google-cloud-app_engine-v1 0.1.0

data/proto_docs/README.md

@@ -0,0 +1,4 @@
+# App Engine Admin V1 Protocol Buffer Documentation
+
+These files are for the YARD documentation of the generated protobuf files.
+They are not intended to be required or loaded at runtime.

data/proto_docs/google/api/resource.rb

@@ -0,0 +1,283 @@
+# frozen_string_literal: true
+
+# Copyright 2021 Google LLC
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     https://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+# Auto-generated by gapic-generator-ruby. DO NOT EDIT!
+
+
+module Google
+  module Api
+    # A simple descriptor of a resource type.
+    #
+    # ResourceDescriptor annotates a resource message (either by means of a
+    # protobuf annotation or use in the service config), and associates the
+    # resource's schema, the resource type, and the pattern of the resource name.
+    #
+    # Example:
+    #
+    #     message Topic {
+    #       // Indicates this message defines a resource schema.
+    #       // Declares the resource type in the format of {service}/{kind}.
+    #       // For Kubernetes resources, the format is {api group}/{kind}.
+    #       option (google.api.resource) = {
+    #         type: "pubsub.googleapis.com/Topic"
+    #         name_descriptor: {
+    #           pattern: "projects/{project}/topics/{topic}"
+    #           parent_type: "cloudresourcemanager.googleapis.com/Project"
+    #           parent_name_extractor: "projects/{project}"
+    #         }
+    #       };
+    #     }
+    #
+    # The ResourceDescriptor Yaml config will look like:
+    #
+    #     resources:
+    #     - type: "pubsub.googleapis.com/Topic"
+    #       name_descriptor:
+    #         - pattern: "projects/{project}/topics/{topic}"
+    #           parent_type: "cloudresourcemanager.googleapis.com/Project"
+    #           parent_name_extractor: "projects/{project}"
+    #
+    # Sometimes, resources have multiple patterns, typically because they can
+    # live under multiple parents.
+    #
+    # Example:
+    #
+    #     message LogEntry {
+    #       option (google.api.resource) = {
+    #         type: "logging.googleapis.com/LogEntry"
+    #         name_descriptor: {
+    #           pattern: "projects/{project}/logs/{log}"
+    #           parent_type: "cloudresourcemanager.googleapis.com/Project"
+    #           parent_name_extractor: "projects/{project}"
+    #         }
+    #         name_descriptor: {
+    #           pattern: "folders/{folder}/logs/{log}"
+    #           parent_type: "cloudresourcemanager.googleapis.com/Folder"
+    #           parent_name_extractor: "folders/{folder}"
+    #         }
+    #         name_descriptor: {
+    #           pattern: "organizations/{organization}/logs/{log}"
+    #           parent_type: "cloudresourcemanager.googleapis.com/Organization"
+    #           parent_name_extractor: "organizations/{organization}"
+    #         }
+    #         name_descriptor: {
+    #           pattern: "billingAccounts/{billing_account}/logs/{log}"
+    #           parent_type: "billing.googleapis.com/BillingAccount"
+    #           parent_name_extractor: "billingAccounts/{billing_account}"
+    #         }
+    #       };
+    #     }
+    #
+    # The ResourceDescriptor Yaml config will look like:
+    #
+    #     resources:
+    #     - type: 'logging.googleapis.com/LogEntry'
+    #       name_descriptor:
+    #         - pattern: "projects/{project}/logs/{log}"
+    #           parent_type: "cloudresourcemanager.googleapis.com/Project"
+    #           parent_name_extractor: "projects/{project}"
+    #         - pattern: "folders/{folder}/logs/{log}"
+    #           parent_type: "cloudresourcemanager.googleapis.com/Folder"
+    #           parent_name_extractor: "folders/{folder}"
+    #         - pattern: "organizations/{organization}/logs/{log}"
+    #           parent_type: "cloudresourcemanager.googleapis.com/Organization"
+    #           parent_name_extractor: "organizations/{organization}"
+    #         - pattern: "billingAccounts/{billing_account}/logs/{log}"
+    #           parent_type: "billing.googleapis.com/BillingAccount"
+    #           parent_name_extractor: "billingAccounts/{billing_account}"
+    #
+    # For flexible resources, the resource name doesn't contain parent names, but
+    # the resource itself has parents for policy evaluation.
