- 2.62.0 (latest)
- 2.61.0
- 2.60.0
- 2.59.0
- 2.57.0
- 2.56.0
- 2.55.0
- 2.54.0
- 2.53.0
- 2.52.0
- 2.51.0
- 2.50.0
- 2.49.0
- 2.48.0
- 2.47.0
- 2.45.0
- 2.44.0
- 2.43.0
- 2.42.0
- 2.41.0
- 2.40.0
- 2.39.0
- 2.38.0
- 2.37.0
- 2.36.0
- 2.35.0
- 2.32.0
- 2.31.0
- 2.30.0
- 2.29.0
- 2.28.0
- 2.27.0
- 2.26.0
- 2.25.0
- 2.24.0
- 2.23.0
- 2.22.0
- 2.21.0
- 2.20.0
- 2.19.0
- 2.17.0
- 2.16.0
- 2.15.0
- 2.14.0
- 2.13.0
- 2.12.0
- 2.11.1
- 2.10.0
- 2.9.0
- 2.8.0
- 2.7.1
- 2.6.0
- 2.5.6
- 2.3.2
public static final class Access.Builder extends GeneratedMessageV3.Builder<Access.Builder> implements AccessOrBuilder
Represents an access event.
Protobuf type google.cloud.securitycenter.v1.Access
Inheritance
Object > AbstractMessageLite.Builder<MessageType,BuilderType> > AbstractMessage.Builder<BuilderType> > GeneratedMessageV3.Builder > Access.BuilderImplements
AccessOrBuilderStatic Methods
getDescriptor()
public static final Descriptors.Descriptor getDescriptor()
Type | Description |
Descriptor |
Methods
addAllServiceAccountDelegationInfo(Iterable<? extends ServiceAccountDelegationInfo> values)
public Access.Builder addAllServiceAccountDelegationInfo(Iterable<? extends ServiceAccountDelegationInfo> values)
Identity delegation history of an authenticated service account that makes the request. It contains information on the real authorities that try to access GCP resources by delegating on a service account. When multiple authorities are present, they are guaranteed to be sorted based on the original ordering of the identity delegation events.
repeated .google.cloud.securitycenter.v1.ServiceAccountDelegationInfo service_account_delegation_info = 9;
Name | Description |
values | Iterable<? extends com.google.cloud.securitycenter.v1.ServiceAccountDelegationInfo> |
Type | Description |
Access.Builder |
addRepeatedField(Descriptors.FieldDescriptor field, Object value)
public Access.Builder addRepeatedField(Descriptors.FieldDescriptor field, Object value)
Name | Description |
field | FieldDescriptor |
value | Object |
Type | Description |
Access.Builder |
addServiceAccountDelegationInfo(ServiceAccountDelegationInfo value)
public Access.Builder addServiceAccountDelegationInfo(ServiceAccountDelegationInfo value)
Identity delegation history of an authenticated service account that makes the request. It contains information on the real authorities that try to access GCP resources by delegating on a service account. When multiple authorities are present, they are guaranteed to be sorted based on the original ordering of the identity delegation events.
repeated .google.cloud.securitycenter.v1.ServiceAccountDelegationInfo service_account_delegation_info = 9;
Name | Description |
value | ServiceAccountDelegationInfo |
Type | Description |
Access.Builder |
addServiceAccountDelegationInfo(ServiceAccountDelegationInfo.Builder builderForValue)
public Access.Builder addServiceAccountDelegationInfo(ServiceAccountDelegationInfo.Builder builderForValue)
Identity delegation history of an authenticated service account that makes the request. It contains information on the real authorities that try to access GCP resources by delegating on a service account. When multiple authorities are present, they are guaranteed to be sorted based on the original ordering of the identity delegation events.
repeated .google.cloud.securitycenter.v1.ServiceAccountDelegationInfo service_account_delegation_info = 9;
Name | Description |
builderForValue | ServiceAccountDelegationInfo.Builder |
Type | Description |
Access.Builder |
addServiceAccountDelegationInfo(int index, ServiceAccountDelegationInfo value)
public Access.Builder addServiceAccountDelegationInfo(int index, ServiceAccountDelegationInfo value)
Identity delegation history of an authenticated service account that makes the request. It contains information on the real authorities that try to access GCP resources by delegating on a service account. When multiple authorities are present, they are guaranteed to be sorted based on the original ordering of the identity delegation events.
