google-cloud-network_security-v1beta1 0.1.0 → 0.2.0
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/.yardopts +1 -1
- data/AUTHENTICATION.md +7 -25
- data/README.md +11 -6
- data/lib/google/cloud/network_security/v1beta1/network_security/client.rb +386 -45
- data/lib/google/cloud/network_security/v1beta1/network_security/operations.rb +118 -12
- data/lib/google/cloud/network_security/v1beta1/network_security.rb +4 -0
- data/lib/google/cloud/network_security/v1beta1/version.rb +1 -1
- data/lib/google/cloud/network_security/v1beta1.rb +2 -0
- data/lib/google/cloud/networksecurity/v1beta1/authorization_policy_pb.rb +1 -0
- data/lib/google/cloud/networksecurity/v1beta1/client_tls_policy_pb.rb +1 -0
- data/lib/google/cloud/networksecurity/v1beta1/common_pb.rb +1 -0
- data/lib/google/cloud/networksecurity/v1beta1/network_security_pb.rb +1 -0
- data/lib/google/cloud/networksecurity/v1beta1/network_security_services_pb.rb +3 -0
- data/lib/google/cloud/networksecurity/v1beta1/server_tls_policy_pb.rb +1 -0
- data/lib/google/cloud/networksecurity/v1beta1/tls_pb.rb +1 -0
- data/proto_docs/google/api/resource.rb +10 -71
- data/proto_docs/google/cloud/networksecurity/v1beta1/authorization_policy.rb +14 -6
- data/proto_docs/google/cloud/networksecurity/v1beta1/server_tls_policy.rb +13 -12
- data/proto_docs/google/protobuf/any.rb +3 -3
- metadata +12 -12
@@ -95,6 +95,9 @@ module Google
|
|
95
95
|
channel_args: @config.channel_args,
|
96
96
|
interceptors: @config.interceptors
|
97
97
|
)
|
98
|
+
|
99
|
+
# Used by an LRO wrapper for some methods of this service
|
100
|
+
@operations_client = self
|
98
101
|
end
|
99
102
|
|
100
103
|
# Service calls
|
@@ -143,6 +146,27 @@ module Google
|
|
143
146
|
#
|
144
147
|
# @raise [::Google::Cloud::Error] if the RPC is aborted.
|
145
148
|
#
|
149
|
+
# @example Basic example
|
150
|
+
# require "google/longrunning"
|
151
|
+
#
|
152
|
+
# # Create a client object. The client can be reused for multiple calls.
|
153
|
+
# client = Google::Longrunning::Operations::Client.new
|
154
|
+
#
|
155
|
+
# # Create a request. To set request fields, pass in keyword arguments.
|
156
|
+
# request = Google::Longrunning::ListOperationsRequest.new
|
157
|
+
#
|
158
|
+
# # Call the list_operations method.
|
159
|
+
# result = client.list_operations request
|
160
|
+
#
|
161
|
+
# # The returned object is of type Gapic::PagedEnumerable. You can
|
162
|
+
# # iterate over all elements by calling #each, and the enumerable
|
163
|
+
# # will lazily make API calls to fetch subsequent pages. Other
|
164
|
+
# # methods are also available for managing paging directly.
|
165
|
+
# result.each do |response|
|
166
|
+
# # Each element is of type ::Google::Longrunning::Operation.
|
167
|
+
# p response
|
168
|
+
# end
|
169
|
+
#
|
146
170
|
def list_operations request, options = nil
|
147
171
|
raise ::ArgumentError, "request must be provided" if request.nil?
|
148
172
|
|
@@ -160,9 +184,11 @@ module Google
|
|
160
184
|
gapic_version: ::Google::Cloud::NetworkSecurity::V1beta1::VERSION
|
161
185
|
metadata[:"x-goog-user-project"] = @quota_project_id if @quota_project_id
|
162
186
|
|
163
|
-
header_params = {
|
164
|
-
|
165
|
-
|
187
|
+
header_params = {}
|
188
|
+
if request.name
|
189
|
+
header_params["name"] = request.name
|
190
|
+
end
|
191
|
+
|
166
192
|
request_params_header = header_params.map { |k, v| "#{k}=#{v}" }.join("&")