+    #
+    # Example:
+    #
+    #     message Shelf {
+    #       option (google.api.resource) = {
+    #         type: "library.googleapis.com/Shelf"
+    #         name_descriptor: {
+    #           pattern: "shelves/{shelf}"
+    #           parent_type: "cloudresourcemanager.googleapis.com/Project"
+    #         }
+    #         name_descriptor: {
+    #           pattern: "shelves/{shelf}"
+    #           parent_type: "cloudresourcemanager.googleapis.com/Folder"
+    #         }
+    #       };
+    #     }
+    #
+    # The ResourceDescriptor Yaml config will look like:
+    #
+    #     resources:
+    #     - type: 'library.googleapis.com/Shelf'
+    #       name_descriptor:
+    #         - pattern: "shelves/{shelf}"
+    #           parent_type: "cloudresourcemanager.googleapis.com/Project"
+    #         - pattern: "shelves/{shelf}"
+    #           parent_type: "cloudresourcemanager.googleapis.com/Folder"
+    # @!attribute [rw] type
+    #   @return [::String]
+    #     The resource type. It must be in the format of
+    #     \\{service_name}/\\{resource_type_kind}. The `resource_type_kind` must be
+    #     singular and must not include version numbers.
+    #
+    #     Example: `storage.googleapis.com/Bucket`
+    #
+    #     The value of the resource_type_kind must follow the regular expression
+    #     /[A-Za-z][a-zA-Z0-9]+/. It should start with an upper case character and
+    #     should use PascalCase (UpperCamelCase). The maximum number of
+    #     characters allowed for the `resource_type_kind` is 100.
+    # @!attribute [rw] pattern
+    #   @return [::Array<::String>]
+    #     Optional. The relative resource name pattern associated with this resource
+    #     type. The DNS prefix of the full resource name shouldn't be specified here.
+    #
+    #     The path pattern must follow the syntax, which aligns with HTTP binding
+    #     syntax:
+    #
+    #         Template = Segment { "/" Segment } ;
+    #         Segment = LITERAL | Variable ;
+    #         Variable = "{" LITERAL "}" ;
+    #
+    #     Examples:
+    #
+    #         - "projects/\\{project}/topics/\\{topic}"
+    #         - "projects/\\{project}/knowledgeBases/\\{knowledge_base}"
+    #
+    #     The components in braces correspond to the IDs for each resource in the
+    #     hierarchy. It is expected that, if multiple patterns are provided,
+    #     the same component name (e.g. "project") refers to IDs of the same
+    #     type of resource.
+    # @!attribute [rw] name_field
+    #   @return [::String]
+    #     Optional. The field on the resource that designates the resource name
+    #     field. If omitted, this is assumed to be "name".
+    # @!attribute [rw] history
+    #   @return [::Google::Api::ResourceDescriptor::History]
+    #     Optional. The historical or future-looking state of the resource pattern.
+    #
+    #     Example:
+    #
+    #         // The InspectTemplate message originally only supported resource
+    #         // names with organization, and project was added later.
+    #         message InspectTemplate {
+    #           option (google.api.resource) = {
+    #             type: "dlp.googleapis.com/InspectTemplate"
+    #             pattern:
+    #             "organizations/{organization}/inspectTemplates/{inspect_template}"
+    #             pattern: "projects/{project}/inspectTemplates/{inspect_template}"
+    #             history: ORIGINALLY_SINGLE_PATTERN
+    #           };
+    #         }
+    # @!attribute [rw] plural
+    #   @return [::String]
+    #     The plural name used in the resource name and permission names, such as
+    #     'projects' for the resource name of 'projects/\\{project}' and the permission
+    #     name of 'cloudresourcemanager.googleapis.com/projects.get'. It is the same
+    #     concept of the `plural` field in k8s CRD spec
+    #     https://kubernetes.io/docs/tasks/access-kubernetes-api/custom-resources/custom-resource-definitions/
+    #
+    #     Note: The plural form is required even for singleton resources. See
+    #     https://aip.dev/156
+    # @!attribute [rw] singular
+    #   @return [::String]
+    #     The same concept of the `singular` field in k8s CRD spec
+    #     https://kubernetes.io/docs/tasks/access-kubernetes-api/custom-resources/custom-resource-definitions/
+    #     Such as "project" for the `resourcemanager.googleapis.com/Project` type.
