google-cloud-binary_authorization-v1beta1 0.2.1 → 0.3.3
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/AUTHENTICATION.md +8 -8
- data/README.md +3 -3
- data/lib/google/cloud/binary_authorization/v1beta1/binauthz_management_service/client.rb +83 -73
- data/lib/google/cloud/binary_authorization/v1beta1/version.rb +1 -1
- data/lib/google/cloud/binaryauthorization/v1beta1/continuous_validation_logging_pb.rb +55 -0
- data/lib/google/cloud/binaryauthorization/v1beta1/service_services_pb.rb +31 -17
- data/proto_docs/google/api/field_behavior.rb +7 -1
- data/proto_docs/google/cloud/binaryauthorization/v1beta1/continuous_validation_logging.rb +104 -0
- data/proto_docs/google/cloud/binaryauthorization/v1beta1/resources.rb +2 -2
- data/proto_docs/google/cloud/binaryauthorization/v1beta1/service.rb +37 -22
- metadata +18 -10
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: a11b9430128518601ed19b5a754f04e48198d91ae6cb3c49ca4558251e771fc0
|
|
4
|
+
data.tar.gz: 3908b55ebafd9c6d8cc8c26992d6f64d4aa8c8cbde7ff5812242716390cbca91
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: e118d761339dd4fac8e380add6d0fc927920e392e3a76a4c5b6b5cb29c1685de1da06a87dd507a7e97dd087f3631bbf9f1388c8839470018dfecac9b8f08c632
|
|
7
|
+
data.tar.gz: 38a3d01da37c2313686fdb64ed64d1b377edb63d27d0229589f8bc9707d627045da273b8fe3a90a234e737e430fca9c0480483282565a10088268f279703b87a
|
data/AUTHENTICATION.md
CHANGED
|
@@ -66,11 +66,11 @@ The environment variables that google-cloud-binary_authorization-v1beta1
|
|
|
66
66
|
checks for credentials are configured on the service Credentials class (such as
|
|
67
67
|
{::Google::Cloud::BinaryAuthorization::V1beta1::BinauthzManagementService::Credentials}):
|
|
68
68
|
|
|
69
|
-
|
|
70
|
-
|
|
71
|
-
|
|
72
|
-
|
|
73
|
-
|
|
69
|
+
* `BINARY_AUTHORIZATION_CREDENTIALS` - Path to JSON file, or JSON contents
|
|
70
|
+
* `BINARY_AUTHORIZATION_KEYFILE` - Path to JSON file, or JSON contents
|
|
71
|
+
* `GOOGLE_CLOUD_CREDENTIALS` - Path to JSON file, or JSON contents
|
|
72
|
+
* `GOOGLE_CLOUD_KEYFILE` - Path to JSON file, or JSON contents
|
|
73
|
+
* `GOOGLE_APPLICATION_CREDENTIALS` - Path to JSON file
|
|
74
74
|
|
|
75
75
|
```ruby
|
|
76
76
|
require "google/cloud/binary_authorization/v1beta1"
|
|
@@ -82,8 +82,8 @@ client = ::Google::Cloud::BinaryAuthorization::V1beta1::BinauthzManagementServic
|
|
|
82
82
|
|
|
83
83
|
### Configuration
|
|
84
84
|
|
|
85
|
-
The **Credentials JSON** can be configured instead of
|
|
86
|
-
environment
|
|
85
|
+
The path to the **Credentials JSON** file can be configured instead of storing
|
|
86
|
+
it in an environment variable. Either on an individual client initialization:
|
|
87
87
|
|
|
88
88
|
```ruby
|
|
89
89
|
require "google/cloud/binary_authorization/v1beta1"
|
|
@@ -93,7 +93,7 @@ client = ::Google::Cloud::BinaryAuthorization::V1beta1::BinauthzManagementServic
|
|
|
93
93
|
end
|
|
94
94
|
```
|
|
95
95
|
|
|
96
|
-
Or
|
|
96
|
+
Or globally for all clients:
|
|
97
97
|
|
|
98
98
|
```ruby
|
|
99
99
|
require "google/cloud/binary_authorization/v1beta1"
|
data/README.md
CHANGED
|
@@ -33,7 +33,7 @@ In order to use this library, you first need to go through the following steps:
|
|
|
33
33
|
require "google/cloud/binary_authorization/v1beta1"
|
|
34
34
|
|
|
35
35
|
client = ::Google::Cloud::BinaryAuthorization::V1beta1::BinauthzManagementService::Client.new
|
|
36
|
-
request =
|
|
36
|
+
request = ::Google::Cloud::BinaryAuthorization::V1beta1::GetPolicyRequest.new # (request fields as keyword arguments...)
|
|
37
37
|
response = client.get_policy request
|
|
38
38
|
```
|
|
39
39
|
|
|
@@ -71,11 +71,11 @@ end
|
|
|
71
71
|
|
|
72
72
|
## Supported Ruby Versions
|
|
73
73
|
|
|
74
|
-
This library is supported on Ruby 2.
|
|
74
|
+
This library is supported on Ruby 2.5+.
|
|
75
75
|
|
|
76
76
|
Google provides official support for Ruby versions that are actively supported
|
|
77
77
|
by Ruby Core—that is, Ruby versions that are either in normal maintenance or
|
|
78
|
-
in security maintenance, and not end of life. Currently, this means Ruby 2.
|
|
78
|
+
in security maintenance, and not end of life. Currently, this means Ruby 2.5
|
|
79
79
|
and later. Older versions of Ruby _may_ still work, but are unsupported and not
|
|
80
80
|
recommended. See https://www.ruby-lang.org/en/downloads/branches/ for details
|
|
81
81
|
about the Ruby support schedule.
|
|
@@ -66,59 +66,41 @@ module Google
|
|
|
66
66
|
parent_config = while namespace.any?
