google-apis-policytroubleshooter_v1beta 0.1.0

Sign up to get free protection for your applications and to get access to all the features.
@@ -0,0 +1,7 @@
1
+ ---
2
+ SHA256:
3
+ metadata.gz: e302bfd681b7f4f32cbc1883823f91d26de8af25efc12de6ee117fa881346799
4
+ data.tar.gz: 838ad32d90851f11b10e6f62981817f3b2cadcdfab04060f0f01a216fef211bb
5
+ SHA512:
6
+ metadata.gz: f6bf1a1d50046f351fd8fc9397e47beafb595e801b86afc1f4f5c0f24e6040cfdacf1904b6b35681e7e768c43ecf9dcaa110ec62dd1700a0df6dc3190c6aee74
7
+ data.tar.gz: 861564a57b484891b139a20bf2af96c430e1c6d819deb56c269f9a060f5f8f42db5161d4cac062ad0cd55e2673cecae8d039d98f7378edc4a669ecadc7b287ce
@@ -0,0 +1,13 @@
1
+ --hide-void-return
2
+ --no-private
3
+ --verbose
4
+ --title=google-apis-policytroubleshooter_v1beta
5
+ --markup-provider=redcarpet
6
+ --markup=markdown
7
+ --main OVERVIEW.md
8
+ lib/google/apis/policytroubleshooter_v1beta/*.rb
9
+ lib/google/apis/policytroubleshooter_v1beta.rb
10
+ -
11
+ OVERVIEW.md
12
+ CHANGELOG.md
13
+ LICENSE.md
@@ -0,0 +1,7 @@
1
+ # Release history for google-apis-policytroubleshooter_v1beta
2
+
3
+ ### v0.1.0 (2021-01-07)
4
+
5
+ * Regenerated using generator version 0.1.1
6
+ * Regenerated from discovery document revision 20201107
7
+
@@ -0,0 +1,202 @@
1
+
2
+ Apache License
3
+ Version 2.0, January 2004
4
+ http://www.apache.org/licenses/
5
+
6
+ TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
7
+
8
+ 1. Definitions.
9
+
10
+ "License" shall mean the terms and conditions for use, reproduction,
11
+ and distribution as defined by Sections 1 through 9 of this document.
12
+
13
+ "Licensor" shall mean the copyright owner or entity authorized by
14
+ the copyright owner that is granting the License.
15
+
16
+ "Legal Entity" shall mean the union of the acting entity and all
17
+ other entities that control, are controlled by, or are under common
18
+ control with that entity. For the purposes of this definition,
19
+ "control" means (i) the power, direct or indirect, to cause the
20
+ direction or management of such entity, whether by contract or
21
+ otherwise, or (ii) ownership of fifty percent (50%) or more of the
22
+ outstanding shares, or (iii) beneficial ownership of such entity.
23
+
24
+ "You" (or "Your") shall mean an individual or Legal Entity
25
+ exercising permissions granted by this License.
26
+
27
+ "Source" form shall mean the preferred form for making modifications,
28
+ including but not limited to software source code, documentation
29
+ source, and configuration files.
30
+
31
+ "Object" form shall mean any form resulting from mechanical
32
+ transformation or translation of a Source form, including but
33
+ not limited to compiled object code, generated documentation,
34
+ and conversions to other media types.
35
+
36
+ "Work" shall mean the work of authorship, whether in Source or
37
+ Object form, made available under the License, as indicated by a
38
+ copyright notice that is included in or attached to the work
39
+ (an example is provided in the Appendix below).
40
+
41
+ "Derivative Works" shall mean any work, whether in Source or Object
42
+ form, that is based on (or derived from) the Work and for which the
43
+ editorial revisions, annotations, elaborations, or other modifications
44
+ represent, as a whole, an original work of authorship. For the purposes
45
+ of this License, Derivative Works shall not include works that remain
46
+ separable from, or merely link (or bind by name) to the interfaces of,
47
+ the Work and Derivative Works thereof.
48
+
49
+ "Contribution" shall mean any work of authorship, including
50
+ the original version of the Work and any modifications or additions
51
+ to that Work or Derivative Works thereof, that is intentionally
52
+ submitted to Licensor for inclusion in the Work by the copyright owner
53
+ or by an individual or Legal Entity authorized to submit on behalf of
54
+ the copyright owner. For the purposes of this definition, "submitted"
55
+ means any form of electronic, verbal, or written communication sent
56
+ to the Licensor or its representatives, including but not limited to
57
+ communication on electronic mailing lists, source code control systems,
58
+ and issue tracking systems that are managed by, or on behalf of, the
59
+ Licensor for the purpose of discussing and improving the Work, but
60
+ excluding communication that is conspicuously marked or otherwise
61
+ designated in writing by the copyright owner as "Not a Contribution."
62
+
63
+ "Contributor" shall mean Licensor and any individual or Legal Entity
64
+ on behalf of whom a Contribution has been received by Licensor and
65
+ subsequently incorporated within the Work.
66
+
67
+ 2. Grant of Copyright License. Subject to the terms and conditions of
68
+ this License, each Contributor hereby grants to You a perpetual,
69
+ worldwide, non-exclusive, no-charge, royalty-free, irrevocable
70
+ copyright license to reproduce, prepare Derivative Works of,
71
+ publicly display, publicly perform, sublicense, and distribute the
72
+ Work and such Derivative Works in Source or Object form.
73
+
74
+ 3. Grant of Patent License. Subject to the terms and conditions of
75
+ this License, each Contributor hereby grants to You a perpetual,
76
+ worldwide, non-exclusive, no-charge, royalty-free, irrevocable
77
+ (except as stated in this section) patent license to make, have made,
78
+ use, offer to sell, sell, import, and otherwise transfer the Work,
79
+ where such license applies only to those patent claims licensable
80
+ by such Contributor that are necessarily infringed by their
81
+ Contribution(s) alone or by combination of their Contribution(s)
82
+ with the Work to which such Contribution(s) was submitted. If You
83
+ institute patent litigation against any entity (including a
84
+ cross-claim or counterclaim in a lawsuit) alleging that the Work
85
+ or a Contribution incorporated within the Work constitutes direct
86
+ or contributory patent infringement, then any patent licenses
87
+ granted to You under this License for that Work shall terminate
88
+ as of the date such litigation is filed.
