google-cloud-asset-v1 0.2.2 → 0.4.2

data/lib/google/cloud/asset/v1/asset_service/paths.rb

@@ -51,28 +51,28 @@ module Google
             #   @param organization [String]
             #   @param feed [String]
             #
-            # @return [String]
+            # @return [::String]
             def feed_path **args
               resources = {
                 "feed:project"      => (proc do |project:, feed:|
-                  raise ArgumentError, "project cannot contain /" if project.to_s.include? "/"
+                  raise ::ArgumentError, "project cannot contain /" if project.to_s.include? "/"
 
                   "projects/#{project}/feeds/#{feed}"
                 end),
                 "feed:folder"       => (proc do |folder:, feed:|
-                  raise ArgumentError, "folder cannot contain /" if folder.to_s.include? "/"
+                  raise ::ArgumentError, "folder cannot contain /" if folder.to_s.include? "/"
 
                   "folders/#{folder}/feeds/#{feed}"
                 end),
                 "feed:organization" => (proc do |organization:, feed:|
-                  raise ArgumentError, "organization cannot contain /" if organization.to_s.include? "/"
+                  raise ::ArgumentError, "organization cannot contain /" if organization.to_s.include? "/"
 
                   "organizations/#{organization}/feeds/#{feed}"
                 end)
               }
 
               resource = resources[args.keys.sort.join(":")]
-              raise ArgumentError, "no resource found for values #{args.keys}" if resource.nil?
+              raise ::ArgumentError, "no resource found for values #{args.keys}" if resource.nil?
               resource.call(**args)
             end
 

data/lib/google/cloud/asset/v1/asset_service_pb.rb

@@ -88,6 +88,28 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
       optional :content_type, :enum, 4, "google.cloud.asset.v1.ContentType"
       optional :feed_output_config, :message, 5, "google.cloud.asset.v1.FeedOutputConfig"
     end
+    add_message "google.cloud.asset.v1.SearchAllResourcesRequest" do
+      optional :scope, :string, 1
+      optional :query, :string, 2
+      repeated :asset_types, :string, 3
+      optional :page_size, :int32, 4
+      optional :page_token, :string, 5
+      optional :order_by, :string, 6
+    end
+    add_message "google.cloud.asset.v1.SearchAllResourcesResponse" do
+      repeated :results, :message, 1, "google.cloud.asset.v1.ResourceSearchResult"
+      optional :next_page_token, :string, 2
+    end
+    add_message "google.cloud.asset.v1.SearchAllIamPoliciesRequest" do
+      optional :scope, :string, 1
+      optional :query, :string, 2
+      optional :page_size, :int32, 3
+      optional :page_token, :string, 4
+    end
+    add_message "google.cloud.asset.v1.SearchAllIamPoliciesResponse" do
+      repeated :results, :message, 1, "google.cloud.asset.v1.IamPolicySearchResult"
+      optional :next_page_token, :string, 2
+    end
     add_enum "google.cloud.asset.v1.ContentType" do
       value :CONTENT_TYPE_UNSPECIFIED, 0
       value :RESOURCE, 1
@@ -118,6 +140,10 @@ module Google
         PubsubDestination = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.asset.v1.PubsubDestination").msgclass
         FeedOutputConfig = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.asset.v1.FeedOutputConfig").msgclass
         Feed = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.asset.v1.Feed").msgclass
+        SearchAllResourcesRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.asset.v1.SearchAllResourcesRequest").msgclass
+        SearchAllResourcesResponse = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.asset.v1.SearchAllResourcesResponse").msgclass
+        SearchAllIamPoliciesRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.asset.v1.SearchAllIamPoliciesRequest").msgclass
+        SearchAllIamPoliciesResponse = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.asset.v1.SearchAllIamPoliciesResponse").msgclass
         ContentType = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.asset.v1.ContentType").enummodule
       end
     end

