google-cloud-security_center-v1p1beta1 0.1.1 → 0.3.1

data/lib/google/cloud/security_center/v1p1beta1/security_center/operations.rb

@@ -85,6 +85,8 @@ module Google
               if credentials.is_a?(String) || credentials.is_a?(Hash)
                 credentials = Credentials.new credentials, scope: @config.scope
               end
+              @quota_project_id = @config.quota_project
+              @quota_project_id ||= credentials.quota_project_id if credentials.respond_to? :quota_project_id
 
               @operations_stub = ::Gapic::ServiceStub.new(
                 ::Google::Longrunning::Operations::Stub,
@@ -464,24 +466,28 @@ module Google
             #    *  `:retry_codes` (*type:* `Array<String>`) - The error codes that should
             #       trigger a retry.
             #   @return [::Hash]
+            # @!attribute [rw] quota_project
+            #   A separate project against which to charge quota.
+            #   @return [::String]
             #
             class Configuration
               extend ::Gapic::Config
 
-              config_attr :endpoint,     "securitycenter.googleapis.com", String
-              config_attr :credentials,  nil do |value|
+              config_attr :endpoint,      "securitycenter.googleapis.com", ::String
+              config_attr :credentials,   nil do |value|
                 allowed = [::String, ::Hash, ::Proc, ::Google::Auth::Credentials, ::Signet::OAuth2::Client, nil]
                 allowed += [::GRPC::Core::Channel, ::GRPC::Core::ChannelCredentials] if defined? ::GRPC
                 allowed.any? { |klass| klass === value }
               end
-              config_attr :scope,        nil, ::String, ::Array, nil
-              config_attr :lib_name,     nil, ::String, nil
-              config_attr :lib_version,  nil, ::String, nil
-              config_attr(:channel_args, { "grpc.service_config_disable_resolution"=>1 }, ::Hash, nil)
-              config_attr :interceptors, nil, ::Array, nil
-              config_attr :timeout,      nil, ::Numeric, nil
-              config_attr :metadata,     nil, ::Hash, nil
-              config_attr :retry_policy, nil, ::Hash, Proc, nil
+              config_attr :scope,         nil, ::String, ::Array, nil
+              config_attr :lib_name,      nil, ::String, nil
+              config_attr :lib_version,   nil, ::String, nil
+              config_attr(:channel_args,  { "grpc.service_config_disable_resolution"=>1 }, ::Hash, nil)
+              config_attr :interceptors,  nil, ::Array, nil
+              config_attr :timeout,       nil, ::Numeric, nil
+              config_attr :metadata,      nil, ::Hash, nil
+              config_attr :retry_policy,  nil, ::Hash, ::Proc, nil
+              config_attr :quota_project, nil, ::String, nil
 
               # @private
               def initialize parent_config = nil
@@ -497,7 +503,7 @@ module Google
               def rpcs
                 @rpcs ||= begin
                   parent_rpcs = nil
-                  parent_rpcs = @parent_config.rpcs if @parent_config&.respond_to? :rpcs
+                  parent_rpcs = @parent_config.rpcs if defined?(@parent_config) && @parent_config&.respond_to?(:rpcs)
                   Rpcs.new parent_rpcs
                 end
               end

data/lib/google/cloud/security_center/v1p1beta1/version.rb

@@ -21,7 +21,7 @@ module Google
   module Cloud
     module SecurityCenter
       module V1p1beta1
-        VERSION = "0.1.1"
+        VERSION = "0.3.1"
       end
     end
   end

data/lib/google/cloud/securitycenter/v1p1beta1/notification_message_pb.rb

@@ -6,10 +6,12 @@ require 'google/protobuf'
 require 'google/api/annotations_pb'
 require 'google/cloud/securitycenter/v1p1beta1/asset_pb'
 require 'google/cloud/securitycenter/v1p1beta1/finding_pb'
+require 'google/cloud/securitycenter/v1p1beta1/resource_pb'
 Google::Protobuf::DescriptorPool.generated_pool.build do
   add_file("google/cloud/securitycenter/v1p1beta1/notification_message.proto", :syntax => :proto3) do
     add_message "google.cloud.securitycenter.v1p1beta1.NotificationMessage" do
       optional :notification_config_name, :string, 1
+      optional :resource, :message, 3, "google.cloud.securitycenter.v1p1beta1.Resource"
       oneof :event do
         optional :finding, :message, 2, "google.cloud.securitycenter.v1p1beta1.Finding"
       end

