google-cloud-assured_workloads-v1beta1 0.9.2 → 0.12.0
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/README.md +5 -5
- data/lib/google/cloud/assured_workloads/v1beta1/assured_workloads_service/client.rb +218 -28
- data/lib/google/cloud/assured_workloads/v1beta1/assured_workloads_service/operations.rb +3 -0
- data/lib/google/cloud/assured_workloads/v1beta1/version.rb +1 -1
- data/lib/google/cloud/assuredworkloads/v1beta1/assuredworkloads_pb.rb +28 -4
- data/lib/google/cloud/assuredworkloads/v1beta1/assuredworkloads_service_pb.rb +24 -0
- data/lib/google/cloud/assuredworkloads/v1beta1/{assuredworkloads_services_pb.rb → assuredworkloads_service_services_pb.rb} +16 -3
- data/proto_docs/google/cloud/assuredworkloads/v1beta1/assuredworkloads.rb +120 -41
- data/proto_docs/google/protobuf/empty.rb +0 -2
- metadata +13 -12
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA256:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: e5a52c3887c6436e24ce7535b92e5d6274891ed1651721c048c7e7bc33bcf51f
|
4
|
+
data.tar.gz: 6f9960e32cfee95043570df17e6834452198965b0419a578007962afe6e71d03
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: 2e3feda38888728040afda80c6cace5946e43ccc0218434a3296516e5bded4f03c2a87b50792a197b1808244251346ae07b759533d020b08f611984109ad06ce
|
7
|
+
data.tar.gz: 9f9c2640ca0790092fadebe5a7e8a7ed154ae5536c27827287148935e3f9a5d259a3de09901704696507903ef71483a3e5bf7e62f414a14ffa4bd384e8721c92
|
data/README.md
CHANGED
@@ -76,14 +76,14 @@ To browse ready to use code samples check [Google Cloud Samples](https://cloud.g
|
|
76
76
|
|
77
77
|
## Supported Ruby Versions
|
78
78
|
|
79
|
-
This library is supported on Ruby 2.
|
79
|
+
This library is supported on Ruby 2.6+.
|
80
80
|
|
81
81
|
Google provides official support for Ruby versions that are actively supported
|
82
82
|
by Ruby Core—that is, Ruby versions that are either in normal maintenance or
|
83
|
-
in security maintenance, and not end of life.
|
84
|
-
|
85
|
-
|
86
|
-
|
83
|
+
in security maintenance, and not end of life. Older versions of Ruby _may_
|
84
|
+
still work, but are unsupported and not recommended. See
|
85
|
+
https://www.ruby-lang.org/en/downloads/branches/ for details about the Ruby
|
86
|
+
support schedule.
|
87
87
|
|
88
88
|
## Which client should I use?
|
89
89
|
|
@@ -17,7 +17,7 @@
|
|
17
17
|
# Auto-generated by gapic-generator-ruby. DO NOT EDIT!
|
18
18
|
|
19
19
|
require "google/cloud/errors"
|
20
|
-
require "google/cloud/assuredworkloads/v1beta1/
|
20
|
+
require "google/cloud/assuredworkloads/v1beta1/assuredworkloads_service_pb"
|
21
21
|
|
22
22
|
module Google
|
23
23
|
module Cloud
|
@@ -78,6 +78,11 @@ module Google
|
|
78
78
|
initial_delay: 0.2, max_delay: 30.0, multiplier: 1.3, retry_codes: [14]
|
79
79
|
}
|
80
80
|
|
81
|
+
default_config.rpcs.analyze_workload_move.timeout = 60.0
|
82
|
+
default_config.rpcs.analyze_workload_move.retry_policy = {
|
83
|
+
initial_delay: 0.2, max_delay: 30.0, multiplier: 1.3, retry_codes: [14]
|
84
|
+
}
|
85
|
+
|
81
86
|
default_config.rpcs.list_workloads.timeout = 60.0
|
82
87
|
default_config.rpcs.list_workloads.retry_policy = {
|
83
88
|
initial_delay: 0.2, max_delay: 30.0, multiplier: 1.3, retry_codes: [14]
|
@@ -130,7 +135,7 @@ module Google
|
|
130
135
|
# the gRPC module only when it's required.
|
131
136
|
# See https://github.com/googleapis/toolkit/issues/446
|
132
137
|
require "gapic/grpc"
|
133
|
-
require "google/cloud/assuredworkloads/v1beta1/
|
138
|
+
require "google/cloud/assuredworkloads/v1beta1/assuredworkloads_service_services_pb"
|
134
139
|
|
135
140
|
# Create the configuration object
|
136
141
|
@config = Configuration.new Client.configure
|
@@ -200,8 +205,8 @@ module Google
|
|
200
205
|
# @param workload [::Google::Cloud::AssuredWorkloads::V1beta1::Workload, ::Hash]
|
201
206
|
# Required. Assured Workload to create
|
202
207
|
# @param external_id [::String]
|
203
|
-
# Optional. A identifier associated with the workload and underlying projects
|
204
|
-
#
|
208
|
+
# Optional. A identifier associated with the workload and underlying projects which
|
209
|
+
# allows for the break down of billing costs for a workload. The value
|
205
210
|
# provided for the identifier will add a label to the workload and contained
|
206
211
|
# projects with the identifier as the value.
|
207
212
|
#
|
@@ -300,7 +305,7 @@ module Google
|
|
300
305
|
#
|
301
306
|
# @param workload [::Google::Cloud::AssuredWorkloads::V1beta1::Workload, ::Hash]
|
302
307
|
# Required. The workload to update.
|
303
|
-
# The workload
|
308
|
+
# The workload's `name` field is used to identify the workload to be updated.
|
304
309
|
# Format:
|
305
310
|
# organizations/\\{org_id}/locations/\\{location_id}/workloads/\\{workload_id}
|
306
311
|
# @param update_mask [::Google::Protobuf::FieldMask, ::Hash]
|
@@ -346,23 +351,111 @@ module Google
|
|
346
351
|
gapic_version: ::Google::Cloud::AssuredWorkloads::V1beta1::VERSION
|
347
352
|
metadata[:"x-goog-user-project"] = @quota_project_id if @quota_project_id
|
348
353
|
|
354
|
+
options.apply_defaults timeout: @config.rpcs.update_workload.timeout,
|
355
|
+
metadata: metadata,
|
356
|
+
retry_policy: @config.rpcs.update_workload.retry_policy
|
357
|
+
|
358
|
+
options.apply_defaults timeout: @config.timeout,
|
359
|
+
metadata: @config.metadata,
|
360
|
+
retry_policy: @config.retry_policy
|
361
|
+
|
362
|
+
@assured_workloads_service_stub.call_rpc :update_workload, request, options: options do |response, operation|
|
363
|
+
yield response, operation if block_given?
