Variables
EnrollmentLevel_name, EnrollmentLevel_value
var (
EnrollmentLevel_name = map[int32]string{
0: "ENROLLMENT_LEVEL_UNSPECIFIED",
1: "BLOCK_ALL",
}
EnrollmentLevel_value = map[string]int32{
"ENROLLMENT_LEVEL_UNSPECIFIED": 0,
"BLOCK_ALL": 1,
}
)Enum value maps for EnrollmentLevel.
AccessReason_Type_name, AccessReason_Type_value
var (
AccessReason_Type_name = map[int32]string{
0: "TYPE_UNSPECIFIED",
1: "CUSTOMER_INITIATED_SUPPORT",
2: "GOOGLE_INITIATED_SERVICE",
3: "GOOGLE_INITIATED_REVIEW",
4: "THIRD_PARTY_DATA_REQUEST",
5: "GOOGLE_RESPONSE_TO_PRODUCTION_ALERT",
}
AccessReason_Type_value = map[string]int32{
"TYPE_UNSPECIFIED": 0,
"CUSTOMER_INITIATED_SUPPORT": 1,
"GOOGLE_INITIATED_SERVICE": 2,
"GOOGLE_INITIATED_REVIEW": 3,
"THIRD_PARTY_DATA_REQUEST": 4,
"GOOGLE_RESPONSE_TO_PRODUCTION_ALERT": 5,
}
)Enum value maps for AccessReason_Type.
File_google_cloud_accessapproval_v1_accessapproval_proto
var File_google_cloud_accessapproval_v1_accessapproval_proto protoreflect.FileDescriptorFunctions
func RegisterAccessApprovalServer
func RegisterAccessApprovalServer(s *grpc.Server, srv AccessApprovalServer)AccessApprovalClient
type AccessApprovalClient interface {
// Lists approval requests associated with a project, folder, or organization.
// Approval requests can be filtered by state (pending, active, dismissed).
// The order is reverse chronological.
ListApprovalRequests(ctx context.Context, in *ListApprovalRequestsMessage, opts ...grpc.CallOption) (*ListApprovalRequestsResponse, error)
// Gets an approval request. Returns NOT_FOUND if the request does not exist.
GetApprovalRequest(ctx context.Context, in *GetApprovalRequestMessage, opts ...grpc.CallOption) (*ApprovalRequest, error)
// Approves a request and returns the updated ApprovalRequest.
//
// Returns NOT_FOUND if the request does not exist. Returns
// FAILED_PRECONDITION if the request exists but is not in a pending state.
ApproveApprovalRequest(ctx context.Context, in *ApproveApprovalRequestMessage, opts ...grpc.CallOption) (*ApprovalRequest, error)
// Dismisses a request. Returns the updated ApprovalRequest.
//
// NOTE: This does not deny access to the resource if another request has been
// made and approved. It is equivalent in effect to ignoring the request
// altogether.
//
// Returns NOT_FOUND if the request does not exist.
//
// Returns FAILED_PRECONDITION if the request exists but is not in a pending
// state.
DismissApprovalRequest(ctx context.Context, in *DismissApprovalRequestMessage, opts ...grpc.CallOption) (*ApprovalRequest, error)
// Invalidates an existing ApprovalRequest. Returns the updated
// ApprovalRequest.
//
// NOTE: This does not deny access to the resource if another request has been
// made and approved. It only invalidates a single approval.
//
// Returns FAILED_PRECONDITION if the request exists but is not in an approved
// state.
InvalidateApprovalRequest(ctx context.Context, in *InvalidateApprovalRequestMessage, opts ...grpc.CallOption) (*ApprovalRequest, error)
// Gets the settings associated with a project, folder, or organization.
GetAccessApprovalSettings(ctx context.Context, in *GetAccessApprovalSettingsMessage, opts ...grpc.CallOption) (*AccessApprovalSettings, error)
// Updates the settings associated with a project, folder, or organization.
// Settings to update are determined by the value of field_mask.
UpdateAccessApprovalSettings(ctx context.Context, in *UpdateAccessApprovalSettingsMessage, opts ...grpc.CallOption) (*AccessApprovalSettings, error)
// Deletes the settings associated with a project, folder, or organization.
// This will have the effect of disabling Access Approval for the project,
// folder, or organization, but only if all ancestors also have Access
// Approval disabled. If Access Approval is enabled at a higher level of the
// hierarchy, then Access Approval will still be enabled at this level as
// the settings are inherited.
DeleteAccessApprovalSettings(ctx context.Context, in *DeleteAccessApprovalSettingsMessage, opts ...grpc.CallOption) (*emptypb.Empty, error)
// Retrieves the service account that is used by Access Approval to access KMS
// keys for signing approved approval requests.
GetAccessApprovalServiceAccount(ctx context.Context, in *GetAccessApprovalServiceAccountMessage, opts ...grpc.CallOption) (*AccessApprovalServiceAccount, error)
}AccessApprovalClient is the client API for AccessApproval service.
For semantics around ctx use and closing/ending streaming RPCs, please refer to https://godoc.org/google.golang.org/grpc#ClientConn.NewStream.
func NewAccessApprovalClient
func NewAccessApprovalClient(cc grpc.ClientConnInterface) AccessApprovalClientAccessApprovalServer
type AccessApprovalServer interface {
// Lists approval requests associated with a project, folder, or organization.
// Approval requests can be filtered by state (pending, active, dismissed).
// The order is reverse chronological.
ListApprovalRequests(context.Context, *ListApprovalRequestsMessage) (*ListApprovalRequestsResponse, error)
// Gets an approval request. Returns NOT_FOUND if the request does not exist.
GetApprovalRequest(context.Context, *GetApprovalRequestMessage) (*ApprovalRequest, error)
// Approves a request and returns the updated ApprovalRequest.
//
// Returns NOT_FOUND if the request does not exist. Returns
// FAILED_PRECONDITION if the request exists but is not in a pending state.