+    # @!attribute [rw] style
+    #   @return [::Array<::Google::Api::ResourceDescriptor::Style>]
+    #     Style flag(s) for this resource.
+    #     These indicate that a resource is expected to conform to a given
+    #     style. See the specific style flags for additional information.
+    class ResourceDescriptor
+      include ::Google::Protobuf::MessageExts
+      extend ::Google::Protobuf::MessageExts::ClassMethods
+
+      # A description of the historical or future-looking state of the
+      # resource pattern.
+      module History
+        # The "unset" value.
+        HISTORY_UNSPECIFIED = 0
+
+        # The resource originally had one pattern and launched as such, and
+        # additional patterns were added later.
+        ORIGINALLY_SINGLE_PATTERN = 1
+
+        # The resource has one pattern, but the API owner expects to add more
+        # later. (This is the inverse of ORIGINALLY_SINGLE_PATTERN, and prevents
+        # that from being necessary once there are multiple patterns.)
+        FUTURE_MULTI_PATTERN = 2
+      end
+
+      # A flag representing a specific style that a resource claims to conform to.
+      module Style
+        # The unspecified value. Do not use.
+        STYLE_UNSPECIFIED = 0
+
+        # This resource is intended to be "declarative-friendly".
+        #
+        # Declarative-friendly resources must be more strictly consistent, and
+        # setting this to true communicates to tools that this resource should
+        # adhere to declarative-friendly expectations.
+        #
+        # Note: This is used by the API linter (linter.aip.dev) to enable
+        # additional checks.
+        DECLARATIVE_FRIENDLY = 1
+      end
+    end
+
+    # Defines a proto annotation that describes a string field that refers to
+    # an API resource.
+    # @!attribute [rw] type
+    #   @return [::String]
+    #     The resource type that the annotated field references.
+    #
+    #     Example:
+    #
+    #         message Subscription {
+    #           string topic = 2 [(google.api.resource_reference) = {
+    #             type: "pubsub.googleapis.com/Topic"
+    #           }];
+    #         }
+    #
+    #     Occasionally, a field may reference an arbitrary resource. In this case,
+    #     APIs use the special value * in their resource reference.
+    #
+    #     Example:
+    #
+    #         message GetIamPolicyRequest {
+    #           string resource = 2 [(google.api.resource_reference) = {
+    #             type: "*"
+    #           }];
+    #         }
+    # @!attribute [rw] child_type
+    #   @return [::String]
+    #     The resource type of a child collection that the annotated field
+    #     references. This is useful for annotating the `parent` field that
+    #     doesn't have a fixed resource type.
+    #
+    #     Example:
+    #
+    #         message ListLogEntriesRequest {
+    #           string parent = 1 [(google.api.resource_reference) = {
+    #             child_type: "logging.googleapis.com/LogEntry"
+    #           };
+    #         }
+    class ResourceReference
+      include ::Google::Protobuf::MessageExts
+      extend ::Google::Protobuf::MessageExts::ClassMethods
+    end
+  end
+end

data/proto_docs/google/appengine/v1/app_yaml.rb

@@ -0,0 +1,379 @@
+# frozen_string_literal: true
+
+# Copyright 2021 Google LLC
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     https://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+# Auto-generated by gapic-generator-ruby. DO NOT EDIT!
+
+
+module Google
+  module Cloud
+    module AppEngine
+      module V1
+        # [Google Cloud Endpoints](https://cloud.google.com/appengine/docs/python/endpoints/)
+        # configuration for API handlers.
+        # @!attribute [rw] auth_fail_action
+        #   @return [::Google::Cloud::AppEngine::V1::AuthFailAction]
+        #     Action to take when users access resources that require
+        #     authentication. Defaults to `redirect`.
+        # @!attribute [rw] login
+        #   @return [::Google::Cloud::AppEngine::V1::LoginRequirement]
+        #     Level of login required to access this resource. Defaults to
+        #     `optional`.
+        # @!attribute [rw] script
+        #   @return [::String]
+        #     Path to the script from the application root directory.
+        # @!attribute [rw] security_level
+        #   @return [::Google::Cloud::AppEngine::V1::SecurityLevel]
+        #     Security (HTTPS) enforcement for this URL.
+        # @!attribute [rw] url
+        #   @return [::String]
+        #     URL to serve the endpoint at.
