accessapproval

package
v0.0.1 Latest Latest
Warning

This package is not in the latest version of its module.

Go to latest
Published: Dec 7, 2023 License: BSD-3-Clause Imports: 16 Imported by: 0

Documentation

Overview

Package accessapproval provides access to the Access Approval API.

For product documentation, see: https://cloud.google.com/assured-workloads/access-approval/docs

Library status

These client libraries are officially supported by Google. However, this library is considered complete and is in maintenance mode. This means that we will address critical bugs and security issues but will not add any new features.

When possible, we recommend using our newer [Cloud Client Libraries for Go](https://pkg.go.dev/cloud.google.com/go) that are still actively being worked and iterated on.

Creating a client

Usage example:

import "google.golang.org/api/accessapproval/v1"
...
ctx := context.Background()
accessapprovalService, err := accessapproval.NewService(ctx)

In this example, Google Application Default Credentials are used for authentication. For information on how to create and obtain Application Default Credentials, see https://developers.google.com/identity/protocols/application-default-credentials.

Other authentication options

To use an API key for authentication (note: some APIs do not support API keys), use google.golang.org/api/option.WithAPIKey:

accessapprovalService, err := accessapproval.NewService(ctx, option.WithAPIKey("AIza..."))

To use an OAuth token (e.g., a user token obtained via a three-legged OAuth flow, use google.golang.org/api/option.WithTokenSource:

config := &oauth2.Config{...}
// ...
token, err := config.Exchange(ctx, ...)
accessapprovalService, err := accessapproval.NewService(ctx, option.WithTokenSource(config.TokenSource(ctx, token)))

See google.golang.org/api/option.ClientOption for details on options.

Index

Constants

View Source
const (
	// See, edit, configure, and delete your Google Cloud data and see the
	// email address for your Google Account.
	CloudPlatformScope = "https://www.googleapis.com/auth/cloud-platform"
)

OAuth2 scopes used by this API.

Variables

This section is empty.

Functions

This section is empty.

Types

type AccessApprovalServiceAccount

type AccessApprovalServiceAccount struct {
	// AccountEmail: Email address of the service account.
	AccountEmail string `json:"accountEmail,omitempty"`

	// Name: The resource name of the Access Approval service account.
	// Format is one of: * "projects/{project}/serviceAccount" *
	// "folders/{folder}/serviceAccount" *
	// "organizations/{organization}/serviceAccount"
	Name string `json:"name,omitempty"`

	// ServerResponse contains the HTTP response code and headers from the
	// server.
	googleapi.ServerResponse `json:"-"`

	// ForceSendFields is a list of field names (e.g. "AccountEmail") to
	// unconditionally include in API requests. By default, fields with
	// empty or default values are omitted from API requests. However, any
	// non-pointer, non-interface field appearing in ForceSendFields will be
	// sent to the server regardless of whether the field is empty or not.
	// This may be used to include empty fields in Patch requests.
	ForceSendFields []string `json:"-"`

	// NullFields is a list of field names (e.g. "AccountEmail") to include
	// in API requests with the JSON null value. By default, fields with
	// empty values are omitted from API requests. However, any field with
	// an empty value appearing in NullFields will be sent to the server as
	// null. It is an error if a field in this list has a non-empty value.
	// This may be used to include null fields in Patch requests.
	NullFields []string `json:"-"`
}

AccessApprovalServiceAccount: Access Approval service account related to a project/folder/organization.

func (*AccessApprovalServiceAccount) MarshalJSON

func (s *AccessApprovalServiceAccount) MarshalJSON() ([]byte, error)

type AccessApprovalSettings

type AccessApprovalSettings struct {
	// ActiveKeyVersion: The asymmetric crypto key version to use for
	// signing approval requests. Empty active_key_version indicates that a
	// Google-managed key should be used for signing. This property will be
	// ignored if set by an ancestor of this resource, and new non-empty
	// values may not be set.
	ActiveKeyVersion string `json:"activeKeyVersion,omitempty"`

	// AncestorHasActiveKeyVersion: Output only. This field is read only
	// (not settable via UpdateAccessApprovalSettings method). If the field
	// is true, that indicates that an ancestor of this Project or Folder
	// has set active_key_version (this field will always be unset for the
	// organization since organizations do not have ancestors).
	AncestorHasActiveKeyVersion bool `json:"ancestorHasActiveKeyVersion,omitempty"`

	// EnrolledAncestor: Output only. This field is read only (not settable
	// via UpdateAccessApprovalSettings method). If the field is true, that
	// indicates that at least one service is enrolled for Access Approval
	// in one or more ancestors of the Project or Folder (this field will
	// always be unset for the organization since organizations do not have
	// ancestors).
	EnrolledAncestor bool `json:"enrolledAncestor,omitempty"`

	// EnrolledServices: A list of Google Cloud Services for which the given
	// resource has Access Approval enrolled. Access requests for the
	// resource given by name against any of these services contained here
	// will be required to have explicit approval. If name refers to an
	// organization, enrollment can be done for individual services. If name
	// refers to a folder or project, enrollment can only be done on an all
	// or nothing basis. If a cloud_product is repeated in this list, the
	// first entry will be honored and all following entries will be
	// discarded. A maximum of 10 enrolled services will be enforced, to be
	// expanded as the set of supported services is expanded.
	EnrolledServices []*EnrolledService `json:"enrolledServices,omitempty"`

	// InvalidKeyVersion: Output only. This field is read only (not settable
	// via UpdateAccessApprovalSettings method). If the field is true, that
	// indicates that there is some configuration issue with the
	// active_key_version configured at this level in the resource hierarchy
	// (e.g. it doesn't exist or the Access Approval service account doesn't
	// have the correct permissions on it, etc.) This key version is not
	// necessarily the effective key version at this level, as key versions
	// are inherited top-down.
	InvalidKeyVersion bool `json:"invalidKeyVersion,omitempty"`

	// Name: The resource name of the settings. Format is one of: *
	// "projects/{project}/accessApprovalSettings" *
	// "folders/{folder}/accessApprovalSettings" *
	// "organizations/{organization}/accessApprovalSettings"
	Name string `json:"name,omitempty"`

	// NotificationEmails: A list of email addresses to which notifications
	// relating to approval requests should be sent. Notifications relating
	// to a resource will be sent to all emails in the settings of ancestor
	// resources of that resource. A maximum of 50 email addresses are
	// allowed.
	NotificationEmails []string `json:"notificationEmails,omitempty"`

	// NotificationPubsubTopic: Optional. A pubsub topic to which
	// notifications relating to approval requests should be sent.
	NotificationPubsubTopic string `json:"notificationPubsubTopic,omitempty"`

	// PreferNoBroadApprovalRequests: This preference is communicated to
	// Google personnel when sending an approval request but can be
	// overridden if necessary.
	PreferNoBroadApprovalRequests bool `json:"preferNoBroadApprovalRequests,omitempty"`

	// PreferredRequestExpirationDays: This preference is shared with Google
	// personnel, but can be overridden if said personnel deems necessary.
	// The approver ultimately can set the expiration at approval time.
	PreferredRequestExpirationDays int64 `json:"preferredRequestExpirationDays,omitempty"`

	// ServerResponse contains the HTTP response code and headers from the
	// server.
	googleapi.ServerResponse `json:"-"`

	// ForceSendFields is a list of field names (e.g. "ActiveKeyVersion") to
	// unconditionally include in API requests. By default, fields with
	// empty or default values are omitted from API requests. However, any
	// non-pointer, non-interface field appearing in ForceSendFields will be
	// sent to the server regardless of whether the field is empty or not.
	// This may be used to include empty fields in Patch requests.
	ForceSendFields []string `json:"-"`

	// NullFields is a list of field names (e.g. "ActiveKeyVersion") to
	// include in API requests with the JSON null value. By default, fields
	// with empty values are omitted from API requests. However, any field
	// with an empty value appearing in NullFields will be sent to the
	// server as null. It is an error if a field in this list has a
	// non-empty value. This may be used to include null fields in Patch
	// requests.
	NullFields []string `json:"-"`
}

AccessApprovalSettings: Settings on a Project/Folder/Organization related to Access Approval.

func (*AccessApprovalSettings) MarshalJSON

func (s *AccessApprovalSettings) MarshalJSON() ([]byte, error)

type AccessLocations

type AccessLocations struct {
	// PrincipalOfficeCountry: The "home office" location of the principal.
	// A two-letter country code (ISO 3166-1 alpha-2), such as "US", "DE" or
	// "GB" or a region code. In some limited situations Google systems may
	// refer refer to a region code instead of a country code. Possible
	// Region Codes: * ASI: Asia * EUR: Europe * OCE: Oceania * AFR: Africa
	// * NAM: North America * SAM: South America * ANT: Antarctica * ANY:
	// Any location
	PrincipalOfficeCountry string `json:"principalOfficeCountry,omitempty"`

	// PrincipalPhysicalLocationCountry: Physical location of the principal
	// at the time of the access. A two-letter country code (ISO 3166-1
	// alpha-2), such as "US", "DE" or "GB" or a region code. In some
	// limited situations Google systems may refer refer to a region code
	// instead of a country code. Possible Region Codes: * ASI: Asia * EUR:
	// Europe * OCE: Oceania * AFR: Africa * NAM: North America * SAM: South
	// America * ANT: Antarctica * ANY: Any location
	PrincipalPhysicalLocationCountry string `json:"principalPhysicalLocationCountry,omitempty"`

	// ForceSendFields is a list of field names (e.g.
	// "PrincipalOfficeCountry") to unconditionally include in API requests.
	// By default, fields with empty or default values are omitted from API
	// requests. However, any non-pointer, non-interface field appearing in
	// ForceSendFields will be sent to the server regardless of whether the
	// field is empty or not. This may be used to include empty fields in
	// Patch requests.
	ForceSendFields []string `json:"-"`

	// NullFields is a list of field names (e.g. "PrincipalOfficeCountry")
	// to include in API requests with the JSON null value. By default,
	// fields with empty values are omitted from API requests. However, any
	// field with an empty value appearing in NullFields will be sent to the
	// server as null. It is an error if a field in this list has a
	// non-empty value. This may be used to include null fields in Patch
	// requests.
	NullFields []string `json:"-"`
}

AccessLocations: Home office and physical location of the principal.

func (*AccessLocations) MarshalJSON

func (s *AccessLocations) MarshalJSON() ([]byte, error)

type AccessReason

type AccessReason struct {
	// Detail: More detail about certain reason types. See comments for each
	// type above.
	Detail string `json:"detail,omitempty"`

