google-cloud-assured_workloads-v1beta1 0.8.1 → 0.9.2

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 1e0a780eeabce7bf7b855b58fe63620614d2e3ee9b574a99e86d67dda315b48a
-  data.tar.gz: 3b761ae99c0777b309153122e844814ad64816e61f7903f1d8a0ba052474b6bf
+  metadata.gz: 26bd866e2e7cb48146e80df3e958ec2dc582921c4ffb6a491cb1dea5c905cf69
+  data.tar.gz: a4dad89b1f43d68c9775d16e6a5e0c77690ea9cad3d5d1112e44f13860f518bd
 SHA512:
-  metadata.gz: 3e63d558c2cc7c51f1d20be20296930e92bbe9a6d5bb5cd4615ef1ea3161eb30b711f69a4fa40e5aa0e649d1aa72e96b9003bed0b5bf1d02ad0cbf24ea527d9f
-  data.tar.gz: 2e7df0739af6f15a1417f8f69145c2e131a4e4f3e93822dd37445e794de58b8d648959ed986f01c3454f67e3f2db5e2c4fc43ef888edfe2495ed8baf0eca1eb8
+  metadata.gz: c1545ac682dd2ddf1edda5349a701fc83b924c3f536c3e0c8086a358c10ff21e1e4c20967e71d079f8c5c1547a97c958b4ec239536384d9678361f20cba17544
+  data.tar.gz: 1262b2ad1fbf6ce57637b0f6ab3e3cf4a9f1cafd458377527b0ca3e2ae4184fb3b7a741d67fa0e798c157f32edd2a8ad98d8be7347f73dd981fe82b8296c1874

data/.yardopts

@@ -1,5 +1,5 @@
 --no-private
---title=Assured Workloads for Government V1beta1 API
+--title="Assured Workloads for Government V1beta1 API"
 --exclude _pb\.rb$
 --markup markdown
 --markup-provider redcarpet

data/AUTHENTICATION.md

@@ -120,15 +120,6 @@ To configure your system for this, simply:
 **NOTE:** This is _not_ recommended for running in production. The Cloud SDK
 *should* only be used during development.
 
-[gce-how-to]: https://cloud.google.com/compute/docs/authentication#using
-[dev-console]: https://console.cloud.google.com/project
-
-[enable-apis]: https://raw.githubusercontent.com/GoogleCloudPlatform/gcloud-common/master/authentication/enable-apis.png
-
-[create-new-service-account]: https://raw.githubusercontent.com/GoogleCloudPlatform/gcloud-common/master/authentication/create-new-service-account.png
-[create-new-service-account-existing-keys]: https://raw.githubusercontent.com/GoogleCloudPlatform/gcloud-common/master/authentication/create-new-service-account-existing-keys.png
-[reuse-service-account]: https://raw.githubusercontent.com/GoogleCloudPlatform/gcloud-common/master/authentication/reuse-service-account.png
-
 ## Creating a Service Account
 
 Google Cloud requires **Service Account Credentials** to
@@ -139,31 +130,22 @@ If you are not running this client within
 [Google Cloud Platform environments](#google-cloud-platform-environments), you
 need a Google Developers service account.
 
-1. Visit the [Google Developers Console][dev-console].
+1. Visit the [Google Cloud Console](https://console.cloud.google.com/project).
 2. Create a new project or click on an existing project.
-3. Activate the slide-out navigation tray and select **API Manager**. From
+3. Activate the menu in the upper left and select **APIs & Services**. From
    here, you will enable the APIs that your application requires.
 
-   ![Enable the APIs that your application requires][enable-apis]
-
    *Note: You may need to enable billing in order to use these services.*
 
 4. Select **Credentials** from the side navigation.
 
-   You should see a screen like one of the following.
-
-   ![Create a new service account][create-new-service-account]
-
-   ![Create a new service account With Existing Keys][create-new-service-account-existing-keys]
-
-   Find the "Add credentials" drop down and select "Service account" to be
-   guided through downloading a new JSON key file.
+   Find the "Create credentials" drop down near the top of the page, and select
+   "Service account" to be guided through downloading a new JSON key file.
 
    If you want to re-use an existing service account, you can easily generate a
-   new key file. Just select the account you wish to re-use, and click "Generate
-   new JSON key":
-
-   ![Re-use an existing service account][reuse-service-account]
+   new key file. Just select the account you wish to re-use, click the pencil
+   tool on the right side to edit the service account, select the **Keys** tab,
+   and then select **Add Key**.
 
