Documentation
¶
Overview ¶
Package accesscontextmanager aliases all exported identifiers in package "cloud.google.com/go/accesscontextmanager/apiv1/accesscontextmanagerpb".
Deprecated: Please use types in: cloud.google.com/go/accesscontextmanager/apiv1/accesscontextmanagerpb. Please read https://github.com/googleapis/google-cloud-go/blob/main/migration.md for more details.
Index ¶
- Constants
- Variables
- func RegisterAccessContextManagerServer(s *grpc.Server, srv AccessContextManagerServer)deprecated
- type AccessContextManagerClientdeprecated
- type AccessContextManagerOperationMetadatadeprecated
- type AccessContextManagerServerdeprecated
- type AccessLeveldeprecated
- type AccessLevel_Basic
- type AccessLevel_Custom
- type AccessPolicydeprecated
- type BasicLeveldeprecated
- type BasicLevel_ConditionCombiningFunctiondeprecated
- type CommitServicePerimetersRequestdeprecated
- type CommitServicePerimetersResponsedeprecated
- type Conditiondeprecated
- type CreateAccessLevelRequestdeprecated
- type CreateGcpUserAccessBindingRequestdeprecated
- type CreateServicePerimeterRequestdeprecated
- type CustomLeveldeprecated
- type DeleteAccessLevelRequestdeprecated
- type DeleteAccessPolicyRequestdeprecated
- type DeleteGcpUserAccessBindingRequestdeprecated
- type DeleteServicePerimeterRequestdeprecated
- type DevicePolicydeprecated
- type GcpUserAccessBindingdeprecated
- type GcpUserAccessBindingOperationMetadatadeprecated
- type GetAccessLevelRequestdeprecated
- type GetAccessPolicyRequestdeprecated
- type GetGcpUserAccessBindingRequestdeprecated
- type GetServicePerimeterRequestdeprecated
- type LevelFormatdeprecated
- type ListAccessLevelsRequestdeprecated
- type ListAccessLevelsResponsedeprecated
- type ListAccessPoliciesRequestdeprecated
- type ListAccessPoliciesResponsedeprecated
- type ListGcpUserAccessBindingsRequestdeprecated
- type ListGcpUserAccessBindingsResponsedeprecated
- type ListServicePerimetersRequestdeprecated
- type ListServicePerimetersResponsedeprecated
- type OsConstraintdeprecated
- type ReplaceAccessLevelsRequestdeprecated
- type ReplaceAccessLevelsResponsedeprecated
- type ReplaceServicePerimetersRequestdeprecated
- type ReplaceServicePerimetersResponsedeprecated
- type ServicePerimeterdeprecated
- type ServicePerimeterConfigdeprecated
- type ServicePerimeterConfig_ApiOperationdeprecated
- type ServicePerimeterConfig_EgressFromdeprecated
- type ServicePerimeterConfig_EgressPolicydeprecated
- type ServicePerimeterConfig_EgressTodeprecated
- type ServicePerimeterConfig_IdentityTypedeprecated
- type ServicePerimeterConfig_IngressFromdeprecated
- type ServicePerimeterConfig_IngressPolicydeprecated
- type ServicePerimeterConfig_IngressSourcedeprecated
- type ServicePerimeterConfig_IngressSource_AccessLevel
- type ServicePerimeterConfig_IngressSource_Resource
- type ServicePerimeterConfig_IngressTodeprecated
- type ServicePerimeterConfig_MethodSelectordeprecated
- type ServicePerimeterConfig_MethodSelector_Method
- type ServicePerimeterConfig_MethodSelector_Permission
- type ServicePerimeterConfig_VpcAccessibleServicesdeprecated
- type ServicePerimeter_PerimeterTypedeprecated
- type UnimplementedAccessContextManagerServerdeprecated
- type UpdateAccessLevelRequestdeprecated
- type UpdateAccessPolicyRequestdeprecated
- type UpdateGcpUserAccessBindingRequestdeprecated
- type UpdateServicePerimeterRequestdeprecated
Constants ¶