|
364
|
+
return response
|
365
|
+
end
|
366
|
+
rescue ::GRPC::BadStatus => e
|
367
|
+
raise ::Google::Cloud::Error.from_error(e)
|
368
|
+
end
|
369
|
+
|
370
|
+
##
|
371
|
+
# Restrict the list of resources allowed in the Workload environment.
|
372
|
+
# The current list of allowed products can be found at
|
373
|
+
# https://cloud.google.com/assured-workloads/docs/supported-products
|
374
|
+
# In addition to assuredworkloads.workload.update permission, the user should
|
375
|
+
# also have orgpolicy.policy.set permission on the folder resource
|
376
|
+
# to use this functionality.
|
377
|
+
#
|
378
|
+
# @overload restrict_allowed_resources(request, options = nil)
|
379
|
+
# Pass arguments to `restrict_allowed_resources` via a request object, either of type
|
380
|
+
# {::Google::Cloud::AssuredWorkloads::V1beta1::RestrictAllowedResourcesRequest} or an equivalent Hash.
|
381
|
+
#
|
382
|
+
# @param request [::Google::Cloud::AssuredWorkloads::V1beta1::RestrictAllowedResourcesRequest, ::Hash]
|
383
|
+
# A request object representing the call parameters. Required. To specify no
|
384
|
+
# parameters, or to keep all the default parameter values, pass an empty Hash.
|
385
|
+
# @param options [::Gapic::CallOptions, ::Hash]
|
386
|
+
# Overrides the default settings for this call, e.g, timeout, retries, etc. Optional.
|
387
|
+
#
|
388
|
+
# @overload restrict_allowed_resources(name: nil, restriction_type: nil)
|
389
|
+
# Pass arguments to `restrict_allowed_resources` via keyword arguments. Note that at
|
390
|
+
# least one keyword argument is required. To specify no parameters, or to keep all
|
391
|
+
# the default parameter values, pass an empty Hash as a request object (see above).
|
392
|
+
#
|
393
|
+
# @param name [::String]
|
394
|
+
# Required. The resource name of the Workload. This is the workloads's
|
395
|
+
# relative path in the API, formatted as
|
396
|
+
# "organizations/\\{organization_id}/locations/\\{location_id}/workloads/\\{workload_id}".
|
397
|
+
# For example,
|
398
|
+
# "organizations/123/locations/us-east1/workloads/assured-workload-1".
|
399
|
+
# @param restriction_type [::Google::Cloud::AssuredWorkloads::V1beta1::RestrictAllowedResourcesRequest::RestrictionType]
|
400
|
+
# Required. The type of restriction for using gcp products in the Workload environment.
|
401
|
+
#
|
402
|
+
# @yield [response, operation] Access the result along with the RPC operation
|
403
|
+
# @yieldparam response [::Google::Cloud::AssuredWorkloads::V1beta1::RestrictAllowedResourcesResponse]
|
404
|
+
# @yieldparam operation [::GRPC::ActiveCall::Operation]
|
405
|
+
#
|
406
|
+
# @return [::Google::Cloud::AssuredWorkloads::V1beta1::RestrictAllowedResourcesResponse]
|
407
|
+
#
|
408
|
+
# @raise [::Google::Cloud::Error] if the RPC is aborted.
|
409
|
+
#
|
410
|
+
# @example Basic example
|
411
|
+
# require "google/cloud/assured_workloads/v1beta1"
|
412
|
+
#
|
413
|
+
# # Create a client object. The client can be reused for multiple calls.
|
414
|
+
# client = Google::Cloud::AssuredWorkloads::V1beta1::AssuredWorkloadsService::Client.new
|
415
|
+
#
|
416
|
+
# # Create a request. To set request fields, pass in keyword arguments.
|
417
|
+
# request = Google::Cloud::AssuredWorkloads::V1beta1::RestrictAllowedResourcesRequest.new
|
418
|
+
#
|
419
|
+
# # Call the restrict_allowed_resources method.
|
420
|
+
# result = client.restrict_allowed_resources request
|
421
|
+
#
|
422
|
+
# # The returned object is of type Google::Cloud::AssuredWorkloads::V1beta1::RestrictAllowedResourcesResponse.
|
423
|
+
# p result
|
424
|
+
#
|
425
|
+
def restrict_allowed_resources request, options = nil
|
426
|
+
raise ::ArgumentError, "request must be provided" if request.nil?
|
427
|
+
|
428
|
+
request = ::Gapic::Protobuf.coerce request, to: ::Google::Cloud::AssuredWorkloads::V1beta1::RestrictAllowedResourcesRequest
|
429
|
+
|
430
|
+
# Converts hash and nil to an options object
|
431
|
+
options = ::Gapic::CallOptions.new(**options.to_h) if options.respond_to? :to_h
|
432
|
+
|
433
|
+
# Customize the options with defaults
|
434
|
+
metadata = @config.rpcs.restrict_allowed_resources.metadata.to_h
|
435
|
+
|
436
|
+
# Set x-goog-api-client and x-goog-user-project headers
|
437
|
+
metadata[:"x-goog-api-client"] ||= ::Gapic::Headers.x_goog_api_client \
|
438
|
+
lib_name: @config.lib_name, lib_version: @config.lib_version,
|
439
|
+
gapic_version: ::Google::Cloud::AssuredWorkloads::V1beta1::VERSION
|
440
|
+
metadata[:"x-goog-user-project"] = @quota_project_id if @quota_project_id
|
441
|
+
|
349
442
|
header_params = {}
|
350
|
-
if request.
|
351
|
-
header_params["
|
443
|
+
if request.name
|
444
|
+
header_params["name"] = request.name
|
352
445
|
end
|
353
446
|
|
354
447
|
request_params_header = header_params.map { |k, v| "#{k}=#{v}" }.join("&")
|
355
448
|
metadata[:"x-goog-request-params"] ||= request_params_header
|
356
449
|
|
357
|
-
options.apply_defaults timeout: @config.rpcs.
|
450
|
+
options.apply_defaults timeout: @config.rpcs.restrict_allowed_resources.timeout,
|
358
451
|
metadata: metadata,
|
359
|
-
retry_policy: @config.rpcs.
|
452
|
+
retry_policy: @config.rpcs.restrict_allowed_resources.retry_policy
|
360
453
|
|
361
454
|
options.apply_defaults timeout: @config.timeout,
|
362
455
|
metadata: @config.metadata,
|
363
456
|
retry_policy: @config.retry_policy
|
364
457
|
|
365
|
-
@assured_workloads_service_stub.call_rpc :
|
458
|
+
@assured_workloads_service_stub.call_rpc :restrict_allowed_resources, request, options: options do |response, operation|
|
366
459
|
yield response, operation if block_given?
