google-cloud-assured_workloads-v1beta1 0.8.1 → 0.9.2
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/.yardopts +1 -1
- data/AUTHENTICATION.md +7 -25
- data/README.md +6 -1
- data/lib/google/cloud/assured_workloads/v1beta1/assured_workloads_service/client.rb +7 -6
- data/lib/google/cloud/assured_workloads/v1beta1/version.rb +1 -1
- data/lib/google/cloud/assured_workloads/v1beta1.rb +2 -0
- data/lib/google/cloud/assuredworkloads/v1beta1/{assuredworkloads_v1beta1_pb.rb → assuredworkloads_pb.rb} +32 -3
- data/lib/google/cloud/assuredworkloads/v1beta1/{assuredworkloads_v1beta1_services_pb.rb → assuredworkloads_services_pb.rb} +3 -3
- data/proto_docs/google/api/resource.rb +10 -71
- data/proto_docs/google/cloud/assuredworkloads/v1beta1/{assuredworkloads_v1beta1.rb → assuredworkloads.rb} +108 -30
- data/proto_docs/google/protobuf/any.rb +3 -3
- metadata +6 -6
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA256:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: 26bd866e2e7cb48146e80df3e958ec2dc582921c4ffb6a491cb1dea5c905cf69
|
4
|
+
data.tar.gz: a4dad89b1f43d68c9775d16e6a5e0c77690ea9cad3d5d1112e44f13860f518bd
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: c1545ac682dd2ddf1edda5349a701fc83b924c3f536c3e0c8086a358c10ff21e1e4c20967e71d079f8c5c1547a97c958b4ec239536384d9678361f20cba17544
|
7
|
+
data.tar.gz: 1262b2ad1fbf6ce57637b0f6ab3e3cf4a9f1cafd458377527b0ca3e2ae4184fb3b7a741d67fa0e798c157f32edd2a8ad98d8be7347f73dd981fe82b8296c1874
|
data/.yardopts
CHANGED
data/AUTHENTICATION.md
CHANGED
@@ -120,15 +120,6 @@ To configure your system for this, simply:
|
|
120
120
|
**NOTE:** This is _not_ recommended for running in production. The Cloud SDK
|
121
121
|
*should* only be used during development.
|
122
122
|
|
123
|
-
[gce-how-to]: https://cloud.google.com/compute/docs/authentication#using
|
124
|
-
[dev-console]: https://console.cloud.google.com/project
|
125
|
-
|
126
|
-
[enable-apis]: https://raw.githubusercontent.com/GoogleCloudPlatform/gcloud-common/master/authentication/enable-apis.png
|
127
|
-
|
128
|
-
[create-new-service-account]: https://raw.githubusercontent.com/GoogleCloudPlatform/gcloud-common/master/authentication/create-new-service-account.png
|
129
|
-
[create-new-service-account-existing-keys]: https://raw.githubusercontent.com/GoogleCloudPlatform/gcloud-common/master/authentication/create-new-service-account-existing-keys.png
|
130
|
-
[reuse-service-account]: https://raw.githubusercontent.com/GoogleCloudPlatform/gcloud-common/master/authentication/reuse-service-account.png
|
131
|
-
|
132
123
|
## Creating a Service Account
|
133
124
|
|
134
125
|
Google Cloud requires **Service Account Credentials** to
|
@@ -139,31 +130,22 @@ If you are not running this client within
|
|
139
130
|
[Google Cloud Platform environments](#google-cloud-platform-environments), you
|
140
131
|
need a Google Developers service account.
|
141
132
|
|
142
|
-
1. Visit the [Google
|
133
|
+
1. Visit the [Google Cloud Console](https://console.cloud.google.com/project).
|
143
134
|
2. Create a new project or click on an existing project.
|
144
|
-
3. Activate the
|
135
|
+
3. Activate the menu in the upper left and select **APIs & Services**. From
|
145
136
|
here, you will enable the APIs that your application requires.
|
146
137
|
|
147
|
-
![Enable the APIs that your application requires][enable-apis]
|
148
|
-
|
149
138
|
*Note: You may need to enable billing in order to use these services.*
|
150
139
|
|
151
140
|
4. Select **Credentials** from the side navigation.
|
152
141
|
|
153
|
-
|
154
|
-
|
155
|
-
![Create a new service account][create-new-service-account]
|
156
|
-
|
157
|
-
![Create a new service account With Existing Keys][create-new-service-account-existing-keys]
|
158
|
-
|
159
|
-
Find the "Add credentials" drop down and select "Service account" to be
|
160
|
-
guided through downloading a new JSON key file.
|
142
|
+
Find the "Create credentials" drop down near the top of the page, and select
|
143
|
+
"Service account" to be guided through downloading a new JSON key file.
|
161
144
|
|
162
145
|
If you want to re-use an existing service account, you can easily generate a
|
163
|
-
new key file. Just select the account you wish to re-use,
|
164
|
-
|
165
|
-
|
166
|
-
![Re-use an existing service account][reuse-service-account]
|
146
|
+
new key file. Just select the account you wish to re-use, click the pencil
|
147
|
+
tool on the right side to edit the service account, select the **Keys** tab,
|
148
|
+
and then select **Add Key**.
|
167
149
|
|
168
150
|
The key file you download will be used by this library to authenticate API
|
169
151
|
requests and should be stored in a secure location.