repeated .google.cloud.securitycenter.v1.ServiceAccountDelegationInfo service_account_delegation_info = 9;
Name | Description |
index | int |
value | ServiceAccountDelegationInfo |
Type | Description |
Access.Builder |
addServiceAccountDelegationInfo(int index, ServiceAccountDelegationInfo.Builder builderForValue)
public Access.Builder addServiceAccountDelegationInfo(int index, ServiceAccountDelegationInfo.Builder builderForValue)
Identity delegation history of an authenticated service account that makes the request. It contains information on the real authorities that try to access GCP resources by delegating on a service account. When multiple authorities are present, they are guaranteed to be sorted based on the original ordering of the identity delegation events.
repeated .google.cloud.securitycenter.v1.ServiceAccountDelegationInfo service_account_delegation_info = 9;
Name | Description |
index | int |
builderForValue | ServiceAccountDelegationInfo.Builder |
Type | Description |
Access.Builder |
addServiceAccountDelegationInfoBuilder()
public ServiceAccountDelegationInfo.Builder addServiceAccountDelegationInfoBuilder()
Identity delegation history of an authenticated service account that makes the request. It contains information on the real authorities that try to access GCP resources by delegating on a service account. When multiple authorities are present, they are guaranteed to be sorted based on the original ordering of the identity delegation events.
repeated .google.cloud.securitycenter.v1.ServiceAccountDelegationInfo service_account_delegation_info = 9;
Type | Description |
ServiceAccountDelegationInfo.Builder |
addServiceAccountDelegationInfoBuilder(int index)
public ServiceAccountDelegationInfo.Builder addServiceAccountDelegationInfoBuilder(int index)
Identity delegation history of an authenticated service account that makes the request. It contains information on the real authorities that try to access GCP resources by delegating on a service account. When multiple authorities are present, they are guaranteed to be sorted based on the original ordering of the identity delegation events.
repeated .google.cloud.securitycenter.v1.ServiceAccountDelegationInfo service_account_delegation_info = 9;
Name | Description |
index | int |
Type | Description |
ServiceAccountDelegationInfo.Builder |
build()
public Access build()
Type | Description |
Access |
buildPartial()
public Access buildPartial()
Type | Description |
Access |
clear()
public Access.Builder clear()
Type | Description |
Access.Builder |
clearCallerIp()
public Access.Builder clearCallerIp()
Caller's IP address, such as "1.1.1.1".
string caller_ip = 2;
Type | Description |
Access.Builder | This builder for chaining. |
clearCallerIpGeo()
public Access.Builder clearCallerIpGeo()
The caller IP's geolocation, which identifies where the call came from.
.google.cloud.securitycenter.v1.Geolocation caller_ip_geo = 3;
Type | Description |
Access.Builder |
clearField(Descriptors.FieldDescriptor field)
public Access.Builder clearField(Descriptors.FieldDescriptor field)
Name | Description |
field | FieldDescriptor |
Type | Description |
Access.Builder |
clearMethodName()
public Access.Builder clearMethodName()
The method that the service account called, e.g. "SetIamPolicy".
string method_name = 6;
Type | Description |
Access.Builder | This builder for chaining. |
clearOneof(Descriptors.OneofDescriptor oneof)
public Access.Builder clearOneof(Descriptors.OneofDescriptor oneof)
Name | Description |
oneof | OneofDescriptor |
Type | Description |
Access.Builder |
clearPrincipalEmail()
public Access.Builder clearPrincipalEmail()
Associated email, such as "foo@google.com".
The email address of the authenticated user (or service account on behalf
of third party principal) making the request. For third party identity
callers, the principal_subject
field is populated instead of this field.
For privacy reasons, the principal email address is sometimes redacted.
For more information, see Caller identities in audit
logs.
string principal_email = 1;
Type | Description |
Access.Builder | This builder for chaining. |
clearPrincipalSubject()
public Access.Builder clearPrincipalSubject()
A string representing the principal_subject associated with the identity.
