public sealed class Source : IMessage<AuthorizationPolicy.Types.Rule.Types.Source>, IEquatable<AuthorizationPolicy.Types.Rule.Types.Source>, IDeepCloneable<AuthorizationPolicy.Types.Rule.Types.Source>, IBufferMessage, IMessage
Specification of traffic source attributes.
Implements
IMessage<AuthorizationPolicy.Types.Rule.Types.Source>, IEquatable<AuthorizationPolicy.Types.Rule.Types.Source>, IDeepCloneable<AuthorizationPolicy.Types.Rule.Types.Source>, IBufferMessage, IMessageNamespace
Google.Cloud.NetworkSecurity.V1Beta1Assembly
Google.Cloud.NetworkSecurity.V1Beta1.dll
Constructors
Source()
public Source()
Source(AuthorizationPolicy.Types.Rule.Types.Source)
public Source(AuthorizationPolicy.Types.Rule.Types.Source other)
Parameter | |
---|---|
Name | Description |
other | AuthorizationPolicy.Types.Rule.Types.Source |
Properties
IpBlocks
public RepeatedField<string> IpBlocks { get; }
Optional. List of CIDR ranges to match based on source IP address. At least one IP block should match. Single IP (e.g., "1.2.3.4") and CIDR (e.g., "1.2.3.0/24") are supported. Authorization based on source IP alone should be avoided. The IP addresses of any load balancers or proxies should be considered untrusted.
Property Value | |
---|---|
Type | Description |
RepeatedField<String> |
Principals
public RepeatedField<string> Principals { get; }
Optional. List of peer identities to match for authorization. At least one principal should match. Each peer can be an exact match, or a prefix match (example, "namespace/") or a suffix match (example, // */service-account") or a presence match "". Authorization based on the principal name without certificate validation (configured by ServerTlsPolicy resource) is considered insecure.
Property Value | |
---|---|
Type | Description |
RepeatedField<String> |