Class FirewallClient (2.20.0)

public class FirewallClient implements BackgroundResource

Service Description: Firewall resources are used to define a collection of access control rules for an Application. Each rule is defined with a position which specifies the rule's order in the sequence of rules, an IP range to be matched against requests, and an action to take upon matching requests.

Every request is evaluated against the Firewall rules in priority order. Processesing stops at the first rule which matches the request's IP address. A final rule always specifies an action that applies to all remaining IP addresses. The default final rule for a newly-created application will be set to "allow" if not otherwise specified by the user.

This class provides the ability to make remote calls to the backing service through method calls that map to API methods. Sample code to get started:


 // This snippet has been automatically generated and should be regarded as a code template only.
 // It will require modifications to work:
 // - It may require correct/in-range values for request initialization.
 // - It may require specifying regional endpoints when creating the service client as shown in
 // https://cloud.google.com/java/docs/setup#configure_endpoints_for_the_client_library
 try (FirewallClient firewallClient = FirewallClient.create()) {
   BatchUpdateIngressRulesRequest request =
       BatchUpdateIngressRulesRequest.newBuilder()
           .setName("name3373707")
           .addAllIngressRules(new ArrayList<FirewallRule>())
           .build();
   BatchUpdateIngressRulesResponse response = firewallClient.batchUpdateIngressRules(request);
 }
 

Note: close() needs to be called on the FirewallClient object to clean up resources such as threads. In the example above, try-with-resources is used, which automatically calls close().

The surface of this class includes several types of Java methods for each of the API's methods:

  1. A "flattened" method. With this type of method, the fields of the request type have been converted into function parameters. It may be the case that not all fields are available as parameters, and not every API method will have a flattened method entry point.
  2. A "request object" method. This type of method only takes one parameter, a request object, which must be constructed before the call. Not every API method will have a request object method.
  3. A "callable" method. This type of method takes no parameters and returns an immutable API callable object, which can be used to initiate calls to the service.

See the individual methods for example code.

Many parameters require resource names to be formatted in a particular way. To assist with these names, this class includes a format method for each type of name, and additionally a parse method to extract the individual identifiers contained within names that are returned.

This class can be customized by passing in a custom instance of FirewallSettings to create(). For example:

To customize credentials:


 // This snippet has been automatically generated and should be regarded as a code template only.
 // It will require modifications to work:
 // - It may require correct/in-range values for request initialization.
 // - It may require specifying regional endpoints when creating the service client as shown in
 // https://cloud.google.com/java/docs/setup#configure_endpoints_for_the_client_library
 FirewallSettings firewallSettings =
     FirewallSettings.newBuilder()
         .setCredentialsProvider(FixedCredentialsProvider.create(myCredentials))
         .build();
 FirewallClient firewallClient = FirewallClient.create(firewallSettings);
 

To customize the endpoint:


 // This snippet has been automatically generated and should be regarded as a code template only.
 // It will require modifications to work:
 // - It may require correct/in-range values for request initialization.
 // - It may require specifying regional endpoints when creating the service client as shown in
 // https://cloud.google.com/java/docs/setup#configure_endpoints_for_the_client_library
 FirewallSettings firewallSettings =
     FirewallSettings.newBuilder().setEndpoint(myEndpoint).build();
 FirewallClient firewallClient = FirewallClient.create(firewallSettings);
 

To use REST (HTTP1.1/JSON) transport (instead of gRPC) for sending and receiving requests over the wire:


 // This snippet has been automatically generated and should be regarded as a code template only.
 // It will require modifications to work:
 // - It may require correct/in-range values for request initialization.
 // - It may require specifying regional endpoints when creating the service client as shown in
 // https://cloud.google.com/java/docs/setup#configure_endpoints_for_the_client_library
 FirewallSettings firewallSettings = FirewallSettings.newHttpJsonBuilder().build();
 FirewallClient firewallClient = FirewallClient.create(firewallSettings);
 

Please refer to the GitHub repository's samples for more quickstart code snippets.

Inheritance

java.lang.Object > FirewallClient

Implements

BackgroundResource

Static Methods

create()

public static final FirewallClient create()

Constructs an instance of FirewallClient with default settings.