	// Type: Type of access justification.
	//
	// Possible values:
	//   "TYPE_UNSPECIFIED" - Default value for proto, shouldn't be used.
	//   "CUSTOMER_INITIATED_SUPPORT" - Customer made a request or raised an
	// issue that required the principal to access customer data. `detail`
	// is of the form ("#####" is the issue ID): * "Feedback Report: #####"
	// * "Case Number: #####" * "Case ID: #####" * "E-PIN Reference: #####"
	// * "Google-#####" * "T-#####"
	//   "GOOGLE_INITIATED_SERVICE" - The principal accessed customer data
	// in order to diagnose or resolve a suspected issue in services. Often
	// this access is used to confirm that customers are not affected by a
	// suspected service issue or to remediate a reversible system issue.
	//   "GOOGLE_INITIATED_REVIEW" - Google initiated service for security,
	// fraud, abuse, or compliance purposes.
	//   "THIRD_PARTY_DATA_REQUEST" - The principal was compelled to access
	// customer data in order to respond to a legal third party data request
	// or process, including legal processes from customers themselves.
	//   "GOOGLE_RESPONSE_TO_PRODUCTION_ALERT" - The principal accessed
	// customer data in order to diagnose or resolve a suspected issue in
	// services or a known outage.
	//   "CLOUD_INITIATED_ACCESS" - Similar to 'GOOGLE_INITIATED_SERVICE' or
	// 'GOOGLE_INITIATED_REVIEW', but meant to reflect when the cloud
	// operator is not Google (namely, a TPC operator), and accessed
	// customer data in order to diagnose or resolve a suspected issue in
	// services or a known outage, or for security, fraud, abuse, or
	// compliance review purposes.
	Type string `json:"type,omitempty"`

	// ForceSendFields is a list of field names (e.g. "Detail") to
	// unconditionally include in API requests. By default, fields with
	// empty or default values are omitted from API requests. However, any
	// non-pointer, non-interface field appearing in ForceSendFields will be
	// sent to the server regardless of whether the field is empty or not.
	// This may be used to include empty fields in Patch requests.
	ForceSendFields []string `json:"-"`

	// NullFields is a list of field names (e.g. "Detail") to include in API
	// requests with the JSON null value. By default, fields with empty
	// values are omitted from API requests. However, any field with an
	// empty value appearing in NullFields will be sent to the server as
	// null. It is an error if a field in this list has a non-empty value.
	// This may be used to include null fields in Patch requests.
	NullFields []string `json:"-"`
}

func (*AccessReason) MarshalJSON

func (s *AccessReason) MarshalJSON() ([]byte, error)

type ApprovalRequest

type ApprovalRequest struct {
	// Approve: Access was approved.
	Approve *ApproveDecision `json:"approve,omitempty"`

	// Dismiss: The request was dismissed.
	Dismiss *DismissDecision `json:"dismiss,omitempty"`

	// Name: The resource name of the request. Format is
	// "{projects|folders|organizations}/{id}/approvalRequests/{approval_requ
	// est}".
	Name string `json:"name,omitempty"`

	// RequestTime: The time at which approval was requested.
	RequestTime string `json:"requestTime,omitempty"`

	// RequestedDuration: The requested access duration.
	RequestedDuration string `json:"requestedDuration,omitempty"`

	// RequestedExpiration: The original requested expiration for the
	// approval. Calculated by adding the requested_duration to the
	// request_time.
	RequestedExpiration string `json:"requestedExpiration,omitempty"`

	// RequestedLocations: The locations for which approval is being
	// requested.
	RequestedLocations *AccessLocations `json:"requestedLocations,omitempty"`

	// RequestedReason: The justification for which approval is being
	// requested.
	RequestedReason *AccessReason `json:"requestedReason,omitempty"`

	// RequestedResourceName: The resource for which approval is being
	// requested. The format of the resource name is defined at
	// https://cloud.google.com/apis/design/resource_names. The resource
	// name here may either be a "full" resource name (e.g.
	// "//library.googleapis.com/shelves/shelf1/books/book2") or a
	// "relative" resource name (e.g. "shelves/shelf1/books/book2") as
	// described in the resource name specification.
	RequestedResourceName string `json:"requestedResourceName,omitempty"`

	// RequestedResourceProperties: Properties related to the resource
	// represented by requested_resource_name.
	RequestedResourceProperties *ResourceProperties `json:"requestedResourceProperties,omitempty"`

	// ServerResponse contains the HTTP response code and headers from the
	// server.
	googleapi.ServerResponse `json:"-"`

	// ForceSendFields is a list of field names (e.g. "Approve") to
	// unconditionally include in API requests. By default, fields with
	// empty or default values are omitted from API requests. However, any
	// non-pointer, non-interface field appearing in ForceSendFields will be
	// sent to the server regardless of whether the field is empty or not.
	// This may be used to include empty fields in Patch requests.
	ForceSendFields []string `json:"-"`

	// NullFields is a list of field names (e.g. "Approve") to include in
	// API requests with the JSON null value. By default, fields with empty
	// values are omitted from API requests. However, any field with an
	// empty value appearing in NullFields will be sent to the server as
	// null. It is an error if a field in this list has a non-empty value.
	// This may be used to include null fields in Patch requests.
	NullFields []string `json:"-"`
}

ApprovalRequest: A request for the customer to approve access to a resource.

func (*ApprovalRequest) MarshalJSON

func (s *ApprovalRequest) MarshalJSON() ([]byte, error)

type ApproveApprovalRequestMessage

type ApproveApprovalRequestMessage struct {
	// ExpireTime: The expiration time of this approval.
	ExpireTime string `json:"expireTime,omitempty"`

	// ForceSendFields is a list of field names (e.g. "ExpireTime") to
	// unconditionally include in API requests. By default, fields with
	// empty or default values are omitted from API requests. However, any
	// non-pointer, non-interface field appearing in ForceSendFields will be
	// sent to the server regardless of whether the field is empty or not.
	// This may be used to include empty fields in Patch requests.
	ForceSendFields []string `json:"-"`

	// NullFields is a list of field names (e.g. "ExpireTime") to include in
	// API requests with the JSON null value. By default, fields with empty
	// values are omitted from API requests. However, any field with an
	// empty value appearing in NullFields will be sent to the server as
	// null. It is an error if a field in this list has a non-empty value.
	// This may be used to include null fields in Patch requests.
	NullFields []string `json:"-"`
}

ApproveApprovalRequestMessage: Request to approve an ApprovalRequest.

func (*ApproveApprovalRequestMessage) MarshalJSON

func (s *ApproveApprovalRequestMessage) MarshalJSON() ([]byte, error)

type ApproveDecision

type ApproveDecision struct {
	// ApproveTime: The time at which approval was granted.
	ApproveTime string `json:"approveTime,omitempty"`

	// AutoApproved: True when the request has been auto-approved.
	AutoApproved bool `json:"autoApproved,omitempty"`

	// ExpireTime: The time at which the approval expires.
	ExpireTime string `json:"expireTime,omitempty"`

	// InvalidateTime: If set, denotes the timestamp at which the approval
	// is invalidated.
	InvalidateTime string `json:"invalidateTime,omitempty"`

	// SignatureInfo: The signature for the ApprovalRequest and details on
	// how it was signed.
	SignatureInfo *SignatureInfo `json:"signatureInfo,omitempty"`

	// ForceSendFields is a list of field names (e.g. "ApproveTime") to
	// unconditionally include in API requests. By default, fields with
	// empty or default values are omitted from API requests. However, any
	// non-pointer, non-interface field appearing in ForceSendFields will be
	// sent to the server regardless of whether the field is empty or not.
	// This may be used to include empty fields in Patch requests.
	ForceSendFields []string `json:"-"`

	// NullFields is a list of field names (e.g. "ApproveTime") to include
	// in API requests with the JSON null value. By default, fields with
	// empty values are omitted from API requests. However, any field with
	// an empty value appearing in NullFields will be sent to the server as
	// null. It is an error if a field in this list has a non-empty value.
	// This may be used to include null fields in Patch requests.
	NullFields []string `json:"-"`
}

ApproveDecision: A decision that has been made to approve access to a resource.

func (*ApproveDecision) MarshalJSON

func (s *ApproveDecision) MarshalJSON() ([]byte, error)

type DismissApprovalRequestMessage

type DismissApprovalRequestMessage struct {
}

DismissApprovalRequestMessage: Request to dismiss an approval request.

type DismissDecision

type DismissDecision struct {
	// DismissTime: The time at which the approval request was dismissed.
	DismissTime string `json:"dismissTime,omitempty"`

	// Implicit: This field will be true if the ApprovalRequest was
	// implicitly dismissed due to inaction by the access approval approvers
	// (the request is not acted on by the approvers before the exiration
	// time).
	Implicit bool `json:"implicit,omitempty"`

	// ForceSendFields is a list of field names (e.g. "DismissTime") to
	// unconditionally include in API requests. By default, fields with
	// empty or default values are omitted from API requests. However, any
	// non-pointer, non-interface field appearing in ForceSendFields will be
	// sent to the server regardless of whether the field is empty or not.
	// This may be used to include empty fields in Patch requests.
	ForceSendFields []string `json:"-"`

	// NullFields is a list of field names (e.g. "DismissTime") to include
	// in API requests with the JSON null value. By default, fields with
	// empty values are omitted from API requests. However, any field with
	// an empty value appearing in NullFields will be sent to the server as
	// null. It is an error if a field in this list has a non-empty value.
	// This may be used to include null fields in Patch requests.
	NullFields []string `json:"-"`
}

DismissDecision: A decision that has been made to dismiss an approval request.

func (*DismissDecision) MarshalJSON

func (s *DismissDecision) MarshalJSON() ([]byte, error)

type Empty

type Empty struct {
	// ServerResponse contains the HTTP response code and headers from the
	// server.
	googleapi.ServerResponse `json:"-"`
}

