generated/google/apis/iap_v1/classes.rb in google-api-client-0.39.2 vs generated/google/apis/iap_v1/classes.rb in google-api-client-0.39.3

@@ -97,10 +97,16 @@
         # IAP error page will be displayed instead.
         # Corresponds to the JSON property `accessDeniedPageSettings`
         # @return [Google::Apis::IapV1::AccessDeniedPageSettings]
         attr_accessor :access_denied_page_settings
       
+        # The Domain value to set for cookies generated by IAP. This value is not
+        # validated by the API, but will be ignored at runtime if invalid.
+        # Corresponds to the JSON property `cookieDomain`
+        # @return [String]
+        attr_accessor :cookie_domain
+      
         # Configuration for RCTokens generated for CSM workloads protected by IAP.
         # RCTokens are IAP generated JWTs that can be verified at the application. The
         # RCToken is primarily used for ISTIO deployments, and can be scoped to a
         # single mesh by configuring the audience field accordingly
         # Corresponds to the JSON property `csmSettings`
@@ -112,10 +118,11 @@
         end
       
         # Update properties of this object
         def update!(**args)
           @access_denied_page_settings = args[:access_denied_page_settings] if args.key?(:access_denied_page_settings)
+          @cookie_domain = args[:cookie_domain] if args.key?(:cookie_domain)
           @csm_settings = args[:csm_settings] if args.key?(:csm_settings)
         end
       end
       
       # Associates `members` with a `role`.
@@ -217,11 +224,11 @@
         # Corresponds to the JSON property `name`
         # @return [String]
         attr_accessor :name
       
         # Output only. Whether the brand is only intended for usage inside the
-        # GSuite organization only.
+        # G Suite organization only.
         # Corresponds to the JSON property `orgInternalOnly`
         # @return [Boolean]
         attr_accessor :org_internal_only
         alias_method :org_internal_only?, :org_internal_only
       
@@ -429,10 +436,13 @@
         # Valid values are 0, 1, and 3. Requests specifying an invalid value will be
         # rejected.
         # Requests for policies with any conditional bindings must specify version 3.
         # Policies without any conditional bindings may specify any valid value or
         # leave the field unset.
+        # To learn which resources support conditions in their IAM policies, see the
+        # [IAM
+        # documentation](https://cloud.google.com/iam/help/conditions/resource-policies).
         # Corresponds to the JSON property `requestedPolicyVersion`
         # @return [Fixnum]
         attr_accessor :requested_policy_version
       
         def initialize(**args)
@@ -594,14 +604,17 @@
       # A `Policy` is a collection of `bindings`. A `binding` binds one or more
       # `members` to a single `role`. Members can be user accounts, service accounts,
       # Google groups, and domains (such as G Suite). A `role` is a named list of
       # permissions; each `role` can be an IAM predefined role or a user-created
       # custom role.
-      # Optionally, a `binding` can specify a `condition`, which is a logical
-      # expression that allows access to a resource only if the expression evaluates
-      # to `true`. A condition can add constraints based on attributes of the
-      # request, the resource, or both.
+      # For some types of Google Cloud resources, a `binding` can also specify a
+      # `condition`, which is a logical expression that allows access to a resource
+      # only if the expression evaluates to `true`. A condition can add constraints
+      # based on attributes of the request, the resource, or both. To learn which
+      # resources support conditions in their IAM policies, see the
+      # [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-
+      # policies).
       # **JSON example:**
       # `
       # "bindings": [
       # `
       # "role": "roles/resourcemanager.organizationAdmin",
@@ -612,11 +625,13 @@
       # "serviceAccount:my-project-id@appspot.gserviceaccount.com"
       # ]
       # `,
       # `
       # "role": "roles/resourcemanager.organizationViewer",
-      # "members": ["user:eve@example.com"],
+      # "members": [
+      # "user:eve@example.com"
+      # ],
       # "condition": `
       # "title": "expirable access",
       # "description": "Does not grant access after Sep 2020",
       # "expression": "request.time < timestamp('2020-10-01T00:00:00.000Z')
       # ",
@@ -685,10 +700,13 @@
         # whenever you call `setIamPolicy`. If you omit this field, then IAM allows
         # you to overwrite a version `3` policy with a version `1` policy, and all of
         # the conditions in the version `3` policy are lost.
         # If a policy does not include any conditions, operations on that policy may
         # specify any valid version or leave the field unset.
+        # To learn which resources support conditions in their IAM policies, see the
+        # [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-
+        # policies).
         # Corresponds to the JSON property `version`
         # @return [Fixnum]
         attr_accessor :version
       
         def initialize(**args)
@@ -759,11 +777,11 @@
       
         # For Cloud IAM:
         # The location of the Policy.
         # Must be empty or "global" for Policies owned by global IAM.  Must name a
         # region from prodspec/cloud-iam-cloudspec for Regional IAM Policies, see
-        # http://go/iam-faq#where-is-iam-currently-deployed.
+        # go/iam-faq#where-is-iam-currently-deployed.
         # For Local IAM:
         # This field should be set to "local".
         # Corresponds to the JSON property `region`
         # @return [String]
         attr_accessor :region
@@ -874,14 +892,17 @@
         # A `Policy` is a collection of `bindings`. A `binding` binds one or more
         # `members` to a single `role`. Members can be user accounts, service accounts,
         # Google groups, and domains (such as G Suite). A `role` is a named list of
         # permissions; each `role` can be an IAM predefined role or a user-created
         # custom role.
-        # Optionally, a `binding` can specify a `condition`, which is a logical
-        # expression that allows access to a resource only if the expression evaluates
-        # to `true`. A condition can add constraints based on attributes of the
-        # request, the resource, or both.
+        # For some types of Google Cloud resources, a `binding` can also specify a
+        # `condition`, which is a logical expression that allows access to a resource
+        # only if the expression evaluates to `true`. A condition can add constraints
+        # based on attributes of the request, the resource, or both. To learn which
+        # resources support conditions in their IAM policies, see the
+        # [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-
+        # policies).
         # **JSON example:**
         # `
         # "bindings": [
         # `
         # "role": "roles/resourcemanager.organizationAdmin",
@@ -892,10 +913,12 @@
         # "serviceAccount:my-project-id@appspot.gserviceaccount.com"
         # ]
         # `,
         # `
         # "role": "roles/resourcemanager.organizationViewer",
-        # "members": ["user:eve@example.com"],
+        # "members": [
+        # "user:eve@example.com"
+        # ],
         # "condition": `
         # "title": "expirable access",
         # "description": "Does not grant access after Sep 2020",
         # "expression": "request.time < timestamp('2020-10-01T00:00:00.000Z')
         # ",