ApproveApprovalRequest(context.Context, *ApproveApprovalRequestMessage) (*ApprovalRequest, error)
// Dismisses a request. Returns the updated ApprovalRequest.
//
// NOTE: This does not deny access to the resource if another request has been
// made and approved. It is equivalent in effect to ignoring the request
// altogether.
//
// Returns NOT_FOUND if the request does not exist.
//
// Returns FAILED_PRECONDITION if the request exists but is not in a pending
// state.
DismissApprovalRequest(context.Context, *DismissApprovalRequestMessage) (*ApprovalRequest, error)
// Invalidates an existing ApprovalRequest. Returns the updated
// ApprovalRequest.
//
// NOTE: This does not deny access to the resource if another request has been
// made and approved. It only invalidates a single approval.
//
// Returns FAILED_PRECONDITION if the request exists but is not in an approved
// state.
InvalidateApprovalRequest(context.Context, *InvalidateApprovalRequestMessage) (*ApprovalRequest, error)
// Gets the settings associated with a project, folder, or organization.
GetAccessApprovalSettings(context.Context, *GetAccessApprovalSettingsMessage) (*AccessApprovalSettings, error)
// Updates the settings associated with a project, folder, or organization.
// Settings to update are determined by the value of field_mask.
UpdateAccessApprovalSettings(context.Context, *UpdateAccessApprovalSettingsMessage) (*AccessApprovalSettings, error)
// Deletes the settings associated with a project, folder, or organization.
// This will have the effect of disabling Access Approval for the project,
// folder, or organization, but only if all ancestors also have Access
// Approval disabled. If Access Approval is enabled at a higher level of the
// hierarchy, then Access Approval will still be enabled at this level as
// the settings are inherited.
DeleteAccessApprovalSettings(context.Context, *DeleteAccessApprovalSettingsMessage) (*emptypb.Empty, error)
// Retrieves the service account that is used by Access Approval to access KMS
// keys for signing approved approval requests.
GetAccessApprovalServiceAccount(context.Context, *GetAccessApprovalServiceAccountMessage) (*AccessApprovalServiceAccount, error)
}AccessApprovalServer is the server API for AccessApproval service.
AccessApprovalServiceAccount
type AccessApprovalServiceAccount struct {
// The resource name of the Access Approval service account. Format is one of:
//
// * "projects/{project}/serviceAccount"
// * "folders/{folder}/serviceAccount"
// * "organizations/{organization}/serviceAccount"
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
// Email address of the service account.
AccountEmail string `protobuf:"bytes,2,opt,name=account_email,json=accountEmail,proto3" json:"account_email,omitempty"`
// contains filtered or unexported fields
}Access Approval service account related to a project/folder/organization.
func (*AccessApprovalServiceAccount) Descriptor
func (*AccessApprovalServiceAccount) Descriptor() ([]byte, []int)Deprecated: Use AccessApprovalServiceAccount.ProtoReflect.Descriptor instead.
func (*AccessApprovalServiceAccount) GetAccountEmail
func (x *AccessApprovalServiceAccount) GetAccountEmail() stringfunc (*AccessApprovalServiceAccount) GetName
func (x *AccessApprovalServiceAccount) GetName() stringfunc (*AccessApprovalServiceAccount) ProtoMessage
func (*AccessApprovalServiceAccount) ProtoMessage()func (*AccessApprovalServiceAccount) ProtoReflect
func (x *AccessApprovalServiceAccount) ProtoReflect() protoreflect.Messagefunc (*AccessApprovalServiceAccount) Reset
func (x *AccessApprovalServiceAccount) Reset()func (*AccessApprovalServiceAccount) String
func (x *AccessApprovalServiceAccount) String() stringAccessApprovalSettings
type AccessApprovalSettings struct {
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
NotificationEmails []string `protobuf:"bytes,2,rep,name=notification_emails,json=notificationEmails,proto3" json:"notification_emails,omitempty"`
EnrolledServices []*EnrolledService `protobuf:"bytes,3,rep,name=enrolled_services,json=enrolledServices,proto3" json:"enrolled_services,omitempty"`
EnrolledAncestor bool `protobuf:"varint,4,opt,name=enrolled_ancestor,json=enrolledAncestor,proto3" json:"enrolled_ancestor,omitempty"`
ActiveKeyVersion string `protobuf:"bytes,6,opt,name=active_key_version,json=activeKeyVersion,proto3" json:"active_key_version,omitempty"`
AncestorHasActiveKeyVersion bool "" /* 149 byte string literal not displayed */
InvalidKeyVersion bool `protobuf:"varint,8,opt,name=invalid_key_version,json=invalidKeyVersion,proto3" json:"invalid_key_version,omitempty"`
}Settings on a Project/Folder/Organization related to Access Approval.
func (*AccessApprovalSettings) Descriptor
func (*AccessApprovalSettings) Descriptor() ([]byte, []int)Deprecated: Use AccessApprovalSettings.ProtoReflect.Descriptor instead.
func (*AccessApprovalSettings) GetActiveKeyVersion
func (x *AccessApprovalSettings) GetActiveKeyVersion() stringfunc (*AccessApprovalSettings) GetAncestorHasActiveKeyVersion
func (x *AccessApprovalSettings) GetAncestorHasActiveKeyVersion() boolfunc (*AccessApprovalSettings) GetEnrolledAncestor
func (x *AccessApprovalSettings) GetEnrolledAncestor() boolfunc (*AccessApprovalSettings) GetEnrolledServices
func (x *AccessApprovalSettings) GetEnrolledServices() []*EnrolledServicefunc (*AccessApprovalSettings) GetInvalidKeyVersion
func (x *AccessApprovalSettings) GetInvalidKeyVersion() boolfunc (*AccessApprovalSettings) GetName
func (x *AccessApprovalSettings) GetName() stringfunc (*AccessApprovalSettings) GetNotificationEmails
func (x *AccessApprovalSettings) GetNotificationEmails() []stringfunc (*AccessApprovalSettings) ProtoMessage
func (*AccessApprovalSettings) ProtoMessage()func (*AccessApprovalSettings) ProtoReflect
func (x *AccessApprovalSettings) ProtoReflect() protoreflect.Messagefunc (*AccessApprovalSettings) Reset
func (x *AccessApprovalSettings) Reset()func (*AccessApprovalSettings) String
func (x *AccessApprovalSettings) String() stringAccessLocations
type AccessLocations struct {
PrincipalOfficeCountry string "" /* 129 byte string literal not displayed */
PrincipalPhysicalLocationCountry string "" /* 161 byte string literal not displayed */
}Home office and physical location of the principal.
