google-identity-access_context_manager-v1 0.1.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +7 -0
- data/.yardopts +12 -0
- data/AUTHENTICATION.md +167 -0
- data/LICENSE.md +201 -0
- data/README.md +139 -0
- data/lib/google/identity/access_context_manager/v1/access_context_manager/client.rb +2358 -0
- data/lib/google/identity/access_context_manager/v1/access_context_manager/credentials.rb +47 -0
- data/lib/google/identity/access_context_manager/v1/access_context_manager/operations.rb +664 -0
- data/lib/google/identity/access_context_manager/v1/access_context_manager/paths.rb +112 -0
- data/lib/google/identity/access_context_manager/v1/access_context_manager.rb +60 -0
- data/lib/google/identity/access_context_manager/v1/version.rb +28 -0
- data/lib/google/identity/access_context_manager/v1.rb +38 -0
- data/lib/google/identity/accesscontextmanager/type/device_resources_pb.rb +43 -0
- data/lib/google/identity/accesscontextmanager/v1/access_context_manager_pb.rb +182 -0
- data/lib/google/identity/accesscontextmanager/v1/access_context_manager_services_pb.rb +224 -0
- data/lib/google/identity/accesscontextmanager/v1/access_level_pb.rb +73 -0
- data/lib/google/identity/accesscontextmanager/v1/access_policy_pb.rb +30 -0
- data/lib/google/identity/accesscontextmanager/v1/gcp_user_access_binding_pb.rb +27 -0
- data/lib/google/identity/accesscontextmanager/v1/service_perimeter_pb.rb +109 -0
- data/lib/google-identity-access_context_manager-v1.rb +21 -0
- data/proto_docs/README.md +4 -0
- data/proto_docs/google/api/field_behavior.rb +71 -0
- data/proto_docs/google/api/resource.rb +283 -0
- data/proto_docs/google/identity/accesscontextmanager/type/device_resources.rb +84 -0
- data/proto_docs/google/identity/accesscontextmanager/v1/access_context_manager.rb +539 -0
- data/proto_docs/google/identity/accesscontextmanager/v1/access_level.rb +197 -0
- data/proto_docs/google/identity/accesscontextmanager/v1/access_policy.rb +60 -0
- data/proto_docs/google/identity/accesscontextmanager/v1/gcp_user_access_binding.rb +55 -0
- data/proto_docs/google/identity/accesscontextmanager/v1/service_perimeter.rb +484 -0
