- 1.54.0 (latest)
- 1.53.0
- 1.52.0
- 1.51.0
- 1.50.0
- 1.48.0
- 1.47.0
- 1.46.0
- 1.45.0
- 1.44.0
- 1.43.0
- 1.42.0
- 1.41.0
- 1.40.0
- 1.39.0
- 1.38.0
- 1.36.0
- 1.35.0
- 1.34.0
- 1.33.0
- 1.32.0
- 1.31.0
- 1.30.0
- 1.29.0
- 1.28.0
- 1.27.0
- 1.26.0
- 1.23.0
- 1.22.0
- 1.21.0
- 1.20.0
- 1.19.0
- 1.18.0
- 1.17.0
- 1.16.0
- 1.15.0
- 1.14.0
- 1.13.0
- 1.12.0
- 1.11.0
- 1.10.0
- 1.9.0
- 1.8.0
- 1.7.0
- 1.6.0
- 1.5.0
- 1.4.0
- 1.3.0
- 1.0.6
public static final class Resources.AdmissionRule.Builder extends GeneratedMessageV3.Builder<Resources.AdmissionRule.Builder> implements Resources.AdmissionRuleOrBuilder
An admission rule specifies either that all container images used in a pod creation request must be attested to by one or more attestors, that all pod creations will be allowed, or that all pod creations will be denied. Images matching an admission allowlist pattern are exempted from admission rules and will never block a pod creation.
Protobuf type google.cloud.binaryauthorization.v1.AdmissionRule
Inheritance
Object > AbstractMessageLite.Builder<MessageType,BuilderType> > AbstractMessage.Builder<BuilderType> > GeneratedMessageV3.Builder > Resources.AdmissionRule.BuilderImplements
Resources.AdmissionRuleOrBuilderStatic Methods
getDescriptor()
public static final Descriptors.Descriptor getDescriptor()
Type | Description |
Descriptor |
Methods
addAllRequireAttestationsBy(Iterable<String> values)
public Resources.AdmissionRule.Builder addAllRequireAttestationsBy(Iterable<String> values)
Optional. The resource names of the attestors that must attest to
a container image, in the format projects/*/attestors/*
. Each
attestor must exist before a policy can reference it. To add an attestor
to a policy the principal issuing the policy change request must be able
to read the attestor resource.
Note: this field must be non-empty when the evaluation_mode field specifies
REQUIRE_ATTESTATION, otherwise it must be empty.
repeated string require_attestations_by = 2 [(.google.api.field_behavior) = OPTIONAL];
Name | Description |
values | Iterable<String> The requireAttestationsBy to add. |
Type | Description |
Resources.AdmissionRule.Builder | This builder for chaining. |
addRepeatedField(Descriptors.FieldDescriptor field, Object value)
public Resources.AdmissionRule.Builder addRepeatedField(Descriptors.FieldDescriptor field, Object value)
Name | Description |
field | FieldDescriptor |
value | Object |
Type | Description |
Resources.AdmissionRule.Builder |
addRequireAttestationsBy(String value)
public Resources.AdmissionRule.Builder addRequireAttestationsBy(String value)
Optional. The resource names of the attestors that must attest to
a container image, in the format projects/*/attestors/*
. Each
attestor must exist before a policy can reference it. To add an attestor
to a policy the principal issuing the policy change request must be able
to read the attestor resource.
Note: this field must be non-empty when the evaluation_mode field specifies
REQUIRE_ATTESTATION, otherwise it must be empty.
repeated string require_attestations_by = 2 [(.google.api.field_behavior) = OPTIONAL];
Name | Description |
value | String The requireAttestationsBy to add. |
Type | Description |
Resources.AdmissionRule.Builder | This builder for chaining. |
addRequireAttestationsByBytes(ByteString value)
public Resources.AdmissionRule.Builder addRequireAttestationsByBytes(ByteString value)
Optional. The resource names of the attestors that must attest to
a container image, in the format projects/*/attestors/*
. Each
attestor must exist before a policy can reference it. To add an attestor
to a policy the principal issuing the policy change request must be able
to read the attestor resource.
