google-apis-cloudasset_v1beta1 0.1.0 → 0.6.0
Sign up to get free protection for your applications and to get access to all the features.
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA256:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: 578e21568333d55a488c00764fa3b751e6079cc399c0a42c7df2ff5cc7d33cd9
|
4
|
+
data.tar.gz: d290095e1a88b414e8f567f2aa502a4e144d5dffbe3719fbdb0d34c799203c68
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: 816fe289c26ba3e0f0b8f9f1245f2f3739881ec6ccae02cd7ebb4fd53d1c7f7dc63fa0f8bb1a0019e9359fcfdf29396202918cdf785bc763e9ac302b7afbdcc9
|
7
|
+
data.tar.gz: 2b68f28bc122e34ab7085f9a3bc9fabc50b363a197b1ef4882df6fb537140c809dba74d8fce124cbffe8439a9de3bc082b7a1ba33f6b418bc3bde2c6cee0eb9f
|
data/CHANGELOG.md
CHANGED
@@ -1,5 +1,27 @@
|
|
1
1
|
# Release history for google-apis-cloudasset_v1beta1
|
2
2
|
|
3
|
+
### v0.6.0 (2021-05-19)
|
4
|
+
|
5
|
+
* Unspecified changes
|
6
|
+
|
7
|
+
### v0.5.0 (2021-04-22)
|
8
|
+
|
9
|
+
* Regenerated from discovery document revision 20210416
|
10
|
+
|
11
|
+
### v0.4.0 (2021-03-31)
|
12
|
+
|
13
|
+
* Regenerated from discovery document revision 20210326
|
14
|
+
|
15
|
+
### v0.3.0 (2021-03-09)
|
16
|
+
|
17
|
+
* Regenerated from discovery document revision 20210305
|
18
|
+
* Regenerated using generator version 0.2.0
|
19
|
+
|
20
|
+
### v0.2.0 (2021-03-04)
|
21
|
+
|
22
|
+
* Regenerated from discovery document revision 20210226
|
23
|
+
* Regenerated using generator version 0.1.2
|
24
|
+
|
3
25
|
### v0.1.0 (2021-01-07)
|
4
26
|
|
5
27
|
* Regenerated using generator version 0.1.1
|
@@ -29,7 +29,7 @@ module Google
|
|
29
29
|
# This is NOT the gem version.
|
30
30
|
VERSION = 'V1beta1'
|
31
31
|
|
32
|
-
#
|
32
|
+
# See, edit, configure, and delete your Google Cloud Platform data
|
33
33
|
AUTH_CLOUD_PLATFORM = 'https://www.googleapis.com/auth/cloud-platform'
|
34
34
|
end
|
35
35
|
end
|
@@ -22,6 +22,19 @@ module Google
|
|
22
22
|
module Apis
|
23
23
|
module CloudassetV1beta1
|
24
24
|
|
25
|
+
# A response message for AssetService.AnalyzeIamPolicyLongrunning.
|
26
|
+
class AnalyzeIamPolicyLongrunningResponse
|
27
|
+
include Google::Apis::Core::Hashable
|
28
|
+
|
29
|
+
def initialize(**args)
|
30
|
+
update!(**args)
|
31
|
+
end
|
32
|
+
|
33
|
+
# Update properties of this object
|
34
|
+
def update!(**args)