As compared to principal_email
, supports principals that aren't
associated with email addresses, such as third party principals. For most
identities, the format will be principal://iam.googleapis.com/{identity
pool name}/subjects/{subject}
except for some GKE identities
(GKE_WORKLOAD, FREEFORM, GKE_HUB_WORKLOAD) that are still in the legacy
format serviceAccount:{identity pool name}[{subject}]
string principal_subject = 7;
Type | Description |
Access.Builder | This builder for chaining. |
clearServiceAccountDelegationInfo()
public Access.Builder clearServiceAccountDelegationInfo()
Identity delegation history of an authenticated service account that makes the request. It contains information on the real authorities that try to access GCP resources by delegating on a service account. When multiple authorities are present, they are guaranteed to be sorted based on the original ordering of the identity delegation events.
repeated .google.cloud.securitycenter.v1.ServiceAccountDelegationInfo service_account_delegation_info = 9;
Type | Description |
Access.Builder |
clearServiceAccountKeyName()
public Access.Builder clearServiceAccountKeyName()
The name of the service account key used to create or exchange credentials for authenticating the service account making the request. This is a scheme-less URI full resource name. For example: "//iam.googleapis.com/projects/{PROJECT_ID}/serviceAccounts/{ACCOUNT}/keys/{key}"
string service_account_key_name = 8;
Type | Description |
Access.Builder | This builder for chaining. |
clearServiceName()
public Access.Builder clearServiceName()
This is the API service that the service account made a call to, e.g. "iam.googleapis.com"
string service_name = 5;
Type | Description |
Access.Builder | This builder for chaining. |
clearUserAgentFamily()
public Access.Builder clearUserAgentFamily()
What kind of user agent is associated, for example operating system shells, embedded or stand-alone applications, etc.
string user_agent_family = 4;
Type | Description |
Access.Builder | This builder for chaining. |
clearUserName()
public Access.Builder clearUserName()
A string that represents the username of a user, user account, or other entity involved in the access event. What the entity is and what its role in the access event is depends on the finding that this field appears in. The entity is likely not an IAM principal, but could be a user that is logged into an operating system, if the finding is VM-related, or a user that is logged into some type of application that is involved in the access event.
string user_name = 11;
Type | Description |
Access.Builder | This builder for chaining. |
clone()
public Access.Builder clone()
Type | Description |
Access.Builder |
getCallerIp()
public String getCallerIp()
Caller's IP address, such as "1.1.1.1".
string caller_ip = 2;
Type | Description |
String | The callerIp. |
getCallerIpBytes()
public ByteString getCallerIpBytes()
Caller's IP address, such as "1.1.1.1".
string caller_ip = 2;
Type | Description |
ByteString | The bytes for callerIp. |
getCallerIpGeo()
public Geolocation getCallerIpGeo()
The caller IP's geolocation, which identifies where the call came from.
.google.cloud.securitycenter.v1.Geolocation caller_ip_geo = 3;
Type | Description |
Geolocation | The callerIpGeo. |
getCallerIpGeoBuilder()
public Geolocation.Builder getCallerIpGeoBuilder()
The caller IP's geolocation, which identifies where the call came from.
.google.cloud.securitycenter.v1.Geolocation caller_ip_geo = 3;
Type | Description |
Geolocation.Builder |
getCallerIpGeoOrBuilder()
public GeolocationOrBuilder getCallerIpGeoOrBuilder()
The caller IP's geolocation, which identifies where the call came from.
.google.cloud.securitycenter.v1.Geolocation caller_ip_geo = 3;
Type | Description |
GeolocationOrBuilder |
getDefaultInstanceForType()
public Access getDefaultInstanceForType()
Type | Description |
Access |
getDescriptorForType()
public Descriptors.Descriptor getDescriptorForType()
Type | Description |
Descriptor |
getMethodName()
public String getMethodName()
The method that the service account called, e.g. "SetIamPolicy".
string method_name = 6;
Type | Description |
String | The methodName. |
getMethodNameBytes()
public ByteString getMethodNameBytes()
The method that the service account called, e.g. "SetIamPolicy".
string method_name = 6;
Type | Description |
ByteString | The bytes for methodName. |
getPrincipalEmail()
public String getPrincipalEmail()
Associated email, such as "foo@google.com".