|
data/README.md
CHANGED
@@ -37,7 +37,7 @@ request = ::Google::Cloud::AssuredWorkloads::V1beta1::CreateWorkloadRequest.new
|
|
37
37
|
response = client.create_workload request
|
38
38
|
```
|
39
39
|
|
40
|
-
View the [Client Library Documentation](https://
|
40
|
+
View the [Client Library Documentation](https://cloud.google.com/ruby/docs/reference/google-cloud-assured_workloads-v1beta1/latest)
|
41
41
|
for class and method documentation.
|
42
42
|
|
43
43
|
See also the [Product Documentation](https://cloud.google.com/assured-workloads/)
|
@@ -69,6 +69,11 @@ module GRPC
|
|
69
69
|
end
|
70
70
|
```
|
71
71
|
|
72
|
+
|
73
|
+
## Google Cloud Samples
|
74
|
+
|
75
|
+
To browse ready to use code samples check [Google Cloud Samples](https://cloud.google.com/docs/samples).
|
76
|
+
|
72
77
|
## Supported Ruby Versions
|
73
78
|
|
74
79
|
This library is supported on Ruby 2.5+.
|
@@ -17,7 +17,7 @@
|
|
17
17
|
# Auto-generated by gapic-generator-ruby. DO NOT EDIT!
|
18
18
|
|
19
19
|
require "google/cloud/errors"
|
20
|
-
require "google/cloud/assuredworkloads/v1beta1/
|
20
|
+
require "google/cloud/assuredworkloads/v1beta1/assuredworkloads_pb"
|
21
21
|
|
22
22
|
module Google
|
23
23
|
module Cloud
|
@@ -130,7 +130,7 @@ module Google
|
|
130
130
|
# the gRPC module only when it's required.
|
131
131
|
# See https://github.com/googleapis/toolkit/issues/446
|
132
132
|
require "gapic/grpc"
|
133
|
-
require "google/cloud/assuredworkloads/v1beta1/
|
133
|
+
require "google/cloud/assuredworkloads/v1beta1/assuredworkloads_services_pb"