|
35
|
+
end
|
36
|
+
end
|
37
|
+
|
25
38
|
# An asset in Google Cloud. An asset can be any resource in the Google Cloud [
|
26
39
|
# resource hierarchy](https://cloud.google.com/resource-manager/docs/cloud-
|
27
40
|
# platform-resource-hierarchy), a resource outside the Google Cloud resource
|
@@ -430,6 +443,326 @@ module Google
|
|
430
443
|
end
|
431
444
|
end
|
432
445
|
|
446
|
+
# An asset in Google Cloud. An asset can be any resource in the Google Cloud [
|
447
|
+
# resource hierarchy](https://cloud.google.com/resource-manager/docs/cloud-
|
448
|
+
# platform-resource-hierarchy), a resource outside the Google Cloud resource
|
449
|
+
# hierarchy (such as Google Kubernetes Engine clusters and objects), or a policy
|
450
|
+
# (e.g. Cloud IAM policy). See [Supported asset types](https://cloud.google.com/
|
451
|
+
# asset-inventory/docs/supported-asset-types) for more information.
|
452
|
+
class GoogleCloudAssetV1p7beta1Asset
|
453
|
+
include Google::Apis::Core::Hashable
|
454
|
+
|
455
|
+
# An `AccessLevel` is a label that can be applied to requests to Google Cloud
|
456
|
+
# services, along with a list of requirements necessary for the label to be
|
457
|
+
# applied.
|
458
|
+
# Corresponds to the JSON property `accessLevel`
|
459
|
+
# @return [Google::Apis::CloudassetV1beta1::GoogleIdentityAccesscontextmanagerV1AccessLevel]
|
460
|
+
attr_accessor :access_level
|
461
|
+
|
462
|
+
# `AccessPolicy` is a container for `AccessLevels` (which define the necessary
|
463
|
+
# attributes to use Google Cloud services) and `ServicePerimeters` (which define
|
464
|
+
# regions of services able to freely pass data within a perimeter). An access
|
465
|
+
# policy is globally visible within an organization, and the restrictions it
|
466
|
+
# specifies apply to all projects within an organization.
|
467
|
+
# Corresponds to the JSON property `accessPolicy`
|
468
|
+
# @return [Google::Apis::CloudassetV1beta1::GoogleIdentityAccesscontextmanagerV1AccessPolicy]
|
469
|
+
attr_accessor :access_policy
|
470
|
+
|
471
|
+
# The ancestry path of an asset in Google Cloud [resource hierarchy](https://
|
472
|
+
# cloud.google.com/resource-manager/docs/cloud-platform-resource-hierarchy),
|
473
|
+
# represented as a list of relative resource names. An ancestry path starts with
|
474
|
+
# the closest ancestor in the hierarchy and ends at root. If the asset is a
|
475
|
+
# project, folder, or organization, the ancestry path starts from the asset
|
476
|
+
# itself. Example: `["projects/123456789", "folders/5432", "organizations/1234"]`
|
477
|
+
# Corresponds to the JSON property `ancestors`
|
478
|
+
# @return [Array<String>]
|
479
|
+
attr_accessor :ancestors
|
480
|
+
|
481
|
+
# The type of the asset. Example: `compute.googleapis.com/Disk` See [Supported
|
482
|
+
# asset types](https://cloud.google.com/asset-inventory/docs/supported-asset-
|
483
|
+
# types) for more information.
|
484
|
+
# Corresponds to the JSON property `assetType`
|
485
|
+
# @return [String]
|
486
|
+
attr_accessor :asset_type
|
487
|
+
|
488
|
+
# An Identity and Access Management (IAM) policy, which specifies access
|
489
|
+
# controls for Google Cloud resources. A `Policy` is a collection of `bindings`.
|
490
|
+
# A `binding` binds one or more `members` to a single `role`. Members can be
|
491
|
+
# user accounts, service accounts, Google groups, and domains (such as G Suite).
|
492
|
+
# A `role` is a named list of permissions; each `role` can be an IAM predefined
|
493
|
+
# role or a user-created custom role. For some types of Google Cloud resources,
|
494
|
+
# a `binding` can also specify a `condition`, which is a logical expression that
|
495
|
+
# allows access to a resource only if the expression evaluates to `true`. A
|
496
|
+
# condition can add constraints based on attributes of the request, the resource,
|
497
|
+
# or both. To learn which resources support conditions in their IAM policies,
|
498
|
+
# see the [IAM documentation](https://cloud.google.com/iam/help/conditions/
|
499
|
+
# resource-policies). **JSON example:** ` "bindings": [ ` "role": "roles/
|
500
|
+
# resourcemanager.organizationAdmin", "members": [ "user:mike@example.com", "
|
501
|
+
# group:admins@example.com", "domain:google.com", "serviceAccount:my-project-id@
|
502
|
+
# appspot.gserviceaccount.com" ] `, ` "role": "roles/resourcemanager.
|
503
|
+
# organizationViewer", "members": [ "user:eve@example.com" ], "condition": ` "
|
504
|
+
# title": "expirable access", "description": "Does not grant access after Sep
|
505
|
+
# 2020", "expression": "request.time < timestamp('2020-10-01T00:00:00.000Z')", `
|
506
|
+
# ` ], "etag": "BwWWja0YfJA=", "version": 3 ` **YAML example:** bindings: -
|
507
|
+
# members: - user:mike@example.com - group:admins@example.com - domain:google.
|
508
|
+
# com - serviceAccount:my-project-id@appspot.gserviceaccount.com role: roles/
|
509
|
+
# resourcemanager.organizationAdmin - members: - user:eve@example.com role:
|
510
|
+
# roles/resourcemanager.organizationViewer condition: title: expirable access
|
511
|
+
# description: Does not grant access after Sep 2020 expression: request.time <
|
512
|
+
# timestamp('2020-10-01T00:00:00.000Z') - etag: BwWWja0YfJA= - version: 3 For a
|
513
|
+
# description of IAM and its features, see the [IAM documentation](https://cloud.
|
514
|
+
# google.com/iam/docs/).
|
515
|
+
# Corresponds to the JSON property `iamPolicy`
|
516
|
+
# @return [Google::Apis::CloudassetV1beta1::Policy]
|
517
|
+
attr_accessor :iam_policy
|
518
|
+
|
519
|
+
# The full name of the asset. Example: `//compute.googleapis.com/projects/
|
520
|
+
# my_project_123/zones/zone1/instances/instance1` See [Resource names](https://
|
521
|
+
# cloud.google.com/apis/design/resource_names#full_resource_name) for more
|