data/lib/google/cloud/securitycenter/v1p1beta1/resource_pb.rb

@@ -0,0 +1,27 @@
+# Generated by the protocol buffer compiler.  DO NOT EDIT!
+# source: google/cloud/securitycenter/v1p1beta1/resource.proto
+
+require 'google/protobuf'
+
+require 'google/api/annotations_pb'
+Google::Protobuf::DescriptorPool.generated_pool.build do
+  add_file("google/cloud/securitycenter/v1p1beta1/resource.proto", :syntax => :proto3) do
+    add_message "google.cloud.securitycenter.v1p1beta1.Resource" do
+      optional :name, :string, 1
+      optional :project, :string, 2
+      optional :project_display_name, :string, 3
+      optional :parent, :string, 4
+      optional :parent_display_name, :string, 5
+    end
+  end
+end
+
+module Google
+  module Cloud
+    module SecurityCenter
+      module V1p1beta1
+        Resource = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.securitycenter.v1p1beta1.Resource").msgclass
+      end
+    end
+  end
+end

data/lib/google/cloud/securitycenter/v1p1beta1/securitycenter_service_pb.rb

@@ -56,7 +56,6 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
       optional :group_by, :string, 3
       optional :compare_duration, :message, 4, "google.protobuf.Duration"
       optional :read_time, :message, 5, "google.protobuf.Timestamp"
-      optional :having, :string, 6
       optional :page_token, :string, 7
       optional :page_size, :int32, 8
     end
@@ -72,7 +71,6 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
       optional :group_by, :string, 3
       optional :read_time, :message, 4, "google.protobuf.Timestamp"
       optional :compare_duration, :message, 5, "google.protobuf.Duration"
-      optional :having, :string, 6
       optional :page_token, :string, 7
       optional :page_size, :int32, 8
     end
@@ -110,7 +108,6 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
       optional :order_by, :string, 3
       optional :read_time, :message, 4, "google.protobuf.Timestamp"
       optional :compare_duration, :message, 5, "google.protobuf.Duration"
-      optional :having, :string, 6
       optional :field_mask, :message, 7, "google.protobuf.FieldMask"
       optional :page_token, :string, 8
       optional :page_size, :int32, 9
@@ -137,7 +134,6 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
       optional :order_by, :string, 3
       optional :read_time, :message, 4, "google.protobuf.Timestamp"
       optional :compare_duration, :message, 5, "google.protobuf.Duration"
-      optional :having, :string, 6
       optional :field_mask, :message, 7, "google.protobuf.FieldMask"
       optional :page_token, :string, 8
       optional :page_size, :int32, 9

data/lib/google/cloud/securitycenter/v1p1beta1/securitycenter_service_services_pb.rb

@@ -1,7 +1,7 @@
 # Generated by the protocol buffer compiler.  DO NOT EDIT!
 # Source: google/cloud/securitycenter/v1p1beta1/securitycenter_service.proto for package 'Google.Cloud.SecurityCenter.V1p1beta1'
 # Original file comments:
-# Copyright 2019 Google LLC.
+# Copyright 2020 Google LLC
 #
 # Licensed under the Apache License, Version 2.0 (the "License");
 # you may not use this file except in compliance with the License.
@@ -15,7 +15,6 @@
 # See the License for the specific language governing permissions and
 # limitations under the License.
 #
-#
 
 require 'grpc'
 require 'google/cloud/securitycenter/v1p1beta1/securitycenter_service_pb'
@@ -86,11 +85,11 @@ module Google
             rpc :SetIamPolicy, Google::Iam::V1::SetIamPolicyRequest, Google::Iam::V1::Policy
             # Returns the permissions that a caller has on the specified source.
             rpc :TestIamPermissions, Google::Iam::V1::TestIamPermissionsRequest, Google::Iam::V1::TestIamPermissionsResponse
-            #
             # Creates or updates a finding. The corresponding source must exist for a
             # finding creation to succeed.
             rpc :UpdateFinding, Google::Cloud::SecurityCenter::V1p1beta1::UpdateFindingRequest, Google::Cloud::SecurityCenter::V1p1beta1::Finding
-            # Updates a notification config.
+            # Updates a notification config. The following update
+            # fields are allowed: description, pubsub_topic, streaming_config.filter
             rpc :UpdateNotificationConfig, Google::Cloud::SecurityCenter::V1p1beta1::UpdateNotificationConfigRequest, Google::Cloud::SecurityCenter::V1p1beta1::NotificationConfig
             # Updates an organization's settings.
             rpc :UpdateOrganizationSettings, Google::Cloud::SecurityCenter::V1p1beta1::UpdateOrganizationSettingsRequest, Google::Cloud::SecurityCenter::V1p1beta1::OrganizationSettings