89
+
90
+ 4. Redistribution. You may reproduce and distribute copies of the
91
+ Work or Derivative Works thereof in any medium, with or without
92
+ modifications, and in Source or Object form, provided that You
93
+ meet the following conditions:
94
+
95
+ (a) You must give any other recipients of the Work or
96
+ Derivative Works a copy of this License; and
97
+
98
+ (b) You must cause any modified files to carry prominent notices
99
+ stating that You changed the files; and
100
+
101
+ (c) You must retain, in the Source form of any Derivative Works
102
+ that You distribute, all copyright, patent, trademark, and
103
+ attribution notices from the Source form of the Work,
104
+ excluding those notices that do not pertain to any part of
105
+ the Derivative Works; and
106
+
107
+ (d) If the Work includes a "NOTICE" text file as part of its
108
+ distribution, then any Derivative Works that You distribute must
109
+ include a readable copy of the attribution notices contained
110
+ within such NOTICE file, excluding those notices that do not
111
+ pertain to any part of the Derivative Works, in at least one
112
+ of the following places: within a NOTICE text file distributed
113
+ as part of the Derivative Works; within the Source form or
114
+ documentation, if provided along with the Derivative Works; or,
115
+ within a display generated by the Derivative Works, if and
116
+ wherever such third-party notices normally appear. The contents
117
+ of the NOTICE file are for informational purposes only and
118
+ do not modify the License. You may add Your own attribution
119
+ notices within Derivative Works that You distribute, alongside
120
+ or as an addendum to the NOTICE text from the Work, provided
121
+ that such additional attribution notices cannot be construed
122
+ as modifying the License.
123
+
124
+ You may add Your own copyright statement to Your modifications and
125
+ may provide additional or different license terms and conditions
126
+ for use, reproduction, or distribution of Your modifications, or
127
+ for any such Derivative Works as a whole, provided Your use,
128
+ reproduction, and distribution of the Work otherwise complies with
129
+ the conditions stated in this License.
130
+
131
+ 5. Submission of Contributions. Unless You explicitly state otherwise,
132
+ any Contribution intentionally submitted for inclusion in the Work
133
+ by You to the Licensor shall be under the terms and conditions of
134
+ this License, without any additional terms or conditions.
135
+ Notwithstanding the above, nothing herein shall supersede or modify
136
+ the terms of any separate license agreement you may have executed
137
+ with Licensor regarding such Contributions.
138
+
139
+ 6. Trademarks. This License does not grant permission to use the trade
140
+ names, trademarks, service marks, or product names of the Licensor,
141
+ except as required for reasonable and customary use in describing the
142
+ origin of the Work and reproducing the content of the NOTICE file.
143
+
144
+ 7. Disclaimer of Warranty. Unless required by applicable law or
145
+ agreed to in writing, Licensor provides the Work (and each
146
+ Contributor provides its Contributions) on an "AS IS" BASIS,
147
+ WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
148
+ implied, including, without limitation, any warranties or conditions
149
+ of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A
150
+ PARTICULAR PURPOSE. You are solely responsible for determining the
151
+ appropriateness of using or redistributing the Work and assume any
152
+ risks associated with Your exercise of permissions under this License.
153
+
154
+ 8. Limitation of Liability. In no event and under no legal theory,
155
+ whether in tort (including negligence), contract, or otherwise,
156
+ unless required by applicable law (such as deliberate and grossly
157
+ negligent acts) or agreed to in writing, shall any Contributor be
158
+ liable to You for damages, including any direct, indirect, special,
159
+ incidental, or consequential damages of any character arising as a
160
+ result of this License or out of the use or inability to use the
161
+ Work (including but not limited to damages for loss of goodwill,
162
+ work stoppage, computer failure or malfunction, or any and all
163
+ other commercial damages or losses), even if such Contributor
164
+ has been advised of the possibility of such damages.
165
+
166
+ 9. Accepting Warranty or Additional Liability. While redistributing
167
+ the Work or Derivative Works thereof, You may choose to offer,
168
+ and charge a fee for, acceptance of support, warranty, indemnity,
169
+ or other liability obligations and/or rights consistent with this
170
+ License. However, in accepting such obligations, You may act only
171
+ on Your own behalf and on Your sole responsibility, not on behalf
172
+ of any other Contributor, and only if You agree to indemnify,
173
+ defend, and hold each Contributor harmless for any liability
174
+ incurred by, or claims asserted against, such Contributor by reason
175
+ of your accepting any such warranty or additional liability.
176
+
177
+ END OF TERMS AND CONDITIONS
178
+
179
+ APPENDIX: How to apply the Apache License to your work.
180
+
181
+ To apply the Apache License to your work, attach the following
182
+ boilerplate notice, with the fields enclosed by brackets "[]"
183
+ replaced with your own identifying information. (Don't include
184
+ the brackets!) The text should be enclosed in the appropriate
185
+ comment syntax for the file format. We also recommend that a
186
+ file or class name and description of purpose be included on the
187
+ same "printed page" as the copyright notice for easier
188
+ identification within third-party archives.
189
+
190
+ Copyright [yyyy] [name of copyright owner]
191
+
192
+ Licensed under the Apache License, Version 2.0 (the "License");
193
+ you may not use this file except in compliance with the License.
194
+ You may obtain a copy of the License at
195
+
196
+ http://www.apache.org/licenses/LICENSE-2.0
197
+
198
+ Unless required by applicable law or agreed to in writing, software
199
+ distributed under the License is distributed on an "AS IS" BASIS,
200
+ WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
201
+ See the License for the specific language governing permissions and
202
+ limitations under the License.
@@ -0,0 +1,96 @@
1
+ # Simple REST client for version V1beta of the Policy Troubleshooter API
2
+
3
+ This is a simple client library for version V1beta of the Policy Troubleshooter API. It provides:
4
+
5
+ * A client object that connects to the HTTP/JSON REST endpoint for the service.
6
+ * Ruby objects for data structures related to the service.
7
+ * Integration with the googleauth gem for authentication using OAuth, API keys, and service accounts.
8
+ * Control of retry, pagination, and timeouts.
9
+
10
+ Note that although this client library is supported and will continue to be updated to track changes to the service, it is otherwise considered complete and not under active development. Many Google services, especially Google Cloud Platform services, may provide a more modern client that is under more active development and improvement. See the section below titled *Which client should I use?* for more information.
11
+
12
+ ## Getting started
13
+
14
+ ### Before you begin
15
+
16
+ There are a few setup steps you need to complete before you can use this library:
17
+
18
+ 1. If you don't already have a Google account, [sign up](https://www.google.com/accounts).
19
+ 2. If you have never created a Google APIs Console project, read about [Managing Projects](https://cloud.google.com/resource-manager/docs/creating-managing-projects) and create a project in the [Google API Console](https://console.cloud.google.com/).
