diff --git a/clients/managed_identities/lib/google_api/managed_identities/v1/api/projects.ex b/clients/managed_identities/lib/google_api/managed_identities/v1/api/projects.ex index 87af2f2bfa..79e8d4aec4 100644 --- a/clients/managed_identities/lib/google_api/managed_identities/v1/api/projects.ex +++ b/clients/managed_identities/lib/google_api/managed_identities/v1/api/projects.ex @@ -245,6 +245,80 @@ defmodule GoogleApi.ManagedIdentities.V1.Api.Projects do |> Response.decode(opts ++ [struct: %GoogleApi.ManagedIdentities.V1.Model.Operation{}]) end + @doc """ + CheckMigrationPermission API gets the current state of DomainMigration + + ## Parameters + + * `connection` (*type:* `GoogleApi.ManagedIdentities.V1.Connection.t`) - Connection to server + * `domain` (*type:* `String.t`) - Required. The domain resource name using the form: `projects/{project_id}/locations/global/domains/{domain_name}` + * `optional_params` (*type:* `keyword()`) - Optional parameters + * `:"$.xgafv"` (*type:* `String.t`) - V1 error format. + * `:access_token` (*type:* `String.t`) - OAuth access token. + * `:alt` (*type:* `String.t`) - Data format for response. + * `:callback` (*type:* `String.t`) - JSONP + * `:fields` (*type:* `String.t`) - Selector specifying which fields to include in a partial response. + * `:key` (*type:* `String.t`) - API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. + * `:oauth_token` (*type:* `String.t`) - OAuth 2.0 token for the current user. + * `:prettyPrint` (*type:* `boolean()`) - Returns response with indentations and line breaks. + * `:quotaUser` (*type:* `String.t`) - Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. + * `:uploadType` (*type:* `String.t`) - Legacy upload protocol for media (e.g. "media", "multipart"). + * `:upload_protocol` (*type:* `String.t`) - Upload protocol for media (e.g. "raw", "multipart"). + * `:body` (*type:* `GoogleApi.ManagedIdentities.V1.Model.CheckMigrationPermissionRequest.t`) - + * `opts` (*type:* `keyword()`) - Call options + + ## Returns + + * `{:ok, %GoogleApi.ManagedIdentities.V1.Model.CheckMigrationPermissionResponse{}}` on success + * `{:error, info}` on failure + """ + @spec managedidentities_projects_locations_global_domains_check_migration_permission( + Tesla.Env.client(), + String.t(), + keyword(), + keyword() + ) :: + {:ok, GoogleApi.ManagedIdentities.V1.Model.CheckMigrationPermissionResponse.t()} + | {:ok, Tesla.Env.t()} + | {:ok, list()} + | {:error, any()} + def managedidentities_projects_locations_global_domains_check_migration_permission( + connection, + domain, + optional_params \\ [], + opts \\ [] + ) do + optional_params_config = %{ + :"$.xgafv" => :query, + :access_token => :query, + :alt => :query, + :callback => :query, + :fields => :query, + :key => :query, + :oauth_token => :query, + :prettyPrint => :query, + :quotaUser => :query, + :uploadType => :query, + :upload_protocol => :query, + :body => :body + } + + request = + Request.new() + |> Request.method(:post) + |> Request.url("/v1/{+domain}:checkMigrationPermission", %{ + "domain" => URI.encode(domain, &URI.char_unreserved?/1) + }) + |> Request.add_optional_params(optional_params_config, optional_params) + |> Request.library_version(@library_version) + + connection + |> Connection.execute(request) + |> Response.decode( + opts ++ [struct: %GoogleApi.ManagedIdentities.V1.Model.CheckMigrationPermissionResponse{}] + ) + end + @doc """ Creates a Microsoft AD domain. @@ -461,6 +535,224 @@ defmodule GoogleApi.ManagedIdentities.V1.Api.Projects do |> Response.decode(opts ++ [struct: %GoogleApi.ManagedIdentities.V1.Model.Operation{}]) end + @doc """ + Disable Domain Migration + + ## Parameters + + * `connection` (*type:* `GoogleApi.ManagedIdentities.V1.Connection.t`) - Connection to server + * `domain` (*type:* `String.t`) - Required. The domain resource name using the form: `projects/{project_id}/locations/global/domains/{domain_name}` + * `optional_params` (*type:* `keyword()`) - Optional parameters + * `:"$.xgafv"` (*type:* `String.t`) - V1 error format. + * `:access_token` (*type:* `String.t`) - OAuth access token. + * `:alt` (*type:* `String.t`) - Data format for response. + * `:callback` (*type:* `String.t`) - JSONP + * `:fields` (*type:* `String.t`) - Selector specifying which fields to include in a partial response. + * `:key` (*type:* `String.t`) - API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. + * `:oauth_token` (*type:* `String.t`) - OAuth 2.0 token for the current user. + * `:prettyPrint` (*type:* `boolean()`) - Returns response with indentations and line breaks. + * `:quotaUser` (*type:* `String.t`) - Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. + * `:uploadType` (*type:* `String.t`) - Legacy upload protocol for media (e.g. "media", "multipart"). + * `:upload_protocol` (*type:* `String.t`) - Upload protocol for media (e.g. "raw", "multipart"). + * `:body` (*type:* `GoogleApi.ManagedIdentities.V1.Model.DisableMigrationRequest.t`) - + * `opts` (*type:* `keyword()`) - Call options + + ## Returns + + * `{:ok, %GoogleApi.ManagedIdentities.V1.Model.Operation{}}` on success + * `{:error, info}` on failure + """ + @spec managedidentities_projects_locations_global_domains_disable_migration( + Tesla.Env.client(), + String.t(), + keyword(), + keyword() + ) :: + {:ok, GoogleApi.ManagedIdentities.V1.Model.Operation.t()} + | {:ok, Tesla.Env.t()} + | {:ok, list()} + | {:error, any()} + def managedidentities_projects_locations_global_domains_disable_migration( + connection, + domain, + optional_params \\ [], + opts \\ [] + ) do + optional_params_config = %{ + :"$.xgafv" => :query, + :access_token => :query, + :alt => :query, + :callback => :query, + :fields => :query, + :key => :query, + :oauth_token => :query, + :prettyPrint => :query, + :quotaUser => :query, + :uploadType => :query, + :upload_protocol => :query, + :body => :body + } + + request = + Request.new() + |> Request.method(:post) + |> Request.url("/v1/{+domain}:disableMigration", %{ + "domain" => URI.encode(domain, &URI.char_unreserved?