google-cloud-binary_authorization-v1beta1 0.8.0 → 0.10.0
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/lib/google/cloud/binary_authorization/v1beta1/binauthz_management_service/client.rb +10 -1
- data/lib/google/cloud/binary_authorization/v1beta1/binauthz_management_service/rest/client.rb +116 -0
- data/lib/google/cloud/binary_authorization/v1beta1/system_policy/client.rb +10 -1
- data/lib/google/cloud/binary_authorization/v1beta1/system_policy/rest/client.rb +16 -0
- data/lib/google/cloud/binary_authorization/v1beta1/version.rb +1 -1
- data/lib/google/cloud/binaryauthorization/v1beta1/continuous_validation_logging_pb.rb +5 -2
- data/proto_docs/google/api/field_behavior.rb +14 -0
- data/proto_docs/google/cloud/binaryauthorization/v1beta1/continuous_validation_logging.rb +69 -6
- metadata +5 -5
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA256:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: 7af7f63ffc6f3f76f89a4dacab34d9357dce8ef4314959fca90ef4904923f7c0
|
4
|
+
data.tar.gz: 5bc338d7e9d55c3db14ae54b97a1e56329fb94525f83e46aea33162b39c984fe
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: 85252cbc701bcb877e7159b23a8d6374e5d8312feb302d0f604767643c6be7edcf0ed7f2bd1ed893ebcdd1daebd8e43ced51ab45b78b88efea0b222909a4a3fe
|
7
|
+
data.tar.gz: 9be75b9662aca483a156accc931b4573e6d1eda06ad7ce08b692b0ca8383afc53a692537f423645f113f9b830276eb4bc29339ab1dab3ef508d3cca9490d08b5
|
@@ -176,7 +176,8 @@ module Google
|
|
176
176
|
credentials: credentials,
|
177
177
|
endpoint: @config.endpoint,
|
178
178
|
channel_args: @config.channel_args,
|
179
|
-
interceptors: @config.interceptors
|
179
|
+
interceptors: @config.interceptors,
|
180
|
+
channel_pool_config: @config.channel_pool
|
180
181
|
)
|
181
182
|
end
|
182
183
|
|
@@ -939,6 +940,14 @@ module Google
|
|
939
940
|
end
|
940
941
|
end
|
941
942
|
|
943
|
+
##
|
944
|
+
# Configuration for the channel pool
|
945
|
+
# @return [::Gapic::ServiceStub::ChannelPool::Configuration]
|
946
|
+
#
|
947
|
+
def channel_pool
|
948
|
+
@channel_pool ||= ::Gapic::ServiceStub::ChannelPool::Configuration.new
|
949
|
+
end
|
950
|
+
|
942
951
|
##
|
943
952
|
# Configuration RPC class for the BinauthzManagementService API.
|
944
953
|
#
|
data/lib/google/cloud/binary_authorization/v1beta1/binauthz_management_service/rest/client.rb
CHANGED
@@ -207,6 +207,22 @@ module Google
|
|
207
207
|
# @return [::Google::Cloud::BinaryAuthorization::V1beta1::Policy]
|
208
208
|
#
|
209
209
|
# @raise [::Google::Cloud::Error] if the REST call is aborted.
|
210
|
+
#
|
211
|
+
# @example Basic example
|
212
|
+
# require "google/cloud/binary_authorization/v1beta1"
|
213
|
+
#
|
214
|
+
# # Create a client object. The client can be reused for multiple calls.
|
215
|
+
# client = Google::Cloud::BinaryAuthorization::V1beta1::BinauthzManagementService::Rest::Client.new
|
216
|
+
#
|
217
|
+
# # Create a request. To set request fields, pass in keyword arguments.
|
218
|
+
# request = Google::Cloud::BinaryAuthorization::V1beta1::GetPolicyRequest.new
|
219
|
+
#
|
220
|
+
# # Call the get_policy method.
|
221
|
+
# result = client.get_policy request
|
222
|
+
#
|
223
|
+
# # The returned object is of type Google::Cloud::BinaryAuthorization::V1beta1::Policy.
|
224
|
+
# p result
|
225
|
+
#
|
210
226
|
def get_policy request, options = nil
|
211
227
|
raise ::ArgumentError, "request must be provided" if request.nil?