|
134
134
|
|
135
135
|
# Create the configuration object
|
136
136
|
@config = Configuration.new Client.configure
|
@@ -154,6 +154,7 @@ module Google
|
|
154
154
|
|
155
155
|
@operations_client = Operations.new do |config|
|
156
156
|
config.credentials = credentials
|
157
|
+
config.quota_project = @quota_project_id
|
157
158
|
config.endpoint = @config.endpoint
|
158
159
|
end
|
159
160
|
|
@@ -199,8 +200,8 @@ module Google
|
|
199
200
|
# @param workload [::Google::Cloud::AssuredWorkloads::V1beta1::Workload, ::Hash]
|
200
201
|
# Required. Assured Workload to create
|
201
202
|
# @param external_id [::String]
|
202
|
-
# Optional. A identifier associated with the workload and underlying projects
|
203
|
-
# allows for the break down of billing costs for a workload. The value
|
203
|
+
# Optional. A identifier associated with the workload and underlying projects
|
204
|
+
# which allows for the break down of billing costs for a workload. The value
|
204
205
|
# provided for the identifier will add a label to the workload and contained
|
205
206
|
# projects with the identifier as the value.
|
206
207
|
#
|
@@ -480,8 +481,8 @@ module Google
|
|
480
481
|
# the default parameter values, pass an empty Hash as a request object (see above).
|
481
482
|
#
|
482
483
|
# @param name [::String]
|
483
|
-
# Required. The resource name of the Workload to fetch. This is the
|
484
|
-
# relative path in the API, formatted as
|
484
|
+
# Required. The resource name of the Workload to fetch. This is the
|
485
|
+
# workloads's relative path in the API, formatted as
|
485
486
|
# "organizations/\\{organization_id}/locations/\\{location_id}/workloads/\\{workload_id}".
|
486
487
|
# For example,
|
487
488
|
# "organizations/123/locations/us-east1/workloads/assured-workload-1".
|
@@ -25,6 +25,8 @@ module Google
|
|
25
25
|
##
|
26
26
|
# To load this package, including all its services, and instantiate a client:
|
27
27
|
#
|
28
|
+
# @example
|
29
|
+
#
|
28
30
|
# require "google/cloud/assured_workloads/v1beta1"
|
29
31
|
# client = ::Google::Cloud::AssuredWorkloads::V1beta1::AssuredWorkloadsService::Client.new
|
30
32
|
#
|
@@ -1,5 +1,7 @@
|
|
1
1
|
# Generated by the protocol buffer compiler. DO NOT EDIT!
|
2
|
-
# source: google/cloud/assuredworkloads/v1beta1/
|
2
|
+
# source: google/cloud/assuredworkloads/v1beta1/assuredworkloads.proto
|
3
|
+
|
4
|
+
require 'google/protobuf'
|
3
5
|
|
4
6
|
require 'google/api/annotations_pb'
|
5
7
|
require 'google/api/client_pb'
|
@@ -10,10 +12,9 @@ require 'google/protobuf/duration_pb'
|
|
10
12
|
require 'google/protobuf/empty_pb'
|
11
13
|
require 'google/protobuf/field_mask_pb'
|
12
14
|
require 'google/protobuf/timestamp_pb'
|
13
|
-
require 'google/protobuf'
|
14
15
|
|
15
16
|
Google::Protobuf::DescriptorPool.generated_pool.build do
|
16
|
-
add_file("google/cloud/assuredworkloads/v1beta1/
|
17
|
+
add_file("google/cloud/assuredworkloads/v1beta1/assuredworkloads.proto", :syntax => :proto3) do
|
17
18
|
add_message "google.cloud.assuredworkloads.v1beta1.CreateWorkloadRequest" do
|
18
19
|
optional :parent, :string, 1
|
19
20
|
optional :workload, :message, 2, "google.cloud.assuredworkloads.v1beta1.Workload"
|
@@ -52,6 +53,9 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
|
|
52
53
|
optional :provisioned_resources_parent, :string, 13
|
53
54
|
optional :kms_settings, :message, 14, "google.cloud.assuredworkloads.v1beta1.Workload.KMSSettings"
|
54
55
|
repeated :resource_settings, :message, 15, "google.cloud.assuredworkloads.v1beta1.Workload.ResourceSettings"
|
56
|
+
optional :kaj_enrollment_state, :enum, 17, "google.cloud.assuredworkloads.v1beta1.Workload.KajEnrollmentState"
|
57
|
+
optional :enable_sovereign_controls, :bool, 18
|
58
|
+
optional :saa_enrollment_response, :message, 20, "google.cloud.assuredworkloads.v1beta1.Workload.SaaEnrollmentResponse"
|
55
59
|
oneof :compliance_regime_settings do
|
56
60
|
optional :il4_settings, :message, 7, "google.cloud.assuredworkloads.v1beta1.Workload.IL4Settings"
|
57
61
|
optional :cjis_settings, :message, 8, "google.cloud.assuredworkloads.v1beta1.Workload.CJISSettings"
|
@@ -91,6 +95,22 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
|
|
91
95
|
optional :resource_type, :enum, 2, "google.cloud.assuredworkloads.v1beta1.Workload.ResourceInfo.ResourceType"
|
92
96
|
optional :display_name, :string, 3
|
93
97
|
end
|
98
|
+
add_message "google.cloud.assuredworkloads.v1beta1.Workload.SaaEnrollmentResponse" do
|
99
|
+
proto3_optional :setup_status, :enum, 1, "google.cloud.assuredworkloads.v1beta1.Workload.SaaEnrollmentResponse.SetupState"
|
100
|
+
repeated :setup_errors, :enum, 2, "google.cloud.assuredworkloads.v1beta1.Workload.SaaEnrollmentResponse.SetupError"
|
101
|
+
end
|
102
|
+
add_enum "google.cloud.assuredworkloads.v1beta1.Workload.SaaEnrollmentResponse.SetupState" do
|
103
|
+
value :SETUP_STATE_UNSPECIFIED, 0
|
104
|
+
value :STATUS_PENDING, 1
|
105
|
+
value :STATUS_COMPLETE, 2
|
106
|
+
end
|
107
|
+
add_enum "google.cloud.assuredworkloads.v1beta1.Workload.SaaEnrollmentResponse.SetupError" do
|
108
|
+
value :SETUP_ERROR_UNSPECIFIED, 0
|
109
|
+
value :ERROR_INVALID_BASE_SETUP, 1
|
110
|
+
value :ERROR_MISSING_EXTERNAL_SIGNING_KEY, 2
|
111
|
+
value :ERROR_NOT_ALL_SERVICES_ENROLLED, 3
|
112
|
+
value :ERROR_SETUP_CHECK_FAILED, 4
|
113
|
+
end
|
94
114
|
add_enum "google.cloud.assuredworkloads.v1beta1.Workload.ComplianceRegime" do
|
95
115
|
value :COMPLIANCE_REGIME_UNSPECIFIED, 0
|
96
116
|
value :IL4, 1
|
@@ -103,6 +123,11 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
|
|
103
123
|
value :EU_REGIONS_AND_SUPPORT, 8
|
104
124
|
value :CA_REGIONS_AND_SUPPORT, 9
|
105
125
|
end
|
126
|
+
add_enum "google.cloud.assuredworkloads.v1beta1.Workload.KajEnrollmentState" do
|
127
|
+
value :KAJ_ENROLLMENT_STATE_UNSPECIFIED, 0
|
128
|
+
value :KAJ_ENROLLMENT_STATE_PENDING, 1
|
129
|
+
value :KAJ_ENROLLMENT_STATE_COMPLETE, 2
|
130
|
+
end
|
106
131
|
add_message "google.cloud.assuredworkloads.v1beta1.CreateWorkloadOperationMetadata" do
|
107
132
|
optional :create_time, :message, 1, "google.protobuf.Timestamp"
|
108
133
|
optional :display_name, :string, 2
|
@@ -132,7 +157,11 @@ module Google
|
|
132
157
|
Workload::FedrampHighSettings = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.assuredworkloads.v1beta1.Workload.FedrampHighSettings").msgclass
|
133
158
|
Workload::FedrampModerateSettings = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.assuredworkloads.v1beta1.Workload.FedrampModerateSettings").msgclass
|
134
159
|
Workload::ResourceSettings = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.assuredworkloads.v1beta1.Workload.ResourceSettings").msgclass
|
160
|
+
Workload::SaaEnrollmentResponse = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.assuredworkloads.v1beta1.Workload.SaaEnrollmentResponse").msgclass
|
161
|
+
Workload::SaaEnrollmentResponse::SetupState = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.assuredworkloads.v1beta1.Workload.SaaEnrollmentResponse.SetupState").enummodule
|
162
|
+
Workload::SaaEnrollmentResponse::SetupError = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.assuredworkloads.v1beta1.Workload.SaaEnrollmentResponse.SetupError").enummodule
|
135
163
|
Workload::ComplianceRegime = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.assuredworkloads.v1beta1.Workload.ComplianceRegime").enummodule
|
164
|
+
Workload::KajEnrollmentState = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.assuredworkloads.v1beta1.Workload.KajEnrollmentState").enummodule
|
136
165
|
CreateWorkloadOperationMetadata = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.assuredworkloads.v1beta1.CreateWorkloadOperationMetadata").msgclass
