google-cloud-security_center-v1 0.4.1 → 0.7.2

data/lib/google/cloud/security_center/v1/security_center/operations.rb

@@ -82,7 +82,7 @@ module Google
               # Create credentials
               credentials = @config.credentials
               credentials ||= Credentials.default scope: @config.scope
-              if credentials.is_a?(String) || credentials.is_a?(Hash)
+              if credentials.is_a?(::String) || credentials.is_a?(::Hash)
                 credentials = Credentials.new credentials, scope: @config.scope
               end
               @quota_project_id = @config.quota_project
@@ -103,8 +103,13 @@ module Google
             # Lists operations that match the specified filter in the request. If the
             # server doesn't support this method, it returns `UNIMPLEMENTED`.
             #
-            # NOTE: the `name` binding below allows API services to override the binding
-            # to use different resource name schemes, such as `users/*/operations`.
+            # NOTE: the `name` binding allows API services to override the binding
+            # to use different resource name schemes, such as `users/*/operations`. To
+            # override the binding, API services can add a binding such as
+            # `"/v1/{name=users/*}/operations"` to their service configuration.
+            # For backwards compatibility, the default name includes the operations
+            # collection id, however overriding users must ensure the name binding
+            # is the parent resource, without the operations collection id.
             #
             # @overload list_operations(request, options = nil)
             #   Pass arguments to `list_operations` via a request object, either of type
@@ -122,7 +127,7 @@ module Google
             #   the default parameter values, pass an empty Hash as a request object (see above).
             #
             #   @param name [::String]
-            #     The name of the operation collection.
+            #     The name of the operation's parent resource.
             #   @param filter [::String]
             #     The standard list filter.
             #   @param page_size [::Integer]
@@ -390,6 +395,79 @@ module Google
               raise ::Google::Cloud::Error.from_error(e)
             end
 