data/lib/google/cloud/asset/v1/asset_service_services_pb.rb

@@ -35,8 +35,9 @@ module Google
 
             # Exports assets with time and resource types to a given Cloud Storage
             # location. The output format is newline-delimited JSON.
-            # This API implements the [google.longrunning.Operation][google.longrunning.Operation] API allowing you
-            # to keep track of the export.
+            # This API implements the
+            # [google.longrunning.Operation][google.longrunning.Operation] API allowing
+            # you to keep track of the export.
             rpc :ExportAssets, ExportAssetsRequest, Google::Longrunning::Operation
             # Batch gets the update history of assets that overlap a time window.
             # For RESOURCE content, this API outputs history with asset in both
@@ -57,6 +58,16 @@ module Google
             rpc :UpdateFeed, UpdateFeedRequest, Feed
             # Deletes an asset feed.
             rpc :DeleteFeed, DeleteFeedRequest, Google::Protobuf::Empty
+            # Searches all the resources within the given accessible scope (e.g., a
+            # project, a folder or an organization). Callers should have
+            # cloud.assets.SearchAllResources permission upon the requested scope,
+            # otherwise the request will be rejected.
+            rpc :SearchAllResources, SearchAllResourcesRequest, SearchAllResourcesResponse
+            # Searches all the IAM policies within the given accessible scope (e.g., a
+            # project, a folder or an organization). Callers should have
+            # cloud.assets.SearchAllIamPolicies permission upon the requested scope,
+            # otherwise the request will be rejected.
+            rpc :SearchAllIamPolicies, SearchAllIamPoliciesRequest, SearchAllIamPoliciesResponse
           end
 
           Stub = Service.rpc_stub_class

data/lib/google/cloud/asset/v1/assets_pb.rb

@@ -3,6 +3,7 @@
 
 require 'google/protobuf'
 
+require 'google/api/annotations_pb'
 require 'google/api/resource_pb'
 require 'google/cloud/orgpolicy/v1/orgpolicy_pb'
 require 'google/iam/v1/policy_pb'
@@ -12,7 +13,6 @@ require 'google/identity/accesscontextmanager/v1/service_perimeter_pb'
 require 'google/protobuf/any_pb'
 require 'google/protobuf/struct_pb'
 require 'google/protobuf/timestamp_pb'
-require 'google/api/annotations_pb'
 Google::Protobuf::DescriptorPool.generated_pool.build do
   add_file("google/cloud/asset/v1/assets.proto", :syntax => :proto3) do
     add_message "google.cloud.asset.v1.TemporalAsset" do
@@ -44,6 +44,30 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
       optional :resource_url, :string, 4
       optional :parent, :string, 5
       optional :data, :message, 6, "google.protobuf.Struct"
+      optional :location, :string, 8
+    end
+    add_message "google.cloud.asset.v1.ResourceSearchResult" do
+      optional :name, :string, 1
+      optional :asset_type, :string, 2
+      optional :project, :string, 3
+      optional :display_name, :string, 4
+      optional :description, :string, 5
+      optional :location, :string, 6
+      map :labels, :string, :string, 7
+      repeated :network_tags, :string, 8
+      optional :additional_attributes, :message, 9, "google.protobuf.Struct"
+    end
+    add_message "google.cloud.asset.v1.IamPolicySearchResult" do
+      optional :resource, :string, 1
+      optional :project, :string, 2
+      optional :policy, :message, 3, "google.iam.v1.Policy"
+      optional :explanation, :message, 4, "google.cloud.asset.v1.IamPolicySearchResult.Explanation"
+    end
+    add_message "google.cloud.asset.v1.IamPolicySearchResult.Explanation" do
+      map :matched_permissions, :string, :message, 1, "google.cloud.asset.v1.IamPolicySearchResult.Explanation.Permissions"
+    end
+    add_message "google.cloud.asset.v1.IamPolicySearchResult.Explanation.Permissions" do
+      repeated :permissions, :string, 1
     end
   end
 end
@@ -56,6 +80,10 @@ module Google
         TimeWindow = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.asset.v1.TimeWindow").msgclass
         Asset = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.asset.v1.Asset").msgclass
         Resource = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.asset.v1.Resource").msgclass
+        ResourceSearchResult = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.asset.v1.ResourceSearchResult").msgclass
+        IamPolicySearchResult = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.asset.v1.IamPolicySearchResult").msgclass
+        IamPolicySearchResult::Explanation = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.asset.v1.IamPolicySearchResult.Explanation").msgclass
+        IamPolicySearchResult::Explanation::Permissions = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.asset.v1.IamPolicySearchResult.Explanation.Permissions").msgclass
       end
     end
   end

data/lib/google/cloud/asset/v1/version.rb

@@ -21,7 +21,7 @@ module Google
   module Cloud
     module Asset
       module V1
-        VERSION = "0.2.2"
+        VERSION = "0.4.2"
       end
     end
   end