|
|
67
67
|
parent_name = namespace.join "::"
|
|
68
68
|
parent_const = const_get parent_name
|
|
69
|
-
break parent_const.configure if parent_const
|
|
69
|
+
break parent_const.configure if parent_const.respond_to? :configure
|
|
70
70
|
namespace.pop
|
|
71
71
|
end
|
|
72
72
|
default_config = Client::Configuration.new parent_config
|
|
73
73
|
|
|
74
74
|
default_config.rpcs.get_policy.timeout = 600.0
|
|
75
75
|
default_config.rpcs.get_policy.retry_policy = {
|
|
76
|
-
initial_delay: 0.1,
|
|
77
|
-
max_delay: 60.0,
|
|
78
|
-
multiplier: 1.3,
|
|
79
|
-
retry_codes: [4, 14]
|
|
76
|
+
initial_delay: 0.1, max_delay: 60.0, multiplier: 1.3, retry_codes: [4, 14]
|
|
80
77
|
}
|
|
81
78
|
|
|
82
79
|
default_config.rpcs.update_policy.timeout = 600.0
|
|
83
80
|
default_config.rpcs.update_policy.retry_policy = {
|
|
84
|
-
initial_delay: 0.1,
|
|
85
|
-
max_delay: 60.0,
|
|
86
|
-
multiplier: 1.3,
|
|
87
|
-
retry_codes: [4, 14]
|
|
81
|
+
initial_delay: 0.1, max_delay: 60.0, multiplier: 1.3, retry_codes: [4, 14]
|
|
88
82
|
}
|
|
89
83
|
|
|
90
84
|
default_config.rpcs.create_attestor.timeout = 600.0
|
|
91
85
|
|
|
92
86
|
default_config.rpcs.get_attestor.timeout = 600.0
|
|
93
87
|
default_config.rpcs.get_attestor.retry_policy = {
|
|
94
|
-
initial_delay: 0.1,
|
|
95
|
-
max_delay: 60.0,
|
|
96
|
-
multiplier: 1.3,
|
|
97
|
-
retry_codes: [4, 14]
|
|
88
|
+
initial_delay: 0.1, max_delay: 60.0, multiplier: 1.3, retry_codes: [4, 14]
|
|
98
89
|
}
|
|
99
90
|
|
|
100
91
|
default_config.rpcs.update_attestor.timeout = 600.0
|
|
101
92
|
default_config.rpcs.update_attestor.retry_policy = {
|
|
102
|
-
initial_delay: 0.1,
|
|
103
|
-
max_delay: 60.0,
|
|
104
|
-
multiplier: 1.3,
|
|
105
|
-
retry_codes: [4, 14]
|
|
93
|
+
initial_delay: 0.1, max_delay: 60.0, multiplier: 1.3, retry_codes: [4, 14]
|
|
106
94
|
}
|
|
107
95
|
|
|
108
96
|
default_config.rpcs.list_attestors.timeout = 600.0
|
|
109
97
|
default_config.rpcs.list_attestors.retry_policy = {
|
|
110
|
-
initial_delay: 0.1,
|
|
111
|
-
max_delay: 60.0,
|
|
112
|
-
multiplier: 1.3,
|
|
113
|
-
retry_codes: [4, 14]
|
|
98
|
+
initial_delay: 0.1, max_delay: 60.0, multiplier: 1.3, retry_codes: [4, 14]
|
|
114
99
|
}
|
|
115
100
|
|
|
116
101
|
default_config.rpcs.delete_attestor.timeout = 600.0
|
|
117
102
|
default_config.rpcs.delete_attestor.retry_policy = {
|
|
118
|
-
initial_delay: 0.1,
|
|
119
|
-
max_delay: 60.0,
|
|
120
|
-
multiplier: 1.3,
|
|
121
|
-
retry_codes: [4, 14]
|
|
103
|
+
initial_delay: 0.1, max_delay: 60.0, multiplier: 1.3, retry_codes: [4, 14]
|
|
122
104
|
}
|
|
123
105
|
|
|
124
106
|
default_config
|
|
@@ -187,9 +169,9 @@ module Google
|
|
|
187
169
|
enable_self_signed_jwt = @config.scope == Client.configure.scope &&
|
|
188
170
|
@config.endpoint == Client.configure.endpoint &&
|
|
189
171
|
!@config.endpoint.split(".").first.include?("-")
|
|
190
|
-
credentials ||= Credentials.default scope:
|
|
172
|
+
credentials ||= Credentials.default scope: @config.scope,
|
|
191
173
|
enable_self_signed_jwt: enable_self_signed_jwt
|
|
192
|
-
if credentials.is_a?(String) || credentials.is_a?(Hash)
|
|
174
|
+
if credentials.is_a?(::String) || credentials.is_a?(::Hash)