|
212
228
|
|
@@ -275,6 +291,22 @@ module Google
|
|
275
291
|
# @return [::Google::Cloud::BinaryAuthorization::V1beta1::Policy]
|
276
292
|
#
|
277
293
|
# @raise [::Google::Cloud::Error] if the REST call is aborted.
|
294
|
+
#
|
295
|
+
# @example Basic example
|
296
|
+
# require "google/cloud/binary_authorization/v1beta1"
|
297
|
+
#
|
298
|
+
# # Create a client object. The client can be reused for multiple calls.
|
299
|
+
# client = Google::Cloud::BinaryAuthorization::V1beta1::BinauthzManagementService::Rest::Client.new
|
300
|
+
#
|
301
|
+
# # Create a request. To set request fields, pass in keyword arguments.
|
302
|
+
# request = Google::Cloud::BinaryAuthorization::V1beta1::UpdatePolicyRequest.new
|
303
|
+
#
|
304
|
+
# # Call the update_policy method.
|
305
|
+
# result = client.update_policy request
|
306
|
+
#
|
307
|
+
# # The returned object is of type Google::Cloud::BinaryAuthorization::V1beta1::Policy.
|
308
|
+
# p result
|
309
|
+
#
|
278
310
|
def update_policy request, options = nil
|
279
311
|
raise ::ArgumentError, "request must be provided" if request.nil?
|
280
312
|
|
@@ -346,6 +378,22 @@ module Google
|
|
346
378
|
# @return [::Google::Cloud::BinaryAuthorization::V1beta1::Attestor]
|
347
379
|
#
|
348
380
|
# @raise [::Google::Cloud::Error] if the REST call is aborted.
|
381
|
+
#
|
382
|
+
# @example Basic example
|
383
|
+
# require "google/cloud/binary_authorization/v1beta1"
|
384
|
+
#
|
385
|
+
# # Create a client object. The client can be reused for multiple calls.
|
386
|
+
# client = Google::Cloud::BinaryAuthorization::V1beta1::BinauthzManagementService::Rest::Client.new
|
387
|
+
#
|
388
|
+
# # Create a request. To set request fields, pass in keyword arguments.
|
389
|
+
# request = Google::Cloud::BinaryAuthorization::V1beta1::CreateAttestorRequest.new
|
390
|
+
#
|
391
|
+
# # Call the create_attestor method.
|
392
|
+
# result = client.create_attestor request
|
393
|
+
#
|
394
|
+
# # The returned object is of type Google::Cloud::BinaryAuthorization::V1beta1::Attestor.
|
395
|
+
# p result
|
396
|
+
#
|
349
397
|
def create_attestor request, options = nil
|
350
398
|
raise ::ArgumentError, "request must be provided" if request.nil?
|
351
399
|
|
@@ -410,6 +458,22 @@ module Google
|
|
410
458
|
# @return [::Google::Cloud::BinaryAuthorization::V1beta1::Attestor]
|
411
459
|
#
|
412
460
|
# @raise [::Google::Cloud::Error] if the REST call is aborted.
|
461
|
+
#
|
462
|
+
# @example Basic example
|
463
|
+
# require "google/cloud/binary_authorization/v1beta1"
|
464
|
+
#
|
465
|
+
# # Create a client object. The client can be reused for multiple calls.
|
466
|
+
# client = Google::Cloud::BinaryAuthorization::V1beta1::BinauthzManagementService::Rest::Client.new
|
467
|
+
#
|
468
|
+
# # Create a request. To set request fields, pass in keyword arguments.
|
469
|
+
# request = Google::Cloud::BinaryAuthorization::V1beta1::GetAttestorRequest.new
|
470
|
+
#
|
471
|
+
# # Call the get_attestor method.
|
472
|
+
# result = client.get_attestor request
|
473
|
+
#
|
474
|
+
# # The returned object is of type Google::Cloud::BinaryAuthorization::V1beta1::Attestor.
|
475
|
+
# p result
|
476
|
+
#
|
413
477
|
def get_attestor request, options = nil
|
414
478
|
raise ::ArgumentError, "request must be provided" if request.nil?