const ( BasicLevel_AND = src.BasicLevel_AND BasicLevel_OR = src.BasicLevel_OR LevelFormat_AS_DEFINED = src.LevelFormat_AS_DEFINED LevelFormat_CEL = src.LevelFormat_CEL LevelFormat_LEVEL_FORMAT_UNSPECIFIED = src.LevelFormat_LEVEL_FORMAT_UNSPECIFIED ServicePerimeterConfig_ANY_IDENTITY = src.ServicePerimeterConfig_ANY_IDENTITY ServicePerimeterConfig_ANY_SERVICE_ACCOUNT = src.ServicePerimeterConfig_ANY_SERVICE_ACCOUNT ServicePerimeterConfig_ANY_USER_ACCOUNT = src.ServicePerimeterConfig_ANY_USER_ACCOUNT ServicePerimeterConfig_IDENTITY_TYPE_UNSPECIFIED = src.ServicePerimeterConfig_IDENTITY_TYPE_UNSPECIFIED ServicePerimeter_PERIMETER_TYPE_BRIDGE = src.ServicePerimeter_PERIMETER_TYPE_BRIDGE ServicePerimeter_PERIMETER_TYPE_REGULAR = src.ServicePerimeter_PERIMETER_TYPE_REGULAR )
Deprecated: Please use consts in: cloud.google.com/go/accesscontextmanager/apiv1/accesscontextmanagerpb
Variables ¶
var ( BasicLevel_ConditionCombiningFunction_name = src.BasicLevel_ConditionCombiningFunction_name BasicLevel_ConditionCombiningFunction_value = src.BasicLevel_ConditionCombiningFunction_value File_google_identity_accesscontextmanager_v1_access_context_manager_proto = src.File_google_identity_accesscontextmanager_v1_access_context_manager_proto File_google_identity_accesscontextmanager_v1_access_level_proto = src.File_google_identity_accesscontextmanager_v1_access_level_proto File_google_identity_accesscontextmanager_v1_access_policy_proto = src.File_google_identity_accesscontextmanager_v1_access_policy_proto File_google_identity_accesscontextmanager_v1_gcp_user_access_binding_proto = src.File_google_identity_accesscontextmanager_v1_gcp_user_access_binding_proto File_google_identity_accesscontextmanager_v1_service_perimeter_proto = src.File_google_identity_accesscontextmanager_v1_service_perimeter_proto LevelFormat_name = src.LevelFormat_name LevelFormat_value = src.LevelFormat_value ServicePerimeterConfig_IdentityType_name = src.ServicePerimeterConfig_IdentityType_name ServicePerimeterConfig_IdentityType_value = src.ServicePerimeterConfig_IdentityType_value ServicePerimeter_PerimeterType_name = src.ServicePerimeter_PerimeterType_name ServicePerimeter_PerimeterType_value = src.ServicePerimeter_PerimeterType_value )
Deprecated: Please use vars in: cloud.google.com/go/accesscontextmanager/apiv1/accesscontextmanagerpb
Functions ¶
func RegisterAccessContextManagerServer
deprecated
func RegisterAccessContextManagerServer(s *grpc.Server, srv AccessContextManagerServer)
Deprecated: Please use funcs in: cloud.google.com/go/accesscontextmanager/apiv1/accesscontextmanagerpb
Types ¶
type AccessContextManagerClient
deprecated
type AccessContextManagerClient = src.AccessContextManagerClient
AccessContextManagerClient is the client API for AccessContextManager service. For semantics around ctx use and closing/ending streaming RPCs, please refer to https://godoc.org/google.golang.org/grpc#ClientConn.NewStream.
Deprecated: Please use types in: cloud.google.com/go/accesscontextmanager/apiv1/accesscontextmanagerpb
func NewAccessContextManagerClient
deprecated
func NewAccessContextManagerClient(cc grpc.ClientConnInterface) AccessContextManagerClient
Deprecated: Please use funcs in: cloud.google.com/go/accesscontextmanager/apiv1/accesscontextmanagerpb
type AccessContextManagerOperationMetadata
deprecated
type AccessContextManagerOperationMetadata = src.AccessContextManagerOperationMetadata
Metadata of Access Context Manager's Long Running Operations.
Deprecated: Please use types in: cloud.google.com/go/accesscontextmanager/apiv1/accesscontextmanagerpb
type AccessContextManagerServer
deprecated
type AccessContextManagerServer = src.AccessContextManagerServer
AccessContextManagerServer is the server API for AccessContextManager service.
