google-apis-logging_v2 0.66.0 → 0.67.0

Sign up to get free protection for your applications and to get access to all the features.
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: 98ce1ead67d482864f6edee32cac89919bbc1427a5e70cab3429ca059bf709f6
4
- data.tar.gz: 9258b6628680055c9eb1b474bbbc93db02935410863dcd7fffc80c31dad0457b
3
+ metadata.gz: 154b5f66e8e18806f7504f0e643ef131160668a93c40f1d843d514b16cb4ee69
4
+ data.tar.gz: 2ca95e013921f3664f9e2468f3e1664508df092d88fd474570ea9ddd912374ec
5
5
  SHA512:
6
- metadata.gz: 24b7d2acea83b82224c8caa58b00a1b725b85b850cfdaa4c9cb3c25944390ef9d2ea96449b57f4b69948598d3af9d46590290425311ba44c3750816eae0ff655
7
- data.tar.gz: 0a65946b198719843ebc9f54eed521beb71c3630d7ff1b844c27c5fa3d3fc069e79525041b5812642b0bd2ffd871062439569adc79e8cdca3395f3afa4d26423
6
+ metadata.gz: 6f75c83dee07c7ff6db7bdc55206977887df9dd9769b3fe34bfe3a1973f28c555848167ef6c1f835efc9f921c95ff39c1c8e1ea6f8bb92423af1e1eb1fc733e1
7
+ data.tar.gz: 1bf9219c2bcebfe88e26960c7558e7fcbf40b2d00cbde6d80cc8488b4b04c875ff335f7416bee7383db0c870b221e29127fc8ee3f1cf4945d80aef249ea9bfcc
data/CHANGELOG.md CHANGED
@@ -1,5 +1,9 @@
1
1
  # Release history for google-apis-logging_v2
2
2
 
3
+ ### v0.67.0 (2024-04-28)
4
+
5
+ * Regenerated from discovery document revision 20240419
6
+
3
7
  ### v0.66.0 (2024-03-17)
4
8
 
5
9
  * Regenerated from discovery document revision 20240311
@@ -22,6 +22,77 @@ module Google
22
22
  module Apis
23
23
  module LoggingV2
24
24
 
25
+ # Specifies the audit configuration for a service. The configuration determines
26
+ # which permission types are logged, and what identities, if any, are exempted
27
+ # from logging. An AuditConfig must have one or more AuditLogConfigs.If there
28
+ # are AuditConfigs for both allServices and a specific service, the union of the
29
+ # two AuditConfigs is used for that service: the log_types specified in each
30
+ # AuditConfig are enabled, and the exempted_members in each AuditLogConfig are
31
+ # exempted.Example Policy with multiple AuditConfigs: ` "audit_configs": [ ` "
32
+ # service": "allServices", "audit_log_configs": [ ` "log_type": "DATA_READ", "
33
+ # exempted_members": [ "user:jose@example.com" ] `, ` "log_type": "DATA_WRITE" `,
34
+ # ` "log_type": "ADMIN_READ" ` ] `, ` "service": "sampleservice.googleapis.com",
35
+ # "audit_log_configs": [ ` "log_type": "DATA_READ" `, ` "log_type": "DATA_WRITE"
36
+ # , "exempted_members": [ "user:aliya@example.com" ] ` ] ` ] ` For sampleservice,
37
+ # this policy enables DATA_READ, DATA_WRITE and ADMIN_READ logging. It also
38
+ # exempts jose@example.com from DATA_READ logging, and aliya@example.com from
39
+ # DATA_WRITE logging.
40
+ class AuditConfig
41
+ include Google::Apis::Core::Hashable
42
+
43
+ # The configuration for logging of each type of permission.
44
+ # Corresponds to the JSON property `auditLogConfigs`
45
+ # @return [Array<Google::Apis::LoggingV2::AuditLogConfig>]
46
+ attr_accessor :audit_log_configs
47
+
48
+ # Specifies a service that will be enabled for audit logging. For example,
49
+ # storage.googleapis.com, cloudsql.googleapis.com. allServices is a special
50
+ # value that covers all services.
51
+ # Corresponds to the JSON property `service`
52
+ # @return [String]
53
+ attr_accessor :service
54
+
55
+ def initialize(**args)
56
+ update!(**args)
57
+ end
58
+
59
+ # Update properties of this object
60
+ def update!(**args)
61
+ @audit_log_configs = args[:audit_log_configs] if args.key?(:audit_log_configs)
62
+ @service = args[:service] if args.key?(:service)
63
+ end
64
+ end
65
+
66
+ # Provides the configuration for logging a type of permissions. Example: ` "
67
+ # audit_log_configs": [ ` "log_type": "DATA_READ", "exempted_members": [ "user:
68
+ # jose@example.com" ] `, ` "log_type": "DATA_WRITE" ` ] ` This enables '
69
+ # DATA_READ' and 'DATA_WRITE' logging, while exempting jose@example.com from
70
+ # DATA_READ logging.
71
+ class AuditLogConfig
72
+ include Google::Apis::Core::Hashable
73
+
74
+ # Specifies the identities that do not cause logging for this type of permission.
75
+ # Follows the same format of Binding.members.
76
+ # Corresponds to the JSON property `exemptedMembers`
77
+ # @return [Array<String>]
78
+ attr_accessor :exempted_members
79
+
80
+ # The log type that this config enables.
81
+ # Corresponds to the JSON property `logType`
82
+ # @return [String]
83
+ attr_accessor :log_type
84
+
85
+ def initialize(**args)
86
+ update!(**args)
87
+ end
88
+
89
+ # Update properties of this object
90
+ def update!(**args)
91
+ @exempted_members = args[:exempted_members] if args.key?(:exempted_members)
92
+ @log_type = args[:log_type] if args.key?(:log_type)
93
+ end
94
+ end
95
+
25
96
  # Describes a BigQuery dataset that was created by a link.
26
97
  class BigQueryDataset
27
98
  include Google::Apis::Core::Hashable
@@ -82,6 +153,106 @@ module Google
82
153
  end
83
154
  end
84
155
 