|
137
166
|
end
|
138
167
|
end
|
@@ -1,7 +1,7 @@
|
|
1
1
|
# Generated by the protocol buffer compiler. DO NOT EDIT!
|
2
|
-
# Source: google/cloud/assuredworkloads/v1beta1/
|
2
|
+
# Source: google/cloud/assuredworkloads/v1beta1/assuredworkloads.proto for package 'Google.Cloud.AssuredWorkloads.V1beta1'
|
3
3
|
# Original file comments:
|
4
|
-
# Copyright
|
4
|
+
# Copyright 2021 Google LLC
|
5
5
|
#
|
6
6
|
# Licensed under the Apache License, Version 2.0 (the "License");
|
7
7
|
# you may not use this file except in compliance with the License.
|
@@ -17,7 +17,7 @@
|
|
17
17
|
#
|
18
18
|
|
19
19
|
require 'grpc'
|
20
|
-
require 'google/cloud/assuredworkloads/v1beta1/
|
20
|
+
require 'google/cloud/assuredworkloads/v1beta1/assuredworkloads_pb'
|
21
21
|
|
22
22
|
module Google
|
23
23
|
module Cloud
|
@@ -33,11 +33,7 @@ module Google
|
|
33
33
|
# // For Kubernetes resources, the format is {api group}/{kind}.
|
34
34
|
# option (google.api.resource) = {
|
35
35
|
# type: "pubsub.googleapis.com/Topic"
|
36
|
-
#
|
37
|
-
# pattern: "projects/{project}/topics/{topic}"
|
38
|
-
# parent_type: "cloudresourcemanager.googleapis.com/Project"
|
39
|
-
# parent_name_extractor: "projects/{project}"
|
40
|
-
# }
|
36
|
+
# pattern: "projects/{project}/topics/{topic}"
|
41
37
|
# };
|
42
38
|
# }
|
43
39
|
#
|
@@ -45,10 +41,7 @@ module Google
|
|
45
41
|
#
|
46
42
|
# resources:
|
47
43
|
# - type: "pubsub.googleapis.com/Topic"
|
48
|
-
#
|
49
|
-
# - pattern: "projects/{project}/topics/{topic}"
|
50
|
-
# parent_type: "cloudresourcemanager.googleapis.com/Project"
|
51
|
-
# parent_name_extractor: "projects/{project}"
|
44
|
+
# pattern: "projects/{project}/topics/{topic}"
|
52
45
|
#
|
53
46
|
# Sometimes, resources have multiple patterns, typically because they can
|
54
47
|
# live under multiple parents.
|
@@ -58,26 +51,10 @@ module Google
|
|
58
51
|
# message LogEntry {
|
59
52
|
# option (google.api.resource) = {
|
60
53
|
# type: "logging.googleapis.com/LogEntry"
|
61
|
-
#
|
62
|
-
#
|
63
|
-
#
|
64
|
-
#
|
65
|
-
# }
|
66
|
-
# name_descriptor: {
|
67
|
-
# pattern: "folders/{folder}/logs/{log}"
|
68
|
-
# parent_type: "cloudresourcemanager.googleapis.com/Folder"
|
69
|
-
# parent_name_extractor: "folders/{folder}"
|
70
|
-
# }
|
71
|
-
# name_descriptor: {
|
72
|
-
# pattern: "organizations/{organization}/logs/{log}"
|
73
|
-
# parent_type: "cloudresourcemanager.googleapis.com/Organization"
|
74
|
-
# parent_name_extractor: "organizations/{organization}"
|
75
|
-
# }
|
76
|
-
# name_descriptor: {
|
77
|
-
# pattern: "billingAccounts/{billing_account}/logs/{log}"
|
78
|
-
# parent_type: "billing.googleapis.com/BillingAccount"
|
79
|
-
# parent_name_extractor: "billingAccounts/{billing_account}"
|
80
|
-
# }
|
54
|
+
# pattern: "projects/{project}/logs/{log}"
|
55
|
+
# pattern: "folders/{folder}/logs/{log}"
|
56
|
+
# pattern: "organizations/{organization}/logs/{log}"
|
57
|
+
# pattern: "billingAccounts/{billing_account}/logs/{log}"
|
81
58
|
# };
|
82
59
|
# }
|
83
60
|
#
|
@@ -85,48 +62,10 @@ module Google
|
|
85
62
|
#
|
86
63
|
# resources:
|
87
64
|
# - type: 'logging.googleapis.com/LogEntry'
|
88
|
-
#
|
89
|
-
#
|
90
|
-
#
|
91
|
-
#
|
92
|
-
# - pattern: "folders/{folder}/logs/{log}"
|
93
|
-
# parent_type: "cloudresourcemanager.googleapis.com/Folder"
|
94
|
-
# parent_name_extractor: "folders/{folder}"
|
95
|
-
# - pattern: "organizations/{organization}/logs/{log}"
|
96
|
-
# parent_type: "cloudresourcemanager.googleapis.com/Organization"
|
97
|
-
# parent_name_extractor: "organizations/{organization}"
|
98
|
-
# - pattern: "billingAccounts/{billing_account}/logs/{log}"
|
99
|
-
# parent_type: "billing.googleapis.com/BillingAccount"
|
100
|
-
# parent_name_extractor: "billingAccounts/{billing_account}"
|
101
|
-
#
|
102
|
-
# For flexible resources, the resource name doesn't contain parent names, but
|
103
|
-
# the resource itself has parents for policy evaluation.
|
104
|
-
#
|
105
|
-
# Example:
|
106
|
-
#
|
107
|
-
# message Shelf {
|
108
|
-
# option (google.api.resource) = {
|
109
|
-
# type: "library.googleapis.com/Shelf"
|
110
|
-
# name_descriptor: {
|
111
|
-
# pattern: "shelves/{shelf}"
|
112
|
-