Returns
TypeDescription
FirewallClient
Exceptions
TypeDescription
IOException

create(FirewallSettings settings)

public static final FirewallClient create(FirewallSettings settings)

Constructs an instance of FirewallClient, using the given settings. The channels are created based on the settings passed in, or defaults for any settings that are not set.

Parameter
NameDescription
settingsFirewallSettings
Returns
TypeDescription
FirewallClient
Exceptions
TypeDescription
IOException

create(FirewallStub stub)

public static final FirewallClient create(FirewallStub stub)

Constructs an instance of FirewallClient, using the given stub for making calls. This is for advanced usage - prefer using create(FirewallSettings).

Parameter
NameDescription
stubFirewallStub
Returns
TypeDescription
FirewallClient

Constructors

FirewallClient(FirewallSettings settings)

protected FirewallClient(FirewallSettings settings)

Constructs an instance of FirewallClient, using the given settings. This is protected so that it is easy to make a subclass, but otherwise, the static factory methods should be preferred.

Parameter
NameDescription
settingsFirewallSettings

FirewallClient(FirewallStub stub)

protected FirewallClient(FirewallStub stub)
Parameter
NameDescription
stubFirewallStub

Methods

awaitTermination(long duration, TimeUnit unit)

public boolean awaitTermination(long duration, TimeUnit unit)
Parameters
NameDescription
durationlong
unitTimeUnit
Returns
TypeDescription
boolean
Exceptions
TypeDescription
InterruptedException

batchUpdateIngressRules(BatchUpdateIngressRulesRequest request)

public final BatchUpdateIngressRulesResponse batchUpdateIngressRules(BatchUpdateIngressRulesRequest request)

Replaces the entire firewall ruleset in one bulk operation. This overrides and replaces the rules of an existing firewall with the new rules.

If the final rule does not match traffic with the '*' wildcard IP range, then an "allow all" rule is explicitly added to the end of the list.

Sample code:


 // This snippet has been automatically generated and should be regarded as a code template only.
 // It will require modifications to work:
 // - It may require correct/in-range values for request initialization.
 // - It may require specifying regional endpoints when creating the service client as shown in
 // https://cloud.google.com/java/docs/setup#configure_endpoints_for_the_client_library
 try (FirewallClient firewallClient = FirewallClient.create()) {
   BatchUpdateIngressRulesRequest request =
       BatchUpdateIngressRulesRequest.newBuilder()
           .setName("name3373707")
           .addAllIngressRules(new ArrayList<FirewallRule>())
           .build();
   BatchUpdateIngressRulesResponse response = firewallClient.batchUpdateIngressRules(request);
 }
 
Parameter
NameDescription
requestBatchUpdateIngressRulesRequest

The request object containing all of the parameters for the API call.

Returns
TypeDescription
BatchUpdateIngressRulesResponse

batchUpdateIngressRulesCallable()

public final UnaryCallable<BatchUpdateIngressRulesRequest,BatchUpdateIngressRulesResponse> batchUpdateIngressRulesCallable()

Replaces the entire firewall ruleset in one bulk operation. This overrides and replaces the rules of an existing firewall with the new rules.

If the final rule does not match traffic with the '*' wildcard IP range, then an "allow all" rule is explicitly added to the end of the list.

Sample code:


 // This snippet has been automatically generated and should be regarded as a code template only.
 // It will require modifications to work:
 // - It may require correct/in-range values for request initialization.
 // - It may require specifying regional endpoints when creating the service client as shown in
 // https://cloud.google.com/java/docs/setup#configure_endpoints_for_the_client_library
 try (FirewallClient firewallClient = FirewallClient.create()) {
   BatchUpdateIngressRulesRequest request =
       BatchUpdateIngressRulesRequest.newBuilder()
           .setName("name3373707")
           .addAllIngressRules(new ArrayList<FirewallRule>())
           .build();
   ApiFuture<BatchUpdateIngressRulesResponse> future =
       firewallClient.batchUpdateIngressRulesCallable().futureCall(request);
   // Do something.
   BatchUpdateIngressRulesResponse response = future.get();
 }
 
Returns
TypeDescription
UnaryCallable<BatchUpdateIngressRulesRequest,BatchUpdateIngressRulesResponse>

close()

public final void close()

createIngressRule(CreateIngressRuleRequest request)

public final FirewallRule createIngressRule(CreateIngressRuleRequest request)

Creates a firewall rule for the application.