|
|
193
175
|
credentials = Credentials.new credentials, scope: @config.scope
|
|
194
176
|
end
|
|
195
177
|
@quota_project_id = @config.quota_project
|
|
@@ -207,13 +189,16 @@ module Google
|
|
|
207
189
|
# Service calls
|
|
208
190
|
|
|
209
191
|
##
|
|
210
|
-
# A {::Google::Cloud::BinaryAuthorization::V1beta1::Policy policy} specifies the
|
|
211
|
-
#
|
|
192
|
+
# A {::Google::Cloud::BinaryAuthorization::V1beta1::Policy policy} specifies the
|
|
193
|
+
# {::Google::Cloud::BinaryAuthorization::V1beta1::Attestor attestors} that must
|
|
194
|
+
# attest to a container image, before the project is allowed to deploy that
|
|
212
195
|
# image. There is at most one policy per project. All image admission
|
|
213
196
|
# requests are permitted if a project has no policy.
|
|
214
197
|
#
|
|
215
|
-
# Gets the {::Google::Cloud::BinaryAuthorization::V1beta1::Policy policy} for this
|
|
216
|
-
#
|
|
198
|
+
# Gets the {::Google::Cloud::BinaryAuthorization::V1beta1::Policy policy} for this
|
|
199
|
+
# project. Returns a default
|
|
200
|
+
# {::Google::Cloud::BinaryAuthorization::V1beta1::Policy policy} if the project
|
|
201
|
+
# does not have one.
|
|
217
202
|
#
|
|
218
203
|
# @overload get_policy(request, options = nil)
|
|
219
204
|
# Pass arguments to `get_policy` via a request object, either of type
|
|
@@ -231,8 +216,9 @@ module Google
|
|
|
231
216
|
# the default parameter values, pass an empty Hash as a request object (see above).
|
|
232
217
|
#
|
|
233
218
|
# @param name [::String]
|
|
234
|
-
# Required. The resource name of the
|
|
235
|
-
#
|
|
219
|
+
# Required. The resource name of the
|
|
220
|
+
# {::Google::Cloud::BinaryAuthorization::V1beta1::Policy policy} to retrieve, in
|
|
221
|
+
# the format `projects/*/policy`.
|
|
236
222
|
#
|
|
237
223
|
# @yield [response, operation] Access the result along with the RPC operation
|
|
238
224
|
# @yieldparam response [::Google::Cloud::BinaryAuthorization::V1beta1::Policy]
|
|
@@ -280,11 +266,13 @@ module Google
|
|
|
280
266
|
end
|
|
281
267
|
|
|
282
268
|
##
|
|
283
|
-
# Creates or updates a project's
|
|
284
|
-
#
|
|
285
|
-
#
|
|
286
|
-
#
|
|
287
|
-
#
|
|
269
|
+
# Creates or updates a project's
|
|
270
|
+
# {::Google::Cloud::BinaryAuthorization::V1beta1::Policy policy}, and returns a
|
|
271
|
+
# copy of the new {::Google::Cloud::BinaryAuthorization::V1beta1::Policy policy}.
|
|
272
|
+
# A policy is always updated as a whole, to avoid race conditions with
|
|
273
|
+
# concurrent policy enforcement (or management!) requests. Returns NOT_FOUND
|
|
274
|
+
# if the project does not exist, INVALID_ARGUMENT if the request is
|
|
275
|
+
# malformed.
|
|
288
276
|
#
|
|
289
277
|
# @overload update_policy(request, options = nil)
|
|
290
278
|
# Pass arguments to `update_policy` via a request object, either of type
|
|
@@ -302,9 +290,11 @@ module Google
|
|
|
302
290
|
# the default parameter values, pass an empty Hash as a request object (see above).
|
|
303
291
|
#
|
|
304
292
|
# @param policy [::Google::Cloud::BinaryAuthorization::V1beta1::Policy, ::Hash]
|
|
305
|
-
# Required. A new or updated
|
|
306
|
-
#
|
|
307
|
-
#
|
|
293
|
+
# Required. A new or updated
|
|
294
|
+
# {::Google::Cloud::BinaryAuthorization::V1beta1::Policy policy} value. The
|
|
295
|
+
# service will overwrite the [policy
|
|
296
|
+
# name][google.cloud.binaryauthorization.v1beta1.Policy.name] field with the
|
|
297
|
+
# resource name in the request URL, in the format `projects/*/policy`.
|
|
308
298
|
#
|
|
309
299
|
# @yield [response, operation] Access the result along with the RPC operation
|
|
310
300
|
# @yieldparam response [::Google::Cloud::BinaryAuthorization::V1beta1::Policy]
|
|
@@ -352,10 +342,13 @@ module Google
|
|
|
352
342
|
end
|
|
353
343
|
|
|
354
344
|
##
|
|
355
|
-
# Creates an {::Google::Cloud::BinaryAuthorization::V1beta1::Attestor attestor},
|
|
356
|
-
#
|
|
357
|
-
#
|
|
358
|
-
#
|
|
345
|
+
# Creates an {::Google::Cloud::BinaryAuthorization::V1beta1::Attestor attestor},
|
|
346
|
+
# and returns a copy of the new
|
|
347
|
+
# {::Google::Cloud::BinaryAuthorization::V1beta1::Attestor attestor}. Returns
|
|
348
|
+
# NOT_FOUND if the project does not exist, INVALID_ARGUMENT if the request is
|
|
349
|
+
# malformed, ALREADY_EXISTS if the
|
|
350
|
+
# {::Google::Cloud::BinaryAuthorization::V1beta1::Attestor attestor} already
|
|
351
|
+
# exists.
|
|
359
352
|
#
|
|
360
353
|
# @overload create_attestor(request, options = nil)
|
|
361
354
|
# Pass arguments to `create_attestor` via a request object, either of type
|
|
@@ -373,13 +366,17 @@ module Google
|
|
|
373
366
|
# the default parameter values, pass an empty Hash as a request object (see above).
|
|
374
367
|
#
|
|
375
368
|
# @param parent [::String]
|
|
376
|
-
# Required. The parent of this
|
|
369
|
+
# Required. The parent of this
|
|
370
|
+
# {::Google::Cloud::BinaryAuthorization::V1beta1::Attestor attestor}.
|
|
377
371
|
# @param attestor_id [::String]
|
|
378
|
-
# Required. The
|
|
372
|
+
# Required. The
|
|
373
|
+
# {::Google::Cloud::BinaryAuthorization::V1beta1::Attestor attestors} ID.
|
|
379
374
|
# @param attestor [::Google::Cloud::BinaryAuthorization::V1beta1::Attestor, ::Hash]
|
|
380
|
-
# Required. The initial
|
|
381
|
-
#
|
|
382
|
-
#
|
|
375
|
+
# Required. The initial
|
|
376
|
+
# {::Google::Cloud::BinaryAuthorization::V1beta1::Attestor attestor} value. The
|
|
377
|
+
# service will overwrite the [attestor
|
|
378
|
+
# name][google.cloud.binaryauthorization.v1beta1.Attestor.name] field with
|
|
379
|
+
# the resource name, in the format `projects/*/attestors/*`.
|
|
383
380
|
#
|
|
384
381
|
# @yield [response, operation] Access the result along with the RPC operation
|
|
385
382
|
# @yieldparam response [::Google::Cloud::BinaryAuthorization::V1beta1::Attestor]
|
|
@@ -428,7 +425,9 @@ module Google
|
|
|
428
425
|
|
|
429
426
|
##
|
|
430
427
|
# Gets an {::Google::Cloud::BinaryAuthorization::V1beta1::Attestor attestor}.
|
|
431
|
-
# Returns NOT_FOUND if the
|
|
428
|
+
# Returns NOT_FOUND if the
|
|
429
|
+
# {::Google::Cloud::BinaryAuthorization::V1beta1::Attestor attestor} does not
|
|
430
|
+
# exist.
|
|
432
431
|
#
|
|
433
432
|
# @overload get_attestor(request, options = nil)
|
|
434
433
|
# Pass arguments to `get_attestor` via a request object, either of type
|
|
@@ -446,8 +445,9 @@ module Google
|
|
|
446
445
|
# the default parameter values, pass an empty Hash as a request object (see above).
|
|
447
446
|
#
|
|
448
447
|
# @param name [::String]
|
|
449
|
-
# Required. The name of the
|
|
450
|
-
#
|
|
448
|
+
# Required. The name of the
|
|
449
|
+
# {::Google::Cloud::BinaryAuthorization::V1beta1::Attestor attestor} to retrieve,
|
|
450
|
+
# in the format `projects/*/attestors/*`.
|
|
451
451
|
#
|
|
452
452
|
# @yield [response, operation] Access the result along with the RPC operation
|
|
453
453
|
# @yieldparam response [::Google::Cloud::BinaryAuthorization::V1beta1::Attestor]
|
|
@@ -496,7 +496,9 @@ module Google
|
|
|
496
496
|
|
|
497
497
|
##
|
|
498
498
|
# Updates an {::Google::Cloud::BinaryAuthorization::V1beta1::Attestor attestor}.
|
|
499
|
-
# Returns NOT_FOUND if the
|
|
499
|
+
# Returns NOT_FOUND if the
|
|
500
|
+
# {::Google::Cloud::BinaryAuthorization::V1beta1::Attestor attestor} does not
|
|
501
|
+
# exist.
|
|
500
502
|
#
|
|
501
503
|
# @overload update_attestor(request, options = nil)
|
|
502
504
|
# Pass arguments to `update_attestor` via a request object, either of type
|
|
@@ -514,9 +516,12 @@ module Google
|
|
|
514
516
|
# the default parameter values, pass an empty Hash as a request object (see above).
|
|
515
517
|
#
|
|
516
518
|
# @param attestor [::Google::Cloud::BinaryAuthorization::V1beta1::Attestor, ::Hash]
|
|
517
|
-
# Required. The updated
|
|
518
|
-
#
|
|
519
|
-
#
|
|
519
|
+
# Required. The updated
|
|
520
|
+
# {::Google::Cloud::BinaryAuthorization::V1beta1::Attestor attestor} value. The
|
|
521
|
+
# service will overwrite the [attestor
|
|
522
|
+
# name][google.cloud.binaryauthorization.v1beta1.Attestor.name] field with
|
|
523
|
+
# the resource name in the request URL, in the format
|
|
524
|
+
# `projects/*/attestors/*`.
|
|
520
525
|
#
|
|
521
526
|
# @yield [response, operation] Access the result along with the RPC operation
|
|
522
527
|
# @yieldparam response [::Google::Cloud::BinaryAuthorization::V1beta1::Attestor]
|
|
@@ -584,14 +589,16 @@ module Google
|
|
|
584
589
|
#
|
|
585
590
|
# @param parent [::String]
|
|
586
591
|
# Required. The resource name of the project associated with the
|
|
587
|
-
# {::Google::Cloud::BinaryAuthorization::V1beta1::Attestor attestors}, in the
|
|
592
|
+
# {::Google::Cloud::BinaryAuthorization::V1beta1::Attestor attestors}, in the
|
|
593
|
+
# format `projects/*`.
|
|
588
594
|
# @param page_size [::Integer]
|
|
589
595
|
# Requested page size. The server may return fewer results than requested. If
|
|
590
596
|
# unspecified, the server will pick an appropriate default.
|
|
591
597
|
# @param page_token [::String]
|
|
592
598
|
# A token identifying a page of results the server should return. Typically,
|
|
593
|
-
# this is the value of
|
|
594
|
-
#
|
|
599
|
+
# this is the value of
|
|
600
|
+
# {::Google::Cloud::BinaryAuthorization::V1beta1::ListAttestorsResponse#next_page_token ListAttestorsResponse.next_page_token}
