generated/google/apis/cloudresourcemanager_v1beta1/classes.rb in google-api-client-0.42.1 vs generated/google/apis/cloudresourcemanager_v1beta1/classes.rb in google-api-client-0.42.2
- old
+ new
@@ -26,12 +26,12 @@
class Ancestor
include Google::Apis::Core::Hashable
# A container to reference an id for any resource type. A `resource` in Google
# Cloud Platform is a generic term for something you (a developer) may want to
- # interact with through one of our API's. Some examples are an App Engine app,
- # a Compute Engine instance, a Cloud SQL database, and so on.
+ # interact with through one of our API's. Some examples are an App Engine app, a
+ # Compute Engine instance, a Cloud SQL database, and so on.
# Corresponds to the JSON property `resourceId`
# @return [Google::Apis::CloudresourcemanagerV1beta1::ResourceId]
attr_accessor :resource_id
def initialize(**args)
@@ -42,68 +42,36 @@
def update!(**args)
@resource_id = args[:resource_id] if args.key?(:resource_id)
end
end
- # Specifies the audit configuration for a service.
- # The configuration determines which permission types are logged, and what
- # identities, if any, are exempted from logging.
- # An AuditConfig must have one or more AuditLogConfigs.
- # If there are AuditConfigs for both `allServices` and a specific service,
- # the union of the two AuditConfigs is used for that service: the log_types
- # specified in each AuditConfig are enabled, and the exempted_members in each
- # AuditLogConfig are exempted.
- # Example Policy with multiple AuditConfigs:
- # `
- # "audit_configs": [
- # `
- # "service": "allServices",
- # "audit_log_configs": [
- # `
- # "log_type": "DATA_READ",
- # "exempted_members": [
- # "user:jose@example.com"
- # ]
- # `,
- # `
- # "log_type": "DATA_WRITE"
- # `,
- # `
- # "log_type": "ADMIN_READ"
- # `
- # ]
- # `,
- # `
- # "service": "sampleservice.googleapis.com",
- # "audit_log_configs": [
- # `
- # "log_type": "DATA_READ"
- # `,
- # `
- # "log_type": "DATA_WRITE",
- # "exempted_members": [
- # "user:aliya@example.com"
- # ]
- # `
- # ]
- # `
- # ]
- # `
- # For sampleservice, this policy enables DATA_READ, DATA_WRITE and ADMIN_READ
- # logging. It also exempts jose@example.com from DATA_READ logging, and
- # aliya@example.com from DATA_WRITE logging.
+ # Specifies the audit configuration for a service. The configuration determines
+ # which permission types are logged, and what identities, if any, are exempted
+ # from logging. An AuditConfig must have one or more AuditLogConfigs. If there
+ # are AuditConfigs for both `allServices` and a specific service, the union of
+ # the two AuditConfigs is used for that service: the log_types specified in each
+ # AuditConfig are enabled, and the exempted_members in each AuditLogConfig are
+ # exempted. Example Policy with multiple AuditConfigs: ` "audit_configs": [ ` "
+ # service": "allServices", "audit_log_configs": [ ` "log_type": "DATA_READ", "
+ # exempted_members": [ "user:jose@example.com" ] `, ` "log_type": "DATA_WRITE" `,
+ # ` "log_type": "ADMIN_READ" ` ] `, ` "service": "sampleservice.googleapis.com",
+ # "audit_log_configs": [ ` "log_type": "DATA_READ" `, ` "log_type": "DATA_WRITE"
+ # , "exempted_members": [ "user:aliya@example.com" ] ` ] ` ] ` For sampleservice,
+ # this policy enables DATA_READ, DATA_WRITE and ADMIN_READ logging. It also
+ # exempts jose@example.com from DATA_READ logging, and aliya@example.com from
+ # DATA_WRITE logging.
class AuditConfig
include Google::Apis::Core::Hashable
# The configuration for logging of each type of permission.
# Corresponds to the JSON property `auditLogConfigs`
# @return [Array<Google::Apis::CloudresourcemanagerV1beta1::AuditLogConfig>]
attr_accessor :audit_log_configs
- # Specifies a service that will be enabled for audit logging.
- # For example, `storage.googleapis.com`, `cloudsql.googleapis.com`.
- # `allServices` is a special value that covers all services.
+ # Specifies a service that will be enabled for audit logging. For example, `
+ # storage.googleapis.com`, `cloudsql.googleapis.com`. `allServices` is a special
+ # value that covers all services.
# Corresponds to the JSON property `service`
# @return [String]
attr_accessor :service
def initialize(**args)
@@ -115,32 +83,19 @@
@audit_log_configs = args[:audit_log_configs] if args.key?(:audit_log_configs)
@service = args[:service] if args.key?(:service)
end
end
- # Provides the configuration for logging a type of permissions.
- # Example:
- # `
- # "audit_log_configs": [
- # `
- # "log_type": "DATA_READ",
- # "exempted_members": [
- # "user:jose@example.com"
- # ]
- # `,
- # `
- # "log_type": "DATA_WRITE"
- # `
- # ]
- # `
- # This enables 'DATA_READ' and 'DATA_WRITE' logging, while exempting
- # jose@example.com from DATA_READ logging.
+ # Provides the configuration for logging a type of permissions. Example: ` "
+ # audit_log_configs": [ ` "log_type": "DATA_READ", "exempted_members": [ "user:
+ # jose@example.com" ] `, ` "log_type": "DATA_WRITE" ` ] ` This enables '
+ # DATA_READ' and 'DATA_WRITE' logging, while exempting jose@example.com from
+ # DATA_READ logging.
class AuditLogConfig
include Google::Apis::Core::Hashable
- # Specifies the identities that do not cause logging for this type of
- # permission.
+ # Specifies the identities that do not cause logging for this type of permission.