# parent_type: "cloudresourcemanager.googleapis.com/Project"
|
113
|
-
# }
|
114
|
-
# name_descriptor: {
|
115
|
-
# pattern: "shelves/{shelf}"
|
116
|
-
# parent_type: "cloudresourcemanager.googleapis.com/Folder"
|
117
|
-
# }
|
118
|
-
# };
|
119
|
-
# }
|
120
|
-
#
|
121
|
-
# The ResourceDescriptor Yaml config will look like:
|
122
|
-
#
|
123
|
-
# resources:
|
124
|
-
# - type: 'library.googleapis.com/Shelf'
|
125
|
-
# name_descriptor:
|
126
|
-
# - pattern: "shelves/{shelf}"
|
127
|
-
# parent_type: "cloudresourcemanager.googleapis.com/Project"
|
128
|
-
# - pattern: "shelves/{shelf}"
|
129
|
-
# parent_type: "cloudresourcemanager.googleapis.com/Folder"
|
65
|
+
# pattern: "projects/{project}/logs/{log}"
|
66
|
+
# pattern: "folders/{folder}/logs/{log}"
|
67
|
+
# pattern: "organizations/{organization}/logs/{log}"
|
68
|
+
# pattern: "billingAccounts/{billing_account}/logs/{log}"
|
130
69
|
# @!attribute [rw] type
|
131
70
|
# @return [::String]
|
132
71
|
# The resource type. It must be in the format of
|
@@ -1,6 +1,6 @@
|
|
1
1
|
# frozen_string_literal: true
|
2
2
|
|
3
|
-
# Copyright
|
3
|
+
# Copyright 2022 Google LLC
|
4
4
|
#
|
5
5
|
# Licensed under the Apache License, Version 2.0 (the "License");
|
6
6
|
# you may not use this file except in compliance with the License.
|
@@ -31,8 +31,8 @@ module Google
|
|
31
31
|
# Required. Assured Workload to create
|
32
32
|
# @!attribute [rw] external_id
|
33
33
|
# @return [::String]
|
34
|
-
# Optional. A identifier associated with the workload and underlying projects
|
35
|
-
# allows for the break down of billing costs for a workload. The value
|
34
|
+
# Optional. A identifier associated with the workload and underlying projects
|
35
|
+
# which allows for the break down of billing costs for a workload. The value
|
36
36
|
# provided for the identifier will add a label to the workload and contained
|
37
37
|
# projects with the identifier as the value.
|
38
38
|
class CreateWorkloadRequest
|
@@ -73,8 +73,8 @@ module Google
|
|
73
73
|
# Request for fetching a workload.
|
74
74
|
# @!attribute [rw] name
|
75
75
|
# @return [::String]
|
76
|
-
# Required. The resource name of the Workload to fetch. This is the
|
77
|
-
# relative path in the API, formatted as
|
76
|
+
# Required. The resource name of the Workload to fetch. This is the
|
77
|
+
# workloads's relative path in the API, formatted as
|
78
78
|
# "organizations/\\{organization_id}/locations/\\{location_id}/workloads/\\{workload_id}".
|
79
79
|
# For example,
|
80
80
|
# "organizations/123/locations/us-east1/workloads/assured-workload-1".
|
@@ -158,16 +158,20 @@ module Google
|
|
158
158
|
# `billingAccounts/012345-567890-ABCDEF`.
|
159
159
|
# @!attribute [rw] il4_settings
|
160
160
|
# @return [::Google::Cloud::AssuredWorkloads::V1beta1::Workload::IL4Settings]
|
161
|
-
# Required. Input only. Immutable. Settings specific to resources needed
|
161
|
+
# Required. Input only. Immutable. Settings specific to resources needed
|
162
|
+
# for IL4.
|
162
163
|
# @!attribute [rw] cjis_settings
|
163
164
|
# @return [::Google::Cloud::AssuredWorkloads::V1beta1::Workload::CJISSettings]
|
164
|
-
# Required. Input only. Immutable. Settings specific to resources needed
|
165
|
+
# Required. Input only. Immutable. Settings specific to resources needed
|
166
|
+
# for CJIS.
|
165
167
|
# @!attribute [rw] fedramp_high_settings
|
166
168
|
# @return [::Google::Cloud::AssuredWorkloads::V1beta1::Workload::FedrampHighSettings]
|
167
|
-
# Required. Input only. Immutable. Settings specific to resources needed
|
169
|
+
# Required. Input only. Immutable. Settings specific to resources needed
|
170
|
+
# for FedRAMP High.
|
168
171
|
# @!attribute [rw] fedramp_moderate_settings
|
169
172
|
# @return [::Google::Cloud::AssuredWorkloads::V1beta1::Workload::FedrampModerateSettings]
|
170
|
-
# Required. Input only. Immutable. Settings specific to resources needed
|
173
|
+
# Required. Input only. Immutable. Settings specific to resources needed
|
174
|
+
# for FedRAMP Moderate.
|
171
175
|
# @!attribute [rw] etag
|
172
176
|
# @return [::String]
|
173
177
|
# Optional. ETag of the workload, it is calculated on the basis
|
@@ -177,22 +181,34 @@ module Google
|
|
177
