RubyGems - google-cloud-kms - Versions diffs - 1.6.0 → 2.0.0 - Mend

google-cloud-kms 1.6.0 → 2.0.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (27) hide show

checksums.yaml +4 -4
data/.yardopts +2 -1
data/AUTHENTICATION.md +51 -54
data/LICENSE.md +203 -0
data/MIGRATING.md +326 -0
data/README.md +33 -44
data/lib/{google/cloud/kms/v1/doc/google/iam/v1/iam_policy.rb → google-cloud-kms.rb} +4 -6
data/lib/google/cloud/kms.rb +92 -122
data/lib/google/cloud/kms/version.rb +6 -2
metadata +50 -63
data/LICENSE +0 -201
data/lib/google/cloud/kms/v1.rb +0 -159
data/lib/google/cloud/kms/v1/credentials.rb +0 -42
data/lib/google/cloud/kms/v1/doc/google/cloud/kms/v1/resources.rb +0 -540
data/lib/google/cloud/kms/v1/doc/google/cloud/kms/v1/service.rb +0 -491
data/lib/google/cloud/kms/v1/doc/google/iam/v1/options.rb +0 -21
data/lib/google/cloud/kms/v1/doc/google/iam/v1/policy.rb +0 -21
data/lib/google/cloud/kms/v1/doc/google/protobuf/duration.rb +0 -91
data/lib/google/cloud/kms/v1/doc/google/protobuf/field_mask.rb +0 -222
data/lib/google/cloud/kms/v1/doc/google/protobuf/timestamp.rb +0 -113
data/lib/google/cloud/kms/v1/doc/google/type/expr.rb +0 -19
data/lib/google/cloud/kms/v1/helpers.rb +0 -80
data/lib/google/cloud/kms/v1/key_management_service_client.rb +0 -1805
data/lib/google/cloud/kms/v1/key_management_service_client_config.json +0 -162
data/lib/google/cloud/kms/v1/resources_pb.rb +0 -161
data/lib/google/cloud/kms/v1/service_pb.rb +0 -209
data/lib/google/cloud/kms/v1/service_services_pb.rb +0 -151

data/lib/google/cloud/kms/v1/doc/google/type/expr.rb DELETED

@@ -1,19 +0,0 @@
-# Copyright 2020 Google LLC
-#
-# Licensed under the Apache License, Version 2.0 (the "License");
-# you may not use this file except in compliance with the License.
-# You may obtain a copy of the License at
-#
-#     https://www.apache.org/licenses/LICENSE-2.0
-#
-# Unless required by applicable law or agreed to in writing, software
-# distributed under the License is distributed on an "AS IS" BASIS,
-# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-# See the License for the specific language governing permissions and
-# limitations under the License.
-module Google
-  module Type
-  end
-end

data/lib/google/cloud/kms/v1/helpers.rb DELETED

@@ -1,80 +0,0 @@
-# Copyright 2018 Google LLC
-#
-# Licensed under the Apache License, Version 2.0 (the "License");
-# you may not use this file except in compliance with the License.
-# You may obtain a copy of the License at
-#
-#     https://www.apache.org/licenses/LICENSE-2.0
-#
-# Unless required by applicable law or agreed to in writing, software
-# distributed under the License is distributed on an "AS IS" BASIS,
-# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-# See the License for the specific language governing permissions and
-# # limitations under the License.
- module Google
-  module Cloud
-    module Kms
-      module V1
-        class KeyManagementServiceClient
-          # Alias for Google::Cloud::Kms::V1::KeyManagementServiceClient.crypto_key_path.
-          # @param project [String]
-          # @param location [String]
-          # @param key_ring [String]
-          # @param crypto_key [String]
-          # @return [String]
-          def crypto_key_path project, location, key_ring, crypto_key
-            self.class.crypto_key_path project, location, key_ring, crypto_key
-          end
-          # Alias for Google::Cloud::Kms::V1::KeyManagementServiceClient.crypto_key_path_path.
-          # @param project [String]
-          # @param location [String]
-          # @param key_ring [String]
-          # @param crypto_key_path [String]
-          # @return [String]
-          def crypto_key_path_path project, location, key_ring, crypto_key_path
-            self.class.crypto_key_path_path project, location, key_ring, crypto_key_path
-          end
-          # Alias for Google::Cloud::Kms::V1::KeyManagementServiceClient.crypto_key_version_path.
-          # @param project [String]
-          # @param location [String]
-          # @param key_ring [String]
-          # @param crypto_key [String]
-          # @param crypto_key_version [String]
-          # @return [String]
-          def crypto_key_version_path project, location, key_ring, crypto_key, crypto_key_version
-            self.class.crypto_key_version_path project, location, key_ring, crypto_key, crypto_key_version
-          end
-          # Alias for Google::Cloud::Kms::V1::KeyManagementServiceClient.import_job_path.
-          # @param project [String]
-          # @param location [String]
-          # @param key_ring [String]
-          # @param import_job [String]
-          # @return [String]
-          def import_job_path project, location, key_ring, import_job
-            self.class.import_job_path project, location, key_ring, import_job
-          end
-          # Alias for Google::Cloud::Kms::V1::KeyManagementServiceClient.key_ring_path.
-          # @param project [String]
-          # @param location [String]
-          # @param key_ring [String]
-          # @return [String]
-          def key_ring_path project, location, key_ring
-            self.class.key_ring_path project, location, key_ring
-          end
-          # Alias for Google::Cloud::Kms::V1::KeyManagementServiceClient.location_path.
-          # @param project [String]
-          # @param location [String]
-          # @return [String]
-          def location_path project, location
-            self.class.location_path project, location
-          end
-        end
-      end
-    end
-  end
-end

data/lib/google/cloud/kms/v1/key_management_service_client.rb DELETED

@@ -1,1805 +0,0 @@
-# Copyright 2020 Google LLC
-#
-# Licensed under the Apache License, Version 2.0 (the "License");
-# you may not use this file except in compliance with the License.
-# You may obtain a copy of the License at
-#
-#     https://www.apache.org/licenses/LICENSE-2.0
-#
-# Unless required by applicable law or agreed to in writing, software
-# distributed under the License is distributed on an "AS IS" BASIS,
-# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-# See the License for the specific language governing permissions and
-# limitations under the License.
-#
-# EDITING INSTRUCTIONS
-# This file was generated from the file
-# https://github.com/googleapis/googleapis/blob/master/google/cloud/kms/v1/service.proto,
-# and updates to that file get reflected here through a refresh process.
-# For the short term, the refresh process will only be runnable by Google
-# engineers.
-require "json"
-require "pathname"
-require "google/gax"
-require "google/cloud/kms/v1/service_pb"
-require "google/iam/v1/iam_policy_pb"
-require "google/cloud/kms/v1/credentials"
-require "google/cloud/kms/version"
-module Google
-  module Cloud
-    module Kms
-      module V1
-        # Google Cloud Key Management Service
-        #
-        # Manages cryptographic keys and operations using those keys. Implements a REST
-        # model with the following objects:
-        #
-        # * {Google::Cloud::Kms::V1::KeyRing KeyRing}
-        # * {Google::Cloud::Kms::V1::CryptoKey CryptoKey}
-        # * {Google::Cloud::Kms::V1::CryptoKeyVersion CryptoKeyVersion}
-        # * {Google::Cloud::Kms::V1::ImportJob ImportJob}
-        #
-        # If you are using manual gRPC libraries, see
-        # [Using gRPC with Cloud KMS](https://cloud.google.com/kms/docs/grpc).
-        #
-        # @!attribute [r] key_management_service_stub
-        #   @return [Google::Cloud::Kms::V1::KeyManagementService::Stub]
-        # @!attribute [r] iam_policy_stub
-        #   @return [Google::Iam::V1::IAMPolicy::Stub]
-        class KeyManagementServiceClient
-          # @private
-          attr_reader :key_management_service_stub, :iam_policy_stub
-          # The default address of the service.
-          SERVICE_ADDRESS = "cloudkms.googleapis.com".freeze
-          # The default port of the service.
-          DEFAULT_SERVICE_PORT = 443
-          # The default set of gRPC interceptors.
-          GRPC_INTERCEPTORS = []
-          DEFAULT_TIMEOUT = 30
-          PAGE_DESCRIPTORS = {
-            "list_key_rings" => Google::Gax::PageDescriptor.new(
-              "page_token",
-              "next_page_token",
-              "key_rings"),
-            "list_import_jobs" => Google::Gax::PageDescriptor.new(
-              "page_token",
-              "next_page_token",
-              "import_jobs"),
-            "list_crypto_keys" => Google::Gax::PageDescriptor.new(
-              "page_token",
-              "next_page_token",
-              "crypto_keys"),
-            "list_crypto_key_versions" => Google::Gax::PageDescriptor.new(
-              "page_token",
-              "next_page_token",
-              "crypto_key_versions")
-          }.freeze
-          private_constant :PAGE_DESCRIPTORS
-          # The scopes needed to make gRPC calls to all of the methods defined in
-          # this service.
-          ALL_SCOPES = [
-            "https://www.googleapis.com/auth/cloud-platform",
-            "https://www.googleapis.com/auth/cloudkms"
-          ].freeze
-          CRYPTO_KEY_PATH_TEMPLATE = Google::Gax::PathTemplate.new(
-            "projects/{project}/locations/{location}/keyRings/{key_ring}/cryptoKeys/{crypto_key}"
-          )
-          private_constant :CRYPTO_KEY_PATH_TEMPLATE
-          CRYPTO_KEY_VERSION_PATH_TEMPLATE = Google::Gax::PathTemplate.new(
-            "projects/{project}/locations/{location}/keyRings/{key_ring}/cryptoKeys/{crypto_key}/cryptoKeyVersions/{crypto_key_version}"
-          )
-          private_constant :CRYPTO_KEY_VERSION_PATH_TEMPLATE
-          IMPORT_JOB_PATH_TEMPLATE = Google::Gax::PathTemplate.new(
-            "projects/{project}/locations/{location}/keyRings/{key_ring}/importJobs/{import_job}"
-          )
-          private_constant :IMPORT_JOB_PATH_TEMPLATE
-          KEY_RING_PATH_TEMPLATE = Google::Gax::PathTemplate.new(
-            "projects/{project}/locations/{location}/keyRings/{key_ring}"
-          )
-          private_constant :KEY_RING_PATH_TEMPLATE
-          LOCATION_PATH_TEMPLATE = Google::Gax::PathTemplate.new(
-            "projects/{project}/locations/{location}"
-          )
-          private_constant :LOCATION_PATH_TEMPLATE
-          # Returns a fully-qualified crypto_key resource name string.
-          # @param project [String]
-          # @param location [String]
-          # @param key_ring [String]
-          # @param crypto_key [String]
-          # @return [String]
-          def self.crypto_key_path project, location, key_ring, crypto_key
-            CRYPTO_KEY_PATH_TEMPLATE.render(
-              :"project" => project,
-              :"location" => location,
-              :"key_ring" => key_ring,
-              :"crypto_key" => crypto_key
-            )
-          end
-          # Returns a fully-qualified crypto_key_path resource name string.
-          def self.crypto_key_path_path project, location, key_ring, crypto_key_path
-            "projects/#{project}/locations/#{location}/keyRings/#{key_ring}/cryptoKeys/#{crypto_key_path}"
-          end
-          # Returns a fully-qualified crypto_key_version resource name string.