/1) + }) + |> Request.add_optional_params(optional_params_config, optional_params) + |> Request.library_version(@library_version) + + connection + |> Connection.execute(request) + |> Response.decode(opts ++ [struct: %GoogleApi.ManagedIdentities.V1.Model.Operation{}]) + end + + @doc """ + DomainJoinMachine API joins a Compute Engine VM to the domain + + ## Parameters + + * `connection` (*type:* `GoogleApi.ManagedIdentities.V1.Connection.t`) - Connection to server + * `domain` (*type:* `String.t`) - Required. The domain resource name using the form: projects/{project_id}/locations/global/domains/{domain_name} + * `optional_params` (*type:* `keyword()`) - Optional parameters + * `:"$.xgafv"` (*type:* `String.t`) - V1 error format. + * `:access_token` (*type:* `String.t`) - OAuth access token. + * `:alt` (*type:* `String.t`) - Data format for response. + * `:callback` (*type:* `String.t`) - JSONP + * `:fields` (*type:* `String.t`) - Selector specifying which fields to include in a partial response. + * `:key` (*type:* `String.t`) - API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. + * `:oauth_token` (*type:* `String.t`) - OAuth 2.0 token for the current user. + * `:prettyPrint` (*type:* `boolean()`) - Returns response with indentations and line breaks. + * `:quotaUser` (*type:* `String.t`) - Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. + * `:uploadType` (*type:* `String.t`) - Legacy upload protocol for media (e.g. "media", "multipart"). + * `:upload_protocol` (*type:* `String.t`) - Upload protocol for media (e.g. "raw", "multipart"). + * `:body` (*type:* `GoogleApi.ManagedIdentities.V1.Model.DomainJoinMachineRequest.t`) - + * `opts` (*type:* `keyword()`) - Call options + + ## Returns + + * `{:ok, %GoogleApi.ManagedIdentities.V1.Model.DomainJoinMachineResponse{}}` on success + * `{:error, info}` on failure + """ + @spec managedidentities_projects_locations_global_domains_domain_join_machine( + Tesla.Env.client(), + String.t(), + keyword(), + keyword() + ) :: + {:ok, GoogleApi.ManagedIdentities.V1.Model.DomainJoinMachineResponse.t()} + | {:ok, Tesla.Env.t()} + | {:ok, list()} + | {:error, any()} + def managedidentities_projects_locations_global_domains_domain_join_machine( + connection, + domain, + optional_params \\ [], + opts \\ [] + ) do + optional_params_config = %{ + :"$.xgafv" => :query, + :access_token => :query, + :alt => :query, + :callback => :query, + :fields => :query, + :key => :query, + :oauth_token => :query, + :prettyPrint => :query, + :quotaUser => :query, + :uploadType => :query, + :upload_protocol => :query, + :body => :body + } + + request = + Request.new() + |> Request.method(:post) + |> Request.url("/v1/{+domain}:domainJoinMachine", %{ + "domain" => URI.encode(domain, &URI.char_unreserved?/1) + }) + |> Request.add_optional_params(optional_params_config, optional_params) + |> Request.library_version(@library_version) + + connection + |> Connection.execute(request) + |> Response.decode( + opts ++ [struct: %GoogleApi.ManagedIdentities.V1.Model.DomainJoinMachineResponse{}] + ) + end + + @doc """ + Enable Domain Migration + + ## Parameters + + * `connection` (*type:* `GoogleApi.ManagedIdentities.V1.Connection.t`) - Connection to server + * `domain` (*type:* `String.t`) - Required. The domain resource name using the form: `projects/{project_id}/locations/global/domains/{domain_name}` + * `optional_params` (*type:* `keyword()`) - Optional parameters + * `:"$.xgafv"` (*type:* `String.t`) - V1 error format. + * `:access_token` (*type:* `String.t`) - OAuth access token. + * `:alt` (*type:* `String.t`) - Data format for response. + * `:callback` (*type:* `String.t`) - JSONP + * `:fields` (*type:* `String.t`) - Selector specifying which fields to include in a partial response. + * `:key` (*type:* `String.t`) - API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. + * `:oauth_token` (*type:* `String.t`) - OAuth 2.0 token for the current user. + * `:prettyPrint` (*type:* `boolean()`) - Returns response with indentations and line breaks. + * `:quotaUser` (*type:* `String.t`) - Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. + * `:uploadType` (*type:* `String.t`) - Legacy upload protocol for media (e.g. "media", "multipart"). + * `:upload_protocol` (*type:* `String.t`) - Upload protocol for media (e.g. "raw", "multipart"). + * `:body` (*type:* `GoogleApi.ManagedIdentities.V1.Model.EnableMigrationRequest.t`) - + * `opts` (*type:* `keyword()`) - Call options + + ## Returns + + * `{:ok, %GoogleApi.ManagedIdentities.V1.Model.Operation{}}` on success + * `{:error, info}` on failure + """ + @spec managedidentities_projects_locations_global_domains_enable_migration( + Tesla.Env.client(), + String.t(), + keyword(), + keyword() + ) :: + {:ok, GoogleApi.ManagedIdentities.V1.Model.Operation.t()} + | {:ok, Tesla.Env.t()} + | {:ok, list()} + | {:error, any()} + def managedidentities_projects_locations_global_domains_enable_migration( + connection, + domain, + optional_params \\ [], + opts \\ [] + ) do + optional_params_config = %{ + :"$.xgafv" => :query, + :access_token => :query, + :alt => :query, + :callback => :query, + :fields => :query, + :key => :query, + :oauth_token => :query, + :prettyPrint => :query, + :quotaUser => :query, + :uploadType => :query, + :upload_protocol => :query, + :body => :body + } + + request = + Request.new() + |> Request.method(:post) + |> Request.url("/v1/{+domain}:enableMigration", %{ + "domain" => URI.encode(domain, &URI.char_unreserved?/1) + }) + |> Request.add_optional_params(optional_params_config, optional_params) + |> Request.library_version(@library_version) + + connection + |> Connection.execute(request) + |> Response.decode(opts ++ [struct: %GoogleApi.ManagedIdentities.V1.Model.Operation{}]) + end + @doc """ Extend Schema for Domain @@ -2358,7 +2650,7 @@ defmodule GoogleApi.ManagedIdentities.V1.Api.Projects do end @doc """ - Lists operations that match the specified filter in the request. If the server doesn't support this method, it returns `UNIMPLEMENTED`. NOTE: the `name` binding allows API services to override the binding to use different resource name schemes, such as `users/*/operations`. To override the binding, API services can add a binding such as `"/v1/{name=users/*}/operations"` to their service configuration. For backwards compatibility, the default name includes the operations collection id, however overriding users must ensure the name binding is the parent resource, without the operations collection id. + Lists operations that match the specified filter in the request. If the server doesn't support this method, it returns `UNIMPLEMENTED`. ## Parameters diff --git a/clients/managed_identities/lib/google_api/managed_identities/v1/metadata.ex b/clients/managed_identities/lib/google_api/managed_identities/v1/metadata.ex index eda3a1d09d..e2f9fec537 100644 --- a/clients/managed_identities/lib/google_api/managed_identities/v1/metadata.ex +++ b/clients/managed_identities/lib/google_api/managed_identities/v1/metadata.ex @@ -20,7 +20,7 @@ defmodule GoogleApi.ManagedIdentities.V1 do API client metadata for GoogleApi.ManagedIdentities.V1. """ - @discovery_revision "20220826" + @discovery_revision "20240112" def discovery_revision(), do: @discovery_revision end diff --git a/clients/managed_identities/lib/google_api/managed_identities/v1/model/binding.ex b/clients/managed_identities/lib/google_api/managed_identities/v1/model/binding.ex index e56528e4b4..03b216ab0c 100644 --- a/clients/managed_identities/lib/google_api/managed_identities/v1/model/binding.ex +++ b/clients/managed_identities/lib/google_api/managed_identities/v1/model/binding.ex @@ -22,7 +22,7 @@ defmodule GoogleApi.ManagedIdentities.V1.Model.Binding do ## Attributes * `condition` (*type:* `GoogleApi.ManagedIdentities.V1.Model.Expr.t`, *default:* `nil`) - The condition that is associated with this binding. If the condition evaluates to `true`, then this binding applies to the current request. If the condition evaluates to `false`, then this binding does not apply to the current request. However, a different role binding might grant the same role to one or more of the principals in this binding. To learn which resources support conditions in their IAM policies, see the [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-policies). - * `members` (*type:* `list(String.t)`, *default:* `nil`) - Specifies the principals requesting access for a Google Cloud resource. `members` can have the following values: * `allUsers`: A special identifier that represents anyone who is on the internet; with or without a Google account. * `allAuthenticatedUsers`: A special identifier that represents anyone who is authenticated with a Google account or a service account. Does not include identities that come from external identity providers (IdPs) through identity federation. * `user:{emailid}`: An email address that represents a specific Google account. For example, `alice@example.com` . * `serviceAccount:{emailid}`: An email address that represents a Google service account. For example, `my-other-app@appspot.gserviceaccount.com`. * `serviceAccount:{projectid}.svc.id.goog[{namespace}/{kubernetes-sa}]`: An identifier for a [Kubernetes service account](https://cloud.google.com/kubernetes-engine/docs/how-to/kubernetes-service-accounts). For example, `my-project.svc.id.goog[my-namespace/my-kubernetes-sa]`. * `group:{emailid}`: An email address that represents a Google group. For example, `admins@example.com`. * `deleted:user:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a user that has been recently deleted. For example, `alice@example.com?uid=123456789012345678901`. If the user is recovered, this value reverts to `user:{emailid}` and the recovered user retains the role in the binding. * `deleted:serviceAccount:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a service account that has been recently deleted. For example, `my-other-app@appspot.gserviceaccount.com?uid=123456789012345678901`. If the service account is undeleted, this value reverts to `serviceAccount:{emailid}` and the undeleted service account retains the role in the binding. * `deleted:group:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a Google group that has been recently deleted. For example, `admins@example.com?uid=123456789012345678901`. If the group is recovered, this value reverts to `group:{emailid}` and the recovered group retains the role in the binding. * `domain:{domain}`: The G Suite domain (primary) that represents all the users of that domain. For example, `google.com` or `example.com`. + * `members` (*type:* `list(String.t)`, *default:* `nil`) - Specifies the principals requesting access for a Google Cloud resource. `members` can have the following values: * `allUsers`: A special identifier that represents anyone who is on the internet; with or without a Google account. * `allAuthenticatedUsers`: A special identifier that represents anyone who is authenticated with a Google account or a service account. Does not include identities that come from external identity providers (IdPs) through identity federation. * `user:{emailid}`: An email address that represents a specific Google account. For example, `alice@example.com` . * `serviceAccount:{emailid}`: An email address that represents a Google service account. For example, `my-other-app@appspot.gserviceaccount.com`. * `serviceAccount:{projectid}.svc.id.goog[{namespace}/{kubernetes-sa}]`: An identifier for a [Kubernetes service account](https://cloud.google.com/kubernetes-engine/docs/how-to/kubernetes-service-accounts). For example, `my-project.svc.id.goog[my-namespace/my-kubernetes-sa]`. * `group:{emailid}`: An email address that represents a Google group. For example, `admins@example.com`. * `domain:{domain}`: The G Suite domain (primary) that represents all the users of that domain. For example, `google.com` or `example.com`. * `principal://iam.googleapis.com/locations/global/workforcePools/{pool_id}/subject/{subject_attribute_value}`: A single identity in a workforce identity pool. * `principalSet://iam.googleapis.com/locations/global/workforcePools/{pool_id}/group/{group_id}`: All workforce identities in a group. * `principalSet://iam.googleapis.com/locations/global/workforcePools/{pool_id}/attribute.{attribute_name}/{attribute_value}`: All workforce identities with a specific attribute value. * `principalSet://iam.googleapis.com/locations/global/workforcePools/{pool_id}/*`: All identities in a workforce identity pool. * `principal://iam.googleapis.com/projects/{project_number}/locations/global/workloadIdentityPools/{pool_id}/subject/{subject_attribute_value}`: A single identity in a workload identity pool. * `principalSet://iam.googleapis.com/projects/{project_number}/locations/global/workloadIdentityPools/{pool_id}/group/{group_id}`: A workload identity pool group. * `principalSet://iam.googleapis.com/projects/{project_number}/locations/global/workloadIdentityPools/{pool_id}/attribute.{attribute_name}/{attribute_value}`: All identities in a workload identity pool with a certain attribute. * `principalSet://iam.googleapis.com/projects/{project_number}/locations/global/workloadIdentityPools/{pool_id}/*`: All identities in a workload identity pool. * `deleted:user:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a user that has been recently deleted. For example, `alice@example.com?uid=123456789012345678901`. If the user is recovered, this value reverts to `user:{emailid}` and the recovered user retains the role in the binding. * `deleted:serviceAccount:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a service account that has been recently deleted. For example, `my-other-app@appspot.gserviceaccount.com?uid=123456789012345678901`. If the service account is undeleted, this value reverts to `serviceAccount:{emailid}` and the undeleted service account retains the role in the binding. * `deleted:group:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a Google group that has been recently deleted. For example, `admins@example.com?uid=123456789012345678901`. If the group is recovered, this value reverts to `group:{emailid}` and the recovered group retains the role in the binding. * `deleted:principal://iam.googleapis.com/locations/global/workforcePools/{pool_id}/subject/{subject_attribute_value}`: Deleted single identity in a workforce identity pool. For example, `deleted:principal://iam.googleapis.com/locations/global/workforcePools/my-pool-id/subject/my-subject-attribute-value`. * `role` (*type:* `String.t`, *default:* `nil`) - Role that is assigned to the list of `members`, or principals. For example, `roles/viewer`, `roles/editor`, or `roles/owner`. """ diff --git a/clients/managed_identities/lib/google_api/managed_identities/v1/model/check_migration_permission_request.ex b/clients/managed_identities/lib/google_api/managed_identities/v1/model/check_migration_permission_request.ex new file mode 100644 index 0000000000..f985164c12 --- /dev/null +++ b/clients/managed_identities/lib/google_api/managed_identities/v1/model/check_migration_permission_request.ex @@ -0,0 +1,41 @@ +# Copyright 2019 Google LLC +# +# Licensed under the Apache License, Version 2.0 (the "License"); +# you may not use this file except in compliance with the License. +# You may obtain a copy of the License at +# +# http://www.apache.org/licenses/LICENSE-2.0 +# +# Unless required by applicable law or agreed to in writing, software +# distributed under the License is distributed on an "AS IS" BASIS, +# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +# See the License for the specific language governing permissions and +# limitations under the License. + +# NOTE: This file is auto generated by the elixir code generator program. +# Do not edit this file manually. + +defmodule GoogleApi.ManagedIdentities.V1.Model.CheckMigrationPermissionRequest do + @moduledoc """ + CheckMigrationPermissionRequest is the request message for CheckMigrationPermission method. + + ## Attributes + + """ + + use GoogleApi.Gax.ModelBase + + @type t :: %__MODULE__{} +end + +defimpl Poison.Decoder, for: GoogleApi.ManagedIdentities.V1.Model.CheckMigrationPermissionRequest do + def decode(value, options) do + GoogleApi.ManagedIdentities.V1.Model.CheckMigrationPermissionRequest.decode(value, options) + end +end + +defimpl Poison.Encoder, for: GoogleApi.ManagedIdentities.V1.Model.CheckMigrationPermissionRequest do + def encode(value, options) do + GoogleApi.Gax.ModelBase.encode(value, options) + end +end diff --git a/clients/managed_identities/lib/google_api/managed_identities/v1/model/check_migration_permission_response.ex b/clients/managed_identities/lib/google_api/managed_identities/v1/model/check_migration_permission_response.ex new file mode 100644 index 0000000000..26238f8d75 --- /dev/null +++ b/clients/managed_identities/lib/google_api/managed_identities/v1/model/check_migration_permission_response.ex @@ -0,0 +1,54 @@ +# Copyright 2019 Google LLC +# +# Licensed under the Apache License, Version 2.0 (the "License"); +# you may not use this file except in compliance with the License. +# You may obtain a copy of the License at +# +# http://www.apache.org/licenses/LICENSE-2.0 +# +# Unless required by applicable law or agreed to in writing, software +# distributed under the License is distributed on an "AS IS" BASIS, +# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +# See the License for the specific language governing permissions and +# limitations under the License. + +# NOTE: This file is auto generated by the elixir code generator program. +# Do not edit this file manually. + +defmodule GoogleApi.ManagedIdentities.V1.Model.CheckMigrationPermissionResponse do + @moduledoc """ + CheckMigrationPermissionResponse is the response message for CheckMigrationPermission method. + + ## Attributes + + * `onpremDomains` (*type:* `list(GoogleApi.ManagedIdentities.V1.Model.OnPremDomainSIDDetails.t)`, *default:* `nil`) - The state of SID filtering of all the domains which has trust established. + * `state` (*type:* `String.t`, *default:* `nil`) - The state of DomainMigration. + """ + + use GoogleApi.Gax.ModelBase + + @type t :: %__MODULE__{ + :onpremDomains => + list(GoogleApi.ManagedIdentities.V1.Model.OnPremDomainSIDDetails.t()) | nil, + :state => String.t() | nil + } + + field(:onpremDomains, + as: GoogleApi.ManagedIdentities.V1.Model.OnPremDomainSIDDetails, + type: :list + ) + + field(:state) +end + +defimpl Poison.Decoder, for: GoogleApi.ManagedIdentities.V1.Model.CheckMigrationPermissionResponse do + def decode(value, options) do + GoogleApi.ManagedIdentities.V1.Model.CheckMigrationPermissionResponse.decode(value, options) + end +end + +defimpl Poison.Encoder, for: GoogleApi.ManagedIdentities.V1.Model.CheckMigrationPermissionResponse do + def encode(value, options) do + GoogleApi.Gax.ModelBase.encode(value, options) + end +end diff --git a/clients/managed_identities/lib/google_api/managed_identities/v1/model/disable_migration_request.ex b/clients/managed_identities/lib/google_api/managed_identities/v1/model/disable_migration_request.ex new file mode 100644 index 0000000000..47cd6c924c --- /dev/null +++ b/clients/managed_identities/lib/google_api/managed_identities/v1/model/disable_migration_request.ex @@ -0,0 +1,41 @@ +# Copyright 2019 Google LLC +# +# Licensed under the Apache License, Version 2.0 (the "License"); +# you may not use this file except in compliance with the License. +# You may obtain a copy of the License at +# +# http://www.apache.org/licenses/LICENSE-2.0 +# +# Unless required by applicable law or agreed to in writing, software +# distributed under the License is distributed on an "AS IS" BASIS, +# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +# See the License for the specific language governing permissions and +# limitations under the License. + +# NOTE: This file is auto generated by the elixir code generator program. +# Do not edit this file manually. + +defmodule GoogleApi.ManagedIdentities.V1.Model.DisableMigrationRequest do + @moduledoc """ + DisableMigrationRequest is the request message for DisableMigration method. + + ## Attributes + + """ + + use GoogleApi.Gax.ModelBase + + @type t :: %__MODULE__{} +end + +defimpl Poison.Decoder, for: GoogleApi.ManagedIdentities.V1.Model.DisableMigrationRequest do + def decode(value, options) do + GoogleApi.ManagedIdentities.V1.Model.DisableMigrationRequest.decode(value, options) + end +end + +defimpl Poison.Encoder, for: GoogleApi.ManagedIdentities.V1.Model.DisableMigrationRequest do + def encode(value, options) do + GoogleApi.Gax.ModelBase.encode(value, options) + end +end diff --git a/clients/managed_identities/lib/google_api/managed_identities/v1/model/domain_join_machine_request.ex b/clients/managed_identities/lib/google_api/managed_identities/v1/model/domain_join_machine_request.ex new file mode 100644 index 0000000000..de1f4e7517 --- /dev/null +++ b/clients/managed_identities/lib/google_api/managed_identities/v1/model/domain_join_machine_request.ex @@ -0,0 +1,52 @@ +# Copyright 2019 Google LLC +# +# Licensed under the Apache License, Version 2.0 (the "License"); +# you may not use this file except in compliance with the License. +# You may obtain a copy of the License at +# +# http://www.apache.org/licenses/LICENSE-2.0 +# +# Unless required by applicable law or agreed to in writing, software +# distributed under the License is distributed on an "AS IS" BASIS, +# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +# See the License for the specific language governing permissions and +# limitations under the License. + +# NOTE: This file is auto generated by the elixir code generator program. +# Do not edit this file manually. + +defmodule GoogleApi.ManagedIdentities.V1.Model.DomainJoinMachineRequest do + @moduledoc """ + DomainJoinMachineRequest is the request message for DomainJoinMachine method + + ## Attributes + + * `force` (*type:* `boolean()`, *default:* `nil`) - Optional. force if True, forces domain join even if the computer account already exists. + * `ouName` (*type:* `String.t`, *default:* `nil`) - Optional. OU name where the VM needs to be domain joined + * `vmIdToken` (*type:* `String.t`, *default:* `nil`) - Required. Full instance id token of compute engine VM to verify instance identity. More about this: https://cloud.google.com/compute/docs/instances/verifying-instance-identity#request_signature + """ + + use GoogleApi.Gax.ModelBase + + @type t :: %__MODULE__{ + :force => boolean() | nil, + :ouName => String.t() | nil, + :vmIdToken => String.t() | nil + } + + field(:force) + field(:ouName) + field(:vmIdToken) +end + +defimpl Poison.Decoder, for: GoogleApi.ManagedIdentities.V1.Model.DomainJoinMachineRequest do + def decode(value, options) do + GoogleApi.ManagedIdentities.V1.Model.DomainJoinMachineRequest.decode(value, options) + end +end + +defimpl Poison.Encoder, for: GoogleApi.ManagedIdentities.V1.Model.DomainJoinMachineRequest do + def encode(value, options) do + GoogleApi.Gax.ModelBase.encode(value, options) + end +end diff --git a/clients/managed_identities/lib/google_api/managed_identities/v1/model/domain_join_machine_response.ex b/clients/managed_identities/lib/google_api/managed_identities/v1/model/domain_join_machine_response.ex new file mode 100644 index 0000000000..aae9792041 --- /dev/null +++ b/clients/managed_identities/lib/google_api/managed_identities/v1/model/domain_join_machine_response.ex @@ -0,0 +1,46 @@ +# Copyright 2019 Google LLC +# +# Licensed under the Apache License, Version 2.0 (the "License"); +# you may not use this file except in compliance with the License. +# You may obtain a copy of the License at +# +# http://www.apache.org/licenses/LICENSE-2.0 +# +# Unless required by applicable law or agreed to in writing, software +# distributed under the License is distributed on an "AS IS" BASIS, +# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +# See the License for the specific language governing permissions and +# limitations under the License. + +# NOTE: This file is auto generated by the elixir code generator program. +# Do not edit this file manually. + +defmodule GoogleApi.ManagedIdentities.V1.Model.DomainJoinMachineResponse do + @moduledoc """ + DomainJoinMachineResponse is the response message for DomainJoinMachine method + + ## Attributes + + * `domainJoinBlob` (*type:* `String.t`, *default:* `nil`) - Offline domain join blob as the response + """ + + use GoogleApi.Gax.ModelBase + + @type t :: %__MODULE__{ + :domainJoinBlob => String.t() | nil + } + + field(:domainJoinBlob) +end + +defimpl Poison.Decoder, for: GoogleApi.ManagedIdentities.V1.Model.DomainJoinMachineResponse do + def decode(value, options) do + GoogleApi.ManagedIdentities.V1.Model.DomainJoinMachineResponse.decode(value, options) + end +end + +defimpl Poison.Encoder, for: GoogleApi.ManagedIdentities.V1.Model.DomainJoinMachineResponse do + def encode(value, options) do + GoogleApi.Gax.ModelBase.encode(value, options) + end +end diff --git a/clients/managed_identities/lib/google_api/managed_identities/v1/model/enable_migration_request.ex b/clients/managed_identities/lib/google_api/managed_identities/v1/model/enable_migration_request.ex new file mode 100644 index 0000000000..c57d421184 --- /dev/null +++ b/clients/managed_identities/lib/google_api/managed_identities/v1/model/enable_migration_request.ex @@ -0,0 +1,50 @@ +# Copyright 2019 Google LLC +# +# Licensed under the Apache License, Version 2.0 (the "License"); +# you may not use this file except in compliance with the License. +# You may obtain a copy of the License at +# +# http://www.apache.org/licenses/LICENSE-2.0 +# +# Unless required by applicable law or agreed to in writing, software +# distributed under the License is distributed on an "AS IS" BASIS, +# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +# See the License for the specific language governing permissions and +# limitations under the License. + +# NOTE: This file is auto generated by the elixir code generator program. +# Do not edit this file manually. + +defmodule GoogleApi.ManagedIdentities.V1.Model.EnableMigrationRequest do + @moduledoc """ + EnableMigrationRequest is the request message for EnableMigration method. + + ## Attributes + + * `migratingDomains` (*type:* `list(GoogleApi.ManagedIdentities.V1.Model.OnPremDomainDetails.t)`, *default:* `nil`) - Required. List of the on-prem domains to be migrated. + """ + + use GoogleApi.Gax.ModelBase + + @type t :: %__MODULE__{ + :migratingDomains => + list(GoogleApi.ManagedIdentities.V1.Model.OnPremDomainDetails.t()) | nil + } + + field(:migratingDomains, + as: GoogleApi.ManagedIdentities.V1.Model.OnPremDomainDetails, + type: :list + ) +end + +defimpl Poison.Decoder, for: GoogleApi.ManagedIdentities.V1.Model.EnableMigrationRequest do + def decode(value, options) do + GoogleApi.ManagedIdentities.V1.Model.EnableMigrationRequest.decode(value, options) + end +end + +defimpl Poison.Encoder, for: GoogleApi.ManagedIdentities.V1.Model.EnableMigrationRequest do + def encode(value, options) do + GoogleApi.Gax.ModelBase.encode(value, options) + end +end diff --git a/clients/managed_identities/lib/google_api/managed_identities/v1/model/google_cloud_saasaccelerator_management_providers_v1_instance.ex b/clients/managed_identities/lib/google_api/managed_identities/v1/model/google_cloud_saasaccelerator_management_providers_v1_instance.ex index 795302eda3..b608311a36 100644 --- a/clients/managed_identities/lib/google_api/managed_identities/v1/model/google_cloud_saasaccelerator_management_providers_v1_instance.ex +++ b/clients/managed_identities/lib/google_api/managed_identities/v1/model/google_cloud_saasaccelerator_management_providers_v1_instance.ex @@ -17,15 +17,15 @@ defmodule GoogleApi.ManagedIdentities.V1.Model.GoogleCloudSaasacceleratorManagementProvidersV1Instance do @moduledoc """ - + Instance represents the interface for SLM services to actuate the state of control plane resources. Example Instance in JSON, where