RubyGems - google-cloud-security_center-v1 - Versions diffs - 0.19.0 → 0.20.0 - Mend

google-cloud-security_center-v1 0.19.0 → 0.20.0

Files changed (5) hide show

checksums.yaml +4 -4
data/lib/google/cloud/security_center/v1/version.rb +1 -1
data/lib/google/cloud/securitycenter/v1/access_pb.rb +8 -0
data/proto_docs/google/cloud/securitycenter/v1/access.rb +48 -0
metadata +2 -2

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: b57284f2932157e2212960b955b61df6c6e0b4d0f4307fea8c0a08cd111e8b58
-  data.tar.gz: 2f0ea3acaa4e3995ce721c51a679b4cf6103c51b658fcd9bc5941531c8ad25fd
+  metadata.gz: b9f9e1b3b77d926a60e6bb8a4b11bed716ac74ae56ea1e984bafaac835607181
+  data.tar.gz: 864e8098c3f7ef2f1dc956793e076342fadf1e0024d92d36a1feef5d8c3f4b13
 SHA512:
-  metadata.gz: 5374096b8fde6fea9c9b70a5064fa2d8b77eb606b8809793627a24631e342be74f455ca6b455fff732ab65ce1befbbb09ec85f78c809ce96e022b92db728979f
-  data.tar.gz: 80e0126fee6525b015d2a13460ace133ae325b87d74848c1209fbc9d38d712d4ca478b9b1a2f3ba199b33a22d8bd2b8417fc5f85bcf539c32815ecfc01ad99a0
+  metadata.gz: a6ccb8d4673c5f879c6264014b64f9de358174110a24c25d2d6e4ab69dc74d31339d6b98f48aeac6a7798682e289b694592fa879e59fa875e37e926e685aa229
+  data.tar.gz: 275be95aea213891a5f156f769d324142fbd7e6b394baf2ce842843e81b942a177c4e47ceba24a294d0d1a7c6c411ecd4cca378220845a9bb76334ac7bfc8bcf

data/lib/google/cloud/security_center/v1/version.rb CHANGED Viewed

@@ -21,7 +21,7 @@ module Google
   module Cloud
     module SecurityCenter
       module V1
-        VERSION = "0.19.0"
+        VERSION = "0.20.0"
       end
     end
   end

data/lib/google/cloud/securitycenter/v1/access_pb.rb CHANGED Viewed

@@ -12,6 +12,13 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
       optional :user_agent_family, :string, 4
       optional :service_name, :string, 5
       optional :method_name, :string, 6
+      optional :principal_subject, :string, 7
+      optional :service_account_key_name, :string, 8
+      repeated :service_account_delegation_info, :message, 9, "google.cloud.securitycenter.v1.ServiceAccountDelegationInfo"
+    end
+    add_message "google.cloud.securitycenter.v1.ServiceAccountDelegationInfo" do
+      optional :principal_email, :string, 1
+      optional :principal_subject, :string, 2
     end
     add_message "google.cloud.securitycenter.v1.Geolocation" do
       optional :region_code, :string, 1
@@ -24,6 +31,7 @@ module Google
     module SecurityCenter
       module V1
         Access = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.securitycenter.v1.Access").msgclass
+        ServiceAccountDelegationInfo = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.securitycenter.v1.ServiceAccountDelegationInfo").msgclass
         Geolocation = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.securitycenter.v1.Geolocation").msgclass
       end
     end

data/proto_docs/google/cloud/securitycenter/v1/access.rb CHANGED Viewed

@@ -25,6 +25,13 @@ module Google
         # @!attribute [rw] principal_email
         #   @return [::String]
         #     Associated email, such as "foo@google.com".
+        #
+        #     The email address of the authenticated user (or service account on behalf
+        #     of third party principal) making the request. For third party identity
+        #     callers, the `principal_subject` field is populated instead of this field.
+        #     For privacy reasons, the principal email address is sometimes redacted.
+        #     For more information, see [Caller identities in audit
+        #     logs](https://cloud.google.com/logging/docs/audit#user-id).
         # @!attribute [rw] caller_ip
         #   @return [::String]
         #     Caller's IP address, such as "1.1.1.1".
@@ -42,11 +49,52 @@ module Google
         # @!attribute [rw] method_name
         #   @return [::String]
         #     The method that the service account called, e.g. "SetIamPolicy".
+        # @!attribute [rw] principal_subject
+        #   @return [::String]
+        #     A string representing the principal_subject associated with the identity.
+        #     As compared to `principal_email`, supports principals that aren't
+        #     associated with email addresses, such as third party principals. For most
+        #     identities, the format will be `principal://iam.googleapis.com/{identity
+        #     pool name}/subjects/\\{subject}` except for some GKE identities
+        #     (GKE_WORKLOAD, FREEFORM, GKE_HUB_WORKLOAD) that are still in the legacy
+        #     format `serviceAccount:{identity pool name}[{subject}]`
+        # @!attribute [rw] service_account_key_name
+        #   @return [::String]
+        #     The name of the service account key used to create or exchange
+        #     credentials for authenticating the service account making the request.
+        #     This is a scheme-less URI full resource name. For example:
+        #
+        #     "//iam.googleapis.com/projects/\\{PROJECT_ID}/serviceAccounts/\\{ACCOUNT}/keys/\\{key}"
+        # @!attribute [rw] service_account_delegation_info
+        #   @return [::Array<::Google::Cloud::SecurityCenter::V1::ServiceAccountDelegationInfo>]
+        #     Identity delegation history of an authenticated service account that makes
+        #     the request. It contains information on the real authorities that try to
+        #     access GCP resources by delegating on a service account. When multiple
+        #     authorities are present, they are guaranteed to be sorted based on the
+        #     original ordering of the identity delegation events.
         class Access
           include ::Google::Protobuf::MessageExts
           extend ::Google::Protobuf::MessageExts::ClassMethods
         end
+        # Identity delegation history of an authenticated service account.
+        # @!attribute [rw] principal_email
+        #   @return [::String]
+        #     The email address of a Google account.
+        # @!attribute [rw] principal_subject
+        #   @return [::String]
+        #     A string representing the principal_subject associated with the identity.
+        #     As compared to `principal_email`, supports principals that aren't
+        #     associated with email addresses, such as third party principals. For most
+        #     identities, the format will be `principal://iam.googleapis.com/{identity
+        #     pool name}/subjects/\\{subject}` except for some GKE identities
+        #     (GKE_WORKLOAD, FREEFORM, GKE_HUB_WORKLOAD) that are still in the legacy
+        #     format `serviceAccount:{identity pool name}[{subject}]`
+        class ServiceAccountDelegationInfo
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
+        end
         # Represents a geographical location for a given access.
         # @!attribute [rw] region_code
         #   @return [::String]

metadata CHANGED Viewed

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: google-cloud-security_center-v1
 version: !ruby/object:Gem::Version
-  version: 0.19.0
+  version: 0.20.0
 platform: ruby
 authors:
 - Google LLC
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2022-08-24 00:00:00.000000000 Z
+date: 2022-08-26 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: gapic-common