Class Resources.Policy.Builder (1.52.0)

public static final class Resources.Policy.Builder extends GeneratedMessageV3.Builder<Resources.Policy.Builder> implements Resources.PolicyOrBuilder

A policy for container image binary authorization.

Protobuf type google.cloud.binaryauthorization.v1.Policy

Static Methods

getDescriptor()

public static final Descriptors.Descriptor getDescriptor()
Returns
Type Description
Descriptor

Methods

addAdmissionWhitelistPatterns(Resources.AdmissionWhitelistPattern value)

public Resources.Policy.Builder addAdmissionWhitelistPatterns(Resources.AdmissionWhitelistPattern value)

Optional. Admission policy allowlisting. A matching admission request will always be permitted. This feature is typically used to exclude Google or third-party infrastructure images from Binary Authorization policies.

repeated .google.cloud.binaryauthorization.v1.AdmissionWhitelistPattern admission_whitelist_patterns = 2 [(.google.api.field_behavior) = OPTIONAL];

Parameter
Name Description
value Resources.AdmissionWhitelistPattern
Returns
Type Description
Resources.Policy.Builder

addAdmissionWhitelistPatterns(Resources.AdmissionWhitelistPattern.Builder builderForValue)

public Resources.Policy.Builder addAdmissionWhitelistPatterns(Resources.AdmissionWhitelistPattern.Builder builderForValue)

Optional. Admission policy allowlisting. A matching admission request will always be permitted. This feature is typically used to exclude Google or third-party infrastructure images from Binary Authorization policies.

repeated .google.cloud.binaryauthorization.v1.AdmissionWhitelistPattern admission_whitelist_patterns = 2 [(.google.api.field_behavior) = OPTIONAL];

Parameter
Name Description
builderForValue Resources.AdmissionWhitelistPattern.Builder
Returns
Type Description
Resources.Policy.Builder

addAdmissionWhitelistPatterns(int index, Resources.AdmissionWhitelistPattern value)

public Resources.Policy.Builder addAdmissionWhitelistPatterns(int index, Resources.AdmissionWhitelistPattern value)

Optional. Admission policy allowlisting. A matching admission request will always be permitted. This feature is typically used to exclude Google or third-party infrastructure images from Binary Authorization policies.

repeated .google.cloud.binaryauthorization.v1.AdmissionWhitelistPattern admission_whitelist_patterns = 2 [(.google.api.field_behavior) = OPTIONAL];

Parameters
Name Description
index int
value Resources.AdmissionWhitelistPattern
Returns
Type Description
Resources.Policy.Builder

addAdmissionWhitelistPatterns(int index, Resources.AdmissionWhitelistPattern.Builder builderForValue)

public Resources.Policy.Builder addAdmissionWhitelistPatterns(int index, Resources.AdmissionWhitelistPattern.Builder builderForValue)

Optional. Admission policy allowlisting. A matching admission request will always be permitted. This feature is typically used to exclude Google or third-party infrastructure images from Binary Authorization policies.

repeated .google.cloud.binaryauthorization.v1.AdmissionWhitelistPattern admission_whitelist_patterns = 2 [(.google.api.field_behavior) = OPTIONAL];

Parameters
Name Description
index int
builderForValue Resources.AdmissionWhitelistPattern.Builder
Returns
Type Description
Resources.Policy.Builder

addAdmissionWhitelistPatternsBuilder()

public Resources.AdmissionWhitelistPattern.Builder addAdmissionWhitelistPatternsBuilder()

Optional. Admission policy allowlisting. A matching admission request will always be permitted. This feature is typically used to exclude Google or third-party infrastructure images from Binary Authorization policies.

repeated .google.cloud.binaryauthorization.v1.AdmissionWhitelistPattern admission_whitelist_patterns = 2 [(.google.api.field_behavior) = OPTIONAL];

Returns
Type Description
Resources.AdmissionWhitelistPattern.Builder

addAdmissionWhitelistPatternsBuilder(int index)

public Resources.AdmissionWhitelistPattern.Builder addAdmissionWhitelistPatternsBuilder(int index)

Optional. Admission policy allowlisting. A matching admission request will always be permitted. This feature is typically used to exclude Google or third-party infrastructure images from Binary Authorization policies.

repeated .google.cloud.binaryauthorization.v1.AdmissionWhitelistPattern admission_whitelist_patterns = 2 [(.google.api.field_behavior) = OPTIONAL];

Parameter
Name Description
index int
Returns
Type Description
Resources.AdmissionWhitelistPattern.Builder

addAllAdmissionWhitelistPatterns(Iterable<? extends Resources.AdmissionWhitelistPattern> values)

public Resources.Policy.Builder addAllAdmissionWhitelistPatterns(Iterable<? extends Resources.AdmissionWhitelistPattern> values)

Optional. Admission policy allowlisting. A matching admission request will always be permitted. This feature is typically used to exclude Google or third-party infrastructure images from Binary Authorization policies.

repeated .google.cloud.binaryauthorization.v1.AdmissionWhitelistPattern admission_whitelist_patterns = 2 [(.google.api.field_behavior) = OPTIONAL];

Parameter
Name Description
values Iterable<? extends com.google.protos.google.cloud.binaryauthorization.v1.Resources.AdmissionWhitelistPattern>
Returns
Type Description
Resources.Policy.Builder

addRepeatedField(Descriptors.FieldDescriptor field, Object value)

public Resources.Policy.Builder addRepeatedField(Descriptors.FieldDescriptor field, Object value)
Parameters
Name Description
field FieldDescriptor
value Object
Returns
Type Description
Resources.Policy.Builder
Overrides

build()

public Resources.Policy build()
Returns
Type Description
Resources.Policy

buildPartial()

public Resources.Policy buildPartial()
Returns
Type Description
Resources.Policy

clear()

public Resources.Policy.Builder clear()
Returns
Type Description
Resources.Policy.Builder
Overrides

clearAdmissionWhitelistPatterns()

public Resources.Policy.Builder clearAdmissionWhitelistPatterns()

Optional. Admission policy allowlisting. A matching admission request will always be permitted. This feature is typically used to exclude Google or third-party infrastructure images from Binary Authorization policies.

repeated .google.cloud.binaryauthorization.v1.AdmissionWhitelistPattern admission_whitelist_patterns = 2 [(.google.api.field_behavior) = OPTIONAL];

Returns
Type Description
Resources.Policy.Builder

clearClusterAdmissionRules()

public Resources.Policy.Builder clearClusterAdmissionRules()
Returns
Type Description
Resources.Policy.Builder

clearDefaultAdmissionRule()

public Resources.Policy.Builder clearDefaultAdmissionRule()

Required. Default admission rule for a cluster without a per-cluster, per- kubernetes-service-account, or per-istio-service-identity admission rule.