    The key file you download will be used by this library to authenticate API
    requests and should be stored in a secure location.

data/README.md

@@ -37,7 +37,7 @@ request = ::Google::Cloud::AssuredWorkloads::V1beta1::CreateWorkloadRequest.new
 response = client.create_workload request
 ```
 
-View the [Client Library Documentation](https://googleapis.dev/ruby/google-cloud-assured_workloads-v1beta1/latest)
+View the [Client Library Documentation](https://cloud.google.com/ruby/docs/reference/google-cloud-assured_workloads-v1beta1/latest)
 for class and method documentation.
 
 See also the [Product Documentation](https://cloud.google.com/assured-workloads/)
@@ -69,6 +69,11 @@ module GRPC
 end
 ```
 
+
+## Google Cloud Samples
+
+To browse ready to use code samples check [Google Cloud Samples](https://cloud.google.com/docs/samples).
+
 ## Supported Ruby Versions
 
 This library is supported on Ruby 2.5+.

data/lib/google/cloud/assured_workloads/v1beta1/assured_workloads_service/client.rb

@@ -17,7 +17,7 @@
 # Auto-generated by gapic-generator-ruby. DO NOT EDIT!
 
 require "google/cloud/errors"
-require "google/cloud/assuredworkloads/v1beta1/assuredworkloads_v1beta1_pb"
+require "google/cloud/assuredworkloads/v1beta1/assuredworkloads_pb"
 
 module Google
   module Cloud
@@ -130,7 +130,7 @@ module Google
               # the gRPC module only when it's required.
               # See https://github.com/googleapis/toolkit/issues/446
               require "gapic/grpc"
-              require "google/cloud/assuredworkloads/v1beta1/assuredworkloads_v1beta1_services_pb"
+              require "google/cloud/assuredworkloads/v1beta1/assuredworkloads_services_pb"
 
               # Create the configuration object
               @config = Configuration.new Client.configure
@@ -154,6 +154,7 @@ module Google
 
               @operations_client = Operations.new do |config|
                 config.credentials = credentials
+                config.quota_project = @quota_project_id
                 config.endpoint = @config.endpoint
               end
 
@@ -199,8 +200,8 @@ module Google
             #   @param workload [::Google::Cloud::AssuredWorkloads::V1beta1::Workload, ::Hash]
             #     Required. Assured Workload to create
             #   @param external_id [::String]
-            #     Optional. A identifier associated with the workload and underlying projects which
-            #     allows for the break down of billing costs for a workload. The value
+            #     Optional. A identifier associated with the workload and underlying projects
+            #     which allows for the break down of billing costs for a workload. The value
             #     provided for the identifier will add a label to the workload and contained
             #     projects with the identifier as the value.
             #
@@ -480,8 +481,8 @@ module Google
             #   the default parameter values, pass an empty Hash as a request object (see above).
             #
             #   @param name [::String]
-            #     Required. The resource name of the Workload to fetch. This is the workloads's
-            #     relative path in the API, formatted as
+            #     Required. The resource name of the Workload to fetch. This is the
+            #     workloads's relative path in the API, formatted as
             #     "organizations/\\{organization_id}/locations/\\{location_id}/workloads/\\{workload_id}".
             #     For example,
             #     "organizations/123/locations/us-east1/workloads/assured-workload-1".

data/lib/google/cloud/assured_workloads/v1beta1/version.rb

@@ -21,7 +21,7 @@ module Google
   module Cloud
     module AssuredWorkloads
       module V1beta1
-        VERSION = "0.8.1"
+        VERSION = "0.9.2"
       end
     end
   end

data/lib/google/cloud/assured_workloads/v1beta1.rb

@@ -25,6 +25,8 @@ module Google
       ##
       # To load this package, including all its services, and instantiate a client:
       #
+      # @example
+      #
       #     require "google/cloud/assured_workloads/v1beta1"
       #     client = ::Google::Cloud::AssuredWorkloads::V1beta1::AssuredWorkloadsService::Client.new
       #

data/lib/google/cloud/assuredworkloads/v1beta1/{assuredworkloads_v1beta1_pb.rb → assuredworkloads_pb.rb}

@@ -1,5 +1,7 @@
 # Generated by the protocol buffer compiler.  DO NOT EDIT!
-# source: google/cloud/assuredworkloads/v1beta1/assuredworkloads_v1beta1.proto
+# source: google/cloud/assuredworkloads/v1beta1/assuredworkloads.proto
+
+require 'google/protobuf'
 
 require 'google/api/annotations_pb'
 require 'google/api/client_pb'
@@ -10,10 +12,9 @@ require 'google/protobuf/duration_pb'
 require 'google/protobuf/empty_pb'
 require 'google/protobuf/field_mask_pb'
 require 'google/protobuf/timestamp_pb'
-require 'google/protobuf'
 