consumer-project-number=123456, producer-project-id=cloud-sql: ```json Instance: { "name": "projects/123456/locations/us-east1/instances/prod-instance", "create_time": { "seconds": 1526406431, }, "labels": { "env": "prod", "foo": "bar" }, "state": READY, "software_versions": { "software_update": "cloud-sql-09-28-2018", }, "maintenance_policy_names": { "UpdatePolicy": "projects/123456/locations/us-east1/maintenancePolicies/prod-update-policy", } "tenant_project_id": "cloud-sql-test-tenant", "producer_metadata": { "cloud-sql-tier": "basic", "cloud-sql-instance-size": "1G", }, "provisioned_resources": [ { "resource-type": "compute-instance", "resource-url": "https://www.googleapis.com/compute/v1/projects/cloud-sql/zones/us-east1-b/instances/vm-1", } ], "maintenance_schedules": { "csa_rollout": { "start_time": { "seconds": 1526406431, }, "end_time": { "seconds": 1535406431, }, }, "ncsa_rollout": { "start_time": { "seconds": 1526406431, }, "end_time": { "seconds": 1535406431, }, } }, "consumer_defined_name": "my-sql-instance1", } ``` LINT.IfChange ## Attributes - * `consumerDefinedName` (*type:* `String.t`, *default:* `nil`) - consumer_defined_name is the name that is set by the consumer. On the other hand Name field represents system-assigned id of an instance so consumers are not necessarily aware of it. consumer_defined_name is used for notification/UI purposes for consumer to recognize their instances. + * `consumerDefinedName` (*type:* `String.t`, *default:* `nil`) - consumer_defined_name is the name of the instance set by the service consumers. Generally this is different from the `name` field which reperesents the system-assigned id of the instance which the service consumers do not recognize. This is a required field for tenants onboarding to Maintenance Window notifications (go/slm-rollout-maintenance-policies#prerequisites). * `createTime` (*type:* `DateTime.t`, *default:* `nil`) - Output only. Timestamp when the resource was created. * `instanceType` (*type:* `String.t`, *default:* `nil`) - Optional. The instance_type of this instance of format: projects/{project_number}/locations/{location_id}/instanceTypes/{instance_type_id}. Instance Type represents a high-level tier or SKU of the service that this instance belong to. When enabled(eg: Maintenance Rollout), Rollout uses 'instance_type' along with 'software_versions' to determine whether instance needs an update or not. * `labels` (*type:* `map()`, *default:* `nil`) - Optional. Resource labels to represent user provided metadata. Each label is a key-value pair, where both the key and the value are arbitrary strings provided by the user. - * `maintenancePolicyNames` (*type:* `map()`, *default:* `nil`) - Optional. Deprecated. The MaintenancePolicies that have been attached to the instance. The key must be of the type name of the oneof policy name defined in MaintenancePolicy, and the referenced policy must define the same policy type. For complete details of MaintenancePolicy, please refer to go/cloud-saas-mw-ug. + * `maintenancePolicyNames` (*type:* `map()`, *default:* `nil`) - Optional. The MaintenancePolicies that have been attached to the instance. The key must be of the type name of the oneof policy name defined in MaintenancePolicy, and the referenced policy must define the same policy type. For details, please refer to go/mr-user-guide. Should not be set if maintenance_settings.maintenance_policies is set. * `maintenanceSchedules` (*type:* `%{optional(String.t) => GoogleApi.ManagedIdentities.V1.Model.GoogleCloudSaasacceleratorManagementProvidersV1MaintenanceSchedule.t}`, *default:* `nil`) - The MaintenanceSchedule contains the scheduling information of published maintenance schedule with same key as software_versions. * `maintenanceSettings` (*type:* `GoogleApi.ManagedIdentities.V1.Model.GoogleCloudSaasacceleratorManagementProvidersV1MaintenanceSettings.t`, *default:* `nil`) - Optional. The MaintenanceSettings associated with instance. * `name` (*type:* `String.t`, *default:* `nil`) - Unique name of the resource. It uses the form: `projects/{project_number}/locations/{location_id}/instances/{instance_id}` Note: This name is passed, stored and logged across the rollout system. So use of consumer project_id or any other consumer PII in the name is strongly discouraged for wipeout (go/wipeout) compliance. See go/elysium/project_ids#storage-guidance for more details. diff --git a/clients/managed_identities/lib/google_api/managed_identities/v1/model/google_cloud_saasaccelerator_management_providers_v1_maintenance_settings.ex b/clients/managed_identities/lib/google_api/managed_identities/v1/model/google_cloud_saasaccelerator_management_providers_v1_maintenance_settings.ex index 08ddea5a3f..419fc41a7d 100644 --- a/clients/managed_identities/lib/google_api/managed_identities/v1/model/google_cloud_saasaccelerator_management_providers_v1_maintenance_settings.ex +++ b/clients/managed_identities/lib/google_api/managed_identities/v1/model/google_cloud_saasaccelerator_management_providers_v1_maintenance_settings.ex @@ -23,7 +23,7 @@ defmodule GoogleApi.ManagedIdentities.V1.Model.GoogleCloudSaasacceleratorManagem * `exclude` (*type:* `boolean()`, *default:* `nil`) - Optional. Exclude instance from maintenance. When true, rollout service will not attempt maintenance on the instance. Rollout service will include the instance in reported rollout progress as not attempted. * `isRollback` (*type:* `boolean()`, *default:* `nil`) - Optional. If the update call is triggered from rollback, set the value as true. - * `maintenancePolicies` (*type:* `%{optional(String.t) => GoogleApi.ManagedIdentities.V1.Model.MaintenancePolicy.t}`, *default:* `nil`) - Optional. The MaintenancePolicies that have been attached to the instance. The key must be of the type name of the oneof policy name defined in MaintenancePolicy, and the embedded policy must define the same policy type. For complete details of MaintenancePolicy, please refer to go/cloud-saas-mw-ug. If only the name is needed, then only populate MaintenancePolicy.name. + * `maintenancePolicies` (*type:* `%{optional(String.t) => GoogleApi.ManagedIdentities.V1.Model.MaintenancePolicy.t}`, *default:* `nil`) - Optional. The MaintenancePolicies that have been attached to the instance. The key must be of the type name of the oneof policy name defined in MaintenancePolicy, and the embedded policy must define the same policy type. For details, please refer to go/mr-user-guide. Should not be set if maintenance_policy_names is set. If only the name is needed, then only populate MaintenancePolicy.name. """ use GoogleApi.Gax.ModelBase diff --git a/clients/managed_identities/lib/google_api/managed_identities/v1/model/location.ex b/clients/managed_identities/lib/google_api/managed_identities/v1/model/location.ex index