-          # @param project [String]
-          # @param location [String]
-          # @param key_ring [String]
-          # @param crypto_key [String]
-          # @param crypto_key_version [String]
-          # @return [String]
-          def self.crypto_key_version_path project, location, key_ring, crypto_key, crypto_key_version
-            CRYPTO_KEY_VERSION_PATH_TEMPLATE.render(
-              :"project" => project,
-              :"location" => location,
-              :"key_ring" => key_ring,
-              :"crypto_key" => crypto_key,
-              :"crypto_key_version" => crypto_key_version
-            )
-          end
-          # Returns a fully-qualified import_job resource name string.
-          # @param project [String]
-          # @param location [String]
-          # @param key_ring [String]
-          # @param import_job [String]
-          # @return [String]
-          def self.import_job_path project, location, key_ring, import_job
-            IMPORT_JOB_PATH_TEMPLATE.render(
-              :"project" => project,
-              :"location" => location,
-              :"key_ring" => key_ring,
-              :"import_job" => import_job
-            )
-          end
-          # Returns a fully-qualified key_ring resource name string.
-          # @param project [String]
-          # @param location [String]
-          # @param key_ring [String]
-          # @return [String]
-          def self.key_ring_path project, location, key_ring
-            KEY_RING_PATH_TEMPLATE.render(
-              :"project" => project,
-              :"location" => location,
-              :"key_ring" => key_ring
-            )
-          end
-          # Returns a fully-qualified location resource name string.
-          # @param project [String]
-          # @param location [String]
-          # @return [String]
-          def self.location_path project, location
-            LOCATION_PATH_TEMPLATE.render(
-              :"project" => project,
-              :"location" => location
-            )
-          end
-          # @param credentials [Google::Auth::Credentials, String, Hash, GRPC::Core::Channel, GRPC::Core::ChannelCredentials, Proc]
-          #   Provides the means for authenticating requests made by the client. This parameter can
-          #   be many types.
-          #   A `Google::Auth::Credentials` uses a the properties of its represented keyfile for
-          #   authenticating requests made by this client.
-          #   A `String` will be treated as the path to the keyfile to be used for the construction of
-          #   credentials for this client.
-          #   A `Hash` will be treated as the contents of a keyfile to be used for the construction of
-          #   credentials for this client.
-          #   A `GRPC::Core::Channel` will be used to make calls through.
-          #   A `GRPC::Core::ChannelCredentials` for the setting up the RPC client. The channel credentials
-          #   should already be composed with a `GRPC::Core::CallCredentials` object.
-          #   A `Proc` will be used as an updater_proc for the Grpc channel. The proc transforms the
-          #   metadata for requests, generally, to give OAuth credentials.
-          # @param scopes [Array<String>]
-          #   The OAuth scopes for this service. This parameter is ignored if
-          #   an updater_proc is supplied.
-          # @param client_config [Hash]
-          #   A Hash for call options for each method. See
-          #   Google::Gax#construct_settings for the structure of
-          #   this data. Falls back to the default config if not specified
-          #   or the specified config is missing data points.
-          # @param timeout [Numeric]
-          #   The default timeout, in seconds, for calls made through this client.
-          # @param metadata [Hash]
-          #   Default metadata to be sent with each request. This can be overridden on a per call basis.
-          # @param service_address [String]
-          #   Override for the service hostname, or `nil` to leave as the default.
-          # @param service_port [Integer]
-          #   Override for the service port, or `nil` to leave as the default.
-          # @param exception_transformer [Proc]
-          #   An optional proc that intercepts any exceptions raised during an API call to inject
-          #   custom error handling.
-          def initialize \
-              credentials: nil,
-              scopes: ALL_SCOPES,
-              client_config: {},
-              timeout: DEFAULT_TIMEOUT,
-              metadata: nil,
-              service_address: nil,
-              service_port: nil,
-              exception_transformer: nil,
-              lib_name: nil,
-              lib_version: ""
-            # These require statements are intentionally placed here to initialize
-            # the gRPC module only when it's required.
-            # See https://github.com/googleapis/toolkit/issues/446
-            require "google/gax/grpc"
-            require "google/cloud/kms/v1/service_services_pb"
-            require "google/iam/v1/iam_policy_services_pb"
-            credentials ||= Google::Cloud::Kms::V1::Credentials.default
-            if credentials.is_a?(String) || credentials.is_a?(Hash)
-              updater_proc = Google::Cloud::Kms::V1::Credentials.new(credentials).updater_proc
-            end
-            if credentials.is_a?(GRPC::Core::Channel)
-              channel = credentials
-            end
-            if credentials.is_a?(GRPC::Core::ChannelCredentials)
-              chan_creds = credentials
-            end
-            if credentials.is_a?(Proc)
-              updater_proc = credentials
-            end
-            if credentials.is_a?(Google::Auth::Credentials)
-              updater_proc = credentials.updater_proc
-            end
-            package_version = Google::Cloud::Kms::VERSION
-            google_api_client = "gl-ruby/#{RUBY_VERSION}"
-            google_api_client << " #{lib_name}/#{lib_version}" if lib_name
-            google_api_client << " gapic/#{package_version} gax/#{Google::Gax::VERSION}"
-            google_api_client << " grpc/#{GRPC::VERSION}"
-            google_api_client.freeze
-            headers = { :"x-goog-api-client" => google_api_client }
-            if credentials.respond_to?(:quota_project_id) && credentials.quota_project_id
-              headers[:"x-goog-user-project"] = credentials.quota_project_id
-            end
-            headers.merge!(metadata) unless metadata.nil?
-            client_config_file = Pathname.new(__dir__).join(
-              "key_management_service_client_config.json"
-            )
-            defaults = client_config_file.open do |f|
-              Google::Gax.construct_settings(
-                "google.cloud.kms.v1.KeyManagementService",
-                JSON.parse(f.read),
-                client_config,
-                Google::Gax::Grpc::STATUS_CODE_NAMES,
-                timeout,
-                page_descriptors: PAGE_DESCRIPTORS,
-                errors: Google::Gax::Grpc::API_ERRORS,
-                metadata: headers
-              )
-            end
-            # Allow overriding the service path/port in subclasses.
-            service_path = service_address || self.class::SERVICE_ADDRESS
-            port = service_port || self.class::DEFAULT_SERVICE_PORT
-            interceptors = self.class::GRPC_INTERCEPTORS
-            @key_management_service_stub = Google::Gax::Grpc.create_stub(
-              service_path,
-              port,
-              chan_creds: chan_creds,
-              channel: channel,
-              updater_proc: updater_proc,
-              scopes: scopes,
-              interceptors: interceptors,
-              &Google::Cloud::Kms::V1::KeyManagementService::Stub.method(:new)
-            )
-            @iam_policy_stub = Google::Gax::Grpc.create_stub(
-              service_path,
-              port,
-              chan_creds: chan_creds,
-              channel: channel,
-              updater_proc: updater_proc,
-              scopes: scopes,
-              interceptors: interceptors,
-              &Google::Iam::V1::IAMPolicy::Stub.method(:new)
-            )
-            @list_key_rings = Google::Gax.create_api_call(
-              @key_management_service_stub.method(:list_key_rings),
-              defaults["list_key_rings"],
-              exception_transformer: exception_transformer,
-              params_extractor: proc do |request|
-                {'parent' => request.parent}
-              end
-            )
-            @list_import_jobs = Google::Gax.create_api_call(
-              @key_management_service_stub.method(:list_import_jobs),
-              defaults["list_import_jobs"],
-              exception_transformer: exception_transformer,
-              params_extractor: proc do |request|
-                {'parent' => request.parent}
-              end
-            )
-            @list_crypto_keys = Google::Gax.create_api_call(
-              @key_management_service_stub.method(:list_crypto_keys),
-              defaults["list_crypto_keys"],
-              exception_transformer: exception_transformer,
-              params_extractor: proc do |request|
-                {'parent' => request.parent}
-              end
-            )
-            @list_crypto_key_versions = Google::Gax.create_api_call(
-              @key_management_service_stub.method(:list_crypto_key_versions),
-              defaults["list_crypto_key_versions"],
-              exception_transformer: exception_transformer,
-              params_extractor: proc do |request|
-                {'parent' => request.parent}
-              end
-            )
-            @get_key_ring = Google::Gax.create_api_call(
-              @key_management_service_stub.method(:get_key_ring),
-              defaults["get_key_ring"],
-              exception_transformer: exception_transformer,
-              params_extractor: proc do |request|
-                {'name' => request.name}
-              end
-            )
-            @get_import_job = Google::Gax.create_api_call(
-              @key_management_service_stub.method(:get_import_job),
-              defaults["get_import_job"],
-              exception_transformer: exception_transformer,
-              params_extractor: proc do |request|
-                {'name' => request.name}
-              end
-            )
-            @get_crypto_key = Google::Gax.create_api_call(
-              @key_management_service_stub.method(:get_crypto_key),
-              defaults["get_crypto_key"],
-              exception_transformer: exception_transformer,
-              params_extractor: proc do |request|
-                {'name' => request.name}
-              end
-            )
-            @get_crypto_key_version = Google::Gax.create_api_call(
-              @key_management_service_stub.method(:get_crypto_key_version),
-              defaults["get_crypto_key_version"],
-              exception_transformer: exception_transformer,
-              params_extractor: proc do |request|
-                {'name' => request.name}
-              end
-            )
-            @create_key_ring = Google::Gax.create_api_call(
-              @key_management_service_stub.method(:create_key_ring),
-              defaults["create_key_ring"],
-              exception_transformer: exception_transformer,
-              params_extractor: proc do |request|
-                {'parent' => request.parent}
-              end
-            )
-            @create_import_job = Google::Gax.create_api_call(
-              @key_management_service_stub.method(:create_import_job),
-              defaults["create_import_job"],
-              exception_transformer: exception_transformer,
-              params_extractor: proc do |request|
-                {'parent' => request.parent}
-              end
-            )
-            @create_crypto_key = Google::Gax.create_api_call(
-              @key_management_service_stub.method(:create_crypto_key),
-              defaults["create_crypto_key"],
-              exception_transformer: exception_transformer,
-              params_extractor: proc do |request|
-                {'parent' => request.parent}
-              end
-            )
-            @create_crypto_key_version = Google::Gax.create_api_call(
-              @key_management_service_stub.method(:create_crypto_key_version),
-              defaults["create_crypto_key_version"],
-              exception_transformer: exception_transformer,
-              params_extractor: proc do |request|
-                {'parent' => request.parent}
-              end
-            )
-            @import_crypto_key_version = Google::Gax.create_api_call(
-              @key_management_service_stub.method(:import_crypto_key_version),
-              defaults["import_crypto_key_version"],
-              exception_transformer: exception_transformer,
-              params_extractor: proc do |request|
-                {'parent' => request.parent}
-              end
-            )
-            @update_crypto_key = Google::Gax.create_api_call(
-              @key_management_service_stub.method(:update_crypto_key),
-              defaults["update_crypto_key"],
-              exception_transformer: exception_transformer,
-              params_extractor: proc do |request|
-                {'crypto_key.name' => request.crypto_key.name}
-              end
-            )
