A Change represents a set of ResourceRecordSet additions and deletions applied atomically to a ManagedZone. ResourceRecordSets within a ManagedZone are modified by creating a new Change element in the Changes collection. In turn the Changes collection also records the past modifications to the ResourceRecordSets in a ManagedZone. The current state of the ManagedZone is the sum effect of applying all Change elements in the Changes collection in sequence.
Atomically updates the ResourceRecordSet collection.
Fetches the representation of an existing Change.
Enumerates Changes to a ResourceRecordSet collection.
A builder providing access to all methods supported on
change resources.
It is not used directly, but through the
Dns hub.
The response to a request to enumerate Changes to a ResourceRecordSets collection.
Central instance to access all Dns related resource activities
A DNSSEC key pair.
There is no detailed description.
Fetches the representation of an existing DnsKey.
Enumerates DnsKeys to a ResourceRecordSet collection.
A builder providing access to all methods supported on
dnsKey resources.
It is not used directly, but through the
Dns hub.
Parameters for DnsKey key generation. Used for generating initial keys for a new ManagedZone and as default when adding a new DnsKey.
The response to a request to enumerate DnsKeys in a ManagedZone.
Represents a textual expression in the Common Expression Language (CEL) syntax. CEL is a C-like expression language. The syntax and semantics of CEL are documented at https://github.com/google/cel-spec. Example (Comparison): title: “Summary size limit” description: “Determines if a summary is less than 100 chars” expression: “document.summary.size() < 100” Example (Equality): title: “Requestor is owner” description: “Determines if requestor is the document owner” expression: “document.owner == request.auth.claims.email” Example (Logic): title: “Public documents” description: “Determine whether the document should be publicly visible” expression: “document.type != ‘private’ && document.type != ‘internal’” Example (Data Manipulation): title: “Notification string” description: “Create a notification string with a timestamp.” expression: “’New message received at ’ + string(document.create_time)” The exact variables and functions that may be referenced within an expression are determined by the service that evaluates it. See the service documentation for additional information.
Specifies the audit configuration for a service. The configuration determines which permission types are logged, and what identities, if any, are exempted from logging. An AuditConfig must have one or more AuditLogConfigs. If there are AuditConfigs for both allServices and a specific service, the union of the two AuditConfigs is used for that service: the log_types specified in each AuditConfig are enabled, and the exempted_members in each AuditLogConfig are exempted. Example Policy with multiple AuditConfigs: { “audit_configs”: [ { “service”: “allServices”, “audit_log_configs”: [ { “log_type”: “DATA_READ”, “exempted_members”: [ “user:jose@example.com” ] }, { “log_type”: “DATA_WRITE” }, { “log_type”: “ADMIN_READ” } ] }, { “service”: “sampleservice.googleapis.com”, “audit_log_configs”: [ { “log_type”: “DATA_READ” }, { “log_type”: “DATA_WRITE”, “exempted_members”: [ “user:aliya@example.com” ] } ] } ] } For sampleservice, this policy enables DATA_READ, DATA_WRITE and ADMIN_READ logging. It also exempts jose@example.com from DATA_READ logging, and aliya@example.com from DATA_WRITE logging.
Provides the configuration for logging a type of permissions. Example: { “audit_log_configs”: [ { “log_type”: “DATA_READ”, “exempted_members”: [ “user:jose@example.com” ] }, { “log_type”: “DATA_WRITE” } ] } This enables ‘DATA_READ’ and ‘DATA_WRITE’ logging, while exempting jose@example.com from DATA_READ logging.
Associates members, or principals, with a role.
Request message for GetIamPolicy method.
Encapsulates settings provided to GetIamPolicy.
An Identity and Access Management (IAM) policy, which specifies access controls for Google Cloud resources. A
Policy is a collection of
bindings. A
binding binds one or more
members, or principals, to a single
role. Principals can be user accounts, service accounts, Google groups, and domains (such as G Suite). A
role is a named list of permissions; each
role can be an IAM predefined role or a user-created custom role. For some types of Google Cloud resources, a
binding can also specify a
condition, which is a logical expression that allows access to a resource only if the expression evaluates to
true. A condition can add constraints based on attributes of the request, the resource, or both. To learn which resources support conditions in their IAM policies, see the
IAM documentation.
JSON example: { "bindings": [ { "role": "roles/resourcemanager.organizationAdmin", "members": [ "user:mike@example.com", "group:admins@example.com", "domain:google.com", "serviceAccount:my-project-id@appspot.gserviceaccount.com" ] }, { "role": "roles/resourcemanager.organizationViewer", "members": [ "user:eve@example.com" ], "condition": { "title": "expirable access", "description": "Does not grant access after Sep 2020", "expression": "request.time < timestamp('2020-10-01T00:00:00.000Z')", } } ], "etag": "BwWWja0YfJA=", "version": 3 } YAML example: bindings: - members: - user:mike@example.com - group:admins@example.com - domain:google.com - serviceAccount:my-project-id@appspot.gserviceaccount.com role: roles/resourcemanager.organizationAdmin - members: - user:eve@example.com role: roles/resourcemanager.organizationViewer condition: title: expirable access description: Does not grant access after Sep 2020 expression: request.time < timestamp('2020-10-01T00:00:00.000Z') etag: BwWWja0YfJA= version: 3 For a description of IAM and its features, see the
IAM documentation.
Request message for SetIamPolicy method.