func (*AccessLocations) Descriptor
func (*AccessLocations) Descriptor() ([]byte, []int)Deprecated: Use AccessLocations.ProtoReflect.Descriptor instead.
func (*AccessLocations) GetPrincipalOfficeCountry
func (x *AccessLocations) GetPrincipalOfficeCountry() stringfunc (*AccessLocations) GetPrincipalPhysicalLocationCountry
func (x *AccessLocations) GetPrincipalPhysicalLocationCountry() stringfunc (*AccessLocations) ProtoMessage
func (*AccessLocations) ProtoMessage()func (*AccessLocations) ProtoReflect
func (x *AccessLocations) ProtoReflect() protoreflect.Messagefunc (*AccessLocations) Reset
func (x *AccessLocations) Reset()func (*AccessLocations) String
func (x *AccessLocations) String() stringAccessReason
type AccessReason struct {
// Type of access justification.
Type AccessReason_Type `protobuf:"varint,1,opt,name=type,proto3,enum=google.cloud.accessapproval.v1.AccessReason_Type" json:"type,omitempty"`
// More detail about certain reason types. See comments for each type above.
Detail string `protobuf:"bytes,2,opt,name=detail,proto3" json:"detail,omitempty"`
// contains filtered or unexported fields
}func (*AccessReason) Descriptor
func (*AccessReason) Descriptor() ([]byte, []int)Deprecated: Use AccessReason.ProtoReflect.Descriptor instead.
func (*AccessReason) GetDetail
func (x *AccessReason) GetDetail() stringfunc (*AccessReason) GetType
func (x *AccessReason) GetType() AccessReason_Typefunc (*AccessReason) ProtoMessage
func (*AccessReason) ProtoMessage()func (*AccessReason) ProtoReflect
func (x *AccessReason) ProtoReflect() protoreflect.Messagefunc (*AccessReason) Reset
func (x *AccessReason) Reset()func (*AccessReason) String
func (x *AccessReason) String() stringAccessReason_Type
type AccessReason_Type int32Type of access justification.
AccessReason_TYPE_UNSPECIFIED, AccessReason_CUSTOMER_INITIATED_SUPPORT, AccessReason_GOOGLE_INITIATED_SERVICE, AccessReason_GOOGLE_INITIATED_REVIEW, AccessReason_THIRD_PARTY_DATA_REQUEST, AccessReason_GOOGLE_RESPONSE_TO_PRODUCTION_ALERT
const (
// Default value for proto, shouldn't be used.
AccessReason_TYPE_UNSPECIFIED AccessReason_Type = 0
// Customer made a request or raised an issue that required the principal to
// access customer data. `detail` is of the form ("#####" is the issue ID):
//
// * "Feedback Report: #####"
// * "Case Number: #####"
// * "Case ID: #####"
// * "E-PIN Reference: #####"
// * "Google-#####"
// * "T-#####"
AccessReason_CUSTOMER_INITIATED_SUPPORT AccessReason_Type = 1
// The principal accessed customer data in order to diagnose or resolve a
// suspected issue in services. Often this access is used to confirm that
// customers are not affected by a suspected service issue or to remediate a
// reversible system issue.
AccessReason_GOOGLE_INITIATED_SERVICE AccessReason_Type = 2
// Google initiated service for security, fraud, abuse, or compliance
// purposes.
AccessReason_GOOGLE_INITIATED_REVIEW AccessReason_Type = 3
// The principal was compelled to access customer data in order to respond
// to a legal third party data request or process, including legal processes
// from customers themselves.
AccessReason_THIRD_PARTY_DATA_REQUEST AccessReason_Type = 4
// The principal accessed customer data in order to diagnose or resolve a
// suspected issue in services or a known outage.
AccessReason_GOOGLE_RESPONSE_TO_PRODUCTION_ALERT AccessReason_Type = 5
)func (AccessReason_Type) Descriptor
func (AccessReason_Type) Descriptor() protoreflect.EnumDescriptorfunc (AccessReason_Type) Enum
func (x AccessReason_Type) Enum() *AccessReason_Typefunc (AccessReason_Type) EnumDescriptor
func (AccessReason_Type) EnumDescriptor() ([]byte, []int)Deprecated: Use AccessReason_Type.Descriptor instead.
func (AccessReason_Type) Number
func (x AccessReason_Type) Number() protoreflect.EnumNumberfunc (AccessReason_Type) String
func (x AccessReason_Type) String() stringfunc (AccessReason_Type) Type
func (AccessReason_Type) Type() protoreflect.EnumTypeApprovalRequest
type ApprovalRequest struct {
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
RequestedResourceName string `protobuf:"bytes,2,opt,name=requested_resource_name,json=requestedResourceName,proto3" json:"requested_resource_name,omitempty"`
RequestedResourceProperties *ResourceProperties "" /* 144 byte string literal not displayed */
RequestedReason *AccessReason `protobuf:"bytes,3,opt,name=requested_reason,json=requestedReason,proto3" json:"requested_reason,omitempty"`
RequestedLocations *AccessLocations `protobuf:"bytes,4,opt,name=requested_locations,json=requestedLocations,proto3" json:"requested_locations,omitempty"`
RequestTime *timestamppb.Timestamp `protobuf:"bytes,5,opt,name=request_time,json=requestTime,proto3" json:"request_time,omitempty"`
RequestedExpiration *timestamppb.Timestamp `protobuf:"bytes,6,opt,name=requested_expiration,json=requestedExpiration,proto3" json:"requested_expiration,omitempty"`
Decision isApprovalRequest_Decision `protobuf_oneof:"decision"`
}A request for the customer to approve access to a resource.