-            @update_crypto_key_version = Google::Gax.create_api_call(
-              @key_management_service_stub.method(:update_crypto_key_version),
-              defaults["update_crypto_key_version"],
-              exception_transformer: exception_transformer,
-              params_extractor: proc do |request|
-                {'crypto_key_version.name' => request.crypto_key_version.name}
-              end
-            )
-            @encrypt = Google::Gax.create_api_call(
-              @key_management_service_stub.method(:encrypt),
-              defaults["encrypt"],
-              exception_transformer: exception_transformer,
-              params_extractor: proc do |request|
-                {'name' => request.name}
-              end
-            )
-            @decrypt = Google::Gax.create_api_call(
-              @key_management_service_stub.method(:decrypt),
-              defaults["decrypt"],
-              exception_transformer: exception_transformer,
-              params_extractor: proc do |request|
-                {'name' => request.name}
-              end
-            )
-            @update_crypto_key_primary_version = Google::Gax.create_api_call(
-              @key_management_service_stub.method(:update_crypto_key_primary_version),
-              defaults["update_crypto_key_primary_version"],
-              exception_transformer: exception_transformer,
-              params_extractor: proc do |request|
-                {'name' => request.name}
-              end
-            )
-            @destroy_crypto_key_version = Google::Gax.create_api_call(
-              @key_management_service_stub.method(:destroy_crypto_key_version),
-              defaults["destroy_crypto_key_version"],
-              exception_transformer: exception_transformer,
-              params_extractor: proc do |request|
-                {'name' => request.name}
-              end
-            )
-            @restore_crypto_key_version = Google::Gax.create_api_call(
-              @key_management_service_stub.method(:restore_crypto_key_version),
-              defaults["restore_crypto_key_version"],
-              exception_transformer: exception_transformer,
-              params_extractor: proc do |request|
-                {'name' => request.name}
-              end
-            )
-            @get_public_key = Google::Gax.create_api_call(
-              @key_management_service_stub.method(:get_public_key),
-              defaults["get_public_key"],
-              exception_transformer: exception_transformer,
-              params_extractor: proc do |request|
-                {'name' => request.name}
-              end
-            )
-            @asymmetric_decrypt = Google::Gax.create_api_call(
-              @key_management_service_stub.method(:asymmetric_decrypt),
-              defaults["asymmetric_decrypt"],
-              exception_transformer: exception_transformer,
-              params_extractor: proc do |request|
-                {'name' => request.name}
-              end
-            )
-            @asymmetric_sign = Google::Gax.create_api_call(
-              @key_management_service_stub.method(:asymmetric_sign),
-              defaults["asymmetric_sign"],
-              exception_transformer: exception_transformer,
-              params_extractor: proc do |request|
-                {'name' => request.name}
-              end
-            )
-            @set_iam_policy = Google::Gax.create_api_call(
-              @iam_policy_stub.method(:set_iam_policy),
-              defaults["set_iam_policy"],
-              exception_transformer: exception_transformer,
-              params_extractor: proc do |request|
-                {'resource' => request.resource}
-              end
-            )
-            @get_iam_policy = Google::Gax.create_api_call(
-              @iam_policy_stub.method(:get_iam_policy),
-              defaults["get_iam_policy"],
-              exception_transformer: exception_transformer,
-              params_extractor: proc do |request|
-                {'resource' => request.resource}
-              end
-            )
-            @test_iam_permissions = Google::Gax.create_api_call(
-              @iam_policy_stub.method(:test_iam_permissions),
-              defaults["test_iam_permissions"],
-              exception_transformer: exception_transformer,
-              params_extractor: proc do |request|
-                {'resource' => request.resource}
-              end
-            )
-          end
-          # Service calls
-          # Lists {Google::Cloud::Kms::V1::KeyRing KeyRings}.
-          #
-          # @param parent [String]
-          #   Required. The resource name of the location associated with the
-          #   {Google::Cloud::Kms::V1::KeyRing KeyRings}, in the format `projects/*/locations/*`.
-          # @param page_size [Integer]
-          #   The maximum number of resources contained in the underlying API
-          #   response. If page streaming is performed per-resource, this
-          #   parameter does not affect the return value. If page streaming is
-          #   performed per-page, this determines the maximum number of
-          #   resources in a page.
-          # @param filter [String]
-          #   Optional. Only include resources that match the filter in the response. For
-          #   more information, see
-          #   [Sorting and filtering list
-          #   results](https://cloud.google.com/kms/docs/sorting-and-filtering).
-          # @param order_by [String]
-          #   Optional. Specify how the results should be sorted. If not specified, the
-          #   results will be sorted in the default order.  For more information, see
-          #   [Sorting and filtering list
-          #   results](https://cloud.google.com/kms/docs/sorting-and-filtering).
-          # @param options [Google::Gax::CallOptions]
-          #   Overrides the default settings for this call, e.g, timeout,
-          #   retries, etc.
-          # @yield [result, operation] Access the result along with the RPC operation
-          # @yieldparam result [Google::Gax::PagedEnumerable<Google::Cloud::Kms::V1::KeyRing>]
-          # @yieldparam operation [GRPC::ActiveCall::Operation]
-          # @return [Google::Gax::PagedEnumerable<Google::Cloud::Kms::V1::KeyRing>]
-          #   An enumerable of Google::Cloud::Kms::V1::KeyRing instances.
-          #   See Google::Gax::PagedEnumerable documentation for other
-          #   operations such as per-page iteration or access to the response
-          #   object.
-          # @raise [Google::Gax::GaxError] if the RPC is aborted.
-          # @example
-          #   require "google/cloud/kms"
-          #
-          #   key_management_client = Google::Cloud::Kms.new(version: :v1)
-          #   formatted_parent = Google::Cloud::Kms::V1::KeyManagementServiceClient.location_path("[PROJECT]", "[LOCATION]")
-          #
-          #   # Iterate over all results.
-          #   key_management_client.list_key_rings(formatted_parent).each do |element|
-          #     # Process element.
-          #   end
-          #
-          #   # Or iterate over results one page at a time.
-          #   key_management_client.list_key_rings(formatted_parent).each_page do |page|
-          #     # Process each page at a time.
-          #     page.each do |element|
-          #       # Process element.
-          #     end
-          #   end
-          def list_key_rings \
-              parent,
-              page_size: nil,
-              filter: nil,
-              order_by: nil,
-              options: nil,
-              &block
-            req = {
-              parent: parent,
-              page_size: page_size,
-              filter: filter,
-              order_by: order_by
-            }.delete_if { |_, v| v.nil? }
-            req = Google::Gax::to_proto(req, Google::Cloud::Kms::V1::ListKeyRingsRequest)
-            @list_key_rings.call(req, options, &block)
-          end
-          # Lists {Google::Cloud::Kms::V1::ImportJob ImportJobs}.
-          #
-          # @param parent [String]
-          #   Required. The resource name of the {Google::Cloud::Kms::V1::KeyRing KeyRing} to list, in the format
-          #   `projects/*/locations/*/keyRings/*`.
-          # @param page_size [Integer]
-          #   The maximum number of resources contained in the underlying API
-          #   response. If page streaming is performed per-resource, this
-          #   parameter does not affect the return value. If page streaming is
-          #   performed per-page, this determines the maximum number of
-          #   resources in a page.
-          # @param filter [String]
-          #   Optional. Only include resources that match the filter in the response. For
-          #   more information, see
-          #   [Sorting and filtering list
-          #   results](https://cloud.google.com/kms/docs/sorting-and-filtering).
-          # @param order_by [String]
-          #   Optional. Specify how the results should be sorted. If not specified, the
-          #   results will be sorted in the default order. For more information, see
-          #   [Sorting and filtering list
-          #   results](https://cloud.google.com/kms/docs/sorting-and-filtering).
-          # @param options [Google::Gax::CallOptions]
-          #   Overrides the default settings for this call, e.g, timeout,
-          #   retries, etc.
-          # @yield [result, operation] Access the result along with the RPC operation
-          # @yieldparam result [Google::Gax::PagedEnumerable<Google::Cloud::Kms::V1::ImportJob>]
-          # @yieldparam operation [GRPC::ActiveCall::Operation]
-          # @return [Google::Gax::PagedEnumerable<Google::Cloud::Kms::V1::ImportJob>]
-          #   An enumerable of Google::Cloud::Kms::V1::ImportJob instances.
-          #   See Google::Gax::PagedEnumerable documentation for other
-          #   operations such as per-page iteration or access to the response
-          #   object.
-          # @raise [Google::Gax::GaxError] if the RPC is aborted.
-          # @example
-          #   require "google/cloud/kms"
-          #
-          #   key_management_client = Google::Cloud::Kms.new(version: :v1)
-          #   formatted_parent = Google::Cloud::Kms::V1::KeyManagementServiceClient.key_ring_path("[PROJECT]", "[LOCATION]", "[KEY_RING]")
-          #
-          #   # Iterate over all results.
-          #   key_management_client.list_import_jobs(formatted_parent).each do |element|
-          #     # Process element.
-          #   end
-          #
-          #   # Or iterate over results one page at a time.
-          #   key_management_client.list_import_jobs(formatted_parent).each_page do |page|
-          #     # Process each page at a time.
-          #     page.each do |element|
-          #       # Process element.
-          #     end
-          #   end
-          def list_import_jobs \
-              parent,
-              page_size: nil,
-              filter: nil,
-              order_by: nil,
-              options: nil,
-              &block
-            req = {
-              parent: parent,
-              page_size: page_size,
-              filter: filter,
-              order_by: order_by
-            }.delete_if { |_, v| v.nil? }
-            req = Google::Gax::to_proto(req, Google::Cloud::Kms::V1::ListImportJobsRequest)
-            @list_import_jobs.call(req, options, &block)
-          end
-          # Lists {Google::Cloud::Kms::V1::CryptoKey CryptoKeys}.
-          #
-          # @param parent [String]
-          #   Required. The resource name of the {Google::Cloud::Kms::V1::KeyRing KeyRing} to list, in the format
-          #   `projects/*/locations/*/keyRings/*`.
-          # @param page_size [Integer]
-          #   The maximum number of resources contained in the underlying API
-          #   response. If page streaming is performed per-resource, this
-          #   parameter does not affect the return value. If page streaming is
-          #   performed per-page, this determines the maximum number of
-          #   resources in a page.
-          # @param version_view [Google::Cloud::Kms::V1::CryptoKeyVersion::CryptoKeyVersionView]
-          #   The fields of the primary version to include in the response.
-          # @param filter [String]
-          #   Optional. Only include resources that match the filter in the response. For
-          #   more information, see
-          #   [Sorting and filtering list
-          #   results](https://cloud.google.com/kms/docs/sorting-and-filtering).
-          # @param order_by [String]
-          #   Optional. Specify how the results should be sorted. If not specified, the
-          #   results will be sorted in the default order. For more information, see
-          #   [Sorting and filtering list
-          #   results](https://cloud.google.com/kms/docs/sorting-and-filtering).
-          # @param options [Google::Gax::CallOptions]
-          #   Overrides the default settings for this call, e.g, timeout,
-          #   retries, etc.
-          # @yield [result, operation] Access the result along with the RPC operation
-          # @yieldparam result [Google::Gax::PagedEnumerable<Google::Cloud::Kms::V1::CryptoKey>]
-          # @yieldparam operation [GRPC::ActiveCall::Operation]
-          # @return [Google::Gax::PagedEnumerable<Google::Cloud::Kms::V1::CryptoKey>]
-          #   An enumerable of Google::Cloud::Kms::V1::CryptoKey instances.