+            ##
+            # Waits until the specified long-running operation is done or reaches at most
+            # a specified timeout, returning the latest state.  If the operation is
+            # already done, the latest state is immediately returned.  If the timeout
+            # specified is greater than the default HTTP/RPC timeout, the HTTP/RPC
+            # timeout is used.  If the server does not support this method, it returns
+            # `google.rpc.Code.UNIMPLEMENTED`.
+            # Note that this method is on a best-effort basis.  It may return the latest
+            # state before the specified timeout (including immediately), meaning even an
+            # immediate response is no guarantee that the operation is done.
+            #
+            # @overload wait_operation(request, options = nil)
+            #   Pass arguments to `wait_operation` via a request object, either of type
+            #   {::Google::Longrunning::WaitOperationRequest} or an equivalent Hash.
+            #
+            #   @param request [::Google::Longrunning::WaitOperationRequest, ::Hash]
+            #     A request object representing the call parameters. Required. To specify no
+            #     parameters, or to keep all the default parameter values, pass an empty Hash.
+            #   @param options [::Gapic::CallOptions, ::Hash]
+            #     Overrides the default settings for this call, e.g, timeout, retries, etc. Optional.
+            #
+            # @overload wait_operation(name: nil, timeout: nil)
+            #   Pass arguments to `wait_operation` via keyword arguments. Note that at
+            #   least one keyword argument is required. To specify no parameters, or to keep all
+            #   the default parameter values, pass an empty Hash as a request object (see above).
+            #
+            #   @param name [::String]
+            #     The name of the operation resource to wait on.
+            #   @param timeout [::Google::Protobuf::Duration, ::Hash]
+            #     The maximum duration to wait before timing out. If left blank, the wait
+            #     will be at most the time permitted by the underlying HTTP/RPC protocol.
+            #     If RPC context deadline is also specified, the shorter one will be used.
+            #
+            # @yield [response, operation] Access the result along with the RPC operation
+            # @yieldparam response [::Gapic::Operation]
+            # @yieldparam operation [::GRPC::ActiveCall::Operation]
+            #
+            # @return [::Gapic::Operation]
+            #
+            # @raise [::Google::Cloud::Error] if the RPC is aborted.
+            #
+            def wait_operation request, options = nil
+              raise ::ArgumentError, "request must be provided" if request.nil?
+
+              request = ::Gapic::Protobuf.coerce request, to: ::Google::Longrunning::WaitOperationRequest
+
+              # Converts hash and nil to an options object
+              options = ::Gapic::CallOptions.new(**options.to_h) if options.respond_to? :to_h
+
+              # Customize the options with defaults
+              metadata = @config.rpcs.wait_operation.metadata.to_h
+
+              # Set x-goog-api-client and x-goog-user-project headers
+              metadata[:"x-goog-api-client"] ||= ::Gapic::Headers.x_goog_api_client \
+                lib_name: @config.lib_name, lib_version: @config.lib_version,
+                gapic_version: ::Google::Cloud::SecurityCenter::V1::VERSION
+              metadata[:"x-goog-user-project"] = @quota_project_id if @quota_project_id
+
+              options.apply_defaults timeout:      @config.rpcs.wait_operation.timeout,
+                                     metadata:     metadata,
+                                     retry_policy: @config.rpcs.wait_operation.retry_policy
+              options.apply_defaults metadata:     @config.metadata,
+                                     retry_policy: @config.retry_policy
+
+              @operations_stub.call_rpc :wait_operation, request, options: options do |response, operation|
+                response = ::Gapic::Operation.new response, @operations_client, options: options
+                yield response, operation if block_given?
+                return response
+              end
+            rescue ::GRPC::BadStatus => e
+              raise ::Google::Cloud::Error.from_error(e)
+            end
+
             ##
             # Configuration class for the Operations API.
             #
@@ -482,7 +560,7 @@ module Google
               config_attr :scope,         nil, ::String, ::Array, nil
               config_attr :lib_name,      nil, ::String, nil
               config_attr :lib_version,   nil, ::String, nil
-              config_attr(:channel_args,  { "grpc.service_config_disable_resolution"=>1 }, ::Hash, nil)
+              config_attr(:channel_args,  { "grpc.service_config_disable_resolution" => 1 }, ::Hash, nil)
               config_attr :interceptors,  nil, ::Array, nil
               config_attr :timeout,       nil, ::Numeric, nil
               config_attr :metadata,      nil, ::Hash, nil
@@ -503,7 +581,7 @@ module Google
               def rpcs
                 @rpcs ||= begin
                   parent_rpcs = nil
-                  parent_rpcs = @parent_config.rpcs if defined?(@parent_config) && @parent_config&.respond_to?(:rpcs)
+                  parent_rpcs = @parent_config.rpcs if defined?(@parent_config) && @parent_config.respond_to?(:rpcs)
                   Rpcs.new parent_rpcs
                 end
               end
@@ -546,17 +624,24 @@ module Google
                 # @return [::Gapic::Config::Method]
                 #
                 attr_reader :cancel_operation
+                ##
+                # RPC-specific configuration for `wait_operation`
+                # @return [::Gapic::Config::Method]
+                #
+                attr_reader :wait_operation
 
                 # @private
                 def initialize parent_rpcs = nil
-                  list_operations_config = parent_rpcs&.list_operations if parent_rpcs&.respond_to? :list_operations
+                  list_operations_config = parent_rpcs.list_operations if parent_rpcs.respond_to? :list_operations
                   @list_operations = ::Gapic::Config::Method.new list_operations_config
-                  get_operation_config = parent_rpcs&.get_operation if parent_rpcs&.respond_to? :get_operation
+                  get_operation_config = parent_rpcs.get_operation if parent_rpcs.respond_to? :get_operation
                   @get_operation = ::Gapic::Config::Method.new get_operation_config
-                  delete_operation_config = parent_rpcs&.delete_operation if parent_rpcs&.respond_to? :delete_operation
+                  delete_operation_config = parent_rpcs.delete_operation if parent_rpcs.respond_to? :delete_operation
                   @delete_operation = ::Gapic::Config::Method.new delete_operation_config
-                  cancel_operation_config = parent_rpcs&.cancel_operation if parent_rpcs&.respond_to? :cancel_operation
+                  cancel_operation_config = parent_rpcs.cancel_operation if parent_rpcs.respond_to? :cancel_operation
                   @cancel_operation = ::Gapic::Config::Method.new cancel_operation_config
+                  wait_operation_config = parent_rpcs.wait_operation if parent_rpcs.respond_to? :wait_operation
+                  @wait_operation = ::Gapic::Config::Method.new wait_operation_config
 