- data/proto_docs/google/longrunning/operations.rb +164 -0
- data/proto_docs/google/protobuf/any.rb +141 -0
- data/proto_docs/google/protobuf/duration.rb +98 -0
- data/proto_docs/google/protobuf/empty.rb +36 -0
- data/proto_docs/google/protobuf/field_mask.rb +229 -0
- data/proto_docs/google/protobuf/timestamp.rb +129 -0
- data/proto_docs/google/rpc/status.rb +46 -0
- data/proto_docs/google/type/expr.rb +75 -0
- metadata +228 -0
@@ -0,0 +1,539 @@
|
|
1
|
+
# frozen_string_literal: true
|
2
|
+
|
3
|
+
# Copyright 2021 Google LLC
|
4
|
+
#
|
5
|
+
# Licensed under the Apache License, Version 2.0 (the "License");
|
6
|
+
# you may not use this file except in compliance with the License.
|
7
|
+
# You may obtain a copy of the License at
|
8
|
+
#
|
9
|
+
# https://www.apache.org/licenses/LICENSE-2.0
|
10
|
+
#
|
11
|
+
# Unless required by applicable law or agreed to in writing, software
|
12
|
+
# distributed under the License is distributed on an "AS IS" BASIS,
|
13
|
+
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
14
|
+
# See the License for the specific language governing permissions and
|
15
|
+
# limitations under the License.
|
16
|
+
|
17
|
+
# Auto-generated by gapic-generator-ruby. DO NOT EDIT!
|
18
|
+
|
19
|
+
|
20
|
+
module Google
|
21
|
+
module Identity
|
22
|
+
module AccessContextManager
|
23
|
+
module V1
|
24
|
+
# A request to list all `AccessPolicies` for a container.
|
25
|
+
# @!attribute [rw] parent
|
26
|
+
# @return [::String]
|
27
|
+
# Required. Resource name for the container to list AccessPolicy instances
|
28
|
+
# from.
|
29
|
+
#
|
30
|
+
# Format:
|
31
|
+
# `organizations/{org_id}`
|
32
|
+
# @!attribute [rw] page_size
|
33
|
+
# @return [::Integer]
|
34
|
+
# Number of AccessPolicy instances to include in the list. Default 100.
|
35
|
+
# @!attribute [rw] page_token
|
36
|
+
# @return [::String]
|
37
|
+
# Next page token for the next batch of AccessPolicy instances. Defaults to
|
38
|
+
# the first page of results.
|
39
|
+
class ListAccessPoliciesRequest
|
40
|
+
include ::Google::Protobuf::MessageExts
|
41
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
42
|
+
end
|
43
|
+
|
44
|
+
# A response to `ListAccessPoliciesRequest`.
|
45
|
+
# @!attribute [rw] access_policies
|
46
|
+
# @return [::Array<::Google::Identity::AccessContextManager::V1::AccessPolicy>]
|
47
|
+
# List of the AccessPolicy instances.
|
48
|
+
# @!attribute [rw] next_page_token
|
49
|
+
# @return [::String]
|
50
|
+
# The pagination token to retrieve the next page of results. If the value is
|
51
|
+
# empty, no further results remain.
|
52
|
+
class ListAccessPoliciesResponse
|
53
|
+
include ::Google::Protobuf::MessageExts
|
54
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
55
|
+
end
|
56
|
+
|
57
|
+
# A request to get a particular `AccessPolicy`.
|
58
|
+
# @!attribute [rw] name
|
59
|
+
# @return [::String]
|
60
|
+
# Required. Resource name for the access policy to get.
|
61
|
+
#
|
62
|
+
# Format `accessPolicies/{policy_id}`
|
63
|
+
class GetAccessPolicyRequest
|
64
|
+
include ::Google::Protobuf::MessageExts
|
65
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
66
|
+
end
|
67
|
+
|
68
|
+
# A request to update an `AccessPolicy`.
|
69
|
+
# @!attribute [rw] policy
|
70
|
+
# @return [::Google::Identity::AccessContextManager::V1::AccessPolicy]
|
71
|
+
# Required. The updated AccessPolicy.
|
72
|
+
# @!attribute [rw] update_mask
|
73
|
+
# @return [::Google::Protobuf::FieldMask]
|
74
|
+
# Required. Mask to control which fields get updated. Must be non-empty.
|
75
|
+
class UpdateAccessPolicyRequest
|
76
|
+
include ::Google::Protobuf::MessageExts
|
77
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
78
|
+
end
|
79
|
+
|
80
|
+
# A request to delete an `AccessPolicy`.
|
81
|
+
# @!attribute [rw] name
|