20
+ 3. Most APIs need to be enabled for your project. [Enable it](https://console.cloud.google.com/apis/library/policytroubleshooter.googleapis.com) in the console.
21
+
22
+ ### Installation
23
+
24
+ Add this line to your application's Gemfile:
25
+
26
+ ```ruby
27
+ gem 'google-apis-policytroubleshooter_v1beta', '~> 0.1'
28
+ ```
29
+
30
+ And then execute:
31
+
32
+ ```
33
+ $ bundle
34
+ ```
35
+
36
+ Or install it yourself as:
37
+
38
+ ```
39
+ $ gem install google-apis-policytroubleshooter_v1beta
40
+ ```
41
+
42
+ ### Creating a client object
43
+
44
+ Once the gem is installed, you can load the client code and instantiate a client.
45
+
46
+ ```ruby
47
+ # Load the client
48
+ require "google/apis/policytroubleshooter_v1beta"
49
+
50
+ # Create a client object
51
+ client = Google::Apis::PolicytroubleshooterV1beta::PolicyTroubleshooterService.new
52
+
53
+ # Authenticate calls
54
+ client.authentication = # ... use the googleauth gem to create credentials
55
+ ```
56
+
57
+ See the class reference docs for information on the methods you can call from a client.
58
+
59
+ ## Documentation
60
+
61
+ More detailed descriptions of the Google simple REST clients are available in two documents.
62
+
63
+ * The [Usage Guide](https://github.com/googleapis/google-api-ruby-client/blob/master/docs/usage-guide.md) discusses how to make API calls, how to use the provided data structures, and how to work the various features of the client library, including media upload and download, error handling, retries, pagination, and logging.
64
+ * The [Auth Guide](https://github.com/googleapis/google-api-ruby-client/blob/master/docs/auth-guide.md) discusses authentication in the client libraries, including API keys, OAuth 2.0, service accounts, and environment variables.
65
+
66
+ (Note: the above documents are written for the simple REST clients in general, and their examples may not reflect the Policytroubleshooter service in particular.)
67
+
68
+ For reference information on specific calls in the Policy Troubleshooter API, see the {Google::Apis::PolicytroubleshooterV1beta::PolicyTroubleshooterService class reference docs}.
69
+
70
+ ## Which client should I use?
71
+
72
+ Google provides two types of Ruby API client libraries: **simple REST clients** and **modern clients**.
73
+
74
+ This library, `google-apis-policytroubleshooter_v1beta`, is a simple REST client. You can identify these clients by their gem names, which are always in the form `google-apis-<servicename>_<serviceversion>`. The simple REST clients connect to HTTP/JSON REST endpoints and are automatically generated from service discovery documents. They support most API functionality, but their class interfaces are sometimes awkward.
75
+
76
+ Modern clients are produced by a modern code generator, sometimes combined with hand-crafted functionality. Most modern clients connect to high-performance gRPC endpoints, although a few are backed by REST services. Modern clients are available for many Google services, especially Google Cloud Platform services, but do not yet support all the services covered by the simple clients.
77
+
78
+ Gem names for modern clients are often of the form `google-cloud-<service_name>`. (For example, [google-cloud-pubsub](https://rubygems.org/gems/google-cloud-pubsub).) Note that most modern clients also have corresponding "versioned" gems with names like `google-cloud-<service_name>-<version>`. (For example, [google-cloud-pubsub-v1](https://rubygems.org/gems/google-cloud-pubsub-v1).) The "versioned" gems can be used directly, but often provide lower-level interfaces. In most cases, the main gem is recommended.
79
+
80
+ **For most users, we recommend the modern client, if one is available.** Compared with simple clients, modern clients are generally much easier to use and more Ruby-like, support more advanced features such as streaming and long-running operations, and often provide much better performance. You may consider using a simple client instead, if a modern client is not yet available for the service you want to use, or if you are not able to use gRPC on your infrastructure.
81
+
82
+ The [product documentation](https://cloud.google.com/iam/) may provide guidance regarding the preferred client library to use.
83
+
84
+ ## Supported Ruby versions
85
+
86
+ This library is supported on Ruby 2.5+.
87
+
88
+ Google provides official support for Ruby versions that are actively supported by Ruby Core -- that is, Ruby versions that are either in normal maintenance or in security maintenance, and not end of life. Currently, this means Ruby 2.5 and later. Older versions of Ruby _may_ still work, but are unsupported and not recommended. See https://www.ruby-lang.org/en/downloads/branches/ for details about the Ruby support schedule.
89
+
90
+ ## License
91
+
92
+ This library is licensed under Apache 2.0. Full license text is available in the {file:LICENSE.md LICENSE}.
93
+
94
+ ## Support
95
+
96
+ Please [report bugs at the project on Github](https://github.com/google/google-api-ruby-client/issues). Don't hesitate to [ask questions](http://stackoverflow.com/questions/tagged/google-api-ruby-client) about the client or APIs on [StackOverflow](http://stackoverflow.com).
@@ -0,0 +1,15 @@
1
+ # Copyright 2020 Google LLC
2
+ #
3
+ # Licensed under the Apache License, Version 2.0 (the "License");
4
+ # you may not use this file except in compliance with the License.
5
+ # You may obtain a copy of the License at
6
+ #
7
+ # http://www.apache.org/licenses/LICENSE-2.0
8
+ #
9
+ # Unless required by applicable law or agreed to in writing, software
10
+ # distributed under the License is distributed on an "AS IS" BASIS,
11
+ # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
12
+ # See the License for the specific language governing permissions and
13
+ # limitations under the License.
14
+
15
+ require "google/apis/policytroubleshooter_v1beta"
@@ -0,0 +1,36 @@
1
+ # Copyright 2020 Google LLC
2
+ #
3
+ # Licensed under the Apache License, Version 2.0 (the "License");
4
+ # you may not use this file except in compliance with the License.
5
+ # You may obtain a copy of the License at
6
+ #
7
+ # http://www.apache.org/licenses/LICENSE-2.0
8
+ #
9
+ # Unless required by applicable law or agreed to in writing, software
10
+ # distributed under the License is distributed on an "AS IS" BASIS,
11
+ # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
12
+ # See the License for the specific language governing permissions and
13
+ # limitations under the License.