|
415
479
|
|
@@ -475,6 +539,22 @@ module Google
|
|
475
539
|
# @return [::Google::Cloud::BinaryAuthorization::V1beta1::Attestor]
|
476
540
|
#
|
477
541
|
# @raise [::Google::Cloud::Error] if the REST call is aborted.
|
542
|
+
#
|
543
|
+
# @example Basic example
|
544
|
+
# require "google/cloud/binary_authorization/v1beta1"
|
545
|
+
#
|
546
|
+
# # Create a client object. The client can be reused for multiple calls.
|
547
|
+
# client = Google::Cloud::BinaryAuthorization::V1beta1::BinauthzManagementService::Rest::Client.new
|
548
|
+
#
|
549
|
+
# # Create a request. To set request fields, pass in keyword arguments.
|
550
|
+
# request = Google::Cloud::BinaryAuthorization::V1beta1::UpdateAttestorRequest.new
|
551
|
+
#
|
552
|
+
# # Call the update_attestor method.
|
553
|
+
# result = client.update_attestor request
|
554
|
+
#
|
555
|
+
# # The returned object is of type Google::Cloud::BinaryAuthorization::V1beta1::Attestor.
|
556
|
+
# p result
|
557
|
+
#
|
478
558
|
def update_attestor request, options = nil
|
479
559
|
raise ::ArgumentError, "request must be provided" if request.nil?
|
480
560
|
|
@@ -546,6 +626,26 @@ module Google
|
|
546
626
|
# @return [::Gapic::Rest::PagedEnumerable<::Google::Cloud::BinaryAuthorization::V1beta1::Attestor>]
|
547
627
|
#
|
548
628
|
# @raise [::Google::Cloud::Error] if the REST call is aborted.
|
629
|
+
#
|
630
|
+
# @example Basic example
|
631
|
+
# require "google/cloud/binary_authorization/v1beta1"
|
632
|
+
#
|
633
|
+
# # Create a client object. The client can be reused for multiple calls.
|
634
|
+
# client = Google::Cloud::BinaryAuthorization::V1beta1::BinauthzManagementService::Rest::Client.new
|
635
|
+
#
|
636
|
+
# # Create a request. To set request fields, pass in keyword arguments.
|
637
|
+
# request = Google::Cloud::BinaryAuthorization::V1beta1::ListAttestorsRequest.new
|
638
|
+
#
|
639
|
+
# # Call the list_attestors method.
|
640
|
+
# result = client.list_attestors request
|
641
|
+
#
|
642
|
+
# # The returned object is of type Gapic::PagedEnumerable. You can iterate
|
643
|
+
# # over elements, and API calls will be issued to fetch pages as needed.
|
644
|
+
# result.each do |item|
|
645
|
+
# # Each element is of type ::Google::Cloud::BinaryAuthorization::V1beta1::Attestor.
|
646
|
+
# p item
|
647
|
+
# end
|
648
|
+
#
|
549
649
|
def list_attestors request, options = nil
|
550
650
|
raise ::ArgumentError, "request must be provided" if request.nil?
|
551
651
|
|
@@ -611,6 +711,22 @@ module Google
|
|
611
711
|
# @return [::Google::Protobuf::Empty]
|
612
712
|
#
|
613
713
|
# @raise [::Google::Cloud::Error] if the REST call is aborted.
|
714
|
+
#
|
715
|
+
# @example Basic example
|
716
|
+
# require "google/cloud/binary_authorization/v1beta1"
|
717
|
+
#
|
718
|
+
# # Create a client object. The client can be reused for multiple calls.
|
719
|
+
# client = Google::Cloud::BinaryAuthorization::V1beta1::BinauthzManagementService::Rest::Client.new
|
720
|
+
#
|
721
|
+
# # Create a request. To set request fields, pass in keyword arguments.
|
722
|
+
# request = Google::Cloud::BinaryAuthorization::V1beta1::DeleteAttestorRequest.new
|
723
|
+
#
|
724
|
+
# # Call the delete_attestor method.
|
725
|
+
# result = client.delete_attestor request
|
726
|
+
#
|
727
|
+
# # The returned object is of type Google::Protobuf::Empty.
|
728
|
+
# p result
|
729
|
+
#
|
614
730
|
def delete_attestor request, options = nil
|
615
731
|
raise ::ArgumentError, "request must be provided" if request.nil?