82
|
+
# @return [::String]
|
83
|
+
# Required. Resource name for the access policy to delete.
|
84
|
+
#
|
85
|
+
# Format `accessPolicies/{policy_id}`
|
86
|
+
class DeleteAccessPolicyRequest
|
87
|
+
include ::Google::Protobuf::MessageExts
|
88
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
89
|
+
end
|
90
|
+
|
91
|
+
# A request to list all `AccessLevels` in an `AccessPolicy`.
|
92
|
+
# @!attribute [rw] parent
|
93
|
+
# @return [::String]
|
94
|
+
# Required. Resource name for the access policy to list [Access Levels]
|
95
|
+
# [google.identity.accesscontextmanager.v1.AccessLevel] from.
|
96
|
+
#
|
97
|
+
# Format:
|
98
|
+
# `accessPolicies/{policy_id}`
|
99
|
+
# @!attribute [rw] page_size
|
100
|
+
# @return [::Integer]
|
101
|
+
# Number of [Access Levels]
|
102
|
+
# [google.identity.accesscontextmanager.v1.AccessLevel] to include in
|
103
|
+
# the list. Default 100.
|
104
|
+
# @!attribute [rw] page_token
|
105
|
+
# @return [::String]
|
106
|
+
# Next page token for the next batch of [Access Level]
|
107
|
+
# [google.identity.accesscontextmanager.v1.AccessLevel] instances.
|
108
|
+
# Defaults to the first page of results.
|
109
|
+
# @!attribute [rw] access_level_format
|
110
|
+
# @return [::Google::Identity::AccessContextManager::V1::LevelFormat]
|
111
|
+
# Whether to return `BasicLevels` in the Cloud Common Expression language, as
|
112
|
+
# `CustomLevels`, rather than as `BasicLevels`. Defaults to returning
|
113
|
+
# `AccessLevels` in the format they were defined.
|
114
|
+
class ListAccessLevelsRequest
|
115
|
+
include ::Google::Protobuf::MessageExts
|
116
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
117
|
+
end
|
118
|
+
|
119
|
+
# A response to `ListAccessLevelsRequest`.
|
120
|
+
# @!attribute [rw] access_levels
|
121
|
+
# @return [::Array<::Google::Identity::AccessContextManager::V1::AccessLevel>]
|
122
|
+
# List of the [Access Level]
|
123
|
+
# [google.identity.accesscontextmanager.v1.AccessLevel] instances.
|
124
|
+
# @!attribute [rw] next_page_token
|
125
|
+
# @return [::String]
|
126
|
+
# The pagination token to retrieve the next page of results. If the value is
|
127
|
+
# empty, no further results remain.
|
128
|
+
class ListAccessLevelsResponse
|
129
|
+
include ::Google::Protobuf::MessageExts
|
130
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
131
|
+
end
|
132
|
+
|
133
|
+
# A request to get a particular `AccessLevel`.
|
134
|
+
# @!attribute [rw] name
|
135
|
+
# @return [::String]
|
136
|
+
# Required. Resource name for the [Access Level]
|
137
|
+
# [google.identity.accesscontextmanager.v1.AccessLevel].
|
138
|
+
#
|
139
|
+
# Format:
|
140
|
+
# `accessPolicies/{policy_id}/accessLevels/{access_level_id}`
|
141
|
+
# @!attribute [rw] access_level_format
|
142
|
+
# @return [::Google::Identity::AccessContextManager::V1::LevelFormat]
|
143
|
+
# Whether to return `BasicLevels` in the Cloud Common Expression
|
144
|
+
# Language rather than as `BasicLevels`. Defaults to AS_DEFINED, where
|
145
|
+
# [Access Levels] [google.identity.accesscontextmanager.v1.AccessLevel]
|
146
|
+
# are returned as `BasicLevels` or `CustomLevels` based on how they were
|
147
|
+
# created. If set to CEL, all [Access Levels]
|
148
|
+
# [google.identity.accesscontextmanager.v1.AccessLevel] are returned as
|
149
|
+
# `CustomLevels`. In the CEL case, `BasicLevels` are translated to equivalent
|
150
|
+
# `CustomLevels`.
|
151
|
+
class GetAccessLevelRequest
|
152
|
+
include ::Google::Protobuf::MessageExts
|
153
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
154
|
+
end
|
155
|
+
|
156
|
+
# A request to create an `AccessLevel`.
|
157
|
+
# @!attribute [rw] parent
|
158
|
+
# @return [::String]
|
159
|
+
# Required. Resource name for the access policy which owns this [Access
|
160