data/proto_docs/google/cloud/securitycenter/v1p1beta1/asset.rb

@@ -21,12 +21,13 @@ module Google
   module Cloud
     module SecurityCenter
       module V1p1beta1
-        # Cloud Security Command Center's (Cloud SCC) representation of a Google Cloud
-        # Platform (GCP) resource.
+        # Security Command Center representation of a Google Cloud
+        # resource.
         #
-        # The Asset is a Cloud SCC resource that captures information about a single
-        # GCP resource. All modifications to an Asset are only within the context of
-        # Cloud SCC and don't affect the referenced GCP resource.
+        # The Asset is a Security Command Center resource that captures information
+        # about a single Google Cloud resource. All modifications to an Asset are only
+        # within the context of Security Command Center and don't affect the referenced
+        # Google Cloud resource.
         # @!attribute [rw] name
         #   @return [::String]
         #     The relative resource name of this asset. See:
@@ -35,45 +36,46 @@ module Google
         #     "organizations/\\{organization_id}/assets/\\{asset_id}".
         # @!attribute [rw] security_center_properties
         #   @return [::Google::Cloud::SecurityCenter::V1p1beta1::Asset::SecurityCenterProperties]
-        #     Cloud SCC managed properties. These properties are managed by
-        #     Cloud SCC and cannot be modified by the user.
+        #     Security Command Center managed properties. These properties are managed by
+        #     Security Command Center and cannot be modified by the user.
         # @!attribute [rw] resource_properties
         #   @return [::Google::Protobuf::Map{::String => ::Google::Protobuf::Value}]
         #     Resource managed properties. These properties are managed and defined by
-        #     the GCP resource and cannot be modified by the user.
+        #     the Google Cloud resource and cannot be modified by the user.
         # @!attribute [rw] security_marks
         #   @return [::Google::Cloud::SecurityCenter::V1p1beta1::SecurityMarks]
         #     User specified security marks. These marks are entirely managed by the user
         #     and come from the SecurityMarks resource that belongs to the asset.
         # @!attribute [rw] create_time
         #   @return [::Google::Protobuf::Timestamp]
-        #     The time at which the asset was created in Cloud SCC.
+        #     The time at which the asset was created in Security Command Center.
         # @!attribute [rw] update_time
         #   @return [::Google::Protobuf::Timestamp]
         #     The time at which the asset was last updated, added, or deleted in Cloud
         #     SCC.
         # @!attribute [rw] iam_policy
         #   @return [::Google::Cloud::SecurityCenter::V1p1beta1::Asset::IamPolicy]
-        #     IAM Policy information associated with the GCP resource described by the
-        #     Cloud SCC asset. This information is managed and defined by the GCP
-        #     resource and cannot be modified by the user.
+        #     Cloud IAM Policy information associated with the Google Cloud resource
+        #     described by the Security Command Center asset. This information is managed
+        #     and defined by the Google Cloud resource and cannot be modified by the
+        #     user.
         class Asset
           include ::Google::Protobuf::MessageExts
           extend ::Google::Protobuf::MessageExts::ClassMethods
 
-          # Cloud SCC managed properties. These properties are managed by Cloud SCC and
-          # cannot be modified by the user.
+          # Security Command Center managed properties. These properties are managed by
+          # Security Command Center and cannot be modified by the user.
           # @!attribute [rw] resource_name
           #   @return [::String]
-          #     The full resource name of the GCP resource this asset
+          #     The full resource name of the Google Cloud resource this asset
           #     represents. This field is immutable after create time. See:
           #     https://cloud.google.com/apis/design/resource_names#full_resource_name
           # @!attribute [rw] resource_type
           #   @return [::String]
-          #     The type of the GCP resource. Examples include: APPLICATION,
+          #     The type of the Google Cloud resource. Examples include: APPLICATION,
           #     PROJECT, and ORGANIZATION. This is a case insensitive field defined by
-          #     Cloud SCC and/or the producer of the resource and is immutable
-          #     after create time.
+          #     Security Command Center and/or the producer of the resource and is
+          #     immutable after create time.
           # @!attribute [rw] resource_parent
           #   @return [::String]
           #     The full resource name of the immediate parent of the resource. See:
@@ -99,13 +101,14 @@ module Google
             extend ::Google::Protobuf::MessageExts::ClassMethods
           end
 
