google-apis-orgpolicy_v2 0.21.0 → 0.23.0
Sign up to get free protection for your applications and to get access to all the features.
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA256:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: 3aacebc2168abdd4c9804ba647b11239c279b385d3740880a292845306e4f2ca
|
4
|
+
data.tar.gz: 1996ed5c01eaccbb63c863534b81901ddfa251e43b8fa073ff42698cd312267a
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: b3af8a27f4b6f08dad0a88b1331d45a0209319a6c763a0c469dcc44fdc3045d87ec08671d2c204b4d5e6d07a81a928cd748eb15eb74d2d6011a8962af6b2cbc8
|
7
|
+
data.tar.gz: ed790ba25539af98540f5ea51b4de360b7fee91a5b874e1d87cbae2ebb93d25e8d26115a36b69cb8bdd0c0f359b67eff29be1ce9795d2250d51012e372b65b07
|
data/CHANGELOG.md
CHANGED
@@ -1,5 +1,14 @@
|
|
1
1
|
# Release history for google-apis-orgpolicy_v2
|
2
2
|
|
3
|
+
### v0.23.0 (2023-02-12)
|
4
|
+
|
5
|
+
* Regenerated from discovery document revision 20230207
|
6
|
+
|
7
|
+
### v0.22.0 (2023-01-22)
|
8
|
+
|
9
|
+
* Regenerated from discovery document revision 20230116
|
10
|
+
* Regenerated using generator version 0.11.1
|
11
|
+
|
3
12
|
### v0.21.0 (2022-10-27)
|
4
13
|
|
5
14
|
* Regenerated from discovery document revision 20221024
|
@@ -33,8 +33,8 @@ module Google
|
|
33
33
|
# @return [String]
|
34
34
|
attr_accessor :launch
|
35
35
|
|
36
|
-
# Defines a Cloud
|
37
|
-
#
|
36
|
+
# Defines a Google Cloud policy specification which is used to specify
|
37
|
+
# constraints for configurations of Google Cloud resources.
|
38
38
|
# Corresponds to the JSON property `spec`
|
39
39
|
# @return [Google::Apis::OrgpolicyV2::GoogleCloudOrgpolicyV2PolicySpec]
|
40
40
|
attr_accessor :spec
|
@@ -50,35 +50,35 @@ module Google
|
|
50
50
|
end
|
51
51
|
end
|
52
52
|
|
53
|
-
# A
|
54
|
-
#
|
53
|
+
# A constraint describes a way to restrict resource's configuration. For example,
|
54
|
+
# you could enforce a constraint that controls which Google Cloud services can
|
55
55
|
# be activated across an organization, or whether a Compute Engine instance can
|
56
|
-
# have serial port connections established.
|
57
|
-
#
|
58
|
-
#
|
59
|
-
#
|
60
|
-
#
|
61
|
-
#
|
62
|
-
#
|
63
|
-
# enforcement behavior that is used in the absence of a
|
64
|
-
#
|
56
|
+
# have serial port connections established. Constraints can be configured by the
|
57
|
+
# organization policy administrator to fit the needs of the organization by
|
58
|
+
# setting a policy that includes constraints at different locations in the
|
59
|
+
# organization's resource hierarchy. Policies are inherited down the resource
|
60
|
+
# hierarchy from higher levels, but can also be overridden. For details about
|
61
|
+
# the inheritance rules please read about `policies`. Constraints have a default
|
62
|
+
# behavior determined by the `constraint_default` field, which is the
|
63
|
+
# enforcement behavior that is used in the absence of a policy being defined or
|
64
|
+
# inherited for the resource in question.
|
65
65
|
class GoogleCloudOrgpolicyV2Constraint
|
66
66
|
include Google::Apis::Core::Hashable
|
67
67
|
|
68
|
-
# A
|
68
|
+
# A constraint that is either enforced or not. For example, a constraint `
|
69
69
|
# constraints/compute.disableSerialPortAccess`. If it is enforced on a VM
|
70
70
|
# instance, serial port connections will not be opened to that instance.
|
71
71
|
# Corresponds to the JSON property `booleanConstraint`
|
72
72
|
# @return [Google::Apis::OrgpolicyV2::GoogleCloudOrgpolicyV2ConstraintBooleanConstraint]
|
73
73
|
attr_accessor :boolean_constraint
|
74
74
|
|
75
|
-
# The evaluation behavior of this constraint in the absence of
|
75
|
+
# The evaluation behavior of this constraint in the absence of a policy.
|
76
76
|
# Corresponds to the JSON property `constraintDefault`
|
77
77
|
# @return [String]
|
78
78
|
attr_accessor :constraint_default
|
79
79
|
|
80
|
-
# Detailed description of what this
|
81
|
-
#
|
80
|
+
# Detailed description of what this constraint controls as well as how and where
|
81
|
+
# it is enforced. Mutable.
|
82
82
|
# Corresponds to the JSON property `description`
|
83
83
|
# @return [String]
|
84
84
|
attr_accessor :description
|
@@ -88,13 +88,13 @@ module Google
|
|
88
88
|
# @return [String]
|
89
89
|
attr_accessor :display_name
|
90
90
|
|
91
|
-
# A
|
92
|
-
# configured by an Organization
|
91
|
+
# A constraint that allows or disallows a list of string values, which are
|
92
|
+
# configured by an Organization Policy administrator with a policy.
|
93
93
|
# Corresponds to the JSON property `listConstraint`
|
94
94
|
# @return [Google::Apis::OrgpolicyV2::GoogleCloudOrgpolicyV2ConstraintListConstraint]
|
95
95
|
attr_accessor :list_constraint
|
96
96
|
|
97
|
-
# Immutable. The resource name of the
|
97
|
+
# Immutable. The resource name of the constraint. Must be in one of the
|
98
98
|
# following forms: * `projects/`project_number`/constraints/`constraint_name`` *
|
99
99
|
# `folders/`folder_id`/constraints/`constraint_name`` * `organizations/`
|
100
100
|
# organization_id`/constraints/`constraint_name`` For example, "/projects/123/
|
@@ -118,7 +118,7 @@ module Google
|
|
118
118
|
end
|
119
119
|
end
|
120
120
|
|
121
|
-
# A
|
121
|
+
# A constraint that is either enforced or not. For example, a constraint `
|
122
122
|
# constraints/compute.disableSerialPortAccess`. If it is enforced on a VM
|
123
123
|
# instance, serial port connections will not be opened to that instance.
|
124
124
|
class GoogleCloudOrgpolicyV2ConstraintBooleanConstraint
|
@@ -133,8 +133,8 @@ module Google
|
|
133
133
|
end
|
134
134
|
end
|
135
135
|
|
136
|
-
# A
|
137
|
-
# configured by an Organization
|
136
|
+
# A constraint that allows or disallows a list of string values, which are
|
137
|
+
# configured by an Organization Policy administrator with a policy.
|
138
138
|
class GoogleCloudOrgpolicyV2ConstraintListConstraint
|
139
139
|
include Google::Apis::Core::Hashable
|
140
140
|
|
