google-cloud-security_center-v1 0.32.0 → 0.34.0
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/AUTHENTICATION.md +72 -101
- data/lib/google/cloud/security_center/v1/security_center/client.rb +132 -8
- data/lib/google/cloud/security_center/v1/security_center/operations.rb +28 -6
- data/lib/google/cloud/security_center/v1/security_center/rest/client.rb +127 -7
- data/lib/google/cloud/security_center/v1/security_center/rest/operations.rb +33 -8
- data/lib/google/cloud/security_center/v1/security_center/rest/service_stub.rb +90 -2
- data/lib/google/cloud/security_center/v1/version.rb +1 -1
- data/lib/google/cloud/securitycenter/v1/securitycenter_service_pb.rb +11 -1
- data/lib/google/cloud/securitycenter/v1/securitycenter_service_services_pb.rb +2 -0
- data/proto_docs/google/api/client.rb +14 -0
- data/proto_docs/google/cloud/securitycenter/v1/mute_config.rb +1 -0
- data/proto_docs/google/cloud/securitycenter/v1/securitycenter_service.rb +66 -0
- metadata +5 -5
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA256:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: 22f9163d8d996218045d1259f59294ef11c067d515fa4022ae6406c2dfa9fd20
|
4
|
+
data.tar.gz: ef75ff4357283b582bd46b4abae02beb6b2bbd5edf3e4b5495a8d8fdc2a7f2cd
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: eea920cc4f7af66074e701d865c63ab756dabd1147fa62ae2d3063cdace2e53f6737ea6f3ace54da5736e7a708eec35985fea62de29dc996bda18d1d05da764e
|
7
|
+
data.tar.gz: b31f8cb3df40543f1d8096204241a7f42f1034f5884aff05b9883c310e08bc43b3dd3a2aa18b572a3ca35885f6245fc989feb9315aab6308c886f1c45d883563
|
data/AUTHENTICATION.md
CHANGED
@@ -1,151 +1,122 @@
|
|
1
1
|
# Authentication
|
2
2
|
|
3
|
-
|
4
|
-
[
|
5
|
-
|
6
|
-
[Google Cloud Platform environments](#google-cloud-platform-environments) the
|
7
|
-
credentials will be discovered automatically. When running on other
|
8
|
-
environments, the Service Account credentials can be specified by providing the
|
9
|
-
path to the
|
10
|
-
[JSON keyfile](https://cloud.google.com/iam/docs/managing-service-account-keys)
|
11
|
-
for the account (or the JSON itself) in
|
12
|
-
[environment variables](#environment-variables). Additionally, Cloud SDK
|
13
|
-
credentials can also be discovered automatically, but this is only recommended
|
14
|
-
during development.
|
3
|
+
The recommended way to authenticate to the google-cloud-security_center-v1 library is to use
|
4
|
+
[Application Default Credentials (ADC)](https://cloud.google.com/docs/authentication/application-default-credentials).
|
5
|
+
To review all of your authentication options, see [Credentials lookup](#credential-lookup).
|
15
6
|
|
16
7
|
## Quickstart
|
17
8
|
|
18
|
-
|
19
|
-
|
9
|
+
The following example shows how to set up authentication for a local development
|
10
|
+
environment with your user credentials.
|
20
11
|
|
21
|
-
|
22
|
-
|
23
|
-
```
|
24
|
-
|
25
|
-
3. Initialize the client.
|
12
|
+
**NOTE:** This method is _not_ recommended for running in production. User credentials
|
13
|
+
should be used only during development.
|
26
14
|
|
27
|
-
|
28
|
-
|
15
|
+
1. [Download and install the Google Cloud CLI](https://cloud.google.com/sdk).
|
16
|
+
2. Set up a local ADC file with your user credentials:
|
29
17
|
|
30
|
-
|
18
|
+
```sh
|
19
|
+
gcloud auth application-default login
|
31
20
|
```
|
32
21
|
|
33
|
-
|
34
|
-
|
35
|
-
The google-cloud-security_center-v1 library aims to make authentication
|
36
|
-
as simple as possible, and provides several mechanisms to configure your system
|
37
|
-
without requiring **Service Account Credentials** directly in code.