fe17574096..df2dcca3fd 100644 --- a/clients/managed_identities/lib/google_api/managed_identities/v1/model/location.ex +++ b/clients/managed_identities/lib/google_api/managed_identities/v1/model/location.ex @@ -17,7 +17,7 @@ defmodule GoogleApi.ManagedIdentities.V1.Model.Location do @moduledoc """ - A resource that represents Google Cloud Platform location. + A resource that represents a Google Cloud location. ## Attributes diff --git a/clients/managed_identities/lib/google_api/managed_identities/v1/model/maintenance_policy.ex b/clients/managed_identities/lib/google_api/managed_identities/v1/model/maintenance_policy.ex index 5a942a27be..d44674da42 100644 --- a/clients/managed_identities/lib/google_api/managed_identities/v1/model/maintenance_policy.ex +++ b/clients/managed_identities/lib/google_api/managed_identities/v1/model/maintenance_policy.ex @@ -17,7 +17,7 @@ defmodule GoogleApi.ManagedIdentities.V1.Model.MaintenancePolicy do @moduledoc """ - Defines policies to service maintenance events. + LINT.IfChange Defines policies to service maintenance events. ## Attributes diff --git a/clients/managed_identities/lib/google_api/managed_identities/v1/model/on_prem_domain_details.ex b/clients/managed_identities/lib/google_api/managed_identities/v1/model/on_prem_domain_details.ex new file mode 100644 index 0000000000..f74098c6e9 --- /dev/null +++ b/clients/managed_identities/lib/google_api/managed_identities/v1/model/on_prem_domain_details.ex @@ -0,0 +1,49 @@ +# Copyright 2019 Google LLC +# +# Licensed under the Apache License, Version 2.0 (the "License"); +# you may not use this file except in compliance with the License. +# You may obtain a copy of the License at +# +# http://www.apache.org/licenses/LICENSE-2.0 +# +# Unless required by applicable law or agreed to in writing, software +# distributed under the License is distributed on an "AS IS" BASIS, +# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +# See the License for the specific language governing permissions and +# limitations under the License. + +# NOTE: This file is auto generated by the elixir code generator program. +# Do not edit this file manually. + +defmodule GoogleApi.ManagedIdentities.V1.Model.OnPremDomainDetails do + @moduledoc """ + OnPremDomainDetails is the message which contains details of on-prem domain which is trusted and needs to be migrated. + + ## Attributes + + * `disableSidFiltering` (*type:* `boolean()`, *default:* `nil`) - Optional. Option to disable SID filtering. + * `domainName` (*type:* `String.t`, *default:* `nil`) - Required. FQDN of the on-prem domain being migrated. + """ + + use GoogleApi.Gax.ModelBase + + @type t :: %__MODULE__{ + :disableSidFiltering => boolean() | nil, + :domainName => String.t() | nil + } + + field(:disableSidFiltering) + field(:domainName) +end + +defimpl Poison.Decoder, for: GoogleApi.ManagedIdentities.V1.Model.OnPremDomainDetails do + def decode(value, options) do + GoogleApi.ManagedIdentities.V1.Model.OnPremDomainDetails.decode(value, options) + end +end + +defimpl Poison.Encoder, for: GoogleApi.ManagedIdentities.V1.Model.OnPremDomainDetails do + def encode(value, options) do + GoogleApi.Gax.ModelBase.encode(value, options) + end +end diff --git a/clients/managed_identities/lib/google_api/managed_identities/v1/model/on_prem_domain_sid_details.ex b/clients/managed_identities/lib/google_api/managed_identities/v1/model/on_prem_domain_sid_details.ex new file mode 100644 index 0000000000..1843cf1321 --- /dev/null +++ b/clients/managed_identities/lib/google_api/managed_identities/v1/model/on_prem_domain_sid_details.ex @@ -0,0 +1,49 @@ +# Copyright 2019 Google LLC +# +# Licensed under the Apache License, Version 2.0 (the "License"); +# you may not use this file except in compliance with the License. +# You may obtain a copy of the License at +# +# http://www.apache.org/licenses/LICENSE-2.0 +# +# Unless required by applicable law or agreed to in writing, software +# distributed under the License is distributed on an "AS IS" BASIS, +# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +# See the License for the specific language governing permissions and +# limitations under the License. + +# NOTE: This file is auto generated by the elixir code generator program. +# Do not edit this file manually. + +defmodule GoogleApi.ManagedIdentities.V1.Model.OnPremDomainSIDDetails do + @moduledoc """ + OnPremDomainDetails is the message which contains details of on-prem domain which is trusted and needs to be migrated. + + ## Attributes + + * `name` (*type:* `String.t`, *default:* `nil`) - FQDN of the on-prem domain being migrated. + * `sidFilteringState` (*type:* `String.t`, *default:* `nil`) - Current SID filtering state. + """ + + use GoogleApi.Gax.ModelBase + + @type t :: %__MODULE__{ + :name => String.t() | nil, + :sidFilteringState => String.t() | nil + } + + field(:name) + field(:sidFilteringState) +end + +defimpl Poison.Decoder, for: GoogleApi.ManagedIdentities.V1.Model.OnPremDomainSIDDetails do + def decode(value, options) do + GoogleApi.ManagedIdentities.V1.Model.OnPremDomainSIDDetails.decode(value, options) + end +end + +defimpl Poison.Encoder, for: GoogleApi.ManagedIdentities.V1.Model.OnPremDomainSIDDetails do + def encode(value, options) do + GoogleApi.Gax.ModelBase.encode(value, options) + end +end diff --git a/clients/managed_identities/lib/google_api/managed_identities/v1/model/operation.ex b/clients/managed_identities/lib/google_api/managed_identities/v1/model/operation.ex index 3583f766e2..d60ea51432 100644 --- a/clients/managed_identities/lib/google_api/managed_identities/v1/model/operation.ex +++ b/clients/managed_identities/lib/google_api/managed_identities/v1/model/operation.ex @@ -25,7 +25,7 @@ defmodule GoogleApi.ManagedIdentities.V1.Model.Operation do * `error` (*type:* `GoogleApi.ManagedIdentities.V1.Model.Status.t`, *default:* `nil`) - The error result of the operation in case of failure or cancellation. * `metadata` (*type:* `map()`, *default:* `nil`) - Service-specific metadata associated with the operation. It typically contains progress information and common metadata such as create time. Some services might not provide such metadata. Any method that returns a long-running operation should document the metadata type, if any. * `name` (*type:* `String.t`, *default:* `nil`) - The server-assigned name, which is only unique within the same service that originally returns it. If you use the default HTTP mapping, the `name` should be a resource name ending with `operations/{unique_id}`. - * `response` (*type:* `map()`, *default:* `nil`) - The normal response of the operation in case of success. If the original method returns no data on success, such as `Delete`, the response is `google.protobuf.Empty`. If the original method is standard `Get`/`Create`/`Update`, the