@@ -146,7 +146,7 @@ module Google
|
|
146
146
|
attr_accessor :supports_in
|
147
147
|
alias_method :supports_in?, :supports_in
|
148
148
|
|
149
|
-
# Indicates whether subtrees of
|
149
|
+
# Indicates whether subtrees of the Resource Manager resource hierarchy can be
|
150
150
|
# used in `Policy.allowed_values` and `Policy.denied_values`. For example, `"
|
151
151
|
# under:folders/123"` would match any resource under the 'folders/123' folder.
|
152
152
|
# Corresponds to the JSON property `supportsUnder`
|
@@ -167,7 +167,7 @@ module Google
|
|
167
167
|
|
168
168
|
# A custom constraint defined by customers which can *only* be applied to the
|
169
169
|
# given resource types and organization. By creating a custom constraint,
|
170
|
-
# customers can
|
170
|
+
# customers can apply policies of this custom constraint. *Creating a custom
|
171
171
|
# constraint itself does NOT apply any policy enforcement*.
|
172
172
|
class GoogleCloudOrgpolicyV2CustomConstraint
|
173
173
|
include Google::Apis::Core::Hashable
|
@@ -203,15 +203,15 @@ module Google
|
|
203
203
|
|
204
204
|
# Immutable. Name of the constraint. This is unique within the organization.
|
205
205
|
# Format of the name should be * `organizations/`organization_id`/
|
206
|
-
# customConstraints/`custom_constraint_id`` Example
|
207
|
-
# customConstraints/custom.createOnlyE2TypeVms
|
208
|
-
# and the
|
209
|
-
# customConstraints
|
206
|
+
# customConstraints/`custom_constraint_id`` Example: `organizations/123/
|
207
|
+
# customConstraints/custom.createOnlyE2TypeVms` The max length is 70 characters
|
208
|
+
# and the minimum length is 1. Note that the prefix `organizations/`
|
209
|
+
# organization_id`/customConstraints/` is not counted.
|
210
210
|
# Corresponds to the JSON property `name`
|
211
211
|
# @return [String]
|
212
212
|
attr_accessor :name
|
213
213
|
|
214
|
-
# Immutable. The
|
214
|
+
# Immutable. The resource instance type on which this policy applies. Format
|
215
215
|
# will be of the form : "/" Example: * `compute.googleapis.com/Instance`.
|
216
216
|
# Corresponds to the JSON property `resourceTypes`
|
217
217
|
# @return [Array<String>]
|
@@ -267,12 +267,12 @@ module Google
|
|
267
267
|
end
|
268
268
|
|
269
269
|
# The response returned from the ListCustomConstraints method. It will be empty
|
270
|
-
# if no
|
270
|
+
# if no custom constraints are set on the organization resource.
|
271
271
|
class GoogleCloudOrgpolicyV2ListCustomConstraintsResponse
|
272
272
|
include Google::Apis::Core::Hashable
|
273
273
|
|
274
|
-
# All
|
275
|
-
# empty if no
|
274
|
+
# All custom constraints that exist on the organization resource. It will be
|
275
|
+
# empty if no custom constraints are set.
|
276
276
|
# Corresponds to the JSON property `customConstraints`
|
277
277
|
# @return [Array<Google::Apis::OrgpolicyV2::GoogleCloudOrgpolicyV2CustomConstraint>]
|
278
278
|
attr_accessor :custom_constraints
|
@@ -294,8 +294,8 @@ module Google
|
|
294
294
|
end
|
295
295
|
end
|
296
296
|
|
297
|
-
# The response returned from the ListPolicies method. It will be empty if no
|
298
|
-
#
|
297
|
+
# The response returned from the ListPolicies method. It will be empty if no
|
298
|
+
# policies are set on the resource.
|
299
299
|
class GoogleCloudOrgpolicyV2ListPoliciesResponse
|
300
300
|
include Google::Apis::Core::Hashable
|
301
301
|
|
@@ -305,8 +305,8 @@ module Google
|
|
305
305
|
# @return [String]
|
306
306
|
attr_accessor :next_page_token
|
307
307
|
|
308
|
-
# All
|
309
|
-
#
|
308
|
+
# All policies that exist on the resource. It will be empty if no policies are
|
309
|
+
# set.
|
310
310
|
# Corresponds to the JSON property `policies`
|
311
311
|
# @return [Array<Google::Apis::OrgpolicyV2::GoogleCloudOrgpolicyV2Policy>]
|
312
312
|
attr_accessor :policies
|
@@ -322,8 +322,8 @@ module Google
|
|
322
322
|
end
|
323
323
|
end
|
324
324
|
|
325
|
-
# Defines
|
326
|
-
#
|
325
|
+
# Defines an organization policy which is used to specify constraints for
|
326
|
+
# configurations of Google Cloud resources.
|
327
327
|
class GoogleCloudOrgpolicyV2Policy
|
328
328
|
include Google::Apis::Core::Hashable
|
329
329
|
|
@@ -333,8 +333,14 @@ module Google
|
|
333
333
|
# @return [Google::Apis::OrgpolicyV2::GoogleCloudOrgpolicyV2AlternatePolicySpec]
|
334
334
|
attr_accessor :alternate
|
335
335
|
|
336
|
-
#
|
337
|
-
#
|
336
|
+
# Defines a Google Cloud policy specification which is used to specify
|
337
|
+
# constraints for configurations of Google Cloud resources.
|
338
|
+
# Corresponds to the JSON property `dryRunSpec`
|
339
|
+
# @return [Google::Apis::OrgpolicyV2::GoogleCloudOrgpolicyV2PolicySpec]
|
340
|
+
attr_accessor :dry_run_spec
|
341
|
+
|
342
|
+
# Immutable. The resource name of the policy. Must be one of the following forms,
|
343
|
+
# where constraint_name is the name of the constraint which this policy
|
338
344
|
# configures: * `projects/`project_number`/policies/`constraint_name`` * `
|
339
345
|
# folders/`folder_id`/policies/`constraint_name`` * `organizations/`
|
340
346
|
# organization_id`/policies/`constraint_name`` For example, "projects/123/
|
@@ -345,8 +351,8 @@ module Google
|
|
345
351
|
# @return [String]
|
346
352
|
attr_accessor :name
|
347
353
|
|
348
|
-
# Defines a Cloud
|
349
|
-
#
|
354
|
+
# Defines a Google Cloud policy specification which is used to specify
|
355
|
+
# constraints for configurations of Google Cloud resources.
|
350
356
|
# Corresponds to the JSON property `spec`
|
351
357
|
# @return [Google::Apis::OrgpolicyV2::GoogleCloudOrgpolicyV2PolicySpec]
|
352
358
|
attr_accessor :spec
|
@@ -358,38 +364,39 @@ module Google
|
|
358
364
|
# Update properties of this object
|
359
365
|
def update!(**args)
|
360
366
|
@alternate = args[:alternate] if args.key?(:alternate)
|
367
|
+
@dry_run_spec = args[:dry_run_spec] if args.key?(:dry_run_spec)
|
361
368
|
@name = args[:name] if args.key?(:name)
|
362
369
|
@spec = args[:spec] if args.key?(:spec)