|
616
732
|
|
@@ -138,7 +138,8 @@ module Google
|
|
138
138
|
credentials: credentials,
|
139
139
|
endpoint: @config.endpoint,
|
140
140
|
channel_args: @config.channel_args,
|
141
|
-
interceptors: @config.interceptors
|
141
|
+
interceptors: @config.interceptors,
|
142
|
+
channel_pool_config: @config.channel_pool
|
142
143
|
)
|
143
144
|
end
|
144
145
|
|
@@ -349,6 +350,14 @@ module Google
|
|
349
350
|
end
|
350
351
|
end
|
351
352
|
|
353
|
+
##
|
354
|
+
# Configuration for the channel pool
|
355
|
+
# @return [::Gapic::ServiceStub::ChannelPool::Configuration]
|
356
|
+
#
|
357
|
+
def channel_pool
|
358
|
+
@channel_pool ||= ::Gapic::ServiceStub::ChannelPool::Configuration.new
|
359
|
+
end
|
360
|
+
|
352
361
|
##
|
353
362
|
# Configuration RPC class for the SystemPolicy API.
|
354
363
|
#
|
@@ -163,6 +163,22 @@ module Google
|
|
163
163
|
# @return [::Google::Cloud::BinaryAuthorization::V1beta1::Policy]
|
164
164
|
#
|
165
165
|
# @raise [::Google::Cloud::Error] if the REST call is aborted.
|
166
|
+
#
|
167
|
+
# @example Basic example
|
168
|
+
# require "google/cloud/binary_authorization/v1beta1"
|
169
|
+
#
|
170
|
+
# # Create a client object. The client can be reused for multiple calls.
|
171
|
+
# client = Google::Cloud::BinaryAuthorization::V1beta1::SystemPolicy::Rest::Client.new
|
172
|
+
#
|
173
|
+
# # Create a request. To set request fields, pass in keyword arguments.
|
174
|
+
# request = Google::Cloud::BinaryAuthorization::V1beta1::GetSystemPolicyRequest.new
|
175
|
+
#
|
176
|
+
# # Call the get_system_policy method.
|
177
|
+
# result = client.get_system_policy request
|
178
|
+
#
|
179
|
+
# # The returned object is of type Google::Cloud::BinaryAuthorization::V1beta1::Policy.
|
180
|
+
# p result
|
181
|
+
#
|
166
182
|
def get_system_policy request, options = nil
|
167
183
|
raise ::ArgumentError, "request must be provided" if request.nil?