func (*ApprovalRequest) Descriptor
func (*ApprovalRequest) Descriptor() ([]byte, []int)Deprecated: Use ApprovalRequest.ProtoReflect.Descriptor instead.
func (*ApprovalRequest) GetApprove
func (x *ApprovalRequest) GetApprove() *ApproveDecisionfunc (*ApprovalRequest) GetDecision
func (m *ApprovalRequest) GetDecision() isApprovalRequest_Decisionfunc (*ApprovalRequest) GetDismiss
func (x *ApprovalRequest) GetDismiss() *DismissDecisionfunc (*ApprovalRequest) GetName
func (x *ApprovalRequest) GetName() stringfunc (*ApprovalRequest) GetRequestTime
func (x *ApprovalRequest) GetRequestTime() *timestamppb.Timestampfunc (*ApprovalRequest) GetRequestedExpiration
func (x *ApprovalRequest) GetRequestedExpiration() *timestamppb.Timestampfunc (*ApprovalRequest) GetRequestedLocations
func (x *ApprovalRequest) GetRequestedLocations() *AccessLocationsfunc (*ApprovalRequest) GetRequestedReason
func (x *ApprovalRequest) GetRequestedReason() *AccessReasonfunc (*ApprovalRequest) GetRequestedResourceName
func (x *ApprovalRequest) GetRequestedResourceName() stringfunc (*ApprovalRequest) GetRequestedResourceProperties
func (x *ApprovalRequest) GetRequestedResourceProperties() *ResourcePropertiesfunc (*ApprovalRequest) ProtoMessage
func (*ApprovalRequest) ProtoMessage()func (*ApprovalRequest) ProtoReflect
func (x *ApprovalRequest) ProtoReflect() protoreflect.Messagefunc (*ApprovalRequest) Reset
func (x *ApprovalRequest) Reset()func (*ApprovalRequest) String
func (x *ApprovalRequest) String() stringApprovalRequest_Approve
type ApprovalRequest_Approve struct {
// Access was approved.
Approve *ApproveDecision `protobuf:"bytes,7,opt,name=approve,proto3,oneof"`
}ApprovalRequest_Dismiss
type ApprovalRequest_Dismiss struct {
// The request was dismissed.
Dismiss *DismissDecision `protobuf:"bytes,8,opt,name=dismiss,proto3,oneof"`
}ApproveApprovalRequestMessage
type ApproveApprovalRequestMessage struct {
// Name of the approval request to approve.
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
// The expiration time of this approval.
ExpireTime *timestamppb.Timestamp `protobuf:"bytes,2,opt,name=expire_time,json=expireTime,proto3" json:"expire_time,omitempty"`
// contains filtered or unexported fields
}Request to approve an ApprovalRequest.
func (*ApproveApprovalRequestMessage) Descriptor
func (*ApproveApprovalRequestMessage) Descriptor() ([]byte, []int)Deprecated: Use ApproveApprovalRequestMessage.ProtoReflect.Descriptor instead.
func (*ApproveApprovalRequestMessage) GetExpireTime
func (x *ApproveApprovalRequestMessage) GetExpireTime() *timestamppb.Timestampfunc (*ApproveApprovalRequestMessage) GetName
func (x *ApproveApprovalRequestMessage) GetName() stringfunc (*ApproveApprovalRequestMessage) ProtoMessage
func (*ApproveApprovalRequestMessage) ProtoMessage()func (*ApproveApprovalRequestMessage) ProtoReflect
func (x *ApproveApprovalRequestMessage) ProtoReflect() protoreflect.Messagefunc (*ApproveApprovalRequestMessage) Reset
func (x *ApproveApprovalRequestMessage) Reset()func (*ApproveApprovalRequestMessage) String
func (x *ApproveApprovalRequestMessage) String() stringApproveDecision
type ApproveDecision struct {
// The time at which approval was granted.
ApproveTime *timestamppb.Timestamp `protobuf:"bytes,1,opt,name=approve_time,json=approveTime,proto3" json:"approve_time,omitempty"`
// The time at which the approval expires.
ExpireTime *timestamppb.Timestamp `protobuf:"bytes,2,opt,name=expire_time,json=expireTime,proto3" json:"expire_time,omitempty"`
// If set, denotes the timestamp at which the approval is invalidated.
InvalidateTime *timestamppb.Timestamp `protobuf:"bytes,3,opt,name=invalidate_time,json=invalidateTime,proto3" json:"invalidate_time,omitempty"`
// The signature for the ApprovalRequest and details on how it was signed.
SignatureInfo *SignatureInfo `protobuf:"bytes,4,opt,name=signature_info,json=signatureInfo,proto3" json:"signature_info,omitempty"`
// True when the request has been auto-approved.