The email address of the authenticated user (or service account on behalf
of third party principal) making the request. For third party identity
callers, the principal_subject
field is populated instead of this field.
For privacy reasons, the principal email address is sometimes redacted.
For more information, see Caller identities in audit
logs.
string principal_email = 1;
Type | Description |
String | The principalEmail. |
getPrincipalEmailBytes()
public ByteString getPrincipalEmailBytes()
Associated email, such as "foo@google.com".
The email address of the authenticated user (or service account on behalf
of third party principal) making the request. For third party identity
callers, the principal_subject
field is populated instead of this field.
For privacy reasons, the principal email address is sometimes redacted.
For more information, see Caller identities in audit
logs.
string principal_email = 1;
Type | Description |
ByteString | The bytes for principalEmail. |
getPrincipalSubject()
public String getPrincipalSubject()
A string representing the principal_subject associated with the identity.
As compared to principal_email
, supports principals that aren't
associated with email addresses, such as third party principals. For most
identities, the format will be principal://iam.googleapis.com/{identity
pool name}/subjects/{subject}
except for some GKE identities
(GKE_WORKLOAD, FREEFORM, GKE_HUB_WORKLOAD) that are still in the legacy
format serviceAccount:{identity pool name}[{subject}]
string principal_subject = 7;
Type | Description |
String | The principalSubject. |
getPrincipalSubjectBytes()
public ByteString getPrincipalSubjectBytes()
A string representing the principal_subject associated with the identity.
As compared to principal_email
, supports principals that aren't
associated with email addresses, such as third party principals. For most
identities, the format will be principal://iam.googleapis.com/{identity
pool name}/subjects/{subject}
except for some GKE identities
(GKE_WORKLOAD, FREEFORM, GKE_HUB_WORKLOAD) that are still in the legacy
format serviceAccount:{identity pool name}[{subject}]
string principal_subject = 7;
Type | Description |
ByteString | The bytes for principalSubject. |
getServiceAccountDelegationInfo(int index)
public ServiceAccountDelegationInfo getServiceAccountDelegationInfo(int index)
Identity delegation history of an authenticated service account that makes the request. It contains information on the real authorities that try to access GCP resources by delegating on a service account. When multiple authorities are present, they are guaranteed to be sorted based on the original ordering of the identity delegation events.
repeated .google.cloud.securitycenter.v1.ServiceAccountDelegationInfo service_account_delegation_info = 9;
Name | Description |
index | int |
Type | Description |
ServiceAccountDelegationInfo |
getServiceAccountDelegationInfoBuilder(int index)
public ServiceAccountDelegationInfo.Builder getServiceAccountDelegationInfoBuilder(int index)
Identity delegation history of an authenticated service account that makes the request. It contains information on the real authorities that try to access GCP resources by delegating on a service account. When multiple authorities are present, they are guaranteed to be sorted based on the original ordering of the identity delegation events.
repeated .google.cloud.securitycenter.v1.ServiceAccountDelegationInfo service_account_delegation_info = 9;
Name | Description |
index | int |
Type | Description |
ServiceAccountDelegationInfo.Builder |
getServiceAccountDelegationInfoBuilderList()
public List<ServiceAccountDelegationInfo.Builder> getServiceAccountDelegationInfoBuilderList()
Identity delegation history of an authenticated service account that makes the request. It contains information on the real authorities that try to access GCP resources by delegating on a service account. When multiple authorities are present, they are guaranteed to be sorted based on the original ordering of the identity delegation events.
repeated .google.cloud.securitycenter.v1.ServiceAccountDelegationInfo service_account_delegation_info = 9;
Type | Description |
List<Builder> |
getServiceAccountDelegationInfoCount()
public int getServiceAccountDelegationInfoCount()
Identity delegation history of an authenticated service account that makes the request. It contains information on the real authorities that try to access GCP resources by delegating on a service account. When multiple authorities are present, they are guaranteed to be sorted based on the original ordering of the identity delegation events.
