admin

package
v0.0.0-...-5def1f5 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Sep 24, 2024 License: Apache-2.0 Imports: 20 Imported by: 0

Documentation

Overview

Package admin is a reverse proxy.

It translates gRPC into RESTful JSON APIs.

Index

Constants

This section is empty.

Variables

View Source 
var (
	ServiceAccountKeyAlgorithm_name = map[int32]string{
		0: "KEY_ALG_UNSPECIFIED",
		1: "KEY_ALG_RSA_1024",
		2: "KEY_ALG_RSA_2048",
	}
	ServiceAccountKeyAlgorithm_value = map[string]int32{
		"KEY_ALG_UNSPECIFIED": 0,
		"KEY_ALG_RSA_1024":    1,
		"KEY_ALG_RSA_2048":    2,
	}
)

Enum value maps for ServiceAccountKeyAlgorithm.

View Source 
var (
	ServiceAccountPrivateKeyType_name = map[int32]string{
		0: "TYPE_UNSPECIFIED",
		1: "TYPE_PKCS12_FILE",
		2: "TYPE_GOOGLE_CREDENTIALS_FILE",
	}
	ServiceAccountPrivateKeyType_value = map[string]int32{
		"TYPE_UNSPECIFIED":             0,
		"TYPE_PKCS12_FILE":             1,
		"TYPE_GOOGLE_CREDENTIALS_FILE": 2,
	}
)

Enum value maps for ServiceAccountPrivateKeyType.

View Source 
var (
	ServiceAccountPublicKeyType_name = map[int32]string{
		0: "TYPE_NONE",
		1: "TYPE_X509_PEM_FILE",
		2: "TYPE_RAW_PUBLIC_KEY",
	}
	ServiceAccountPublicKeyType_value = map[string]int32{
		"TYPE_NONE":           0,
		"TYPE_X509_PEM_FILE":  1,
		"TYPE_RAW_PUBLIC_KEY": 2,
	}
)

Enum value maps for ServiceAccountPublicKeyType.

View Source 
var (
	RoleView_name = map[int32]string{
		0: "BASIC",
		1: "FULL",
	}
	RoleView_value = map[string]int32{
		"BASIC": 0,
		"FULL":  1,
	}
)

Enum value maps for RoleView.

View Source 
var (
	ListServiceAccountKeysRequest_KeyType_name = map[int32]string{
		0: "KEY_TYPE_UNSPECIFIED",
		1: "USER_MANAGED",
		2: "SYSTEM_MANAGED",
	}
	ListServiceAccountKeysRequest_KeyType_value = map[string]int32{
		"KEY_TYPE_UNSPECIFIED": 0,
		"USER_MANAGED":         1,
		"SYSTEM_MANAGED":       2,
	}
)

Enum value maps for ListServiceAccountKeysRequest_KeyType.

View Source 
var (
	Role_RoleLaunchStage_name = map[int32]string{
		0: "ALPHA",
		1: "BETA",
		2: "GA",
		4: "DEPRECATED",
		5: "DISABLED",
		6: "EAP",
	}
	Role_RoleLaunchStage_value = map[string]int32{
		"ALPHA":      0,
		"BETA":       1,
		"GA":         2,
		"DEPRECATED": 4,
		"DISABLED":   5,
		"EAP":        6,
	}
)

Enum value maps for Role_RoleLaunchStage.

View Source 
var (
	Permission_PermissionLaunchStage_name = map[int32]string{
		0: "ALPHA",
		1: "BETA",
		2: "GA",
		3: "DEPRECATED",
	}
	Permission_PermissionLaunchStage_value = map[string]int32{
		"ALPHA":      0,
		"BETA":       1,
		"GA":         2,
		"DEPRECATED": 3,
	}
)

Enum value maps for Permission_PermissionLaunchStage.

View Source 
var (
	Permission_CustomRolesSupportLevel_name = map[int32]string{
		0: "SUPPORTED",
		1: "TESTING",
		2: "NOT_SUPPORTED",
	}
	Permission_CustomRolesSupportLevel_value = map[string]int32{
		"SUPPORTED":     0,
		"TESTING":       1,
		"NOT_SUPPORTED": 2,
	}
)

Enum value maps for Permission_CustomRolesSupportLevel.

View Source 
var File_google_iam_admin_v1_iam_proto protoreflect.FileDescriptor
View Source 
var IAM_ServiceDesc = grpc.ServiceDesc{
	ServiceName: "google.iam.admin.v1.IAM",
	HandlerType: (*IAMServer)(nil),
	Methods: []grpc.MethodDesc{
		{
			MethodName: "ListServiceAccounts",
			Handler:    _IAM_ListServiceAccounts_Handler,
		},
		{
			MethodName: "GetServiceAccount",
			Handler:    _IAM_GetServiceAccount_Handler,
		},
		{
			MethodName: "CreateServiceAccount",
			Handler:    _IAM_CreateServiceAccount_Handler,
		},
		{
			MethodName: "UpdateServiceAccount",
			Handler:    _IAM_UpdateServiceAccount_Handler,
		},
		{
			MethodName: "DeleteServiceAccount",
			Handler:    _IAM_DeleteServiceAccount_Handler,
		},
		{
			MethodName: "ListServiceAccountKeys",
			Handler:    _IAM_ListServiceAccountKeys_Handler,
		},
		{
			MethodName: "GetServiceAccountKey",
			Handler:    _IAM_GetServiceAccountKey_Handler,
		},
		{
			MethodName: "CreateServiceAccountKey",
			Handler:    _IAM_CreateServiceAccountKey_Handler,
		},
		{
			MethodName: "DeleteServiceAccountKey",
			Handler:    _IAM_DeleteServiceAccountKey_Handler,
		},
		{
			MethodName: "SignBlob",
			Handler:    _IAM_SignBlob_Handler,
		},
		{
			MethodName: "SignJwt",
			Handler:    _IAM_SignJwt_Handler,
		},
		{
			MethodName: "GetIamPolicy",
			Handler:    _IAM_GetIamPolicy_Handler,
		},
		{
			MethodName: "SetIamPolicy",
			Handler:    _IAM_SetIamPolicy_Handler,
		},
		{
			MethodName: "TestIamPermissions",
			Handler:    _IAM_TestIamPermissions_Handler,
		},
		{
			MethodName: "QueryGrantableRoles",
			Handler:    _IAM_QueryGrantableRoles_Handler,
		},
		{
			MethodName: "ListRoles",
			Handler:    _IAM_ListRoles_Handler,
		},
		{
			MethodName: "GetRole",
			Handler:    _IAM_GetRole_Handler,
		},
		{
			MethodName: "CreateRole",
			Handler:    _IAM_CreateRole_Handler,
		},
		{
			MethodName: "UpdateRole",
			Handler:    _IAM_UpdateRole_Handler,
		},
		{
			MethodName: "DeleteRole",
			Handler:    _IAM_DeleteRole_Handler,
		},
		{
			MethodName: "UndeleteRole",
			Handler:    _IAM_UndeleteRole_Handler,
		},
		{
			MethodName: "QueryTestablePermissions",
			Handler:    _IAM_QueryTestablePermissions_Handler,
		},
	},
	Streams:  []grpc.StreamDesc{},
	Metadata: "google/iam/admin/v1/iam.proto",
}

IAM_ServiceDesc is the grpc.ServiceDesc for IAM service. It's only intended for direct use with grpc.RegisterService, and not to be introspected or modified (even as a copy)

Functions

func RegisterIAMHandler 

func RegisterIAMHandler(ctx context.Context, mux *runtime.ServeMux, conn *grpc.ClientConn) error

RegisterIAMHandler registers the http handlers for service IAM to "mux". The handlers forward requests to the grpc endpoint over "conn".

func RegisterIAMHandlerClient 

func RegisterIAMHandlerClient(ctx context.Context, mux *runtime.ServeMux, client IAMClient) error

RegisterIAMHandlerClient registers the http handlers for service IAM to "mux". The handlers forward requests to the grpc endpoint over the given implementation of "IAMClient". Note: the gRPC framework executes interceptors within the gRPC handler. If the passed in "IAMClient" doesn't go through the normal gRPC flow (creating a gRPC client etc.) then it will be up to the passed in "IAMClient" to call the correct interceptors.

func RegisterIAMHandlerFromEndpoint 

func RegisterIAMHandlerFromEndpoint(ctx context.Context, mux *runtime.ServeMux, endpoint string, opts []grpc.DialOption) (err error)

RegisterIAMHandlerFromEndpoint is same as RegisterIAMHandler but automatically dials to "endpoint" and closes the connection when "ctx" gets done.

func RegisterIAMHandlerServer 

func RegisterIAMHandlerServer(ctx context.Context, mux *runtime.ServeMux, server IAMServer) error

RegisterIAMHandlerServer registers the http handlers for service IAM to "mux". UnaryRPC :call IAMServer directly. StreamingRPC :currently unsupported pending https://github.com/grpc/grpc-go/issues/906. Note that using this registration option will cause many gRPC library features to stop working. Consider using RegisterIAMHandlerFromEndpoint instead.

func RegisterIAMServer 

func RegisterIAMServer(s grpc.ServiceRegistrar, srv IAMServer)

Types

type CreateRoleRequest 

type CreateRoleRequest struct {

	// The `parent` parameter's value depends on the target resource for the
	// request, namely
	// [`projects`](/iam/reference/rest/v1/projects.roles) or
	// [`organizations`](/iam/reference/rest/v1/organizations.roles). Each
	// resource type's `parent` value format is described below:
	//
	//   - [`projects.roles.create()`](/iam/reference/rest/v1/projects.roles/create):
	//     `projects/{PROJECT_ID}`. This method creates project-level
	//     [custom roles](/iam/docs/understanding-custom-roles).
	//     Example request URL:
	//     `https://iam.googleapis.com/v1/projects/{PROJECT_ID}/roles`
	//
	//   - [`organizations.roles.create()`](/iam/reference/rest/v1/organizations.roles/create):
	//     `organizations/{ORGANIZATION_ID}`. This method creates organization-level
	//     [custom roles](/iam/docs/understanding-custom-roles). Example request
	//     URL:
	//     `https://iam.googleapis.com/v1/organizations/{ORGANIZATION_ID}/roles`
	//
	// Note: Wildcard (*) values are invalid; you must specify a complete project
	// ID or organization ID.
	Parent string `protobuf:"bytes,1,opt,name=parent,proto3" json:"parent,omitempty"`
	// The role ID to use for this role.
	RoleId string `protobuf:"bytes,2,opt,name=role_id,json=roleId,proto3" json:"role_id,omitempty"`
	// The Role resource to create.
	Role *Role `protobuf:"bytes,3,opt,name=role,proto3" json:"role,omitempty"`
	// contains filtered or unexported fields
}

The request to create a new role.

func (*CreateRoleRequest) Descriptor deprecated 

func (*CreateRoleRequest) Descriptor() ([]byte, []int)

Deprecated: Use CreateRoleRequest.ProtoReflect.Descriptor instead.

func (*CreateRoleRequest) GetParent 

func (x *CreateRoleRequest) GetParent() string

func (*CreateRoleRequest) GetRole 

func (x *CreateRoleRequest) GetRole() *Role

func (*CreateRoleRequest) GetRoleId 

func (x *CreateRoleRequest) GetRoleId() string

func (*CreateRoleRequest) ProtoMessage 

func (*CreateRoleRequest) ProtoMessage()

func (*CreateRoleRequest) ProtoReflect 

func (x *CreateRoleRequest) ProtoReflect() protoreflect.Message

func (*CreateRoleRequest) Reset 

func (x *CreateRoleRequest) Reset()

func (*CreateRoleRequest) String 

func (x *CreateRoleRequest) String() string

type CreateServiceAccountKeyRequest 

type CreateServiceAccountKeyRequest struct {

	// Required. The resource name of the service account in the following format:
	// `projects/{PROJECT_ID}/serviceAccounts/{ACCOUNT}`.
	// Using `-` as a wildcard for the `PROJECT_ID` will infer the project from
	// the account. The `ACCOUNT` value can be the `email` address or the
	// `unique_id` of the service account.
	Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
	// The output format of the private key. The default value is
	// `TYPE_GOOGLE_CREDENTIALS_FILE`, which is the Google Credentials File
	// format.
	PrivateKeyType ServiceAccountPrivateKeyType `` /* 160-byte string literal not displayed */
	// Which type of key and algorithm to use for the key.
	// The default is currently a 2K RSA key.  However this may change in the
	// future.
	KeyAlgorithm ServiceAccountKeyAlgorithm `` /* 150-byte string literal not displayed */
	// contains filtered or unexported fields
}

The service account key create request.

func (*CreateServiceAccountKeyRequest) Descriptor deprecated 

func (*CreateServiceAccountKeyRequest) Descriptor() ([]byte, []int)

Deprecated: Use CreateServiceAccountKeyRequest.ProtoReflect.Descriptor instead.

func (*CreateServiceAccountKeyRequest) GetKeyAlgorithm 

func (x *CreateServiceAccountKeyRequest) GetKeyAlgorithm() ServiceAccountKeyAlgorithm

func (*CreateServiceAccountKeyRequest) GetName 

func (x *CreateServiceAccountKeyRequest) GetName() string

func (*CreateServiceAccountKeyRequest) GetPrivateKeyType 

func (x *CreateServiceAccountKeyRequest) GetPrivateKeyType() ServiceAccountPrivateKeyType

func (*CreateServiceAccountKeyRequest) ProtoMessage 

func (*CreateServiceAccountKeyRequest) ProtoMessage()

func (*CreateServiceAccountKeyRequest) ProtoReflect 

func (x *CreateServiceAccountKeyRequest) ProtoReflect() protoreflect.Message

func (*CreateServiceAccountKeyRequest) Reset 

func (x *CreateServiceAccountKeyRequest) Reset()

func (*CreateServiceAccountKeyRequest) String 

func (x *CreateServiceAccountKeyRequest) String() string

type CreateServiceAccountRequest 

type CreateServiceAccountRequest struct {

	// Required. The resource name of the project associated with the service
	// accounts, such as `projects/my-project-123`.
	Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
	// Required. The account id that is used to generate the service account
	// email address and a stable unique id. It is unique within a project,
	// must be 6-30 characters long, and match the regular expression
	// `[a-z]([-a-z0-9]*[a-z0-9])` to comply with RFC1035.
	AccountId string `protobuf:"bytes,2,opt,name=account_id,json=accountId,proto3" json:"account_id,omitempty"`
	// The [ServiceAccount][google.iam.admin.v1.ServiceAccount] resource to
	// create. Currently, only the following values are user assignable:
	// `display_name` and `description`.
	ServiceAccount *ServiceAccount `protobuf:"bytes,3,opt,name=service_account,json=serviceAccount,proto3" json:"service_account,omitempty"`
	// contains filtered or unexported fields
}

The service account create request.

func (*CreateServiceAccountRequest) Descriptor deprecated 

func (*CreateServiceAccountRequest) Descriptor() ([]byte, []int)

Deprecated: Use CreateServiceAccountRequest.ProtoReflect.Descriptor instead.

func (*CreateServiceAccountRequest) GetAccountId 

func (x *CreateServiceAccountRequest) GetAccountId() string

func (*CreateServiceAccountRequest) GetName 

func (x *CreateServiceAccountRequest) GetName() string

func (*CreateServiceAccountRequest) GetServiceAccount 

func (x *CreateServiceAccountRequest) GetServiceAccount() *ServiceAccount

func (*CreateServiceAccountRequest) ProtoMessage 

func (*CreateServiceAccountRequest) ProtoMessage()

func (*CreateServiceAccountRequest) ProtoReflect 

func (x *CreateServiceAccountRequest) ProtoReflect() protoreflect.Message

func (*CreateServiceAccountRequest) Reset 

func (x *CreateServiceAccountRequest) Reset()

func (*CreateServiceAccountRequest) String 

func (x *CreateServiceAccountRequest) String() string

type DeleteRoleRequest 

type DeleteRoleRequest struct {

	// The `name` parameter's value depends on the target resource for the
	// request, namely
	// [`projects`](/iam/reference/rest/v1/projects.roles) or
	// [`organizations`](/iam/reference/rest/v1/organizations.roles). Each
	// resource type's `name` value format is described below:
	//
	//   - [`projects.roles.delete()`](/iam/reference/rest/v1/projects.roles/delete):
	//     `projects/{PROJECT_ID}/roles/{CUSTOM_ROLE_ID}`. This method deletes only
	//     [custom roles](/iam/docs/understanding-custom-roles) that have been
	//     created at the project level. Example request URL:
	//     `https://iam.googleapis.com/v1/projects/{PROJECT_ID}/roles/{CUSTOM_ROLE_ID}`
	//
	//   - [`organizations.roles.delete()`](/iam/reference/rest/v1/organizations.roles/delete):
	//     `organizations/{ORGANIZATION_ID}/roles/{CUSTOM_ROLE_ID}`. This method
	//     deletes only [custom roles](/iam/docs/understanding-custom-roles) that
	//     have been created at the organization level. Example request URL:
	//     `https://iam.googleapis.com/v1/organizations/{ORGANIZATION_ID}/roles/{CUSTOM_ROLE_ID}`
	//
	// Note: Wildcard (*) values are invalid; you must specify a complete project
	// ID or organization ID.
	Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
	// Used to perform a consistent read-modify-write.
	Etag []byte `protobuf:"bytes,2,opt,name=etag,proto3" json:"etag,omitempty"`
	// contains filtered or unexported fields
}

The request to delete an existing role.

func (*DeleteRoleRequest) Descriptor deprecated 

func (*DeleteRoleRequest) Descriptor() ([]byte, []int)

Deprecated: Use DeleteRoleRequest.ProtoReflect.Descriptor instead.

func (*DeleteRoleRequest) GetEtag 

func (x *DeleteRoleRequest) GetEtag() []byte

func (*DeleteRoleRequest) GetName 

func (x *DeleteRoleRequest) GetName() string

func (*DeleteRoleRequest) ProtoMessage 

func (*DeleteRoleRequest) ProtoMessage()

func (*DeleteRoleRequest) ProtoReflect 

func (x *DeleteRoleRequest) ProtoReflect() protoreflect.Message

func (*DeleteRoleRequest) Reset 

func (x *DeleteRoleRequest) Reset()

func (*DeleteRoleRequest) String 

func (x *DeleteRoleRequest) String() string

type DeleteServiceAccountKeyRequest 

type DeleteServiceAccountKeyRequest struct {

	// Required. The resource name of the service account key in the following format:
	// `projects/{PROJECT_ID}/serviceAccounts/{ACCOUNT}/keys/{key}`.
	// Using `-` as a wildcard for the `PROJECT_ID` will infer the project from
	// the account. The `ACCOUNT` value can be the `email` address or the
	// `unique_id` of the service account.
	Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
	// contains filtered or unexported fields
}

The service account key delete request.

func (*DeleteServiceAccountKeyRequest) Descriptor deprecated 

func (*DeleteServiceAccountKeyRequest) Descriptor() ([]byte, []int)

Deprecated: Use DeleteServiceAccountKeyRequest.ProtoReflect.Descriptor instead.

func (*DeleteServiceAccountKeyRequest) GetName 

func (x *DeleteServiceAccountKeyRequest) GetName() string

func (*DeleteServiceAccountKeyRequest) ProtoMessage 

func (*DeleteServiceAccountKeyRequest) ProtoMessage()

func (*DeleteServiceAccountKeyRequest) ProtoReflect 

func (x *DeleteServiceAccountKeyRequest) ProtoReflect() protoreflect.Message

func (*DeleteServiceAccountKeyRequest) Reset 

func (x *DeleteServiceAccountKeyRequest) Reset()

func (*DeleteServiceAccountKeyRequest) String 

func (x *DeleteServiceAccountKeyRequest) String() string

type DeleteServiceAccountRequest 

type DeleteServiceAccountRequest struct {

	// Required. The resource name of the service account in the following format:
	// `projects/{PROJECT_ID}/serviceAccounts/{ACCOUNT}`.
	// Using `-` as a wildcard for the `PROJECT_ID` will infer the project from
	// the account. The `ACCOUNT` value can be the `email` address or the
	// `unique_id` of the service account.
	Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
	// contains filtered or unexported fields
}

The service account delete request.

func (*DeleteServiceAccountRequest) Descriptor deprecated 

func (*DeleteServiceAccountRequest) Descriptor() ([]byte, []int)

Deprecated: Use DeleteServiceAccountRequest.ProtoReflect.Descriptor instead.

func (*DeleteServiceAccountRequest) GetName 

func (x *DeleteServiceAccountRequest) GetName() string

func (*DeleteServiceAccountRequest) ProtoMessage 

func (*DeleteServiceAccountRequest) ProtoMessage()

func (*DeleteServiceAccountRequest) ProtoReflect 

func (x *DeleteServiceAccountRequest) ProtoReflect() protoreflect.Message

func (*DeleteServiceAccountRequest) Reset 

func (x *DeleteServiceAccountRequest) Reset()

func (*DeleteServiceAccountRequest) String 

func (x *DeleteServiceAccountRequest) String() string

type GetRoleRequest 

type GetRoleRequest struct {

	// The `name` parameter's value depends on the target resource for the
	// request, namely
	// [`roles`](/iam/reference/rest/v1/roles),
	// [`projects`](/iam/reference/rest/v1/projects.roles), or
	// [`organizations`](/iam/reference/rest/v1/organizations.roles). Each
	// resource type's `name` value format is described below:
	//
	//   - [`roles.get()`](/iam/reference/rest/v1/roles/get): `roles/{ROLE_NAME}`.
	//     This method returns results from all
	//     [predefined roles](/iam/docs/understanding-roles#predefined_roles) in
	//     Cloud IAM. Example request URL:
	//     `https://iam.googleapis.com/v1/roles/{ROLE_NAME}`
	//
	//   - [`projects.roles.get()`](/iam/reference/rest/v1/projects.roles/get):
	//     `projects/{PROJECT_ID}/roles/{CUSTOM_ROLE_ID}`. This method returns only
	//     [custom roles](/iam/docs/understanding-custom-roles) that have been
	//     created at the project level. Example request URL:
	//     `https://iam.googleapis.com/v1/projects/{PROJECT_ID}/roles/{CUSTOM_ROLE_ID}`
	//
	//   - [`organizations.roles.get()`](/iam/reference/rest/v1/organizations.roles/get):
	//     `organizations/{ORGANIZATION_ID}/roles/{CUSTOM_ROLE_ID}`. This method
	//     returns only [custom roles](/iam/docs/understanding-custom-roles) that
	//     have been created at the organization level. Example request URL:
	//     `https://iam.googleapis.com/v1/organizations/{ORGANIZATION_ID}/roles/{CUSTOM_ROLE_ID}`
	//
	// Note: Wildcard (*) values are invalid; you must specify a complete project
	// ID or organization ID.
	Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
	// contains filtered or unexported fields
}

The request to get the definition of an existing role.

func (*GetRoleRequest) Descriptor deprecated 

func (*GetRoleRequest) Descriptor() ([]byte, []int)

Deprecated: Use GetRoleRequest.ProtoReflect.Descriptor instead.

func (*GetRoleRequest) GetName 

func (x *GetRoleRequest) GetName() string

func (*GetRoleRequest) ProtoMessage 

func (*GetRoleRequest) ProtoMessage()

func (*GetRoleRequest) ProtoReflect 

func (x *GetRoleRequest) ProtoReflect() protoreflect.Message

func (*GetRoleRequest) Reset 

func (x *GetRoleRequest) Reset()

func (*GetRoleRequest) String 

func (x *GetRoleRequest) String() string

type GetServiceAccountKeyRequest 

type GetServiceAccountKeyRequest struct {

	// Required. The resource name of the service account key in the following format:
	// `projects/{PROJECT_ID}/serviceAccounts/{ACCOUNT}/keys/{key}`.
	//
	// Using `-` as a wildcard for the `PROJECT_ID` will infer the project from
	// the account. The `ACCOUNT` value can be the `email` address or the
	// `unique_id` of the service account.
	Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
	// The output format of the public key requested.
	// X509_PEM is the default output format.
	PublicKeyType ServiceAccountPublicKeyType `` /* 156-byte string literal not displayed */
	// contains filtered or unexported fields
}

The service account key get by id request.

func (*GetServiceAccountKeyRequest) Descriptor deprecated 

func (*GetServiceAccountKeyRequest) Descriptor() ([]byte, []int)

Deprecated: Use GetServiceAccountKeyRequest.ProtoReflect.Descriptor instead.