14
+
15
+ require 'google/apis/policytroubleshooter_v1beta/service.rb'
16
+ require 'google/apis/policytroubleshooter_v1beta/classes.rb'
17
+ require 'google/apis/policytroubleshooter_v1beta/representations.rb'
18
+ require 'google/apis/policytroubleshooter_v1beta/gem_version.rb'
19
+
20
+ module Google
21
+ module Apis
22
+ # Policy Troubleshooter API
23
+ #
24
+ #
25
+ #
26
+ # @see https://cloud.google.com/iam/
27
+ module PolicytroubleshooterV1beta
28
+ # Version of the Policy Troubleshooter API this client connects to.
29
+ # This is NOT the gem version.
30
+ VERSION = 'V1beta'
31
+
32
+ # View and manage your data across Google Cloud Platform services
33
+ AUTH_CLOUD_PLATFORM = 'https://www.googleapis.com/auth/cloud-platform'
34
+ end
35
+ end
36
+ end
@@ -0,0 +1,603 @@
1
+ # Copyright 2020 Google LLC
2
+ #
3
+ # Licensed under the Apache License, Version 2.0 (the "License");
4
+ # you may not use this file except in compliance with the License.
5
+ # You may obtain a copy of the License at
6
+ #
7
+ # http://www.apache.org/licenses/LICENSE-2.0
8
+ #
9
+ # Unless required by applicable law or agreed to in writing, software
10
+ # distributed under the License is distributed on an "AS IS" BASIS,
11
+ # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
12
+ # See the License for the specific language governing permissions and
13
+ # limitations under the License.
14
+
15
+ require 'date'
16
+ require 'google/apis/core/base_service'
17
+ require 'google/apis/core/json_representation'
18
+ require 'google/apis/core/hashable'
19
+ require 'google/apis/errors'
20
+
21
+ module Google
22
+ module Apis
23
+ module PolicytroubleshooterV1beta
24
+
25
+ # Information about the member, resource, and permission to check.
26
+ class GoogleCloudPolicytroubleshooterV1betaAccessTuple
27
+ include Google::Apis::Core::Hashable
28
+
29
+ # Required. The full resource name that identifies the resource. For example, `//
30
+ # compute.googleapis.com/projects/my-project/zones/us-central1-a/instances/my-
31
+ # instance`. For examples of full resource names for Google Cloud services, see
32
+ # https://cloud.google.com/iam/help/troubleshooter/full-resource-names.
33
+ # Corresponds to the JSON property `fullResourceName`
34
+ # @return [String]
35
+ attr_accessor :full_resource_name
36
+
37
+ # Required. The IAM permission to check for the specified member and resource.
38
+ # For a complete list of IAM permissions, see https://cloud.google.com/iam/help/
39
+ # permissions/reference. For a complete list of predefined IAM roles and the
40
+ # permissions in each role, see https://cloud.google.com/iam/help/roles/
41
+ # reference.
42
+ # Corresponds to the JSON property `permission`
43
+ # @return [String]
44
+ attr_accessor :permission
45
+
46
+ # Required. The member, or principal, whose access you want to check, in the
47
+ # form of the email address that represents that member. For example, `alice@
48
+ # example.com` or `my-service-account@my-project.iam.gserviceaccount.com`. The
49
+ # member must be a Google Account or a service account. Other types of members
50
+ # are not supported.
51
+ # Corresponds to the JSON property `principal`
52
+ # @return [String]
53
+ attr_accessor :principal
54
+
55
+ def initialize(**args)
56
+ update!(**args)
57
+ end
58
+
59
+ # Update properties of this object
60
+ def update!(**args)
61
+ @full_resource_name = args[:full_resource_name] if args.key?(:full_resource_name)
62
+ @permission = args[:permission] if args.key?(:permission)
63
+ @principal = args[:principal] if args.key?(:principal)
64
+ end
65
+ end
66
+
67
+ # Details about how a binding in a policy affects a member's ability to use a
68
+ # permission.
69
+ class GoogleCloudPolicytroubleshooterV1betaBindingExplanation
70
+ include Google::Apis::Core::Hashable
71
+
72
+ # Indicates whether _this binding_ provides the specified permission to the
73
+ # specified member for the specified resource. This field does _not_ indicate
74
+ # whether the member actually has the permission for the resource. There might
75
+ # be another binding that overrides this binding. To determine whether the
76
+ # member actually has the permission, use the `access` field in the
77
+ # TroubleshootIamPolicyResponse.
78
+ # Corresponds to the JSON property `access`
79
+ # @return [String]
80
+ attr_accessor :access
81
+
82
+ # Represents a textual expression in the Common Expression Language (CEL) syntax.
83
+ # CEL is a C-like expression language. The syntax and semantics of CEL are
84
+ # documented at https://github.com/google/cel-spec. Example (Comparison): title:
85
+ # "Summary size limit" description: "Determines if a summary is less than 100
86
+ # chars" expression: "document.summary.size() < 100" Example (Equality): title: "
87
+ # Requestor is owner" description: "Determines if requestor is the document
88
+ # owner" expression: "document.owner == request.auth.claims.email" Example (
89
+ # Logic): title: "Public documents" description: "Determine whether the document
90
+ # should be publicly visible" expression: "document.type != 'private' &&
91
+ # document.type != 'internal'" Example (Data Manipulation): title: "Notification
92
+ # string" description: "Create a notification string with a timestamp."
93
+ # expression: "'New message received at ' + string(document.create_time)" The
94
+ # exact variables and functions that may be referenced within an expression are
95
+ # determined by the service that evaluates it. See the service documentation for
96
+ # additional information.
97
+ # Corresponds to the JSON property `condition`
98
+ # @return [Google::Apis::PolicytroubleshooterV1beta::GoogleTypeExpr]
99
+ attr_accessor :condition
100
+
101
+ # Indicates whether each member in the binding includes the member specified in
102
+ # the request, either directly or indirectly. Each key identifies a member in
103
+ # the binding, and each value indicates whether the member in the binding
104
+ # includes the member in the request. For example, suppose that a binding
105
+ # includes the following members: * `user:alice@example.com` * `group:product-
106
+ # eng@example.com` You want to troubleshoot access for `user:bob@example.com`.
107
+ # This user is a member of the group `group:product-eng@example.com`. For the
108
+ # first member in the binding, the key is `user:alice@example.com`, and the `
109
+ # membership` field in the value is set to `MEMBERSHIP_NOT_INCLUDED`. For the
110
+ # second member in the binding, the key is `group:product-eng@example.com`, and
111
+ # the `membership` field in the value is set to `MEMBERSHIP_INCLUDED`.
112
+ # Corresponds to the JSON property `memberships`
113
+ # @return [Hash<String,Google::Apis::PolicytroubleshooterV1beta::GoogleCloudPolicytroubleshooterV1betaBindingExplanationAnnotatedMembership>]
114
+ attr_accessor :memberships
115
+
116
+ # The relevance of this binding to the overall determination for the entire
117
+ # policy.