522
|
+
# information.
|
523
|
+
# Corresponds to the JSON property `name`
|
524
|
+
# @return [String]
|
525
|
+
attr_accessor :name
|
526
|
+
|
527
|
+
# A representation of an [organization policy](https://cloud.google.com/resource-
|
528
|
+
# manager/docs/organization-policy/overview#organization_policy). There can be
|
529
|
+
# more than one organization policy with different constraints set on a given
|
530
|
+
# resource.
|
531
|
+
# Corresponds to the JSON property `orgPolicy`
|
532
|
+
# @return [Array<Google::Apis::CloudassetV1beta1::GoogleCloudOrgpolicyV1Policy>]
|
533
|
+
attr_accessor :org_policy
|
534
|
+
|
535
|
+
# The detailed related assets with the `relationship_type`.
|
536
|
+
# Corresponds to the JSON property `relatedAssets`
|
537
|
+
# @return [Google::Apis::CloudassetV1beta1::GoogleCloudAssetV1p7beta1RelatedAssets]
|
538
|
+
attr_accessor :related_assets
|
539
|
+
|
540
|
+
# A representation of a Google Cloud resource.
|
541
|
+
# Corresponds to the JSON property `resource`
|
542
|
+
# @return [Google::Apis::CloudassetV1beta1::GoogleCloudAssetV1p7beta1Resource]
|
543
|
+
attr_accessor :resource
|
544
|
+
|
545
|
+
# `ServicePerimeter` describes a set of Google Cloud resources which can freely
|
546
|
+
# import and export data amongst themselves, but not export outside of the `
|
547
|
+
# ServicePerimeter`. If a request with a source within this `ServicePerimeter`
|
548
|
+
# has a target outside of the `ServicePerimeter`, the request will be blocked.
|
549
|
+
# Otherwise the request is allowed. There are two types of Service Perimeter -
|
550
|
+
# Regular and Bridge. Regular Service Perimeters cannot overlap, a single Google
|
551
|
+
# Cloud project can only belong to a single regular Service Perimeter. Service
|
552
|
+
# Perimeter Bridges can contain only Google Cloud projects as members, a single
|
553
|
+
# Google Cloud project may belong to multiple Service Perimeter Bridges.
|
554
|
+
# Corresponds to the JSON property `servicePerimeter`
|
555
|
+
# @return [Google::Apis::CloudassetV1beta1::GoogleIdentityAccesscontextmanagerV1ServicePerimeter]
|
556
|
+
attr_accessor :service_perimeter
|
557
|
+
|
558
|
+
# The last update timestamp of an asset. update_time is updated when create/
|
559
|
+
# update/delete operation is performed.
|
560
|
+
# Corresponds to the JSON property `updateTime`
|
561
|
+
# @return [String]
|
562
|
+
attr_accessor :update_time
|
563
|
+
|
564
|
+
def initialize(**args)
|
565
|
+
update!(**args)
|
566
|
+
end
|
567
|
+
|
568
|
+
# Update properties of this object
|
569
|
+
def update!(**args)
|
570
|
+
@access_level = args[:access_level] if args.key?(:access_level)
|
571
|
+
@access_policy = args[:access_policy] if args.key?(:access_policy)
|
572
|
+
@ancestors = args[:ancestors] if args.key?(:ancestors)
|
573
|
+
@asset_type = args[:asset_type] if args.key?(:asset_type)
|
574
|
+
@iam_policy = args[:iam_policy] if args.key?(:iam_policy)
|
575
|
+
@name = args[:name] if args.key?(:name)
|
576
|
+
@org_policy = args[:org_policy] if args.key?(:org_policy)
|
577
|
+
@related_assets = args[:related_assets] if args.key?(:related_assets)
|
578
|
+
@resource = args[:resource] if args.key?(:resource)
|
579
|
+
@service_perimeter = args[:service_perimeter] if args.key?(:service_perimeter)
|
580
|
+
@update_time = args[:update_time] if args.key?(:update_time)
|
581
|
+
end
|
582
|
+
end
|
583
|
+
|
584
|
+
# An asset identify in Google Cloud which contains its name, type and ancestors.
|
585
|
+
# An asset can be any resource in the Google Cloud [resource hierarchy](https://
|
586
|
+
# cloud.google.com/resource-manager/docs/cloud-platform-resource-hierarchy), a
|
587
|
+
# resource outside the Google Cloud resource hierarchy (such as Google
|
588
|
+
# Kubernetes Engine clusters and objects), or a policy (e.g. Cloud IAM policy).
|
589
|
+
# See [Supported asset types](https://cloud.google.com/asset-inventory/docs/
|
590
|
+
# supported-asset-types) for more information.
|
591
|
+
class GoogleCloudAssetV1p7beta1RelatedAsset
|
592
|
+
include Google::Apis::Core::Hashable
|
593
|
+
|
594
|
+
# The ancestors of an asset in Google Cloud [resource hierarchy](https://cloud.
|
595
|
+
# google.com/resource-manager/docs/cloud-platform-resource-hierarchy),
|
596
|
+
# represented as a list of relative resource names. An ancestry path starts with
|
597
|
+
# the closest ancestor in the hierarchy and ends at root. Example: `["projects/
|
598
|
+
# 123456789", "folders/5432", "organizations/1234"]`
|
599
|
+
# Corresponds to the JSON property `ancestors`
|
600
|
+
# @return [Array<String>]
|
601
|
+
attr_accessor :ancestors
|
602
|
+
|
603
|
+
# The full name of the asset. Example: `//compute.googleapis.com/projects/
|
604
|
+
# my_project_123/zones/zone1/instances/instance1` See [Resource names](https://
|
605
|
+
# cloud.google.com/apis/design/resource_names#full_resource_name) for more
|
606
|
+
# information.
|
607
|
+
# Corresponds to the JSON property `asset`
|
608
|
+
# @return [String]
|
609
|
+
attr_accessor :asset
|
610
|
+
|
611
|
+
# The type of the asset. Example: `compute.googleapis.com/Disk` See [Supported
|
612
|
+
# asset types](https://cloud.google.com/asset-inventory/docs/supported-asset-
|
613
|
+
# types) for more information.
|
614
|
+
# Corresponds to the JSON property `assetType`
|
615
|
+
# @return [String]
|
616
|
+
attr_accessor :asset_type
|
617
|
+
|
618
|
+
def initialize(**args)
|
619
|
+
update!(**args)
|
620
|
+
end
|
621
|
+
|
622
|
+
# Update properties of this object
|
623
|
+
def update!(**args)
|
624
|
+
@ancestors = args[:ancestors] if args.key?(:ancestors)
|
625
|
+
@asset = args[:asset] if args.key?(:asset)
|
626
|
+
@asset_type = args[:asset_type] if args.key?(:asset_type)