repeated .google.cloud.securitycenter.v1.ServiceAccountDelegationInfo service_account_delegation_info = 9;
Type | Description |
int |
getServiceAccountDelegationInfoList()
public List<ServiceAccountDelegationInfo> getServiceAccountDelegationInfoList()
Identity delegation history of an authenticated service account that makes the request. It contains information on the real authorities that try to access GCP resources by delegating on a service account. When multiple authorities are present, they are guaranteed to be sorted based on the original ordering of the identity delegation events.
repeated .google.cloud.securitycenter.v1.ServiceAccountDelegationInfo service_account_delegation_info = 9;
Type | Description |
List<ServiceAccountDelegationInfo> |
getServiceAccountDelegationInfoOrBuilder(int index)
public ServiceAccountDelegationInfoOrBuilder getServiceAccountDelegationInfoOrBuilder(int index)
Identity delegation history of an authenticated service account that makes the request. It contains information on the real authorities that try to access GCP resources by delegating on a service account. When multiple authorities are present, they are guaranteed to be sorted based on the original ordering of the identity delegation events.
repeated .google.cloud.securitycenter.v1.ServiceAccountDelegationInfo service_account_delegation_info = 9;
Name | Description |
index | int |
Type | Description |
ServiceAccountDelegationInfoOrBuilder |
getServiceAccountDelegationInfoOrBuilderList()
public List<? extends ServiceAccountDelegationInfoOrBuilder> getServiceAccountDelegationInfoOrBuilderList()
Identity delegation history of an authenticated service account that makes the request. It contains information on the real authorities that try to access GCP resources by delegating on a service account. When multiple authorities are present, they are guaranteed to be sorted based on the original ordering of the identity delegation events.
repeated .google.cloud.securitycenter.v1.ServiceAccountDelegationInfo service_account_delegation_info = 9;
Type | Description |
List<? extends com.google.cloud.securitycenter.v1.ServiceAccountDelegationInfoOrBuilder> |
getServiceAccountKeyName()
public String getServiceAccountKeyName()
The name of the service account key used to create or exchange credentials for authenticating the service account making the request. This is a scheme-less URI full resource name. For example: "//iam.googleapis.com/projects/{PROJECT_ID}/serviceAccounts/{ACCOUNT}/keys/{key}"
string service_account_key_name = 8;
Type | Description |
String | The serviceAccountKeyName. |
getServiceAccountKeyNameBytes()
public ByteString getServiceAccountKeyNameBytes()
The name of the service account key used to create or exchange credentials for authenticating the service account making the request. This is a scheme-less URI full resource name. For example: "//iam.googleapis.com/projects/{PROJECT_ID}/serviceAccounts/{ACCOUNT}/keys/{key}"
string service_account_key_name = 8;
Type | Description |
ByteString | The bytes for serviceAccountKeyName. |
getServiceName()
public String getServiceName()
This is the API service that the service account made a call to, e.g. "iam.googleapis.com"
string service_name = 5;
Type | Description |
String | The serviceName. |
getServiceNameBytes()
public ByteString getServiceNameBytes()
This is the API service that the service account made a call to, e.g. "iam.googleapis.com"
string service_name = 5;
Type | Description |
ByteString | The bytes for serviceName. |
getUserAgentFamily()
public String getUserAgentFamily()
What kind of user agent is associated, for example operating system shells, embedded or stand-alone applications, etc.
string user_agent_family = 4;
Type | Description |
String | The userAgentFamily. |
getUserAgentFamilyBytes()
public ByteString getUserAgentFamilyBytes()
What kind of user agent is associated, for example operating system shells, embedded or stand-alone applications, etc.
string user_agent_family = 4;
Type | Description |
ByteString | The bytes for userAgentFamily. |
getUserName()
public String getUserName()
A string that represents the username of a user, user account, or other entity involved in the access event. What the entity is and what its role in the access event is depends on the finding that this field appears in. The entity is likely not an IAM principal, but could be a user that is logged into an operating system, if the finding is VM-related, or a user that is logged into some type of application that is involved in the access event.
string user_name = 11;
Type | Description |
String | The userName. |
getUserNameBytes()
public ByteString getUserNameBytes()
A string that represents the username of a user, user account, or other entity involved in the access event. What the entity is and what its role in the access event is depends on the finding that this field appears in. The entity is likely not an IAM principal, but could be a user that is logged into an operating system, if the finding is VM-related, or a user that is logged into some type of application that is involved in the access event.
string user_name = 11;
Type | Description |
ByteString | The bytes for userName. |
hasCallerIpGeo()
public boolean hasCallerIpGeo()
The caller IP's geolocation, which identifies where the call came from.