|
367
460
|
return response
|
368
461
|
end
|
@@ -374,6 +467,9 @@ module Google
|
|
374
467
|
# Deletes the workload. Make sure that workload's direct children are already
|
375
468
|
# in a deleted state, otherwise the request will fail with a
|
376
469
|
# FAILED_PRECONDITION error.
|
470
|
+
# In addition to assuredworkloads.workload.delete permission, the user should
|
471
|
+
# also have orgpolicy.policy.set permission on the deleted folder to remove
|
472
|
+
# Assured Workloads OrgPolicies.
|
377
473
|
#
|
378
474
|
# @overload delete_workload(request, options = nil)
|
379
475
|
# Pass arguments to `delete_workload` via a request object, either of type
|
@@ -481,8 +577,8 @@ module Google
|
|
481
577
|
# the default parameter values, pass an empty Hash as a request object (see above).
|
482
578
|
#
|
483
579
|
# @param name [::String]
|
484
|
-
# Required. The resource name of the Workload to fetch. This is the
|
485
|
-
#
|
580
|
+
# Required. The resource name of the Workload to fetch. This is the workloads's
|
581
|
+
# relative path in the API, formatted as
|
486
582
|
# "organizations/\\{organization_id}/locations/\\{location_id}/workloads/\\{workload_id}".
|
487
583
|
# For example,
|
488
584
|
# "organizations/123/locations/us-east1/workloads/assured-workload-1".
|
@@ -527,14 +623,6 @@ module Google
|
|
527
623
|
gapic_version: ::Google::Cloud::AssuredWorkloads::V1beta1::VERSION
|
528
624
|
metadata[:"x-goog-user-project"] = @quota_project_id if @quota_project_id
|
529
625
|
|
530
|
-
header_params = {}
|
531
|
-
if request.name
|
532
|
-
header_params["name"] = request.name
|
533
|
-
end
|
534
|
-
|
535
|
-
request_params_header = header_params.map { |k, v| "#{k}=#{v}" }.join("&")
|
536
|
-
metadata[:"x-goog-request-params"] ||= request_params_header
|
537
|
-
|
538
626
|
options.apply_defaults timeout: @config.rpcs.get_workload.timeout,
|
539
627
|
metadata: metadata,
|
540
628
|
retry_policy: @config.rpcs.get_workload.retry_policy
|
@@ -551,6 +639,102 @@ module Google
|
|
551
639
|
raise ::Google::Cloud::Error.from_error(e)
|
552
640
|
end
|
553
641
|
|
642
|
+
##
|
643
|
+
# A request to analyze a hypothetical move of a source project or
|
644
|
+
# project-based workload to a target (destination) folder-based workload.
|
645
|
+
#
|
646
|
+
# @overload analyze_workload_move(request, options = nil)
|
647
|
+
# Pass arguments to `analyze_workload_move` via a request object, either of type
|
648
|
+
# {::Google::Cloud::AssuredWorkloads::V1beta1::AnalyzeWorkloadMoveRequest} or an equivalent Hash.
|
649
|
+
#
|
650
|
+
# @param request [::Google::Cloud::AssuredWorkloads::V1beta1::AnalyzeWorkloadMoveRequest, ::Hash]
|
651
|
+
# A request object representing the call parameters. Required. To specify no
|
652
|
+
# parameters, or to keep all the default parameter values, pass an empty Hash.
|
653
|
+
# @param options [::Gapic::CallOptions, ::Hash]
|
654
|
+
# Overrides the default settings for this call, e.g, timeout, retries, etc. Optional.
|
655
|
+
#
|
656
|
+
# @overload analyze_workload_move(source: nil, project: nil, target: nil)
|
657
|
+
# Pass arguments to `analyze_workload_move` via keyword arguments. Note that at
|
658
|
+
# least one keyword argument is required. To specify no parameters, or to keep all
|
659
|
+
# the default parameter values, pass an empty Hash as a request object (see above).
|
660
|
+
#
|
661
|
+
# @param source [::String]
|
662
|
+
# The source type is a project-based workload. Specify the workloads's
|
663
|
+
# relative resource name, formatted as:
|
664
|
+
# "organizations/\\{ORGANIZATION_ID}/locations/\\{LOCATION_ID}/workloads/\\{WORKLOAD_ID}"
|
665
|
+
# For example:
|
666
|
+
# "organizations/123/locations/us-east1/workloads/assured-workload-1"
|
667
|
+
# @param project [::String]
|
668
|
+
# The source type is a project. Specify the project's relative resource
|
669
|
+
# name, formatted as either a project number or a project ID:
|
670
|
+
# "projects/\\{PROJECT_NUMBER}" or "projects/\\{PROJECT_ID}"
|
671
|
+
# For example:
|
672
|
+
# "projects/951040570662" when specifying a project number, or
|
673
|
+
# "projects/my-project-123" when specifying a project ID.
|
674
|
+
# @param target [::String]
|
675
|
+
# Required. The resource ID of the folder-based destination workload. This workload is
|
676
|
+
# where the source project will hypothetically be moved to. Specify the
|
677
|
+
# workload's relative resource name, formatted as:
|
678
|
+
# "organizations/\\{ORGANIZATION_ID}/locations/\\{LOCATION_ID}/workloads/\\{WORKLOAD_ID}"
|
679
|
+
# For example:
|
680
|
+
# "organizations/123/locations/us-east1/workloads/assured-workload-2"
|
681
|
+
#
|
682
|
+
# @yield [response, operation] Access the result along with the RPC operation
|
683
|
+
# @yieldparam response [::Google::Cloud::AssuredWorkloads::V1beta1::AnalyzeWorkloadMoveResponse]
|
684
|
+
# @yieldparam operation [::GRPC::ActiveCall::Operation]
|
685
|
+
#
|
686
|
+
# @return [::Google::Cloud::AssuredWorkloads::V1beta1::AnalyzeWorkloadMoveResponse]
|
687
|
+
#
|
688
|
+
# @raise [::Google::Cloud::Error] if the RPC is aborted.
|
689
|
+
#
|
690
|
+
# @example Basic example
|
691
|
+
# require "google/cloud/assured_workloads/v1beta1"
|
692
|
+
#
|
693
|
+
# # Create a client object. The client can be reused for multiple calls.
|
694
|
+
# client = Google::Cloud::AssuredWorkloads::V1beta1::AssuredWorkloadsService::Client.new
|
695
|
+
#
|
696
|
+
# # Create a request. To set request fields, pass in keyword arguments.
|
697
|
+
# request = Google::Cloud::AssuredWorkloads::V1beta1::AnalyzeWorkloadMoveRequest.new
|
698
|
+
#
|
699
|
+
# # Call the analyze_workload_move method.
|
700
|
+
# result = client.analyze_workload_move request
|
701
|
+
#
|
702
|
+
# # The returned object is of type Google::Cloud::AssuredWorkloads::V1beta1::AnalyzeWorkloadMoveResponse.
|
703
|
+
# p result
|
704
|
+
#
|
705
|
+
def analyze_workload_move request, options = nil
|
706
|
+
raise ::ArgumentError, "request must be provided" if request.nil?
|
707
|
+
|
708
|
+
request = ::Gapic::Protobuf.coerce request, to: ::Google::Cloud::AssuredWorkloads::V1beta1::AnalyzeWorkloadMoveRequest
|
709
|
+
|
710
|
+
# Converts hash and nil to an options object
|
711
|
+
options = ::Gapic::CallOptions.new(**options.to_h) if options.respond_to? :to_h
|
712
|
+
|
713
|
+
# Customize the options with defaults
|
714
|
+
metadata = @config.rpcs.analyze_workload_move.metadata.to_h
|
715
|
+
|
716
|
+
# Set x-goog-api-client and x-goog-user-project headers
|
717
|
+
metadata[:"x-goog-api-client"] ||= ::Gapic::Headers.x_goog_api_client \
|
718
|
+
lib_name: @config.lib_name, lib_version: @config.lib_version,
|
719
|
+
gapic_version: ::Google::Cloud::AssuredWorkloads::V1beta1::VERSION
|
720
|
+
metadata[:"x-goog-user-project"] = @quota_project_id if @quota_project_id
|
721
|
+
|
722
|
+
options.apply_defaults timeout: @config.rpcs.analyze_workload_move.timeout,
|
723
|
+
metadata: metadata,
|
724
|
+
retry_policy: @config.rpcs.analyze_workload_move.retry_policy
|
725
|
+
|
726
|
+
options.apply_defaults timeout: @config.timeout,
|
727
|
+
metadata: @config.metadata,
|
728
|
+
retry_policy: @config.retry_policy
|
729
|
+
|
730
|
+
@assured_workloads_service_stub.call_rpc :analyze_workload_move, request, options: options do |response, operation|
|
731
|
+
yield response, operation if block_given?
