public static final class IamPolicyAnalysisResult.AccessControlList extends GeneratedMessageV3 implements IamPolicyAnalysisResult.AccessControlListOrBuilder
An access control list, derived from the above IAM policy binding, which
contains a set of resources and accesses. May include one
item from each set to compose an access control entry.
NOTICE that there could be multiple access control lists for one IAM policy
binding. The access control lists are created based on resource and access
combinations.
For example, assume we have the following cases in one IAM policy binding:
- Permission P1 and P2 apply to resource R1 and R2;
- Permission P3 applies to resource R2 and R3;
This will result in the following access control lists:
- AccessControlList 1: [R1, R2], [P1, P2]
- AccessControlList 2: [R2, R3], [P3]
Protobuf type google.cloud.asset.v1.IamPolicyAnalysisResult.AccessControlList
Static Fields
ACCESSES_FIELD_NUMBER
public static final int ACCESSES_FIELD_NUMBER
Field Value |
Type |
Description |
int |
|
CONDITION_EVALUATION_FIELD_NUMBER
public static final int CONDITION_EVALUATION_FIELD_NUMBER
Field Value |
Type |
Description |
int |
|
RESOURCES_FIELD_NUMBER
public static final int RESOURCES_FIELD_NUMBER
Field Value |
Type |
Description |
int |
|
RESOURCE_EDGES_FIELD_NUMBER
public static final int RESOURCE_EDGES_FIELD_NUMBER
Field Value |
Type |
Description |
int |
|
Static Methods
getDefaultInstance()
public static IamPolicyAnalysisResult.AccessControlList getDefaultInstance()
getDescriptor()
public static final Descriptors.Descriptor getDescriptor()
newBuilder()
public static IamPolicyAnalysisResult.AccessControlList.Builder newBuilder()
newBuilder(IamPolicyAnalysisResult.AccessControlList prototype)
public static IamPolicyAnalysisResult.AccessControlList.Builder newBuilder(IamPolicyAnalysisResult.AccessControlList prototype)
public static IamPolicyAnalysisResult.AccessControlList parseDelimitedFrom(InputStream input)
public static IamPolicyAnalysisResult.AccessControlList parseDelimitedFrom(InputStream input, ExtensionRegistryLite extensionRegistry)
parseFrom(byte[] data)
public static IamPolicyAnalysisResult.AccessControlList parseFrom(byte[] data)
Parameter |
Name |
Description |
data |
byte[]
|
parseFrom(byte[] data, ExtensionRegistryLite extensionRegistry)
public static IamPolicyAnalysisResult.AccessControlList parseFrom(byte[] data, ExtensionRegistryLite extensionRegistry)
parseFrom(ByteString data)
public static IamPolicyAnalysisResult.AccessControlList parseFrom(ByteString data)
parseFrom(ByteString data, ExtensionRegistryLite extensionRegistry)
public static IamPolicyAnalysisResult.AccessControlList parseFrom(ByteString data, ExtensionRegistryLite extensionRegistry)
public static IamPolicyAnalysisResult.AccessControlList parseFrom(CodedInputStream input)
public static IamPolicyAnalysisResult.AccessControlList parseFrom(CodedInputStream input, ExtensionRegistryLite extensionRegistry)
public static IamPolicyAnalysisResult.AccessControlList parseFrom(InputStream input)
public static IamPolicyAnalysisResult.AccessControlList parseFrom(InputStream input, ExtensionRegistryLite extensionRegistry)
parseFrom(ByteBuffer data)
public static IamPolicyAnalysisResult.AccessControlList parseFrom(ByteBuffer data)
parseFrom(ByteBuffer data, ExtensionRegistryLite extensionRegistry)
public static IamPolicyAnalysisResult.AccessControlList parseFrom(ByteBuffer data, ExtensionRegistryLite extensionRegistry)
parser()
public static Parser<IamPolicyAnalysisResult.AccessControlList> parser()
Methods
equals(Object obj)
public boolean equals(Object obj)
Parameter |
Name |
Description |
obj |
Object
|
Overrides
getAccesses(int index)
public IamPolicyAnalysisResult.Access getAccesses(int index)
The accesses that match one of the following conditions:
- The access_selector, if it is specified in request;
- Otherwise, access specifiers reachable from the policy binding's role.