|
38
|
-
|
39
|
-
**Credentials** are discovered in the following order:
|
40
|
-
|
41
|
-
1. Specify credentials in method arguments
|
42
|
-
2. Specify credentials in configuration
|
43
|
-
3. Discover credentials path in environment variables
|
44
|
-
4. Discover credentials JSON in environment variables
|
45
|
-
5. Discover credentials file in the Cloud SDK's path
|
46
|
-
6. Discover GCP credentials
|
47
|
-
|
48
|
-
### Google Cloud Platform environments
|
22
|
+
3. Write code as if already authenticated.
|
49
23
|
|
50
|
-
|
51
|
-
|
52
|
-
Functions (GCF) and Cloud Run, **Credentials** are discovered automatically.
|
53
|
-
Code should be written as if already authenticated.
|
24
|
+
For more information about setting up authentication for a local development environment, see
|
25
|
+
[Set up Application Default Credentials](https://cloud.google.com/docs/authentication/provide-credentials-adc#local-dev).
|
54
26
|
|
55
|
-
|
27
|
+
## Credential Lookup
|
56
28
|
|
57
|
-
The
|
58
|
-
|
59
|
-
|
60
|
-
|
61
|
-
**Credentials JSON** file can be stored in the environment variable, or the
|
62
|
-
**Credentials JSON** itself can be stored for environments such as Docker
|
63
|
-
containers where writing files is difficult or not encouraged.
|
29
|
+
The google-cloud-security_center-v1 library provides several mechanisms to configure your system.
|
30
|
+
Generally, using Application Default Credentials to facilitate automatic
|
31
|
+
credentials discovery is the easist method. But if you need to explicitly specify
|
32
|
+
credentials, there are several methods available to you.
|
64
33
|
|
65
|
-
|
66
|
-
checks for credentials are configured on the service Credentials class (such as
|
67
|
-
{::Google::Cloud::SecurityCenter::V1::SecurityCenter::Credentials}):
|
34
|
+
Credentials are accepted in the following ways, in the following order or precedence:
|
68
35
|
|
69
|
-
|
70
|
-
|
71
|
-
|
72
|
-
|
73
|
-
|
36
|
+
1. Credentials specified in method arguments
|
37
|
+
2. Credentials specified in configuration
|
38
|
+
3. Credentials pointed to or included in environment variables
|
39
|
+
4. Credentials found in local ADC file
|
40
|
+
5. Credentials returned by the metadata server for the attached service account (GCP)
|
74
41
|
|
75
|
-
|
76
|
-
require "google/cloud/security_center/v1"
|
77
|
-
|
78
|
-
ENV["SECURITY_CENTER_CREDENTIALS"] = "path/to/keyfile.json"
|
42
|
+
### Configuration
|
79
43
|
|
80
|
-
client
|
81
|
-
|
44
|
+
You can configure a path to a JSON credentials file, either for an individual client object or
|
45
|
+
globally, for all client objects. The JSON file can contain credentials created for
|
46
|
+
[workload identity federation](https://cloud.google.com/iam/docs/workload-identity-federation),
|
47
|
+
[workforce identity federation](https://cloud.google.com/iam/docs/workforce-identity-federation), or a
|
48
|
+
[service account key](https://cloud.google.com/docs/authentication/provide-credentials-adc#local-key).
|
82
49
|
|
83
|
-
|
50
|
+
Note: Service account keys are a security risk if not managed correctly. You should
|
51
|
+
[choose a more secure alternative to service account keys](https://cloud.google.com/docs/authentication#auth-decision-tree)
|
52
|
+
whenever possible.
