Cloud Security Compliance v1 API - Namespace Google.Cloud.CloudSecurityCompliance.V1 (1.0.0-beta02)

Allowed set of values for the parameter.

Attribute at the given path is substituted entirely.

A CEL expression.

A CloudControl is the fundamental unit encapsulating the rules to meet a specific security or compliance intent. It can contain various rule types (like Organization Policies, CEL expressions, etc.) enabling different enforcement modes (Preventive, Detective, Audit). CloudControls are often parameterized for reusability and can be either BUILT_IN (provided by Google) or CUSTOM (defined by the user).

CloudControlDeployment represents deployment of a CloudControl on a target resource. Supported target resources are organizations/{organization}, folders/{folder}, and projects/{project}.

Resource name for the CloudControlDeployment resource.

The reference to a CloudControlDeployment.

CloudControlDetails contains the details of a CloudControl.

CloudControlMetadata contains the enforcement mode and parameters of a Cloud Control Deployment.

Resource name for the CloudControl resource.

Config Service manages compliance frameworks, cloud controls, and their configurations.

Base class for server-side implementations of Config

Client for Config

Config client wrapper, for convenient use.

Builder class for ConfigClient to provide simple configuration of credentials, endpoint etc.

Config client wrapper implementation, for convenient use.

Settings for ConfigClient instances.

Request message for creating a CloudControl

Request message for CreateFrameworkDeployment API.

Request message for creating a Framework

Request message for deleting a CloudControl.

Request message for DeleteFrameworkDeployment.

Request message for deleting a Framework.

Deployment service allows users to manage deployments of Frameworks and Cloud Controls on a target resource.

Base class for server-side implementations of Deployment

Client for Deployment

Deployment client wrapper, for convenient use.

Builder class for DeploymentClient to provide simple configuration of credentials, endpoint etc.

Deployment client wrapper implementation, for convenient use.

Settings for DeploymentClient instances.

FolderCreationConfig contains the config to create a new folder to be used as the target_resource of a deployment.

A Framework is a collection of CloudControls to address security and compliance requirements. Frameworks can be used for prevention, detection, and auditing. They can be either built-in, industry-standard frameworks provided by GCP/AZURE/AWS (e.g., NIST, FedRAMP) or custom frameworks created by users.

Container for nested types declared in the Framework message type.

FrameworkDeployment represents deployment of a Framework on a target resource. Supported target resources are organizations/{organization}, folders/{folder}, and projects/{project}.

Resource name for the FrameworkDeployment resource.

The reference to a FrameworkDeployment.

Resource name for the Framework resource.

FrameworkReference contains the reference of a framework.

Request message for GetCloudControlDeployment.

Request message for getting a CloudControl.

Request message for GetFrameworkDeployment.

Request message for getting a Framework.

Number range for number parameters.

Request message for ListCloudControlDeployments.

Response message for ListCloudControlDeployments.

Request message for listing CloudControls.

Response message for ListCloudControls.

Request message for ListFrameworkDeployments.

Response message for ListFrameworkDeployments.

Request message for listing Frameworks.

Response message for listing Frameworks. Contains a paginated list of Framework resources.

Represents the metadata of the long-running operation.

Resource name for the OrganizationLocation resource.

Possible parameter value types.

Parameters is a key-value pair.

A parameter spec of the cloud control.

Container for nested types declared in the ParameterSpec message type.

Parameter substitution rules.

Placeholder is substituted in the rendered string.

ProjectCreationConfig contains the config to create a new project to be used as the target_resource of a deployment.

Regular Expression Validator for parameter values.

A rule of the cloud control.

A list of strings.

TargetResourceConfig contains either the name of the target_resource or contains the config to create a new target_resource.

TargetResourceCreationConfig contains the config to create a new resource to be used as the target_resource of a deployment.

Request message for UpdateCloudControl.

Request message for updating a Framework.

Validation of the parameter.

Enum of possible cases for the "criteria" oneof.

The category of the cloud control.

The possible contents of CloudControlDeploymentName.

The possible contents of CloudControlName.

The cloud platform.

DeploymentState represents the state of the Deployment resource.

The enforcement mode of the cloud control.

The type of the framework.

The category of the framework.

The possible contents of FrameworkDeploymentName.

The possible contents of FrameworkName.

The possible contents of OrganizationLocationName.

Enum of possible cases for the "kind" oneof.

The type of the parameter value.

Enum of possible cases for the "substitution_type" oneof.

Enum of possible cases for the "implementation" oneof.

The action type of the rule.

The severity of the finding.

Enum of possible cases for the "resource_config" oneof.

Enum of possible cases for the "resource_creation_config" oneof.

TargetResourceType represents the type of resource that a control or framework can be applied to.

Enum of possible cases for the "constraint" oneof.