|
+
# Level] [google.identity.accesscontextmanager.v1.AccessLevel].
|
161
|
+
#
|
162
|
+
# Format: `accessPolicies/{policy_id}`
|
163
|
+
# @!attribute [rw] access_level
|
164
|
+
# @return [::Google::Identity::AccessContextManager::V1::AccessLevel]
|
165
|
+
# Required. The [Access Level]
|
166
|
+
# [google.identity.accesscontextmanager.v1.AccessLevel] to create.
|
167
|
+
# Syntactic correctness of the [Access Level]
|
168
|
+
# [google.identity.accesscontextmanager.v1.AccessLevel] is a
|
169
|
+
# precondition for creation.
|
170
|
+
class CreateAccessLevelRequest
|
171
|
+
include ::Google::Protobuf::MessageExts
|
172
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
173
|
+
end
|
174
|
+
|
175
|
+
# A request to update an `AccessLevel`.
|
176
|
+
# @!attribute [rw] access_level
|
177
|
+
# @return [::Google::Identity::AccessContextManager::V1::AccessLevel]
|
178
|
+
# Required. The updated [Access Level]
|
179
|
+
# [google.identity.accesscontextmanager.v1.AccessLevel]. Syntactic
|
180
|
+
# correctness of the [Access Level]
|
181
|
+
# [google.identity.accesscontextmanager.v1.AccessLevel] is a
|
182
|
+
# precondition for creation.
|
183
|
+
# @!attribute [rw] update_mask
|
184
|
+
# @return [::Google::Protobuf::FieldMask]
|
185
|
+
# Required. Mask to control which fields get updated. Must be non-empty.
|
186
|
+
class UpdateAccessLevelRequest
|
187
|
+
include ::Google::Protobuf::MessageExts
|
188
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
189
|
+
end
|
190
|
+
|
191
|
+
# A request to delete an `AccessLevel`.
|
192
|
+
# @!attribute [rw] name
|
193
|
+
# @return [::String]
|
194
|
+
# Required. Resource name for the [Access Level]
|
195
|
+
# [google.identity.accesscontextmanager.v1.AccessLevel].
|
196
|
+
#
|
197
|
+
# Format:
|
198
|
+
# `accessPolicies/{policy_id}/accessLevels/{access_level_id}`
|
199
|
+
class DeleteAccessLevelRequest
|
200
|
+
include ::Google::Protobuf::MessageExts
|
201
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
202
|
+
end
|
203
|
+
|
204
|
+
# A request to replace all existing Access Levels in an Access Policy with
|
205
|
+
# the Access Levels provided. This is done atomically.
|
206
|
+
# @!attribute [rw] parent
|
207
|
+
# @return [::String]
|
208
|
+
# Required. Resource name for the access policy which owns these
|
209
|
+
# [Access Levels]
|
210
|
+
# [google.identity.accesscontextmanager.v1.AccessLevel].
|
211
|
+
#
|
212
|
+
# Format: `accessPolicies/{policy_id}`
|
213
|
+
# @!attribute [rw] access_levels
|
214
|
+
# @return [::Array<::Google::Identity::AccessContextManager::V1::AccessLevel>]
|
215
|
+
# Required. The desired [Access Levels]
|
216
|
+
# [google.identity.accesscontextmanager.v1.AccessLevel] that should
|
217
|
+
# replace all existing [Access Levels]
|
218
|
+
# [google.identity.accesscontextmanager.v1.AccessLevel] in the
|
219
|
+
# [Access Policy]
|
220
|
+
# [google.identity.accesscontextmanager.v1.AccessPolicy].
|
221
|
+
# @!attribute [rw] etag
|
222
|
+
# @return [::String]
|
223
|
+
# Optional. The etag for the version of the [Access Policy]
|
224
|
+
# [google.identity.accesscontextmanager.v1.AccessPolicy] that this
|
225
|
+
# replace operation is to be performed on. If, at the time of replace, the
|
226
|
+
# etag for the Access Policy stored in Access Context Manager is different
|
227
|
+
# from the specified etag, then the replace operation will not be performed
|
228
|
+
# and the call will fail. This field is not required. If etag is not
|
229
|
+
# provided, the operation will be performed as if a valid etag is provided.
|
230
|
+
class ReplaceAccessLevelsRequest
|
231
|
+
include ::Google::Protobuf::MessageExts
|
232
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
233
|
+
end
|
234
|
+
|
235
|
+
# A response to ReplaceAccessLevelsRequest. This will be put inside of
|