|
84
53
|
|
85
|
-
|
86
|
-
it in an environment variable. Either on an individual client initialization:
|
54
|
+
To configure a credentials file for an individual client initialization:
|
87
55
|
|
88
56
|
```ruby
|
89
57
|
require "google/cloud/security_center/v1"
|
90
58
|
|
91
59
|
client = ::Google::Cloud::SecurityCenter::V1::SecurityCenter::Client.new do |config|
|
92
|
-
config.credentials = "path/to/
|
60
|
+
config.credentials = "path/to/credentialfile.json"
|
93
61
|
end
|
94
62
|
```
|
95
63
|
|
96
|
-
|
64
|
+
To configure a credentials file globally for all clients:
|
97
65
|
|
98
66
|
```ruby
|
99
67
|
require "google/cloud/security_center/v1"
|
100
68
|
|
101
69
|
::Google::Cloud::SecurityCenter::V1::SecurityCenter::Client.configure do |config|
|
102
|
-
config.credentials = "path/to/
|
70
|
+
config.credentials = "path/to/credentialfile.json"
|
103
71
|
end
|
104
72
|
|
105
73
|
client = ::Google::Cloud::SecurityCenter::V1::SecurityCenter::Client.new
|
106
74
|
```
|
107
75
|
|
108
|
-
###
|
76
|
+
### Environment Variables
|
109
77
|
|
110
|
-
|
111
|
-
|
112
|
-
|
78
|
+
You can also use an environment variable to provide a JSON credentials file.
|
79
|
+
The environment variable can contain a path to the credentials file or, for
|
80
|
+
environments such as Docker containers where writing files is not encouraged,
|
81
|
+
you can include the credentials file itself.
|
113
82
|
|
114
|
-
|
83
|
+
The JSON file can contain credentials created for
|
84
|
+
[workload identity federation](https://cloud.google.com/iam/docs/workload-identity-federation),
|
85
|
+
[workforce identity federation](https://cloud.google.com/iam/docs/workforce-identity-federation), or a
|
86
|
+
[service account key](https://cloud.google.com/docs/authentication/provide-credentials-adc#local-key).
|
115
87
|
|
116
|
-
|
117
|
-
|
118
|
-
|
88
|
+
Note: Service account keys are a security risk if not managed correctly. You should
|
89
|
+
[choose a more secure alternative to service account keys](https://cloud.google.com/docs/authentication#auth-decision-tree)
|
90
|
+
whenever possible.
|
91
|
+
|
92
|
+
The environment variables that google-cloud-security_center-v1
|
93
|
+
checks for credentials are:
|
119
94
|
|
120
|
-
|
121
|
-
*
|
95
|
+
* `GOOGLE_CLOUD_CREDENTIALS` - Path to JSON file, or JSON contents
|
96
|
+
* `GOOGLE_APPLICATION_CREDENTIALS` - Path to JSON file
|
122
97
|
|
123
|
-
|
98
|
+
```ruby
|
99
|
+
require "google/cloud/security_center/v1"
|
124
100
|
|
125
|
-
|
126
|
-
connect to the APIs. You will use the **JSON key file** to
|
127
|
-
connect to most services with google-cloud-security_center-v1.
|
101
|
+
ENV["GOOGLE_APPLICATION_CREDENTIALS"] = "path/to/credentialfile.json"
|
128
102
|
|
129
|
-
|
130
|
-
|
131
|
-
need a Google Developers service account.
|
103
|
+
client = ::Google::Cloud::SecurityCenter::V1::SecurityCenter::Client.new
|
104
|
+
```
|
132
105
|
|
133
|
-
|
134
|
-
2. Create a new project or click on an existing project.
|
135
|
-
3. Activate the menu in the upper left and select **APIs & Services**. From
|
136
|
-
here, you will enable the APIs that your application requires.
|
106
|
+
### Local ADC file
|
137
107
|
|
138
|
-
|
108
|
+
You can set up a local ADC file with your user credentials for authentication during
|
109
|
+
development. If credentials are not provided in code or in environment variables,
|
110
|
+
then the local ADC credentials are discovered.