|
363
370
|
end
|
364
371
|
end
|
365
372
|
|
366
|
-
# Defines a Cloud
|
367
|
-
#
|
373
|
+
# Defines a Google Cloud policy specification which is used to specify
|
374
|
+
# constraints for configurations of Google Cloud resources.
|
368
375
|
class GoogleCloudOrgpolicyV2PolicySpec
|
369
376
|
include Google::Apis::Core::Hashable
|
370
377
|
|
371
|
-
# An opaque tag indicating the current version of the
|
378
|
+
# An opaque tag indicating the current version of the policy, used for
|
372
379
|
# concurrency control. This field is ignored if used in a `CreatePolicy` request.
|
373
|
-
# When the `
|
374
|
-
# request, this `etag` indicates the version of the current
|
375
|
-
# executing a read-modify-write loop. When the
|
380
|
+
# When the policy` is returned from either a `GetPolicy` or a `ListPolicies`
|
381
|
+
# request, this `etag` indicates the version of the current policy to use when
|
382
|
+
# executing a read-modify-write loop. When the policy is returned from a `
|
376
383
|
# GetEffectivePolicy` request, the `etag` will be unset.
|
377
384
|
# Corresponds to the JSON property `etag`
|
378
385
|
# @return [String]
|
379
386
|
attr_accessor :etag
|
380
387
|
|
381
|
-
# Determines the inheritance behavior for this
|
382
|
-
# is true,
|
388
|
+
# Determines the inheritance behavior for this policy. If `inherit_from_parent`
|
389
|
+
# is true, policy rules set higher up in the hierarchy (up to the closest root)
|
383
390
|
# are inherited and present in the effective policy. If it is false, then no
|
384
|
-
# rules are inherited, and this
|
385
|
-
# field can be set only for
|
391
|
+
# rules are inherited, and this policy becomes the new root for evaluation. This
|
392
|
+
# field can be set only for policies which configure list constraints.
|
386
393
|
# Corresponds to the JSON property `inheritFromParent`
|
387
394
|
# @return [Boolean]
|
388
395
|
attr_accessor :inherit_from_parent
|
389
396
|
alias_method :inherit_from_parent?, :inherit_from_parent
|
390
397
|
|
391
398
|
# Ignores policies set above this resource and restores the `constraint_default`
|
392
|
-
# enforcement behavior of the specific
|
399
|
+
# enforcement behavior of the specific constraint at this resource. This field
|
393
400
|
# can be set in policies for either list or boolean constraints. If set, `rules`
|
394
401
|
# must be empty and `inherit_from_parent` must be set to false.
|
395
402
|
# Corresponds to the JSON property `reset`
|
@@ -397,19 +404,18 @@ module Google
|
|
397
404
|
attr_accessor :reset
|
398
405
|
alias_method :reset?, :reset
|
399
406
|
|
400
|
-
# Up to 10
|
401
|
-
# following requirements apply: - There must be one and only one
|
402
|
-
# where condition is unset. -
|
403
|
-
# enforced` to the opposite of the
|
404
|
-
# policy evaluation,
|
407
|
+
# Up to 10 policy rules are allowed. In policies for boolean constraints, the
|
408
|
+
# following requirements apply: - There must be one and only one policy rule
|
409
|
+
# where condition is unset. - Boolean policy rules with conditions must set `
|
410
|
+
# enforced` to the opposite of the policy rule without a condition. - During
|
411
|
+
# policy evaluation, policy rules with conditions that are true for a target
|
405
412
|
# resource take precedence.
|
406
413
|
# Corresponds to the JSON property `rules`
|
407
414
|
# @return [Array<Google::Apis::OrgpolicyV2::GoogleCloudOrgpolicyV2PolicySpecPolicyRule>]
|
408
415
|
attr_accessor :rules
|
409
416
|
|
410
417
|
# Output only. The time stamp this was previously updated. This represents the
|
411
|
-
# last time a call to `CreatePolicy` or `UpdatePolicy` was made for that
|
412
|
-
# .
|
418
|
+
# last time a call to `CreatePolicy` or `UpdatePolicy` was made for that policy.
|
413
419
|
# Corresponds to the JSON property `updateTime`
|
414
420
|
# @return [String]
|
415
421
|
attr_accessor :update_time
|
@@ -433,7 +439,7 @@ module Google
|
|
433
439
|
include Google::Apis::Core::Hashable
|
434
440
|
|
435
441
|
# Setting this to true means that all values are allowed. This field can be set
|
436
|
-
# only in
|
442
|
+
# only in policies for list constraints.
|
437
443
|
# Corresponds to the JSON property `allowAll`
|
438
444
|
# @return [Boolean]
|
439
445
|
attr_accessor :allow_all
|
@@ -459,25 +465,25 @@ module Google
|
|
459
465
|
attr_accessor :condition
|
460
466
|
|
461
467
|
# Setting this to true means that all values are denied. This field can be set
|
462
|
-
# only in
|
468
|
+
# only in policies for list constraints.
|
463
469
|
# Corresponds to the JSON property `denyAll`
|
464
470
|
# @return [Boolean]
|
465
471
|
attr_accessor :deny_all
|
466
472
|
alias_method :deny_all?, :deny_all
|
467
473
|
|
468
|
-
# If `true`, then the
|
469
|
-
#
|
474
|
+
# If `true`, then the policy is enforced. If `false`, then any configuration is
|
475
|
+
# acceptable. This field can be set only in policies for boolean constraints.
|
470
476
|
# Corresponds to the JSON property `enforce`
|
471
477
|
# @return [Boolean]
|
472
478
|
attr_accessor :enforce
|
473
479
|
alias_method :enforce?, :enforce
|
474
480
|
|
475
481
|
# A message that holds specific allowed and denied values. This message can
|
476
|
-
# define specific values and subtrees of
|
477
|
-
#
|
478
|
-
#
|
479
|
-
#
|
480
|
-
#
|
482
|
+
# define specific values and subtrees of the Resource Manager resource hierarchy
|
483
|
+
# (`Organizations`, `Folders`, `Projects`) that are allowed or denied. This is
|
484
|
+
# achieved by using the `under:` and optional `is:` prefixes. The `under:`
|
485
|
+
# prefix is used to denote resource subtree values. The `is:` prefix is used to
|
486
|
+
# denote specific values, and is required only if the value contains a ":".
|
481
487
|
# Values prefixed with "is:" are treated the same as values with no prefix.
|
482
488
|
# Ancestry subtrees must be in one of the following formats: - "projects/", e.g.
|
483
489
|
# "projects/tokyo-rain-123" - "folders/", e.g. "folders/1234" - "organizations/",
|
@@ -502,11 +508,11 @@ module Google
|
|
502
508
|
end
|
503
509
|
|
504
510
|
# A message that holds specific allowed and denied values. This message can
|
505
|
-
# define specific values and subtrees of
|
506
|
-
#
|
507
|
-
#
|
508
|
-
#
|
509
|
-
#
|
511
|
+
# define specific values and subtrees of the Resource Manager resource hierarchy
|
512
|
+
# (`Organizations`, `Folders`, `Projects`) that are allowed or denied. This is
|
513
|
+
# achieved by using the `under:` and optional `is:` prefixes. The `under:`
|
514
|
+
# prefix is used to denote resource subtree values. The `is:` prefix is used to
|
515
|
+
# denote specific values, and is required only if the value contains a ":".
|
510
516
|
# Values prefixed with "is:" are treated the same as values with no prefix.
|
511
517
|
# Ancestry subtrees must be in one of the following formats: - "projects/", e.g.
|
512
518
|
# "projects/tokyo-rain-123" - "folders/", e.g. "folders/1234" - "organizations/",
|
@@ -16,13 +16,13 @@ module Google
|
|
16
16
|
module Apis
|
17
17
|
module OrgpolicyV2
|
18
18
|
# Version of the google-apis-orgpolicy_v2 gem
|
19
|
-
GEM_VERSION = "0.