|
627
|
+
end
|
628
|
+
end
|
629
|
+
|
630
|
+
# The detailed related assets with the `relationship_type`.
|
631
|
+
class GoogleCloudAssetV1p7beta1RelatedAssets
|
632
|
+
include Google::Apis::Core::Hashable
|
633
|
+
|
634
|
+
# The peer resources of the relationship.
|
635
|
+
# Corresponds to the JSON property `assets`
|
636
|
+
# @return [Array<Google::Apis::CloudassetV1beta1::GoogleCloudAssetV1p7beta1RelatedAsset>]
|
637
|
+
attr_accessor :assets
|
638
|
+
|
639
|
+
# The relationship attributes which include `type`, `source_resource_type`, `
|
640
|
+
# target_resource_type` and `action`.
|
641
|
+
# Corresponds to the JSON property `relationshipAttributes`
|
642
|
+
# @return [Google::Apis::CloudassetV1beta1::GoogleCloudAssetV1p7beta1RelationshipAttributes]
|
643
|
+
attr_accessor :relationship_attributes
|
644
|
+
|
645
|
+
def initialize(**args)
|
646
|
+
update!(**args)
|
647
|
+
end
|
648
|
+
|
649
|
+
# Update properties of this object
|
650
|
+
def update!(**args)
|
651
|
+
@assets = args[:assets] if args.key?(:assets)
|
652
|
+
@relationship_attributes = args[:relationship_attributes] if args.key?(:relationship_attributes)
|
653
|
+
end
|
654
|
+
end
|
655
|
+
|
656
|
+
# The relationship attributes which include `type`, `source_resource_type`, `
|
657
|
+
# target_resource_type` and `action`.
|
658
|
+
class GoogleCloudAssetV1p7beta1RelationshipAttributes
|
659
|
+
include Google::Apis::Core::Hashable
|
660
|
+
|
661
|
+
# The detail of the relationship, e.g. `contains`, `attaches`
|
662
|
+
# Corresponds to the JSON property `action`
|
663
|
+
# @return [String]
|
664
|
+
attr_accessor :action
|
665
|
+
|
666
|
+
# The source asset type. Example: `compute.googleapis.com/Instance`
|
667
|
+
# Corresponds to the JSON property `sourceResourceType`
|
668
|
+
# @return [String]
|
669
|
+
attr_accessor :source_resource_type
|
670
|
+
|
671
|
+
# The target asset type. Example: `compute.googleapis.com/Disk`
|
672
|
+
# Corresponds to the JSON property `targetResourceType`
|
673
|
+
# @return [String]
|
674
|
+
attr_accessor :target_resource_type
|
675
|
+
|
676
|
+
# The unique identifier of the relationship type. Example: `
|
677
|
+
# INSTANCE_TO_INSTANCEGROUP`
|
678
|
+
# Corresponds to the JSON property `type`
|
679
|
+
# @return [String]
|
680
|
+
attr_accessor :type
|
681
|
+
|
682
|
+
def initialize(**args)
|
683
|
+
update!(**args)
|
684
|
+
end
|
685
|
+
|
686
|
+
# Update properties of this object
|
687
|
+
def update!(**args)
|
688
|
+
@action = args[:action] if args.key?(:action)
|
689
|
+
@source_resource_type = args[:source_resource_type] if args.key?(:source_resource_type)
|
690
|
+
@target_resource_type = args[:target_resource_type] if args.key?(:target_resource_type)
|
691
|
+
@type = args[:type] if args.key?(:type)