data/proto_docs/google/api/resource.rb

@@ -128,7 +128,7 @@ module Google
     #         - pattern: "shelves/{shelf}"
     #           parent_type: "cloudresourcemanager.googleapis.com/Folder"
     # @!attribute [rw] type
-    #   @return [String]
+    #   @return [::String]
     #     The resource type. It must be in the format of
     #     \\{service_name}/\\{resource_type_kind}. The `resource_type_kind` must be
     #     singular and must not include version numbers.
@@ -140,7 +140,7 @@ module Google
     #     should use PascalCase (UpperCamelCase). The maximum number of
     #     characters allowed for the `resource_type_kind` is 100.
     # @!attribute [rw] pattern
-    #   @return [Array<String>]
+    #   @return [::Array<::String>]
     #     Optional. The relative resource name pattern associated with this resource
     #     type. The DNS prefix of the full resource name shouldn't be specified here.
     #
@@ -161,11 +161,11 @@ module Google
     #     the same component name (e.g. "project") refers to IDs of the same
     #     type of resource.
     # @!attribute [rw] name_field
-    #   @return [String]
+    #   @return [::String]
     #     Optional. The field on the resource that designates the resource name
     #     field. If omitted, this is assumed to be "name".
     # @!attribute [rw] history
-    #   @return [Google::Api::ResourceDescriptor::History]
+    #   @return [::Google::Api::ResourceDescriptor::History]
     #     Optional. The historical or future-looking state of the resource pattern.
     #
     #     Example:
@@ -182,19 +182,19 @@ module Google
     #           };
     #         }
     # @!attribute [rw] plural
-    #   @return [String]
+    #   @return [::String]
     #     The plural name used in the resource name, such as 'projects' for
     #     the name of 'projects/\\{project}'. It is the same concept of the `plural`
     #     field in k8s CRD spec
     #     https://kubernetes.io/docs/tasks/access-kubernetes-api/custom-resources/custom-resource-definitions/
     # @!attribute [rw] singular
-    #   @return [String]
+    #   @return [::String]
     #     The same concept of the `singular` field in k8s CRD spec
     #     https://kubernetes.io/docs/tasks/access-kubernetes-api/custom-resources/custom-resource-definitions/
     #     Such as "project" for the `resourcemanager.googleapis.com/Project` type.
     class ResourceDescriptor
-      include Google::Protobuf::MessageExts
-      extend Google::Protobuf::MessageExts::ClassMethods
+      include ::Google::Protobuf::MessageExts
+      extend ::Google::Protobuf::MessageExts::ClassMethods
 
       # A description of the historical or future-looking state of the
       # resource pattern.
@@ -216,7 +216,7 @@ module Google
     # Defines a proto annotation that describes a string field that refers to
     # an API resource.
     # @!attribute [rw] type
-    #   @return [String]
+    #   @return [::String]
     #     The resource type that the annotated field references.
     #
     #     Example:
@@ -227,7 +227,7 @@ module Google
     #           }];
     #         }
     # @!attribute [rw] child_type
-    #   @return [String]
+    #   @return [::String]
     #     The resource type of a child collection that the annotated field
     #     references. This is useful for annotating the `parent` field that
     #     doesn't have a fixed resource type.
@@ -240,8 +240,8 @@ module Google
     #         };
     #       }
     class ResourceReference
-      include Google::Protobuf::MessageExts
-      extend Google::Protobuf::MessageExts::ClassMethods
+      include ::Google::Protobuf::MessageExts
+      extend ::Google::Protobuf::MessageExts::ClassMethods
     end
   end
 end

