- JSON representation
- ListFindingsResult
- Resource
- GcpMetadata
- Folder
- AwsMetadata
- AwsOrganization
- AwsOrganizationalUnit
- AwsAccount
- ResourcePath
- ResourcePathNode
- ResourcePathNodeType
Response message for listing findings.
JSON representation |
---|
{
"listFindingsResults": [
{
object ( |
Fields | |
---|---|
list |
Findings matching the list request. |
next |
Token to retrieve the next page of results, or empty if there are no more results. |
total |
The total number of findings matching the query. |
ListFindingsResult
Result containing the Finding.
JSON representation |
---|
{ "finding": { object ( |
Fields | |
---|---|
finding |
Finding matching the search request. |
resource |
Output only. Resource that is associated with this finding. |
Resource
Information related to the Google Cloud resource that is associated with this finding.
JSON representation |
---|
{ "name": string, "displayName": string, "type": string, "cloudProvider": enum ( |
Fields | |
---|---|
name |
The full resource name of the resource. See: https://cloud.google.com/apis/design/resource_names#full_resource_name |
display |
The human readable name of the resource. |
type |
The full resource type of the resource. |
cloud |
Indicates which cloud provider the finding is from. |
service |
The service or resource provider associated with the resource. |
location |
The region or location of the service (if applicable). |
resource |
Provides the path to the resource within the resource hierarchy. |
resource |
A string representation of the resource path. For Google Cloud, it has the format of |
Union field
|
|
gcp |
The GCP metadata associated with the finding. |
aws |
The AWS metadata associated with the finding. |
GcpMetadata
GCP metadata associated with the resource, only applicable if the finding's cloud provider is Google Cloud Platform.
JSON representation |
---|
{
"project": string,
"projectDisplayName": string,
"parent": string,
"parentDisplayName": string,
"folders": [
{
object ( |
Fields | |
---|---|
project |
The full resource name of project that the resource belongs to. |
project |
The project ID that the resource belongs to. |
parent |
The full resource name of resource's parent. |
parent |
The human readable name of resource's parent. |
folders[] |
Output only. Contains a Folder message for each folder in the assets ancestry. The first folder is the deepest nested folder, and the last folder is the folder directly under the Organization. |
organization |
The name of the organization that the resource belongs to. |
Folder
Message that contains the resource name and display name of a folder resource.
JSON representation |
---|
{ "resourceFolder": string, "resourceFolderDisplayName": string } |
Fields | |
---|---|
resource |
Full resource name of this folder. See: https://cloud.google.com/apis/design/resource_names#full_resource_name |
resource |
The user defined display name for this folder. |
AwsMetadata
AWS metadata associated with the resource, only applicable if the finding's cloud provider is Amazon Web Services.
JSON representation |
---|
{ "organization": { object ( |
Fields | |
---|---|
organization |
The AWS organization associated with the resource. |
organizational |
A list of AWS organizational units associated with the resource, ordered from lowest level (closest to the account) to highest level. |
account |
The AWS account associated with the resource. |
AwsOrganization
An organization is a collection of accounts that are centrally managed together using consolidated billing, organized hierarchically with organizational units (OUs), and controlled with policies.
JSON representation |
---|
{ "id": string } |
Fields | |
---|---|
id |
The unique identifier (ID) for the organization. The regex pattern for an organization ID string requires "o-" followed by from 10 to 32 lowercase letters or digits. |
AwsOrganizationalUnit
An Organizational Unit (OU) is a container of AWS accounts within a root of an organization. Policies that are attached to an OU apply to all accounts contained in that OU and in any child OUs.
JSON representation |
---|
{ "id": string, "name": string } |
Fields | |
---|---|
id |
The unique identifier (ID) associated with this OU. The regex pattern for an organizational unit ID string requires "ou-" followed by from 4 to 32 lowercase letters or digits (the ID of the root that contains the OU). This string is followed by a second "-" dash and from 8 to 32 additional lowercase letters or digits. For example, "ou-ab12-cd34ef56". |
name |
The friendly name of the OU. |
AwsAccount
An AWS account that is a member of an organization.
JSON representation |
---|
{ "id": string, "name": string } |
Fields | |
---|---|
id |
The unique identifier (ID) of the account, containing exactly 12 digits. |
name |
The friendly name of this account. |
ResourcePath
Represents the path of resources leading up to the resource this finding is about.
JSON representation |
---|
{
"nodes": [
{
object ( |
Fields | |
---|---|
nodes[] |
The list of nodes that make the up resource path, ordered from lowest level to highest level. |
ResourcePathNode
A node within the resource path. Each node represents a resource within the resource hierarchy.
JSON representation |
---|
{
"nodeType": enum ( |
Fields | |
---|---|
node |
The type of resource this node represents. |
id |
The ID of the resource this node represents. |
display |
The display name of the resource this node represents. |
ResourcePathNodeType
The type of resource the node represents.
Enums | |
---|---|
RESOURCE_PATH_NODE_TYPE_UNSPECIFIED |
Node type is unspecified. |
GCP_ORGANIZATION |
The node represents a Google Cloud organization. |
GCP_FOLDER |
The node represents a Google Cloud folder. |
GCP_PROJECT |
The node represents a Google Cloud project. |
AWS_ORGANIZATION |
The node represents an AWS organization. |
AWS_ORGANIZATIONAL_UNIT |
The node represents an AWS organizational unit. |
AWS_ACCOUNT |
The node represents an AWS account. |