+        class ApiConfigHandler
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
+        end
+
+        # Custom static error page to be served when an error occurs.
+        # @!attribute [rw] error_code
+        #   @return [::Google::Cloud::AppEngine::V1::ErrorHandler::ErrorCode]
+        #     Error condition this handler applies to.
+        # @!attribute [rw] static_file
+        #   @return [::String]
+        #     Static file content to be served for this error.
+        # @!attribute [rw] mime_type
+        #   @return [::String]
+        #     MIME type of file. Defaults to `text/html`.
+        class ErrorHandler
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
+
+          # Error codes.
+          module ErrorCode
+            # Not specified. ERROR_CODE_DEFAULT is assumed.
+            ERROR_CODE_UNSPECIFIED = 0
+
+            # All other error types.
+            ERROR_CODE_DEFAULT = 0
+
+            # Application has exceeded a resource quota.
+            ERROR_CODE_OVER_QUOTA = 1
+
+            # Client blocked by the application's Denial of Service protection
+            # configuration.
+            ERROR_CODE_DOS_API_DENIAL = 2
+
+            # Deadline reached before the application responds.
+            ERROR_CODE_TIMEOUT = 3
+          end
+        end
+
+        # URL pattern and description of how the URL should be handled. App Engine can
+        # handle URLs by executing application code or by serving static files
+        # uploaded with the version, such as images, CSS, or JavaScript.
+        # @!attribute [rw] url_regex
+        #   @return [::String]
+        #     URL prefix. Uses regular expression syntax, which means regexp
+        #     special characters must be escaped, but should not contain groupings.
+        #     All URLs that begin with this prefix are handled by this handler, using the
+        #     portion of the URL after the prefix as part of the file path.
+        # @!attribute [rw] static_files
+        #   @return [::Google::Cloud::AppEngine::V1::StaticFilesHandler]
+        #     Returns the contents of a file, such as an image, as the response.
+        # @!attribute [rw] script
+        #   @return [::Google::Cloud::AppEngine::V1::ScriptHandler]
+        #     Executes a script to handle the requests that match this URL
+        #     pattern. Only the `auto` value is supported for Node.js in the
+        #     App Engine standard environment, for example `"script": "auto"`.
+        # @!attribute [rw] api_endpoint
+        #   @return [::Google::Cloud::AppEngine::V1::ApiEndpointHandler]
+        #     Uses API Endpoints to handle requests.
+        # @!attribute [rw] security_level
+        #   @return [::Google::Cloud::AppEngine::V1::SecurityLevel]
+        #     Security (HTTPS) enforcement for this URL.
+        # @!attribute [rw] login
+        #   @return [::Google::Cloud::AppEngine::V1::LoginRequirement]
+        #     Level of login required to access this resource. Not supported for Node.js
+        #     in the App Engine standard environment.
+        # @!attribute [rw] auth_fail_action
+        #   @return [::Google::Cloud::AppEngine::V1::AuthFailAction]
+        #     Action to take when users access resources that require
+        #     authentication. Defaults to `redirect`.
+        # @!attribute [rw] redirect_http_response_code
+        #   @return [::Google::Cloud::AppEngine::V1::UrlMap::RedirectHttpResponseCode]
+        #     `30x` code to use when performing redirects for the `secure` field.
+        #     Defaults to `302`.
+        class UrlMap
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
+
+          # Redirect codes.
+          module RedirectHttpResponseCode
+            # Not specified. `302` is assumed.
+            REDIRECT_HTTP_RESPONSE_CODE_UNSPECIFIED = 0
+
+            # `301 Moved Permanently` code.
+            REDIRECT_HTTP_RESPONSE_CODE_301 = 1
+
+            # `302 Moved Temporarily` code.
+            REDIRECT_HTTP_RESPONSE_CODE_302 = 2
+
+            # `303 See Other` code.
+            REDIRECT_HTTP_RESPONSE_CODE_303 = 3
+
+            # `307 Temporary Redirect` code.
+            REDIRECT_HTTP_RESPONSE_CODE_307 = 4
+          end
+        end
+
+        # Files served directly to the user for a given URL, such as images, CSS
+        # stylesheets, or JavaScript source files. Static file handlers describe which
+        # files in the application directory are static files, and which URLs serve
+        # them.