.google.cloud.binaryauthorization.v1.AdmissionRule default_admission_rule = 4 [(.google.api.field_behavior) = REQUIRED];

Returns
Type Description
Resources.Policy.Builder

clearDescription()

public Resources.Policy.Builder clearDescription()

Optional. A descriptive comment.

string description = 6 [(.google.api.field_behavior) = OPTIONAL];

Returns
Type Description
Resources.Policy.Builder

This builder for chaining.

clearField(Descriptors.FieldDescriptor field)

public Resources.Policy.Builder clearField(Descriptors.FieldDescriptor field)
Parameter
Name Description
field FieldDescriptor
Returns
Type Description
Resources.Policy.Builder
Overrides

clearGlobalPolicyEvaluationMode()

public Resources.Policy.Builder clearGlobalPolicyEvaluationMode()

Optional. Controls the evaluation of a Google-maintained global admission policy for common system-level images. Images not covered by the global policy will be subject to the project admission policy. This setting has no effect when specified inside a global admission policy.

.google.cloud.binaryauthorization.v1.Policy.GlobalPolicyEvaluationMode global_policy_evaluation_mode = 7 [(.google.api.field_behavior) = OPTIONAL];

Returns
Type Description
Resources.Policy.Builder

This builder for chaining.

clearIstioServiceIdentityAdmissionRules()

public Resources.Policy.Builder clearIstioServiceIdentityAdmissionRules()
Returns
Type Description
Resources.Policy.Builder

clearKubernetesNamespaceAdmissionRules()

public Resources.Policy.Builder clearKubernetesNamespaceAdmissionRules()
Returns
Type Description
Resources.Policy.Builder

clearKubernetesServiceAccountAdmissionRules()

public Resources.Policy.Builder clearKubernetesServiceAccountAdmissionRules()
Returns
Type Description
Resources.Policy.Builder

clearName()

public Resources.Policy.Builder clearName()

Output only. The resource name, in the format projects/*/policy. There is at most one policy per project.

string name = 1 [(.google.api.field_behavior) = OUTPUT_ONLY];

Returns
Type Description
Resources.Policy.Builder

This builder for chaining.

clearOneof(Descriptors.OneofDescriptor oneof)

public Resources.Policy.Builder clearOneof(Descriptors.OneofDescriptor oneof)
Parameter
Name Description
oneof OneofDescriptor
Returns
Type Description
Resources.Policy.Builder
Overrides

clearUpdateTime()

public Resources.Policy.Builder clearUpdateTime()

Output only. Time when the policy was last updated.

.google.protobuf.Timestamp update_time = 5 [(.google.api.field_behavior) = OUTPUT_ONLY];

Returns
Type Description
Resources.Policy.Builder

clone()

public Resources.Policy.Builder clone()
Returns
Type Description
Resources.Policy.Builder
Overrides

containsClusterAdmissionRules(String key)

public boolean containsClusterAdmissionRules(String key)

Optional. Per-cluster admission rules. Cluster spec format: location.clusterId. There can be at most one admission rule per cluster spec. A location is either a compute zone (e.g. us-central1-a) or a region (e.g. us-central1). For clusterId syntax restrictions see https://cloud.google.com/container-engine/reference/rest/v1/projects.zones.clusters.

map<string, .google.cloud.binaryauthorization.v1.AdmissionRule> cluster_admission_rules = 3 [(.google.api.field_behavior) = OPTIONAL];

Parameter
Name Description
key String
Returns
Type Description
boolean

containsIstioServiceIdentityAdmissionRules(String key)

public boolean containsIstioServiceIdentityAdmissionRules(String key)

Optional. Per-istio-service-identity admission rules. Istio service identity spec format: spiffe://<domain>/ns/<namespace>/sa/<serviceaccount> or <domain>/ns/<namespace>/sa/<serviceaccount> e.g. spiffe://example.com/ns/test-ns/sa/default

map<string, .google.cloud.binaryauthorization.v1.AdmissionRule> istio_service_identity_admission_rules = 9 [(.google.api.field_behavior) = OPTIONAL];

Parameter
Name Description
key String
Returns
Type Description
boolean

containsKubernetesNamespaceAdmissionRules(String key)

public boolean containsKubernetesNamespaceAdmissionRules(String key)

Optional. Per-kubernetes-namespace admission rules. K8s namespace spec format: [a-z.-]+, e.g. 'some-namespace'

map<string, .google.cloud.binaryauthorization.v1.AdmissionRule> kubernetes_namespace_admission_rules = 10 [(.google.api.field_behavior) = OPTIONAL];

Parameter
Name Description
key String
Returns
Type Description
boolean

containsKubernetesServiceAccountAdmissionRules(String key)

public boolean containsKubernetesServiceAccountAdmissionRules(String key)

Optional. Per-kubernetes-service-account admission rules. Service account spec format: namespace:serviceaccount. e.g. 'test-ns:default'

map<string, .google.cloud.binaryauthorization.v1.AdmissionRule> kubernetes_service_account_admission_rules = 8 [(.google.api.field_behavior) = OPTIONAL];

Parameter
Name Description
key String
Returns
Type Description
boolean

getAdmissionWhitelistPatterns(int index)

public Resources.AdmissionWhitelistPattern getAdmissionWhitelistPatterns(int index)

Optional. Admission policy allowlisting. A matching admission request will always be permitted. This feature is typically used to exclude Google or third-party infrastructure images from Binary Authorization policies.

repeated .google.cloud.binaryauthorization.v1.AdmissionWhitelistPattern admission_whitelist_patterns = 2 [(.google.api.field_behavior) = OPTIONAL];

Parameter
Name Description
index int
Returns
Type Description
Resources.AdmissionWhitelistPattern

getAdmissionWhitelistPatternsBuilder(int index)

public Resources.AdmissionWhitelistPattern.Builder getAdmissionWhitelistPatternsBuilder(int index)

Optional. Admission policy allowlisting. A matching admission request will always be permitted. This feature is typically used to exclude Google or third-party infrastructure images from Binary Authorization policies.

repeated .google.cloud.binaryauthorization.v1.AdmissionWhitelistPattern admission_whitelist_patterns = 2 [(.google.api.field_behavior) = OPTIONAL];

Parameter
Name Description
index int
Returns
Type Description
Resources.AdmissionWhitelistPattern.Builder

getAdmissionWhitelistPatternsBuilderList()

public List<Resources.AdmissionWhitelistPattern.Builder> getAdmissionWhitelistPatternsBuilderList()

Optional. Admission policy allowlisting. A matching admission request will always be permitted. This feature is typically used to exclude Google or third-party infrastructure images from Binary Authorization policies.

repeated .google.cloud.binaryauthorization.v1.AdmissionWhitelistPattern admission_whitelist_patterns = 2 [(.google.api.field_behavior) = OPTIONAL];

Returns
Type Description
List<Builder>

getAdmissionWhitelistPatternsCount()

public int getAdmissionWhitelistPatternsCount()