Note: this field must be non-empty when the evaluation_mode field specifies
REQUIRE_ATTESTATION, otherwise it must be empty.
repeated string require_attestations_by = 2 [(.google.api.field_behavior) = OPTIONAL];
Name | Description |
value | ByteString The bytes of the requireAttestationsBy to add. |
Type | Description |
Resources.AdmissionRule.Builder | This builder for chaining. |
build()
public Resources.AdmissionRule build()
Type | Description |
Resources.AdmissionRule |
buildPartial()
public Resources.AdmissionRule buildPartial()
Type | Description |
Resources.AdmissionRule |
clear()
public Resources.AdmissionRule.Builder clear()
Type | Description |
Resources.AdmissionRule.Builder |
clearEnforcementMode()
public Resources.AdmissionRule.Builder clearEnforcementMode()
Required. The action when a pod creation is denied by the admission rule.
.google.cloud.binaryauthorization.v1.AdmissionRule.EnforcementMode enforcement_mode = 3 [(.google.api.field_behavior) = REQUIRED];
Type | Description |
Resources.AdmissionRule.Builder | This builder for chaining. |
clearEvaluationMode()
public Resources.AdmissionRule.Builder clearEvaluationMode()
Required. How this admission rule will be evaluated.
.google.cloud.binaryauthorization.v1.AdmissionRule.EvaluationMode evaluation_mode = 1 [(.google.api.field_behavior) = REQUIRED];
Type | Description |
Resources.AdmissionRule.Builder | This builder for chaining. |
clearField(Descriptors.FieldDescriptor field)
public Resources.AdmissionRule.Builder clearField(Descriptors.FieldDescriptor field)
Name | Description |
field | FieldDescriptor |
Type | Description |
Resources.AdmissionRule.Builder |
clearOneof(Descriptors.OneofDescriptor oneof)
public Resources.AdmissionRule.Builder clearOneof(Descriptors.OneofDescriptor oneof)
Name | Description |
oneof | OneofDescriptor |
Type | Description |
Resources.AdmissionRule.Builder |
clearRequireAttestationsBy()
public Resources.AdmissionRule.Builder clearRequireAttestationsBy()
Optional. The resource names of the attestors that must attest to
a container image, in the format projects/*/attestors/*
. Each
attestor must exist before a policy can reference it. To add an attestor
to a policy the principal issuing the policy change request must be able
to read the attestor resource.
Note: this field must be non-empty when the evaluation_mode field specifies
REQUIRE_ATTESTATION, otherwise it must be empty.
repeated string require_attestations_by = 2 [(.google.api.field_behavior) = OPTIONAL];
Type | Description |
Resources.AdmissionRule.Builder | This builder for chaining. |
clone()
public Resources.AdmissionRule.Builder clone()
Type | Description |
Resources.AdmissionRule.Builder |
getDefaultInstanceForType()
public Resources.AdmissionRule getDefaultInstanceForType()
Type | Description |
Resources.AdmissionRule |
getDescriptorForType()
public Descriptors.Descriptor getDescriptorForType()
Type | Description |
Descriptor |
getEnforcementMode()
public Resources.AdmissionRule.EnforcementMode getEnforcementMode()
Required. The action when a pod creation is denied by the admission rule.
.google.cloud.binaryauthorization.v1.AdmissionRule.EnforcementMode enforcement_mode = 3 [(.google.api.field_behavior) = REQUIRED];
Type | Description |
Resources.AdmissionRule.EnforcementMode | The enforcementMode. |
getEnforcementModeValue()
public int getEnforcementModeValue()
Required. The action when a pod creation is denied by the admission rule.
.google.cloud.binaryauthorization.v1.AdmissionRule.EnforcementMode enforcement_mode = 3 [(.google.api.field_behavior) = REQUIRED];
Type | Description |
int | The enum numeric value on the wire for enforcementMode. |
getEvaluationMode()
public Resources.AdmissionRule.EvaluationMode getEvaluationMode()
Required. How this admission rule will be evaluated.