                   yield self if block_given?
                 end

data/lib/google/cloud/security_center/v1/security_center/paths.rb

@@ -27,20 +27,73 @@ module Google
             ##
             # Create a fully-qualified Finding resource string.
             #
-            # The resource will be in the following format:
+            # @overload finding_path(organization:, source:, finding:)
+            #   The resource will be in the following format:
             #
-            # `organizations/{organization}/sources/{source}/findings/{finding}`
+            #   `organizations/{organization}/sources/{source}/findings/{finding}`
             #
-            # @param organization [String]
-            # @param source [String]
-            # @param finding [String]
+            #   @param organization [String]
+            #   @param source [String]
+            #   @param finding [String]
+            #
+            # @overload finding_path(folder:, source:, finding:)
+            #   The resource will be in the following format:
+            #
+            #   `folders/{folder}/sources/{source}/findings/{finding}`
+            #
+            #   @param folder [String]
+            #   @param source [String]
+            #   @param finding [String]
+            #
+            # @overload finding_path(project:, source:, finding:)
+            #   The resource will be in the following format:
+            #
+            #   `projects/{project}/sources/{source}/findings/{finding}`
+            #
+            #   @param project [String]
+            #   @param source [String]
+            #   @param finding [String]
             #
             # @return [::String]
-            def finding_path organization:, source:, finding:
-              raise ::ArgumentError, "organization cannot contain /" if organization.to_s.include? "/"
-              raise ::ArgumentError, "source cannot contain /" if source.to_s.include? "/"
+            def finding_path **args
+              resources = {
+                "finding:organization:source" => (proc do |organization:, source:, finding:|
+                  raise ::ArgumentError, "organization cannot contain /" if organization.to_s.include? "/"
+                  raise ::ArgumentError, "source cannot contain /" if source.to_s.include? "/"
+
+                  "organizations/#{organization}/sources/#{source}/findings/#{finding}"
+                end),
+                "finding:folder:source" => (proc do |folder:, source:, finding:|
+                  raise ::ArgumentError, "folder cannot contain /" if folder.to_s.include? "/"
+                  raise ::ArgumentError, "source cannot contain /" if source.to_s.include? "/"
+
+                  "folders/#{folder}/sources/#{source}/findings/#{finding}"
+                end),
+                "finding:project:source" => (proc do |project:, source:, finding:|
+                  raise ::ArgumentError, "project cannot contain /" if project.to_s.include? "/"
+                  raise ::ArgumentError, "source cannot contain /" if source.to_s.include? "/"
 
-              "organizations/#{organization}/sources/#{source}/findings/#{finding}"
+                  "projects/#{project}/sources/#{source}/findings/#{finding}"
+                end)
+              }
+
+              resource = resources[args.keys.sort.join(":")]
+              raise ::ArgumentError, "no resource found for values #{args.keys}" if resource.nil?
+              resource.call(**args)
+            end
+
+            ##
+            # Create a fully-qualified Folder resource string.
+            #
+            # The resource will be in the following format:
+            #
+            # `folders/{folder}`
+            #
+            # @param folder [String]
+            #
+            # @return [::String]
+            def folder_path folder:
+              "folders/#{folder}"
             end
 
             ##
@@ -88,6 +141,20 @@ module Google
               "organizations/#{organization}/organizationSettings"
             end
 