|
19
|
+
GEM_VERSION = "0.23.0"
|
20
20
|
|
21
21
|
# Version of the code generator used to generate this client
|
22
|
-
GENERATOR_VERSION = "0.11.
|
22
|
+
GENERATOR_VERSION = "0.11.1"
|
23
23
|
|
24
24
|
# Revision of the discovery document this client was generated from
|
25
|
-
REVISION = "
|
25
|
+
REVISION = "20230207"
|
26
26
|
end
|
27
27
|
end
|
28
28
|
end
|
@@ -189,6 +189,8 @@ module Google
|
|
189
189
|
class Representation < Google::Apis::Core::JsonRepresentation
|
190
190
|
property :alternate, as: 'alternate', class: Google::Apis::OrgpolicyV2::GoogleCloudOrgpolicyV2AlternatePolicySpec, decorator: Google::Apis::OrgpolicyV2::GoogleCloudOrgpolicyV2AlternatePolicySpec::Representation
|
191
191
|
|
192
|
+
property :dry_run_spec, as: 'dryRunSpec', class: Google::Apis::OrgpolicyV2::GoogleCloudOrgpolicyV2PolicySpec, decorator: Google::Apis::OrgpolicyV2::GoogleCloudOrgpolicyV2PolicySpec::Representation
|
193
|
+
|
192
194
|
property :name, as: 'name'
|
193
195
|
property :spec, as: 'spec', class: Google::Apis::OrgpolicyV2::GoogleCloudOrgpolicyV2PolicySpec, decorator: Google::Apis::OrgpolicyV2::GoogleCloudOrgpolicyV2PolicySpec::Representation
|
194
196
|
|
@@ -50,11 +50,11 @@ module Google
|
|
50
50
|
@batch_path = 'batch'
|
51
51
|
end
|
52
52
|
|
53
|
-
# Lists
|
53
|
+
# Lists constraints that could be applied on the specified resource.
|
54
54
|
# @param [String] parent
|
55
|
-
# Required. The Cloud resource that parents the constraint. Must be in
|
56
|
-
# the following forms: * `projects/`project_number`` * `projects/`
|
57
|
-
# `folders/`folder_id`` * `organizations/`organization_id``
|
55
|
+
# Required. The Google Cloud resource that parents the constraint. Must be in
|
56
|
+
# one of the following forms: * `projects/`project_number`` * `projects/`
|
57
|
+
# project_id`` * `folders/`folder_id`` * `organizations/`organization_id``
|
58
58
|
# @param [Fixnum] page_size
|
59
59
|
# Size of the pages to be returned. This is currently unsupported and will be
|
60
60
|
# ignored. The server may at any point start using this field to limit page size.
|
@@ -90,14 +90,14 @@ module Google
|
|
90
90
|
execute_or_queue_command(command, &block)
|
91
91
|
end
|
92
92
|
|
93
|
-
# Creates a
|
93
|
+
# Creates a policy. Returns a `google.rpc.Status` with `google.rpc.Code.
|
94
94
|
# NOT_FOUND` if the constraint does not exist. Returns a `google.rpc.Status`
|
95
95
|
# with `google.rpc.Code.ALREADY_EXISTS` if the policy already exists on the
|
96
|
-
# given Cloud resource.
|
96
|
+
# given Google Cloud resource.
|
97
97
|
# @param [String] parent
|
98
|
-
# Required. The Cloud resource that will parent the new
|
99
|
-
# of the following forms: * `projects/`project_number`` * `projects/`
|
100
|
-
# * `folders/`folder_id`` * `organizations/`organization_id``
|
98
|
+
# Required. The Google Cloud resource that will parent the new policy. Must be
|
99
|
+
# in one of the following forms: * `projects/`project_number`` * `projects/`
|
100
|
+
# project_id`` * `folders/`folder_id`` * `organizations/`organization_id``
|
101
101
|
# @param [Google::Apis::OrgpolicyV2::GoogleCloudOrgpolicyV2Policy] google_cloud_orgpolicy_v2_policy_object
|
102
102
|
# @param [String] fields
|
103
103
|
# Selector specifying which fields to include in a partial response.
|
@@ -128,10 +128,10 @@ module Google
|
|
128
128
|
execute_or_queue_command(command, &block)
|
129
129
|
end
|
130
130
|
|
131
|
-
# Deletes a
|
132
|
-
# NOT_FOUND` if the constraint or
|
131
|
+
# Deletes a policy. Returns a `google.rpc.Status` with `google.rpc.Code.
|
132
|
+
# NOT_FOUND` if the constraint or organization policy does not exist.
|
133
133
|
# @param [String] name
|
134
|
-
# Required. Name of the policy to delete. See
|
134
|
+
# Required. Name of the policy to delete. See the policy entry for naming rules.
|
135
135
|
# @param [String] fields
|
136
136
|
# Selector specifying which fields to include in a partial response.
|
137
137
|
# @param [String] quota_user
|
@@ -159,9 +159,9 @@ module Google
|
|
159
159
|
execute_or_queue_command(command, &block)
|
160
160
|
end
|
161
161
|
|
162
|
-
# Gets a
|
163
|
-
#
|
164
|
-
#
|
162
|
+
# Gets a policy on a resource. If no policy is set on the resource, `NOT_FOUND`
|
163
|
+
# is returned. The `etag` value can be used with `UpdatePolicy()` to update a
|
164
|
+
# policy during read-modify-write.
|
165
165
|
# @param [String] name
|
166
166
|
# Required. Resource name of the policy. See `Policy` for naming requirements.
|
167
167
|
# @param [String] fields
|
@@ -191,10 +191,10 @@ module Google
|
|
191
191
|
execute_or_queue_command(command, &block)
|
192
192
|
end
|
193
193
|
|
194
|
-
# Gets the effective
|
195
|
-
#
|
196
|
-
#
|
197
|
-
#
|
194
|
+
# Gets the effective policy on a resource. This is the result of merging
|
195
|
+
# policies in the resource hierarchy and evaluating conditions. The returned
|
196
|
+
# policy will not have an `etag` or `condition` set because it is an evaluated
|
197
|
+
# policy across multiple resources. Subtrees of Resource Manager resource
|
198
198
|
# hierarchy with 'under:' prefix will not be expanded.
|
199
199
|
# @param [String] name
|
200
200
|
# Required. The effective policy to compute. See `Policy` for naming rules.
|
@@ -225,12 +225,12 @@ module Google
|
|
225
225
|
execute_or_queue_command(command, &block)