# Follows the same format of Binding.members.
# Corresponds to the JSON property `exemptedMembers`
# @return [Array<String>]
attr_accessor :exempted_members
@@ -162,73 +117,61 @@
# Associates `members` with a `role`.
class Binding
include Google::Apis::Core::Hashable
- # Represents a textual expression in the Common Expression Language (CEL)
- # syntax. CEL is a C-like expression language. The syntax and semantics of CEL
- # are documented at https://github.com/google/cel-spec.
- # Example (Comparison):
- # title: "Summary size limit"
- # description: "Determines if a summary is less than 100 chars"
- # expression: "document.summary.size() < 100"
- # Example (Equality):
- # title: "Requestor is owner"
- # description: "Determines if requestor is the document owner"
- # expression: "document.owner == request.auth.claims.email"
- # Example (Logic):
- # title: "Public documents"
- # description: "Determine whether the document should be publicly visible"
- # expression: "document.type != 'private' && document.type != 'internal'"
- # Example (Data Manipulation):
- # title: "Notification string"
- # description: "Create a notification string with a timestamp."
- # expression: "'New message received at ' + string(document.create_time)"
- # The exact variables and functions that may be referenced within an expression
- # are determined by the service that evaluates it. See the service
- # documentation for additional information.
+ # Represents a textual expression in the Common Expression Language (CEL) syntax.
+ # CEL is a C-like expression language. The syntax and semantics of CEL are
+ # documented at https://github.com/google/cel-spec. Example (Comparison): title:
+ # "Summary size limit" description: "Determines if a summary is less than 100
+ # chars" expression: "document.summary.size() < 100" Example (Equality): title: "
+ # Requestor is owner" description: "Determines if requestor is the document
+ # owner" expression: "document.owner == request.auth.claims.email" Example (
+ # Logic): title: "Public documents" description: "Determine whether the document
+ # should be publicly visible" expression: "document.type != 'private' &&
+ # document.type != 'internal'" Example (Data Manipulation): title: "Notification
+ # string" description: "Create a notification string with a timestamp."
+ # expression: "'New message received at ' + string(document.create_time)" The
+ # exact variables and functions that may be referenced within an expression are
+ # determined by the service that evaluates it. See the service documentation for
+ # additional information.
# Corresponds to the JSON property `condition`
# @return [Google::Apis::CloudresourcemanagerV1beta1::Expr]
attr_accessor :condition
- # Specifies the identities requesting access for a Cloud Platform resource.
- # `members` can have the following values:
- # * `allUsers`: A special identifier that represents anyone who is
- # on the internet; with or without a Google account.
- # * `allAuthenticatedUsers`: A special identifier that represents anyone
- # who is authenticated with a Google account or a service account.
- # * `user:`emailid``: An email address that represents a specific Google
- # account. For example, `alice@example.com` .
- # * `serviceAccount:`emailid``: An email address that represents a service
- # account. For example, `my-other-app@appspot.gserviceaccount.com`.
- # * `group:`emailid``: An email address that represents a Google group.
- # For example, `admins@example.com`.
- # * `deleted:user:`emailid`?uid=`uniqueid``: An email address (plus unique
- # identifier) representing a user that has been recently deleted. For
- # example, `alice@example.com?uid=123456789012345678901`. If the user is
- # recovered, this value reverts to `user:`emailid`` and the recovered user
- # retains the role in the binding.
- # * `deleted:serviceAccount:`emailid`?uid=`uniqueid``: An email address (plus
- # unique identifier) representing a service account that has been recently
- # deleted. For example,
- # `my-other-app@appspot.gserviceaccount.com?uid=123456789012345678901`.
- # If the service account is undeleted, this value reverts to
- # `serviceAccount:`emailid`` and the undeleted service account retains the
- # role in the binding.
- # * `deleted:group:`emailid`?uid=`uniqueid``: An email address (plus unique
- # identifier) representing a Google group that has been recently
- # deleted. For example, `admins@example.com?uid=123456789012345678901`. If
- # the group is recovered, this value reverts to `group:`emailid`` and the
- # recovered group retains the role in the binding.
- # * `domain:`domain``: The G Suite domain (primary) that represents all the
- # users of that domain. For example, `google.com` or `example.com`.
+ # Specifies the identities requesting access for a Cloud Platform resource. `
+ # members` can have the following values: * `allUsers`: A special identifier
+ # that represents anyone who is on the internet; with or without a Google
+ # account. * `allAuthenticatedUsers`: A special identifier that represents
+ # anyone who is authenticated with a Google account or a service account. * `
+ # user:`emailid``: An email address that represents a specific Google account.
+ # For example, `alice@example.com` . * `serviceAccount:`emailid``: An email
+ # address that represents a service account. For example, `my-other-app@appspot.
+ # gserviceaccount.com`. * `group:`emailid``: An email address that represents a
+ # Google group. For example, `admins@example.com`. * `deleted:user:`emailid`?uid=
+ # `uniqueid``: An email address (plus unique identifier) representing a user
+ # that has been recently deleted. For example, `alice@example.com?uid=
+ # 123456789012345678901`. If the user is recovered, this value reverts to `user:`
+ # emailid`` and the recovered user retains the role in the binding. * `deleted:
+ # serviceAccount:`emailid`?uid=`uniqueid``: An email address (plus unique
+ # identifier) representing a service account that has been recently deleted. For
+ # example, `my-other-app@appspot.gserviceaccount.com?uid=123456789012345678901`.
+ # If the service account is undeleted, this value reverts to `serviceAccount:`
+ # emailid`` and the undeleted service account retains the role in the binding. *
+ # `deleted:group:`emailid`?uid=`uniqueid``: An email address (plus unique
+ # identifier) representing a Google group that has been recently deleted. For
+ # example, `admins@example.com?uid=123456789012345678901`. If the group is
+ # recovered, this value reverts to `group:`emailid`` and the recovered group
+ # retains the role in the binding. * `domain:`domain``: The G Suite domain (
+ # primary) that represents all the users of that domain. For example, `google.
