google-cloud-security_center-v1 0.19.0 → 0.20.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: b57284f2932157e2212960b955b61df6c6e0b4d0f4307fea8c0a08cd111e8b58
4
- data.tar.gz: 2f0ea3acaa4e3995ce721c51a679b4cf6103c51b658fcd9bc5941531c8ad25fd
3
+ metadata.gz: b9f9e1b3b77d926a60e6bb8a4b11bed716ac74ae56ea1e984bafaac835607181
4
+ data.tar.gz: 864e8098c3f7ef2f1dc956793e076342fadf1e0024d92d36a1feef5d8c3f4b13
5
5
  SHA512:
6
- metadata.gz: 5374096b8fde6fea9c9b70a5064fa2d8b77eb606b8809793627a24631e342be74f455ca6b455fff732ab65ce1befbbb09ec85f78c809ce96e022b92db728979f
7
- data.tar.gz: 80e0126fee6525b015d2a13460ace133ae325b87d74848c1209fbc9d38d712d4ca478b9b1a2f3ba199b33a22d8bd2b8417fc5f85bcf539c32815ecfc01ad99a0
6
+ metadata.gz: a6ccb8d4673c5f879c6264014b64f9de358174110a24c25d2d6e4ab69dc74d31339d6b98f48aeac6a7798682e289b694592fa879e59fa875e37e926e685aa229
7
+ data.tar.gz: 275be95aea213891a5f156f769d324142fbd7e6b394baf2ce842843e81b942a177c4e47ceba24a294d0d1a7c6c411ecd4cca378220845a9bb76334ac7bfc8bcf
@@ -21,7 +21,7 @@ module Google
21
21
  module Cloud
22
22
  module SecurityCenter
23
23
  module V1
24
- VERSION = "0.19.0"
24
+ VERSION = "0.20.0"
25
25
  end
26
26
  end
27
27
  end
@@ -12,6 +12,13 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
12
12
  optional :user_agent_family, :string, 4
13
13
  optional :service_name, :string, 5
14
14
  optional :method_name, :string, 6
15
+ optional :principal_subject, :string, 7
16
+ optional :service_account_key_name, :string, 8
17
+ repeated :service_account_delegation_info, :message, 9, "google.cloud.securitycenter.v1.ServiceAccountDelegationInfo"
18
+ end
19
+ add_message "google.cloud.securitycenter.v1.ServiceAccountDelegationInfo" do
20
+ optional :principal_email, :string, 1
21
+ optional :principal_subject, :string, 2
15
22
  end
16
23
  add_message "google.cloud.securitycenter.v1.Geolocation" do
17
24
  optional :region_code, :string, 1
@@ -24,6 +31,7 @@ module Google
24
31
  module SecurityCenter
25
32
  module V1
26
33
  Access = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.securitycenter.v1.Access").msgclass
34
+ ServiceAccountDelegationInfo = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.securitycenter.v1.ServiceAccountDelegationInfo").msgclass
27
35
  Geolocation = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.securitycenter.v1.Geolocation").msgclass
28
36
  end
29
37
  end
@@ -25,6 +25,13 @@ module Google
25
25
  # @!attribute [rw] principal_email
26
26
  # @return [::String]
27
27
  # Associated email, such as "foo@google.com".
28
+ #
29
+ # The email address of the authenticated user (or service account on behalf
30
+ # of third party principal) making the request. For third party identity
31
+ # callers, the `principal_subject` field is populated instead of this field.
32
+ # For privacy reasons, the principal email address is sometimes redacted.
33
+ # For more information, see [Caller identities in audit
34
+ # logs](https://cloud.google.com/logging/docs/audit#user-id).
28
35
  # @!attribute [rw] caller_ip
29
36
  # @return [::String]
30
37
  # Caller's IP address, such as "1.1.1.1".
@@ -42,11 +49,52 @@ module Google
42
49
  # @!attribute [rw] method_name
43
50
  # @return [::String]
44
51
  # The method that the service account called, e.g. "SetIamPolicy".
52
+ # @!attribute [rw] principal_subject
53
+ # @return [::String]
54
+ # A string representing the principal_subject associated with the identity.
55
+ # As compared to `principal_email`, supports principals that aren't
56
+ # associated with email addresses, such as third party principals. For most
57
+ # identities, the format will be `principal://iam.googleapis.com/{identity
58
+ # pool name}/subjects/\\{subject}` except for some GKE identities
59
+ # (GKE_WORKLOAD, FREEFORM, GKE_HUB_WORKLOAD) that are still in the legacy
60
+ # format `serviceAccount:{identity pool name}[{subject}]`
61
+ # @!attribute [rw] service_account_key_name
62
+ # @return [::String]
63
+ # The name of the service account key used to create or exchange
64
+ # credentials for authenticating the service account making the request.
65
+ # This is a scheme-less URI full resource name. For example:
66
+ #
67
+ # "//iam.googleapis.com/projects/\\{PROJECT_ID}/serviceAccounts/\\{ACCOUNT}/keys/\\{key}"
68
+ # @!attribute [rw] service_account_delegation_info
69
+ # @return [::Array<::Google::Cloud::SecurityCenter::V1::ServiceAccountDelegationInfo>]
70
+ # Identity delegation history of an authenticated service account that makes
71
+ # the request. It contains information on the real authorities that try to
72
+ # access GCP resources by delegating on a service account. When multiple
73
+ # authorities are present, they are guaranteed to be sorted based on the
74
+ # original ordering of the identity delegation events.
45
75
  class Access
46
76
  include ::Google::Protobuf::MessageExts
47
77
  extend ::Google::Protobuf::MessageExts::ClassMethods
48
78
  end
49
79
 
80
+ # Identity delegation history of an authenticated service account.
81
+ # @!attribute [rw] principal_email
82
+ # @return [::String]
83
+ # The email address of a Google account.
84
+ # @!attribute [rw] principal_subject
85
+ # @return [::String]
86
+ # A string representing the principal_subject associated with the identity.
87
+ # As compared to `principal_email`, supports principals that aren't
88
+ # associated with email addresses, such as third party principals. For most
89
+ # identities, the format will be `principal://iam.googleapis.com/{identity
90
+ # pool name}/subjects/\\{subject}` except for some GKE identities
91
+ # (GKE_WORKLOAD, FREEFORM, GKE_HUB_WORKLOAD) that are still in the legacy
92
+ # format `serviceAccount:{identity pool name}[{subject}]`
93
+ class ServiceAccountDelegationInfo
94
+ include ::Google::Protobuf::MessageExts
95
+ extend ::Google::Protobuf::MessageExts::ClassMethods
96
+ end
97
+
50
98
  # Represents a geographical location for a given access.
51
99
  # @!attribute [rw] region_code
52
100
  # @return [::String]
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: google-cloud-security_center-v1
3
3
  version: !ruby/object:Gem::Version
4
- version: 0.19.0
4
+ version: 0.20.0
5
5
  platform: ruby
6
6
  authors:
7
7
  - Google LLC
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2022-08-24 00:00:00.000000000 Z
11
+ date: 2022-08-26 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: gapic-common