Sample code:


 // This snippet has been automatically generated and should be regarded as a code template only.
 // It will require modifications to work:
 // - It may require correct/in-range values for request initialization.
 // - It may require specifying regional endpoints when creating the service client as shown in
 // https://cloud.google.com/java/docs/setup#configure_endpoints_for_the_client_library
 try (FirewallClient firewallClient = FirewallClient.create()) {
   CreateIngressRuleRequest request =
       CreateIngressRuleRequest.newBuilder()
           .setParent("parent-995424086")
           .setRule(FirewallRule.newBuilder().build())
           .build();
   FirewallRule response = firewallClient.createIngressRule(request);
 }
 
Parameter
NameDescription
requestCreateIngressRuleRequest

The request object containing all of the parameters for the API call.

Returns
TypeDescription
FirewallRule

createIngressRuleCallable()

public final UnaryCallable<CreateIngressRuleRequest,FirewallRule> createIngressRuleCallable()

Creates a firewall rule for the application.

Sample code:


 // This snippet has been automatically generated and should be regarded as a code template only.
 // It will require modifications to work:
 // - It may require correct/in-range values for request initialization.
 // - It may require specifying regional endpoints when creating the service client as shown in
 // https://cloud.google.com/java/docs/setup#configure_endpoints_for_the_client_library
 try (FirewallClient firewallClient = FirewallClient.create()) {
   CreateIngressRuleRequest request =
       CreateIngressRuleRequest.newBuilder()
           .setParent("parent-995424086")
           .setRule(FirewallRule.newBuilder().build())
           .build();
   ApiFuture<FirewallRule> future =
       firewallClient.createIngressRuleCallable().futureCall(request);
   // Do something.
   FirewallRule response = future.get();
 }
 
Returns
TypeDescription
UnaryCallable<CreateIngressRuleRequest,FirewallRule>

deleteIngressRule(DeleteIngressRuleRequest request)

public final void deleteIngressRule(DeleteIngressRuleRequest request)

Deletes the specified firewall rule.

Sample code:


 // This snippet has been automatically generated and should be regarded as a code template only.
 // It will require modifications to work:
 // - It may require correct/in-range values for request initialization.
 // - It may require specifying regional endpoints when creating the service client as shown in
 // https://cloud.google.com/java/docs/setup#configure_endpoints_for_the_client_library
 try (FirewallClient firewallClient = FirewallClient.create()) {
   DeleteIngressRuleRequest request =
       DeleteIngressRuleRequest.newBuilder().setName("name3373707").build();
   firewallClient.deleteIngressRule(request);
 }
 
Parameter
NameDescription
requestDeleteIngressRuleRequest

The request object containing all of the parameters for the API call.

deleteIngressRuleCallable()

public final UnaryCallable<DeleteIngressRuleRequest,Empty> deleteIngressRuleCallable()

Deletes the specified firewall rule.

Sample code:


 // This snippet has been automatically generated and should be regarded as a code template only.
 // It will require modifications to work:
 // - It may require correct/in-range values for request initialization.
 // - It may require specifying regional endpoints when creating the service client as shown in
 // https://cloud.google.com/java/docs/setup#configure_endpoints_for_the_client_library
 try (FirewallClient firewallClient = FirewallClient.create()) {
   DeleteIngressRuleRequest request =
       DeleteIngressRuleRequest.newBuilder().setName("name3373707").build();
   ApiFuture<Empty> future = firewallClient.deleteIngressRuleCallable().futureCall(request);
   // Do something.
   future.get();
 }
 
Returns
TypeDescription
UnaryCallable<DeleteIngressRuleRequest,Empty>

getIngressRule(GetIngressRuleRequest request)

public final FirewallRule getIngressRule(GetIngressRuleRequest request)

Gets the specified firewall rule.