|
139
111
|
|
140
|
-
|
112
|
+
Follow the steps in [Quickstart](#quickstart) to set up a local ADC file.
|
141
113
|
|
142
|
-
|
143
|
-
"Service account" to be guided through downloading a new JSON key file.
|
114
|
+
### Google Cloud Platform environments
|
144
115
|
|
145
|
-
|
146
|
-
|
147
|
-
|
148
|
-
|
116
|
+
When running on Google Cloud Platform (GCP), including Google Compute Engine
|
117
|
+
(GCE), Google Kubernetes Engine (GKE), Google App Engine (GAE), Google Cloud
|
118
|
+
Functions (GCF) and Cloud Run, credentials are retrieved from the attached
|
119
|
+
service account automatically. Code should be written as if already authenticated.
|
149
120
|
|
150
|
-
|
151
|
-
|
121
|
+
For more information, see
|
122
|
+
[Set up ADC for Google Cloud services](https://cloud.google.com/docs/authentication/provide-credentials-adc#attached-sa).
|
@@ -30,6 +30,9 @@ module Google
|
|
30
30
|
# V1 APIs for Security Center service.
|
31
31
|
#
|
32
32
|
class Client
|
33
|
+
# @private
|
34
|
+
DEFAULT_ENDPOINT_TEMPLATE = "securitycenter.$UNIVERSE_DOMAIN$"
|
35
|
+
|
33
36
|
include Paths
|
34
37
|
|
35
38
|
# @private
|
@@ -200,6 +203,15 @@ module Google
|
|
200
203
|
@config
|
201
204
|
end
|
202
205
|
|
206
|
+
##
|
207
|
+
# The effective universe domain
|
208
|
+
#
|
209
|
+
# @return [String]
|
210
|
+
#
|
211
|
+
def universe_domain
|
212
|
+
@security_center_stub.universe_domain
|
213
|
+
end
|
214
|
+
|
203
215
|
##
|
204
216
|
# Create a new SecurityCenter client object.
|
205
217
|
#
|
@@ -233,8 +245,9 @@ module Google
|
|
233
245
|
credentials = @config.credentials
|
234
246
|
# Use self-signed JWT if the endpoint is unchanged from default,
|
235
247
|
# but only if the default endpoint does not have a region prefix.
|
236
|
-
enable_self_signed_jwt = @config.endpoint
|
237
|
-
|
248
|
+
enable_self_signed_jwt = @config.endpoint.nil? ||
|
249
|
+
(@config.endpoint == Configuration::DEFAULT_ENDPOINT &&
|
250
|
+
!@config.endpoint.split(".").first.include?("-"))
|
238
251
|
credentials ||= Credentials.default scope: @config.scope,
|
239
252
|
enable_self_signed_jwt: enable_self_signed_jwt
|
240
253
|
if credentials.is_a?(::String) || credentials.is_a?(::Hash)
|
@@ -247,12 +260,15 @@ module Google
|
|
247
260
|
config.credentials = credentials
|
248
261
|
config.quota_project = @quota_project_id
|
249
262
|
config.endpoint = @config.endpoint
|
263
|
+
config.universe_domain = @config.universe_domain
|
250
264
|
end
|
251
265
|
|
252
266
|
@security_center_stub = ::Gapic::ServiceStub.new(
|
253
267
|
::Google::Cloud::SecurityCenter::V1::SecurityCenter::Stub,
|
254
|
-
credentials:
|
255
|
-
endpoint:
|
268
|
+
credentials: credentials,
|
269
|
+
endpoint: @config.endpoint,
|
270
|
+
endpoint_template: DEFAULT_ENDPOINT_TEMPLATE,
|
271
|
+
universe_domain: @config.universe_domain,
|
256
272
|
channel_args: @config.channel_args,
|
257
273
|
interceptors: @config.interceptors,
|
258
274
|
channel_pool_config: @config.channel_pool
|
@@ -3790,6 +3806,99 @@ module Google
|
|
3790
3806
|
raise ::Google::Cloud::Error.from_error(e)