Deprecated: Please use types in: cloud.google.com/go/accesscontextmanager/apiv1/accesscontextmanagerpb
type AccessLevel
deprecated
type AccessLevel = src.AccessLevel
An `AccessLevel` is a label that can be applied to requests to Google Cloud services, along with a list of requirements necessary for the label to be applied.
Deprecated: Please use types in: cloud.google.com/go/accesscontextmanager/apiv1/accesscontextmanagerpb
type AccessLevel_Basic ¶
type AccessLevel_Basic = src.AccessLevel_Basic
type AccessLevel_Custom ¶
type AccessLevel_Custom = src.AccessLevel_Custom
type AccessPolicy
deprecated
type AccessPolicy = src.AccessPolicy
`AccessPolicy` is a container for `AccessLevels` (which define the necessary attributes to use Google Cloud services) and `ServicePerimeters` (which define regions of services able to freely pass data within a perimeter). An access policy is globally visible within an organization, and the restrictions it specifies apply to all projects within an organization.
Deprecated: Please use types in: cloud.google.com/go/accesscontextmanager/apiv1/accesscontextmanagerpb
type BasicLevel
deprecated
type BasicLevel = src.BasicLevel
`BasicLevel` is an `AccessLevel` using a set of recommended features.
Deprecated: Please use types in: cloud.google.com/go/accesscontextmanager/apiv1/accesscontextmanagerpb
type BasicLevel_ConditionCombiningFunction
deprecated
type BasicLevel_ConditionCombiningFunction = src.BasicLevel_ConditionCombiningFunction
Options for how the `conditions` list should be combined to determine if this `AccessLevel` is applied. Default is AND.
Deprecated: Please use types in: cloud.google.com/go/accesscontextmanager/apiv1/accesscontextmanagerpb
type CommitServicePerimetersRequest
deprecated
type CommitServicePerimetersRequest = src.CommitServicePerimetersRequest
A request to commit dry-run specs in all [Service Perimeters] [google.identity.accesscontextmanager.v1.ServicePerimeter] belonging to an [Access Policy][google.identity.accesscontextmanager.v1.AccessPolicy].
Deprecated: Please use types in: cloud.google.com/go/accesscontextmanager/apiv1/accesscontextmanagerpb
type CommitServicePerimetersResponse
deprecated
type CommitServicePerimetersResponse = src.CommitServicePerimetersResponse
A response to CommitServicePerimetersRequest. This will be put inside of Operation.response field.
Deprecated: Please use types in: cloud.google.com/go/accesscontextmanager/apiv1/accesscontextmanagerpb
type Condition
deprecated
A condition necessary for an `AccessLevel` to be granted. The Condition is an AND over its fields. So a Condition is true if: 1) the request IP is from one of the listed subnetworks AND 2) the originating device complies with the listed device policy AND 3) all listed access levels are granted AND 4) the request was sent at a time allowed by the DateTimeRestriction.
Deprecated: Please use types in: cloud.google.com/go/accesscontextmanager/apiv1/accesscontextmanagerpb
type CreateAccessLevelRequest
deprecated
type CreateAccessLevelRequest = src.CreateAccessLevelRequest
A request to create an `AccessLevel`.
Deprecated: Please use types in: cloud.google.com/go/accesscontextmanager/apiv1/accesscontextmanagerpb
type CreateGcpUserAccessBindingRequest
deprecated
type CreateGcpUserAccessBindingRequest = src.CreateGcpUserAccessBindingRequest
Request of [CreateGcpUserAccessBinding] [google.identity.accesscontextmanager.v1.AccessContextManager.CreateGcpUserAccessBinding].
Deprecated: Please use types in: cloud.google.com/go/accesscontextmanager/apiv1/accesscontextmanagerpb
type CreateServicePerimeterRequest
deprecated
type CreateServicePerimeterRequest = src.CreateServicePerimeterRequest
A request to create a `ServicePerimeter`.
Deprecated: Please use types in: cloud.google.com/go/accesscontextmanager/apiv1/accesscontextmanagerpb
type CustomLevel
deprecated
type CustomLevel = src.CustomLevel
`CustomLevel` is an `AccessLevel` using the Cloud Common Expression Language to represent the necessary conditions for the level to apply to a request. See CEL spec at: https://github.com/google/cel-spec
Deprecated: Please use types in: cloud.google.com/go/accesscontextmanager/apiv1/accesscontextmanagerpb
type DeleteAccessLevelRequest
deprecated
type DeleteAccessLevelRequest = src.DeleteAccessLevelRequest
A request to delete an `AccessLevel`.