|
167
193
|
metadata[:"x-goog-request-params"] ||= request_params_header
|
168
194
|
|
@@ -215,6 +241,28 @@ module Google
|
|
215
241
|
#
|
216
242
|
# @raise [::Google::Cloud::Error] if the RPC is aborted.
|
217
243
|
#
|
244
|
+
# @example Basic example
|
245
|
+
# require "google/longrunning"
|
246
|
+
#
|
247
|
+
# # Create a client object. The client can be reused for multiple calls.
|
248
|
+
# client = Google::Longrunning::Operations::Client.new
|
249
|
+
#
|
250
|
+
# # Create a request. To set request fields, pass in keyword arguments.
|
251
|
+
# request = Google::Longrunning::GetOperationRequest.new
|
252
|
+
#
|
253
|
+
# # Call the get_operation method.
|
254
|
+
# result = client.get_operation request
|
255
|
+
#
|
256
|
+
# # The returned object is of type Gapic::Operation. You can use this
|
257
|
+
# # object to check the status of an operation, cancel it, or wait
|
258
|
+
# # for results. Here is how to block until completion:
|
259
|
+
# result.wait_until_done! timeout: 60
|
260
|
+
# if result.response?
|
261
|
+
# p result.response
|
262
|
+
# else
|
263
|
+
# puts "Error!"
|
264
|
+
# end
|
265
|
+
#
|
218
266
|
def get_operation request, options = nil
|
219
267
|
raise ::ArgumentError, "request must be provided" if request.nil?
|
220
268
|
|
@@ -232,9 +280,11 @@ module Google
|
|
232
280
|
gapic_version: ::Google::Cloud::NetworkSecurity::V1beta1::VERSION
|
233
281
|
metadata[:"x-goog-user-project"] = @quota_project_id if @quota_project_id
|
234
282
|
|
235
|
-
header_params = {
|
236
|
-
|
237
|
-
|
283
|
+
header_params = {}
|
284
|
+
if request.name
|
285
|
+
header_params["name"] = request.name
|
286
|
+
end
|
287
|
+
|
238
288
|
request_params_header = header_params.map { |k, v| "#{k}=#{v}" }.join("&")
|
239
289
|
metadata[:"x-goog-request-params"] ||= request_params_header
|
240
290
|
|
@@ -287,6 +337,21 @@ module Google
|
|
287
337
|
#
|
288
338
|
# @raise [::Google::Cloud::Error] if the RPC is aborted.
|
289
339
|
#
|
340
|
+
# @example Basic example
|
341
|
+
# require "google/longrunning"
|
342
|
+
#
|
343
|
+
# # Create a client object. The client can be reused for multiple calls.
|
344
|
+
# client = Google::Longrunning::Operations::Client.new
|
345
|
+
#
|
346
|
+
# # Create a request. To set request fields, pass in keyword arguments.
|
347
|
+
# request = Google::Longrunning::DeleteOperationRequest.new
|
348
|
+
#
|
349
|
+
# # Call the delete_operation method.
|
350
|
+
# result = client.delete_operation request
|
351
|
+
#
|
352
|
+
# # The returned object is of type Google::Protobuf::Empty.
|
353
|
+
# p result
|
354
|
+
#
|
290
355
|
def delete_operation request, options = nil
|
291
356
|
raise ::ArgumentError, "request must be provided" if request.nil?
|
292
357
|
|
@@ -304,9 +369,11 @@ module Google
|
|
304
369
|
gapic_version: ::Google::Cloud::NetworkSecurity::V1beta1::VERSION
|
305
370
|
metadata[:"x-goog-user-project"] = @quota_project_id if @quota_project_id
|
306
371
|
|
307
|
-
header_params = {
|
308
|
-
|
309
|
-
|
372
|
+
header_params = {}
|
373
|
+
if request.name
|
374
|
+
header_params["name"] = request.name
|
375
|
+
end
|
376
|
+
|
310
377
|
request_params_header = header_params.map { |k, v| "#{k}=#{v}" }.join("&")
|
311
378
|
metadata[:"x-goog-request-params"] ||= request_params_header
|
312
379
|
|
@@ -364,6 +431,21 @@ module Google
|
|
364
431
|
#
|
365
432
|
# @raise [::Google::Cloud::Error] if the RPC is aborted.
|
366
433
|
#
|
434
|
+
# @example Basic example
|
435
|
+
# require "google/longrunning"
|
436
|
+
#
|
437
|
+
# # Create a client object. The client can be reused for multiple calls.
|
438
|
+
# client = Google::Longrunning::Operations::Client.new
|
439
|
+
#
|
440
|
+
# # Create a request. To set request fields, pass in keyword arguments.
|
441
|
+
# request = Google::Longrunning::CancelOperationRequest.new
|
442
|
+
#
|
443
|
+
# # Call the cancel_operation method.
|
444
|
+
# result = client.cancel_operation request
|
445
|
+
#
|
446
|
+
# # The returned object is of type Google::Protobuf::Empty.
|
447
|
+
# p result
|
448
|
+
#
|
367
449
|
def cancel_operation request, options = nil
|
368
450
|
raise ::ArgumentError, "request must be provided" if request.nil?