Empty: A generic empty message that you can re-use to avoid defining duplicated empty messages in your APIs. A typical example is to use it as the request or the response type of an API method. For instance: service Foo { rpc Bar(google.protobuf.Empty) returns (google.protobuf.Empty); }

type EnrolledService

type EnrolledService struct {
	// CloudProduct: The product for which Access Approval will be enrolled.
	// Allowed values are listed below (case-sensitive): * all * GA * App
	// Engine * Artifact Registry * BigQuery * Certificate Authority Service
	// * Cloud Bigtable * Cloud Key Management Service * Compute Engine *
	// Cloud Composer * Cloud Dataflow * Cloud Dataproc * Cloud DLP * Cloud
	// EKM * Cloud Firestore * Cloud HSM * Cloud Identity and Access
	// Management * Cloud Logging * Cloud NAT * Cloud Pub/Sub * Cloud
	// Spanner * Cloud SQL * Cloud Storage * Eventarc * Google Kubernetes
	// Engine * Organization Policy Serivice * Persistent Disk * Resource
	// Manager * Secret Manager * Speaker ID Note: These values are
	// supported as input for legacy purposes, but will not be returned from
	// the API. * all * ga-only * appengine.googleapis.com *
	// artifactregistry.googleapis.com * bigquery.googleapis.com *
	// bigtable.googleapis.com * container.googleapis.com *
	// cloudkms.googleapis.com * cloudresourcemanager.googleapis.com *
	// cloudsql.googleapis.com * compute.googleapis.com *
	// dataflow.googleapis.com * dataproc.googleapis.com *
	// dlp.googleapis.com * iam.googleapis.com * logging.googleapis.com *
	// orgpolicy.googleapis.com * pubsub.googleapis.com *
	// spanner.googleapis.com * secretmanager.googleapis.com *
	// speakerid.googleapis.com * storage.googleapis.com Calls to
	// UpdateAccessApprovalSettings using 'all' or any of the
	// XXX.googleapis.com will be translated to the associated product name
	// ('all', 'App Engine', etc.). Note: 'all' will enroll the resource in
	// all products supported at both 'GA' and 'Preview' levels. More
	// information about levels of support is available at
	// https://cloud.google.com/access-approval/docs/supported-services
	CloudProduct string `json:"cloudProduct,omitempty"`

	// EnrollmentLevel: The enrollment level of the service.
	//
	// Possible values:
	//   "ENROLLMENT_LEVEL_UNSPECIFIED" - Default value for proto, shouldn't
	// be used.
	//   "BLOCK_ALL" - Service is enrolled in Access Approval for all
	// requests
	EnrollmentLevel string `json:"enrollmentLevel,omitempty"`

	// ForceSendFields is a list of field names (e.g. "CloudProduct") to
	// unconditionally include in API requests. By default, fields with
	// empty or default values are omitted from API requests. However, any
	// non-pointer, non-interface field appearing in ForceSendFields will be
	// sent to the server regardless of whether the field is empty or not.
	// This may be used to include empty fields in Patch requests.
	ForceSendFields []string `json:"-"`

	// NullFields is a list of field names (e.g. "CloudProduct") to include
	// in API requests with the JSON null value. By default, fields with
	// empty values are omitted from API requests. However, any field with
	// an empty value appearing in NullFields will be sent to the server as
	// null. It is an error if a field in this list has a non-empty value.
	// This may be used to include null fields in Patch requests.
	NullFields []string `json:"-"`
}

EnrolledService: Represents the enrollment of a cloud resource into a specific service.

func (*EnrolledService) MarshalJSON

func (s *EnrolledService) MarshalJSON() ([]byte, error)

type FoldersApprovalRequestsApproveCall

type FoldersApprovalRequestsApproveCall struct {
	// contains filtered or unexported fields
}

func (*FoldersApprovalRequestsApproveCall) Context

Context sets the context to be used in this call's Do method. Any pending HTTP request will be aborted if the provided context is canceled.

func (*FoldersApprovalRequestsApproveCall) Do

Do executes the "accessapproval.folders.approvalRequests.approve" call. Exactly one of *ApprovalRequest or error will be non-nil. Any non-2xx status code is an error. Response headers are in either *ApprovalRequest.ServerResponse.Header or (if a response was returned at all) in error.(*googleapi.Error).Header. Use googleapi.IsNotModified to check whether the returned error was because http.StatusNotModified was returned.

func (*FoldersApprovalRequestsApproveCall) Fields

Fields allows partial responses to be retrieved. See https://developers.google.com/gdata/docs/2.0/basics#PartialResponse for more information.

func (*FoldersApprovalRequestsApproveCall) Header

Header returns an http.Header that can be modified by the caller to add HTTP headers to the request.

type FoldersApprovalRequestsDismissCall

type FoldersApprovalRequestsDismissCall struct {
	// contains filtered or unexported fields
}

func (*FoldersApprovalRequestsDismissCall) Context

Context sets the context to be used in this call's Do method. Any pending HTTP request will be aborted if the provided context is canceled.

func (*FoldersApprovalRequestsDismissCall) Do

Do executes the "accessapproval.folders.approvalRequests.dismiss" call. Exactly one of *ApprovalRequest or error will be non-nil. Any non-2xx status code is an error. Response headers are in either *ApprovalRequest.ServerResponse.Header or (if a response was returned at all) in error.(*googleapi.Error).Header. Use googleapi.IsNotModified to check whether the returned error was because http.StatusNotModified was returned.

func (*FoldersApprovalRequestsDismissCall) Fields

Fields allows partial responses to be retrieved. See https://developers.google.com/gdata/docs/2.0/basics#PartialResponse for more information.

func (*FoldersApprovalRequestsDismissCall) Header

Header returns an http.Header that can be modified by the caller to add HTTP headers to the request.

type FoldersApprovalRequestsGetCall

type FoldersApprovalRequestsGetCall struct {
	// contains filtered or unexported fields
}

func (*FoldersApprovalRequestsGetCall) Context

Context sets the context to be used in this call's Do method. Any pending HTTP request will be aborted if the provided context is canceled.

func (*FoldersApprovalRequestsGetCall) Do

Do executes the "accessapproval.folders.approvalRequests.get" call. Exactly one of *ApprovalRequest or error will be non-nil. Any non-2xx status code is an error. Response headers are in either *ApprovalRequest.ServerResponse.Header or (if a response was returned at all) in error.(*googleapi.Error).Header. Use googleapi.IsNotModified to check whether the returned error was because http.StatusNotModified was returned.

func (*FoldersApprovalRequestsGetCall) Fields

Fields allows partial responses to be retrieved. See https://developers.google.com/gdata/docs/2.0/basics#PartialResponse for more information.

func (*FoldersApprovalRequestsGetCall) Header

Header returns an http.Header that can be modified by the caller to add HTTP headers to the request.

func (*FoldersApprovalRequestsGetCall) IfNoneMatch

IfNoneMatch sets the optional parameter which makes the operation fail if the object's ETag matches the given value. This is useful for getting updates only after the object has changed since the last request. Use googleapi.IsNotModified to check whether the response error from Do is the result of In-None-Match.

type FoldersApprovalRequestsInvalidateCall

type FoldersApprovalRequestsInvalidateCall struct {
	// contains filtered or unexported fields
}

func (*FoldersApprovalRequestsInvalidateCall) Context

Context sets the context to be used in this call's Do method. Any pending HTTP request will be aborted if the provided context is canceled.

func (*FoldersApprovalRequestsInvalidateCall) Do

Do executes the "accessapproval.folders.approvalRequests.invalidate" call. Exactly one of *ApprovalRequest or error will be non-nil. Any non-2xx status code is an error. Response headers are in either *ApprovalRequest.ServerResponse.Header or (if a response was returned at all) in error.(*googleapi.Error).Header. Use googleapi.IsNotModified to check whether the returned error was because http.StatusNotModified was returned.

func (*FoldersApprovalRequestsInvalidateCall) Fields

Fields allows partial responses to be retrieved. See https://developers.google.com/gdata/docs/2.0/basics#PartialResponse for more information.

func (*FoldersApprovalRequestsInvalidateCall) Header

Header returns an http.Header that can be modified by the caller to add HTTP headers to the request.

type FoldersApprovalRequestsListCall

type FoldersApprovalRequestsListCall struct {
	// contains filtered or unexported fields
}

func (*FoldersApprovalRequestsListCall) Context

Context sets the context to be used in this call's Do method. Any pending HTTP request will be aborted if the provided context is canceled.

func (*FoldersApprovalRequestsListCall) Do

Do executes the "accessapproval.folders.approvalRequests.list" call. Exactly one of *ListApprovalRequestsResponse or error will be non-nil. Any non-2xx status code is an error. Response headers are in either *ListApprovalRequestsResponse.ServerResponse.Header or (if a response was returned at all) in error.(*googleapi.Error).Header. Use googleapi.IsNotModified to check whether the returned error was because http.StatusNotModified was returned.

func (*FoldersApprovalRequestsListCall) Fields

Fields allows partial responses to be retrieved. See https://developers.google.com/gdata/docs/2.0/basics#PartialResponse for more information.

func (*FoldersApprovalRequestsListCall) Filter

Filter sets the optional parameter "filter": A filter on the type of approval requests to retrieve. Must be one of the following values: * [not set]: Requests that are pending or have active approvals. * ALL: All requests. * PENDING: Only pending requests. * ACTIVE: Only active (i.e. currently approved) requests. * DISMISSED: Only requests that have been dismissed, or requests that are not approved and past expiration. * EXPIRED: Only requests that have been approved, and the approval has expired. * HISTORY: Active, dismissed and expired requests.

func (*FoldersApprovalRequestsListCall) Header

Header returns an http.Header that can be modified by the caller to add HTTP headers to the request.

func (*FoldersApprovalRequestsListCall) IfNoneMatch

IfNoneMatch sets the optional parameter which makes the operation fail if the object's ETag matches the given value. This is useful for getting updates only after the object has changed since the last request. Use googleapi.IsNotModified to check whether the response error from Do is the result of In-None-Match.

func (*FoldersApprovalRequestsListCall) PageSize

PageSize sets the optional parameter "pageSize": Requested page size.

func (*FoldersApprovalRequestsListCall) PageToken

PageToken sets the optional parameter "pageToken": A token identifying the page of results to return.

func (*FoldersApprovalRequestsListCall) Pages

Pages invokes f for each page of results. A non-nil error returned from f will halt the iteration. The provided context supersedes any context provided to the Context method.

type FoldersApprovalRequestsService

type FoldersApprovalRequestsService struct {
	// contains filtered or unexported fields
}

func NewFoldersApprovalRequestsService

func NewFoldersApprovalRequestsService(s *Service) *FoldersApprovalRequestsService

func (*FoldersApprovalRequestsService) Approve

Approve: Approves a request and returns the updated ApprovalRequest. Returns NOT_FOUND if the request does not exist. Returns FAILED_PRECONDITION if the request exists but is not in a pending state.