|
226
226
|
end
|
227
227
|
|
228
|
-
# Retrieves all of the
|
228
|
+
# Retrieves all of the policies that exist on a particular resource.
|
229
229
|
# @param [String] parent
|
230
|
-
# Required. The target Cloud resource that parents the set of constraints
|
231
|
-
# policies that will be returned from this call. Must be in one of the
|
232
|
-
# forms: * `projects/`project_number`` * `projects/`project_id`` * `
|
233
|
-
# folder_id`` * `organizations/`organization_id``
|
230
|
+
# Required. The target Google Cloud resource that parents the set of constraints
|
231
|
+
# and policies that will be returned from this call. Must be in one of the
|
232
|
+
# following forms: * `projects/`project_number`` * `projects/`project_id`` * `
|
233
|
+
# folders/`folder_id`` * `organizations/`organization_id``
|
234
234
|
# @param [Fixnum] page_size
|
235
235
|
# Size of the pages to be returned. This is currently unsupported and will be
|
236
236
|
# ignored. The server may at any point start using this field to limit page size.
|
@@ -266,14 +266,14 @@ module Google
|
|
266
266
|
execute_or_queue_command(command, &block)
|
267
267
|
end
|
268
268
|
|
269
|
-
# Updates a
|
269
|
+
# Updates a policy. Returns a `google.rpc.Status` with `google.rpc.Code.
|
270
270
|
# NOT_FOUND` if the constraint or the policy do not exist. Returns a `google.rpc.
|
271
271
|
# Status` with `google.rpc.Code.ABORTED` if the etag supplied in the request
|
272
272
|
# does not match the persisted etag of the policy Note: the supplied policy will
|
273
273
|
# perform a full overwrite of all fields.
|
274
274
|
# @param [String] name
|
275
|
-
# Immutable. The resource name of the
|
276
|
-
# where constraint_name is the name of the constraint which this
|
275
|
+
# Immutable. The resource name of the policy. Must be one of the following forms,
|
276
|
+
# where constraint_name is the name of the constraint which this policy
|
277
277
|
# configures: * `projects/`project_number`/policies/`constraint_name`` * `
|
278
278
|
# folders/`folder_id`/policies/`constraint_name`` * `organizations/`
|
279
279
|
# organization_id`/policies/`constraint_name`` For example, "projects/123/
|
@@ -281,6 +281,10 @@ module Google
|
|
281
281
|
# policies/`constraint_name`` is also an acceptable name for API requests, but
|
282
282
|
# responses will return the name using the equivalent project number.
|
283
283
|
# @param [Google::Apis::OrgpolicyV2::GoogleCloudOrgpolicyV2Policy] google_cloud_orgpolicy_v2_policy_object
|
284
|
+
# @param [String] update_mask
|
285
|
+
# Field mask used to specify the fields to be overwritten in the policy by the
|
286
|
+
# set. The fields specified in the update_mask are relative to the policy, not
|
287
|
+
# the full request.
|
284
288
|
# @param [String] fields
|
285
289
|
# Selector specifying which fields to include in a partial response.
|
286
290
|
# @param [String] quota_user
|
@@ -298,23 +302,24 @@ module Google
|
|
298
302
|
# @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
|
299
303
|
# @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
|
300
304
|
# @raise [Google::Apis::AuthorizationError] Authorization is required
|
301
|
-
def patch_folder_policy(name, google_cloud_orgpolicy_v2_policy_object = nil, fields: nil, quota_user: nil, options: nil, &block)
|
305
|
+
def patch_folder_policy(name, google_cloud_orgpolicy_v2_policy_object = nil, update_mask: nil, fields: nil, quota_user: nil, options: nil, &block)
|
302
306
|
command = make_simple_command(:patch, 'v2/{+name}', options)
|
303
307
|
command.request_representation = Google::Apis::OrgpolicyV2::GoogleCloudOrgpolicyV2Policy::Representation
|
304
308
|
command.request_object = google_cloud_orgpolicy_v2_policy_object
|
305
309
|
command.response_representation = Google::Apis::OrgpolicyV2::GoogleCloudOrgpolicyV2Policy::Representation
|
306
310
|
command.response_class = Google::Apis::OrgpolicyV2::GoogleCloudOrgpolicyV2Policy
|
307
311
|
command.params['name'] = name unless name.nil?
|
312
|
+
command.query['updateMask'] = update_mask unless update_mask.nil?
|
308
313
|
command.query['fields'] = fields unless fields.nil?
|
309
314
|
command.query['quotaUser'] = quota_user unless quota_user.nil?
|
310
315
|
execute_or_queue_command(command, &block)
|
311
316
|
end
|
312
317
|
|
313
|
-
# Lists
|
318
|
+
# Lists constraints that could be applied on the specified resource.
|
314
319
|
# @param [String] parent
|
315
|
-
# Required. The Cloud resource that parents the constraint. Must be in
|
316
|
-
# the following forms: * `projects/`project_number`` * `projects/`
|
317
|
-
# `folders/`folder_id`` * `organizations/`organization_id``
|
320
|
+
# Required. The Google Cloud resource that parents the constraint. Must be in
|
321
|
+
# one of the following forms: * `projects/`project_number`` * `projects/`
|
322
|
+
# project_id`` * `folders/`folder_id`` * `organizations/`organization_id``
|
318
323
|
# @param [Fixnum] page_size
|
319
324
|
# Size of the pages to be returned. This is currently unsupported and will be
|
320
325
|
# ignored. The server may at any point start using this field to limit page size.
|
@@ -350,7 +355,7 @@ module Google
|
|
350
355
|
execute_or_queue_command(command, &block)
|
351
356
|
end
|
352
357
|
|
353
|
-
# Creates a
|
358
|
+
# Creates a custom constraint. Returns a `google.rpc.Status` with `google.rpc.
|
354
359
|
# Code.NOT_FOUND` if the organization does not exist. Returns a `google.rpc.
|
355
360
|
# Status` with `google.rpc.Code.ALREADY_EXISTS` if the constraint already exists
|
356
361
|
# on the given organization.
|
@@ -386,11 +391,11 @@ module Google
|
|
386
391
|
execute_or_queue_command(command, &block)
|
387
392
|
end
|
388
393
|
|
389
|
-
# Deletes a
|
394
|
+
# Deletes a custom constraint. Returns a `google.rpc.Status` with `google.rpc.
|
390
395
|
# Code.NOT_FOUND` if the constraint does not exist.
|
391
396
|
# @param [String] name
|
392
|
-
# Required. Name of the custom constraint to delete. See
|
393
|
-
# naming rules.
|
397
|
+
# Required. Name of the custom constraint to delete. See the custom constraint
|
398
|
+
# entry for naming rules.
|
394
399
|
# @param [String] fields
|
395
400
|
# Selector specifying which fields to include in a partial response.
|
396
401
|
# @param [String] quota_user
|
@@ -418,11 +423,11 @@ module Google
|
|
418
423
|
execute_or_queue_command(command, &block)
|
419
424
|
end
|
420
425
|
|
421
|
-
# Gets a
|
422
|
-
# NOT_FOUND` if the
|
426
|
+
# Gets a custom constraint. Returns a `google.rpc.Status` with `google.rpc.Code.
|
427
|
+
# NOT_FOUND` if the custom constraint does not exist.
|
423
428
|
# @param [String] name
|
424
|
-
# Required. Resource name of the custom constraint. See
|
425
|
-
# naming requirements.
|
429
|
+
# Required. Resource name of the custom constraint. See the custom constraint
|
430
|
+
# entry for naming requirements.
|
426
431
|
# @param [String] fields
|
427
432
|
# Selector specifying which fields to include in a partial response.
|
428
433
|
# @param [String] quota_user
|
@@ -450,12 +455,12 @@ module Google
|
|
450
455
|
execute_or_queue_command(command, &block)