236
|
+
# Operation.response field.
|
237
|
+
# @!attribute [rw] access_levels
|
238
|
+
# @return [::Array<::Google::Identity::AccessContextManager::V1::AccessLevel>]
|
239
|
+
# List of the [Access Level]
|
240
|
+
# [google.identity.accesscontextmanager.v1.AccessLevel] instances.
|
241
|
+
class ReplaceAccessLevelsResponse
|
242
|
+
include ::Google::Protobuf::MessageExts
|
243
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
244
|
+
end
|
245
|
+
|
246
|
+
# A request to list all `ServicePerimeters` in an `AccessPolicy`.
|
247
|
+
# @!attribute [rw] parent
|
248
|
+
# @return [::String]
|
249
|
+
# Required. Resource name for the access policy to list [Service Perimeters]
|
250
|
+
# [google.identity.accesscontextmanager.v1.ServicePerimeter] from.
|
251
|
+
#
|
252
|
+
# Format:
|
253
|
+
# `accessPolicies/{policy_id}`
|
254
|
+
# @!attribute [rw] page_size
|
255
|
+
# @return [::Integer]
|
256
|
+
# Number of [Service Perimeters]
|
257
|
+
# [google.identity.accesscontextmanager.v1.ServicePerimeter] to include
|
258
|
+
# in the list. Default 100.
|
259
|
+
# @!attribute [rw] page_token
|
260
|
+
# @return [::String]
|
261
|
+
# Next page token for the next batch of [Service Perimeter]
|
262
|
+
# [google.identity.accesscontextmanager.v1.ServicePerimeter] instances.
|
263
|
+
# Defaults to the first page of results.
|
264
|
+
class ListServicePerimetersRequest
|
265
|
+
include ::Google::Protobuf::MessageExts
|
266
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
267
|
+
end
|
268
|
+
|
269
|
+
# A response to `ListServicePerimetersRequest`.
|
270
|
+
# @!attribute [rw] service_perimeters
|
271
|
+
# @return [::Array<::Google::Identity::AccessContextManager::V1::ServicePerimeter>]
|
272
|
+
# List of the [Service Perimeter]
|
273
|
+
# [google.identity.accesscontextmanager.v1.ServicePerimeter] instances.
|
274
|
+
# @!attribute [rw] next_page_token
|
275
|
+
# @return [::String]
|
276
|
+
# The pagination token to retrieve the next page of results. If the value is
|
277
|
+
# empty, no further results remain.
|
278
|
+
class ListServicePerimetersResponse
|
279
|
+
include ::Google::Protobuf::MessageExts
|
280
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
281
|
+
end
|
282
|
+
|
283
|
+
# A request to get a particular `ServicePerimeter`.
|
284
|
+
# @!attribute [rw] name
|
285
|
+
# @return [::String]
|
286
|
+
# Required. Resource name for the [Service Perimeter]
|
287
|
+
# [google.identity.accesscontextmanager.v1.ServicePerimeter].
|
288
|
+
#
|
289
|
+
# Format:
|
290
|
+
# `accessPolicies/{policy_id}/servicePerimeters/{service_perimeters_id}`
|
291
|
+
class GetServicePerimeterRequest
|
292
|
+
include ::Google::Protobuf::MessageExts
|
293
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
294
|
+
end
|
295
|
+
|
296
|
+
# A request to create a `ServicePerimeter`.
|
297
|
+
# @!attribute [rw] parent
|
298
|
+
# @return [::String]
|
299
|
+
# Required. Resource name for the access policy which owns this [Service
|
300
|
+
# Perimeter] [google.identity.accesscontextmanager.v1.ServicePerimeter].
|
301
|
+
#
|
302
|
+
# Format: `accessPolicies/{policy_id}`
|
303
|
+
# @!attribute [rw] service_perimeter
|
304
|
+
# @return [::Google::Identity::AccessContextManager::V1::ServicePerimeter]
|
305
|
+
# Required. The [Service Perimeter]
|
306
|
+
# [google.identity.accesscontextmanager.v1.ServicePerimeter] to create.
|
307
|
+
# Syntactic correctness of the [Service Perimeter]
|
308
|
+
# [google.identity.accesscontextmanager.v1.ServicePerimeter] is a
|
309
|
+
# precondition for creation.
|
310
|
+
class CreateServicePerimeterRequest
|
311
|
+
include ::Google::Protobuf::MessageExts
|
312
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
313
|
+
end
|
314
|
+
|
315
|
+