-          #   See Google::Gax::PagedEnumerable documentation for other
-          #   operations such as per-page iteration or access to the response
-          #   object.
-          # @raise [Google::Gax::GaxError] if the RPC is aborted.
-          # @example
-          #   require "google/cloud/kms"
-          #
-          #   key_management_client = Google::Cloud::Kms.new(version: :v1)
-          #   formatted_parent = Google::Cloud::Kms::V1::KeyManagementServiceClient.key_ring_path("[PROJECT]", "[LOCATION]", "[KEY_RING]")
-          #
-          #   # Iterate over all results.
-          #   key_management_client.list_crypto_keys(formatted_parent).each do |element|
-          #     # Process element.
-          #   end
-          #
-          #   # Or iterate over results one page at a time.
-          #   key_management_client.list_crypto_keys(formatted_parent).each_page do |page|
-          #     # Process each page at a time.
-          #     page.each do |element|
-          #       # Process element.
-          #     end
-          #   end
-          def list_crypto_keys \
-              parent,
-              page_size: nil,
-              version_view: nil,
-              filter: nil,
-              order_by: nil,
-              options: nil,
-              &block
-            req = {
-              parent: parent,
-              page_size: page_size,
-              version_view: version_view,
-              filter: filter,
-              order_by: order_by
-            }.delete_if { |_, v| v.nil? }
-            req = Google::Gax::to_proto(req, Google::Cloud::Kms::V1::ListCryptoKeysRequest)
-            @list_crypto_keys.call(req, options, &block)
-          end
-          # Lists {Google::Cloud::Kms::V1::CryptoKeyVersion CryptoKeyVersions}.
-          #
-          # @param parent [String]
-          #   Required. The resource name of the {Google::Cloud::Kms::V1::CryptoKey CryptoKey} to list, in the format
-          #   `projects/*/locations/*/keyRings/*/cryptoKeys/*`.
-          # @param page_size [Integer]
-          #   The maximum number of resources contained in the underlying API
-          #   response. If page streaming is performed per-resource, this
-          #   parameter does not affect the return value. If page streaming is
-          #   performed per-page, this determines the maximum number of
-          #   resources in a page.
-          # @param view [Google::Cloud::Kms::V1::CryptoKeyVersion::CryptoKeyVersionView]
-          #   The fields to include in the response.
-          # @param filter [String]
-          #   Optional. Only include resources that match the filter in the response. For
-          #   more information, see
-          #   [Sorting and filtering list
-          #   results](https://cloud.google.com/kms/docs/sorting-and-filtering).
-          # @param order_by [String]
-          #   Optional. Specify how the results should be sorted. If not specified, the
-          #   results will be sorted in the default order. For more information, see
-          #   [Sorting and filtering list
-          #   results](https://cloud.google.com/kms/docs/sorting-and-filtering).
-          # @param options [Google::Gax::CallOptions]
-          #   Overrides the default settings for this call, e.g, timeout,
-          #   retries, etc.
-          # @yield [result, operation] Access the result along with the RPC operation
-          # @yieldparam result [Google::Gax::PagedEnumerable<Google::Cloud::Kms::V1::CryptoKeyVersion>]
-          # @yieldparam operation [GRPC::ActiveCall::Operation]
-          # @return [Google::Gax::PagedEnumerable<Google::Cloud::Kms::V1::CryptoKeyVersion>]
-          #   An enumerable of Google::Cloud::Kms::V1::CryptoKeyVersion instances.
-          #   See Google::Gax::PagedEnumerable documentation for other
-          #   operations such as per-page iteration or access to the response
-          #   object.
-          # @raise [Google::Gax::GaxError] if the RPC is aborted.
-          # @example
-          #   require "google/cloud/kms"
-          #
-          #   key_management_client = Google::Cloud::Kms.new(version: :v1)
-          #   formatted_parent = Google::Cloud::Kms::V1::KeyManagementServiceClient.crypto_key_path("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]")
-          #
-          #   # Iterate over all results.
-          #   key_management_client.list_crypto_key_versions(formatted_parent).each do |element|
-          #     # Process element.
-          #   end
-          #
-          #   # Or iterate over results one page at a time.
-          #   key_management_client.list_crypto_key_versions(formatted_parent).each_page do |page|
-          #     # Process each page at a time.
-          #     page.each do |element|
-          #       # Process element.
-          #     end
-          #   end
-          def list_crypto_key_versions \
-              parent,
-              page_size: nil,
-              view: nil,
-              filter: nil,
-              order_by: nil,
-              options: nil,
-              &block
-            req = {
-              parent: parent,
-              page_size: page_size,
-              view: view,
-              filter: filter,
-              order_by: order_by
-            }.delete_if { |_, v| v.nil? }
-            req = Google::Gax::to_proto(req, Google::Cloud::Kms::V1::ListCryptoKeyVersionsRequest)
-            @list_crypto_key_versions.call(req, options, &block)
-          end
-          # Returns metadata for a given {Google::Cloud::Kms::V1::KeyRing KeyRing}.
-          #
-          # @param name [String]
-          #   Required. The {Google::Cloud::Kms::V1::KeyRing#name name} of the {Google::Cloud::Kms::V1::KeyRing KeyRing} to get.
-          # @param options [Google::Gax::CallOptions]
-          #   Overrides the default settings for this call, e.g, timeout,
-          #   retries, etc.
-          # @yield [result, operation] Access the result along with the RPC operation
-          # @yieldparam result [Google::Cloud::Kms::V1::KeyRing]
-          # @yieldparam operation [GRPC::ActiveCall::Operation]
-          # @return [Google::Cloud::Kms::V1::KeyRing]
-          # @raise [Google::Gax::GaxError] if the RPC is aborted.
-          # @example
-          #   require "google/cloud/kms"
-          #
-          #   key_management_client = Google::Cloud::Kms.new(version: :v1)
-          #   formatted_name = Google::Cloud::Kms::V1::KeyManagementServiceClient.key_ring_path("[PROJECT]", "[LOCATION]", "[KEY_RING]")
-          #   response = key_management_client.get_key_ring(formatted_name)
-          def get_key_ring \
-              name,
-              options: nil,
-              &block
-            req = {
-              name: name
-            }.delete_if { |_, v| v.nil? }
-            req = Google::Gax::to_proto(req, Google::Cloud::Kms::V1::GetKeyRingRequest)
-            @get_key_ring.call(req, options, &block)
-          end
-          # Returns metadata for a given {Google::Cloud::Kms::V1::ImportJob ImportJob}.
-          #
-          # @param name [String]
-          #   Required. The {Google::Cloud::Kms::V1::ImportJob#name name} of the {Google::Cloud::Kms::V1::ImportJob ImportJob} to get.
-          # @param options [Google::Gax::CallOptions]
-          #   Overrides the default settings for this call, e.g, timeout,
-          #   retries, etc.
-          # @yield [result, operation] Access the result along with the RPC operation
-          # @yieldparam result [Google::Cloud::Kms::V1::ImportJob]
-          # @yieldparam operation [GRPC::ActiveCall::Operation]
-          # @return [Google::Cloud::Kms::V1::ImportJob]
-          # @raise [Google::Gax::GaxError] if the RPC is aborted.
-          # @example
-          #   require "google/cloud/kms"
-          #
-          #   key_management_client = Google::Cloud::Kms.new(version: :v1)
-          #   formatted_name = Google::Cloud::Kms::V1::KeyManagementServiceClient.import_job_path("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[IMPORT_JOB]")
-          #   response = key_management_client.get_import_job(formatted_name)
-          def get_import_job \
-              name,
-              options: nil,
-              &block
-            req = {
-              name: name
-            }.delete_if { |_, v| v.nil? }
-            req = Google::Gax::to_proto(req, Google::Cloud::Kms::V1::GetImportJobRequest)
-            @get_import_job.call(req, options, &block)
-          end
-          # Returns metadata for a given {Google::Cloud::Kms::V1::CryptoKey CryptoKey}, as well as its
-          # {Google::Cloud::Kms::V1::CryptoKey#primary primary} {Google::Cloud::Kms::V1::CryptoKeyVersion CryptoKeyVersion}.
-          #
-          # @param name [String]
-          #   Required. The {Google::Cloud::Kms::V1::CryptoKey#name name} of the {Google::Cloud::Kms::V1::CryptoKey CryptoKey} to get.
-          # @param options [Google::Gax::CallOptions]
-          #   Overrides the default settings for this call, e.g, timeout,
-          #   retries, etc.
-          # @yield [result, operation] Access the result along with the RPC operation
-          # @yieldparam result [Google::Cloud::Kms::V1::CryptoKey]
-          # @yieldparam operation [GRPC::ActiveCall::Operation]
-          # @return [Google::Cloud::Kms::V1::CryptoKey]
-          # @raise [Google::Gax::GaxError] if the RPC is aborted.
-          # @example
-          #   require "google/cloud/kms"
-          #
-          #   key_management_client = Google::Cloud::Kms.new(version: :v1)
-          #   formatted_name = Google::Cloud::Kms::V1::KeyManagementServiceClient.crypto_key_path("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]")
-          #   response = key_management_client.get_crypto_key(formatted_name)
-          def get_crypto_key \
-              name,
-              options: nil,
-              &block
-            req = {
-              name: name
-            }.delete_if { |_, v| v.nil? }
-            req = Google::Gax::to_proto(req, Google::Cloud::Kms::V1::GetCryptoKeyRequest)
-            @get_crypto_key.call(req, options, &block)
-          end
-          # Returns metadata for a given {Google::Cloud::Kms::V1::CryptoKeyVersion CryptoKeyVersion}.
-          #
-          # @param name [String]
-          #   Required. The {Google::Cloud::Kms::V1::CryptoKeyVersion#name name} of the {Google::Cloud::Kms::V1::CryptoKeyVersion CryptoKeyVersion} to get.
-          # @param options [Google::Gax::CallOptions]
-          #   Overrides the default settings for this call, e.g, timeout,
-          #   retries, etc.
-          # @yield [result, operation] Access the result along with the RPC operation
-          # @yieldparam result [Google::Cloud::Kms::V1::CryptoKeyVersion]
-          # @yieldparam operation [GRPC::ActiveCall::Operation]
-          # @return [Google::Cloud::Kms::V1::CryptoKeyVersion]
-          # @raise [Google::Gax::GaxError] if the RPC is aborted.
-          # @example
-          #   require "google/cloud/kms"
-          #
-          #   key_management_client = Google::Cloud::Kms.new(version: :v1)
-          #   formatted_name = Google::Cloud::Kms::V1::KeyManagementServiceClient.crypto_key_version_path("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]", "[CRYPTO_KEY_VERSION]")
-          #   response = key_management_client.get_crypto_key_version(formatted_name)
-          def get_crypto_key_version \
-              name,
-              options: nil,
-              &block
-            req = {
-              name: name
-            }.delete_if { |_, v| v.nil? }
-            req = Google::Gax::to_proto(req, Google::Cloud::Kms::V1::GetCryptoKeyVersionRequest)
-            @get_crypto_key_version.call(req, options, &block)
-          end
-          # Create a new {Google::Cloud::Kms::V1::KeyRing KeyRing} in a given Project and Location.
-          #
-          # @param parent [String]
-          #   Required. The resource name of the location associated with the
-          #   {Google::Cloud::Kms::V1::KeyRing KeyRings}, in the format `projects/*/locations/*`.
