google-cloud-assured_workloads-v1 0.1.1 → 0.2.0

Sign up to get free protection for your applications and to get access to all the features.
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: 7d4cc220f4bd00eb48376dcf1a24bd1f5e8889c172dba19a2ec92d1e038f6a0e
4
- data.tar.gz: 98e9e74cbf89478fe6a9b058a718d9ca2fd60c86ff6bcb093b6790ebc328bfd5
3
+ metadata.gz: bce8f35ae400d1ba5b616490132bbd857080dff6f596f16ea20c028808073131
4
+ data.tar.gz: cd717e757b0b82b5338b01ec371aa4da8cb433e16d76949092170fd906e9717c
5
5
  SHA512:
6
- metadata.gz: df45ed3ab0481c7f851a016e846b887f6826de7f406f5e9f95591a7e473f2585e0d73747993f46d21d554f8ea16c64215e019c694cfa203e552d5d345a29a0f2
7
- data.tar.gz: 81698c82b96403ea7c479a98ff93b6c4a834918e1621bad6b19dda7a8329ae4e0258c65b94d3224631ab48e4c754fc1642086821d9adf4efd9caeda6190cde3c
6
+ metadata.gz: 1dc951508ff668d1801b90576ff4976e4f55e5dd0cf7ebdbaae42569c1ce386f4b9a9635a9a92b118aa5faf20e9b6a294bb6eaebce53f4700d1b2e9f9a800641
7
+ data.tar.gz: deed8e048596e687a07310155dee0f54e0071a9beb9a4857edb03a4553ff4ce7b8e1a8ae1e2d348af0738aaac8f84becdb3aa9caeb96b4c3fbcbb7447d904cb4
@@ -182,8 +182,8 @@ module Google
182
182
  # @param workload [::Google::Cloud::AssuredWorkloads::V1::Workload, ::Hash]
183
183
  # Required. Assured Workload to create
184
184
  # @param external_id [::String]
185
- # Optional. A identifier associated with the workload and underlying projects which
186
- # allows for the break down of billing costs for a workload. The value
185
+ # Optional. A identifier associated with the workload and underlying projects
186
+ # which allows for the break down of billing costs for a workload. The value
187
187
  # provided for the identifier will add a label to the workload and contained
188
188
  # projects with the identifier as the value.
189
189
  #
@@ -463,8 +463,8 @@ module Google
463
463
  # the default parameter values, pass an empty Hash as a request object (see above).
464
464
  #
465
465
  # @param name [::String]
466
- # Required. The resource name of the Workload to fetch. This is the workloads's
467
- # relative path in the API, formatted as
466
+ # Required. The resource name of the Workload to fetch. This is the
467
+ # workloads's relative path in the API, formatted as
468
468
  # "organizations/\\{organization_id}/locations/\\{location_id}/workloads/\\{workload_id}".
469
469
  # For example,
470
470
  # "organizations/123/locations/us-east1/workloads/assured-workload-1".
@@ -21,7 +21,7 @@ module Google
21
21
  module Cloud
22
22
  module AssuredWorkloads
23
23
  module V1
24
- VERSION = "0.1.1"
24
+ VERSION = "0.2.0"
25
25
  end
26
26
  end
27
27
  end
@@ -52,6 +52,9 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
52
52
  optional :provisioned_resources_parent, :string, 13
53
53
  optional :kms_settings, :message, 14, "google.cloud.assuredworkloads.v1.Workload.KMSSettings"
54
54
  repeated :resource_settings, :message, 15, "google.cloud.assuredworkloads.v1.Workload.ResourceSettings"
55
+ optional :kaj_enrollment_state, :enum, 17, "google.cloud.assuredworkloads.v1.Workload.KajEnrollmentState"
56
+ optional :enable_sovereign_controls, :bool, 18
57
+ optional :saa_enrollment_response, :message, 20, "google.cloud.assuredworkloads.v1.Workload.SaaEnrollmentResponse"
55
58
  end
56
59
  add_message "google.cloud.assuredworkloads.v1.Workload.ResourceInfo" do
57
60
  optional :resource_id, :int64, 1
@@ -72,6 +75,22 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
72
75