 Google::Protobuf::DescriptorPool.generated_pool.build do
-  add_file("google/cloud/assuredworkloads/v1beta1/assuredworkloads_v1beta1.proto", :syntax => :proto3) do
+  add_file("google/cloud/assuredworkloads/v1beta1/assuredworkloads.proto", :syntax => :proto3) do
     add_message "google.cloud.assuredworkloads.v1beta1.CreateWorkloadRequest" do
       optional :parent, :string, 1
       optional :workload, :message, 2, "google.cloud.assuredworkloads.v1beta1.Workload"
@@ -52,6 +53,9 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
       optional :provisioned_resources_parent, :string, 13
       optional :kms_settings, :message, 14, "google.cloud.assuredworkloads.v1beta1.Workload.KMSSettings"
       repeated :resource_settings, :message, 15, "google.cloud.assuredworkloads.v1beta1.Workload.ResourceSettings"
+      optional :kaj_enrollment_state, :enum, 17, "google.cloud.assuredworkloads.v1beta1.Workload.KajEnrollmentState"
+      optional :enable_sovereign_controls, :bool, 18
+      optional :saa_enrollment_response, :message, 20, "google.cloud.assuredworkloads.v1beta1.Workload.SaaEnrollmentResponse"
       oneof :compliance_regime_settings do
         optional :il4_settings, :message, 7, "google.cloud.assuredworkloads.v1beta1.Workload.IL4Settings"
         optional :cjis_settings, :message, 8, "google.cloud.assuredworkloads.v1beta1.Workload.CJISSettings"
@@ -91,6 +95,22 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
       optional :resource_type, :enum, 2, "google.cloud.assuredworkloads.v1beta1.Workload.ResourceInfo.ResourceType"
       optional :display_name, :string, 3
     end
+    add_message "google.cloud.assuredworkloads.v1beta1.Workload.SaaEnrollmentResponse" do
+      proto3_optional :setup_status, :enum, 1, "google.cloud.assuredworkloads.v1beta1.Workload.SaaEnrollmentResponse.SetupState"
+      repeated :setup_errors, :enum, 2, "google.cloud.assuredworkloads.v1beta1.Workload.SaaEnrollmentResponse.SetupError"
+    end
+    add_enum "google.cloud.assuredworkloads.v1beta1.Workload.SaaEnrollmentResponse.SetupState" do
+      value :SETUP_STATE_UNSPECIFIED, 0
+      value :STATUS_PENDING, 1
+      value :STATUS_COMPLETE, 2
+    end
+    add_enum "google.cloud.assuredworkloads.v1beta1.Workload.SaaEnrollmentResponse.SetupError" do
+      value :SETUP_ERROR_UNSPECIFIED, 0
+      value :ERROR_INVALID_BASE_SETUP, 1
+      value :ERROR_MISSING_EXTERNAL_SIGNING_KEY, 2
+      value :ERROR_NOT_ALL_SERVICES_ENROLLED, 3
+      value :ERROR_SETUP_CHECK_FAILED, 4
+    end
     add_enum "google.cloud.assuredworkloads.v1beta1.Workload.ComplianceRegime" do
       value :COMPLIANCE_REGIME_UNSPECIFIED, 0
       value :IL4, 1
@@ -103,6 +123,11 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
       value :EU_REGIONS_AND_SUPPORT, 8
       value :CA_REGIONS_AND_SUPPORT, 9
     end
+    add_enum "google.cloud.assuredworkloads.v1beta1.Workload.KajEnrollmentState" do
+      value :KAJ_ENROLLMENT_STATE_UNSPECIFIED, 0
+      value :KAJ_ENROLLMENT_STATE_PENDING, 1
+      value :KAJ_ENROLLMENT_STATE_COMPLETE, 2
+    end
     add_message "google.cloud.assuredworkloads.v1beta1.CreateWorkloadOperationMetadata" do
       optional :create_time, :message, 1, "google.protobuf.Timestamp"
       optional :display_name, :string, 2
@@ -132,7 +157,11 @@ module Google
         Workload::FedrampHighSettings = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.assuredworkloads.v1beta1.Workload.FedrampHighSettings").msgclass
         Workload::FedrampModerateSettings = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.assuredworkloads.v1beta1.Workload.FedrampModerateSettings").msgclass
         Workload::ResourceSettings = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.assuredworkloads.v1beta1.Workload.ResourceSettings").msgclass
+        Workload::SaaEnrollmentResponse = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.assuredworkloads.v1beta1.Workload.SaaEnrollmentResponse").msgclass
+        Workload::SaaEnrollmentResponse::SetupState = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.assuredworkloads.v1beta1.Workload.SaaEnrollmentResponse.SetupState").enummodule
+        Workload::SaaEnrollmentResponse::SetupError = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.assuredworkloads.v1beta1.Workload.SaaEnrollmentResponse.SetupError").enummodule
         Workload::ComplianceRegime = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.assuredworkloads.v1beta1.Workload.ComplianceRegime").enummodule
+        Workload::KajEnrollmentState = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.assuredworkloads.v1beta1.Workload.KajEnrollmentState").enummodule
         CreateWorkloadOperationMetadata = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.assuredworkloads.v1beta1.CreateWorkloadOperationMetadata").msgclass
       end
     end