Request message for TestIamPermissions method.
Response message for TestIamPermissions method.
A zone is a subtree of the DNS namespace under one administrative responsibility. A ManagedZone is a resource that represents a DNS zone hosted by the Cloud DNS service.
Cloud Logging configurations for publicly visible zones.
Creates a new ManagedZone.
Deletes a previously created ManagedZone.
There is no detailed description.
There is no detailed description.
There is no detailed description.
Fetches the representation of an existing ManagedZone.
Gets the access control policy for a resource. Returns an empty policy if the resource exists and does not have a policy set.
Enumerates ManagedZones that have been created but not yet deleted.
A builder providing access to all methods supported on
managedZone resources.
It is not used directly, but through the
Dns hub.
Fetches the representation of an existing Operation.
Enumerates Operations for the given ManagedZone.
A builder providing access to all methods supported on
managedZoneOperation resources.
It is not used directly, but through the
Dns hub.
There is no detailed description.
Applies a partial update to an existing ManagedZone.
There is no detailed description.
There is no detailed description.
There is no detailed description.
There is no detailed description.
There is no detailed description.
There is no detailed description.
Contains information about Service Directory-backed zones.
There is no detailed description.
Sets the access control policy on the specified resource. Replaces any existing policy. Can return NOT_FOUND, INVALID_ARGUMENT, and PERMISSION_DENIED errors.
Returns permissions that a caller has on the specified resource. If the resource does not exist, this returns an empty set of permissions, not a NOT_FOUND error. Note: This operation is designed to be used for building permission-aware UIs and command-line tools, not for authorization checking. This operation may “fail open” without warning.
Updates an existing ManagedZone.
There is no detailed description.
An operation represents a successful mutation performed on a Cloud DNS resource. Operations provide: - An audit log of server resource mutations. - A way to recover/retry API calls in the case where the response is never received by the caller. Use the caller specified client_operation_id.
There is no detailed description.
There is no detailed description.
There is no detailed description.
There is no detailed description.
There is no detailed description.
A policy is a collection of DNS rules applied to one or more Virtual Private Cloud resources.
There is no detailed description.
There is no detailed description.
Creates a new Policy.
Deletes a previously created Policy. Fails if the policy is still being referenced by a network.
Fetches the representation of an existing Policy.
Enumerates all Policies associated with a project.
A builder providing access to all methods supported on
policy resources.
It is not used directly, but through the
Dns hub.
There is no detailed description.
Applies a partial update to an existing Policy.
Updates an existing Policy.
A project resource. The project is a top level container for resources including Cloud DNS ManagedZones. Projects can be created only in the APIs console. Next tag: 7.
Fetches the representation of an existing Project.
A builder providing access to all methods supported on
project resources.
It is not used directly, but through the
Dns hub.
Limits associated with a Project.
A RRSetRoutingPolicy represents ResourceRecordSet data that is returned dynamically with the response varying based on configured properties such as geolocation or by weighted random selection.
Configures a RRSetRoutingPolicy that routes based on the geo location of the querying user.
ResourceRecordSet data for one geo location.
HealthCheckTargets describes endpoints to health-check when responding to Routing Policy queries. Only the healthy endpoints will be included in the response. Only one of internal_load_balancer and external_endpoints should be set.
The configuration for an individual load balancer to health check.
Configures a RRSetRoutingPolicy such that all queries are responded with the primary_targets if they are healthy. And if all of them are unhealthy, then we fallback to a geo localized policy.
Configures a RRSetRoutingPolicy that routes in a weighted round robin fashion.
A routing block which contains the routing information for one WRR item.
A unit of data that is returned by the DNS servers.
Creates a new ResourceRecordSet.
Deletes a previously created ResourceRecordSet.
Fetches the representation of an existing ResourceRecordSet.
Enumerates ResourceRecordSets that you have created but not yet deleted.
A builder providing access to all methods supported on
resourceRecordSet resources.
It is not used directly, but through the
Dns hub.
Applies a partial update to an existing ResourceRecordSet.
There is no detailed description.
There is no detailed description.
Elements common to every response.
There is no detailed description.
There is no detailed description.
There is no detailed description.
A Response Policy is a collection of selectors that apply to queries made against one or more Virtual Private Cloud networks.
Creates a new Response Policy
Deletes a previously created Response Policy. Fails if the response policy is non-empty or still being referenced by a network.
There is no detailed description.
Fetches the representation of an existing Response Policy.
Enumerates all Response Policies associated with a project.
A builder providing access to all methods supported on
responsePolicy resources.
It is not used directly, but through the
Dns hub.
There is no detailed description.
Applies a partial update to an existing Response Policy.
A Response Policy Rule is a selector that applies its behavior to queries that match the selector. Selectors are DNS names, which may be wildcards or exact matches. Each DNS query subject to a Response Policy matches at most one ResponsePolicyRule, as identified by the dns_name field with the longest matching suffix.
Creates a new Response Policy Rule.
Deletes a previously created Response Policy Rule.
Fetches the representation of an existing Response Policy Rule.
Enumerates all Response Policy Rules associated with a project.
There is no detailed description.
A builder providing access to all methods supported on
responsePolicyRule resources.
It is not used directly, but through the
Dns hub.
Applies a partial update to an existing Response Policy Rule.
Updates an existing Response Policy Rule.
There is no detailed description.
There is no detailed description.
There is no detailed description.
Updates an existing Response Policy.