|
451
456
|
end
|
452
457
|
|
453
|
-
# Retrieves all of the
|
458
|
+
# Retrieves all of the custom constraints that exist on a particular
|
454
459
|
# organization resource.
|
455
460
|
# @param [String] parent
|
456
|
-
# Required. The target Cloud resource that parents the set of custom
|
457
|
-
# that will be returned from this call. Must be in one of the
|
458
|
-
# `organizations/`organization_id``
|
461
|
+
# Required. The target Google Cloud resource that parents the set of custom
|
462
|
+
# constraints that will be returned from this call. Must be in one of the
|
463
|
+
# following forms: * `organizations/`organization_id``
|
459
464
|
# @param [Fixnum] page_size
|
460
465
|
# Size of the pages to be returned. This is currently unsupported and will be
|
461
466
|
# ignored. The server may at any point start using this field to limit page size.
|
@@ -491,16 +496,16 @@ module Google
|
|
491
496
|
execute_or_queue_command(command, &block)
|
492
497
|
end
|
493
498
|
|
494
|
-
# Updates a
|
499
|
+
# Updates a custom constraint. Returns a `google.rpc.Status` with `google.rpc.
|
495
500
|
# Code.NOT_FOUND` if the constraint does not exist. Note: the supplied policy
|
496
501
|
# will perform a full overwrite of all fields.
|
497
502
|
# @param [String] name
|
498
503
|
# Immutable. Name of the constraint. This is unique within the organization.
|
499
504
|
# Format of the name should be * `organizations/`organization_id`/
|
500
|
-
# customConstraints/`custom_constraint_id`` Example
|
501
|
-
# customConstraints/custom.createOnlyE2TypeVms
|
502
|
-
# and the
|
503
|
-
# customConstraints
|
505
|
+
# customConstraints/`custom_constraint_id`` Example: `organizations/123/
|
506
|
+
# customConstraints/custom.createOnlyE2TypeVms` The max length is 70 characters
|
507
|
+
# and the minimum length is 1. Note that the prefix `organizations/`
|
508
|
+
# organization_id`/customConstraints/` is not counted.
|
504
509
|
# @param [Google::Apis::OrgpolicyV2::GoogleCloudOrgpolicyV2CustomConstraint] google_cloud_orgpolicy_v2_custom_constraint_object
|
505
510
|
# @param [String] fields
|
506
511
|
# Selector specifying which fields to include in a partial response.
|
@@ -531,14 +536,14 @@ module Google
|
|
531
536
|
execute_or_queue_command(command, &block)
|
532
537
|
end
|
533
538
|
|
534
|
-
# Creates a
|
539
|
+
# Creates a policy. Returns a `google.rpc.Status` with `google.rpc.Code.
|
535
540
|
# NOT_FOUND` if the constraint does not exist. Returns a `google.rpc.Status`
|
536
541
|
# with `google.rpc.Code.ALREADY_EXISTS` if the policy already exists on the
|
537
|
-
# given Cloud resource.
|
542
|
+
# given Google Cloud resource.
|
538
543
|
# @param [String] parent
|
539
|
-
# Required. The Cloud resource that will parent the new
|
540
|
-
# of the following forms: * `projects/`project_number`` * `projects/`
|
541
|
-
# * `folders/`folder_id`` * `organizations/`organization_id``
|
544
|
+
# Required. The Google Cloud resource that will parent the new policy. Must be
|
545
|
+
# in one of the following forms: * `projects/`project_number`` * `projects/`
|
546
|
+
# project_id`` * `folders/`folder_id`` * `organizations/`organization_id``
|
542
547
|
# @param [Google::Apis::OrgpolicyV2::GoogleCloudOrgpolicyV2Policy] google_cloud_orgpolicy_v2_policy_object
|
543
548
|
# @param [String] fields
|
544
549
|
# Selector specifying which fields to include in a partial response.
|
@@ -569,10 +574,10 @@ module Google
|
|
569
574
|
execute_or_queue_command(command, &block)
|
570
575
|
end
|
571
576
|
|
572
|
-
# Deletes a
|
573
|
-
# NOT_FOUND` if the constraint or
|
577
|
+
# Deletes a policy. Returns a `google.rpc.Status` with `google.rpc.Code.
|
578
|
+
# NOT_FOUND` if the constraint or organization policy does not exist.
|
574
579
|
# @param [String] name
|
575
|
-
# Required. Name of the policy to delete. See
|
580
|
+
# Required. Name of the policy to delete. See the policy entry for naming rules.
|
576
581
|
# @param [String] fields
|
577
582
|
# Selector specifying which fields to include in a partial response.
|
578
583
|
# @param [String] quota_user
|
@@ -600,9 +605,9 @@ module Google
|
|
600
605
|
execute_or_queue_command(command, &block)
|
601
606
|
end
|
602
607
|
|
603
|
-
# Gets a
|
604
|
-
#
|
605
|
-
#
|
608
|
+
# Gets a policy on a resource. If no policy is set on the resource, `NOT_FOUND`
|
609
|
+
# is returned. The `etag` value can be used with `UpdatePolicy()` to update a
|
610
|
+
# policy during read-modify-write.
|
606
611
|
# @param [String] name
|
607
612
|
# Required. Resource name of the policy. See `Policy` for naming requirements.
|
608
613
|
# @param [String] fields
|
@@ -632,10 +637,10 @@ module Google
|
|
632
637
|
execute_or_queue_command(command, &block)
|
633
638
|
end
|
634
639
|
|
635
|
-
# Gets the effective
|
636
|
-
#
|
637
|
-
#
|
638
|
-
#
|
640
|
+
# Gets the effective policy on a resource. This is the result of merging
|
641
|
+
# policies in the resource hierarchy and evaluating conditions. The returned
|
642
|
+
# policy will not have an `etag` or `condition` set because it is an evaluated
|
643
|
+
# policy across multiple resources. Subtrees of Resource Manager resource
|
639
644
|
# hierarchy with 'under:' prefix will not be expanded.
|
640
645
|
# @param [String] name
|
641
646
|
# Required. The effective policy to compute. See `Policy` for naming rules.
|
@@ -666,12 +671,12 @@ module Google
|
|
666
671
|
execute_or_queue_command(command, &block)