  optional :resource_type, :enum, 2, "google.cloud.assuredworkloads.v1.Workload.ResourceInfo.ResourceType"
73
76
  optional :display_name, :string, 3
74
77
  end
78
+ add_message "google.cloud.assuredworkloads.v1.Workload.SaaEnrollmentResponse" do
79
+ proto3_optional :setup_status, :enum, 1, "google.cloud.assuredworkloads.v1.Workload.SaaEnrollmentResponse.SetupState"
80
+ repeated :setup_errors, :enum, 2, "google.cloud.assuredworkloads.v1.Workload.SaaEnrollmentResponse.SetupError"
81
+ end
82
+ add_enum "google.cloud.assuredworkloads.v1.Workload.SaaEnrollmentResponse.SetupState" do
83
+ value :SETUP_STATE_UNSPECIFIED, 0
84
+ value :STATUS_PENDING, 1
85
+ value :STATUS_COMPLETE, 2
86
+ end
87
+ add_enum "google.cloud.assuredworkloads.v1.Workload.SaaEnrollmentResponse.SetupError" do
88
+ value :SETUP_ERROR_UNSPECIFIED, 0
89
+ value :ERROR_INVALID_BASE_SETUP, 1
90
+ value :ERROR_MISSING_EXTERNAL_SIGNING_KEY, 2
91
+ value :ERROR_NOT_ALL_SERVICES_ENROLLED, 3
92
+ value :ERROR_SETUP_CHECK_FAILED, 4
93
+ end
75
94
  add_enum "google.cloud.assuredworkloads.v1.Workload.ComplianceRegime" do
76
95
  value :COMPLIANCE_REGIME_UNSPECIFIED, 0
77
96
  value :IL4, 1
@@ -84,6 +103,11 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
84
103
  value :EU_REGIONS_AND_SUPPORT, 8
85
104
  value :CA_REGIONS_AND_SUPPORT, 9
86
105
  end
106
+ add_enum "google.cloud.assuredworkloads.v1.Workload.KajEnrollmentState" do
107
+ value :KAJ_ENROLLMENT_STATE_UNSPECIFIED, 0
108
+ value :KAJ_ENROLLMENT_STATE_PENDING, 1
109
+ value :KAJ_ENROLLMENT_STATE_COMPLETE, 2
110
+ end
87
111
  add_message "google.cloud.assuredworkloads.v1.CreateWorkloadOperationMetadata" do
88
112
  optional :create_time, :message, 1, "google.protobuf.Timestamp"
89
113
  optional :display_name, :string, 2
@@ -108,7 +132,11 @@ module Google
108
132
  Workload::ResourceInfo::ResourceType = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.assuredworkloads.v1.Workload.ResourceInfo.ResourceType").enummodule
109
133
  Workload::KMSSettings = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.assuredworkloads.v1.Workload.KMSSettings").msgclass
110
134
  Workload::ResourceSettings = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.assuredworkloads.v1.Workload.ResourceSettings").msgclass
135
+ Workload::SaaEnrollmentResponse = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.assuredworkloads.v1.Workload.SaaEnrollmentResponse").msgclass
136
+ Workload::SaaEnrollmentResponse::SetupState = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.assuredworkloads.v1.Workload.SaaEnrollmentResponse.SetupState").enummodule
137
+ Workload::SaaEnrollmentResponse::SetupError = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.assuredworkloads.v1.Workload.SaaEnrollmentResponse.SetupError").enummodule
111
138
  Workload::ComplianceRegime = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.assuredworkloads.v1.Workload.ComplianceRegime").enummodule
139
+ Workload::KajEnrollmentState = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.assuredworkloads.v1.Workload.KajEnrollmentState").enummodule
112
140
  CreateWorkloadOperationMetadata = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.assuredworkloads.v1.CreateWorkloadOperationMetadata").msgclass
113
141
  end
114
142
  end
@@ -31,8 +31,8 @@ module Google
31
31
  # Required. Assured Workload to create
32
32
  # @!attribute [rw] external_id
33
33
  # @return [::String]
34
- # Optional. A identifier associated with the workload and underlying projects which