118
+ # Corresponds to the JSON property `relevance`
119
+ # @return [String]
120
+ attr_accessor :relevance
121
+
122
+ # The role that this binding grants. For example, `roles/compute.serviceAgent`.
123
+ # For a complete list of predefined IAM roles, as well as the permissions in
124
+ # each role, see https://cloud.google.com/iam/help/roles/reference.
125
+ # Corresponds to the JSON property `role`
126
+ # @return [String]
127
+ attr_accessor :role
128
+
129
+ # Indicates whether the role granted by this binding contains the specified
130
+ # permission.
131
+ # Corresponds to the JSON property `rolePermission`
132
+ # @return [String]
133
+ attr_accessor :role_permission
134
+
135
+ # The relevance of the permission's existence, or nonexistence, in the role to
136
+ # the overall determination for the entire policy.
137
+ # Corresponds to the JSON property `rolePermissionRelevance`
138
+ # @return [String]
139
+ attr_accessor :role_permission_relevance
140
+
141
+ def initialize(**args)
142
+ update!(**args)
143
+ end
144
+
145
+ # Update properties of this object
146
+ def update!(**args)
147
+ @access = args[:access] if args.key?(:access)
148
+ @condition = args[:condition] if args.key?(:condition)
149
+ @memberships = args[:memberships] if args.key?(:memberships)
150
+ @relevance = args[:relevance] if args.key?(:relevance)
151
+ @role = args[:role] if args.key?(:role)
152
+ @role_permission = args[:role_permission] if args.key?(:role_permission)
153
+ @role_permission_relevance = args[:role_permission_relevance] if args.key?(:role_permission_relevance)
154
+ end
155
+ end
156
+
157
+ # Details about whether the binding includes the member.
158
+ class GoogleCloudPolicytroubleshooterV1betaBindingExplanationAnnotatedMembership
159
+ include Google::Apis::Core::Hashable
160
+
161
+ # Indicates whether the binding includes the member.
162
+ # Corresponds to the JSON property `membership`
163
+ # @return [String]
164
+ attr_accessor :membership
165
+
166
+ # The relevance of the member's status to the overall determination for the
167
+ # binding.
168
+ # Corresponds to the JSON property `relevance`
169
+ # @return [String]
170
+ attr_accessor :relevance
171
+
172
+ def initialize(**args)
173
+ update!(**args)
174
+ end
175
+
176
+ # Update properties of this object
177
+ def update!(**args)
178
+ @membership = args[:membership] if args.key?(:membership)
179
+ @relevance = args[:relevance] if args.key?(:relevance)
180
+ end
181
+ end
182
+
183
+ # Details about how a specific IAM Policy contributed to the access check.
184
+ class GoogleCloudPolicytroubleshooterV1betaExplainedPolicy
185
+ include Google::Apis::Core::Hashable
186
+
187
+ # Indicates whether _this policy_ provides the specified permission to the
188
+ # specified member for the specified resource. This field does _not_ indicate
189
+ # whether the member actually has the permission for the resource. There might
190
+ # be another policy that overrides this policy. To determine whether the member
191
+ # actually has the permission, use the `access` field in the
192
+ # TroubleshootIamPolicyResponse.
193
+ # Corresponds to the JSON property `access`
194
+ # @return [String]
195
+ attr_accessor :access
196
+
197
+ # Details about how each binding in the policy affects the member's ability, or
198
+ # inability, to use the permission for the resource. If the sender of the
199
+ # request does not have access to the policy, this field is omitted.
200
+ # Corresponds to the JSON property `bindingExplanations`
201
+ # @return [Array<Google::Apis::PolicytroubleshooterV1beta::GoogleCloudPolicytroubleshooterV1betaBindingExplanation>]
202
+ attr_accessor :binding_explanations
203
+
204
+ # The full resource name that identifies the resource. For example, `//compute.
205
+ # googleapis.com/projects/my-project/zones/us-central1-a/instances/my-instance`.
206
+ # If the sender of the request does not have access to the policy, this field is
207
+ # omitted. For examples of full resource names for Google Cloud services, see
208
+ # https://cloud.google.com/iam/help/troubleshooter/full-resource-names.
209
+ # Corresponds to the JSON property `fullResourceName`
210
+ # @return [String]
211
+ attr_accessor :full_resource_name
212
+
213
+ # An Identity and Access Management (IAM) policy, which specifies access
214
+ # controls for Google Cloud resources. A `Policy` is a collection of `bindings`.
215
+ # A `binding` binds one or more `members` to a single `role`. Members can be
216
+ # user accounts, service accounts, Google groups, and domains (such as G Suite).
217
+ # A `role` is a named list of permissions; each `role` can be an IAM predefined
218
+ # role or a user-created custom role. For some types of Google Cloud resources,
219
+ # a `binding` can also specify a `condition`, which is a logical expression that
220
+ # allows access to a resource only if the expression evaluates to `true`. A
221
+ # condition can add constraints based on attributes of the request, the resource,
222
+ # or both. To learn which resources support conditions in their IAM policies,
223
+ # see the [IAM documentation](https://cloud.google.com/iam/help/conditions/
224
+ # resource-policies). **JSON example:** ` "bindings": [ ` "role": "roles/
225
+ # resourcemanager.organizationAdmin", "members": [ "user:mike@example.com", "
226
+ # group:admins@example.com", "domain:google.com", "serviceAccount:my-project-id@
227
+ # appspot.gserviceaccount.com" ] `, ` "role": "roles/resourcemanager.
228
+ # organizationViewer", "members": [ "user:eve@example.com" ], "condition": ` "
229
+ # title": "expirable access", "description": "Does not grant access after Sep
230
+ # 2020", "expression": "request.time < timestamp('2020-10-01T00:00:00.000Z')", `
231
+ # ` ], "etag": "BwWWja0YfJA=", "version": 3 ` **YAML example:** bindings: -
232
+ # members: - user:mike@example.com - group:admins@example.com - domain:google.
233
+ # com - serviceAccount:my-project-id@appspot.gserviceaccount.com role: roles/
234
+ # resourcemanager.organizationAdmin - members: - user:eve@example.com role:
235
+ # roles/resourcemanager.organizationViewer condition: title: expirable access
236
+ # description: Does not grant access after Sep 2020 expression: request.time <
237
+ # timestamp('2020-10-01T00:00:00.000Z') - etag: BwWWja0YfJA= - version: 3 For a
238
+ # description of IAM and its features, see the [IAM documentation](https://cloud.