+ # com` or `example.com`.
# Corresponds to the JSON property `members`
# @return [Array<String>]
attr_accessor :members
- # Role that is assigned to `members`.
- # For example, `roles/viewer`, `roles/editor`, or `roles/owner`.
+ # Role that is assigned to `members`. For example, `roles/viewer`, `roles/editor`
+ # , or `roles/owner`.
# Corresponds to the JSON property `role`
# @return [String]
attr_accessor :role
def initialize(**args)
@@ -241,17 +184,15 @@
@members = args[:members] if args.key?(:members)
@role = args[:role] if args.key?(:role)
end
end
- # A generic empty message that you can re-use to avoid defining duplicated
- # empty messages in your APIs. A typical example is to use it as the request
- # or the response type of an API method. For instance:
- # service Foo `
- # rpc Bar(google.protobuf.Empty) returns (google.protobuf.Empty);
- # `
- # The JSON representation for `Empty` is empty JSON object ````.
+ # A generic empty message that you can re-use to avoid defining duplicated empty
+ # messages in your APIs. A typical example is to use it as the request or the
+ # response type of an API method. For instance: service Foo ` rpc Bar(google.
+ # protobuf.Empty) returns (google.protobuf.Empty); ` The JSON representation for
+ # `Empty` is empty JSON object ````.
class Empty
include Google::Apis::Core::Hashable
def initialize(**args)
update!(**args)
@@ -260,56 +201,47 @@
# Update properties of this object
def update!(**args)
end
end
- # Represents a textual expression in the Common Expression Language (CEL)
- # syntax. CEL is a C-like expression language. The syntax and semantics of CEL
- # are documented at https://github.com/google/cel-spec.
- # Example (Comparison):
- # title: "Summary size limit"
- # description: "Determines if a summary is less than 100 chars"
- # expression: "document.summary.size() < 100"
- # Example (Equality):
- # title: "Requestor is owner"
- # description: "Determines if requestor is the document owner"
- # expression: "document.owner == request.auth.claims.email"
- # Example (Logic):
- # title: "Public documents"
- # description: "Determine whether the document should be publicly visible"
- # expression: "document.type != 'private' && document.type != 'internal'"
- # Example (Data Manipulation):
- # title: "Notification string"
- # description: "Create a notification string with a timestamp."
- # expression: "'New message received at ' + string(document.create_time)"
- # The exact variables and functions that may be referenced within an expression
- # are determined by the service that evaluates it. See the service
- # documentation for additional information.
+ # Represents a textual expression in the Common Expression Language (CEL) syntax.
+ # CEL is a C-like expression language. The syntax and semantics of CEL are
+ # documented at https://github.com/google/cel-spec. Example (Comparison): title:
+ # "Summary size limit" description: "Determines if a summary is less than 100
+ # chars" expression: "document.summary.size() < 100" Example (Equality): title: "
+ # Requestor is owner" description: "Determines if requestor is the document
+ # owner" expression: "document.owner == request.auth.claims.email" Example (
+ # Logic): title: "Public documents" description: "Determine whether the document
+ # should be publicly visible" expression: "document.type != 'private' &&
+ # document.type != 'internal'" Example (Data Manipulation): title: "Notification
+ # string" description: "Create a notification string with a timestamp."
+ # expression: "'New message received at ' + string(document.create_time)" The
+ # exact variables and functions that may be referenced within an expression are
+ # determined by the service that evaluates it. See the service documentation for
+ # additional information.
class Expr
include Google::Apis::Core::Hashable
- # Optional. Description of the expression. This is a longer text which
- # describes the expression, e.g. when hovered over it in a UI.
+ # Optional. Description of the expression. This is a longer text which describes
+ # the expression, e.g. when hovered over it in a UI.
# Corresponds to the JSON property `description`
# @return [String]
attr_accessor :description
- # Textual representation of an expression in Common Expression Language
- # syntax.
+ # Textual representation of an expression in Common Expression Language syntax.
# Corresponds to the JSON property `expression`
# @return [String]
attr_accessor :expression
- # Optional. String indicating the location of the expression for error
- # reporting, e.g. a file name and a position in the file.
+ # Optional. String indicating the location of the expression for error reporting,
+ # e.g. a file name and a position in the file.
# Corresponds to the JSON property `location`
# @return [String]
attr_accessor :location
- # Optional. Title for the expression, i.e. a short string describing
- # its purpose. This can be used e.g. in UIs which allow to enter the
- # expression.
+ # Optional. Title for the expression, i.e. a short string describing its purpose.
+ # This can be used e.g. in UIs which allow to enter the expression.
# Corresponds to the JSON property `title`
# @return [String]
attr_accessor :title
def initialize(**args)
@@ -327,12 +259,12 @@
# Metadata describing a long running folder operation
class FolderOperation
include Google::Apis::Core::Hashable
- # The resource name of the folder or organization we are either creating
- # the folder under or moving the folder to.
+ # The resource name of the folder or organization we are either creating the
+ # folder under or moving the folder to.
# Corresponds to the JSON property `destinationParent`
# @return [String]
attr_accessor :destination_parent
# The display name of the folder.
@@ -343,12 +275,12 @@
# The type of this operation.
# Corresponds to the JSON property `operationType`
# @return [String]
attr_accessor :operation_type
- # The resource name of the folder's parent.
- # Only applicable when the operation_type is MOVE.
+ # The resource name of the folder's parent. Only applicable when the
+ # operation_type is MOVE.
# Corresponds to the JSON property `sourceParent`
# @return [String]
attr_accessor :source_parent
def initialize(**args)
@@ -381,13 +313,12 @@
def update!(**args)
@error_message_id = args[:error_message_id] if args.key?(:error_message_id)
end
end
- # The request sent to the
- # [google.cloudresourcemanager.projects.v1beta1.DeveloperProjects.GetAncestry]
- # method.