# A request to update a `ServicePerimeter`.
|
316
|
+
# @!attribute [rw] service_perimeter
|
317
|
+
# @return [::Google::Identity::AccessContextManager::V1::ServicePerimeter]
|
318
|
+
# Required. The updated `ServicePerimeter`. Syntactic correctness of the
|
319
|
+
# `ServicePerimeter` is a precondition for creation.
|
320
|
+
# @!attribute [rw] update_mask
|
321
|
+
# @return [::Google::Protobuf::FieldMask]
|
322
|
+
# Required. Mask to control which fields get updated. Must be non-empty.
|
323
|
+
class UpdateServicePerimeterRequest
|
324
|
+
include ::Google::Protobuf::MessageExts
|
325
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
326
|
+
end
|
327
|
+
|
328
|
+
# A request to delete a `ServicePerimeter`.
|
329
|
+
# @!attribute [rw] name
|
330
|
+
# @return [::String]
|
331
|
+
# Required. Resource name for the [Service Perimeter]
|
332
|
+
# [google.identity.accesscontextmanager.v1.ServicePerimeter].
|
333
|
+
#
|
334
|
+
# Format:
|
335
|
+
# `accessPolicies/{policy_id}/servicePerimeters/{service_perimeter_id}`
|
336
|
+
class DeleteServicePerimeterRequest
|
337
|
+
include ::Google::Protobuf::MessageExts
|
338
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
339
|
+
end
|
340
|
+
|
341
|
+
# A request to replace all existing Service Perimeters in an Access Policy
|
342
|
+
# with the Service Perimeters provided. This is done atomically.
|
343
|
+
# @!attribute [rw] parent
|
344
|
+
# @return [::String]
|
345
|
+
# Required. Resource name for the access policy which owns these
|
346
|
+
# [Service Perimeters]
|
347
|
+
# [google.identity.accesscontextmanager.v1.ServicePerimeter].
|
348
|
+
#
|
349
|
+
# Format: `accessPolicies/{policy_id}`
|
350
|
+
# @!attribute [rw] service_perimeters
|
351
|
+
# @return [::Array<::Google::Identity::AccessContextManager::V1::ServicePerimeter>]
|
352
|
+
# Required. The desired [Service Perimeters]
|
353
|
+
# [google.identity.accesscontextmanager.v1.ServicePerimeter] that should
|
354
|
+
# replace all existing [Service Perimeters]
|
355
|
+
# [google.identity.accesscontextmanager.v1.ServicePerimeter] in the
|
356
|
+
# [Access Policy]
|
357
|
+
# [google.identity.accesscontextmanager.v1.AccessPolicy].
|
358
|
+
# @!attribute [rw] etag
|
359
|
+
# @return [::String]
|
360
|
+
# Optional. The etag for the version of the [Access Policy]
|
361
|
+
# [google.identity.accesscontextmanager.v1.AccessPolicy] that this
|
362
|
+
# replace operation is to be performed on. If, at the time of replace, the
|
363
|
+
# etag for the Access Policy stored in Access Context Manager is different
|
364
|
+
# from the specified etag, then the replace operation will not be performed
|
365
|
+
# and the call will fail. This field is not required. If etag is not
|
366
|
+
# provided, the operation will be performed as if a valid etag is provided.
|
367
|
+
class ReplaceServicePerimetersRequest
|
368
|
+
include ::Google::Protobuf::MessageExts
|
369
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
370
|
+
end
|
371
|
+
|
372
|
+
# A response to ReplaceServicePerimetersRequest. This will be put inside of
|
373
|
+
# Operation.response field.
|
374
|
+
# @!attribute [rw] service_perimeters
|
375
|
+
# @return [::Array<::Google::Identity::AccessContextManager::V1::ServicePerimeter>]
|
376
|
+
# List of the [Service Perimeter]
|
377
|
+
# [google.identity.accesscontextmanager.v1.ServicePerimeter] instances.
|
378
|
+
class ReplaceServicePerimetersResponse
|
379
|
+
include ::Google::Protobuf::MessageExts
|
380
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
381
|
+
end
|
382
|
+
|
383
|
+
# A request to commit dry-run specs in all [Service Perimeters]
|
384
|
+
# [google.identity.accesscontextmanager.v1.ServicePerimeter] belonging to
|
385
|
+
# an {::Google::Identity::AccessContextManager::V1::AccessPolicy Access Policy}.
|