|
692
|
+
end
|
693
|
+
end
|
694
|
+
|
695
|
+
# A representation of a Google Cloud resource.
|
696
|
+
class GoogleCloudAssetV1p7beta1Resource
|
697
|
+
include Google::Apis::Core::Hashable
|
698
|
+
|
699
|
+
# The content of the resource, in which some sensitive fields are removed and
|
700
|
+
# may not be present.
|
701
|
+
# Corresponds to the JSON property `data`
|
702
|
+
# @return [Hash<String,Object>]
|
703
|
+
attr_accessor :data
|
704
|
+
|
705
|
+
# The URL of the discovery document containing the resource's JSON schema.
|
706
|
+
# Example: `https://www.googleapis.com/discovery/v1/apis/compute/v1/rest` This
|
707
|
+
# value is unspecified for resources that do not have an API based on a
|
708
|
+
# discovery document, such as Cloud Bigtable.
|
709
|
+
# Corresponds to the JSON property `discoveryDocumentUri`
|
710
|
+
# @return [String]
|
711
|
+
attr_accessor :discovery_document_uri
|
712
|
+
|
713
|
+
# The JSON schema name listed in the discovery document. Example: `Project` This
|
714
|
+
# value is unspecified for resources that do not have an API based on a
|
715
|
+
# discovery document, such as Cloud Bigtable.
|
716
|
+
# Corresponds to the JSON property `discoveryName`
|
717
|
+
# @return [String]
|
718
|
+
attr_accessor :discovery_name
|
719
|
+
|
720
|
+
# The location of the resource in Google Cloud, such as its zone and region. For
|
721
|
+
# more information, see https://cloud.google.com/about/locations/.
|
722
|
+
# Corresponds to the JSON property `location`
|
723
|
+
# @return [String]
|
724
|
+
attr_accessor :location
|
725
|
+
|
726
|
+
# The full name of the immediate parent of this resource. See [Resource Names](
|
727
|
+
# https://cloud.google.com/apis/design/resource_names#full_resource_name) for
|
728
|
+
# more information. For Google Cloud assets, this value is the parent resource
|
729
|
+
# defined in the [Cloud IAM policy hierarchy](https://cloud.google.com/iam/docs/
|
730
|
+
# overview#policy_hierarchy). Example: `//cloudresourcemanager.googleapis.com/
|
731
|
+
# projects/my_project_123` For third-party assets, this field may be set
|
732
|
+
# differently.
|
733
|
+
# Corresponds to the JSON property `parent`
|
734
|
+
# @return [String]
|
735
|
+
attr_accessor :parent
|
736
|
+
|
737
|
+
# The REST URL for accessing the resource. An HTTP `GET` request using this URL
|
738
|
+
# returns the resource itself. Example: `https://cloudresourcemanager.googleapis.
|
739
|
+
# com/v1/projects/my-project-123` This value is unspecified for resources
|
740
|
+
# without a REST API.
|
741
|
+
# Corresponds to the JSON property `resourceUrl`
|
742
|
+
# @return [String]
|
743
|
+
attr_accessor :resource_url
|
744
|
+
|
745
|
+
# The API version. Example: `v1`
|
746
|
+
# Corresponds to the JSON property `version`
|
747
|
+
# @return [String]
|
748
|
+
attr_accessor :version
|
749
|
+
|
750
|
+
def initialize(**args)
|
751
|
+
update!(**args)
|
752
|
+
end
|
753
|
+
|
754
|
+
# Update properties of this object
|
755
|
+
def update!(**args)
|
756
|
+
@data = args[:data] if args.key?(:data)
|
757
|
+
@discovery_document_uri = args[:discovery_document_uri] if args.key?(:discovery_document_uri)
|
758
|
+
@discovery_name = args[:discovery_name] if args.key?(:discovery_name)
|
759
|
+
@location = args[:location] if args.key?(:location)
|
760
|
+
@parent = args[:parent] if args.key?(:parent)
|
761
|
+
@resource_url = args[:resource_url] if args.key?(:resource_url)
|
762
|
+
@version = args[:version] if args.key?(:version)