data/proto_docs/google/cloud/asset/v1/asset_service.rb

@@ -23,61 +23,63 @@ module Google
       module V1
         # Export asset request.
         # @!attribute [rw] parent
-        #   @return [String]
+        #   @return [::String]
         #     Required. The relative name of the root asset. This can only be an
         #     organization number (such as "organizations/123"), a project ID (such as
         #     "projects/my-project-id"), or a project number (such as "projects/12345"),
         #     or a folder number (such as "folders/123").
         # @!attribute [rw] read_time
-        #   @return [Google::Protobuf::Timestamp]
+        #   @return [::Google::Protobuf::Timestamp]
         #     Timestamp to take an asset snapshot. This can only be set to a timestamp
         #     between the current time and the current time minus 35 days (inclusive).
         #     If not specified, the current time will be used. Due to delays in resource
         #     data collection and indexing, there is a volatile window during which
         #     running the same query may get different results.
         # @!attribute [rw] asset_types
-        #   @return [Array<String>]
+        #   @return [::Array<::String>]
         #     A list of asset types of which to take a snapshot for. For example:
         #     "compute.googleapis.com/Disk". If specified, only matching assets will be
         #     returned. See [Introduction to Cloud Asset
         #     Inventory](https://cloud.google.com/asset-inventory/docs/overview)
         #     for all supported asset types.
         # @!attribute [rw] content_type
-        #   @return [Google::Cloud::Asset::V1::ContentType]
+        #   @return [::Google::Cloud::Asset::V1::ContentType]
         #     Asset content type. If not specified, no content but the asset name will be
         #     returned.
         # @!attribute [rw] output_config
-        #   @return [Google::Cloud::Asset::V1::OutputConfig]
+        #   @return [::Google::Cloud::Asset::V1::OutputConfig]
         #     Required. Output configuration indicating where the results will be output
         #     to. All results will be in newline delimited JSON format.
         class ExportAssetsRequest
-          include Google::Protobuf::MessageExts
-          extend Google::Protobuf::MessageExts::ClassMethods
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
         end
 
         # The export asset response. This message is returned by the
-        # google.longrunning.Operations.GetOperation method in the returned
-        # {Google::Longrunning::Operation#response google.longrunning.Operation.response} field.
+        # google.longrunning.Operations.GetOperation
+        # method in the returned
+        # {::Google::Longrunning::Operation#response google.longrunning.Operation.response}
+        # field.
         # @!attribute [rw] read_time
-        #   @return [Google::Protobuf::Timestamp]
+        #   @return [::Google::Protobuf::Timestamp]
         #     Time the snapshot was taken.
         # @!attribute [rw] output_config
-        #   @return [Google::Cloud::Asset::V1::OutputConfig]
+        #   @return [::Google::Cloud::Asset::V1::OutputConfig]
         #     Output configuration indicating where the results were output to.
         #     All results are in JSON format.
         class ExportAssetsResponse
-          include Google::Protobuf::MessageExts
-          extend Google::Protobuf::MessageExts::ClassMethods
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
         end
 
         # Batch get assets history request.
         # @!attribute [rw] parent
-        #   @return [String]
+        #   @return [::String]
         #     Required. The relative name of the root asset. It can only be an
         #     organization number (such as "organizations/123"), a project ID (such as
         #     "projects/my-project-id")", or a project number (such as "projects/12345").
         # @!attribute [rw] asset_names
-        #   @return [Array<String>]
+        #   @return [::Array<::String>]
         #     A list of the full names of the assets. For example:
         #     `//compute.googleapis.com/projects/my_project_123/zones/zone1/instances/instance1`.
         #     See [Resource
@@ -89,10 +91,10 @@ module Google
         #     The request becomes a no-op if the asset name list is empty, and the max
         #     size of the asset name list is 100 in one request.
         # @!attribute [rw] content_type
-        #   @return [Google::Cloud::Asset::V1::ContentType]
+        #   @return [::Google::Cloud::Asset::V1::ContentType]
         #     Optional. The content type.
         # @!attribute [rw] read_time_window
-        #   @return [Google::Cloud::Asset::V1::TimeWindow]
+        #   @return [::Google::Cloud::Asset::V1::TimeWindow]
         #     Optional. The time window for the asset history. Both start_time and
         #     end_time are optional and if set, it must be after the current time minus
         #     35 days. If end_time is not set, it is default to current timestamp.
@@ -100,128 +102,127 @@ module Google
         #     returned. The returned results contain all temporal assets whose time
         #     window overlap with read_time_window.
         class BatchGetAssetsHistoryRequest
-          include Google::Protobuf::MessageExts
-          extend Google::Protobuf::MessageExts::ClassMethods
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
         end
 
         # Batch get assets history response.
         # @!attribute [rw] assets
-        #   @return [Array<Google::Cloud::Asset::V1::TemporalAsset>]
+        #   @return [::Array<::Google::Cloud::Asset::V1::TemporalAsset>]
         #     A list of assets with valid time windows.
         class BatchGetAssetsHistoryResponse
-          include Google::Protobuf::MessageExts
-          extend Google::Protobuf::MessageExts::ClassMethods
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
         end
 