|
|
601
|
+
# returned from the previous call to the `ListAttestors` method.
|
|
595
602
|
#
|
|
596
603
|
# @yield [response, operation] Access the result along with the RPC operation
|
|
597
604
|
# @yieldparam response [::Gapic::PagedEnumerable<::Google::Cloud::BinaryAuthorization::V1beta1::Attestor>]
|
|
@@ -640,8 +647,10 @@ module Google
|
|
|
640
647
|
end
|
|
641
648
|
|
|
642
649
|
##
|
|
643
|
-
# Deletes an {::Google::Cloud::BinaryAuthorization::V1beta1::Attestor attestor}.
|
|
644
|
-
#
|
|
650
|
+
# Deletes an {::Google::Cloud::BinaryAuthorization::V1beta1::Attestor attestor}.
|
|
651
|
+
# Returns NOT_FOUND if the
|
|
652
|
+
# {::Google::Cloud::BinaryAuthorization::V1beta1::Attestor attestor} does not
|
|
653
|
+
# exist.
|
|
645
654
|
#
|
|
646
655
|
# @overload delete_attestor(request, options = nil)
|
|
647
656
|
# Pass arguments to `delete_attestor` via a request object, either of type
|
|
@@ -659,8 +668,9 @@ module Google
|
|
|
659
668
|
# the default parameter values, pass an empty Hash as a request object (see above).
|
|
660
669
|
#
|
|
661
670
|
# @param name [::String]
|
|
662
|
-
# Required. The name of the
|
|
663
|
-
#
|
|
671
|
+
# Required. The name of the
|
|
672
|
+
# {::Google::Cloud::BinaryAuthorization::V1beta1::Attestor attestors} to delete,
|
|
673
|
+
# in the format `projects/*/attestors/*`.
|
|
664
674
|
#
|
|
665
675
|
# @yield [response, operation] Access the result along with the RPC operation
|
|
666
676
|
# @yieldparam response [::Google::Protobuf::Empty]
|
|
@@ -799,7 +809,7 @@ module Google
|
|
|
799
809
|
config_attr :scope, nil, ::String, ::Array, nil
|
|
800
810
|
config_attr :lib_name, nil, ::String, nil
|
|
801
811
|
config_attr :lib_version, nil, ::String, nil
|
|
802
|
-
config_attr(:channel_args, { "grpc.service_config_disable_resolution"=>1 }, ::Hash, nil)
|
|
812
|
+
config_attr(:channel_args, { "grpc.service_config_disable_resolution" => 1 }, ::Hash, nil)
|
|
803
813
|
config_attr :interceptors, nil, ::Array, nil
|
|
804
814
|
config_attr :timeout, nil, ::Numeric, nil
|
|
805
815
|
config_attr :metadata, nil, ::Hash, nil
|
|
@@ -820,7 +830,7 @@ module Google
|
|
|
820
830
|
def rpcs
|
|
821
831
|
@rpcs ||= begin
|
|
822
832
|
parent_rpcs = nil
|
|
823
|
-
parent_rpcs = @parent_config.rpcs if defined?(@parent_config) && @parent_config
|
|
833
|
+
parent_rpcs = @parent_config.rpcs if defined?(@parent_config) && @parent_config.respond_to?(:rpcs)
|
|
824
834
|
Rpcs.new parent_rpcs
|
|
825
835
|
end
|
|
826
836
|
end
|
|
@@ -881,19 +891,19 @@ module Google
|
|
|
881
891
|
|
|
882
892
|
# @private
|
|
883
893
|
def initialize parent_rpcs = nil
|
|
884
|
-
get_policy_config = parent_rpcs
|
|
894
|
+
get_policy_config = parent_rpcs.get_policy if parent_rpcs.respond_to? :get_policy
|
|
885
895
|
@get_policy = ::Gapic::Config::Method.new get_policy_config
|
|
886
|
-
update_policy_config = parent_rpcs
|
|
896
|
+
update_policy_config = parent_rpcs.update_policy if parent_rpcs.respond_to? :update_policy
|
|
887
897
|
@update_policy = ::Gapic::Config::Method.new update_policy_config
|
|
888
|
-
create_attestor_config = parent_rpcs
|
|
898
|
+
create_attestor_config = parent_rpcs.create_attestor if parent_rpcs.respond_to? :create_attestor
|
|
889
899
|
@create_attestor = ::Gapic::Config::Method.new create_attestor_config
|
|
890
|
-
get_attestor_config = parent_rpcs
|
|
900
|
+
get_attestor_config = parent_rpcs.get_attestor if parent_rpcs.respond_to? :get_attestor
|
|
891
901
|
@get_attestor = ::Gapic::Config::Method.new get_attestor_config
|
|
892
|
-
update_attestor_config = parent_rpcs
|
|
902
|
+
update_attestor_config = parent_rpcs.update_attestor if parent_rpcs.respond_to? :update_attestor
|
|
893
903
|
@update_attestor = ::Gapic::Config::Method.new update_attestor_config
|
|
894
|
-
list_attestors_config = parent_rpcs
|
|
904
|
+
list_attestors_config = parent_rpcs.list_attestors if parent_rpcs.respond_to? :list_attestors
|
|
895
905
|
@list_attestors = ::Gapic::Config::Method.new list_attestors_config
|
|
896
|
-
delete_attestor_config = parent_rpcs
|
|
906
|
+
delete_attestor_config = parent_rpcs.delete_attestor if parent_rpcs.respond_to? :delete_attestor
|
|
897
907
|
@delete_attestor = ::Gapic::Config::Method.new delete_attestor_config
|
|
898
908
|
|
|
899
909
|
yield self if block_given?