Optional. Admission policy allowlisting. A matching admission request will always be permitted. This feature is typically used to exclude Google or third-party infrastructure images from Binary Authorization policies.

repeated .google.cloud.binaryauthorization.v1.AdmissionWhitelistPattern admission_whitelist_patterns = 2 [(.google.api.field_behavior) = OPTIONAL];

Returns
Type Description
int

getAdmissionWhitelistPatternsList()

public List<Resources.AdmissionWhitelistPattern> getAdmissionWhitelistPatternsList()

Optional. Admission policy allowlisting. A matching admission request will always be permitted. This feature is typically used to exclude Google or third-party infrastructure images from Binary Authorization policies.

repeated .google.cloud.binaryauthorization.v1.AdmissionWhitelistPattern admission_whitelist_patterns = 2 [(.google.api.field_behavior) = OPTIONAL];

Returns
Type Description
List<AdmissionWhitelistPattern>

getAdmissionWhitelistPatternsOrBuilder(int index)

public Resources.AdmissionWhitelistPatternOrBuilder getAdmissionWhitelistPatternsOrBuilder(int index)

Optional. Admission policy allowlisting. A matching admission request will always be permitted. This feature is typically used to exclude Google or third-party infrastructure images from Binary Authorization policies.

repeated .google.cloud.binaryauthorization.v1.AdmissionWhitelistPattern admission_whitelist_patterns = 2 [(.google.api.field_behavior) = OPTIONAL];

Parameter
Name Description
index int
Returns
Type Description
Resources.AdmissionWhitelistPatternOrBuilder

getAdmissionWhitelistPatternsOrBuilderList()

public List<? extends Resources.AdmissionWhitelistPatternOrBuilder> getAdmissionWhitelistPatternsOrBuilderList()

Optional. Admission policy allowlisting. A matching admission request will always be permitted. This feature is typically used to exclude Google or third-party infrastructure images from Binary Authorization policies.

repeated .google.cloud.binaryauthorization.v1.AdmissionWhitelistPattern admission_whitelist_patterns = 2 [(.google.api.field_behavior) = OPTIONAL];

Returns
Type Description
List<? extends com.google.protos.google.cloud.binaryauthorization.v1.Resources.AdmissionWhitelistPatternOrBuilder>

getClusterAdmissionRules() (deprecated)

public Map<String,Resources.AdmissionRule> getClusterAdmissionRules()
Returns
Type Description
Map<String,AdmissionRule>

getClusterAdmissionRulesCount()

public int getClusterAdmissionRulesCount()

Optional. Per-cluster admission rules. Cluster spec format: location.clusterId. There can be at most one admission rule per cluster spec. A location is either a compute zone (e.g. us-central1-a) or a region (e.g. us-central1). For clusterId syntax restrictions see https://cloud.google.com/container-engine/reference/rest/v1/projects.zones.clusters.

map<string, .google.cloud.binaryauthorization.v1.AdmissionRule> cluster_admission_rules = 3 [(.google.api.field_behavior) = OPTIONAL];

Returns
Type Description
int

getClusterAdmissionRulesMap()

public Map<String,Resources.AdmissionRule> getClusterAdmissionRulesMap()

Optional. Per-cluster admission rules. Cluster spec format: location.clusterId. There can be at most one admission rule per cluster spec. A location is either a compute zone (e.g. us-central1-a) or a region (e.g. us-central1). For clusterId syntax restrictions see https://cloud.google.com/container-engine/reference/rest/v1/projects.zones.clusters.

map<string, .google.cloud.binaryauthorization.v1.AdmissionRule> cluster_admission_rules = 3 [(.google.api.field_behavior) = OPTIONAL];

Returns
Type Description
Map<String,AdmissionRule>

getClusterAdmissionRulesOrDefault(String key, Resources.AdmissionRule defaultValue)

public Resources.AdmissionRule getClusterAdmissionRulesOrDefault(String key, Resources.AdmissionRule defaultValue)

Optional. Per-cluster admission rules. Cluster spec format: location.clusterId. There can be at most one admission rule per cluster spec. A location is either a compute zone (e.g. us-central1-a) or a region (e.g. us-central1). For clusterId syntax restrictions see https://cloud.google.com/container-engine/reference/rest/v1/projects.zones.clusters.

map<string, .google.cloud.binaryauthorization.v1.AdmissionRule> cluster_admission_rules = 3 [(.google.api.field_behavior) = OPTIONAL];

Parameters
Name Description
key String
defaultValue Resources.AdmissionRule
Returns
Type Description
Resources.AdmissionRule

getClusterAdmissionRulesOrThrow(String key)

public Resources.AdmissionRule getClusterAdmissionRulesOrThrow(String key)

Optional. Per-cluster admission rules. Cluster spec format: location.clusterId. There can be at most one admission rule per cluster spec. A location is either a compute zone (e.g. us-central1-a) or a region (e.g. us-central1). For clusterId syntax restrictions see https://cloud.google.com/container-engine/reference/rest/v1/projects.zones.clusters.

map<string, .google.cloud.binaryauthorization.v1.AdmissionRule> cluster_admission_rules = 3 [(.google.api.field_behavior) = OPTIONAL];

Parameter
Name Description
key String
Returns
Type Description
Resources.AdmissionRule

getDefaultAdmissionRule()

public Resources.AdmissionRule getDefaultAdmissionRule()

Required. Default admission rule for a cluster without a per-cluster, per- kubernetes-service-account, or per-istio-service-identity admission rule.

.google.cloud.binaryauthorization.v1.AdmissionRule default_admission_rule = 4 [(.google.api.field_behavior) = REQUIRED];

Returns
Type Description
Resources.AdmissionRule

The defaultAdmissionRule.

getDefaultAdmissionRuleBuilder()

public Resources.AdmissionRule.Builder getDefaultAdmissionRuleBuilder()

Required. Default admission rule for a cluster without a per-cluster, per- kubernetes-service-account, or per-istio-service-identity admission rule.

.google.cloud.binaryauthorization.v1.AdmissionRule default_admission_rule = 4 [(.google.api.field_behavior) = REQUIRED];

Returns
Type Description
Resources.AdmissionRule.Builder

getDefaultAdmissionRuleOrBuilder()

public Resources.AdmissionRuleOrBuilder getDefaultAdmissionRuleOrBuilder()

Required. Default admission rule for a cluster without a per-cluster, per- kubernetes-service-account, or per-istio-service-identity admission rule.