|
732
|
+
return response
|
733
|
+
end
|
734
|
+
rescue ::GRPC::BadStatus => e
|
735
|
+
raise ::Google::Cloud::Error.from_error(e)
|
736
|
+
end
|
737
|
+
|
554
738
|
##
|
555
739
|
# Lists Assured Workloads under a CRM Node.
|
556
740
|
#
|
@@ -628,14 +812,6 @@ module Google
|
|
628
812
|
gapic_version: ::Google::Cloud::AssuredWorkloads::V1beta1::VERSION
|
629
813
|
metadata[:"x-goog-user-project"] = @quota_project_id if @quota_project_id
|
630
814
|
|
631
|
-
header_params = {}
|
632
|
-
if request.parent
|
633
|
-
header_params["parent"] = request.parent
|
634
|
-
end
|
635
|
-
|
636
|
-
request_params_header = header_params.map { |k, v| "#{k}=#{v}" }.join("&")
|
637
|
-
metadata[:"x-goog-request-params"] ||= request_params_header
|
638
|
-
|
639
815
|
options.apply_defaults timeout: @config.rpcs.list_workloads.timeout,
|
640
816
|
metadata: metadata,
|
641
817
|
retry_policy: @config.rpcs.list_workloads.retry_policy
|
@@ -799,6 +975,11 @@ module Google
|
|
799
975
|
#
|
800
976
|
attr_reader :update_workload
|
801
977
|
##
|
978
|
+
# RPC-specific configuration for `restrict_allowed_resources`
|
979
|
+
# @return [::Gapic::Config::Method]
|
980
|
+
#
|
981
|
+
attr_reader :restrict_allowed_resources
|
982
|
+
##
|
802
983
|
# RPC-specific configuration for `delete_workload`
|
803
984
|
# @return [::Gapic::Config::Method]
|
804
985
|
#
|
@@ -809,6 +990,11 @@ module Google
|
|
809
990
|
#
|
810
991
|
attr_reader :get_workload
|
811
992
|
##
|
993
|
+
# RPC-specific configuration for `analyze_workload_move`
|
994
|
+
# @return [::Gapic::Config::Method]
|
995
|
+
#
|
996
|
+
attr_reader :analyze_workload_move
|
997
|
+
##
|
812
998
|
# RPC-specific configuration for `list_workloads`
|
813
999
|
# @return [::Gapic::Config::Method]
|
814
1000
|
#
|
@@ -820,10 +1006,14 @@ module Google
|
|
820
1006
|
@create_workload = ::Gapic::Config::Method.new create_workload_config
|
821
1007
|
update_workload_config = parent_rpcs.update_workload if parent_rpcs.respond_to? :update_workload
|
822
1008
|
@update_workload = ::Gapic::Config::Method.new update_workload_config
|
1009
|
+
restrict_allowed_resources_config = parent_rpcs.restrict_allowed_resources if parent_rpcs.respond_to? :restrict_allowed_resources
|
1010
|
+
@restrict_allowed_resources = ::Gapic::Config::Method.new restrict_allowed_resources_config
|
823
1011
|
delete_workload_config = parent_rpcs.delete_workload if parent_rpcs.respond_to? :delete_workload
|
824
1012
|
@delete_workload = ::Gapic::Config::Method.new delete_workload_config
|
825
1013
|
get_workload_config = parent_rpcs.get_workload if parent_rpcs.respond_to? :get_workload
|
826
1014
|
@get_workload = ::Gapic::Config::Method.new get_workload_config
|
1015
|
+
analyze_workload_move_config = parent_rpcs.analyze_workload_move if parent_rpcs.respond_to? :analyze_workload_move
|
1016
|
+
@analyze_workload_move = ::Gapic::Config::Method.new analyze_workload_move_config
|
827
1017
|
list_workloads_config = parent_rpcs.list_workloads if parent_rpcs.respond_to? :list_workloads
|
828
1018
|
@list_workloads = ::Gapic::Config::Method.new list_workloads_config
|
829
1019
|
|
@@ -3,13 +3,9 @@
|
|
3
3
|
|
4
4
|
require 'google/protobuf'
|
5
5
|
|
6
|
-
require 'google/api/annotations_pb'
|
7
|
-
require 'google/api/client_pb'
|
8
6
|
require 'google/api/field_behavior_pb'
|
9
7
|
require 'google/api/resource_pb'
|
10
|
-
require 'google/longrunning/operations_pb'
|
11
8
|
require 'google/protobuf/duration_pb'
|
12
|
-
require 'google/protobuf/empty_pb'
|
13
9
|
require 'google/protobuf/field_mask_pb'
|
14
10
|
require 'google/protobuf/timestamp_pb'
|
15
11
|
|
@@ -24,6 +20,17 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
|
|
24
20
|
optional :workload, :message, 1, "google.cloud.assuredworkloads.v1beta1.Workload"
|
25
21
|
optional :update_mask, :message, 2, "google.protobuf.FieldMask"
|
26
22
|
end
|
23
|
+
add_message "google.cloud.assuredworkloads.v1beta1.RestrictAllowedResourcesRequest" do
|
24
|
+
optional :name, :string, 1
|
25
|
+
optional :restriction_type, :enum, 2, "google.cloud.assuredworkloads.v1beta1.RestrictAllowedResourcesRequest.RestrictionType"
|
26
|
+
end
|
27
|
+
add_enum "google.cloud.assuredworkloads.v1beta1.RestrictAllowedResourcesRequest.RestrictionType" do
|
28
|
+
value :RESTRICTION_TYPE_UNSPECIFIED, 0
|
29
|
+
value :ALLOW_ALL_GCP_RESOURCES, 1
|
30
|
+
value :ALLOW_COMPLIANT_RESOURCES, 2
|
31
|
+
end
|
32
|
+
add_message "google.cloud.assuredworkloads.v1beta1.RestrictAllowedResourcesResponse" do
|
33
|
+
end
|
27
34
|
add_message "google.cloud.assuredworkloads.v1beta1.DeleteWorkloadRequest" do
|
28
35
|
optional :name, :string, 1
|
29
36
|
optional :etag, :string, 2
|
@@ -31,6 +38,16 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
|
|
31
38
|
add_message "google.cloud.assuredworkloads.v1beta1.GetWorkloadRequest" do
|
32
39
|
optional :name, :string, 1
|
33
40
|
end
|
41
|
+
add_message "google.cloud.assuredworkloads.v1beta1.AnalyzeWorkloadMoveRequest" do
|
42
|
+
optional :target, :string, 2
|
43
|
+
oneof :projectOrWorkloadResource do
|
44
|
+
optional :source, :string, 1
|
45
|
+
optional :project, :string, 3
|
46
|
+
end
|
47
|
+
end
|
48
|
+
add_message "google.cloud.assuredworkloads.v1beta1.AnalyzeWorkloadMoveResponse" do
|
49
|
+
repeated :blockers, :string, 1
|
50
|
+
end
|
34
51
|
add_message "google.cloud.assuredworkloads.v1beta1.ListWorkloadsRequest" do
|
35
52
|
optional :parent, :string, 1
|
36
53
|
optional :page_size, :int32, 2
|
@@ -122,6 +139,8 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
|
|
122
139
|
value :HITRUST, 7
|
123
140
|
value :EU_REGIONS_AND_SUPPORT, 8
|
124
141
|
value :CA_REGIONS_AND_SUPPORT, 9
|
142
|
+
value :ITAR, 10
|
143
|
+
value :AU_REGIONS_AND_US_SUPPORT, 11
|
125
144
|
end
|
126
145
|
add_enum "google.cloud.assuredworkloads.v1beta1.Workload.KajEnrollmentState" do
|
127
146
|
value :KAJ_ENROLLMENT_STATE_UNSPECIFIED, 0
|
@@ -144,8 +163,13 @@ module Google
|
|
144
163
|
module V1beta1
|
145
164
|
CreateWorkloadRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.assuredworkloads.v1beta1.CreateWorkloadRequest").msgclass
|
146
165
|
UpdateWorkloadRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.assuredworkloads.v1beta1.UpdateWorkloadRequest").msgclass
|
166
|
+
RestrictAllowedResourcesRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.assuredworkloads.v1beta1.RestrictAllowedResourcesRequest").msgclass
|
167
|
+
RestrictAllowedResourcesRequest::RestrictionType = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.assuredworkloads.v1beta1.RestrictAllowedResourcesRequest.RestrictionType").enummodule
|
168
|
+
RestrictAllowedResourcesResponse = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.assuredworkloads.v1beta1.RestrictAllowedResourcesResponse").msgclass
|
147
169
|
DeleteWorkloadRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.assuredworkloads.v1beta1.DeleteWorkloadRequest").msgclass
|
148
170
|
GetWorkloadRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.assuredworkloads.v1beta1.GetWorkloadRequest").msgclass
|
171
|
+
AnalyzeWorkloadMoveRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.assuredworkloads.v1beta1.AnalyzeWorkloadMoveRequest").msgclass
|
172
|
+
AnalyzeWorkloadMoveResponse = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.assuredworkloads.v1beta1.AnalyzeWorkloadMoveResponse").msgclass
|
149
173
|
ListWorkloadsRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.assuredworkloads.v1beta1.ListWorkloadsRequest").msgclass
|
150
174
|
ListWorkloadsResponse = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.assuredworkloads.v1beta1.ListWorkloadsResponse").msgclass
|
151
175
|
Workload = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.assuredworkloads.v1beta1.Workload").msgclass
