google-iam-v1 0.1.0

data/lib/google/iam/v1/iam_policy.rb

@@ -0,0 +1,71 @@
+# frozen_string_literal: true
+
+# Copyright 2022 Google LLC
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     https://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+# Auto-generated by gapic-generator-ruby. DO NOT EDIT!
+
+require "gapic/common"
+require "gapic/config"
+require "gapic/config/method"
+
+require "google/iam/v1/version"
+
+require "google/iam/v1/iam_policy/credentials"
+require "google/iam/v1/iam_policy/client"
+
+module Google
+  module Iam
+    module V1
+      ##
+      # API Overview
+      #
+      #
+      # Manages Identity and Access Management (IAM) policies.
+      #
+      # Any implementation of an API that offers access control features
+      # implements the google.iam.v1.IAMPolicy interface.
+      #
+      # ## Data model
+      #
+      # Access control is applied when a principal (user or service account), takes
+      # some action on a resource exposed by a service. Resources, identified by
+      # URI-like names, are the unit of access control specification. Service
+      # implementations can choose the granularity of access control and the
+      # supported permissions for their resources.
+      # For example one database service may allow access control to be
+      # specified only at the Table level, whereas another might allow access control
+      # to also be specified at the Column level.
+      #
+      # ## Policy Structure
+      #
+      # See google.iam.v1.Policy
+      #
+      # This is intentionally not a CRUD style API because access control policies
+      # are created and deleted implicitly with the resources to which they are
+      # attached.
+      #
+      # To load this service and instantiate a client:
+      #
+      #     require "google/iam/v1/iam_policy"
+      #     client = ::Google::Iam::V1::IAMPolicy::Client.new
+      #
+      module IAMPolicy
+      end
+    end
+  end
+end
+
+helper_path = ::File.join __dir__, "iam_policy", "helpers.rb"
+require "google/iam/v1/iam_policy/helpers" if ::File.file? helper_path

data/lib/google/iam/v1/iam_policy_pb.rb

@@ -0,0 +1,44 @@
+# Generated by the protocol buffer compiler.  DO NOT EDIT!
+# source: google/iam/v1/iam_policy.proto
+
+require 'google/protobuf'
+
+require 'google/api/annotations_pb'
+require 'google/api/client_pb'
+require 'google/api/field_behavior_pb'
+require 'google/api/resource_pb'
+require 'google/iam/v1/options_pb'
+require 'google/iam/v1/policy_pb'
+require 'google/protobuf/field_mask_pb'
+
+Google::Protobuf::DescriptorPool.generated_pool.build do
+  add_file("google/iam/v1/iam_policy.proto", :syntax => :proto3) do
+    add_message "google.iam.v1.SetIamPolicyRequest" do
+      optional :resource, :string, 1
+      optional :policy, :message, 2, "google.iam.v1.Policy"
+      optional :update_mask, :message, 3, "google.protobuf.FieldMask"
+    end
+    add_message "google.iam.v1.GetIamPolicyRequest" do
+      optional :resource, :string, 1
+      optional :options, :message, 2, "google.iam.v1.GetPolicyOptions"
+    end
+    add_message "google.iam.v1.TestIamPermissionsRequest" do
+      optional :resource, :string, 1
+      repeated :permissions, :string, 2
+    end
+    add_message "google.iam.v1.TestIamPermissionsResponse" do
+      repeated :permissions, :string, 1
+    end
+  end
+end
+
+module Google
+  module Iam
+    module V1
+      SetIamPolicyRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.iam.v1.SetIamPolicyRequest").msgclass
+      GetIamPolicyRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.iam.v1.GetIamPolicyRequest").msgclass
+      TestIamPermissionsRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.iam.v1.TestIamPermissionsRequest").msgclass
+      TestIamPermissionsResponse = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.iam.v1.TestIamPermissionsResponse").msgclass
+    end
+  end
+end

