- 1.55.0 (latest)
- 1.54.0
- 1.53.0
- 1.52.0
- 1.50.0
- 1.49.0
- 1.48.0
- 1.47.0
- 1.46.0
- 1.45.0
- 1.44.0
- 1.43.0
- 1.42.0
- 1.41.0
- 1.40.0
- 1.38.0
- 1.37.0
- 1.36.0
- 1.35.0
- 1.34.0
- 1.33.0
- 1.32.0
- 1.31.0
- 1.30.0
- 1.29.0
- 1.28.0
- 1.25.0
- 1.24.0
- 1.23.0
- 1.22.0
- 1.21.0
- 1.20.0
- 1.19.0
- 1.18.0
- 1.17.0
- 1.16.0
- 1.15.0
- 1.14.0
- 1.13.0
- 1.12.0
- 1.11.0
- 1.10.0
- 1.9.0
- 1.8.0
- 1.7.0
- 1.6.0
- 1.5.0
- 1.4.5
- 1.3.1
- 1.2.10
public abstract static class AccessContextManagerGrpc.AccessContextManagerImplBase implements BindableService
API for setting [Access Levels] [google.identity.accesscontextmanager.v1.AccessLevel] and [Service Perimeters] [google.identity.accesscontextmanager.v1.ServicePerimeter] for Google Cloud Projects. Each organization has one [AccessPolicy] [google.identity.accesscontextmanager.v1.AccessPolicy] containing the [Access Levels] [google.identity.accesscontextmanager.v1.AccessLevel] and [Service Perimeters] [google.identity.accesscontextmanager.v1.ServicePerimeter]. This [AccessPolicy] [google.identity.accesscontextmanager.v1.AccessPolicy] is applicable to all resources in the organization. AccessPolicies
Implements
io.grpc.BindableServiceConstructors
AccessContextManagerImplBase()
public AccessContextManagerImplBase()
Methods
bindService()
public final ServerServiceDefinition bindService()
Type | Description |
io.grpc.ServerServiceDefinition |
commitServicePerimeters(CommitServicePerimetersRequest request, StreamObserver<Operation> responseObserver)
public void commitServicePerimeters(CommitServicePerimetersRequest request, StreamObserver<Operation> responseObserver)
Commit the dry-run spec for all the [Service Perimeters]
[google.identity.accesscontextmanager.v1.ServicePerimeter] in an
Access Policy.
A commit operation on a Service Perimeter involves copying its spec
field
to that Service Perimeter's status
field. Only [Service Perimeters]
[google.identity.accesscontextmanager.v1.ServicePerimeter] with
use_explicit_dry_run_spec
field set to true are affected by a commit
operation. The longrunning operation from this RPC will have a successful
status once the dry-run specs for all the [Service Perimeters]
[google.identity.accesscontextmanager.v1.ServicePerimeter] have been
committed. If a commit fails, it will cause the longrunning operation to
return an error response and the entire commit operation will be cancelled.
When successful, Operation.response field will contain
CommitServicePerimetersResponse. The dry_run
and the spec
fields will
be cleared after a successful commit operation.
Name | Description |
request | CommitServicePerimetersRequest |
responseObserver | io.grpc.stub.StreamObserver<Operation> |
createAccessLevel(CreateAccessLevelRequest request, StreamObserver<Operation> responseObserver)
public void createAccessLevel(CreateAccessLevelRequest request, StreamObserver<Operation> responseObserver)
Create an [Access Level] [google.identity.accesscontextmanager.v1.AccessLevel]. The longrunning operation from this RPC will have a successful status once the [Access Level] [google.identity.accesscontextmanager.v1.AccessLevel] has propagated to long-lasting storage. [Access Levels] [google.identity.accesscontextmanager.v1.AccessLevel] containing errors will result in an error response for the first error encountered.
Name | Description |
request | CreateAccessLevelRequest |
responseObserver | io.grpc.stub.StreamObserver<Operation> |
createAccessPolicy(AccessPolicy request, StreamObserver<Operation> responseObserver)
public void createAccessPolicy(AccessPolicy request, StreamObserver<Operation> responseObserver)
Create an AccessPolicy
. Fails if this organization already has a
AccessPolicy
. The longrunning Operation will have a successful status
once the AccessPolicy
has propagated to long-lasting storage.
Syntactic and basic semantic errors will be returned in metadata
as a
BadRequest proto.