|
369
451
|
|
@@ -381,9 +463,11 @@ module Google
|
|
381
463
|
gapic_version: ::Google::Cloud::NetworkSecurity::V1beta1::VERSION
|
382
464
|
metadata[:"x-goog-user-project"] = @quota_project_id if @quota_project_id
|
383
465
|
|
384
|
-
header_params = {
|
385
|
-
|
386
|
-
|
466
|
+
header_params = {}
|
467
|
+
if request.name
|
468
|
+
header_params["name"] = request.name
|
469
|
+
end
|
470
|
+
|
387
471
|
request_params_header = header_params.map { |k, v| "#{k}=#{v}" }.join("&")
|
388
472
|
metadata[:"x-goog-request-params"] ||= request_params_header
|
389
473
|
|
@@ -444,6 +528,28 @@ module Google
|
|
444
528
|
#
|
445
529
|
# @raise [::Google::Cloud::Error] if the RPC is aborted.
|
446
530
|
#
|
531
|
+
# @example Basic example
|
532
|
+
# require "google/longrunning"
|
533
|
+
#
|
534
|
+
# # Create a client object. The client can be reused for multiple calls.
|
535
|
+
# client = Google::Longrunning::Operations::Client.new
|
536
|
+
#
|
537
|
+
# # Create a request. To set request fields, pass in keyword arguments.
|
538
|
+
# request = Google::Longrunning::WaitOperationRequest.new
|
539
|
+
#
|
540
|
+
# # Call the wait_operation method.
|
541
|
+
# result = client.wait_operation request
|
542
|
+
#
|
543
|
+
# # The returned object is of type Gapic::Operation. You can use this
|
544
|
+
# # object to check the status of an operation, cancel it, or wait
|
545
|
+
# # for results. Here is how to block until completion:
|
546
|
+
# result.wait_until_done! timeout: 60
|
547
|
+
# if result.response?
|
548
|
+
# p result.response
|
549
|
+
# else
|
550
|
+
# puts "Error!"
|
551
|
+
# end
|
552
|
+
#
|
447
553
|
def wait_operation request, options = nil
|
448
554
|
raise ::ArgumentError, "request must be provided" if request.nil?
|
449
555
|
|
@@ -32,6 +32,10 @@ module Google
|
|
32
32
|
module NetworkSecurity
|
33
33
|
module V1beta1
|
34
34
|
##
|
35
|
+
# Network Security API provides resources to configure authentication and
|
36
|
+
# authorization policies. Refer to per API resource documentation for more
|
37
|
+
# information.
|
38
|
+
#
|
35
39
|
# To load this service and instantiate a client:
|
36
40
|
#
|
37
41
|
# require "google/cloud/network_security/v1beta1/network_security"
|
@@ -25,6 +25,8 @@ module Google
|
|
25
25
|
##
|
26
26
|
# To load this package, including all its services, and instantiate a client:
|
27
27
|
#
|
28
|
+
# @example
|
29
|
+
#
|
28
30
|
# require "google/cloud/network_security/v1beta1"
|
29
31
|
# client = ::Google::Cloud::NetworkSecurity::V1beta1::NetworkSecurity::Client.new
|
30
32
|
#
|
@@ -8,6 +8,7 @@ require 'google/api/resource_pb'
|
|
8
8
|
require 'google/protobuf/field_mask_pb'
|
9
9
|
require 'google/protobuf/timestamp_pb'
|
10
10
|
require 'google/api/annotations_pb'
|
11
|
+
|
11
12
|