.google.cloud.binaryauthorization.v1.AdmissionRule default_admission_rule = 4 [(.google.api.field_behavior) = REQUIRED];

Returns
Type Description
Resources.AdmissionRuleOrBuilder

getDefaultInstanceForType()

public Resources.Policy getDefaultInstanceForType()
Returns
Type Description
Resources.Policy

getDescription()

public String getDescription()

Optional. A descriptive comment.

string description = 6 [(.google.api.field_behavior) = OPTIONAL];

Returns
Type Description
String

The description.

getDescriptionBytes()

public ByteString getDescriptionBytes()

Optional. A descriptive comment.

string description = 6 [(.google.api.field_behavior) = OPTIONAL];

Returns
Type Description
ByteString

The bytes for description.

getDescriptorForType()

public Descriptors.Descriptor getDescriptorForType()
Returns
Type Description
Descriptor
Overrides

getGlobalPolicyEvaluationMode()

public Resources.Policy.GlobalPolicyEvaluationMode getGlobalPolicyEvaluationMode()

Optional. Controls the evaluation of a Google-maintained global admission policy for common system-level images. Images not covered by the global policy will be subject to the project admission policy. This setting has no effect when specified inside a global admission policy.

.google.cloud.binaryauthorization.v1.Policy.GlobalPolicyEvaluationMode global_policy_evaluation_mode = 7 [(.google.api.field_behavior) = OPTIONAL];

Returns
Type Description
Resources.Policy.GlobalPolicyEvaluationMode

The globalPolicyEvaluationMode.

getGlobalPolicyEvaluationModeValue()

public int getGlobalPolicyEvaluationModeValue()

Optional. Controls the evaluation of a Google-maintained global admission policy for common system-level images. Images not covered by the global policy will be subject to the project admission policy. This setting has no effect when specified inside a global admission policy.

.google.cloud.binaryauthorization.v1.Policy.GlobalPolicyEvaluationMode global_policy_evaluation_mode = 7 [(.google.api.field_behavior) = OPTIONAL];

Returns
Type Description
int

The enum numeric value on the wire for globalPolicyEvaluationMode.

getIstioServiceIdentityAdmissionRules() (deprecated)

public Map<String,Resources.AdmissionRule> getIstioServiceIdentityAdmissionRules()
Returns
Type Description
Map<String,AdmissionRule>

getIstioServiceIdentityAdmissionRulesCount()

public int getIstioServiceIdentityAdmissionRulesCount()

Optional. Per-istio-service-identity admission rules. Istio service identity spec format: spiffe://<domain>/ns/<namespace>/sa/<serviceaccount> or <domain>/ns/<namespace>/sa/<serviceaccount> e.g. spiffe://example.com/ns/test-ns/sa/default

map<string, .google.cloud.binaryauthorization.v1.AdmissionRule> istio_service_identity_admission_rules = 9 [(.google.api.field_behavior) = OPTIONAL];

Returns
Type Description
int

getIstioServiceIdentityAdmissionRulesMap()

public Map<String,Resources.AdmissionRule> getIstioServiceIdentityAdmissionRulesMap()

Optional. Per-istio-service-identity admission rules. Istio service identity spec format: spiffe://<domain>/ns/<namespace>/sa/<serviceaccount> or <domain>/ns/<namespace>/sa/<serviceaccount> e.g. spiffe://example.com/ns/test-ns/sa/default

map<string, .google.cloud.binaryauthorization.v1.AdmissionRule> istio_service_identity_admission_rules = 9 [(.google.api.field_behavior) = OPTIONAL];

Returns
Type Description
Map<String,AdmissionRule>

getIstioServiceIdentityAdmissionRulesOrDefault(String key, Resources.AdmissionRule defaultValue)

public Resources.AdmissionRule getIstioServiceIdentityAdmissionRulesOrDefault(String key, Resources.AdmissionRule defaultValue)

Optional. Per-istio-service-identity admission rules. Istio service identity spec format: spiffe://<domain>/ns/<namespace>/sa/<serviceaccount> or <domain>/ns/<namespace>/sa/<serviceaccount> e.g. spiffe://example.com/ns/test-ns/sa/default

map<string, .google.cloud.binaryauthorization.v1.AdmissionRule> istio_service_identity_admission_rules = 9 [(.google.api.field_behavior) = OPTIONAL];

Parameters
Name Description
key String
defaultValue Resources.AdmissionRule
Returns
Type Description
Resources.AdmissionRule

getIstioServiceIdentityAdmissionRulesOrThrow(String key)

public Resources.AdmissionRule getIstioServiceIdentityAdmissionRulesOrThrow(String key)

Optional. Per-istio-service-identity admission rules. Istio service identity spec format: spiffe://<domain>/ns/<namespace>/sa/<serviceaccount> or <domain>/ns/<namespace>/sa/<serviceaccount> e.g. spiffe://example.com/ns/test-ns/sa/default

map<string, .google.cloud.binaryauthorization.v1.AdmissionRule> istio_service_identity_admission_rules = 9 [(.google.api.field_behavior) = OPTIONAL];

Parameter
Name Description
key String
Returns
Type Description
Resources.AdmissionRule

getKubernetesNamespaceAdmissionRules() (deprecated)

public Map<String,Resources.AdmissionRule> getKubernetesNamespaceAdmissionRules()
Returns
Type Description
Map<String,AdmissionRule>

getKubernetesNamespaceAdmissionRulesCount()

public int getKubernetesNamespaceAdmissionRulesCount()

Optional. Per-kubernetes-namespace admission rules. K8s namespace spec format: [a-z.-]+, e.g. 'some-namespace'

map<string, .google.cloud.binaryauthorization.v1.AdmissionRule> kubernetes_namespace_admission_rules = 10 [(.google.api.field_behavior) = OPTIONAL];

Returns
Type Description
int

getKubernetesNamespaceAdmissionRulesMap()

public Map<String,Resources.AdmissionRule> getKubernetesNamespaceAdmissionRulesMap()

Optional. Per-kubernetes-namespace admission rules. K8s namespace spec format: [a-z.-]+, e.g. 'some-namespace'

map<string, .google.cloud.binaryauthorization.v1.AdmissionRule> kubernetes_namespace_admission_rules = 10 [(.google.api.field_behavior) = OPTIONAL];

Returns
Type Description
Map<String,AdmissionRule>

getKubernetesNamespaceAdmissionRulesOrDefault(String key, Resources.AdmissionRule defaultValue)

public Resources.AdmissionRule getKubernetesNamespaceAdmissionRulesOrDefault(String key, Resources.AdmissionRule defaultValue)

Optional. Per-kubernetes-namespace admission rules. K8s namespace spec format: [a-z.-]+, e.g. 'some-namespace'

map<string, .google.cloud.binaryauthorization.v1.AdmissionRule> kubernetes_namespace_admission_rules = 10 [(.google.api.field_behavior) = OPTIONAL];

Parameters
Name Description
key String
defaultValue Resources.AdmissionRule
Returns
Type Description
Resources.AdmissionRule

getKubernetesNamespaceAdmissionRulesOrThrow(String key)

public Resources.AdmissionRule getKubernetesNamespaceAdmissionRulesOrThrow(String key)

Optional. Per-kubernetes-namespace admission rules. K8s namespace spec format: [a-z.-]+, e.g. 'some-namespace'

map<string, .google.cloud.binaryauthorization.v1.AdmissionRule> kubernetes_namespace_admission_rules = 10 [(.google.api.field_behavior) = OPTIONAL];