239
+ # google.com/iam/docs/).
240
+ # Corresponds to the JSON property `policy`
241
+ # @return [Google::Apis::PolicytroubleshooterV1beta::GoogleIamV1Policy]
242
+ attr_accessor :policy
243
+
244
+ # The relevance of this policy to the overall determination in the
245
+ # TroubleshootIamPolicyResponse. If the sender of the request does not have
246
+ # access to the policy, this field is omitted.
247
+ # Corresponds to the JSON property `relevance`
248
+ # @return [String]
249
+ attr_accessor :relevance
250
+
251
+ def initialize(**args)
252
+ update!(**args)
253
+ end
254
+
255
+ # Update properties of this object
256
+ def update!(**args)
257
+ @access = args[:access] if args.key?(:access)
258
+ @binding_explanations = args[:binding_explanations] if args.key?(:binding_explanations)
259
+ @full_resource_name = args[:full_resource_name] if args.key?(:full_resource_name)
260
+ @policy = args[:policy] if args.key?(:policy)
261
+ @relevance = args[:relevance] if args.key?(:relevance)
262
+ end
263
+ end
264
+
265
+ # Request for TroubleshootIamPolicy.
266
+ class GoogleCloudPolicytroubleshooterV1betaTroubleshootIamPolicyRequest
267
+ include Google::Apis::Core::Hashable
268
+
269
+ # Information about the member, resource, and permission to check.
270
+ # Corresponds to the JSON property `accessTuple`
271
+ # @return [Google::Apis::PolicytroubleshooterV1beta::GoogleCloudPolicytroubleshooterV1betaAccessTuple]
272
+ attr_accessor :access_tuple
273
+
274
+ def initialize(**args)
275
+ update!(**args)
276
+ end
277
+
278
+ # Update properties of this object
279
+ def update!(**args)
280
+ @access_tuple = args[:access_tuple] if args.key?(:access_tuple)
281
+ end
282
+ end
283
+
284
+ # Response for TroubleshootIamPolicy.
285
+ class GoogleCloudPolicytroubleshooterV1betaTroubleshootIamPolicyResponse
286
+ include Google::Apis::Core::Hashable
287
+
288
+ # Indicates whether the member has the specified permission for the specified
289
+ # resource, based on evaluating all of the applicable policies.
290
+ # Corresponds to the JSON property `access`
291
+ # @return [String]
292
+ attr_accessor :access
293
+
294
+ # List of IAM policies that were evaluated to check the member's permissions,
295
+ # with annotations to indicate how each policy contributed to the final result.
296
+ # The list of policies can include the policy for the resource itself. It can
297
+ # also include policies that are inherited from higher levels of the resource
298
+ # hierarchy, including the organization, the folder, and the project. To learn
299
+ # more about the resource hierarchy, see https://cloud.google.com/iam/help/
300
+ # resource-hierarchy.
301
+ # Corresponds to the JSON property `explainedPolicies`
302
+ # @return [Array<Google::Apis::PolicytroubleshooterV1beta::GoogleCloudPolicytroubleshooterV1betaExplainedPolicy>]
303
+ attr_accessor :explained_policies
304
+
305
+ def initialize(**args)
306
+ update!(**args)
307
+ end
308
+
309
+ # Update properties of this object
310
+ def update!(**args)
311
+ @access = args[:access] if args.key?(:access)
312
+ @explained_policies = args[:explained_policies] if args.key?(:explained_policies)
313
+ end
314
+ end
315
+
316
+ # Specifies the audit configuration for a service. The configuration determines
317
+ # which permission types are logged, and what identities, if any, are exempted
318
+ # from logging. An AuditConfig must have one or more AuditLogConfigs. If there
319
+ # are AuditConfigs for both `allServices` and a specific service, the union of
320
+ # the two AuditConfigs is used for that service: the log_types specified in each
321
+ # AuditConfig are enabled, and the exempted_members in each AuditLogConfig are
322
+ # exempted. Example Policy with multiple AuditConfigs: ` "audit_configs": [ ` "
323
+ # service": "allServices", "audit_log_configs": [ ` "log_type": "DATA_READ", "
324
+ # exempted_members": [ "user:jose@example.com" ] `, ` "log_type": "DATA_WRITE" `,
325
+ # ` "log_type": "ADMIN_READ" ` ] `, ` "service": "sampleservice.googleapis.com",
326
+ # "audit_log_configs": [ ` "log_type": "DATA_READ" `, ` "log_type": "DATA_WRITE"
327
+ # , "exempted_members": [ "user:aliya@example.com" ] ` ] ` ] ` For sampleservice,
328
+ # this policy enables DATA_READ, DATA_WRITE and ADMIN_READ logging. It also
329
+ # exempts jose@example.com from DATA_READ logging, and aliya@example.com from
330
+ # DATA_WRITE logging.
331
+ class GoogleIamV1AuditConfig
332
+ include Google::Apis::Core::Hashable
333
+
334
+ # The configuration for logging of each type of permission.
335
+ # Corresponds to the JSON property `auditLogConfigs`
336
+ # @return [Array<Google::Apis::PolicytroubleshooterV1beta::GoogleIamV1AuditLogConfig>]
337
+ attr_accessor :audit_log_configs
338
+
339
+ # Specifies a service that will be enabled for audit logging. For example, `
340
+ # storage.googleapis.com`, `cloudsql.googleapis.com`. `allServices` is a special
341
+ # value that covers all services.
342
+ # Corresponds to the JSON property `service`
343
+ # @return [String]
344
+ attr_accessor :service
345
+
346
+ def initialize(**args)
347
+ update!(**args)
348
+ end
349
+
350
+ # Update properties of this object
351
+ def update!(**args)
352
+ @audit_log_configs = args[:audit_log_configs] if args.key?(:audit_log_configs)
353
+ @service = args[:service] if args.key?(:service)
354
+ end
355
+ end
356
+
357
+ # Provides the configuration for logging a type of permissions. Example: ` "
358
+ # audit_log_configs": [ ` "log_type": "DATA_READ", "exempted_members": [ "user:
359
+ # jose@example.com" ] `, ` "log_type": "DATA_WRITE" ` ] ` This enables '
360
+ # DATA_READ' and 'DATA_WRITE' logging, while exempting jose@example.com from
361
+ # DATA_READ logging.
362
+ class GoogleIamV1AuditLogConfig
363
+ include Google::Apis::Core::Hashable
364
+
365
+ # Specifies the identities that do not cause logging for this type of permission.