data/lib/google/iam/v1/iam_policy_services_pb.rb

@@ -0,0 +1,83 @@
+# Generated by the protocol buffer compiler.  DO NOT EDIT!
+# Source: google/iam/v1/iam_policy.proto for package 'google.iam.v1'
+# Original file comments:
+# Copyright 2022 Google LLC
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+#
+
+require 'grpc'
+require 'google/iam/v1/iam_policy_pb'
+
+module Google
+  module Iam
+    module V1
+      module IAMPolicy
+        # API Overview
+        #
+        #
+        # Manages Identity and Access Management (IAM) policies.
+        #
+        # Any implementation of an API that offers access control features
+        # implements the google.iam.v1.IAMPolicy interface.
+        #
+        # ## Data model
+        #
+        # Access control is applied when a principal (user or service account), takes
+        # some action on a resource exposed by a service. Resources, identified by
+        # URI-like names, are the unit of access control specification. Service
+        # implementations can choose the granularity of access control and the
+        # supported permissions for their resources.
+        # For example one database service may allow access control to be
+        # specified only at the Table level, whereas another might allow access control
+        # to also be specified at the Column level.
+        #
+        # ## Policy Structure
+        #
+        # See google.iam.v1.Policy
+        #
+        # This is intentionally not a CRUD style API because access control policies
+        # are created and deleted implicitly with the resources to which they are
+        # attached.
+        class Service
+
+          include ::GRPC::GenericService
+
+          self.marshal_class_method = :encode
+          self.unmarshal_class_method = :decode
+          self.service_name = 'google.iam.v1.IAMPolicy'
+
+          # Sets the access control policy on the specified resource. Replaces any
+          # existing policy.
+          #
+          # Can return `NOT_FOUND`, `INVALID_ARGUMENT`, and `PERMISSION_DENIED` errors.
+          rpc :SetIamPolicy, ::Google::Iam::V1::SetIamPolicyRequest, ::Google::Iam::V1::Policy
+          # Gets the access control policy for a resource.
+          # Returns an empty policy if the resource exists and does not have a policy
+          # set.
+          rpc :GetIamPolicy, ::Google::Iam::V1::GetIamPolicyRequest, ::Google::Iam::V1::Policy
+          # Returns permissions that a caller has on the specified resource.
+          # If the resource does not exist, this will return an empty set of
+          # permissions, not a `NOT_FOUND` error.
+          #
+          # Note: This operation is designed to be used for building permission-aware
+          # UIs and command-line tools, not for authorization checking. This operation
+          # may "fail open" without warning.
+          rpc :TestIamPermissions, ::Google::Iam::V1::TestIamPermissionsRequest, ::Google::Iam::V1::TestIamPermissionsResponse
+        end
+
+        Stub = Service.rpc_stub_class
+      end
+    end
+  end
+end

data/lib/google/iam/v1/logging/audit_data_pb.rb

@@ -0,0 +1,25 @@
+# Generated by the protocol buffer compiler.  DO NOT EDIT!
+# source: google/iam/v1/logging/audit_data.proto
+
+require 'google/protobuf'
+
+require 'google/api/annotations_pb'
+require 'google/iam/v1/policy_pb'
+
+Google::Protobuf::DescriptorPool.generated_pool.build do
+  add_file("google/iam/v1/logging/audit_data.proto", :syntax => :proto3) do
+    add_message "google.iam.v1.logging.AuditData" do
+      optional :policy_delta, :message, 2, "google.iam.v1.PolicyDelta"
+    end
+  end
+end
+
+module Google
+  module Iam
+    module V1
+      module Logging
+        AuditData = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.iam.v1.logging.AuditData").msgclass
+      end
+    end
+  end
+end

data/lib/google/iam/v1/options_pb.rb

@@ -0,0 +1,20 @@
+# Generated by the protocol buffer compiler.  DO NOT EDIT!
+# source: google/iam/v1/options.proto
+
+require 'google/protobuf'
+
+Google::Protobuf::DescriptorPool.generated_pool.build do
+  add_file("google/iam/v1/options.proto", :syntax => :proto3) do
+    add_message "google.iam.v1.GetPolicyOptions" do
+      optional :requested_policy_version, :int32, 1
+    end
+  end
+end
+
+module Google
+  module Iam
+    module V1
+      GetPolicyOptions = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.iam.v1.GetPolicyOptions").msgclass
+    end
+  end
+end