Parameter
Name Description
key String
Returns
Type Description
Resources.AdmissionRule

getKubernetesServiceAccountAdmissionRules() (deprecated)

public Map<String,Resources.AdmissionRule> getKubernetesServiceAccountAdmissionRules()
Returns
Type Description
Map<String,AdmissionRule>

getKubernetesServiceAccountAdmissionRulesCount()

public int getKubernetesServiceAccountAdmissionRulesCount()

Optional. Per-kubernetes-service-account admission rules. Service account spec format: namespace:serviceaccount. e.g. 'test-ns:default'

map<string, .google.cloud.binaryauthorization.v1.AdmissionRule> kubernetes_service_account_admission_rules = 8 [(.google.api.field_behavior) = OPTIONAL];

Returns
Type Description
int

getKubernetesServiceAccountAdmissionRulesMap()

public Map<String,Resources.AdmissionRule> getKubernetesServiceAccountAdmissionRulesMap()

Optional. Per-kubernetes-service-account admission rules. Service account spec format: namespace:serviceaccount. e.g. 'test-ns:default'

map<string, .google.cloud.binaryauthorization.v1.AdmissionRule> kubernetes_service_account_admission_rules = 8 [(.google.api.field_behavior) = OPTIONAL];

Returns
Type Description
Map<String,AdmissionRule>

getKubernetesServiceAccountAdmissionRulesOrDefault(String key, Resources.AdmissionRule defaultValue)

public Resources.AdmissionRule getKubernetesServiceAccountAdmissionRulesOrDefault(String key, Resources.AdmissionRule defaultValue)

Optional. Per-kubernetes-service-account admission rules. Service account spec format: namespace:serviceaccount. e.g. 'test-ns:default'

map<string, .google.cloud.binaryauthorization.v1.AdmissionRule> kubernetes_service_account_admission_rules = 8 [(.google.api.field_behavior) = OPTIONAL];

Parameters
Name Description
key String
defaultValue Resources.AdmissionRule
Returns
Type Description
Resources.AdmissionRule

getKubernetesServiceAccountAdmissionRulesOrThrow(String key)

public Resources.AdmissionRule getKubernetesServiceAccountAdmissionRulesOrThrow(String key)

Optional. Per-kubernetes-service-account admission rules. Service account spec format: namespace:serviceaccount. e.g. 'test-ns:default'

map<string, .google.cloud.binaryauthorization.v1.AdmissionRule> kubernetes_service_account_admission_rules = 8 [(.google.api.field_behavior) = OPTIONAL];

Parameter
Name Description
key String
Returns
Type Description
Resources.AdmissionRule

getMutableClusterAdmissionRules() (deprecated)

public Map<String,Resources.AdmissionRule> getMutableClusterAdmissionRules()

Use alternate mutation accessors instead.

Returns
Type Description
Map<String,AdmissionRule>

getMutableIstioServiceIdentityAdmissionRules() (deprecated)

public Map<String,Resources.AdmissionRule> getMutableIstioServiceIdentityAdmissionRules()

Use alternate mutation accessors instead.

Returns
Type Description
Map<String,AdmissionRule>

getMutableKubernetesNamespaceAdmissionRules() (deprecated)

public Map<String,Resources.AdmissionRule> getMutableKubernetesNamespaceAdmissionRules()

Use alternate mutation accessors instead.

Returns
Type Description
Map<String,AdmissionRule>

getMutableKubernetesServiceAccountAdmissionRules() (deprecated)

public Map<String,Resources.AdmissionRule> getMutableKubernetesServiceAccountAdmissionRules()

Use alternate mutation accessors instead.

Returns
Type Description
Map<String,AdmissionRule>

getName()

public String getName()

Output only. The resource name, in the format projects/*/policy. There is at most one policy per project.

string name = 1 [(.google.api.field_behavior) = OUTPUT_ONLY];

Returns
Type Description
String

The name.

getNameBytes()

public ByteString getNameBytes()

Output only. The resource name, in the format projects/*/policy. There is at most one policy per project.

string name = 1 [(.google.api.field_behavior) = OUTPUT_ONLY];

Returns
Type Description
ByteString

The bytes for name.

getUpdateTime()

public Timestamp getUpdateTime()

Output only. Time when the policy was last updated.

.google.protobuf.Timestamp update_time = 5 [(.google.api.field_behavior) = OUTPUT_ONLY];

Returns
Type Description
Timestamp

The updateTime.

getUpdateTimeBuilder()

public Timestamp.Builder getUpdateTimeBuilder()

Output only. Time when the policy was last updated.

.google.protobuf.Timestamp update_time = 5 [(.google.api.field_behavior) = OUTPUT_ONLY];

Returns
Type Description
Builder

getUpdateTimeOrBuilder()

public TimestampOrBuilder getUpdateTimeOrBuilder()

Output only. Time when the policy was last updated.

.google.protobuf.Timestamp update_time = 5 [(.google.api.field_behavior) = OUTPUT_ONLY];

Returns
Type Description
TimestampOrBuilder

hasDefaultAdmissionRule()

public boolean hasDefaultAdmissionRule()

Required. Default admission rule for a cluster without a per-cluster, per- kubernetes-service-account, or per-istio-service-identity admission rule.

.google.cloud.binaryauthorization.v1.AdmissionRule default_admission_rule = 4 [(.google.api.field_behavior) = REQUIRED];

Returns
Type Description
boolean

Whether the defaultAdmissionRule field is set.

hasUpdateTime()

public boolean hasUpdateTime()

Output only. Time when the policy was last updated.

.google.protobuf.Timestamp update_time = 5 [(.google.api.field_behavior) = OUTPUT_ONLY];

Returns
Type Description
boolean

Whether the updateTime field is set.

internalGetFieldAccessorTable()

protected GeneratedMessageV3.FieldAccessorTable internalGetFieldAccessorTable()
Returns
Type Description
FieldAccessorTable
Overrides

internalGetMapFieldReflection(int number)

protected MapFieldReflectionAccessor internalGetMapFieldReflection(int number)
Parameter
Name Description
number int
Returns
Type Description
com.google.protobuf.MapFieldReflectionAccessor
Overrides
com.google.protobuf.GeneratedMessageV3.Builder.internalGetMapFieldReflection(int)

internalGetMutableMapFieldReflection(int number)

protected MapFieldReflectionAccessor internalGetMutableMapFieldReflection(int number)
Parameter
Name Description
number int
Returns
Type Description
com.google.protobuf.MapFieldReflectionAccessor
Overrides
com.google.protobuf.GeneratedMessageV3.Builder.internalGetMutableMapFieldReflection(int)

isInitialized()

public final boolean isInitialized()
Returns
Type Description
boolean
Overrides

mergeDefaultAdmissionRule(Resources.AdmissionRule value)

public Resources.Policy.Builder mergeDefaultAdmissionRule(Resources.AdmissionRule value)

Required. Default admission rule for a cluster without a per-cluster, per- kubernetes-service-account, or per-istio-service-identity admission rule.