|
763
|
+
end
|
764
|
+
end
|
765
|
+
|
433
766
|
# Used in `policy_type` to specify how `boolean_policy` will behave at this
|
434
767
|
# resource.
|
435
768
|
class GoogleCloudOrgpolicyV1BooleanPolicy
|
@@ -1035,9 +1368,9 @@ module Google
|
|
1035
1368
|
|
1036
1369
|
# Defines the conditions under which an EgressPolicy matches a request.
|
1037
1370
|
# Conditions based on information about the source of the request. Note that if
|
1038
|
-
# the destination of the request is protected by a ServicePerimeter, then
|
1039
|
-
# ServicePerimeter must have an IngressPolicy which allows access in order
|
1040
|
-
# this request to succeed.
|
1371
|
+
# the destination of the request is also protected by a ServicePerimeter, then
|
1372
|
+
# that ServicePerimeter must have an IngressPolicy which allows access in order
|
1373
|
+
# for this request to succeed.
|
1041
1374
|
class GoogleIdentityAccesscontextmanagerV1EgressFrom
|
1042
1375
|
include Google::Apis::Core::Hashable
|
1043
1376
|
|
@@ -1083,9 +1416,9 @@ module Google
|
|
1083
1416
|
|
1084
1417
|
# Defines the conditions under which an EgressPolicy matches a request.
|
1085
1418
|
# Conditions based on information about the source of the request. Note that if
|
1086
|
-
# the destination of the request is protected by a ServicePerimeter, then
|
1087
|
-
# ServicePerimeter must have an IngressPolicy which allows access in order
|
1088
|
-
# this request to succeed.
|
1419
|
+
# the destination of the request is also protected by a ServicePerimeter, then
|
1420
|
+
# that ServicePerimeter must have an IngressPolicy which allows access in order
|
1421
|
+
# for this request to succeed.
|
1089
1422
|
# Corresponds to the JSON property `egressFrom`
|
1090
1423
|
# @return [Google::Apis::CloudassetV1beta1::GoogleIdentityAccesscontextmanagerV1EgressFrom]
|
1091
1424
|
attr_accessor :egress_from
|
@@ -1093,8 +1426,10 @@ module Google
|
|
1093
1426
|
# Defines the conditions under which an EgressPolicy matches a request.
|
1094
1427
|
# Conditions are based on information about the ApiOperation intended to be
|
1095
1428
|
# performed on the `resources` specified. Note that if the destination of the
|
1096
|
-
# request is protected by a ServicePerimeter, then that ServicePerimeter
|
1097
|
-
# have an IngressPolicy which allows access in order for this request to
|
1429
|
+
# request is also protected by a ServicePerimeter, then that ServicePerimeter
|
1430
|
+
# must have an IngressPolicy which allows access in order for this request to
|
1431
|
+
# succeed. The request must match `operations` AND `resources` fields in order
|
1432
|
+
# to be allowed egress out of the perimeter.
|
1098
1433
|
# Corresponds to the JSON property `egressTo`
|
1099
1434
|
# @return [Google::Apis::CloudassetV1beta1::GoogleIdentityAccesscontextmanagerV1EgressTo]
|
1100
1435
|
attr_accessor :egress_to
|
@@ -1113,21 +1448,25 @@ module Google
|
|
1113
1448
|
# Defines the conditions under which an EgressPolicy matches a request.
|
1114
1449
|
# Conditions are based on information about the ApiOperation intended to be
|
1115
1450
|
# performed on the `resources` specified. Note that if the destination of the
|
1116
|
-
# request is protected by a ServicePerimeter, then that ServicePerimeter
|
1117
|
-
# have an IngressPolicy which allows access in order for this request to
|
1451
|
+
# request is also protected by a ServicePerimeter, then that ServicePerimeter
|
1452
|
+
# must have an IngressPolicy which allows access in order for this request to
|
1453
|
+
# succeed. The request must match `operations` AND `resources` fields in order
|
1454
|
+
# to be allowed egress out of the perimeter.
|
1118
1455
|
class GoogleIdentityAccesscontextmanagerV1EgressTo
|
1119
1456
|
include Google::Apis::Core::Hashable
|
1120
1457
|
|
1121
|
-
# A list of ApiOperations
|
1122
|
-
# it
|
1458
|
+
# A list of ApiOperations allowed to be performed by the sources specified in
|
1459
|
+
# the corresponding EgressFrom. A request matches if it uses an operation/
|
1460
|
+
# service in this list.
|
1123
1461
|
# Corresponds to the JSON property `operations`
|
1124
1462
|
# @return [Array<Google::Apis::CloudassetV1beta1::GoogleIdentityAccesscontextmanagerV1ApiOperation>]
|
1125
1463
|
attr_accessor :operations
|
1126
1464
|
|
1127
|
-
# A list of resources, currently only projects in the form `projects/`, that
|
1128
|
-
#
|
1129
|
-
#
|
1130
|
-
#
|
1465
|
+
# A list of resources, currently only projects in the form `projects/`, that are
|
1466
|
+
# allowed to be accessed by sources defined in the corresponding EgressFrom. A
|
1467
|
+
# request matches if it contains a resource in this list. If `*` is specified
|
1468
|
+
# for `resources`, then this EgressTo rule will authorize access to all
|
1469
|
+
# resources outside the perimeter.
|
1131
1470
|
# Corresponds to the JSON property `resources`
|
1132
1471
|
# @return [Array<String>]
|
1133
1472
|
attr_accessor :resources
|
@@ -1144,7 +1483,9 @@ module Google
|
|
1144
1483
|
end
|
1145
1484
|
|
1146
1485
|
# Defines the conditions under which an IngressPolicy matches a request.
|
1147
|
-
# Conditions are based on information about the source of the request.
|
1486
|
+
# Conditions are based on information about the source of the request. The
|
1487
|
+
# request must satisfy what is defined in `sources` AND identity related fields
|
1488
|
+
# in order to match.
|
1148
1489
|
class GoogleIdentityAccesscontextmanagerV1IngressFrom
|
1149
1490
|
include Google::Apis::Core::Hashable
|
1150
1491
|
|
@@ -1193,14 +1534,17 @@ module Google
|
|
1193
1534
|
include Google::Apis::Core::Hashable
|
1194
1535
|
|
1195
1536
|
# Defines the conditions under which an IngressPolicy matches a request.
|
1196
|
-
# Conditions are based on information about the source of the request.
|
1537
|
+
# Conditions are based on information about the source of the request. The
|
1538
|
+
# request must satisfy what is defined in `sources` AND identity related fields
|
1539
|
+
# in order to match.
|
1197
1540
|
# Corresponds to the JSON property `ingressFrom`
|
1198
1541
|
# @return [Google::Apis::CloudassetV1beta1::GoogleIdentityAccesscontextmanagerV1IngressFrom]
|
1199
1542
|
attr_accessor :ingress_from
|
1200
1543
|
|
1201
1544
|
# Defines the conditions under which an IngressPolicy matches a request.
|
1202
1545
|
# Conditions are based on information about the ApiOperation intended to be
|
1203
|
-
# performed on the
|
1546
|
+
# performed on the target resource of the request. The request must satisfy what
|
1547
|
+
# is defined in `operations` AND `resources` in order to match.
|
1204
1548
|
# Corresponds to the JSON property `ingressTo`
|
1205
1549
|
# @return [Google::Apis::CloudassetV1beta1::GoogleIdentityAccesscontextmanagerV1IngressTo]
|
1206
1550
|
attr_accessor :ingress_to
|
@@ -1226,7 +1570,8 @@ module Google
|
|
1226
1570
|
# cause an error. If no AccessLevel names are listed, resources within the
|
1227
1571
|
# perimeter can only be accessed via Google Cloud calls with request origins
|
1228
1572
|
# within the perimeter. Example: `accessPolicies/MY_POLICY/accessLevels/MY_LEVEL`
|
1229
|
-
# . If `*` is specified
|
1573
|
+
# . If a single `*` is specified for `access_level`, then all IngressSources
|
1574
|
+
# will be allowed.
|
1230
1575
|
# Corresponds to the JSON property `accessLevel`
|
1231
1576
|
# @return [String]
|
1232
1577
|
attr_accessor :access_level
|
@@ -1254,22 +1599,21 @@ module Google
|
|
1254
1599
|
|
1255
1600
|
# Defines the conditions under which an IngressPolicy matches a request.
|
1256
1601
|
# Conditions are based on information about the ApiOperation intended to be
|
1257
|
-
# performed on the
|
1602
|
+
# performed on the target resource of the request. The request must satisfy what
|
1603
|
+
# is defined in `operations` AND `resources` in order to match.
|
1258
1604
|
class GoogleIdentityAccesscontextmanagerV1IngressTo
|
1259
1605
|
include Google::Apis::Core::Hashable
|
1260
1606
|
|
1261
|
-
# A list of ApiOperations the sources specified in
|
1262
|
-
#
|
1607
|
+
# A list of ApiOperations allowed to be performed by the sources specified in
|
1608
|
+
# corresponding IngressFrom in this ServicePerimeter.
|
1263
1609
|
# Corresponds to the JSON property `operations`
|
1264
1610
|
# @return [Array<Google::Apis::CloudassetV1beta1::GoogleIdentityAccesscontextmanagerV1ApiOperation>]
|
1265
1611
|
attr_accessor :operations
|
1266
1612
|
|
1267
1613
|
# A list of resources, currently only projects in the form `projects/`,
|
1268
1614
|
# protected by this ServicePerimeter that are allowed to be accessed by sources
|
1269
|
-
# defined in the corresponding IngressFrom.
|
1270
|
-
#
|
1271
|
-
# rule will authorize access to all resources inside the perimeter, provided
|
1272
|
-
# that the request also matches the `operations` field.
|
1615
|
+
# defined in the corresponding IngressFrom. If a single `*` is specified, then
|
1616
|
+
# access to all resources inside the perimeter are allowed.
|
1273
1617
|
# Corresponds to the JSON property `resources`
|
1274
1618
|
# @return [Array<String>]
|
1275
1619
|
attr_accessor :resources
|
@@ -16,13 +16,13 @@ module Google
|
|
16
16
|
module Apis
|
17
17
|
module CloudassetV1beta1
|
18
18
|
# Version of the google-apis-cloudasset_v1beta1 gem
|
19
|
-
GEM_VERSION = "0.