         # Create asset feed request.
         # @!attribute [rw] parent
-        #   @return [String]
+        #   @return [::String]
         #     Required. The name of the project/folder/organization where this feed
         #     should be created in. It can only be an organization number (such as
         #     "organizations/123"), a folder number (such as "folders/123"), a project ID
         #     (such as "projects/my-project-id")", or a project number (such as
         #     "projects/12345").
         # @!attribute [rw] feed_id
-        #   @return [String]
+        #   @return [::String]
         #     Required. This is the client-assigned asset feed identifier and it needs to
         #     be unique under a specific parent project/folder/organization.
         # @!attribute [rw] feed
-        #   @return [Google::Cloud::Asset::V1::Feed]
-        #     Required. The feed details. The field `name` must be empty and it will be generated
-        #     in the format of:
-        #     projects/project_number/feeds/feed_id
+        #   @return [::Google::Cloud::Asset::V1::Feed]
+        #     Required. The feed details. The field `name` must be empty and it will be
+        #     generated in the format of: projects/project_number/feeds/feed_id
         #     folders/folder_number/feeds/feed_id
         #     organizations/organization_number/feeds/feed_id
         class CreateFeedRequest
-          include Google::Protobuf::MessageExts
-          extend Google::Protobuf::MessageExts::ClassMethods
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
         end
 
         # Get asset feed request.
         # @!attribute [rw] name
-        #   @return [String]
+        #   @return [::String]
         #     Required. The name of the Feed and it must be in the format of:
         #     projects/project_number/feeds/feed_id
         #     folders/folder_number/feeds/feed_id
         #     organizations/organization_number/feeds/feed_id
         class GetFeedRequest
-          include Google::Protobuf::MessageExts
-          extend Google::Protobuf::MessageExts::ClassMethods
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
         end
 
         # List asset feeds request.
         # @!attribute [rw] parent
-        #   @return [String]
+        #   @return [::String]
         #     Required. The parent project/folder/organization whose feeds are to be
         #     listed. It can only be using project/folder/organization number (such as
         #     "folders/12345")", or a project ID (such as "projects/my-project-id").
         class ListFeedsRequest
-          include Google::Protobuf::MessageExts
-          extend Google::Protobuf::MessageExts::ClassMethods
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
         end
 
         # @!attribute [rw] feeds
-        #   @return [Array<Google::Cloud::Asset::V1::Feed>]
+        #   @return [::Array<::Google::Cloud::Asset::V1::Feed>]
         #     A list of feeds.
         class ListFeedsResponse
-          include Google::Protobuf::MessageExts
-          extend Google::Protobuf::MessageExts::ClassMethods
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
         end
 
         # Update asset feed request.
         # @!attribute [rw] feed
-        #   @return [Google::Cloud::Asset::V1::Feed]
-        #     Required. The new values of feed details. It must match an existing feed and the
-        #     field `name` must be in the format of:
+        #   @return [::Google::Cloud::Asset::V1::Feed]
+        #     Required. The new values of feed details. It must match an existing feed
+        #     and the field `name` must be in the format of:
         #     projects/project_number/feeds/feed_id or
         #     folders/folder_number/feeds/feed_id or
         #     organizations/organization_number/feeds/feed_id.
         # @!attribute [rw] update_mask
-        #   @return [Google::Protobuf::FieldMask]
+        #   @return [::Google::Protobuf::FieldMask]
         #     Required. Only updates the `feed` fields indicated by this mask.
         #     The field mask must not be empty, and it must not contain fields that
         #     are immutable or only set by the server.
         class UpdateFeedRequest
-          include Google::Protobuf::MessageExts
-          extend Google::Protobuf::MessageExts::ClassMethods
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
         end
 
         # @!attribute [rw] name
-        #   @return [String]
+        #   @return [::String]
         #     Required. The name of the feed and it must be in the format of:
         #     projects/project_number/feeds/feed_id
         #     folders/folder_number/feeds/feed_id
         #     organizations/organization_number/feeds/feed_id
         class DeleteFeedRequest
-          include Google::Protobuf::MessageExts
-          extend Google::Protobuf::MessageExts::ClassMethods
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
         end
 