+            ##
+            # Create a fully-qualified Project resource string.
+            #
+            # The resource will be in the following format:
+            #
+            # `projects/{project}`
+            #
+            # @param project [String]
+            #
+            # @return [::String]
+            def project_path project:
+              "projects/#{project}"
+            end
+
             ##
             # Create a fully-qualified SecurityMarks resource string.
             #
@@ -108,10 +175,44 @@ module Google
             #   @param source [String]
             #   @param finding [String]
             #
+            # @overload security_marks_path(folder:, asset:)
+            #   The resource will be in the following format:
+            #
+            #   `folders/{folder}/assets/{asset}/securityMarks`
+            #
+            #   @param folder [String]
+            #   @param asset [String]
+            #
+            # @overload security_marks_path(project:, asset:)
+            #   The resource will be in the following format:
+            #
+            #   `projects/{project}/assets/{asset}/securityMarks`
+            #
+            #   @param project [String]
+            #   @param asset [String]
+            #
+            # @overload security_marks_path(folder:, source:, finding:)
+            #   The resource will be in the following format:
+            #
+            #   `folders/{folder}/sources/{source}/findings/{finding}/securityMarks`
+            #
+            #   @param folder [String]
+            #   @param source [String]
+            #   @param finding [String]
+            #
+            # @overload security_marks_path(project:, source:, finding:)
+            #   The resource will be in the following format:
+            #
+            #   `projects/{project}/sources/{source}/findings/{finding}/securityMarks`
+            #
+            #   @param project [String]
+            #   @param source [String]
+            #   @param finding [String]
+            #
             # @return [::String]
             def security_marks_path **args
               resources = {
-                "asset:organization"          => (proc do |organization:, asset:|
+                "asset:organization" => (proc do |organization:, asset:|
                   raise ::ArgumentError, "organization cannot contain /" if organization.to_s.include? "/"
 
                   "organizations/#{organization}/assets/#{asset}/securityMarks"
@@ -121,6 +222,28 @@ module Google
                   raise ::ArgumentError, "source cannot contain /" if source.to_s.include? "/"
 
                   "organizations/#{organization}/sources/#{source}/findings/#{finding}/securityMarks"
+                end),
+                "asset:folder" => (proc do |folder:, asset:|
+                  raise ::ArgumentError, "folder cannot contain /" if folder.to_s.include? "/"
+
+                  "folders/#{folder}/assets/#{asset}/securityMarks"
+                end),
+                "asset:project" => (proc do |project:, asset:|
+                  raise ::ArgumentError, "project cannot contain /" if project.to_s.include? "/"
+
+                  "projects/#{project}/assets/#{asset}/securityMarks"
+                end),
+                "finding:folder:source" => (proc do |folder:, source:, finding:|
+                  raise ::ArgumentError, "folder cannot contain /" if folder.to_s.include? "/"
+                  raise ::ArgumentError, "source cannot contain /" if source.to_s.include? "/"
+
+                  "folders/#{folder}/sources/#{source}/findings/#{finding}/securityMarks"
+                end),
+                "finding:project:source" => (proc do |project:, source:, finding:|
+                  raise ::ArgumentError, "project cannot contain /" if project.to_s.include? "/"
+                  raise ::ArgumentError, "source cannot contain /" if source.to_s.include? "/"
+
+                  "projects/#{project}/sources/#{source}/findings/#{finding}/securityMarks"
                 end)
               }
 
@@ -132,18 +255,53 @@ module Google
             ##
             # Create a fully-qualified Source resource string.
             #
-            # The resource will be in the following format:
+            # @overload source_path(organization:, source:)
+            #   The resource will be in the following format:
             #
-            # `organizations/{organization}/sources/{source}`
+            #   `organizations/{organization}/sources/{source}`
             #
-            # @param organization [String]
-            # @param source [String]
+            #   @param organization [String]
+            #   @param source [String]
+            #
+            # @overload source_path(folder:, source:)
+            #   The resource will be in the following format:
+            #
+            #   `folders/{folder}/sources/{source}`
+            #
+            #   @param folder [String]
+            #   @param source [String]
+            #
+            # @overload source_path(project:, source:)
+            #   The resource will be in the following format:
+            #
+            #   `projects/{project}/sources/{source}`
+            #
+            #   @param project [String]
+            #   @param source [String]
             #
             # @return [::String]
-            def source_path organization:, source:
-              raise ::ArgumentError, "organization cannot contain /" if organization.to_s.include? "/"
+            def source_path **args
+              resources = {
+                "organization:source" => (proc do |organization:, source:|
+                  raise ::ArgumentError, "organization cannot contain /" if organization.to_s.include? "/"
+
+                  "organizations/#{organization}/sources/#{source}"
+                end),
+                "folder:source" => (proc do |folder:, source:|
+                  raise ::ArgumentError, "folder cannot contain /" if folder.to_s.include? "/"
+
+                  "folders/#{folder}/sources/#{source}"
+                end),
+                "project:source" => (proc do |project:, source:|
+                  raise ::ArgumentError, "project cannot contain /" if project.to_s.include? "/"
+
+                  "projects/#{project}/sources/#{source}"
+                end)
+              }
 