+        # @!attribute [rw] path
+        #   @return [::String]
+        #     Path to the static files matched by the URL pattern, from the
+        #     application root directory. The path can refer to text matched in groupings
+        #     in the URL pattern.
+        # @!attribute [rw] upload_path_regex
+        #   @return [::String]
+        #     Regular expression that matches the file paths for all files that should be
+        #     referenced by this handler.
+        # @!attribute [rw] http_headers
+        #   @return [::Google::Protobuf::Map{::String => ::String}]
+        #     HTTP headers to use for all responses from these URLs.
+        # @!attribute [rw] mime_type
+        #   @return [::String]
+        #     MIME type used to serve all files served by this handler.
+        #
+        #     Defaults to file-specific MIME types, which are derived from each file's
+        #     filename extension.
+        # @!attribute [rw] expiration
+        #   @return [::Google::Protobuf::Duration]
+        #     Time a static file served by this handler should be cached
+        #     by web proxies and browsers.
+        # @!attribute [rw] require_matching_file
+        #   @return [::Boolean]
+        #     Whether this handler should match the request if the file
+        #     referenced by the handler does not exist.
+        # @!attribute [rw] application_readable
+        #   @return [::Boolean]
+        #     Whether files should also be uploaded as code data. By default, files
+        #     declared in static file handlers are uploaded as static
+        #     data and are only served to end users; they cannot be read by the
+        #     application. If enabled, uploads are charged against both your code and
+        #     static data storage resource quotas.
+        class StaticFilesHandler
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
+
+          # @!attribute [rw] key
+          #   @return [::String]
+          # @!attribute [rw] value
+          #   @return [::String]
+          class HttpHeadersEntry
+            include ::Google::Protobuf::MessageExts
+            extend ::Google::Protobuf::MessageExts::ClassMethods
+          end
+        end
+
+        # Executes a script to handle the request that matches the URL pattern.
+        # @!attribute [rw] script_path
+        #   @return [::String]
+        #     Path to the script from the application root directory.
+        class ScriptHandler
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
+        end
+
+        # Uses Google Cloud Endpoints to handle requests.
+        # @!attribute [rw] script_path
+        #   @return [::String]
+        #     Path to the script from the application root directory.
+        class ApiEndpointHandler
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
+        end
+
+        # Health checking configuration for VM instances. Unhealthy instances
+        # are killed and replaced with new instances. Only applicable for
+        # instances in App Engine flexible environment.
+        # @!attribute [rw] disable_health_check
+        #   @return [::Boolean]
+        #     Whether to explicitly disable health checks for this instance.
+        # @!attribute [rw] host
+        #   @return [::String]
+        #     Host header to send when performing an HTTP health check.
+        #     Example: "myapp.appspot.com"
+        # @!attribute [rw] healthy_threshold
+        #   @return [::Integer]
+        #     Number of consecutive successful health checks required before receiving
+        #     traffic.
+        # @!attribute [rw] unhealthy_threshold
+        #   @return [::Integer]
+        #     Number of consecutive failed health checks required before removing
+        #     traffic.
+        # @!attribute [rw] restart_threshold
+        #   @return [::Integer]
+        #     Number of consecutive failed health checks required before an instance is
+        #     restarted.
+        # @!attribute [rw] check_interval
+        #   @return [::Google::Protobuf::Duration]
+        #     Interval between health checks.
+        # @!attribute [rw] timeout
+        #   @return [::Google::Protobuf::Duration]
+        #     Time before the health check is considered failed.
+        class HealthCheck
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
+        end
+
+        # Readiness checking configuration for VM instances. Unhealthy instances
+        # are removed from traffic rotation.
+        # @!attribute [rw] path
+        #   @return [::String]
+        #     The request path.
+        # @!attribute [rw] host
+        #   @return [::String]
+        #     Host header to send when performing a HTTP Readiness check.
+        #     Example: "myapp.appspot.com"
+        # @!attribute [rw] failure_threshold
+        #   @return [::Integer]
+        #     Number of consecutive failed checks required before removing
+        #     traffic.
+        # @!attribute [rw] success_threshold
+        #   @return [::Integer]
+        #     Number of consecutive successful checks required before receiving
+        #     traffic.
+        # @!attribute [rw] check_interval
+        #   @return [::Google::Protobuf::Duration]
+        #     Interval between health checks.