         # Output configuration for export assets destination.
         # @!attribute [rw] gcs_destination
-        #   @return [Google::Cloud::Asset::V1::GcsDestination]
+        #   @return [::Google::Cloud::Asset::V1::GcsDestination]
         #     Destination on Cloud Storage.
         # @!attribute [rw] bigquery_destination
-        #   @return [Google::Cloud::Asset::V1::BigQueryDestination]
+        #   @return [::Google::Cloud::Asset::V1::BigQueryDestination]
         #     Destination on BigQuery. The output table stores the fields in asset
         #     proto as columns in BigQuery. The resource/iam_policy field is converted
         #     to a record with each field to a column, except metadata to a single JSON
         #     string.
         class OutputConfig
-          include Google::Protobuf::MessageExts
-          extend Google::Protobuf::MessageExts::ClassMethods
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
         end
 
         # A Cloud Storage location.
         # @!attribute [rw] uri
-        #   @return [String]
+        #   @return [::String]
         #     The uri of the Cloud Storage object. It's the same uri that is used by
         #     gsutil. For example: "gs://bucket_name/object_name". See [Viewing and
         #     Editing Object
         #     Metadata](https://cloud.google.com/storage/docs/viewing-editing-metadata)
         #     for more information.
         # @!attribute [rw] uri_prefix
-        #   @return [String]
+        #   @return [::String]
         #     The uri prefix of all generated Cloud Storage objects. For example:
         #     "gs://bucket_name/object_name_prefix". Each object uri is in format:
         #     "gs://bucket_name/object_name_prefix/<asset type>/<shard number> and only
@@ -232,50 +233,50 @@ module Google
         #     returned if file with the same name "gs://bucket_name/object_name_prefix"
         #     already exists.
         class GcsDestination
-          include Google::Protobuf::MessageExts
-          extend Google::Protobuf::MessageExts::ClassMethods
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
         end
 
         # A BigQuery destination.
         # @!attribute [rw] dataset
-        #   @return [String]
+        #   @return [::String]
         #     Required. The BigQuery dataset in format
         #     "projects/projectId/datasets/datasetId", to which the snapshot result
         #     should be exported. If this dataset does not exist, the export call returns
         #     an INVALID_ARGUMENT error.
         # @!attribute [rw] table
-        #   @return [String]
+        #   @return [::String]
         #     Required. The BigQuery table to which the snapshot result should be
         #     written. If this table does not exist, a new table with the given name
         #     will be created.
         # @!attribute [rw] force
-        #   @return [Boolean]
+        #   @return [::Boolean]
         #     If the destination table already exists and this flag is `TRUE`, the
         #     table will be overwritten by the contents of assets snapshot. If the flag
         #     is `FALSE` or unset and the destination table already exists, the export
         #     call returns an INVALID_ARGUMEMT error.
         class BigQueryDestination
-          include Google::Protobuf::MessageExts
-          extend Google::Protobuf::MessageExts::ClassMethods
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
         end
 
         # A Pub/Sub destination.
         # @!attribute [rw] topic
-        #   @return [String]
+        #   @return [::String]
         #     The name of the Pub/Sub topic to publish to.
         #     For example: `projects/PROJECT_ID/topics/TOPIC_ID`.
         class PubsubDestination
-          include Google::Protobuf::MessageExts
-          extend Google::Protobuf::MessageExts::ClassMethods
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
         end
 
         # Output configuration for asset feed destination.
         # @!attribute [rw] pubsub_destination
-        #   @return [Google::Cloud::Asset::V1::PubsubDestination]
+        #   @return [::Google::Cloud::Asset::V1::PubsubDestination]
         #     Destination on Pub/Sub.
         class FeedOutputConfig
-          include Google::Protobuf::MessageExts
-          extend Google::Protobuf::MessageExts::ClassMethods
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
         end
 