+ # The request sent to the [google.cloudresourcemanager.projects.v1beta1.
+ # DeveloperProjects.GetAncestry] method.
class GetAncestryRequest
include Google::Apis::Core::Hashable
def initialize(**args)
update!(**args)
@@ -396,19 +327,16 @@
# Update properties of this object
def update!(**args)
end
end
- # Response from the
- # projects.getAncestry
- # method.
+ # Response from the projects.getAncestry method.
class GetAncestryResponse
include Google::Apis::Core::Hashable
- # Ancestors are ordered from bottom to top of the resource hierarchy. The
- # first ancestor is the project itself, followed by the project's parent,
- # etc.
+ # Ancestors are ordered from bottom to top of the resource hierarchy. The first
+ # ancestor is the project itself, followed by the project's parent, etc.
# Corresponds to the JSON property `ancestor`
# @return [Array<Google::Apis::CloudresourcemanagerV1beta1::Ancestor>]
attr_accessor :ancestor
def initialize(**args)
@@ -442,19 +370,17 @@
# Encapsulates settings provided to GetIamPolicy.
class GetPolicyOptions
include Google::Apis::Core::Hashable
- # Optional. The policy format version to be returned.
- # Valid values are 0, 1, and 3. Requests specifying an invalid value will be
- # rejected.
- # Requests for policies with any conditional bindings must specify version 3.
- # Policies without any conditional bindings may specify any valid value or
- # leave the field unset.
- # To learn which resources support conditions in their IAM policies, see the
- # [IAM
- # documentation](https://cloud.google.com/iam/help/conditions/resource-policies).
+ # Optional. The policy format version to be returned. Valid values are 0, 1, and
+ # 3. Requests specifying an invalid value will be rejected. Requests for
+ # policies with any conditional bindings must specify version 3. Policies
+ # without any conditional bindings may specify any valid value or leave the
+ # field unset. To learn which resources support conditions in their IAM policies,
+ # see the [IAM documentation](https://cloud.google.com/iam/help/conditions/
+ # resource-policies).
# Corresponds to the JSON property `requestedPolicyVersion`
# @return [Fixnum]
attr_accessor :requested_policy_version
def initialize(**args)
@@ -470,14 +396,14 @@
# The response returned from the `ListOrganizations` method.
class ListOrganizationsResponse
include Google::Apis::Core::Hashable
# A pagination token to be used to retrieve the next page of results. If the
- # result is too large to fit within the page size specified in the request,
- # this field will be set with a token that can be used to fetch the next page
- # of results. If this field is empty, it indicates that this response
- # contains the last page of results.
+ # result is too large to fit within the page size specified in the request, this
+ # field will be set with a token that can be used to fetch the next page of
+ # results. If this field is empty, it indicates that this response contains the
+ # last page of results.
# Corresponds to the JSON property `nextPageToken`
# @return [String]
attr_accessor :next_page_token
# The list of Organizations that matched the list query, possibly paginated.
@@ -494,33 +420,27 @@
@next_page_token = args[:next_page_token] if args.key?(:next_page_token)
@organizations = args[:organizations] if args.key?(:organizations)
end
end
- # A page of the response received from the
- # ListProjects
- # method.
- # A paginated response where more pages are available has
- # `next_page_token` set. This token can be used in a subsequent request to
- # retrieve the next request page.
+ # A page of the response received from the ListProjects method. A paginated
+ # response where more pages are available has `next_page_token` set. This token
+ # can be used in a subsequent request to retrieve the next request page.
class ListProjectsResponse
include Google::Apis::Core::Hashable
- # Pagination token.
- # If the result set is too large to fit in a single response, this token
- # is returned. It encodes the position of the current result cursor.
+ # Pagination token. If the result set is too large to fit in a single response,
+ # this token is returned. It encodes the position of the current result cursor.
# Feeding this value into a new list request with the `page_token` parameter
- # gives the next page of the results.
- # When `next_page_token` is not filled in, there is no next page and
- # the list returned is the last page in the result set.
+ # gives the next page of the results. When `next_page_token` is not filled in,
+ # there is no next page and the list returned is the last page in the result set.
# Pagination tokens have a limited lifetime.
# Corresponds to the JSON property `nextPageToken`
# @return [String]
attr_accessor :next_page_token
- # The list of Projects that matched the list filter. This list can
- # be paginated.
+ # The list of Projects that matched the list filter. This list can be paginated.
# Corresponds to the JSON property `projects`
# @return [Array<Google::Apis::CloudresourcemanagerV1beta1::Project>]
attr_accessor :projects
def initialize(**args)
@@ -532,50 +452,49 @@
@next_page_token = args[:next_page_token] if args.key?(:next_page_token)
@projects = args[:projects] if args.key?(:projects)
end
end
- # The root node in the resource hierarchy to which a particular entity's
- # (e.g., company) resources belong.
+ # The root node in the resource hierarchy to which a particular entity's (e.g.,
+ # company) resources belong.
class Organization
include Google::Apis::Core::Hashable
# Timestamp when the Organization was created. Assigned by the server.
# Corresponds to the JSON property `creationTime`
# @return [String]
attr_accessor :creation_time
- # A human-readable string that refers to the Organization in the
- # GCP Console UI. This string is set by the server and cannot be
- # changed. The string will be set to the primary domain (for example,
- # "google.com") of the G Suite customer that owns the organization.
+ # A human-readable string that refers to the Organization in the GCP Console UI.
+ # This string is set by the server and cannot be changed. The string will be set
+ # to the primary domain (for example, "google.com") of the G Suite customer that
+ # owns the organization.