+        # @!attribute [rw] timeout
+        #   @return [::Google::Protobuf::Duration]
+        #     Time before the check is considered failed.
+        # @!attribute [rw] app_start_timeout
+        #   @return [::Google::Protobuf::Duration]
+        #     A maximum time limit on application initialization, measured from moment
+        #     the application successfully replies to a healthcheck until it is ready to
+        #     serve traffic.
+        class ReadinessCheck
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
+        end
+
+        # Health checking configuration for VM instances. Unhealthy instances
+        # are killed and replaced with new instances.
+        # @!attribute [rw] path
+        #   @return [::String]
+        #     The request path.
+        # @!attribute [rw] host
+        #   @return [::String]
+        #     Host header to send when performing a HTTP Liveness check.
+        #     Example: "myapp.appspot.com"
+        # @!attribute [rw] failure_threshold
+        #   @return [::Integer]
+        #     Number of consecutive failed checks required before considering the
+        #     VM unhealthy.
+        # @!attribute [rw] success_threshold
+        #   @return [::Integer]
+        #     Number of consecutive successful checks required before considering
+        #     the VM healthy.
+        # @!attribute [rw] check_interval
+        #   @return [::Google::Protobuf::Duration]
+        #     Interval between health checks.
+        # @!attribute [rw] timeout
+        #   @return [::Google::Protobuf::Duration]
+        #     Time before the check is considered failed.
+        # @!attribute [rw] initial_delay
+        #   @return [::Google::Protobuf::Duration]
+        #     The initial delay before starting to execute the checks.
+        class LivenessCheck
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
+        end
+
+        # Third-party Python runtime library that is required by the application.
+        # @!attribute [rw] name
+        #   @return [::String]
+        #     Name of the library. Example: "django".
+        # @!attribute [rw] version
+        #   @return [::String]
+        #     Version of the library to select, or "latest".
+        class Library
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
+        end
+
+        # Actions to take when the user is not logged in.
+        module AuthFailAction
+          # Not specified. `AUTH_FAIL_ACTION_REDIRECT` is assumed.
+          AUTH_FAIL_ACTION_UNSPECIFIED = 0
+
+          # Redirects user to "accounts.google.com". The user is redirected back to the
+          # application URL after signing in or creating an account.
+          AUTH_FAIL_ACTION_REDIRECT = 1
+
+          # Rejects request with a `401` HTTP status code and an error
+          # message.
+          AUTH_FAIL_ACTION_UNAUTHORIZED = 2
+        end
+
+        # Methods to restrict access to a URL based on login status.
+        module LoginRequirement
+          # Not specified. `LOGIN_OPTIONAL` is assumed.
+          LOGIN_UNSPECIFIED = 0
+
+          # Does not require that the user is signed in.
+          LOGIN_OPTIONAL = 1
+
+          # If the user is not signed in, the `auth_fail_action` is taken.
+          # In addition, if the user is not an administrator for the
+          # application, they are given an error message regardless of
+          # `auth_fail_action`. If the user is an administrator, the handler
+          # proceeds.
+          LOGIN_ADMIN = 2
+
+          # If the user has signed in, the handler proceeds normally. Otherwise, the
+          # auth_fail_action is taken.
+          LOGIN_REQUIRED = 3
+        end
+
+        # Methods to enforce security (HTTPS) on a URL.
+        module SecurityLevel
+          # Not specified.
+          SECURE_UNSPECIFIED = 0
+
+          # Both HTTP and HTTPS requests with URLs that match the handler succeed
+          # without redirects. The application can examine the request to determine
+          # which protocol was used, and respond accordingly.
+          SECURE_DEFAULT = 0
+
+          # Requests for a URL that match this handler that use HTTPS are automatically
+          # redirected to the HTTP equivalent URL.
+          SECURE_NEVER = 1
+
+          # Both HTTP and HTTPS requests with URLs that match the handler succeed
+          # without redirects. The application can examine the request to determine
+          # which protocol was used and respond accordingly.
+          SECURE_OPTIONAL = 2
+
+          # Requests for a URL that match this handler that do not use HTTPS are
+          # automatically redirected to the HTTPS URL with the same path. Query
+          # parameters are reserved for the redirect.
+          SECURE_ALWAYS = 3
+        end
+      end
+    end
+  end
+end