repeated .google.cloud.asset.v1.IamPolicyAnalysisResult.Access accesses = 2;
Parameter |
Name |
Description |
index |
int
|
getAccessesCount()
public int getAccessesCount()
The accesses that match one of the following conditions:
- The access_selector, if it is specified in request;
- Otherwise, access specifiers reachable from the policy binding's role.
repeated .google.cloud.asset.v1.IamPolicyAnalysisResult.Access accesses = 2;
Returns |
Type |
Description |
int |
|
getAccessesList()
public List<IamPolicyAnalysisResult.Access> getAccessesList()
The accesses that match one of the following conditions:
- The access_selector, if it is specified in request;
- Otherwise, access specifiers reachable from the policy binding's role.
repeated .google.cloud.asset.v1.IamPolicyAnalysisResult.Access accesses = 2;
getAccessesOrBuilder(int index)
public IamPolicyAnalysisResult.AccessOrBuilder getAccessesOrBuilder(int index)
The accesses that match one of the following conditions:
- The access_selector, if it is specified in request;
- Otherwise, access specifiers reachable from the policy binding's role.
repeated .google.cloud.asset.v1.IamPolicyAnalysisResult.Access accesses = 2;
Parameter |
Name |
Description |
index |
int
|
getAccessesOrBuilderList()
public List<? extends IamPolicyAnalysisResult.AccessOrBuilder> getAccessesOrBuilderList()
The accesses that match one of the following conditions:
- The access_selector, if it is specified in request;
- Otherwise, access specifiers reachable from the policy binding's role.
repeated .google.cloud.asset.v1.IamPolicyAnalysisResult.Access accesses = 2;
Returns |
Type |
Description |
List<? extends com.google.cloud.asset.v1.IamPolicyAnalysisResult.AccessOrBuilder> |
|
getConditionEvaluation()
public ConditionEvaluation getConditionEvaluation()
Condition evaluation for this AccessControlList, if there is a condition
defined in the above IAM policy binding.
.google.cloud.asset.v1.ConditionEvaluation condition_evaluation = 4;
getConditionEvaluationOrBuilder()
public ConditionEvaluationOrBuilder getConditionEvaluationOrBuilder()
Condition evaluation for this AccessControlList, if there is a condition
defined in the above IAM policy binding.
.google.cloud.asset.v1.ConditionEvaluation condition_evaluation = 4;
getDefaultInstanceForType()
public IamPolicyAnalysisResult.AccessControlList getDefaultInstanceForType()
getParserForType()
public Parser<IamPolicyAnalysisResult.AccessControlList> getParserForType()
Overrides
getResourceEdges(int index)
public IamPolicyAnalysisResult.Edge getResourceEdges(int index)
Resource edges of the graph starting from the policy attached
resource to any descendant resources. The
Edge.source_node
contains the full resource name of a parent resource and
Edge.target_node
contains the full resource name of a child resource. This field is
present only if the output_resource_edges option is enabled in request.
repeated .google.cloud.asset.v1.IamPolicyAnalysisResult.Edge resource_edges = 3;
Parameter |
Name |
Description |
index |
int
|
getResourceEdgesCount()
public int getResourceEdgesCount()
Resource edges of the graph starting from the policy attached
resource to any descendant resources. The
Edge.source_node
contains the full resource name of a parent resource and
Edge.target_node
contains the full resource name of a child resource. This field is
present only if the output_resource_edges option is enabled in request.
repeated .google.cloud.asset.v1.IamPolicyAnalysisResult.Edge resource_edges = 3;
Returns |
Type |
Description |
int |
|
getResourceEdgesList()
public List<IamPolicyAnalysisResult.Edge> getResourceEdgesList()
Resource edges of the graph starting from the policy attached
resource to any descendant resources. The
Edge.source_node
contains the full resource name of a parent resource and
Edge.target_node
contains the full resource name of a child resource. This field is
present only if the output_resource_edges option is enabled in request.
repeated .google.cloud.asset.v1.IamPolicyAnalysisResult.Edge resource_edges = 3;
getResourceEdgesOrBuilder(int index)
public IamPolicyAnalysisResult.EdgeOrBuilder getResourceEdgesOrBuilder(int index)
Resource edges of the graph starting from the policy attached
resource to any descendant resources. The
Edge.source_node
contains the full resource name of a parent resource and
Edge.target_node
contains the full resource name of a child resource. This field is
present only if the output_resource_edges option is enabled in request.