-              "organizations/#{organization}/sources/#{source}"
+              resource = resources[args.keys.sort.join(":")]
+              raise ::ArgumentError, "no resource found for values #{args.keys}" if resource.nil?
+              resource.call(**args)
             end
 
             ##

data/lib/google/cloud/security_center/v1/version.rb

@@ -21,7 +21,7 @@ module Google
   module Cloud
     module SecurityCenter
       module V1
-        VERSION = "0.4.1"
+        VERSION = "0.7.2"
       end
     end
   end

data/lib/google/cloud/securitycenter/v1/asset_pb.rb

@@ -3,11 +3,12 @@
 
 require 'google/protobuf'
 
-require 'google/api/annotations_pb'
 require 'google/api/resource_pb'
+require 'google/cloud/securitycenter/v1/folder_pb'
 require 'google/cloud/securitycenter/v1/security_marks_pb'
 require 'google/protobuf/struct_pb'
 require 'google/protobuf/timestamp_pb'
+require 'google/api/annotations_pb'
 Google::Protobuf::DescriptorPool.generated_pool.build do
   add_file("google/cloud/securitycenter/v1/asset.proto", :syntax => :proto3) do
     add_message "google.cloud.securitycenter.v1.Asset" do
@@ -18,6 +19,7 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
       optional :create_time, :message, 9, "google.protobuf.Timestamp"
       optional :update_time, :message, 10, "google.protobuf.Timestamp"
       optional :iam_policy, :message, 11, "google.cloud.securitycenter.v1.Asset.IamPolicy"
+      optional :canonical_name, :string, 13
     end
     add_message "google.cloud.securitycenter.v1.Asset.SecurityCenterProperties" do
       optional :resource_name, :string, 1
@@ -28,6 +30,7 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
       optional :resource_display_name, :string, 6
       optional :resource_parent_display_name, :string, 7
       optional :resource_project_display_name, :string, 8
+      repeated :folders, :message, 10, "google.cloud.securitycenter.v1.Folder"
     end
     add_message "google.cloud.securitycenter.v1.Asset.IamPolicy" do
       optional :policy_blob, :string, 1

data/lib/google/cloud/securitycenter/v1/finding_pb.rb

@@ -3,12 +3,12 @@
 
 require 'google/protobuf'
 
-require 'google/api/annotations_pb'
 require 'google/api/field_behavior_pb'
 require 'google/api/resource_pb'
 require 'google/cloud/securitycenter/v1/security_marks_pb'
 require 'google/protobuf/struct_pb'
 require 'google/protobuf/timestamp_pb'
+require 'google/api/annotations_pb'
 Google::Protobuf::DescriptorPool.generated_pool.build do
   add_file("google/cloud/securitycenter/v1/finding.proto", :syntax => :proto3) do
     add_message "google.cloud.securitycenter.v1.Finding" do
@@ -23,6 +23,7 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
       optional :event_time, :message, 9, "google.protobuf.Timestamp"
       optional :create_time, :message, 10, "google.protobuf.Timestamp"
       optional :severity, :enum, 12, "google.cloud.securitycenter.v1.Finding.Severity"
+      optional :canonical_name, :string, 14
     end
     add_enum "google.cloud.securitycenter.v1.Finding.State" do
       value :STATE_UNSPECIFIED, 0