data/lib/google/cloud/assuredworkloads/v1beta1/{assuredworkloads_v1beta1_services_pb.rb → assuredworkloads_services_pb.rb}

@@ -1,7 +1,7 @@
 # Generated by the protocol buffer compiler.  DO NOT EDIT!
-# Source: google/cloud/assuredworkloads/v1beta1/assuredworkloads_v1beta1.proto for package 'Google.Cloud.AssuredWorkloads.V1beta1'
+# Source: google/cloud/assuredworkloads/v1beta1/assuredworkloads.proto for package 'Google.Cloud.AssuredWorkloads.V1beta1'
 # Original file comments:
-# Copyright 2020 Google LLC
+# Copyright 2021 Google LLC
 #
 # Licensed under the Apache License, Version 2.0 (the "License");
 # you may not use this file except in compliance with the License.
@@ -17,7 +17,7 @@
 #
 
 require 'grpc'
-require 'google/cloud/assuredworkloads/v1beta1/assuredworkloads_v1beta1_pb'
+require 'google/cloud/assuredworkloads/v1beta1/assuredworkloads_pb'
 
 module Google
   module Cloud

data/proto_docs/google/api/resource.rb

@@ -33,11 +33,7 @@ module Google
     #       // For Kubernetes resources, the format is {api group}/{kind}.
     #       option (google.api.resource) = {
     #         type: "pubsub.googleapis.com/Topic"
-    #         name_descriptor: {
-    #           pattern: "projects/{project}/topics/{topic}"
-    #           parent_type: "cloudresourcemanager.googleapis.com/Project"
-    #           parent_name_extractor: "projects/{project}"
-    #         }
+    #         pattern: "projects/{project}/topics/{topic}"
     #       };
     #     }
     #
@@ -45,10 +41,7 @@ module Google
     #
     #     resources:
     #     - type: "pubsub.googleapis.com/Topic"
-    #       name_descriptor:
-    #         - pattern: "projects/{project}/topics/{topic}"
-    #           parent_type: "cloudresourcemanager.googleapis.com/Project"
-    #           parent_name_extractor: "projects/{project}"
+    #       pattern: "projects/{project}/topics/{topic}"
     #
     # Sometimes, resources have multiple patterns, typically because they can
     # live under multiple parents.
@@ -58,26 +51,10 @@ module Google
     #     message LogEntry {
     #       option (google.api.resource) = {
     #         type: "logging.googleapis.com/LogEntry"
-    #         name_descriptor: {
-    #           pattern: "projects/{project}/logs/{log}"
-    #           parent_type: "cloudresourcemanager.googleapis.com/Project"
-    #           parent_name_extractor: "projects/{project}"
-    #         }
-    #         name_descriptor: {
-    #           pattern: "folders/{folder}/logs/{log}"
-    #           parent_type: "cloudresourcemanager.googleapis.com/Folder"
-    #           parent_name_extractor: "folders/{folder}"
-    #         }
-    #         name_descriptor: {
-    #           pattern: "organizations/{organization}/logs/{log}"
-    #           parent_type: "cloudresourcemanager.googleapis.com/Organization"
-    #           parent_name_extractor: "organizations/{organization}"
-    #         }
-    #         name_descriptor: {
-    #           pattern: "billingAccounts/{billing_account}/logs/{log}"
-    #           parent_type: "billing.googleapis.com/BillingAccount"
-    #           parent_name_extractor: "billingAccounts/{billing_account}"
-    #         }
+    #         pattern: "projects/{project}/logs/{log}"
+    #         pattern: "folders/{folder}/logs/{log}"
+    #         pattern: "organizations/{organization}/logs/{log}"
+    #         pattern: "billingAccounts/{billing_account}/logs/{log}"
     #       };
     #     }
     #
@@ -85,48 +62,10 @@ module Google
     #
     #     resources:
     #     - type: 'logging.googleapis.com/LogEntry'
-    #       name_descriptor:
-    #         - pattern: "projects/{project}/logs/{log}"
-    #           parent_type: "cloudresourcemanager.googleapis.com/Project"
-    #           parent_name_extractor: "projects/{project}"
-    #         - pattern: "folders/{folder}/logs/{log}"
-    #           parent_type: "cloudresourcemanager.googleapis.com/Folder"
-    #           parent_name_extractor: "folders/{folder}"
-    #         - pattern: "organizations/{organization}/logs/{log}"
-    #           parent_type: "cloudresourcemanager.googleapis.com/Organization"
-    #           parent_name_extractor: "organizations/{organization}"
-    #         - pattern: "billingAccounts/{billing_account}/logs/{log}"
-    #           parent_type: "billing.googleapis.com/BillingAccount"
-    #           parent_name_extractor: "billingAccounts/{billing_account}"
-    #
-    # For flexible resources, the resource name doesn't contain parent names, but
-    # the resource itself has parents for policy evaluation.
-    #
-    # Example:
-    #
-    #     message Shelf {
-    #       option (google.api.resource) = {
-    #         type: "library.googleapis.com/Shelf"
-    #         name_descriptor: {
-    #           pattern: "shelves/{shelf}"
-    #           parent_type: "cloudresourcemanager.googleapis.com/Project"
-    #         }
-    #         name_descriptor: {
-    #           pattern: "shelves/{shelf}"
-    #           parent_type: "cloudresourcemanager.googleapis.com/Folder"
-    #         }
-    #       };
-    #     }
-    #
-    # The ResourceDescriptor Yaml config will look like:
-    #
-    #     resources:
-    #     - type: 'library.googleapis.com/Shelf'
-    #       name_descriptor:
-    #         - pattern: "shelves/{shelf}"
-    #           parent_type: "cloudresourcemanager.googleapis.com/Project"
-    #         - pattern: "shelves/{shelf}"
-    #           parent_type: "cloudresourcemanager.googleapis.com/Folder"
+    #       pattern: "projects/{project}/logs/{log}"
+    #       pattern: "folders/{folder}/logs/{log}"
+    #       pattern: "organizations/{organization}/logs/{log}"
+    #       pattern: "billingAccounts/{billing_account}/logs/{log}"
     # @!attribute [rw] type
     #   @return [::String]
     #     The resource type. It must be in the format of

data/proto_docs/google/cloud/assuredworkloads/v1beta1/{assuredworkloads_v1beta1.rb → assuredworkloads.rb}