-          # @param key_ring_id [String]
-          #   Required. It must be unique within a location and match the regular
-          #   expression `[a-zA-Z0-9_-]{1,63}`
-          # @param key_ring [Google::Cloud::Kms::V1::KeyRing | Hash]
-          #   Required. A {Google::Cloud::Kms::V1::KeyRing KeyRing} with initial field values.
-          #   A hash of the same form as `Google::Cloud::Kms::V1::KeyRing`
-          #   can also be provided.
-          # @param options [Google::Gax::CallOptions]
-          #   Overrides the default settings for this call, e.g, timeout,
-          #   retries, etc.
-          # @yield [result, operation] Access the result along with the RPC operation
-          # @yieldparam result [Google::Cloud::Kms::V1::KeyRing]
-          # @yieldparam operation [GRPC::ActiveCall::Operation]
-          # @return [Google::Cloud::Kms::V1::KeyRing]
-          # @raise [Google::Gax::GaxError] if the RPC is aborted.
-          # @example
-          #   require "google/cloud/kms"
-          #
-          #   key_management_client = Google::Cloud::Kms.new(version: :v1)
-          #   formatted_parent = Google::Cloud::Kms::V1::KeyManagementServiceClient.location_path("[PROJECT]", "[LOCATION]")
-          #
-          #   # TODO: Initialize `key_ring_id`:
-          #   key_ring_id = ''
-          #
-          #   # TODO: Initialize `key_ring`:
-          #   key_ring = {}
-          #   response = key_management_client.create_key_ring(formatted_parent, key_ring_id, key_ring)
-          def create_key_ring \
-              parent,
-              key_ring_id,
-              key_ring,
-              options: nil,
-              &block
-            req = {
-              parent: parent,
-              key_ring_id: key_ring_id,
-              key_ring: key_ring
-            }.delete_if { |_, v| v.nil? }
-            req = Google::Gax::to_proto(req, Google::Cloud::Kms::V1::CreateKeyRingRequest)
-            @create_key_ring.call(req, options, &block)
-          end
-          # Create a new {Google::Cloud::Kms::V1::ImportJob ImportJob} within a {Google::Cloud::Kms::V1::KeyRing KeyRing}.
-          #
-          # {Google::Cloud::Kms::V1::ImportJob#import_method ImportJob#import_method} is required.
-          #
-          # @param parent [String]
-          #   Required. The {Google::Cloud::Kms::V1::KeyRing#name name} of the {Google::Cloud::Kms::V1::KeyRing KeyRing} associated with the
-          #   {Google::Cloud::Kms::V1::ImportJob ImportJobs}.
-          # @param import_job_id [String]
-          #   Required. It must be unique within a KeyRing and match the regular
-          #   expression `[a-zA-Z0-9_-]{1,63}`
-          # @param import_job [Google::Cloud::Kms::V1::ImportJob | Hash]
-          #   Required. An {Google::Cloud::Kms::V1::ImportJob ImportJob} with initial field values.
-          #   A hash of the same form as `Google::Cloud::Kms::V1::ImportJob`
-          #   can also be provided.
-          # @param options [Google::Gax::CallOptions]
-          #   Overrides the default settings for this call, e.g, timeout,
-          #   retries, etc.
-          # @yield [result, operation] Access the result along with the RPC operation
-          # @yieldparam result [Google::Cloud::Kms::V1::ImportJob]
-          # @yieldparam operation [GRPC::ActiveCall::Operation]
-          # @return [Google::Cloud::Kms::V1::ImportJob]
-          # @raise [Google::Gax::GaxError] if the RPC is aborted.
-          # @example
-          #   require "google/cloud/kms"
-          #
-          #   key_management_client = Google::Cloud::Kms.new(version: :v1)
-          #   formatted_parent = Google::Cloud::Kms::V1::KeyManagementServiceClient.key_ring_path("[PROJECT]", "[LOCATION]", "[KEY_RING]")
-          #   import_job_id = "my-import-job"
-          #   import_method = :RSA_OAEP_3072_SHA1_AES_256
-          #   protection_level = :HSM
-          #   import_job = { import_method: import_method, protection_level: protection_level }
-          #   response = key_management_client.create_import_job(formatted_parent, import_job_id, import_job)
-          def create_import_job \
-              parent,
-              import_job_id,
-              import_job,
-              options: nil,
-              &block
-            req = {
-              parent: parent,
-              import_job_id: import_job_id,
-              import_job: import_job
-            }.delete_if { |_, v| v.nil? }
-            req = Google::Gax::to_proto(req, Google::Cloud::Kms::V1::CreateImportJobRequest)
-            @create_import_job.call(req, options, &block)
-          end
-          # Create a new {Google::Cloud::Kms::V1::CryptoKey CryptoKey} within a {Google::Cloud::Kms::V1::KeyRing KeyRing}.
-          #
-          # {Google::Cloud::Kms::V1::CryptoKey#purpose CryptoKey#purpose} and
-          # {Google::Cloud::Kms::V1::CryptoKeyVersionTemplate#algorithm CryptoKey#version_template#algorithm}
-          # are required.
-          #
-          # @param parent [String]
-          #   Required. The {Google::Cloud::Kms::V1::KeyRing#name name} of the KeyRing associated with the
-          #   {Google::Cloud::Kms::V1::CryptoKey CryptoKeys}.
-          # @param crypto_key_id [String]
-          #   Required. It must be unique within a KeyRing and match the regular
-          #   expression `[a-zA-Z0-9_-]{1,63}`
-          # @param crypto_key [Google::Cloud::Kms::V1::CryptoKey | Hash]
-          #   Required. A {Google::Cloud::Kms::V1::CryptoKey CryptoKey} with initial field values.
-          #   A hash of the same form as `Google::Cloud::Kms::V1::CryptoKey`
-          #   can also be provided.
-          # @param skip_initial_version_creation [true, false]
-          #   If set to true, the request will create a {Google::Cloud::Kms::V1::CryptoKey CryptoKey} without any
-          #   {Google::Cloud::Kms::V1::CryptoKeyVersion CryptoKeyVersions}. You must manually call
-          #   {Google::Cloud::Kms::V1::KeyManagementService::CreateCryptoKeyVersion CreateCryptoKeyVersion} or
-          #   {Google::Cloud::Kms::V1::KeyManagementService::ImportCryptoKeyVersion ImportCryptoKeyVersion}
-          #   before you can use this {Google::Cloud::Kms::V1::CryptoKey CryptoKey}.
-          # @param options [Google::Gax::CallOptions]
-          #   Overrides the default settings for this call, e.g, timeout,
-          #   retries, etc.
-          # @yield [result, operation] Access the result along with the RPC operation
-          # @yieldparam result [Google::Cloud::Kms::V1::CryptoKey]
-          # @yieldparam operation [GRPC::ActiveCall::Operation]
-          # @return [Google::Cloud::Kms::V1::CryptoKey]
-          # @raise [Google::Gax::GaxError] if the RPC is aborted.
-          # @example
-          #   require "google/cloud/kms"
-          #
-          #   key_management_client = Google::Cloud::Kms.new(version: :v1)
-          #   formatted_parent = Google::Cloud::Kms::V1::KeyManagementServiceClient.key_ring_path("[PROJECT]", "[LOCATION]", "[KEY_RING]")
-          #   crypto_key_id = "my-app-key"
-          #   purpose = :ENCRYPT_DECRYPT
-          #   seconds = 2147483647
-          #   next_rotation_time = { seconds: seconds }
-          #   seconds_2 = 604800
-          #   rotation_period = { seconds: seconds_2 }
-          #   crypto_key = {
-          #     purpose: purpose,
-          #     next_rotation_time: next_rotation_time,
-          #     rotation_period: rotation_period
-          #   }
-          #   response = key_management_client.create_crypto_key(formatted_parent, crypto_key_id, crypto_key)
-          def create_crypto_key \
-              parent,
-              crypto_key_id,
-              crypto_key,
-              skip_initial_version_creation: nil,
-              options: nil,
-              &block
-            req = {
-              parent: parent,
-              crypto_key_id: crypto_key_id,
-              crypto_key: crypto_key,
-              skip_initial_version_creation: skip_initial_version_creation
-            }.delete_if { |_, v| v.nil? }
-            req = Google::Gax::to_proto(req, Google::Cloud::Kms::V1::CreateCryptoKeyRequest)
-            @create_crypto_key.call(req, options, &block)
-          end
-          # Create a new {Google::Cloud::Kms::V1::CryptoKeyVersion CryptoKeyVersion} in a {Google::Cloud::Kms::V1::CryptoKey CryptoKey}.
-          #
-          # The server will assign the next sequential id. If unset,
-          # {Google::Cloud::Kms::V1::CryptoKeyVersion#state state} will be set to
-          # {Google::Cloud::Kms::V1::CryptoKeyVersion::CryptoKeyVersionState::ENABLED ENABLED}.
-          #
-          # @param parent [String]
-          #   Required. The {Google::Cloud::Kms::V1::CryptoKey#name name} of the {Google::Cloud::Kms::V1::CryptoKey CryptoKey} associated with
-          #   the {Google::Cloud::Kms::V1::CryptoKeyVersion CryptoKeyVersions}.
-          # @param crypto_key_version [Google::Cloud::Kms::V1::CryptoKeyVersion | Hash]
-          #   Required. A {Google::Cloud::Kms::V1::CryptoKeyVersion CryptoKeyVersion} with initial field values.
-          #   A hash of the same form as `Google::Cloud::Kms::V1::CryptoKeyVersion`
-          #   can also be provided.
-          # @param options [Google::Gax::CallOptions]
-          #   Overrides the default settings for this call, e.g, timeout,
-          #   retries, etc.
-          # @yield [result, operation] Access the result along with the RPC operation
-          # @yieldparam result [Google::Cloud::Kms::V1::CryptoKeyVersion]
-          # @yieldparam operation [GRPC::ActiveCall::Operation]
-          # @return [Google::Cloud::Kms::V1::CryptoKeyVersion]
-          # @raise [Google::Gax::GaxError] if the RPC is aborted.
-          # @example
-          #   require "google/cloud/kms"
-          #
-          #   key_management_client = Google::Cloud::Kms.new(version: :v1)
-          #   formatted_parent = Google::Cloud::Kms::V1::KeyManagementServiceClient.crypto_key_path("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]")
-          #
-          #   # TODO: Initialize `crypto_key_version`:
-          #   crypto_key_version = {}
-          #   response = key_management_client.create_crypto_key_version(formatted_parent, crypto_key_version)
-          def create_crypto_key_version \
-              parent,
-              crypto_key_version,
-              options: nil,
-              &block
-            req = {
-              parent: parent,
-              crypto_key_version: crypto_key_version
-            }.delete_if { |_, v| v.nil? }
-            req = Google::Gax::to_proto(req, Google::Cloud::Kms::V1::CreateCryptoKeyVersionRequest)
-            @create_crypto_key_version.call(req, options, &block)
-          end
-          # Imports a new {Google::Cloud::Kms::V1::CryptoKeyVersion CryptoKeyVersion} into an existing {Google::Cloud::Kms::V1::CryptoKey CryptoKey} using the
-          # wrapped key material provided in the request.
-          #
-          # The version ID will be assigned the next sequential id within the
-          # {Google::Cloud::Kms::V1::CryptoKey CryptoKey}.