156
+ # Associates members, or principals, with a role.
157
+ class Binding
158
+ include Google::Apis::Core::Hashable
159
+
160
+ # Represents a textual expression in the Common Expression Language (CEL) syntax.
161
+ # CEL is a C-like expression language. The syntax and semantics of CEL are
162
+ # documented at https://github.com/google/cel-spec.Example (Comparison): title: "
163
+ # Summary size limit" description: "Determines if a summary is less than 100
164
+ # chars" expression: "document.summary.size() < 100" Example (Equality): title: "
165
+ # Requestor is owner" description: "Determines if requestor is the document
166
+ # owner" expression: "document.owner == request.auth.claims.email" Example (
167
+ # Logic): title: "Public documents" description: "Determine whether the document
168
+ # should be publicly visible" expression: "document.type != 'private' &&
169
+ # document.type != 'internal'" Example (Data Manipulation): title: "Notification
170
+ # string" description: "Create a notification string with a timestamp."
171
+ # expression: "'New message received at ' + string(document.create_time)" The
172
+ # exact variables and functions that may be referenced within an expression are
173
+ # determined by the service that evaluates it. See the service documentation for
174
+ # additional information.
175
+ # Corresponds to the JSON property `condition`
176
+ # @return [Google::Apis::LoggingV2::Expr]
177
+ attr_accessor :condition
178
+
179
+ # Specifies the principals requesting access for a Google Cloud resource.
180
+ # members can have the following values: allUsers: A special identifier that
181
+ # represents anyone who is on the internet; with or without a Google account.
182
+ # allAuthenticatedUsers: A special identifier that represents anyone who is
183
+ # authenticated with a Google account or a service account. Does not include
184
+ # identities that come from external identity providers (IdPs) through identity
185
+ # federation. user:`emailid`: An email address that represents a specific Google
186
+ # account. For example, alice@example.com . serviceAccount:`emailid`: An email
187
+ # address that represents a Google service account. For example, my-other-app@
188
+ # appspot.gserviceaccount.com. serviceAccount:`projectid`.svc.id.goog[`namespace`
189
+ # /`kubernetes-sa`]: An identifier for a Kubernetes service account (https://
190
+ # cloud.google.com/kubernetes-engine/docs/how-to/kubernetes-service-accounts).
191
+ # For example, my-project.svc.id.goog[my-namespace/my-kubernetes-sa]. group:`
192
+ # emailid`: An email address that represents a Google group. For example, admins@
193
+ # example.com. domain:`domain`: The G Suite domain (primary) that represents all
194
+ # the users of that domain. For example, google.com or example.com. principal://
195
+ # iam.googleapis.com/locations/global/workforcePools/`pool_id`/subject/`
196
+ # subject_attribute_value`: A single identity in a workforce identity pool.
197
+ # principalSet://iam.googleapis.com/locations/global/workforcePools/`pool_id`/
198
+ # group/`group_id`: All workforce identities in a group. principalSet://iam.
199
+ # googleapis.com/locations/global/workforcePools/`pool_id`/attribute.`
200
+ # attribute_name`/`attribute_value`: All workforce identities with a specific
201
+ # attribute value. principalSet://iam.googleapis.com/locations/global/
202
+ # workforcePools/`pool_id`/*: All identities in a workforce identity pool.
203
+ # principal://iam.googleapis.com/projects/`project_number`/locations/global/
204
+ # workloadIdentityPools/`pool_id`/subject/`subject_attribute_value`: A single
205
+ # identity in a workload identity pool. principalSet://iam.googleapis.com/
206
+ # projects/`project_number`/locations/global/workloadIdentityPools/`pool_id`/
207
+ # group/`group_id`: A workload identity pool group. principalSet://iam.
208
+ # googleapis.com/projects/`project_number`/locations/global/
209
+ # workloadIdentityPools/`pool_id`/attribute.`attribute_name`/`attribute_value`:
210
+ # All identities in a workload identity pool with a certain attribute.
211
+ # principalSet://iam.googleapis.com/projects/`project_number`/locations/global/
212
+ # workloadIdentityPools/`pool_id`/*: All identities in a workload identity pool.
213
+ # deleted:user:`emailid`?uid=`uniqueid`: An email address (plus unique
214
+ # identifier) representing a user that has been recently deleted. For example,
215
+ # alice@example.com?uid=123456789012345678901. If the user is recovered, this
216
+ # value reverts to user:`emailid` and the recovered user retains the role in the
217
+ # binding. deleted:serviceAccount:`emailid`?uid=`uniqueid`: An email address (
218
+ # plus unique identifier) representing a service account that has been recently
219
+ # deleted. For example, my-other-app@appspot.gserviceaccount.com?uid=
220
+ # 123456789012345678901. If the service account is undeleted, this value reverts
221
+ # to serviceAccount:`emailid` and the undeleted service account retains the role
222
+ # in the binding. deleted:group:`emailid`?uid=`uniqueid`: An email address (plus
223
+ # unique identifier) representing a Google group that has been recently deleted.
224
+ # For example, admins@example.com?uid=123456789012345678901. If the group is
225
+ # recovered, this value reverts to group:`emailid` and the recovered group
226
+ # retains the role in the binding. deleted:principal://iam.googleapis.com/
227
+ # locations/global/workforcePools/`pool_id`/subject/`subject_attribute_value`:
228
+ # Deleted single identity in a workforce identity pool. For example, deleted:
229
+ # principal://iam.googleapis.com/locations/global/workforcePools/my-pool-id/
230
+ # subject/my-subject-attribute-value.
231
+ # Corresponds to the JSON property `members`
232
+ # @return [Array<String>]
233
+ attr_accessor :members
234
+
235
+ # Role that is assigned to the list of members, or principals. For example,
236
+ # roles/viewer, roles/editor, or roles/owner.For an overview of the IAM roles
237
+ # and permissions, see the IAM documentation (https://cloud.google.com/iam/docs/
238
+ # roles-overview). For a list of the available pre-defined roles, see here (
239
+ # https://cloud.google.com/iam/docs/understanding-roles).
240
+ # Corresponds to the JSON property `role`
241
+ # @return [String]
242
+ attr_accessor :role
243
+
244
+ def initialize(**args)
245
+ update!(**args)
246
+ end
247
+
248
+ # Update properties of this object
249
+ def update!(**args)
250
+ @condition = args[:condition] if args.key?(:condition)
251
+ @members = args[:members] if args.key?(:members)
252
+ @role = args[:role] if args.key?(:role)
253
+ end
254
+ end
255
+
85
256
  # Metadata for LongRunningUpdateBucket Operations.
86
257
  class BucketMetadata
87
258
  include Google::Apis::Core::Hashable
@@ -607,6 +778,107 @@ module Google
607
778
  end
608
779
  end
609
780
 
781
+ # Represents a textual expression in the Common Expression Language (CEL) syntax.
782
+ # CEL is a C-like expression language. The syntax and semantics of CEL are
783
+ # documented at https://github.com/google/cel-spec.Example (Comparison): title: "
784
+ # Summary size limit" description: "Determines if a summary is less than 100
785
+ # chars" expression: "document.summary.size() < 100" Example (Equality): title: "
786
+ # Requestor is owner" description: "Determines if requestor is the document
787
+ # owner" expression: "document.owner == request.auth.claims.email" Example (
788
+ # Logic): title: "Public documents" description: "Determine whether the document
789
+ # should be publicly visible" expression: "document.type != 'private' &&
790
+ # document.type != 'internal'" Example (Data Manipulation): title: "Notification
791
+ # string" description: "Create a notification string with a timestamp."
792
+ # expression: "'New message received at ' + string(document.create_time)" The
793
+ # exact variables and functions that may be referenced within an expression are
794
+ # determined by the service that evaluates it. See the service documentation for
795
+ # additional information.
796
+ class Expr
797
+ include Google::Apis::Core::Hashable
798
+
799
+ # Optional. Description of the expression. This is a longer text which describes
800
+ # the expression, e.g. when hovered over it in a UI.
801
+ # Corresponds to the JSON property `description`
802
+ # @return [String]
803
+ attr_accessor :description
804
+
805
+ # Textual representation of an expression in Common Expression Language syntax.
806
+ # Corresponds to the JSON property `expression`
807
+ # @return [String]
808
+ attr_accessor :expression
809
+
810
+ # Optional. String indicating the location of the expression for error reporting,
811
+ # e.g. a file name and a position in the file.
812
+ # Corresponds to the JSON property `location`
813
+ # @return [String]
814
+ attr_accessor :location
815
+
816
+ # Optional. Title for the expression, i.e. a short string describing its purpose.
817
+ # This can be used e.g. in UIs which allow to enter the expression.
818
+ # Corresponds to the JSON property `title`
819
+ # @return [String]
820
+ attr_accessor :title
821
+
822
+ def initialize(**args)
823
+ update!(**args)
824
+ end
825
+
826
+ # Update properties of this object
827
+ def update!(**args)
828
+ @description = args[:description] if args.key?(:description)
829
+ @expression = args[:expression] if args.key?(:expression)
830
+ @location = args[:location] if args.key?(:location)
831
+ @title = args[:title] if args.key?(:title)
832
+ end
833
+ end
834
+
835
+ # Request message for GetIamPolicy method.
836
+ class GetIamPolicyRequest
837
+ include Google::Apis::Core::Hashable
838
+
839
+ # Encapsulates settings provided to GetIamPolicy.
840
+ # Corresponds to the JSON property `options`
841
+ # @return [Google::Apis::LoggingV2::GetPolicyOptions]
842
+ attr_accessor :options
843
+
844
+ def initialize(**args)
845
+ update!(**args)
846
+ end
847
+
848
+ # Update properties of this object
849
+ def update!(**args)
850
+ @options = args[:options] if args.key?(:options)
851
+ end
852
+ end
853
+
854
+ # Encapsulates settings provided to GetIamPolicy.
855
+ class GetPolicyOptions
856
+ include Google::Apis::Core::Hashable
857
+
858
+ # Optional. The maximum policy version that will be used to format the policy.
859
+ # Valid values are 0, 1, and 3. Requests specifying an invalid value will be
860
+ # rejected.Requests for policies with any conditional role bindings must specify
861
+ # version 3. Policies with no conditional role bindings may specify any valid
862
+ # value or leave the field unset.The policy in the response might use the policy
863
+ # version that you specified, or it might use a lower policy version. For
864
+ # example, if you specify version 3, but the policy has no conditional role
865
+ # bindings, the response uses version 1.To learn which resources support
866
+ # conditions in their IAM policies, see the IAM documentation (https://cloud.
867
+ # google.com/iam/help/conditions/resource-policies).
868
+ # Corresponds to the JSON property `requestedPolicyVersion`
869
+ # @return [Fixnum]
870
+ attr_accessor :requested_policy_version
871
+
872
+ def initialize(**args)
873
+ update!(**args)
874
+ end
875
+
876
+ # Update properties of this object
877
+ def update!(**args)
878
+ @requested_policy_version = args[:requested_policy_version] if args.key?(:requested_policy_version)
879
+ end
880
+ end
881
+
610
882
  # A common proto for logging HTTP requests. Only contains semantics defined by
611
883
  # the HTTP specification. Product-specific logging information MUST be defined
612
884
  # in a separate message.
@@ -2809,6 +3081,99 @@ module Google
2809
3081
  end
2810
3082
  end
2811
3083
 