366
+ # Follows the same format of Binding.members.
367
+ # Corresponds to the JSON property `exemptedMembers`
368
+ # @return [Array<String>]
369
+ attr_accessor :exempted_members
370
+
371
+ # The log type that this config enables.
372
+ # Corresponds to the JSON property `logType`
373
+ # @return [String]
374
+ attr_accessor :log_type
375
+
376
+ def initialize(**args)
377
+ update!(**args)
378
+ end
379
+
380
+ # Update properties of this object
381
+ def update!(**args)
382
+ @exempted_members = args[:exempted_members] if args.key?(:exempted_members)
383
+ @log_type = args[:log_type] if args.key?(:log_type)
384
+ end
385
+ end
386
+
387
+ # Associates `members` with a `role`.
388
+ class GoogleIamV1Binding
389
+ include Google::Apis::Core::Hashable
390
+
391
+ # Represents a textual expression in the Common Expression Language (CEL) syntax.
392
+ # CEL is a C-like expression language. The syntax and semantics of CEL are
393
+ # documented at https://github.com/google/cel-spec. Example (Comparison): title:
394
+ # "Summary size limit" description: "Determines if a summary is less than 100
395
+ # chars" expression: "document.summary.size() < 100" Example (Equality): title: "
396
+ # Requestor is owner" description: "Determines if requestor is the document
397
+ # owner" expression: "document.owner == request.auth.claims.email" Example (
398
+ # Logic): title: "Public documents" description: "Determine whether the document
399
+ # should be publicly visible" expression: "document.type != 'private' &&
400
+ # document.type != 'internal'" Example (Data Manipulation): title: "Notification
401
+ # string" description: "Create a notification string with a timestamp."
402
+ # expression: "'New message received at ' + string(document.create_time)" The
403
+ # exact variables and functions that may be referenced within an expression are
404
+ # determined by the service that evaluates it. See the service documentation for
405
+ # additional information.
406
+ # Corresponds to the JSON property `condition`
407
+ # @return [Google::Apis::PolicytroubleshooterV1beta::GoogleTypeExpr]
408
+ attr_accessor :condition
409
+
410
+ # Specifies the identities requesting access for a Cloud Platform resource. `
411
+ # members` can have the following values: * `allUsers`: A special identifier
412
+ # that represents anyone who is on the internet; with or without a Google
413
+ # account. * `allAuthenticatedUsers`: A special identifier that represents
414
+ # anyone who is authenticated with a Google account or a service account. * `
415
+ # user:`emailid``: An email address that represents a specific Google account.
416
+ # For example, `alice@example.com` . * `serviceAccount:`emailid``: An email
417
+ # address that represents a service account. For example, `my-other-app@appspot.
418
+ # gserviceaccount.com`. * `group:`emailid``: An email address that represents a
419
+ # Google group. For example, `admins@example.com`. * `deleted:user:`emailid`?uid=
420
+ # `uniqueid``: An email address (plus unique identifier) representing a user
421
+ # that has been recently deleted. For example, `alice@example.com?uid=
422
+ # 123456789012345678901`. If the user is recovered, this value reverts to `user:`
423
+ # emailid`` and the recovered user retains the role in the binding. * `deleted:
424
+ # serviceAccount:`emailid`?uid=`uniqueid``: An email address (plus unique
425
+ # identifier) representing a service account that has been recently deleted. For
426
+ # example, `my-other-app@appspot.gserviceaccount.com?uid=123456789012345678901`.
427
+ # If the service account is undeleted, this value reverts to `serviceAccount:`
428
+ # emailid`` and the undeleted service account retains the role in the binding. *
429
+ # `deleted:group:`emailid`?uid=`uniqueid``: An email address (plus unique
430
+ # identifier) representing a Google group that has been recently deleted. For
431
+ # example, `admins@example.com?uid=123456789012345678901`. If the group is
432
+ # recovered, this value reverts to `group:`emailid`` and the recovered group
433
+ # retains the role in the binding. * `domain:`domain``: The G Suite domain (
434
+ # primary) that represents all the users of that domain. For example, `google.
435
+ # com` or `example.com`.
436
+ # Corresponds to the JSON property `members`
437
+ # @return [Array<String>]
438
+ attr_accessor :members
439
+
440
+ # Role that is assigned to `members`. For example, `roles/viewer`, `roles/editor`
441
+ # , or `roles/owner`.
442
+ # Corresponds to the JSON property `role`
443
+ # @return [String]
444
+ attr_accessor :role
445
+
446
+ def initialize(**args)
447
+ update!(**args)
448
+ end
449
+
450
+ # Update properties of this object
451
+ def update!(**args)
452
+ @condition = args[:condition] if args.key?(:condition)
453
+ @members = args[:members] if args.key?(:members)
454
+ @role = args[:role] if args.key?(:role)
455
+ end
456
+ end
457
+
458
+ # An Identity and Access Management (IAM) policy, which specifies access
459
+ # controls for Google Cloud resources. A `Policy` is a collection of `bindings`.
460
+ # A `binding` binds one or more `members` to a single `role`. Members can be
461
+ # user accounts, service accounts, Google groups, and domains (such as G Suite).
462
+ # A `role` is a named list of permissions; each `role` can be an IAM predefined
463
+ # role or a user-created custom role. For some types of Google Cloud resources,
464
+ # a `binding` can also specify a `condition`, which is a logical expression that
465
+ # allows access to a resource only if the expression evaluates to `true`. A
466
+ # condition can add constraints based on attributes of the request, the resource,
467
+ # or both. To learn which resources support conditions in their IAM policies,
468
+ # see the [IAM documentation](https://cloud.google.com/iam/help/conditions/
469
+ # resource-policies). **JSON example:** ` "bindings": [ ` "role": "roles/
470
+ # resourcemanager.organizationAdmin", "members": [ "user:mike@example.com", "
471
+ # group:admins@example.com", "domain:google.com", "serviceAccount:my-project-id@
472
+ # appspot.gserviceaccount.com" ] `, ` "role": "roles/resourcemanager.
473
+ # organizationViewer", "members": [ "user:eve@example.com" ], "condition": ` "
474
+ # title": "expirable access", "description": "Does not grant access after Sep
475
+ # 2020", "expression": "request.time < timestamp('2020-10-01T00:00:00.000Z')", `
476
+ # ` ], "etag": "BwWWja0YfJA=", "version": 3 ` **YAML example:** bindings: -
477
+ # members: - user:mike@example.com - group:admins@example.com - domain:google.
