator: Google::Apis::CloudassetV1::GoogleCloudAssetV1DeniedAccessAccessTuple::Representation
-          collection :deny_details, as: 'denyDetails', class: Google::Apis::CloudassetV1::GoogleCloudAssetV1DeniedAccessDenyDetail, decorator: Google::Apis::CloudassetV1::GoogleCloudAssetV1DeniedAccessDenyDetail::Representation
-        end
-      end
       class EffectiveIamPolicy
         # @private
         class Representation < Google::Apis::Core::JsonRepresentation
@@ -1282,55 +1230,6 @@ module Google
         end
       end
-      class GoogleCloudAssetV1DeniedAccessAccess
-        # @private
-        class Representation < Google::Apis::Core::JsonRepresentation
-          property :permission, as: 'permission'
-          property :role, as: 'role'
-        end
-      end
-      class GoogleCloudAssetV1DeniedAccessAccessTuple
-        # @private
-        class Representation < Google::Apis::Core::JsonRepresentation
-          property :access, as: 'access', class: Google::Apis::CloudassetV1::GoogleCloudAssetV1DeniedAccessAccess, decorator: Google::Apis::CloudassetV1::GoogleCloudAssetV1DeniedAccessAccess::Representation
-          property :identity, as: 'identity', class: Google::Apis::CloudassetV1::GoogleCloudAssetV1DeniedAccessIdentity, decorator: Google::Apis::CloudassetV1::GoogleCloudAssetV1DeniedAccessIdentity::Representation
-          property :resource, as: 'resource', class: Google::Apis::CloudassetV1::GoogleCloudAssetV1DeniedAccessResource, decorator: Google::Apis::CloudassetV1::GoogleCloudAssetV1DeniedAccessResource::Representation
-        end
-      end
-      class GoogleCloudAssetV1DeniedAccessDenyDetail
-        # @private
-        class Representation < Google::Apis::Core::JsonRepresentation
-          collection :accesses, as: 'accesses', class: Google::Apis::CloudassetV1::GoogleCloudAssetV1DeniedAccessAccess, decorator: Google::Apis::CloudassetV1::GoogleCloudAssetV1DeniedAccessAccess::Representation
-          property :deny_rule, as: 'denyRule', class: Google::Apis::CloudassetV1::GoogleIamV2DenyRule, decorator: Google::Apis::CloudassetV1::GoogleIamV2DenyRule::Representation
-          property :fully_denied, as: 'fullyDenied'
-          collection :identities, as: 'identities', class: Google::Apis::CloudassetV1::GoogleCloudAssetV1DeniedAccessIdentity, decorator: Google::Apis::CloudassetV1::GoogleCloudAssetV1DeniedAccessIdentity::Representation
-          collection :resources, as: 'resources', class: Google::Apis::CloudassetV1::GoogleCloudAssetV1DeniedAccessResource, decorator: Google::Apis::CloudassetV1::GoogleCloudAssetV1DeniedAccessResource::Representation
-        end
-      end
-      class GoogleCloudAssetV1DeniedAccessIdentity
-        # @private
-        class Representation < Google::Apis::Core::JsonRepresentation
-          property :name, as: 'name'
-        end
-      end
-      class GoogleCloudAssetV1DeniedAccessResource
-        # @private
-        class Representation < Google::Apis::Core::JsonRepresentation
-          property :full_resource_name, as: 'fullResourceName'
-        end
-      end
       class GoogleCloudAssetV1Edge
         # @private
         class Representation < Google::Apis::Core::JsonRepresentation
@@ -1530,18 +1429,6 @@ module Google
         end
       end
-      class GoogleIamV2DenyRule
-        # @private
-        class Representation < Google::Apis::Core::JsonRepresentation
-          property :denial_condition, as: 'denialCondition', class: Google::Apis::CloudassetV1::Expr, decorator: Google::Apis::CloudassetV1::Expr::Representation
-          collection :denied_permissions, as: 'deniedPermissions'
-          collection :denied_principals, as: 'deniedPrincipals'
-          collection :exception_permissions, as: 'exceptionPermissions'
-          collection :exception_principals, as: 'exceptionPrincipals'
-        end
-      end
       class GoogleIdentityAccesscontextmanagerV1AccessLevel
         # @private
         class Representation < Google::Apis::Core::JsonRepresentation
@@ -1745,8 +1632,6 @@ module Google
           collection :analysis_results, as: 'analysisResults', class: Google::Apis::CloudassetV1::IamPolicyAnalysisResult, decorator: Google::Apis::CloudassetV1::IamPolicyAnalysisResult::Representation