- name: Name of the approval request to approve.

func (*FoldersApprovalRequestsService) Dismiss

Dismiss: Dismisses a request. Returns the updated ApprovalRequest. NOTE: This does not deny access to the resource if another request has been made and approved. It is equivalent in effect to ignoring the request altogether. Returns NOT_FOUND if the request does not exist. Returns FAILED_PRECONDITION if the request exists but is not in a pending state.

- name: Name of the ApprovalRequest to dismiss.

func (*FoldersApprovalRequestsService) Get

Get: Gets an approval request. Returns NOT_FOUND if the request does not exist.

  • name: The name of the approval request to retrieve. Format: "{projects|folders|organizations}/{id}/approvalRequests/{approval_re quest}".

func (*FoldersApprovalRequestsService) Invalidate

Invalidate: Invalidates an existing ApprovalRequest. Returns the updated ApprovalRequest. NOTE: This does not deny access to the resource if another request has been made and approved. It only invalidates a single approval. Returns FAILED_PRECONDITION if the request exists but is not in an approved state.

- name: Name of the ApprovalRequest to invalidate.

func (*FoldersApprovalRequestsService) List

List: Lists approval requests associated with a project, folder, or organization. Approval requests can be filtered by state (pending, active, dismissed). The order is reverse chronological.

  • parent: The parent resource. This may be "projects/{project}", "folders/{folder}", or "organizations/{organization}".

type FoldersDeleteAccessApprovalSettingsCall

type FoldersDeleteAccessApprovalSettingsCall struct {
	// contains filtered or unexported fields
}

func (*FoldersDeleteAccessApprovalSettingsCall) Context

Context sets the context to be used in this call's Do method. Any pending HTTP request will be aborted if the provided context is canceled.

func (*FoldersDeleteAccessApprovalSettingsCall) Do

Do executes the "accessapproval.folders.deleteAccessApprovalSettings" call. Exactly one of *Empty or error will be non-nil. Any non-2xx status code is an error. Response headers are in either *Empty.ServerResponse.Header or (if a response was returned at all) in error.(*googleapi.Error).Header. Use googleapi.IsNotModified to check whether the returned error was because http.StatusNotModified was returned.

func (*FoldersDeleteAccessApprovalSettingsCall) Fields

Fields allows partial responses to be retrieved. See https://developers.google.com/gdata/docs/2.0/basics#PartialResponse for more information.

func (*FoldersDeleteAccessApprovalSettingsCall) Header

Header returns an http.Header that can be modified by the caller to add HTTP headers to the request.

type FoldersGetAccessApprovalSettingsCall

type FoldersGetAccessApprovalSettingsCall struct {
	// contains filtered or unexported fields
}

func (*FoldersGetAccessApprovalSettingsCall) Context

Context sets the context to be used in this call's Do method. Any pending HTTP request will be aborted if the provided context is canceled.

func (*FoldersGetAccessApprovalSettingsCall) Do

Do executes the "accessapproval.folders.getAccessApprovalSettings" call. Exactly one of *AccessApprovalSettings or error will be non-nil. Any non-2xx status code is an error. Response headers are in either *AccessApprovalSettings.ServerResponse.Header or (if a response was returned at all) in error.(*googleapi.Error).Header. Use googleapi.IsNotModified to check whether the returned error was because http.StatusNotModified was returned.

func (*FoldersGetAccessApprovalSettingsCall) Fields

Fields allows partial responses to be retrieved. See https://developers.google.com/gdata/docs/2.0/basics#PartialResponse for more information.

func (*FoldersGetAccessApprovalSettingsCall) Header

Header returns an http.Header that can be modified by the caller to add HTTP headers to the request.

func (*FoldersGetAccessApprovalSettingsCall) IfNoneMatch

IfNoneMatch sets the optional parameter which makes the operation fail if the object's ETag matches the given value. This is useful for getting updates only after the object has changed since the last request. Use googleapi.IsNotModified to check whether the response error from Do is the result of In-None-Match.

type FoldersGetServiceAccountCall

type FoldersGetServiceAccountCall struct {
	// contains filtered or unexported fields
}

func (*FoldersGetServiceAccountCall) Context

Context sets the context to be used in this call's Do method. Any pending HTTP request will be aborted if the provided context is canceled.

func (*FoldersGetServiceAccountCall) Do

Do executes the "accessapproval.folders.getServiceAccount" call. Exactly one of *AccessApprovalServiceAccount or error will be non-nil. Any non-2xx status code is an error. Response headers are in either *AccessApprovalServiceAccount.ServerResponse.Header or (if a response was returned at all) in error.(*googleapi.Error).Header. Use googleapi.IsNotModified to check whether the returned error was because http.StatusNotModified was returned.

func (*FoldersGetServiceAccountCall) Fields

Fields allows partial responses to be retrieved. See https://developers.google.com/gdata/docs/2.0/basics#PartialResponse for more information.

func (*FoldersGetServiceAccountCall) Header

Header returns an http.Header that can be modified by the caller to add HTTP headers to the request.

func (*FoldersGetServiceAccountCall) IfNoneMatch

IfNoneMatch sets the optional parameter which makes the operation fail if the object's ETag matches the given value. This is useful for getting updates only after the object has changed since the last request. Use googleapi.IsNotModified to check whether the response error from Do is the result of In-None-Match.

type FoldersService

type FoldersService struct {
	ApprovalRequests *FoldersApprovalRequestsService
	// contains filtered or unexported fields
}

func NewFoldersService

func NewFoldersService(s *Service) *FoldersService

func (*FoldersService) DeleteAccessApprovalSettings

func (r *FoldersService) DeleteAccessApprovalSettings(name string) *FoldersDeleteAccessApprovalSettingsCall

DeleteAccessApprovalSettings: Deletes the settings associated with a project, folder, or organization. This will have the effect of disabling Access Approval for the project, folder, or organization, but only if all ancestors also have Access Approval disabled. If Access Approval is enabled at a higher level of the hierarchy, then Access Approval will still be enabled at this level as the settings are inherited.

- name: Name of the AccessApprovalSettings to delete.

func (*FoldersService) GetAccessApprovalSettings

func (r *FoldersService) GetAccessApprovalSettings(name string) *FoldersGetAccessApprovalSettingsCall

GetAccessApprovalSettings: Gets the settings associated with a project, folder, or organization.

  • name: The name of the AccessApprovalSettings to retrieve. Format: "{projects|folders|organizations}/{id}/accessApprovalSettings".

func (*FoldersService) GetServiceAccount

func (r *FoldersService) GetServiceAccount(name string) *FoldersGetServiceAccountCall

GetServiceAccount: Retrieves the service account that is used by Access Approval to access KMS keys for signing approved approval requests.

- name: Name of the AccessApprovalServiceAccount to retrieve.

func (*FoldersService) UpdateAccessApprovalSettings

func (r *FoldersService) UpdateAccessApprovalSettings(name string, accessapprovalsettings *AccessApprovalSettings) *FoldersUpdateAccessApprovalSettingsCall

UpdateAccessApprovalSettings: Updates the settings associated with a project, folder, or organization. Settings to update are determined by the value of field_mask.

  • name: The resource name of the settings. Format is one of: * "projects/{project}/accessApprovalSettings" * "folders/{folder}/accessApprovalSettings" * "organizations/{organization}/accessApprovalSettings".

type FoldersUpdateAccessApprovalSettingsCall

type FoldersUpdateAccessApprovalSettingsCall struct {
	// contains filtered or unexported fields
}

func (*FoldersUpdateAccessApprovalSettingsCall) Context

Context sets the context to be used in this call's Do method. Any pending HTTP request will be aborted if the provided context is canceled.

func (*FoldersUpdateAccessApprovalSettingsCall) Do

Do executes the "accessapproval.folders.updateAccessApprovalSettings" call. Exactly one of *AccessApprovalSettings or error will be non-nil. Any non-2xx status code is an error. Response headers are in either *AccessApprovalSettings.ServerResponse.Header or (if a response was returned at all) in error.(*googleapi.Error).Header. Use googleapi.IsNotModified to check whether the returned error was because http.StatusNotModified was returned.

func (*FoldersUpdateAccessApprovalSettingsCall) Fields

Fields allows partial responses to be retrieved. See https://developers.google.com/gdata/docs/2.0/basics#PartialResponse for more information.

func (*FoldersUpdateAccessApprovalSettingsCall) Header

Header returns an http.Header that can be modified by the caller to add HTTP headers to the request.

func (*FoldersUpdateAccessApprovalSettingsCall) UpdateMask

UpdateMask sets the optional parameter "updateMask": The update mask applies to the settings. Only the top level fields of AccessApprovalSettings (notification_emails & enrolled_services) are supported. For each field, if it is included, the currently stored value will be entirely overwritten with the value of the field passed in this request. For the `FieldMask` definition, see https://developers.google.com/protocol-buffers/docs/reference/google.protobuf#fieldmask If this field is left unset, only the notification_emails field will be updated.

type InvalidateApprovalRequestMessage

type InvalidateApprovalRequestMessage struct {
}

InvalidateApprovalRequestMessage: Request to invalidate an existing approval.

type ListApprovalRequestsResponse

type ListApprovalRequestsResponse struct {
	// ApprovalRequests: Approval request details.
	ApprovalRequests []*ApprovalRequest `json:"approvalRequests,omitempty"`

	// NextPageToken: Token to retrieve the next page of results, or empty
	// if there are no more.
	NextPageToken string `json:"nextPageToken,omitempty"`

	// ServerResponse contains the HTTP response code and headers from the
	// server.
	googleapi.ServerResponse `json:"-"`

	// ForceSendFields is a list of field names (e.g. "ApprovalRequests") to
	// unconditionally include in API requests. By default, fields with
	// empty or default values are omitted from API requests. However, any
	// non-pointer, non-interface field appearing in ForceSendFields will be
	// sent to the server regardless of whether the field is empty or not.
	// This may be used to include empty fields in Patch requests.
	ForceSendFields []string `json:"-"`

	// NullFields is a list of field names (e.g. "ApprovalRequests") to
	// include in API requests with the JSON null value. By default, fields
	// with empty values are omitted from API requests. However, any field
	// with an empty value appearing in NullFields will be sent to the
	// server as null. It is an error if a field in this list has a
	// non-empty value. This may be used to include null fields in Patch
	// requests.
	NullFields []string `json:"-"`
}

ListApprovalRequestsResponse: Response to listing of ApprovalRequest objects.

func (*ListApprovalRequestsResponse) MarshalJSON

func (s *ListApprovalRequestsResponse) MarshalJSON() ([]byte, error)

type OrganizationsApprovalRequestsApproveCall

type OrganizationsApprovalRequestsApproveCall struct {
	// contains filtered or unexported fields
}

func (*OrganizationsApprovalRequestsApproveCall) Context

Context sets the context to be used in this call's Do method. Any pending HTTP request will be aborted if the provided context is canceled.