AutoApproved bool `protobuf:"varint,5,opt,name=auto_approved,json=autoApproved,proto3" json:"auto_approved,omitempty"`
// contains filtered or unexported fields
}A decision that has been made to approve access to a resource.
func (*ApproveDecision) Descriptor
func (*ApproveDecision) Descriptor() ([]byte, []int)Deprecated: Use ApproveDecision.ProtoReflect.Descriptor instead.
func (*ApproveDecision) GetApproveTime
func (x *ApproveDecision) GetApproveTime() *timestamppb.Timestampfunc (*ApproveDecision) GetAutoApproved
func (x *ApproveDecision) GetAutoApproved() boolfunc (*ApproveDecision) GetExpireTime
func (x *ApproveDecision) GetExpireTime() *timestamppb.Timestampfunc (*ApproveDecision) GetInvalidateTime
func (x *ApproveDecision) GetInvalidateTime() *timestamppb.Timestampfunc (*ApproveDecision) GetSignatureInfo
func (x *ApproveDecision) GetSignatureInfo() *SignatureInfofunc (*ApproveDecision) ProtoMessage
func (*ApproveDecision) ProtoMessage()func (*ApproveDecision) ProtoReflect
func (x *ApproveDecision) ProtoReflect() protoreflect.Messagefunc (*ApproveDecision) Reset
func (x *ApproveDecision) Reset()func (*ApproveDecision) String
func (x *ApproveDecision) String() stringDeleteAccessApprovalSettingsMessage
type DeleteAccessApprovalSettingsMessage struct {
// Name of the AccessApprovalSettings to delete.
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
// contains filtered or unexported fields
}Request to delete access approval settings.
func (*DeleteAccessApprovalSettingsMessage) Descriptor
func (*DeleteAccessApprovalSettingsMessage) Descriptor() ([]byte, []int)Deprecated: Use DeleteAccessApprovalSettingsMessage.ProtoReflect.Descriptor instead.
func (*DeleteAccessApprovalSettingsMessage) GetName
func (x *DeleteAccessApprovalSettingsMessage) GetName() stringfunc (*DeleteAccessApprovalSettingsMessage) ProtoMessage
func (*DeleteAccessApprovalSettingsMessage) ProtoMessage()func (*DeleteAccessApprovalSettingsMessage) ProtoReflect
func (x *DeleteAccessApprovalSettingsMessage) ProtoReflect() protoreflect.Messagefunc (*DeleteAccessApprovalSettingsMessage) Reset
func (x *DeleteAccessApprovalSettingsMessage) Reset()func (*DeleteAccessApprovalSettingsMessage) String
func (x *DeleteAccessApprovalSettingsMessage) String() stringDismissApprovalRequestMessage
type DismissApprovalRequestMessage struct {
// Name of the ApprovalRequest to dismiss.
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
// contains filtered or unexported fields
}Request to dismiss an approval request.
func (*DismissApprovalRequestMessage) Descriptor
func (*DismissApprovalRequestMessage) Descriptor() ([]byte, []int)Deprecated: Use DismissApprovalRequestMessage.ProtoReflect.Descriptor instead.
func (*DismissApprovalRequestMessage) GetName
func (x *DismissApprovalRequestMessage) GetName() stringfunc (*DismissApprovalRequestMessage) ProtoMessage
func (*DismissApprovalRequestMessage) ProtoMessage()func (*DismissApprovalRequestMessage) ProtoReflect
func (x *DismissApprovalRequestMessage) ProtoReflect() protoreflect.Messagefunc (*DismissApprovalRequestMessage) Reset
func (x *DismissApprovalRequestMessage) Reset()func (*DismissApprovalRequestMessage) String
func (x *DismissApprovalRequestMessage) String() stringDismissDecision
type DismissDecision struct {
// The time at which the approval request was dismissed.
DismissTime *timestamppb.Timestamp `protobuf:"bytes,1,opt,name=dismiss_time,json=dismissTime,proto3" json:"dismiss_time,omitempty"`
// This field will be true if the ApprovalRequest was implicitly dismissed due
// to inaction by the access approval approvers (the request is not acted
// on by the approvers before the exiration time).
Implicit bool `protobuf:"varint,2,opt,name=implicit,proto3" json:"implicit,omitempty"`
// contains filtered or unexported fields
}A decision that has been made to dismiss an approval request.
func (*DismissDecision) Descriptor
func (*DismissDecision) Descriptor() ([]byte, []int)Deprecated: Use DismissDecision.ProtoReflect.Descriptor instead.
func (*DismissDecision) GetDismissTime
func (x *DismissDecision) GetDismissTime() *timestamppb.Timestampfunc (*DismissDecision) GetImplicit
func (x *DismissDecision) GetImplicit() boolfunc (*DismissDecision) ProtoMessage
func (*DismissDecision) ProtoMessage()func (*DismissDecision) ProtoReflect
func (x *DismissDecision) ProtoReflect() protoreflect.Messagefunc (*DismissDecision) Reset
func (x *DismissDecision) Reset()func (*DismissDecision) String
func (x *DismissDecision) String() stringEnrolledService
type EnrolledService struct {
CloudProduct string `protobuf:"bytes,1,opt,name=cloud_product,json=cloudProduct,proto3" json:"cloud_product,omitempty"`
EnrollmentLevel EnrollmentLevel "" /* 159 byte string literal not displayed */
}Represents the enrollment of a cloud resource into a specific service.
func (*EnrolledService) Descriptor
func (*EnrolledService) Descriptor() ([]byte, []int)Deprecated: Use EnrolledService.ProtoReflect.Descriptor instead.
func (*EnrolledService) GetCloudProduct
func (x *EnrolledService) GetCloudProduct() stringfunc (*EnrolledService) GetEnrollmentLevel
func (x *EnrolledService) GetEnrollmentLevel() EnrollmentLevelfunc (*EnrolledService) ProtoMessage
func (*EnrolledService) ProtoMessage()func (*EnrolledService) ProtoReflect
func (x *EnrolledService) ProtoReflect() protoreflect.Messagefunc (*EnrolledService) Reset
func (x *EnrolledService) Reset()func (*EnrolledService) String
func (x *EnrolledService) String() stringEnrollmentLevel
type EnrollmentLevel int32Represents the type of enrollment for a given service to Access Approval.
EnrollmentLevel_ENROLLMENT_LEVEL_UNSPECIFIED, EnrollmentLevel_BLOCK_ALL
const (
// Default value for proto, shouldn't be used.