-          collection :denied_accesses, as: 'deniedAccesses', class: Google::Apis::CloudassetV1::DeniedAccess, decorator: Google::Apis::CloudassetV1::DeniedAccess::Representation
           property :fully_explored, as: 'fullyExplored'
           collection :non_critical_errors, as: 'nonCriticalErrors', class: Google::Apis::CloudassetV1::IamPolicyAnalysisState, decorator: Google::Apis::CloudassetV1::IamPolicyAnalysisState::Representation
@@ -1925,7 +1810,6 @@ module Google
           property :expand_groups, as: 'expandGroups'
           property :expand_resources, as: 'expandResources'
           property :expand_roles, as: 'expandRoles'
-          property :include_deny_policy_analysis, as: 'includeDenyPolicyAnalysis'
           property :output_group_edges, as: 'outputGroupEdges'
           property :output_resource_edges, as: 'outputResourceEdges'
         end

data/lib/google/apis/cloudasset_v1/service.rb CHANGED Viewed

@@ -656,9 +656,6 @@ module Google
         #   IamPolicyAnalysisQuery.access_selector is specified, the access section of the
         #   result will be determined by the selector, and this flag is not allowed to set.
         #   Default is false.
-        # @param [Boolean] analysis_query_options_include_deny_policy_analysis
-        #   Optional. If true, the response includes deny policy analysis results, and you
-        #   can see which access tuples are denied. Default is false.
         # @param [Boolean] analysis_query_options_output_group_edges
         #   Optional. If true, the result will output the relevant membership
         #   relationships between groups and other groups, and between groups and
@@ -708,7 +705,7 @@ module Google
         # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
         # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
         # @raise [Google::Apis::AuthorizationError] Authorization is required
-        def analyze_iam_policy(scope, analysis_query_access_selector_permissions: nil, analysis_query_access_selector_roles: nil, analysis_query_condition_context_access_time: nil, analysis_query_identity_selector_identity: nil, analysis_query_options_analyze_service_account_impersonation: nil, analysis_query_options_expand_groups: nil, analysis_query_options_expand_resources: nil, analysis_query_options_expand_roles: nil, analysis_query_options_include_deny_policy_analysis: nil, analysis_query_options_output_group_edges: nil, analysis_query_options_output_resource_edges: nil, analysis_query_resource_selector_full_resource_name: nil, execution_timeout: nil, saved_analysis_query: nil, fields: nil, quota_user: nil, options: nil, &block)
+        def analyze_iam_policy(scope, analysis_query_access_selector_permissions: nil, analysis_query_access_selector_roles: nil, analysis_query_condition_context_access_time: nil, analysis_query_identity_selector_identity: nil, analysis_query_options_analyze_service_account_impersonation: nil, analysis_query_options_expand_groups: nil, analysis_query_options_expand_resources: nil, analysis_query_options_expand_roles: nil, analysis_query_options_output_group_edges: nil, analysis_query_options_output_resource_edges: nil, analysis_query_resource_selector_full_resource_name: nil, execution_timeout: nil, saved_analysis_query: nil, fields: nil, quota_user: nil, options: nil, &block)
           command = make_simple_command(:get, 'v1/{+scope}:analyzeIamPolicy', options)
           command.response_representation = Google::Apis::CloudassetV1::AnalyzeIamPolicyResponse::Representation
           command.response_class = Google::Apis::CloudassetV1::AnalyzeIamPolicyResponse
@@ -721,7 +718,6 @@ module Google
           command.query['analysisQuery.options.expandGroups'] = analysis_query_options_expand_groups unless analysis_query_options_expand_groups.nil?
           command.query['analysisQuery.options.expandResources'] = analysis_query_options_expand_resources unless analysis_query_options_expand_resources.nil?
           command.query['analysisQuery.options.expandRoles'] = analysis_query_options_expand_roles unless analysis_query_options_expand_roles.nil?