func (*OrganizationsApprovalRequestsApproveCall) Do

Do executes the "accessapproval.organizations.approvalRequests.approve" call. Exactly one of *ApprovalRequest or error will be non-nil. Any non-2xx status code is an error. Response headers are in either *ApprovalRequest.ServerResponse.Header or (if a response was returned at all) in error.(*googleapi.Error).Header. Use googleapi.IsNotModified to check whether the returned error was because http.StatusNotModified was returned.

func (*OrganizationsApprovalRequestsApproveCall) Fields

Fields allows partial responses to be retrieved. See https://developers.google.com/gdata/docs/2.0/basics#PartialResponse for more information.

func (*OrganizationsApprovalRequestsApproveCall) Header

Header returns an http.Header that can be modified by the caller to add HTTP headers to the request.

type OrganizationsApprovalRequestsDismissCall

type OrganizationsApprovalRequestsDismissCall struct {
	// contains filtered or unexported fields
}

func (*OrganizationsApprovalRequestsDismissCall) Context

Context sets the context to be used in this call's Do method. Any pending HTTP request will be aborted if the provided context is canceled.

func (*OrganizationsApprovalRequestsDismissCall) Do

Do executes the "accessapproval.organizations.approvalRequests.dismiss" call. Exactly one of *ApprovalRequest or error will be non-nil. Any non-2xx status code is an error. Response headers are in either *ApprovalRequest.ServerResponse.Header or (if a response was returned at all) in error.(*googleapi.Error).Header. Use googleapi.IsNotModified to check whether the returned error was because http.StatusNotModified was returned.

func (*OrganizationsApprovalRequestsDismissCall) Fields

Fields allows partial responses to be retrieved. See https://developers.google.com/gdata/docs/2.0/basics#PartialResponse for more information.

func (*OrganizationsApprovalRequestsDismissCall) Header

Header returns an http.Header that can be modified by the caller to add HTTP headers to the request.

type OrganizationsApprovalRequestsGetCall

type OrganizationsApprovalRequestsGetCall struct {
	// contains filtered or unexported fields
}

func (*OrganizationsApprovalRequestsGetCall) Context

Context sets the context to be used in this call's Do method. Any pending HTTP request will be aborted if the provided context is canceled.

func (*OrganizationsApprovalRequestsGetCall) Do

Do executes the "accessapproval.organizations.approvalRequests.get" call. Exactly one of *ApprovalRequest or error will be non-nil. Any non-2xx status code is an error. Response headers are in either *ApprovalRequest.ServerResponse.Header or (if a response was returned at all) in error.(*googleapi.Error).Header. Use googleapi.IsNotModified to check whether the returned error was because http.StatusNotModified was returned.

func (*OrganizationsApprovalRequestsGetCall) Fields

Fields allows partial responses to be retrieved. See https://developers.google.com/gdata/docs/2.0/basics#PartialResponse for more information.

func (*OrganizationsApprovalRequestsGetCall) Header

Header returns an http.Header that can be modified by the caller to add HTTP headers to the request.

func (*OrganizationsApprovalRequestsGetCall) IfNoneMatch

IfNoneMatch sets the optional parameter which makes the operation fail if the object's ETag matches the given value. This is useful for getting updates only after the object has changed since the last request. Use googleapi.IsNotModified to check whether the response error from Do is the result of In-None-Match.

type OrganizationsApprovalRequestsInvalidateCall

type OrganizationsApprovalRequestsInvalidateCall struct {
	// contains filtered or unexported fields
}

func (*OrganizationsApprovalRequestsInvalidateCall) Context

Context sets the context to be used in this call's Do method. Any pending HTTP request will be aborted if the provided context is canceled.

func (*OrganizationsApprovalRequestsInvalidateCall) Do

Do executes the "accessapproval.organizations.approvalRequests.invalidate" call. Exactly one of *ApprovalRequest or error will be non-nil. Any non-2xx status code is an error. Response headers are in either *ApprovalRequest.ServerResponse.Header or (if a response was returned at all) in error.(*googleapi.Error).Header. Use googleapi.IsNotModified to check whether the returned error was because http.StatusNotModified was returned.

func (*OrganizationsApprovalRequestsInvalidateCall) Fields

Fields allows partial responses to be retrieved. See https://developers.google.com/gdata/docs/2.0/basics#PartialResponse for more information.

func (*OrganizationsApprovalRequestsInvalidateCall) Header

Header returns an http.Header that can be modified by the caller to add HTTP headers to the request.

type OrganizationsApprovalRequestsListCall

type OrganizationsApprovalRequestsListCall struct {
	// contains filtered or unexported fields
}

func (*OrganizationsApprovalRequestsListCall) Context

Context sets the context to be used in this call's Do method. Any pending HTTP request will be aborted if the provided context is canceled.

func (*OrganizationsApprovalRequestsListCall) Do

Do executes the "accessapproval.organizations.approvalRequests.list" call. Exactly one of *ListApprovalRequestsResponse or error will be non-nil. Any non-2xx status code is an error. Response headers are in either *ListApprovalRequestsResponse.ServerResponse.Header or (if a response was returned at all) in error.(*googleapi.Error).Header. Use googleapi.IsNotModified to check whether the returned error was because http.StatusNotModified was returned.

func (*OrganizationsApprovalRequestsListCall) Fields

Fields allows partial responses to be retrieved. See https://developers.google.com/gdata/docs/2.0/basics#PartialResponse for more information.

func (*OrganizationsApprovalRequestsListCall) Filter

Filter sets the optional parameter "filter": A filter on the type of approval requests to retrieve. Must be one of the following values: * [not set]: Requests that are pending or have active approvals. * ALL: All requests. * PENDING: Only pending requests. * ACTIVE: Only active (i.e. currently approved) requests. * DISMISSED: Only requests that have been dismissed, or requests that are not approved and past expiration. * EXPIRED: Only requests that have been approved, and the approval has expired. * HISTORY: Active, dismissed and expired requests.

func (*OrganizationsApprovalRequestsListCall) Header

Header returns an http.Header that can be modified by the caller to add HTTP headers to the request.

func (*OrganizationsApprovalRequestsListCall) IfNoneMatch

IfNoneMatch sets the optional parameter which makes the operation fail if the object's ETag matches the given value. This is useful for getting updates only after the object has changed since the last request. Use googleapi.IsNotModified to check whether the response error from Do is the result of In-None-Match.

func (*OrganizationsApprovalRequestsListCall) PageSize

PageSize sets the optional parameter "pageSize": Requested page size.

func (*OrganizationsApprovalRequestsListCall) PageToken

PageToken sets the optional parameter "pageToken": A token identifying the page of results to return.

func (*OrganizationsApprovalRequestsListCall) Pages

Pages invokes f for each page of results. A non-nil error returned from f will halt the iteration. The provided context supersedes any context provided to the Context method.

type OrganizationsApprovalRequestsService

type OrganizationsApprovalRequestsService struct {
	// contains filtered or unexported fields
}

func NewOrganizationsApprovalRequestsService

func NewOrganizationsApprovalRequestsService(s *Service) *OrganizationsApprovalRequestsService

func (*OrganizationsApprovalRequestsService) Approve

Approve: Approves a request and returns the updated ApprovalRequest. Returns NOT_FOUND if the request does not exist. Returns FAILED_PRECONDITION if the request exists but is not in a pending state.

- name: Name of the approval request to approve.

func (*OrganizationsApprovalRequestsService) Dismiss

Dismiss: Dismisses a request. Returns the updated ApprovalRequest. NOTE: This does not deny access to the resource if another request has been made and approved. It is equivalent in effect to ignoring the request altogether. Returns NOT_FOUND if the request does not exist. Returns FAILED_PRECONDITION if the request exists but is not in a pending state.

- name: Name of the ApprovalRequest to dismiss.

func (*OrganizationsApprovalRequestsService) Get

Get: Gets an approval request. Returns NOT_FOUND if the request does not exist.

  • name: The name of the approval request to retrieve. Format: "{projects|folders|organizations}/{id}/approvalRequests/{approval_re quest}".

func (*OrganizationsApprovalRequestsService) Invalidate

Invalidate: Invalidates an existing ApprovalRequest. Returns the updated ApprovalRequest. NOTE: This does not deny access to the resource if another request has been made and approved. It only invalidates a single approval. Returns FAILED_PRECONDITION if the request exists but is not in an approved state.

- name: Name of the ApprovalRequest to invalidate.

func (*OrganizationsApprovalRequestsService) List

List: Lists approval requests associated with a project, folder, or organization. Approval requests can be filtered by state (pending, active, dismissed). The order is reverse chronological.

  • parent: The parent resource. This may be "projects/{project}", "folders/{folder}", or "organizations/{organization}".

type OrganizationsDeleteAccessApprovalSettingsCall

type OrganizationsDeleteAccessApprovalSettingsCall struct {
	// contains filtered or unexported fields
}

func (*OrganizationsDeleteAccessApprovalSettingsCall) Context

Context sets the context to be used in this call's Do method. Any pending HTTP request will be aborted if the provided context is canceled.

func (*OrganizationsDeleteAccessApprovalSettingsCall) Do

Do executes the "accessapproval.organizations.deleteAccessApprovalSettings" call. Exactly one of *Empty or error will be non-nil. Any non-2xx status code is an error. Response headers are in either *Empty.ServerResponse.Header or (if a response was returned at all) in error.(*googleapi.Error).Header. Use googleapi.IsNotModified to check whether the returned error was because http.StatusNotModified was returned.

func (*OrganizationsDeleteAccessApprovalSettingsCall) Fields

Fields allows partial responses to be retrieved. See https://developers.google.com/gdata/docs/2.0/basics#PartialResponse for more information.

func (*OrganizationsDeleteAccessApprovalSettingsCall) Header

Header returns an http.Header that can be modified by the caller to add HTTP headers to the request.

type OrganizationsGetAccessApprovalSettingsCall

type OrganizationsGetAccessApprovalSettingsCall struct {
	// contains filtered or unexported fields
}

func (*OrganizationsGetAccessApprovalSettingsCall) Context

Context sets the context to be used in this call's Do method. Any pending HTTP request will be aborted if the provided context is canceled.

func (*OrganizationsGetAccessApprovalSettingsCall) Do

Do executes the "accessapproval.organizations.getAccessApprovalSettings" call. Exactly one of *AccessApprovalSettings or error will be non-nil. Any non-2xx status code is an error. Response headers are in either *AccessApprovalSettings.ServerResponse.Header or (if a response was returned at all) in error.(*googleapi.Error).Header. Use googleapi.IsNotModified to check whether the returned error was because http.StatusNotModified was returned.

func (*OrganizationsGetAccessApprovalSettingsCall) Fields

Fields allows partial responses to be retrieved. See https://developers.google.com/gdata/docs/2.0/basics#PartialResponse for more information.

func (*OrganizationsGetAccessApprovalSettingsCall) Header

Header returns an http.Header that can be modified by the caller to add HTTP headers to the request.

func (*OrganizationsGetAccessApprovalSettingsCall) IfNoneMatch

IfNoneMatch sets the optional parameter which makes the operation fail if the object's ETag matches the given value. This is useful for getting updates only after the object has changed since the last request. Use googleapi.IsNotModified to check whether the response error from Do is the result of In-None-Match.

type OrganizationsGetServiceAccountCall

type OrganizationsGetServiceAccountCall struct {
	// contains filtered or unexported fields
}

func (*OrganizationsGetServiceAccountCall) Context

Context sets the context to be used in this call's Do method. Any pending HTTP request will be aborted if the provided context is canceled.

func (*OrganizationsGetServiceAccountCall) Do

Do executes the "accessapproval.organizations.getServiceAccount" call. Exactly one of *AccessApprovalServiceAccount or error will be non-nil. Any non-2xx status code is an error. Response headers are in either *AccessApprovalServiceAccount.ServerResponse.Header or (if a response was returned at all) in error.(*googleapi.Error).Header. Use googleapi.IsNotModified to check whether the returned error was because http.StatusNotModified was returned.

func (*OrganizationsGetServiceAccountCall) Fields

Fields allows partial responses to be retrieved. See https://developers.google.com/gdata/docs/2.0/basics#PartialResponse for more information.

func (*OrganizationsGetServiceAccountCall) Header

Header returns an http.Header that can be modified by the caller to add HTTP headers to the request.

func (*OrganizationsGetServiceAccountCall) IfNoneMatch

IfNoneMatch sets the optional parameter which makes the operation fail if the object's ETag matches the given value. This is useful for getting updates only after the object has changed since the last request. Use googleapi.IsNotModified to check whether the response error from Do is the result of In-None-Match.

type OrganizationsService

type OrganizationsService struct {
	ApprovalRequests *OrganizationsApprovalRequestsService
	// contains filtered or unexported fields
}

func NewOrganizationsService

func NewOrganizationsService(s *Service) *OrganizationsService

func (*OrganizationsService) DeleteAccessApprovalSettings

func (r *OrganizationsService) DeleteAccessApprovalSettings(name string) *OrganizationsDeleteAccessApprovalSettingsCall

DeleteAccessApprovalSettings: Deletes the settings associated with a project, folder, or organization. This will have the effect of disabling Access Approval for the project, folder, or organization, but only if all ancestors also have Access Approval disabled. If Access Approval is enabled at a higher level of the hierarchy, then Access Approval will still be enabled at this level as the settings are inherited.

- name: Name of the AccessApprovalSettings to delete.

func (*OrganizationsService) GetAccessApprovalSettings

func (r *OrganizationsService) GetAccessApprovalSettings(name string) *OrganizationsGetAccessApprovalSettingsCall

GetAccessApprovalSettings: Gets the settings associated with a project, folder, or organization.

  • name: The name of the AccessApprovalSettings to retrieve. Format: "{projects|folders|organizations}/{id}/accessApprovalSettings".

func (*OrganizationsService) GetServiceAccount

GetServiceAccount: Retrieves the service account that is used by Access Approval to access KMS keys for signing approved approval requests.

- name: Name of the AccessApprovalServiceAccount to retrieve.

func (*OrganizationsService) UpdateAccessApprovalSettings

func (r *OrganizationsService) UpdateAccessApprovalSettings(name string, accessapprovalsettings *AccessApprovalSettings) *OrganizationsUpdateAccessApprovalSettingsCall

UpdateAccessApprovalSettings: Updates the settings associated with a project, folder, or organization. Settings to update are determined by the value of field_mask.

  • name: The resource name of the settings. Format is one of: * "projects/{project}/accessApprovalSettings" * "folders/{folder}/accessApprovalSettings" * "organizations/{organization}/accessApprovalSettings".

type OrganizationsUpdateAccessApprovalSettingsCall

type OrganizationsUpdateAccessApprovalSettingsCall struct {
	// contains filtered or unexported fields
}

func (*OrganizationsUpdateAccessApprovalSettingsCall) Context

Context sets the context to be used in this call's Do method. Any pending HTTP request will be aborted if the provided context is canceled.

func (*OrganizationsUpdateAccessApprovalSettingsCall) Do

Do executes the "accessapproval.organizations.updateAccessApprovalSettings" call. Exactly one of *AccessApprovalSettings or error will be non-nil. Any non-2xx status code is an error. Response headers are in either *AccessApprovalSettings.ServerResponse.Header or (if a response was returned at all) in error.(*googleapi.Error).Header. Use googleapi.IsNotModified to check whether the returned error was because http.StatusNotModified was returned.

func (*OrganizationsUpdateAccessApprovalSettingsCall) Fields

Fields allows partial responses to be retrieved. See https://developers.google.com/gdata/docs/2.0/basics#PartialResponse for more information.

func (*OrganizationsUpdateAccessApprovalSettingsCall) Header

Header returns an http.Header that can be modified by the caller to add HTTP headers to the request.

func (*OrganizationsUpdateAccessApprovalSettingsCall) UpdateMask

UpdateMask sets the optional parameter "updateMask": The update mask applies to the settings. Only the top level fields of AccessApprovalSettings (notification_emails & enrolled_services) are supported. For each field, if it is included, the currently stored value will be entirely overwritten with the value of the field passed in this request. For the `FieldMask` definition, see https://developers.google.com/protocol-buffers/docs/reference/google.protobuf#fieldmask If this field is left unset, only the notification_emails field will be updated.

type ProjectsApprovalRequestsApproveCall

type ProjectsApprovalRequestsApproveCall struct {
	// contains filtered or unexported fields
}

func (*ProjectsApprovalRequestsApproveCall) Context

Context sets the context to be used in this call's Do method. Any pending HTTP request will be aborted if the provided context is canceled.

func (*ProjectsApprovalRequestsApproveCall) Do

Do executes the "accessapproval.projects.approvalRequests.approve" call. Exactly one of *ApprovalRequest or error will be non-nil. Any non-2xx status code is an error. Response headers are in either *ApprovalRequest.ServerResponse.Header or (if a response was returned at all) in error.(*googleapi.Error).Header. Use googleapi.IsNotModified to check whether the returned error was because http.StatusNotModified was returned.

func (*ProjectsApprovalRequestsApproveCall) Fields

Fields allows partial responses to be retrieved. See https://developers.google.com/gdata/docs/2.0/basics#PartialResponse for more information.

func (*ProjectsApprovalRequestsApproveCall) Header

Header returns an http.Header that can be modified by the caller to add HTTP headers to the request.

type ProjectsApprovalRequestsDismissCall

type ProjectsApprovalRequestsDismissCall struct {
	// contains filtered or unexported fields
}

func (*ProjectsApprovalRequestsDismissCall) Context

Context sets the context to be used in this call's Do method. Any pending HTTP request will be aborted if the provided context is canceled.

func (*ProjectsApprovalRequestsDismissCall) Do

Do executes the "accessapproval.projects.approvalRequests.dismiss" call. Exactly one of *ApprovalRequest or error will be non-nil. Any non-2xx status code is an error. Response headers are in either *ApprovalRequest.ServerResponse.Header or (if a response was returned at all) in error.(*googleapi.Error).Header. Use googleapi.IsNotModified to check whether the returned error was because http.StatusNotModified was returned.

func (*ProjectsApprovalRequestsDismissCall) Fields

Fields allows partial responses to be retrieved. See https://developers.google.com/gdata/docs/2.0/basics#PartialResponse for more information.

func (*ProjectsApprovalRequestsDismissCall) Header

Header returns an http.Header that can be modified by the caller to add HTTP headers to the request.

type ProjectsApprovalRequestsGetCall

type ProjectsApprovalRequestsGetCall struct {
	// contains filtered or unexported fields
}

func (*ProjectsApprovalRequestsGetCall) Context

Context sets the context to be used in this call's Do method. Any pending HTTP request will be aborted if the provided context is canceled.

func (*ProjectsApprovalRequestsGetCall) Do

Do executes the "accessapproval.projects.approvalRequests.get" call. Exactly one of *ApprovalRequest or error will be non-nil. Any non-2xx status code is an error. Response headers are in either *ApprovalRequest.ServerResponse.Header or (if a response was returned at all) in error.(*googleapi.Error).Header. Use googleapi.IsNotModified to check whether the returned error was because http.StatusNotModified was returned.

func (*ProjectsApprovalRequestsGetCall) Fields

Fields allows partial responses to be retrieved. See https://developers.google.com/gdata/docs/2.0/basics#PartialResponse for more information.

func (*ProjectsApprovalRequestsGetCall) Header

Header returns an http.Header that can be modified by the caller to add HTTP headers to the request.

func (*ProjectsApprovalRequestsGetCall) IfNoneMatch

IfNoneMatch sets the optional parameter which makes the operation fail if the object's ETag matches the given value. This is useful for getting updates only after the object has changed since the last request. Use googleapi.IsNotModified to check whether the response error from Do is the result of In-None-Match.

type ProjectsApprovalRequestsInvalidateCall

type ProjectsApprovalRequestsInvalidateCall struct {
	// contains filtered or unexported fields
}

func (*ProjectsApprovalRequestsInvalidateCall) Context

Context sets the context to be used in this call's Do method. Any pending HTTP request will be aborted if the provided context is canceled.

func (*ProjectsApprovalRequestsInvalidateCall) Do

Do executes the "accessapproval.projects.approvalRequests.invalidate" call. Exactly one of *ApprovalRequest or error will be non-nil. Any non-2xx status code is an error. Response headers are in either *ApprovalRequest.ServerResponse.Header or (if a response was returned at all) in error.(*googleapi.Error).Header. Use googleapi.IsNotModified to check whether the returned error was because http.StatusNotModified was returned.

func (*ProjectsApprovalRequestsInvalidateCall) Fields

Fields allows partial responses to be retrieved. See https://developers.google.com/gdata/docs/2.0/basics#PartialResponse for more information.

func (*ProjectsApprovalRequestsInvalidateCall) Header

Header returns an http.Header that can be modified by the caller to add HTTP headers to the request.

type ProjectsApprovalRequestsListCall

type ProjectsApprovalRequestsListCall struct {
	// contains filtered or unexported fields
}

func (*ProjectsApprovalRequestsListCall) Context

Context sets the context to be used in this call's Do method. Any pending HTTP request will be aborted if the provided context is canceled.

func (*ProjectsApprovalRequestsListCall) Do

Do executes the "accessapproval.projects.approvalRequests.list" call. Exactly one of *ListApprovalRequestsResponse or error will be non-nil. Any non-2xx status code is an error. Response headers are in either *ListApprovalRequestsResponse.ServerResponse.Header or (if a response was returned at all) in error.(*googleapi.Error).Header. Use googleapi.IsNotModified to check whether the returned error was because http.StatusNotModified was returned.

func (*ProjectsApprovalRequestsListCall) Fields

Fields allows partial responses to be retrieved. See https://developers.google.com/gdata/docs/2.0/basics#PartialResponse for more information.

func (*ProjectsApprovalRequestsListCall) Filter

Filter sets the optional parameter "filter": A filter on the type of approval requests to retrieve. Must be one of the following values: * [not set]: Requests that are pending or have active approvals. * ALL: All requests. * PENDING: Only pending requests. * ACTIVE: Only active (i.e. currently approved) requests. * DISMISSED: Only requests that have been dismissed, or requests that are not approved and past expiration. * EXPIRED: Only requests that have been approved, and the approval has expired. * HISTORY: Active, dismissed and expired requests.

func (*ProjectsApprovalRequestsListCall) Header

Header returns an http.Header that can be modified by the caller to add HTTP headers to the request.

func (*ProjectsApprovalRequestsListCall) IfNoneMatch

IfNoneMatch sets the optional parameter which makes the operation fail if the object's ETag matches the given value. This is useful for getting updates only after the object has changed since the last request. Use googleapi.IsNotModified to check whether the response error from Do is the result of In-None-Match.

func (*ProjectsApprovalRequestsListCall) PageSize

PageSize sets the optional parameter "pageSize": Requested page size.

func (*ProjectsApprovalRequestsListCall) PageToken

PageToken sets the optional parameter "pageToken": A token identifying the page of results to return.

func (*ProjectsApprovalRequestsListCall) Pages

Pages invokes f for each page of results. A non-nil error returned from f will halt the iteration. The provided context supersedes any context provided to the Context method.

type ProjectsApprovalRequestsService

type ProjectsApprovalRequestsService struct {
	// contains filtered or unexported fields
}

func NewProjectsApprovalRequestsService

func NewProjectsApprovalRequestsService(s *Service) *ProjectsApprovalRequestsService

func (*ProjectsApprovalRequestsService) Approve

Approve: Approves a request and returns the updated ApprovalRequest. Returns NOT_FOUND if the request does not exist. Returns FAILED_PRECONDITION if the request exists but is not in a pending state.

- name: Name of the approval request to approve.

func (*ProjectsApprovalRequestsService) Dismiss

Dismiss: Dismisses a request. Returns the updated ApprovalRequest. NOTE: This does not deny access to the resource if another request has been made and approved. It is equivalent in effect to ignoring the request altogether. Returns NOT_FOUND if the request does not exist. Returns FAILED_PRECONDITION if the request exists but is not in a pending state.

- name: Name of the ApprovalRequest to dismiss.

func (*ProjectsApprovalRequestsService) Get

Get: Gets an approval request. Returns NOT_FOUND if the request does not exist.

  • name: The name of the approval request to retrieve. Format: "{projects|folders|organizations}/{id}/approvalRequests/{approval_re quest}".

func (*ProjectsApprovalRequestsService) Invalidate

Invalidate: Invalidates an existing ApprovalRequest. Returns the updated ApprovalRequest. NOTE: This does not deny access to the resource if another request has been made and approved. It only invalidates a single approval. Returns FAILED_PRECONDITION if the request exists but is not in an approved state.

- name: Name of the ApprovalRequest to invalidate.

func (*ProjectsApprovalRequestsService) List

List: Lists approval requests associated with a project, folder, or organization. Approval requests can be filtered by state (pending, active, dismissed). The order is reverse chronological.

  • parent: The parent resource. This may be "projects/{project}", "folders/{folder}", or "organizations/{organization}".

type ProjectsDeleteAccessApprovalSettingsCall

type ProjectsDeleteAccessApprovalSettingsCall struct {
	// contains filtered or unexported fields
}

func (*ProjectsDeleteAccessApprovalSettingsCall) Context

Context sets the context to be used in this call's Do method. Any pending HTTP request will be aborted if the provided context is canceled.

func (*ProjectsDeleteAccessApprovalSettingsCall) Do

Do executes the "accessapproval.projects.deleteAccessApprovalSettings" call. Exactly one of *Empty or error will be non-nil. Any non-2xx status code is an error. Response headers are in either *Empty.ServerResponse.Header or (if a response was returned at all) in error.(*googleapi.Error).Header. Use googleapi.IsNotModified to check whether the returned error was because http.StatusNotModified was returned.

func (*ProjectsDeleteAccessApprovalSettingsCall) Fields

Fields allows partial responses to be retrieved. See https://developers.google.com/gdata/docs/2.0/basics#PartialResponse for more information.

func (*ProjectsDeleteAccessApprovalSettingsCall) Header

Header returns an http.Header that can be modified by the caller to add HTTP headers to the request.

type ProjectsGetAccessApprovalSettingsCall

type ProjectsGetAccessApprovalSettingsCall struct {
	// contains filtered or unexported fields
}

func (*ProjectsGetAccessApprovalSettingsCall) Context

Context sets the context to be used in this call's Do method. Any pending HTTP request will be aborted if the provided context is canceled.

func (*ProjectsGetAccessApprovalSettingsCall) Do

Do executes the "accessapproval.projects.getAccessApprovalSettings" call. Exactly one of *AccessApprovalSettings or error will be non-nil. Any non-2xx status code is an error. Response headers are in either *AccessApprovalSettings.ServerResponse.Header or (if a response was returned at all) in error.(*googleapi.Error).Header. Use googleapi.IsNotModified to check whether the returned error was because http.StatusNotModified was returned.

func (*ProjectsGetAccessApprovalSettingsCall) Fields

Fields allows partial responses to be retrieved. See https://developers.google.com/gdata/docs/2.0/basics#PartialResponse for more information.

func (*ProjectsGetAccessApprovalSettingsCall) Header

Header returns an http.Header that can be modified by the caller to add HTTP headers to the request.

func (*ProjectsGetAccessApprovalSettingsCall) IfNoneMatch

IfNoneMatch sets the optional parameter which makes the operation fail if the object's ETag matches the given value. This is useful for getting updates only after the object has changed since the last request. Use googleapi.IsNotModified to check whether the response error from Do is the result of In-None-Match.

type ProjectsGetServiceAccountCall

type ProjectsGetServiceAccountCall struct {
	// contains filtered or unexported fields
}

func (*ProjectsGetServiceAccountCall) Context

Context sets the context to be used in this call's Do method. Any pending HTTP request will be aborted if the provided context is canceled.

func (*ProjectsGetServiceAccountCall) Do

Do executes the "accessapproval.projects.getServiceAccount" call. Exactly one of *AccessApprovalServiceAccount or error will be non-nil. Any non-2xx status code is an error. Response headers are in either *AccessApprovalServiceAccount.ServerResponse.Header or (if a response was returned at all) in error.(*googleapi.Error).Header. Use googleapi.IsNotModified to check whether the returned error was because http.StatusNotModified was returned.

func (*ProjectsGetServiceAccountCall) Fields

Fields allows partial responses to be retrieved. See https://developers.google.com/gdata/docs/2.0/basics#PartialResponse for more information.

func (*ProjectsGetServiceAccountCall) Header

Header returns an http.Header that can be modified by the caller to add HTTP headers to the request.

func (*ProjectsGetServiceAccountCall) IfNoneMatch

IfNoneMatch sets the optional parameter which makes the operation fail if the object's ETag matches the given value. This is useful for getting updates only after the object has changed since the last request. Use googleapi.IsNotModified to check whether the response error from Do is the result of In-None-Match.

type ProjectsService

type ProjectsService struct {
	ApprovalRequests *ProjectsApprovalRequestsService
	// contains filtered or unexported fields
}

func NewProjectsService

func NewProjectsService(s *Service) *ProjectsService

func (*ProjectsService) DeleteAccessApprovalSettings

func (r *ProjectsService) DeleteAccessApprovalSettings(name string) *ProjectsDeleteAccessApprovalSettingsCall

DeleteAccessApprovalSettings: Deletes the settings associated with a project, folder, or organization. This will have the effect of disabling Access Approval for the project, folder, or organization, but only if all ancestors also have Access Approval disabled. If Access Approval is enabled at a higher level of the hierarchy, then Access Approval will still be enabled at this level as the settings are inherited.

- name: Name of the AccessApprovalSettings to delete.

func (*ProjectsService) GetAccessApprovalSettings

func (r *ProjectsService) GetAccessApprovalSettings(name string) *ProjectsGetAccessApprovalSettingsCall

GetAccessApprovalSettings: Gets the settings associated with a project, folder, or organization.

  • name: The name of the AccessApprovalSettings to retrieve. Format: "{projects|folders|organizations}/{id}/accessApprovalSettings".

func (*ProjectsService) GetServiceAccount

func (r *ProjectsService) GetServiceAccount(name string) *ProjectsGetServiceAccountCall

GetServiceAccount: Retrieves the service account that is used by Access Approval to access KMS keys for signing approved approval requests.

- name: Name of the AccessApprovalServiceAccount to retrieve.

func (*ProjectsService) UpdateAccessApprovalSettings

func (r *ProjectsService) UpdateAccessApprovalSettings(name string, accessapprovalsettings *AccessApprovalSettings) *ProjectsUpdateAccessApprovalSettingsCall

UpdateAccessApprovalSettings: Updates the settings associated with a project, folder, or organization. Settings to update are determined by the value of field_mask.

  • name: The resource name of the settings. Format is one of: * "projects/{project}/accessApprovalSettings" * "folders/{folder}/accessApprovalSettings" * "organizations/{organization}/accessApprovalSettings".

type ProjectsUpdateAccessApprovalSettingsCall

type ProjectsUpdateAccessApprovalSettingsCall struct {
	// contains filtered or unexported fields
}

func (*ProjectsUpdateAccessApprovalSettingsCall) Context

Context sets the context to be used in this call's Do method. Any pending HTTP request will be aborted if the provided context is canceled.

func (*ProjectsUpdateAccessApprovalSettingsCall) Do

Do executes the "accessapproval.projects.updateAccessApprovalSettings" call. Exactly one of *AccessApprovalSettings or error will be non-nil. Any non-2xx status code is an error. Response headers are in either *AccessApprovalSettings.ServerResponse.Header or (if a response was returned at all) in error.(*googleapi.Error).Header. Use googleapi.IsNotModified to check whether the returned error was because http.StatusNotModified was returned.

func (*ProjectsUpdateAccessApprovalSettingsCall) Fields

Fields allows partial responses to be retrieved. See https://developers.google.com/gdata/docs/2.0/basics#PartialResponse for more information.

func (*ProjectsUpdateAccessApprovalSettingsCall) Header

Header returns an http.Header that can be modified by the caller to add HTTP headers to the request.

func (*ProjectsUpdateAccessApprovalSettingsCall) UpdateMask

UpdateMask sets the optional parameter "updateMask": The update mask applies to the settings. Only the top level fields of AccessApprovalSettings (notification_emails & enrolled_services) are supported. For each field, if it is included, the currently stored value will be entirely overwritten with the value of the field passed in this request. For the `FieldMask` definition, see https://developers.google.com/protocol-buffers/docs/reference/google.protobuf#fieldmask If this field is left unset, only the notification_emails field will be updated.

type ResourceProperties

type ResourceProperties struct {
	// ExcludesDescendants: Whether an approval will exclude the descendants
	// of the resource being requested.
	ExcludesDescendants bool `json:"excludesDescendants,omitempty"`

	// ForceSendFields is a list of field names (e.g. "ExcludesDescendants")
	// to unconditionally include in API requests. By default, fields with
	// empty or default values are omitted from API requests. However, any
	// non-pointer, non-interface field appearing in ForceSendFields will be
	// sent to the server regardless of whether the field is empty or not.
	// This may be used to include empty fields in Patch requests.
	ForceSendFields []string `json:"-"`

	// NullFields is a list of field names (e.g. "ExcludesDescendants") to
	// include in API requests with the JSON null value. By default, fields
	// with empty values are omitted from API requests. However, any field
	// with an empty value appearing in NullFields will be sent to the
	// server as null. It is an error if a field in this list has a
	// non-empty value. This may be used to include null fields in Patch
	// requests.
	NullFields []string `json:"-"`
}

ResourceProperties: The properties associated with the resource of the request.

func (*ResourceProperties) MarshalJSON

func (s *ResourceProperties) MarshalJSON() ([]byte, error)

type Service

type Service struct {
	BasePath  string // API endpoint base URL
	UserAgent string // optional additional User-Agent fragment

	Folders *FoldersService

	Organizations *OrganizationsService

	Projects *ProjectsService
	// contains filtered or unexported fields
}

func New deprecated

func New(client *http.Client) (*Service, error)

New creates a new Service. It uses the provided http.Client for requests.

Deprecated: please use NewService instead. To provide a custom HTTP client, use option.WithHTTPClient. If you are using google.golang.org/api/googleapis/transport.APIKey, use option.WithAPIKey with NewService instead.

func NewService

func NewService(ctx context.Context, opts ...option.ClientOption) (*Service, error)

NewService creates a new Service.

type SignatureInfo

type SignatureInfo struct {
	// CustomerKmsKeyVersion: The resource name of the customer
	// CryptoKeyVersion used for signing.
	CustomerKmsKeyVersion string `json:"customerKmsKeyVersion,omitempty"`

	// GoogleKeyAlgorithm: The hashing algorithm used for signature
	// verification. It will only be present in the case of Google managed
	// keys.
	//
	// Possible values:
	//   "CRYPTO_KEY_VERSION_ALGORITHM_UNSPECIFIED" - Not specified.
	//   "GOOGLE_SYMMETRIC_ENCRYPTION" - Creates symmetric encryption keys.
	//   "AES_128_GCM" - AES-GCM (Galois Counter Mode) using 128-bit keys.
	//   "AES_256_GCM" - AES-GCM (Galois Counter Mode) using 256-bit keys.
	//   "AES_128_CBC" - AES-CBC (Cipher Block Chaining Mode) using 128-bit
	// keys.
	//   "AES_256_CBC" - AES-CBC (Cipher Block Chaining Mode) using 256-bit
	// keys.
	//   "AES_128_CTR" - AES-CTR (Counter Mode) using 128-bit keys.
	//   "AES_256_CTR" - AES-CTR (Counter Mode) using 256-bit keys.
	//   "RSA_SIGN_PSS_2048_SHA256" - RSASSA-PSS 2048 bit key with a SHA256
	// digest.
	//   "RSA_SIGN_PSS_3072_SHA256" - RSASSA-PSS 3072 bit key with a SHA256
	// digest.
	//   "RSA_SIGN_PSS_4096_SHA256" - RSASSA-PSS 4096 bit key with a SHA256
	// digest.
	//   "RSA_SIGN_PSS_4096_SHA512" - RSASSA-PSS 4096 bit key with a SHA512
	// digest.
	//   "RSA_SIGN_PKCS1_2048_SHA256" - RSASSA-PKCS1-v1_5 with a 2048 bit
	// key and a SHA256 digest.
	//   "RSA_SIGN_PKCS1_3072_SHA256" - RSASSA-PKCS1-v1_5 with a 3072 bit
	// key and a SHA256 digest.
	//   "RSA_SIGN_PKCS1_4096_SHA256" - RSASSA-PKCS1-v1_5 with a 4096 bit
	// key and a SHA256 digest.
	//   "RSA_SIGN_PKCS1_4096_SHA512" - RSASSA-PKCS1-v1_5 with a 4096 bit
	// key and a SHA512 digest.
	//   "RSA_SIGN_RAW_PKCS1_2048" - RSASSA-PKCS1-v1_5 signing without
	// encoding, with a 2048 bit key.
	//   "RSA_SIGN_RAW_PKCS1_3072" - RSASSA-PKCS1-v1_5 signing without
	// encoding, with a 3072 bit key.
	//   "RSA_SIGN_RAW_PKCS1_4096" - RSASSA-PKCS1-v1_5 signing without
	// encoding, with a 4096 bit key.
	//   "RSA_DECRYPT_OAEP_2048_SHA256" - RSAES-OAEP 2048 bit key with a
	// SHA256 digest.
	//   "RSA_DECRYPT_OAEP_3072_SHA256" - RSAES-OAEP 3072 bit key with a
	// SHA256 digest.
	//   "RSA_DECRYPT_OAEP_4096_SHA256" - RSAES-OAEP 4096 bit key with a
	// SHA256 digest.
	//   "RSA_DECRYPT_OAEP_4096_SHA512" - RSAES-OAEP 4096 bit key with a
	// SHA512 digest.
	//   "RSA_DECRYPT_OAEP_2048_SHA1" - RSAES-OAEP 2048 bit key with a SHA1
	// digest.
	//   "RSA_DECRYPT_OAEP_3072_SHA1" - RSAES-OAEP 3072 bit key with a SHA1
	// digest.
	//   "RSA_DECRYPT_OAEP_4096_SHA1" - RSAES-OAEP 4096 bit key with a SHA1
	// digest.
	//   "EC_SIGN_P256_SHA256" - ECDSA on the NIST P-256 curve with a SHA256
	// digest. Other hash functions can also be used:
	// https://cloud.google.com/kms/docs/create-validate-signatures#ecdsa_support_for_other_hash_algorithms
	//   "EC_SIGN_P384_SHA384" - ECDSA on the NIST P-384 curve with a SHA384
	// digest. Other hash functions can also be used:
	// https://cloud.google.com/kms/docs/create-validate-signatures#ecdsa_support_for_other_hash_algorithms
	//   "EC_SIGN_SECP256K1_SHA256" - ECDSA on the non-NIST secp256k1 curve.
	// This curve is only supported for HSM protection level. Other hash
	// functions can also be used:
	// https://cloud.google.com/kms/docs/create-validate-signatures#ecdsa_support_for_other_hash_algorithms
	//   "HMAC_SHA256" - HMAC-SHA256 signing with a 256 bit key.
	//   "HMAC_SHA1" - HMAC-SHA1 signing with a 160 bit key.
	//   "HMAC_SHA384" - HMAC-SHA384 signing with a 384 bit key.
	//   "HMAC_SHA512" - HMAC-SHA512 signing with a 512 bit key.
	//   "HMAC_SHA224" - HMAC-SHA224 signing with a 224 bit key.
	//   "EXTERNAL_SYMMETRIC_ENCRYPTION" - Algorithm representing symmetric
	// encryption by an external key manager.
	GoogleKeyAlgorithm string `json:"googleKeyAlgorithm,omitempty"`

	// GooglePublicKeyPem: The public key for the Google default signing,
	// encoded in PEM format. The signature was created using a private key
	// which may be verified using this public key.
	GooglePublicKeyPem string `json:"googlePublicKeyPem,omitempty"`

	// SerializedApprovalRequest: The ApprovalRequest that is serialized
	// without the SignatureInfo message field. This data is used with the
	// hashing algorithm to generate the digital signature, and it can be
	// used for signature verification.
	SerializedApprovalRequest string `json:"serializedApprovalRequest,omitempty"`

	// Signature: The digital signature.
	Signature string `json:"signature,omitempty"`

	// ForceSendFields is a list of field names (e.g.
	// "CustomerKmsKeyVersion") to unconditionally include in API requests.
	// By default, fields with empty or default values are omitted from API
	// requests. However, any non-pointer, non-interface field appearing in
	// ForceSendFields will be sent to the server regardless of whether the
	// field is empty or not. This may be used to include empty fields in
	// Patch requests.
	ForceSendFields []string `json:"-"`

	// NullFields is a list of field names (e.g. "CustomerKmsKeyVersion") to
	// include in API requests with the JSON null value. By default, fields
	// with empty values are omitted from API requests. However, any field
	// with an empty value appearing in NullFields will be sent to the
	// server as null. It is an error if a field in this list has a
	// non-empty value. This may be used to include null fields in Patch
	// requests.
	NullFields []string `json:"-"`
}

SignatureInfo: Information about the digital signature of the resource.

func (*SignatureInfo) MarshalJSON

func (s *SignatureInfo) MarshalJSON() ([]byte, error)

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL