Classes
AnalyzeIamPolicyLongrunningMetadata
Represents the metadata of the longrunning operation for the AnalyzeIamPolicyLongrunning RPC.
AnalyzeIamPolicyLongrunningRequest
A request message for [AssetService.AnalyzeIamPolicyLongrunning][google.cloud.asset.v1.AssetService.AnalyzeIamPolicyLongrunning].
AnalyzeIamPolicyLongrunningResponse
A response message for [AssetService.AnalyzeIamPolicyLongrunning][google.cloud.asset.v1.AssetService.AnalyzeIamPolicyLongrunning].
AnalyzeIamPolicyRequest
A request message for [AssetService.AnalyzeIamPolicy][google.cloud.asset.v1.AssetService.AnalyzeIamPolicy].
AnalyzeIamPolicyResponse
A response message for [AssetService.AnalyzeIamPolicy][google.cloud.asset.v1.AssetService.AnalyzeIamPolicy].
AnalyzeIamPolicyResponse.Types
Container for nested types declared in the AnalyzeIamPolicyResponse message type.
AnalyzeIamPolicyResponse.Types.IamPolicyAnalysis
An analysis message to group the query and results.
AnalyzeMoveRequest
The request message for performing resource move analysis.
AnalyzeMoveRequest.Types
Container for nested types declared in the AnalyzeMoveRequest message type.
AnalyzeMoveResponse
The response message for resource move analysis.
AnalyzeOrgPoliciesRequest
A request message for [AssetService.AnalyzeOrgPolicies][google.cloud.asset.v1.AssetService.AnalyzeOrgPolicies].
AnalyzeOrgPoliciesResponse
The response message for [AssetService.AnalyzeOrgPolicies][google.cloud.asset.v1.AssetService.AnalyzeOrgPolicies].
AnalyzeOrgPoliciesResponse.Types
Container for nested types declared in the AnalyzeOrgPoliciesResponse message type.
AnalyzeOrgPoliciesResponse.Types.OrgPolicyResult
The organization policy result to the query.
AnalyzeOrgPolicyGovernedAssetsRequest
A request message for [AssetService.AnalyzeOrgPolicyGovernedAssets][google.cloud.asset.v1.AssetService.AnalyzeOrgPolicyGovernedAssets].
AnalyzeOrgPolicyGovernedAssetsResponse
The response message for [AssetService.AnalyzeOrgPolicyGovernedAssets][google.cloud.asset.v1.AssetService.AnalyzeOrgPolicyGovernedAssets].
AnalyzeOrgPolicyGovernedAssetsResponse.Types
Container for nested types declared in the AnalyzeOrgPolicyGovernedAssetsResponse message type.
AnalyzeOrgPolicyGovernedAssetsResponse.Types.GovernedAsset
Represents a Google Cloud asset(resource or IAM policy) governed by the organization policies of the [AnalyzeOrgPolicyGovernedAssetsRequest.constraint][google.cloud.asset.v1.AnalyzeOrgPolicyGovernedAssetsRequest.constraint].
AnalyzeOrgPolicyGovernedAssetsResponse.Types.GovernedIamPolicy
The IAM policies governed by the organization policies of the [AnalyzeOrgPolicyGovernedAssetsRequest.constraint][google.cloud.asset.v1.AnalyzeOrgPolicyGovernedAssetsRequest.constraint].
AnalyzeOrgPolicyGovernedAssetsResponse.Types.GovernedResource
The Google Cloud resources governed by the organization policies of the [AnalyzeOrgPolicyGovernedAssetsRequest.constraint][google.cloud.asset.v1.AnalyzeOrgPolicyGovernedAssetsRequest.constraint].
AnalyzeOrgPolicyGovernedContainersRequest
A request message for [AssetService.AnalyzeOrgPolicyGovernedContainers][google.cloud.asset.v1.AssetService.AnalyzeOrgPolicyGovernedContainers].
AnalyzeOrgPolicyGovernedContainersResponse
The response message for [AssetService.AnalyzeOrgPolicyGovernedContainers][google.cloud.asset.v1.AssetService.AnalyzeOrgPolicyGovernedContainers].
AnalyzeOrgPolicyGovernedContainersResponse.Types
Container for nested types declared in the AnalyzeOrgPolicyGovernedContainersResponse message type.
AnalyzeOrgPolicyGovernedContainersResponse.Types.GovernedContainer
The organization/folder/project resource governed by organization policies of [AnalyzeOrgPolicyGovernedContainersRequest.constraint][google.cloud.asset.v1.AnalyzeOrgPolicyGovernedContainersRequest.constraint].
AnalyzerOrgPolicy
This organization policy message is a modified version of the one defined in the Organization Policy system. This message contains several fields defined in the original organization policy with some new fields for analysis purpose.
AnalyzerOrgPolicy.Types
Container for nested types declared in the AnalyzerOrgPolicy message type.
AnalyzerOrgPolicy.Types.Rule
Represents a rule defined in an organization policy
AnalyzerOrgPolicy.Types.Rule.Types
Container for nested types declared in the Rule message type.
AnalyzerOrgPolicy.Types.Rule.Types.StringValues
The string values for the list constraints.
AnalyzerOrgPolicyConstraint
The organization policy constraint definition.
AnalyzerOrgPolicyConstraint.Types
Container for nested types declared in the AnalyzerOrgPolicyConstraint message type.
AnalyzerOrgPolicyConstraint.Types.Constraint
The definition of a constraint.
AnalyzerOrgPolicyConstraint.Types.Constraint.Types
Container for nested types declared in the Constraint message type.
AnalyzerOrgPolicyConstraint.Types.Constraint.Types.BooleanConstraint
A Constraint
that is either enforced or not.
For example a constraint constraints/compute.disableSerialPortAccess
.
If it is enforced on a VM instance, serial port connections will not be
opened to that instance.
AnalyzerOrgPolicyConstraint.Types.Constraint.Types.ListConstraint
A Constraint
that allows or disallows a list of string values, which
are configured by an organization's policy administrator with a Policy
.
AnalyzerOrgPolicyConstraint.Types.CustomConstraint
The definition of a custom constraint.
AnalyzerOrgPolicyConstraint.Types.CustomConstraint.Types
Container for nested types declared in the CustomConstraint message type.
Asset
An asset in Google Cloud. An asset can be any resource in the Google Cloud resource hierarchy, a resource outside the Google Cloud resource hierarchy (such as Google Kubernetes Engine clusters and objects), or a policy (e.g. IAM policy), or a relationship (e.g. an INSTANCE_TO_INSTANCEGROUP relationship). See Supported asset types for more information.
AssetService
Asset service definition.
AssetService.AssetServiceBase
Base class for server-side implementations of AssetService
AssetService.AssetServiceClient
Client for AssetService
AssetServiceClient
AssetService client wrapper, for convenient use.
AssetServiceClientBuilder
Builder class for AssetServiceClient to provide simple configuration of credentials, endpoint etc.
AssetServiceClientImpl
AssetService client wrapper implementation, for convenient use.
AssetServiceSettings
Settings for AssetServiceClient instances.
AttachedResource
Attached resource representation, which is defined by the corresponding service provider. It represents an attached resource's payload.
BatchGetAssetsHistoryRequest
Batch get assets history request.
BatchGetAssetsHistoryResponse
Batch get assets history response.
BatchGetEffectiveIamPoliciesRequest
A request message for [AssetService.BatchGetEffectiveIamPolicies][google.cloud.asset.v1.AssetService.BatchGetEffectiveIamPolicies].
BatchGetEffectiveIamPoliciesResponse
A response message for [AssetService.BatchGetEffectiveIamPolicies][google.cloud.asset.v1.AssetService.BatchGetEffectiveIamPolicies].
BatchGetEffectiveIamPoliciesResponse.Types
Container for nested types declared in the BatchGetEffectiveIamPoliciesResponse message type.