EnrollmentLevel_ENROLLMENT_LEVEL_UNSPECIFIED EnrollmentLevel = 0
// Service is enrolled in Access Approval for all requests
EnrollmentLevel_BLOCK_ALL EnrollmentLevel = 1
)func (EnrollmentLevel) Descriptor
func (EnrollmentLevel) Descriptor() protoreflect.EnumDescriptorfunc (EnrollmentLevel) Enum
func (x EnrollmentLevel) Enum() *EnrollmentLevelfunc (EnrollmentLevel) EnumDescriptor
func (EnrollmentLevel) EnumDescriptor() ([]byte, []int)Deprecated: Use EnrollmentLevel.Descriptor instead.
func (EnrollmentLevel) Number
func (x EnrollmentLevel) Number() protoreflect.EnumNumberfunc (EnrollmentLevel) String
func (x EnrollmentLevel) String() stringfunc (EnrollmentLevel) Type
func (EnrollmentLevel) Type() protoreflect.EnumTypeGetAccessApprovalServiceAccountMessage
type GetAccessApprovalServiceAccountMessage struct {
// Name of the AccessApprovalServiceAccount to retrieve.
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
// contains filtered or unexported fields
}Request to get an Access Approval service account.
func (*GetAccessApprovalServiceAccountMessage) Descriptor
func (*GetAccessApprovalServiceAccountMessage) Descriptor() ([]byte, []int)Deprecated: Use GetAccessApprovalServiceAccountMessage.ProtoReflect.Descriptor instead.
func (*GetAccessApprovalServiceAccountMessage) GetName
func (x *GetAccessApprovalServiceAccountMessage) GetName() stringfunc (*GetAccessApprovalServiceAccountMessage) ProtoMessage
func (*GetAccessApprovalServiceAccountMessage) ProtoMessage()func (*GetAccessApprovalServiceAccountMessage) ProtoReflect
func (x *GetAccessApprovalServiceAccountMessage) ProtoReflect() protoreflect.Messagefunc (*GetAccessApprovalServiceAccountMessage) Reset
func (x *GetAccessApprovalServiceAccountMessage) Reset()func (*GetAccessApprovalServiceAccountMessage) String
func (x *GetAccessApprovalServiceAccountMessage) String() stringGetAccessApprovalSettingsMessage
type GetAccessApprovalSettingsMessage struct {
// The name of the AccessApprovalSettings to retrieve.
// Format: "{projects|folders|organizations}/{id}/accessApprovalSettings"
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
// contains filtered or unexported fields
}Request to get access approval settings.
func (*GetAccessApprovalSettingsMessage) Descriptor
func (*GetAccessApprovalSettingsMessage) Descriptor() ([]byte, []int)Deprecated: Use GetAccessApprovalSettingsMessage.ProtoReflect.Descriptor instead.
func (*GetAccessApprovalSettingsMessage) GetName
func (x *GetAccessApprovalSettingsMessage) GetName() stringfunc (*GetAccessApprovalSettingsMessage) ProtoMessage
func (*GetAccessApprovalSettingsMessage) ProtoMessage()func (*GetAccessApprovalSettingsMessage) ProtoReflect
func (x *GetAccessApprovalSettingsMessage) ProtoReflect() protoreflect.Messagefunc (*GetAccessApprovalSettingsMessage) Reset
func (x *GetAccessApprovalSettingsMessage) Reset()func (*GetAccessApprovalSettingsMessage) String
func (x *GetAccessApprovalSettingsMessage) String() stringGetApprovalRequestMessage
type GetApprovalRequestMessage struct {
// The name of the approval request to retrieve.
// Format:
// "{projects|folders|organizations}/{id}/approvalRequests/{approval_request}"
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
// contains filtered or unexported fields
}Request to get an approval request.
func (*GetApprovalRequestMessage) Descriptor
func (*GetApprovalRequestMessage) Descriptor() ([]byte, []int)Deprecated: Use GetApprovalRequestMessage.ProtoReflect.Descriptor instead.
func (*GetApprovalRequestMessage) GetName
func (x *GetApprovalRequestMessage) GetName() stringfunc (*GetApprovalRequestMessage) ProtoMessage
func (*GetApprovalRequestMessage) ProtoMessage()func (*GetApprovalRequestMessage) ProtoReflect
func (x *GetApprovalRequestMessage) ProtoReflect() protoreflect.Messagefunc (*GetApprovalRequestMessage) Reset
func (x *GetApprovalRequestMessage) Reset()func (*GetApprovalRequestMessage) String
func (x *GetApprovalRequestMessage) String() stringInvalidateApprovalRequestMessage
type InvalidateApprovalRequestMessage struct {
// Name of the ApprovalRequest to invalidate.
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
// contains filtered or unexported fields
}Request to invalidate an existing approval.
func (*InvalidateApprovalRequestMessage) Descriptor
func (*InvalidateApprovalRequestMessage) Descriptor() ([]byte, []int)Deprecated: Use InvalidateApprovalRequestMessage.ProtoReflect.Descriptor instead.
func (*InvalidateApprovalRequestMessage) GetName
func (x *InvalidateApprovalRequestMessage) GetName() stringfunc (*InvalidateApprovalRequestMessage) ProtoMessage
func (*InvalidateApprovalRequestMessage) ProtoMessage()func (*InvalidateApprovalRequestMessage) ProtoReflect
func (x *InvalidateApprovalRequestMessage) ProtoReflect() protoreflect.Messagefunc (*InvalidateApprovalRequestMessage) Reset
func (x *InvalidateApprovalRequestMessage) Reset()func (*InvalidateApprovalRequestMessage) String
func (x *InvalidateApprovalRequestMessage) String() stringListApprovalRequestsMessage
type ListApprovalRequestsMessage struct {
// The parent resource. This may be "projects/{project}",
// "folders/{folder}", or "organizations/{organization}".
Parent string `protobuf:"bytes,1,opt,name=parent,proto3" json:"parent,omitempty"`
// A filter on the type of approval requests to retrieve. Must be one of the
// following values:
//
// * [not set]: Requests that are pending or have active approvals.