response should be the resource. For other methods, the response should have the type `XxxResponse`, where `Xxx` is the original method name. For example, if the original method name is `TakeSnapshot()`, the inferred response type is `TakeSnapshotResponse`. + * `response` (*type:* `map()`, *default:* `nil`) - The normal, successful response of the operation. If the original method returns no data on success, such as `Delete`, the response is `google.protobuf.Empty`. If the original method is standard `Get`/`Create`/`Update`, the response should be the resource. For other methods, the response should have the type `XxxResponse`, where `Xxx` is the original method name. For example, if the original method name is `TakeSnapshot()`, the inferred response type is `TakeSnapshotResponse`. """ use GoogleApi.Gax.ModelBase diff --git a/clients/managed_identities/lib/google_api/managed_identities/v1/model/policy.ex b/clients/managed_identities/lib/google_api/managed_identities/v1/model/policy.ex index c9c0568621..2611608533 100644 --- a/clients/managed_identities/lib/google_api/managed_identities/v1/model/policy.ex +++ b/clients/managed_identities/lib/google_api/managed_identities/v1/model/policy.ex @@ -17,7 +17,7 @@ defmodule GoogleApi.ManagedIdentities.V1.Model.Policy do @moduledoc """ - An Identity and Access Management (IAM) policy, which specifies access controls for Google Cloud resources. A `Policy` is a collection of `bindings`. A `binding` binds one or more `members`, or principals, to a single `role`. Principals can be user accounts, service accounts, Google groups, and domains (such as G Suite). A `role` is a named list of permissions; each `role` can be an IAM predefined role or a user-created custom role. For some types of Google Cloud resources, a `binding` can also specify a `condition`, which is a logical expression that allows access to a resource only if the expression evaluates to `true`. A condition can add constraints based on attributes of the request, the resource, or both. To learn which resources support conditions in their IAM policies, see the [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-policies). **JSON example:** { "bindings": [ { "role": "roles/resourcemanager.organizationAdmin", "members": [ "user:mike@example.com", "group:admins@example.com", "domain:google.com", "serviceAccount:my-project-id@appspot.gserviceaccount.com" ] }, { "role": "roles/resourcemanager.organizationViewer", "members": [ "user:eve@example.com" ], "condition": { "title": "expirable access", "description": "Does not grant access after Sep 2020", "expression": "request.time < timestamp('2020-10-01T00:00:00.000Z')", } } ], "etag": "BwWWja0YfJA=", "version": 3 } **YAML example:** bindings: - members: - user:mike@example.com - group:admins@example.com - domain:google.com - serviceAccount:my-project-id@appspot.gserviceaccount.com role: roles/resourcemanager.organizationAdmin - members: - user:eve@example.com role: roles/resourcemanager.organizationViewer condition: title: expirable access description: Does not grant access after Sep 2020 expression: request.time < timestamp('2020-10-01T00:00:00.000Z') etag: BwWWja0YfJA= version: 3 For a description of IAM and its features, see the [IAM documentation](https://cloud.google.com/iam/docs/). + An Identity and Access Management (IAM) policy, which specifies access controls for Google Cloud resources. A `Policy` is a collection of `bindings`. A `binding` binds one or more `members`, or principals, to a single `role`. Principals can be user accounts, service accounts, Google groups, and domains (such as G Suite). A `role` is a named list of permissions; each `role` can be an IAM predefined role or a user-created custom role. For some types of Google Cloud resources, a `binding` can also specify a `condition`, which is a logical expression that allows access to a resource only if the expression evaluates to `true`. A condition can add constraints based on attributes of the request, the resource, or both. To learn which resources support conditions in their IAM policies, see the [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-policies). **JSON example:** ``` { "bindings": [ { "role": "roles/resourcemanager.organizationAdmin", "members": [ "user:mike@example.com", "group:admins@example.com", "domain:google.com", "serviceAccount:my-project-id@appspot.gserviceaccount.com" ] }, { "role": "roles/resourcemanager.organizationViewer", "members": [ "user:eve@example.com" ], "condition": { "title": "expirable access", "description": "Does not grant access after Sep 2020", "expression": "request.time < timestamp('2020-10-01T00:00:00.000Z')", } } ], "etag": "BwWWja0YfJA=", "version": 3 } ``` **YAML example:** ``` bindings: - members: - user:mike@example.com - group:admins@example.com - domain:google.com - serviceAccount:my-project-id@appspot.gserviceaccount.com role: roles/resourcemanager.organizationAdmin - members: - user:eve@example.com role: roles/resourcemanager.organizationViewer condition: title: expirable access description: Does not grant access after Sep 2020 expression: request.time < timestamp('2020-10-01T00:00:00.000Z') etag: BwWWja0YfJA= version: 3 ``` For a description of IAM and its features, see the [IAM documentation](https://cloud.google.com/iam/docs/). ## Attributes diff --git a/clients/managed_identities/lib/google_api/managed_identities/v1/model/update_policy.ex b/clients/managed_identities/lib/google_api/managed_identities/v1/model/update_policy.ex index 59563f1f8d..186eae020c 100644 --- a/clients/managed_identities/lib/google_api/managed_identities/v1/model/update_policy.ex +++ b/clients/managed_identities/lib/google_api/managed_identities/v1/model/update_policy.ex @@ -22,7 +22,7 @@ defmodule GoogleApi.ManagedIdentities.V1.Model.UpdatePolicy do ## Attributes * `channel` (*type:* `String.t`, *default:* `nil`) - Optional. Relative scheduling channel applied to resource. - * `denyMaintenancePeriods` (*type:* `list(GoogleApi.ManagedIdentities.V1.Model.DenyMaintenancePeriod.t)`, *default:* `nil`) - Deny Maintenance Period that is applied to resource to indicate when maintenance is forbidden. User can specify zero or more non-overlapping deny periods. Maximum number of deny_maintenance_periods expected is one. + * `denyMaintenancePeriods` (*type:* `list(GoogleApi.ManagedIdentities.V1.Model.DenyMaintenancePeriod.t)`, *default:* `nil`) - Deny Maintenance Period that is applied to resource to indicate when maintenance is forbidden. The protocol supports zero-to-many such periods, but the current SLM Rollout implementation only supports zero-to-one. * `window` (*type:* `GoogleApi.ManagedIdentities.V1.Model.MaintenanceWindow.t`, *default:* `nil`) - Optional. Maintenance window that is applied to resources covered by this policy. """