Deprecated: Please use types in: cloud.google.com/go/accesscontextmanager/apiv1/accesscontextmanagerpb
type DeleteAccessPolicyRequest
deprecated
type DeleteAccessPolicyRequest = src.DeleteAccessPolicyRequest
A request to delete an `AccessPolicy`.
Deprecated: Please use types in: cloud.google.com/go/accesscontextmanager/apiv1/accesscontextmanagerpb
type DeleteGcpUserAccessBindingRequest
deprecated
type DeleteGcpUserAccessBindingRequest = src.DeleteGcpUserAccessBindingRequest
Request of [DeleteGcpUserAccessBinding] [google.identity.accesscontextmanager.v1.AccessContextManager.DeleteGcpUserAccessBinding].
Deprecated: Please use types in: cloud.google.com/go/accesscontextmanager/apiv1/accesscontextmanagerpb
type DeleteServicePerimeterRequest
deprecated
type DeleteServicePerimeterRequest = src.DeleteServicePerimeterRequest
A request to delete a `ServicePerimeter`.
Deprecated: Please use types in: cloud.google.com/go/accesscontextmanager/apiv1/accesscontextmanagerpb
type DevicePolicy
deprecated
type DevicePolicy = src.DevicePolicy
`DevicePolicy` specifies device specific restrictions necessary to acquire a given access level. A `DevicePolicy` specifies requirements for requests from devices to be granted access levels, it does not do any enforcement on the device. `DevicePolicy` acts as an AND over all specified fields, and each repeated field is an OR over its elements. Any unset fields are ignored. For example, if the proto is { os_type : DESKTOP_WINDOWS, os_type : DESKTOP_LINUX, encryption_status: ENCRYPTED}, then the DevicePolicy will be true for requests originating from encrypted Linux desktops and encrypted Windows desktops.
Deprecated: Please use types in: cloud.google.com/go/accesscontextmanager/apiv1/accesscontextmanagerpb
type GcpUserAccessBinding
deprecated
type GcpUserAccessBinding = src.GcpUserAccessBinding
Restricts access to Cloud Console and Google Cloud APIs for a set of users using Context-Aware Access.
Deprecated: Please use types in: cloud.google.com/go/accesscontextmanager/apiv1/accesscontextmanagerpb
type GcpUserAccessBindingOperationMetadata
deprecated
type GcpUserAccessBindingOperationMetadata = src.GcpUserAccessBindingOperationMetadata
Currently, a completed operation means nothing. In the future, this metadata and a completed operation may indicate that the binding has taken effect and is affecting access decisions for all users.
Deprecated: Please use types in: cloud.google.com/go/accesscontextmanager/apiv1/accesscontextmanagerpb
type GetAccessLevelRequest
deprecated
type GetAccessLevelRequest = src.GetAccessLevelRequest
A request to get a particular `AccessLevel`.
Deprecated: Please use types in: cloud.google.com/go/accesscontextmanager/apiv1/accesscontextmanagerpb
type GetAccessPolicyRequest
deprecated
type GetAccessPolicyRequest = src.GetAccessPolicyRequest
A request to get a particular `AccessPolicy`.
Deprecated: Please use types in: cloud.google.com/go/accesscontextmanager/apiv1/accesscontextmanagerpb
type GetGcpUserAccessBindingRequest
deprecated
type GetGcpUserAccessBindingRequest = src.GetGcpUserAccessBindingRequest
Request of [GetGcpUserAccessBinding] [google.identity.accesscontextmanager.v1.AccessContextManager.GetGcpUserAccessBinding].
Deprecated: Please use types in: cloud.google.com/go/accesscontextmanager/apiv1/accesscontextmanagerpb
type GetServicePerimeterRequest
deprecated
type GetServicePerimeterRequest = src.GetServicePerimeterRequest
A request to get a particular `ServicePerimeter`.
Deprecated: Please use types in: cloud.google.com/go/accesscontextmanager/apiv1/accesscontextmanagerpb
type LevelFormat
deprecated
type LevelFormat = src.LevelFormat
The format used in an `AccessLevel`.