Name | Description |
request | AccessPolicy |
responseObserver | io.grpc.stub.StreamObserver<Operation> |
createGcpUserAccessBinding(CreateGcpUserAccessBindingRequest request, StreamObserver<Operation> responseObserver)
public void createGcpUserAccessBinding(CreateGcpUserAccessBindingRequest request, StreamObserver<Operation> responseObserver)
Creates a [GcpUserAccessBinding] [google.identity.accesscontextmanager.v1.GcpUserAccessBinding]. If the client specifies a [name] [google.identity.accesscontextmanager.v1.GcpUserAccessBinding.name], the server will ignore it. Fails if a resource already exists with the same [group_key] [google.identity.accesscontextmanager.v1.GcpUserAccessBinding.group_key]. Completion of this long-running operation does not necessarily signify that the new binding is deployed onto all affected users, which may take more time.
Name | Description |
request | CreateGcpUserAccessBindingRequest |
responseObserver | io.grpc.stub.StreamObserver<Operation> |
createServicePerimeter(CreateServicePerimeterRequest request, StreamObserver<Operation> responseObserver)
public void createServicePerimeter(CreateServicePerimeterRequest request, StreamObserver<Operation> responseObserver)
Create a [Service Perimeter] [google.identity.accesscontextmanager.v1.ServicePerimeter]. The longrunning operation from this RPC will have a successful status once the [Service Perimeter] [google.identity.accesscontextmanager.v1.ServicePerimeter] has propagated to long-lasting storage. [Service Perimeters] [google.identity.accesscontextmanager.v1.ServicePerimeter] containing errors will result in an error response for the first error encountered.
Name | Description |
request | CreateServicePerimeterRequest |
responseObserver | io.grpc.stub.StreamObserver<Operation> |
deleteAccessLevel(DeleteAccessLevelRequest request, StreamObserver<Operation> responseObserver)
public void deleteAccessLevel(DeleteAccessLevelRequest request, StreamObserver<Operation> responseObserver)
Delete an [Access Level] [google.identity.accesscontextmanager.v1.AccessLevel] by resource name. The longrunning operation from this RPC will have a successful status once the [Access Level] [google.identity.accesscontextmanager.v1.AccessLevel] has been removed from long-lasting storage.
Name | Description |
request | DeleteAccessLevelRequest |
responseObserver | io.grpc.stub.StreamObserver<Operation> |
deleteAccessPolicy(DeleteAccessPolicyRequest request, StreamObserver<Operation> responseObserver)
public void deleteAccessPolicy(DeleteAccessPolicyRequest request, StreamObserver<Operation> responseObserver)
Delete an [AccessPolicy] [google.identity.accesscontextmanager.v1.AccessPolicy] by resource name. The longrunning Operation will have a successful status once the [AccessPolicy] [google.identity.accesscontextmanager.v1.AccessPolicy] has been removed from long-lasting storage.
Name | Description |
request | DeleteAccessPolicyRequest |
responseObserver | io.grpc.stub.StreamObserver<Operation> |
deleteGcpUserAccessBinding(DeleteGcpUserAccessBindingRequest request, StreamObserver<Operation> responseObserver)
public void deleteGcpUserAccessBinding(DeleteGcpUserAccessBindingRequest request, StreamObserver<Operation> responseObserver)
Deletes a [GcpUserAccessBinding] [google.identity.accesscontextmanager.v1.GcpUserAccessBinding]. Completion of this long-running operation does not necessarily signify that the binding deletion is deployed onto all affected users, which may take more time.
Name | Description |
request | DeleteGcpUserAccessBindingRequest |
responseObserver | io.grpc.stub.StreamObserver<Operation> |
deleteServicePerimeter(DeleteServicePerimeterRequest request, StreamObserver<Operation> responseObserver)
public void deleteServicePerimeter(DeleteServicePerimeterRequest request, StreamObserver<Operation> responseObserver)
Delete a [Service Perimeter] [google.identity.accesscontextmanager.v1.ServicePerimeter] by resource name. The longrunning operation from this RPC will have a successful status once the [Service Perimeter] [google.identity.accesscontextmanager.v1.ServicePerimeter] has been removed from long-lasting storage.
Name | Description |
request | DeleteServicePerimeterRequest |
responseObserver | io.grpc.stub.StreamObserver<Operation> |
getAccessLevel(GetAccessLevelRequest request, StreamObserver<AccessLevel> responseObserver)
public void getAccessLevel(GetAccessLevelRequest request, StreamObserver<AccessLevel> responseObserver)
Get an [Access Level] [google.identity.accesscontextmanager.v1.AccessLevel] by resource name.
Name | Description |
request | GetAccessLevelRequest |
responseObserver | io.grpc.stub.StreamObserver<AccessLevel> |
getAccessPolicy(GetAccessPolicyRequest request, StreamObserver<AccessPolicy> responseObserver)
public void getAccessPolicy(GetAccessPolicyRequest request, StreamObserver<AccessPolicy> responseObserver)
Get an [AccessPolicy] [google.identity.accesscontextmanager.v1.AccessPolicy] by name.
Name | Description |
request | GetAccessPolicyRequest |
responseObserver | io.grpc.stub.StreamObserver<AccessPolicy> |
getGcpUserAccessBinding(GetGcpUserAccessBindingRequest request, StreamObserver<GcpUserAccessBinding> responseObserver)
public void getGcpUserAccessBinding(GetGcpUserAccessBindingRequest request, StreamObserver<GcpUserAccessBinding> responseObserver)
Gets the [GcpUserAccessBinding] [google.identity.accesscontextmanager.v1.GcpUserAccessBinding] with the given name.
Name | Description |
request | GetGcpUserAccessBindingRequest |
responseObserver | io.grpc.stub.StreamObserver<GcpUserAccessBinding> |
getServicePerimeter(GetServicePerimeterRequest request, StreamObserver<ServicePerimeter> responseObserver)
public void getServicePerimeter(GetServicePerimeterRequest request, StreamObserver<ServicePerimeter> responseObserver)
Get a [Service Perimeter] [google.identity.accesscontextmanager.v1.ServicePerimeter] by resource name.
Name | Description |
request | GetServicePerimeterRequest |
responseObserver | io.grpc.stub.StreamObserver<ServicePerimeter> |
listAccessLevels(ListAccessLevelsRequest request, StreamObserver<ListAccessLevelsResponse> responseObserver)
public void listAccessLevels(ListAccessLevelsRequest request, StreamObserver<ListAccessLevelsResponse> responseObserver)
List all [Access Levels] [google.identity.accesscontextmanager.v1.AccessLevel] for an access policy.
Name | Description |
request | ListAccessLevelsRequest |
responseObserver | io.grpc.stub.StreamObserver<ListAccessLevelsResponse> |
listAccessPolicies(ListAccessPoliciesRequest request, StreamObserver<ListAccessPoliciesResponse> responseObserver)
public void listAccessPolicies(ListAccessPoliciesRequest request, StreamObserver<ListAccessPoliciesResponse> responseObserver)
List all [AccessPolicies] [google.identity.accesscontextmanager.v1.AccessPolicy] under a container.
Name | Description |
request | ListAccessPoliciesRequest |
responseObserver | io.grpc.stub.StreamObserver<ListAccessPoliciesResponse> |
listGcpUserAccessBindings(ListGcpUserAccessBindingsRequest request, StreamObserver<ListGcpUserAccessBindingsResponse> responseObserver)
public void listGcpUserAccessBindings(ListGcpUserAccessBindingsRequest request, StreamObserver<ListGcpUserAccessBindingsResponse> responseObserver)
Lists all [GcpUserAccessBindings] [google.identity.accesscontextmanager.v1.GcpUserAccessBinding] for a Google Cloud organization.
Name | Description |
request | ListGcpUserAccessBindingsRequest |
responseObserver | io.grpc.stub.StreamObserver<ListGcpUserAccessBindingsResponse> |
listServicePerimeters(ListServicePerimetersRequest request, StreamObserver<ListServicePerimetersResponse> responseObserver)
public void listServicePerimeters(ListServicePerimetersRequest request, StreamObserver<ListServicePerimetersResponse> responseObserver)
List all [Service Perimeters] [google.identity.accesscontextmanager.v1.ServicePerimeter] for an access policy.
Name | Description |
request | ListServicePerimetersRequest |
responseObserver | io.grpc.stub.StreamObserver<ListServicePerimetersResponse> |
replaceAccessLevels(ReplaceAccessLevelsRequest request, StreamObserver<Operation> responseObserver)
public void replaceAccessLevels(ReplaceAccessLevelsRequest request, StreamObserver<Operation> responseObserver)
Replace all existing [Access Levels] [google.identity.accesscontextmanager.v1.AccessLevel] in an [Access Policy] [google.identity.accesscontextmanager.v1.AccessPolicy] with the [Access Levels] [google.identity.accesscontextmanager.v1.AccessLevel] provided. This is done atomically. The longrunning operation from this RPC will have a successful status once all replacements have propagated to long-lasting storage. Replacements containing errors will result in an error response for the first error encountered. Replacement will be cancelled on error, existing [Access Levels] [google.identity.accesscontextmanager.v1.AccessLevel] will not be affected. Operation.response field will contain ReplaceAccessLevelsResponse. Removing [Access Levels] [google.identity.accesscontextmanager.v1.AccessLevel] contained in existing [Service Perimeters] [google.identity.accesscontextmanager.v1.ServicePerimeter] will result in error.
Name | Description |
request | ReplaceAccessLevelsRequest |
responseObserver | io.grpc.stub.StreamObserver<Operation> |
replaceServicePerimeters(ReplaceServicePerimetersRequest request, StreamObserver<Operation> responseObserver)
public void replaceServicePerimeters(ReplaceServicePerimetersRequest request, StreamObserver<Operation> responseObserver)
Replace all existing [Service Perimeters] [google.identity.accesscontextmanager.v1.ServicePerimeter] in an [Access Policy] [google.identity.accesscontextmanager.v1.AccessPolicy] with the [Service Perimeters] [google.identity.accesscontextmanager.v1.ServicePerimeter] provided. This is done atomically. The longrunning operation from this RPC will have a successful status once all replacements have propagated to long-lasting storage. Replacements containing errors will result in an error response for the first error encountered. Replacement will be cancelled on error, existing [Service Perimeters] [google.identity.accesscontextmanager.v1.ServicePerimeter] will not be affected. Operation.response field will contain ReplaceServicePerimetersResponse.
Name | Description |
request | ReplaceServicePerimetersRequest |
responseObserver | io.grpc.stub.StreamObserver<Operation> |
updateAccessLevel(UpdateAccessLevelRequest request, StreamObserver<Operation> responseObserver)
public void updateAccessLevel(UpdateAccessLevelRequest request, StreamObserver<Operation> responseObserver)
Update an [Access Level] [google.identity.accesscontextmanager.v1.AccessLevel]. The longrunning operation from this RPC will have a successful status once the changes to the [Access Level] [google.identity.accesscontextmanager.v1.AccessLevel] have propagated to long-lasting storage. [Access Levels] [google.identity.accesscontextmanager.v1.AccessLevel] containing errors will result in an error response for the first error encountered.
Name | Description |
request | UpdateAccessLevelRequest |
responseObserver | io.grpc.stub.StreamObserver<Operation> |
updateAccessPolicy(UpdateAccessPolicyRequest request, StreamObserver<Operation> responseObserver)
public void updateAccessPolicy(UpdateAccessPolicyRequest request, StreamObserver<Operation> responseObserver)
Update an [AccessPolicy]
[google.identity.accesscontextmanager.v1.AccessPolicy]. The
longrunning Operation from this RPC will have a successful status once the
changes to the [AccessPolicy]
[google.identity.accesscontextmanager.v1.AccessPolicy] have propagated
to long-lasting storage. Syntactic and basic semantic errors will be
returned in metadata
as a BadRequest proto.
Name | Description |
request | UpdateAccessPolicyRequest |
responseObserver | io.grpc.stub.StreamObserver<Operation> |
updateGcpUserAccessBinding(UpdateGcpUserAccessBindingRequest request, StreamObserver<Operation> responseObserver)
public void updateGcpUserAccessBinding(UpdateGcpUserAccessBindingRequest request, StreamObserver<Operation> responseObserver)
Updates a [GcpUserAccessBinding] [google.identity.accesscontextmanager.v1.GcpUserAccessBinding]. Completion of this long-running operation does not necessarily signify that the changed binding is deployed onto all affected users, which may take more time.
Name | Description |
request | UpdateGcpUserAccessBindingRequest |
responseObserver | io.grpc.stub.StreamObserver<Operation> |
updateServicePerimeter(UpdateServicePerimeterRequest request, StreamObserver<Operation> responseObserver)
public void updateServicePerimeter(UpdateServicePerimeterRequest request, StreamObserver<Operation> responseObserver)
Update a [Service Perimeter] [google.identity.accesscontextmanager.v1.ServicePerimeter]. The longrunning operation from this RPC will have a successful status once the changes to the [Service Perimeter] [google.identity.accesscontextmanager.v1.ServicePerimeter] have propagated to long-lasting storage. [Service Perimeter] [google.identity.accesscontextmanager.v1.ServicePerimeter] containing errors will result in an error response for the first error encountered.
Name | Description |
request | UpdateServicePerimeterRequest |
responseObserver | io.grpc.stub.StreamObserver<Operation> |