|
19
|
+
GEM_VERSION = "0.6.0"
|
20
20
|
|
21
21
|
# Version of the code generator used to generate this client
|
22
|
-
GENERATOR_VERSION = "0.
|
22
|
+
GENERATOR_VERSION = "0.2.0"
|
23
23
|
|
24
24
|
# Revision of the discovery document this client was generated from
|
25
|
-
REVISION = "
|
25
|
+
REVISION = "20210416"
|
26
26
|
end
|
27
27
|
end
|
28
28
|
end
|
@@ -22,6 +22,12 @@ module Google
|
|
22
22
|
module Apis
|
23
23
|
module CloudassetV1beta1
|
24
24
|
|
25
|
+
class AnalyzeIamPolicyLongrunningResponse
|
26
|
+
class Representation < Google::Apis::Core::JsonRepresentation; end
|
27
|
+
|
28
|
+
include Google::Apis::Core::JsonObjectSupport
|
29
|
+
end
|
30
|
+
|
25
31
|
class Asset
|
26
32
|
class Representation < Google::Apis::Core::JsonRepresentation; end
|
27
33
|
|
@@ -70,6 +76,36 @@ module Google
|
|
70
76
|
include Google::Apis::Core::JsonObjectSupport
|
71
77
|
end
|
72
78
|
|
79
|
+
class GoogleCloudAssetV1p7beta1Asset
|
80
|
+
class Representation < Google::Apis::Core::JsonRepresentation; end
|
81
|
+
|
82
|
+
include Google::Apis::Core::JsonObjectSupport
|
83
|
+
end
|
84
|
+
|
85
|
+
class GoogleCloudAssetV1p7beta1RelatedAsset
|
86
|
+
class Representation < Google::Apis::Core::JsonRepresentation; end
|
87
|
+
|
88
|
+
include Google::Apis::Core::JsonObjectSupport
|
89
|
+
end
|
90
|
+
|
91
|
+
class GoogleCloudAssetV1p7beta1RelatedAssets
|
92
|
+
class Representation < Google::Apis::Core::JsonRepresentation; end
|
93
|
+
|
94
|
+
include Google::Apis::Core::JsonObjectSupport
|
95
|
+
end
|
96
|
+
|
97
|
+
class GoogleCloudAssetV1p7beta1RelationshipAttributes
|
98
|
+
class Representation < Google::Apis::Core::JsonRepresentation; end
|
99
|
+
|
100
|
+
include Google::Apis::Core::JsonObjectSupport
|
101
|
+
end
|
102
|
+
|
103
|
+
class GoogleCloudAssetV1p7beta1Resource
|
104
|
+
class Representation < Google::Apis::Core::JsonRepresentation; end
|
105
|
+
|
106
|
+
include Google::Apis::Core::JsonObjectSupport
|
107
|
+
end
|
108
|
+
|
73
109
|
class GoogleCloudOrgpolicyV1BooleanPolicy
|
74
110
|
class Representation < Google::Apis::Core::JsonRepresentation; end
|
75
111
|
|
@@ -250,6 +286,12 @@ module Google
|
|
250
286
|
include Google::Apis::Core::JsonObjectSupport
|
251
287
|
end
|
252
288
|
|
289
|
+
class AnalyzeIamPolicyLongrunningResponse
|
290
|
+
# @private
|
291
|
+
class Representation < Google::Apis::Core::JsonRepresentation
|
292
|
+
end
|
293
|
+
end
|
294
|
+
|
253
295
|
class Asset
|
254
296
|
# @private
|
255
297
|
class Representation < Google::Apis::Core::JsonRepresentation
|
@@ -334,6 +376,72 @@ module Google
|
|
334
376
|
end
|
335
377
|
end
|
336
378
|
|
379
|
+
class GoogleCloudAssetV1p7beta1Asset
|
380
|
+
# @private
|
381
|
+
class Representation < Google::Apis::Core::JsonRepresentation
|
382
|
+
property :access_level, as: 'accessLevel', class: Google::Apis::CloudassetV1beta1::GoogleIdentityAccesscontextmanagerV1AccessLevel, decorator: Google::Apis::CloudassetV1beta1::GoogleIdentityAccesscontextmanagerV1AccessLevel::Representation
|
383
|
+
|
384
|
+
property :access_policy, as: 'accessPolicy', class: Google::Apis::CloudassetV1beta1::GoogleIdentityAccesscontextmanagerV1AccessPolicy, decorator: Google::Apis::CloudassetV1beta1::GoogleIdentityAccesscontextmanagerV1AccessPolicy::Representation
|
385
|
+
|
386
|
+
collection :ancestors, as: 'ancestors'
|
387
|
+
property :asset_type, as: 'assetType'
|
388
|
+
property :iam_policy, as: 'iamPolicy', class: Google::Apis::CloudassetV1beta1::Policy, decorator: Google::Apis::CloudassetV1beta1::Policy::Representation
|
389
|
+
|
390
|
+
property :name, as: 'name'
|
391
|
+
collection :org_policy, as: 'orgPolicy', class: Google::Apis::CloudassetV1beta1::GoogleCloudOrgpolicyV1Policy, decorator: Google::Apis::CloudassetV1beta1::GoogleCloudOrgpolicyV1Policy::Representation
|
392
|
+
|
393
|
+
property :related_assets, as: 'relatedAssets', class: Google::Apis::CloudassetV1beta1::GoogleCloudAssetV1p7beta1RelatedAssets, decorator: Google::Apis::CloudassetV1beta1::GoogleCloudAssetV1p7beta1RelatedAssets::Representation
|
394
|
+
|
395
|
+
property :resource, as: 'resource', class: Google::Apis::CloudassetV1beta1::GoogleCloudAssetV1p7beta1Resource, decorator: Google::Apis::CloudassetV1beta1::GoogleCloudAssetV1p7beta1Resource::Representation