.google.cloud.binaryauthorization.v1.AdmissionRule default_admission_rule = 4 [(.google.api.field_behavior) = REQUIRED];

Parameter
Name Description
value Resources.AdmissionRule
Returns
Type Description
Resources.Policy.Builder

mergeFrom(CodedInputStream input, ExtensionRegistryLite extensionRegistry)

public Resources.Policy.Builder mergeFrom(CodedInputStream input, ExtensionRegistryLite extensionRegistry)
Parameters
Name Description
input CodedInputStream
extensionRegistry ExtensionRegistryLite
Returns
Type Description
Resources.Policy.Builder
Overrides
Exceptions
Type Description
IOException

mergeFrom(Message other)

public Resources.Policy.Builder mergeFrom(Message other)
Parameter
Name Description
other Message
Returns
Type Description
Resources.Policy.Builder
Overrides

mergeFrom(Resources.Policy other)

public Resources.Policy.Builder mergeFrom(Resources.Policy other)
Parameter
Name Description
other Resources.Policy
Returns
Type Description
Resources.Policy.Builder

mergeUnknownFields(UnknownFieldSet unknownFields)

public final Resources.Policy.Builder mergeUnknownFields(UnknownFieldSet unknownFields)
Parameter
Name Description
unknownFields UnknownFieldSet
Returns
Type Description
Resources.Policy.Builder
Overrides

mergeUpdateTime(Timestamp value)

public Resources.Policy.Builder mergeUpdateTime(Timestamp value)

Output only. Time when the policy was last updated.

.google.protobuf.Timestamp update_time = 5 [(.google.api.field_behavior) = OUTPUT_ONLY];

Parameter
Name Description
value Timestamp
Returns
Type Description
Resources.Policy.Builder

putAllClusterAdmissionRules(Map<String,Resources.AdmissionRule> values)

public Resources.Policy.Builder putAllClusterAdmissionRules(Map<String,Resources.AdmissionRule> values)

Optional. Per-cluster admission rules. Cluster spec format: location.clusterId. There can be at most one admission rule per cluster spec. A location is either a compute zone (e.g. us-central1-a) or a region (e.g. us-central1). For clusterId syntax restrictions see https://cloud.google.com/container-engine/reference/rest/v1/projects.zones.clusters.

map<string, .google.cloud.binaryauthorization.v1.AdmissionRule> cluster_admission_rules = 3 [(.google.api.field_behavior) = OPTIONAL];

Parameter
Name Description
values Map<String,AdmissionRule>
Returns
Type Description
Resources.Policy.Builder

putAllIstioServiceIdentityAdmissionRules(Map<String,Resources.AdmissionRule> values)

public Resources.Policy.Builder putAllIstioServiceIdentityAdmissionRules(Map<String,Resources.AdmissionRule> values)

Optional. Per-istio-service-identity admission rules. Istio service identity spec format: spiffe://<domain>/ns/<namespace>/sa/<serviceaccount> or <domain>/ns/<namespace>/sa/<serviceaccount> e.g. spiffe://example.com/ns/test-ns/sa/default

map<string, .google.cloud.binaryauthorization.v1.AdmissionRule> istio_service_identity_admission_rules = 9 [(.google.api.field_behavior) = OPTIONAL];

Parameter
Name Description
values Map<String,AdmissionRule>
Returns
Type Description
Resources.Policy.Builder

putAllKubernetesNamespaceAdmissionRules(Map<String,Resources.AdmissionRule> values)

public Resources.Policy.Builder putAllKubernetesNamespaceAdmissionRules(Map<String,Resources.AdmissionRule> values)

Optional. Per-kubernetes-namespace admission rules. K8s namespace spec format: [a-z.-]+, e.g. 'some-namespace'

map<string, .google.cloud.binaryauthorization.v1.AdmissionRule> kubernetes_namespace_admission_rules = 10 [(.google.api.field_behavior) = OPTIONAL];

Parameter
Name Description
values Map<String,AdmissionRule>
Returns
Type Description
Resources.Policy.Builder

putAllKubernetesServiceAccountAdmissionRules(Map<String,Resources.AdmissionRule> values)

public Resources.Policy.Builder putAllKubernetesServiceAccountAdmissionRules(Map<String,Resources.AdmissionRule> values)

Optional. Per-kubernetes-service-account admission rules. Service account spec format: namespace:serviceaccount. e.g. 'test-ns:default'

map<string, .google.cloud.binaryauthorization.v1.AdmissionRule> kubernetes_service_account_admission_rules = 8 [(.google.api.field_behavior) = OPTIONAL];

Parameter
Name Description
values Map<String,AdmissionRule>
Returns
Type Description
Resources.Policy.Builder

putClusterAdmissionRules(String key, Resources.AdmissionRule value)

public Resources.Policy.Builder putClusterAdmissionRules(String key, Resources.AdmissionRule value)

Optional. Per-cluster admission rules. Cluster spec format: location.clusterId. There can be at most one admission rule per cluster spec. A location is either a compute zone (e.g. us-central1-a) or a region (e.g. us-central1). For clusterId syntax restrictions see https://cloud.google.com/container-engine/reference/rest/v1/projects.zones.clusters.

map<string, .google.cloud.binaryauthorization.v1.AdmissionRule> cluster_admission_rules = 3 [(.google.api.field_behavior) = OPTIONAL];

Parameters
Name Description
key String
value Resources.AdmissionRule
Returns
Type Description
Resources.Policy.Builder

putClusterAdmissionRulesBuilderIfAbsent(String key)

public Resources.AdmissionRule.Builder putClusterAdmissionRulesBuilderIfAbsent(String key)

Optional. Per-cluster admission rules. Cluster spec format: location.clusterId. There can be at most one admission rule per cluster spec. A location is either a compute zone (e.g. us-central1-a) or a region (e.g. us-central1). For clusterId syntax restrictions see https://cloud.google.com/container-engine/reference/rest/v1/projects.zones.clusters.

map<string, .google.cloud.binaryauthorization.v1.AdmissionRule> cluster_admission_rules = 3 [(.google.api.field_behavior) = OPTIONAL];

Parameter
Name Description
key String
Returns
Type Description
Resources.AdmissionRule.Builder

putIstioServiceIdentityAdmissionRules(String key, Resources.AdmissionRule value)

public Resources.Policy.Builder putIstioServiceIdentityAdmissionRules(String key, Resources.AdmissionRule value)

Optional. Per-istio-service-identity admission rules. Istio service identity spec format: spiffe://<domain>/ns/<namespace>/sa/<serviceaccount> or <domain>/ns/<namespace>/sa/<serviceaccount> e.g. spiffe://example.com/ns/test-ns/sa/default

map<string, .google.cloud.binaryauthorization.v1.AdmissionRule> istio_service_identity_admission_rules = 9 [(.google.api.field_behavior) = OPTIONAL];