35
- # allows for the break down of billing costs for a workload. The value
34
+ # Optional. A identifier associated with the workload and underlying projects
35
+ # which allows for the break down of billing costs for a workload. The value
36
36
  # provided for the identifier will add a label to the workload and contained
37
37
  # projects with the identifier as the value.
38
38
  class CreateWorkloadRequest
@@ -73,8 +73,8 @@ module Google
73
73
  # Request for fetching a workload.
74
74
  # @!attribute [rw] name
75
75
  # @return [::String]
76
- # Required. The resource name of the Workload to fetch. This is the workloads's
77
- # relative path in the API, formatted as
76
+ # Required. The resource name of the Workload to fetch. This is the
77
+ # workloads's relative path in the API, formatted as
78
78
  # "organizations/\\{organization_id}/locations/\\{location_id}/workloads/\\{workload_id}".
79
79
  # For example,
80
80
  # "organizations/123/locations/us-east1/workloads/assured-workload-1".
@@ -165,22 +165,34 @@ module Google
165
165
  # Optional. Labels applied to the workload.
166
166
  # @!attribute [rw] provisioned_resources_parent
167
167
  # @return [::String]
168
- # Input only. The parent resource for the resources managed by this Assured Workload. May
169
- # be either empty or a folder resource which is a child of the
168
+ # Input only. The parent resource for the resources managed by this Assured
169
+ # Workload. May be either empty or a folder resource which is a child of the
170
170
  # Workload parent. If not specified all resources are created under the
171
171
  # parent organization.
172
172
  # Format:
173
173
  # folders/\\{folder_id}
174
174
  # @!attribute [rw] kms_settings
175
175
  # @return [::Google::Cloud::AssuredWorkloads::V1::Workload::KMSSettings]
176
- # Input only. Settings used to create a CMEK crypto key. When set a project with a KMS
177
- # CMEK key is provisioned. This field is mandatory for a subset of Compliance
178
- # Regimes.
176
+ # Input only. Settings used to create a CMEK crypto key. When set a project
177
+ # with a KMS CMEK key is provisioned. This field is mandatory for a subset of
178
+ # Compliance Regimes.
179
179
  # @!attribute [rw] resource_settings
180
180
  # @return [::Array<::Google::Cloud::AssuredWorkloads::V1::Workload::ResourceSettings>]
181
- # Input only. Resource properties that are used to customize workload resources.
182
- # These properties (such as custom project id) will be used to create
183
- # workload resources if possible. This field is optional.
181
+ # Input only. Resource properties that are used to customize workload
182
+ # resources. These properties (such as custom project id) will be used to
183
+ # create workload resources if possible. This field is optional.
184
+ # @!attribute [r] kaj_enrollment_state
185
+ # @return [::Google::Cloud::AssuredWorkloads::V1::Workload::KajEnrollmentState]
186
+ # Output only. Represents the KAJ enrollment state of the given workload.
187
+ # @!attribute [rw] enable_sovereign_controls
188
+ # @return [::Boolean]
189
+ # Optional. Indicates the sovereignty status of the given workload.
190
+ # Currently meant to be used by Europe/Canada customers.
191
+ # @!attribute [r] saa_enrollment_response
192
+ # @return [::Google::Cloud::AssuredWorkloads::V1::Workload::SaaEnrollmentResponse]
193
+ # Output only. Represents the SAA enrollment response of the given workload.
194
+ # SAA enrollment response is queried during GetWorkload call.
195
+ # In failure cases, user friendly error message is shown in SAA details page.
184
196
  class Workload
185
197
  include ::Google::Protobuf::MessageExts
186
198
  extend ::Google::Protobuf::MessageExts::ClassMethods
@@ -216,13 +228,14 @@ module Google
216
228
  # Settings specific to the Key Management Service.
217
229
  # @!attribute [rw] next_rotation_time
218
230
  # @return [::Google::Protobuf::Timestamp]
219
- # Required. Input only. Immutable. The time at which the Key Management Service will automatically create a
220
- # new version of the crypto key and mark it as the primary.
231
+ # Required. Input only. Immutable. The time at which the Key Management
232
+ # Service will automatically create a new version of the crypto key and
233
+ # mark it as the primary.
221
234
  # @!attribute [rw] rotation_period
222
235
  # @return [::Google::Protobuf::Duration]
223
- # Required. Input only. Immutable. [next_rotation_time] will be advanced by this period when the Key
224
- # Management Service automatically rotates a key. Must be at least 24 hours
225
- # and at most 876,000 hours.
236
+ # Required. Input only. Immutable. [next_rotation_time] will be advanced by
237
+ # this period when the Key Management Service automatically rotates a key.
238
+ # Must be at least 24 hours and at most 876,000 hours.