         # An asset feed used to export asset updates to a destinations.
@@ -284,7 +285,7 @@ module Google
         # folder. Supported destinations are:
         # Pub/Sub topics.
         # @!attribute [rw] name
-        #   @return [String]
+        #   @return [::String]
         #     Required. The format will be
         #     projects/\\{project_number}/feeds/\\{client-assigned_feed_identifier} or
         #     folders/\\{folder_number}/feeds/\\{client-assigned_feed_identifier} or
@@ -293,7 +294,7 @@ module Google
         #     The client-assigned feed identifier must be unique within the parent
         #     project/folder/organization.
         # @!attribute [rw] asset_names
-        #   @return [Array<String>]
+        #   @return [::Array<::String>]
         #     A list of the full names of the assets to receive updates. You must specify
         #     either or both of asset_names and asset_types. Only asset updates matching
         #     specified asset_names and asset_types are exported to the feed. For
@@ -303,7 +304,7 @@ module Google
         #     Names](https://cloud.google.com/apis/design/resource_names#full_resource_name)
         #     for more info.
         # @!attribute [rw] asset_types
-        #   @return [Array<String>]
+        #   @return [::Array<::String>]
         #     A list of types of the assets to receive updates. You must specify either
         #     or both of asset_names and asset_types. Only asset updates matching
         #     specified asset_names and asset_types are exported to the feed.
@@ -313,16 +314,176 @@ module Google
         #     topic](https://cloud.google.com/asset-inventory/docs/supported-asset-types)
         #     for a list of all supported asset types.
         # @!attribute [rw] content_type
-        #   @return [Google::Cloud::Asset::V1::ContentType]
+        #   @return [::Google::Cloud::Asset::V1::ContentType]
         #     Asset content type. If not specified, no content but the asset name and
         #     type will be returned.
         # @!attribute [rw] feed_output_config
-        #   @return [Google::Cloud::Asset::V1::FeedOutputConfig]
+        #   @return [::Google::Cloud::Asset::V1::FeedOutputConfig]
         #     Required. Feed output configuration defining where the asset updates are
         #     published to.
         class Feed
-          include Google::Protobuf::MessageExts
-          extend Google::Protobuf::MessageExts::ClassMethods
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
+        end
+
+        # Search all resources request.
+        # @!attribute [rw] scope
+        #   @return [::String]
+        #     Required. A scope can be a project, a folder or an organization. The search
+        #     is limited to the resources within the `scope`.
+        #
+        #     The allowed values are:
+        #
+        #     * projects/\\{PROJECT_ID}
+        #     * projects/\\{PROJECT_NUMBER}
+        #     * folders/\\{FOLDER_NUMBER}
+        #     * organizations/\\{ORGANIZATION_NUMBER}
+        # @!attribute [rw] query
+        #   @return [::String]
+        #     Optional. The query statement. An empty query can be specified to search
+        #     all the resources of certain `asset_types` within the given `scope`.
+        #
+        #     Examples:
+        #
+        #     * `name : "Important"` to find Cloud resources whose name contains
+        #       "Important" as a word.
+        #     * `displayName : "Impor*"` to find Cloud resources whose display name
+        #       contains "Impor" as a word prefix.
+        #     * `description : "*por*"` to find Cloud resources whose description
+        #       contains "por" as a substring.
+        #     * `location : "us-west*"` to find Cloud resources whose location is
+        #       prefixed with "us-west".
+        #     * `labels : "prod"` to find Cloud resources whose labels contain "prod" as
+        #       a key or value.
+        #     * `labels.env : "prod"` to find Cloud resources which have a label "env"
+        #       and its value is "prod".
+        #     * `labels.env : *` to find Cloud resources which have a label "env".
+        #     * `"Important"` to find Cloud resources which contain "Important" as a word
+        #       in any of the searchable fields.
+        #     * `"Impor*"` to find Cloud resources which contain "Impor" as a word prefix
+        #       in any of the searchable fields.
+        #     * `"*por*"` to find Cloud resources which contain "por" as a substring in
+        #       any of the searchable fields.
+        #     * `("Important" AND location : ("us-west1" OR "global"))` to find Cloud
+        #       resources which contain "Important" as a word in any of the searchable
+        #       fields and are also located in the "us-west1" region or the "global"
+        #       location.
+        #
+        #     See [how to construct a
+        #     query](https://cloud.google.com/asset-inventory/docs/searching-resources#how_to_construct_a_query)
+        #     for more details.
+        # @!attribute [rw] asset_types
+        #   @return [::Array<::String>]
+        #     Optional. A list of asset types that this request searches for. If empty,
+        #     it will search all the [searchable asset
+        #     types](https://cloud.google.com/asset-inventory/docs/supported-asset-types#searchable_asset_types).
+        # @!attribute [rw] page_size
+        #   @return [::Integer]
+        #     Optional. The page size for search result pagination. Page size is capped