func (*GetServiceAccountKeyRequest) GetName 

func (x *GetServiceAccountKeyRequest) GetName() string

func (*GetServiceAccountKeyRequest) GetPublicKeyType 

func (x *GetServiceAccountKeyRequest) GetPublicKeyType() ServiceAccountPublicKeyType

func (*GetServiceAccountKeyRequest) ProtoMessage 

func (*GetServiceAccountKeyRequest) ProtoMessage()

func (*GetServiceAccountKeyRequest) ProtoReflect 

func (x *GetServiceAccountKeyRequest) ProtoReflect() protoreflect.Message

func (*GetServiceAccountKeyRequest) Reset 

func (x *GetServiceAccountKeyRequest) Reset()

func (*GetServiceAccountKeyRequest) String 

func (x *GetServiceAccountKeyRequest) String() string

type GetServiceAccountRequest 

type GetServiceAccountRequest struct {

	// Required. The resource name of the service account in the following format:
	// `projects/{PROJECT_ID}/serviceAccounts/{ACCOUNT}`.
	// Using `-` as a wildcard for the `PROJECT_ID` will infer the project from
	// the account. The `ACCOUNT` value can be the `email` address or the
	// `unique_id` of the service account.
	Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
	// contains filtered or unexported fields
}

The service account get request.

func (*GetServiceAccountRequest) Descriptor deprecated 

func (*GetServiceAccountRequest) Descriptor() ([]byte, []int)

Deprecated: Use GetServiceAccountRequest.ProtoReflect.Descriptor instead.

func (*GetServiceAccountRequest) GetName 

func (x *GetServiceAccountRequest) GetName() string

func (*GetServiceAccountRequest) ProtoMessage 

func (*GetServiceAccountRequest) ProtoMessage()

func (*GetServiceAccountRequest) ProtoReflect 

func (x *GetServiceAccountRequest) ProtoReflect() protoreflect.Message

func (*GetServiceAccountRequest) Reset 

func (x *GetServiceAccountRequest) Reset()

func (*GetServiceAccountRequest) String 

func (x *GetServiceAccountRequest) String() string

type IAMClient 

type IAMClient interface {
	// Lists [ServiceAccounts][google.iam.admin.v1.ServiceAccount] for a project.
	ListServiceAccounts(ctx context.Context, in *ListServiceAccountsRequest, opts ...grpc.CallOption) (*ListServiceAccountsResponse, error)
	// Gets a [ServiceAccount][google.iam.admin.v1.ServiceAccount].
	GetServiceAccount(ctx context.Context, in *GetServiceAccountRequest, opts ...grpc.CallOption) (*ServiceAccount, error)
	// Creates a [ServiceAccount][google.iam.admin.v1.ServiceAccount]
	// and returns it.
	CreateServiceAccount(ctx context.Context, in *CreateServiceAccountRequest, opts ...grpc.CallOption) (*ServiceAccount, error)
	// Updates a [ServiceAccount][google.iam.admin.v1.ServiceAccount].
	//
	// Currently, only the following fields are updatable:
	// `display_name` and `description`.
	UpdateServiceAccount(ctx context.Context, in *ServiceAccount, opts ...grpc.CallOption) (*ServiceAccount, error)
	// Deletes a [ServiceAccount][google.iam.admin.v1.ServiceAccount].
	DeleteServiceAccount(ctx context.Context, in *DeleteServiceAccountRequest, opts ...grpc.CallOption) (*emptypb.Empty, error)
	// Lists [ServiceAccountKeys][google.iam.admin.v1.ServiceAccountKey].
	ListServiceAccountKeys(ctx context.Context, in *ListServiceAccountKeysRequest, opts ...grpc.CallOption) (*ListServiceAccountKeysResponse, error)
	// Gets the [ServiceAccountKey][google.iam.admin.v1.ServiceAccountKey]
	// by key id.
	GetServiceAccountKey(ctx context.Context, in *GetServiceAccountKeyRequest, opts ...grpc.CallOption) (*ServiceAccountKey, error)
	// Creates a [ServiceAccountKey][google.iam.admin.v1.ServiceAccountKey]
	// and returns it.
	CreateServiceAccountKey(ctx context.Context, in *CreateServiceAccountKeyRequest, opts ...grpc.CallOption) (*ServiceAccountKey, error)
	// Deletes a [ServiceAccountKey][google.iam.admin.v1.ServiceAccountKey].
	DeleteServiceAccountKey(ctx context.Context, in *DeleteServiceAccountKeyRequest, opts ...grpc.CallOption) (*emptypb.Empty, error)
	// Signs a blob using a service account's system-managed private key.
	SignBlob(ctx context.Context, in *SignBlobRequest, opts ...grpc.CallOption) (*SignBlobResponse, error)
	// Signs a JWT using a service account's system-managed private key.
	//
	// If no expiry time (`exp`) is provided in the `SignJwtRequest`, IAM sets an
	// an expiry time of one hour by default. If you request an expiry time of
	// more than one hour, the request will fail.
	SignJwt(ctx context.Context, in *SignJwtRequest, opts ...grpc.CallOption) (*SignJwtResponse, error)
	// Returns the Cloud IAM access control policy for a
	// [ServiceAccount][google.iam.admin.v1.ServiceAccount].
	//
	// Note: Service accounts are both
	// [resources and
	// identities](/iam/docs/service-accounts#service_account_permissions). This
	// method treats the service account as a resource. It returns the Cloud IAM
	// policy that reflects what members have access to the service account.
	//
	// This method does not return what resources the service account has access
	// to. To see if a service account has access to a resource, call the
	// `getIamPolicy` method on the target resource. For example, to view grants
	// for a project, call the
	// [projects.getIamPolicy](/resource-manager/reference/rest/v1/projects/getIamPolicy)
	// method.
	GetIamPolicy(ctx context.Context, in *v1.GetIamPolicyRequest, opts ...grpc.CallOption) (*v1.Policy, error)
	// Sets the Cloud IAM access control policy for a
	// [ServiceAccount][google.iam.admin.v1.ServiceAccount].
	//
	// Note: Service accounts are both
	// [resources and
	// identities](/iam/docs/service-accounts#service_account_permissions). This
	// method treats the service account as a resource. Use it to grant members
	// access to the service account, such as when they need to impersonate it.
	//
	// This method does not grant the service account access to other resources,
	// such as projects. To grant a service account access to resources, include
	// the service account in the Cloud IAM policy for the desired resource, then
	// call the appropriate `setIamPolicy` method on the target resource. For
	// example, to grant a service account access to a project, call the
	// [projects.setIamPolicy](/resource-manager/reference/rest/v1/projects/setIamPolicy)
	// method.
	SetIamPolicy(ctx context.Context, in *v1.SetIamPolicyRequest, opts ...grpc.CallOption) (*v1.Policy, error)
	// Tests the specified permissions against the IAM access control policy
	// for a [ServiceAccount][google.iam.admin.v1.ServiceAccount].
	TestIamPermissions(ctx context.Context, in *v1.TestIamPermissionsRequest, opts ...grpc.CallOption) (*v1.TestIamPermissionsResponse, error)
	// Queries roles that can be granted on a particular resource.
	// A role is grantable if it can be used as the role in a binding for a policy
	// for that resource.
	QueryGrantableRoles(ctx context.Context, in *QueryGrantableRolesRequest, opts ...grpc.CallOption) (*QueryGrantableRolesResponse, error)
	// Lists the Roles defined on a resource.
	ListRoles(ctx context.Context, in *ListRolesRequest, opts ...grpc.CallOption) (*ListRolesResponse, error)
	// Gets a Role definition.
	GetRole(ctx context.Context, in *GetRoleRequest, opts ...grpc.CallOption) (*Role, error)
	// Creates a new Role.
	CreateRole(ctx context.Context, in *CreateRoleRequest, opts ...grpc.CallOption) (*Role, error)
	// Updates a Role definition.
	UpdateRole(ctx context.Context, in *UpdateRoleRequest, opts ...grpc.CallOption) (*Role, error)
	// Soft deletes a role. The role is suspended and cannot be used to create new
	// IAM Policy Bindings.
	// The Role will not be included in `ListRoles()` unless `show_deleted` is set
	// in the `ListRolesRequest`. The Role contains the deleted boolean set.
	// Existing Bindings remains, but are inactive. The Role can be undeleted
	// within 7 days. After 7 days the Role is deleted and all Bindings associated
	// with the role are removed.
	DeleteRole(ctx context.Context, in *DeleteRoleRequest, opts ...grpc.CallOption) (*Role, error)
	// Undelete a Role, bringing it back in its previous state.
	UndeleteRole(ctx context.Context, in *UndeleteRoleRequest, opts ...grpc.CallOption) (*Role, error)
	// Lists the permissions testable on a resource.
	// A permission is testable if it can be tested for an identity on a resource.
	QueryTestablePermissions(ctx context.Context, in *QueryTestablePermissionsRequest, opts ...grpc.CallOption) (*QueryTestablePermissionsResponse, error)
}

IAMClient is the client API for IAM service.

For semantics around ctx use and closing/ending streaming RPCs, please refer to https://pkg.go.dev/google.golang.org/grpc/?tab=doc#ClientConn.NewStream.

func NewIAMClient 

func NewIAMClient(cc grpc.ClientConnInterface) IAMClient

type IAMServer 

type IAMServer interface {
	// Lists [ServiceAccounts][google.iam.admin.v1.ServiceAccount] for a project.
	ListServiceAccounts(context.Context, *ListServiceAccountsRequest) (*ListServiceAccountsResponse, error)
	// Gets a [ServiceAccount][google.iam.admin.v1.ServiceAccount].
	GetServiceAccount(context.Context, *GetServiceAccountRequest) (*ServiceAccount, error)
	// Creates a [ServiceAccount][google.iam.admin.v1.ServiceAccount]
	// and returns it.
	CreateServiceAccount(context.Context, *CreateServiceAccountRequest) (*ServiceAccount, error)
	// Updates a [ServiceAccount][google.iam.admin.v1.ServiceAccount].
	//
	// Currently, only the following fields are updatable:
	// `display_name` and `description`.
	UpdateServiceAccount(context.Context, *ServiceAccount) (*ServiceAccount, error)
	// Deletes a [ServiceAccount][google.iam.admin.v1.ServiceAccount].
	DeleteServiceAccount(context.Context, *DeleteServiceAccountRequest) (*emptypb.Empty, error)
	// Lists [ServiceAccountKeys][google.iam.admin.v1.ServiceAccountKey].
	ListServiceAccountKeys(context.Context, *ListServiceAccountKeysRequest) (*ListServiceAccountKeysResponse, error)
	// Gets the [ServiceAccountKey][google.iam.admin.v1.ServiceAccountKey]
	// by key id.
	GetServiceAccountKey(context.Context, *GetServiceAccountKeyRequest) (*ServiceAccountKey, error)
	// Creates a [ServiceAccountKey][google.iam.admin.v1.ServiceAccountKey]
	// and returns it.
	CreateServiceAccountKey(context.Context, *CreateServiceAccountKeyRequest) (*ServiceAccountKey, error)
	// Deletes a [ServiceAccountKey][google.iam.admin.v1.ServiceAccountKey].
	DeleteServiceAccountKey(context.Context, *DeleteServiceAccountKeyRequest) (*emptypb.Empty, error)
	// Signs a blob using a service account's system-managed private key.
	SignBlob(context.Context, *SignBlobRequest) (*SignBlobResponse, error)
	// Signs a JWT using a service account's system-managed private key.
	//
	// If no expiry time (`exp`) is provided in the `SignJwtRequest`, IAM sets an
	// an expiry time of one hour by default. If you request an expiry time of
	// more than one hour, the request will fail.
	SignJwt(context.Context, *SignJwtRequest) (*SignJwtResponse, error)
	// Returns the Cloud IAM access control policy for a
	// [ServiceAccount][google.iam.admin.v1.ServiceAccount].
	//
	// Note: Service accounts are both
	// [resources and
	// identities](/iam/docs/service-accounts#service_account_permissions). This
	// method treats the service account as a resource. It returns the Cloud IAM
	// policy that reflects what members have access to the service account.
	//
	// This method does not return what resources the service account has access
	// to. To see if a service account has access to a resource, call the
	// `getIamPolicy` method on the target resource. For example, to view grants
	// for a project, call the
	// [projects.getIamPolicy](/resource-manager/reference/rest/v1/projects/getIamPolicy)
	// method.
	GetIamPolicy(context.Context, *v1.GetIamPolicyRequest) (*v1.Policy, error)
	// Sets the Cloud IAM access control policy for a
	// [ServiceAccount][google.iam.admin.v1.ServiceAccount].
	//
	// Note: Service accounts are both
	// [resources and
	// identities](/iam/docs/service-accounts#service_account_permissions). This
	// method treats the service account as a resource. Use it to grant members
	// access to the service account, such as when they need to impersonate it.
	//
	// This method does not grant the service account access to other resources,
	// such as projects. To grant a service account access to resources, include
	// the service account in the Cloud IAM policy for the desired resource, then
	// call the appropriate `setIamPolicy` method on the target resource. For
	// example, to grant a service account access to a project, call the
	// [projects.setIamPolicy](/resource-manager/reference/rest/v1/projects/setIamPolicy)
	// method.
	SetIamPolicy(context.Context, *v1.SetIamPolicyRequest) (*v1.Policy, error)
	// Tests the specified permissions against the IAM access control policy
	// for a [ServiceAccount][google.iam.admin.v1.ServiceAccount].
	TestIamPermissions(context.Context, *v1.TestIamPermissionsRequest) (*v1.TestIamPermissionsResponse, error)
	// Queries roles that can be granted on a particular resource.
	// A role is grantable if it can be used as the role in a binding for a policy
	// for that resource.
	QueryGrantableRoles(context.Context, *QueryGrantableRolesRequest) (*QueryGrantableRolesResponse, error)
	// Lists the Roles defined on a resource.
	ListRoles(context.Context, *ListRolesRequest) (*ListRolesResponse, error)
	// Gets a Role definition.
	GetRole(context.Context, *GetRoleRequest) (*Role, error)
	// Creates a new Role.
	CreateRole(context.Context, *CreateRoleRequest) (*Role, error)
	// Updates a Role definition.
	UpdateRole(context.Context, *UpdateRoleRequest) (*Role, error)
	// Soft deletes a role. The role is suspended and cannot be used to create new
	// IAM Policy Bindings.
	// The Role will not be included in `ListRoles()` unless `show_deleted` is set
	// in the `ListRolesRequest`. The Role contains the deleted boolean set.
	// Existing Bindings remains, but are inactive. The Role can be undeleted
	// within 7 days. After 7 days the Role is deleted and all Bindings associated
	// with the role are removed.
	DeleteRole(context.Context, *DeleteRoleRequest) (*Role, error)
	// Undelete a Role, bringing it back in its previous state.
	UndeleteRole(context.Context, *UndeleteRoleRequest) (*Role, error)
	// Lists the permissions testable on a resource.
	// A permission is testable if it can be tested for an identity on a resource.
	QueryTestablePermissions(context.Context, *QueryTestablePermissionsRequest) (*QueryTestablePermissionsResponse, error)
	// contains filtered or unexported methods
}