3084
+ # An Identity and Access Management (IAM) policy, which specifies access
3085
+ # controls for Google Cloud resources.A Policy is a collection of bindings. A
3086
+ # binding binds one or more members, or principals, to a single role. Principals
3087
+ # can be user accounts, service accounts, Google groups, and domains (such as G
3088
+ # Suite). A role is a named list of permissions; each role can be an IAM
3089
+ # predefined role or a user-created custom role.For some types of Google Cloud
3090
+ # resources, a binding can also specify a condition, which is a logical
3091
+ # expression that allows access to a resource only if the expression evaluates
3092
+ # to true. A condition can add constraints based on attributes of the request,
3093
+ # the resource, or both. To learn which resources support conditions in their
3094
+ # IAM policies, see the IAM documentation (https://cloud.google.com/iam/help/
3095
+ # conditions/resource-policies).JSON example: ` "bindings": [ ` "role": "roles/
3096
+ # resourcemanager.organizationAdmin", "members": [ "user:mike@example.com", "
3097
+ # group:admins@example.com", "domain:google.com", "serviceAccount:my-project-id@
3098
+ # appspot.gserviceaccount.com" ] `, ` "role": "roles/resourcemanager.
3099
+ # organizationViewer", "members": [ "user:eve@example.com" ], "condition": ` "
3100
+ # title": "expirable access", "description": "Does not grant access after Sep
3101
+ # 2020", "expression": "request.time < timestamp('2020-10-01T00:00:00.000Z')", `
3102
+ # ` ], "etag": "BwWWja0YfJA=", "version": 3 ` YAML example: bindings: - members:
3103
+ # - user:mike@example.com - group:admins@example.com - domain:google.com -
3104
+ # serviceAccount:my-project-id@appspot.gserviceaccount.com role: roles/
3105
+ # resourcemanager.organizationAdmin - members: - user:eve@example.com role:
3106
+ # roles/resourcemanager.organizationViewer condition: title: expirable access
3107
+ # description: Does not grant access after Sep 2020 expression: request.time <
3108
+ # timestamp('2020-10-01T00:00:00.000Z') etag: BwWWja0YfJA= version: 3 For a
3109
+ # description of IAM and its features, see the IAM documentation (https://cloud.
3110
+ # google.com/iam/docs/).
3111
+ class Policy
3112
+ include Google::Apis::Core::Hashable
3113
+
3114
+ # Specifies cloud audit logging configuration for this policy.
3115
+ # Corresponds to the JSON property `auditConfigs`
3116
+ # @return [Array<Google::Apis::LoggingV2::AuditConfig>]
3117
+ attr_accessor :audit_configs
3118
+
3119
+ # Associates a list of members, or principals, with a role. Optionally, may
3120
+ # specify a condition that determines how and when the bindings are applied.
3121
+ # Each of the bindings must contain at least one principal.The bindings in a
3122
+ # Policy can refer to up to 1,500 principals; up to 250 of these principals can
3123
+ # be Google groups. Each occurrence of a principal counts towards these limits.
3124
+ # For example, if the bindings grant 50 different roles to user:alice@example.
3125
+ # com, and not to any other principal, then you can add another 1,450 principals
3126
+ # to the bindings in the Policy.
3127
+ # Corresponds to the JSON property `bindings`
3128
+ # @return [Array<Google::Apis::LoggingV2::Binding>]
3129
+ attr_accessor :bindings
3130
+
3131
+ # etag is used for optimistic concurrency control as a way to help prevent
3132
+ # simultaneous updates of a policy from overwriting each other. It is strongly
3133
+ # suggested that systems make use of the etag in the read-modify-write cycle to
3134
+ # perform policy updates in order to avoid race conditions: An etag is returned
3135
+ # in the response to getIamPolicy, and systems are expected to put that etag in
3136
+ # the request to setIamPolicy to ensure that their change will be applied to the
3137
+ # same version of the policy.Important: If you use IAM Conditions, you must
3138
+ # include the etag field whenever you call setIamPolicy. If you omit this field,
3139
+ # then IAM allows you to overwrite a version 3 policy with a version 1 policy,
3140
+ # and all of the conditions in the version 3 policy are lost.
3141
+ # Corresponds to the JSON property `etag`
3142
+ # NOTE: Values are automatically base64 encoded/decoded in the client library.
3143
+ # @return [String]
3144
+ attr_accessor :etag
3145
+
3146
+ # Specifies the format of the policy.Valid values are 0, 1, and 3. Requests that
3147
+ # specify an invalid value are rejected.Any operation that affects conditional
3148
+ # role bindings must specify version 3. This requirement applies to the
3149
+ # following operations: Getting a policy that includes a conditional role
3150
+ # binding Adding a conditional role binding to a policy Changing a conditional
3151
+ # role binding in a policy Removing any role binding, with or without a
3152
+ # condition, from a policy that includes conditionsImportant: If you use IAM
3153
+ # Conditions, you must include the etag field whenever you call setIamPolicy. If
3154
+ # you omit this field, then IAM allows you to overwrite a version 3 policy with
3155
+ # a version 1 policy, and all of the conditions in the version 3 policy are lost.
3156
+ # If a policy does not include any conditions, operations on that policy may
3157
+ # specify any valid version or leave the field unset.To learn which resources
3158
+ # support conditions in their IAM policies, see the IAM documentation (https://
3159
+ # cloud.google.com/iam/help/conditions/resource-policies).
3160
+ # Corresponds to the JSON property `version`
3161
+ # @return [Fixnum]
3162
+ attr_accessor :version
3163
+
3164
+ def initialize(**args)
3165
+ update!(**args)
3166
+ end
3167
+
3168
+ # Update properties of this object
3169
+ def update!(**args)
3170
+ @audit_configs = args[:audit_configs] if args.key?(:audit_configs)
3171
+ @bindings = args[:bindings] if args.key?(:bindings)
3172
+ @etag = args[:etag] if args.key?(:etag)
3173
+ @version = args[:version] if args.key?(:version)
3174
+ end
3175
+ end
3176
+
2812
3177
  # Describes a recent query executed on the Logs Explorer or Log Analytics page
2813
3178
  # within the last ~ 30 days.
2814
3179
  class RecentQuery
@@ -3163,6 +3528,59 @@ module Google
3163
3528
  end
3164
3529
  end
3165
3530
 
3531
+ # Request message for SetIamPolicy method.
3532
+ class SetIamPolicyRequest
3533
+ include Google::Apis::Core::Hashable
3534
+
3535
+ # An Identity and Access Management (IAM) policy, which specifies access
3536
+ # controls for Google Cloud resources.A Policy is a collection of bindings. A
3537
+ # binding binds one or more members, or principals, to a single role. Principals
3538
+ # can be user accounts, service accounts, Google groups, and domains (such as G
3539
+ # Suite). A role is a named list of permissions; each role can be an IAM
3540
+ # predefined role or a user-created custom role.For some types of Google Cloud
3541
+ # resources, a binding can also specify a condition, which is a logical
3542
+ # expression that allows access to a resource only if the expression evaluates
3543
+ # to true. A condition can add constraints based on attributes of the request,
3544
+ # the resource, or both. To learn which resources support conditions in their
3545
+ # IAM policies, see the IAM documentation (https://cloud.google.com/iam/help/
3546
+ # conditions/resource-policies).JSON example: ` "bindings": [ ` "role": "roles/
3547
+ # resourcemanager.organizationAdmin", "members": [ "user:mike@example.com", "
3548
+ # group:admins@example.com", "domain:google.com", "serviceAccount:my-project-id@
3549
+ # appspot.gserviceaccount.com" ] `, ` "role": "roles/resourcemanager.
3550
+ # organizationViewer", "members": [ "user:eve@example.com" ], "condition": ` "
3551
+ # title": "expirable access", "description": "Does not grant access after Sep
3552
+ # 2020", "expression": "request.time < timestamp('2020-10-01T00:00:00.000Z')", `
3553
+ # ` ], "etag": "BwWWja0YfJA=", "version": 3 ` YAML example: bindings: - members:
3554
+ # - user:mike@example.com - group:admins@example.com - domain:google.com -
3555
+ # serviceAccount:my-project-id@appspot.gserviceaccount.com role: roles/
3556
+ # resourcemanager.organizationAdmin - members: - user:eve@example.com role:
3557
+ # roles/resourcemanager.organizationViewer condition: title: expirable access
3558
+ # description: Does not grant access after Sep 2020 expression: request.time <
3559
+ # timestamp('2020-10-01T00:00:00.000Z') etag: BwWWja0YfJA= version: 3 For a
3560
+ # description of IAM and its features, see the IAM documentation (https://cloud.
3561
+ # google.com/iam/docs/).
3562
+ # Corresponds to the JSON property `policy`
3563
+ # @return [Google::Apis::LoggingV2::Policy]
3564
+ attr_accessor :policy
3565
+
3566
+ # OPTIONAL: A FieldMask specifying which fields of the policy to modify. Only
3567
+ # the fields in the mask will be modified. If no mask is provided, the following
3568
+ # default mask is used:paths: "bindings, etag"
3569
+ # Corresponds to the JSON property `updateMask`
3570
+ # @return [String]
3571
+ attr_accessor :update_mask
3572
+
3573
+ def initialize(**args)
3574
+ update!(**args)
3575
+ end
3576
+
3577
+ # Update properties of this object
3578
+ def update!(**args)
3579
+ @policy = args[:policy] if args.key?(:policy)
3580
+ @update_mask = args[:update_mask] if args.key?(:update_mask)
3581
+ end
3582
+ end
3583
+
3166
3584
  # Describes the settings associated with a project, folder, organization, or
3167
3585
  # billing account.
3168
3586
  class Settings
@@ -3470,6 +3888,46 @@ module Google
3470
3888
  end
3471
3889
  end
3472
3890
 