repeated .google.cloud.asset.v1.IamPolicyAnalysisResult.Edge resource_edges = 3;
Parameter |
Name |
Description |
index |
int
|
getResourceEdgesOrBuilderList()
public List<? extends IamPolicyAnalysisResult.EdgeOrBuilder> getResourceEdgesOrBuilderList()
Resource edges of the graph starting from the policy attached
resource to any descendant resources. The
Edge.source_node
contains the full resource name of a parent resource and
Edge.target_node
contains the full resource name of a child resource. This field is
present only if the output_resource_edges option is enabled in request.
repeated .google.cloud.asset.v1.IamPolicyAnalysisResult.Edge resource_edges = 3;
Returns |
Type |
Description |
List<? extends com.google.cloud.asset.v1.IamPolicyAnalysisResult.EdgeOrBuilder> |
|
getResources(int index)
public IamPolicyAnalysisResult.Resource getResources(int index)
The resources that match one of the following conditions:
- The resource_selector, if it is specified in request;
- Otherwise, resources reachable from the policy attached resource.
repeated .google.cloud.asset.v1.IamPolicyAnalysisResult.Resource resources = 1;
Parameter |
Name |
Description |
index |
int
|
getResourcesCount()
public int getResourcesCount()
The resources that match one of the following conditions:
- The resource_selector, if it is specified in request;
- Otherwise, resources reachable from the policy attached resource.
repeated .google.cloud.asset.v1.IamPolicyAnalysisResult.Resource resources = 1;
Returns |
Type |
Description |
int |
|
getResourcesList()
public List<IamPolicyAnalysisResult.Resource> getResourcesList()
The resources that match one of the following conditions:
- The resource_selector, if it is specified in request;
- Otherwise, resources reachable from the policy attached resource.
repeated .google.cloud.asset.v1.IamPolicyAnalysisResult.Resource resources = 1;
getResourcesOrBuilder(int index)
public IamPolicyAnalysisResult.ResourceOrBuilder getResourcesOrBuilder(int index)
The resources that match one of the following conditions:
- The resource_selector, if it is specified in request;
- Otherwise, resources reachable from the policy attached resource.
repeated .google.cloud.asset.v1.IamPolicyAnalysisResult.Resource resources = 1;
Parameter |
Name |
Description |
index |
int
|
getResourcesOrBuilderList()
public List<? extends IamPolicyAnalysisResult.ResourceOrBuilder> getResourcesOrBuilderList()
The resources that match one of the following conditions:
- The resource_selector, if it is specified in request;
- Otherwise, resources reachable from the policy attached resource.
repeated .google.cloud.asset.v1.IamPolicyAnalysisResult.Resource resources = 1;
Returns |
Type |
Description |
List<? extends com.google.cloud.asset.v1.IamPolicyAnalysisResult.ResourceOrBuilder> |
|
getSerializedSize()
public int getSerializedSize()
Returns |
Type |
Description |
int |
|
Overrides
getUnknownFields()
public final UnknownFieldSet getUnknownFields()
Overrides
hasConditionEvaluation()
public boolean hasConditionEvaluation()
Condition evaluation for this AccessControlList, if there is a condition
defined in the above IAM policy binding.
.google.cloud.asset.v1.ConditionEvaluation condition_evaluation = 4;
Returns |
Type |
Description |
boolean |
Whether the conditionEvaluation field is set.
|
hashCode()
Returns |
Type |
Description |
int |
|
Overrides
internalGetFieldAccessorTable()
protected GeneratedMessageV3.FieldAccessorTable internalGetFieldAccessorTable()
Overrides
isInitialized()
public final boolean isInitialized()
Overrides
newBuilderForType()
public IamPolicyAnalysisResult.AccessControlList.Builder newBuilderForType()
newBuilderForType(GeneratedMessageV3.BuilderParent parent)
protected IamPolicyAnalysisResult.AccessControlList.Builder newBuilderForType(GeneratedMessageV3.BuilderParent parent)
Overrides
newInstance(GeneratedMessageV3.UnusedPrivateParameter unused)
protected Object newInstance(GeneratedMessageV3.UnusedPrivateParameter unused)
Returns |
Type |
Description |
Object |
|
Overrides
toBuilder()
public IamPolicyAnalysisResult.AccessControlList.Builder toBuilder()
writeTo(CodedOutputStream output)
public void writeTo(CodedOutputStream output)
Overrides