IAMServer is the server API for IAM service. All implementations must embed UnimplementedIAMServer for forward compatibility

type ListRolesRequest 

type ListRolesRequest struct {

	// The `parent` parameter's value depends on the target resource for the
	// request, namely
	// [`roles`](/iam/reference/rest/v1/roles),
	// [`projects`](/iam/reference/rest/v1/projects.roles), or
	// [`organizations`](/iam/reference/rest/v1/organizations.roles). Each
	// resource type's `parent` value format is described below:
	//
	//   - [`roles.list()`](/iam/reference/rest/v1/roles/list): An empty string.
	//     This method doesn't require a resource; it simply returns all
	//     [predefined roles](/iam/docs/understanding-roles#predefined_roles) in
	//     Cloud IAM. Example request URL:
	//     `https://iam.googleapis.com/v1/roles`
	//
	//   - [`projects.roles.list()`](/iam/reference/rest/v1/projects.roles/list):
	//     `projects/{PROJECT_ID}`. This method lists all project-level
	//     [custom roles](/iam/docs/understanding-custom-roles).
	//     Example request URL:
	//     `https://iam.googleapis.com/v1/projects/{PROJECT_ID}/roles`
	//
	//   - [`organizations.roles.list()`](/iam/reference/rest/v1/organizations.roles/list):
	//     `organizations/{ORGANIZATION_ID}`. This method lists all
	//     organization-level [custom roles](/iam/docs/understanding-custom-roles).
	//     Example request URL:
	//     `https://iam.googleapis.com/v1/organizations/{ORGANIZATION_ID}/roles`
	//
	// Note: Wildcard (*) values are invalid; you must specify a complete project
	// ID or organization ID.
	Parent string `protobuf:"bytes,1,opt,name=parent,proto3" json:"parent,omitempty"`
	// Optional limit on the number of roles to include in the response.
	PageSize int32 `protobuf:"varint,2,opt,name=page_size,json=pageSize,proto3" json:"page_size,omitempty"`
	// Optional pagination token returned in an earlier ListRolesResponse.
	PageToken string `protobuf:"bytes,3,opt,name=page_token,json=pageToken,proto3" json:"page_token,omitempty"`
	// Optional view for the returned Role objects. When `FULL` is specified,
	// the `includedPermissions` field is returned, which includes a list of all
	// permissions in the role. The default value is `BASIC`, which does not
	// return the `includedPermissions` field.
	View RoleView `protobuf:"varint,4,opt,name=view,proto3,enum=google.iam.admin.v1.RoleView" json:"view,omitempty"`
	// Include Roles that have been deleted.
	ShowDeleted bool `protobuf:"varint,6,opt,name=show_deleted,json=showDeleted,proto3" json:"show_deleted,omitempty"`
	// contains filtered or unexported fields
}

The request to get all roles defined under a resource.

func (*ListRolesRequest) Descriptor deprecated 

func (*ListRolesRequest) Descriptor() ([]byte, []int)

Deprecated: Use ListRolesRequest.ProtoReflect.Descriptor instead.

func (*ListRolesRequest) GetPageSize 

func (x *ListRolesRequest) GetPageSize() int32

func (*ListRolesRequest) GetPageToken 

func (x *ListRolesRequest) GetPageToken() string

func (*ListRolesRequest) GetParent 

func (x *ListRolesRequest) GetParent() string

func (*ListRolesRequest) GetShowDeleted 

func (x *ListRolesRequest) GetShowDeleted() bool

func (*ListRolesRequest) GetView 

func (x *ListRolesRequest) GetView() RoleView

func (*ListRolesRequest) ProtoMessage 

func (*ListRolesRequest) ProtoMessage()

func (*ListRolesRequest) ProtoReflect 

func (x *ListRolesRequest) ProtoReflect() protoreflect.Message

func (*ListRolesRequest) Reset 

func (x *ListRolesRequest) Reset()

func (*ListRolesRequest) String 

func (x *ListRolesRequest) String() string

type ListRolesResponse 

type ListRolesResponse struct {

	// The Roles defined on this resource.
	Roles []*Role `protobuf:"bytes,1,rep,name=roles,proto3" json:"roles,omitempty"`
	// To retrieve the next page of results, set
	// `ListRolesRequest.page_token` to this value.
	NextPageToken string `protobuf:"bytes,2,opt,name=next_page_token,json=nextPageToken,proto3" json:"next_page_token,omitempty"`
	// contains filtered or unexported fields
}

The response containing the roles defined under a resource.

func (*ListRolesResponse) Descriptor deprecated 

func (*ListRolesResponse) Descriptor() ([]byte, []int)

Deprecated: Use ListRolesResponse.ProtoReflect.Descriptor instead.

func (*ListRolesResponse) GetNextPageToken 

func (x *ListRolesResponse) GetNextPageToken() string

func (*ListRolesResponse) GetRoles 

func (x *ListRolesResponse) GetRoles() []*Role

func (*ListRolesResponse) ProtoMessage 

func (*ListRolesResponse) ProtoMessage()

func (*ListRolesResponse) ProtoReflect 

func (x *ListRolesResponse) ProtoReflect() protoreflect.Message

func (*ListRolesResponse) Reset 

func (x *ListRolesResponse) Reset()

func (*ListRolesResponse) String 

func (x *ListRolesResponse) String() string

type ListServiceAccountKeysRequest 

type ListServiceAccountKeysRequest struct {

	// Required. The resource name of the service account in the following format:
	// `projects/{PROJECT_ID}/serviceAccounts/{ACCOUNT}`.
	//
	// Using `-` as a wildcard for the `PROJECT_ID`, will infer the project from
	// the account. The `ACCOUNT` value can be the `email` address or the
	// `unique_id` of the service account.
	Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
	// Filters the types of keys the user wants to include in the list
	// response. Duplicate key types are not allowed. If no key type
	// is provided, all keys are returned.
	KeyTypes []ListServiceAccountKeysRequest_KeyType `` /* 156-byte string literal not displayed */
	// contains filtered or unexported fields
}

The service account keys list request.

func (*ListServiceAccountKeysRequest) Descriptor deprecated 

func (*ListServiceAccountKeysRequest) Descriptor() ([]byte, []int)

Deprecated: Use ListServiceAccountKeysRequest.ProtoReflect.Descriptor instead.

func (*ListServiceAccountKeysRequest) GetKeyTypes 

func (x *ListServiceAccountKeysRequest) GetKeyTypes() []ListServiceAccountKeysRequest_KeyType

func (*ListServiceAccountKeysRequest) GetName 

func (x *ListServiceAccountKeysRequest) GetName() string

func (*ListServiceAccountKeysRequest) ProtoMessage 

func (*ListServiceAccountKeysRequest) ProtoMessage()

func (*ListServiceAccountKeysRequest) ProtoReflect 

func (x *ListServiceAccountKeysRequest) ProtoReflect() protoreflect.Message

func (*ListServiceAccountKeysRequest) Reset 

func (x *ListServiceAccountKeysRequest) Reset()

func (*ListServiceAccountKeysRequest) String 

func (x *ListServiceAccountKeysRequest) String() string

type ListServiceAccountKeysRequest_KeyType 

type ListServiceAccountKeysRequest_KeyType int32

`KeyType` filters to selectively retrieve certain varieties of keys. 

const (
	// Unspecified key type. The presence of this in the
	// message will immediately result in an error.
	ListServiceAccountKeysRequest_KEY_TYPE_UNSPECIFIED ListServiceAccountKeysRequest_KeyType = 0
	// User-managed keys (managed and rotated by the user).
	ListServiceAccountKeysRequest_USER_MANAGED ListServiceAccountKeysRequest_KeyType = 1
	// System-managed keys (managed and rotated by Google).
	ListServiceAccountKeysRequest_SYSTEM_MANAGED ListServiceAccountKeysRequest_KeyType = 2
)

func (ListServiceAccountKeysRequest_KeyType) Descriptor 

func (ListServiceAccountKeysRequest_KeyType) Descriptor() protoreflect.EnumDescriptor

func (ListServiceAccountKeysRequest_KeyType) Enum 

func (x ListServiceAccountKeysRequest_KeyType) Enum() *ListServiceAccountKeysRequest_KeyType

func (ListServiceAccountKeysRequest_KeyType) EnumDescriptor deprecated 

func (ListServiceAccountKeysRequest_KeyType) EnumDescriptor() ([]byte, []int)

Deprecated: Use ListServiceAccountKeysRequest_KeyType.Descriptor instead.

func (ListServiceAccountKeysRequest_KeyType) Number 

func (x ListServiceAccountKeysRequest_KeyType) Number() protoreflect.EnumNumber

func (ListServiceAccountKeysRequest_KeyType) String 

func (x ListServiceAccountKeysRequest_KeyType) String() string

func (ListServiceAccountKeysRequest_KeyType) Type 

func (ListServiceAccountKeysRequest_KeyType) Type() protoreflect.EnumType

type ListServiceAccountKeysResponse 

type ListServiceAccountKeysResponse struct {

	// The public keys for the service account.
	Keys []*ServiceAccountKey `protobuf:"bytes,1,rep,name=keys,proto3" json:"keys,omitempty"`
	// contains filtered or unexported fields
}

The service account keys list response.

func (*ListServiceAccountKeysResponse) Descriptor deprecated 

func (*ListServiceAccountKeysResponse) Descriptor() ([]byte, []int)

Deprecated: Use ListServiceAccountKeysResponse.ProtoReflect.Descriptor instead.