|
168
184
|
|
@@ -7,7 +7,7 @@ require 'google/protobuf'
|
|
7
7
|
require 'google/protobuf/timestamp_pb'
|
8
8
|
|
9
9
|
|
10
|
-
descriptor_data = "\nLgoogle/cloud/binaryauthorization/v1beta1/continuous_validation_logging.proto\x12(google.cloud.binaryauthorization.v1beta1\x1a\x1fgoogle/protobuf/timestamp.proto\"\
|
10
|
+
descriptor_data = "\nLgoogle/cloud/binaryauthorization/v1beta1/continuous_validation_logging.proto\x12(google.cloud.binaryauthorization.v1beta1\x1a\x1fgoogle/protobuf/timestamp.proto\"\xea\x0e\n\x19\x43ontinuousValidationEvent\x12u\n\tpod_event\x18\x01 \x01(\x0b\x32`.google.cloud.binaryauthorization.v1beta1.ContinuousValidationEvent.ContinuousValidationPodEventH\x00\x12r\n\x12\x63onfig_error_event\x18\x04 \x01(\x0b\x32T.google.cloud.binaryauthorization.v1beta1.ContinuousValidationEvent.ConfigErrorEventH\x00\x1a\xaa\x0c\n\x1c\x43ontinuousValidationPodEvent\x12\x15\n\rpod_namespace\x18\x07 \x01(\t\x12\x0b\n\x03pod\x18\x01 \x01(\t\x12\x13\n\x0bpolicy_name\x18\x08 \x01(\t\x12/\n\x0b\x64\x65ploy_time\x18\x02 \x01(\x0b\x32\x1a.google.protobuf.Timestamp\x12,\n\x08\x65nd_time\x18\x03 \x01(\x0b\x32\x1a.google.protobuf.Timestamp\x12\x8a\x01\n\x07verdict\x18\x04 \x01(\x0e\x32y.google.cloud.binaryauthorization.v1beta1.ContinuousValidationEvent.ContinuousValidationPodEvent.PolicyConformanceVerdict\x12}\n\x06images\x18\x05 \x03(\x0b\x32m.google.cloud.binaryauthorization.v1beta1.ContinuousValidationEvent.ContinuousValidationPodEvent.ImageDetails\x1a\x88\x08\n\x0cImageDetails\x12\r\n\x05image\x18\x01 \x01(\t\x12\x89\x01\n\x06result\x18\x02 \x01(\x0e\x32y.google.cloud.binaryauthorization.v1beta1.ContinuousValidationEvent.ContinuousValidationPodEvent.ImageDetails.AuditResult\x12\x13\n\x0b\x64\x65scription\x18\x03 \x01(\t\x12\x90\x01\n\rcheck_results\x18\x04 \x03(\x0b\x32y.google.cloud.binaryauthorization.v1beta1.ContinuousValidationEvent.ContinuousValidationPodEvent.ImageDetails.CheckResult\x1a\xf2\x04\n\x0b\x43heckResult\x12\x17\n\x0f\x63heck_set_index\x18\x01 \x01(\t\x12\x16\n\x0e\x63heck_set_name\x18\x02 \x01(\t\x12\xa1\x01\n\x0f\x63heck_set_scope\x18\x03 \x01(\x0b\x32\x87\x01.google.cloud.binaryauthorization.v1beta1.ContinuousValidationEvent.ContinuousValidationPodEvent.ImageDetails.CheckResult.CheckSetScope\x12\x13\n\x0b\x63heck_index\x18\x04 \x01(\t\x12\x12\n\ncheck_name\x18\x05 \x01(\t\x12\x12\n\ncheck_type\x18\x06 \x01(\t\x12\x98\x01\n\x07verdict\x18\x07 \x01(\x0e\x32\x86\x01.google.cloud.binaryauthorization.v1beta1.ContinuousValidationEvent.ContinuousValidationPodEvent.ImageDetails.CheckResult.CheckVerdict\x12\x13\n\x0b\x65xplanation\x18\x08 \x01(\t\x1a^\n\rCheckSetScope\x12$\n\x1akubernetes_service_account\x18\x01 \x01(\tH\x00\x12\x1e\n\x14kubernetes_namespace\x18\x02 \x01(\tH\x00\x42\x07\n\x05scope\"A\n\x0c\x43heckVerdict\x12\x1d\n\x19\x43HECK_VERDICT_UNSPECIFIED\x10\x00\x12\x12\n\x0eNON_CONFORMANT\x10\x01\"@\n\x0b\x41uditResult\x12\x1c\n\x18\x41UDIT_RESULT_UNSPECIFIED\x10\x00\x12\t\n\x05\x41LLOW\x10\x01\x12\x08\n\x04\x44\x45NY\x10\x02\"[\n\x18PolicyConformanceVerdict\x12*\n&POLICY_CONFORMANCE_VERDICT_UNSPECIFIED\x10\x00\x12\x13\n\x0fVIOLATES_POLICY\x10\x01\x1a\'\n\x10\x43onfigErrorEvent\x12\x13\n\x0b\x64\x65scription\x18\x01 \x01(\tB\x0c\n\nevent_typeB\xb9\x02\n,com.google.cloud.binaryauthorization.v1beta1B ContinuousValidationLoggingProtoP\x01Z^cloud.google.com/go/binaryauthorization/apiv1beta1/binaryauthorizationpb;binaryauthorizationpb\xf8\x01\x01\xaa\x02(Google.Cloud.BinaryAuthorization.V1Beta1\xca\x02(Google\\Cloud\\BinaryAuthorization\\V1beta1\xea\x02+Google::Cloud::BinaryAuthorization::V1beta1b\x06proto3"
|
11
11
|
|
12
12
|
pool = Google::Protobuf::DescriptorPool.generated_pool
|
13
13
|
|
@@ -41,9 +41,12 @@ module Google
|
|
41
41
|
ContinuousValidationEvent = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.binaryauthorization.v1beta1.ContinuousValidationEvent").msgclass
|
42
42
|
ContinuousValidationEvent::ContinuousValidationPodEvent = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.binaryauthorization.v1beta1.ContinuousValidationEvent.ContinuousValidationPodEvent").msgclass
|
43
43
|
ContinuousValidationEvent::ContinuousValidationPodEvent::ImageDetails = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.binaryauthorization.v1beta1.ContinuousValidationEvent.ContinuousValidationPodEvent.ImageDetails").msgclass
|
44
|
+
ContinuousValidationEvent::ContinuousValidationPodEvent::ImageDetails::CheckResult = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.binaryauthorization.v1beta1.ContinuousValidationEvent.ContinuousValidationPodEvent.ImageDetails.CheckResult").msgclass
|
45
|
+
ContinuousValidationEvent::ContinuousValidationPodEvent::ImageDetails::CheckResult::CheckSetScope = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.binaryauthorization.v1beta1.ContinuousValidationEvent.ContinuousValidationPodEvent.ImageDetails.CheckResult.CheckSetScope").msgclass
|
46
|
+
ContinuousValidationEvent::ContinuousValidationPodEvent::ImageDetails::CheckResult::CheckVerdict = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.binaryauthorization.v1beta1.ContinuousValidationEvent.ContinuousValidationPodEvent.ImageDetails.CheckResult.CheckVerdict").enummodule
|
44
47
|
ContinuousValidationEvent::ContinuousValidationPodEvent::ImageDetails::AuditResult = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.binaryauthorization.v1beta1.ContinuousValidationEvent.ContinuousValidationPodEvent.ImageDetails.AuditResult").enummodule
|
45
48
|
ContinuousValidationEvent::ContinuousValidationPodEvent::PolicyConformanceVerdict = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.binaryauthorization.v1beta1.ContinuousValidationEvent.ContinuousValidationPodEvent.PolicyConformanceVerdict").enummodule
|
46
|
-
ContinuousValidationEvent::
|
49
|
+
ContinuousValidationEvent::ConfigErrorEvent = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.binaryauthorization.v1beta1.ContinuousValidationEvent.ConfigErrorEvent").msgclass
|
47
50
|
end
|
48
51
|
end
|
49
52
|
end
|
@@ -66,6 +66,20 @@ module Google
|
|
66
66
|
# a non-empty value will be returned. The user will not be aware of what
|
67
67
|
# non-empty value to expect.
|
68
68
|
NON_EMPTY_DEFAULT = 7
|
69
|
+
|
70
|
+
# Denotes that the field in a resource (a message annotated with
|
71
|
+
# google.api.resource) is used in the resource name to uniquely identify the
|
72
|
+
# resource. For AIP-compliant APIs, this should only be applied to the
|
73
|
+
# `name` field on the resource.
|
74
|
+
#
|
75
|
+
# This behavior should not be applied to references to other resources within
|
76
|
+
# the message.
|
77
|
+
#
|
78
|
+
# The identifier field of resources often have different field behavior
|
79
|
+
# depending on the request it is embedded in (e.g. for Create methods name
|
80
|
+
# is optional and unused, while for Update methods it is required). Instead
|
81
|
+
# of method-specific annotations, only `IDENTIFIER` is required.
|
82
|
+
IDENTIFIER = 8
|
69
83
|
end
|
70
84
|
end
|
71
85
|
end
|
@@ -25,9 +25,9 @@ module Google
|
|
25
25
|
# @!attribute [rw] pod_event
|
26
26
|
# @return [::Google::Cloud::BinaryAuthorization::V1beta1::ContinuousValidationEvent::ContinuousValidationPodEvent]
|
27
27
|
# Pod event.
|
28
|
-
# @!attribute [rw]
|
29
|
-
# @return [::Google::Cloud::BinaryAuthorization::V1beta1::ContinuousValidationEvent::
|
30
|
-
#
|
28
|
+
# @!attribute [rw] config_error_event
|
29
|
+
# @return [::Google::Cloud::BinaryAuthorization::V1beta1::ContinuousValidationEvent::ConfigErrorEvent]
|
30
|
+
# Config error event.
|
31
31
|
class ContinuousValidationEvent
|
32
32
|
include ::Google::Protobuf::MessageExts
|
33
33
|
extend ::Google::Protobuf::MessageExts::ClassMethods
|
@@ -39,6 +39,9 @@ module Google
|
|
39
39
|
# @!attribute [rw] pod
|
40
40
|
# @return [::String]
|
41
41
|
# The name of the Pod.
|
42
|
+
# @!attribute [rw] policy_name
|
43
|
+
# @return [::String]
|
44
|
+
# The name of the policy.
|
42
45
|
# @!attribute [rw] deploy_time
|
43
46
|
# @return [::Google::Protobuf::Timestamp]
|
44
47
|
# Deploy time of the Pod from k8s.
|
@@ -65,10 +68,69 @@ module Google
|
|
65
68
|
# @!attribute [rw] description
|
66
69
|
# @return [::String]
|
67
70
|
# Description of the above result.
|
71
|
+
# @!attribute [rw] check_results
|
72
|
+
# @return [::Array<::Google::Cloud::BinaryAuthorization::V1beta1::ContinuousValidationEvent::ContinuousValidationPodEvent::ImageDetails::CheckResult>]
|
73
|
+
# List of check results.
|
68
74
|
class ImageDetails
|
69
75
|
include ::Google::Protobuf::MessageExts
|
70
76
|
extend ::Google::Protobuf::MessageExts::ClassMethods
|
71
77
|
|
78
|
+
# @!attribute [rw] check_set_index
|
79
|
+
# @return [::String]
|
80
|
+
# The index of the check set.
|
81
|
+
# @!attribute [rw] check_set_name
|
82
|
+
# @return [::String]
|
83
|
+
# The name of the check set.
|
84
|
+
# @!attribute [rw] check_set_scope
|
85
|
+
# @return [::Google::Cloud::BinaryAuthorization::V1beta1::ContinuousValidationEvent::ContinuousValidationPodEvent::ImageDetails::CheckResult::CheckSetScope]
|
86
|
+
# The scope of the check set.
|
87
|
+
# @!attribute [rw] check_index
|
88
|
+
# @return [::String]
|
89
|
+
# The index of the check.
|
90
|
+
# @!attribute [rw] check_name
|
91
|
+
# @return [::String]
|
92
|
+
# The name of the check.
|
93
|
+
# @!attribute [rw] check_type
|
94
|
+
# @return [::String]
|
95
|
+
# The type of the check.
|
96
|
+
# @!attribute [rw] verdict
|
97
|
+
# @return [::Google::Cloud::BinaryAuthorization::V1beta1::ContinuousValidationEvent::ContinuousValidationPodEvent::ImageDetails::CheckResult::CheckVerdict]