data/lib/google/iam/v1/policy_pb.rb

@@ -0,0 +1,79 @@
+# Generated by the protocol buffer compiler.  DO NOT EDIT!
+# source: google/iam/v1/policy.proto
+
+require 'google/protobuf'
+
+require 'google/type/expr_pb'
+
+Google::Protobuf::DescriptorPool.generated_pool.build do
+  add_file("google/iam/v1/policy.proto", :syntax => :proto3) do
+    add_message "google.iam.v1.Policy" do
+      optional :version, :int32, 1
+      repeated :bindings, :message, 4, "google.iam.v1.Binding"
+      repeated :audit_configs, :message, 6, "google.iam.v1.AuditConfig"
+      optional :etag, :bytes, 3
+    end
+    add_message "google.iam.v1.Binding" do
+      optional :role, :string, 1
+      repeated :members, :string, 2
+      optional :condition, :message, 3, "google.type.Expr"
+    end
+    add_message "google.iam.v1.AuditConfig" do
+      optional :service, :string, 1
+      repeated :audit_log_configs, :message, 3, "google.iam.v1.AuditLogConfig"
+    end
+    add_message "google.iam.v1.AuditLogConfig" do
+      optional :log_type, :enum, 1, "google.iam.v1.AuditLogConfig.LogType"
+      repeated :exempted_members, :string, 2
+    end
+    add_enum "google.iam.v1.AuditLogConfig.LogType" do
+      value :LOG_TYPE_UNSPECIFIED, 0
+      value :ADMIN_READ, 1
+      value :DATA_WRITE, 2
+      value :DATA_READ, 3
+    end
+    add_message "google.iam.v1.PolicyDelta" do
+      repeated :binding_deltas, :message, 1, "google.iam.v1.BindingDelta"
+      repeated :audit_config_deltas, :message, 2, "google.iam.v1.AuditConfigDelta"
+    end
+    add_message "google.iam.v1.BindingDelta" do
+      optional :action, :enum, 1, "google.iam.v1.BindingDelta.Action"
+      optional :role, :string, 2
+      optional :member, :string, 3
+      optional :condition, :message, 4, "google.type.Expr"
+    end
+    add_enum "google.iam.v1.BindingDelta.Action" do
+      value :ACTION_UNSPECIFIED, 0
+      value :ADD, 1
+      value :REMOVE, 2
+    end
+    add_message "google.iam.v1.AuditConfigDelta" do
+      optional :action, :enum, 1, "google.iam.v1.AuditConfigDelta.Action"
+      optional :service, :string, 2
+      optional :exempted_member, :string, 3
+      optional :log_type, :string, 4
+    end
+    add_enum "google.iam.v1.AuditConfigDelta.Action" do
+      value :ACTION_UNSPECIFIED, 0
+      value :ADD, 1
+      value :REMOVE, 2
+    end
+  end
+end
+
+module Google
+  module Iam
+    module V1
+      Policy = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.iam.v1.Policy").msgclass
+      Binding = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.iam.v1.Binding").msgclass
+      AuditConfig = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.iam.v1.AuditConfig").msgclass
+      AuditLogConfig = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.iam.v1.AuditLogConfig").msgclass
+      AuditLogConfig::LogType = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.iam.v1.AuditLogConfig.LogType").enummodule
+      PolicyDelta = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.iam.v1.PolicyDelta").msgclass
+      BindingDelta = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.iam.v1.BindingDelta").msgclass
+      BindingDelta::Action = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.iam.v1.BindingDelta.Action").enummodule
+      AuditConfigDelta = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.iam.v1.AuditConfigDelta").msgclass
+      AuditConfigDelta::Action = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.iam.v1.AuditConfigDelta.Action").enummodule
+    end
+  end
+end

