Response message for listing assets.
JSON representation |
---|
{
"listAssetsResults": [
{
object ( |
Fields | |
---|---|
list |
Assets matching the list request. |
read |
Time used for executing the list request. A timestamp in RFC3339 UTC "Zulu" format, with nanosecond resolution and up to nine fractional digits. Examples: |
next |
Token to retrieve the next page of results, or empty if there are no more results. |
total |
The total number of assets matching the query. |
ListAssetsResult
Result containing the Asset and its State.
JSON representation |
---|
{ "asset": { object ( |
Fields | |
---|---|
asset |
Asset matching the search request. |
state |
State change of the asset between the points in time. |
Asset
Security Command Center representation of a Google Cloud resource.
The Asset is a Security Command Center resource that captures information about a single Google Cloud resource. All modifications to an Asset are only within the context of Security Command Center and don't affect the referenced Google Cloud resource.
JSON representation |
---|
{ "name": string, "securityCenterProperties": { object ( |
Fields | |
---|---|
name |
The relative resource name of this asset. See: https://cloud.google.com/apis/design/resource_names#relative_resource_name Example: "organizations/{organization_id}/assets/{asset_id}". |
security |
Security Command Center managed properties. These properties are managed by Security Command Center and cannot be modified by the user. |
resource |
Resource managed properties. These properties are managed and defined by the Google Cloud resource and cannot be modified by the user. An object containing a list of |
security |
User specified security marks. These marks are entirely managed by the user and come from the SecurityMarks resource that belongs to the asset. |
create |
The time at which the asset was created in Security Command Center. A timestamp in RFC3339 UTC "Zulu" format, with nanosecond resolution and up to nine fractional digits. Examples: |
update |
The time at which the asset was last updated or added in Cloud SCC. A timestamp in RFC3339 UTC "Zulu" format, with nanosecond resolution and up to nine fractional digits. Examples: |
iam |
Cloud IAM Policy information associated with the Google Cloud resource described by the Security Command Center asset. This information is managed and defined by the Google Cloud resource and cannot be modified by the user. |
canonical |
The canonical name of the resource. It's either "organizations/{organization_id}/assets/{asset_id}", "folders/{folder_id}/assets/{asset_id}" or "projects/{project_number}/assets/{asset_id}", depending on the closest CRM ancestor of the resource. |
SecurityCenterProperties
Security Command Center managed properties. These properties are managed by Security Command Center and cannot be modified by the user.
JSON representation |
---|
{
"resourceName": string,
"resourceType": string,
"resourceParent": string,
"resourceProject": string,
"resourceOwners": [
string
],
"resourceDisplayName": string,
"resourceParentDisplayName": string,
"resourceProjectDisplayName": string,
"folders": [
{
object ( |
Fields | |
---|---|
resource |
The full resource name of the Google Cloud resource this asset represents. This field is immutable after create time. See: https://cloud.google.com/apis/design/resource_names#full_resource_name |
resource |
The type of the Google Cloud resource. Examples include: APPLICATION, PROJECT, and ORGANIZATION. This is a case insensitive field defined by Security Command Center and/or the producer of the resource and is immutable after create time. |
resource |
The full resource name of the immediate parent of the resource. See: https://cloud.google.com/apis/design/resource_names#full_resource_name |
resource |
The full resource name of the project the resource belongs to. See: https://cloud.google.com/apis/design/resource_names#full_resource_name |
resource |
Owners of the Google Cloud resource. |
resource |
The user defined display name for this resource. |
resource |
The user defined display name for the parent of this resource. |
resource |
The user defined display name for the project of this resource. |
folders[] |
Contains a Folder message for each folder in the assets ancestry. The first folder is the deepest nested folder, and the last folder is the folder directly under the Organization. |
IamPolicy
Cloud IAM Policy information associated with the Google Cloud resource described by the Security Command Center asset. This information is managed and defined by the Google Cloud resource and cannot be modified by the user.
JSON representation |
---|
{ "policyBlob": string } |
Fields | |
---|---|
policy |
The JSON representation of the Policy associated with the asset. See https://cloud.google.com/iam/docs/reference/rest/v1/Policy for format details. |
StateChange
The change in state of the asset.
When querying across two points in time this describes the change between the two points: ADDED, REMOVED, or ACTIVE. If there was no compareDuration supplied in the request the state change will be: UNUSED
Enums | |
---|---|
UNUSED |
State change is unused, this is the canonical default for this enum. |
ADDED |
Asset was added between the points in time. |
REMOVED |
Asset was removed between the points in time. |
ACTIVE |
Asset was present at both point(s) in time. |