|
|
@@ -0,0 +1,55 @@
|
|
|
1
|
+
# Generated by the protocol buffer compiler. DO NOT EDIT!
|
|
2
|
+
# source: google/cloud/binaryauthorization/v1beta1/continuous_validation_logging.proto
|
|
3
|
+
|
|
4
|
+
require 'google/protobuf'
|
|
5
|
+
|
|
6
|
+
require 'google/protobuf/timestamp_pb'
|
|
7
|
+
Google::Protobuf::DescriptorPool.generated_pool.build do
|
|
8
|
+
add_file("google/cloud/binaryauthorization/v1beta1/continuous_validation_logging.proto", :syntax => :proto3) do
|
|
9
|
+
add_message "google.cloud.binaryauthorization.v1beta1.ContinuousValidationEvent" do
|
|
10
|
+
oneof :event_type do
|
|
11
|
+
optional :pod_event, :message, 1, "google.cloud.binaryauthorization.v1beta1.ContinuousValidationEvent.ContinuousValidationPodEvent"
|
|
12
|
+
optional :unsupported_policy_event, :message, 2, "google.cloud.binaryauthorization.v1beta1.ContinuousValidationEvent.UnsupportedPolicyEvent"
|
|
13
|
+
end
|
|
14
|
+
end
|
|
15
|
+
add_message "google.cloud.binaryauthorization.v1beta1.ContinuousValidationEvent.ContinuousValidationPodEvent" do
|
|
16
|
+
optional :pod, :string, 1
|
|
17
|
+
optional :deploy_time, :message, 2, "google.protobuf.Timestamp"
|
|
18
|
+
optional :end_time, :message, 3, "google.protobuf.Timestamp"
|
|
19
|
+
optional :verdict, :enum, 4, "google.cloud.binaryauthorization.v1beta1.ContinuousValidationEvent.ContinuousValidationPodEvent.PolicyConformanceVerdict"
|
|
20
|
+
repeated :images, :message, 5, "google.cloud.binaryauthorization.v1beta1.ContinuousValidationEvent.ContinuousValidationPodEvent.ImageDetails"
|
|
21
|
+
end
|
|
22
|
+
add_message "google.cloud.binaryauthorization.v1beta1.ContinuousValidationEvent.ContinuousValidationPodEvent.ImageDetails" do
|
|
23
|
+
optional :image, :string, 1
|
|
24
|
+
optional :result, :enum, 2, "google.cloud.binaryauthorization.v1beta1.ContinuousValidationEvent.ContinuousValidationPodEvent.ImageDetails.AuditResult"
|
|
25
|
+
optional :description, :string, 3
|
|
26
|
+
end
|
|
27
|
+
add_enum "google.cloud.binaryauthorization.v1beta1.ContinuousValidationEvent.ContinuousValidationPodEvent.ImageDetails.AuditResult" do
|
|
28
|
+
value :AUDIT_RESULT_UNSPECIFIED, 0
|
|
29
|
+
value :ALLOW, 1
|
|
30
|
+
value :DENY, 2
|
|
31
|
+
end
|
|
32
|
+
add_enum "google.cloud.binaryauthorization.v1beta1.ContinuousValidationEvent.ContinuousValidationPodEvent.PolicyConformanceVerdict" do
|
|
33
|
+
value :POLICY_CONFORMANCE_VERDICT_UNSPECIFIED, 0
|
|
34
|
+
value :VIOLATES_POLICY, 1
|
|
35
|
+
end
|
|
36
|
+
add_message "google.cloud.binaryauthorization.v1beta1.ContinuousValidationEvent.UnsupportedPolicyEvent" do
|
|
37
|
+
optional :description, :string, 1
|
|
38
|
+
end
|
|
39
|
+
end
|
|
40
|
+
end
|
|
41
|
+
|
|
42
|
+
module Google
|
|
43
|
+
module Cloud
|
|
44
|
+
module BinaryAuthorization
|
|
45
|
+
module V1beta1
|
|
46
|
+
ContinuousValidationEvent = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.binaryauthorization.v1beta1.ContinuousValidationEvent").msgclass
|
|
47
|
+
ContinuousValidationEvent::ContinuousValidationPodEvent = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.binaryauthorization.v1beta1.ContinuousValidationEvent.ContinuousValidationPodEvent").msgclass
|
|
48
|
+
ContinuousValidationEvent::ContinuousValidationPodEvent::ImageDetails = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.binaryauthorization.v1beta1.ContinuousValidationEvent.ContinuousValidationPodEvent.ImageDetails").msgclass
|
|
49
|
+
ContinuousValidationEvent::ContinuousValidationPodEvent::ImageDetails::AuditResult = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.binaryauthorization.v1beta1.ContinuousValidationEvent.ContinuousValidationPodEvent.ImageDetails.AuditResult").enummodule
|
|
50
|
+
ContinuousValidationEvent::ContinuousValidationPodEvent::PolicyConformanceVerdict = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.binaryauthorization.v1beta1.ContinuousValidationEvent.ContinuousValidationPodEvent.PolicyConformanceVerdict").enummodule
|
|
51
|
+
ContinuousValidationEvent::UnsupportedPolicyEvent = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.binaryauthorization.v1beta1.ContinuousValidationEvent.UnsupportedPolicyEvent").msgclass
|
|
52
|
+
end
|
|
53
|
+
end
|
|
54
|
+
end
|
|
55
|
+
end
|
|
@@ -42,36 +42,50 @@ module Google
|
|
|
42
42
|
self.unmarshal_class_method = :decode
|
|
43
43
|
self.service_name = 'google.cloud.binaryauthorization.v1beta1.BinauthzManagementServiceV1Beta1'
|
|
44
44
|
|
|
45
|
-
# A [policy][google.cloud.binaryauthorization.v1beta1.Policy] specifies the
|
|
46
|
-
#
|
|
45
|
+
# A [policy][google.cloud.binaryauthorization.v1beta1.Policy] specifies the
|
|
46
|
+
# [attestors][google.cloud.binaryauthorization.v1beta1.Attestor] that must
|
|
47
|
+
# attest to a container image, before the project is allowed to deploy that
|
|
47
48
|
# image. There is at most one policy per project. All image admission
|
|
48
49
|
# requests are permitted if a project has no policy.
|
|
49
50
|
#
|
|
50
|
-
# Gets the [policy][google.cloud.binaryauthorization.v1beta1.Policy] for this
|
|
51
|
-
#
|
|
51
|
+
# Gets the [policy][google.cloud.binaryauthorization.v1beta1.Policy] for this
|
|
52
|
+
# project. Returns a default
|
|
53
|
+
# [policy][google.cloud.binaryauthorization.v1beta1.Policy] if the project
|
|
54
|
+
# does not have one.
|
|
52
55
|
rpc :GetPolicy, ::Google::Cloud::BinaryAuthorization::V1beta1::GetPolicyRequest, ::Google::Cloud::BinaryAuthorization::V1beta1::Policy
|
|
53
|
-
# Creates or updates a project's
|
|
54
|
-
#
|
|
55
|
-
#
|
|
56
|
-
#
|
|
57
|
-
#
|
|
56
|
+
# Creates or updates a project's
|
|
57
|
+
# [policy][google.cloud.binaryauthorization.v1beta1.Policy], and returns a
|
|
58
|
+
# copy of the new [policy][google.cloud.binaryauthorization.v1beta1.Policy].
|
|
59
|
+
# A policy is always updated as a whole, to avoid race conditions with
|
|
60
|
+
# concurrent policy enforcement (or management!) requests. Returns NOT_FOUND
|
|
61
|
+
# if the project does not exist, INVALID_ARGUMENT if the request is
|
|
62
|
+
# malformed.
|
|
58
63
|
rpc :UpdatePolicy, ::Google::Cloud::BinaryAuthorization::V1beta1::UpdatePolicyRequest, ::Google::Cloud::BinaryAuthorization::V1beta1::Policy
|
|
59
|
-
# Creates an [attestor][google.cloud.binaryauthorization.v1beta1.Attestor],
|
|
60
|
-
#
|
|
61
|
-
#
|
|
62
|
-
#
|
|
64
|
+
# Creates an [attestor][google.cloud.binaryauthorization.v1beta1.Attestor],
|
|
65
|
+
# and returns a copy of the new
|
|
66
|
+
# [attestor][google.cloud.binaryauthorization.v1beta1.Attestor]. Returns
|
|
67
|
+
# NOT_FOUND if the project does not exist, INVALID_ARGUMENT if the request is
|
|
68
|
+
# malformed, ALREADY_EXISTS if the
|
|
69
|
+
# [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] already
|
|
70
|
+
# exists.
|
|
63
71
|
rpc :CreateAttestor, ::Google::Cloud::BinaryAuthorization::V1beta1::CreateAttestorRequest, ::Google::Cloud::BinaryAuthorization::V1beta1::Attestor
|
|
64
72
|
# Gets an [attestor][google.cloud.binaryauthorization.v1beta1.Attestor].
|
|
65
|
-
# Returns NOT_FOUND if the
|
|
73
|
+
# Returns NOT_FOUND if the
|
|
74
|
+
# [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] does not
|
|
75
|
+
# exist.
|
|
66
76
|
rpc :GetAttestor, ::Google::Cloud::BinaryAuthorization::V1beta1::GetAttestorRequest, ::Google::Cloud::BinaryAuthorization::V1beta1::Attestor