# Corresponds to the JSON property `displayName`
# @return [String]
attr_accessor :display_name
# The organization's current lifecycle state. Assigned by the server.
# Corresponds to the JSON property `lifecycleState`
# @return [String]
attr_accessor :lifecycle_state
- # Output only. The resource name of the organization. This is the
- # organization's relative path in the API. Its format is
- # "organizations/[organization_id]". For example, "organizations/1234".
+ # Output only. The resource name of the organization. This is the organization's
+ # relative path in the API. Its format is "organizations/[organization_id]". For
+ # example, "organizations/1234".
# Corresponds to the JSON property `name`
# @return [String]
attr_accessor :name
- # An immutable id for the Organization that is assigned on creation. This
- # should be omitted when creating a new Organization.
- # This field is read-only.
+ # An immutable id for the Organization that is assigned on creation. This should
+ # be omitted when creating a new Organization. This field is read-only.
# Corresponds to the JSON property `organizationId`
# @return [String]
attr_accessor :organization_id
- # The entity that owns an Organization. The lifetime of the Organization and
- # all of its descendants are bound to the `OrganizationOwner`. If the
- # `OrganizationOwner` is deleted, the Organization and all its descendants will
+ # The entity that owns an Organization. The lifetime of the Organization and all
+ # of its descendants are bound to the `OrganizationOwner`. If the `
+ # OrganizationOwner` is deleted, the Organization and all its descendants will
# be deleted.
# Corresponds to the JSON property `owner`
# @return [Google::Apis::CloudresourcemanagerV1beta1::OrganizationOwner]
attr_accessor :owner
@@ -592,13 +511,13 @@
@organization_id = args[:organization_id] if args.key?(:organization_id)
@owner = args[:owner] if args.key?(:owner)
end
end
- # The entity that owns an Organization. The lifetime of the Organization and
- # all of its descendants are bound to the `OrganizationOwner`. If the
- # `OrganizationOwner` is deleted, the Organization and all its descendants will
+ # The entity that owns an Organization. The lifetime of the Organization and all
+ # of its descendants are bound to the `OrganizationOwner`. If the `
+ # OrganizationOwner` is deleted, the Organization and all its descendants will
# be deleted.
class OrganizationOwner
include Google::Apis::Core::Hashable
# The G Suite customer id used in the Directory API.
@@ -615,120 +534,82 @@
@directory_customer_id = args[:directory_customer_id] if args.key?(:directory_customer_id)
end
end
# An Identity and Access Management (IAM) policy, which specifies access
- # controls for Google Cloud resources.
- # A `Policy` is a collection of `bindings`. A `binding` binds one or more
- # `members` to a single `role`. Members can be user accounts, service accounts,
- # Google groups, and domains (such as G Suite). A `role` is a named list of
- # permissions; each `role` can be an IAM predefined role or a user-created
- # custom role.
- # For some types of Google Cloud resources, a `binding` can also specify a
- # `condition`, which is a logical expression that allows access to a resource
- # only if the expression evaluates to `true`. A condition can add constraints
- # based on attributes of the request, the resource, or both. To learn which
- # resources support conditions in their IAM policies, see the
- # [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-
- # policies).
- # **JSON example:**
- # `
- # "bindings": [
- # `
- # "role": "roles/resourcemanager.organizationAdmin",
- # "members": [
- # "user:mike@example.com",
- # "group:admins@example.com",
- # "domain:google.com",
- # "serviceAccount:my-project-id@appspot.gserviceaccount.com"
- # ]
- # `,
- # `
- # "role": "roles/resourcemanager.organizationViewer",
- # "members": [
- # "user:eve@example.com"
- # ],
- # "condition": `
- # "title": "expirable access",
- # "description": "Does not grant access after Sep 2020",
- # "expression": "request.time < timestamp('2020-10-01T00:00:00.000Z')
- # ",
- # `
- # `
- # ],
- # "etag": "BwWWja0YfJA=",
- # "version": 3
- # `
- # **YAML example:**
- # bindings:
- # - members:
- # - user:mike@example.com
- # - group:admins@example.com
- # - domain:google.com
- # - serviceAccount:my-project-id@appspot.gserviceaccount.com
- # role: roles/resourcemanager.organizationAdmin
- # - members:
- # - user:eve@example.com
- # role: roles/resourcemanager.organizationViewer
- # condition:
- # title: expirable access
- # description: Does not grant access after Sep 2020
- # expression: request.time < timestamp('2020-10-01T00:00:00.000Z')
- # - etag: BwWWja0YfJA=
- # - version: 3
- # For a description of IAM and its features, see the
- # [IAM documentation](https://cloud.google.com/iam/docs/).
+ # controls for Google Cloud resources. A `Policy` is a collection of `bindings`.
+ # A `binding` binds one or more `members` to a single `role`. Members can be
+ # user accounts, service accounts, Google groups, and domains (such as G Suite).
+ # A `role` is a named list of permissions; each `role` can be an IAM predefined
+ # role or a user-created custom role. For some types of Google Cloud resources,
+ # a `binding` can also specify a `condition`, which is a logical expression that
+ # allows access to a resource only if the expression evaluates to `true`. A
+ # condition can add constraints based on attributes of the request, the resource,
+ # or both. To learn which resources support conditions in their IAM policies,
+ # see the [IAM documentation](https://cloud.google.com/iam/help/conditions/
+ # resource-policies). **JSON example:** ` "bindings": [ ` "role": "roles/
+ # resourcemanager.organizationAdmin", "members": [ "user:mike@example.com", "
+ # group:admins@example.com", "domain:google.com", "serviceAccount:my-project-id@
+ # appspot.gserviceaccount.com" ] `, ` "role": "roles/resourcemanager.