.google.cloud.securitycenter.v1.Geolocation caller_ip_geo = 3;
Type | Description |
boolean | Whether the callerIpGeo field is set. |
internalGetFieldAccessorTable()
protected GeneratedMessageV3.FieldAccessorTable internalGetFieldAccessorTable()
Type | Description |
FieldAccessorTable |
isInitialized()
public final boolean isInitialized()
Type | Description |
boolean |
mergeCallerIpGeo(Geolocation value)
public Access.Builder mergeCallerIpGeo(Geolocation value)
The caller IP's geolocation, which identifies where the call came from.
.google.cloud.securitycenter.v1.Geolocation caller_ip_geo = 3;
Name | Description |
value | Geolocation |
Type | Description |
Access.Builder |
mergeFrom(Access other)
public Access.Builder mergeFrom(Access other)
Name | Description |
other | Access |
Type | Description |
Access.Builder |
mergeFrom(CodedInputStream input, ExtensionRegistryLite extensionRegistry)
public Access.Builder mergeFrom(CodedInputStream input, ExtensionRegistryLite extensionRegistry)
Name | Description |
input | CodedInputStream |
extensionRegistry | ExtensionRegistryLite |
Type | Description |
Access.Builder |
Type | Description |
IOException |
mergeFrom(Message other)
public Access.Builder mergeFrom(Message other)
Name | Description |
other | Message |
Type | Description |
Access.Builder |
mergeUnknownFields(UnknownFieldSet unknownFields)
public final Access.Builder mergeUnknownFields(UnknownFieldSet unknownFields)
Name | Description |
unknownFields | UnknownFieldSet |
Type | Description |
Access.Builder |
removeServiceAccountDelegationInfo(int index)
public Access.Builder removeServiceAccountDelegationInfo(int index)
Identity delegation history of an authenticated service account that makes the request. It contains information on the real authorities that try to access GCP resources by delegating on a service account. When multiple authorities are present, they are guaranteed to be sorted based on the original ordering of the identity delegation events.
repeated .google.cloud.securitycenter.v1.ServiceAccountDelegationInfo service_account_delegation_info = 9;
Name | Description |
index | int |
Type | Description |
Access.Builder |
setCallerIp(String value)
public Access.Builder setCallerIp(String value)
Caller's IP address, such as "1.1.1.1".
string caller_ip = 2;
Name | Description |
value | String The callerIp to set. |
Type | Description |
Access.Builder | This builder for chaining. |
setCallerIpBytes(ByteString value)
public Access.Builder setCallerIpBytes(ByteString value)
Caller's IP address, such as "1.1.1.1".
string caller_ip = 2;
Name | Description |
value | ByteString The bytes for callerIp to set. |
Type | Description |
Access.Builder | This builder for chaining. |
setCallerIpGeo(Geolocation value)
public Access.Builder setCallerIpGeo(Geolocation value)
The caller IP's geolocation, which identifies where the call came from.
.google.cloud.securitycenter.v1.Geolocation caller_ip_geo = 3;
Name | Description |
value | Geolocation |
Type | Description |
Access.Builder |
setCallerIpGeo(Geolocation.Builder builderForValue)
public Access.Builder setCallerIpGeo(Geolocation.Builder builderForValue)
The caller IP's geolocation, which identifies where the call came from.