-          #
-          # @param parent [String]
-          #   Required. The {Google::Cloud::Kms::V1::CryptoKey#name name} of the {Google::Cloud::Kms::V1::CryptoKey CryptoKey} to
-          #   be imported into.
-          # @param algorithm [Google::Cloud::Kms::V1::CryptoKeyVersion::CryptoKeyVersionAlgorithm]
-          #   Required. The {Google::Cloud::Kms::V1::CryptoKeyVersion::CryptoKeyVersionAlgorithm algorithm} of
-          #   the key being imported. This does not need to match the
-          #   {Google::Cloud::Kms::V1::CryptoKey#version_template version_template} of the {Google::Cloud::Kms::V1::CryptoKey CryptoKey} this
-          #   version imports into.
-          # @param import_job [String]
-          #   Required. The {Google::Cloud::Kms::V1::ImportJob#name name} of the {Google::Cloud::Kms::V1::ImportJob ImportJob} that was used to
-          #   wrap this key material.
-          # @param rsa_aes_wrapped_key [String]
-          #   Wrapped key material produced with
-          #   {Google::Cloud::Kms::V1::ImportJob::ImportMethod::RSA_OAEP_3072_SHA1_AES_256 RSA_OAEP_3072_SHA1_AES_256}
-          #   or
-          #   {Google::Cloud::Kms::V1::ImportJob::ImportMethod::RSA_OAEP_4096_SHA1_AES_256 RSA_OAEP_4096_SHA1_AES_256}.
-          #
-          #   This field contains the concatenation of two wrapped keys:
-          #   <ol>
-          #     <li>An ephemeral AES-256 wrapping key wrapped with the
-          #         {Google::Cloud::Kms::V1::ImportJob#public_key public_key} using RSAES-OAEP with SHA-1,
-          #         MGF1 with SHA-1, and an empty label.
-          #     </li>
-          #     <li>The key to be imported, wrapped with the ephemeral AES-256 key
-          #         using AES-KWP (RFC 5649).
-          #     </li>
-          #   </ol>
-          #
-          #   If importing symmetric key material, it is expected that the unwrapped
-          #   key contains plain bytes. If importing asymmetric key material, it is
-          #   expected that the unwrapped key is in PKCS#8-encoded DER format (the
-          #   PrivateKeyInfo structure from RFC 5208).
-          #
-          #   This format is the same as the format produced by PKCS#11 mechanism
-          #   CKM_RSA_AES_KEY_WRAP.
-          # @param options [Google::Gax::CallOptions]
-          #   Overrides the default settings for this call, e.g, timeout,
-          #   retries, etc.
-          # @yield [result, operation] Access the result along with the RPC operation
-          # @yieldparam result [Google::Cloud::Kms::V1::CryptoKeyVersion]
-          # @yieldparam operation [GRPC::ActiveCall::Operation]
-          # @return [Google::Cloud::Kms::V1::CryptoKeyVersion]
-          # @raise [Google::Gax::GaxError] if the RPC is aborted.
-          # @example
-          #   require "google/cloud/kms"
-          #
-          #   key_management_client = Google::Cloud::Kms.new(version: :v1)
-          #   formatted_parent = Google::Cloud::Kms::V1::KeyManagementServiceClient.crypto_key_path("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]")
-          #
-          #   # TODO: Initialize `algorithm`:
-          #   algorithm = :CRYPTO_KEY_VERSION_ALGORITHM_UNSPECIFIED
-          #
-          #   # TODO: Initialize `import_job`:
-          #   import_job = ''
-          #   response = key_management_client.import_crypto_key_version(formatted_parent, algorithm, import_job)
-          def import_crypto_key_version \
-              parent,
-              algorithm,
-              import_job,
-              rsa_aes_wrapped_key: nil,
-              options: nil,
-              &block
-            req = {
-              parent: parent,
-              algorithm: algorithm,
-              import_job: import_job,
-              rsa_aes_wrapped_key: rsa_aes_wrapped_key
-            }.delete_if { |_, v| v.nil? }
-            req = Google::Gax::to_proto(req, Google::Cloud::Kms::V1::ImportCryptoKeyVersionRequest)
-            @import_crypto_key_version.call(req, options, &block)
-          end
-          # Update a {Google::Cloud::Kms::V1::CryptoKey CryptoKey}.
-          #
-          # @param crypto_key [Google::Cloud::Kms::V1::CryptoKey | Hash]
-          #   Required. {Google::Cloud::Kms::V1::CryptoKey CryptoKey} with updated values.
-          #   A hash of the same form as `Google::Cloud::Kms::V1::CryptoKey`
-          #   can also be provided.
-          # @param update_mask [Google::Protobuf::FieldMask | Hash]
-          #   Required. List of fields to be updated in this request.
-          #   A hash of the same form as `Google::Protobuf::FieldMask`
-          #   can also be provided.
-          # @param options [Google::Gax::CallOptions]
-          #   Overrides the default settings for this call, e.g, timeout,
-          #   retries, etc.
-          # @yield [result, operation] Access the result along with the RPC operation
-          # @yieldparam result [Google::Cloud::Kms::V1::CryptoKey]
-          # @yieldparam operation [GRPC::ActiveCall::Operation]
-          # @return [Google::Cloud::Kms::V1::CryptoKey]
-          # @raise [Google::Gax::GaxError] if the RPC is aborted.
-          # @example
-          #   require "google/cloud/kms"
-          #
-          #   key_management_client = Google::Cloud::Kms.new(version: :v1)
-          #
-          #   # TODO: Initialize `crypto_key`:
-          #   crypto_key = {}
-          #
-          #   # TODO: Initialize `update_mask`:
-          #   update_mask = {}
-          #   response = key_management_client.update_crypto_key(crypto_key, update_mask)
-          def update_crypto_key \
-              crypto_key,
-              update_mask,
-              options: nil,
-              &block
-            req = {
-              crypto_key: crypto_key,
-              update_mask: update_mask
-            }.delete_if { |_, v| v.nil? }
-            req = Google::Gax::to_proto(req, Google::Cloud::Kms::V1::UpdateCryptoKeyRequest)
-            @update_crypto_key.call(req, options, &block)
-          end
-          # Update a {Google::Cloud::Kms::V1::CryptoKeyVersion CryptoKeyVersion}'s metadata.
-          #
-          # {Google::Cloud::Kms::V1::CryptoKeyVersion#state state} may be changed between
-          # {Google::Cloud::Kms::V1::CryptoKeyVersion::CryptoKeyVersionState::ENABLED ENABLED} and
-          # {Google::Cloud::Kms::V1::CryptoKeyVersion::CryptoKeyVersionState::DISABLED DISABLED} using this
-          # method. See {Google::Cloud::Kms::V1::KeyManagementService::DestroyCryptoKeyVersion DestroyCryptoKeyVersion} and {Google::Cloud::Kms::V1::KeyManagementService::RestoreCryptoKeyVersion RestoreCryptoKeyVersion} to
-          # move between other states.
-          #
-          # @param crypto_key_version [Google::Cloud::Kms::V1::CryptoKeyVersion | Hash]
-          #   Required. {Google::Cloud::Kms::V1::CryptoKeyVersion CryptoKeyVersion} with updated values.
-          #   A hash of the same form as `Google::Cloud::Kms::V1::CryptoKeyVersion`
-          #   can also be provided.
-          # @param update_mask [Google::Protobuf::FieldMask | Hash]
-          #   Required. List of fields to be updated in this request.
-          #   A hash of the same form as `Google::Protobuf::FieldMask`
-          #   can also be provided.
-          # @param options [Google::Gax::CallOptions]
-          #   Overrides the default settings for this call, e.g, timeout,
-          #   retries, etc.
-          # @yield [result, operation] Access the result along with the RPC operation
-          # @yieldparam result [Google::Cloud::Kms::V1::CryptoKeyVersion]
-          # @yieldparam operation [GRPC::ActiveCall::Operation]
-          # @return [Google::Cloud::Kms::V1::CryptoKeyVersion]
-          # @raise [Google::Gax::GaxError] if the RPC is aborted.
-          # @example
-          #   require "google/cloud/kms"
-          #
-          #   key_management_client = Google::Cloud::Kms.new(version: :v1)
-          #
-          #   # TODO: Initialize `crypto_key_version`:
-          #   crypto_key_version = {}
-          #
-          #   # TODO: Initialize `update_mask`:
-          #   update_mask = {}
-          #   response = key_management_client.update_crypto_key_version(crypto_key_version, update_mask)
-          def update_crypto_key_version \
-              crypto_key_version,
-              update_mask,
-              options: nil,
-              &block
-            req = {
-              crypto_key_version: crypto_key_version,
-              update_mask: update_mask
-            }.delete_if { |_, v| v.nil? }
-            req = Google::Gax::to_proto(req, Google::Cloud::Kms::V1::UpdateCryptoKeyVersionRequest)
-            @update_crypto_key_version.call(req, options, &block)
-          end
-          # Encrypts data, so that it can only be recovered by a call to {Google::Cloud::Kms::V1::KeyManagementService::Decrypt Decrypt}.
-          # The {Google::Cloud::Kms::V1::CryptoKey#purpose CryptoKey#purpose} must be
-          # {Google::Cloud::Kms::V1::CryptoKey::CryptoKeyPurpose::ENCRYPT_DECRYPT ENCRYPT_DECRYPT}.
-          #
-          # @param name [String]
-          #   Required. The resource name of the {Google::Cloud::Kms::V1::CryptoKey CryptoKey} or {Google::Cloud::Kms::V1::CryptoKeyVersion CryptoKeyVersion}
-          #   to use for encryption.
-          #
-          #   If a {Google::Cloud::Kms::V1::CryptoKey CryptoKey} is specified, the server will use its
-          #   {Google::Cloud::Kms::V1::CryptoKey#primary primary version}.
-          # @param plaintext [String]
-          #   Required. The data to encrypt. Must be no larger than 64KiB.
-          #
-          #   The maximum size depends on the key version's
-          #   {Google::Cloud::Kms::V1::CryptoKeyVersionTemplate#protection_level protection_level}. For
-          #   {Google::Cloud::Kms::V1::ProtectionLevel::SOFTWARE SOFTWARE} keys, the plaintext must be no larger
-          #   than 64KiB. For {Google::Cloud::Kms::V1::ProtectionLevel::HSM HSM} keys, the combined length of the
-          #   plaintext and additional_authenticated_data fields must be no larger than
-          #   8KiB.
-          # @param additional_authenticated_data [String]
-          #   Optional. Optional data that, if specified, must also be provided during decryption
-          #   through {Google::Cloud::Kms::V1::DecryptRequest#additional_authenticated_data DecryptRequest#additional_authenticated_data}.
-          #
-          #   The maximum size depends on the key version's
-          #   {Google::Cloud::Kms::V1::CryptoKeyVersionTemplate#protection_level protection_level}. For
-          #   {Google::Cloud::Kms::V1::ProtectionLevel::SOFTWARE SOFTWARE} keys, the AAD must be no larger than
-          #   64KiB. For {Google::Cloud::Kms::V1::ProtectionLevel::HSM HSM} keys, the combined length of the
-          #   plaintext and additional_authenticated_data fields must be no larger than
-          #   8KiB.
-          # @param options [Google::Gax::CallOptions]
-          #   Overrides the default settings for this call, e.g, timeout,
-          #   retries, etc.