|
667
672
|
end
|
668
673
|
|
669
|
-
# Retrieves all of the
|
674
|
+
# Retrieves all of the policies that exist on a particular resource.
|
670
675
|
# @param [String] parent
|
671
|
-
# Required. The target Cloud resource that parents the set of constraints
|
672
|
-
# policies that will be returned from this call. Must be in one of the
|
673
|
-
# forms: * `projects/`project_number`` * `projects/`project_id`` * `
|
674
|
-
# folder_id`` * `organizations/`organization_id``
|
676
|
+
# Required. The target Google Cloud resource that parents the set of constraints
|
677
|
+
# and policies that will be returned from this call. Must be in one of the
|
678
|
+
# following forms: * `projects/`project_number`` * `projects/`project_id`` * `
|
679
|
+
# folders/`folder_id`` * `organizations/`organization_id``
|
675
680
|
# @param [Fixnum] page_size
|
676
681
|
# Size of the pages to be returned. This is currently unsupported and will be
|
677
682
|
# ignored. The server may at any point start using this field to limit page size.
|
@@ -707,14 +712,14 @@ module Google
|
|
707
712
|
execute_or_queue_command(command, &block)
|
708
713
|
end
|
709
714
|
|
710
|
-
# Updates a
|
715
|
+
# Updates a policy. Returns a `google.rpc.Status` with `google.rpc.Code.
|
711
716
|
# NOT_FOUND` if the constraint or the policy do not exist. Returns a `google.rpc.
|
712
717
|
# Status` with `google.rpc.Code.ABORTED` if the etag supplied in the request
|
713
718
|
# does not match the persisted etag of the policy Note: the supplied policy will
|
714
719
|
# perform a full overwrite of all fields.
|
715
720
|
# @param [String] name
|
716
|
-
# Immutable. The resource name of the
|
717
|
-
# where constraint_name is the name of the constraint which this
|
721
|
+
# Immutable. The resource name of the policy. Must be one of the following forms,
|
722
|
+
# where constraint_name is the name of the constraint which this policy
|
718
723
|
# configures: * `projects/`project_number`/policies/`constraint_name`` * `
|
719
724
|
# folders/`folder_id`/policies/`constraint_name`` * `organizations/`
|
720
725
|
# organization_id`/policies/`constraint_name`` For example, "projects/123/
|
@@ -722,6 +727,10 @@ module Google
|
|
722
727
|
# policies/`constraint_name`` is also an acceptable name for API requests, but
|
723
728
|
# responses will return the name using the equivalent project number.
|
724
729
|
# @param [Google::Apis::OrgpolicyV2::GoogleCloudOrgpolicyV2Policy] google_cloud_orgpolicy_v2_policy_object
|
730
|
+
# @param [String] update_mask
|
731
|
+
# Field mask used to specify the fields to be overwritten in the policy by the
|
732
|
+
# set. The fields specified in the update_mask are relative to the policy, not
|
733
|
+
# the full request.
|
725
734
|
# @param [String] fields
|
726
735
|
# Selector specifying which fields to include in a partial response.
|
727
736
|
# @param [String] quota_user
|
@@ -739,23 +748,24 @@ module Google
|
|
739
748
|
# @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
|
740
749
|
# @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
|
741
750
|
# @raise [Google::Apis::AuthorizationError] Authorization is required
|
742
|
-
def patch_organization_policy(name, google_cloud_orgpolicy_v2_policy_object = nil, fields: nil, quota_user: nil, options: nil, &block)
|
751
|
+
def patch_organization_policy(name, google_cloud_orgpolicy_v2_policy_object = nil, update_mask: nil, fields: nil, quota_user: nil, options: nil, &block)
|
743
752
|
command = make_simple_command(:patch, 'v2/{+name}', options)
|
744
753
|
command.request_representation = Google::Apis::OrgpolicyV2::GoogleCloudOrgpolicyV2Policy::Representation
|
745
754
|
command.request_object = google_cloud_orgpolicy_v2_policy_object
|
746
755
|
command.response_representation = Google::Apis::OrgpolicyV2::GoogleCloudOrgpolicyV2Policy::Representation
|
747
756
|
command.response_class = Google::Apis::OrgpolicyV2::GoogleCloudOrgpolicyV2Policy
|
748
757
|
command.params['name'] = name unless name.nil?
|
758
|
+
command.query['updateMask'] = update_mask unless update_mask.nil?
|
749
759
|
command.query['fields'] = fields unless fields.nil?
|
750
760
|
command.query['quotaUser'] = quota_user unless quota_user.nil?
|
751
761
|
execute_or_queue_command(command, &block)
|
752
762
|
end
|
753
763
|
|
754
|
-
# Lists
|
764
|
+
# Lists constraints that could be applied on the specified resource.
|
755
765
|
# @param [String] parent
|
756
|
-
# Required. The Cloud resource that parents the constraint. Must be in
|
757
|
-
# the following forms: * `projects/`project_number`` * `projects/`
|
758
|
-
# `folders/`folder_id`` * `organizations/`organization_id``
|
766
|
+
# Required. The Google Cloud resource that parents the constraint. Must be in
|
767
|
+
# one of the following forms: * `projects/`project_number`` * `projects/`
|
768
|
+
# project_id`` * `folders/`folder_id`` * `organizations/`organization_id``
|
759
769
|
# @param [Fixnum] page_size
|
760
770
|
# Size of the pages to be returned. This is currently unsupported and will be
|
761
771
|
# ignored. The server may at any point start using this field to limit page size.
|
@@ -791,14 +801,14 @@ module Google
|
|
791
801
|
execute_or_queue_command(command, &block)
|
792
802
|
end
|
793
803
|
|
794
|
-
# Creates a
|
804
|
+
# Creates a policy. Returns a `google.rpc.Status` with `google.rpc.Code.
|
795
805
|
# NOT_FOUND` if the constraint does not exist. Returns a `google.rpc.Status`
|
796
806
|
# with `google.rpc.Code.ALREADY_EXISTS` if the policy already exists on the
|
797
|
-
# given Cloud resource.
|
807
|
+
# given Google Cloud resource.
|
798
808
|
# @param [String] parent
|
799
|
-
# Required. The Cloud resource that will parent the new
|
800
|
-
# of the following forms: * `projects/`project_number`` * `projects/`
|
801
|
-
# * `folders/`folder_id`` * `organizations/`organization_id``
|
809
|
+
# Required. The Google Cloud resource that will parent the new policy. Must be
|
810
|
+
# in one of the following forms: * `projects/`project_number`` * `projects/`
|
811
|
+
# project_id`` * `folders/`folder_id`` * `organizations/`organization_id``
|
802
812
|
# @param [Google::Apis::OrgpolicyV2::GoogleCloudOrgpolicyV2Policy] google_cloud_orgpolicy_v2_policy_object
|
803
813
|
# @param [String] fields
|
804
814
|
# Selector specifying which fields to include in a partial response.
|
@@ -829,10 +839,10 @@ module Google
|
|
829
839
|
execute_or_queue_command(command, &block)
|
830
840
|
end
|
831
841
|
|
832
|
-
# Deletes a
|
833
|
-
# NOT_FOUND` if the constraint or
|
842
|
+
# Deletes a policy. Returns a `google.rpc.Status` with `google.rpc.Code.
|
843
|
+
# NOT_FOUND` if the constraint or organization policy does not exist.
|
834
844
|
# @param [String] name
|
835
|
-
# Required. Name of the policy to delete. See
|
845
|
+
# Required. Name of the policy to delete. See the policy entry for naming rules.
|
836
846
|
# @param [String] fields
|
837
847
|
# Selector specifying which fields to include in a partial response.
|
838
848
|
# @param [String] quota_user
|
@@ -860,9 +870,9 @@ module Google
|
|
860
870
|
execute_or_queue_command(command, &block)