@@ -1,6 +1,6 @@
 # frozen_string_literal: true
 
-# Copyright 2020 Google LLC
+# Copyright 2022 Google LLC
 #
 # Licensed under the Apache License, Version 2.0 (the "License");
 # you may not use this file except in compliance with the License.
@@ -31,8 +31,8 @@ module Google
         #     Required. Assured Workload to create
         # @!attribute [rw] external_id
         #   @return [::String]
-        #     Optional. A identifier associated with the workload and underlying projects which
-        #     allows for the break down of billing costs for a workload. The value
+        #     Optional. A identifier associated with the workload and underlying projects
+        #     which allows for the break down of billing costs for a workload. The value
         #     provided for the identifier will add a label to the workload and contained
         #     projects with the identifier as the value.
         class CreateWorkloadRequest
@@ -73,8 +73,8 @@ module Google
         # Request for fetching a workload.
         # @!attribute [rw] name
         #   @return [::String]
-        #     Required. The resource name of the Workload to fetch. This is the workloads's
-        #     relative path in the API, formatted as
+        #     Required. The resource name of the Workload to fetch. This is the
+        #     workloads's relative path in the API, formatted as
         #     "organizations/\\{organization_id}/locations/\\{location_id}/workloads/\\{workload_id}".
         #     For example,
         #     "organizations/123/locations/us-east1/workloads/assured-workload-1".
@@ -158,16 +158,20 @@ module Google
         #     `billingAccounts/012345-567890-ABCDEF`.
         # @!attribute [rw] il4_settings
         #   @return [::Google::Cloud::AssuredWorkloads::V1beta1::Workload::IL4Settings]
-        #     Required. Input only. Immutable. Settings specific to resources needed for IL4.
+        #     Required. Input only. Immutable. Settings specific to resources needed
+        #     for IL4.
         # @!attribute [rw] cjis_settings
         #   @return [::Google::Cloud::AssuredWorkloads::V1beta1::Workload::CJISSettings]
-        #     Required. Input only. Immutable. Settings specific to resources needed for CJIS.
+        #     Required. Input only. Immutable. Settings specific to resources needed
+        #     for CJIS.
         # @!attribute [rw] fedramp_high_settings
         #   @return [::Google::Cloud::AssuredWorkloads::V1beta1::Workload::FedrampHighSettings]
-        #     Required. Input only. Immutable. Settings specific to resources needed for FedRAMP High.
+        #     Required. Input only. Immutable. Settings specific to resources needed
+        #     for FedRAMP High.
         # @!attribute [rw] fedramp_moderate_settings
         #   @return [::Google::Cloud::AssuredWorkloads::V1beta1::Workload::FedrampModerateSettings]
-        #     Required. Input only. Immutable. Settings specific to resources needed for FedRAMP Moderate.
+        #     Required. Input only. Immutable. Settings specific to resources needed
+        #     for FedRAMP Moderate.
         # @!attribute [rw] etag
         #   @return [::String]
         #     Optional. ETag of the workload, it is calculated on the basis
@@ -177,22 +181,34 @@ module Google
         #     Optional. Labels applied to the workload.
         # @!attribute [rw] provisioned_resources_parent
         #   @return [::String]
-        #     Input only. The parent resource for the resources managed by this Assured Workload. May
-        #     be either empty or a folder resource which is a child of the
+        #     Input only. The parent resource for the resources managed by this Assured
+        #     Workload. May be either empty or a folder resource which is a child of the
         #     Workload parent. If not specified all resources are created under the
         #     parent organization.
         #     Format:
         #     folders/\\{folder_id}
         # @!attribute [rw] kms_settings
         #   @return [::Google::Cloud::AssuredWorkloads::V1beta1::Workload::KMSSettings]
-        #     Input only. Settings used to create a CMEK crypto key. When set a project with a KMS
-        #     CMEK key is provisioned. This field is mandatory for a subset of Compliance
-        #     Regimes.
+        #     Input only. Settings used to create a CMEK crypto key. When set a project
+        #     with a KMS CMEK key is provisioned. This field is mandatory for a subset of
+        #     Compliance Regimes.
         # @!attribute [rw] resource_settings
         #   @return [::Array<::Google::Cloud::AssuredWorkloads::V1beta1::Workload::ResourceSettings>]
-        #     Input only. Resource properties that are used to customize workload resources.
-        #     These properties (such as custom project id) will be used to create
-        #     workload resources if possible. This field is optional.
+        #     Input only. Resource properties that are used to customize workload