-          # @yield [result, operation] Access the result along with the RPC operation
-          # @yieldparam result [Google::Cloud::Kms::V1::EncryptResponse]
-          # @yieldparam operation [GRPC::ActiveCall::Operation]
-          # @return [Google::Cloud::Kms::V1::EncryptResponse]
-          # @raise [Google::Gax::GaxError] if the RPC is aborted.
-          # @example
-          #   require "google/cloud/kms"
-          #
-          #   key_management_client = Google::Cloud::Kms.new(version: :v1)
-          #
-          #   # TODO: Initialize `name`:
-          #   name = ''
-          #
-          #   # TODO: Initialize `plaintext`:
-          #   plaintext = ''
-          #   response = key_management_client.encrypt(name, plaintext)
-          def encrypt \
-              name,
-              plaintext,
-              additional_authenticated_data: nil,
-              options: nil,
-              &block
-            req = {
-              name: name,
-              plaintext: plaintext,
-              additional_authenticated_data: additional_authenticated_data
-            }.delete_if { |_, v| v.nil? }
-            req = Google::Gax::to_proto(req, Google::Cloud::Kms::V1::EncryptRequest)
-            @encrypt.call(req, options, &block)
-          end
-          # Decrypts data that was protected by {Google::Cloud::Kms::V1::KeyManagementService::Encrypt Encrypt}. The {Google::Cloud::Kms::V1::CryptoKey#purpose CryptoKey#purpose}
-          # must be {Google::Cloud::Kms::V1::CryptoKey::CryptoKeyPurpose::ENCRYPT_DECRYPT ENCRYPT_DECRYPT}.
-          #
-          # @param name [String]
-          #   Required. The resource name of the {Google::Cloud::Kms::V1::CryptoKey CryptoKey} to use for decryption.
-          #   The server will choose the appropriate version.
-          # @param ciphertext [String]
-          #   Required. The encrypted data originally returned in
-          #   {Google::Cloud::Kms::V1::EncryptResponse#ciphertext EncryptResponse#ciphertext}.
-          # @param additional_authenticated_data [String]
-          #   Optional. Optional data that must match the data originally supplied in
-          #   {Google::Cloud::Kms::V1::EncryptRequest#additional_authenticated_data EncryptRequest#additional_authenticated_data}.
-          # @param options [Google::Gax::CallOptions]
-          #   Overrides the default settings for this call, e.g, timeout,
-          #   retries, etc.
-          # @yield [result, operation] Access the result along with the RPC operation
-          # @yieldparam result [Google::Cloud::Kms::V1::DecryptResponse]
-          # @yieldparam operation [GRPC::ActiveCall::Operation]
-          # @return [Google::Cloud::Kms::V1::DecryptResponse]
-          # @raise [Google::Gax::GaxError] if the RPC is aborted.
-          # @example
-          #   require "google/cloud/kms"
-          #
-          #   key_management_client = Google::Cloud::Kms.new(version: :v1)
-          #   formatted_name = Google::Cloud::Kms::V1::KeyManagementServiceClient.crypto_key_path("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]")
-          #
-          #   # TODO: Initialize `ciphertext`:
-          #   ciphertext = ''
-          #   response = key_management_client.decrypt(formatted_name, ciphertext)
-          def decrypt \
-              name,
-              ciphertext,
-              additional_authenticated_data: nil,
-              options: nil,
-              &block
-            req = {
-              name: name,
-              ciphertext: ciphertext,
-              additional_authenticated_data: additional_authenticated_data
-            }.delete_if { |_, v| v.nil? }
-            req = Google::Gax::to_proto(req, Google::Cloud::Kms::V1::DecryptRequest)
-            @decrypt.call(req, options, &block)
-          end
-          # Update the version of a {Google::Cloud::Kms::V1::CryptoKey CryptoKey} that will be used in {Google::Cloud::Kms::V1::KeyManagementService::Encrypt Encrypt}.
-          #
-          # Returns an error if called on an asymmetric key.
-          #
-          # @param name [String]
-          #   Required. The resource name of the {Google::Cloud::Kms::V1::CryptoKey CryptoKey} to update.
-          # @param crypto_key_version_id [String]
-          #   Required. The id of the child {Google::Cloud::Kms::V1::CryptoKeyVersion CryptoKeyVersion} to use as primary.
-          # @param options [Google::Gax::CallOptions]
-          #   Overrides the default settings for this call, e.g, timeout,
-          #   retries, etc.
-          # @yield [result, operation] Access the result along with the RPC operation
-          # @yieldparam result [Google::Cloud::Kms::V1::CryptoKey]
-          # @yieldparam operation [GRPC::ActiveCall::Operation]
-          # @return [Google::Cloud::Kms::V1::CryptoKey]
-          # @raise [Google::Gax::GaxError] if the RPC is aborted.
-          # @example
-          #   require "google/cloud/kms"
-          #
-          #   key_management_client = Google::Cloud::Kms.new(version: :v1)
-          #   formatted_name = Google::Cloud::Kms::V1::KeyManagementServiceClient.crypto_key_path("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]")
-          #
-          #   # TODO: Initialize `crypto_key_version_id`:
-          #   crypto_key_version_id = ''
-          #   response = key_management_client.update_crypto_key_primary_version(formatted_name, crypto_key_version_id)
-          def update_crypto_key_primary_version \
-              name,
-              crypto_key_version_id,
-              options: nil,
-              &block
-            req = {
-              name: name,
-              crypto_key_version_id: crypto_key_version_id
-            }.delete_if { |_, v| v.nil? }
-            req = Google::Gax::to_proto(req, Google::Cloud::Kms::V1::UpdateCryptoKeyPrimaryVersionRequest)
-            @update_crypto_key_primary_version.call(req, options, &block)
-          end
-          # Schedule a {Google::Cloud::Kms::V1::CryptoKeyVersion CryptoKeyVersion} for destruction.
-          #
-          # Upon calling this method, {Google::Cloud::Kms::V1::CryptoKeyVersion#state CryptoKeyVersion#state} will be set to
-          # {Google::Cloud::Kms::V1::CryptoKeyVersion::CryptoKeyVersionState::DESTROY_SCHEDULED DESTROY_SCHEDULED}
-          # and {Google::Cloud::Kms::V1::CryptoKeyVersion#destroy_time destroy_time} will be set to a time 24
-          # hours in the future, at which point the {Google::Cloud::Kms::V1::CryptoKeyVersion#state state}
-          # will be changed to
-          # {Google::Cloud::Kms::V1::CryptoKeyVersion::CryptoKeyVersionState::DESTROYED DESTROYED}, and the key
-          # material will be irrevocably destroyed.
-          #
-          # Before the {Google::Cloud::Kms::V1::CryptoKeyVersion#destroy_time destroy_time} is reached,
-          # {Google::Cloud::Kms::V1::KeyManagementService::RestoreCryptoKeyVersion RestoreCryptoKeyVersion} may be called to reverse the process.
-          #
-          # @param name [String]
-          #   Required. The resource name of the {Google::Cloud::Kms::V1::CryptoKeyVersion CryptoKeyVersion} to destroy.
-          # @param options [Google::Gax::CallOptions]
-          #   Overrides the default settings for this call, e.g, timeout,
-          #   retries, etc.
-          # @yield [result, operation] Access the result along with the RPC operation
-          # @yieldparam result [Google::Cloud::Kms::V1::CryptoKeyVersion]
-          # @yieldparam operation [GRPC::ActiveCall::Operation]
-          # @return [Google::Cloud::Kms::V1::CryptoKeyVersion]
-          # @raise [Google::Gax::GaxError] if the RPC is aborted.
-          # @example
-          #   require "google/cloud/kms"
-          #
-          #   key_management_client = Google::Cloud::Kms.new(version: :v1)
-          #   formatted_name = Google::Cloud::Kms::V1::KeyManagementServiceClient.crypto_key_version_path("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]", "[CRYPTO_KEY_VERSION]")
-          #   response = key_management_client.destroy_crypto_key_version(formatted_name)
-          def destroy_crypto_key_version \
-              name,
-              options: nil,
-              &block
-            req = {
-              name: name
-            }.delete_if { |_, v| v.nil? }
-            req = Google::Gax::to_proto(req, Google::Cloud::Kms::V1::DestroyCryptoKeyVersionRequest)
-            @destroy_crypto_key_version.call(req, options, &block)
-          end
-          # Restore a {Google::Cloud::Kms::V1::CryptoKeyVersion CryptoKeyVersion} in the
-          # {Google::Cloud::Kms::V1::CryptoKeyVersion::CryptoKeyVersionState::DESTROY_SCHEDULED DESTROY_SCHEDULED}
-          # state.
-          #
-          # Upon restoration of the CryptoKeyVersion, {Google::Cloud::Kms::V1::CryptoKeyVersion#state state}
-          # will be set to {Google::Cloud::Kms::V1::CryptoKeyVersion::CryptoKeyVersionState::DISABLED DISABLED},
-          # and {Google::Cloud::Kms::V1::CryptoKeyVersion#destroy_time destroy_time} will be cleared.
-          #
-          # @param name [String]
-          #   Required. The resource name of the {Google::Cloud::Kms::V1::CryptoKeyVersion CryptoKeyVersion} to restore.
-          # @param options [Google::Gax::CallOptions]
-          #   Overrides the default settings for this call, e.g, timeout,
-          #   retries, etc.
-          # @yield [result, operation] Access the result along with the RPC operation
-          # @yieldparam result [Google::Cloud::Kms::V1::CryptoKeyVersion]
-          # @yieldparam operation [GRPC::ActiveCall::Operation]
-          # @return [Google::Cloud::Kms::V1::CryptoKeyVersion]
-          # @raise [Google::Gax::GaxError] if the RPC is aborted.
-          # @example
-          #   require "google/cloud/kms"
-          #
-          #   key_management_client = Google::Cloud::Kms.new(version: :v1)
-          #   formatted_name = Google::Cloud::Kms::V1::KeyManagementServiceClient.crypto_key_version_path("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]", "[CRYPTO_KEY_VERSION]")
-          #   response = key_management_client.restore_crypto_key_version(formatted_name)
-          def restore_crypto_key_version \
-              name,
-              options: nil,
-              &block
-            req = {
-              name: name
-            }.delete_if { |_, v| v.nil? }
-            req = Google::Gax::to_proto(req, Google::Cloud::Kms::V1::RestoreCryptoKeyVersionRequest)
-            @restore_crypto_key_version.call(req, options, &block)
-          end
-          # Returns the public key for the given {Google::Cloud::Kms::V1::CryptoKeyVersion CryptoKeyVersion}. The
-          # {Google::Cloud::Kms::V1::CryptoKey#purpose CryptoKey#purpose} must be
-          # {Google::Cloud::Kms::V1::CryptoKey::CryptoKeyPurpose::ASYMMETRIC_SIGN ASYMMETRIC_SIGN} or
-          # {Google::Cloud::Kms::V1::CryptoKey::CryptoKeyPurpose::ASYMMETRIC_DECRYPT ASYMMETRIC_DECRYPT}.
-          #
-          # @param name [String]
-          #   Required. The {Google::Cloud::Kms::V1::CryptoKeyVersion#name name} of the {Google::Cloud::Kms::V1::CryptoKeyVersion CryptoKeyVersion} public key to
-          #   get.
-          # @param options [Google::Gax::CallOptions]
-          #   Overrides the default settings for this call, e.g, timeout,
-          #   retries, etc.