478
+ # com - serviceAccount:my-project-id@appspot.gserviceaccount.com role: roles/
479
+ # resourcemanager.organizationAdmin - members: - user:eve@example.com role:
480
+ # roles/resourcemanager.organizationViewer condition: title: expirable access
481
+ # description: Does not grant access after Sep 2020 expression: request.time <
482
+ # timestamp('2020-10-01T00:00:00.000Z') - etag: BwWWja0YfJA= - version: 3 For a
483
+ # description of IAM and its features, see the [IAM documentation](https://cloud.
484
+ # google.com/iam/docs/).
485
+ class GoogleIamV1Policy
486
+ include Google::Apis::Core::Hashable
487
+
488
+ # Specifies cloud audit logging configuration for this policy.
489
+ # Corresponds to the JSON property `auditConfigs`
490
+ # @return [Array<Google::Apis::PolicytroubleshooterV1beta::GoogleIamV1AuditConfig>]
491
+ attr_accessor :audit_configs
492
+
493
+ # Associates a list of `members` to a `role`. Optionally, may specify a `
494
+ # condition` that determines how and when the `bindings` are applied. Each of
495
+ # the `bindings` must contain at least one member.
496
+ # Corresponds to the JSON property `bindings`
497
+ # @return [Array<Google::Apis::PolicytroubleshooterV1beta::GoogleIamV1Binding>]
498
+ attr_accessor :bindings
499
+
500
+ # `etag` is used for optimistic concurrency control as a way to help prevent
501
+ # simultaneous updates of a policy from overwriting each other. It is strongly
502
+ # suggested that systems make use of the `etag` in the read-modify-write cycle
503
+ # to perform policy updates in order to avoid race conditions: An `etag` is
504
+ # returned in the response to `getIamPolicy`, and systems are expected to put
505
+ # that etag in the request to `setIamPolicy` to ensure that their change will be
506
+ # applied to the same version of the policy. **Important:** If you use IAM
507
+ # Conditions, you must include the `etag` field whenever you call `setIamPolicy`.
508
+ # If you omit this field, then IAM allows you to overwrite a version `3` policy
509
+ # with a version `1` policy, and all of the conditions in the version `3` policy
510
+ # are lost.
511
+ # Corresponds to the JSON property `etag`
512
+ # NOTE: Values are automatically base64 encoded/decoded in the client library.
513
+ # @return [String]
514
+ attr_accessor :etag
515
+
516
+ # Specifies the format of the policy. Valid values are `0`, `1`, and `3`.
517
+ # Requests that specify an invalid value are rejected. Any operation that
518
+ # affects conditional role bindings must specify version `3`. This requirement
519
+ # applies to the following operations: * Getting a policy that includes a
520
+ # conditional role binding * Adding a conditional role binding to a policy *
521
+ # Changing a conditional role binding in a policy * Removing any role binding,
522
+ # with or without a condition, from a policy that includes conditions **
523
+ # Important:** If you use IAM Conditions, you must include the `etag` field
524
+ # whenever you call `setIamPolicy`. If you omit this field, then IAM allows you
525
+ # to overwrite a version `3` policy with a version `1` policy, and all of the
526
+ # conditions in the version `3` policy are lost. If a policy does not include
527
+ # any conditions, operations on that policy may specify any valid version or
528
+ # leave the field unset. To learn which resources support conditions in their
529
+ # IAM policies, see the [IAM documentation](https://cloud.google.com/iam/help/
530
+ # conditions/resource-policies).
531
+ # Corresponds to the JSON property `version`
532
+ # @return [Fixnum]
533
+ attr_accessor :version
534
+
535
+ def initialize(**args)
536
+ update!(**args)
537
+ end
538
+
539
+ # Update properties of this object
540
+ def update!(**args)
541
+ @audit_configs = args[:audit_configs] if args.key?(:audit_configs)
542
+ @bindings = args[:bindings] if args.key?(:bindings)
543
+ @etag = args[:etag] if args.key?(:etag)
544
+ @version = args[:version] if args.key?(:version)
545
+ end
546
+ end
547
+
548
+ # Represents a textual expression in the Common Expression Language (CEL) syntax.
549
+ # CEL is a C-like expression language. The syntax and semantics of CEL are
550
+ # documented at https://github.com/google/cel-spec. Example (Comparison): title:
551
+ # "Summary size limit" description: "Determines if a summary is less than 100
552
+ # chars" expression: "document.summary.size() < 100" Example (Equality): title: "
553
+ # Requestor is owner" description: "Determines if requestor is the document
554
+ # owner" expression: "document.owner == request.auth.claims.email" Example (
555
+ # Logic): title: "Public documents" description: "Determine whether the document
556
+ # should be publicly visible" expression: "document.type != 'private' &&
557
+ # document.type != 'internal'" Example (Data Manipulation): title: "Notification
558
+ # string" description: "Create a notification string with a timestamp."
559
+ # expression: "'New message received at ' + string(document.create_time)" The
560
+ # exact variables and functions that may be referenced within an expression are
561
+ # determined by the service that evaluates it. See the service documentation for
562
+ # additional information.
563
+ class GoogleTypeExpr
564
+ include Google::Apis::Core::Hashable
565
+
566
+ # Optional. Description of the expression. This is a longer text which describes
567
+ # the expression, e.g. when hovered over it in a UI.
568
+ # Corresponds to the JSON property `description`
569
+ # @return [String]
570
+ attr_accessor :description
571
+
572
+ # Textual representation of an expression in Common Expression Language syntax.
573
+ # Corresponds to the JSON property `expression`
574
+ # @return [String]
575
+ attr_accessor :expression
576
+
577
+ # Optional. String indicating the location of the expression for error reporting,
578
+ # e.g. a file name and a position in the file.
579
+ # Corresponds to the JSON property `location`
580
+ # @return [String]
581
+ attr_accessor :location
582
+
583
+ # Optional. Title for the expression, i.e. a short string describing its purpose.
584
+ # This can be used e.g. in UIs which allow to enter the expression.
585
+ # Corresponds to the JSON property `title`
586
+ # @return [String]
587
+ attr_accessor :title
588
+
589
+ def initialize(**args)
590
+ update!(**args)
591
+ end
592
+
593
+ # Update properties of this object
594
+ def update!(**args)
595
+ @description = args[:description] if args.key?(:description)
596
+ @expression = args[:expression] if args.key?(:expression)
597
+ @location = args[:location] if args.key?(:location)
598
+ @title = args[:title] if args.key?(:title)
599
+ end
600
+ end
601
+ end
602
+ end
603
+ end