Deprecated: Please use types in: cloud.google.com/go/accesscontextmanager/apiv1/accesscontextmanagerpb
type ListAccessLevelsRequest
deprecated
type ListAccessLevelsRequest = src.ListAccessLevelsRequest
A request to list all `AccessLevels` in an `AccessPolicy`.
Deprecated: Please use types in: cloud.google.com/go/accesscontextmanager/apiv1/accesscontextmanagerpb
type ListAccessLevelsResponse
deprecated
type ListAccessLevelsResponse = src.ListAccessLevelsResponse
A response to `ListAccessLevelsRequest`.
Deprecated: Please use types in: cloud.google.com/go/accesscontextmanager/apiv1/accesscontextmanagerpb
type ListAccessPoliciesRequest
deprecated
type ListAccessPoliciesRequest = src.ListAccessPoliciesRequest
A request to list all `AccessPolicies` for a container.
Deprecated: Please use types in: cloud.google.com/go/accesscontextmanager/apiv1/accesscontextmanagerpb
type ListAccessPoliciesResponse
deprecated
type ListAccessPoliciesResponse = src.ListAccessPoliciesResponse
A response to `ListAccessPoliciesRequest`.
Deprecated: Please use types in: cloud.google.com/go/accesscontextmanager/apiv1/accesscontextmanagerpb
type ListGcpUserAccessBindingsRequest
deprecated
type ListGcpUserAccessBindingsRequest = src.ListGcpUserAccessBindingsRequest
Request of [ListGcpUserAccessBindings] [google.identity.accesscontextmanager.v1.AccessContextManager.ListGcpUserAccessBindings].
Deprecated: Please use types in: cloud.google.com/go/accesscontextmanager/apiv1/accesscontextmanagerpb
type ListGcpUserAccessBindingsResponse
deprecated
type ListGcpUserAccessBindingsResponse = src.ListGcpUserAccessBindingsResponse
Response of [ListGcpUserAccessBindings] [google.identity.accesscontextmanager.v1.AccessContextManager.ListGcpUserAccessBindings].
Deprecated: Please use types in: cloud.google.com/go/accesscontextmanager/apiv1/accesscontextmanagerpb
type ListServicePerimetersRequest
deprecated
type ListServicePerimetersRequest = src.ListServicePerimetersRequest
A request to list all `ServicePerimeters` in an `AccessPolicy`.
Deprecated: Please use types in: cloud.google.com/go/accesscontextmanager/apiv1/accesscontextmanagerpb
type ListServicePerimetersResponse
deprecated
type ListServicePerimetersResponse = src.ListServicePerimetersResponse
A response to `ListServicePerimetersRequest`.
Deprecated: Please use types in: cloud.google.com/go/accesscontextmanager/apiv1/accesscontextmanagerpb
type OsConstraint
deprecated
type OsConstraint = src.OsConstraint
A restriction on the OS type and version of devices making requests.
Deprecated: Please use types in: cloud.google.com/go/accesscontextmanager/apiv1/accesscontextmanagerpb
type ReplaceAccessLevelsRequest
deprecated
type ReplaceAccessLevelsRequest = src.ReplaceAccessLevelsRequest
A request to replace all existing Access Levels in an Access Policy with the Access Levels provided. This is done atomically.
Deprecated: Please use types in: cloud.google.com/go/accesscontextmanager/apiv1/accesscontextmanagerpb
type ReplaceAccessLevelsResponse
deprecated
type ReplaceAccessLevelsResponse = src.ReplaceAccessLevelsResponse
A response to ReplaceAccessLevelsRequest. This will be put inside of Operation.response field.
Deprecated: Please use types in: cloud.google.com/go/accesscontextmanager/apiv1/accesscontextmanagerpb
type ReplaceServicePerimetersRequest
deprecated
type ReplaceServicePerimetersRequest = src.ReplaceServicePerimetersRequest
A request to replace all existing Service Perimeters in an Access Policy with the Service Perimeters provided. This is done atomically.
Deprecated: Please use types in: cloud.google.com/go/accesscontextmanager/apiv1/accesscontextmanagerpb
type ReplaceServicePerimetersResponse
deprecated
type ReplaceServicePerimetersResponse = src.ReplaceServicePerimetersResponse
A response to ReplaceServicePerimetersRequest. This will be put inside of Operation.response field.