+ # organizationViewer", "members": [ "user:eve@example.com" ], "condition": ` "
+ # title": "expirable access", "description": "Does not grant access after Sep
+ # 2020", "expression": "request.time < timestamp('2020-10-01T00:00:00.000Z')", `
+ # ` ], "etag": "BwWWja0YfJA=", "version": 3 ` **YAML example:** bindings: -
+ # members: - user:mike@example.com - group:admins@example.com - domain:google.
+ # com - serviceAccount:my-project-id@appspot.gserviceaccount.com role: roles/
+ # resourcemanager.organizationAdmin - members: - user:eve@example.com role:
+ # roles/resourcemanager.organizationViewer condition: title: expirable access
+ # description: Does not grant access after Sep 2020 expression: request.time <
+ # timestamp('2020-10-01T00:00:00.000Z') - etag: BwWWja0YfJA= - version: 3 For a
+ # description of IAM and its features, see the [IAM documentation](https://cloud.
+ # google.com/iam/docs/).
class Policy
include Google::Apis::Core::Hashable
# Specifies cloud audit logging configuration for this policy.
# Corresponds to the JSON property `auditConfigs`
# @return [Array<Google::Apis::CloudresourcemanagerV1beta1::AuditConfig>]
attr_accessor :audit_configs
- # Associates a list of `members` to a `role`. Optionally, may specify a
- # `condition` that determines how and when the `bindings` are applied. Each
- # of the `bindings` must contain at least one member.
+ # Associates a list of `members` to a `role`. Optionally, may specify a `
+ # condition` that determines how and when the `bindings` are applied. Each of
+ # the `bindings` must contain at least one member.
# Corresponds to the JSON property `bindings`
# @return [Array<Google::Apis::CloudresourcemanagerV1beta1::Binding>]
attr_accessor :bindings
- # `etag` is used for optimistic concurrency control as a way to help
- # prevent simultaneous updates of a policy from overwriting each other.
- # It is strongly suggested that systems make use of the `etag` in the
- # read-modify-write cycle to perform policy updates in order to avoid race
- # conditions: An `etag` is returned in the response to `getIamPolicy`, and
- # systems are expected to put that etag in the request to `setIamPolicy` to
- # ensure that their change will be applied to the same version of the policy.
- # **Important:** If you use IAM Conditions, you must include the `etag` field
- # whenever you call `setIamPolicy`. If you omit this field, then IAM allows
- # you to overwrite a version `3` policy with a version `1` policy, and all of
- # the conditions in the version `3` policy are lost.
+ # `etag` is used for optimistic concurrency control as a way to help prevent
+ # simultaneous updates of a policy from overwriting each other. It is strongly
+ # suggested that systems make use of the `etag` in the read-modify-write cycle
+ # to perform policy updates in order to avoid race conditions: An `etag` is
+ # returned in the response to `getIamPolicy`, and systems are expected to put
+ # that etag in the request to `setIamPolicy` to ensure that their change will be
+ # applied to the same version of the policy. **Important:** If you use IAM
+ # Conditions, you must include the `etag` field whenever you call `setIamPolicy`.
+ # If you omit this field, then IAM allows you to overwrite a version `3` policy
+ # with a version `1` policy, and all of the conditions in the version `3` policy
+ # are lost.
# Corresponds to the JSON property `etag`
# NOTE: Values are automatically base64 encoded/decoded in the client library.
# @return [String]
attr_accessor :etag
- # Specifies the format of the policy.
- # Valid values are `0`, `1`, and `3`. Requests that specify an invalid value
- # are rejected.
- # Any operation that affects conditional role bindings must specify version
- # `3`. This requirement applies to the following operations:
- # * Getting a policy that includes a conditional role binding
- # * Adding a conditional role binding to a policy
- # * Changing a conditional role binding in a policy
- # * Removing any role binding, with or without a condition, from a policy
- # that includes conditions
- # **Important:** If you use IAM Conditions, you must include the `etag` field
- # whenever you call `setIamPolicy`. If you omit this field, then IAM allows
- # you to overwrite a version `3` policy with a version `1` policy, and all of
- # the conditions in the version `3` policy are lost.
- # If a policy does not include any conditions, operations on that policy may
- # specify any valid version or leave the field unset.
- # To learn which resources support conditions in their IAM policies, see the
- # [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-
- # policies).
+ # Specifies the format of the policy. Valid values are `0`, `1`, and `3`.
+ # Requests that specify an invalid value are rejected. Any operation that
+ # affects conditional role bindings must specify version `3`. This requirement
+ # applies to the following operations: * Getting a policy that includes a
+ # conditional role binding * Adding a conditional role binding to a policy *
+ # Changing a conditional role binding in a policy * Removing any role binding,
+ # with or without a condition, from a policy that includes conditions **
+ # Important:** If you use IAM Conditions, you must include the `etag` field
+ # whenever you call `setIamPolicy`. If you omit this field, then IAM allows you
+ # to overwrite a version `3` policy with a version `1` policy, and all of the
+ # conditions in the version `3` policy are lost. If a policy does not include
+ # any conditions, operations on that policy may specify any valid version or
+ # leave the field unset. To learn which resources support conditions in their
+ # IAM policies, see the [IAM documentation](https://cloud.google.com/iam/help/
+ # conditions/resource-policies).
# Corresponds to the JSON property `version`
# @return [Fixnum]
attr_accessor :version
def initialize(**args)
@@ -742,73 +623,60 @@
@etag = args[:etag] if args.key?(:etag)
@version = args[:version] if args.key?(:version)
end
end
- # A Project is a high-level Google Cloud Platform entity. It is a
- # container for ACLs, APIs, App Engine Apps, VMs, and other
- # Google Cloud Platform resources.
+ # A Project is a high-level Google Cloud Platform entity. It is a container for
+ # ACLs, APIs, App Engine Apps, VMs, and other Google Cloud Platform resources.
class Project
include Google::Apis::Core::Hashable
- # Creation time.
- # Read-only.
+ # Creation time. Read-only.
# Corresponds to the JSON property `createTime`
# @return [String]
attr_accessor :create_time
- # The labels associated with this Project.
- # Label keys must be between 1 and 63 characters long and must conform
- # to the following regular expression: a-z`0,62`.
- # Label values must be between 0 and 63 characters long and must conform
- # to the regular expression [a-z0-9_-]`0,63`. A label value can be empty.
- # No more than 256 labels can be associated with a given resource.
- # Clients should store labels in a representation such as JSON that does not
- # depend on specific characters being disallowed.
- # Example: <code>"environment" : "dev"</code>
- # Read-write.
+ # The labels associated with this Project. Label keys must be between 1 and 63
+ # characters long and must conform to the following regular expression: a-z`0,62`
+ # . Label values must be between 0 and 63 characters long and must conform to
+ # the regular expression [a-z0-9_-]`0,63`. A label value can be empty. No more
+ # than 256 labels can be associated with a given resource. Clients should store
+ # labels in a representation such as JSON that does not depend on specific
+ # characters being disallowed. Example: "environment" : "dev" Read-write.
# Corresponds to the JSON property `labels`
# @return [Hash<String,String>]
attr_accessor :labels
- # The Project lifecycle state.
- # Read-only.
+ # The Project lifecycle state. Read-only.
# Corresponds to the JSON property `lifecycleState`
# @return [String]
attr_accessor :lifecycle_state
- # The optional user-assigned display name of the Project.
- # When present it must be between 4 to 30 characters.
- # Allowed characters are: lowercase and uppercase letters, numbers,
- # hyphen, single-quote, double-quote, space, and exclamation point.
- # Example: <code>My Project</code>
- # Read-write.
+ # The optional user-assigned display name of the Project. When present it must
+ # be between 4 to 30 characters. Allowed characters are: lowercase and uppercase
+ # letters, numbers, hyphen, single-quote, double-quote, space, and exclamation
+ # point. Example: My Project Read-write.
# Corresponds to the JSON property `name`
# @return [String]
attr_accessor :name
# A container to reference an id for any resource type. A `resource` in Google
# Cloud Platform is a generic term for something you (a developer) may want to
- # interact with through one of our API's. Some examples are an App Engine app,
- # a Compute Engine instance, a Cloud SQL database, and so on.
+ # interact with through one of our API's. Some examples are an App Engine app, a
+ # Compute Engine instance, a Cloud SQL database, and so on.
# Corresponds to the JSON property `parent`
# @return [Google::Apis::CloudresourcemanagerV1beta1::ResourceId]
attr_accessor :parent
- # The unique, user-assigned ID of the Project.
- # It must be 6 to 30 lowercase letters, digits, or hyphens.
- # It must start with a letter.
- # Trailing hyphens are prohibited.
- # Example: <code>tokyo-rain-123</code>
- # Read-only after creation.
+ # The unique, user-assigned ID of the Project. It must be 6 to 30 lowercase
+ # letters, digits, or hyphens. It must start with a letter. Trailing hyphens are
+ # prohibited. Example: tokyo-rain-123 Read-only after creation.
# Corresponds to the JSON property `projectId`
# @return [String]
attr_accessor :project_id
- # The number uniquely identifying the project.
- # Example: <code>415104041262</code>
- # Read-only.
+ # The number uniquely identifying the project. Example: 415104041262 Read-only.
# Corresponds to the JSON property `projectNumber`
# @return [Fixnum]
attr_accessor :project_number
def initialize(**args)
@@ -836,13 +704,12 @@
# Creation time of the project creation workflow.
# Corresponds to the JSON property `createTime`
# @return [String]
attr_accessor :create_time
- # True if the project can be retrieved using GetProject. No other operations
- # on the project are guaranteed to work until the project creation is
- # complete.
+ # True if the project can be retrieved using GetProject. No other operations on
+ # the project are guaranteed to work until the project creation is complete.
# Corresponds to the JSON property `gettable`
# @return [Boolean]
attr_accessor :gettable
alias_method :gettable?, :gettable
@@ -864,23 +731,23 @@
end
end
# A container to reference an id for any resource type. A `resource` in Google
# Cloud Platform is a generic term for something you (a developer) may want to
- # interact with through one of our API's. Some examples are an App Engine app,
- # a Compute Engine instance, a Cloud SQL database, and so on.
+ # interact with through one of our API's. Some examples are an App Engine app, a
+ # Compute Engine instance, a Cloud SQL database, and so on.
class ResourceId
include Google::Apis::Core::Hashable
- # Required field for the type-specific id. This should correspond to the id
- # used in the type-specific API's.
+ # Required field for the type-specific id. This should correspond to the id used
+ # in the type-specific API's.
# Corresponds to the JSON property `id`
# @return [String]
attr_accessor :id
- # Required field representing the resource type this id is for.
- # At present, the valid types are "project", "folder", and "organization".
+ # Required field representing the resource type this id is for. At present, the
+ # valid types are "project", "folder", and "organization".
# Corresponds to the JSON property `type`
# @return [String]
attr_accessor :type
def initialize(**args)
@@ -897,78 +764,43 @@
# Request message for `SetIamPolicy` method.
class SetIamPolicyRequest
include Google::Apis::Core::Hashable
# An Identity and Access Management (IAM) policy, which specifies access
- # controls for Google Cloud resources.
- # A `Policy` is a collection of `bindings`. A `binding` binds one or more
- # `members` to a single `role`. Members can be user accounts, service accounts,
- # Google groups, and domains (such as G Suite). A `role` is a named list of
- # permissions; each `role` can be an IAM predefined role or a user-created
- # custom role.
- # For some types of Google Cloud resources, a `binding` can also specify a
- # `condition`, which is a logical expression that allows access to a resource
- # only if the expression evaluates to `true`. A condition can add constraints
- # based on attributes of the request, the resource, or both. To learn which
- # resources support conditions in their IAM policies, see the
- # [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-
- # policies).