386
|
+
# @!attribute [rw] parent
|
387
|
+
# @return [::String]
|
388
|
+
# Required. Resource name for the parent [Access Policy]
|
389
|
+
# [google.identity.accesscontextmanager.v1.AccessPolicy] which owns all
|
390
|
+
# [Service Perimeters]
|
391
|
+
# [google.identity.accesscontextmanager.v1.ServicePerimeter] in scope for
|
392
|
+
# the commit operation.
|
393
|
+
#
|
394
|
+
# Format: `accessPolicies/{policy_id}`
|
395
|
+
# @!attribute [rw] etag
|
396
|
+
# @return [::String]
|
397
|
+
# Optional. The etag for the version of the [Access Policy]
|
398
|
+
# [google.identity.accesscontextmanager.v1alpha.AccessPolicy] that this
|
399
|
+
# commit operation is to be performed on. If, at the time of commit, the
|
400
|
+
# etag for the Access Policy stored in Access Context Manager is different
|
401
|
+
# from the specified etag, then the commit operation will not be performed
|
402
|
+
# and the call will fail. This field is not required. If etag is not
|
403
|
+
# provided, the operation will be performed as if a valid etag is provided.
|
404
|
+
class CommitServicePerimetersRequest
|
405
|
+
include ::Google::Protobuf::MessageExts
|
406
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
407
|
+
end
|
408
|
+
|
409
|
+
# A response to CommitServicePerimetersRequest. This will be put inside of
|
410
|
+
# Operation.response field.
|
411
|
+
# @!attribute [rw] service_perimeters
|
412
|
+
# @return [::Array<::Google::Identity::AccessContextManager::V1::ServicePerimeter>]
|
413
|
+
# List of all the [Service Perimeter]
|
414
|
+
# [google.identity.accesscontextmanager.v1.ServicePerimeter] instances in
|
415
|
+
# the [Access Policy]
|
416
|
+
# [google.identity.accesscontextmanager.v1.AccessPolicy].
|
417
|
+
class CommitServicePerimetersResponse
|
418
|
+
include ::Google::Protobuf::MessageExts
|
419
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
420
|
+
end
|
421
|
+
|
422
|
+
# Request of [ListGcpUserAccessBindings]
|
423
|
+
# [google.identity.accesscontextmanager.v1.AccessContextManager.ListGcpUserAccessBindings].
|
424
|
+
# @!attribute [rw] parent
|
425
|
+
# @return [::String]
|
426
|
+
# Required. Example: "organizations/256"
|
427
|
+
# @!attribute [rw] page_size
|
428
|
+
# @return [::Integer]
|
429
|
+
# Optional. Maximum number of items to return. The server may return fewer items.
|
430
|
+
# If left blank, the server may return any number of items.
|
431
|
+
# @!attribute [rw] page_token
|
432
|
+
# @return [::String]
|
433
|
+
# Optional. If left blank, returns the first page. To enumerate all items, use the
|
434
|
+
# [next_page_token]
|
435
|
+
# [google.identity.accesscontextmanager.v1.ListGcpUserAccessBindingsResponse.next_page_token]
|
436
|
+
# from your previous list operation.
|
437
|
+
class ListGcpUserAccessBindingsRequest
|
438
|
+
include ::Google::Protobuf::MessageExts
|
439
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
440
|
+
end
|
441
|
+
|
442
|
+
# Response of [ListGcpUserAccessBindings]
|
443
|
+
# [google.identity.accesscontextmanager.v1.AccessContextManager.ListGcpUserAccessBindings].
|
444
|
+
# @!attribute [rw] gcp_user_access_bindings
|
445
|
+
# @return [::Array<::Google::Identity::AccessContextManager::V1::GcpUserAccessBinding>]
|
446
|
+
# [GcpUserAccessBinding]
|
447
|
+
# [google.identity.accesscontextmanager.v1.GcpUserAccessBinding]
|
448
|
+
# @!attribute [rw] next_page_token
|
449
|
+
# @return [::String]
|
450
|
+
# Token to get the next page of items. If blank, there are no more items.
|
451
|
+
class ListGcpUserAccessBindingsResponse
|
452
|
+
include ::Google::Protobuf::MessageExts
|
453
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
454
|
+
end
|
455
|
+
|
456
|
+
# Request of [GetGcpUserAccessBinding]
|
457
|
+
# [google.identity.accesscontextmanager.v1.AccessContextManager.GetGcpUserAccessBinding].
|
