google-apis-compute_beta 0.53.0 → 0.55.0

data/lib/google/apis/compute_beta/classes.rb

@@ -22,6 +22,52 @@ module Google
   module Apis
     module ComputeBeta
       
+      # Contains the configurations necessary to generate a signature for access to
+      # private storage buckets that support Signature Version 4 for authentication.
+      # The service name for generating the authentication header will always default
+      # to 's3'.
+      class Awsv4Signature
+        include Google::Apis::Core::Hashable
+      
+        # The access key used for s3 bucket authentication. Required for updating or
+        # creating a backend that uses AWS v4 signature authentication, but will not be
+        # returned as part of the configuration when queried with a REST API GET request.
+        # @InputOnly
+        # Corresponds to the JSON property `accessKey`
+        # @return [String]
+        attr_accessor :access_key
+      
+        # The identifier of an access key used for s3 bucket authentication.
+        # Corresponds to the JSON property `accessKeyId`
+        # @return [String]
+        attr_accessor :access_key_id
+      
+        # The optional version identifier for the access key. You can use this to keep
+        # track of different iterations of your access key.
+        # Corresponds to the JSON property `accessKeyVersion`
+        # @return [String]
+        attr_accessor :access_key_version
+      
+        # The name of the cloud region of your origin. This is a free-form field with
+        # the name of the region your cloud uses to host your origin. For example, "us-
+        # east-1" for AWS or "us-ashburn-1" for OCI.
+        # Corresponds to the JSON property `originRegion`
+        # @return [String]
+        attr_accessor :origin_region
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @access_key = args[:access_key] if args.key?(:access_key)
+          @access_key_id = args[:access_key_id] if args.key?(:access_key_id)
+          @access_key_version = args[:access_key_version] if args.key?(:access_key_version)
+          @origin_region = args[:origin_region] if args.key?(:origin_region)
+        end
+      end
+      
       # A specification of the type and number of accelerator cards attached to the
       # instance.
       class AcceleratorConfig
@@ -2614,7 +2660,9 @@ module Google
         # group is completely drained, offering 0% of its available capacity. The valid
         # ranges are 0.0 and [0.1,1.0]. You cannot configure a setting larger than 0 and
         # smaller than 0.1. You cannot configure a setting of 0 when there is only one
-        # backend attached to the backend service.
+        # backend attached to the backend service. Not available with backends that don'
+        # t support using a balancingMode. This includes backends such as global
+        # internet NEGs, regional serverless NEGs, and PSC NEGs.
         # Corresponds to the JSON property `capacityScaler`
         # @return [Float]
         attr_accessor :capacity_scaler
@@ -7328,7 +7376,8 @@ module Google
       
         # The reason of the error. This is a constant value that identifies the
         # proximate cause of the error. Error reasons are unique within a particular
-        # domain of errors. This should be at most 63 characters and match /[A-Z0-9_]+/.
+        # domain of errors. This should be at most 63 characters and match a regular
+        # expression of `A-Z+[A-Z0-9]`, which represents UPPER_SNAKE_CASE.
         # Corresponds to the JSON property `reason`
         # @return [String]
         attr_accessor :reason
@@ -8335,8 +8384,8 @@ module Google
         attr_accessor :kind
       
         # Name of the resource. For Organization Firewall Policies it's a [Output Only]
-        # numeric ID allocated by GCP which uniquely identifies the Organization
-        # Firewall Policy.
+        # numeric ID allocated by Google Cloud which uniquely identifies the
+        # Organization Firewall Policy.
         # Corresponds to the JSON property `name`
         # @return [String]
         attr_accessor :name
@@ -8930,12 +8979,13 @@ module Google
         # @return [String]
         attr_accessor :ip_protocol
       
-        # This field is used along with the backend_service field for Internal TCP/UDP
-        # Load Balancing or Network Load Balancing, or with the target field for
-        # internal and external TargetInstance. You can only use one of ports and
-        # port_range, or allPorts. The three are mutually exclusive. For TCP, UDP and
-        # SCTP traffic, packets addressed to any ports will be forwarded to the target
-        # or backendService.
+        # This field can only be used: - If IPProtocol is one of TCP, UDP, or SCTP. - By
+        # internal TCP/UDP load balancers, backend service-based network load balancers,
+        # and internal and external protocol forwarding. Set this field to true to allow
+        # packets addressed to any port or packets lacking destination port information (
+        # for example, UDP fragments after the first fragment) to be forwarded to the
+        # backends configured with this forwarding rule. The ports, port_range, and
+        # allPorts fields are mutually exclusive.
         # Corresponds to the JSON property `allPorts`
         # @return [Boolean]
         attr_accessor :all_ports
@@ -8957,6 +9007,15 @@ module Google
         # @return [String]
         attr_accessor :backend_service
       
+        # [Output Only] The URL for the corresponding base Forwarding Rule. By base
+        # Forwarding Rule, we mean the Forwarding Rule that has the same IP address,
+        # protocol, and port settings with the current Forwarding Rule, but without
+        # sourceIPRanges specified. Always empty if the current Forwarding Rule does not
+        # have sourceIPRanges specified.
+        # Corresponds to the JSON property `baseForwardingRule`
+        # @return [String]
+        attr_accessor :base_forwarding_rule
+      
         # [Output Only] Creation timestamp in RFC3339 text format.
         # Corresponds to the JSON property `creationTimestamp`
         # @return [String]
@@ -9091,27 +9150,35 @@ module Google
         attr_accessor :no_automate_dns_zone
         alias_method :no_automate_dns_zone?, :no_automate_dns_zone
       
-        # This field can be used only if: - Load balancing scheme is one of EXTERNAL,
-        # INTERNAL_SELF_MANAGED or INTERNAL_MANAGED - IPProtocol is one of TCP, UDP, or
-        # SCTP. Packets addressed to ports in the specified range will be forwarded to
-        # target or backend_service. You can only use one of ports, port_range, or
-        # allPorts. The three are mutually exclusive. Forwarding rules with the same [
-        # IPAddress, IPProtocol] pair must have disjoint ports. Some types of forwarding
-        # target have constraints on the acceptable ports. For more information, see [
-        # Port specifications](https://cloud.google.com/load-balancing/docs/forwarding-
-        # rule-concepts#port_specifications). @pattern: \\d+(?:-\\d+)?
+        # This field can only be used: - If IPProtocol is one of TCP, UDP, or SCTP. - By
+        # backend service-based network load balancers, target pool-based network load
+        # balancers, internal proxy load balancers, external proxy load balancers,
+        # Traffic Director, external protocol forwarding, and Classic VPN. Some products
+        # have restrictions on what ports can be used. See port specifications for
+        # details. Only packets addressed to ports in the specified range will be
+        # forwarded to the backends configured with this forwarding rule. The ports,
+        # port_range, and allPorts fields are mutually exclusive. For external
+        # forwarding rules, two or more forwarding rules cannot use the same [IPAddress,
+        # IPProtocol] pair, and cannot have overlapping portRanges. For internal
+        # forwarding rules within the same VPC network, two or more forwarding rules
+        # cannot use the same [IPAddress, IPProtocol] pair, and cannot have overlapping
+        # portRanges. @pattern: \\d+(?:-\\d+)?
         # Corresponds to the JSON property `portRange`
         # @return [String]
         attr_accessor :port_range
       
-        # The ports field is only supported when the forwarding rule references a
-        # backend_service directly. Only packets addressed to the [specified list of
-        # ports]((https://cloud.google.com/load-balancing/docs/forwarding-rule-concepts#
-        # port_specifications)) are forwarded to backends. You can only use one of ports
-        # and port_range, or allPorts. The three are mutually exclusive. You can specify
-        # a list of up to five ports, which can be non-contiguous. Forwarding rules with
-        # the same [IPAddress, IPProtocol] pair must have disjoint ports. @pattern: \\d+(
-        # ?:-\\d+)?
+        # This field can only be used: - If IPProtocol is one of TCP, UDP, or SCTP. - By
+        # internal TCP/UDP load balancers, backend service-based network load balancers,
+        # and internal protocol forwarding. You can specify a list of up to five ports
+        # by number, separated by commas. The ports can be contiguous or discontiguous.
+        # Only packets addressed to these ports will be forwarded to the backends
+        # configured with this forwarding rule. For external forwarding rules, two or
+        # more forwarding rules cannot use the same [IPAddress, IPProtocol] pair, and
+        # cannot share any values defined in ports. For internal forwarding rules within
+        # the same VPC network, two or more forwarding rules cannot use the same [
+        # IPAddress, IPProtocol] pair, and cannot share any values defined in ports. The
+        # ports, port_range, and allPorts fields are mutually exclusive. @pattern: \\d+(?
+        # :-\\d+)?
         # Corresponds to the JSON property `ports`
         # @return [Array<String>]
         attr_accessor :ports
@@ -9207,6 +9274,7 @@ module Google
           @all_ports = args[:all_ports] if args.key?(:all_ports)
           @allow_global_access = args[:allow_global_access] if args.key?(:allow_global_access)
           @backend_service = args[:backend_service] if args.key?(:backend_service)
+          @base_forwarding_rule = args[:base_forwarding_rule] if args.key?(:base_forwarding_rule)
           @creation_timestamp = args[:creation_timestamp] if args.key?(:creation_timestamp)
           @description = args[:description] if args.key?(:description)
           @fingerprint = args[:fingerprint] if args.key?(:fingerprint)
@@ -10587,13 +10655,18 @@ module Google
         attr_accessor :fingerprint
       
         # A list of URLs to the HealthCheck resources. Must have at least one
-        # HealthCheck, and not more than 10. HealthCheck resources must have
+        # HealthCheck, and not more than 10 for regional HealthCheckService, and not
+        # more than 1 for global HealthCheckService. HealthCheck resources must have
         # portSpecification=USE_SERVING_PORT or portSpecification=USE_FIXED_PORT. For
         # regional HealthCheckService, the HealthCheck must be regional and in the same
         # region. For global HealthCheckService, HealthCheck must be global. Mix of
         # regional and global HealthChecks is not supported. Multiple regional
         # HealthChecks must belong to the same region. Regional HealthChecks must belong
-        # to the same region as zones of NEGs.
+        # to the same region as zones of NetworkEndpointGroups. For global
+        # HealthCheckService using global INTERNET_IP_PORT NetworkEndpointGroups, the
+        # global HealthChecks must specify sourceRegions, and HealthChecks that specify
+        # sourceRegions can only be used with global INTERNET_IP_PORT
+        # NetworkEndpointGroups.
         # Corresponds to the JSON property `healthChecks`
         # @return [Array<String>]
         attr_accessor :health_checks
@@ -10603,7 +10676,8 @@ module Google
         # NO_AGGREGATION. An EndpointHealth message is returned for each pair in the
         # health check service. - AND. If any health check of an endpoint reports
         # UNHEALTHY, then UNHEALTHY is the HealthState of the endpoint. If all health
-        # checks report HEALTHY, the HealthState of the endpoint is HEALTHY. .
+        # checks report HEALTHY, the HealthState of the endpoint is HEALTHY. . This is
+        # only allowed with regional HealthCheckService.
         # Corresponds to the JSON property `healthStatusAggregationPolicy`
         # @return [String]
         attr_accessor :health_status_aggregation_policy
@@ -10643,7 +10717,8 @@ module Google
       
         # A list of URLs to the NetworkEndpointGroup resources. Must not have more than
         # 100. For regional HealthCheckService, NEGs must be in zones in the region of
-        # the HealthCheckService.
+        # the HealthCheckService. For global HealthCheckServices, the
+        # NetworkEndpointGroups must be global INTERNET_IP_PORT.
         # Corresponds to the JSON property `networkEndpointGroups`
         # @return [Array<String>]
         attr_accessor :network_endpoint_groups
@@ -12189,6 +12264,16 @@ module Google
         # @return [Array<Google::Apis::ComputeBeta::MetadataFilter>]
         attr_accessor :metadata_filters
       
+        # If specified, the route is a pattern match expression that must match the :
+        # path header once the query string is removed. A pattern match allows you to
+        # match - The value must be between 1 and 1024 characters - The pattern must
+        # start with a leading slash ("/") - There may be no more than 5 operators in
+        # pattern Precisely one of prefix_match, full_path_match, regex_match or
+        # path_template_match must be set.
+        # Corresponds to the JSON property `pathTemplateMatch`
+        # @return [String]
+        attr_accessor :path_template_match
+      
         # For satisfying the matchRule condition, the request's path must begin with the
         # specified prefixMatch. prefixMatch must begin with a /. The value must be from
         # 1 to 1024 characters. Only one of prefixMatch, fullPathMatch or regexMatch
@@ -12224,6 +12309,7 @@ module Google
           @header_matches = args[:header_matches] if args.key?(:header_matches)
           @ignore_case = args[:ignore_case] if args.key?(:ignore_case)
           @metadata_filters = args[:metadata_filters] if args.key?(:metadata_filters)
+          @path_template_match = args[:path_template_match] if args.key?(:path_template_match)
           @prefix_match = args[:prefix_match] if args.key?(:prefix_match)
           @query_parameter_matches = args[:query_parameter_matches] if args.key?(:query_parameter_matches)
           @regex_match = args[:regex_match] if args.key?(:regex_match)
@@ -13067,6 +13153,16 @@ module Google
         # @return [Fixnum]
         attr_accessor :id
       
+        # Encrypts suspended data for an instance with a customer-managed encryption key.
+        # If you are creating a new instance, this field will encrypt the local SSD and
+        # in-memory contents of the instance during the suspend operation. If you do not
+        # provide an encryption key when creating the instance, then the local SSD and
+        # in-memory contents will be encrypted using an automatically generated key
+        # during the suspend operation.
+        # Corresponds to the JSON property `instanceEncryptionKey`
+        # @return [Google::Apis::ComputeBeta::CustomerEncryptionKey]
+        attr_accessor :instance_encryption_key
+      
         # KeyRevocationActionType of the instance. Supported options are "STOP" and "
         # NONE". The default value is "NONE" if it is not specified.
         # Corresponds to the JSON property `keyRevocationActionType`
@@ -13303,6 +13399,7 @@ module Google
           @guest_accelerators = args[:guest_accelerators] if args.key?(:guest_accelerators)
           @hostname = args[:hostname] if args.key?(:hostname)
           @id = args[:id] if args.key?(:id)
+          @instance_encryption_key = args[:instance_encryption_key] if args.key?(:instance_encryption_key)
           @key_revocation_action_type = args[:key_revocation_action_type] if args.key?(:key_revocation_action_type)
           @kind = args[:kind] if args.key?(:kind)
           @label_fingerprint = args[:label_fingerprint] if args.key?(:label_fingerprint)
@@ -17110,8 +17207,9 @@ module Google
       
         # Email address to contact the customer NOC for operations and maintenance
         # notifications regarding this Interconnect. If specified, this will be used for
-        # notifications in addition to all other forms described, such as Stackdriver
-        # logs alerting and Cloud Notifications.
+        # notifications in addition to all other forms described, such as Cloud
+        # Monitoring logs alerting and Cloud Notifications. This field is required for
+        # users who sign up for Cloud Interconnect using workforce identity federation.
         # Corresponds to the JSON property `nocContactEmail`
         # @return [String]
         attr_accessor :noc_contact_email
@@ -17991,6 +18089,16 @@ module Google
         # @return [Array<Google::Apis::ComputeBeta::InterconnectDiagnosticsArpEntry>]
         attr_accessor :arp_caches
       
+        # The aggregation type of the bundle interface.
+        # Corresponds to the JSON property `bundleAggregationType`
+        # @return [String]
+        attr_accessor :bundle_aggregation_type
+      
+        # The operational status of the bundle interface.
+        # Corresponds to the JSON property `bundleOperationalStatus`
+        # @return [String]
+        attr_accessor :bundle_operational_status
+      
         # A list of InterconnectDiagnostics.LinkStatus objects, describing the status
         # for each link on the Interconnect.
         # Corresponds to the JSON property `links`
@@ -18009,6 +18117,8 @@ module Google
         # Update properties of this object
         def update!(**args)
           @arp_caches = args[:arp_caches] if args.key?(:arp_caches)
+          @bundle_aggregation_type = args[:bundle_aggregation_type] if args.key?(:bundle_aggregation_type)
+          @bundle_operational_status = args[:bundle_operational_status] if args.key?(:bundle_operational_status)
           @links = args[:links] if args.key?(:links)
           @mac_address = args[:mac_address] if args.key?(:mac_address)
         end
@@ -18132,6 +18242,11 @@ module Google
         # @return [Google::Apis::ComputeBeta::InterconnectDiagnosticsLinkLacpStatus]
         attr_accessor :lacp_status
       
+        # The operational status of the link.
+        # Corresponds to the JSON property `operationalStatus`
+        # @return [String]
+        attr_accessor :operational_status
+      
         # An InterconnectDiagnostics.LinkOpticalPower object, describing the current
         # value and status of the received light level.
         # Corresponds to the JSON property `receivingOpticalPower`
@@ -18154,6 +18269,7 @@ module Google
           @circuit_id = args[:circuit_id] if args.key?(:circuit_id)
           @google_demarc = args[:google_demarc] if args.key?(:google_demarc)
           @lacp_status = args[:lacp_status] if args.key?(:lacp_status)
+          @operational_status = args[:operational_status] if args.key?(:operational_status)
           @receiving_optical_power = args[:receiving_optical_power] if args.key?(:receiving_optical_power)
           @transmitting_optical_power = args[:transmitting_optical_power] if args.key?(:transmitting_optical_power)
         end
@@ -20618,10 +20734,21 @@ module Google
         end
       end
       
-      # Represents a Google Cloud Armor network edge security service resource.
-      class NetworkEdgeSecurityService
+      # NetworkAttachments A network attachment resource ...
+      class NetworkAttachment
         include Google::Apis::Core::Hashable
       
+        # [Output Only] An array of connections for all the producers connected to this
+        # network attachment.
+        # Corresponds to the JSON property `connectionEndpoints`
+        # @return [Array<Google::Apis::ComputeBeta::NetworkAttachmentConnectedEndpoint>]
+        attr_accessor :connection_endpoints
+      
+        # 
+        # Corresponds to the JSON property `connectionPreference`
+        # @return [String]
+        attr_accessor :connection_preference
+      
         # [Output Only] Creation timestamp in RFC3339 text format.
         # Corresponds to the JSON property `creationTimestamp`
         # @return [String]
@@ -20633,25 +20760,21 @@ module Google
         # @return [String]
         attr_accessor :description
       
-        # Fingerprint of this resource. A hash of the contents stored in this object.
-        # This field is used in optimistic locking. This field will be ignored when
-        # inserting a NetworkEdgeSecurityService. An up-to-date fingerprint must be
-        # provided in order to update the NetworkEdgeSecurityService, otherwise the
-        # request will fail with error 412 conditionNotMet. To see the latest
-        # fingerprint, make a get() request to retrieve a NetworkEdgeSecurityService.
+        # [Output Only] Fingerprint of this resource. A hash of the contents stored in
+        # this object. This field is used in optimistic locking. An up-to-date
+        # fingerprint must be provided in order to patch.
         # Corresponds to the JSON property `fingerprint`
         # NOTE: Values are automatically base64 encoded/decoded in the client library.
         # @return [String]
         attr_accessor :fingerprint
       
-        # [Output Only] The unique identifier for the resource. This identifier is
-        # defined by the server.
+        # [Output Only] The unique identifier for the resource type. The server
+        # generates this identifier.
         # Corresponds to the JSON property `id`
         # @return [Fixnum]
         attr_accessor :id
       
-        # [Output only] Type of the resource. Always compute#networkEdgeSecurityService
-        # for NetworkEdgeSecurityServices
+        # [Output Only] Type of the resource.
         # Corresponds to the JSON property `kind`
         # @return [String]
         attr_accessor :kind
@@ -20666,70 +20789,248 @@ module Google
         # @return [String]
         attr_accessor :name
       
-        # [Output Only] URL of the region where the resource resides. You must specify
-        # this field as part of the HTTP request URL. It is not settable as a field in
-        # the request body.
-        # Corresponds to the JSON property `region`
+        # [Output Only] The URL of the network which the Network Attachment belongs to.
+        # Corresponds to the JSON property `network`
         # @return [String]
-        attr_accessor :region
+        attr_accessor :network
       
-        # The resource URL for the network edge security service associated with this
-        # network edge security service.
-        # Corresponds to the JSON property `securityPolicy`
+        # Projects that are allowed to connect to this network attachment. The project
+        # can be specified using its id or number.
+        # Corresponds to the JSON property `producerAcceptLists`
+        # @return [Array<String>]
+        attr_accessor :producer_accept_lists
+      
+        # Projects that are not allowed to connect to this network attachment. The
+        # project can be specified using its id or number.
+        # Corresponds to the JSON property `producerRejectLists`
+        # @return [Array<String>]
+        attr_accessor :producer_reject_lists
+      
+        # [Output Only] URL of the region where the network attachment resides. This
+        # field applies only to the region resource. You must specify this field as part
+        # of the HTTP request URL. It is not settable as a field in the request body.
+        # Corresponds to the JSON property `region`
         # @return [String]
-        attr_accessor :security_policy
+        attr_accessor :region
       
         # [Output Only] Server-defined URL for the resource.
         # Corresponds to the JSON property `selfLink`
         # @return [String]
         attr_accessor :self_link
       
-        # [Output Only] Server-defined URL for this resource with the resource id.
+        # [Output Only] Server-defined URL for this resource's resource id.
         # Corresponds to the JSON property `selfLinkWithId`
         # @return [String]
         attr_accessor :self_link_with_id
       
+        # An array of URLs where each entry is the URL of a subnet provided by the
+        # service consumer to use for endpoints in the producers that connect to this
+        # network attachment.
+        # Corresponds to the JSON property `subnetworks`
+        # @return [Array<String>]
+        attr_accessor :subnetworks
+      
         def initialize(**args)
            update!(**args)
         end
       
         # Update properties of this object
         def update!(**args)
+          @connection_endpoints = args[:connection_endpoints] if args.key?(:connection_endpoints)
+          @connection_preference = args[:connection_preference] if args.key?(:connection_preference)
           @creation_timestamp = args[:creation_timestamp] if args.key?(:creation_timestamp)
           @description = args[:description] if args.key?(:description)
           @fingerprint = args[:fingerprint] if args.key?(:fingerprint)
           @id = args[:id] if args.key?(:id)
           @kind = args[:kind] if args.key?(:kind)
           @name = args[:name] if args.key?(:name)
+          @network = args[:network] if args.key?(:network)
+          @producer_accept_lists = args[:producer_accept_lists] if args.key?(:producer_accept_lists)
+          @producer_reject_lists = args[:producer_reject_lists] if args.key?(:producer_reject_lists)
           @region = args[:region] if args.key?(:region)
-          @security_policy = args[:security_policy] if args.key?(:security_policy)
           @self_link = args[:self_link] if args.key?(:self_link)
           @self_link_with_id = args[:self_link_with_id] if args.key?(:self_link_with_id)
+          @subnetworks = args[:subnetworks] if args.key?(:subnetworks)
         end
       end
       
-      # 
-      class NetworkEdgeSecurityServiceAggregatedList
+      # Contains a list of NetworkAttachmentsScopedList.
+      class NetworkAttachmentAggregatedList
         include Google::Apis::Core::Hashable
       
+        # [Output Only] Unique identifier for the resource; defined by the server.
+        # Corresponds to the JSON property `id`
+        # @return [String]
+        attr_accessor :id
+      
+        # A list of NetworkAttachmentsScopedList resources.
+        # Corresponds to the JSON property `items`
+        # @return [Hash<String,Google::Apis::ComputeBeta::NetworkAttachmentsScopedList>]
+        attr_accessor :items
+      
         # 
-        # Corresponds to the JSON property `etag`
+        # Corresponds to the JSON property `kind`
         # @return [String]
-        attr_accessor :etag
+        attr_accessor :kind
+      
+        # [Output Only] This token allows you to get the next page of results for list
+        # requests. If the number of results is larger than maxResults, use the
+        # nextPageToken as a value for the query parameter pageToken in the next list
+        # request. Subsequent list requests will have their own nextPageToken to
+        # continue paging through the results.
+        # Corresponds to the JSON property `nextPageToken`
+        # @return [String]
+        attr_accessor :next_page_token
+      
+        # [Output Only] Server-defined URL for this resource.
+        # Corresponds to the JSON property `selfLink`
+        # @return [String]
+        attr_accessor :self_link
+      
+        # [Output Only] Informational warning message.
+        # Corresponds to the JSON property `warning`
+        # @return [Google::Apis::ComputeBeta::NetworkAttachmentAggregatedList::Warning]
+        attr_accessor :warning
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @id = args[:id] if args.key?(:id)
+          @items = args[:items] if args.key?(:items)
+          @kind = args[:kind] if args.key?(:kind)
+          @next_page_token = args[:next_page_token] if args.key?(:next_page_token)
+          @self_link = args[:self_link] if args.key?(:self_link)
+          @warning = args[:warning] if args.key?(:warning)
+        end
+        
+        # [Output Only] Informational warning message.
+        class Warning
+          include Google::Apis::Core::Hashable
+        
+          # [Output Only] A warning code, if applicable. For example, Compute Engine
+          # returns NO_RESULTS_ON_PAGE if there are no results in the response.
+          # Corresponds to the JSON property `code`
+          # @return [String]
+          attr_accessor :code
+        
+          # [Output Only] Metadata about this warning in key: value format. For example: "
+          # data": [ ` "key": "scope", "value": "zones/us-east1-d" `
+          # Corresponds to the JSON property `data`
+          # @return [Array<Google::Apis::ComputeBeta::NetworkAttachmentAggregatedList::Warning::Datum>]
+          attr_accessor :data
+        
+          # [Output Only] A human-readable description of the warning code.
+          # Corresponds to the JSON property `message`
+          # @return [String]
+          attr_accessor :message
+        
+          def initialize(**args)
+             update!(**args)
+          end
+        
+          # Update properties of this object
+          def update!(**args)
+            @code = args[:code] if args.key?(:code)
+            @data = args[:data] if args.key?(:data)
+            @message = args[:message] if args.key?(:message)
+          end
+          
+          # 
+          class Datum
+            include Google::Apis::Core::Hashable
+          
+            # [Output Only] A key that provides more detail on the warning being returned.
+            # For example, for warnings where there are no results in a list request for a
+            # particular zone, this key might be scope and the key value might be the zone
+            # name. Other examples might be a key indicating a deprecated resource and a
+            # suggested replacement, or a warning about invalid network settings (for
+            # example, if an instance attempts to perform IP forwarding but is not enabled
+            # for IP forwarding).
+            # Corresponds to the JSON property `key`
+            # @return [String]
+            attr_accessor :key
+          
+            # [Output Only] A warning data value corresponding to the key.
+            # Corresponds to the JSON property `value`
+            # @return [String]
+            attr_accessor :value
+          
+            def initialize(**args)
+               update!(**args)
+            end
+          
+            # Update properties of this object
+            def update!(**args)
+              @key = args[:key] if args.key?(:key)
+              @value = args[:value] if args.key?(:value)
+            end
+          end
+        end
+      end
+      
+      # [Output Only] A connection connected to this network attachment.
+      class NetworkAttachmentConnectedEndpoint
+        include Google::Apis::Core::Hashable
+      
+        # The IP address assigned to the producer instance network interface. This value
+        # will be a range in case of Serverless.
+        # Corresponds to the JSON property `ipAddress`
+        # @return [String]
+        attr_accessor :ip_address
+      
+        # The project id or number of the interface to which the IP was assigned.
+        # Corresponds to the JSON property `projectIdOrNum`
+        # @return [String]
+        attr_accessor :project_id_or_num
+      
+        # Alias IP ranges from the same subnetwork
+        # Corresponds to the JSON property `secondaryIpCidrRanges`
+        # @return [Array<String>]
+        attr_accessor :secondary_ip_cidr_ranges
+      
+        # The status of a connected endpoint to this network attachment.
+        # Corresponds to the JSON property `status`
+        # @return [String]
+        attr_accessor :status
+      
+        # The subnetwork used to assign the IP to the producer instance network
+        # interface.
+        # Corresponds to the JSON property `subnetwork`
+        # @return [String]
+        attr_accessor :subnetwork
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @ip_address = args[:ip_address] if args.key?(:ip_address)
+          @project_id_or_num = args[:project_id_or_num] if args.key?(:project_id_or_num)
+          @secondary_ip_cidr_ranges = args[:secondary_ip_cidr_ranges] if args.key?(:secondary_ip_cidr_ranges)
+          @status = args[:status] if args.key?(:status)
+          @subnetwork = args[:subnetwork] if args.key?(:subnetwork)
+        end
+      end
+      
+      # 
+      class NetworkAttachmentList
+        include Google::Apis::Core::Hashable
       
         # [Output Only] Unique identifier for the resource; defined by the server.
         # Corresponds to the JSON property `id`
         # @return [String]
         attr_accessor :id
       
-        # A list of NetworkEdgeSecurityServicesScopedList resources.
+        # A list of NetworkAttachment resources.
         # Corresponds to the JSON property `items`
-        # @return [Hash<String,Google::Apis::ComputeBeta::NetworkEdgeSecurityServicesScopedList>]
+        # @return [Array<Google::Apis::ComputeBeta::NetworkAttachment>]
         attr_accessor :items
       
-        # [Output Only] Type of resource. Always compute#
-        # networkEdgeSecurityServiceAggregatedList for lists of Network Edge Security
-        # Services.
+        # 
         # Corresponds to the JSON property `kind`
         # @return [String]
         attr_accessor :kind
@@ -20748,14 +21049,9 @@ module Google
         # @return [String]
         attr_accessor :self_link
       
-        # [Output Only] Unreachable resources.
-        # Corresponds to the JSON property `unreachables`
-        # @return [Array<String>]
-        attr_accessor :unreachables
-      
         # [Output Only] Informational warning message.
         # Corresponds to the JSON property `warning`
-        # @return [Google::Apis::ComputeBeta::NetworkEdgeSecurityServiceAggregatedList::Warning]
+        # @return [Google::Apis::ComputeBeta::NetworkAttachmentList::Warning]
         attr_accessor :warning
       
         def initialize(**args)
@@ -20764,13 +21060,11 @@ module Google
       
         # Update properties of this object
         def update!(**args)
-          @etag = args[:etag] if args.key?(:etag)
           @id = args[:id] if args.key?(:id)
           @items = args[:items] if args.key?(:items)
           @kind = args[:kind] if args.key?(:kind)
           @next_page_token = args[:next_page_token] if args.key?(:next_page_token)
           @self_link = args[:self_link] if args.key?(:self_link)
-          @unreachables = args[:unreachables] if args.key?(:unreachables)
           @warning = args[:warning] if args.key?(:warning)
         end
         
@@ -20787,7 +21081,7 @@ module Google
           # [Output Only] Metadata about this warning in key: value format. For example: "
           # data": [ ` "key": "scope", "value": "zones/us-east1-d" `
           # Corresponds to the JSON property `data`
-          # @return [Array<Google::Apis::ComputeBeta::NetworkEdgeSecurityServiceAggregatedList::Warning::Datum>]
+          # @return [Array<Google::Apis::ComputeBeta::NetworkAttachmentList::Warning::Datum>]
           attr_accessor :data
         
           # [Output Only] A human-readable description of the warning code.
@@ -20840,18 +21134,18 @@ module Google
       end
       
       # 
-      class NetworkEdgeSecurityServicesScopedList
+      class NetworkAttachmentsScopedList
         include Google::Apis::Core::Hashable
       
-        # A list of NetworkEdgeSecurityServices contained in this scope.
-        # Corresponds to the JSON property `networkEdgeSecurityServices`
-        # @return [Array<Google::Apis::ComputeBeta::NetworkEdgeSecurityService>]
-        attr_accessor :network_edge_security_services
+        # A list of NetworkAttachments contained in this scope.
+        # Corresponds to the JSON property `networkAttachments`
+        # @return [Array<Google::Apis::ComputeBeta::NetworkAttachment>]
+        attr_accessor :network_attachments
       
-        # Informational warning which replaces the list of security policies when the
+        # Informational warning which replaces the list of network attachments when the
         # list is empty.
         # Corresponds to the JSON property `warning`
-        # @return [Google::Apis::ComputeBeta::NetworkEdgeSecurityServicesScopedList::Warning]
+        # @return [Google::Apis::ComputeBeta::NetworkAttachmentsScopedList::Warning]
         attr_accessor :warning
       
         def initialize(**args)
@@ -20860,11 +21154,11 @@ module Google
       
         # Update properties of this object
         def update!(**args)
-          @network_edge_security_services = args[:network_edge_security_services] if args.key?(:network_edge_security_services)
+          @network_attachments = args[:network_attachments] if args.key?(:network_attachments)
           @warning = args[:warning] if args.key?(:warning)
         end
         
-        # Informational warning which replaces the list of security policies when the
+        # Informational warning which replaces the list of network attachments when the
         # list is empty.
         class Warning
           include Google::Apis::Core::Hashable
@@ -20878,7 +21172,319 @@ module Google
           # [Output Only] Metadata about this warning in key: value format. For example: "
           # data": [ ` "key": "scope", "value": "zones/us-east1-d" `
           # Corresponds to the JSON property `data`
-          # @return [Array<Google::Apis::ComputeBeta::NetworkEdgeSecurityServicesScopedList::Warning::Datum>]
+          # @return [Array<Google::Apis::ComputeBeta::NetworkAttachmentsScopedList::Warning::Datum>]
+          attr_accessor :data
+        
+          # [Output Only] A human-readable description of the warning code.
+          # Corresponds to the JSON property `message`
+          # @return [String]
+          attr_accessor :message
+        
+          def initialize(**args)
+             update!(**args)
+          end
+        
+          # Update properties of this object
+          def update!(**args)
+            @code = args[:code] if args.key?(:code)
+            @data = args[:data] if args.key?(:data)
+            @message = args[:message] if args.key?(:message)
+          end
+          
+          # 
+          class Datum
+            include Google::Apis::Core::Hashable
+          
+            # [Output Only] A key that provides more detail on the warning being returned.
+            # For example, for warnings where there are no results in a list request for a
+            # particular zone, this key might be scope and the key value might be the zone
+            # name. Other examples might be a key indicating a deprecated resource and a
+            # suggested replacement, or a warning about invalid network settings (for
+            # example, if an instance attempts to perform IP forwarding but is not enabled
+            # for IP forwarding).
+            # Corresponds to the JSON property `key`
+            # @return [String]
+            attr_accessor :key
+          
+            # [Output Only] A warning data value corresponding to the key.
+            # Corresponds to the JSON property `value`
+            # @return [String]
+            attr_accessor :value
+          
+            def initialize(**args)
+               update!(**args)
+            end
+          
+            # Update properties of this object
+            def update!(**args)
+              @key = args[:key] if args.key?(:key)
+              @value = args[:value] if args.key?(:value)
+            end
+          end
+        end
+      end
+      
+      # Represents a Google Cloud Armor network edge security service resource.
+      class NetworkEdgeSecurityService
+        include Google::Apis::Core::Hashable
+      
+        # [Output Only] Creation timestamp in RFC3339 text format.
+        # Corresponds to the JSON property `creationTimestamp`
+        # @return [String]
+        attr_accessor :creation_timestamp
+      
+        # An optional description of this resource. Provide this property when you
+        # create the resource.
+        # Corresponds to the JSON property `description`
+        # @return [String]
+        attr_accessor :description
+      
+        # Fingerprint of this resource. A hash of the contents stored in this object.
+        # This field is used in optimistic locking. This field will be ignored when
+        # inserting a NetworkEdgeSecurityService. An up-to-date fingerprint must be
+        # provided in order to update the NetworkEdgeSecurityService, otherwise the
+        # request will fail with error 412 conditionNotMet. To see the latest
+        # fingerprint, make a get() request to retrieve a NetworkEdgeSecurityService.
+        # Corresponds to the JSON property `fingerprint`
+        # NOTE: Values are automatically base64 encoded/decoded in the client library.
+        # @return [String]
+        attr_accessor :fingerprint
+      
+        # [Output Only] The unique identifier for the resource. This identifier is
+        # defined by the server.
+        # Corresponds to the JSON property `id`
+        # @return [Fixnum]
+        attr_accessor :id
+      
+        # [Output only] Type of the resource. Always compute#networkEdgeSecurityService
+        # for NetworkEdgeSecurityServices
+        # Corresponds to the JSON property `kind`
+        # @return [String]
+        attr_accessor :kind
+      
+        # Name of the resource. Provided by the client when the resource is created. The
+        # name must be 1-63 characters long, and comply with RFC1035. Specifically, the
+        # name must be 1-63 characters long and match the regular expression `[a-z]([-a-
+        # z0-9]*[a-z0-9])?` which means the first character must be a lowercase letter,
+        # and all following characters must be a dash, lowercase letter, or digit,
+        # except the last character, which cannot be a dash.
+        # Corresponds to the JSON property `name`
+        # @return [String]
+        attr_accessor :name
+      
+        # [Output Only] URL of the region where the resource resides. You must specify
+        # this field as part of the HTTP request URL. It is not settable as a field in
+        # the request body.
+        # Corresponds to the JSON property `region`
+        # @return [String]
+        attr_accessor :region
+      
+        # The resource URL for the network edge security service associated with this
+        # network edge security service.
+        # Corresponds to the JSON property `securityPolicy`
+        # @return [String]
+        attr_accessor :security_policy
+      
+        # [Output Only] Server-defined URL for the resource.
+        # Corresponds to the JSON property `selfLink`
+        # @return [String]
+        attr_accessor :self_link
+      
+        # [Output Only] Server-defined URL for this resource with the resource id.
+        # Corresponds to the JSON property `selfLinkWithId`
+        # @return [String]
+        attr_accessor :self_link_with_id
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @creation_timestamp = args[:creation_timestamp] if args.key?(:creation_timestamp)
+          @description = args[:description] if args.key?(:description)
+          @fingerprint = args[:fingerprint] if args.key?(:fingerprint)
+          @id = args[:id] if args.key?(:id)
+          @kind = args[:kind] if args.key?(:kind)
+          @name = args[:name] if args.key?(:name)
+          @region = args[:region] if args.key?(:region)
+          @security_policy = args[:security_policy] if args.key?(:security_policy)
+          @self_link = args[:self_link] if args.key?(:self_link)
+          @self_link_with_id = args[:self_link_with_id] if args.key?(:self_link_with_id)
+        end
+      end
+      
+      # 
+      class NetworkEdgeSecurityServiceAggregatedList
+        include Google::Apis::Core::Hashable
+      
+        # 
+        # Corresponds to the JSON property `etag`
+        # @return [String]
+        attr_accessor :etag
+      
+        # [Output Only] Unique identifier for the resource; defined by the server.
+        # Corresponds to the JSON property `id`
+        # @return [String]
+        attr_accessor :id
+      
+        # A list of NetworkEdgeSecurityServicesScopedList resources.
+        # Corresponds to the JSON property `items`
+        # @return [Hash<String,Google::Apis::ComputeBeta::NetworkEdgeSecurityServicesScopedList>]
+        attr_accessor :items
+      
+        # [Output Only] Type of resource. Always compute#
+        # networkEdgeSecurityServiceAggregatedList for lists of Network Edge Security
+        # Services.
+        # Corresponds to the JSON property `kind`
+        # @return [String]
+        attr_accessor :kind
+      
+        # [Output Only] This token allows you to get the next page of results for list
+        # requests. If the number of results is larger than maxResults, use the
+        # nextPageToken as a value for the query parameter pageToken in the next list
+        # request. Subsequent list requests will have their own nextPageToken to
+        # continue paging through the results.
+        # Corresponds to the JSON property `nextPageToken`
+        # @return [String]
+        attr_accessor :next_page_token
+      
+        # [Output Only] Server-defined URL for this resource.
+        # Corresponds to the JSON property `selfLink`
+        # @return [String]
+        attr_accessor :self_link
+      
+        # [Output Only] Unreachable resources.
+        # Corresponds to the JSON property `unreachables`
+        # @return [Array<String>]
+        attr_accessor :unreachables
+      
+        # [Output Only] Informational warning message.
+        # Corresponds to the JSON property `warning`
+        # @return [Google::Apis::ComputeBeta::NetworkEdgeSecurityServiceAggregatedList::Warning]
+        attr_accessor :warning
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @etag = args[:etag] if args.key?(:etag)
+          @id = args[:id] if args.key?(:id)
+          @items = args[:items] if args.key?(:items)
+          @kind = args[:kind] if args.key?(:kind)
+          @next_page_token = args[:next_page_token] if args.key?(:next_page_token)
+          @self_link = args[:self_link] if args.key?(:self_link)
+          @unreachables = args[:unreachables] if args.key?(:unreachables)
+          @warning = args[:warning] if args.key?(:warning)
+        end
+        
+        # [Output Only] Informational warning message.
+        class Warning
+          include Google::Apis::Core::Hashable
+        
+          # [Output Only] A warning code, if applicable. For example, Compute Engine
+          # returns NO_RESULTS_ON_PAGE if there are no results in the response.
+          # Corresponds to the JSON property `code`
+          # @return [String]
+          attr_accessor :code
+        
+          # [Output Only] Metadata about this warning in key: value format. For example: "
+          # data": [ ` "key": "scope", "value": "zones/us-east1-d" `
+          # Corresponds to the JSON property `data`
+          # @return [Array<Google::Apis::ComputeBeta::NetworkEdgeSecurityServiceAggregatedList::Warning::Datum>]
+          attr_accessor :data
+        
+          # [Output Only] A human-readable description of the warning code.
+          # Corresponds to the JSON property `message`
+          # @return [String]
+          attr_accessor :message
+        
+          def initialize(**args)
+             update!(**args)
+          end
+        
+          # Update properties of this object
+          def update!(**args)
+            @code = args[:code] if args.key?(:code)
+            @data = args[:data] if args.key?(:data)
+            @message = args[:message] if args.key?(:message)
+          end
+          
+          # 
+          class Datum
+            include Google::Apis::Core::Hashable
+          
+            # [Output Only] A key that provides more detail on the warning being returned.
+            # For example, for warnings where there are no results in a list request for a
+            # particular zone, this key might be scope and the key value might be the zone
+            # name. Other examples might be a key indicating a deprecated resource and a
+            # suggested replacement, or a warning about invalid network settings (for
+            # example, if an instance attempts to perform IP forwarding but is not enabled
+            # for IP forwarding).
+            # Corresponds to the JSON property `key`
+            # @return [String]
+            attr_accessor :key
+          
+            # [Output Only] A warning data value corresponding to the key.
+            # Corresponds to the JSON property `value`
+            # @return [String]
+            attr_accessor :value
+          
+            def initialize(**args)
+               update!(**args)
+            end
+          
+            # Update properties of this object
+            def update!(**args)
+              @key = args[:key] if args.key?(:key)
+              @value = args[:value] if args.key?(:value)
+            end
+          end
+        end
+      end
+      
+      # 
+      class NetworkEdgeSecurityServicesScopedList
+        include Google::Apis::Core::Hashable
+      
+        # A list of NetworkEdgeSecurityServices contained in this scope.
+        # Corresponds to the JSON property `networkEdgeSecurityServices`
+        # @return [Array<Google::Apis::ComputeBeta::NetworkEdgeSecurityService>]
+        attr_accessor :network_edge_security_services
+      
+        # Informational warning which replaces the list of security policies when the
+        # list is empty.
+        # Corresponds to the JSON property `warning`
+        # @return [Google::Apis::ComputeBeta::NetworkEdgeSecurityServicesScopedList::Warning]
+        attr_accessor :warning
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @network_edge_security_services = args[:network_edge_security_services] if args.key?(:network_edge_security_services)
+          @warning = args[:warning] if args.key?(:warning)
+        end
+        
+        # Informational warning which replaces the list of security policies when the
+        # list is empty.
+        class Warning
+          include Google::Apis::Core::Hashable
+        
+          # [Output Only] A warning code, if applicable. For example, Compute Engine
+          # returns NO_RESULTS_ON_PAGE if there are no results in the response.
+          # Corresponds to the JSON property `code`
+          # @return [String]
+          attr_accessor :code
+        
+          # [Output Only] Metadata about this warning in key: value format. For example: "
+          # data": [ ` "key": "scope", "value": "zones/us-east1-d" `
+          # Corresponds to the JSON property `data`
+          # @return [Array<Google::Apis::ComputeBeta::NetworkEdgeSecurityServicesScopedList::Warning::Datum>]
           attr_accessor :data
         
           # [Output Only] A human-readable description of the warning code.
@@ -26553,6 +27159,11 @@ module Google
         # @return [Google::Apis::ComputeBeta::UsageExportLocation]
         attr_accessor :usage_export_location
       
+        # [Output Only] Default internal DNS setting used by VMs running in this project.
+        # Corresponds to the JSON property `vmDnsSetting`
+        # @return [String]
+        attr_accessor :vm_dns_setting
+      
         # [Output Only] The role this project has in a shared VPC configuration.
         # Currently, only projects with the host role, which is specified by the value
         # HOST, are differentiated.
@@ -26578,6 +27189,7 @@ module Google
           @quotas = args[:quotas] if args.key?(:quotas)
           @self_link = args[:self_link] if args.key?(:self_link)
           @usage_export_location = args[:usage_export_location] if args.key?(:usage_export_location)
+          @vm_dns_setting = args[:vm_dns_setting] if args.key?(:vm_dns_setting)
           @xpn_project_status = args[:xpn_project_status] if args.key?(:xpn_project_status)
         end
       end
@@ -29751,8 +30363,8 @@ module Google
         # @return [Fixnum]
         attr_accessor :amount
       
-        # Type of resource for which this commitment applies. Possible values are VCPU
-        # and MEMORY
+        # Type of resource for which this commitment applies. Possible values are VCPU,
+        # MEMORY, LOCAL_SSD, and ACCELERATOR.
         # Corresponds to the JSON property `type`
         # @return [String]
         attr_accessor :type
@@ -30650,6 +31262,11 @@ module Google
         # @return [String]
         attr_accessor :physical_host
       
+        # 
+        # Corresponds to the JSON property `scheduling`
+        # @return [Google::Apis::ComputeBeta::ResourceStatusScheduling]
+        attr_accessor :scheduling
+      
         def initialize(**args)
            update!(**args)
         end
@@ -30657,6 +31274,26 @@ module Google
         # Update properties of this object
         def update!(**args)
           @physical_host = args[:physical_host] if args.key?(:physical_host)
+          @scheduling = args[:scheduling] if args.key?(:scheduling)
+        end
+      end
+      
+      # 
+      class ResourceStatusScheduling
+        include Google::Apis::Core::Hashable
+      
+        # Time in future when the instance will be terminated in RFC3339 text format.
+        # Corresponds to the JSON property `terminationTimestamp`
+        # @return [String]
+        attr_accessor :termination_timestamp
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @termination_timestamp = args[:termination_timestamp] if args.key?(:termination_timestamp)
         end
       end
       
@@ -34318,6 +34955,14 @@ module Google
         # @return [String]
         attr_accessor :enforce_on_key
       
+        # If specified, any combination of values of enforce_on_key_type/
+        # enforce_on_key_name is treated as the key on which ratelimit threshold/action
+        # is enforced. You can specify up to 3 enforce_on_key_configs. If
+        # enforce_on_key_configs is specified, enforce_on_key must not be specified.
+        # Corresponds to the JSON property `enforceOnKeyConfigs`
+        # @return [Array<Google::Apis::ComputeBeta::SecurityPolicyRuleRateLimitOptionsEnforceOnKeyConfig>]
+        attr_accessor :enforce_on_key_configs
+      
         # Rate limit key name applicable only for the following key types: HTTP_HEADER --
         # Name of the HTTP header whose value is taken as the key value. HTTP_COOKIE --
         # Name of the HTTP cookie whose value is taken as the key value.
@@ -34355,6 +35000,7 @@ module Google
           @ban_threshold = args[:ban_threshold] if args.key?(:ban_threshold)
           @conform_action = args[:conform_action] if args.key?(:conform_action)
           @enforce_on_key = args[:enforce_on_key] if args.key?(:enforce_on_key)
+          @enforce_on_key_configs = args[:enforce_on_key_configs] if args.key?(:enforce_on_key_configs)
           @enforce_on_key_name = args[:enforce_on_key_name] if args.key?(:enforce_on_key_name)
           @exceed_action = args[:exceed_action] if args.key?(:exceed_action)
           @exceed_redirect_options = args[:exceed_redirect_options] if args.key?(:exceed_redirect_options)
@@ -34362,6 +35008,51 @@ module Google
         end
       end
       
+      # 
+      class SecurityPolicyRuleRateLimitOptionsEnforceOnKeyConfig
+        include Google::Apis::Core::Hashable
+      
+        # Rate limit key name applicable only for the following key types: HTTP_HEADER --
+        # Name of the HTTP header whose value is taken as the key value. HTTP_COOKIE --
+        # Name of the HTTP cookie whose value is taken as the key value.
+        # Corresponds to the JSON property `enforceOnKeyName`
+        # @return [String]
+        attr_accessor :enforce_on_key_name
+      
+        # Determines the key to enforce the rate_limit_threshold on. Possible values are:
+        # - ALL: A single rate limit threshold is applied to all the requests matching
+        # this rule. This is the default value if "enforceOnKeyConfigs" is not
+        # configured. - IP: The source IP address of the request is the key. Each IP has
+        # this limit enforced separately. - HTTP_HEADER: The value of the HTTP header
+        # whose name is configured under "enforceOnKeyName". The key value is truncated
+        # to the first 128 bytes of the header value. If no such header is present in
+        # the request, the key type defaults to ALL. - XFF_IP: The first IP address (i.e.
+        # the originating client IP address) specified in the list of IPs under X-
+        # Forwarded-For HTTP header. If no such header is present or the value is not a
+        # valid IP, the key defaults to the source IP address of the request i.e. key
+        # type IP. - HTTP_COOKIE: The value of the HTTP cookie whose name is configured
+        # under "enforceOnKeyName". The key value is truncated to the first 128 bytes of
+        # the cookie value. If no such cookie is present in the request, the key type
+        # defaults to ALL. - HTTP_PATH: The URL path of the HTTP request. The key value
+        # is truncated to the first 128 bytes. - SNI: Server name indication in the TLS
+        # session of the HTTPS request. The key value is truncated to the first 128
+        # bytes. The key type defaults to ALL on a HTTP session. - REGION_CODE: The
+        # country/region from which the request originates.
+        # Corresponds to the JSON property `enforceOnKeyType`
+        # @return [String]
+        attr_accessor :enforce_on_key_type
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @enforce_on_key_name = args[:enforce_on_key_name] if args.key?(:enforce_on_key_name)
+          @enforce_on_key_type = args[:enforce_on_key_type] if args.key?(:enforce_on_key_type)
+        end
+      end
+      
       # 
       class SecurityPolicyRuleRateLimitOptionsThreshold
         include Google::Apis::Core::Hashable
@@ -34422,6 +35113,14 @@ module Google
         # @return [String]
         attr_accessor :authentication
       
+        # Contains the configurations necessary to generate a signature for access to
+        # private storage buckets that support Signature Version 4 for authentication.
+        # The service name for generating the authentication header will always default
+        # to 's3'.
+        # Corresponds to the JSON property `awsV4Authentication`
+        # @return [Google::Apis::ComputeBeta::Awsv4Signature]
+        attr_accessor :aws_v4_authentication
+      
         # Optional. A URL referring to a networksecurity.ClientTlsPolicy resource that
         # describes how clients should authenticate with this service's backends.
         # clientTlsPolicy only applies to a global BackendService with the
@@ -34454,6 +35153,7 @@ module Google
         # Update properties of this object
         def update!(**args)
           @authentication = args[:authentication] if args.key?(:authentication)
+          @aws_v4_authentication = args[:aws_v4_authentication] if args.key?(:aws_v4_authentication)
           @client_tls_policy = args[:client_tls_policy] if args.key?(:client_tls_policy)
           @subject_alt_names = args[:subject_alt_names] if args.key?(:subject_alt_names)
         end
@@ -34869,6 +35569,11 @@ module Google
         # @return [Fixnum]
         attr_accessor :connection_limit
       
+        # The network URL for the network to set the limit for.
+        # Corresponds to the JSON property `networkUrl`
+        # @return [String]
+        attr_accessor :network_url
+      
         # The project id or number for the project to set the limit for.
         # Corresponds to the JSON property `projectIdOrNum`
         # @return [String]
@@ -34881,6 +35586,7 @@ module Google
         # Update properties of this object
         def update!(**args)
           @connection_limit = args[:connection_limit] if args.key?(:connection_limit)
+          @network_url = args[:network_url] if args.key?(:network_url)
           @project_id_or_num = args[:project_id_or_num] if args.key?(:project_id_or_num)
         end
       end
@@ -42321,6 +43027,22 @@ module Google
         # @return [String]
         attr_accessor :path_prefix_rewrite
       
+        # If specified, the pattern rewrites the URL path (based on the :path header)
+        # using the HTTP template syntax. A corresponding path_template_match must be
+        # specified. Any template variables must exist in the path_template_match field.
+        # - -At least one variable must be specified in the path_template_match field -
+        # You can omit variables from the rewritten URL - The * and ** operators cannot
+        # be matched unless they have a corresponding variable name - e.g. `format=*` or
+        # `var=**`. For example, a path_template_match of /static/`format=**` could be
+        # rewritten as /static/content/`format` to prefix /content to the URL. Variables
+        # can also be re-ordered in a rewrite, so that /`country`/`format`/`suffix=**`
+        # can be rewritten as /content/`format`/`country`/`suffix`. At least one non-
+        # empty routeRules[].matchRules[].path_template_match is required. Only one of
+        # path_prefix_rewrite or path_template_rewrite may be specified.
+        # Corresponds to the JSON property `pathTemplateRewrite`
+        # @return [String]
+        attr_accessor :path_template_rewrite
+      
         def initialize(**args)
            update!(**args)
         end
@@ -42329,6 +43051,7 @@ module Google
         def update!(**args)
           @host_rewrite = args[:host_rewrite] if args.key?(:host_rewrite)
           @path_prefix_rewrite = args[:path_prefix_rewrite] if args.key?(:path_prefix_rewrite)
+          @path_template_rewrite = args[:path_template_rewrite] if args.key?(:path_template_rewrite)
         end
       end