- # **JSON example:**
- # `
- # "bindings": [
- # `
- # "role": "roles/resourcemanager.organizationAdmin",
- # "members": [
- # "user:mike@example.com",
- # "group:admins@example.com",
- # "domain:google.com",
- # "serviceAccount:my-project-id@appspot.gserviceaccount.com"
- # ]
- # `,
- # `
- # "role": "roles/resourcemanager.organizationViewer",
- # "members": [
- # "user:eve@example.com"
- # ],
- # "condition": `
- # "title": "expirable access",
- # "description": "Does not grant access after Sep 2020",
- # "expression": "request.time < timestamp('2020-10-01T00:00:00.000Z')
- # ",
- # `
- # `
- # ],
- # "etag": "BwWWja0YfJA=",
- # "version": 3
- # `
- # **YAML example:**
- # bindings:
- # - members:
- # - user:mike@example.com
- # - group:admins@example.com
- # - domain:google.com
- # - serviceAccount:my-project-id@appspot.gserviceaccount.com
- # role: roles/resourcemanager.organizationAdmin
- # - members:
- # - user:eve@example.com
- # role: roles/resourcemanager.organizationViewer
- # condition:
- # title: expirable access
- # description: Does not grant access after Sep 2020
- # expression: request.time < timestamp('2020-10-01T00:00:00.000Z')
- # - etag: BwWWja0YfJA=
- # - version: 3
- # For a description of IAM and its features, see the
- # [IAM documentation](https://cloud.google.com/iam/docs/).
+ # controls for Google Cloud resources. A `Policy` is a collection of `bindings`.
+ # A `binding` binds one or more `members` to a single `role`. Members can be
+ # user accounts, service accounts, Google groups, and domains (such as G Suite).
+ # A `role` is a named list of permissions; each `role` can be an IAM predefined
+ # role or a user-created custom role. For some types of Google Cloud resources,
+ # a `binding` can also specify a `condition`, which is a logical expression that
+ # allows access to a resource only if the expression evaluates to `true`. A
+ # condition can add constraints based on attributes of the request, the resource,
+ # or both. To learn which resources support conditions in their IAM policies,
+ # see the [IAM documentation](https://cloud.google.com/iam/help/conditions/
+ # resource-policies). **JSON example:** ` "bindings": [ ` "role": "roles/
+ # resourcemanager.organizationAdmin", "members": [ "user:mike@example.com", "
+ # group:admins@example.com", "domain:google.com", "serviceAccount:my-project-id@
+ # appspot.gserviceaccount.com" ] `, ` "role": "roles/resourcemanager.
+ # organizationViewer", "members": [ "user:eve@example.com" ], "condition": ` "
+ # title": "expirable access", "description": "Does not grant access after Sep
+ # 2020", "expression": "request.time < timestamp('2020-10-01T00:00:00.000Z')", `
+ # ` ], "etag": "BwWWja0YfJA=", "version": 3 ` **YAML example:** bindings: -
+ # members: - user:mike@example.com - group:admins@example.com - domain:google.
+ # com - serviceAccount:my-project-id@appspot.gserviceaccount.com role: roles/
+ # resourcemanager.organizationAdmin - members: - user:eve@example.com role:
+ # roles/resourcemanager.organizationViewer condition: title: expirable access
+ # description: Does not grant access after Sep 2020 expression: request.time <
+ # timestamp('2020-10-01T00:00:00.000Z') - etag: BwWWja0YfJA= - version: 3 For a
+ # description of IAM and its features, see the [IAM documentation](https://cloud.
+ # google.com/iam/docs/).
# Corresponds to the JSON property `policy`
# @return [Google::Apis::CloudresourcemanagerV1beta1::Policy]
attr_accessor :policy
# OPTIONAL: A FieldMask specifying which fields of the policy to modify. Only
- # the fields in the mask will be modified. If no mask is provided, the
- # following default mask is used:
- # `paths: "bindings, etag"`
+ # the fields in the mask will be modified. If no mask is provided, the following
+ # default mask is used: `paths: "bindings, etag"`
# Corresponds to the JSON property `updateMask`
# @return [String]
attr_accessor :update_mask
def initialize(**args)
@@ -984,14 +816,13 @@
# Request message for `TestIamPermissions` method.
class TestIamPermissionsRequest
include Google::Apis::Core::Hashable
- # The set of permissions to check for the `resource`. Permissions with
- # wildcards (such as '*' or 'storage.*') are not allowed. For more
- # information see
- # [IAM Overview](https://cloud.google.com/iam/docs/overview#permissions).
+ # The set of permissions to check for the `resource`. Permissions with wildcards
+ # (such as '*' or 'storage.*') are not allowed. For more information see [IAM
+ # Overview](https://cloud.google.com/iam/docs/overview#permissions).
# Corresponds to the JSON property `permissions`
# @return [Array<String>]
attr_accessor :permissions
def initialize(**args)
@@ -1006,12 +837,11 @@
# Response message for `TestIamPermissions` method.
class TestIamPermissionsResponse
include Google::Apis::Core::Hashable
- # A subset of `TestPermissionsRequest.permissions` that the caller is
- # allowed.
+ # A subset of `TestPermissionsRequest.permissions` that the caller is allowed.
# Corresponds to the JSON property `permissions`
# @return [Array<String>]
attr_accessor :permissions
def initialize(**args)
@@ -1022,11 +852,10 @@
def update!(**args)
@permissions = args[:permissions] if args.key?(:permissions)
end
end
- # The request sent to the UndeleteProject
- # method.
+ # The request sent to the UndeleteProject method.
class UndeleteProjectRequest
include Google::Apis::Core::Hashable
def initialize(**args)
update!(**args)