|
98
|
+
# The verdict of this check.
|
99
|
+
# @!attribute [rw] explanation
|
100
|
+
# @return [::String]
|
101
|
+
# User-friendly explanation of this check result.
|
102
|
+
class CheckResult
|
103
|
+
include ::Google::Protobuf::MessageExts
|
104
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
105
|
+
|
106
|
+
# A scope specifier for check sets.
|
107
|
+
# @!attribute [rw] kubernetes_service_account
|
108
|
+
# @return [::String]
|
109
|
+
# Matches a single Kubernetes service account, e.g.
|
110
|
+
# 'my-namespace:my-service-account'.
|
111
|
+
# `kubernetes_service_account` scope is always more specific than
|
112
|
+
# `kubernetes_namespace` scope for the same namespace.
|
113
|
+
# @!attribute [rw] kubernetes_namespace
|
114
|
+
# @return [::String]
|
115
|
+
# Matches all Kubernetes service accounts in the provided
|
116
|
+
# namespace, unless a more specific `kubernetes_service_account`
|
117
|
+
# scope already matched.
|
118
|
+
class CheckSetScope
|
119
|
+
include ::Google::Protobuf::MessageExts
|
120
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
121
|
+
end
|
122
|
+
|
123
|
+
# Result of evaluating one check.
|
124
|
+
module CheckVerdict
|
125
|
+
# We should always have a verdict. This is an error.
|
126
|
+
CHECK_VERDICT_UNSPECIFIED = 0
|
127
|
+
|
128
|
+
# The check was successfully evaluated and the image did not satisfy
|
129
|
+
# the check.
|
130
|
+
NON_CONFORMANT = 1
|
131
|
+
end
|
132
|
+
end
|
133
|
+
|
72
134
|
# Result of the audit.
|
73
135
|
module AuditResult
|
74
136
|
# Unspecified result. This is an error.
|
@@ -92,11 +154,12 @@ module Google
|
|
92
154
|
end
|
93
155
|
end
|
94
156
|
|
95
|
-
# An event describing
|
157
|
+
# An event describing a user-actionable configuration issue that prevents CV
|
158
|
+
# from auditing.
|
96
159
|
# @!attribute [rw] description
|
97
160
|
# @return [::String]
|
98
|
-
# A description of the
|
99
|
-
class
|
161
|
+
# A description of the issue.
|
162
|
+
class ConfigErrorEvent
|
100
163
|
include ::Google::Protobuf::MessageExts
|
101
164
|
extend ::Google::Protobuf::MessageExts::ClassMethods
|
102
165
|
end
|
metadata
CHANGED
@@ -1,14 +1,14 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: google-cloud-binary_authorization-v1beta1
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 0.
|
4
|
+
version: 0.10.0
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- Google LLC
|
8
8
|
autorequire:
|
9
9
|
bindir: bin
|
10
10
|
cert_chain: []
|
11
|
-
date: 2023-
|
11
|
+
date: 2023-09-12 00:00:00.000000000 Z
|
12
12
|
dependencies:
|
13
13
|
- !ruby/object:Gem::Dependency
|
14
14
|
name: gapic-common
|
@@ -16,7 +16,7 @@ dependencies:
|
|
16
16
|
requirements:
|
17
17
|
- - ">="
|
18
18
|
- !ruby/object:Gem::Version
|
19
|
-
version: 0.
|
19
|
+
version: 0.20.0
|
20
20
|
- - "<"
|
21
21
|
- !ruby/object:Gem::Version
|
22
22
|
version: 2.a
|
@@ -26,7 +26,7 @@ dependencies:
|
|
26
26
|
requirements:
|
27
27
|
- - ">="
|
28
28
|
- !ruby/object:Gem::Version
|
29
|
-
version: 0.
|
29
|
+
version: 0.20.0
|
30
30
|
- - "<"
|
31
31
|
- !ruby/object:Gem::Version
|
32
32
|
version: 2.a
|
@@ -223,7 +223,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
|
|
223
223
|
- !ruby/object:Gem::Version
|
224
224
|
version: '0'
|
225
225
|
requirements: []
|
226
|
-
rubygems_version: 3.4.
|
226
|
+
rubygems_version: 3.4.19
|
227
227
|
signing_key:
|
228
228
|
specification_version: 4
|
229
229
|
summary: The management interface for Binary Authorization, a system providing policy
|