Google::Protobuf::DescriptorPool.generated_pool.build do
|
12
13
|
add_file("google/cloud/networksecurity/v1beta1/authorization_policy.proto", :syntax => :proto3) do
|
13
14
|
add_message "google.cloud.networksecurity.v1beta1.AuthorizationPolicy" do
|
@@ -9,6 +9,7 @@ require 'google/cloud/networksecurity/v1beta1/tls_pb'
|
|
9
9
|
require 'google/protobuf/field_mask_pb'
|
10
10
|
require 'google/protobuf/timestamp_pb'
|
11
11
|
require 'google/api/annotations_pb'
|
12
|
+
|
12
13
|
Google::Protobuf::DescriptorPool.generated_pool.build do
|
13
14
|
add_file("google/cloud/networksecurity/v1beta1/client_tls_policy.proto", :syntax => :proto3) do
|
14
15
|
add_message "google.cloud.networksecurity.v1beta1.ClientTlsPolicy" do
|
@@ -6,6 +6,7 @@ require 'google/protobuf'
|
|
6
6
|
require 'google/api/field_behavior_pb'
|
7
7
|
require 'google/protobuf/timestamp_pb'
|
8
8
|
require 'google/api/annotations_pb'
|
9
|
+
|
9
10
|
Google::Protobuf::DescriptorPool.generated_pool.build do
|
10
11
|
add_file("google/cloud/networksecurity/v1beta1/common.proto", :syntax => :proto3) do
|
11
12
|
add_message "google.cloud.networksecurity.v1beta1.OperationMetadata" do
|
@@ -9,6 +9,7 @@ require 'google/cloud/networksecurity/v1beta1/authorization_policy_pb'
|
|
9
9
|
require 'google/cloud/networksecurity/v1beta1/client_tls_policy_pb'
|
10
10
|
require 'google/cloud/networksecurity/v1beta1/server_tls_policy_pb'
|
11
11
|
require 'google/longrunning/operations_pb'
|
12
|
+
|
12
13
|
Google::Protobuf::DescriptorPool.generated_pool.build do
|
13
14
|
add_file("google/cloud/networksecurity/v1beta1/network_security.proto", :syntax => :proto3) do
|
14
15
|
end
|
@@ -24,6 +24,9 @@ module Google
|
|
24
24
|
module NetworkSecurity
|
25
25
|
module V1beta1
|
26
26
|
module NetworkSecurity
|
27
|
+
# Network Security API provides resources to configure authentication and
|
28
|
+
# authorization policies. Refer to per API resource documentation for more
|
29
|
+
# information.
|
27
30
|
class Service
|
28
31
|
|
29
32
|
include ::GRPC::GenericService
|
@@ -9,6 +9,7 @@ require 'google/cloud/networksecurity/v1beta1/tls_pb'
|
|
9
9
|
require 'google/protobuf/field_mask_pb'
|
10
10
|
require 'google/protobuf/timestamp_pb'
|
11
11
|
require 'google/api/annotations_pb'
|
12
|
+
|
12
13
|
Google::Protobuf::DescriptorPool.generated_pool.build do
|
13
14
|
add_file("google/cloud/networksecurity/v1beta1/server_tls_policy.proto", :syntax => :proto3) do
|
14
15
|
add_message "google.cloud.networksecurity.v1beta1.ServerTlsPolicy" do
|
@@ -5,6 +5,7 @@ require 'google/protobuf'
|
|
5
5
|
|
6
6
|
require 'google/api/field_behavior_pb'
|
7
7
|
require 'google/api/annotations_pb'
|
8
|
+
|
8
9
|
Google::Protobuf::DescriptorPool.generated_pool.build do
|
9
10
|
add_file("google/cloud/networksecurity/v1beta1/tls.proto", :syntax => :proto3) do