|
861
871
|
end
|
862
872
|
|
863
|
-
# Gets a
|
864
|
-
#
|
865
|
-
#
|
873
|
+
# Gets a policy on a resource. If no policy is set on the resource, `NOT_FOUND`
|
874
|
+
# is returned. The `etag` value can be used with `UpdatePolicy()` to update a
|
875
|
+
# policy during read-modify-write.
|
866
876
|
# @param [String] name
|
867
877
|
# Required. Resource name of the policy. See `Policy` for naming requirements.
|
868
878
|
# @param [String] fields
|
@@ -892,10 +902,10 @@ module Google
|
|
892
902
|
execute_or_queue_command(command, &block)
|
893
903
|
end
|
894
904
|
|
895
|
-
# Gets the effective
|
896
|
-
#
|
897
|
-
#
|
898
|
-
#
|
905
|
+
# Gets the effective policy on a resource. This is the result of merging
|
906
|
+
# policies in the resource hierarchy and evaluating conditions. The returned
|
907
|
+
# policy will not have an `etag` or `condition` set because it is an evaluated
|
908
|
+
# policy across multiple resources. Subtrees of Resource Manager resource
|
899
909
|
# hierarchy with 'under:' prefix will not be expanded.
|
900
910
|
# @param [String] name
|
901
911
|
# Required. The effective policy to compute. See `Policy` for naming rules.
|
@@ -926,12 +936,12 @@ module Google
|
|
926
936
|
execute_or_queue_command(command, &block)
|
927
937
|
end
|
928
938
|
|
929
|
-
# Retrieves all of the
|
939
|
+
# Retrieves all of the policies that exist on a particular resource.
|
930
940
|
# @param [String] parent
|
931
|
-
# Required. The target Cloud resource that parents the set of constraints
|
932
|
-
# policies that will be returned from this call. Must be in one of the
|
933
|
-
# forms: * `projects/`project_number`` * `projects/`project_id`` * `
|
934
|
-
# folder_id`` * `organizations/`organization_id``
|
941
|
+
# Required. The target Google Cloud resource that parents the set of constraints
|
942
|
+
# and policies that will be returned from this call. Must be in one of the
|
943
|
+
# following forms: * `projects/`project_number`` * `projects/`project_id`` * `
|
944
|
+
# folders/`folder_id`` * `organizations/`organization_id``
|
935
945
|
# @param [Fixnum] page_size
|
936
946
|
# Size of the pages to be returned. This is currently unsupported and will be
|
937
947
|
# ignored. The server may at any point start using this field to limit page size.
|
@@ -967,14 +977,14 @@ module Google
|
|
967
977
|
execute_or_queue_command(command, &block)
|
968
978
|
end
|
969
979
|
|
970
|
-
# Updates a
|
980
|
+
# Updates a policy. Returns a `google.rpc.Status` with `google.rpc.Code.
|
971
981
|
# NOT_FOUND` if the constraint or the policy do not exist. Returns a `google.rpc.
|
972
982
|
# Status` with `google.rpc.Code.ABORTED` if the etag supplied in the request
|
973
983
|
# does not match the persisted etag of the policy Note: the supplied policy will
|
974
984
|
# perform a full overwrite of all fields.
|
975
985
|
# @param [String] name
|
976
|
-
# Immutable. The resource name of the
|
977
|
-
# where constraint_name is the name of the constraint which this
|
986
|
+
# Immutable. The resource name of the policy. Must be one of the following forms,
|
987
|
+
# where constraint_name is the name of the constraint which this policy
|
978
988
|
# configures: * `projects/`project_number`/policies/`constraint_name`` * `
|
979
989
|
# folders/`folder_id`/policies/`constraint_name`` * `organizations/`
|
980
990
|
# organization_id`/policies/`constraint_name`` For example, "projects/123/
|
@@ -982,6 +992,10 @@ module Google
|
|
982
992
|
# policies/`constraint_name`` is also an acceptable name for API requests, but
|
983
993
|
# responses will return the name using the equivalent project number.
|
984
994
|
# @param [Google::Apis::OrgpolicyV2::GoogleCloudOrgpolicyV2Policy] google_cloud_orgpolicy_v2_policy_object
|
995
|
+
# @param [String] update_mask
|
996
|
+
# Field mask used to specify the fields to be overwritten in the policy by the
|
997
|
+
# set. The fields specified in the update_mask are relative to the policy, not
|
998
|
+
# the full request.
|
985
999
|
# @param [String] fields
|
986
1000
|
# Selector specifying which fields to include in a partial response.
|
987
1001
|
# @param [String] quota_user
|
@@ -999,13 +1013,14 @@ module Google
|
|
999
1013
|
# @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
|
1000
1014
|
# @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
|
1001
1015
|
# @raise [Google::Apis::AuthorizationError] Authorization is required
|
1002
|
-
def patch_project_policy(name, google_cloud_orgpolicy_v2_policy_object = nil, fields: nil, quota_user: nil, options: nil, &block)
|
1016
|
+
def patch_project_policy(name, google_cloud_orgpolicy_v2_policy_object = nil, update_mask: nil, fields: nil, quota_user: nil, options: nil, &block)
|
1003
1017
|
command = make_simple_command(:patch, 'v2/{+name}', options)
|
1004
1018
|
command.request_representation = Google::Apis::OrgpolicyV2::GoogleCloudOrgpolicyV2Policy::Representation
|
1005
1019
|
command.request_object = google_cloud_orgpolicy_v2_policy_object
|
1006
1020
|
command.response_representation = Google::Apis::OrgpolicyV2::GoogleCloudOrgpolicyV2Policy::Representation
|
1007
1021
|
command.response_class = Google::Apis::OrgpolicyV2::GoogleCloudOrgpolicyV2Policy
|
1008
1022
|
command.params['name'] = name unless name.nil?
|
1023
|
+
command.query['updateMask'] = update_mask unless update_mask.nil?
|
1009
1024
|
command.query['fields'] = fields unless fields.nil?
|
1010
1025
|
command.query['quotaUser'] = quota_user unless quota_user.nil?
|
1011
1026
|
execute_or_queue_command(command, &block)
|
metadata
CHANGED
@@ -1,14 +1,14 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: google-apis-orgpolicy_v2
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 0.
|
4
|
+
version: 0.23.0
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- Google LLC
|
8
8
|
autorequire:
|
9
9
|
bindir: bin
|
10
10
|
cert_chain: []
|
11
|
-
date:
|
11
|
+
date: 2023-02-12 00:00:00.000000000 Z
|
12
12
|
dependencies:
|
13
13
|
- !ruby/object:Gem::Dependency
|
14
14
|
name: google-apis-core
|
@@ -58,7 +58,7 @@ licenses:
|
|
58
58
|
metadata:
|
59
59
|
bug_tracker_uri: https://github.com/googleapis/google-api-ruby-client/issues
|
60
60
|
changelog_uri: https://github.com/googleapis/google-api-ruby-client/tree/main/generated/google-apis-orgpolicy_v2/CHANGELOG.md
|
61
|
-
documentation_uri: https://googleapis.dev/ruby/google-apis-orgpolicy_v2/v0.
|
61
|
+
documentation_uri: https://googleapis.dev/ruby/google-apis-orgpolicy_v2/v0.23.0
|
62
62
|
source_code_uri: https://github.com/googleapis/google-api-ruby-client/tree/main/generated/google-apis-orgpolicy_v2
|
63
63
|
post_install_message:
|
64
64
|
rdoc_options: []
|
@@ -75,7 +75,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
|
|
75
75
|
- !ruby/object:Gem::Version
|
76
76
|
version: '0'
|
77
77
|
requirements: []
|
78
|
-
rubygems_version: 3.
|
78
|
+
rubygems_version: 3.4.2
|
79
79
|
signing_key:
|
80
80
|
specification_version: 4
|
81
81
|
summary: Simple REST client for Organization Policy API V2
|