Interface PolicyRuleOrBuilder (0.11.0)

public interface PolicyRuleOrBuilder extends MessageOrBuilder

Implements

MessageOrBuilder

Methods

getAllowAll()

public abstract boolean getAllowAll()

Setting this to true means that all values are allowed. This field can be set only in policies for list constraints.

bool allow_all = 2;

Returns
Type Description
boolean

The allowAll.

getCondition()

public abstract Expr getCondition()

A condition which determines whether this rule is used in the evaluation of the policy. When set, the expression field in the `Expr' must include from 1 to 10 subexpressions, joined by the "||" or "&&" operators. Each subexpression must be of the form "resource.matchTag('<ORG_ID>/tag_key_short_name, 'tag_value_short_name')" or "resource.matchTagId('tagKeys/key_id', 'tagValues/value_id')" where key_name and value_name are the resource names for Label Keys and Values. These names are available from the Tag Manager Service. An example expression is: "resource.matchTag('123456789/environment, 'prod')" or "resource.matchTagId('tagKeys/123', 'tagValues/456')".

.google.type.Expr condition = 5;

Returns
Type Description
com.google.type.Expr

The condition.

getConditionOrBuilder()

public abstract ExprOrBuilder getConditionOrBuilder()

A condition which determines whether this rule is used in the evaluation of the policy. When set, the expression field in the `Expr' must include from 1 to 10 subexpressions, joined by the "||" or "&&" operators. Each subexpression must be of the form "resource.matchTag('<ORG_ID>/tag_key_short_name, 'tag_value_short_name')" or "resource.matchTagId('tagKeys/key_id', 'tagValues/value_id')" where key_name and value_name are the resource names for Label Keys and Values. These names are available from the Tag Manager Service. An example expression is: "resource.matchTag('123456789/environment, 'prod')" or "resource.matchTagId('tagKeys/123', 'tagValues/456')".

.google.type.Expr condition = 5;

Returns
Type Description
com.google.type.ExprOrBuilder

getDenyAll()

public abstract boolean getDenyAll()

Setting this to true means that all values are denied. This field can be set only in policies for list constraints.

bool deny_all = 3;

Returns
Type Description
boolean

The denyAll.

getEnforce()

public abstract boolean getEnforce()

If true, then the policy is enforced. If false, then any configuration is acceptable. This field can be set only in policies for boolean constraints.

bool enforce = 4;

Returns
Type Description
boolean

The enforce.

getKindCase()

public abstract PolicyRule.KindCase getKindCase()
Returns
Type Description
PolicyRule.KindCase

getValues()

public abstract PolicyRule.StringValues getValues()

List of values to be used for this policy rule. This field can be set only in policies for list constraints.

.google.cloud.securityposture.v1.PolicyRule.StringValues values = 1;

Returns
Type Description
PolicyRule.StringValues

The values.

getValuesOrBuilder()

public abstract PolicyRule.StringValuesOrBuilder getValuesOrBuilder()

List of values to be used for this policy rule. This field can be set only in policies for list constraints.

.google.cloud.securityposture.v1.PolicyRule.StringValues values = 1;

Returns
Type Description
PolicyRule.StringValuesOrBuilder

hasAllowAll()

public abstract boolean hasAllowAll()

Setting this to true means that all values are allowed. This field can be set only in policies for list constraints.

bool allow_all = 2;

Returns
Type Description
boolean

Whether the allowAll field is set.

hasCondition()

public abstract boolean hasCondition()

A condition which determines whether this rule is used in the evaluation of the policy. When set, the expression field in the `Expr' must include from 1 to 10 subexpressions, joined by the "||" or "&&" operators. Each subexpression must be of the form "resource.matchTag('<ORG_ID>/tag_key_short_name, 'tag_value_short_name')" or "resource.matchTagId('tagKeys/key_id', 'tagValues/value_id')" where key_name and value_name are the resource names for Label Keys and Values. These names are available from the Tag Manager Service. An example expression is: "resource.matchTag('123456789/environment, 'prod')" or "resource.matchTagId('tagKeys/123', 'tagValues/456')".

.google.type.Expr condition = 5;

Returns
Type Description
boolean

Whether the condition field is set.

hasDenyAll()

public abstract boolean hasDenyAll()

Setting this to true means that all values are denied. This field can be set only in policies for list constraints.

bool deny_all = 3;

Returns
Type Description
boolean

Whether the denyAll field is set.

hasEnforce()

public abstract boolean hasEnforce()

If true, then the policy is enforced. If false, then any configuration is acceptable. This field can be set only in policies for boolean constraints.

bool enforce = 4;

Returns
Type Description
boolean

Whether the enforce field is set.

hasValues()

public abstract boolean hasValues()

List of values to be used for this policy rule. This field can be set only in policies for list constraints.

.google.cloud.securityposture.v1.PolicyRule.StringValues values = 1;

Returns
Type Description
boolean

Whether the values field is set.