listgroups

Documentation

Overview

Package listgroups extract all groups from a Google Cloud Identity directory using the Admin SDK API - Triggered by: Cloud Scheduler Job, through PubSub messages - Instances: few, one per directory customer ID - Output: PubSub messages to a dedicated topic formated like Cloud Asset Inventory feed messages - Cardinality:

• one-several: one extraction job is scalled into x queries
• x = (number of domains in GCI directory) x (36 email prefixes)
• email prefixes: a..z 0..9

- Automatic retrying: yes - Is recurssive: yes - Required environment variables:

• GCIADMINUSERTOIMPERSONATE email of the Google Cloud Identity super admin to impersonate
• DIRECTORYCUSTOMERID Directory customer identifier. see gcloud organizations list
• INPUTTOPICNAME name of the PubSub topic used to trigger it self in recursive mode
• KEYJSONFILENAME name for the service account JSON file containig the key to authenticate against CGI
• OUTPUTTOPICNAME name of the PubSub topic where to deliver feed messages
• SERVICEACCOUNTNAME name of the service account used to asscess GCI

Index

• func EntryPoint(ctxEvent context.Context, PubSubMessage ram.PubSubMessage, global *Global) error
• func Initialize(ctx context.Context, global *Global)
• type Global
• type Settings

Functions

func EntryPoint

func EntryPoint(ctxEvent context.Context, PubSubMessage ram.PubSubMessage, global *Global) error

EntryPoint is the function to be executed for each cloud function occurence

func Initialize

func Initialize(ctx context.Context, global *Global)

Initialize is to be executed in the init() function of the cloud function to optimize the cold start

Types

type Global

type Global struct {
	// contains filtered or unexported fields
}

Global structure for global variables to optimize the cloud function performances

type Settings

type Settings struct {
	Domain      string `json:"domain"`
	EmailPrefix string `json:"emailPrefix"`
}

Settings from PubSub triggering event