func (*ListServiceAccountKeysResponse) GetKeys 

func (x *ListServiceAccountKeysResponse) GetKeys() []*ServiceAccountKey

func (*ListServiceAccountKeysResponse) ProtoMessage 

func (*ListServiceAccountKeysResponse) ProtoMessage()

func (*ListServiceAccountKeysResponse) ProtoReflect 

func (x *ListServiceAccountKeysResponse) ProtoReflect() protoreflect.Message

func (*ListServiceAccountKeysResponse) Reset 

func (x *ListServiceAccountKeysResponse) Reset()

func (*ListServiceAccountKeysResponse) String 

func (x *ListServiceAccountKeysResponse) String() string

type ListServiceAccountsRequest 

type ListServiceAccountsRequest struct {

	// Required. The resource name of the project associated with the service
	// accounts, such as `projects/my-project-123`.
	Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
	// Optional limit on the number of service accounts to include in the
	// response. Further accounts can subsequently be obtained by including the
	// [ListServiceAccountsResponse.next_page_token][google.iam.admin.v1.ListServiceAccountsResponse.next_page_token]
	// in a subsequent request.
	PageSize int32 `protobuf:"varint,2,opt,name=page_size,json=pageSize,proto3" json:"page_size,omitempty"`
	// Optional pagination token returned in an earlier
	// [ListServiceAccountsResponse.next_page_token][google.iam.admin.v1.ListServiceAccountsResponse.next_page_token].
	PageToken string `protobuf:"bytes,3,opt,name=page_token,json=pageToken,proto3" json:"page_token,omitempty"`
	// contains filtered or unexported fields
}

The service account list request.

func (*ListServiceAccountsRequest) Descriptor deprecated 

func (*ListServiceAccountsRequest) Descriptor() ([]byte, []int)

Deprecated: Use ListServiceAccountsRequest.ProtoReflect.Descriptor instead.

func (*ListServiceAccountsRequest) GetName 

func (x *ListServiceAccountsRequest) GetName() string

func (*ListServiceAccountsRequest) GetPageSize 

func (x *ListServiceAccountsRequest) GetPageSize() int32

func (*ListServiceAccountsRequest) GetPageToken 

func (x *ListServiceAccountsRequest) GetPageToken() string

func (*ListServiceAccountsRequest) ProtoMessage 

func (*ListServiceAccountsRequest) ProtoMessage()

func (*ListServiceAccountsRequest) ProtoReflect 

func (x *ListServiceAccountsRequest) ProtoReflect() protoreflect.Message

func (*ListServiceAccountsRequest) Reset 

func (x *ListServiceAccountsRequest) Reset()

func (*ListServiceAccountsRequest) String 

func (x *ListServiceAccountsRequest) String() string

type ListServiceAccountsResponse 

type ListServiceAccountsResponse struct {

	// The list of matching service accounts.
	Accounts []*ServiceAccount `protobuf:"bytes,1,rep,name=accounts,proto3" json:"accounts,omitempty"`
	// To retrieve the next page of results, set
	// [ListServiceAccountsRequest.page_token][google.iam.admin.v1.ListServiceAccountsRequest.page_token]
	// to this value.
	NextPageToken string `protobuf:"bytes,2,opt,name=next_page_token,json=nextPageToken,proto3" json:"next_page_token,omitempty"`
	// contains filtered or unexported fields
}

The service account list response.

func (*ListServiceAccountsResponse) Descriptor deprecated 

func (*ListServiceAccountsResponse) Descriptor() ([]byte, []int)

Deprecated: Use ListServiceAccountsResponse.ProtoReflect.Descriptor instead.

func (*ListServiceAccountsResponse) GetAccounts 

func (x *ListServiceAccountsResponse) GetAccounts() []*ServiceAccount

func (*ListServiceAccountsResponse) GetNextPageToken 

func (x *ListServiceAccountsResponse) GetNextPageToken() string

func (*ListServiceAccountsResponse) ProtoMessage 

func (*ListServiceAccountsResponse) ProtoMessage()

func (*ListServiceAccountsResponse) ProtoReflect 

func (x *ListServiceAccountsResponse) ProtoReflect() protoreflect.Message

func (*ListServiceAccountsResponse) Reset 

func (x *ListServiceAccountsResponse) Reset()

func (*ListServiceAccountsResponse) String 

func (x *ListServiceAccountsResponse) String() string

type Permission 

type Permission struct {

	// The name of this Permission.
	Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
	// The title of this Permission.
	Title string `protobuf:"bytes,2,opt,name=title,proto3" json:"title,omitempty"`
	// A brief description of what this Permission is used for.
	// This permission can ONLY be used in predefined roles.
	Description string `protobuf:"bytes,3,opt,name=description,proto3" json:"description,omitempty"`
	// This permission can ONLY be used in predefined roles.
	OnlyInPredefinedRoles bool `` /* 129-byte string literal not displayed */
	// The current launch stage of the permission.
	Stage Permission_PermissionLaunchStage `protobuf:"varint,5,opt,name=stage,proto3,enum=google.iam.admin.v1.Permission_PermissionLaunchStage" json:"stage,omitempty"`
	// The current custom role support level.
	CustomRolesSupportLevel Permission_CustomRolesSupportLevel `` /* 195-byte string literal not displayed */
	// contains filtered or unexported fields
}

A permission which can be included by a role.

func (*Permission) Descriptor deprecated 

func (*Permission) Descriptor() ([]byte, []int)

Deprecated: Use Permission.ProtoReflect.Descriptor instead.

func (*Permission) GetCustomRolesSupportLevel 

func (x *Permission) GetCustomRolesSupportLevel() Permission_CustomRolesSupportLevel

func (*Permission) GetDescription 

func (x *Permission) GetDescription() string

func (*Permission) GetName 

func (x *Permission) GetName() string

func (*Permission) GetOnlyInPredefinedRoles 

func (x *Permission) GetOnlyInPredefinedRoles() bool

func (*Permission) GetStage 

func (x *Permission) GetStage() Permission_PermissionLaunchStage

func (*Permission) GetTitle 

func (x *Permission) GetTitle() string

func (*Permission) ProtoMessage 

func (*Permission) ProtoMessage()

func (*Permission) ProtoReflect 

func (x *Permission) ProtoReflect() protoreflect.Message

func (*Permission) Reset 

func (x *Permission) Reset()

func (*Permission) String 

func (x *Permission) String() string

type Permission_CustomRolesSupportLevel 

type Permission_CustomRolesSupportLevel int32

The state of the permission with regards to custom roles. 

const (
	// Permission is fully supported for custom role use.
	Permission_SUPPORTED Permission_CustomRolesSupportLevel = 0
	// Permission is being tested to check custom role compatibility.
	Permission_TESTING Permission_CustomRolesSupportLevel = 1
	// Permission is not supported for custom role use.
	Permission_NOT_SUPPORTED Permission_CustomRolesSupportLevel = 2
)

func (Permission_CustomRolesSupportLevel) Descriptor 

func (Permission_CustomRolesSupportLevel) Descriptor() protoreflect.EnumDescriptor

func (Permission_CustomRolesSupportLevel) Enum 

func (x Permission_CustomRolesSupportLevel) Enum() *Permission_CustomRolesSupportLevel

func (Permission_CustomRolesSupportLevel) EnumDescriptor deprecated 

func (Permission_CustomRolesSupportLevel) EnumDescriptor() ([]byte, []int)

Deprecated: Use Permission_CustomRolesSupportLevel.Descriptor instead.

func (Permission_CustomRolesSupportLevel) Number 

func (x Permission_CustomRolesSupportLevel) Number() protoreflect.EnumNumber

func (Permission_CustomRolesSupportLevel) String 

func (x Permission_CustomRolesSupportLevel) String() string

func (Permission_CustomRolesSupportLevel) Type 

func (Permission_CustomRolesSupportLevel) Type() protoreflect.EnumType

type Permission_PermissionLaunchStage 

type Permission_PermissionLaunchStage int32

A stage representing a permission's lifecycle phase. 

const (
	// The permission is currently in an alpha phase.
	Permission_ALPHA Permission_PermissionLaunchStage = 0
	// The permission is currently in a beta phase.
	Permission_BETA Permission_PermissionLaunchStage = 1
	// The permission is generally available.
	Permission_GA Permission_PermissionLaunchStage = 2
	// The permission is being deprecated.
	Permission_DEPRECATED Permission_PermissionLaunchStage = 3
)

func (Permission_PermissionLaunchStage) Descriptor 

func (Permission_PermissionLaunchStage) Descriptor() protoreflect.EnumDescriptor

func (Permission_PermissionLaunchStage) Enum 

func (x Permission_PermissionLaunchStage) Enum() *Permission_PermissionLaunchStage

func (Permission_PermissionLaunchStage) EnumDescriptor deprecated 

func (Permission_PermissionLaunchStage) EnumDescriptor() ([]byte, []int)

Deprecated: Use Permission_PermissionLaunchStage.Descriptor instead.

func (Permission_PermissionLaunchStage) Number 

func (x Permission_PermissionLaunchStage) Number() protoreflect.EnumNumber

func (Permission_PermissionLaunchStage) String 

func (x Permission_PermissionLaunchStage) String() string

func (Permission_PermissionLaunchStage) Type 

func (Permission_PermissionLaunchStage) Type() protoreflect.EnumType

type QueryGrantableRolesRequest 

type QueryGrantableRolesRequest struct {

	// Required. The full resource name to query from the list of grantable roles.
	//
	// The name follows the Google Cloud Platform resource format.
	// For example, a Cloud Platform project with id `my-project` will be named
	// `//cloudresourcemanager.googleapis.com/projects/my-project`.
	FullResourceName string   `protobuf:"bytes,1,opt,name=full_resource_name,json=fullResourceName,proto3" json:"full_resource_name,omitempty"`
	View             RoleView `protobuf:"varint,2,opt,name=view,proto3,enum=google.iam.admin.v1.RoleView" json:"view,omitempty"`
	// Optional limit on the number of roles to include in the response.
	PageSize int32 `protobuf:"varint,3,opt,name=page_size,json=pageSize,proto3" json:"page_size,omitempty"`
	// Optional pagination token returned in an earlier
	// QueryGrantableRolesResponse.
	PageToken string `protobuf:"bytes,4,opt,name=page_token,json=pageToken,proto3" json:"page_token,omitempty"`
	// contains filtered or unexported fields
}

The grantable role query request.

func (*QueryGrantableRolesRequest) Descriptor deprecated 

func (*QueryGrantableRolesRequest) Descriptor() ([]byte, []int)

Deprecated: Use QueryGrantableRolesRequest.ProtoReflect.Descriptor instead.

func (*QueryGrantableRolesRequest) GetFullResourceName 

func (x *QueryGrantableRolesRequest) GetFullResourceName() string

func (*QueryGrantableRolesRequest) GetPageSize 

func (x *QueryGrantableRolesRequest) GetPageSize() int32

func (*QueryGrantableRolesRequest) GetPageToken 

func (x *QueryGrantableRolesRequest) GetPageToken() string

func (*QueryGrantableRolesRequest) GetView 

func (x *QueryGrantableRolesRequest) GetView() RoleView

func (*QueryGrantableRolesRequest) ProtoMessage 

func (*QueryGrantableRolesRequest) ProtoMessage()

func (*QueryGrantableRolesRequest) ProtoReflect 

func (x *QueryGrantableRolesRequest) ProtoReflect() protoreflect.Message

func (*QueryGrantableRolesRequest) Reset 

func (x *QueryGrantableRolesRequest) Reset()

func (*QueryGrantableRolesRequest) String 

func (x *QueryGrantableRolesRequest) String() string

type QueryGrantableRolesResponse 

type QueryGrantableRolesResponse struct {

	// The list of matching roles.
	Roles []*Role `protobuf:"bytes,1,rep,name=roles,proto3" json:"roles,omitempty"`
	// To retrieve the next page of results, set
	// `QueryGrantableRolesRequest.page_token` to this value.
	NextPageToken string `protobuf:"bytes,2,opt,name=next_page_token,json=nextPageToken,proto3" json:"next_page_token,omitempty"`
	// contains filtered or unexported fields
}

The grantable role query response.

func (*QueryGrantableRolesResponse) Descriptor deprecated 

func (*QueryGrantableRolesResponse) Descriptor() ([]byte, []int)

Deprecated: Use QueryGrantableRolesResponse.ProtoReflect.Descriptor instead.

func (*QueryGrantableRolesResponse) GetNextPageToken 

func (x *QueryGrantableRolesResponse) GetNextPageToken() string

func (*QueryGrantableRolesResponse) GetRoles 

func (x *QueryGrantableRolesResponse) GetRoles() []*Role

func (*QueryGrantableRolesResponse) ProtoMessage 

func (*QueryGrantableRolesResponse) ProtoMessage()

func (*QueryGrantableRolesResponse) ProtoReflect 

func (x *QueryGrantableRolesResponse) ProtoReflect() protoreflect.Message

func (*QueryGrantableRolesResponse) Reset 

func (x *QueryGrantableRolesResponse) Reset()

func (*QueryGrantableRolesResponse) String 

func (x *QueryGrantableRolesResponse) String() string

type QueryTestablePermissionsRequest 

type QueryTestablePermissionsRequest struct {

	// Required. The full resource name to query from the list of testable
	// permissions.
	//
	// The name follows the Google Cloud Platform resource format.
	// For example, a Cloud Platform project with id `my-project` will be named
	// `//cloudresourcemanager.googleapis.com/projects/my-project`.
	FullResourceName string `protobuf:"bytes,1,opt,name=full_resource_name,json=fullResourceName,proto3" json:"full_resource_name,omitempty"`
	// Optional limit on the number of permissions to include in the response.
	PageSize int32 `protobuf:"varint,2,opt,name=page_size,json=pageSize,proto3" json:"page_size,omitempty"`
	// Optional pagination token returned in an earlier
	// QueryTestablePermissionsRequest.
	PageToken string `protobuf:"bytes,3,opt,name=page_token,json=pageToken,proto3" json:"page_token,omitempty"`
	// contains filtered or unexported fields
}

A request to get permissions which can be tested on a resource.

func (*QueryTestablePermissionsRequest) Descriptor deprecated 

func (*QueryTestablePermissionsRequest) Descriptor() ([]byte, []int)

Deprecated: Use QueryTestablePermissionsRequest.ProtoReflect.Descriptor instead.

func (*QueryTestablePermissionsRequest) GetFullResourceName 

func (x *QueryTestablePermissionsRequest) GetFullResourceName() string

func (*QueryTestablePermissionsRequest) GetPageSize 

func (x *QueryTestablePermissionsRequest) GetPageSize() int32

func (*QueryTestablePermissionsRequest) GetPageToken 

func (x *QueryTestablePermissionsRequest) GetPageToken() string

func (*QueryTestablePermissionsRequest) ProtoMessage 

func (*QueryTestablePermissionsRequest) ProtoMessage()

func (*QueryTestablePermissionsRequest) ProtoReflect 

func (x *QueryTestablePermissionsRequest) ProtoReflect() protoreflect.Message

func (*QueryTestablePermissionsRequest) Reset 

func (x *QueryTestablePermissionsRequest) Reset()

func (*QueryTestablePermissionsRequest) String 

func (x *QueryTestablePermissionsRequest) String() string

type QueryTestablePermissionsResponse 

type QueryTestablePermissionsResponse struct {

	// The Permissions testable on the requested resource.
	Permissions []*Permission `protobuf:"bytes,1,rep,name=permissions,proto3" json:"permissions,omitempty"`
	// To retrieve the next page of results, set
	// `QueryTestableRolesRequest.page_token` to this value.
	NextPageToken string `protobuf:"bytes,2,opt,name=next_page_token,json=nextPageToken,proto3" json:"next_page_token,omitempty"`
	// contains filtered or unexported fields
}

The response containing permissions which can be tested on a resource.

func (*QueryTestablePermissionsResponse) Descriptor deprecated 

func (*QueryTestablePermissionsResponse) Descriptor() ([]byte, []int)

Deprecated: Use QueryTestablePermissionsResponse.ProtoReflect.Descriptor instead.

func (*QueryTestablePermissionsResponse) GetNextPageToken 

func (x *QueryTestablePermissionsResponse) GetNextPageToken() string

func (*QueryTestablePermissionsResponse) GetPermissions 

func (x *QueryTestablePermissionsResponse) GetPermissions() []*Permission

func (*QueryTestablePermissionsResponse) ProtoMessage 

func (*QueryTestablePermissionsResponse) ProtoMessage()

func (*QueryTestablePermissionsResponse) ProtoReflect 

func (x *QueryTestablePermissionsResponse) ProtoReflect() protoreflect.Message

func (*QueryTestablePermissionsResponse) Reset 

func (x *QueryTestablePermissionsResponse) Reset()

func (*QueryTestablePermissionsResponse) String 

func (x *QueryTestablePermissionsResponse) String() string

type Role 

type Role struct {

	// The name of the role.
	//
	// When Role is used in CreateRole, the role name must not be set.
	//
	// When Role is used in output and other input such as UpdateRole, the role
	// name is the complete path, e.g., roles/logging.viewer for predefined roles
	// and organizations/{ORGANIZATION_ID}/roles/logging.viewer for custom roles.
	Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
	// Optional. A human-readable title for the role.  Typically this
	// is limited to 100 UTF-8 bytes.
	Title string `protobuf:"bytes,2,opt,name=title,proto3" json:"title,omitempty"`
	// Optional. A human-readable description for the role.
	Description string `protobuf:"bytes,3,opt,name=description,proto3" json:"description,omitempty"`
	// The names of the permissions this role grants when bound in an IAM policy.
	IncludedPermissions []string `protobuf:"bytes,7,rep,name=included_permissions,json=includedPermissions,proto3" json:"included_permissions,omitempty"`
	// The current launch stage of the role. If the `ALPHA` launch stage has been
	// selected for a role, the `stage` field will not be included in the
	// returned definition for the role.
	Stage Role_RoleLaunchStage `protobuf:"varint,8,opt,name=stage,proto3,enum=google.iam.admin.v1.Role_RoleLaunchStage" json:"stage,omitempty"`
	// Used to perform a consistent read-modify-write.
	Etag []byte `protobuf:"bytes,9,opt,name=etag,proto3" json:"etag,omitempty"`
	// The current deleted state of the role. This field is read only.
	// It will be ignored in calls to CreateRole and UpdateRole.
	Deleted bool `protobuf:"varint,11,opt,name=deleted,proto3" json:"deleted,omitempty"`
	// contains filtered or unexported fields
}

A role in the Identity and Access Management API.

func (*Role) Descriptor deprecated 

func (*Role) Descriptor() ([]byte, []int)

Deprecated: Use Role.ProtoReflect.Descriptor instead.

func (*Role) GetDeleted 

func (x *Role) GetDeleted() bool

func (*Role) GetDescription 

func (x *Role) GetDescription() string

func (*Role) GetEtag 

func (x *Role) GetEtag() []byte

func (*Role) GetIncludedPermissions 

func (x *Role) GetIncludedPermissions() []string

func (*Role) GetName 

func (x *Role) GetName() string

func (*Role) GetStage 

func (x *Role) GetStage() Role_RoleLaunchStage

func (*Role) GetTitle 

func (x *Role) GetTitle() string

func (*Role) ProtoMessage 

func (*Role) ProtoMessage()

func (*Role) ProtoReflect 

func (x *Role) ProtoReflect() protoreflect.Message

func (*Role) Reset 

func (x *Role) Reset()

func (*Role) String 

func (x *Role) String() string

type RoleView 

type RoleView int32

A view for Role objects. 

const (
	// Omits the `included_permissions` field.
	// This is the default value.
	RoleView_BASIC RoleView = 0
	// Returns all fields.
	RoleView_FULL RoleView = 1
)

func (RoleView) Descriptor 

func (RoleView) Descriptor() protoreflect.EnumDescriptor

func (RoleView) Enum 

func (x RoleView) Enum() *RoleView

func (RoleView) EnumDescriptor deprecated 

func (RoleView) EnumDescriptor() ([]byte, []int)

Deprecated: Use RoleView.Descriptor instead.

func (RoleView) Number 

func (x RoleView) Number() protoreflect.EnumNumber

func (RoleView) String 

func (x RoleView) String() string

func (RoleView) Type 

func (RoleView) Type() protoreflect.EnumType

type Role_RoleLaunchStage 

type Role_RoleLaunchStage int32

A stage representing a role's lifecycle phase. 

const (
	// The user has indicated this role is currently in an Alpha phase. If this
	// launch stage is selected, the `stage` field will not be included when
	// requesting the definition for a given role.
	Role_ALPHA Role_RoleLaunchStage = 0
	// The user has indicated this role is currently in a Beta phase.
	Role_BETA Role_RoleLaunchStage = 1
	// The user has indicated this role is generally available.
	Role_GA Role_RoleLaunchStage = 2
	// The user has indicated this role is being deprecated.
	Role_DEPRECATED Role_RoleLaunchStage = 4
	// This role is disabled and will not contribute permissions to any members
	// it is granted to in policies.
	Role_DISABLED Role_RoleLaunchStage = 5
	// The user has indicated this role is currently in an EAP phase.
	Role_EAP Role_RoleLaunchStage = 6
)

func (Role_RoleLaunchStage) Descriptor 

func (Role_RoleLaunchStage) Descriptor() protoreflect.EnumDescriptor

func (Role_RoleLaunchStage) Enum 

func (x Role_RoleLaunchStage) Enum() *Role_RoleLaunchStage

func (Role_RoleLaunchStage) EnumDescriptor deprecated 

func (Role_RoleLaunchStage) EnumDescriptor() ([]byte, []int)

Deprecated: Use Role_RoleLaunchStage.Descriptor instead.

func (Role_RoleLaunchStage) Number 

func (x Role_RoleLaunchStage) Number() protoreflect.EnumNumber

func (Role_RoleLaunchStage) String 

func (x Role_RoleLaunchStage) String() string

func (Role_RoleLaunchStage) Type 

func (Role_RoleLaunchStage) Type() protoreflect.EnumType

type ServiceAccount 

type ServiceAccount struct {

	// The resource name of the service account in the following format:
	// `projects/{PROJECT_ID}/serviceAccounts/{ACCOUNT}`.
	//
	// Requests using `-` as a wildcard for the `PROJECT_ID` will infer the
	// project from the `account` and the `ACCOUNT` value can be the `email`
	// address or the `unique_id` of the service account.
	//
	// In responses the resource name will always be in the format
	// `projects/{PROJECT_ID}/serviceAccounts/{ACCOUNT}`.
	Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
	// @OutputOnly The id of the project that owns the service account.
	ProjectId string `protobuf:"bytes,2,opt,name=project_id,json=projectId,proto3" json:"project_id,omitempty"`
	// @OutputOnly The unique and stable id of the service account.
	UniqueId string `protobuf:"bytes,4,opt,name=unique_id,json=uniqueId,proto3" json:"unique_id,omitempty"`
	// @OutputOnly The email address of the service account.
	Email string `protobuf:"bytes,5,opt,name=email,proto3" json:"email,omitempty"`
	// Optional. A user-specified name for the service account.
	// Must be less than or equal to 100 UTF-8 bytes.
	DisplayName string `protobuf:"bytes,6,opt,name=display_name,json=displayName,proto3" json:"display_name,omitempty"`
	// Optional. Note: `etag` is an inoperable legacy field that is only returned
	// for backwards compatibility.
	Etag []byte `protobuf:"bytes,7,opt,name=etag,proto3" json:"etag,omitempty"`
	// @OutputOnly. The OAuth2 client id for the service account.
	// This is used in conjunction with the OAuth2 clientconfig API to make
	// three legged OAuth2 (3LO) flows to access the data of Google users.
	Oauth2ClientId string `protobuf:"bytes,9,opt,name=oauth2_client_id,json=oauth2ClientId,proto3" json:"oauth2_client_id,omitempty"`
	// contains filtered or unexported fields
}

A service account in the Identity and Access Management API.

To create a service account, specify the `project_id` and the `account_id` for the account. The `account_id` is unique within the project, and is used to generate the service account email address and a stable `unique_id`.

If the account already exists, the account's resource name is returned in the format of projects/{PROJECT_ID}/serviceAccounts/{ACCOUNT}. The caller can use the name in other methods to access the account.