3891
+ # Request message for TestIamPermissions method.
3892
+ class TestIamPermissionsRequest
3893
+ include Google::Apis::Core::Hashable
3894
+
3895
+ # The set of permissions to check for the resource. Permissions with wildcards (
3896
+ # such as * or storage.*) are not allowed. For more information see IAM Overview
3897
+ # (https://cloud.google.com/iam/docs/overview#permissions).
3898
+ # Corresponds to the JSON property `permissions`
3899
+ # @return [Array<String>]
3900
+ attr_accessor :permissions
3901
+
3902
+ def initialize(**args)
3903
+ update!(**args)
3904
+ end
3905
+
3906
+ # Update properties of this object
3907
+ def update!(**args)
3908
+ @permissions = args[:permissions] if args.key?(:permissions)
3909
+ end
3910
+ end
3911
+
3912
+ # Response message for TestIamPermissions method.
3913
+ class TestIamPermissionsResponse
3914
+ include Google::Apis::Core::Hashable
3915
+
3916
+ # A subset of TestPermissionsRequest.permissions that the caller is allowed.
3917
+ # Corresponds to the JSON property `permissions`
3918
+ # @return [Array<String>]
3919
+ attr_accessor :permissions
3920
+
3921
+ def initialize(**args)
3922
+ update!(**args)
3923
+ end
3924
+
3925
+ # Update properties of this object
3926
+ def update!(**args)
3927
+ @permissions = args[:permissions] if args.key?(:permissions)
3928
+ end
3929
+ end
3930
+
3473
3931
  # The parameters to UndeleteBucket.
3474
3932
  class UndeleteBucketRequest
3475
3933
  include Google::Apis::Core::Hashable
@@ -16,13 +16,13 @@ module Google
16
16
  module Apis
17
17
  module LoggingV2
18
18
  # Version of the google-apis-logging_v2 gem
19
- GEM_VERSION = "0.66.0"
19
+ GEM_VERSION = "0.67.0"
20
20
 
21
21
  # Version of the code generator used to generate this client
22
22
  GENERATOR_VERSION = "0.14.0"
23
23
 
24
24
  # Revision of the discovery document this client was generated from
25
- REVISION = "20240311"
25
+ REVISION = "20240419"
26
26
  end
27
27
  end
28
28
  end
@@ -22,6 +22,18 @@ module Google
22
22
  module Apis
23
23
  module LoggingV2
24
24
 
25
+ class AuditConfig
26
+ class Representation < Google::Apis::Core::JsonRepresentation; end
27
+
28
+ include Google::Apis::Core::JsonObjectSupport
29
+ end
30
+
31
+ class AuditLogConfig
32
+ class Representation < Google::Apis::Core::JsonRepresentation; end
33
+
34
+ include Google::Apis::Core::JsonObjectSupport
35
+ end
36
+
25
37
  class BigQueryDataset
26
38
  class Representation < Google::Apis::Core::JsonRepresentation; end
27
39
 
@@ -34,6 +46,12 @@ module Google
34
46
  include Google::Apis::Core::JsonObjectSupport
35
47
  end
36
48
 
49
+ class Binding
50
+ class Representation < Google::Apis::Core::JsonRepresentation; end
51
+
52
+ include Google::Apis::Core::JsonObjectSupport
53
+ end
54
+
37
55
  class BucketMetadata
38
56
  class Representation < Google::Apis::Core::JsonRepresentation; end
39
57
 
@@ -118,6 +136,24 @@ module Google
118
136
  include Google::Apis::Core::JsonObjectSupport
119
137
  end
120
138
 
139
+ class Expr
140
+ class Representation < Google::Apis::Core::JsonRepresentation; end
141
+
142
+ include Google::Apis::Core::JsonObjectSupport
143
+ end
144
+
145
+ class GetIamPolicyRequest
146
+ class Representation < Google::Apis::Core::JsonRepresentation; end
147
+
148
+ include Google::Apis::Core::JsonObjectSupport
149
+ end
150
+
151
+ class GetPolicyOptions
152
+ class Representation < Google::Apis::Core::JsonRepresentation; end
153
+
154
+ include Google::Apis::Core::JsonObjectSupport
155
+ end
156
+
121
157
  class HttpRequest
122
158
  class Representation < Google::Apis::Core::JsonRepresentation; end
123
159
 
@@ -364,6 +400,12 @@ module Google
364
400
  include Google::Apis::Core::JsonObjectSupport
365
401
  end
366
402
 
403
+ class Policy
404
+ class Representation < Google::Apis::Core::JsonRepresentation; end
405
+
406
+ include Google::Apis::Core::JsonObjectSupport
407
+ end
408
+
367
409
  class RecentQuery
368
410
  class Representation < Google::Apis::Core::JsonRepresentation; end
369
411
 
@@ -382,6 +424,12 @@ module Google
382
424
  include Google::Apis::Core::JsonObjectSupport
383
425
  end
384
426
 
427
+ class SetIamPolicyRequest
428
+ class Representation < Google::Apis::Core::JsonRepresentation; end
429
+
430
+ include Google::Apis::Core::JsonObjectSupport
431
+ end
432
+
385
433
  class Settings
386
434
  class Representation < Google::Apis::Core::JsonRepresentation; end
387
435
 
@@ -430,6 +478,18 @@ module Google
430
478
  include Google::Apis::Core::JsonObjectSupport
431
479
  end
432
480
 
481
+ class TestIamPermissionsRequest
482
+ class Representation < Google::Apis::Core::JsonRepresentation; end
483
+
484
+ include Google::Apis::Core::JsonObjectSupport
485
+ end
486
+
487
+ class TestIamPermissionsResponse
488
+ class Representation < Google::Apis::Core::JsonRepresentation; end
489
+
490
+ include Google::Apis::Core::JsonObjectSupport
491
+ end
492
+
433
493
  class UndeleteBucketRequest
434
494
  class Representation < Google::Apis::Core::JsonRepresentation; end
435
495
 
@@ -454,6 +514,23 @@ module Google
454
514
  include Google::Apis::Core::JsonObjectSupport
455
515
  end
456
516
 
517
+ class AuditConfig
518
+ # @private
519
+ class Representation < Google::Apis::Core::JsonRepresentation
520
+ collection :audit_log_configs, as: 'auditLogConfigs', class: Google::Apis::LoggingV2::AuditLogConfig, decorator: Google::Apis::LoggingV2::AuditLogConfig::Representation
521
+
522
+ property :service, as: 'service'
523
+ end
524
+ end
525
+
526
+ class AuditLogConfig
527
+ # @private
528
+ class Representation < Google::Apis::Core::JsonRepresentation
529
+ collection :exempted_members, as: 'exemptedMembers'
530
+ property :log_type, as: 'logType'
531
+ end
532
+ end
533
+
457
534
  class BigQueryDataset
458
535
  # @private
459
536
  class Representation < Google::Apis::Core::JsonRepresentation
@@ -469,6 +546,16 @@ module Google
469
546
  end
470
547
  end
471
548
 
549
+ class Binding
550
+ # @private
551
+ class Representation < Google::Apis::Core::JsonRepresentation
552
+ property :condition, as: 'condition', class: Google::Apis::LoggingV2::Expr, decorator: Google::Apis::LoggingV2::Expr::Representation
553
+
554
+ collection :members, as: 'members'
555
+ property :role, as: 'role'
556
+ end
557
+ end
558
+
472
559
  class BucketMetadata
473
560
  # @private
474
561
  class Representation < Google::Apis::Core::JsonRepresentation
@@ -602,6 +689,31 @@ module Google
602
689
  end
603
690
  end
604
691
 
692
+ class Expr
693
+ # @private
694
+ class Representation < Google::Apis::Core::JsonRepresentation
695
+ property :description, as: 'description'
696
+ property :expression, as: 'expression'
697
+ property :location, as: 'location'
698
+ property :title, as: 'title'
699
+ end
700
+ end
701
+
702
+ class GetIamPolicyRequest
703
+ # @private
704
+ class Representation < Google::Apis::Core::JsonRepresentation
705
+ property :options, as: 'options', class: Google::Apis::LoggingV2::GetPolicyOptions, decorator: Google::Apis::LoggingV2::GetPolicyOptions::Representation
706
+
707
+ end
708
+ end
709
+
710
+ class GetPolicyOptions
711
+ # @private
712
+ class Representation < Google::Apis::Core::JsonRepresentation
713
+ property :requested_policy_version, as: 'requestedPolicyVersion'
714
+ end
715
+ end
716
+
605
717
  class HttpRequest
606
718
  # @private
607
719
  class Representation < Google::Apis::Core::JsonRepresentation
@@ -1072,6 +1184,18 @@ module Google
1072
1184
  end
1073
1185
  end
1074
1186
 
1187
+ class Policy
1188
+ # @private
1189
+ class Representation < Google::Apis::Core::JsonRepresentation
1190
+ collection :audit_configs, as: 'auditConfigs', class: Google::Apis::LoggingV2::AuditConfig, decorator: Google::Apis::LoggingV2::AuditConfig::Representation
1191
+
1192
+ collection :bindings, as: 'bindings', class: Google::Apis::LoggingV2::Binding, decorator: Google::Apis::LoggingV2::Binding::Representation
1193
+
1194
+ property :etag, :base64 => true, as: 'etag'
1195
+ property :version, as: 'version'
1196
+ end
1197
+ end
1198
+
1075
1199
  class RecentQuery
1076
1200
  # @private
1077
1201
  class Representation < Google::Apis::Core::JsonRepresentation
@@ -1142,6 +1266,15 @@ module Google
1142
1266
  end
1143
1267
  end
1144
1268
 
1269
+ class SetIamPolicyRequest
1270
+ # @private
1271
+ class Representation < Google::Apis::Core::JsonRepresentation
1272
+ property :policy, as: 'policy', class: Google::Apis::LoggingV2::Policy, decorator: Google::Apis::LoggingV2::Policy::Representation
1273
+
1274
+ property :update_mask, as: 'updateMask'
1275
+ end
1276
+ end
1277
+
1145
1278
  class Settings
1146
1279
  # @private
1147
1280
  class Representation < Google::Apis::Core::JsonRepresentation
@@ -1216,6 +1349,20 @@ module Google
1216
1349
  end
1217
1350
  end
1218
1351
 
1352
+ class TestIamPermissionsRequest
1353
+ # @private
1354
+ class Representation < Google::Apis::Core::JsonRepresentation
1355
+ collection :permissions, as: 'permissions'
1356
+ end
1357
+ end
1358
+
1359
+ class TestIamPermissionsResponse
1360
+ # @private
1361
+ class Representation < Google::Apis::Core::JsonRepresentation
1362
+ collection :permissions, as: 'permissions'
1363
+ end
1364
+ end
1365
+
1219
1366
  class UndeleteBucketRequest
1220
1367
  # @private
1221
1368
  class Representation < Google::Apis::Core::JsonRepresentation
@@ -3154,6 +3154,42 @@ module Google
3154
3154
  execute_or_queue_command(command, &block)
3155
3155
  end
3156
3156
 
3157
+ # Gets the access control policy for a resource. Returns an empty policy if the
3158
+ # resource exists and does not have a policy set.
3159
+ # @param [String] resource
3160
+ # REQUIRED: The resource for which the policy is being requested. See Resource
3161
+ # names (https://cloud.google.com/apis/design/resource_names) for the
3162
+ # appropriate value for this field.
3163
+ # @param [Google::Apis::LoggingV2::GetIamPolicyRequest] get_iam_policy_request_object
3164
+ # @param [String] fields
3165
+ # Selector specifying which fields to include in a partial response.
3166
+ # @param [String] quota_user
3167
+ # Available to use for quota purposes for server-side applications. Can be any
3168
+ # arbitrary string assigned to a user, but should not exceed 40 characters.
3169
+ # @param [Google::Apis::RequestOptions] options
3170
+ # Request-specific options
3171
+ #
3172
+ # @yield [result, err] Result & error if block supplied
3173
+ # @yieldparam result [Google::Apis::LoggingV2::Policy] parsed result object
3174
+ # @yieldparam err [StandardError] error object if request failed
3175
+ #
3176
+ # @return [Google::Apis::LoggingV2::Policy]
3177
+ #
3178
+ # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
3179
+ # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
3180
+ # @raise [Google::Apis::AuthorizationError] Authorization is required
3181
+ def get_folder_location_bucket_view_iam_policy(resource, get_iam_policy_request_object = nil, fields: nil, quota_user: nil, options: nil, &block)
3182
+ command = make_simple_command(:post, 'v2/{+resource}:getIamPolicy', options)
3183
+ command.request_representation = Google::Apis::LoggingV2::GetIamPolicyRequest::Representation
3184
+ command.request_object = get_iam_policy_request_object
3185
+ command.response_representation = Google::Apis::LoggingV2::Policy::Representation
3186
+ command.response_class = Google::Apis::LoggingV2::Policy
3187
+ command.params['resource'] = resource unless resource.nil?
3188
+ command.query['fields'] = fields unless fields.nil?
3189
+ command.query['quotaUser'] = quota_user unless quota_user.nil?
3190
+ execute_or_queue_command(command, &block)
3191
+ end
3192
+
3157
3193
  # Lists views on a log bucket.
3158
3194
  # @param [String] parent
3159
3195
  # Required. The bucket whose views are to be listed: "projects/[PROJECT_ID]/
@@ -3242,6 +3278,82 @@ module Google
3242
3278
  execute_or_queue_command(command, &block)
3243
3279
  end
3244
3280
 
3281
+ # Sets the access control policy on the specified resource. Replaces any
3282
+ # existing policy.Can return NOT_FOUND, INVALID_ARGUMENT, and PERMISSION_DENIED
3283
+ # errors.
3284
+ # @param [String] resource
3285
+ # REQUIRED: The resource for which the policy is being specified. See Resource
3286
+ # names (https://cloud.google.com/apis/design/resource_names) for the
3287
+ # appropriate value for this field.
3288
+ # @param [Google::Apis::LoggingV2::SetIamPolicyRequest] set_iam_policy_request_object
3289
+ # @param [String] fields
3290
+ # Selector specifying which fields to include in a partial response.
3291
+ # @param [String] quota_user
3292
+ # Available to use for quota purposes for server-side applications. Can be any
3293
+ # arbitrary string assigned to a user, but should not exceed 40 characters.
3294
+ # @param [Google::Apis::RequestOptions] options
3295
+ # Request-specific options
3296
+ #
3297
+ # @yield [result, err] Result & error if block supplied
3298
+ # @yieldparam result [Google::Apis::LoggingV2::Policy] parsed result object
3299
+ # @yieldparam err [StandardError] error object if request failed
3300
+ #
3301
+ # @return [Google::Apis::LoggingV2::Policy]
3302
+ #
3303
+ # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
3304
+ # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
3305
+ # @raise [Google::Apis::AuthorizationError] Authorization is required
3306
+ def set_folder_location_bucket_view_iam_policy(resource, set_iam_policy_request_object = nil, fields: nil, quota_user: nil, options: nil, &block)
3307
+ command = make_simple_command(:post, 'v2/{+resource}:setIamPolicy', options)
3308
+ command.request_representation = Google::Apis::LoggingV2::SetIamPolicyRequest::Representation
3309
+ command.request_object = set_iam_policy_request_object
3310
+ command.response_representation = Google::Apis::LoggingV2::Policy::Representation
3311
+ command.response_class = Google::Apis::LoggingV2::Policy
3312
+ command.params['resource'] = resource unless resource.nil?
3313
+ command.query['fields'] = fields unless fields.nil?
3314
+ command.query['quotaUser'] = quota_user unless quota_user.nil?
3315
+ execute_or_queue_command(command, &block)
3316
+ end
3317
+
3318
+ # Returns permissions that a caller has on the specified resource. If the
3319
+ # resource does not exist, this will return an empty set of permissions, not a
3320
+ # NOT_FOUND error.Note: This operation is designed to be used for building
3321
+ # permission-aware UIs and command-line tools, not for authorization checking.
3322
+ # This operation may "fail open" without warning.
3323
+ # @param [String] resource
3324
+ # REQUIRED: The resource for which the policy detail is being requested. See
3325
+ # Resource names (https://cloud.google.com/apis/design/resource_names) for the
3326
+ # appropriate value for this field.
3327
+ # @param [Google::Apis::LoggingV2::TestIamPermissionsRequest] test_iam_permissions_request_object
3328
+ # @param [String] fields
3329
+ # Selector specifying which fields to include in a partial response.
3330
+ # @param [String] quota_user
3331
+ # Available to use for quota purposes for server-side applications. Can be any
3332
+ # arbitrary string assigned to a user, but should not exceed 40 characters.
3333
+ # @param [Google::Apis::RequestOptions] options
3334
+ # Request-specific options
3335
+ #
3336
+ # @yield [result, err] Result & error if block supplied
3337
+ # @yieldparam result [Google::Apis::LoggingV2::TestIamPermissionsResponse] parsed result object
3338
+ # @yieldparam err [StandardError] error object if request failed
3339
+ #
3340
+ # @return [Google::Apis::LoggingV2::TestIamPermissionsResponse]
3341
+ #
3342
+ # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
3343
+ # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
3344
+ # @raise [Google::Apis::AuthorizationError] Authorization is required
3345
+ def test_folder_location_bucket_view_iam_permissions(resource, test_iam_permissions_request_object = nil, fields: nil, quota_user: nil, options: nil, &block)
3346
+ command = make_simple_command(:post, 'v2/{+resource}:testIamPermissions', options)
3347
+ command.request_representation = Google::Apis::LoggingV2::TestIamPermissionsRequest::Representation
3348
+ command.request_object = test_iam_permissions_request_object
3349
+ command.response_representation = Google::Apis::LoggingV2::TestIamPermissionsResponse::Representation
3350
+ command.response_class = Google::Apis::LoggingV2::TestIamPermissionsResponse
3351
+ command.params['resource'] = resource unless resource.nil?
3352
+ command.query['fields'] = fields unless fields.nil?
3353
+ command.query['quotaUser'] = quota_user unless quota_user.nil?
3354
+ execute_or_queue_command(command, &block)
3355
+ end
3356
+
3245
3357
  # Lists the logs in projects, organizations, folders, or billing accounts. Only
3246
3358
  # logs that have entries are listed.
3247
3359
  # @param [String] parent
@@ -4668,6 +4780,42 @@ module Google
4668
4780
  execute_or_queue_command(command, &block)
4669
4781
  end
4670
4782
 
4783
+ # Gets the access control policy for a resource. Returns an empty policy if the
4784
+ # resource exists and does not have a policy set.
4785
+ # @param [String] resource
4786
+ # REQUIRED: The resource for which the policy is being requested. See Resource
4787
+ # names (https://cloud.google.com/apis/design/resource_names) for the
4788
+ # appropriate value for this field.
4789
+ # @param [Google::Apis::LoggingV2::GetIamPolicyRequest] get_iam_policy_request_object
4790
+ # @param [String] fields
4791
+ # Selector specifying which fields to include in a partial response.
4792
+ # @param [String] quota_user
4793
+ # Available to use for quota purposes for server-side applications. Can be any
4794
+ # arbitrary string assigned to a user, but should not exceed 40 characters.
4795
+ # @param [Google::Apis::RequestOptions] options
4796
+ # Request-specific options
4797
+ #
4798
+ # @yield [result, err] Result & error if block supplied
4799
+ # @yieldparam result [Google::Apis::LoggingV2::Policy] parsed result object
4800
+ # @yieldparam err [StandardError] error object if request failed
4801
+ #
4802
+ # @return [Google::Apis::LoggingV2::Policy]
4803
+ #
4804
+ # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
4805
+ # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
4806
+ # @raise [Google::Apis::AuthorizationError] Authorization is required
4807
+ def get_location_bucket_view_iam_policy(resource, get_iam_policy_request_object = nil, fields: nil, quota_user: nil, options: nil, &block)
4808
+ command = make_simple_command(:post, 'v2/{+resource}:getIamPolicy', options)
4809
+ command.request_representation = Google::Apis::LoggingV2::GetIamPolicyRequest::Representation
4810
+ command.request_object = get_iam_policy_request_object
4811
+ command.response_representation = Google::Apis::LoggingV2::Policy::Representation
4812
+ command.response_class = Google::Apis::LoggingV2::Policy
4813
+ command.params['resource'] = resource unless resource.nil?
4814
+ command.query['fields'] = fields unless fields.nil?
4815
+ command.query['quotaUser'] = quota_user unless quota_user.nil?
4816
+ execute_or_queue_command(command, &block)
4817
+ end
4818
+
4671
4819
  # Lists views on a log bucket.
4672
4820
  # @param [String] parent
4673
4821
  # Required. The bucket whose views are to be listed: "projects/[PROJECT_ID]/
@@ -4756,6 +4904,82 @@ module Google
4756
4904
  execute_or_queue_command(command, &block)
4757
4905
  end
4758
4906
 
4907
+ # Sets the access control policy on the specified resource. Replaces any
4908
+ # existing policy.Can return NOT_FOUND, INVALID_ARGUMENT, and PERMISSION_DENIED
4909
+ # errors.
4910
+ # @param [String] resource
4911
+ # REQUIRED: The resource for which the policy is being specified. See Resource
4912
+ # names (https://cloud.google.com/apis/design/resource_names) for the
4913
+ # appropriate value for this field.
4914
+ # @param [Google::Apis::LoggingV2::SetIamPolicyRequest] set_iam_policy_request_object
4915
+ # @param [String] fields
4916
+ # Selector specifying which fields to include in a partial response.
4917
+ # @param [String] quota_user
4918
+ # Available to use for quota purposes for server-side applications. Can be any
4919
+ # arbitrary string assigned to a user, but should not exceed 40 characters.
4920
+ # @param [Google::Apis::RequestOptions] options
4921
+ # Request-specific options
4922
+ #
4923
+ # @yield [result, err] Result & error if block supplied
4924
+ # @yieldparam result [Google::Apis::LoggingV2::Policy] parsed result object
4925
+ # @yieldparam err [StandardError] error object if request failed
4926
+ #
4927
+ # @return [Google::Apis::LoggingV2::Policy]
4928
+ #
4929
+ # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
4930
+ # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
4931
+ # @raise [Google::Apis::AuthorizationError] Authorization is required
4932
+ def set_location_bucket_view_iam_policy(resource, set_iam_policy_request_object = nil, fields: nil, quota_user: nil, options: nil, &block)
4933
+ command = make_simple_command(:post, 'v2/{+resource}:setIamPolicy', options)
4934
+ command.request_representation = Google::Apis::LoggingV2::SetIamPolicyRequest::Representation
4935
+ command.request_object = set_iam_policy_request_object
4936
+ command.response_representation = Google::Apis::LoggingV2::Policy::Representation
4937
+ command.response_class = Google::Apis::LoggingV2::Policy
4938
+ command.params['resource'] = resource unless resource.nil?
4939
+ command.query['fields'] = fields unless fields.nil?
4940
+ command.query['quotaUser'] = quota_user unless quota_user.nil?
4941
+ execute_or_queue_command(command, &block)
4942
+ end
4943
+
4944
+ # Returns permissions that a caller has on the specified resource. If the
4945
+ # resource does not exist, this will return an empty set of permissions, not a
4946
+ # NOT_FOUND error.Note: This operation is designed to be used for building
4947
+ # permission-aware UIs and command-line tools, not for authorization checking.
4948
+ # This operation may "fail open" without warning.
4949
+ # @param [String] resource
4950
+ # REQUIRED: The resource for which the policy detail is being requested. See
4951
+ # Resource names (https://cloud.google.com/apis/design/resource_names) for the
4952
+ # appropriate value for this field.
4953
+ # @param [Google::Apis::LoggingV2::TestIamPermissionsRequest] test_iam_permissions_request_object
4954
+ # @param [String] fields
4955
+ # Selector specifying which fields to include in a partial response.
4956
+ # @param [String] quota_user
4957
+ # Available to use for quota purposes for server-side applications. Can be any
4958
+ # arbitrary string assigned to a user, but should not exceed 40 characters.
4959
+ # @param [Google::Apis::RequestOptions] options
4960
+ # Request-specific options
4961
+ #
4962
+ # @yield [result, err] Result & error if block supplied
4963
+ # @yieldparam result [Google::Apis::LoggingV2::TestIamPermissionsResponse] parsed result object
4964
+ # @yieldparam err [StandardError] error object if request failed
4965
+ #
4966
+ # @return [Google::Apis::LoggingV2::TestIamPermissionsResponse]
4967
+ #
4968
+ # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
4969
+ # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
4970
+ # @raise [Google::Apis::AuthorizationError] Authorization is required
4971
+ def test_location_bucket_view_iam_permissions(resource, test_iam_permissions_request_object = nil, fields: nil, quota_user: nil, options: nil, &block)
4972
+ command = make_simple_command(:post, 'v2/{+resource}:testIamPermissions', options)
4973
+ command.request_representation = Google::Apis::LoggingV2::TestIamPermissionsRequest::Representation
4974
+ command.request_object = test_iam_permissions_request_object
4975
+ command.response_representation = Google::Apis::LoggingV2::TestIamPermissionsResponse::Representation
4976
+ command.response_class = Google::Apis::LoggingV2::TestIamPermissionsResponse
4977
+ command.params['resource'] = resource unless resource.nil?
4978
+ command.query['fields'] = fields unless fields.nil?
4979
+ command.query['quotaUser'] = quota_user unless quota_user.nil?
4980
+ execute_or_queue_command(command, &block)
4981
+ end
4982
+
4759
4983
  # Starts asynchronous cancellation on a long-running operation. The server makes
4760
4984
  # a best effort to cancel the operation, but success is not guaranteed. If the
4761
4985
  # server doesn't support this method, it returns google.rpc.Code.UNIMPLEMENTED.
@@ -6045,6 +6269,42 @@ module Google
6045
6269
  execute_or_queue_command(command, &block)
6046
6270
  end
6047
6271
 
6272
+ # Gets the access control policy for a resource. Returns an empty policy if the
6273
+ # resource exists and does not have a policy set.
6274
+ # @param [String] resource
6275
+ # REQUIRED: The resource for which the policy is being requested. See Resource
6276
+ # names (https://cloud.google.com/apis/design/resource_names) for the
6277
+ # appropriate value for this field.
6278
+ # @param [Google::Apis::LoggingV2::GetIamPolicyRequest] get_iam_policy_request_object
6279
+ # @param [String] fields
6280
+ # Selector specifying which fields to include in a partial response.
6281
+ # @param [String] quota_user
6282
+ # Available to use for quota purposes for server-side applications. Can be any
6283
+ # arbitrary string assigned to a user, but should not exceed 40 characters.
6284
+ # @param [Google::Apis::RequestOptions] options
6285
+ # Request-specific options
6286
+ #
6287
+ # @yield [result, err] Result & error if block supplied
6288
+ # @yieldparam result [Google::Apis::LoggingV2::Policy] parsed result object
6289
+ # @yieldparam err [StandardError] error object if request failed
6290
+ #
6291
+ # @return [Google::Apis::LoggingV2::Policy]
6292
+ #
6293
+ # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
6294
+ # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
6295
+ # @raise [Google::Apis::AuthorizationError] Authorization is required
6296
+ def get_organization_location_bucket_view_iam_policy(resource, get_iam_policy_request_object = nil, fields: nil, quota_user: nil, options: nil, &block)
6297
+ command = make_simple_command(:post, 'v2/{+resource}:getIamPolicy', options)
6298
+ command.request_representation = Google::Apis::LoggingV2::GetIamPolicyRequest::Representation
6299
+ command.request_object = get_iam_policy_request_object
6300
+ command.response_representation = Google::Apis::LoggingV2::Policy::Representation
6301
+ command.response_class = Google::Apis::LoggingV2::Policy
6302
+ command.params['resource'] = resource unless resource.nil?
6303
+ command.query['fields'] = fields unless fields.nil?
6304
+ command.query['quotaUser'] = quota_user unless quota_user.nil?
6305
+ execute_or_queue_command(command, &block)
6306
+ end
6307
+
6048
6308
  # Lists views on a log bucket.
6049
6309
  # @param [String] parent
6050
6310
  # Required. The bucket whose views are to be listed: "projects/[PROJECT_ID]/
@@ -6133,6 +6393,82 @@ module Google
6133
6393
  execute_or_queue_command(command, &block)
6134
6394
  end
6135
6395
 
6396
+ # Sets the access control policy on the specified resource. Replaces any
6397
+ # existing policy.Can return NOT_FOUND, INVALID_ARGUMENT, and PERMISSION_DENIED
6398
+ # errors.
6399
+ # @param [String] resource
6400
+ # REQUIRED: The resource for which the policy is being specified. See Resource
6401
+ # names (https://cloud.google.com/apis/design/resource_names) for the
6402
+ # appropriate value for this field.
6403
+ # @param [Google::Apis::LoggingV2::SetIamPolicyRequest] set_iam_policy_request_object
6404
+ # @param [String] fields
6405
+ # Selector specifying which fields to include in a partial response.
6406
+ # @param [String] quota_user
6407
+ # Available to use for quota purposes for server-side applications. Can be any
6408
+ # arbitrary string assigned to a user, but should not exceed 40 characters.
6409
+ # @param [Google::Apis::RequestOptions] options
6410
+ # Request-specific options
6411
+ #
6412
+ # @yield [result, err] Result & error if block supplied
6413
+ # @yieldparam result [Google::Apis::LoggingV2::Policy] parsed result object
6414
+ # @yieldparam err [StandardError] error object if request failed
6415
+ #
6416
+ # @return [Google::Apis::LoggingV2::Policy]
6417
+ #
6418
+ # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
6419
+ # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
6420
+ # @raise [Google::Apis::AuthorizationError] Authorization is required
6421
+ def set_organization_location_bucket_view_iam_policy(resource, set_iam_policy_request_object = nil, fields: nil, quota_user: nil, options: nil, &block)
6422
+ command = make_simple_command(:post, 'v2/{+resource}:setIamPolicy', options)
6423
+ command.request_representation = Google::Apis::LoggingV2::SetIamPolicyRequest::Representation
6424
+ command.request_object = set_iam_policy_request_object
6425
+ command.response_representation = Google::Apis::LoggingV2::Policy::Representation
6426
+ command.response_class = Google::Apis::LoggingV2::Policy
6427
+ command.params['resource'] = resource unless resource.nil?
6428
+ command.query['fields'] = fields unless fields.nil?
6429
+ command.query['quotaUser'] = quota_user unless quota_user.nil?
6430
+ execute_or_queue_command(command, &block)
6431
+ end
6432
+
6433
+ # Returns permissions that a caller has on the specified resource. If the
6434
+ # resource does not exist, this will return an empty set of permissions, not a
6435
+ # NOT_FOUND error.Note: This operation is designed to be used for building
6436
+ # permission-aware UIs and command-line tools, not for authorization checking.
6437
+ # This operation may "fail open" without warning.
6438
+ # @param [String] resource
6439
+ # REQUIRED: The resource for which the policy detail is being requested. See
6440
+ # Resource names (https://cloud.google.com/apis/design/resource_names) for the
6441
+ # appropriate value for this field.
6442
+ # @param [Google::Apis::LoggingV2::TestIamPermissionsRequest] test_iam_permissions_request_object
6443
+ # @param [String] fields
6444
+ # Selector specifying which fields to include in a partial response.
6445
+ # @param [String] quota_user
6446
+ # Available to use for quota purposes for server-side applications. Can be any
6447
+ # arbitrary string assigned to a user, but should not exceed 40 characters.
6448
+ # @param [Google::Apis::RequestOptions] options
6449
+ # Request-specific options
6450
+ #
6451
+ # @yield [result, err] Result & error if block supplied
6452
+ # @yieldparam result [Google::Apis::LoggingV2::TestIamPermissionsResponse] parsed result object
6453
+ # @yieldparam err [StandardError] error object if request failed
6454
+ #
6455
+ # @return [Google::Apis::LoggingV2::TestIamPermissionsResponse]
6456
+ #
6457
+ # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
6458
+ # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
6459
+ # @raise [Google::Apis::AuthorizationError] Authorization is required
6460
+ def test_organization_location_bucket_view_iam_permissions(resource, test_iam_permissions_request_object = nil, fields: nil, quota_user: nil, options: nil, &block)
6461
+ command = make_simple_command(:post, 'v2/{+resource}:testIamPermissions', options)
6462
+ command.request_representation = Google::Apis::LoggingV2::TestIamPermissionsRequest::Representation
6463
+ command.request_object = test_iam_permissions_request_object
6464
+ command.response_representation = Google::Apis::LoggingV2::TestIamPermissionsResponse::Representation
6465
+ command.response_class = Google::Apis::LoggingV2::TestIamPermissionsResponse
6466
+ command.params['resource'] = resource unless resource.nil?
6467
+ command.query['fields'] = fields unless fields.nil?
6468
+ command.query['quotaUser'] = quota_user unless quota_user.nil?
6469
+ execute_or_queue_command(command, &block)
6470
+ end
6471
+
6136
6472
  # Lists the logs in projects, organizations, folders, or billing accounts. Only
6137
6473
  # logs that have entries are listed.
6138
6474
  # @param [String] parent
@@ -7831,6 +8167,42 @@ module Google
7831
8167
  execute_or_queue_command(command, &block)
7832
8168
  end
7833
8169
 
8170
+ # Gets the access control policy for a resource. Returns an empty policy if the
8171
+ # resource exists and does not have a policy set.
8172
+ # @param [String] resource
8173
+ # REQUIRED: The resource for which the policy is being requested. See Resource
8174
+ # names (https://cloud.google.com/apis/design/resource_names) for the
8175
+ # appropriate value for this field.
8176
+ # @param [Google::Apis::LoggingV2::GetIamPolicyRequest] get_iam_policy_request_object
8177
+ # @param [String] fields
8178
+ # Selector specifying which fields to include in a partial response.
8179
+ # @param [String] quota_user
8180
+ # Available to use for quota purposes for server-side applications. Can be any
8181
+ # arbitrary string assigned to a user, but should not exceed 40 characters.
8182
+ # @param [Google::Apis::RequestOptions] options
8183
+ # Request-specific options
8184
+ #
8185
+ # @yield [result, err] Result & error if block supplied
8186
+ # @yieldparam result [Google::Apis::LoggingV2::Policy] parsed result object
8187
+ # @yieldparam err [StandardError] error object if request failed
8188
+ #
8189
+ # @return [Google::Apis::LoggingV2::Policy]
8190
+ #
8191
+ # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
8192
+ # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
8193
+ # @raise [Google::Apis::AuthorizationError] Authorization is required
8194
+ def get_project_location_bucket_view_iam_policy(resource, get_iam_policy_request_object = nil, fields: nil, quota_user: nil, options: nil, &block)
8195
+ command = make_simple_command(:post, 'v2/{+resource}:getIamPolicy', options)
8196
+ command.request_representation = Google::Apis::LoggingV2::GetIamPolicyRequest::Representation
8197
+ command.request_object = get_iam_policy_request_object
8198
+ command.response_representation = Google::Apis::LoggingV2::Policy::Representation
8199
+ command.response_class = Google::Apis::LoggingV2::Policy
8200
+ command.params['resource'] = resource unless resource.nil?
8201
+ command.query['fields'] = fields unless fields.nil?
8202
+ command.query['quotaUser'] = quota_user unless quota_user.nil?
8203
+ execute_or_queue_command(command, &block)
8204
+ end
8205
+
7834
8206
  # Lists views on a log bucket.
7835
8207
  # @param [String] parent
7836
8208
  # Required. The bucket whose views are to be listed: "projects/[PROJECT_ID]/
@@ -7919,6 +8291,82 @@ module Google
7919
8291
  execute_or_queue_command(command, &block)
7920
8292
  end
7921
8293
 
8294
+ # Sets the access control policy on the specified resource. Replaces any
8295
+ # existing policy.Can return NOT_FOUND, INVALID_ARGUMENT, and PERMISSION_DENIED
8296
+ # errors.
8297
+ # @param [String] resource
8298
+ # REQUIRED: The resource for which the policy is being specified. See Resource
8299
+ # names (https://cloud.google.com/apis/design/resource_names) for the
8300
+ # appropriate value for this field.
8301
+ # @param [Google::Apis::LoggingV2::SetIamPolicyRequest] set_iam_policy_request_object
8302
+ # @param [String] fields
8303
+ # Selector specifying which fields to include in a partial response.
8304
+ # @param [String] quota_user
8305
+ # Available to use for quota purposes for server-side applications. Can be any
8306
+ # arbitrary string assigned to a user, but should not exceed 40 characters.
8307
+ # @param [Google::Apis::RequestOptions] options
8308
+ # Request-specific options
8309
+ #
8310
+ # @yield [result, err] Result & error if block supplied
8311
+ # @yieldparam result [Google::Apis::LoggingV2::Policy] parsed result object
8312
+ # @yieldparam err [StandardError] error object if request failed
8313
+ #
8314
+ # @return [Google::Apis::LoggingV2::Policy]
8315
+ #
8316
+ # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
8317
+ # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
8318
+ # @raise [Google::Apis::AuthorizationError] Authorization is required
8319
+ def set_project_location_bucket_view_iam_policy(resource, set_iam_policy_request_object = nil, fields: nil, quota_user: nil, options: nil, &block)
8320
+ command = make_simple_command(:post, 'v2/{+resource}:setIamPolicy', options)
8321
+ command.request_representation = Google::Apis::LoggingV2::SetIamPolicyRequest::Representation
8322
+ command.request_object = set_iam_policy_request_object
8323
+ command.response_representation = Google::Apis::LoggingV2::Policy::Representation
8324
+ command.response_class = Google::Apis::LoggingV2::Policy
8325
+ command.params['resource'] = resource unless resource.nil?
8326
+ command.query['fields'] = fields unless fields.nil?
8327
+ command.query['quotaUser'] = quota_user unless quota_user.nil?
8328
+ execute_or_queue_command(command, &block)
8329
+ end
8330
+
8331
+ # Returns permissions that a caller has on the specified resource. If the
8332
+ # resource does not exist, this will return an empty set of permissions, not a
8333
+ # NOT_FOUND error.Note: This operation is designed to be used for building
8334
+ # permission-aware UIs and command-line tools, not for authorization checking.
8335
+ # This operation may "fail open" without warning.
8336
+ # @param [String] resource
8337
+ # REQUIRED: The resource for which the policy detail is being requested. See
8338
+ # Resource names (https://cloud.google.com/apis/design/resource_names) for the
8339
+ # appropriate value for this field.
8340
+ # @param [Google::Apis::LoggingV2::TestIamPermissionsRequest] test_iam_permissions_request_object
8341
+ # @param [String] fields
8342
+ # Selector specifying which fields to include in a partial response.
8343
+ # @param [String] quota_user
8344
+ # Available to use for quota purposes for server-side applications. Can be any
8345
+ # arbitrary string assigned to a user, but should not exceed 40 characters.
8346
+ # @param [Google::Apis::RequestOptions] options
8347
+ # Request-specific options
8348
+ #
8349
+ # @yield [result, err] Result & error if block supplied
8350
+ # @yieldparam result [Google::Apis::LoggingV2::TestIamPermissionsResponse] parsed result object
8351
+ # @yieldparam err [StandardError] error object if request failed
8352
+ #
8353
+ # @return [Google::Apis::LoggingV2::TestIamPermissionsResponse]
8354
+ #
8355
+ # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
8356
+ # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
8357
+ # @raise [Google::Apis::AuthorizationError] Authorization is required
8358
+ def test_project_location_bucket_view_iam_permissions(resource, test_iam_permissions_request_object = nil, fields: nil, quota_user: nil, options: nil, &block)
8359
+ command = make_simple_command(:post, 'v2/{+resource}:testIamPermissions', options)
8360
+ command.request_representation = Google::Apis::LoggingV2::TestIamPermissionsRequest::Representation
8361
+ command.request_object = test_iam_permissions_request_object
8362
+ command.response_representation = Google::Apis::LoggingV2::TestIamPermissionsResponse::Representation
8363
+ command.response_class = Google::Apis::LoggingV2::TestIamPermissionsResponse
8364
+ command.params['resource'] = resource unless resource.nil?
8365
+ command.query['fields'] = fields unless fields.nil?
8366
+ command.query['quotaUser'] = quota_user unless quota_user.nil?
8367
+ execute_or_queue_command(command, &block)
8368
+ end
8369
+
7922
8370
  # Lists the logs in projects, organizations, folders, or billing accounts. Only
7923
8371
  # logs that have entries are listed.
7924
8372
  # @param [String] parent
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: google-apis-logging_v2
3
3
  version: !ruby/object:Gem::Version
4
- version: 0.66.0
4
+ version: 0.67.0
5
5
  platform: ruby
6
6
  authors:
7
7
  - Google LLC
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2024-03-17 00:00:00.000000000 Z
11
+ date: 2024-04-28 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: google-apis-core
@@ -58,7 +58,7 @@ licenses:
58
58
  metadata:
59
59
  bug_tracker_uri: https://github.com/googleapis/google-api-ruby-client/issues
60
60
  changelog_uri: https://github.com/googleapis/google-api-ruby-client/tree/main/generated/google-apis-logging_v2/CHANGELOG.md
61
- documentation_uri: https://googleapis.dev/ruby/google-apis-logging_v2/v0.66.0
61
+ documentation_uri: https://googleapis.dev/ruby/google-apis-logging_v2/v0.67.0
62
62
  source_code_uri: https://github.com/googleapis/google-api-ruby-client/tree/main/generated/google-apis-logging_v2
63
63
  post_install_message:
64
64
  rdoc_options: []