API documentation for asset_v1p5beta1.types
module.
Classes
AccessLevel
API documentation for asset_v1p5beta1.types.AccessLevel
class.
AccessPolicy
API documentation for asset_v1p5beta1.types.AccessPolicy
class.
Asset
Cloud asset. This includes all Google Cloud Platform resources, Cloud IAM policies, and other non-GCP assets.
Type of the asset. Example: “compute.googleapis.com/Disk”.
Representation of the actual Cloud IAM policy set on a cloud resource. For each resource, there must be at most one Cloud IAM policy set on it.
Representation of the Cloud Organization access policy.
AuditConfigDelta
One delta entry for AuditConfig. Each individual change (only one exempted_member in each entry) to a AuditConfig will be a separate entry.
.. attribute:: action
The action that was performed on an audit configuration in a policy. Required
A single identity that is exempted from “data access” audit
logging for the service
specified above. Follows the same
format of Binding.members.
BasicLevel
API documentation for asset_v1p5beta1.types.BasicLevel
class.
Binding
Associates members
with a role
.
.. attribute:: role
Role that is assigned to members
. For example,
roles/viewer
, roles/editor
, or roles/owner
.
The condition that is associated with this binding. NOTE: An unsatisfied condition will not allow user access via current binding. Different bindings, including their conditions, are examined independently.
BindingDelta
One delta entry for Binding. Each individual change (only one member in each entry) to a binding will be a separate entry.
.. attribute:: action
The action that was performed on a Binding. Required
A single identity requesting access for a Cloud Platform resource. Follows the same format of Binding.members. Required
Condition
API documentation for asset_v1p5beta1.types.Condition
class.
CustomLevel
API documentation for asset_v1p5beta1.types.CustomLevel
class.
DevicePolicy
API documentation for asset_v1p5beta1.types.DevicePolicy
class.
Expr
API documentation for asset_v1p5beta1.types.Expr
class.
ListAssetsRequest
ListAssets request.
Timestamp to take an asset snapshot. This can only be set to a timestamp between 2018-10-02 UTC (inclusive) and the current time. If not specified, the current time will be used. Due to delays in resource data collection and indexing, there is a volatile window during which running the same query may get different results.
Asset content type. If not specified, no content but the asset name will be returned.
The next_page_token
returned from the previous
ListAssetsResponse
, or unspecified for the first
ListAssetsRequest
. It is a continuation of a prior
ListAssets
call, and the API should return the next page
of assets.
ListAssetsResponse
ListAssets response.
Assets.
ListValue
API documentation for asset_v1p5beta1.types.ListValue
class.
OsConstraint
API documentation for asset_v1p5beta1.types.OsConstraint
class.
Policy
Defines an Identity and Access Management (IAM) policy. It is used to specify access control policies for Cloud Platform resources.
A Policy
consists of a list of bindings
. A binding
binds a
list of members
to a role
, where the members can be user
accounts, Google groups, Google domains, and service accounts. A
role
is a named list of permissions defined by IAM.
JSON Example
::
{ "bindings": [ { "role": "roles/owner", "members": [ "user:mike@example.com", "group:admins@example.com", "domain:google.com", "serviceAccount:my-other-app@appspot.gserviceaccount.com" ] }, { "role": "roles/viewer", "members": ["user:sean@example.com"] } ] }
YAML Example
::
bindings:
- members:
- user:mike@example.com
- group:admins@example.com
- domain:google.com
- serviceAccount:my-other-app@appspot.gserviceaccount.com role: roles/owner
- members:
- user:sean@example.com role: roles/viewer
For a description of IAM and its features, see the IAM developer’s
guide <https://cloud.google.com/iam/docs>
__.
.. attribute:: version
Deprecated.
etag
is used for optimistic concurrency control as a way
to help prevent simultaneous updates of a policy from
overwriting each other. It is strongly suggested that systems
make use of the etag
in the read-modify-write cycle to
perform policy updates in order to avoid race conditions: An
etag
is returned in the response to getIamPolicy
, and
systems are expected to put that etag in the request to
setIamPolicy
to ensure that their change will be applied
to the same version of the policy. If no etag
is provided
in the call to setIamPolicy
, then the existing policy is
overwritten blindly.
PolicyDelta
The difference delta between two policies.
.. attribute:: binding_deltas
The delta for Bindings between two policies.
Resource
Representation of a cloud resource.
The URL of the discovery document containing the resource’s
JSON schema. For example: "https://www.googleapis.com/discov
ery/v1/apis/compute/v1/rest"
. It will be left unspecified
for resources without a discovery-based API, such as Cloud
Bigtable.
The REST URL for accessing the resource. An HTTP GET operation
using this URL returns the resource itself. Example:
https://cloudresourcemanager.googleapis.com/v1/projects/my-
project-123
. It will be left unspecified for resources
without a REST API.
The content of the resource, in which some sensitive fields are scrubbed away and may not be present.
ServicePerimeter
API documentation for asset_v1p5beta1.types.ServicePerimeter
class.
ServicePerimeterConfig
API documentation for asset_v1p5beta1.types.ServicePerimeterConfig
class.
Struct
API documentation for asset_v1p5beta1.types.Struct
class.
Timestamp
API documentation for asset_v1p5beta1.types.Timestamp
class.
Value
API documentation for asset_v1p5beta1.types.Value
class.