All other methods can identify the service account using the format `projects/{PROJECT_ID}/serviceAccounts/{ACCOUNT}`. Using `-` as a wildcard for the `PROJECT_ID` will infer the project from the account. The `ACCOUNT` value can be the `email` address or the `unique_id` of the service account.

func (*ServiceAccount) Descriptor deprecated 

func (*ServiceAccount) Descriptor() ([]byte, []int)

Deprecated: Use ServiceAccount.ProtoReflect.Descriptor instead.

func (*ServiceAccount) GetDisplayName 

func (x *ServiceAccount) GetDisplayName() string

func (*ServiceAccount) GetEmail 

func (x *ServiceAccount) GetEmail() string

func (*ServiceAccount) GetEtag 

func (x *ServiceAccount) GetEtag() []byte

func (*ServiceAccount) GetName 

func (x *ServiceAccount) GetName() string

func (*ServiceAccount) GetOauth2ClientId 

func (x *ServiceAccount) GetOauth2ClientId() string

func (*ServiceAccount) GetProjectId 

func (x *ServiceAccount) GetProjectId() string

func (*ServiceAccount) GetUniqueId 

func (x *ServiceAccount) GetUniqueId() string

func (*ServiceAccount) ProtoMessage 

func (*ServiceAccount) ProtoMessage()

func (*ServiceAccount) ProtoReflect 

func (x *ServiceAccount) ProtoReflect() protoreflect.Message

func (*ServiceAccount) Reset 

func (x *ServiceAccount) Reset()

func (*ServiceAccount) String 

func (x *ServiceAccount) String() string

type ServiceAccountKey 

type ServiceAccountKey struct {

	// The resource name of the service account key in the following format
	// `projects/{PROJECT_ID}/serviceAccounts/{ACCOUNT}/keys/{key}`.
	Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
	// The output format for the private key.
	// Only provided in `CreateServiceAccountKey` responses, not
	// in `GetServiceAccountKey` or `ListServiceAccountKey` responses.
	//
	// Google never exposes system-managed private keys, and never retains
	// user-managed private keys.
	PrivateKeyType ServiceAccountPrivateKeyType `` /* 160-byte string literal not displayed */
	// Specifies the algorithm (and possibly key size) for the key.
	KeyAlgorithm ServiceAccountKeyAlgorithm `` /* 150-byte string literal not displayed */
	// The private key data. Only provided in `CreateServiceAccountKey`
	// responses. Make sure to keep the private key data secure because it
	// allows for the assertion of the service account identity.
	// When base64 decoded, the private key data can be used to authenticate with
	// Google API client libraries and with
	// <a href="/sdk/gcloud/reference/auth/activate-service-account">gcloud
	// auth activate-service-account</a>.
	PrivateKeyData []byte `protobuf:"bytes,3,opt,name=private_key_data,json=privateKeyData,proto3" json:"private_key_data,omitempty"`
	// The public key data. Only provided in `GetServiceAccountKey` responses.
	PublicKeyData []byte `protobuf:"bytes,7,opt,name=public_key_data,json=publicKeyData,proto3" json:"public_key_data,omitempty"`
	// The key can be used after this timestamp.
	ValidAfterTime *timestamppb.Timestamp `protobuf:"bytes,4,opt,name=valid_after_time,json=validAfterTime,proto3" json:"valid_after_time,omitempty"`
	// The key can be used before this timestamp.
	// For system-managed key pairs, this timestamp is the end time for the
	// private key signing operation. The public key could still be used
	// for verification for a few hours after this time.
	ValidBeforeTime *timestamppb.Timestamp `protobuf:"bytes,5,opt,name=valid_before_time,json=validBeforeTime,proto3" json:"valid_before_time,omitempty"`
	// contains filtered or unexported fields
}

Represents a service account key.

A service account has two sets of key-pairs: user-managed, and system-managed.

User-managed key-pairs can be created and deleted by users. Users are responsible for rotating these keys periodically to ensure security of their service accounts. Users retain the private key of these key-pairs, and Google retains ONLY the public key.

System-managed keys are automatically rotated by Google, and are used for signing for a maximum of two weeks. The rotation process is probabilistic, and usage of the new key will gradually ramp up and down over the key's lifetime. We recommend caching the public key set for a service account for no more than 24 hours to ensure you have access to the latest keys.

Public keys for all service accounts are also published at the OAuth2 Service Account API.

func (*ServiceAccountKey) Descriptor deprecated 

func (*ServiceAccountKey) Descriptor() ([]byte, []int)

Deprecated: Use ServiceAccountKey.ProtoReflect.Descriptor instead.

func (*ServiceAccountKey) GetKeyAlgorithm 

func (x *ServiceAccountKey) GetKeyAlgorithm() ServiceAccountKeyAlgorithm

func (*ServiceAccountKey) GetName 

func (x *ServiceAccountKey) GetName() string

func (*ServiceAccountKey) GetPrivateKeyData 

func (x *ServiceAccountKey) GetPrivateKeyData() []byte

func (*ServiceAccountKey) GetPrivateKeyType 

func (x *ServiceAccountKey) GetPrivateKeyType() ServiceAccountPrivateKeyType

func (*ServiceAccountKey) GetPublicKeyData 

func (x *ServiceAccountKey) GetPublicKeyData() []byte

func (*ServiceAccountKey) GetValidAfterTime 

func (x *ServiceAccountKey) GetValidAfterTime() *timestamppb.Timestamp

func (*ServiceAccountKey) GetValidBeforeTime 

func (x *ServiceAccountKey) GetValidBeforeTime() *timestamppb.Timestamp

func (*ServiceAccountKey) ProtoMessage 

func (*ServiceAccountKey) ProtoMessage()

func (*ServiceAccountKey) ProtoReflect 

func (x *ServiceAccountKey) ProtoReflect() protoreflect.Message

func (*ServiceAccountKey) Reset 

func (x *ServiceAccountKey) Reset()

func (*ServiceAccountKey) String 

func (x *ServiceAccountKey) String() string

type ServiceAccountKeyAlgorithm 

type ServiceAccountKeyAlgorithm int32

Supported key algorithms. 

const (
	// An unspecified key algorithm.
	ServiceAccountKeyAlgorithm_KEY_ALG_UNSPECIFIED ServiceAccountKeyAlgorithm = 0
	// 1k RSA Key.
	ServiceAccountKeyAlgorithm_KEY_ALG_RSA_1024 ServiceAccountKeyAlgorithm = 1
	// 2k RSA Key.
	ServiceAccountKeyAlgorithm_KEY_ALG_RSA_2048 ServiceAccountKeyAlgorithm = 2
)

func (ServiceAccountKeyAlgorithm) Descriptor 

func (ServiceAccountKeyAlgorithm) Descriptor() protoreflect.EnumDescriptor

func (ServiceAccountKeyAlgorithm) Enum 

func (x ServiceAccountKeyAlgorithm) Enum() *ServiceAccountKeyAlgorithm

func (ServiceAccountKeyAlgorithm) EnumDescriptor deprecated 

func (ServiceAccountKeyAlgorithm) EnumDescriptor() ([]byte, []int)

Deprecated: Use ServiceAccountKeyAlgorithm.Descriptor instead.

func (ServiceAccountKeyAlgorithm) Number 

func (x ServiceAccountKeyAlgorithm) Number() protoreflect.EnumNumber

func (ServiceAccountKeyAlgorithm) String 

func (x ServiceAccountKeyAlgorithm) String() string

func (ServiceAccountKeyAlgorithm) Type 

func (ServiceAccountKeyAlgorithm) Type() protoreflect.EnumType

type ServiceAccountPrivateKeyType 

type ServiceAccountPrivateKeyType int32

Supported private key output formats. 

const (
	// Unspecified. Equivalent to `TYPE_GOOGLE_CREDENTIALS_FILE`.
	ServiceAccountPrivateKeyType_TYPE_UNSPECIFIED ServiceAccountPrivateKeyType = 0
	// PKCS12 format.
	// The password for the PKCS12 file is `notasecret`.
	// For more information, see https://tools.ietf.org/html/rfc7292.
	ServiceAccountPrivateKeyType_TYPE_PKCS12_FILE ServiceAccountPrivateKeyType = 1
	// Google Credentials File format.
	ServiceAccountPrivateKeyType_TYPE_GOOGLE_CREDENTIALS_FILE ServiceAccountPrivateKeyType = 2
)

func (ServiceAccountPrivateKeyType) Descriptor 

func (ServiceAccountPrivateKeyType) Descriptor() protoreflect.EnumDescriptor

func (ServiceAccountPrivateKeyType) Enum 

func (x ServiceAccountPrivateKeyType) Enum() *ServiceAccountPrivateKeyType

func (ServiceAccountPrivateKeyType) EnumDescriptor deprecated 

func (ServiceAccountPrivateKeyType) EnumDescriptor() ([]byte, []int)

Deprecated: Use ServiceAccountPrivateKeyType.Descriptor instead.

func (ServiceAccountPrivateKeyType) Number 

func (x ServiceAccountPrivateKeyType) Number() protoreflect.EnumNumber

func (ServiceAccountPrivateKeyType) String 

func (x ServiceAccountPrivateKeyType) String() string

func (ServiceAccountPrivateKeyType) Type 

func (ServiceAccountPrivateKeyType) Type() protoreflect.EnumType

type ServiceAccountPublicKeyType 

type ServiceAccountPublicKeyType int32

Supported public key output formats. 

const (
	// Unspecified. Returns nothing here.
	ServiceAccountPublicKeyType_TYPE_NONE ServiceAccountPublicKeyType = 0
	// X509 PEM format.
	ServiceAccountPublicKeyType_TYPE_X509_PEM_FILE ServiceAccountPublicKeyType = 1
	// Raw public key.
	ServiceAccountPublicKeyType_TYPE_RAW_PUBLIC_KEY ServiceAccountPublicKeyType = 2
)

func (ServiceAccountPublicKeyType) Descriptor 

func (ServiceAccountPublicKeyType) Descriptor() protoreflect.EnumDescriptor

func (ServiceAccountPublicKeyType) Enum 

func (x ServiceAccountPublicKeyType) Enum() *ServiceAccountPublicKeyType

func (ServiceAccountPublicKeyType) EnumDescriptor deprecated 

func (ServiceAccountPublicKeyType) EnumDescriptor() ([]byte, []int)

Deprecated: Use ServiceAccountPublicKeyType.Descriptor instead.

func (ServiceAccountPublicKeyType) Number 

func (x ServiceAccountPublicKeyType) Number() protoreflect.EnumNumber

func (ServiceAccountPublicKeyType) String 

func (x ServiceAccountPublicKeyType) String() string

func (ServiceAccountPublicKeyType) Type 

func (ServiceAccountPublicKeyType) Type() protoreflect.EnumType

type SignBlobRequest 

type SignBlobRequest struct {

	// Required. The resource name of the service account in the following format:
	// `projects/{PROJECT_ID}/serviceAccounts/{ACCOUNT}`.
	// Using `-` as a wildcard for the `PROJECT_ID` will infer the project from
	// the account. The `ACCOUNT` value can be the `email` address or the
	// `unique_id` of the service account.
	Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
	// Required. The bytes to sign.
	BytesToSign []byte `protobuf:"bytes,2,opt,name=bytes_to_sign,json=bytesToSign,proto3" json:"bytes_to_sign,omitempty"`
	// contains filtered or unexported fields
}

The service account sign blob request.

func (*SignBlobRequest) Descriptor deprecated 

func (*SignBlobRequest) Descriptor() ([]byte, []int)

Deprecated: Use SignBlobRequest.ProtoReflect.Descriptor instead.

func (*SignBlobRequest) GetBytesToSign 

func (x *SignBlobRequest) GetBytesToSign() []byte

func (*SignBlobRequest) GetName 

func (x *SignBlobRequest) GetName() string

func (*SignBlobRequest) ProtoMessage 

func (*SignBlobRequest) ProtoMessage()

func (*SignBlobRequest) ProtoReflect 

func (x *SignBlobRequest) ProtoReflect() protoreflect.Message

func (*SignBlobRequest) Reset 

func (x *SignBlobRequest) Reset()

func (*SignBlobRequest) String 

func (x *SignBlobRequest) String() string

type SignBlobResponse 

type SignBlobResponse struct {

	// The id of the key used to sign the blob.
	KeyId string `protobuf:"bytes,1,opt,name=key_id,json=keyId,proto3" json:"key_id,omitempty"`
	// The signed blob.
	Signature []byte `protobuf:"bytes,2,opt,name=signature,proto3" json:"signature,omitempty"`
	// contains filtered or unexported fields
}

The service account sign blob response.

func (*SignBlobResponse) Descriptor deprecated 

func (*SignBlobResponse) Descriptor() ([]byte, []int)

Deprecated: Use SignBlobResponse.ProtoReflect.Descriptor instead.

func (*SignBlobResponse) GetKeyId 

func (x *SignBlobResponse) GetKeyId() string

func (*SignBlobResponse) GetSignature 

func (x *SignBlobResponse) GetSignature() []byte

func (*SignBlobResponse) ProtoMessage 

func (*SignBlobResponse) ProtoMessage()

func (*SignBlobResponse) ProtoReflect 

func (x *SignBlobResponse) ProtoReflect() protoreflect.Message

func (*SignBlobResponse) Reset 

func (x *SignBlobResponse) Reset()

func (*SignBlobResponse) String 

func (x *SignBlobResponse) String() string

type SignJwtRequest 

type SignJwtRequest struct {

	// Required. The resource name of the service account in the following format:
	// `projects/{PROJECT_ID}/serviceAccounts/{ACCOUNT}`.
	// Using `-` as a wildcard for the `PROJECT_ID` will infer the project from
	// the account. The `ACCOUNT` value can be the `email` address or the
	// `unique_id` of the service account.
	Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
	// Required. The JWT payload to sign, a JSON JWT Claim set.
	Payload string `protobuf:"bytes,2,opt,name=payload,proto3" json:"payload,omitempty"`
	// contains filtered or unexported fields
}