Parameters
Name Description
key String
value Resources.AdmissionRule
Returns
Type Description
Resources.Policy.Builder

putIstioServiceIdentityAdmissionRulesBuilderIfAbsent(String key)

public Resources.AdmissionRule.Builder putIstioServiceIdentityAdmissionRulesBuilderIfAbsent(String key)

Optional. Per-istio-service-identity admission rules. Istio service identity spec format: spiffe://<domain>/ns/<namespace>/sa/<serviceaccount> or <domain>/ns/<namespace>/sa/<serviceaccount> e.g. spiffe://example.com/ns/test-ns/sa/default

map<string, .google.cloud.binaryauthorization.v1.AdmissionRule> istio_service_identity_admission_rules = 9 [(.google.api.field_behavior) = OPTIONAL];

Parameter
Name Description
key String
Returns
Type Description
Resources.AdmissionRule.Builder

putKubernetesNamespaceAdmissionRules(String key, Resources.AdmissionRule value)

public Resources.Policy.Builder putKubernetesNamespaceAdmissionRules(String key, Resources.AdmissionRule value)

Optional. Per-kubernetes-namespace admission rules. K8s namespace spec format: [a-z.-]+, e.g. 'some-namespace'

map<string, .google.cloud.binaryauthorization.v1.AdmissionRule> kubernetes_namespace_admission_rules = 10 [(.google.api.field_behavior) = OPTIONAL];

Parameters
Name Description
key String
value Resources.AdmissionRule
Returns
Type Description
Resources.Policy.Builder

putKubernetesNamespaceAdmissionRulesBuilderIfAbsent(String key)

public Resources.AdmissionRule.Builder putKubernetesNamespaceAdmissionRulesBuilderIfAbsent(String key)

Optional. Per-kubernetes-namespace admission rules. K8s namespace spec format: [a-z.-]+, e.g. 'some-namespace'

map<string, .google.cloud.binaryauthorization.v1.AdmissionRule> kubernetes_namespace_admission_rules = 10 [(.google.api.field_behavior) = OPTIONAL];

Parameter
Name Description
key String
Returns
Type Description
Resources.AdmissionRule.Builder

putKubernetesServiceAccountAdmissionRules(String key, Resources.AdmissionRule value)

public Resources.Policy.Builder putKubernetesServiceAccountAdmissionRules(String key, Resources.AdmissionRule value)

Optional. Per-kubernetes-service-account admission rules. Service account spec format: namespace:serviceaccount. e.g. 'test-ns:default'

map<string, .google.cloud.binaryauthorization.v1.AdmissionRule> kubernetes_service_account_admission_rules = 8 [(.google.api.field_behavior) = OPTIONAL];

Parameters
Name Description
key String
value Resources.AdmissionRule
Returns
Type Description
Resources.Policy.Builder

putKubernetesServiceAccountAdmissionRulesBuilderIfAbsent(String key)

public Resources.AdmissionRule.Builder putKubernetesServiceAccountAdmissionRulesBuilderIfAbsent(String key)

Optional. Per-kubernetes-service-account admission rules. Service account spec format: namespace:serviceaccount. e.g. 'test-ns:default'

map<string, .google.cloud.binaryauthorization.v1.AdmissionRule> kubernetes_service_account_admission_rules = 8 [(.google.api.field_behavior) = OPTIONAL];

Parameter
Name Description
key String
Returns
Type Description
Resources.AdmissionRule.Builder

removeAdmissionWhitelistPatterns(int index)

public Resources.Policy.Builder removeAdmissionWhitelistPatterns(int index)

Optional. Admission policy allowlisting. A matching admission request will always be permitted. This feature is typically used to exclude Google or third-party infrastructure images from Binary Authorization policies.

repeated .google.cloud.binaryauthorization.v1.AdmissionWhitelistPattern admission_whitelist_patterns = 2 [(.google.api.field_behavior) = OPTIONAL];

Parameter
Name Description
index int
Returns
Type Description
Resources.Policy.Builder

removeClusterAdmissionRules(String key)

public Resources.Policy.Builder removeClusterAdmissionRules(String key)

Optional. Per-cluster admission rules. Cluster spec format: location.clusterId. There can be at most one admission rule per cluster spec. A location is either a compute zone (e.g. us-central1-a) or a region (e.g. us-central1). For clusterId syntax restrictions see https://cloud.google.com/container-engine/reference/rest/v1/projects.zones.clusters.

map<string, .google.cloud.binaryauthorization.v1.AdmissionRule> cluster_admission_rules = 3 [(.google.api.field_behavior) = OPTIONAL];

Parameter
Name Description
key String
Returns
Type Description
Resources.Policy.Builder

removeIstioServiceIdentityAdmissionRules(String key)

public Resources.Policy.Builder removeIstioServiceIdentityAdmissionRules(String key)

Optional. Per-istio-service-identity admission rules. Istio service identity spec format: spiffe://<domain>/ns/<namespace>/sa/<serviceaccount> or <domain>/ns/<namespace>/sa/<serviceaccount> e.g. spiffe://example.com/ns/test-ns/sa/default

map<string, .google.cloud.binaryauthorization.v1.AdmissionRule> istio_service_identity_admission_rules = 9 [(.google.api.field_behavior) = OPTIONAL];

Parameter
Name Description
key String
Returns
Type Description
Resources.Policy.Builder

removeKubernetesNamespaceAdmissionRules(String key)

public Resources.Policy.Builder removeKubernetesNamespaceAdmissionRules(String key)

Optional. Per-kubernetes-namespace admission rules. K8s namespace spec format: [a-z.-]+, e.g. 'some-namespace'

map<string, .google.cloud.binaryauthorization.v1.AdmissionRule> kubernetes_namespace_admission_rules = 10 [(.google.api.field_behavior) = OPTIONAL];

Parameter
Name Description
key String
Returns
Type Description
Resources.Policy.Builder

removeKubernetesServiceAccountAdmissionRules(String key)

public Resources.Policy.Builder removeKubernetesServiceAccountAdmissionRules(String key)

Optional. Per-kubernetes-service-account admission rules. Service account spec format: namespace:serviceaccount. e.g. 'test-ns:default'

map<string, .google.cloud.binaryauthorization.v1.AdmissionRule> kubernetes_service_account_admission_rules = 8 [(.google.api.field_behavior) = OPTIONAL];

Parameter
Name Description
key String
Returns
Type Description
Resources.Policy.Builder

setAdmissionWhitelistPatterns(int index, Resources.AdmissionWhitelistPattern value)

public Resources.Policy.Builder setAdmissionWhitelistPatterns(int index, Resources.AdmissionWhitelistPattern value)