+        #     at 500 even if a larger value is given. If set to zero, server will pick an
+        #     appropriate default. Returned results may be fewer than requested. When
+        #     this happens, there could be more results as long as `next_page_token` is
+        #     returned.
+        # @!attribute [rw] page_token
+        #   @return [::String]
+        #     Optional. If present, then retrieve the next batch of results from the
+        #     preceding call to this method. `page_token` must be the value of
+        #     `next_page_token` from the previous response. The values of all other
+        #     method parameters, must be identical to those in the previous call.
+        # @!attribute [rw] order_by
+        #   @return [::String]
+        #     Optional. A comma separated list of fields specifying the sorting order of
+        #     the results. The default order is ascending. Add " DESC" after the field
+        #     name to indicate descending order. Redundant space characters are ignored.
+        #     Example: "location DESC, name". See [supported resource metadata
+        #     fields](https://cloud.google.com/asset-inventory/docs/searching-resources#query_on_resource_metadata_fields)
+        #     for more details.
+        class SearchAllResourcesRequest
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
+        end
+
+        # Search all resources response.
+        # @!attribute [rw] results
+        #   @return [::Array<::Google::Cloud::Asset::V1::ResourceSearchResult>]
+        #     A list of Resources that match the search query. It contains the resource
+        #     standard metadata information.
+        # @!attribute [rw] next_page_token
+        #   @return [::String]
+        #     If there are more results than those appearing in this response, then
+        #     `next_page_token` is included. To get the next set of results, call this
+        #     method again using the value of `next_page_token` as `page_token`.
+        class SearchAllResourcesResponse
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
+        end
+
+        # Search all IAM policies request.
+        # @!attribute [rw] scope
+        #   @return [::String]
+        #     Required. A scope can be a project, a folder or an organization. The search
+        #     is limited to the IAM policies within the `scope`.
+        #
+        #     The allowed values are:
+        #
+        #     * projects/\\{PROJECT_ID}
+        #     * projects/\\{PROJECT_NUMBER}
+        #     * folders/\\{FOLDER_NUMBER}
+        #     * organizations/\\{ORGANIZATION_NUMBER}
+        # @!attribute [rw] query
+        #   @return [::String]
+        #     Optional. The query statement. An empty query can be specified to search
+        #     all the IAM policies within the given `scope`.
+        #
+        #     Examples:
+        #
+        #     * `policy : "amy@gmail.com"` to find Cloud IAM policy bindings that
+        #       specify user "amy@gmail.com".
+        #     * `policy : "roles/compute.admin"` to find Cloud IAM policy bindings that
+        #       specify the Compute Admin role.
+        #     * `policy.role.permissions : "storage.buckets.update"` to find Cloud IAM
+        #       policy bindings that specify a role containing "storage.buckets.update"
+        #       permission.
+        #     * `resource : "organizations/123"` to find Cloud IAM policy bindings that
+        #       are set on "organizations/123".
+        #     * `(resource : ("organizations/123" OR "folders/1234") AND policy : "amy")`
+        #       to find Cloud IAM policy bindings that are set on "organizations/123" or
+        #       "folders/1234", and also specify user "amy".
+        #
+        #     See [how to construct a
+        #     query](https://cloud.google.com/asset-inventory/docs/searching-iam-policies#how_to_construct_a_query)
+        #     for more details.
+        # @!attribute [rw] page_size
+        #   @return [::Integer]
+        #     Optional. The page size for search result pagination. Page size is capped
+        #     at 500 even if a larger value is given. If set to zero, server will pick an
+        #     appropriate default. Returned results may be fewer than requested. When
+        #     this happens, there could be more results as long as `next_page_token` is
+        #     returned.
+        # @!attribute [rw] page_token
+        #   @return [::String]
+        #     Optional. If present, retrieve the next batch of results from the preceding
+        #     call to this method. `page_token` must be the value of `next_page_token`
+        #     from the previous response. The values of all other method parameters must
+        #     be identical to those in the previous call.
+        class SearchAllIamPoliciesRequest
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
+        end
+
+        # Search all IAM policies response.
+        # @!attribute [rw] results
+        #   @return [::Array<::Google::Cloud::Asset::V1::IamPolicySearchResult>]
+        #     A list of IamPolicy that match the search query. Related information such
+        #     as the associated resource is returned along with the policy.
+        # @!attribute [rw] next_page_token
+        #   @return [::String]
+        #     Set if there are more results than those appearing in this response; to get
+        #     the next set of results, call this method again, using this value as the
+        #     `page_token`.
+        class SearchAllIamPoliciesResponse
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
         end
 
         # Asset content type.