Sample code:


 // This snippet has been automatically generated and should be regarded as a code template only.
 // It will require modifications to work:
 // - It may require correct/in-range values for request initialization.
 // - It may require specifying regional endpoints when creating the service client as shown in
 // https://cloud.google.com/java/docs/setup#configure_endpoints_for_the_client_library
 try (FirewallClient firewallClient = FirewallClient.create()) {
   GetIngressRuleRequest request =
       GetIngressRuleRequest.newBuilder().setName("name3373707").build();
   FirewallRule response = firewallClient.getIngressRule(request);
 }
 
Parameter
NameDescription
requestGetIngressRuleRequest

The request object containing all of the parameters for the API call.

Returns
TypeDescription
FirewallRule

getIngressRuleCallable()

public final UnaryCallable<GetIngressRuleRequest,FirewallRule> getIngressRuleCallable()

Gets the specified firewall rule.

Sample code:


 // This snippet has been automatically generated and should be regarded as a code template only.
 // It will require modifications to work:
 // - It may require correct/in-range values for request initialization.
 // - It may require specifying regional endpoints when creating the service client as shown in
 // https://cloud.google.com/java/docs/setup#configure_endpoints_for_the_client_library
 try (FirewallClient firewallClient = FirewallClient.create()) {
   GetIngressRuleRequest request =
       GetIngressRuleRequest.newBuilder().setName("name3373707").build();
   ApiFuture<FirewallRule> future = firewallClient.getIngressRuleCallable().futureCall(request);
   // Do something.
   FirewallRule response = future.get();
 }
 
Returns
TypeDescription
UnaryCallable<GetIngressRuleRequest,FirewallRule>

getSettings()

public final FirewallSettings getSettings()
Returns
TypeDescription
FirewallSettings

getStub()

public FirewallStub getStub()
Returns
TypeDescription
FirewallStub

isShutdown()

public boolean isShutdown()
Returns
TypeDescription
boolean

isTerminated()

public boolean isTerminated()
Returns
TypeDescription
boolean

listIngressRules(ListIngressRulesRequest request)

public final FirewallClient.ListIngressRulesPagedResponse listIngressRules(ListIngressRulesRequest request)

Lists the firewall rules of an application.

Sample code:


 // This snippet has been automatically generated and should be regarded as a code template only.
 // It will require modifications to work:
 // - It may require correct/in-range values for request initialization.
 // - It may require specifying regional endpoints when creating the service client as shown in
 // https://cloud.google.com/java/docs/setup#configure_endpoints_for_the_client_library
 try (FirewallClient firewallClient = FirewallClient.create()) {
   ListIngressRulesRequest request =
       ListIngressRulesRequest.newBuilder()
           .setParent("parent-995424086")
           .setPageSize(883849137)
           .setPageToken("pageToken873572522")
           .setMatchingAddress("matchingAddress861962551")
           .build();
   for (FirewallRule element : firewallClient.listIngressRules(request).iterateAll()) {
     // doThingsWith(element);
   }
 }
 
Parameter
NameDescription
requestListIngressRulesRequest

The request object containing all of the parameters for the API call.

Returns
TypeDescription
FirewallClient.ListIngressRulesPagedResponse

listIngressRulesCallable()

public final UnaryCallable<ListIngressRulesRequest,ListIngressRulesResponse> listIngressRulesCallable()

Lists the firewall rules of an application.