.google.cloud.securitycenter.v1.Geolocation caller_ip_geo = 3;
Name | Description |
builderForValue | Geolocation.Builder |
Type | Description |
Access.Builder |
setField(Descriptors.FieldDescriptor field, Object value)
public Access.Builder setField(Descriptors.FieldDescriptor field, Object value)
Name | Description |
field | FieldDescriptor |
value | Object |
Type | Description |
Access.Builder |
setMethodName(String value)
public Access.Builder setMethodName(String value)
The method that the service account called, e.g. "SetIamPolicy".
string method_name = 6;
Name | Description |
value | String The methodName to set. |
Type | Description |
Access.Builder | This builder for chaining. |
setMethodNameBytes(ByteString value)
public Access.Builder setMethodNameBytes(ByteString value)
The method that the service account called, e.g. "SetIamPolicy".
string method_name = 6;
Name | Description |
value | ByteString The bytes for methodName to set. |
Type | Description |
Access.Builder | This builder for chaining. |
setPrincipalEmail(String value)
public Access.Builder setPrincipalEmail(String value)
Associated email, such as "foo@google.com".
The email address of the authenticated user (or service account on behalf
of third party principal) making the request. For third party identity
callers, the principal_subject
field is populated instead of this field.
For privacy reasons, the principal email address is sometimes redacted.
For more information, see Caller identities in audit
logs.
string principal_email = 1;
Name | Description |
value | String The principalEmail to set. |
Type | Description |
Access.Builder | This builder for chaining. |
setPrincipalEmailBytes(ByteString value)
public Access.Builder setPrincipalEmailBytes(ByteString value)
Associated email, such as "foo@google.com".
The email address of the authenticated user (or service account on behalf
of third party principal) making the request. For third party identity
callers, the principal_subject
field is populated instead of this field.
For privacy reasons, the principal email address is sometimes redacted.
For more information, see Caller identities in audit
logs.
string principal_email = 1;
Name | Description |
value | ByteString The bytes for principalEmail to set. |
Type | Description |
Access.Builder | This builder for chaining. |
setPrincipalSubject(String value)
public Access.Builder setPrincipalSubject(String value)
A string representing the principal_subject associated with the identity.
As compared to principal_email
, supports principals that aren't
associated with email addresses, such as third party principals. For most
identities, the format will be principal://iam.googleapis.com/{identity
pool name}/subjects/{subject}
except for some GKE identities
(GKE_WORKLOAD, FREEFORM, GKE_HUB_WORKLOAD) that are still in the legacy
format serviceAccount:{identity pool name}[{subject}]
string principal_subject = 7;
Name | Description |
value | String The principalSubject to set. |
Type | Description |
Access.Builder | This builder for chaining. |
setPrincipalSubjectBytes(ByteString value)
public Access.Builder setPrincipalSubjectBytes(ByteString value)
A string representing the principal_subject associated with the identity.
As compared to principal_email
, supports principals that aren't
associated with email addresses, such as third party principals. For most
identities, the format will be principal://iam.googleapis.com/{identity
pool name}/subjects/{subject}
except for some GKE identities
(GKE_WORKLOAD, FREEFORM, GKE_HUB_WORKLOAD) that are still in the legacy
format serviceAccount:{identity pool name}[{subject}]
string principal_subject = 7;
Name | Description |
value | ByteString The bytes for principalSubject to set. |
Type | Description |
Access.Builder | This builder for chaining. |
setRepeatedField(Descriptors.FieldDescriptor field, int index, Object value)
public Access.Builder setRepeatedField(Descriptors.FieldDescriptor field, int index, Object value)
Name | Description |
field | FieldDescriptor |
index | int |
value | Object |
Type | Description |
Access.Builder |
setServiceAccountDelegationInfo(int index, ServiceAccountDelegationInfo value)
public Access.Builder setServiceAccountDelegationInfo(int index, ServiceAccountDelegationInfo value)
Identity delegation history of an authenticated service account that makes the request. It contains information on the real authorities that try to access GCP resources by delegating on a service account. When multiple authorities are present, they are guaranteed to be sorted based on the original ordering of the identity delegation events.
repeated .google.cloud.securitycenter.v1.ServiceAccountDelegationInfo service_account_delegation_info = 9;
Name | Description |
index | int |
value | ServiceAccountDelegationInfo |
Type | Description |
Access.Builder |
setServiceAccountDelegationInfo(int index, ServiceAccountDelegationInfo.Builder builderForValue)
public Access.Builder setServiceAccountDelegationInfo(int index, ServiceAccountDelegationInfo.Builder builderForValue)
Identity delegation history of an authenticated service account that makes the request. It contains information on the real authorities that try to access GCP resources by delegating on a service account. When multiple authorities are present, they are guaranteed to be sorted based on the original ordering of the identity delegation events.