Optional. Admission policy allowlisting. A matching admission request will always be permitted. This feature is typically used to exclude Google or third-party infrastructure images from Binary Authorization policies.

repeated .google.cloud.binaryauthorization.v1.AdmissionWhitelistPattern admission_whitelist_patterns = 2 [(.google.api.field_behavior) = OPTIONAL];

Parameters
Name Description
index int
value Resources.AdmissionWhitelistPattern
Returns
Type Description
Resources.Policy.Builder

setAdmissionWhitelistPatterns(int index, Resources.AdmissionWhitelistPattern.Builder builderForValue)

public Resources.Policy.Builder setAdmissionWhitelistPatterns(int index, Resources.AdmissionWhitelistPattern.Builder builderForValue)

Optional. Admission policy allowlisting. A matching admission request will always be permitted. This feature is typically used to exclude Google or third-party infrastructure images from Binary Authorization policies.

repeated .google.cloud.binaryauthorization.v1.AdmissionWhitelistPattern admission_whitelist_patterns = 2 [(.google.api.field_behavior) = OPTIONAL];

Parameters
Name Description
index int
builderForValue Resources.AdmissionWhitelistPattern.Builder
Returns
Type Description
Resources.Policy.Builder

setDefaultAdmissionRule(Resources.AdmissionRule value)

public Resources.Policy.Builder setDefaultAdmissionRule(Resources.AdmissionRule value)

Required. Default admission rule for a cluster without a per-cluster, per- kubernetes-service-account, or per-istio-service-identity admission rule.

.google.cloud.binaryauthorization.v1.AdmissionRule default_admission_rule = 4 [(.google.api.field_behavior) = REQUIRED];

Parameter
Name Description
value Resources.AdmissionRule
Returns
Type Description
Resources.Policy.Builder

setDefaultAdmissionRule(Resources.AdmissionRule.Builder builderForValue)

public Resources.Policy.Builder setDefaultAdmissionRule(Resources.AdmissionRule.Builder builderForValue)

Required. Default admission rule for a cluster without a per-cluster, per- kubernetes-service-account, or per-istio-service-identity admission rule.

.google.cloud.binaryauthorization.v1.AdmissionRule default_admission_rule = 4 [(.google.api.field_behavior) = REQUIRED];

Parameter
Name Description
builderForValue Resources.AdmissionRule.Builder
Returns
Type Description
Resources.Policy.Builder

setDescription(String value)

public Resources.Policy.Builder setDescription(String value)

Optional. A descriptive comment.

string description = 6 [(.google.api.field_behavior) = OPTIONAL];

Parameter
Name Description
value String

The description to set.

Returns
Type Description
Resources.Policy.Builder

This builder for chaining.

setDescriptionBytes(ByteString value)

public Resources.Policy.Builder setDescriptionBytes(ByteString value)

Optional. A descriptive comment.

string description = 6 [(.google.api.field_behavior) = OPTIONAL];

Parameter
Name Description
value ByteString

The bytes for description to set.

Returns
Type Description
Resources.Policy.Builder

This builder for chaining.

setField(Descriptors.FieldDescriptor field, Object value)

public Resources.Policy.Builder setField(Descriptors.FieldDescriptor field, Object value)
Parameters
Name Description
field FieldDescriptor
value Object
Returns
Type Description
Resources.Policy.Builder
Overrides

setGlobalPolicyEvaluationMode(Resources.Policy.GlobalPolicyEvaluationMode value)

public Resources.Policy.Builder setGlobalPolicyEvaluationMode(Resources.Policy.GlobalPolicyEvaluationMode value)

Optional. Controls the evaluation of a Google-maintained global admission policy for common system-level images. Images not covered by the global policy will be subject to the project admission policy. This setting has no effect when specified inside a global admission policy.

.google.cloud.binaryauthorization.v1.Policy.GlobalPolicyEvaluationMode global_policy_evaluation_mode = 7 [(.google.api.field_behavior) = OPTIONAL];

Parameter
Name Description
value Resources.Policy.GlobalPolicyEvaluationMode

The globalPolicyEvaluationMode to set.

Returns
Type Description
Resources.Policy.Builder

This builder for chaining.

setGlobalPolicyEvaluationModeValue(int value)

public Resources.Policy.Builder setGlobalPolicyEvaluationModeValue(int value)

Optional. Controls the evaluation of a Google-maintained global admission policy for common system-level images. Images not covered by the global policy will be subject to the project admission policy. This setting has no effect when specified inside a global admission policy.

.google.cloud.binaryauthorization.v1.Policy.GlobalPolicyEvaluationMode global_policy_evaluation_mode = 7 [(.google.api.field_behavior) = OPTIONAL];

Parameter
Name Description
value int

The enum numeric value on the wire for globalPolicyEvaluationMode to set.

Returns
Type Description
Resources.Policy.Builder

This builder for chaining.

setName(String value)

public Resources.Policy.Builder setName(String value)

Output only. The resource name, in the format projects/*/policy. There is at most one policy per project.

string name = 1 [(.google.api.field_behavior) = OUTPUT_ONLY];

Parameter
Name Description
value String

The name to set.

Returns
Type Description
Resources.Policy.Builder

This builder for chaining.

setNameBytes(ByteString value)

public Resources.Policy.Builder setNameBytes(ByteString value)

Output only. The resource name, in the format projects/*/policy. There is at most one policy per project.

string name = 1 [(.google.api.field_behavior) = OUTPUT_ONLY];

Parameter
Name Description
value ByteString

The bytes for name to set.

Returns
Type Description
Resources.Policy.Builder

This builder for chaining.

setRepeatedField(Descriptors.FieldDescriptor field, int index, Object value)

public Resources.Policy.Builder setRepeatedField(Descriptors.FieldDescriptor field, int index, Object value)
Parameters
Name Description
field FieldDescriptor
index int
value Object
Returns
Type Description
Resources.Policy.Builder
Overrides

setUnknownFields(UnknownFieldSet unknownFields)

public final Resources.Policy.Builder setUnknownFields(UnknownFieldSet unknownFields)
Parameter
Name Description
unknownFields UnknownFieldSet
Returns
Type Description
Resources.Policy.Builder
Overrides

setUpdateTime(Timestamp value)

public Resources.Policy.Builder setUpdateTime(Timestamp value)

Output only. Time when the policy was last updated.

.google.protobuf.Timestamp update_time = 5 [(.google.api.field_behavior) = OUTPUT_ONLY];

Parameter
Name Description
value Timestamp
Returns
Type Description
Resources.Policy.Builder

setUpdateTime(Timestamp.Builder builderForValue)

public Resources.Policy.Builder setUpdateTime(Timestamp.Builder builderForValue)

Output only. Time when the policy was last updated.

.google.protobuf.Timestamp update_time = 5 [(.google.api.field_behavior) = OUTPUT_ONLY];

Parameter
Name Description
builderForValue Builder
Returns
Type Description
Resources.Policy.Builder