181
|
# Optional. Labels applied to the workload.
|
178
182
|
# @!attribute [rw] provisioned_resources_parent
|
179
183
|
# @return [::String]
|
180
|
-
# Input only. The parent resource for the resources managed by this Assured
|
181
|
-
# be either empty or a folder resource which is a child of the
|
184
|
+
# Input only. The parent resource for the resources managed by this Assured
|
185
|
+
# Workload. May be either empty or a folder resource which is a child of the
|
182
186
|
# Workload parent. If not specified all resources are created under the
|
183
187
|
# parent organization.
|
184
188
|
# Format:
|
185
189
|
# folders/\\{folder_id}
|
186
190
|
# @!attribute [rw] kms_settings
|
187
191
|
# @return [::Google::Cloud::AssuredWorkloads::V1beta1::Workload::KMSSettings]
|
188
|
-
# Input only. Settings used to create a CMEK crypto key. When set a project
|
189
|
-
# CMEK key is provisioned. This field is mandatory for a subset of
|
190
|
-
# Regimes.
|
192
|
+
# Input only. Settings used to create a CMEK crypto key. When set a project
|
193
|
+
# with a KMS CMEK key is provisioned. This field is mandatory for a subset of
|
194
|
+
# Compliance Regimes.
|
191
195
|
# @!attribute [rw] resource_settings
|
192
196
|
# @return [::Array<::Google::Cloud::AssuredWorkloads::V1beta1::Workload::ResourceSettings>]
|
193
|
-
# Input only. Resource properties that are used to customize workload
|
194
|
-
# These properties (such as custom project id) will be used to
|
195
|
-
# workload resources if possible. This field is optional.
|
197
|
+
# Input only. Resource properties that are used to customize workload
|
198
|
+
# resources. These properties (such as custom project id) will be used to
|
199
|
+
# create workload resources if possible. This field is optional.
|
200
|
+
# @!attribute [r] kaj_enrollment_state
|
201
|
+
# @return [::Google::Cloud::AssuredWorkloads::V1beta1::Workload::KajEnrollmentState]
|
202
|
+
# Output only. Represents the KAJ enrollment state of the given workload.
|
203
|
+
# @!attribute [rw] enable_sovereign_controls
|
204
|
+
# @return [::Boolean]
|
205
|
+
# Optional. Indicates the sovereignty status of the given workload.
|
206
|
+
# Currently meant to be used by Europe/Canada customers.
|
207
|
+
# @!attribute [r] saa_enrollment_response
|
208
|
+
# @return [::Google::Cloud::AssuredWorkloads::V1beta1::Workload::SaaEnrollmentResponse]
|
209
|
+
# Output only. Represents the SAA enrollment response of the given workload.
|
210
|
+
# SAA enrollment response is queried during GetWorkload call.
|
211
|
+
# In failure cases, user friendly error message is shown in SAA details page.
|
196
212
|
class Workload
|
197
213
|
include ::Google::Protobuf::MessageExts
|
198
214
|
extend ::Google::Protobuf::MessageExts::ClassMethods
|
@@ -232,13 +248,14 @@ module Google
|
|
232
248
|
# Settings specific to the Key Management Service.
|
233
249
|
# @!attribute [rw] next_rotation_time
|
234
250
|
# @return [::Google::Protobuf::Timestamp]
|
235
|
-
# Required. Input only. Immutable. The time at which the Key Management
|
236
|
-
# new version of the crypto key and
|
251
|
+
# Required. Input only. Immutable. The time at which the Key Management
|
252
|
+
# Service will automatically create a new version of the crypto key and
|
253
|
+
# mark it as the primary.
|
237
254
|
# @!attribute [rw] rotation_period
|
238
255
|
# @return [::Google::Protobuf::Duration]
|
239
|
-
# Required. Input only. Immutable. [next_rotation_time] will be advanced by
|
240
|
-
# Management Service automatically rotates a key.
|
241
|
-
# and at most 876,000 hours.
|
256
|
+
# Required. Input only. Immutable. [next_rotation_time] will be advanced by
|
257
|
+
# this period when the Key Management Service automatically rotates a key.
|
258
|
+
# Must be at least 24 hours and at most 876,000 hours.
|
242
259
|
class KMSSettings
|
243
260
|
include ::Google::Protobuf::MessageExts
|
244
261
|
extend ::Google::Protobuf::MessageExts::ClassMethods
|
@@ -247,7 +264,8 @@ module Google
|
|
247
264
|
# Settings specific to resources needed for IL4.
|
248
265
|
# @!attribute [rw] kms_settings
|
249
266
|
# @return [::Google::Cloud::AssuredWorkloads::V1beta1::Workload::KMSSettings]
|