+        #     resources. These properties (such as custom project id) will be used to
+        #     create workload resources if possible. This field is optional.
+        # @!attribute [r] kaj_enrollment_state
+        #   @return [::Google::Cloud::AssuredWorkloads::V1beta1::Workload::KajEnrollmentState]
+        #     Output only. Represents the KAJ enrollment state of the given workload.
+        # @!attribute [rw] enable_sovereign_controls
+        #   @return [::Boolean]
+        #     Optional. Indicates the sovereignty status of the given workload.
+        #     Currently meant to be used by Europe/Canada customers.
+        # @!attribute [r] saa_enrollment_response
+        #   @return [::Google::Cloud::AssuredWorkloads::V1beta1::Workload::SaaEnrollmentResponse]
+        #     Output only. Represents the SAA enrollment response of the given workload.
+        #     SAA enrollment response is queried during GetWorkload call.
+        #     In failure cases, user friendly error message is shown in SAA details page.
         class Workload
           include ::Google::Protobuf::MessageExts
           extend ::Google::Protobuf::MessageExts::ClassMethods
@@ -232,13 +248,14 @@ module Google
           # Settings specific to the Key Management Service.
           # @!attribute [rw] next_rotation_time
           #   @return [::Google::Protobuf::Timestamp]
-          #     Required. Input only. Immutable. The time at which the Key Management Service will automatically create a
-          #     new version of the crypto key and mark it as the primary.
+          #     Required. Input only. Immutable. The time at which the Key Management
+          #     Service will automatically create a new version of the crypto key and
+          #     mark it as the primary.
           # @!attribute [rw] rotation_period
           #   @return [::Google::Protobuf::Duration]
-          #     Required. Input only. Immutable. [next_rotation_time] will be advanced by this period when the Key
-          #     Management Service automatically rotates a key. Must be at least 24 hours
-          #     and at most 876,000 hours.
+          #     Required. Input only. Immutable. [next_rotation_time] will be advanced by
+          #     this period when the Key Management Service automatically rotates a key.
+          #     Must be at least 24 hours and at most 876,000 hours.
           class KMSSettings
             include ::Google::Protobuf::MessageExts
             extend ::Google::Protobuf::MessageExts::ClassMethods
@@ -247,7 +264,8 @@ module Google
           # Settings specific to resources needed for IL4.
           # @!attribute [rw] kms_settings
           #   @return [::Google::Cloud::AssuredWorkloads::V1beta1::Workload::KMSSettings]
-          #     Required. Input only. Immutable. Settings used to create a CMEK crypto key.
+          #     Required. Input only. Immutable. Settings used to create a CMEK crypto
+          #     key.
           class IL4Settings
             include ::Google::Protobuf::MessageExts
             extend ::Google::Protobuf::MessageExts::ClassMethods
@@ -256,7 +274,8 @@ module Google
           # Settings specific to resources needed for CJIS.
           # @!attribute [rw] kms_settings
           #   @return [::Google::Cloud::AssuredWorkloads::V1beta1::Workload::KMSSettings]
-          #     Required. Input only. Immutable. Settings used to create a CMEK crypto key.
+          #     Required. Input only. Immutable. Settings used to create a CMEK crypto
+          #     key.
           class CJISSettings
             include ::Google::Protobuf::MessageExts
             extend ::Google::Protobuf::MessageExts::ClassMethods
@@ -265,7 +284,8 @@ module Google
           # Settings specific to resources needed for FedRAMP High.
           # @!attribute [rw] kms_settings
           #   @return [::Google::Cloud::AssuredWorkloads::V1beta1::Workload::KMSSettings]
-          #     Required. Input only. Immutable. Settings used to create a CMEK crypto key.
+          #     Required. Input only. Immutable. Settings used to create a CMEK crypto
+          #     key.
           class FedrampHighSettings
             include ::Google::Protobuf::MessageExts
             extend ::Google::Protobuf::MessageExts::ClassMethods
@@ -274,7 +294,8 @@ module Google
           # Settings specific to resources needed for FedRAMP Moderate.
           # @!attribute [rw] kms_settings
           #   @return [::Google::Cloud::AssuredWorkloads::V1beta1::Workload::KMSSettings]
-          #     Required. Input only. Immutable. Settings used to create a CMEK crypto key.
+          #     Required. Input only. Immutable. Settings used to create a CMEK crypto
+          #     key.
           class FedrampModerateSettings
             include ::Google::Protobuf::MessageExts
             extend ::Google::Protobuf::MessageExts::ClassMethods
@@ -301,6 +322,51 @@ module Google
             extend ::Google::Protobuf::MessageExts::ClassMethods
           end
 