-          # IAM Policy information associated with the GCP resource described by the
-          # Cloud SCC asset. This information is managed and defined by the GCP
-          # resource and cannot be modified by the user.
+          # Cloud IAM Policy information associated with the Google Cloud resource
+          # described by the Security Command Center asset. This information is managed
+          # and defined by the Google Cloud resource and cannot be modified by the
+          # user.
           # @!attribute [rw] policy_blob
           #   @return [::String]
           #     The JSON representation of the Policy associated with the asset.
-          #     See https://cloud.google.com/iam/reference/rest/v1/Policy for
+          #     See https://cloud.google.com/iam/docs/reference/rest/v1/Policy for
           #     format details.
           class IamPolicy
             include ::Google::Protobuf::MessageExts

data/proto_docs/google/cloud/securitycenter/v1p1beta1/finding.rb

@@ -21,12 +21,12 @@ module Google
   module Cloud
     module SecurityCenter
       module V1p1beta1
-        # Cloud Security Command Center (Cloud SCC) finding.
+        # Security Command Center finding.
         #
         # A finding is a record of assessment data (security, risk, health or privacy)
-        # ingested into Cloud SCC for presentation, notification, analysis,
-        # policy testing, and enforcement. For example, an XSS vulnerability in an
-        # App Engine application is a finding.
+        # ingested into Security Command Center for presentation, notification,
+        # analysis, policy testing, and enforcement. For example, an XSS vulnerability
+        # in an App Engine application is a finding.
         # @!attribute [rw] name
         #   @return [::String]
         #     The relative resource name of this finding. See:
@@ -42,12 +42,12 @@ module Google
         #     "organizations/\\{organization_id}/sources/\\{source_id}"
         # @!attribute [rw] resource_name
         #   @return [::String]
-        #     For findings on Google Cloud Platform (GCP) resources, the full resource
-        #     name of the GCP resource this finding is for. See:
+        #     For findings on Google Cloud resources, the full resource
+        #     name of the Google Cloud resource this finding is for. See:
         #     https://cloud.google.com/apis/design/resource_names#full_resource_name
-        #     When the finding is for a non-GCP resource, the resourceName can be a
-        #     customer or partner defined string.
-        #     This field is immutable after creation time.
+        #     When the finding is for a non-Google Cloud resource, the resourceName can
+        #     be a customer or partner defined string. This field is immutable after
+        #     creation time.
         # @!attribute [rw] state
         #   @return [::Google::Cloud::SecurityCenter::V1p1beta1::Finding::State]
         #     The state of the finding.
@@ -58,9 +58,9 @@ module Google
         #     Example: "XSS_FLASH_INJECTION"
         # @!attribute [rw] external_uri
         #   @return [::String]
-        #     The URI that, if available, points to a web page outside of Cloud SCC
-        #     where additional information about the finding can be found. This field is
-        #     guaranteed to be either empty or a well formed URL.
+        #     The URI that, if available, points to a web page outside of Security
+        #     Command Center where additional information about the finding can be found.
+        #     This field is guaranteed to be either empty or a well formed URL.
         # @!attribute [rw] source_properties
         #   @return [::Google::Protobuf::Map{::String => ::Google::Protobuf::Value}]
         #     Source specific properties. These properties are managed by the source
@@ -79,7 +79,7 @@ module Google
         #     the firewall became open. The accuracy is determined by the detector.
         # @!attribute [rw] create_time
         #   @return [::Google::Protobuf::Timestamp]
-        #     The time at which the finding was created in Cloud SCC.
+        #     The time at which the finding was created in Security Command Center.
         class Finding
           include ::Google::Protobuf::MessageExts
           extend ::Google::Protobuf::MessageExts::ClassMethods