250
|
-
# Required. Input only. Immutable. Settings used to create a CMEK crypto
|
267
|
+
# Required. Input only. Immutable. Settings used to create a CMEK crypto
|
268
|
+
# key.
|
251
269
|
class IL4Settings
|
252
270
|
include ::Google::Protobuf::MessageExts
|
253
271
|
extend ::Google::Protobuf::MessageExts::ClassMethods
|
@@ -256,7 +274,8 @@ module Google
|
|
256
274
|
# Settings specific to resources needed for CJIS.
|
257
275
|
# @!attribute [rw] kms_settings
|
258
276
|
# @return [::Google::Cloud::AssuredWorkloads::V1beta1::Workload::KMSSettings]
|
259
|
-
# Required. Input only. Immutable. Settings used to create a CMEK crypto
|
277
|
+
# Required. Input only. Immutable. Settings used to create a CMEK crypto
|
278
|
+
# key.
|
260
279
|
class CJISSettings
|
261
280
|
include ::Google::Protobuf::MessageExts
|
262
281
|
extend ::Google::Protobuf::MessageExts::ClassMethods
|
@@ -265,7 +284,8 @@ module Google
|
|
265
284
|
# Settings specific to resources needed for FedRAMP High.
|
266
285
|
# @!attribute [rw] kms_settings
|
267
286
|
# @return [::Google::Cloud::AssuredWorkloads::V1beta1::Workload::KMSSettings]
|
268
|
-
# Required. Input only. Immutable. Settings used to create a CMEK crypto
|
287
|
+
# Required. Input only. Immutable. Settings used to create a CMEK crypto
|
288
|
+
# key.
|
269
289
|
class FedrampHighSettings
|
270
290
|
include ::Google::Protobuf::MessageExts
|
271
291
|
extend ::Google::Protobuf::MessageExts::ClassMethods
|
@@ -274,7 +294,8 @@ module Google
|
|
274
294
|
# Settings specific to resources needed for FedRAMP Moderate.
|
275
295
|
# @!attribute [rw] kms_settings
|
276
296
|
# @return [::Google::Cloud::AssuredWorkloads::V1beta1::Workload::KMSSettings]
|
277
|
-
# Required. Input only. Immutable. Settings used to create a CMEK crypto
|
297
|
+
# Required. Input only. Immutable. Settings used to create a CMEK crypto
|
298
|
+
# key.
|
278
299
|
class FedrampModerateSettings
|
279
300
|
include ::Google::Protobuf::MessageExts
|
280
301
|
extend ::Google::Protobuf::MessageExts::ClassMethods
|
@@ -301,6 +322,51 @@ module Google
|
|
301
322
|
extend ::Google::Protobuf::MessageExts::ClassMethods
|
302
323
|
end
|
303
324
|
|
325
|
+
# Signed Access Approvals (SAA) enrollment response.
|
326
|
+
# @!attribute [rw] setup_status
|
327
|
+
# @return [::Google::Cloud::AssuredWorkloads::V1beta1::Workload::SaaEnrollmentResponse::SetupState]
|
328
|
+
# Indicates SAA enrollment status of a given workload.
|
329
|
+
# @!attribute [rw] setup_errors
|
330
|
+
# @return [::Array<::Google::Cloud::AssuredWorkloads::V1beta1::Workload::SaaEnrollmentResponse::SetupError>]
|
331
|
+
# Indicates SAA enrollment setup error if any.
|
332
|
+
class SaaEnrollmentResponse
|
333
|
+
include ::Google::Protobuf::MessageExts
|
334
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
335
|
+
|
336
|
+
# Setup state of SAA enrollment.
|
337
|
+
module SetupState
|
338
|
+
# Unspecified.
|
339
|
+
SETUP_STATE_UNSPECIFIED = 0
|
340
|
+
|
341
|
+
# SAA enrollment pending.
|
342
|
+
STATUS_PENDING = 1
|
343
|
+
|
344
|
+
# SAA enrollment comopleted.
|
345
|
+
STATUS_COMPLETE = 2
|
346
|
+
end
|
347
|
+
|
348
|
+
# Setup error of SAA enrollment.
|
349
|
+
module SetupError
|
350
|
+
# Unspecified.
|
351
|
+
SETUP_ERROR_UNSPECIFIED = 0
|
352
|
+
|
353
|
+
# Invalid states for all customers, to be redirected to AA UI for
|
354
|
+
# additional details.
|
355
|
+
ERROR_INVALID_BASE_SETUP = 1
|
356
|
+
|
357
|
+
# Returned when there is not an EKM key configured.
|
358
|
+
ERROR_MISSING_EXTERNAL_SIGNING_KEY = 2
|
359
|
+
|
360
|
+
# Returned when there are no enrolled services or the customer is
|
361
|
+
# enrolled in CAA only for a subset of services.
|
362
|
+
ERROR_NOT_ALL_SERVICES_ENROLLED = 3
|
363
|
+
|
364
|
+
# Returned when exception was encountered during evaluation of other
|
365
|
+
# criteria.
|
366
|
+
ERROR_SETUP_CHECK_FAILED = 4
|
367
|
+
end
|
368
|
+
end
|
369
|
+
|
304
370
|
# @!attribute [rw] key
|
305
371
|
# @return [::String]
|
306
372
|
# @!attribute [rw] value
|
@@ -342,6 +408,18 @@ module Google
|
|
342
408
|
# Assured Workloads For Canada Regions and Support controls
|
343
409
|
CA_REGIONS_AND_SUPPORT = 9
|
344
410