|
@@ -0,0 +1,24 @@
|
|
1
|
+
# Generated by the protocol buffer compiler. DO NOT EDIT!
|
2
|
+
# source: google/cloud/assuredworkloads/v1beta1/assuredworkloads_service.proto
|
3
|
+
|
4
|
+
require 'google/protobuf'
|
5
|
+
|
6
|
+
require 'google/api/annotations_pb'
|
7
|
+
require 'google/api/client_pb'
|
8
|
+
require 'google/cloud/assuredworkloads/v1beta1/assuredworkloads_pb'
|
9
|
+
require 'google/longrunning/operations_pb'
|
10
|
+
require 'google/protobuf/empty_pb'
|
11
|
+
|
12
|
+
Google::Protobuf::DescriptorPool.generated_pool.build do
|
13
|
+
add_file("google/cloud/assuredworkloads/v1beta1/assuredworkloads_service.proto", :syntax => :proto3) do
|
14
|
+
end
|
15
|
+
end
|
16
|
+
|
17
|
+
module Google
|
18
|
+
module Cloud
|
19
|
+
module AssuredWorkloads
|
20
|
+
module V1beta1
|
21
|
+
end
|
22
|
+
end
|
23
|
+
end
|
24
|
+
end
|
@@ -1,7 +1,7 @@
|
|
1
1
|
# Generated by the protocol buffer compiler. DO NOT EDIT!
|
2
|
-
# Source: google/cloud/assuredworkloads/v1beta1/
|
2
|
+
# Source: google/cloud/assuredworkloads/v1beta1/assuredworkloads_service.proto for package 'Google.Cloud.AssuredWorkloads.V1beta1'
|
3
3
|
# Original file comments:
|
4
|
-
# Copyright
|
4
|
+
# Copyright 2022 Google LLC
|
5
5
|
#
|
6
6
|
# Licensed under the Apache License, Version 2.0 (the "License");
|
7
7
|
# you may not use this file except in compliance with the License.
|
@@ -17,7 +17,7 @@
|
|
17
17
|
#
|
18
18
|
|
19
19
|
require 'grpc'
|
20
|
-
require 'google/cloud/assuredworkloads/v1beta1/
|
20
|
+
require 'google/cloud/assuredworkloads/v1beta1/assuredworkloads_service_pb'
|
21
21
|
|
22
22
|
module Google
|
23
23
|
module Cloud
|
@@ -40,12 +40,25 @@ module Google
|
|
40
40
|
# For force updates don't set etag field in the Workload.
|
41
41
|
# Only one update operation per workload can be in progress.
|
42
42
|
rpc :UpdateWorkload, ::Google::Cloud::AssuredWorkloads::V1beta1::UpdateWorkloadRequest, ::Google::Cloud::AssuredWorkloads::V1beta1::Workload
|
43
|
+
# Restrict the list of resources allowed in the Workload environment.
|
44
|
+
# The current list of allowed products can be found at
|
45
|
+
# https://cloud.google.com/assured-workloads/docs/supported-products
|
46
|
+
# In addition to assuredworkloads.workload.update permission, the user should
|
47
|
+
# also have orgpolicy.policy.set permission on the folder resource
|
48
|
+
# to use this functionality.
|
49
|
+
rpc :RestrictAllowedResources, ::Google::Cloud::AssuredWorkloads::V1beta1::RestrictAllowedResourcesRequest, ::Google::Cloud::AssuredWorkloads::V1beta1::RestrictAllowedResourcesResponse
|
43
50
|
# Deletes the workload. Make sure that workload's direct children are already
|
44
51
|
# in a deleted state, otherwise the request will fail with a
|
45
52
|
# FAILED_PRECONDITION error.
|
53
|
+
# In addition to assuredworkloads.workload.delete permission, the user should
|
54
|
+
# also have orgpolicy.policy.set permission on the deleted folder to remove
|
55
|
+
# Assured Workloads OrgPolicies.
|
46
56
|
rpc :DeleteWorkload, ::Google::Cloud::AssuredWorkloads::V1beta1::DeleteWorkloadRequest, ::Google::Protobuf::Empty
|
47
57
|
# Gets Assured Workload associated with a CRM Node
|
48
58
|
rpc :GetWorkload, ::Google::Cloud::AssuredWorkloads::V1beta1::GetWorkloadRequest, ::Google::Cloud::AssuredWorkloads::V1beta1::Workload
|
59
|
+
# A request to analyze a hypothetical move of a source project or
|
60
|
+
# project-based workload to a target (destination) folder-based workload.
|
61
|
+
rpc :AnalyzeWorkloadMove, ::Google::Cloud::AssuredWorkloads::V1beta1::AnalyzeWorkloadMoveRequest, ::Google::Cloud::AssuredWorkloads::V1beta1::AnalyzeWorkloadMoveResponse
|
49
62
|
# Lists Assured Workloads under a CRM Node.
|
50
63
|
rpc :ListWorkloads, ::Google::Cloud::AssuredWorkloads::V1beta1::ListWorkloadsRequest, ::Google::Cloud::AssuredWorkloads::V1beta1::ListWorkloadsResponse