// * ALL: All requests.
// * PENDING: Only pending requests.
// * ACTIVE: Only active (i.e. currently approved) requests.
// * DISMISSED: Only requests that have been dismissed, or requests that
// are not approved and past expiration.
// * EXPIRED: Only requests that have been approved, and the approval has
// expired.
// * HISTORY: Active, dismissed and expired requests.
Filter string `protobuf:"bytes,2,opt,name=filter,proto3" json:"filter,omitempty"`
// Requested page size.
PageSize int32 `protobuf:"varint,3,opt,name=page_size,json=pageSize,proto3" json:"page_size,omitempty"`
// A token identifying the page of results to return.
PageToken string `protobuf:"bytes,4,opt,name=page_token,json=pageToken,proto3" json:"page_token,omitempty"`
// contains filtered or unexported fields
}Request to list approval requests.
func (*ListApprovalRequestsMessage) Descriptor
func (*ListApprovalRequestsMessage) Descriptor() ([]byte, []int)Deprecated: Use ListApprovalRequestsMessage.ProtoReflect.Descriptor instead.
func (*ListApprovalRequestsMessage) GetFilter
func (x *ListApprovalRequestsMessage) GetFilter() stringfunc (*ListApprovalRequestsMessage) GetPageSize
func (x *ListApprovalRequestsMessage) GetPageSize() int32func (*ListApprovalRequestsMessage) GetPageToken
func (x *ListApprovalRequestsMessage) GetPageToken() stringfunc (*ListApprovalRequestsMessage) GetParent
func (x *ListApprovalRequestsMessage) GetParent() stringfunc (*ListApprovalRequestsMessage) ProtoMessage
func (*ListApprovalRequestsMessage) ProtoMessage()func (*ListApprovalRequestsMessage) ProtoReflect
func (x *ListApprovalRequestsMessage) ProtoReflect() protoreflect.Messagefunc (*ListApprovalRequestsMessage) Reset
func (x *ListApprovalRequestsMessage) Reset()func (*ListApprovalRequestsMessage) String
func (x *ListApprovalRequestsMessage) String() stringListApprovalRequestsResponse
type ListApprovalRequestsResponse struct {
// Approval request details.
ApprovalRequests []*ApprovalRequest `protobuf:"bytes,1,rep,name=approval_requests,json=approvalRequests,proto3" json:"approval_requests,omitempty"`
// Token to retrieve the next page of results, or empty if there are no more.
NextPageToken string `protobuf:"bytes,2,opt,name=next_page_token,json=nextPageToken,proto3" json:"next_page_token,omitempty"`
// contains filtered or unexported fields
}Response to listing of ApprovalRequest objects.
func (*ListApprovalRequestsResponse) Descriptor
func (*ListApprovalRequestsResponse) Descriptor() ([]byte, []int)Deprecated: Use ListApprovalRequestsResponse.ProtoReflect.Descriptor instead.
func (*ListApprovalRequestsResponse) GetApprovalRequests
func (x *ListApprovalRequestsResponse) GetApprovalRequests() []*ApprovalRequestfunc (*ListApprovalRequestsResponse) GetNextPageToken
func (x *ListApprovalRequestsResponse) GetNextPageToken() stringfunc (*ListApprovalRequestsResponse) ProtoMessage
func (*ListApprovalRequestsResponse) ProtoMessage()func (*ListApprovalRequestsResponse) ProtoReflect
func (x *ListApprovalRequestsResponse) ProtoReflect() protoreflect.Messagefunc (*ListApprovalRequestsResponse) Reset
func (x *ListApprovalRequestsResponse) Reset()func (*ListApprovalRequestsResponse) String
func (x *ListApprovalRequestsResponse) String() stringResourceProperties
type ResourceProperties struct {
// Whether an approval will exclude the descendants of the resource being
// requested.
ExcludesDescendants bool `protobuf:"varint,1,opt,name=excludes_descendants,json=excludesDescendants,proto3" json:"excludes_descendants,omitempty"`
// contains filtered or unexported fields
}The properties associated with the resource of the request.
func (*ResourceProperties) Descriptor
func (*ResourceProperties) Descriptor() ([]byte, []int)Deprecated: Use ResourceProperties.ProtoReflect.Descriptor instead.
func (*ResourceProperties) GetExcludesDescendants
func (x *ResourceProperties) GetExcludesDescendants() boolfunc (*ResourceProperties) ProtoMessage
func (*ResourceProperties) ProtoMessage()func (*ResourceProperties) ProtoReflect
func (x *ResourceProperties) ProtoReflect() protoreflect.Messagefunc (*ResourceProperties) Reset
func (x *ResourceProperties) Reset()func (*ResourceProperties) String
func (x *ResourceProperties) String() stringSignatureInfo
type SignatureInfo struct {
// The digital signature.
Signature []byte `protobuf:"bytes,1,opt,name=signature,proto3" json:"signature,omitempty"`
// How this signature may be verified.
//
// Types that are assignable to VerificationInfo:
// *SignatureInfo_GooglePublicKeyPem
// *SignatureInfo_CustomerKmsKeyVersion
VerificationInfo isSignatureInfo_VerificationInfo `protobuf_oneof:"verification_info"`
// contains filtered or unexported fields
}Information about the digital signature of the resource.
func (*SignatureInfo) Descriptor
func (*SignatureInfo) Descriptor() ([]byte, []int)Deprecated: Use SignatureInfo.ProtoReflect.Descriptor instead.
func (*SignatureInfo) GetCustomerKmsKeyVersion
func (x *SignatureInfo) GetCustomerKmsKeyVersion() stringfunc (*SignatureInfo) GetGooglePublicKeyPem
func (x *SignatureInfo) GetGooglePublicKeyPem() stringfunc (*SignatureInfo) GetSignature
func (x *SignatureInfo) GetSignature() []bytefunc (*SignatureInfo) GetVerificationInfo
func (m *SignatureInfo) GetVerificationInfo() isSignatureInfo_VerificationInfofunc (*SignatureInfo) ProtoMessage
func (*SignatureInfo) ProtoMessage()func (*SignatureInfo) ProtoReflect
func (x *SignatureInfo) ProtoReflect() protoreflect.Messagefunc (*SignatureInfo) Reset
func (x *SignatureInfo) Reset()func (*SignatureInfo) String
func (x *SignatureInfo) String() stringSignatureInfo_CustomerKmsKeyVersion
type SignatureInfo_CustomerKmsKeyVersion struct {
// The resource name of the customer CryptoKeyVersion used for signing.
CustomerKmsKeyVersion string `protobuf:"bytes,3,opt,name=customer_kms_key_version,json=customerKmsKeyVersion,proto3,oneof"`
}SignatureInfo_GooglePublicKeyPem
type SignatureInfo_GooglePublicKeyPem struct {
// The public key for the Google default signing, encoded in PEM format. The
// signature was created using a private key which may be verified using
// this public key.
GooglePublicKeyPem string `protobuf:"bytes,2,opt,name=google_public_key_pem,json=googlePublicKeyPem,proto3,oneof"`
}UnimplementedAccessApprovalServer
type UnimplementedAccessApprovalServer struct {
}UnimplementedAccessApprovalServer can be embedded to have forward compatible implementations.
func (*UnimplementedAccessApprovalServer) ApproveApprovalRequest
func (*UnimplementedAccessApprovalServer) ApproveApprovalRequest(context.Context, *ApproveApprovalRequestMessage) (*ApprovalRequest, error)func (*UnimplementedAccessApprovalServer) DeleteAccessApprovalSettings
func (*UnimplementedAccessApprovalServer) DeleteAccessApprovalSettings(context.Context, *DeleteAccessApprovalSettingsMessage) (*emptypb.Empty, error)func (*UnimplementedAccessApprovalServer) DismissApprovalRequest
func (*UnimplementedAccessApprovalServer) DismissApprovalRequest(context.Context, *DismissApprovalRequestMessage) (*ApprovalRequest, error)func (*UnimplementedAccessApprovalServer) GetAccessApprovalServiceAccount
func (*UnimplementedAccessApprovalServer) GetAccessApprovalServiceAccount(context.Context, *GetAccessApprovalServiceAccountMessage) (*AccessApprovalServiceAccount, error)func (*UnimplementedAccessApprovalServer) GetAccessApprovalSettings
func (*UnimplementedAccessApprovalServer) GetAccessApprovalSettings(context.Context, *GetAccessApprovalSettingsMessage) (*AccessApprovalSettings, error)func (*UnimplementedAccessApprovalServer) GetApprovalRequest
func (*UnimplementedAccessApprovalServer) GetApprovalRequest(context.Context, *GetApprovalRequestMessage) (*ApprovalRequest, error)func (*UnimplementedAccessApprovalServer) InvalidateApprovalRequest
func (*UnimplementedAccessApprovalServer) InvalidateApprovalRequest(context.Context, *InvalidateApprovalRequestMessage) (*ApprovalRequest, error)func (*UnimplementedAccessApprovalServer) ListApprovalRequests
func (*UnimplementedAccessApprovalServer) ListApprovalRequests(context.Context, *ListApprovalRequestsMessage) (*ListApprovalRequestsResponse, error)func (*UnimplementedAccessApprovalServer) UpdateAccessApprovalSettings
func (*UnimplementedAccessApprovalServer) UpdateAccessApprovalSettings(context.Context, *UpdateAccessApprovalSettingsMessage) (*AccessApprovalSettings, error)UpdateAccessApprovalSettingsMessage
type UpdateAccessApprovalSettingsMessage struct {
// The new AccessApprovalSettings.
Settings *AccessApprovalSettings `protobuf:"bytes,1,opt,name=settings,proto3" json:"settings,omitempty"`
// The update mask applies to the settings. Only the top level fields of
// AccessApprovalSettings (notification_emails & enrolled_services) are
// supported. For each field, if it is included, the currently stored value
// will be entirely overwritten with the value of the field passed in this
// request.
//
// For the `FieldMask` definition, see
// https://developers.google.com/protocol-buffers/docs/reference/google.protobuf#fieldmask
// If this field is left unset, only the notification_emails field will be
// updated.
UpdateMask *fieldmaskpb.FieldMask `protobuf:"bytes,2,opt,name=update_mask,json=updateMask,proto3" json:"update_mask,omitempty"`
// contains filtered or unexported fields
}Request to update access approval settings.
func (*UpdateAccessApprovalSettingsMessage) Descriptor
func (*UpdateAccessApprovalSettingsMessage) Descriptor() ([]byte, []int)Deprecated: Use UpdateAccessApprovalSettingsMessage.ProtoReflect.Descriptor instead.
func (*UpdateAccessApprovalSettingsMessage) GetSettings
func (x *UpdateAccessApprovalSettingsMessage) GetSettings() *AccessApprovalSettingsfunc (*UpdateAccessApprovalSettingsMessage) GetUpdateMask
func (x *UpdateAccessApprovalSettingsMessage) GetUpdateMask() *fieldmaskpb.FieldMaskfunc (*UpdateAccessApprovalSettingsMessage) ProtoMessage
func (*UpdateAccessApprovalSettingsMessage) ProtoMessage()func (*UpdateAccessApprovalSettingsMessage) ProtoReflect
func (x *UpdateAccessApprovalSettingsMessage) ProtoReflect() protoreflect.Messagefunc (*UpdateAccessApprovalSettingsMessage) Reset
func (x *UpdateAccessApprovalSettingsMessage) Reset()func (*UpdateAccessApprovalSettingsMessage) String
func (x *UpdateAccessApprovalSettingsMessage) String() string