226
239
  class KMSSettings
227
240
  include ::Google::Protobuf::MessageExts
228
241
  extend ::Google::Protobuf::MessageExts::ClassMethods
@@ -249,6 +262,51 @@ module Google
249
262
  extend ::Google::Protobuf::MessageExts::ClassMethods
250
263
  end
251
264
 
265
+ # Signed Access Approvals (SAA) enrollment response.
266
+ # @!attribute [rw] setup_status
267
+ # @return [::Google::Cloud::AssuredWorkloads::V1::Workload::SaaEnrollmentResponse::SetupState]
268
+ # Indicates SAA enrollment status of a given workload.
269
+ # @!attribute [rw] setup_errors
270
+ # @return [::Array<::Google::Cloud::AssuredWorkloads::V1::Workload::SaaEnrollmentResponse::SetupError>]
271
+ # Indicates SAA enrollment setup error if any.
272
+ class SaaEnrollmentResponse
273
+ include ::Google::Protobuf::MessageExts
274
+ extend ::Google::Protobuf::MessageExts::ClassMethods
275
+
276
+ # Setup state of SAA enrollment.
277
+ module SetupState
278
+ # Unspecified.
279
+ SETUP_STATE_UNSPECIFIED = 0
280
+
281
+ # SAA enrollment pending.
282
+ STATUS_PENDING = 1
283
+
284
+ # SAA enrollment comopleted.
285
+ STATUS_COMPLETE = 2
286
+ end
287
+
288
+ # Setup error of SAA enrollment.
289
+ module SetupError
290
+ # Unspecified.
291
+ SETUP_ERROR_UNSPECIFIED = 0
292
+
293
+ # Invalid states for all customers, to be redirected to AA UI for
294
+ # additional details.
295
+ ERROR_INVALID_BASE_SETUP = 1
296
+
297
+ # Returned when there is not an EKM key configured.
298
+ ERROR_MISSING_EXTERNAL_SIGNING_KEY = 2
299
+
300
+ # Returned when there are no enrolled services or the customer is
301
+ # enrolled in CAA only for a subset of services.
302
+ ERROR_NOT_ALL_SERVICES_ENROLLED = 3
303
+
304
+ # Returned when exception was encountered during evaluation of other
305
+ # criteria.
306
+ ERROR_SETUP_CHECK_FAILED = 4
307
+ end
308
+ end
309
+
252
310
  # @!attribute [rw] key
253
311
  # @return [::String]
254
312
  # @!attribute [rw] value
@@ -290,6 +348,18 @@ module Google
290
348
  # Assured Workloads For Canada Regions and Support controls
291
349
  CA_REGIONS_AND_SUPPORT = 9
292
350
  end
351
+
352
+ # Key Access Justifications(KAJ) Enrollment State.
353
+ module KajEnrollmentState
354
+ # Default State for KAJ Enrollment.
355
+ KAJ_ENROLLMENT_STATE_UNSPECIFIED = 0
356
+
357
+ # Pending State for KAJ Enrollment.
358
+ KAJ_ENROLLMENT_STATE_PENDING = 1
359
+
360
+ # Complete State for KAJ Enrollment.
361
+ KAJ_ENROLLMENT_STATE_COMPLETE = 2
362
+ end
293
363
  end
294
364
 
295
365
  # Operation metadata to give request details of CreateWorkload.
@@ -304,8 +374,8 @@ module Google
304
374
  # Optional. The parent of the workload.
305
375
  # @!attribute [rw] compliance_regime
306
376
  # @return [::Google::Cloud::AssuredWorkloads::V1::Workload::ComplianceRegime]
307
- # Optional. Compliance controls that should be applied to the resources managed by
308
- # the workload.
377
+ # Optional. Compliance controls that should be applied to the resources
378
+ # managed by the workload.
309
379
  class CreateWorkloadOperationMetadata
310
380
  include ::Google::Protobuf::MessageExts
311
381
  extend ::Google::Protobuf::MessageExts::ClassMethods
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: google-cloud-assured_workloads-v1
3
3
  version: !ruby/object:Gem::Version
4
- version: 0.1.1
4
+ version: 0.2.0
5
5
  platform: ruby
6
6
  authors:
7
7
  - Google LLC
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2021-11-08 00:00:00.000000000 Z
11
+ date: 2021-12-10 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: gapic-common