|
51
64
|
end
|
@@ -31,8 +31,8 @@ module Google
|
|
31
31
|
# Required. Assured Workload to create
|
32
32
|
# @!attribute [rw] external_id
|
33
33
|
# @return [::String]
|
34
|
-
# Optional. A identifier associated with the workload and underlying projects
|
35
|
-
#
|
34
|
+
# Optional. A identifier associated with the workload and underlying projects which
|
35
|
+
# allows for the break down of billing costs for a workload. The value
|
36
36
|
# provided for the identifier will add a label to the workload and contained
|
37
37
|
# projects with the identifier as the value.
|
38
38
|
class CreateWorkloadRequest
|
@@ -44,7 +44,7 @@ module Google
|
|
44
44
|
# @!attribute [rw] workload
|
45
45
|
# @return [::Google::Cloud::AssuredWorkloads::V1beta1::Workload]
|
46
46
|
# Required. The workload to update.
|
47
|
-
# The workload
|
47
|
+
# The workload's `name` field is used to identify the workload to be updated.
|
48
48
|
# Format:
|
49
49
|
# organizations/\\{org_id}/locations/\\{location_id}/workloads/\\{workload_id}
|
50
50
|
# @!attribute [rw] update_mask
|
@@ -55,6 +55,44 @@ module Google
|
|
55
55
|
extend ::Google::Protobuf::MessageExts::ClassMethods
|
56
56
|
end
|
57
57
|
|
58
|
+
# Request for restricting list of available resources in Workload environment.
|
59
|
+
# @!attribute [rw] name
|
60
|
+
# @return [::String]
|
61
|
+
# Required. The resource name of the Workload. This is the workloads's
|
62
|
+
# relative path in the API, formatted as
|
63
|
+
# "organizations/\\{organization_id}/locations/\\{location_id}/workloads/\\{workload_id}".
|
64
|
+
# For example,
|
65
|
+
# "organizations/123/locations/us-east1/workloads/assured-workload-1".
|
66
|
+
# @!attribute [rw] restriction_type
|
67
|
+
# @return [::Google::Cloud::AssuredWorkloads::V1beta1::RestrictAllowedResourcesRequest::RestrictionType]
|
68
|
+
# Required. The type of restriction for using gcp products in the Workload environment.
|
69
|
+
class RestrictAllowedResourcesRequest
|
70
|
+
include ::Google::Protobuf::MessageExts
|
71
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
72
|
+
|
73
|
+
# The type of restriction.
|
74
|
+
module RestrictionType
|
75
|
+
# Unknown restriction type.
|
76
|
+
RESTRICTION_TYPE_UNSPECIFIED = 0
|
77
|
+
|
78
|
+
# Allow the use all of all gcp products, irrespective of the compliance
|
79
|
+
# posture. This effectively removes gcp.restrictServiceUsage OrgPolicy
|
80
|
+
# on the AssuredWorkloads Folder.
|
81
|
+
ALLOW_ALL_GCP_RESOURCES = 1
|
82
|
+
|
83
|
+
# Based on Workload's compliance regime, allowed list changes.
|
84
|
+
# See - https://cloud.google.com/assured-workloads/docs/supported-products
|
85
|
+
# for the list of supported resources.
|
86
|
+
ALLOW_COMPLIANT_RESOURCES = 2
|
87
|
+
end
|
88
|
+
end
|
89
|
+
|
90
|
+
# Response for restricting the list of allowed resources.
|
91
|
+
class RestrictAllowedResourcesResponse
|
92
|
+
include ::Google::Protobuf::MessageExts
|
93
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
94
|
+
end
|
95
|
+
|
58
96
|
# Request for deleting a Workload.
|
59
97
|
# @!attribute [rw] name
|
60
98
|
# @return [::String]
|
@@ -73,8 +111,8 @@ module Google
|
|
73
111
|
# Request for fetching a workload.
|
74
112
|
# @!attribute [rw] name
|
75
113
|
# @return [::String]
|
76
|
-
# Required. The resource name of the Workload to fetch. This is the
|
77
|
-
#
|
114
|
+
# Required. The resource name of the Workload to fetch. This is the workloads's
|
115
|
+
# relative path in the API, formatted as
|
78
116
|
# "organizations/\\{organization_id}/locations/\\{location_id}/workloads/\\{workload_id}".
|
79
117
|
# For example,
|
80
118
|
# "organizations/123/locations/us-east1/workloads/assured-workload-1".
|
@@ -83,6 +121,46 @@ module Google
|
|
83
121
|
extend ::Google::Protobuf::MessageExts::ClassMethods
|
84
122
|
end
|
85
123
|
|
124
|
+
# A request to analyze a hypothetical move of a source project or project-based
|
125
|
+
# workload to a target (destination) folder-based workload.
|
126
|
+
# @!attribute [rw] source
|
127
|
+
# @return [::String]
|
128
|
+
# The source type is a project-based workload. Specify the workloads's
|
129
|
+
# relative resource name, formatted as:
|
130
|
+
# "organizations/\\{ORGANIZATION_ID}/locations/\\{LOCATION_ID}/workloads/\\{WORKLOAD_ID}"
|
131
|
+
# For example:
|
132
|
+
# "organizations/123/locations/us-east1/workloads/assured-workload-1"
|
133
|
+
# @!attribute [rw] project
|
134
|
+
# @return [::String]
|
135
|
+
# The source type is a project. Specify the project's relative resource
|
136
|
+
# name, formatted as either a project number or a project ID:
|
137
|
+
# "projects/\\{PROJECT_NUMBER}" or "projects/\\{PROJECT_ID}"
|
138
|
+
# For example:
|
139
|
+
# "projects/951040570662" when specifying a project number, or
|
140
|
+
# "projects/my-project-123" when specifying a project ID.
|
141
|
+
# @!attribute [rw] target
|
142
|
+
# @return [::String]
|
143
|
+
# Required. The resource ID of the folder-based destination workload. This workload is
|
144
|
+
# where the source project will hypothetically be moved to. Specify the
|
145
|
+
# workload's relative resource name, formatted as:
|
146
|
+
# "organizations/\\{ORGANIZATION_ID}/locations/\\{LOCATION_ID}/workloads/\\{WORKLOAD_ID}"
|
147
|
+
# For example:
|
148
|
+
# "organizations/123/locations/us-east1/workloads/assured-workload-2"
|
149
|
+
class AnalyzeWorkloadMoveRequest
|
150
|
+
include ::Google::Protobuf::MessageExts
|
151
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
152
|
+
end
|
153
|
+
|
154
|
+
# A response that includes the analysis of the hypothetical resource move.
|
155
|
+
# @!attribute [rw] blockers
|
156
|
+
# @return [::Array<::String>]
|
157
|
+
# A list of blockers that should be addressed before moving the source
|
158
|
+
# project or project-based workload to the destination folder-based workload.
|
159
|
+
class AnalyzeWorkloadMoveResponse
|
160
|
+
include ::Google::Protobuf::MessageExts
|
161
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
162
|
+
end
|
163
|
+
|
86
164
|
# Request for fetching workloads in an organization.
|
87
165
|
# @!attribute [rw] parent
|
88
166
|
# @return [::String]
|
@@ -146,9 +224,9 @@ module Google
|
|
146
224
|
# @!attribute [r] create_time
|
147
225
|
# @return [::Google::Protobuf::Timestamp]
|
148
226
|
# Output only. Immutable. The Workload creation timestamp.
|