|
|
67
77
|
# Updates an [attestor][google.cloud.binaryauthorization.v1beta1.Attestor].
|
|
68
|
-
# Returns NOT_FOUND if the
|
|
78
|
+
# Returns NOT_FOUND if the
|
|
79
|
+
# [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] does not
|
|
80
|
+
# exist.
|
|
69
81
|
rpc :UpdateAttestor, ::Google::Cloud::BinaryAuthorization::V1beta1::UpdateAttestorRequest, ::Google::Cloud::BinaryAuthorization::V1beta1::Attestor
|
|
70
82
|
# Lists [attestors][google.cloud.binaryauthorization.v1beta1.Attestor].
|
|
71
83
|
# Returns INVALID_ARGUMENT if the project does not exist.
|
|
72
84
|
rpc :ListAttestors, ::Google::Cloud::BinaryAuthorization::V1beta1::ListAttestorsRequest, ::Google::Cloud::BinaryAuthorization::V1beta1::ListAttestorsResponse
|
|
73
|
-
# Deletes an [attestor][google.cloud.binaryauthorization.v1beta1.Attestor].
|
|
74
|
-
#
|
|
85
|
+
# Deletes an [attestor][google.cloud.binaryauthorization.v1beta1.Attestor].
|
|
86
|
+
# Returns NOT_FOUND if the
|
|
87
|
+
# [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] does not
|
|
88
|
+
# exist.
|
|
75
89
|
rpc :DeleteAttestor, ::Google::Cloud::BinaryAuthorization::V1beta1::DeleteAttestorRequest, ::Google::Protobuf::Empty
|
|
76
90
|
end
|
|
77
91
|
|
|
@@ -57,9 +57,15 @@ module Google
|
|
|
57
57
|
|
|
58
58
|
# Denotes that a (repeated) field is an unordered list.
|
|
59
59
|
# This indicates that the service may provide the elements of the list
|
|
60
|
-
# in any arbitrary
|
|
60
|
+
# in any arbitrary order, rather than the order the user originally
|
|
61
61
|
# provided. Additionally, the list's order may or may not be stable.
|
|
62
62
|
UNORDERED_LIST = 6
|
|
63
|
+
|
|
64
|
+
# Denotes that this field returns a non-empty default value if not set.
|
|
65
|
+
# This indicates that if the user provides the empty value in a request,
|
|
66
|
+
# a non-empty value will be returned. The user will not be aware of what
|
|
67
|
+
# non-empty value to expect.
|
|
68
|
+
NON_EMPTY_DEFAULT = 7
|
|
63
69
|
end
|
|
64
70
|
end
|
|
65
71
|
end
|
|
@@ -0,0 +1,104 @@
|
|
|
1
|
+
# frozen_string_literal: true
|
|
2
|
+
|
|
3
|
+
# Copyright 2021 Google LLC
|
|
4
|
+
#
|
|
5
|
+
# Licensed under the Apache License, Version 2.0 (the "License");
|
|
6
|
+
# you may not use this file except in compliance with the License.
|
|
7
|
+
# You may obtain a copy of the License at
|
|
8
|
+
#
|
|
9
|
+
# https://www.apache.org/licenses/LICENSE-2.0
|
|
10
|
+
#
|
|
11
|
+
# Unless required by applicable law or agreed to in writing, software
|
|
12
|
+
# distributed under the License is distributed on an "AS IS" BASIS,
|
|
13
|
+
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
14
|
+
# See the License for the specific language governing permissions and
|
|
15
|
+
# limitations under the License.
|
|
16
|
+
|
|
17
|
+
# Auto-generated by gapic-generator-ruby. DO NOT EDIT!
|
|
18
|
+
|
|
19
|
+
|
|
20
|
+
module Google
|
|
21
|
+
module Cloud
|
|
22
|
+
module BinaryAuthorization
|
|
23
|
+
module V1beta1
|
|
24
|
+
# Represents an auditing event from Continuous Validation.
|
|
25
|
+
# @!attribute [rw] pod_event
|
|
26
|
+
# @return [::Google::Cloud::BinaryAuthorization::V1beta1::ContinuousValidationEvent::ContinuousValidationPodEvent]
|
|
27
|
+
# Pod event.
|
|
28
|
+
# @!attribute [rw] unsupported_policy_event
|
|
29
|
+
# @return [::Google::Cloud::BinaryAuthorization::V1beta1::ContinuousValidationEvent::UnsupportedPolicyEvent]
|
|
30
|
+
# Unsupported policy event.
|
|
31
|
+
class ContinuousValidationEvent
|
|
32
|
+
include ::Google::Protobuf::MessageExts
|
|
33
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
|
34
|
+
|
|
35
|
+
# An auditing event for one Pod.
|
|
36
|
+
# @!attribute [rw] pod
|
|
37
|
+
# @return [::String]
|
|
38
|
+
# The name of the Pod.
|
|
39
|
+
# @!attribute [rw] deploy_time
|
|
40
|
+
# @return [::Google::Protobuf::Timestamp]
|
|
41
|
+
# Deploy time of the Pod from k8s.
|
|
42
|
+
# @!attribute [rw] end_time
|
|
43
|
+
# @return [::Google::Protobuf::Timestamp]
|
|
44
|
+
# Termination time of the Pod from k8s, or nothing if still running.
|
|
45
|
+
# @!attribute [rw] verdict
|
|
46
|
+
# @return [::Google::Cloud::BinaryAuthorization::V1beta1::ContinuousValidationEvent::ContinuousValidationPodEvent::PolicyConformanceVerdict]
|
|
47
|
+
# Auditing verdict for this Pod.
|
|
48
|
+
# @!attribute [rw] images
|
|
49
|
+
# @return [::Array<::Google::Cloud::BinaryAuthorization::V1beta1::ContinuousValidationEvent::ContinuousValidationPodEvent::ImageDetails>]
|
|
50
|
+
# List of images with auditing details.
|
|
51
|
+
class ContinuousValidationPodEvent
|
|
52
|
+
include ::Google::Protobuf::MessageExts
|
|
53
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
|
54
|
+
|
|
55
|
+
# Container image with auditing details.
|
|
56
|
+
# @!attribute [rw] image
|
|
57
|
+
# @return [::String]
|
|
58
|
+
# The name of the image.
|
|
59
|
+
# @!attribute [rw] result
|
|
60
|
+
# @return [::Google::Cloud::BinaryAuthorization::V1beta1::ContinuousValidationEvent::ContinuousValidationPodEvent::ImageDetails::AuditResult]