Deprecated: Please use types in: cloud.google.com/go/accesscontextmanager/apiv1/accesscontextmanagerpb
type ServicePerimeter
deprecated
type ServicePerimeter = src.ServicePerimeter
`ServicePerimeter` describes a set of Google Cloud resources which can freely import and export data amongst themselves, but not export outside of the `ServicePerimeter`. If a request with a source within this `ServicePerimeter` has a target outside of the `ServicePerimeter`, the request will be blocked. Otherwise the request is allowed. There are two types of Service Perimeter - Regular and Bridge. Regular Service Perimeters cannot overlap, a single Google Cloud project can only belong to a single regular Service Perimeter. Service Perimeter Bridges can contain only Google Cloud projects as members, a single Google Cloud project may belong to multiple Service Perimeter Bridges.
Deprecated: Please use types in: cloud.google.com/go/accesscontextmanager/apiv1/accesscontextmanagerpb
type ServicePerimeterConfig
deprecated
type ServicePerimeterConfig = src.ServicePerimeterConfig
`ServicePerimeterConfig` specifies a set of Google Cloud resources that describe specific Service Perimeter configuration.
Deprecated: Please use types in: cloud.google.com/go/accesscontextmanager/apiv1/accesscontextmanagerpb
type ServicePerimeterConfig_ApiOperation
deprecated
type ServicePerimeterConfig_ApiOperation = src.ServicePerimeterConfig_ApiOperation
Identification for an API Operation.
Deprecated: Please use types in: cloud.google.com/go/accesscontextmanager/apiv1/accesscontextmanagerpb
type ServicePerimeterConfig_EgressFrom
deprecated
type ServicePerimeterConfig_EgressFrom = src.ServicePerimeterConfig_EgressFrom
Defines the conditions under which an [EgressPolicy] [google.identity.accesscontextmanager.v1.ServicePerimeterConfig.EgressPolicy] matches a request. Conditions based on information about the source of the request. Note that if the destination of the request is also protected by a ServicePerimeter [google.identity.accesscontextmanager.v1.ServicePerimeter], then that ServicePerimeter [google.identity.accesscontextmanager.v1.ServicePerimeter] must have an [IngressPolicy] [google.identity.accesscontextmanager.v1.ServicePerimeterConfig.IngressPolicy] which allows access in order for this request to succeed.
Deprecated: Please use types in: cloud.google.com/go/accesscontextmanager/apiv1/accesscontextmanagerpb
type ServicePerimeterConfig_EgressPolicy
deprecated
type ServicePerimeterConfig_EgressPolicy = src.ServicePerimeterConfig_EgressPolicy
Policy for egress from perimeter. [EgressPolicies] [google.identity.accesscontextmanager.v1.ServicePerimeterConfig.EgressPolicy] match requests based on `egress_from` and `egress_to` stanzas. For an [EgressPolicy] [google.identity.accesscontextmanager.v1.ServicePerimeterConfig.EgressPolicy] to match, both `egress_from` and `egress_to` stanzas must be matched. If an [EgressPolicy] [google.identity.accesscontextmanager.v1.ServicePerimeterConfig.EgressPolicy] matches a request, the request is allowed to span the ServicePerimeter [google.identity.accesscontextmanager.v1.ServicePerimeter] boundary. For example, an [EgressPolicy] [google.identity.accesscontextmanager.v1.ServicePerimeterConfig.EgressPolicy] can be used to allow VMs on networks within the ServicePerimeter [google.identity.accesscontextmanager.v1.ServicePerimeter] to access a defined set of projects outside the perimeter in certain contexts (e.g. to read data from a Cloud Storage bucket or query against a BigQuery dataset). [EgressPolicies] [google.identity.accesscontextmanager.v1.ServicePerimeterConfig.EgressPolicy] are concerned with the *resources* that a request relates as well as the API services and API actions being used. They do not related to the direction of data movement. More detailed documentation for this concept can be found in the descriptions of [EgressFrom] [google.identity.accesscontextmanager.v1.ServicePerimeterConfig.EgressFrom] and [EgressTo] [google.identity.accesscontextmanager.v1.ServicePerimeterConfig.EgressTo].