149
|
-
# @!attribute [
|
227
|
+
# @!attribute [r] billing_account
|
150
228
|
# @return [::String]
|
151
|
-
#
|
229
|
+
# Output only. The billing account used for the resources which are
|
152
230
|
# direct children of workload. This billing account is initially associated
|
153
231
|
# with the resources created as part of Workload creation.
|
154
232
|
# After the initial creation of these resources, the customer can change
|
@@ -158,20 +236,16 @@ module Google
|
|
158
236
|
# `billingAccounts/012345-567890-ABCDEF`.
|
159
237
|
# @!attribute [rw] il4_settings
|
160
238
|
# @return [::Google::Cloud::AssuredWorkloads::V1beta1::Workload::IL4Settings]
|
161
|
-
#
|
162
|
-
# for IL4.
|
239
|
+
# Input only. Immutable. Settings specific to resources needed for IL4.
|
163
240
|
# @!attribute [rw] cjis_settings
|
164
241
|
# @return [::Google::Cloud::AssuredWorkloads::V1beta1::Workload::CJISSettings]
|
165
|
-
#
|
166
|
-
# for CJIS.
|
242
|
+
# Input only. Immutable. Settings specific to resources needed for CJIS.
|
167
243
|
# @!attribute [rw] fedramp_high_settings
|
168
244
|
# @return [::Google::Cloud::AssuredWorkloads::V1beta1::Workload::FedrampHighSettings]
|
169
|
-
#
|
170
|
-
# for FedRAMP High.
|
245
|
+
# Input only. Immutable. Settings specific to resources needed for FedRAMP High.
|
171
246
|
# @!attribute [rw] fedramp_moderate_settings
|
172
247
|
# @return [::Google::Cloud::AssuredWorkloads::V1beta1::Workload::FedrampModerateSettings]
|
173
|
-
#
|
174
|
-
# for FedRAMP Moderate.
|
248
|
+
# Input only. Immutable. Settings specific to resources needed for FedRAMP Moderate.
|
175
249
|
# @!attribute [rw] etag
|
176
250
|
# @return [::String]
|
177
251
|
# Optional. ETag of the workload, it is calculated on the basis
|
@@ -181,22 +255,24 @@ module Google
|
|
181
255
|
# Optional. Labels applied to the workload.
|
182
256
|
# @!attribute [rw] provisioned_resources_parent
|
183
257
|
# @return [::String]
|
184
|
-
# Input only. The parent resource for the resources managed by this Assured
|
185
|
-
#
|
258
|
+
# Input only. The parent resource for the resources managed by this Assured Workload. May
|
259
|
+
# be either empty or a folder resource which is a child of the
|
186
260
|
# Workload parent. If not specified all resources are created under the
|
187
261
|
# parent organization.
|
188
262
|
# Format:
|
189
263
|
# folders/\\{folder_id}
|
190
264
|
# @!attribute [rw] kms_settings
|
191
265
|
# @return [::Google::Cloud::AssuredWorkloads::V1beta1::Workload::KMSSettings]
|
192
|
-
# Input only. Settings used to create a CMEK crypto key. When set a project
|
193
|
-
#
|
194
|
-
#
|
266
|
+
# Input only. Settings used to create a CMEK crypto key. When set, a project with a KMS
|
267
|
+
# CMEK key is provisioned.
|
268
|
+
# This field is deprecated as of Feb 28, 2022.
|
269
|
+
# In order to create a Keyring, callers should specify,
|
270
|
+
# ENCRYPTION_KEYS_PROJECT or KEYRING in ResourceSettings.resource_type field.
|
195
271
|
# @!attribute [rw] resource_settings
|
196
272
|
# @return [::Array<::Google::Cloud::AssuredWorkloads::V1beta1::Workload::ResourceSettings>]
|
197
|
-
# Input only. Resource properties that are used to customize workload
|
198
|
-
#
|
199
|
-
#
|
273
|
+
# Input only. Resource properties that are used to customize workload resources.
|
274
|
+
# These properties (such as custom project id) will be used to create
|
275
|
+
# workload resources if possible. This field is optional.
|
200
276
|
# @!attribute [r] kaj_enrollment_state
|
201
277
|
# @return [::Google::Cloud::AssuredWorkloads::V1beta1::Workload::KajEnrollmentState]
|
202
278
|
# Output only. Represents the KAJ enrollment state of the given workload.
|
@@ -248,14 +324,13 @@ module Google
|
|
248
324
|
# Settings specific to the Key Management Service.
|
249
325
|
# @!attribute [rw] next_rotation_time
|
250
326
|
# @return [::Google::Protobuf::Timestamp]
|
251
|
-
# Required. Input only. Immutable. The time at which the Key Management
|
252
|
-
#
|
253
|
-
# mark it as the primary.
|
327
|
+
# Required. Input only. Immutable. The time at which the Key Management Service will automatically create a
|
328
|
+
# new version of the crypto key and mark it as the primary.
|
254
329
|
# @!attribute [rw] rotation_period
|
255
330
|
# @return [::Google::Protobuf::Duration]
|
256
|
-
# Required. Input only. Immutable. [next_rotation_time] will be advanced by
|
257
|
-
#
|
258
|
-
#
|
331
|
+
# Required. Input only. Immutable. [next_rotation_time] will be advanced by this period when the Key
|
332
|
+
# Management Service automatically rotates a key. Must be at least 24 hours
|
333
|
+
# and at most 876,000 hours.
|
259
334
|
class KMSSettings
|
260
335
|
include ::Google::Protobuf::MessageExts
|
261
336
|
extend ::Google::Protobuf::MessageExts::ClassMethods
|
@@ -264,8 +339,7 @@ module Google
|
|
264
339
|
# Settings specific to resources needed for IL4.
|
265
340
|
# @!attribute [rw] kms_settings
|
266
341
|
# @return [::Google::Cloud::AssuredWorkloads::V1beta1::Workload::KMSSettings]
|
267
|
-
#
|
268
|
-
# key.
|
342
|
+
# Input only. Immutable. Settings used to create a CMEK crypto key.
|
269
343
|
class IL4Settings
|
270
344
|
include ::Google::Protobuf::MessageExts
|
271
345
|
extend ::Google::Protobuf::MessageExts::ClassMethods
|
@@ -274,8 +348,7 @@ module Google
|
|
274
348
|
# Settings specific to resources needed for CJIS.
|
275
349
|
# @!attribute [rw] kms_settings
|
276
350
|
# @return [::Google::Cloud::AssuredWorkloads::V1beta1::Workload::KMSSettings]
|
277
|
-
#
|
278
|
-
# key.
|
351
|
+
# Input only. Immutable. Settings used to create a CMEK crypto key.
|
279
352
|
class CJISSettings
|
280
353
|
include ::Google::Protobuf::MessageExts
|
281
354
|
extend ::Google::Protobuf::MessageExts::ClassMethods
|
@@ -284,8 +357,7 @@ module Google
|
|
284
357
|
# Settings specific to resources needed for FedRAMP High.
|
285
358
|
# @!attribute [rw] kms_settings
|
286
359
|
# @return [::Google::Cloud::AssuredWorkloads::V1beta1::Workload::KMSSettings]
|
287
|
-
#
|
288
|
-
# key.
|
360
|
+
# Input only. Immutable. Settings used to create a CMEK crypto key.
|
289
361
|
class FedrampHighSettings
|
290
362
|
include ::Google::Protobuf::MessageExts
|
291
363
|
extend ::Google::Protobuf::MessageExts::ClassMethods
|
@@ -294,8 +366,7 @@ module Google
|
|
294
366
|
