Access Context Manager V1 Client - Class EgressPolicy (0.3.5)

Reference documentation and code samples for the Access Context Manager V1 Client class EgressPolicy.

Policy for egress from perimeter.

[EgressPolicies] [google.identity.accesscontextmanager.v1.ServicePerimeterConfig.EgressPolicy] match requests based on egress_from and egress_to stanzas. For an [EgressPolicy] [google.identity.accesscontextmanager.v1.ServicePerimeterConfig.EgressPolicy] to match, both egress_from and egress_to stanzas must be matched. If an [EgressPolicy] [google.identity.accesscontextmanager.v1.ServicePerimeterConfig.EgressPolicy] matches a request, the request is allowed to span the [ServicePerimeter] [google.identity.accesscontextmanager.v1.ServicePerimeter] boundary. For example, an [EgressPolicy] [google.identity.accesscontextmanager.v1.ServicePerimeterConfig.EgressPolicy] can be used to allow VMs on networks within the [ServicePerimeter] [google.identity.accesscontextmanager.v1.ServicePerimeter] to access a defined set of projects outside the perimeter in certain contexts (e.g. to read data from a Cloud Storage bucket or query against a BigQuery dataset). [EgressPolicies] [google.identity.accesscontextmanager.v1.ServicePerimeterConfig.EgressPolicy] are concerned with the resources that a request relates as well as the API services and API actions being used. They do not related to the direction of data movement. More detailed documentation for this concept can be found in the descriptions of [EgressFrom] [google.identity.accesscontextmanager.v1.ServicePerimeterConfig.EgressFrom] and [EgressTo] [google.identity.accesscontextmanager.v1.ServicePerimeterConfig.EgressTo].

Generated from protobuf message google.identity.accesscontextmanager.v1.ServicePerimeterConfig.EgressPolicy

Methods

__construct

Constructor.

Parameters
Name	Description
`data`	`array` Optional. Data for populating the Message object.
`↳ egress_from`	`Google\Identity\AccessContextManager\V1\ServicePerimeterConfig\EgressFrom` Defines conditions on the source of a request causing this [EgressPolicy] [google.identity.accesscontextmanager.v1.ServicePerimeterConfig.EgressPolicy] to apply.
`↳ egress_to`	`Google\Identity\AccessContextManager\V1\ServicePerimeterConfig\EgressTo` Defines the conditions on the [ApiOperation] [google.identity.accesscontextmanager.v1.ServicePerimeterConfig.ApiOperation] and destination resources that cause this [EgressPolicy] [google.identity.accesscontextmanager.v1.ServicePerimeterConfig.EgressPolicy] to apply.

getEgressFrom

Defines conditions on the source of a request causing this [EgressPolicy] [google.identity.accesscontextmanager.v1.ServicePerimeterConfig.EgressPolicy] to apply.

Returns
Type	Description
`Google\Identity\AccessContextManager\V1\ServicePerimeterConfig\EgressFrom\|null`

hasEgressFrom

clearEgressFrom

setEgressFrom

Defines conditions on the source of a request causing this [EgressPolicy] [google.identity.accesscontextmanager.v1.ServicePerimeterConfig.EgressPolicy] to apply.

Parameter
Name	Description
`var`	`Google\Identity\AccessContextManager\V1\ServicePerimeterConfig\EgressFrom`

Returns
Type	Description
`$this`

getEgressTo

Defines the conditions on the [ApiOperation] [google.identity.accesscontextmanager.v1.ServicePerimeterConfig.ApiOperation] and destination resources that cause this [EgressPolicy] [google.identity.accesscontextmanager.v1.ServicePerimeterConfig.EgressPolicy] to apply.

Returns
Type	Description
`Google\Identity\AccessContextManager\V1\ServicePerimeterConfig\EgressTo\|null`

hasEgressTo

clearEgressTo

setEgressTo

Parameter
Name	Description
`var`	`Google\Identity\AccessContextManager\V1\ServicePerimeterConfig\EgressTo`

Returns
Type	Description
`$this`