-          command.query['analysisQuery.options.includeDenyPolicyAnalysis'] = analysis_query_options_include_deny_policy_analysis unless analysis_query_options_include_deny_policy_analysis.nil?
           command.query['analysisQuery.options.outputGroupEdges'] = analysis_query_options_output_group_edges unless analysis_query_options_output_group_edges.nil?
           command.query['analysisQuery.options.outputResourceEdges'] = analysis_query_options_output_resource_edges unless analysis_query_options_output_resource_edges.nil?
           command.query['analysisQuery.resourceSelector.fullResourceName'] = analysis_query_resource_selector_full_resource_name unless analysis_query_resource_selector_full_resource_name.nil?
@@ -1346,19 +1342,19 @@ module Google
         #   Important" as a word in any of the searchable fields and are also located in
         #   the "us-west1" region or the "global" location.
         # @param [String] read_mask
-        #   Optional. A comma-separated list of fields specifying which fields to be
-        #   returned in ResourceSearchResult. Only '*' or combination of top level fields
-        #   can be specified. Field names of both snake_case and camelCase are supported.
-        #   Examples: `"*"`, `"name,location"`, `"name,versionedResources"`. The read_mask
-        #   paths must be valid field paths listed but not limited to (both snake_case and
-        #   camelCase are supported): * name * assetType * project * displayName *
-        #   description * location * tagKeys * tagValues * tagValueIds * labels *
-        #   networkTags * kmsKey (This field is deprecated. Please use the `kmsKeys` field
-        #   to retrieve Cloud KMS key information.) * kmsKeys * createTime * updateTime *
-        #   state * additionalAttributes * versionedResources If read_mask is not
-        #   specified, all fields except versionedResources will be returned. If only '*'
-        #   is specified, all fields including versionedResources will be returned. Any
-        #   invalid field path will trigger INVALID_ARGUMENT error.
+        #   Optional. A comma-separated list of fields that you want returned in the
+        #   results. The following fields are returned by default if not specified: * `
+        #   name` * `assetType` * `project` * `folders` * `organization` * `displayName` *
+        #   `description` * `location` * `labels` * `networkTags` * `kmsKeys` * `
+        #   createTime` * `updateTime` * `state` * `additionalAttributes` * `
+        #   parentFullResourceName` * `parentAssetType` Some fields of large size, such as
+        #   `versionedResources` and `attachedResources`, are not returned by default, but
+        #   you can specify them in the `read_mask` parameter if you want to include them.
+        #   If `"*"` is specified, all [available fields](https://cloud.google.com/asset-
+        #   inventory/docs/reference/rest/v1/TopLevel/searchAllResources#
+        #   resourcesearchresult) are returned. Examples: `"name,location"`, `"name,
+        #   versionedResources"`, `"*"`. Any invalid field path will trigger
+        #   INVALID_ARGUMENT error.
         # @param [String] fields
         #   Selector specifying which fields to include in a partial response.
         # @param [String] quota_user

metadata CHANGED Viewed

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: google-apis-cloudasset_v1
 version: !ruby/object:Gem::Version
-  version: 0.58.0
+  version: 0.59.0
 platform: ruby
 authors:
 - Google LLC
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2023-05-21 00:00:00.000000000 Z
+date: 2023-06-18 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: google-apis-core
@@ -58,7 +58,7 @@ licenses:
 metadata:
   bug_tracker_uri: https://github.com/googleapis/google-api-ruby-client/issues
   changelog_uri: https://github.com/googleapis/google-api-ruby-client/tree/main/generated/google-apis-cloudasset_v1/CHANGELOG.md
-  documentation_uri: https://googleapis.dev/ruby/google-apis-cloudasset_v1/v0.58.0
+  documentation_uri: https://googleapis.dev/ruby/google-apis-cloudasset_v1/v0.59.0
   source_code_uri: https://github.com/googleapis/google-api-ruby-client/tree/main/generated/google-apis-cloudasset_v1
 post_install_message:
 rdoc_options: []