data/lib/google/iam/v1/version.rb

@@ -0,0 +1,26 @@
+# frozen_string_literal: true
+
+# Copyright 2022 Google LLC
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     https://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+# Auto-generated by gapic-generator-ruby. DO NOT EDIT!
+
+
+module Google
+  module Iam
+    module V1
+      VERSION = "0.1.0"
+    end
+  end
+end

data/lib/google/iam/v1.rb

@@ -0,0 +1,38 @@
+# frozen_string_literal: true
+
+# Copyright 2022 Google LLC
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     https://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+# Auto-generated by gapic-generator-ruby. DO NOT EDIT!
+
+require "google/iam/v1/iam_policy"
+require "google/iam/v1/version"
+
+module Google
+  module Iam
+    ##
+    # To load this package, including all its services, and instantiate a client:
+    #
+    # @example
+    #
+    #     require "google/iam/v1"
+    #     client = ::Google::Iam::V1::IAMPolicy::Client.new
+    #
+    module V1
+    end
+  end
+end
+
+helper_path = ::File.join __dir__, "v1", "_helpers.rb"
+require "google/iam/v1/_helpers" if ::File.file? helper_path

data/lib/google-iam-v1.rb

@@ -0,0 +1,21 @@
+# frozen_string_literal: true
+
+# Copyright 2022 Google LLC
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     https://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+# Auto-generated by gapic-generator-ruby. DO NOT EDIT!
+
+# This gem does not autoload during Bundler.require. To load this gem,
+# issue explicit require statements for the packages desired, e.g.:
+# require "google/iam/v1"

data/proto_docs/README.md

@@ -0,0 +1,4 @@
+# IAM Protocol Buffer Documentation
+
+These files are for the YARD documentation of the generated protobuf files.
+They are not intended to be required or loaded at runtime.

data/proto_docs/google/api/field_behavior.rb

@@ -0,0 +1,71 @@
+# frozen_string_literal: true
+
+# Copyright 2022 Google LLC
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     https://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+# Auto-generated by gapic-generator-ruby. DO NOT EDIT!
+
+
+module Google
+  module Api
+    # An indicator of the behavior of a given field (for example, that a field
+    # is required in requests, or given as output but ignored as input).
+    # This **does not** change the behavior in protocol buffers itself; it only
+    # denotes the behavior and may affect how API tooling handles the field.
+    #
+    # Note: This enum **may** receive new values in the future.
+    module FieldBehavior
+      # Conventional default for enums. Do not use this.
+      FIELD_BEHAVIOR_UNSPECIFIED = 0
+
+      # Specifically denotes a field as optional.
+      # While all fields in protocol buffers are optional, this may be specified
+      # for emphasis if appropriate.
+      OPTIONAL = 1
+
+      # Denotes a field as required.
+      # This indicates that the field **must** be provided as part of the request,
+      # and failure to do so will cause an error (usually `INVALID_ARGUMENT`).
+      REQUIRED = 2
+
+      # Denotes a field as output only.
+      # This indicates that the field is provided in responses, but including the
+      # field in a request does nothing (the server *must* ignore it and
+      # *must not* throw an error as a result of the field's presence).
+      OUTPUT_ONLY = 3
+
+      # Denotes a field as input only.
+      # This indicates that the field is provided in requests, and the
+      # corresponding field is not included in output.
+      INPUT_ONLY = 4
+
+      # Denotes a field as immutable.
+      # This indicates that the field may be set once in a request to create a
+      # resource, but may not be changed thereafter.
+      IMMUTABLE = 5
+
+      # Denotes that a (repeated) field is an unordered list.
+      # This indicates that the service may provide the elements of the list
+      # in any arbitrary  order, rather than the order the user originally
+      # provided. Additionally, the list's order may or may not be stable.
+      UNORDERED_LIST = 6
+
+      # Denotes that this field returns a non-empty default value if not set.
+      # This indicates that if the user provides the empty value in a request,
+      # a non-empty value will be returned. The user will not be aware of what
+      # non-empty value to expect.
+      NON_EMPTY_DEFAULT = 7
+    end
+  end
+end