The service account sign JWT request.

func (*SignJwtRequest) Descriptor deprecated 

func (*SignJwtRequest) Descriptor() ([]byte, []int)

Deprecated: Use SignJwtRequest.ProtoReflect.Descriptor instead.

func (*SignJwtRequest) GetName 

func (x *SignJwtRequest) GetName() string

func (*SignJwtRequest) GetPayload 

func (x *SignJwtRequest) GetPayload() string

func (*SignJwtRequest) ProtoMessage 

func (*SignJwtRequest) ProtoMessage()

func (*SignJwtRequest) ProtoReflect 

func (x *SignJwtRequest) ProtoReflect() protoreflect.Message

func (*SignJwtRequest) Reset 

func (x *SignJwtRequest) Reset()

func (*SignJwtRequest) String 

func (x *SignJwtRequest) String() string

type SignJwtResponse 

type SignJwtResponse struct {

	// The id of the key used to sign the JWT.
	KeyId string `protobuf:"bytes,1,opt,name=key_id,json=keyId,proto3" json:"key_id,omitempty"`
	// The signed JWT.
	SignedJwt string `protobuf:"bytes,2,opt,name=signed_jwt,json=signedJwt,proto3" json:"signed_jwt,omitempty"`
	// contains filtered or unexported fields
}

The service account sign JWT response.

func (*SignJwtResponse) Descriptor deprecated 

func (*SignJwtResponse) Descriptor() ([]byte, []int)

Deprecated: Use SignJwtResponse.ProtoReflect.Descriptor instead.

func (*SignJwtResponse) GetKeyId 

func (x *SignJwtResponse) GetKeyId() string

func (*SignJwtResponse) GetSignedJwt 

func (x *SignJwtResponse) GetSignedJwt() string

func (*SignJwtResponse) ProtoMessage 

func (*SignJwtResponse) ProtoMessage()

func (*SignJwtResponse) ProtoReflect 

func (x *SignJwtResponse) ProtoReflect() protoreflect.Message

func (*SignJwtResponse) Reset 

func (x *SignJwtResponse) Reset()

func (*SignJwtResponse) String 

func (x *SignJwtResponse) String() string

type UndeleteRoleRequest 

type UndeleteRoleRequest struct {

	// The `name` parameter's value depends on the target resource for the
	// request, namely
	// [`projects`](/iam/reference/rest/v1/projects.roles) or
	// [`organizations`](/iam/reference/rest/v1/organizations.roles). Each
	// resource type's `name` value format is described below:
	//
	//   - [`projects.roles.undelete()`](/iam/reference/rest/v1/projects.roles/undelete):
	//     `projects/{PROJECT_ID}/roles/{CUSTOM_ROLE_ID}`. This method undeletes
	//     only [custom roles](/iam/docs/understanding-custom-roles) that have been
	//     created at the project level. Example request URL:
	//     `https://iam.googleapis.com/v1/projects/{PROJECT_ID}/roles/{CUSTOM_ROLE_ID}`
	//
	//   - [`organizations.roles.undelete()`](/iam/reference/rest/v1/organizations.roles/undelete):
	//     `organizations/{ORGANIZATION_ID}/roles/{CUSTOM_ROLE_ID}`. This method
	//     undeletes only [custom roles](/iam/docs/understanding-custom-roles) that
	//     have been created at the organization level. Example request URL:
	//     `https://iam.googleapis.com/v1/organizations/{ORGANIZATION_ID}/roles/{CUSTOM_ROLE_ID}`
	//
	// Note: Wildcard (*) values are invalid; you must specify a complete project
	// ID or organization ID.
	Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
	// Used to perform a consistent read-modify-write.
	Etag []byte `protobuf:"bytes,2,opt,name=etag,proto3" json:"etag,omitempty"`
	// contains filtered or unexported fields
}

The request to undelete an existing role.

func (*UndeleteRoleRequest) Descriptor deprecated 

func (*UndeleteRoleRequest) Descriptor() ([]byte, []int)

Deprecated: Use UndeleteRoleRequest.ProtoReflect.Descriptor instead.

func (*UndeleteRoleRequest) GetEtag 

func (x *UndeleteRoleRequest) GetEtag() []byte

func (*UndeleteRoleRequest) GetName 

func (x *UndeleteRoleRequest) GetName() string

func (*UndeleteRoleRequest) ProtoMessage 

func (*UndeleteRoleRequest) ProtoMessage()

func (*UndeleteRoleRequest) ProtoReflect 

func (x *UndeleteRoleRequest) ProtoReflect() protoreflect.Message

func (*UndeleteRoleRequest) Reset 

func (x *UndeleteRoleRequest) Reset()

func (*UndeleteRoleRequest) String 

func (x *UndeleteRoleRequest) String() string

type UnimplementedIAMServer 

type UnimplementedIAMServer struct {
}

UnimplementedIAMServer must be embedded to have forward compatible implementations.

func (UnimplementedIAMServer) CreateRole 

func (UnimplementedIAMServer) CreateRole(context.Context, *CreateRoleRequest) (*Role, error)

func (UnimplementedIAMServer) CreateServiceAccount 

func (UnimplementedIAMServer) CreateServiceAccount(context.Context, *CreateServiceAccountRequest) (*ServiceAccount, error)

func (UnimplementedIAMServer) CreateServiceAccountKey 

func (UnimplementedIAMServer) CreateServiceAccountKey(context.Context, *CreateServiceAccountKeyRequest) (*ServiceAccountKey, error)

func (UnimplementedIAMServer) DeleteRole 

func (UnimplementedIAMServer) DeleteRole(context.Context, *DeleteRoleRequest) (*Role, error)

func (UnimplementedIAMServer) DeleteServiceAccount 

func (UnimplementedIAMServer) DeleteServiceAccount(context.Context, *DeleteServiceAccountRequest) (*emptypb.Empty, error)

func (UnimplementedIAMServer) DeleteServiceAccountKey 

func (UnimplementedIAMServer) DeleteServiceAccountKey(context.Context, *DeleteServiceAccountKeyRequest) (*emptypb.Empty, error)

func (UnimplementedIAMServer) GetIamPolicy 

func (UnimplementedIAMServer) GetIamPolicy(context.Context, *v1.GetIamPolicyRequest) (*v1.Policy, error)

func (UnimplementedIAMServer) GetRole 

func (UnimplementedIAMServer) GetRole(context.Context, *GetRoleRequest) (*Role, error)

func (UnimplementedIAMServer) GetServiceAccount 

func (UnimplementedIAMServer) GetServiceAccount(context.Context, *GetServiceAccountRequest) (*ServiceAccount, error)

func (UnimplementedIAMServer) GetServiceAccountKey 

func (UnimplementedIAMServer) GetServiceAccountKey(context.Context, *GetServiceAccountKeyRequest) (*ServiceAccountKey, error)

func (UnimplementedIAMServer) ListRoles 

func (UnimplementedIAMServer) ListRoles(context.Context, *ListRolesRequest) (*ListRolesResponse, error)

func (UnimplementedIAMServer) ListServiceAccountKeys 

func (UnimplementedIAMServer) ListServiceAccountKeys(context.Context, *ListServiceAccountKeysRequest) (*ListServiceAccountKeysResponse, error)

func (UnimplementedIAMServer) ListServiceAccounts 

func (UnimplementedIAMServer) ListServiceAccounts(context.Context, *ListServiceAccountsRequest) (*ListServiceAccountsResponse, error)

func (UnimplementedIAMServer) QueryGrantableRoles 

func (UnimplementedIAMServer) QueryGrantableRoles(context.Context, *QueryGrantableRolesRequest) (*QueryGrantableRolesResponse, error)

func (UnimplementedIAMServer) QueryTestablePermissions 

func (UnimplementedIAMServer) QueryTestablePermissions(context.Context, *QueryTestablePermissionsRequest) (*QueryTestablePermissionsResponse, error)

func (UnimplementedIAMServer) SetIamPolicy 

func (UnimplementedIAMServer) SetIamPolicy(context.Context, *v1.SetIamPolicyRequest) (*v1.Policy, error)

func (UnimplementedIAMServer) SignBlob 

func (UnimplementedIAMServer) SignBlob(context.Context, *SignBlobRequest) (*SignBlobResponse, error)

func (UnimplementedIAMServer) SignJwt 

func (UnimplementedIAMServer) SignJwt(context.Context, *SignJwtRequest) (*SignJwtResponse, error)

func (UnimplementedIAMServer) TestIamPermissions 

func (UnimplementedIAMServer) TestIamPermissions(context.Context, *v1.TestIamPermissionsRequest) (*v1.TestIamPermissionsResponse, error)

func (UnimplementedIAMServer) UndeleteRole 

func (UnimplementedIAMServer) UndeleteRole(context.Context, *UndeleteRoleRequest) (*Role, error)

func (UnimplementedIAMServer) UpdateRole 

func (UnimplementedIAMServer) UpdateRole(context.Context, *UpdateRoleRequest) (*Role, error)

func (UnimplementedIAMServer) UpdateServiceAccount 

func (UnimplementedIAMServer) UpdateServiceAccount(context.Context, *ServiceAccount) (*ServiceAccount, error)

type UnsafeIAMServer 

type UnsafeIAMServer interface {
	// contains filtered or unexported methods
}

UnsafeIAMServer may be embedded to opt out of forward compatibility for this service. Use of this interface is not recommended, as added methods to IAMServer will result in compilation errors.

type UpdateRoleRequest 

type UpdateRoleRequest struct {

	// The `name` parameter's value depends on the target resource for the
	// request, namely
	// [`projects`](/iam/reference/rest/v1/projects.roles) or
	// [`organizations`](/iam/reference/rest/v1/organizations.roles). Each
	// resource type's `name` value format is described below:
	//
	//   - [`projects.roles.patch()`](/iam/reference/rest/v1/projects.roles/patch):
	//     `projects/{PROJECT_ID}/roles/{CUSTOM_ROLE_ID}`. This method updates only
	//     [custom roles](/iam/docs/understanding-custom-roles) that have been
	//     created at the project level. Example request URL:
	//     `https://iam.googleapis.com/v1/projects/{PROJECT_ID}/roles/{CUSTOM_ROLE_ID}`
	//
	//   - [`organizations.roles.patch()`](/iam/reference/rest/v1/organizations.roles/patch):
	//     `organizations/{ORGANIZATION_ID}/roles/{CUSTOM_ROLE_ID}`. This method
	//     updates only [custom roles](/iam/docs/understanding-custom-roles) that
	//     have been created at the organization level. Example request URL:
	//     `https://iam.googleapis.com/v1/organizations/{ORGANIZATION_ID}/roles/{CUSTOM_ROLE_ID}`
	//
	// Note: Wildcard (*) values are invalid; you must specify a complete project
	// ID or organization ID.
	Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
	// The updated role.
	Role *Role `protobuf:"bytes,2,opt,name=role,proto3" json:"role,omitempty"`
	// A mask describing which fields in the Role have changed.
	UpdateMask *fieldmaskpb.FieldMask `protobuf:"bytes,3,opt,name=update_mask,json=updateMask,proto3" json:"update_mask,omitempty"`
	// contains filtered or unexported fields
}

The request to update a role.

func (*UpdateRoleRequest) Descriptor deprecated 

func (*UpdateRoleRequest) Descriptor() ([]byte, []int)

Deprecated: Use UpdateRoleRequest.ProtoReflect.Descriptor instead.

func (*UpdateRoleRequest) GetName 

func (x *UpdateRoleRequest) GetName() string

func (*UpdateRoleRequest) GetRole 

func (x *UpdateRoleRequest) GetRole() *Role

func (*UpdateRoleRequest) GetUpdateMask 

func (x *UpdateRoleRequest) GetUpdateMask() *fieldmaskpb.FieldMask

func (*UpdateRoleRequest) ProtoMessage 

func (*UpdateRoleRequest) ProtoMessage()

func (*UpdateRoleRequest) ProtoReflect 

func (x *UpdateRoleRequest) ProtoReflect() protoreflect.Message

func (*UpdateRoleRequest) Reset 

func (x *UpdateRoleRequest) Reset()

func (*UpdateRoleRequest) String 

func (x *UpdateRoleRequest) String() string

Source Files

View all Source files

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.