BatchGetEffectiveIamPoliciesResponse.Types.EffectiveIamPolicy
The effective IAM policies on one resource.
BatchGetEffectiveIamPoliciesResponse.Types.EffectiveIamPolicy.Types
Container for nested types declared in the EffectiveIamPolicy message type.
BatchGetEffectiveIamPoliciesResponse.Types.EffectiveIamPolicy.Types.PolicyInfo
The IAM policy and its attached resource.
BigQueryDestination
A BigQuery destination for exporting assets to.
ConditionEvaluation
The Condition evaluation.
ConditionEvaluation.Types
Container for nested types declared in the ConditionEvaluation message type.
CreateFeedRequest
Create asset feed request.
CreateSavedQueryRequest
Request to create a saved query.
DeleteFeedRequest
DeleteSavedQueryRequest
Request to delete a saved query.
ExportAssetsRequest
Export asset request.
ExportAssetsResponse
The export asset response. This message is returned by the [google.longrunning.Operations.GetOperation][google.longrunning.Operations.GetOperation] method in the returned [google.longrunning.Operation.response][google.longrunning.Operation.response] field.
Feed
An asset feed used to export asset updates to a destinations. An asset feed filter controls what updates are exported. The asset feed must be created within a project, organization, or folder. Supported destinations are: Pub/Sub topics.
FeedName
Resource name for the Feed
resource.
FeedOutputConfig
Output configuration for asset feed destination.
GcsDestination
A Cloud Storage location.
GcsOutputResult
A Cloud Storage output result.
GetFeedRequest
Get asset feed request.
GetSavedQueryRequest
Request to get a saved query.
IamPolicyAnalysisOutputConfig
Output configuration for export IAM policy analysis destination.
IamPolicyAnalysisOutputConfig.Types
Container for nested types declared in the IamPolicyAnalysisOutputConfig message type.
IamPolicyAnalysisOutputConfig.Types.BigQueryDestination
A BigQuery destination.
IamPolicyAnalysisOutputConfig.Types.BigQueryDestination.Types
Container for nested types declared in the BigQueryDestination message type.
IamPolicyAnalysisOutputConfig.Types.GcsDestination
A Cloud Storage location.
IamPolicyAnalysisQuery
IAM policy analysis query message.
IamPolicyAnalysisQuery.Types
Container for nested types declared in the IamPolicyAnalysisQuery message type.
IamPolicyAnalysisQuery.Types.AccessSelector
Specifies roles and/or permissions to analyze, to determine both the identities possessing them and the resources they control. If multiple values are specified, results will include roles or permissions matching any of them. The total number of roles and permissions should be equal or less than 10.
IamPolicyAnalysisQuery.Types.ConditionContext
The IAM conditions context.
IamPolicyAnalysisQuery.Types.IdentitySelector
Specifies an identity for which to determine resource access, based on roles assigned either directly to them or to the groups they belong to, directly or indirectly.
IamPolicyAnalysisQuery.Types.Options
Contains query options.
IamPolicyAnalysisQuery.Types.ResourceSelector
Specifies the resource to analyze for access policies, which may be set directly on the resource, or on ancestors such as organizations, folders or projects.
IamPolicyAnalysisResult
IAM Policy analysis result, consisting of one IAM policy binding and derived access control lists.
IamPolicyAnalysisResult.Types
Container for nested types declared in the IamPolicyAnalysisResult message type.
IamPolicyAnalysisResult.Types.Access
An IAM role or permission under analysis.
IamPolicyAnalysisResult.Types.AccessControlList
An access control list, derived from the above IAM policy binding, which contains a set of resources and accesses. May include one item from each set to compose an access control entry.
NOTICE that there could be multiple access control lists for one IAM policy binding. The access control lists are created based on resource and access combinations.
For example, assume we have the following cases in one IAM policy binding:
- Permission P1 and P2 apply to resource R1 and R2;
- Permission P3 applies to resource R2 and R3;
This will result in the following access control lists:
- AccessControlList 1: [R1, R2], [P1, P2]
- AccessControlList 2: [R2, R3], [P3]
IamPolicyAnalysisResult.Types.Edge
A directional edge.
IamPolicyAnalysisResult.Types.Identity
An identity under analysis.
IamPolicyAnalysisResult.Types.IdentityList
The identities and group edges.
IamPolicyAnalysisResult.Types.Resource
A Google Cloud resource under analysis.
IamPolicyAnalysisState
Represents the detailed state of an entity under analysis, such as a resource, an identity or an access.
IamPolicySearchResult
A result of IAM Policy search, containing information of an IAM policy.
IamPolicySearchResult.Types
Container for nested types declared in the IamPolicySearchResult message type.
IamPolicySearchResult.Types.Explanation
Explanation about the IAM policy search result.
IamPolicySearchResult.Types.Explanation.Types
Container for nested types declared in the Explanation message type.
IamPolicySearchResult.Types.Explanation.Types.Permissions
IAM permissions
ListAssetsRequest
ListAssets request.
ListAssetsResponse
ListAssets response.
ListFeedsRequest
List asset feeds request.
ListFeedsResponse
ListSavedQueriesRequest
Request to list saved queries.
ListSavedQueriesResponse
Response of listing saved queries.
MoveAnalysis
A message to group the analysis information.
MoveAnalysisResult
An analysis result including blockers and warnings.
MoveImpact
A message to group impacts of moving the target resource.
OutputConfig
Output configuration for export assets destination.
OutputResult
Output result of export assets.
PartitionSpec
Specifications of BigQuery partitioned table as export destination.
PartitionSpec.Types
Container for nested types declared in the PartitionSpec message type.
PubsubDestination
A Pub/Sub destination.
QueryAssetsOutputConfig
Output configuration query assets.
QueryAssetsOutputConfig.Types
Container for nested types declared in the QueryAssetsOutputConfig message type.
QueryAssetsOutputConfig.Types.BigQueryDestination
BigQuery destination.
QueryAssetsRequest
QueryAssets request.
QueryAssetsResponse
QueryAssets response.
QueryResult
Execution results of the query.
The result is formatted as rows represented by BigQuery compatible [schema]. When pagination is necessary, it will contains the page token to retrieve the results of following pages.
RelatedAsset
An asset identifier in Google Cloud which contains its name, type and ancestors. An asset can be any resource in the Google Cloud resource hierarchy, a resource outside the Google Cloud resource hierarchy (such as Google Kubernetes Engine clusters and objects), or a policy (e.g. IAM policy). See Supported asset types for more information.
RelatedAssets
DEPRECATED. This message only presents for the purpose of
backward-compatibility. The server will never populate this message in
responses.
The detailed related assets with the relationship_type
.
RelatedResource
The detailed related resource.
RelatedResources
The related resources of the primary resource.
RelationshipAttributes
DEPRECATED. This message only presents for the purpose of
backward-compatibility. The server will never populate this message in
responses.
The relationship attributes which include type
, source_resource_type
,
target_resource_type
and action
.
Resource
A representation of a Google Cloud resource.
ResourceSearchResult
A result of Resource Search, containing information of a cloud resource. Next ID: 32
SavedQuery
A saved query which can be shared with others or used later.
SavedQuery.Types
Container for nested types declared in the SavedQuery message type.
SavedQuery.Types.QueryContent
The query content.
SavedQueryName
Resource name for the SavedQuery
resource.
SearchAllIamPoliciesRequest
Search all IAM policies request.
SearchAllIamPoliciesResponse
Search all IAM policies response.
SearchAllResourcesRequest
Search all resources request.
SearchAllResourcesResponse
Search all resources response.
TableFieldSchema
A field in TableSchema.
TableSchema
BigQuery Compatible table schema.
TemporalAsset
An asset in Google Cloud and its temporal metadata, including the time window when it was observed and its status during that window.
TemporalAsset.Types
Container for nested types declared in the TemporalAsset message type.
TimeWindow
A time window specified by its start_time
and end_time
.
UpdateFeedRequest
Update asset feed request.
UpdateSavedQueryRequest
Request to update a saved query.
VersionedResource
Resource representation as defined by the corresponding service providing the resource for a given API version.
Enums
AnalyzeMoveRequest.Types.AnalysisView
View enum for supporting partial analysis responses.
AnalyzeOrgPolicyGovernedAssetsResponse.Types.GovernedAsset.GovernedAssetOneofCase
Enum of possible cases for the "governed_asset" oneof.
AnalyzerOrgPolicy.Types.Rule.KindOneofCase
Enum of possible cases for the "kind" oneof.
AnalyzerOrgPolicyConstraint.ConstraintDefinitionOneofCase
Enum of possible cases for the "constraint_definition" oneof.
AnalyzerOrgPolicyConstraint.Types.Constraint.ConstraintTypeOneofCase
Enum of possible cases for the "constraint_type" oneof.
AnalyzerOrgPolicyConstraint.Types.Constraint.Types.ConstraintDefault
Specifies the default behavior in the absence of any Policy
for the
Constraint
. This must not be CONSTRAINT_DEFAULT_UNSPECIFIED
.
AnalyzerOrgPolicyConstraint.Types.CustomConstraint.Types.ActionType
Allow or deny type.
AnalyzerOrgPolicyConstraint.Types.CustomConstraint.Types.MethodType
The operation in which this constraint will be applied. For example: If the constraint applies only when create VMs, the method_types will be "CREATE" only. If the constraint applied when create or delete VMs, the method_types will be "CREATE" and "DELETE".
Asset.AccessContextPolicyOneofCase
Enum of possible cases for the "access_context_policy" oneof.
ConditionEvaluation.Types.EvaluationValue
Value of this expression.
ContentType
Asset content type.
FeedName.ResourceNameType
The possible contents of FeedName.
FeedOutputConfig.DestinationOneofCase
Enum of possible cases for the "destination" oneof.
GcsDestination.ObjectUriOneofCase
Enum of possible cases for the "object_uri" oneof.
IamPolicyAnalysisOutputConfig.DestinationOneofCase
Enum of possible cases for the "destination" oneof.
IamPolicyAnalysisOutputConfig.Types.BigQueryDestination.Types.PartitionKey
This enum determines the partition key column for the bigquery tables. Partitioning can improve query performance and reduce query cost by filtering partitions. Refer to https://cloud.google.com/bigquery/docs/partitioned-tables for details.
IamPolicyAnalysisQuery.Types.ConditionContext.TimeContextOneofCase
Enum of possible cases for the "TimeContext" oneof.
IamPolicyAnalysisResult.Types.Access.OneofAccessOneofCase
Enum of possible cases for the "oneof_access" oneof.
MoveAnalysis.ResultOneofCase
Enum of possible cases for the "result" oneof.
OutputConfig.DestinationOneofCase
Enum of possible cases for the "destination" oneof.
OutputResult.ResultOneofCase
Enum of possible cases for the "result" oneof.
PartitionSpec.Types.PartitionKey
This enum is used to determine the partition key column when exporting assets to BigQuery partitioned table(s). Note that, if the partition key is a timestamp column, the actual partition is based on its date value (expressed in UTC. see details in https://cloud.google.com/bigquery/docs/partitioned-tables#date_timestamp_partitioned_tables).
QueryAssetsRequest.QueryOneofCase
Enum of possible cases for the "query" oneof.
QueryAssetsRequest.TimeOneofCase
Enum of possible cases for the "time" oneof.
QueryAssetsResponse.ResponseOneofCase
Enum of possible cases for the "response" oneof.
SavedQuery.Types.QueryContent.QueryContentOneofCase
Enum of possible cases for the "query_content" oneof.
SavedQueryName.ResourceNameType
The possible contents of SavedQueryName.
TemporalAsset.Types.PriorAssetState
State of prior asset.