+          # Signed Access Approvals (SAA) enrollment response.
+          # @!attribute [rw] setup_status
+          #   @return [::Google::Cloud::AssuredWorkloads::V1beta1::Workload::SaaEnrollmentResponse::SetupState]
+          #     Indicates SAA enrollment status of a given workload.
+          # @!attribute [rw] setup_errors
+          #   @return [::Array<::Google::Cloud::AssuredWorkloads::V1beta1::Workload::SaaEnrollmentResponse::SetupError>]
+          #     Indicates SAA enrollment setup error if any.
+          class SaaEnrollmentResponse
+            include ::Google::Protobuf::MessageExts
+            extend ::Google::Protobuf::MessageExts::ClassMethods
+
+            # Setup state of SAA enrollment.
+            module SetupState
+              # Unspecified.
+              SETUP_STATE_UNSPECIFIED = 0
+
+              # SAA enrollment pending.
+              STATUS_PENDING = 1
+
+              # SAA enrollment comopleted.
+              STATUS_COMPLETE = 2
+            end
+
+            # Setup error of SAA enrollment.
+            module SetupError
+              # Unspecified.
+              SETUP_ERROR_UNSPECIFIED = 0
+
+              # Invalid states for all customers, to be redirected to AA UI for
+              # additional details.
+              ERROR_INVALID_BASE_SETUP = 1
+
+              # Returned when there is not an EKM key configured.
+              ERROR_MISSING_EXTERNAL_SIGNING_KEY = 2
+
+              # Returned when there are no enrolled services or the customer is
+              # enrolled in CAA only for a subset of services.
+              ERROR_NOT_ALL_SERVICES_ENROLLED = 3
+
+              # Returned when exception was encountered during evaluation of other
+              # criteria.
+              ERROR_SETUP_CHECK_FAILED = 4
+            end
+          end
+
           # @!attribute [rw] key
           #   @return [::String]
           # @!attribute [rw] value
@@ -342,6 +408,18 @@ module Google
             # Assured Workloads For Canada Regions and Support controls
             CA_REGIONS_AND_SUPPORT = 9
           end
+
+          # Key Access Justifications(KAJ) Enrollment State.
+          module KajEnrollmentState
+            # Default State for KAJ Enrollment.
+            KAJ_ENROLLMENT_STATE_UNSPECIFIED = 0
+
+            # Pending State for KAJ Enrollment.
+            KAJ_ENROLLMENT_STATE_PENDING = 1
+
+            # Complete State for KAJ Enrollment.
+            KAJ_ENROLLMENT_STATE_COMPLETE = 2
+          end
         end
 