|
end
|
411
|
+
|
412
|
+
# Key Access Justifications(KAJ) Enrollment State.
|
413
|
+
module KajEnrollmentState
|
414
|
+
# Default State for KAJ Enrollment.
|
415
|
+
KAJ_ENROLLMENT_STATE_UNSPECIFIED = 0
|
416
|
+
|
417
|
+
# Pending State for KAJ Enrollment.
|
418
|
+
KAJ_ENROLLMENT_STATE_PENDING = 1
|
419
|
+
|
420
|
+
# Complete State for KAJ Enrollment.
|
421
|
+
KAJ_ENROLLMENT_STATE_COMPLETE = 2
|
422
|
+
end
|
345
423
|
end
|
346
424
|
|
347
425
|
# Operation metadata to give request details of CreateWorkload.
|
@@ -356,12 +434,12 @@ module Google
|
|
356
434
|
# Optional. The parent of the workload.
|
357
435
|
# @!attribute [rw] compliance_regime
|
358
436
|
# @return [::Google::Cloud::AssuredWorkloads::V1beta1::Workload::ComplianceRegime]
|
359
|
-
# Optional. Compliance controls that should be applied to the resources
|
360
|
-
# the workload.
|
437
|
+
# Optional. Compliance controls that should be applied to the resources
|
438
|
+
# managed by the workload.
|
361
439
|
# @!attribute [rw] resource_settings
|
362
440
|
# @return [::Array<::Google::Cloud::AssuredWorkloads::V1beta1::Workload::ResourceSettings>]
|
363
|
-
# Optional. Resource properties in the input that are used for
|
364
|
-
# workload resources.
|
441
|
+
# Optional. Resource properties in the input that are used for
|
442
|
+
# creating/customizing workload resources.
|
365
443
|
class CreateWorkloadOperationMetadata
|
366
444
|
include ::Google::Protobuf::MessageExts
|
367
445
|
extend ::Google::Protobuf::MessageExts::ClassMethods
|
@@ -44,7 +44,7 @@ module Google
|
|
44
44
|
# foo = any.unpack(Foo.class);
|
45
45
|
# }
|
46
46
|
#
|
47
|
-
#
|
47
|
+
# Example 3: Pack and unpack a message in Python.
|
48
48
|
#
|
49
49
|
# foo = Foo(...)
|
50
50
|
# any = Any()
|
@@ -54,7 +54,7 @@ module Google
|
|
54
54
|
# any.Unpack(foo)
|
55
55
|
# ...
|
56
56
|
#
|
57
|
-
#
|
57
|
+
# Example 4: Pack and unpack a message in Go
|
58
58
|
#
|
59
59
|
# foo := &pb.Foo{...}
|
60
60
|
# any, err := anypb.New(foo)
|
@@ -75,7 +75,7 @@ module Google
|
|
75
75
|
#
|
76
76
|
#
|
77
77
|
# JSON
|
78
|
-
#
|
78
|
+
#
|
79
79
|
# The JSON representation of an `Any` value uses the regular
|
80
80
|
# representation of the deserialized, embedded message, with an
|
81
81
|
# additional field `@type` which contains the type URL. Example:
|
metadata
CHANGED
@@ -1,14 +1,14 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: google-cloud-assured_workloads-v1beta1
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 0.
|
4
|
+
version: 0.9.2
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- Google LLC
|
8
8
|
autorequire:
|
9
9
|
bindir: bin
|
10
10
|
cert_chain: []
|
11
|
-
date:
|
11
|
+
date: 2022-06-15 00:00:00.000000000 Z
|
12
12
|
dependencies:
|
13
13
|
- !ruby/object:Gem::Dependency
|
14
14
|
name: gapic-common
|
@@ -178,12 +178,12 @@ files:
|
|
178
178
|
- lib/google/cloud/assured_workloads/v1beta1/assured_workloads_service/operations.rb
|
179
179
|
- lib/google/cloud/assured_workloads/v1beta1/assured_workloads_service/paths.rb
|
180
180
|
- lib/google/cloud/assured_workloads/v1beta1/version.rb
|
181
|
-
- lib/google/cloud/assuredworkloads/v1beta1/
|
182
|
-
- lib/google/cloud/assuredworkloads/v1beta1/
|
181
|
+
- lib/google/cloud/assuredworkloads/v1beta1/assuredworkloads_pb.rb
|
182
|
+
- lib/google/cloud/assuredworkloads/v1beta1/assuredworkloads_services_pb.rb
|
183
183
|
- proto_docs/README.md
|
184
184
|
- proto_docs/google/api/field_behavior.rb
|
185
185
|
- proto_docs/google/api/resource.rb
|
186
|
-
- proto_docs/google/cloud/assuredworkloads/v1beta1/
|
186
|
+
- proto_docs/google/cloud/assuredworkloads/v1beta1/assuredworkloads.rb
|
187
187
|
- proto_docs/google/longrunning/operations.rb
|
188
188
|
- proto_docs/google/protobuf/any.rb
|
189
189
|
- proto_docs/google/protobuf/duration.rb
|
@@ -210,7 +210,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
|
|
210
210
|
- !ruby/object:Gem::Version
|
211
211
|
version: '0'
|
212
212
|
requirements: []
|
213
|
-
rubygems_version: 3.
|
213
|
+
rubygems_version: 3.3.14
|
214
214
|
signing_key:
|
215
215
|
specification_version: 4
|
216
216
|
summary: API Client library for the Assured Workloads for Government V1beta1 API
|