data/proto_docs/google/cloud/securitycenter/v1p1beta1/notification_config.rb

@@ -21,10 +21,11 @@ module Google
   module Cloud
     module SecurityCenter
       module V1p1beta1
-        # Cloud Security Command Center (Cloud SCC) notification configs.
+        # Security Command Center notification configs.
         #
-        # A notification config is a Cloud SCC resource that contains the configuration
-        # to send notifications for create/update events of findings, assets and etc.
+        # A notification config is a Security Command Center resource that contains the
+        # configuration to send notifications for create/update events of findings,
+        # assets and etc.
         # @!attribute [rw] name
         #   @return [::String]
         #     The relative resource name of this notification config. See:
@@ -39,12 +40,12 @@ module Google
         #     The type of events the config is for, e.g. FINDING.
         # @!attribute [rw] pubsub_topic
         #   @return [::String]
-        #     The PubSub topic to send notifications to. Its format is
+        #     The Pub/Sub topic to send notifications to. Its format is
         #     "projects/[project_id]/topics/[topic]".
         # @!attribute [r] service_account
         #   @return [::String]
         #     Output only. The service account that needs "pubsub.topics.publish"
-        #     permission to publish to the PubSub topic.
+        #     permission to publish to the Pub/Sub topic.
         # @!attribute [rw] streaming_config
         #   @return [::Google::Cloud::SecurityCenter::V1p1beta1::NotificationConfig::StreamingConfig]
         #     The config for triggering streaming-based notifications.

data/proto_docs/google/cloud/securitycenter/v1p1beta1/notification_message.rb

@@ -21,7 +21,7 @@ module Google
   module Cloud
     module SecurityCenter
       module V1p1beta1
-        # Cloud SCC's Notification
+        # Security Command Center's Notification
         # @!attribute [rw] notification_config_name
         #   @return [::String]
         #     Name of the notification config that generated current notification.
@@ -29,6 +29,9 @@ module Google
         #   @return [::Google::Cloud::SecurityCenter::V1p1beta1::Finding]
         #     If it's a Finding based notification config, this field will be
         #     populated.
+        # @!attribute [rw] resource
+        #   @return [::Google::Cloud::SecurityCenter::V1p1beta1::Resource]
+        #     The Cloud resource tied to the notification.
         class NotificationMessage
           include ::Google::Protobuf::MessageExts
           extend ::Google::Protobuf::MessageExts::ClassMethods

data/proto_docs/google/cloud/securitycenter/v1p1beta1/organization_settings.rb

@@ -21,8 +21,8 @@ module Google
   module Cloud
     module SecurityCenter
       module V1p1beta1
-        # User specified settings that are attached to the Cloud Security Command
-        # Center (Cloud SCC) organization.
+        # User specified settings that are attached to the Security Command
+        # Center organization.
         # @!attribute [rw] name
         #   @return [::String]
         #     The relative resource name of the settings. See:

data/proto_docs/google/cloud/securitycenter/v1p1beta1/resource.rb

@@ -0,0 +1,48 @@
+# frozen_string_literal: true
+
+# Copyright 2020 Google LLC
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     https://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+# Auto-generated by gapic-generator-ruby. DO NOT EDIT!
+
+
+module Google
+  module Cloud
+    module SecurityCenter
+      module V1p1beta1
+        # Information related to the Google Cloud resource.
+        # @!attribute [rw] name
+        #   @return [::String]
+        #     The full resource name of the resource. See:
+        #     https://cloud.google.com/apis/design/resource_names#full_resource_name
+        # @!attribute [rw] project
+        #   @return [::String]
+        #     The full resource name of project that the resource belongs to.
+        # @!attribute [rw] project_display_name
+        #   @return [::String]
+        #     The human readable name of project that the resource belongs to.
+        # @!attribute [rw] parent
+        #   @return [::String]
+        #     The full resource name of resource's parent.
+        # @!attribute [rw] parent_display_name
+        #   @return [::String]
+        #     The human readable name of resource's parent.
+        class Resource
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
+        end
+      end
+    end
+  end
+end

data/proto_docs/google/cloud/securitycenter/v1p1beta1/security_marks.rb

@@ -21,9 +21,9 @@ module Google
   module Cloud
     module SecurityCenter
       module V1p1beta1
-        # User specified security marks that are attached to the parent Cloud Security
-        # Command Center (Cloud SCC) resource. Security marks are scoped within a Cloud
-        # SCC organization -- they can be modified and viewed by all users who have
+        # User specified security marks that are attached to the parent Security
+        # Command Center resource. Security marks are scoped within a Security Command
+        # Center organization -- they can be modified and viewed by all users who have
         # proper permissions on the organization.
         # @!attribute [rw] name
         #   @return [::String]