public sealed class Access : IMessage<Access>, IEquatable<Access>, IDeepCloneable<Access>, IBufferMessage, IMessage
Reference documentation and code samples for the Google Cloud Security Command Center v1 API class Access.
Represents an access event.
Namespace
GoogleCloudGoogle.Cloud.SecurityCenterV1Assembly
Google.Cloud.SecurityCenter.V1.dll
Constructors
Access()
public Access()
Access(Access)
public Access(Access other)
Parameter | |
---|---|
Name | Description |
other | Access |
Properties
CallerIp
public string CallerIp { get; set; }
Caller's IP address, such as "1.1.1.1".
Property Value | |
---|---|
Type | Description |
string |
CallerIpGeo
public Geolocation CallerIpGeo { get; set; }
The caller IP's geolocation, which identifies where the call came from.
Property Value | |
---|---|
Type | Description |
Geolocation |
MethodName
public string MethodName { get; set; }
The method that the service account called, e.g. "SetIamPolicy".
Property Value | |
---|---|
Type | Description |
string |
PrincipalEmail
public string PrincipalEmail { get; set; }
Associated email, such as "foo@google.com".
The email address of the authenticated user (or service account on behalf
of third party principal) making the request. For third party identity
callers, the principal_subject
field is populated instead of this field.
For privacy reasons, the principal email address is sometimes redacted.
For more information, see Caller identities in audit
logs.
Property Value | |
---|---|
Type | Description |
string |
PrincipalSubject
public string PrincipalSubject { get; set; }
A string representing the principal_subject associated with the identity.
As compared to principal_email
, supports principals that aren't
associated with email addresses, such as third party principals. For most
identities, the format will be principal://iam.googleapis.com/{identity
pool name}/subjects/{subject}
except for some GKE identities
(GKE_WORKLOAD, FREEFORM, GKE_HUB_WORKLOAD) that are still in the legacy
format serviceAccount:{identity pool name}[{subject}]
Property Value | |
---|---|
Type | Description |
string |
ServiceAccountDelegationInfo
public RepeatedField<ServiceAccountDelegationInfo> ServiceAccountDelegationInfo { get; }
Identity delegation history of an authenticated service account that makes the request. It contains information on the real authorities that try to access GCP resources by delegating on a service account. When multiple authorities are present, they are guaranteed to be sorted based on the original ordering of the identity delegation events.
Property Value | |
---|---|
Type | Description |
RepeatedFieldServiceAccountDelegationInfo |
ServiceAccountKeyName
public string ServiceAccountKeyName { get; set; }
The name of the service account key used to create or exchange credentials for authenticating the service account making the request. This is a scheme-less URI full resource name. For example:
"//iam.googleapis.com/projects/{PROJECT_ID}/serviceAccounts/{ACCOUNT}/keys/{key}"
Property Value | |
---|---|
Type | Description |
string |
ServiceName
public string ServiceName { get; set; }
This is the API service that the service account made a call to, e.g. "iam.googleapis.com"
Property Value | |
---|---|
Type | Description |
string |
UserAgentFamily
public string UserAgentFamily { get; set; }
What kind of user agent is associated, for example operating system shells, embedded or stand-alone applications, etc.
Property Value | |
---|---|
Type | Description |
string |
UserName
public string UserName { get; set; }
A string that represents the username of a user, user account, or other entity involved in the access event. What the entity is and what its role in the access event is depends on the finding that this field appears in. The entity is likely not an IAM principal, but could be a user that is logged into an operating system, if the finding is VM-related, or a user that is logged into some type of application that is involved in the access event.
Property Value | |
---|---|
Type | Description |
string |