|
|
61
|
+
# The result of the audit for this image.
|
|
62
|
+
# @!attribute [rw] description
|
|
63
|
+
# @return [::String]
|
|
64
|
+
# Description of the above result.
|
|
65
|
+
class ImageDetails
|
|
66
|
+
include ::Google::Protobuf::MessageExts
|
|
67
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
|
68
|
+
|
|
69
|
+
# Result of the audit.
|
|
70
|
+
module AuditResult
|
|
71
|
+
# Unspecified result. This is an error.
|
|
72
|
+
AUDIT_RESULT_UNSPECIFIED = 0
|
|
73
|
+
|
|
74
|
+
# Image is allowed.
|
|
75
|
+
ALLOW = 1
|
|
76
|
+
|
|
77
|
+
# Image is denied.
|
|
78
|
+
DENY = 2
|
|
79
|
+
end
|
|
80
|
+
end
|
|
81
|
+
|
|
82
|
+
# Audit time policy conformance verdict.
|
|
83
|
+
module PolicyConformanceVerdict
|
|
84
|
+
# We should always have a verdict. This is an error.
|
|
85
|
+
POLICY_CONFORMANCE_VERDICT_UNSPECIFIED = 0
|
|
86
|
+
|
|
87
|
+
# The pod violates the policy.
|
|
88
|
+
VIOLATES_POLICY = 1
|
|
89
|
+
end
|
|
90
|
+
end
|
|
91
|
+
|
|
92
|
+
# An event describing that the project policy is unsupported by CV.
|
|
93
|
+
# @!attribute [rw] description
|
|
94
|
+
# @return [::String]
|
|
95
|
+
# A description of the unsupported policy.
|
|
96
|
+
class UnsupportedPolicyEvent
|
|
97
|
+
include ::Google::Protobuf::MessageExts
|
|
98
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
|
99
|
+
end
|
|
100
|
+
end
|
|
101
|
+
end
|
|
102
|
+
end
|
|
103
|
+
end
|
|
104
|
+
end
|
|
@@ -74,10 +74,10 @@ module Google
|
|
|
74
74
|
# Not specified: DISABLE is assumed.
|
|
75
75
|
GLOBAL_POLICY_EVALUATION_MODE_UNSPECIFIED = 0
|
|
76
76
|
|
|
77
|
-
# Enables
|
|
77
|
+
# Enables system policy evaluation.
|
|
78
78
|
ENABLE = 1
|
|
79
79
|
|
|
80
|
-
# Disables
|
|
80
|
+
# Disables system policy evaluation.
|
|
81
81
|
DISABLE = 2
|
|
82
82
|
end
|
|
83
83
|
end
|
|
@@ -24,8 +24,9 @@ module Google
|
|
|
24
24
|
# Request message for [BinauthzManagementService.GetPolicy][].
|
|
25
25
|
# @!attribute [rw] name
|
|
26
26
|
# @return [::String]
|
|
27
|
-
# Required. The resource name of the
|
|
28
|
-
#
|
|
27
|
+
# Required. The resource name of the
|
|
28
|
+
# {::Google::Cloud::BinaryAuthorization::V1beta1::Policy policy} to retrieve, in
|
|
29
|
+
# the format `projects/*/policy`.
|
|
29
30
|
class GetPolicyRequest
|
|
30
31
|
include ::Google::Protobuf::MessageExts
|
|
31
32
|
extend ::Google::Protobuf::MessageExts::ClassMethods
|
|
@@ -34,9 +35,11 @@ module Google
|
|
|
34
35
|
# Request message for [BinauthzManagementService.UpdatePolicy][].
|
|
35
36
|
# @!attribute [rw] policy
|
|
36
37
|
# @return [::Google::Cloud::BinaryAuthorization::V1beta1::Policy]
|
|
37
|
-
# Required. A new or updated
|
|
38
|
-
#
|
|
39
|
-
#
|
|
38
|
+
# Required. A new or updated
|
|
39
|
+
# {::Google::Cloud::BinaryAuthorization::V1beta1::Policy policy} value. The
|
|
40
|
+
# service will overwrite the [policy
|
|
41
|
+
# name][google.cloud.binaryauthorization.v1beta1.Policy.name] field with the
|
|
42
|
+
# resource name in the request URL, in the format `projects/*/policy`.
|
|
40
43
|
class UpdatePolicyRequest
|
|
41
44
|
include ::Google::Protobuf::MessageExts
|
|
42
45
|
extend ::Google::Protobuf::MessageExts::ClassMethods
|
|
@@ -45,15 +48,19 @@ module Google
|
|
|
45
48
|
# Request message for [BinauthzManagementService.CreateAttestor][].
|
|
46
49
|
# @!attribute [rw] parent
|
|
47
50
|
# @return [::String]
|
|
48
|
-
# Required. The parent of this
|
|
51
|
+
# Required. The parent of this
|
|
52
|
+
# {::Google::Cloud::BinaryAuthorization::V1beta1::Attestor attestor}.
|
|
49
53
|
# @!attribute [rw] attestor_id
|
|
50
54
|
# @return [::String]
|
|
51
|
-
# Required. The
|
|
55
|
+
# Required. The
|
|
56
|
+
# {::Google::Cloud::BinaryAuthorization::V1beta1::Attestor attestors} ID.
|
|
52
57
|
# @!attribute [rw] attestor
|
|
53
58
|
# @return [::Google::Cloud::BinaryAuthorization::V1beta1::Attestor]
|
|
54
|
-
# Required. The initial
|
|
55
|
-
#
|
|
56
|
-
#
|
|
59
|
+
# Required. The initial
|
|
60
|
+
# {::Google::Cloud::BinaryAuthorization::V1beta1::Attestor attestor} value. The
|
|
61
|
+
# service will overwrite the [attestor
|
|
62
|
+
# name][google.cloud.binaryauthorization.v1beta1.Attestor.name] field with
|
|
63
|
+
# the resource name, in the format `projects/*/attestors/*`.
|
|
57
64
|
class CreateAttestorRequest
|
|
58
65
|
include ::Google::Protobuf::MessageExts
|
|
59
66
|
extend ::Google::Protobuf::MessageExts::ClassMethods
|
|
@@ -62,8 +69,9 @@ module Google
|
|
|
62
69
|
# Request message for [BinauthzManagementService.GetAttestor][].
|
|
63
70
|
# @!attribute [rw] name
|
|
64
71
|
# @return [::String]
|
|
65
|
-
# Required. The name of the
|
|
66
|
-
#
|
|
72
|
+
# Required. The name of the
|
|
73
|
+
# {::Google::Cloud::BinaryAuthorization::V1beta1::Attestor attestor} to retrieve,
|
|
74
|
+
# in the format `projects/*/attestors/*`.
|
|
67
75
|
class GetAttestorRequest
|
|
68
76
|
include ::Google::Protobuf::MessageExts
|
|
69
77
|
extend ::Google::Protobuf::MessageExts::ClassMethods
|
|
@@ -72,9 +80,12 @@ module Google
|
|
|
72
80
|
# Request message for [BinauthzManagementService.UpdateAttestor][].
|
|
73
81
|
# @!attribute [rw] attestor
|
|
74
82
|
# @return [::Google::Cloud::BinaryAuthorization::V1beta1::Attestor]
|
|
75
|
-
# Required. The updated
|
|
76
|
-
#
|
|
77
|
-
#
|
|
83
|
+
# Required. The updated
|
|
84
|
+
# {::Google::Cloud::BinaryAuthorization::V1beta1::Attestor attestor} value. The
|
|
85
|
+
# service will overwrite the [attestor
|
|
86
|
+
# name][google.cloud.binaryauthorization.v1beta1.Attestor.name] field with
|
|
87
|
+
# the resource name in the request URL, in the format
|
|
88
|
+
# `projects/*/attestors/*`.
|
|
78
89
|
class UpdateAttestorRequest
|
|
79
90
|
include ::Google::Protobuf::MessageExts
|
|
80
91
|
extend ::Google::Protobuf::MessageExts::ClassMethods
|
|
@@ -84,7 +95,8 @@ module Google
|
|
|
84
95
|
# @!attribute [rw] parent
|
|
85
96
|
# @return [::String]
|
|
86
97
|
# Required. The resource name of the project associated with the
|
|
87
|
-