Deprecated: Please use types in: cloud.google.com/go/accesscontextmanager/apiv1/accesscontextmanagerpb
type ServicePerimeterConfig_EgressTo
deprecated
type ServicePerimeterConfig_EgressTo = src.ServicePerimeterConfig_EgressTo
Defines the conditions under which an [EgressPolicy] [google.identity.accesscontextmanager.v1.ServicePerimeterConfig.EgressPolicy] matches a request. Conditions are based on information about the [ApiOperation] [google.identity.accesscontextmanager.v1.ServicePerimeterConfig.ApiOperation] intended to be performed on the `resources` specified. Note that if the destination of the request is also protected by a ServicePerimeter [google.identity.accesscontextmanager.v1.ServicePerimeter], then that ServicePerimeter [google.identity.accesscontextmanager.v1.ServicePerimeter] must have an [IngressPolicy] [google.identity.accesscontextmanager.v1.ServicePerimeterConfig.IngressPolicy] which allows access in order for this request to succeed. The request must match `operations` AND `resources` fields in order to be allowed egress out of the perimeter.
Deprecated: Please use types in: cloud.google.com/go/accesscontextmanager/apiv1/accesscontextmanagerpb
type ServicePerimeterConfig_IdentityType
deprecated
type ServicePerimeterConfig_IdentityType = src.ServicePerimeterConfig_IdentityType
Specifies the types of identities that are allowed access in either [IngressFrom] [google.identity.accesscontextmanager.v1.ServicePerimeterConfig.IngressFrom] or [EgressFrom] [google.identity.accesscontextmanager.v1.ServicePerimeterConfig.EgressFrom] rules.
Deprecated: Please use types in: cloud.google.com/go/accesscontextmanager/apiv1/accesscontextmanagerpb
type ServicePerimeterConfig_IngressFrom
deprecated
type ServicePerimeterConfig_IngressFrom = src.ServicePerimeterConfig_IngressFrom
Defines the conditions under which an [IngressPolicy] [google.identity.accesscontextmanager.v1.ServicePerimeterConfig.IngressPolicy] matches a request. Conditions are based on information about the source of the request. The request must satisfy what is defined in `sources` AND identity related fields in order to match.
Deprecated: Please use types in: cloud.google.com/go/accesscontextmanager/apiv1/accesscontextmanagerpb
type ServicePerimeterConfig_IngressPolicy
deprecated
type ServicePerimeterConfig_IngressPolicy = src.ServicePerimeterConfig_IngressPolicy
Policy for ingress into ServicePerimeter [google.identity.accesscontextmanager.v1.ServicePerimeter]. [IngressPolicies] [google.identity.accesscontextmanager.v1.ServicePerimeterConfig.IngressPolicy] match requests based on `ingress_from` and `ingress_to` stanzas. For an ingress policy to match, both the `ingress_from` and `ingress_to` stanzas must be matched. If an [IngressPolicy] [google.identity.accesscontextmanager.v1.ServicePerimeterConfig.IngressPolicy] matches a request, the request is allowed through the perimeter boundary from outside the perimeter. For example, access from the internet can be allowed either based on an AccessLevel [google.identity.accesscontextmanager.v1.AccessLevel] or, for traffic hosted on Google Cloud, the project of the source network. For access from private networks, using the project of the hosting network is required. Individual ingress policies can be limited by restricting which services and/or actions they match using the `ingress_to` field.
Deprecated: Please use types in: cloud.google.com/go/accesscontextmanager/apiv1/accesscontextmanagerpb
type ServicePerimeterConfig_IngressSource
deprecated
type ServicePerimeterConfig_IngressSource = src.ServicePerimeterConfig_IngressSource
The source that [IngressPolicy] [google.identity.accesscontextmanager.v1.ServicePerimeterConfig.IngressPolicy] authorizes access from.
Deprecated: Please use types in: cloud.google.com/go/accesscontextmanager/apiv1/accesscontextmanagerpb
type ServicePerimeterConfig_IngressSource_AccessLevel ¶
type ServicePerimeterConfig_IngressSource_AccessLevel = src.ServicePerimeterConfig_IngressSource_AccessLevel
type ServicePerimeterConfig_IngressSource_Resource ¶
type ServicePerimeterConfig_IngressSource_Resource = src.ServicePerimeterConfig_IngressSource_Resource
type ServicePerimeterConfig_IngressTo
deprecated
type ServicePerimeterConfig_IngressTo = src.ServicePerimeterConfig_IngressTo
Defines the conditions under which an [IngressPolicy] [google.identity.accesscontextmanager.v1.ServicePerimeterConfig.IngressPolicy] matches a request. Conditions are based on information about the [ApiOperation] [google.identity.accesscontextmanager.v1.ServicePerimeterConfig.ApiOperation] intended to be performed on the target resource of the request. The request must satisfy what is defined in `operations` AND `resources` in order to match.