|
3791
3807
|
end
|
3792
3808
|
|
3809
|
+
##
|
3810
|
+
# Simulates a given SecurityHealthAnalyticsCustomModule and Resource.
|
3811
|
+
#
|
3812
|
+
# @overload simulate_security_health_analytics_custom_module(request, options = nil)
|
3813
|
+
# Pass arguments to `simulate_security_health_analytics_custom_module` via a request object, either of type
|
3814
|
+
# {::Google::Cloud::SecurityCenter::V1::SimulateSecurityHealthAnalyticsCustomModuleRequest} or an equivalent Hash.
|
3815
|
+
#
|
3816
|
+
# @param request [::Google::Cloud::SecurityCenter::V1::SimulateSecurityHealthAnalyticsCustomModuleRequest, ::Hash]
|
3817
|
+
# A request object representing the call parameters. Required. To specify no
|
3818
|
+
# parameters, or to keep all the default parameter values, pass an empty Hash.
|
3819
|
+
# @param options [::Gapic::CallOptions, ::Hash]
|
3820
|
+
# Overrides the default settings for this call, e.g, timeout, retries, etc. Optional.
|
3821
|
+
#
|
3822
|
+
# @overload simulate_security_health_analytics_custom_module(parent: nil, custom_config: nil, resource: nil)
|
3823
|
+
# Pass arguments to `simulate_security_health_analytics_custom_module` via keyword arguments. Note that at
|
3824
|
+
# least one keyword argument is required. To specify no parameters, or to keep all
|
3825
|
+
# the default parameter values, pass an empty Hash as a request object (see above).
|
3826
|
+
#
|
3827
|
+
# @param parent [::String]
|
3828
|
+
# Required. The relative resource name of the organization, project, or
|
3829
|
+
# folder. For more information about relative resource names, see [Relative
|
3830
|
+
# Resource
|
3831
|
+
# Name](https://cloud.google.com/apis/design/resource_names#relative_resource_name)
|
3832
|
+
# Example: `organizations/{organization_id}`
|
3833
|
+
# @param custom_config [::Google::Cloud::SecurityCenter::V1::CustomConfig, ::Hash]
|
3834
|
+
# Required. The custom configuration that you need to test.
|
3835
|
+
# @param resource [::Google::Cloud::SecurityCenter::V1::SimulateSecurityHealthAnalyticsCustomModuleRequest::SimulatedResource, ::Hash]
|
3836
|
+
# Required. Resource data to simulate custom module against.
|
3837
|
+
#
|
3838
|
+
# @yield [response, operation] Access the result along with the RPC operation
|
3839
|
+
# @yieldparam response [::Google::Cloud::SecurityCenter::V1::SimulateSecurityHealthAnalyticsCustomModuleResponse]
|
3840
|
+
# @yieldparam operation [::GRPC::ActiveCall::Operation]
|
3841
|
+
#
|
3842
|
+
# @return [::Google::Cloud::SecurityCenter::V1::SimulateSecurityHealthAnalyticsCustomModuleResponse]
|
3843
|
+
#
|
3844
|
+
# @raise [::Google::Cloud::Error] if the RPC is aborted.
|
3845
|
+
#
|
3846
|
+
# @example Basic example
|
3847
|
+
# require "google/cloud/security_center/v1"
|
3848
|
+
#
|
3849
|
+
# # Create a client object. The client can be reused for multiple calls.
|
3850
|
+
# client = Google::Cloud::SecurityCenter::V1::SecurityCenter::Client.new
|
3851
|
+
#
|
3852
|
+
# # Create a request. To set request fields, pass in keyword arguments.
|
3853
|
+
# request = Google::Cloud::SecurityCenter::V1::SimulateSecurityHealthAnalyticsCustomModuleRequest.new
|
3854
|
+
#
|
3855
|
+
# # Call the simulate_security_health_analytics_custom_module method.
|
3856
|
+
# result = client.simulate_security_health_analytics_custom_module request
|
3857
|
+
#
|
3858
|
+
# # The returned object is of type Google::Cloud::SecurityCenter::V1::SimulateSecurityHealthAnalyticsCustomModuleResponse.