-          # @yield [result, operation] Access the result along with the RPC operation
-          # @yieldparam result [Google::Cloud::Kms::V1::PublicKey]
-          # @yieldparam operation [GRPC::ActiveCall::Operation]
-          # @return [Google::Cloud::Kms::V1::PublicKey]
-          # @raise [Google::Gax::GaxError] if the RPC is aborted.
-          # @example
-          #   require "google/cloud/kms"
-          #
-          #   key_management_client = Google::Cloud::Kms.new(version: :v1)
-          #   formatted_name = Google::Cloud::Kms::V1::KeyManagementServiceClient.crypto_key_version_path("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]", "[CRYPTO_KEY_VERSION]")
-          #   response = key_management_client.get_public_key(formatted_name)
-          def get_public_key \
-              name,
-              options: nil,
-              &block
-            req = {
-              name: name
-            }.delete_if { |_, v| v.nil? }
-            req = Google::Gax::to_proto(req, Google::Cloud::Kms::V1::GetPublicKeyRequest)
-            @get_public_key.call(req, options, &block)
-          end
-          # Decrypts data that was encrypted with a public key retrieved from
-          # {Google::Cloud::Kms::V1::KeyManagementService::GetPublicKey GetPublicKey} corresponding to a {Google::Cloud::Kms::V1::CryptoKeyVersion CryptoKeyVersion} with
-          # {Google::Cloud::Kms::V1::CryptoKey#purpose CryptoKey#purpose} ASYMMETRIC_DECRYPT.
-          #
-          # @param name [String]
-          #   Required. The resource name of the {Google::Cloud::Kms::V1::CryptoKeyVersion CryptoKeyVersion} to use for
-          #   decryption.
-          # @param ciphertext [String]
-          #   Required. The data encrypted with the named {Google::Cloud::Kms::V1::CryptoKeyVersion CryptoKeyVersion}'s public
-          #   key using OAEP.
-          # @param options [Google::Gax::CallOptions]
-          #   Overrides the default settings for this call, e.g, timeout,
-          #   retries, etc.
-          # @yield [result, operation] Access the result along with the RPC operation
-          # @yieldparam result [Google::Cloud::Kms::V1::AsymmetricDecryptResponse]
-          # @yieldparam operation [GRPC::ActiveCall::Operation]
-          # @return [Google::Cloud::Kms::V1::AsymmetricDecryptResponse]
-          # @raise [Google::Gax::GaxError] if the RPC is aborted.
-          # @example
-          #   require "google/cloud/kms"
-          #
-          #   key_management_client = Google::Cloud::Kms.new(version: :v1)
-          #   formatted_name = Google::Cloud::Kms::V1::KeyManagementServiceClient.crypto_key_version_path("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]", "[CRYPTO_KEY_VERSION]")
-          #
-          #   # TODO: Initialize `ciphertext`:
-          #   ciphertext = ''
-          #   response = key_management_client.asymmetric_decrypt(formatted_name, ciphertext)
-          def asymmetric_decrypt \
-              name,
-              ciphertext,
-              options: nil,
-              &block
-            req = {
-              name: name,
-              ciphertext: ciphertext
-            }.delete_if { |_, v| v.nil? }
-            req = Google::Gax::to_proto(req, Google::Cloud::Kms::V1::AsymmetricDecryptRequest)
-            @asymmetric_decrypt.call(req, options, &block)
-          end
-          # Signs data using a {Google::Cloud::Kms::V1::CryptoKeyVersion CryptoKeyVersion} with {Google::Cloud::Kms::V1::CryptoKey#purpose CryptoKey#purpose}
-          # ASYMMETRIC_SIGN, producing a signature that can be verified with the public
-          # key retrieved from {Google::Cloud::Kms::V1::KeyManagementService::GetPublicKey GetPublicKey}.
-          #
-          # @param name [String]
-          #   Required. The resource name of the {Google::Cloud::Kms::V1::CryptoKeyVersion CryptoKeyVersion} to use for signing.
-          # @param digest [Google::Cloud::Kms::V1::Digest | Hash]
-          #   Required. The digest of the data to sign. The digest must be produced with
-          #   the same digest algorithm as specified by the key version's
-          #   {Google::Cloud::Kms::V1::CryptoKeyVersion#algorithm algorithm}.
-          #   A hash of the same form as `Google::Cloud::Kms::V1::Digest`
-          #   can also be provided.
-          # @param options [Google::Gax::CallOptions]
-          #   Overrides the default settings for this call, e.g, timeout,
-          #   retries, etc.
-          # @yield [result, operation] Access the result along with the RPC operation
-          # @yieldparam result [Google::Cloud::Kms::V1::AsymmetricSignResponse]
-          # @yieldparam operation [GRPC::ActiveCall::Operation]
-          # @return [Google::Cloud::Kms::V1::AsymmetricSignResponse]
-          # @raise [Google::Gax::GaxError] if the RPC is aborted.
-          # @example
-          #   require "google/cloud/kms"
-          #
-          #   key_management_client = Google::Cloud::Kms.new(version: :v1)
-          #   formatted_name = Google::Cloud::Kms::V1::KeyManagementServiceClient.crypto_key_version_path("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]", "[CRYPTO_KEY_VERSION]")
-          #
-          #   # TODO: Initialize `digest`:
-          #   digest = {}
-          #   response = key_management_client.asymmetric_sign(formatted_name, digest)
-          def asymmetric_sign \
-              name,
-              digest,
-              options: nil,
-              &block
-            req = {
-              name: name,
-              digest: digest
-            }.delete_if { |_, v| v.nil? }
-            req = Google::Gax::to_proto(req, Google::Cloud::Kms::V1::AsymmetricSignRequest)
-            @asymmetric_sign.call(req, options, &block)
-          end
-          # Sets the access control policy on the specified resource. Replaces
-          # any existing policy.
-          #
-          # Can return Public Errors: NOT_FOUND, INVALID_ARGUMENT and
-          # PERMISSION_DENIED
-          #
-          # @param resource [String]
-          #   REQUIRED: The resource for which the policy is being specified.
-          #   See the operation documentation for the appropriate value for this field.
-          # @param policy [Google::Iam::V1::Policy | Hash]
-          #   REQUIRED: The complete policy to be applied to the `resource`. The size of
-          #   the policy is limited to a few 10s of KB. An empty policy is a
-          #   valid policy but certain Cloud Platform services (such as Projects)
-          #   might reject them.
-          #   A hash of the same form as `Google::Iam::V1::Policy`
-          #   can also be provided.
-          # @param options [Google::Gax::CallOptions]
-          #   Overrides the default settings for this call, e.g, timeout,
-          #   retries, etc.
-          # @yield [result, operation] Access the result along with the RPC operation
-          # @yieldparam result [Google::Iam::V1::Policy]
-          # @yieldparam operation [GRPC::ActiveCall::Operation]
-          # @return [Google::Iam::V1::Policy]
-          # @raise [Google::Gax::GaxError] if the RPC is aborted.
-          # @example
-          #   require "google/cloud/kms"
-          #
-          #   key_management_client = Google::Cloud::Kms.new(version: :v1)
-          #
-          #   # TODO: Initialize `resource`:
-          #   resource = ''
-          #
-          #   # TODO: Initialize `policy`:
-          #   policy = {}
-          #   response = key_management_client.set_iam_policy(resource, policy)
-          def set_iam_policy \
-              resource,
-              policy,
-              options: nil,
-              &block
-            req = {
-              resource: resource,
-              policy: policy
-            }.delete_if { |_, v| v.nil? }
-            req = Google::Gax::to_proto(req, Google::Iam::V1::SetIamPolicyRequest)
-            @set_iam_policy.call(req, options, &block)
-          end
-          # Gets the access control policy for a resource. Returns an empty policy
-          # if the resource exists and does not have a policy set.
-          #
-          # @param resource [String]
-          #   REQUIRED: The resource for which the policy is being requested.
-          #   See the operation documentation for the appropriate value for this field.
-          # @param options_ [Google::Iam::V1::GetPolicyOptions | Hash]
-          #   OPTIONAL: A `GetPolicyOptions` object for specifying options to
-          #   `GetIamPolicy`. This field is only used by Cloud IAM.
-          #   A hash of the same form as `Google::Iam::V1::GetPolicyOptions`
-          #   can also be provided.
-          # @param options [Google::Gax::CallOptions]
-          #   Overrides the default settings for this call, e.g, timeout,
-          #   retries, etc.
-          # @yield [result, operation] Access the result along with the RPC operation
-          # @yieldparam result [Google::Iam::V1::Policy]
-          # @yieldparam operation [GRPC::ActiveCall::Operation]
-          # @return [Google::Iam::V1::Policy]
-          # @raise [Google::Gax::GaxError] if the RPC is aborted.
-          # @example
-          #   require "google/cloud/kms"
-          #
-          #   key_management_client = Google::Cloud::Kms.new(version: :v1)
-          #
-          #   # TODO: Initialize `resource`:
-          #   resource = ''
-          #   response = key_management_client.get_iam_policy(resource)
-          def get_iam_policy \
-              resource,
-              options_: nil,
-              options: nil,
-              &block
-            req = {
-              resource: resource,
-              options: options_
-            }.delete_if { |_, v| v.nil? }
-            req = Google::Gax::to_proto(req, Google::Iam::V1::GetIamPolicyRequest)
-            @get_iam_policy.call(req, options, &block)
-          end
-          # Returns permissions that a caller has on the specified resource. If the
-          # resource does not exist, this will return an empty set of
-          # permissions, not a NOT_FOUND error.
-          #
-          # Note: This operation is designed to be used for building
-          # permission-aware UIs and command-line tools, not for authorization
-          # checking. This operation may "fail open" without warning.
-          #
-          # @param resource [String]
-          #   REQUIRED: The resource for which the policy detail is being requested.
-          #   See the operation documentation for the appropriate value for this field.
-          # @param permissions [Array<String>]
-          #   The set of permissions to check for the `resource`. Permissions with
-          #   wildcards (such as '*' or 'storage.*') are not allowed. For more
-          #   information see
-          #   [IAM Overview](https://cloud.google.com/iam/docs/overview#permissions).
-          # @param options [Google::Gax::CallOptions]
-          #   Overrides the default settings for this call, e.g, timeout,
-          #   retries, etc.
-          # @yield [result, operation] Access the result along with the RPC operation
-          # @yieldparam result [Google::Iam::V1::TestIamPermissionsResponse]
-          # @yieldparam operation [GRPC::ActiveCall::Operation]
-          # @return [Google::Iam::V1::TestIamPermissionsResponse]
-          # @raise [Google::Gax::GaxError] if the RPC is aborted.
-          # @example
-          #   require "google/cloud/kms"
-          #
-          #   key_management_client = Google::Cloud::Kms.new(version: :v1)
-          #
-          #   # TODO: Initialize `resource`:
-          #   resource = ''
-          #
-          #   # TODO: Initialize `permissions`:
-          #   permissions = []
-          #   response = key_management_client.test_iam_permissions(resource, permissions)
-          def test_iam_permissions \
-              resource,
-              permissions,
-              options: nil,
-              &block
-            req = {
-              resource: resource,
-              permissions: permissions
-            }.delete_if { |_, v| v.nil? }
-            req = Google::Gax::to_proto(req, Google::Iam::V1::TestIamPermissionsRequest)
-            @test_iam_permissions.call(req, options, &block)
-          end
-        end
-      end
-    end
-  end
-end