|
10
11
|
add_message "google.cloud.networksecurity.v1beta1.GrpcEndpoint" do
|
@@ -33,11 +33,7 @@ module Google
|
|
33
33
|
# // For Kubernetes resources, the format is {api group}/{kind}.
|
34
34
|
# option (google.api.resource) = {
|
35
35
|
# type: "pubsub.googleapis.com/Topic"
|
36
|
-
#
|
37
|
-
# pattern: "projects/{project}/topics/{topic}"
|
38
|
-
# parent_type: "cloudresourcemanager.googleapis.com/Project"
|
39
|
-
# parent_name_extractor: "projects/{project}"
|
40
|
-
# }
|
36
|
+
# pattern: "projects/{project}/topics/{topic}"
|
41
37
|
# };
|
42
38
|
# }
|
43
39
|
#
|
@@ -45,10 +41,7 @@ module Google
|
|
45
41
|
#
|
46
42
|
# resources:
|
47
43
|
# - type: "pubsub.googleapis.com/Topic"
|
48
|
-
#
|
49
|
-
# - pattern: "projects/{project}/topics/{topic}"
|
50
|
-
# parent_type: "cloudresourcemanager.googleapis.com/Project"
|
51
|
-
# parent_name_extractor: "projects/{project}"
|
44
|
+
# pattern: "projects/{project}/topics/{topic}"
|
52
45
|
#
|
53
46
|
# Sometimes, resources have multiple patterns, typically because they can
|
54
47
|
# live under multiple parents.
|
@@ -58,26 +51,10 @@ module Google
|
|
58
51
|
# message LogEntry {
|
59
52
|
# option (google.api.resource) = {
|
60
53
|
# type: "logging.googleapis.com/LogEntry"
|
61
|
-
#
|
62
|
-
#
|
63
|
-
#
|
64
|
-
#
|
65
|
-
# }
|
66
|
-
# name_descriptor: {
|
67
|
-
# pattern: "folders/{folder}/logs/{log}"
|
68
|
-
# parent_type: "cloudresourcemanager.googleapis.com/Folder"
|
69
|
-
# parent_name_extractor: "folders/{folder}"
|
70
|
-
# }
|
71
|
-
# name_descriptor: {
|
72
|
-
# pattern: "organizations/{organization}/logs/{log}"
|
73
|
-
# parent_type: "cloudresourcemanager.googleapis.com/Organization"
|
74
|
-
# parent_name_extractor: "organizations/{organization}"
|
75
|
-
# }
|
76
|
-
# name_descriptor: {
|
77
|
-
# pattern: "billingAccounts/{billing_account}/logs/{log}"
|
78
|
-
# parent_type: "billing.googleapis.com/BillingAccount"
|
79
|
-
# parent_name_extractor: "billingAccounts/{billing_account}"
|
80
|
-
# }
|
54
|
+
# pattern: "projects/{project}/logs/{log}"
|
55
|
+
# pattern: "folders/{folder}/logs/{log}"
|
56
|
+
# pattern: "organizations/{organization}/logs/{log}"
|
57
|
+
# pattern: "billingAccounts/{billing_account}/logs/{log}"
|
81
58
|
# };
|
82
59
|
# }
|
83
60
|
#
|
@@ -85,48 +62,10 @@ module Google
|
|
85
62
|
#
|
86
63
|
# resources:
|
87
64
|
# - type: 'logging.googleapis.com/LogEntry'
|
88
|
-
#
|
89
|
-
#
|
90
|
-
#
|
91
|
-
#
|
92
|
-
# - pattern: "folders/{folder}/logs/{log}"
|
93
|
-
# parent_type: "cloudresourcemanager.googleapis.com/Folder"
|
94
|
-
# parent_name_extractor: "folders/{folder}"
|
95
|
-
# - pattern: "organizations/{organization}/logs/{log}"
|
96
|
-
# parent_type: "cloudresourcemanager.googleapis.com/Organization"
|
97
|
-
# parent_name_extractor: "organizations/{organization}"
|
98
|
-
# - pattern: "billingAccounts/{billing_account}/logs/{log}"
|
99
|
-
# parent_type: "billing.googleapis.com/BillingAccount"
|
100
|
-
# parent_name_extractor: "billingAccounts/{billing_account}"
|
101
|
-
#
|
102
|
-
# For flexible resources, the resource name doesn't contain parent names, but
|
103
|
-
# the resource itself has parents for policy evaluation.
|
104
|
-
#
|
105
|
-
# Example:
|
106
|
-
#
|
107
|
-
# message Shelf {
|
108
|
-
# option (google.api.resource) = {
|
109
|
-
# type: "library.googleapis.com/Shelf"
|
110
|
-
# name_descriptor: {
|
111
|
-
# pattern: "shelves/{shelf}"
|
112
|
-
# parent_type: "cloudresourcemanager.googleapis.com/Project"
|
113
|
-
# }
|
114
|
-
# name_descriptor: {
|
115
|
-
# pattern: "shelves/{shelf}"
|
116
|
-
# parent_type: "cloudresourcemanager.googleapis.com/Folder"
|
117
|
-
# }
|
118
|
-
# };
|
119
|
-
# }
|
120
|
-
#
|
121
|
-
# The ResourceDescriptor Yaml config will look like:
|
122
|
-
#
|
123
|
-
# resources:
|