|
3859
|
+
# p result
|
3860
|
+
#
|
3861
|
+
def simulate_security_health_analytics_custom_module request, options = nil
|
3862
|
+
raise ::ArgumentError, "request must be provided" if request.nil?
|
3863
|
+
|
3864
|
+
request = ::Gapic::Protobuf.coerce request, to: ::Google::Cloud::SecurityCenter::V1::SimulateSecurityHealthAnalyticsCustomModuleRequest
|
3865
|
+
|
3866
|
+
# Converts hash and nil to an options object
|
3867
|
+
options = ::Gapic::CallOptions.new(**options.to_h) if options.respond_to? :to_h
|
3868
|
+
|
3869
|
+
# Customize the options with defaults
|
3870
|
+
metadata = @config.rpcs.simulate_security_health_analytics_custom_module.metadata.to_h
|
3871
|
+
|
3872
|
+
# Set x-goog-api-client and x-goog-user-project headers
|
3873
|
+
metadata[:"x-goog-api-client"] ||= ::Gapic::Headers.x_goog_api_client \
|
3874
|
+
lib_name: @config.lib_name, lib_version: @config.lib_version,
|
3875
|
+
gapic_version: ::Google::Cloud::SecurityCenter::V1::VERSION
|
3876
|
+
metadata[:"x-goog-user-project"] = @quota_project_id if @quota_project_id
|
3877
|
+
|
3878
|
+
header_params = {}
|
3879
|
+
if request.parent
|
3880
|
+
header_params["parent"] = request.parent
|
3881
|
+
end
|
3882
|
+
|
3883
|
+
request_params_header = header_params.map { |k, v| "#{k}=#{v}" }.join("&")
|
3884
|
+
metadata[:"x-goog-request-params"] ||= request_params_header
|
3885
|
+
|
3886
|
+
options.apply_defaults timeout: @config.rpcs.simulate_security_health_analytics_custom_module.timeout,
|
3887
|
+
metadata: metadata,
|
3888
|
+
retry_policy: @config.rpcs.simulate_security_health_analytics_custom_module.retry_policy
|
3889
|
+
|
3890
|
+
options.apply_defaults timeout: @config.timeout,
|
3891
|
+
metadata: @config.metadata,
|
3892
|
+
retry_policy: @config.retry_policy
|
3893
|
+
|
3894
|
+
@security_center_stub.call_rpc :simulate_security_health_analytics_custom_module, request, options: options do |response, operation|
|
3895
|
+
yield response, operation if block_given?
|
3896
|
+
return response
|
3897
|
+
end
|
3898
|
+
rescue ::GRPC::BadStatus => e
|
3899
|
+
raise ::Google::Cloud::Error.from_error(e)