458
|
+
# @!attribute [rw] name
|
459
|
+
# @return [::String]
|
460
|
+
# Required. Example: "organizations/256/gcpUserAccessBindings/b3-BhcX_Ud5N"
|
461
|
+
class GetGcpUserAccessBindingRequest
|
462
|
+
include ::Google::Protobuf::MessageExts
|
463
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
464
|
+
end
|
465
|
+
|
466
|
+
# Request of [CreateGcpUserAccessBinding]
|
467
|
+
# [google.identity.accesscontextmanager.v1.AccessContextManager.CreateGcpUserAccessBinding].
|
468
|
+
# @!attribute [rw] parent
|
469
|
+
# @return [::String]
|
470
|
+
# Required. Example: "organizations/256"
|
471
|
+
# @!attribute [rw] gcp_user_access_binding
|
472
|
+
# @return [::Google::Identity::AccessContextManager::V1::GcpUserAccessBinding]
|
473
|
+
# Required. [GcpUserAccessBinding]
|
474
|
+
# [google.identity.accesscontextmanager.v1.GcpUserAccessBinding]
|
475
|
+
class CreateGcpUserAccessBindingRequest
|
476
|
+
include ::Google::Protobuf::MessageExts
|
477
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
478
|
+
end
|
479
|
+
|
480
|
+
# Request of [UpdateGcpUserAccessBinding]
|
481
|
+
# [google.identity.accesscontextmanager.v1.AccessContextManager.UpdateGcpUserAccessBinding].
|
482
|
+
# @!attribute [rw] gcp_user_access_binding
|
483
|
+
# @return [::Google::Identity::AccessContextManager::V1::GcpUserAccessBinding]
|
484
|
+
# Required. [GcpUserAccessBinding]
|
485
|
+
# [google.identity.accesscontextmanager.v1.GcpUserAccessBinding]
|
486
|
+
# @!attribute [rw] update_mask
|
487
|
+
# @return [::Google::Protobuf::FieldMask]
|
488
|
+
# Required. Only the fields specified in this mask are updated. Because name and
|
489
|
+
# group_key cannot be changed, update_mask is required and must always be:
|
490
|
+
#
|
491
|
+
# update_mask {
|
492
|
+
# paths: "access_levels"
|
493
|
+
# }
|
494
|
+
class UpdateGcpUserAccessBindingRequest
|
495
|
+
include ::Google::Protobuf::MessageExts
|
496
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
497
|
+
end
|
498
|
+
|
499
|
+
# Request of [DeleteGcpUserAccessBinding]
|
500
|
+
# [google.identity.accesscontextmanager.v1.AccessContextManager.DeleteGcpUserAccessBinding].
|
501
|
+
# @!attribute [rw] name
|
502
|
+
# @return [::String]
|
503
|
+
# Required. Example: "organizations/256/gcpUserAccessBindings/b3-BhcX_Ud5N"
|
504
|
+
class DeleteGcpUserAccessBindingRequest
|
505
|
+
include ::Google::Protobuf::MessageExts
|
506
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
507
|
+
end
|
508
|
+
|
509
|
+
# Currently, a completed operation means nothing. In the future, this metadata
|
510
|
+
# and a completed operation may indicate that the binding has taken effect and
|
511
|
+
# is affecting access decisions for all users.
|
512
|
+
class GcpUserAccessBindingOperationMetadata
|
513
|
+
include ::Google::Protobuf::MessageExts
|
514
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
515
|
+
end
|
516
|
+
|
517
|
+
# Metadata of Access Context Manager's Long Running Operations.
|
518
|
+
class AccessContextManagerOperationMetadata
|
519
|
+
include ::Google::Protobuf::MessageExts
|
520
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
521
|
+
end
|
522
|
+
|
523
|
+
# The format used in an `AccessLevel`.
|
524
|
+
module LevelFormat
|
525
|
+
# The format was not specified.
|
526
|
+
LEVEL_FORMAT_UNSPECIFIED = 0
|
527
|
+
|
528
|
+
# Uses the format the resource was defined in. BasicLevels are returned as
|
529
|
+
# BasicLevels, CustomLevels are returned as CustomLevels.
|
530
|
+
AS_DEFINED = 1
|
531
|
+
|
532
|
+
# Use Cloud Common Expression Language when returning the resource. Both
|
533
|
+
# BasicLevels and CustomLevels are returned as CustomLevels.
|
534
|
+
CEL = 2
|
535
|
+
end
|
536
|
+
end
|
537
|
+
end
|
538
|
+
end
|
539
|
+
end
|