v1

package
v0.69.3 Latest Latest
Warning

This package is not in the latest version of its module.

Go to latest
Published: Aug 16, 2021 License: Apache-2.0 Imports: 21 Imported by: 6

Documentation

Overview

Package iam/v1 contains the API of Identity & Access Management services.

Package v1 is a reverse proxy.

It translates gRPC into RESTful JSON APIs.

Index

Constants

View Source
const (

	// EventTypeGroupCreated is the type of event fired after a group has been created
	// SubjectID contains the ID of the group.
	EventTypeGroupCreated = "iam.group.created"
	// EventTypeGroupUpdated is the type of event fired after a group has been updated
	// SubjectID contains the ID of the group.
	EventTypeGroupUpdated = "iam.group.updated"
	// EventTypeGroupDeleted is the type of event fired after a group has been (marked for) deleted
	// SubjectID contains the ID of the group.
	EventTypeGroupDeleted = "iam.group.deleted"

	// EventTypeGroupMemberAdded is the type of event fired after a member has been added to a group.
	// SubjectID contains the ID of the added member.
	EventTypeGroupMemberAdded = "iam.group-member.added"
	// EventTypeGroupMemberRemoved is the type of event fired after a member has been removed from a group.
	// SubjectID contains the ID of the removed member.
	EventTypeGroupMemberRemoved = "iam.group-member.removed"
)
View Source
const (

	// EventTypeRoleCreated is the type of event fired after a (custom) role has been created
	// SubjectID contains the ID of the role.
	EventTypeRoleCreated = "iam.role.created"
	// EventTypeRoleUpdated is the type of event fired after a (custom) role has been updated
	// SubjectID contains the ID of the role.
	EventTypeRoleUpdated = "iam.role.updated"
	// EventTypeRoleDeleted is the type of event fired after a (custom) role has been (marked for) deleted
	// SubjectID contains the ID of the role.
	EventTypeRoleDeleted = "iam.role.deleted"
)
View Source
const (

	// EventTypeAPIKeyCreated is the type of event fired after an API key has been created.
	// SubjectID contains the ID of the api key.
	EventTypeAPIKeyCreated = "iam.apikey.created"
	// EventTypeAPIKeyRevoked is the type of event fired after an API key has been revoked.
	// SubjectID contains the ID of the api key.
	EventTypeAPIKeyRevoked = "iam.apikey.revoked"
	// EventTypeAPIKeyDeleted is the type of event fired after an API key has been deleted.
	// SubjectID contains the ID of the api key.
	EventTypeAPIKeyDeleted = "iam.apikey.deleted"
)
View Source
const (

	// PermissionGroupList is needed for listing groups in an organization
	PermissionGroupList = "iam.group.list"
	// PermissionGroupGet is needed for fetching an individual group in an organization
	PermissionGroupGet = "iam.group.get"
	// PermissionGroupCreate is needed for create a group in an organization
	PermissionGroupCreate = "iam.group.create"
	// PermissionGroupUpdate is needed for updating a group in an organization
	PermissionGroupUpdate = "iam.group.update"
	// PermissionGroupDelete is needed for deleting a group in an organization
	PermissionGroupDelete = "iam.group.delete"
)
View Source
const (

	// PermissionRoleList is needed for listing roles in an organization
	PermissionRoleList = "iam.role.list"
	// PermissionRoleGet is needed for fetching an individual role in an organization
	PermissionRoleGet = "iam.role.get"
	// PermissionRoleCreate is needed for create a role in an organization
	PermissionRoleCreate = "iam.role.create"
	// PermissionRoleUpdate is needed for updating a role in an organization
	PermissionRoleUpdate = "iam.role.update"
	// PermissionRoleDelete is needed for deleting a role in an organization
	PermissionRoleDelete = "iam.role.delete"
)
View Source
const (

	// PermissionPolicyGet is needed for fetching an individual policy on a resource
	PermissionPolicyGet = "iam.policy.get"
	// PermissionPolicyUpdate is needed for updating a policy on a resource
	PermissionPolicyUpdate = "iam.policy.update"
)
View Source
const (

	// PermissionUserGetPersonalData is needed for fetching a personal data such as
	// mobile phone number for a user that is not the currently authenticated user.
	PermissionUserGetPersonalData = "iam.user.get-personal-data"
	// PermissionUserUpdate is needed to update the data of a user (other
	// than the currently authenticated user).
	PermissionUserUpdate = "iam.user.update"
)
View Source
const (
	// KindGroup is a constants for the kind of Group resources.
	KindGroup = "Group"
	// KindRole is a constants for the kind of Role resources.
	KindRole = "Role"
	// KindAPIKey is a constants for the kind of APIKey resources.
	KindAPIKey = "APIKey"
	// KindUser is a constants for the kind of User resources.
	KindUser = "User"
)
View Source
const (
	// APIID contains identifier of this API
	APIID = "iam/v1"
	// APIMajorVersion contains major version of this API
	APIMajorVersion = 1
	// APIMinorVersion contains minor version of this API
	APIMinorVersion = 1
	// APIPatchVersion contains patch version of this API
	APIPatchVersion = 0
)
View Source
const (

	// EventTypePolicyUpdated is the type of event fired after a policy has been updated
	// SubjectID contains the URL of the policy.
	EventTypePolicyUpdated = "iam.policy.updated"
)

Variables

View Source
var (
	ErrInvalidLengthIam = fmt.Errorf("proto: negative length found during unmarshaling")
	ErrIntOverflowIam   = fmt.Errorf("proto: integer overflow")
)

Functions

func APIKeyURL

func APIKeyURL(userID, apiKeyID string) string

APIKeyURL creates a resource URL for the APIKey with given ID in given context.

func CreateMemberIDFromGroup

func CreateMemberIDFromGroup(group *Group) string

CreateMemberIDFromGroup creates a member ID from the given group.

func CreateMemberIDFromGroupID

func CreateMemberIDFromGroupID(groupID string) string

CreateMemberIDFromGroupID creates a member ID from the given group ID.

func CreateMemberIDFromUser

func CreateMemberIDFromUser(user *User) string

CreateMemberIDFromUser creates a member ID from the given user.

func CreateMemberIDFromUserID

func CreateMemberIDFromUserID(userID string) string

CreateMemberIDFromUserID creates a member ID from the given user ID.

func ForEachAPIKey

func ForEachAPIKey(ctx context.Context, listFunc func(ctx context.Context, req *common.ListOptions) (*APIKeyList, error),
	opts *common.ListOptions, cb APIKeyCallback) error

ForEachAPIKey iterates over all API keys of the authenticated user, invoking the given callback for each key.

func ForEachGroup

func ForEachGroup(ctx context.Context, listFunc func(ctx context.Context, req *common.ListOptions) (*GroupList, error),
	opts *common.ListOptions, cb GroupCallback) error

ForEachGroup iterates over all groups in an organization identified by given context ID, invoking the given callback for each group.

func ForEachGroupMember

func ForEachGroupMember(ctx context.Context, listFunc func(ctx context.Context, req *common.ListOptions) (*GroupMemberList, error),
	opts *common.ListOptions, cb GroupMemberCallback) error

ForEachGroupMember iterates over all members in the group identified by given context ID, invoking the given callback for each group member ID.

func ForEachRole

func ForEachRole(ctx context.Context, listFunc func(ctx context.Context, req *common.ListOptions) (*RoleList, error),
	opts *common.ListOptions, cb RoleCallback) error

ForEachRole iterates over all roles in an organization identified by given context ID, invoking the given callback for each role.

func GroupURL

func GroupURL(organizationID, groupID string) string

GroupURL creates a resource URL for the Group with given ID in given context.

func RegisterIAMServiceHandler

func RegisterIAMServiceHandler(ctx context.Context, mux *runtime.ServeMux, conn *grpc.ClientConn) error

RegisterIAMServiceHandler registers the http handlers for service IAMService to "mux". The handlers forward requests to the grpc endpoint over "conn".

func RegisterIAMServiceHandlerClient

func RegisterIAMServiceHandlerClient(ctx context.Context, mux *runtime.ServeMux, client IAMServiceClient) error

RegisterIAMServiceHandlerClient registers the http handlers for service IAMService to "mux". The handlers forward requests to the grpc endpoint over the given implementation of "IAMServiceClient". Note: the gRPC framework executes interceptors within the gRPC handler. If the passed in "IAMServiceClient" doesn't go through the normal gRPC flow (creating a gRPC client etc.) then it will be up to the passed in "IAMServiceClient" to call the correct interceptors.

func RegisterIAMServiceHandlerFromEndpoint

func RegisterIAMServiceHandlerFromEndpoint(ctx context.Context, mux *runtime.ServeMux, endpoint string, opts []grpc.DialOption) (err error)

RegisterIAMServiceHandlerFromEndpoint is same as RegisterIAMServiceHandler but automatically dials to "endpoint" and closes the connection when "ctx" gets done.

func RegisterIAMServiceHandlerServer

func RegisterIAMServiceHandlerServer(ctx context.Context, mux *runtime.ServeMux, server IAMServiceServer) error

RegisterIAMServiceHandlerServer registers the http handlers for service IAMService to "mux". UnaryRPC :call IAMServiceServer directly. StreamingRPC :currently unsupported pending https://github.com/grpc/grpc-go/issues/906.

func RegisterIAMServiceServer

func RegisterIAMServiceServer(s *grpc.Server, srv IAMServiceServer)

func RoleURL

func RoleURL(organizationID, roleID string) string

RoleURL creates a resource URL for the Role with given ID in given context.

func UserURL

func UserURL(userID string) string

UserURL creates a resource URL for the User with given ID.

Types

type APIKey

type APIKey struct {
	// Identifier of this key
	Id string `protobuf:"bytes,1,opt,name=id,proto3" json:"id,omitempty"`
	// URL of this key.
	Url string `protobuf:"bytes,2,opt,name=url,proto3" json:"url,omitempty"`
	// User represented by this key
	UserId string `protobuf:"bytes,3,opt,name=user_id,json=userId,proto3" json:"user_id,omitempty"`
	// If set, this key only grants access to this organization.
	OrganizationId string `protobuf:"bytes,4,opt,name=organization_id,json=organizationId,proto3" json:"organization_id,omitempty"`
	// If set, this key only grants access to read-only API's (List..., Get...)
	IsReadonly bool `protobuf:"varint,5,opt,name=is_readonly,json=isReadonly,proto3" json:"is_readonly,omitempty"`
	// The creation timestamp of the key
	CreatedAt *types.Timestamp `protobuf:"bytes,6,opt,name=created_at,json=createdAt,proto3" json:"created_at,omitempty"`
	// The expiration timestamp of the key
	ExpiresAt *types.Timestamp `protobuf:"bytes,7,opt,name=expires_at,json=expiresAt,proto3" json:"expires_at,omitempty"`
	// Set when this key is expired.
	IsExpired bool `protobuf:"varint,8,opt,name=is_expired,json=isExpired,proto3" json:"is_expired,omitempty"`
	// The revocation timestamp of the key (if any)
	RevokedAt *types.Timestamp `protobuf:"bytes,9,opt,name=revoked_at,json=revokedAt,proto3" json:"revoked_at,omitempty"`
	// Set when this key is explicitly revoked.
	IsRevoked            bool     `protobuf:"varint,10,opt,name=is_revoked,json=isRevoked,proto3" json:"is_revoked,omitempty"`
	XXX_NoUnkeyedLiteral struct{} `json:"-"`
	XXX_unrecognized     []byte   `json:"-"`
	XXX_sizecache        int32    `json:"-"`
}

API Keys are authentication "keys" intended to be used for scripting.

func (*APIKey) Descriptor

func (*APIKey) Descriptor() ([]byte, []int)

func (*APIKey) GetCreatedAt

func (m *APIKey) GetCreatedAt() *types.Timestamp

func (*APIKey) GetExpiresAt

func (m *APIKey) GetExpiresAt() *types.Timestamp

func (*APIKey) GetId

func (m *APIKey) GetId() string

func (*APIKey) GetIsExpired

func (m *APIKey) GetIsExpired() bool

func (*APIKey) GetIsReadonly

func (m *APIKey) GetIsReadonly() bool

func (*APIKey) GetIsRevoked

func (m *APIKey) GetIsRevoked() bool

func (*APIKey) GetOrganizationId

func (m *APIKey) GetOrganizationId() string

func (*APIKey) GetRevokedAt

func (m *APIKey) GetRevokedAt() *types.Timestamp

func (*APIKey) GetUrl

func (m *APIKey) GetUrl() string

func (*APIKey) GetUserId

func (m *APIKey) GetUserId() string

func (*APIKey) Marshal

func (m *APIKey) Marshal() (dAtA []byte, err error)

func (*APIKey) MarshalTo

func (m *APIKey) MarshalTo(dAtA []byte) (int, error)

func (*APIKey) MarshalToSizedBuffer

func (m *APIKey) MarshalToSizedBuffer(dAtA []byte) (int, error)

func (*APIKey) ProtoMessage

func (*APIKey) ProtoMessage()

func (*APIKey) Reset

func (m *APIKey) Reset()

func (*APIKey) Size

func (m *APIKey) Size() (n int)

func (*APIKey) String

func (m *APIKey) String() string

func (*APIKey) Unmarshal

func (m *APIKey) Unmarshal(dAtA []byte) error

func (*APIKey) XXX_DiscardUnknown

func (m *APIKey) XXX_DiscardUnknown()

func (*APIKey) XXX_Marshal

func (m *APIKey) XXX_Marshal(b []byte, deterministic bool) ([]byte, error)

func (*APIKey) XXX_Merge

func (m *APIKey) XXX_Merge(src proto.Message)

func (*APIKey) XXX_Size

func (m *APIKey) XXX_Size() int

func (*APIKey) XXX_Unmarshal

func (m *APIKey) XXX_Unmarshal(b []byte) error

type APIKeyCallback

type APIKeyCallback func(context.Context, *APIKey) error

APIKeyCallback is a callback for individual API key.

type APIKeyList

type APIKeyList struct {
	Items                []*APIKey `protobuf:"bytes,1,rep,name=items,proto3" json:"items,omitempty"`
	XXX_NoUnkeyedLiteral struct{}  `json:"-"`
	XXX_unrecognized     []byte    `json:"-"`
	XXX_sizecache        int32     `json:"-"`
}

List of APIKey's

func (*APIKeyList) Descriptor

func (*APIKeyList) Descriptor() ([]byte, []int)

func (*APIKeyList) GetItems

func (m *APIKeyList) GetItems() []*APIKey

func (*APIKeyList) Marshal

func (m *APIKeyList) Marshal() (dAtA []byte, err error)

func (*APIKeyList) MarshalTo

func (m *APIKeyList) MarshalTo(dAtA []byte) (int, error)

func (*APIKeyList) MarshalToSizedBuffer

func (m *APIKeyList) MarshalToSizedBuffer(dAtA []byte) (int, error)

func (*APIKeyList) ProtoMessage

func (*APIKeyList) ProtoMessage()

func (*APIKeyList) Reset

func (m *APIKeyList) Reset()

func (*APIKeyList) Size

func (m *APIKeyList) Size() (n int)

func (*APIKeyList) String

func (m *APIKeyList) String() string

func (*APIKeyList) Unmarshal

func (m *APIKeyList) Unmarshal(dAtA []byte) error

func (*APIKeyList) XXX_DiscardUnknown

func (m *APIKeyList) XXX_DiscardUnknown()

func (*APIKeyList) XXX_Marshal

func (m *APIKeyList) XXX_Marshal(b []byte, deterministic bool) ([]byte, error)

func (*APIKeyList) XXX_Merge

func (m *APIKeyList) XXX_Merge(src proto.Message)

func (*APIKeyList) XXX_Size

func (m *APIKeyList) XXX_Size() int

func (*APIKeyList) XXX_Unmarshal

func (m *APIKeyList) XXX_Unmarshal(b []byte) error

type APIKeySecret

type APIKeySecret struct {
	// ID of the API key
	Id string `protobuf:"bytes,1,opt,name=id,proto3" json:"id,omitempty"`
	// Secret of the API key
	Secret               string   `protobuf:"bytes,2,opt,name=secret,proto3" json:"secret,omitempty"`
	XXX_NoUnkeyedLiteral struct{} `json:"-"`
	XXX_unrecognized     []byte   `json:"-"`
	XXX_sizecache        int32    `json:"-"`
}

API key secrets are used once to inform the users of the secret for an API key.

func (*APIKeySecret) Descriptor

func (*APIKeySecret) Descriptor() ([]byte, []int)

func (*APIKeySecret) GetId

func (m *APIKeySecret) GetId() string

func (*APIKeySecret) GetSecret

func (m *APIKeySecret) GetSecret() string

func (*APIKeySecret) Marshal

func (m *APIKeySecret) Marshal() (dAtA []byte, err error)

func (*APIKeySecret) MarshalTo

func (m *APIKeySecret) MarshalTo(dAtA []byte) (int, error)

func (*APIKeySecret) MarshalToSizedBuffer

func (m *APIKeySecret) MarshalToSizedBuffer(dAtA []byte) (int, error)

func (*APIKeySecret) ProtoMessage

func (*APIKeySecret) ProtoMessage()

func (*APIKeySecret) Reset

func (m *APIKeySecret) Reset()

func (*APIKeySecret) Size

func (m *APIKeySecret) Size() (n int)

func (*APIKeySecret) String

func (m *APIKeySecret) String() string

func (*APIKeySecret) Unmarshal

func (m *APIKeySecret) Unmarshal(dAtA []byte) error

func (*APIKeySecret) XXX_DiscardUnknown

func (m *APIKeySecret) XXX_DiscardUnknown()

func (*APIKeySecret) XXX_Marshal

func (m *APIKeySecret) XXX_Marshal(b []byte, deterministic bool) ([]byte, error)

func (*APIKeySecret) XXX_Merge

func (m *APIKeySecret) XXX_Merge(src proto.Message)

func (*APIKeySecret) XXX_Size

func (m *APIKeySecret) XXX_Size() int

func (*APIKeySecret) XXX_Unmarshal

func (m *APIKeySecret) XXX_Unmarshal(b []byte) error

type AuthenticateAPIKeyRequest

type AuthenticateAPIKeyRequest struct {
	// API key id
	Id string `protobuf:"bytes,1,opt,name=id,proto3" json:"id,omitempty"`
	// Secret of the API key
	Secret string `protobuf:"bytes,2,opt,name=secret,proto3" json:"secret,omitempty"`
	// Life time of the token.
	// If set, then this TTL is used reduce the default TTL
	// of an authentication token. It cannot be used to increase the default
	// lifetime of a token.
	TimeToLive           *types.Duration `protobuf:"bytes,3,opt,name=time_to_live,json=timeToLive,proto3" json:"time_to_live,omitempty"`
	XXX_NoUnkeyedLiteral struct{}        `json:"-"`
	XXX_unrecognized     []byte          `json:"-"`
	XXX_sizecache        int32           `json:"-"`
}

Request arguments for AuthenticateAPIKey

func (*AuthenticateAPIKeyRequest) Descriptor

func (*AuthenticateAPIKeyRequest) Descriptor() ([]byte, []int)

func (*AuthenticateAPIKeyRequest) GetId

func (m *AuthenticateAPIKeyRequest) GetId() string

func (*AuthenticateAPIKeyRequest) GetSecret

func (m *AuthenticateAPIKeyRequest) GetSecret() string

func (*AuthenticateAPIKeyRequest) GetTimeToLive

func (m *AuthenticateAPIKeyRequest) GetTimeToLive() *types.Duration

func (*AuthenticateAPIKeyRequest) Marshal

func (m *AuthenticateAPIKeyRequest) Marshal() (dAtA []byte, err error)

func (*AuthenticateAPIKeyRequest) MarshalTo

func (m *AuthenticateAPIKeyRequest) MarshalTo(dAtA []byte) (int, error)

func (*AuthenticateAPIKeyRequest) MarshalToSizedBuffer

func (m *AuthenticateAPIKeyRequest) MarshalToSizedBuffer(dAtA []byte) (int, error)

func (*AuthenticateAPIKeyRequest) ProtoMessage

func (*AuthenticateAPIKeyRequest) ProtoMessage()

func (*AuthenticateAPIKeyRequest) Reset

func (m *AuthenticateAPIKeyRequest) Reset()

func (*AuthenticateAPIKeyRequest) Size

func (m *AuthenticateAPIKeyRequest) Size() (n int)

func (*AuthenticateAPIKeyRequest) String

func (m *AuthenticateAPIKeyRequest) String() string

func (*AuthenticateAPIKeyRequest) Unmarshal

func (m *AuthenticateAPIKeyRequest) Unmarshal(dAtA []byte) error

func (*AuthenticateAPIKeyRequest) XXX_DiscardUnknown

func (m *AuthenticateAPIKeyRequest) XXX_DiscardUnknown()

func (*AuthenticateAPIKeyRequest) XXX_Marshal

func (m *AuthenticateAPIKeyRequest) XXX_Marshal(b []byte, deterministic bool) ([]byte, error)

func (*AuthenticateAPIKeyRequest) XXX_Merge

func (m *AuthenticateAPIKeyRequest) XXX_Merge(src proto.Message)

func (*AuthenticateAPIKeyRequest) XXX_Size

func (m *AuthenticateAPIKeyRequest) XXX_Size() int

func (*AuthenticateAPIKeyRequest) XXX_Unmarshal

func (m *AuthenticateAPIKeyRequest) XXX_Unmarshal(b []byte) error

type AuthenticateAPIKeyResponse

type AuthenticateAPIKeyResponse struct {
	// Bearer token
	Token string `protobuf:"bytes,1,opt,name=token,proto3" json:"token,omitempty"`
	// Actual life time of the token.
	TimeToLive           *types.Duration `protobuf:"bytes,2,opt,name=time_to_live,json=timeToLive,proto3" json:"time_to_live,omitempty"`
	XXX_NoUnkeyedLiteral struct{}        `json:"-"`
	XXX_unrecognized     []byte          `json:"-"`
	XXX_sizecache        int32           `json:"-"`
}

Response for AuthenticateAPIKey

func (*AuthenticateAPIKeyResponse) Descriptor

func (*AuthenticateAPIKeyResponse) Descriptor() ([]byte, []int)

func (*AuthenticateAPIKeyResponse) GetTimeToLive

func (m *AuthenticateAPIKeyResponse) GetTimeToLive() *types.Duration

func (*AuthenticateAPIKeyResponse) GetToken

func (m *AuthenticateAPIKeyResponse) GetToken() string

func (*AuthenticateAPIKeyResponse) Marshal

func (m *AuthenticateAPIKeyResponse) Marshal() (dAtA []byte, err error)

func (*AuthenticateAPIKeyResponse) MarshalTo

func (m *AuthenticateAPIKeyResponse) MarshalTo(dAtA []byte) (int, error)

func (*AuthenticateAPIKeyResponse) MarshalToSizedBuffer

func (m *AuthenticateAPIKeyResponse) MarshalToSizedBuffer(dAtA []byte) (int, error)

func (*AuthenticateAPIKeyResponse) ProtoMessage

func (*AuthenticateAPIKeyResponse) ProtoMessage()

func (*AuthenticateAPIKeyResponse) Reset

func (m *AuthenticateAPIKeyResponse) Reset()

func (*AuthenticateAPIKeyResponse) Size

func (m *AuthenticateAPIKeyResponse) Size() (n int)

func (*AuthenticateAPIKeyResponse) String

func (m *AuthenticateAPIKeyResponse) String() string

func (*AuthenticateAPIKeyResponse) Unmarshal

func (m *AuthenticateAPIKeyResponse) Unmarshal(dAtA []byte) error

func (*AuthenticateAPIKeyResponse) XXX_DiscardUnknown

func (m *AuthenticateAPIKeyResponse) XXX_DiscardUnknown()

func (*AuthenticateAPIKeyResponse) XXX_Marshal

func (m *AuthenticateAPIKeyResponse) XXX_Marshal(b []byte, deterministic bool) ([]byte, error)

func (*AuthenticateAPIKeyResponse) XXX_Merge

func (m *AuthenticateAPIKeyResponse) XXX_Merge(src proto.Message)

func (*AuthenticateAPIKeyResponse) XXX_Size

func (m *AuthenticateAPIKeyResponse) XXX_Size() int

func (*AuthenticateAPIKeyResponse) XXX_Unmarshal

func (m *AuthenticateAPIKeyResponse) XXX_Unmarshal(b []byte) error

type CreateAPIKeyRequest

type CreateAPIKeyRequest struct {
	// If set, the created key only grants access to this organization.
	OrganizationId string `protobuf:"bytes,1,opt,name=organization_id,json=organizationId,proto3" json:"organization_id,omitempty"`
	// If set, the created key only grants access to read-only API's (List..., Get...).
	// If not set, the created key grants access to all API's (that the user has access to).
	Readonly bool `protobuf:"varint,2,opt,name=readonly,proto3" json:"readonly,omitempty"`
	// Duration between now and the expiration date of the created key.
	// A value of 0 means that the API key will not expire.
	// You can still use RevokeAPIKey to revoke such API keys.
	TimeToLive           *types.Duration `protobuf:"bytes,3,opt,name=time_to_live,json=timeToLive,proto3" json:"time_to_live,omitempty"`
	XXX_NoUnkeyedLiteral struct{}        `json:"-"`
	XXX_unrecognized     []byte          `json:"-"`
	XXX_sizecache        int32           `json:"-"`
}

Request arguments for CreateAPIKey.

func (*CreateAPIKeyRequest) Descriptor

func (*CreateAPIKeyRequest) Descriptor() ([]byte, []int)

func (*CreateAPIKeyRequest) GetOrganizationId

func (m *CreateAPIKeyRequest) GetOrganizationId() string

func (*CreateAPIKeyRequest) GetReadonly

func (m *CreateAPIKeyRequest) GetReadonly() bool

func (*CreateAPIKeyRequest) GetTimeToLive

func (m *CreateAPIKeyRequest) GetTimeToLive() *types.Duration

func (*CreateAPIKeyRequest) Marshal

func (m *CreateAPIKeyRequest) Marshal() (dAtA []byte, err error)

func (*CreateAPIKeyRequest) MarshalTo

func (m *CreateAPIKeyRequest) MarshalTo(dAtA []byte) (int, error)

func (*CreateAPIKeyRequest) MarshalToSizedBuffer

func (m *CreateAPIKeyRequest) MarshalToSizedBuffer(dAtA []byte) (int, error)

func (*CreateAPIKeyRequest) ProtoMessage

func (*CreateAPIKeyRequest) ProtoMessage()

func (*CreateAPIKeyRequest) Reset

func (m *CreateAPIKeyRequest) Reset()

func (*CreateAPIKeyRequest) Size

func (m *CreateAPIKeyRequest) Size() (n int)

func (*CreateAPIKeyRequest) String

func (m *CreateAPIKeyRequest) String() string

func (*CreateAPIKeyRequest) Unmarshal

func (m *CreateAPIKeyRequest) Unmarshal(dAtA []byte) error

func (*CreateAPIKeyRequest) XXX_DiscardUnknown

func (m *CreateAPIKeyRequest) XXX_DiscardUnknown()

func (*CreateAPIKeyRequest) XXX_Marshal

func (m *CreateAPIKeyRequest) XXX_Marshal(b []byte, deterministic bool) ([]byte, error)

func (*CreateAPIKeyRequest) XXX_Merge

func (m *CreateAPIKeyRequest) XXX_Merge(src proto.Message)

func (*CreateAPIKeyRequest) XXX_Size

func (m *CreateAPIKeyRequest) XXX_Size() int

func (*CreateAPIKeyRequest) XXX_Unmarshal

func (m *CreateAPIKeyRequest) XXX_Unmarshal(b []byte) error

type Group

type Group struct {
	// System identifier of the group.
	// This is a read-only value.
	Id string `protobuf:"bytes,1,opt,name=id,proto3" json:"id,omitempty"`
	// Identifier of the organization that owns this group.
	OrganizationId string `protobuf:"bytes,2,opt,name=organization_id,json=organizationId,proto3" json:"organization_id,omitempty"`
	// Name of the group
	Name string `protobuf:"bytes,3,opt,name=name,proto3" json:"name,omitempty"`
	// Description of the group
	Description string `protobuf:"bytes,4,opt,name=description,proto3" json:"description,omitempty"`
	// The creation timestamp of the group
	CreatedAt *types.Timestamp `protobuf:"bytes,5,opt,name=created_at,json=createdAt,proto3" json:"created_at,omitempty"`
	// The deletion timestamp of the group
	DeletedAt *types.Timestamp `protobuf:"bytes,6,opt,name=deleted_at,json=deletedAt,proto3" json:"deleted_at,omitempty"`
	// Set when this organization is deleted.
	// This is a read-only value.
	IsDeleted bool `protobuf:"varint,7,opt,name=is_deleted,json=isDeleted,proto3" json:"is_deleted,omitempty"`
	// URL of this resource
	// This is a read-only value and cannot be initialized.
	Url string `protobuf:"bytes,8,opt,name=url,proto3" json:"url,omitempty"`
	// Set if this group is virtual and managed by the system.
	// This is a read-only value.
	IsVirtual            bool     `protobuf:"varint,9,opt,name=is_virtual,json=isVirtual,proto3" json:"is_virtual,omitempty"`
	XXX_NoUnkeyedLiteral struct{} `json:"-"`
	XXX_unrecognized     []byte   `json:"-"`
	XXX_sizecache        int32    `json:"-"`
}

Group of user accounts.

func (*Group) Descriptor

func (*Group) Descriptor() ([]byte, []int)

func (*Group) GetCreatedAt

func (m *Group) GetCreatedAt() *types.Timestamp

func (*Group) GetDeletedAt

func (m *Group) GetDeletedAt() *types.Timestamp

func (*Group) GetDescription

func (m *Group) GetDescription() string

func (*Group) GetId

func (m *Group) GetId() string

func (*Group) GetIsDeleted

func (m *Group) GetIsDeleted() bool

func (*Group) GetIsVirtual

func (m *Group) GetIsVirtual() bool

func (*Group) GetName

func (m *Group) GetName() string

func (*Group) GetOrganizationId

func (m *Group) GetOrganizationId() string

func (*Group) GetUrl

func (m *Group) GetUrl() string

func (*Group) Marshal

func (m *Group) Marshal() (dAtA []byte, err error)

func (*Group) MarshalTo

func (m *Group) MarshalTo(dAtA []byte) (int, error)

func (*Group) MarshalToSizedBuffer

func (m *Group) MarshalToSizedBuffer(dAtA []byte) (int, error)

func (*Group) ProtoMessage

func (*Group) ProtoMessage()

func (*Group) Reset

func (m *Group) Reset()

func (*Group) Size

func (m *Group) Size() (n int)

func (*Group) String

func (m *Group) String() string

func (*Group) Unmarshal

func (m *Group) Unmarshal(dAtA []byte) error

func (*Group) XXX_DiscardUnknown

func (m *Group) XXX_DiscardUnknown()

func (*Group) XXX_Marshal

func (m *Group) XXX_Marshal(b []byte, deterministic bool) ([]byte, error)

func (*Group) XXX_Merge

func (m *Group) XXX_Merge(src proto.Message)

func (*Group) XXX_Size

func (m *Group) XXX_Size() int

func (*Group) XXX_Unmarshal

func (m *Group) XXX_Unmarshal(b []byte) error

type GroupCallback

type GroupCallback func(context.Context, *Group) error

GroupCallback is a callback for individual groups.

type GroupList

type GroupList struct {
	Items                []*Group `protobuf:"bytes,1,rep,name=items,proto3" json:"items,omitempty"`
	XXX_NoUnkeyedLiteral struct{} `json:"-"`
	XXX_unrecognized     []byte   `json:"-"`
	XXX_sizecache        int32    `json:"-"`
}

List of groups.

func (*GroupList) Descriptor

func (*GroupList) Descriptor() ([]byte, []int)

func (*GroupList) GetItems

func (m *GroupList) GetItems() []*Group

func (*GroupList) Marshal

func (m *GroupList) Marshal() (dAtA []byte, err error)

func (*GroupList) MarshalTo

func (m *GroupList) MarshalTo(dAtA []byte) (int, error)

func (*GroupList) MarshalToSizedBuffer

func (m *GroupList) MarshalToSizedBuffer(dAtA []byte) (int, error)

func (*GroupList) ProtoMessage

func (*GroupList) ProtoMessage()

func (*GroupList) Reset

func (m *GroupList) Reset()

func (*GroupList) Size

func (m *GroupList) Size() (n int)

func (*GroupList) String

func (m *GroupList) String() string

func (*GroupList) Unmarshal

func (m *GroupList) Unmarshal(dAtA []byte) error

func (*GroupList) XXX_DiscardUnknown

func (m *GroupList) XXX_DiscardUnknown()

func (*GroupList) XXX_Marshal

func (m *GroupList) XXX_Marshal(b []byte, deterministic bool) ([]byte, error)

func (*GroupList) XXX_Merge

func (m *GroupList) XXX_Merge(src proto.Message)

func (*GroupList) XXX_Size

func (m *GroupList) XXX_Size() int

func (*GroupList) XXX_Unmarshal

func (m *GroupList) XXX_Unmarshal(b []byte) error

type GroupMemberCallback

type GroupMemberCallback func(context.Context, string) error

GroupMemberCallback is a callback for individual group member IDs.

type GroupMemberList

type GroupMemberList struct {
	// List of ID's of users that are member of the group.
	Items []string `protobuf:"bytes,1,rep,name=items,proto3" json:"items,omitempty"`
	// List of users that are member of the group.
	Users                []*User  `protobuf:"bytes,2,rep,name=users,proto3" json:"users,omitempty"`
	XXX_NoUnkeyedLiteral struct{} `json:"-"`
	XXX_unrecognized     []byte   `json:"-"`
	XXX_sizecache        int32    `json:"-"`
}

List of group members (user ID's)

func (*GroupMemberList) Descriptor

func (*GroupMemberList) Descriptor() ([]byte, []int)

func (*GroupMemberList) GetItems

func (m *GroupMemberList) GetItems() []string

func (*GroupMemberList) GetUsers added in v0.63.8

func (m *GroupMemberList) GetUsers() []*User

func (*GroupMemberList) Marshal

func (m *GroupMemberList) Marshal() (dAtA []byte, err error)

func (*GroupMemberList) MarshalTo

func (m *GroupMemberList) MarshalTo(dAtA []byte) (int, error)

func (*GroupMemberList) MarshalToSizedBuffer

func (m *GroupMemberList) MarshalToSizedBuffer(dAtA []byte) (int, error)

func (*GroupMemberList) ProtoMessage

func (*GroupMemberList) ProtoMessage()

func (*GroupMemberList) Reset

func (m *GroupMemberList) Reset()

func (*GroupMemberList) Size

func (m *GroupMemberList) Size() (n int)

func (*GroupMemberList) String

func (m *GroupMemberList) String() string

func (*GroupMemberList) Unmarshal

func (m *GroupMemberList) Unmarshal(dAtA []byte) error

func (*GroupMemberList) XXX_DiscardUnknown

func (m *GroupMemberList) XXX_DiscardUnknown()

func (*GroupMemberList) XXX_Marshal

func (m *GroupMemberList) XXX_Marshal(b []byte, deterministic bool) ([]byte, error)

func (*GroupMemberList) XXX_Merge

func (m *GroupMemberList) XXX_Merge(src proto.Message)

func (*GroupMemberList) XXX_Size

func (m *GroupMemberList) XXX_Size() int

func (*GroupMemberList) XXX_Unmarshal

func (m *GroupMemberList) XXX_Unmarshal(b []byte) error

type GroupMembersRequest

type GroupMembersRequest struct {
	// ID of the group to add/remove members to/from.
	GroupId string `protobuf:"bytes,1,opt,name=group_id,json=groupId,proto3" json:"group_id,omitempty"`
	// ID's of users to add/remove to/from the group.
	UserIds              []string `protobuf:"bytes,2,rep,name=user_ids,json=userIds,proto3" json:"user_ids,omitempty"`
	XXX_NoUnkeyedLiteral struct{} `json:"-"`
	XXX_unrecognized     []byte   `json:"-"`
	XXX_sizecache        int32    `json:"-"`
}

Request arguments for Add/DeleteGroupMembers.