|
3900
|
+
end
|
3901
|
+
|
3793
3902
|
##
|
3794
3903
|
# Updates external system. This is for a given finding.
|
3795
3904
|
#
|
@@ -4927,9 +5036,9 @@ module Google
|
|
4927
5036
|
# end
|
4928
5037
|
#
|
4929
5038
|
# @!attribute [rw] endpoint
|
4930
|
-
#
|
4931
|
-
#
|
4932
|
-
# @return [::String]
|
5039
|
+
# A custom service endpoint, as a hostname or hostname:port. The default is
|
5040
|
+
# nil, indicating to use the default endpoint in the current universe domain.
|
5041
|
+
# @return [::String,nil]
|
4933
5042
|
# @!attribute [rw] credentials
|
4934
5043
|
# Credentials to send with calls. You may provide any of the following types:
|
4935
5044
|
# * (`String`) The path to a service account key file in JSON format
|
@@ -4975,13 +5084,20 @@ module Google
|
|
4975
5084
|
# @!attribute [rw] quota_project
|
4976
5085
|
# A separate project against which to charge quota.
|
4977
5086
|
# @return [::String]
|
5087
|
+
# @!attribute [rw] universe_domain
|
5088
|
+
# The universe domain within which to make requests. This determines the
|
5089
|
+
# default endpoint URL. The default value of nil uses the environment
|
5090
|
+
# universe (usually the default "googleapis.com" universe).
|
5091
|
+
# @return [::String,nil]
|
4978
5092
|
#
|
4979
5093
|
class Configuration
|
4980
5094
|
extend ::Gapic::Config
|
4981
5095
|
|
5096
|
+
# @private
|
5097
|
+
# The endpoint specific to the default "googleapis.com" universe. Deprecated.
|
4982
5098
|
DEFAULT_ENDPOINT = "securitycenter.googleapis.com"
|
4983
5099
|
|
4984
|
-
config_attr :endpoint,
|
5100
|
+
config_attr :endpoint, nil, ::String, nil
|
4985
5101
|
config_attr :credentials, nil do |value|
|
4986
5102
|
allowed = [::String, ::Hash, ::Proc, ::Symbol, ::Google::Auth::Credentials, ::Signet::OAuth2::Client, nil]
|
4987
5103
|
allowed += [::GRPC::Core::Channel, ::GRPC::Core::ChannelCredentials] if defined? ::GRPC
|
@@ -4996,6 +5112,7 @@ module Google
|
|
4996
5112
|
config_attr :metadata, nil, ::Hash, nil
|
4997
5113
|
config_attr :retry_policy, nil, ::Hash, ::Proc, nil
|
4998
5114
|
config_attr :quota_project, nil, ::String, nil
|
5115
|
+
config_attr :universe_domain, nil, ::String, nil
|
4999
5116
|
|
5000
5117
|
# @private
|
5001
5118
|
def initialize parent_config = nil
|
@@ -5203,6 +5320,11 @@ module Google
|
|
5203
5320
|
#
|
5204
5321
|
attr_reader :test_iam_permissions
|
5205
5322
|
##
|
5323
|
+
# RPC-specific configuration for `simulate_security_health_analytics_custom_module`
|
5324
|
+
# @return [::Gapic::Config::Method]
|
5325
|
+
#
|
5326
|
+
attr_reader :simulate_security_health_analytics_custom_module
|
5327
|
+
##
|
5206
5328
|
# RPC-specific configuration for `update_external_system`
|
5207
5329
|
# @return [::Gapic::Config::Method]
|
5208
5330
|
#
|
@@ -5329,6 +5451,8 @@ module Google
|
|
5329
5451
|
@set_iam_policy = ::Gapic::Config::Method.new set_iam_policy_config
|
5330
5452
|
test_iam_permissions_config = parent_rpcs.test_iam_permissions if parent_rpcs.respond_to? :test_iam_permissions
|
5331
5453
|
@test_iam_permissions = ::Gapic::Config::Method.new test_iam_permissions_config
|
5454
|
+
simulate_security_health_analytics_custom_module_config = parent_rpcs.simulate_security_health_analytics_custom_module if parent_rpcs.respond_to? :simulate_security_health_analytics_custom_module
|
5455
|
+
@simulate_security_health_analytics_custom_module = ::Gapic::Config::Method.new simulate_security_health_analytics_custom_module_config
|
5332
5456
|
update_external_system_config = parent_rpcs.update_external_system if parent_rpcs.respond_to? :update_external_system
|
5333
5457
|
@update_external_system = ::Gapic::Config::Method.new update_external_system_config
|
5334
5458
|
update_finding_config = parent_rpcs.update_finding if parent_rpcs.respond_to? :update_finding
|
@@ -26,6 +26,9 @@ module Google
|
|
26
26
|
module SecurityCenter
|
27
27
|
# Service that implements Longrunning Operations API.
|
28
28
|
class Operations
|
29
|
+
# @private
|
30
|
+
DEFAULT_ENDPOINT_TEMPLATE = "securitycenter.$UNIVERSE_DOMAIN$"
|
31
|
+
|
29
32
|
# @private
|
30
33
|
attr_reader :operations_stub
|
31
34
|
|
@@ -60,6 +63,15 @@ module Google
|
|
60
63
|
@config
|
61
64
|
end
|
62
65
|
|
66
|
+
##
|
67
|
+
# The effective universe domain
|
68
|
+
#
|
69
|
+
# @return [String]
|
70
|
+
#
|
71
|
+
def universe_domain
|
72
|
+
@operations_stub.universe_domain
|
73
|
+
end
|
74
|
+
|
63
75
|
##
|
64
76
|
# Create a new Operations client object.
|
65
77
|
#
|
@@ -90,8 +102,10 @@ module Google
|
|
90
102
|
|
91
103
|
@operations_stub = ::Gapic::ServiceStub.new(
|
92
104
|
::Google::Longrunning::Operations::Stub,
|
93
|
-
credentials:
|
94
|
-
endpoint:
|
105
|
+
credentials: credentials,
|
106
|
+
endpoint: @config.endpoint,
|
107
|
+
endpoint_template: DEFAULT_ENDPOINT_TEMPLATE,
|
108
|
+
universe_domain: @config.universe_domain,
|
95
109
|
channel_args: @config.channel_args,
|
96
110
|
interceptors: @config.interceptors,
|
97
111
|
channel_pool_config: @config.channel_pool
|
@@ -613,9 +627,9 @@ module Google
|
|
613
627
|
# end
|
614
628
|
#
|
615
629
|
# @!attribute [rw] endpoint
|
616
|
-
#
|
617
|
-
#
|
618
|
-
# @return [::String]
|
630
|
+
# A custom service endpoint, as a hostname or hostname:port. The default is
|
631
|
+
# nil, indicating to use the default endpoint in the current universe domain.
|
632
|
+
# @return [::String,nil]
|
619
633
|
# @!attribute [rw] credentials
|
620
634
|
# Credentials to send with calls. You may provide any of the following types:
|
621
635
|
# * (`String`) The path to a service account key file in JSON format
|
@@ -661,13 +675,20 @@ module Google
|
|
661
675
|
# @!attribute [rw] quota_project
|
662
676
|
# A separate project against which to charge quota.
|
663
677
|
# @return [::String]
|
678
|
+
# @!attribute [rw] universe_domain
|
679
|
+
# The universe domain within which to make requests. This determines the
|
680
|
+
# default endpoint URL. The default value of nil uses the environment
|
681
|
+
# universe (usually the default "googleapis.com" universe).
|
682
|
+
# @return [::String,nil]
|
664
683
|
#
|
665
684
|
class Configuration
|
666
685
|
extend ::Gapic::Config
|
667
686
|
|
687
|
+
# @private
|
688
|
+
# The endpoint specific to the default "googleapis.com" universe. Deprecated.
|
668
689
|
DEFAULT_ENDPOINT = "securitycenter.googleapis.com"
|
669
690
|
|
670
|
-
config_attr :endpoint,
|
691
|
+
config_attr :endpoint, nil, ::String, nil
|
671
692
|
config_attr :credentials, nil do |value|
|
672
693
|
allowed = [::String, ::Hash, ::Proc, ::Symbol, ::Google::Auth::Credentials, ::Signet::OAuth2::Client, nil]
|
673
694
|
allowed += [::GRPC::Core::Channel, ::GRPC::Core::ChannelCredentials] if defined? ::GRPC
|
@@ -682,6 +703,7 @@ module Google
|
|
682
703
|
config_attr :metadata, nil, ::Hash, nil
|
683
704
|
config_attr :retry_policy, nil, ::Hash, ::Proc, nil
|
684
705
|
config_attr :quota_project, nil, ::String, nil
|
706
|
+
config_attr :universe_domain, nil, ::String, nil
|
685
707
|
|
686
708
|
# @private
|
687
709
|
def initialize parent_config = nil
|