         # Operation metadata to give request details of CreateWorkload.
@@ -356,12 +434,12 @@ module Google
         #     Optional. The parent of the workload.
         # @!attribute [rw] compliance_regime
         #   @return [::Google::Cloud::AssuredWorkloads::V1beta1::Workload::ComplianceRegime]
-        #     Optional. Compliance controls that should be applied to the resources managed by
-        #     the workload.
+        #     Optional. Compliance controls that should be applied to the resources
+        #     managed by the workload.
         # @!attribute [rw] resource_settings
         #   @return [::Array<::Google::Cloud::AssuredWorkloads::V1beta1::Workload::ResourceSettings>]
-        #     Optional. Resource properties in the input that are used for creating/customizing
-        #     workload resources.
+        #     Optional. Resource properties in the input that are used for
+        #     creating/customizing workload resources.
         class CreateWorkloadOperationMetadata
           include ::Google::Protobuf::MessageExts
           extend ::Google::Protobuf::MessageExts::ClassMethods

data/proto_docs/google/protobuf/any.rb

@@ -44,7 +44,7 @@ module Google
     #       foo = any.unpack(Foo.class);
     #     }
     #
-    #  Example 3: Pack and unpack a message in Python.
+    # Example 3: Pack and unpack a message in Python.
     #
     #     foo = Foo(...)
     #     any = Any()
@@ -54,7 +54,7 @@ module Google
     #       any.Unpack(foo)
     #       ...
     #
-    #  Example 4: Pack and unpack a message in Go
+    # Example 4: Pack and unpack a message in Go
     #
     #      foo := &pb.Foo{...}
     #      any, err := anypb.New(foo)
@@ -75,7 +75,7 @@ module Google
     #
     #
     # JSON
-    # ====
+    #
     # The JSON representation of an `Any` value uses the regular
     # representation of the deserialized, embedded message, with an
     # additional field `@type` which contains the type URL. Example:

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: google-cloud-assured_workloads-v1beta1
 version: !ruby/object:Gem::Version
-  version: 0.8.1
+  version: 0.9.2
 platform: ruby
 authors:
 - Google LLC
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2021-11-08 00:00:00.000000000 Z
+date: 2022-06-15 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: gapic-common
@@ -178,12 +178,12 @@ files:
 - lib/google/cloud/assured_workloads/v1beta1/assured_workloads_service/operations.rb
 - lib/google/cloud/assured_workloads/v1beta1/assured_workloads_service/paths.rb
 - lib/google/cloud/assured_workloads/v1beta1/version.rb
-- lib/google/cloud/assuredworkloads/v1beta1/assuredworkloads_v1beta1_pb.rb
-- lib/google/cloud/assuredworkloads/v1beta1/assuredworkloads_v1beta1_services_pb.rb
+- lib/google/cloud/assuredworkloads/v1beta1/assuredworkloads_pb.rb
+- lib/google/cloud/assuredworkloads/v1beta1/assuredworkloads_services_pb.rb
 - proto_docs/README.md
 - proto_docs/google/api/field_behavior.rb
 - proto_docs/google/api/resource.rb
-- proto_docs/google/cloud/assuredworkloads/v1beta1/assuredworkloads_v1beta1.rb
+- proto_docs/google/cloud/assuredworkloads/v1beta1/assuredworkloads.rb
 - proto_docs/google/longrunning/operations.rb
 - proto_docs/google/protobuf/any.rb
 - proto_docs/google/protobuf/duration.rb
@@ -210,7 +210,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.2.17
+rubygems_version: 3.3.14
 signing_key: 
 specification_version: 4
 summary: API Client library for the Assured Workloads for Government V1beta1 API