124
|
-
# - type: 'library.googleapis.com/Shelf'
|
125
|
-
# name_descriptor:
|
126
|
-
# - pattern: "shelves/{shelf}"
|
127
|
-
# parent_type: "cloudresourcemanager.googleapis.com/Project"
|
128
|
-
# - pattern: "shelves/{shelf}"
|
129
|
-
# parent_type: "cloudresourcemanager.googleapis.com/Folder"
|
65
|
+
# pattern: "projects/{project}/logs/{log}"
|
66
|
+
# pattern: "folders/{folder}/logs/{log}"
|
67
|
+
# pattern: "organizations/{organization}/logs/{log}"
|
68
|
+
# pattern: "billingAccounts/{billing_account}/logs/{log}"
|
130
69
|
# @!attribute [rw] type
|
131
70
|
# @return [::String]
|
132
71
|
# The resource type. It must be in the format of
|
@@ -79,12 +79,16 @@ module Google
|
|
79
79
|
# Optional. List of peer identities to match for authorization. At least one
|
80
80
|
# principal should match. Each peer can be an exact match, or a prefix
|
81
81
|
# match (example, "namespace/*") or a suffix match (example, //
|
82
|
-
# */service-account") or a presence match "*".
|
82
|
+
# */service-account") or a presence match "*". Authorization based on the
|
83
|
+
# principal name without certificate validation (configured by
|
84
|
+
# ServerTlsPolicy resource) is considered insecure.
|
83
85
|
# @!attribute [rw] ip_blocks
|
84
86
|
# @return [::Array<::String>]
|
85
87
|
# Optional. List of CIDR ranges to match based on source IP address. At least one
|
86
88
|
# IP block should match. Single IP (e.g., "1.2.3.4") and CIDR (e.g.,
|
87
|
-
# "1.2.3.0/24") are supported.
|
89
|
+
# "1.2.3.0/24") are supported. Authorization based on source IP alone
|
90
|
+
# should be avoided. The IP addresses of any load balancers or proxies
|
91
|
+
# should be considered untrusted.
|
88
92
|
class Source
|
89
93
|
include ::Google::Protobuf::MessageExts
|
90
94
|
extend ::Google::Protobuf::MessageExts::ClassMethods
|
@@ -93,7 +97,7 @@ module Google
|
|
93
97
|
# Specification of traffic destination attributes.
|
94
98
|
# @!attribute [rw] hosts
|
95
99
|
# @return [::Array<::String>]
|
96
|
-
# Required. List of host names to match. Matched against
|
100
|
+
# Required. List of host names to match. Matched against the ":authority" header in
|
97
101
|
# http requests. At least one host should match. Each host can be an
|
98
102
|
# exact match, or a prefix match (example "mydomain.*") or a suffix
|
99
103
|
# match (example // *.myorg.com") or a presence(any) match "*".
|
@@ -106,9 +110,11 @@ module Google
|
|
106
110
|
# match. Should not be set for gRPC services.
|
107
111
|
# @!attribute [rw] http_header_match
|
108
112
|
# @return [::Google::Cloud::NetworkSecurity::V1beta1::AuthorizationPolicy::Rule::Destination::HttpHeaderMatch]
|
109
|
-
# Optional. Match against key:value pair in http header. Provides a
|
110
|
-
#
|
111
|
-
#
|
113
|
+
# Optional. Match against key:value pair in http header. Provides a flexible match
|
114
|
+
# based on HTTP headers, for potentially advanced use cases. At least one
|
115
|
+
# header should match. Avoid using header matches to make authorization
|
116
|
+
# decisions unless there is a strong guarantee that requests arrive
|
117
|
+
# through a trusted client or proxy.
|
112
118
|
class Destination
|
113
119
|
include ::Google::Protobuf::MessageExts
|
114
120
|
extend ::Google::Protobuf::MessageExts::ClassMethods
|
@@ -154,6 +160,8 @@ module Google
|
|
154
160
|
ALLOW = 1
|
155
161
|
|
156
162
|
# Deny access.
|
163
|
+
# Deny rules should be avoided unless they are used to provide a default
|
164
|
+
# "deny all" fallback.
|
157
165
|
DENY = 2
|
158
166
|
end
|
159
167
|
end
|
@@ -30,7 +30,7 @@ module Google
|
|
30
30
|
# `projects/*/locations/{location}/serverTlsPolicies/{server_tls_policy}`
|
31
31
|
# @!attribute [rw] description
|
32
32
|
# @return [::String]
|
33
|
-
#
|
33
|
+
# Free-text description of the resource.
|
34
34
|
# @!attribute [r] create_time
|
35
35
|
# @return [::Google::Protobuf::Timestamp]
|
36
36
|
# Output only. The timestamp when the resource was created.
|
@@ -39,26 +39,27 @@ module Google
|
|
39
39
|
# Output only. The timestamp when the resource was updated.
|
40
40
|
# @!attribute [rw] labels
|
41
41
|
# @return [::Google::Protobuf::Map{::String => ::String}]
|
42
|
-
#
|
42
|
+
# Set of label tags associated with the resource.
|
43
43
|
# @!attribute [rw] allow_open
|
44
44
|
# @return [::Boolean]
|
45
|
-
#
|
45
|
+
# Determines if server allows plaintext connections. If set to true, server
|
46
46
|
# allows plain text connections. By default, it is set to false. This setting
|
47
|
-
# is not exclusive of other encryption modes. For example, if allow_open
|
48
|
-
# mtls_policy are set, server allows both plain text and mTLS
|
49
|
-
# See documentation of other encryption modes to confirm
|
47
|
+
# is not exclusive of other encryption modes. For example, if `allow_open`
|
48
|
+
# and `mtls_policy` are set, server allows both plain text and mTLS
|
49
|
+
# connections. See documentation of other encryption modes to confirm
|
50
|
+
# compatibility.
|
50
51
|
# @!attribute [rw] server_certificate
|
51
52
|
# @return [::Google::Cloud::NetworkSecurity::V1beta1::CertificateProvider]
|
52
|
-
#
|
53
|
-
# Cannot be combined with allow_open as a permissive mode that allows both
|
53
|
+
# Defines a mechanism to provision server identity (public and private keys).
|
54
|
+
# Cannot be combined with `allow_open` as a permissive mode that allows both
|
54
55
|
# plain text and TLS is not supported.
|
55
56
|
# @!attribute [rw] mtls_policy
|
56
57
|
# @return [::Google::Cloud::NetworkSecurity::V1beta1::ServerTlsPolicy::MTLSPolicy]
|
57
|
-
#
|
58
|
+
# Defines a mechanism to provision peer validation certificates for peer to
|
58
59
|
# peer authentication (Mutual TLS - mTLS). If not specified, client
|
59
60
|
# certificate will not be requested. The connection is treated as TLS and not
|
60
|
-
# mTLS. If allow_open and mtls_policy are set, server allows both plain
|
61
|
-
# and mTLS connections.
|
61
|
+
# mTLS. If `allow_open` and `mtls_policy` are set, server allows both plain
|
62
|
+
# text and mTLS connections.
|
62
63
|
class ServerTlsPolicy
|
63
64
|
include ::Google::Protobuf::MessageExts
|
64
65
|
extend ::Google::Protobuf::MessageExts::ClassMethods
|
@@ -66,7 +67,7 @@ module Google
|
|
66
67
|
# Specification of the MTLSPolicy.
|
67
68
|
# @!attribute [rw] client_validation_ca
|
68
69
|
# @return [::Array<::Google::Cloud::NetworkSecurity::V1beta1::ValidationCA>]
|
69
|
-
#
|
70
|
+
# Defines the mechanism to obtain the Certificate Authority certificate to
|
70
71
|
# validate the client certificate.
|
71
72
|
class MTLSPolicy
|
72
73
|
include ::Google::Protobuf::MessageExts
|
@@ -44,7 +44,7 @@ module Google
|
|
44
44
|
# foo = any.unpack(Foo.class);
|
45
45
|
# }
|
46
46
|
#
|
47
|
-
#
|
47
|
+
# Example 3: Pack and unpack a message in Python.
|
48
48
|
#
|
49
49
|
# foo = Foo(...)
|
50
50
|
# any = Any()
|
@@ -54,7 +54,7 @@ module Google
|
|
54
54
|
# any.Unpack(foo)
|
55
55
|
# ...
|
56
56
|
#
|
57
|
-
#
|
57
|
+
# Example 4: Pack and unpack a message in Go
|
58
58
|
#
|
59
59
|
# foo := &pb.Foo{...}
|
60
60
|
# any, err := anypb.New(foo)
|
@@ -75,7 +75,7 @@ module Google
|
|
75
75
|
#
|
76
76
|
#
|
77
77
|
# JSON
|
78
|
-
#
|
78
|
+
#
|
79
79
|
# The JSON representation of an `Any` value uses the regular
|
80
80
|
# representation of the deserialized, embedded message, with an
|
81
81
|
# additional field `@type` which contains the type URL. Example:
|
metadata
CHANGED
@@ -1,14 +1,14 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: google-cloud-network_security-v1beta1
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 0.
|
4
|
+
version: 0.2.0
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- Google LLC
|
8
8
|
autorequire:
|
9
9
|
bindir: bin
|
10
10
|
cert_chain: []
|
11
|
-
date:
|
11
|
+
date: 2022-07-05 00:00:00.000000000 Z
|
12
12
|
dependencies:
|
13
13
|
- !ruby/object:Gem::Dependency
|
14
14
|
name: gapic-common
|
@@ -16,7 +16,7 @@ dependencies:
|
|
16
16
|
requirements:
|
17
17
|
- - ">="
|
18
18
|
- !ruby/object:Gem::Version
|
19
|
-
version: '0.
|
19
|
+
version: '0.10'
|
20
20
|
- - "<"
|
21
21
|
- !ruby/object:Gem::Version
|
22
22
|
version: 2.a
|
@@ -26,7 +26,7 @@ dependencies:
|
|
26
26
|
requirements:
|
27
27
|
- - ">="
|
28
28
|
- !ruby/object:Gem::Version
|
29
|
-
version: '0.
|
29
|
+
version: '0.10'
|
30
30
|
- - "<"
|
31
31
|
- !ruby/object:Gem::Version
|
32
32
|
version: 2.a
|
@@ -50,28 +50,28 @@ dependencies:
|
|
50
50
|
requirements:
|
51
51
|
- - "~>"
|
52
52
|
- !ruby/object:Gem::Version
|
53
|
-
version: 1.
|
53
|
+
version: 1.26.1
|
54
54
|
type: :development
|
55
55
|
prerelease: false
|
56
56
|
version_requirements: !ruby/object:Gem::Requirement
|
57
57
|
requirements:
|
58
58
|
- - "~>"
|
59
59
|
- !ruby/object:Gem::Version
|
60
|
-
version: 1.
|
60
|
+
version: 1.26.1
|
61
61
|
- !ruby/object:Gem::Dependency
|
62
62
|
name: minitest
|
63
63
|
requirement: !ruby/object:Gem::Requirement
|
64
64
|
requirements:
|
65
65
|
- - "~>"
|
66
66
|
- !ruby/object:Gem::Version
|
67
|
-
version: '5.
|
67
|
+
version: '5.16'
|
68
68
|
type: :development
|
69
69
|
prerelease: false
|
70
70
|
version_requirements: !ruby/object:Gem::Requirement
|
71
71
|
requirements:
|
72
72
|
- - "~>"
|
73
73
|
- !ruby/object:Gem::Version
|
74
|
-
version: '5.
|
74
|
+
version: '5.16'
|
75
75
|
- !ruby/object:Gem::Dependency
|
76
76
|
name: minitest-focus
|
77
77
|
requirement: !ruby/object:Gem::Requirement
|
@@ -106,14 +106,14 @@ dependencies:
|
|
106
106
|
requirements:
|
107
107
|
- - ">="
|
108
108
|
- !ruby/object:Gem::Version
|
109
|
-
version: '
|
109
|
+
version: '13.0'
|
110
110
|
type: :development
|
111
111
|
prerelease: false
|
112
112
|
version_requirements: !ruby/object:Gem::Requirement
|
113
113
|
requirements:
|
114
114
|
- - ">="
|
115
115
|
- !ruby/object:Gem::Version
|
116
|
-
version: '
|
116
|
+
version: '13.0'
|
117
117
|
- !ruby/object:Gem::Dependency
|
118
118
|
name: redcarpet
|
119
119
|
requirement: !ruby/object:Gem::Requirement
|
@@ -211,14 +211,14 @@ required_ruby_version: !ruby/object:Gem::Requirement
|
|
211
211
|
requirements:
|
212
212
|
- - ">="
|
213
213
|
- !ruby/object:Gem::Version
|
214
|
-
version: '2.
|
214
|
+
version: '2.6'
|
215
215
|
required_rubygems_version: !ruby/object:Gem::Requirement
|
216
216
|
requirements:
|
217
217
|
- - ">="
|
218
218
|
- !ruby/object:Gem::Version
|
219
219
|
version: '0'
|
220
220
|
requirements: []
|
221
|
-
rubygems_version: 3.
|
221
|
+
rubygems_version: 3.3.14
|
222
222
|
signing_key:
|
223
223
|
specification_version: 4
|
224
224
|
summary: API Client library for the Network Security V1beta1 API
|