# {::Google::Cloud::BinaryAuthorization::V1beta1::Attestor attestors}, in the
|
|
98
|
+
# {::Google::Cloud::BinaryAuthorization::V1beta1::Attestor attestors}, in the
|
|
99
|
+
# format `projects/*`.
|
|
88
100
|
# @!attribute [rw] page_size
|
|
89
101
|
# @return [::Integer]
|
|
90
102
|
# Requested page size. The server may return fewer results than requested. If
|
|
@@ -92,8 +104,9 @@ module Google
|
|
|
92
104
|
# @!attribute [rw] page_token
|
|
93
105
|
# @return [::String]
|
|
94
106
|
# A token identifying a page of results the server should return. Typically,
|
|
95
|
-
# this is the value of
|
|
96
|
-
#
|
|
107
|
+
# this is the value of
|
|
108
|
+
# {::Google::Cloud::BinaryAuthorization::V1beta1::ListAttestorsResponse#next_page_token ListAttestorsResponse.next_page_token}
|
|
109
|
+
# returned from the previous call to the `ListAttestors` method.
|
|
97
110
|
class ListAttestorsRequest
|
|
98
111
|
include ::Google::Protobuf::MessageExts
|
|
99
112
|
extend ::Google::Protobuf::MessageExts::ClassMethods
|
|
@@ -106,8 +119,9 @@ module Google
|
|
|
106
119
|
# @!attribute [rw] next_page_token
|
|
107
120
|
# @return [::String]
|
|
108
121
|
# A token to retrieve the next page of results. Pass this value in the
|
|
109
|
-
# {::Google::Cloud::BinaryAuthorization::V1beta1::ListAttestorsRequest#page_token ListAttestorsRequest.page_token}
|
|
110
|
-
# `ListAttestors` method to retrieve the
|
|
122
|
+
# {::Google::Cloud::BinaryAuthorization::V1beta1::ListAttestorsRequest#page_token ListAttestorsRequest.page_token}
|
|
123
|
+
# field in the subsequent call to the `ListAttestors` method to retrieve the
|
|
124
|
+
# next page of results.
|
|
111
125
|
class ListAttestorsResponse
|
|
112
126
|
include ::Google::Protobuf::MessageExts
|
|
113
127
|
extend ::Google::Protobuf::MessageExts::ClassMethods
|
|
@@ -116,8 +130,9 @@ module Google
|
|
|
116
130
|
# Request message for [BinauthzManagementService.DeleteAttestor][].
|
|
117
131
|
# @!attribute [rw] name
|
|
118
132
|
# @return [::String]
|
|
119
|
-
# Required. The name of the
|
|
120
|
-
#
|
|
133
|
+
# Required. The name of the
|
|
134
|
+
# {::Google::Cloud::BinaryAuthorization::V1beta1::Attestor attestors} to delete,
|
|
135
|
+
# in the format `projects/*/attestors/*`.
|
|
121
136
|
class DeleteAttestorRequest
|
|
122
137
|
include ::Google::Protobuf::MessageExts
|
|
123
138
|
extend ::Google::Protobuf::MessageExts::ClassMethods
|
metadata
CHANGED
|
@@ -1,29 +1,35 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: google-cloud-binary_authorization-v1beta1
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 0.
|
|
4
|
+
version: 0.3.3
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Google LLC
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: bin
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date: 2021-
|
|
11
|
+
date: 2021-08-05 00:00:00.000000000 Z
|
|
12
12
|
dependencies:
|
|
13
13
|
- !ruby/object:Gem::Dependency
|
|
14
14
|
name: gapic-common
|
|
15
15
|
requirement: !ruby/object:Gem::Requirement
|
|
16
16
|
requirements:
|
|
17
|
-
- - "
|
|
17
|
+
- - ">="
|
|
18
|
+
- !ruby/object:Gem::Version
|
|
19
|
+
version: '0.5'
|
|
20
|
+
- - "<"
|
|
18
21
|
- !ruby/object:Gem::Version
|
|
19
|
-
version:
|
|
22
|
+
version: 2.a
|
|
20
23
|
type: :runtime
|
|
21
24
|
prerelease: false
|
|
22
25
|
version_requirements: !ruby/object:Gem::Requirement
|
|
23
26
|
requirements:
|
|
24
|
-
- - "
|
|
27
|
+
- - ">="
|
|
28
|
+
- !ruby/object:Gem::Version
|
|
29
|
+
version: '0.5'
|
|
30
|
+
- - "<"
|
|
25
31
|
- !ruby/object:Gem::Version
|
|
26
|
-
version:
|
|
32
|
+
version: 2.a
|
|
27
33
|
- !ruby/object:Gem::Dependency
|
|
28
34
|
name: google-cloud-errors
|
|
29
35
|
requirement: !ruby/object:Gem::Requirement
|
|
@@ -44,14 +50,14 @@ dependencies:
|
|
|
44
50
|
requirements:
|
|
45
51
|
- - "~>"
|
|
46
52
|
- !ruby/object:Gem::Version
|
|
47
|
-
version: 1.
|
|
53
|
+
version: 1.25.1
|
|
48
54
|
type: :development
|
|
49
55
|
prerelease: false
|
|
50
56
|
version_requirements: !ruby/object:Gem::Requirement
|
|
51
57
|
requirements:
|
|
52
58
|
- - "~>"
|
|
53
59
|
- !ruby/object:Gem::Version
|
|
54
|
-
version: 1.
|
|
60
|
+
version: 1.25.1
|
|
55
61
|
- !ruby/object:Gem::Dependency
|
|
56
62
|
name: minitest
|
|
57
63
|
requirement: !ruby/object:Gem::Requirement
|
|
@@ -172,12 +178,14 @@ files:
|
|
|
172
178
|
- lib/google/cloud/binary_authorization/v1beta1/binauthz_management_service/credentials.rb
|
|
173
179
|
- lib/google/cloud/binary_authorization/v1beta1/binauthz_management_service/paths.rb
|
|
174
180
|
- lib/google/cloud/binary_authorization/v1beta1/version.rb
|
|
181
|
+
- lib/google/cloud/binaryauthorization/v1beta1/continuous_validation_logging_pb.rb
|
|
175
182
|
- lib/google/cloud/binaryauthorization/v1beta1/resources_pb.rb
|
|
176
183
|
- lib/google/cloud/binaryauthorization/v1beta1/service_pb.rb
|
|
177
184
|
- lib/google/cloud/binaryauthorization/v1beta1/service_services_pb.rb
|
|
178
185
|
- proto_docs/README.md
|
|
179
186
|
- proto_docs/google/api/field_behavior.rb
|
|
180
187
|
- proto_docs/google/api/resource.rb
|
|
188
|
+
- proto_docs/google/cloud/binaryauthorization/v1beta1/continuous_validation_logging.rb
|
|
181
189
|
- proto_docs/google/cloud/binaryauthorization/v1beta1/resources.rb
|
|
182
190
|
- proto_docs/google/cloud/binaryauthorization/v1beta1/service.rb
|
|
183
191
|
- proto_docs/google/protobuf/empty.rb
|
|
@@ -194,14 +202,14 @@ required_ruby_version: !ruby/object:Gem::Requirement
|
|
|
194
202
|
requirements:
|
|
195
203
|
- - ">="
|
|
196
204
|
- !ruby/object:Gem::Version
|
|
197
|
-
version: '2.
|
|
205
|
+
version: '2.5'
|
|
198
206
|
required_rubygems_version: !ruby/object:Gem::Requirement
|
|
199
207
|
requirements:
|
|
200
208
|
- - ">="
|
|
201
209
|
- !ruby/object:Gem::Version
|
|
202
210
|
version: '0'
|
|
203
211
|
requirements: []
|
|
204
|
-
rubygems_version: 3.2.
|
|
212
|
+
rubygems_version: 3.2.17
|
|
205
213
|
signing_key:
|
|
206
214
|
specification_version: 4
|
|
207
215
|
summary: API Client library for the Binary Authorization V1beta1 API
|