# Settings specific to resources needed for FedRAMP Moderate.
|
295
367
|
# @!attribute [rw] kms_settings
|
296
368
|
# @return [::Google::Cloud::AssuredWorkloads::V1beta1::Workload::KMSSettings]
|
297
|
-
#
|
298
|
-
# key.
|
369
|
+
# Input only. Immutable. Settings used to create a CMEK crypto key.
|
299
370
|
class FedrampModerateSettings
|
300
371
|
include ::Google::Protobuf::MessageExts
|
301
372
|
extend ::Google::Protobuf::MessageExts::ClassMethods
|
@@ -307,6 +378,8 @@ module Google
|
|
307
378
|
# Resource identifier.
|
308
379
|
# For a project this represents project_id. If the project is already
|
309
380
|
# taken, the workload creation will fail.
|
381
|
+
# For KeyRing, this represents the keyring_id.
|
382
|
+
# For a folder, don't set this value as folder_id is assigned by Google.
|
310
383
|
# @!attribute [rw] resource_type
|
311
384
|
# @return [::Google::Cloud::AssuredWorkloads::V1beta1::Workload::ResourceInfo::ResourceType]
|
312
385
|
# Indicates the type of resource. This field should be specified to
|
@@ -407,6 +480,12 @@ module Google
|
|
407
480
|
|
408
481
|
# Assured Workloads For Canada Regions and Support controls
|
409
482
|
CA_REGIONS_AND_SUPPORT = 9
|
483
|
+
|
484
|
+
# International Traffic in Arms Regulations
|
485
|
+
ITAR = 10
|
486
|
+
|
487
|
+
# Assured Workloads for Australia Regions and Support controls
|
488
|
+
AU_REGIONS_AND_US_SUPPORT = 11
|
410
489
|
end
|
411
490
|
|
412
491
|
# Key Access Justifications(KAJ) Enrollment State.
|
@@ -434,12 +513,12 @@ module Google
|
|
434
513
|
# Optional. The parent of the workload.
|
435
514
|
# @!attribute [rw] compliance_regime
|
436
515
|
# @return [::Google::Cloud::AssuredWorkloads::V1beta1::Workload::ComplianceRegime]
|
437
|
-
# Optional. Compliance controls that should be applied to the resources
|
438
|
-
#
|
516
|
+
# Optional. Compliance controls that should be applied to the resources managed by
|
517
|
+
# the workload.
|
439
518
|
# @!attribute [rw] resource_settings
|
440
519
|
# @return [::Array<::Google::Cloud::AssuredWorkloads::V1beta1::Workload::ResourceSettings>]
|
441
|
-
# Optional. Resource properties in the input that are used for
|
442
|
-
#
|
520
|
+
# Optional. Resource properties in the input that are used for creating/customizing
|
521
|
+
# workload resources.
|
443
522
|
class CreateWorkloadOperationMetadata
|
444
523
|
include ::Google::Protobuf::MessageExts
|
445
524
|
extend ::Google::Protobuf::MessageExts::ClassMethods
|
@@ -26,8 +26,6 @@ module Google
|
|
26
26
|
# service Foo {
|
27
27
|
# rpc Bar(google.protobuf.Empty) returns (google.protobuf.Empty);
|
28
28
|
# }
|
29
|
-
#
|
30
|
-
# The JSON representation for `Empty` is empty JSON object `{}`.
|
31
29
|
class Empty
|
32
30
|
include ::Google::Protobuf::MessageExts
|
33
31
|
extend ::Google::Protobuf::MessageExts::ClassMethods
|
metadata
CHANGED
@@ -1,14 +1,14 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: google-cloud-assured_workloads-v1beta1
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 0.
|
4
|
+
version: 0.12.0
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- Google LLC
|
8
8
|
autorequire:
|
9
9
|
bindir: bin
|
10
10
|
cert_chain: []
|
11
|
-
date: 2022-
|
11
|
+
date: 2022-08-25 00:00:00.000000000 Z
|
12
12
|
dependencies:
|
13
13
|
- !ruby/object:Gem::Dependency
|
14
14
|
name: gapic-common
|
@@ -16,7 +16,7 @@ dependencies:
|
|
16
16
|
requirements:
|
17
17
|
- - ">="
|
18
18
|
- !ruby/object:Gem::Version
|
19
|
-
version: '0.
|
19
|
+
version: '0.10'
|
20
20
|
- - "<"
|
21
21
|
- !ruby/object:Gem::Version
|
22
22
|
version: 2.a
|
@@ -26,7 +26,7 @@ dependencies:
|
|
26
26
|
requirements:
|
27
27
|
- - ">="
|
28
28
|
- !ruby/object:Gem::Version
|
29
|
-
version: '0.
|
29
|
+
version: '0.10'
|
30
30
|
- - "<"
|
31
31
|
- !ruby/object:Gem::Version
|
32
32
|
version: 2.a
|
@@ -50,28 +50,28 @@ dependencies:
|
|
50
50
|
requirements:
|
51
51
|
- - "~>"
|
52
52
|
- !ruby/object:Gem::Version
|
53
|
-
version: 1.
|
53
|
+
version: 1.26.1
|
54
54
|
type: :development
|
55
55
|
prerelease: false
|
56
56
|
version_requirements: !ruby/object:Gem::Requirement
|
57
57
|
requirements:
|
58
58
|
- - "~>"
|
59
59
|
- !ruby/object:Gem::Version
|
60
|
-
version: 1.
|
60
|
+
version: 1.26.1
|
61
61
|
- !ruby/object:Gem::Dependency
|
62
62
|
name: minitest
|
63
63
|
requirement: !ruby/object:Gem::Requirement
|
64
64
|
requirements:
|
65
65
|
- - "~>"
|
66
66
|
- !ruby/object:Gem::Version
|
67
|
-
version: '5.
|
67
|
+
version: '5.16'
|
68
68
|
type: :development
|
69
69
|
prerelease: false
|
70
70
|
version_requirements: !ruby/object:Gem::Requirement
|
71
71
|
requirements:
|
72
72
|
- - "~>"
|
73
73
|
- !ruby/object:Gem::Version
|
74
|
-
version: '5.
|
74
|
+
version: '5.16'
|
75
75
|
- !ruby/object:Gem::Dependency
|
76
76
|
name: minitest-focus
|
77
77
|
requirement: !ruby/object:Gem::Requirement
|
@@ -106,14 +106,14 @@ dependencies:
|
|
106
106
|
requirements:
|
107
107
|
- - ">="
|
108
108
|
- !ruby/object:Gem::Version
|
109
|
-
version: '
|
109
|
+
version: '13.0'
|
110
110
|
type: :development
|
111
111
|
prerelease: false
|
112
112
|
version_requirements: !ruby/object:Gem::Requirement
|
113
113
|
requirements:
|
114
114
|
- - ">="
|
115
115
|
- !ruby/object:Gem::Version
|
116
|
-
version: '
|
116
|
+
version: '13.0'
|
117
117
|
- !ruby/object:Gem::Dependency
|
118
118
|
name: redcarpet
|
119
119
|
requirement: !ruby/object:Gem::Requirement
|
@@ -179,7 +179,8 @@ files:
|
|
179
179
|
- lib/google/cloud/assured_workloads/v1beta1/assured_workloads_service/paths.rb
|
180
180
|
- lib/google/cloud/assured_workloads/v1beta1/version.rb
|
181
181
|
- lib/google/cloud/assuredworkloads/v1beta1/assuredworkloads_pb.rb
|
182
|
-
- lib/google/cloud/assuredworkloads/v1beta1/
|
182
|
+
- lib/google/cloud/assuredworkloads/v1beta1/assuredworkloads_service_pb.rb
|
183
|
+
- lib/google/cloud/assuredworkloads/v1beta1/assuredworkloads_service_services_pb.rb
|
183
184
|
- proto_docs/README.md
|
184
185
|
- proto_docs/google/api/field_behavior.rb
|
185
186
|
- proto_docs/google/api/resource.rb
|
@@ -203,7 +204,7 @@ required_ruby_version: !ruby/object:Gem::Requirement
|
|
203
204
|
requirements:
|
204
205
|
- - ">="
|
205
206
|
- !ruby/object:Gem::Version
|
206
|
-
version: '2.
|
207
|
+
version: '2.6'
|
207
208
|
required_rubygems_version: !ruby/object:Gem::Requirement
|
208
209
|
requirements:
|
209
210
|
- - ">="
|