Deprecated: Please use types in: cloud.google.com/go/accesscontextmanager/apiv1/accesscontextmanagerpb
type ServicePerimeterConfig_MethodSelector
deprecated
type ServicePerimeterConfig_MethodSelector = src.ServicePerimeterConfig_MethodSelector
An allowed method or permission of a service specified in [ApiOperation] [google.identity.accesscontextmanager.v1.ServicePerimeterConfig.ApiOperation].
Deprecated: Please use types in: cloud.google.com/go/accesscontextmanager/apiv1/accesscontextmanagerpb
type ServicePerimeterConfig_MethodSelector_Method ¶
type ServicePerimeterConfig_MethodSelector_Method = src.ServicePerimeterConfig_MethodSelector_Method
type ServicePerimeterConfig_MethodSelector_Permission ¶
type ServicePerimeterConfig_MethodSelector_Permission = src.ServicePerimeterConfig_MethodSelector_Permission
type ServicePerimeterConfig_VpcAccessibleServices
deprecated
type ServicePerimeterConfig_VpcAccessibleServices = src.ServicePerimeterConfig_VpcAccessibleServices
Specifies how APIs are allowed to communicate within the Service Perimeter.
Deprecated: Please use types in: cloud.google.com/go/accesscontextmanager/apiv1/accesscontextmanagerpb
type ServicePerimeter_PerimeterType
deprecated
type ServicePerimeter_PerimeterType = src.ServicePerimeter_PerimeterType
Specifies the type of the Perimeter. There are two types: regular and bridge. Regular Service Perimeter contains resources, access levels, and restricted services. Every resource can be in at most ONE regular Service Perimeter. In addition to being in a regular service perimeter, a resource can also be in zero or more perimeter bridges. A perimeter bridge only contains resources. Cross project operations are permitted if all effected resources share some perimeter (whether bridge or regular). Perimeter Bridge does not contain access levels or services: those are governed entirely by the regular perimeter that resource is in. Perimeter Bridges are typically useful when building more complex toplogies with many independent perimeters that need to share some data with a common perimeter, but should not be able to share data among themselves.
Deprecated: Please use types in: cloud.google.com/go/accesscontextmanager/apiv1/accesscontextmanagerpb
type UnimplementedAccessContextManagerServer
deprecated
type UnimplementedAccessContextManagerServer = src.UnimplementedAccessContextManagerServer
UnimplementedAccessContextManagerServer can be embedded to have forward compatible implementations.
Deprecated: Please use types in: cloud.google.com/go/accesscontextmanager/apiv1/accesscontextmanagerpb
type UpdateAccessLevelRequest
deprecated
type UpdateAccessLevelRequest = src.UpdateAccessLevelRequest
A request to update an `AccessLevel`.
Deprecated: Please use types in: cloud.google.com/go/accesscontextmanager/apiv1/accesscontextmanagerpb
type UpdateAccessPolicyRequest
deprecated
type UpdateAccessPolicyRequest = src.UpdateAccessPolicyRequest
A request to update an `AccessPolicy`.
Deprecated: Please use types in: cloud.google.com/go/accesscontextmanager/apiv1/accesscontextmanagerpb
type UpdateGcpUserAccessBindingRequest
deprecated
type UpdateGcpUserAccessBindingRequest = src.UpdateGcpUserAccessBindingRequest
Request of [UpdateGcpUserAccessBinding] [google.identity.accesscontextmanager.v1.AccessContextManager.UpdateGcpUserAccessBinding].
Deprecated: Please use types in: cloud.google.com/go/accesscontextmanager/apiv1/accesscontextmanagerpb
type UpdateServicePerimeterRequest
deprecated
type UpdateServicePerimeterRequest = src.UpdateServicePerimeterRequest
A request to update a `ServicePerimeter`.
Deprecated: Please use types in: cloud.google.com/go/accesscontextmanager/apiv1/accesscontextmanagerpb
Source Files