func (*GroupMembersRequest) Descriptor

func (*GroupMembersRequest) Descriptor() ([]byte, []int)

func (*GroupMembersRequest) GetGroupId

func (m *GroupMembersRequest) GetGroupId() string

func (*GroupMembersRequest) GetUserIds

func (m *GroupMembersRequest) GetUserIds() []string

func (*GroupMembersRequest) Marshal

func (m *GroupMembersRequest) Marshal() (dAtA []byte, err error)

func (*GroupMembersRequest) MarshalTo

func (m *GroupMembersRequest) MarshalTo(dAtA []byte) (int, error)

func (*GroupMembersRequest) MarshalToSizedBuffer

func (m *GroupMembersRequest) MarshalToSizedBuffer(dAtA []byte) (int, error)

func (*GroupMembersRequest) ProtoMessage

func (*GroupMembersRequest) ProtoMessage()

func (*GroupMembersRequest) Reset

func (m *GroupMembersRequest) Reset()

func (*GroupMembersRequest) Size

func (m *GroupMembersRequest) Size() (n int)

func (*GroupMembersRequest) String

func (m *GroupMembersRequest) String() string

func (*GroupMembersRequest) Unmarshal

func (m *GroupMembersRequest) Unmarshal(dAtA []byte) error

func (*GroupMembersRequest) XXX_DiscardUnknown

func (m *GroupMembersRequest) XXX_DiscardUnknown()

func (*GroupMembersRequest) XXX_Marshal

func (m *GroupMembersRequest) XXX_Marshal(b []byte, deterministic bool) ([]byte, error)

func (*GroupMembersRequest) XXX_Merge

func (m *GroupMembersRequest) XXX_Merge(src proto.Message)

func (*GroupMembersRequest) XXX_Size

func (m *GroupMembersRequest) XXX_Size() int

func (*GroupMembersRequest) XXX_Unmarshal

func (m *GroupMembersRequest) XXX_Unmarshal(b []byte) error

type HasPermissionsRequest

type HasPermissionsRequest struct {
	// URL of the resource to query permissions for.
	Url string `protobuf:"bytes,1,opt,name=url,proto3" json:"url,omitempty"`
	// The list of permissions that are required.
	Permissions          []string `protobuf:"bytes,2,rep,name=permissions,proto3" json:"permissions,omitempty"`
	XXX_NoUnkeyedLiteral struct{} `json:"-"`
	XXX_unrecognized     []byte   `json:"-"`
	XXX_sizecache        int32    `json:"-"`
}

Request arguments for HasPermissionsRequest.

func (*HasPermissionsRequest) Descriptor

func (*HasPermissionsRequest) Descriptor() ([]byte, []int)

func (*HasPermissionsRequest) GetPermissions

func (m *HasPermissionsRequest) GetPermissions() []string

func (*HasPermissionsRequest) GetUrl

func (m *HasPermissionsRequest) GetUrl() string

func (*HasPermissionsRequest) Marshal

func (m *HasPermissionsRequest) Marshal() (dAtA []byte, err error)

func (*HasPermissionsRequest) MarshalTo

func (m *HasPermissionsRequest) MarshalTo(dAtA []byte) (int, error)

func (*HasPermissionsRequest) MarshalToSizedBuffer

func (m *HasPermissionsRequest) MarshalToSizedBuffer(dAtA []byte) (int, error)

func (*HasPermissionsRequest) ProtoMessage

func (*HasPermissionsRequest) ProtoMessage()

func (*HasPermissionsRequest) Reset

func (m *HasPermissionsRequest) Reset()

func (*HasPermissionsRequest) Size

func (m *HasPermissionsRequest) Size() (n int)

func (*HasPermissionsRequest) String

func (m *HasPermissionsRequest) String() string

func (*HasPermissionsRequest) Unmarshal

func (m *HasPermissionsRequest) Unmarshal(dAtA []byte) error

func (*HasPermissionsRequest) XXX_DiscardUnknown

func (m *HasPermissionsRequest) XXX_DiscardUnknown()

func (*HasPermissionsRequest) XXX_Marshal

func (m *HasPermissionsRequest) XXX_Marshal(b []byte, deterministic bool) ([]byte, error)

func (*HasPermissionsRequest) XXX_Merge

func (m *HasPermissionsRequest) XXX_Merge(src proto.Message)

func (*HasPermissionsRequest) XXX_Size

func (m *HasPermissionsRequest) XXX_Size() int

func (*HasPermissionsRequest) XXX_Unmarshal

func (m *HasPermissionsRequest) XXX_Unmarshal(b []byte) error

type IAMServiceClient

type IAMServiceClient interface {
	// Get the current API version of this service.
	// Required permissions:
	// - None
	GetAPIVersion(ctx context.Context, in *v1.Empty, opts ...grpc.CallOption) (*v1.Version, error)
	// Fetch all available information of the currently authenticated user.
	// Required permissions:
	// - None
	GetThisUser(ctx context.Context, in *v1.Empty, opts ...grpc.CallOption) (*User, error)
	// Fetch all available information of the user identified by the given ID.
	// Required permissions:
	// - resourcemanager.organization.get on one of the organizations that the requested user and authenticated user are both a member of
	GetUser(ctx context.Context, in *v1.IDOptions, opts ...grpc.CallOption) (*User, error)
	// Update a user
	// Required permissions:
	// - None if the given user is the authenticated user.
	// or
	// - resourcemanager.organization.get on one of the organizations that the requested user and authenticated user are both a member of and
	// - iam.user.update on organization on one of the organizations that the requested user and authenticated user are both a member of
	UpdateUser(ctx context.Context, in *User, opts ...grpc.CallOption) (*User, error)
	// Verify the mobile phone number of a user, by provided the unique
	// code that was send to the number.
	// If the code is valid an empty result is returned, otherwise an InvalidArgument error is returned.
	// The authenticated user is always the subject of this request.
	// Required permissions:
	// - None (since the subject is always the authenticated user).
	VerifyUserMobilePhone(ctx context.Context, in *VerifyUserMobilePhoneRequest, opts ...grpc.CallOption) (*v1.Empty, error)
	// Resend a verification code to the mobile phone number listed for the
	// authenticated user.
	// Required permissions:
	// - None (since the subject is always the authenticated user).
	ResendUserMobilePhoneVerification(ctx context.Context, in *v1.Empty, opts ...grpc.CallOption) (*v1.Empty, error)
	// Fetch all groups of the organization identified by the given context ID.
	// Required permissions:
	// - iam.group.list on organization identified by given context ID.
	ListGroups(ctx context.Context, in *v1.ListOptions, opts ...grpc.CallOption) (*GroupList, error)
	// Fetch a group by its id.
	// Required permissions:
	// - iam.group.get on organization that owns the group
	GetGroup(ctx context.Context, in *v1.IDOptions, opts ...grpc.CallOption) (*Group, error)
	// Create a group
	// Required permissions:
	// - iam.group.create on organization that owns the group
	CreateGroup(ctx context.Context, in *Group, opts ...grpc.CallOption) (*Group, error)
	// Update a group
	// Required permissions:
	// - iam.group.update on organization that owns the group
	UpdateGroup(ctx context.Context, in *Group, opts ...grpc.CallOption) (*Group, error)
	// Delete a group
	// Required permissions:
	// - iam.group.delete on organization that owns the group
	DeleteGroup(ctx context.Context, in *v1.IDOptions, opts ...grpc.CallOption) (*v1.Empty, error)
	// List of members of the group identified by the given context ID.
	// Required permissions:
	// - iam.group.get on organization that owns the group
	ListGroupMembers(ctx context.Context, in *v1.ListOptions, opts ...grpc.CallOption) (*GroupMemberList, error)
	// Add one or more members to the group identified by given ID.
	// Required permissions:
	// - iam.group.update on organization that owns the group
	AddGroupMembers(ctx context.Context, in *GroupMembersRequest, opts ...grpc.CallOption) (*v1.Empty, error)
	// Remove one or more members from the group identified by given ID.
	// Required permissions:
	// - iam.group.update on organization that owns the group
	DeleteGroupMembers(ctx context.Context, in *GroupMembersRequest, opts ...grpc.CallOption) (*v1.Empty, error)
	// Is the user identified by the given user ID a member of the group identified by the given group ID.
	// Required permissions:
	// - iam.group.get on organization that owns the group, unless the requested user is identical to the authenticated user.
	// Note that if the identified group does not exist, no is returned.
	IsMemberOfGroup(ctx context.Context, in *IsMemberOfGroupRequest, opts ...grpc.CallOption) (*v1.YesOrNo, error)
	// Fetch all roles in the organization identified by the given context ID.
	// Required permissions:
	// - iam.role.list on organization identified by given context ID.
	ListRoles(ctx context.Context, in *v1.ListOptions, opts ...grpc.CallOption) (*RoleList, error)
	// Fetch a role by its id.
	// Required permissions:
	// - iam.role.get on organization that owns the role
	GetRole(ctx context.Context, in *v1.IDOptions, opts ...grpc.CallOption) (*Role, error)
	// Create a custom role
	// Required permissions:
	// - iam.role.create on organization that owns the role
	CreateRole(ctx context.Context, in *Role, opts ...grpc.CallOption) (*Role, error)
	// Update a custom role
	// Required permissions:
	// - iam.role.update on organization that owns the role
	UpdateRole(ctx context.Context, in *Role, opts ...grpc.CallOption) (*Role, error)
	// Delete a custom role
	// Required permissions:
	// - iam.role.delete on organization that owns the role
	DeleteRole(ctx context.Context, in *v1.IDOptions, opts ...grpc.CallOption) (*v1.Empty, error)
	// Get the policy for a resource identified by given URL.
	// Required permissions:
	// - iam.policy.get on resource identified by the url
	GetPolicy(ctx context.Context, in *v1.URLOptions, opts ...grpc.CallOption) (*Policy, error)
	// Add one or more RoleBindings to the policy of a resource identified by given URL.
	// Required permissions:
	// - iam.policy.update on resource identified by the url
	AddRoleBindings(ctx context.Context, in *RoleBindingsRequest, opts ...grpc.CallOption) (*Policy, error)
	// Remove one or more RoleBindings from the policy of a resource identified by given URL.
	// Required permissions:
	// - iam.policy.update on resource identified by the url
	DeleteRoleBindings(ctx context.Context, in *RoleBindingsRequest, opts ...grpc.CallOption) (*Policy, error)
	// Return the list of permissions that are available to the currently authenticated
	// used for actions on the resource identified by the given URL.
	// Required permissions:
	// - None
	GetEffectivePermissions(ctx context.Context, in *v1.URLOptions, opts ...grpc.CallOption) (*PermissionList, error)
	// Does the authenticated user have all of the requested permissions for the resource
	// identified by the given URL?
	// Required permissions:
	// - None
	HasPermissions(ctx context.Context, in *HasPermissionsRequest, opts ...grpc.CallOption) (*v1.YesOrNo, error)
	// List all known permissions.
	// Required permissions:
	// - None
	ListPermissions(ctx context.Context, in *v1.Empty, opts ...grpc.CallOption) (*PermissionList, error)
	// Fetch all API keys owned by the authenticated caller.
	// Required permissions:
	// - None
	ListAPIKeys(ctx context.Context, in *v1.ListOptions, opts ...grpc.CallOption) (*APIKeyList, error)
	// Fetch an API key by its id.
	// The API key must be owned by the authenticated caller.
	// Required permissions:
	// - None
	GetAPIKey(ctx context.Context, in *v1.IDOptions, opts ...grpc.CallOption) (*APIKey, error)
	// Create a new API key.
	// The API key will be owned by the authenticated caller.
	// Required permissions:
	// - None
	CreateAPIKey(ctx context.Context, in *CreateAPIKeyRequest, opts ...grpc.CallOption) (*APIKeySecret, error)
	// Ensure that the expiration date of the API key identified by given ID
	// is either in the past or set to now.
	// The API key must be owned by the authenticated caller.
	// Required permissions:
	// - None
	RevokeAPIKey(ctx context.Context, in *v1.IDOptions, opts ...grpc.CallOption) (*v1.Empty, error)
	// Delete the API key identified by given ID
	// The API key must be owned by the authenticated caller.
	// Required permissions:
	// - None
	DeleteAPIKey(ctx context.Context, in *v1.IDOptions, opts ...grpc.CallOption) (*v1.Empty, error)
	// Authenticate using an API key.
	// If authentication succeeds, this function returns a bearer token.
	// That token must be used to authenticate all other API requests.
	// If the given API key identifier is invalid or expired, or an incorrect secret
	// is given, this function will return an unauthenticated error.
	// Required permissions:
	// - None
	AuthenticateAPIKey(ctx context.Context, in *AuthenticateAPIKeyRequest, opts ...grpc.CallOption) (*AuthenticateAPIKeyResponse, error)
	// Renew a non-expired API key authentication token.
	// This allows to extend the lifetime of a token created by AuthenticateAPIKey.
	// If the given token is invalid or expired, or the underlying API key is expired
	// this function will return an unauthenticated error.
	// Required permissions:
	// - None
	RenewAPIKeyToken(ctx context.Context, in *RenewAPIKeyTokenRequest, opts ...grpc.CallOption) (*RenewAPIKeyTokenResponse, error)
	// Revoke an API key authentication token.
	// This function will return a non-error response, even if the given token
	// is invalid or already expired.
	// Required permissions:
	// - None
	RevokeAPIKeyToken(ctx context.Context, in *RevokeAPIKeyTokenRequest, opts ...grpc.CallOption) (*v1.Empty, error)
}

IAMServiceClient is the client API for IAMService service.

For semantics around ctx use and closing/ending streaming RPCs, please refer to https://godoc.org/google.golang.org/grpc#ClientConn.NewStream.

func NewIAMServiceClient

func NewIAMServiceClient(cc *grpc.ClientConn) IAMServiceClient

type IAMServiceServer

type IAMServiceServer interface {
	// Get the current API version of this service.
	// Required permissions:
	// - None
	GetAPIVersion(context.Context, *v1.Empty) (*v1.Version, error)
	// Fetch all available information of the currently authenticated user.
	// Required permissions:
	// - None
	GetThisUser(context.Context, *v1.Empty) (*User, error)
	// Fetch all available information of the user identified by the given ID.
	// Required permissions:
	// - resourcemanager.organization.get on one of the organizations that the requested user and authenticated user are both a member of
	GetUser(context.Context, *v1.IDOptions) (*User, error)
	// Update a user
	// Required permissions:
	// - None if the given user is the authenticated user.
	// or
	// - resourcemanager.organization.get on one of the organizations that the requested user and authenticated user are both a member of and
	// - iam.user.update on organization on one of the organizations that the requested user and authenticated user are both a member of
	UpdateUser(context.Context, *User) (*User, error)
	// Verify the mobile phone number of a user, by provided the unique
	// code that was send to the number.
	// If the code is valid an empty result is returned, otherwise an InvalidArgument error is returned.
	// The authenticated user is always the subject of this request.
	// Required permissions:
	// - None (since the subject is always the authenticated user).
	VerifyUserMobilePhone(context.Context, *VerifyUserMobilePhoneRequest) (*v1.Empty, error)
	// Resend a verification code to the mobile phone number listed for the
	// authenticated user.
	// Required permissions:
	// - None (since the subject is always the authenticated user).
	ResendUserMobilePhoneVerification(context.Context, *v1.Empty) (*v1.Empty, error)
	// Fetch all groups of the organization identified by the given context ID.
	// Required permissions:
	// - iam.group.list on organization identified by given context ID.
	ListGroups(context.Context, *v1.ListOptions) (*GroupList, error)
	// Fetch a group by its id.
	// Required permissions:
	// - iam.group.get on organization that owns the group
	GetGroup(context.Context, *v1.IDOptions) (*Group, error)
	// Create a group
	// Required permissions:
	// - iam.group.create on organization that owns the group
	CreateGroup(context.Context, *Group) (*Group, error)
	// Update a group
	// Required permissions:
	// - iam.group.update on organization that owns the group
	UpdateGroup(context.Context, *Group) (*Group, error)
	// Delete a group
	// Required permissions:
	// - iam.group.delete on organization that owns the group
	DeleteGroup(context.Context, *v1.IDOptions) (*v1.Empty, error)
	// List of members of the group identified by the given context ID.
	// Required permissions:
	// - iam.group.get on organization that owns the group
	ListGroupMembers(context.Context, *v1.ListOptions) (*GroupMemberList, error)
	// Add one or more members to the group identified by given ID.
	// Required permissions:
	// - iam.group.update on organization that owns the group
	AddGroupMembers(context.Context, *GroupMembersRequest) (*v1.Empty, error)
	// Remove one or more members from the group identified by given ID.
	// Required permissions:
	// - iam.group.update on organization that owns the group
	DeleteGroupMembers(context.Context, *GroupMembersRequest) (*v1.Empty, error)
	// Is the user identified by the given user ID a member of the group identified by the given group ID.
	// Required permissions:
	// - iam.group.get on organization that owns the group, unless the requested user is identical to the authenticated user.
	// Note that if the identified group does not exist, no is returned.
	IsMemberOfGroup(context.Context, *IsMemberOfGroupRequest) (*v1.YesOrNo, error)
	// Fetch all roles in the organization identified by the given context ID.
	// Required permissions:
	// - iam.role.list on organization identified by given context ID.
	ListRoles(context.Context, *v1.ListOptions) (*RoleList, error)
	// Fetch a role by its id.
	// Required permissions:
	// - iam.role.get on organization that owns the role
	GetRole(context.Context, *v1.IDOptions) (*Role, error)
	// Create a custom role
	// Required permissions:
	// - iam.role.create on organization that owns the role
	CreateRole(context.Context, *Role) (*Role, error)
	// Update a custom role
	// Required permissions:
	// - iam.role.update on organization that owns the role
	UpdateRole(context.Context, *Role) (*Role, error)
	// Delete a custom role
	// Required permissions:
	// - iam.role.delete on organization that owns the role
	DeleteRole(context.Context, *v1.IDOptions) (*v1.Empty, error)
	// Get the policy for a resource identified by given URL.
	// Required permissions:
	// - iam.policy.get on resource identified by the url
	GetPolicy(context.Context, *v1.URLOptions) (*Policy, error)
	// Add one or more RoleBindings to the policy of a resource identified by given URL.
	// Required permissions:
	// - iam.policy.update on resource identified by the url
	AddRoleBindings(context.Context, *RoleBindingsRequest) (*Policy, error)
	// Remove one or more RoleBindings from the policy of a resource identified by given URL.
	// Required permissions:
	// - iam.policy.update on resource identified by the url
	DeleteRoleBindings(context.Context, *RoleBindingsRequest) (*Policy, error)
	// Return the list of permissions that are available to the currently authenticated
	// used for actions on the resource identified by the given URL.
	// Required permissions:
	// - None
	GetEffectivePermissions(context.Context, *v1.URLOptions) (*PermissionList, error)
	// Does the authenticated user have all of the requested permissions for the resource
	// identified by the given URL?
	// Required permissions:
	// - None
	HasPermissions(context.Context, *HasPermissionsRequest) (*v1.YesOrNo, error)
	// List all known permissions.
	// Required permissions:
	// - None
	ListPermissions(context.Context, *v1.Empty) (*PermissionList, error)
	// Fetch all API keys owned by the authenticated caller.
	// Required permissions:
	// - None
	ListAPIKeys(context.Context, *v1.ListOptions) (*APIKeyList, error)
	// Fetch an API key by its id.
	// The API key must be owned by the authenticated caller.
	// Required permissions:
	// - None
	GetAPIKey(context.Context, *v1.IDOptions) (*APIKey, error)
	// Create a new API key.
	// The API key will be owned by the authenticated caller.
	// Required permissions:
	// - None
	CreateAPIKey(context.Context, *CreateAPIKeyRequest) (*APIKeySecret, error)
	// Ensure that the expiration date of the API key identified by given ID
	// is either in the past or set to now.
	// The API key must be owned by the authenticated caller.
	// Required permissions:
	// - None
	RevokeAPIKey(context.Context, *v1.IDOptions) (*v1.Empty, error)
	// Delete the API key identified by given ID
	// The API key must be owned by the authenticated caller.
	// Required permissions:
	// - None
	DeleteAPIKey(context.Context, *v1.IDOptions) (*v1.Empty, error)
	// Authenticate using an API key.
	// If authentication succeeds, this function returns a bearer token.
	// That token must be used to authenticate all other API requests.
	// If the given API key identifier is invalid or expired, or an incorrect secret
	// is given, this function will return an unauthenticated error.
	// Required permissions:
	// - None
	AuthenticateAPIKey(context.Context, *AuthenticateAPIKeyRequest) (*AuthenticateAPIKeyResponse, error)
	// Renew a non-expired API key authentication token.
	// This allows to extend the lifetime of a token created by AuthenticateAPIKey.
	// If the given token is invalid or expired, or the underlying API key is expired
	// this function will return an unauthenticated error.
	// Required permissions:
	// - None
	RenewAPIKeyToken(context.Context, *RenewAPIKeyTokenRequest) (*RenewAPIKeyTokenResponse, error)
	// Revoke an API key authentication token.
	// This function will return a non-error response, even if the given token
	// is invalid or already expired.
	// Required permissions:
	// - None
	RevokeAPIKeyToken(context.Context, *RevokeAPIKeyTokenRequest) (*v1.Empty, error)
}

IAMServiceServer is the server API for IAMService service.

type IsMemberOfGroupRequest

type IsMemberOfGroupRequest struct {
	// Identifier of the user
	UserId string `protobuf:"bytes,1,opt,name=user_id,json=userId,proto3" json:"user_id,omitempty"`
	// Identifier of the group
	GroupId              string   `protobuf:"bytes,2,opt,name=group_id,json=groupId,proto3" json:"group_id,omitempty"`
	XXX_NoUnkeyedLiteral struct{} `json:"-"`
	XXX_unrecognized     []byte   `json:"-"`
	XXX_sizecache        int32    `json:"-"`
}

Request arguments for IsMemberOfGroup.

func (*IsMemberOfGroupRequest) Descriptor

func (*IsMemberOfGroupRequest) Descriptor() ([]byte, []int)

func (*IsMemberOfGroupRequest) GetGroupId

func (m *IsMemberOfGroupRequest) GetGroupId() string

func (*IsMemberOfGroupRequest) GetUserId

func (m *IsMemberOfGroupRequest) GetUserId() string

func (*IsMemberOfGroupRequest) Marshal

func (m *IsMemberOfGroupRequest) Marshal() (dAtA []byte, err error)

func (*IsMemberOfGroupRequest) MarshalTo

func (m *IsMemberOfGroupRequest) MarshalTo(dAtA []byte) (int, error)

func (*IsMemberOfGroupRequest) MarshalToSizedBuffer

func (m *IsMemberOfGroupRequest) MarshalToSizedBuffer(dAtA []byte) (int, error)

func (*IsMemberOfGroupRequest) ProtoMessage

func (*IsMemberOfGroupRequest) ProtoMessage()

func (*IsMemberOfGroupRequest) Reset

func (m *IsMemberOfGroupRequest) Reset()

func (*IsMemberOfGroupRequest) Size

func (m *IsMemberOfGroupRequest) Size() (n int)

func (*IsMemberOfGroupRequest) String

func (m *IsMemberOfGroupRequest) String() string

func (*IsMemberOfGroupRequest) Unmarshal

func (m *IsMemberOfGroupRequest) Unmarshal(dAtA []byte) error

func (*IsMemberOfGroupRequest) XXX_DiscardUnknown

func (m *IsMemberOfGroupRequest) XXX_DiscardUnknown()

func (*IsMemberOfGroupRequest) XXX_Marshal

func (m *IsMemberOfGroupRequest) XXX_Marshal(b []byte, deterministic bool) ([]byte, error)

func (*IsMemberOfGroupRequest) XXX_Merge

func (m *IsMemberOfGroupRequest) XXX_Merge(src proto.Message)

func (*IsMemberOfGroupRequest) XXX_Size

func (m *IsMemberOfGroupRequest) XXX_Size() int

func (*IsMemberOfGroupRequest) XXX_Unmarshal

func (m *IsMemberOfGroupRequest) XXX_Unmarshal(b []byte) error

type PermissionList

type PermissionList struct {
	Items                []string `protobuf:"bytes,1,rep,name=items,proto3" json:"items,omitempty"`
	XXX_NoUnkeyedLiteral struct{} `json:"-"`
	XXX_unrecognized     []byte   `json:"-"`
	XXX_sizecache        int32    `json:"-"`
}

List of permissions.

func (*PermissionList) Descriptor

func (*PermissionList) Descriptor() ([]byte, []int)

func (*PermissionList) GetItems

func (m *PermissionList) GetItems() []string

func (*PermissionList) Marshal

func (m *PermissionList) Marshal() (dAtA []byte, err error)

func (*PermissionList) MarshalTo

func (m *PermissionList) MarshalTo(dAtA []byte) (int, error)

func (*PermissionList) MarshalToSizedBuffer

func (m *PermissionList) MarshalToSizedBuffer(dAtA []byte) (int, error)

func (*PermissionList) ProtoMessage

func (*PermissionList) ProtoMessage()

func (*PermissionList) Reset

func (m *PermissionList) Reset()

func (*PermissionList) Size

func (m *PermissionList) Size() (n int)

func (*PermissionList) String

func (m *PermissionList) String() string

func (*PermissionList) Unmarshal

func (m *PermissionList) Unmarshal(dAtA []byte) error

func (*PermissionList) XXX_DiscardUnknown

func (m *PermissionList) XXX_DiscardUnknown()

func (*PermissionList) XXX_Marshal

func (m *PermissionList) XXX_Marshal(b []byte, deterministic bool) ([]byte, error)

func (*PermissionList) XXX_Merge

func (m *PermissionList) XXX_Merge(src proto.Message)

func (*PermissionList) XXX_Size

func (m *PermissionList) XXX_Size() int

func (*PermissionList) XXX_Unmarshal

func (m *PermissionList) XXX_Unmarshal(b []byte) error

type Policy

type Policy struct {
	// URL of the resource to which this policy applies.
	ResourceUrl string `protobuf:"bytes,1,opt,name=resource_url,json=resourceUrl,proto3" json:"resource_url,omitempty"`
	// Role bindings to apply to the resource.
	Bindings             []*RoleBinding `protobuf:"bytes,2,rep,name=bindings,proto3" json:"bindings,omitempty"`
	XXX_NoUnkeyedLiteral struct{}       `json:"-"`
	XXX_unrecognized     []byte         `json:"-"`
	XXX_sizecache        int32          `json:"-"`
}

Policy bindings members to roles for access to a resource.

func (*Policy) Descriptor

func (*Policy) Descriptor() ([]byte, []int)

func (*Policy) GetBindings

func (m *Policy) GetBindings() []*RoleBinding

func (*Policy) GetResourceUrl

func (m *Policy) GetResourceUrl() string

func (*Policy) Marshal

func (m *Policy) Marshal() (dAtA []byte, err error)

func (*Policy) MarshalTo

func (m *Policy) MarshalTo(dAtA []byte) (int, error)

func (*Policy) MarshalToSizedBuffer

func (m *Policy) MarshalToSizedBuffer(dAtA []byte) (int, error)

func (*Policy) ProtoMessage

func (*Policy) ProtoMessage()

func (*Policy) Reset

func (m *Policy) Reset()

func (*Policy) Size

func (m *Policy) Size() (n int)

func (*Policy) String

func (m *Policy) String() string

func (*Policy) Unmarshal

func (m *Policy) Unmarshal(dAtA []byte) error

func (*Policy) XXX_DiscardUnknown

func (m *Policy) XXX_DiscardUnknown()

func (*Policy) XXX_Marshal

func (m *Policy) XXX_Marshal(b []byte, deterministic bool) ([]byte, error)

func (*Policy) XXX_Merge

func (m *Policy) XXX_Merge(src proto.Message)

func (*Policy) XXX_Size

func (m *Policy) XXX_Size() int

func (*Policy) XXX_Unmarshal

func (m *Policy) XXX_Unmarshal(b []byte) error

type RenewAPIKeyTokenRequest

type RenewAPIKeyTokenRequest struct {
	// Bearer token
	Token string `protobuf:"bytes,1,opt,name=token,proto3" json:"token,omitempty"`
	// Extended life time of the token.
	// By default, a renewed token will have a default lifetime from the moment
	// of the renew call.
	// If this field is set, then this TTL is used reduce the default TTL
	// of the renewed token. It cannot be used to increase the default
	// lifetime of the renewed token.
	TimeToLive           *types.Duration `protobuf:"bytes,2,opt,name=time_to_live,json=timeToLive,proto3" json:"time_to_live,omitempty"`
	XXX_NoUnkeyedLiteral struct{}        `json:"-"`
	XXX_unrecognized     []byte          `json:"-"`
	XXX_sizecache        int32           `json:"-"`
}

Request arguments for RenewAPIKeyToken.

func (*RenewAPIKeyTokenRequest) Descriptor

func (*RenewAPIKeyTokenRequest) Descriptor() ([]byte, []int)

func (*RenewAPIKeyTokenRequest) GetTimeToLive

func (m *RenewAPIKeyTokenRequest) GetTimeToLive() *types.Duration

func (*RenewAPIKeyTokenRequest) GetToken

func (m *RenewAPIKeyTokenRequest) GetToken() string

func (*RenewAPIKeyTokenRequest) Marshal

func (m *RenewAPIKeyTokenRequest) Marshal() (dAtA []byte, err error)

func (*RenewAPIKeyTokenRequest) MarshalTo

func (m *RenewAPIKeyTokenRequest) MarshalTo(dAtA []byte) (int, error)

func (*RenewAPIKeyTokenRequest) MarshalToSizedBuffer

func (m *RenewAPIKeyTokenRequest) MarshalToSizedBuffer(dAtA []byte) (int, error)

func (*RenewAPIKeyTokenRequest) ProtoMessage

func (*RenewAPIKeyTokenRequest) ProtoMessage()

func (*RenewAPIKeyTokenRequest) Reset

func (m *RenewAPIKeyTokenRequest) Reset()

func (*RenewAPIKeyTokenRequest) Size

func (m *RenewAPIKeyTokenRequest) Size() (n int)

func (*RenewAPIKeyTokenRequest) String

func (m *RenewAPIKeyTokenRequest) String() string

func (*RenewAPIKeyTokenRequest) Unmarshal

func (m *RenewAPIKeyTokenRequest) Unmarshal(dAtA []byte) error

func (*RenewAPIKeyTokenRequest) XXX_DiscardUnknown

func (m *RenewAPIKeyTokenRequest) XXX_DiscardUnknown()

func (*RenewAPIKeyTokenRequest) XXX_Marshal

func (m *RenewAPIKeyTokenRequest) XXX_Marshal(b []byte, deterministic bool) ([]byte, error)

func (*RenewAPIKeyTokenRequest) XXX_Merge

func (m *RenewAPIKeyTokenRequest) XXX_Merge(src proto.Message)

func (*RenewAPIKeyTokenRequest) XXX_Size

func (m *RenewAPIKeyTokenRequest) XXX_Size() int

func (*RenewAPIKeyTokenRequest) XXX_Unmarshal

func (m *RenewAPIKeyTokenRequest) XXX_Unmarshal(b []byte) error

type RenewAPIKeyTokenResponse

type RenewAPIKeyTokenResponse struct {
	// Actual life time of the token.
	TimeToLive           *types.Duration `protobuf:"bytes,1,opt,name=time_to_live,json=timeToLive,proto3" json:"time_to_live,omitempty"`
	XXX_NoUnkeyedLiteral struct{}        `json:"-"`
	XXX_unrecognized     []byte          `json:"-"`
	XXX_sizecache        int32           `json:"-"`
}

Response for RenewAPIKeyToken.

func (*RenewAPIKeyTokenResponse) Descriptor

func (*RenewAPIKeyTokenResponse) Descriptor() ([]byte, []int)

func (*RenewAPIKeyTokenResponse) GetTimeToLive

func (m *RenewAPIKeyTokenResponse) GetTimeToLive() *types.Duration

func (*RenewAPIKeyTokenResponse) Marshal

func (m *RenewAPIKeyTokenResponse) Marshal() (dAtA []byte, err error)

func (*RenewAPIKeyTokenResponse) MarshalTo

func (m *RenewAPIKeyTokenResponse) MarshalTo(dAtA []byte) (int, error)

func (*RenewAPIKeyTokenResponse) MarshalToSizedBuffer

func (m *RenewAPIKeyTokenResponse) MarshalToSizedBuffer(dAtA []byte) (int, error)

func (*RenewAPIKeyTokenResponse) ProtoMessage

func (*RenewAPIKeyTokenResponse) ProtoMessage()

func (*RenewAPIKeyTokenResponse) Reset

func (m *RenewAPIKeyTokenResponse) Reset()

func (*RenewAPIKeyTokenResponse) Size

func (m *RenewAPIKeyTokenResponse) Size() (n int)

func (*RenewAPIKeyTokenResponse) String

func (m *RenewAPIKeyTokenResponse) String() string

func (*RenewAPIKeyTokenResponse) Unmarshal

func (m *RenewAPIKeyTokenResponse) Unmarshal(dAtA []byte) error

func (*RenewAPIKeyTokenResponse) XXX_DiscardUnknown

func (m *RenewAPIKeyTokenResponse) XXX_DiscardUnknown()

func (*RenewAPIKeyTokenResponse) XXX_Marshal

func (m *RenewAPIKeyTokenResponse) XXX_Marshal(b []byte, deterministic bool) ([]byte, error)

func (*RenewAPIKeyTokenResponse) XXX_Merge

func (m *RenewAPIKeyTokenResponse) XXX_Merge(src proto.Message)

func (*RenewAPIKeyTokenResponse) XXX_Size

func (m *RenewAPIKeyTokenResponse) XXX_Size() int

func (*RenewAPIKeyTokenResponse) XXX_Unmarshal

func (m *RenewAPIKeyTokenResponse) XXX_Unmarshal(b []byte) error

type RevokeAPIKeyTokenRequest

type RevokeAPIKeyTokenRequest struct {
	// Bearer token
	Token                string   `protobuf:"bytes,1,opt,name=token,proto3" json:"token,omitempty"`
	XXX_NoUnkeyedLiteral struct{} `json:"-"`
	XXX_unrecognized     []byte   `json:"-"`
	XXX_sizecache        int32    `json:"-"`
}

Request arguments for RevokeAPIKeyToken.

func (*RevokeAPIKeyTokenRequest) Descriptor

func (*RevokeAPIKeyTokenRequest) Descriptor() ([]byte, []int)

func (*RevokeAPIKeyTokenRequest) GetToken

func (m *RevokeAPIKeyTokenRequest) GetToken() string

func (*RevokeAPIKeyTokenRequest) Marshal

func (m *RevokeAPIKeyTokenRequest) Marshal() (dAtA []byte, err error)

func (*RevokeAPIKeyTokenRequest) MarshalTo

func (m *RevokeAPIKeyTokenRequest) MarshalTo(dAtA []byte) (int, error)

func (*RevokeAPIKeyTokenRequest) MarshalToSizedBuffer

func (m *RevokeAPIKeyTokenRequest) MarshalToSizedBuffer(dAtA []byte) (int, error)

func (*RevokeAPIKeyTokenRequest) ProtoMessage

func (*RevokeAPIKeyTokenRequest) ProtoMessage()

func (*RevokeAPIKeyTokenRequest) Reset

func (m *RevokeAPIKeyTokenRequest) Reset()

func (*RevokeAPIKeyTokenRequest) Size

func (m *RevokeAPIKeyTokenRequest) Size() (n int)

func (*RevokeAPIKeyTokenRequest) String

func (m *RevokeAPIKeyTokenRequest) String() string

func (*RevokeAPIKeyTokenRequest) Unmarshal

func (m *RevokeAPIKeyTokenRequest) Unmarshal(dAtA []byte) error

func (*RevokeAPIKeyTokenRequest) XXX_DiscardUnknown

func (m *RevokeAPIKeyTokenRequest) XXX_DiscardUnknown()

func (*RevokeAPIKeyTokenRequest) XXX_Marshal

func (m *RevokeAPIKeyTokenRequest) XXX_Marshal(b []byte, deterministic bool) ([]byte, error)

func (*RevokeAPIKeyTokenRequest) XXX_Merge

func (m *RevokeAPIKeyTokenRequest) XXX_Merge(src proto.Message)

func (*RevokeAPIKeyTokenRequest) XXX_Size

func (m *RevokeAPIKeyTokenRequest) XXX_Size() int

func (*RevokeAPIKeyTokenRequest) XXX_Unmarshal

func (m *RevokeAPIKeyTokenRequest) XXX_Unmarshal(b []byte) error

type Role

type Role struct {
	// System identifier of the role.
	// This is a read-only value.
	Id string `protobuf:"bytes,1,opt,name=id,proto3" json:"id,omitempty"`
	// Identifier of the organization that owns this role.
	// This value is undefined for predefined roles.
	OrganizationId string `protobuf:"bytes,2,opt,name=organization_id,json=organizationId,proto3" json:"organization_id,omitempty"`
	// Name of the role
	Name string `protobuf:"bytes,3,opt,name=name,proto3" json:"name,omitempty"`
	// Description of the role
	Description string `protobuf:"bytes,4,opt,name=description,proto3" json:"description,omitempty"`
	// Permissions to grant when this role is bound.
	Permissions []string `protobuf:"bytes,5,rep,name=permissions,proto3" json:"permissions,omitempty"`
	// Set if this role is predefined.
	// This is a read-only value.
	IsPredefined bool `protobuf:"varint,6,opt,name=is_predefined,json=isPredefined,proto3" json:"is_predefined,omitempty"`
	// The creation timestamp of the role
	CreatedAt *types.Timestamp `protobuf:"bytes,7,opt,name=created_at,json=createdAt,proto3" json:"created_at,omitempty"`
	// The deletion timestamp of the role
	DeletedAt *types.Timestamp `protobuf:"bytes,8,opt,name=deleted_at,json=deletedAt,proto3" json:"deleted_at,omitempty"`
	// Set when this organization is deleted.
	// This is a read-only value.
	IsDeleted bool `protobuf:"varint,9,opt,name=is_deleted,json=isDeleted,proto3" json:"is_deleted,omitempty"`
	// URL of this resource
	// This is a read-only value and cannot be initialized.
	Url                  string   `protobuf:"bytes,10,opt,name=url,proto3" json:"url,omitempty"`
	XXX_NoUnkeyedLiteral struct{} `json:"-"`
	XXX_unrecognized     []byte   `json:"-"`
	XXX_sizecache        int32    `json:"-"`
}

A role is a list of permissions. Roles can be bound to resources for members.

func (*Role) Descriptor

func (*Role) Descriptor() ([]byte, []int)

func (*Role) GetCreatedAt

func (m *Role) GetCreatedAt() *types.Timestamp

func (*Role) GetDeletedAt

func (m *Role) GetDeletedAt() *types.Timestamp

func (*Role) GetDescription

func (m *Role) GetDescription() string

func (*Role) GetId

func (m *Role) GetId() string

func (*Role) GetIsDeleted

func (m *Role) GetIsDeleted() bool

func (*Role) GetIsPredefined

func (m *Role) GetIsPredefined() bool

func (*Role) GetName

func (m *Role) GetName() string

func (*Role) GetOrganizationId

func (m *Role) GetOrganizationId() string

func (*Role) GetPermissions

func (m *Role) GetPermissions() []string

func (*Role) GetUrl

func (m *Role) GetUrl() string

func (*Role) Marshal

func (m *Role) Marshal() (dAtA []byte, err error)

func (*Role) MarshalTo

func (m *Role) MarshalTo(dAtA []byte) (int, error)

func (*Role) MarshalToSizedBuffer

func (m *Role) MarshalToSizedBuffer(dAtA []byte) (int, error)

func (*Role) ProtoMessage

func (*Role) ProtoMessage()

func (*Role) Reset

func (m *Role) Reset()

func (*Role) Size

func (m *Role) Size() (n int)

func (*Role) String

func (m *Role) String() string

func (*Role) Unmarshal

func (m *Role) Unmarshal(dAtA []byte) error

func (*Role) XXX_DiscardUnknown

func (m *Role) XXX_DiscardUnknown()

func (*Role) XXX_Marshal

func (m *Role) XXX_Marshal(b []byte, deterministic bool) ([]byte, error)

func (*Role) XXX_Merge

func (m *Role) XXX_Merge(src proto.Message)

func (*Role) XXX_Size

func (m *Role) XXX_Size() int

func (*Role) XXX_Unmarshal

func (m *Role) XXX_Unmarshal(b []byte) error

type RoleBinding

type RoleBinding struct {
	// System identifier of the role-binding.
	// This is a read-only value.
	Id string `protobuf:"bytes,1,opt,name=id,proto3" json:"id,omitempty"`
	// Identifier of the member to bind a role to.
	// Member ID is formatted as:
	// - user:<user_id>
	// - group:<group_id>
	MemberId string `protobuf:"bytes,2,opt,name=member_id,json=memberId,proto3" json:"member_id,omitempty"`
	// Identifier of the Role to grant to member
	RoleId string `protobuf:"bytes,3,opt,name=role_id,json=roleId,proto3" json:"role_id,omitempty"`
	// If set, this this role-binding cannot be deleted
	// This is a read-only value.
	DeleteNotAllowed     bool     `protobuf:"varint,4,opt,name=delete_not_allowed,json=deleteNotAllowed,proto3" json:"delete_not_allowed,omitempty"`
	XXX_NoUnkeyedLiteral struct{} `json:"-"`
	XXX_unrecognized     []byte   `json:"-"`
	XXX_sizecache        int32    `json:"-"`
}

RoleBinding binds a Role to a member.

func (*RoleBinding) Descriptor

func (*RoleBinding) Descriptor() ([]byte, []int)

func (*RoleBinding) GetDeleteNotAllowed

func (m *RoleBinding) GetDeleteNotAllowed() bool

func (*RoleBinding) GetId

func (m *RoleBinding) GetId() string

func (*RoleBinding) GetMemberId

func (m *RoleBinding) GetMemberId() string

func (*RoleBinding) GetRoleId

func (m *RoleBinding) GetRoleId() string

func (*RoleBinding) Marshal

func (m *RoleBinding) Marshal() (dAtA []byte, err error)

func (*RoleBinding) MarshalTo

func (m *RoleBinding) MarshalTo(dAtA []byte) (int, error)

func (*RoleBinding) MarshalToSizedBuffer

func (m *RoleBinding) MarshalToSizedBuffer(dAtA []byte) (int, error)

func (*RoleBinding) ProtoMessage

func (*RoleBinding) ProtoMessage()

func (*RoleBinding) Reset

func (m *RoleBinding) Reset()

func (*RoleBinding) Size

func (m *RoleBinding) Size() (n int)

func (*RoleBinding) String

func (m *RoleBinding) String() string

func (*RoleBinding) Unmarshal

func (m *RoleBinding) Unmarshal(dAtA []byte) error

func (*RoleBinding) XXX_DiscardUnknown

func (m *RoleBinding) XXX_DiscardUnknown()

func (*RoleBinding) XXX_Marshal

func (m *RoleBinding) XXX_Marshal(b []byte, deterministic bool) ([]byte, error)

func (*RoleBinding) XXX_Merge

func (m *RoleBinding) XXX_Merge(src proto.Message)

func (*RoleBinding) XXX_Size

func (m *RoleBinding) XXX_Size() int

func (*RoleBinding) XXX_Unmarshal

func (m *RoleBinding) XXX_Unmarshal(b []byte) error

type RoleBindingsRequest

type RoleBindingsRequest struct {
	// URL of the resource to add/remove policy binding to/from.
	ResourceUrl string `protobuf:"bytes,1,opt,name=resource_url,json=resourceUrl,proto3" json:"resource_url,omitempty"`
	// Role bindings to add/remove to the policy.
	Bindings             []*RoleBinding `protobuf:"bytes,2,rep,name=bindings,proto3" json:"bindings,omitempty"`
	XXX_NoUnkeyedLiteral struct{}       `json:"-"`
	XXX_unrecognized     []byte         `json:"-"`
	XXX_sizecache        int32          `json:"-"`
}

Request arguments for Add/DeleteRoleBindings.

func (*RoleBindingsRequest) Descriptor

func (*RoleBindingsRequest) Descriptor() ([]byte, []int)

func (*RoleBindingsRequest) GetBindings

func (m *RoleBindingsRequest) GetBindings() []*RoleBinding

func (*RoleBindingsRequest) GetResourceUrl

func (m *RoleBindingsRequest) GetResourceUrl() string

func (*RoleBindingsRequest) Marshal

func (m *RoleBindingsRequest) Marshal() (dAtA []byte, err error)

func (*RoleBindingsRequest) MarshalTo

func (m *RoleBindingsRequest) MarshalTo(dAtA []byte) (int, error)

func (*RoleBindingsRequest) MarshalToSizedBuffer

func (m *RoleBindingsRequest) MarshalToSizedBuffer(dAtA []byte) (int, error)

func (*RoleBindingsRequest) ProtoMessage

func (*RoleBindingsRequest) ProtoMessage()

func (*RoleBindingsRequest) Reset

func (m *RoleBindingsRequest) Reset()

func (*RoleBindingsRequest) Size

func (m *RoleBindingsRequest) Size() (n int)

func (*RoleBindingsRequest) String

func (m *RoleBindingsRequest) String() string

func (*RoleBindingsRequest) Unmarshal

func (m *RoleBindingsRequest) Unmarshal(dAtA []byte) error

func (*RoleBindingsRequest) XXX_DiscardUnknown

func (m *RoleBindingsRequest) XXX_DiscardUnknown()

func (*RoleBindingsRequest) XXX_Marshal

func (m *RoleBindingsRequest) XXX_Marshal(b []byte, deterministic bool) ([]byte, error)

func (*RoleBindingsRequest) XXX_Merge

func (m *RoleBindingsRequest) XXX_Merge(src proto.Message)

func (*RoleBindingsRequest) XXX_Size

func (m *RoleBindingsRequest) XXX_Size() int

func (*RoleBindingsRequest) XXX_Unmarshal

func (m *RoleBindingsRequest) XXX_Unmarshal(b []byte) error

type RoleCallback

type RoleCallback func(context.Context, *Role) error

RoleCallback is a callback for individual roles.

type RoleList

type RoleList struct {
	Items                []*Role  `protobuf:"bytes,1,rep,name=items,proto3" json:"items,omitempty"`
	XXX_NoUnkeyedLiteral struct{} `json:"-"`
	XXX_unrecognized     []byte   `json:"-"`
	XXX_sizecache        int32    `json:"-"`
}

List of roles.

func (*RoleList) Descriptor

func (*RoleList) Descriptor() ([]byte, []int)

func (*RoleList) GetItems

func (m *RoleList) GetItems() []*Role

func (*RoleList) Marshal

func (m *RoleList) Marshal() (dAtA []byte, err error)

func (*RoleList) MarshalTo

func (m *RoleList) MarshalTo(dAtA []byte) (int, error)

func (*RoleList) MarshalToSizedBuffer

func (m *RoleList) MarshalToSizedBuffer(dAtA []byte) (int, error)

func (*RoleList) ProtoMessage

func (*RoleList) ProtoMessage()

func (*RoleList) Reset

func (m *RoleList) Reset()

func (*RoleList) Size

func (m *RoleList) Size() (n int)

func (*RoleList) String

func (m *RoleList) String() string

func (*RoleList) Unmarshal

func (m *RoleList) Unmarshal(dAtA []byte) error

func (*RoleList) XXX_DiscardUnknown

func (m *RoleList) XXX_DiscardUnknown()

func (*RoleList) XXX_Marshal

func (m *RoleList) XXX_Marshal(b []byte, deterministic bool) ([]byte, error)

func (*RoleList) XXX_Merge

func (m *RoleList) XXX_Merge(src proto.Message)

func (*RoleList) XXX_Size

func (m *RoleList) XXX_Size() int

func (*RoleList) XXX_Unmarshal

func (m *RoleList) XXX_Unmarshal(b []byte) error

type UnimplementedIAMServiceServer

type UnimplementedIAMServiceServer struct {
}

UnimplementedIAMServiceServer can be embedded to have forward compatible implementations.

func (*UnimplementedIAMServiceServer) AddGroupMembers

func (*UnimplementedIAMServiceServer) AddRoleBindings

func (*UnimplementedIAMServiceServer) AuthenticateAPIKey

func (*UnimplementedIAMServiceServer) CreateAPIKey

func (*UnimplementedIAMServiceServer) CreateGroup

func (*UnimplementedIAMServiceServer) CreateGroup(ctx context.Context, req *Group) (*Group, error)

func (*UnimplementedIAMServiceServer) CreateRole

func (*UnimplementedIAMServiceServer) CreateRole(ctx context.Context, req *Role) (*Role, error)

func (*UnimplementedIAMServiceServer) DeleteAPIKey

func (*UnimplementedIAMServiceServer) DeleteAPIKey(ctx context.Context, req *v1.IDOptions) (*v1.Empty, error)

func (*UnimplementedIAMServiceServer) DeleteGroup

func (*UnimplementedIAMServiceServer) DeleteGroup(ctx context.Context, req *v1.IDOptions) (*v1.Empty, error)

func (*UnimplementedIAMServiceServer) DeleteGroupMembers

func (*UnimplementedIAMServiceServer) DeleteGroupMembers(ctx context.Context, req *GroupMembersRequest) (*v1.Empty, error)

func (*UnimplementedIAMServiceServer) DeleteRole

func (*UnimplementedIAMServiceServer) DeleteRoleBindings

func (*UnimplementedIAMServiceServer) DeleteRoleBindings(ctx context.Context, req *RoleBindingsRequest) (*Policy, error)

func (*UnimplementedIAMServiceServer) GetAPIKey

func (*UnimplementedIAMServiceServer) GetAPIVersion

func (*UnimplementedIAMServiceServer) GetAPIVersion(ctx context.Context, req *v1.Empty) (*v1.Version, error)

func (*UnimplementedIAMServiceServer) GetEffectivePermissions

func (*UnimplementedIAMServiceServer) GetEffectivePermissions(ctx context.Context, req *v1.URLOptions) (*PermissionList, error)

func (*UnimplementedIAMServiceServer) GetGroup

func (*UnimplementedIAMServiceServer) GetPolicy

func (*UnimplementedIAMServiceServer) GetRole

func (*UnimplementedIAMServiceServer) GetThisUser

func (*UnimplementedIAMServiceServer) GetThisUser(ctx context.Context, req *v1.Empty) (*User, error)

func (*UnimplementedIAMServiceServer) GetUser

func (*UnimplementedIAMServiceServer) HasPermissions

func (*UnimplementedIAMServiceServer) IsMemberOfGroup

func (*UnimplementedIAMServiceServer) ListAPIKeys

func (*UnimplementedIAMServiceServer) ListGroupMembers

func (*UnimplementedIAMServiceServer) ListGroups

func (*UnimplementedIAMServiceServer) ListPermissions

func (*UnimplementedIAMServiceServer) ListPermissions(ctx context.Context, req *v1.Empty) (*PermissionList, error)

func (*UnimplementedIAMServiceServer) ListRoles

func (*UnimplementedIAMServiceServer) RenewAPIKeyToken

func (*UnimplementedIAMServiceServer) ResendUserMobilePhoneVerification

func (*UnimplementedIAMServiceServer) ResendUserMobilePhoneVerification(ctx context.Context, req *v1.Empty) (*v1.Empty, error)

func (*UnimplementedIAMServiceServer) RevokeAPIKey

func (*UnimplementedIAMServiceServer) RevokeAPIKey(ctx context.Context, req *v1.IDOptions) (*v1.Empty, error)

func (*UnimplementedIAMServiceServer) RevokeAPIKeyToken

func (*UnimplementedIAMServiceServer) UpdateGroup

func (*UnimplementedIAMServiceServer) UpdateGroup(ctx context.Context, req *Group) (*Group, error)

func (*UnimplementedIAMServiceServer) UpdateRole

func (*UnimplementedIAMServiceServer) UpdateRole(ctx context.Context, req *Role) (*Role, error)

func (*UnimplementedIAMServiceServer) UpdateUser

func (*UnimplementedIAMServiceServer) UpdateUser(ctx context.Context, req *User) (*User, error)

func (*UnimplementedIAMServiceServer) VerifyUserMobilePhone

type User

type User struct {
	// Identifier of the user.
	// This is a read-only value.
	Id string `protobuf:"bytes,1,opt,name=id,proto3" json:"id,omitempty"`
	// Primary email address of the user.
	// All emails send to this user will use this address.
	// This is a read-only value.
	Email string `protobuf:"bytes,2,opt,name=email,proto3" json:"email,omitempty"`
	// Name of the user.
	// This may be empty if not filled out by the user.
	Name string `protobuf:"bytes,3,opt,name=name,proto3" json:"name,omitempty"`
	// Given name of the user.
	// This may be empty if not filled out by the user.
	GivenName string `protobuf:"bytes,4,opt,name=given_name,json=givenName,proto3" json:"given_name,omitempty"`
	// Family name of the user.
	// This may be empty if not filled out by the user.
	FamilyName string `protobuf:"bytes,5,opt,name=family_name,json=familyName,proto3" json:"family_name,omitempty"`
	// The creation timestamp of the user.
	// This is a read-only value.
	CreatedAt *types.Timestamp `protobuf:"bytes,6,opt,name=created_at,json=createdAt,proto3" json:"created_at,omitempty"`
	// Additional email addresses of the user.
	// This will be filled in when the authentication provided
	// knows multiple email addresses for the user.
	// This is a read-only value.
	AdditionalEmails []string `protobuf:"bytes,7,rep,name=additional_emails,json=additionalEmails,proto3" json:"additional_emails,omitempty"`
	// Mobile phone number of the user.
	// This value must be unique globally.
	//
	// This field will not be filled, unless:
	// - The currently authenticated user is this user
	// - The currently authenticated user has `iam.user.get-personal-data` permission
	//   on the organization that user is a member of.
	//
	// This value can only be changed to a non-empty value.
	// If changed, the new number has to be verified again.
	MobilePhone string `protobuf:"bytes,8,opt,name=mobile_phone,json=mobilePhone,proto3" json:"mobile_phone,omitempty"`
	// Set when the mobile phone number has been successfully verified.
	// This is a read-only value.
	MobilePhoneVerified bool `protobuf:"varint,9,opt,name=mobile_phone_verified,json=mobilePhoneVerified,proto3" json:"mobile_phone_verified,omitempty"`
	// Company name of the user
	// This may be empty if not filled out by the user.
	CompanyName string `protobuf:"bytes,10,opt,name=company_name,json=companyName,proto3" json:"company_name,omitempty"`
	// If set, this user is denied access to the dashboard.
	// This is a read-only value.
	DashboardAccessDenied bool `` /* 128-byte string literal not displayed */
	// If set, this field describes the reason why this user is denied access to the dashboard.
	// This is a read-only value.
	DashboardAccessDeniedReason string `` /* 147-byte string literal not displayed */
	// If set, this user is currently being authenticated using an API key (identified by this ID)
	ApikeyId string `protobuf:"bytes,13,opt,name=apikey_id,json=apikeyId,proto3" json:"apikey_id,omitempty"`
	// If set, contains Slack name of this user in the arangodb-community slack.
	SlackName string `protobuf:"bytes,14,opt,name=slack_name,json=slackName,proto3" json:"slack_name,omitempty"`
	// The timestamp of the last login of the user.
	// This is a read-only value.
	LastLoginAt *types.Timestamp `protobuf:"bytes,15,opt,name=last_login_at,json=lastLoginAt,proto3" json:"last_login_at,omitempty"`
	// If set, contains IP address from which the user last logged in.
	LastIp string `protobuf:"bytes,16,opt,name=last_ip,json=lastIp,proto3" json:"last_ip,omitempty"`
	// Defines if a user's mobile phone number needs verification based on email root domain address.
	MobilePhoneNeedsVerification bool     `` /* 151-byte string literal not displayed */
	XXX_NoUnkeyedLiteral         struct{} `json:"-"`
	XXX_unrecognized             []byte   `json:"-"`
	XXX_sizecache                int32    `json:"-"`
}

User represents an actual person.

func (*User) Descriptor

func (*User) Descriptor() ([]byte, []int)

func (*User) GetAdditionalEmails

func (m *User) GetAdditionalEmails() []string

func (*User) GetAllEmails

func (u *User) GetAllEmails() []string

GetAllEmails returns all email addresses of the given user.

func (*User) GetApikeyId

func (m *User) GetApikeyId() string

func (*User) GetCompanyName

func (m *User) GetCompanyName() string

func (*User) GetCreatedAt

func (m *User) GetCreatedAt() *types.Timestamp

func (*User) GetDashboardAccessDenied

func (m *User) GetDashboardAccessDenied() bool

func (*User) GetDashboardAccessDeniedReason

func (m *User) GetDashboardAccessDeniedReason() string

func (*User) GetEmail

func (m *User) GetEmail() string

func (*User) GetFamilyName

func (m *User) GetFamilyName() string

func (*User) GetGivenName

func (m *User) GetGivenName() string

func (*User) GetId

func (m *User) GetId() string

func (*User) GetLastIp

func (m *User) GetLastIp() string

func (*User) GetLastLoginAt

func (m *User) GetLastLoginAt() *types.Timestamp

func (*User) GetMobilePhone

func (m *User) GetMobilePhone() string

func (*User) GetMobilePhoneNeedsVerification

func (m *User) GetMobilePhoneNeedsVerification() bool

func (*User) GetMobilePhoneVerified

func (m *User) GetMobilePhoneVerified() bool

func (*User) GetName

func (m *User) GetName() string

func (*User) GetSlackName

func (m *User) GetSlackName() string

func (*User) Marshal

func (m *User) Marshal() (dAtA []byte, err error)

func (*User) MarshalTo

func (m *User) MarshalTo(dAtA []byte) (int, error)

func (*User) MarshalToSizedBuffer

func (m *User) MarshalToSizedBuffer(dAtA []byte) (int, error)

func (*User) ProtoMessage

func (*User) ProtoMessage()

func (*User) Reset

func (m *User) Reset()

func (*User) Size

func (m *User) Size() (n int)

func (*User) String

func (m *User) String() string

func (*User) Unmarshal

func (m *User) Unmarshal(dAtA []byte) error

func (*User) XXX_DiscardUnknown

func (m *User) XXX_DiscardUnknown()

func (*User) XXX_Marshal

func (m *User) XXX_Marshal(b []byte, deterministic bool) ([]byte, error)

func (*User) XXX_Merge

func (m *User) XXX_Merge(src proto.Message)

func (*User) XXX_Size

func (m *User) XXX_Size() int

func (*User) XXX_Unmarshal

func (m *User) XXX_Unmarshal(b []byte) error

type VerifyUserMobilePhoneRequest

type VerifyUserMobilePhoneRequest struct {
	// Code that was send to the mobile phone number.
	Code                 string   `protobuf:"bytes,1,opt,name=code,proto3" json:"code,omitempty"`
	XXX_NoUnkeyedLiteral struct{} `json:"-"`
	XXX_unrecognized     []byte   `json:"-"`
	XXX_sizecache        int32    `json:"-"`
}

Request arguments for VerifyUserMobilePhone

func (*VerifyUserMobilePhoneRequest) Descriptor

func (*VerifyUserMobilePhoneRequest) Descriptor() ([]byte, []int)

func (*VerifyUserMobilePhoneRequest) GetCode

func (m *VerifyUserMobilePhoneRequest) GetCode() string

func (*VerifyUserMobilePhoneRequest) Marshal

func (m *VerifyUserMobilePhoneRequest) Marshal() (dAtA []byte, err error)

func (*VerifyUserMobilePhoneRequest) MarshalTo

func (m *VerifyUserMobilePhoneRequest) MarshalTo(dAtA []byte) (int, error)

func (*VerifyUserMobilePhoneRequest) MarshalToSizedBuffer

func (m *VerifyUserMobilePhoneRequest) MarshalToSizedBuffer(dAtA []byte) (int, error)

func (*VerifyUserMobilePhoneRequest) ProtoMessage

func (*VerifyUserMobilePhoneRequest) ProtoMessage()

func (*VerifyUserMobilePhoneRequest) Reset

func (m *VerifyUserMobilePhoneRequest) Reset()

func (*VerifyUserMobilePhoneRequest) Size

func (m *VerifyUserMobilePhoneRequest) Size() (n int)

func (*VerifyUserMobilePhoneRequest) String

func (*VerifyUserMobilePhoneRequest) Unmarshal

func (m *VerifyUserMobilePhoneRequest) Unmarshal(dAtA []byte) error

func (*VerifyUserMobilePhoneRequest) XXX_DiscardUnknown

func (m *VerifyUserMobilePhoneRequest) XXX_DiscardUnknown()

func (*VerifyUserMobilePhoneRequest) XXX_Marshal

func (m *VerifyUserMobilePhoneRequest) XXX_Marshal(b []byte, deterministic bool) ([]byte, error)

func (*VerifyUserMobilePhoneRequest) XXX_Merge

func (m *VerifyUserMobilePhoneRequest) XXX_Merge(src proto.Message)

func (*VerifyUserMobilePhoneRequest) XXX_Size

func (m *VerifyUserMobilePhoneRequest) XXX_Size() int

func (*VerifyUserMobilePhoneRequest) XXX_Unmarshal

func (m *VerifyUserMobilePhoneRequest) XXX_Unmarshal(b []byte) error

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL