AnalyzerOrgPolicy(mapping=None, *, ignore_unknown_fields=False, **kwargs)
This organization policy message is a modified version of the one defined in the Organization Policy system. This message contains several fields defined in the original organization policy with some new fields for analysis purpose.
Attributes | |
---|---|
Name | Description |
attached_resource |
str
The [full resource name] (https://cloud.google.com/asset-inventory/docs/resource-name-format) of an organization/folder/project resource where this organization policy is set. Notice that some type of constraints are defined with default policy. This field will be empty for them. |
applied_resource |
str
The [full resource name] (https://cloud.google.com/asset-inventory/docs/resource-name-format) of an organization/folder/project resource where this organization policy applies to. For any user defined org policies, this field has the same value as the [attached_resource] field. Only for default policy, this field has the different value. |
rules |
MutableSequence[google.cloud.asset_v1.types.AnalyzerOrgPolicy.Rule]
List of rules for this organization policy. |
inherit_from_parent |
bool
If inherit_from_parent is true, Rules set higher up in
the hierarchy (up to the closest root) are inherited and
present in the effective policy. If it is false, then no
rules are inherited, and this policy becomes the effective
root for evaluation.
|
reset |
bool
Ignores policies set above this resource and restores the default behavior of the constraint at this resource. This field can be set in policies for either list or boolean constraints. If set, rules must be empty and
inherit_from_parent must be set to false.
|
Classes
Rule
Rule(mapping=None, *, ignore_unknown_fields=False, **kwargs)
This rule message is a customized version of the one defined in the Organization Policy system. In addition to the fields defined in the original organization policy, it contains additional field(s) under specific circumstances to support analysis results.
This message has oneof
_ fields (mutually exclusive fields).
For each oneof, at most one member field can be set at the same time.
Setting any member of the oneof automatically clears all other
members.
.. _oneof: https://proto-plus-python.readthedocs.io/en/stable/fields.html#oneofs-mutually-exclusive-fields