|
396
|
+
|
397
|
+
property :service_perimeter, as: 'servicePerimeter', class: Google::Apis::CloudassetV1beta1::GoogleIdentityAccesscontextmanagerV1ServicePerimeter, decorator: Google::Apis::CloudassetV1beta1::GoogleIdentityAccesscontextmanagerV1ServicePerimeter::Representation
|
398
|
+
|
399
|
+
property :update_time, as: 'updateTime'
|
400
|
+
end
|
401
|
+
end
|
402
|
+
|
403
|
+
class GoogleCloudAssetV1p7beta1RelatedAsset
|
404
|
+
# @private
|
405
|
+
class Representation < Google::Apis::Core::JsonRepresentation
|
406
|
+
collection :ancestors, as: 'ancestors'
|
407
|
+
property :asset, as: 'asset'
|
408
|
+
property :asset_type, as: 'assetType'
|
409
|
+
end
|
410
|
+
end
|
411
|
+
|
412
|
+
class GoogleCloudAssetV1p7beta1RelatedAssets
|
413
|
+
# @private
|
414
|
+
class Representation < Google::Apis::Core::JsonRepresentation
|
415
|
+
collection :assets, as: 'assets', class: Google::Apis::CloudassetV1beta1::GoogleCloudAssetV1p7beta1RelatedAsset, decorator: Google::Apis::CloudassetV1beta1::GoogleCloudAssetV1p7beta1RelatedAsset::Representation
|
416
|
+
|
417
|
+
property :relationship_attributes, as: 'relationshipAttributes', class: Google::Apis::CloudassetV1beta1::GoogleCloudAssetV1p7beta1RelationshipAttributes, decorator: Google::Apis::CloudassetV1beta1::GoogleCloudAssetV1p7beta1RelationshipAttributes::Representation
|
418
|
+
|
419
|
+
end
|
420
|
+
end
|
421
|
+
|
422
|
+
class GoogleCloudAssetV1p7beta1RelationshipAttributes
|
423
|
+
# @private
|
424
|
+
class Representation < Google::Apis::Core::JsonRepresentation
|
425
|
+
property :action, as: 'action'
|
426
|
+
property :source_resource_type, as: 'sourceResourceType'
|
427
|
+
property :target_resource_type, as: 'targetResourceType'
|
428
|
+
property :type, as: 'type'
|
429
|
+
end
|
430
|
+
end
|
431
|
+
|
432
|
+
class GoogleCloudAssetV1p7beta1Resource
|
433
|
+
# @private
|
434
|
+
class Representation < Google::Apis::Core::JsonRepresentation
|
435
|
+
hash :data, as: 'data'
|
436
|
+
property :discovery_document_uri, as: 'discoveryDocumentUri'
|
437
|
+
property :discovery_name, as: 'discoveryName'
|
438
|
+
property :location, as: 'location'
|
439
|
+
property :parent, as: 'parent'
|
440
|
+
property :resource_url, as: 'resourceUrl'
|
441
|
+
property :version, as: 'version'
|
442
|
+
end
|
443
|
+
end
|
444
|
+
|
337
445
|
class GoogleCloudOrgpolicyV1BooleanPolicy
|
338
446
|
# @private
|
339
447
|
class Representation < Google::Apis::Core::JsonRepresentation
|
metadata
CHANGED
@@ -1,14 +1,14 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: google-apis-cloudasset_v1beta1
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 0.
|
4
|
+
version: 0.6.0
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- Google LLC
|
8
8
|
autorequire:
|
9
9
|
bindir: bin
|
10
10
|
cert_chain: []
|
11
|
-
date: 2021-
|
11
|
+
date: 2021-05-24 00:00:00.000000000 Z
|
12
12
|
dependencies:
|
13
13
|
- !ruby/object:Gem::Dependency
|
14
14
|
name: google-apis-core
|
@@ -52,7 +52,7 @@ licenses:
|
|
52
52
|
metadata:
|
53
53
|
bug_tracker_uri: https://github.com/googleapis/google-api-ruby-client/issues
|
54
54
|
changelog_uri: https://github.com/googleapis/google-api-ruby-client/tree/master/generated/google-apis-cloudasset_v1beta1/CHANGELOG.md
|
55
|
-
documentation_uri: https://googleapis.dev/ruby/google-apis-cloudasset_v1beta1/v0.
|
55
|
+
documentation_uri: https://googleapis.dev/ruby/google-apis-cloudasset_v1beta1/v0.6.0
|
56
56
|
source_code_uri: https://github.com/googleapis/google-api-ruby-client/tree/master/generated/google-apis-cloudasset_v1beta1
|
57
57
|
post_install_message:
|
58
58
|
rdoc_options: []
|
@@ -62,14 +62,14 @@ required_ruby_version: !ruby/object:Gem::Requirement
|
|
62
62
|
requirements:
|
63
63
|
- - ">="
|
64
64
|
- !ruby/object:Gem::Version
|
65
|
-
version: '2.
|
65
|
+
version: '2.5'
|
66
66
|
required_rubygems_version: !ruby/object:Gem::Requirement
|
67
67
|
requirements:
|
68
68
|
- - ">="
|
69
69
|
- !ruby/object:Gem::Version
|
70
70
|
version: '0'
|
71
71
|
requirements: []
|
72
|
-
rubygems_version: 3.
|
72
|
+
rubygems_version: 3.2.17
|
73
73
|
signing_key:
|
74
74
|
specification_version: 4
|
75
75
|
summary: Simple REST client for Cloud Asset API V1beta1
|