Sample code:


 // This snippet has been automatically generated and should be regarded as a code template only.
 // It will require modifications to work:
 // - It may require correct/in-range values for request initialization.
 // - It may require specifying regional endpoints when creating the service client as shown in
 // https://cloud.google.com/java/docs/setup#configure_endpoints_for_the_client_library
 try (FirewallClient firewallClient = FirewallClient.create()) {
   ListIngressRulesRequest request =
       ListIngressRulesRequest.newBuilder()
           .setParent("parent-995424086")
           .setPageSize(883849137)
           .setPageToken("pageToken873572522")
           .setMatchingAddress("matchingAddress861962551")
           .build();
   while (true) {
     ListIngressRulesResponse response = firewallClient.listIngressRulesCallable().call(request);
     for (FirewallRule element : response.getIngressRulesList()) {
       // doThingsWith(element);
     }
     String nextPageToken = response.getNextPageToken();
     if (!Strings.isNullOrEmpty(nextPageToken)) {
       request = request.toBuilder().setPageToken(nextPageToken).build();
     } else {
       break;
     }
   }
 }
 
Returns
TypeDescription
UnaryCallable<ListIngressRulesRequest,ListIngressRulesResponse>

listIngressRulesPagedCallable()

public final UnaryCallable<ListIngressRulesRequest,FirewallClient.ListIngressRulesPagedResponse> listIngressRulesPagedCallable()

Lists the firewall rules of an application.

Sample code:


 // This snippet has been automatically generated and should be regarded as a code template only.
 // It will require modifications to work:
 // - It may require correct/in-range values for request initialization.
 // - It may require specifying regional endpoints when creating the service client as shown in
 // https://cloud.google.com/java/docs/setup#configure_endpoints_for_the_client_library
 try (FirewallClient firewallClient = FirewallClient.create()) {
   ListIngressRulesRequest request =
       ListIngressRulesRequest.newBuilder()
           .setParent("parent-995424086")
           .setPageSize(883849137)
           .setPageToken("pageToken873572522")
           .setMatchingAddress("matchingAddress861962551")
           .build();
   ApiFuture<FirewallRule> future =
       firewallClient.listIngressRulesPagedCallable().futureCall(request);
   // Do something.
   for (FirewallRule element : future.get().iterateAll()) {
     // doThingsWith(element);
   }
 }
 
Returns
TypeDescription
UnaryCallable<ListIngressRulesRequest,ListIngressRulesPagedResponse>

shutdown()

public void shutdown()

shutdownNow()

public void shutdownNow()

updateIngressRule(UpdateIngressRuleRequest request)

public final FirewallRule updateIngressRule(UpdateIngressRuleRequest request)

Updates the specified firewall rule.

Sample code:


 // This snippet has been automatically generated and should be regarded as a code template only.
 // It will require modifications to work:
 // - It may require correct/in-range values for request initialization.
 // - It may require specifying regional endpoints when creating the service client as shown in
 // https://cloud.google.com/java/docs/setup#configure_endpoints_for_the_client_library
 try (FirewallClient firewallClient = FirewallClient.create()) {
   UpdateIngressRuleRequest request =
       UpdateIngressRuleRequest.newBuilder()
           .setName("name3373707")
           .setRule(FirewallRule.newBuilder().build())
           .setUpdateMask(FieldMask.newBuilder().build())
           .build();
   FirewallRule response = firewallClient.updateIngressRule(request);
 }
 
Parameter
NameDescription
requestUpdateIngressRuleRequest

The request object containing all of the parameters for the API call.

Returns
TypeDescription
FirewallRule

updateIngressRuleCallable()

public final UnaryCallable<UpdateIngressRuleRequest,FirewallRule> updateIngressRuleCallable()

Updates the specified firewall rule.

Sample code:


 // This snippet has been automatically generated and should be regarded as a code template only.
 // It will require modifications to work:
 // - It may require correct/in-range values for request initialization.
 // - It may require specifying regional endpoints when creating the service client as shown in
 // https://cloud.google.com/java/docs/setup#configure_endpoints_for_the_client_library
 try (FirewallClient firewallClient = FirewallClient.create()) {
   UpdateIngressRuleRequest request =
       UpdateIngressRuleRequest.newBuilder()
           .setName("name3373707")
           .setRule(FirewallRule.newBuilder().build())
           .setUpdateMask(FieldMask.newBuilder().build())
           .build();
   ApiFuture<FirewallRule> future =
       firewallClient.updateIngressRuleCallable().futureCall(request);
   // Do something.
   FirewallRule response = future.get();
 }
 
Returns
TypeDescription
UnaryCallable<UpdateIngressRuleRequest,FirewallRule>