.google.cloud.binaryauthorization.v1.AdmissionRule.EvaluationMode evaluation_mode = 1 [(.google.api.field_behavior) = REQUIRED];
Type | Description |
Resources.AdmissionRule.EvaluationMode | The evaluationMode. |
getEvaluationModeValue()
public int getEvaluationModeValue()
Required. How this admission rule will be evaluated.
.google.cloud.binaryauthorization.v1.AdmissionRule.EvaluationMode evaluation_mode = 1 [(.google.api.field_behavior) = REQUIRED];
Type | Description |
int | The enum numeric value on the wire for evaluationMode. |
getRequireAttestationsBy(int index)
public String getRequireAttestationsBy(int index)
Optional. The resource names of the attestors that must attest to
a container image, in the format projects/*/attestors/*
. Each
attestor must exist before a policy can reference it. To add an attestor
to a policy the principal issuing the policy change request must be able
to read the attestor resource.
Note: this field must be non-empty when the evaluation_mode field specifies
REQUIRE_ATTESTATION, otherwise it must be empty.
repeated string require_attestations_by = 2 [(.google.api.field_behavior) = OPTIONAL];
Name | Description |
index | int The index of the element to return. |
Type | Description |
String | The requireAttestationsBy at the given index. |
getRequireAttestationsByBytes(int index)
public ByteString getRequireAttestationsByBytes(int index)
Optional. The resource names of the attestors that must attest to
a container image, in the format projects/*/attestors/*
. Each
attestor must exist before a policy can reference it. To add an attestor
to a policy the principal issuing the policy change request must be able
to read the attestor resource.
Note: this field must be non-empty when the evaluation_mode field specifies
REQUIRE_ATTESTATION, otherwise it must be empty.
repeated string require_attestations_by = 2 [(.google.api.field_behavior) = OPTIONAL];
Name | Description |
index | int The index of the value to return. |
Type | Description |
ByteString | The bytes of the requireAttestationsBy at the given index. |
getRequireAttestationsByCount()
public int getRequireAttestationsByCount()
Optional. The resource names of the attestors that must attest to
a container image, in the format projects/*/attestors/*
. Each
attestor must exist before a policy can reference it. To add an attestor
to a policy the principal issuing the policy change request must be able
to read the attestor resource.
Note: this field must be non-empty when the evaluation_mode field specifies
REQUIRE_ATTESTATION, otherwise it must be empty.
repeated string require_attestations_by = 2 [(.google.api.field_behavior) = OPTIONAL];
Type | Description |
int | The count of requireAttestationsBy. |
getRequireAttestationsByList()
public ProtocolStringList getRequireAttestationsByList()
Optional. The resource names of the attestors that must attest to
a container image, in the format projects/*/attestors/*
. Each
attestor must exist before a policy can reference it. To add an attestor
to a policy the principal issuing the policy change request must be able
to read the attestor resource.
Note: this field must be non-empty when the evaluation_mode field specifies
REQUIRE_ATTESTATION, otherwise it must be empty.
repeated string require_attestations_by = 2 [(.google.api.field_behavior) = OPTIONAL];
Type | Description |
ProtocolStringList | A list containing the requireAttestationsBy. |
internalGetFieldAccessorTable()
protected GeneratedMessageV3.FieldAccessorTable internalGetFieldAccessorTable()
Type | Description |
FieldAccessorTable |
isInitialized()
public final boolean isInitialized()
Type | Description |
boolean |
mergeFrom(CodedInputStream input, ExtensionRegistryLite extensionRegistry)
public Resources.AdmissionRule.Builder mergeFrom(CodedInputStream input, ExtensionRegistryLite extensionRegistry)
Name | Description |
input | CodedInputStream |
extensionRegistry | ExtensionRegistryLite |
Type | Description |
Resources.AdmissionRule.Builder |
Type | Description |
IOException |
mergeFrom(Message other)
public Resources.AdmissionRule.Builder mergeFrom(Message other)
Name | Description |
other | Message |
Type | Description |
Resources.AdmissionRule.Builder |
mergeFrom(Resources.AdmissionRule other)
public Resources.AdmissionRule.Builder mergeFrom(Resources.AdmissionRule other)
Name | Description |
other | Resources.AdmissionRule |
Type | Description |
Resources.AdmissionRule.Builder |
mergeUnknownFields(UnknownFieldSet unknownFields)
public final Resources.AdmissionRule.Builder mergeUnknownFields(UnknownFieldSet unknownFields)
Name | Description |
unknownFields | UnknownFieldSet |
Type | Description |
Resources.AdmissionRule.Builder |
setEnforcementMode(Resources.AdmissionRule.EnforcementMode value)
public Resources.AdmissionRule.Builder setEnforcementMode(Resources.AdmissionRule.EnforcementMode value)
Required. The action when a pod creation is denied by the admission rule.