repeated .google.cloud.securitycenter.v1.ServiceAccountDelegationInfo service_account_delegation_info = 9;
Name | Description |
index | int |
builderForValue | ServiceAccountDelegationInfo.Builder |
Type | Description |
Access.Builder |
setServiceAccountKeyName(String value)
public Access.Builder setServiceAccountKeyName(String value)
The name of the service account key used to create or exchange credentials for authenticating the service account making the request. This is a scheme-less URI full resource name. For example: "//iam.googleapis.com/projects/{PROJECT_ID}/serviceAccounts/{ACCOUNT}/keys/{key}"
string service_account_key_name = 8;
Name | Description |
value | String The serviceAccountKeyName to set. |
Type | Description |
Access.Builder | This builder for chaining. |
setServiceAccountKeyNameBytes(ByteString value)
public Access.Builder setServiceAccountKeyNameBytes(ByteString value)
The name of the service account key used to create or exchange credentials for authenticating the service account making the request. This is a scheme-less URI full resource name. For example: "//iam.googleapis.com/projects/{PROJECT_ID}/serviceAccounts/{ACCOUNT}/keys/{key}"
string service_account_key_name = 8;
Name | Description |
value | ByteString The bytes for serviceAccountKeyName to set. |
Type | Description |
Access.Builder | This builder for chaining. |
setServiceName(String value)
public Access.Builder setServiceName(String value)
This is the API service that the service account made a call to, e.g. "iam.googleapis.com"
string service_name = 5;
Name | Description |
value | String The serviceName to set. |
Type | Description |
Access.Builder | This builder for chaining. |
setServiceNameBytes(ByteString value)
public Access.Builder setServiceNameBytes(ByteString value)
This is the API service that the service account made a call to, e.g. "iam.googleapis.com"
string service_name = 5;
Name | Description |
value | ByteString The bytes for serviceName to set. |
Type | Description |
Access.Builder | This builder for chaining. |
setUnknownFields(UnknownFieldSet unknownFields)
public final Access.Builder setUnknownFields(UnknownFieldSet unknownFields)
Name | Description |
unknownFields | UnknownFieldSet |
Type | Description |
Access.Builder |
setUserAgentFamily(String value)
public Access.Builder setUserAgentFamily(String value)
What kind of user agent is associated, for example operating system shells, embedded or stand-alone applications, etc.
string user_agent_family = 4;
Name | Description |
value | String The userAgentFamily to set. |
Type | Description |
Access.Builder | This builder for chaining. |
setUserAgentFamilyBytes(ByteString value)
public Access.Builder setUserAgentFamilyBytes(ByteString value)
What kind of user agent is associated, for example operating system shells, embedded or stand-alone applications, etc.
string user_agent_family = 4;
Name | Description |
value | ByteString The bytes for userAgentFamily to set. |
Type | Description |
Access.Builder | This builder for chaining. |
setUserName(String value)
public Access.Builder setUserName(String value)
A string that represents the username of a user, user account, or other entity involved in the access event. What the entity is and what its role in the access event is depends on the finding that this field appears in. The entity is likely not an IAM principal, but could be a user that is logged into an operating system, if the finding is VM-related, or a user that is logged into some type of application that is involved in the access event.
string user_name = 11;
Name | Description |
value | String The userName to set. |
Type | Description |
Access.Builder | This builder for chaining. |
setUserNameBytes(ByteString value)
public Access.Builder setUserNameBytes(ByteString value)
A string that represents the username of a user, user account, or other entity involved in the access event. What the entity is and what its role in the access event is depends on the finding that this field appears in. The entity is likely not an IAM principal, but could be a user that is logged into an operating system, if the finding is VM-related, or a user that is logged into some type of application that is involved in the access event.
string user_name = 11;
Name | Description |
value | ByteString The bytes for userName to set. |
Type | Description |
Access.Builder | This builder for chaining. |