.google.cloud.binaryauthorization.v1.AdmissionRule.EnforcementMode enforcement_mode = 3 [(.google.api.field_behavior) = REQUIRED];
Name | Description |
value | Resources.AdmissionRule.EnforcementMode The enforcementMode to set. |
Type | Description |
Resources.AdmissionRule.Builder | This builder for chaining. |
setEnforcementModeValue(int value)
public Resources.AdmissionRule.Builder setEnforcementModeValue(int value)
Required. The action when a pod creation is denied by the admission rule.
.google.cloud.binaryauthorization.v1.AdmissionRule.EnforcementMode enforcement_mode = 3 [(.google.api.field_behavior) = REQUIRED];
Name | Description |
value | int The enum numeric value on the wire for enforcementMode to set. |
Type | Description |
Resources.AdmissionRule.Builder | This builder for chaining. |
setEvaluationMode(Resources.AdmissionRule.EvaluationMode value)
public Resources.AdmissionRule.Builder setEvaluationMode(Resources.AdmissionRule.EvaluationMode value)
Required. How this admission rule will be evaluated.
.google.cloud.binaryauthorization.v1.AdmissionRule.EvaluationMode evaluation_mode = 1 [(.google.api.field_behavior) = REQUIRED];
Name | Description |
value | Resources.AdmissionRule.EvaluationMode The evaluationMode to set. |
Type | Description |
Resources.AdmissionRule.Builder | This builder for chaining. |
setEvaluationModeValue(int value)
public Resources.AdmissionRule.Builder setEvaluationModeValue(int value)
Required. How this admission rule will be evaluated.
.google.cloud.binaryauthorization.v1.AdmissionRule.EvaluationMode evaluation_mode = 1 [(.google.api.field_behavior) = REQUIRED];
Name | Description |
value | int The enum numeric value on the wire for evaluationMode to set. |
Type | Description |
Resources.AdmissionRule.Builder | This builder for chaining. |
setField(Descriptors.FieldDescriptor field, Object value)
public Resources.AdmissionRule.Builder setField(Descriptors.FieldDescriptor field, Object value)
Name | Description |
field | FieldDescriptor |
value | Object |
Type | Description |
Resources.AdmissionRule.Builder |
setRepeatedField(Descriptors.FieldDescriptor field, int index, Object value)
public Resources.AdmissionRule.Builder setRepeatedField(Descriptors.FieldDescriptor field, int index, Object value)
Name | Description |
field | FieldDescriptor |
index | int |
value | Object |
Type | Description |
Resources.AdmissionRule.Builder |
setRequireAttestationsBy(int index, String value)
public Resources.AdmissionRule.Builder setRequireAttestationsBy(int index, String value)
Optional. The resource names of the attestors that must attest to
a container image, in the format projects/*/attestors/*
. Each
attestor must exist before a policy can reference it. To add an attestor
to a policy the principal issuing the policy change request must be able
to read the attestor resource.
Note: this field must be non-empty when the evaluation_mode field specifies
REQUIRE_ATTESTATION, otherwise it must be empty.
repeated string require_attestations_by = 2 [(.google.api.field_behavior) = OPTIONAL];
Name | Description |
index | int The index to set the value at. |
value | String The requireAttestationsBy to set. |
Type | Description |
Resources.AdmissionRule.Builder | This builder for chaining. |
setUnknownFields(UnknownFieldSet unknownFields)
public final Resources.AdmissionRule.Builder setUnknownFields(UnknownFieldSet unknownFields)
Name | Description |
unknownFields | UnknownFieldSet |
Type | Description |
Resources.AdmissionRule.Builder |