google_cloud_kms_inventory_v1/

client.rs

// Copyright 2025 Google LLC
//
// Licensed under the Apache License, Version 2.0 (the "License");
// you may not use this file except in compliance with the License.
// You may obtain a copy of the License at
//
//     https://www.apache.org/licenses/LICENSE-2.0
//
// Unless required by applicable law or agreed to in writing, software
// distributed under the License is distributed on an "AS IS" BASIS,
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
// See the License for the specific language governing permissions and
// limitations under the License.
//
// Code generated by sidekick. DO NOT EDIT.
#![allow(rustdoc::redundant_explicit_links)]
#![allow(rustdoc::broken_intra_doc_links)]

/// Implements a client for the KMS Inventory API.
///
/// # Example
/// ```
/// # use google_cloud_kms_inventory_v1::client::KeyDashboardService;
/// use google_cloud_gax::paginator::ItemPaginator as _;
/// async fn sample(
///    parent: &str,
/// ) -> anyhow::Result<()> {
///     let client = KeyDashboardService::builder().build().await?;
///     let mut list = client.list_crypto_keys()
///         .set_parent(parent)
///         .by_item();
///     while let Some(item) = list.next().await.transpose()? {
///         println!("{:?}", item);
///     }
///     Ok(())
/// }
/// ```
///
/// # Service Description
///
/// Provides a cross-region view of all Cloud KMS keys in a given Cloud project.
///
/// # Configuration
///
/// To configure `KeyDashboardService` use the `with_*` methods in the type returned
/// by [builder()][KeyDashboardService::builder]. The default configuration should
/// work for most applications. Common configuration changes include
///
/// * [with_endpoint()]: by default this client uses the global default endpoint
///   (`https://kmsinventory.googleapis.com`). Applications using regional
///   endpoints or running in restricted networks (e.g. a network configured
///   with [Private Google Access with VPC Service Controls]) may want to
///   override this default.
/// * [with_credentials()]: by default this client uses
///   [Application Default Credentials]. Applications using custom
///   authentication may need to override this default.
///
/// [with_endpoint()]: super::builder::key_dashboard_service::ClientBuilder::with_endpoint
/// [with_credentials()]: super::builder::key_dashboard_service::ClientBuilder::with_credentials
/// [Private Google Access with VPC Service Controls]: https://cloud.google.com/vpc-service-controls/docs/private-connectivity
/// [Application Default Credentials]: https://cloud.google.com/docs/authentication#adc
///
/// # Pooling and Cloning
///
/// `KeyDashboardService` holds a connection pool internally, it is advised to
/// create one and reuse it. You do not need to wrap `KeyDashboardService` in
/// an [Rc](std::rc::Rc) or [Arc](std::sync::Arc) to reuse it, because it
/// already uses an `Arc` internally.
#[derive(Clone, Debug)]
pub struct KeyDashboardService {
    inner: std::sync::Arc<dyn super::stub::dynamic::KeyDashboardService>,
}

impl KeyDashboardService {
    /// Returns a builder for [KeyDashboardService].
    ///
    /// ```
    /// # async fn sample() -> google_cloud_gax::client_builder::Result<()> {
    /// # use google_cloud_kms_inventory_v1::client::KeyDashboardService;
    /// let client = KeyDashboardService::builder().build().await?;
    /// # Ok(()) }
    /// ```
    pub fn builder() -> super::builder::key_dashboard_service::ClientBuilder {
        crate::new_client_builder(super::builder::key_dashboard_service::client::Factory)
    }

    /// Creates a new client from the provided stub.
    ///
    /// The most common case for calling this function is in tests mocking the
    /// client's behavior.
    pub fn from_stub<T>(stub: impl Into<std::sync::Arc<T>>) -> Self
    where
        T: super::stub::KeyDashboardService + 'static,
    {
        Self { inner: stub.into() }
    }

    pub(crate) async fn new(
        config: gaxi::options::ClientConfig,
    ) -> crate::ClientBuilderResult<Self> {
        let inner = Self::build_inner(config).await?;
        Ok(Self { inner })
    }

    async fn build_inner(
        conf: gaxi::options::ClientConfig,
    ) -> crate::ClientBuilderResult<std::sync::Arc<dyn super::stub::dynamic::KeyDashboardService>>
    {
        if gaxi::options::tracing_enabled(&conf) {
            return Ok(std::sync::Arc::new(Self::build_with_tracing(conf).await?));
        }
        Ok(std::sync::Arc::new(Self::build_transport(conf).await?))
    }

    async fn build_transport(
        conf: gaxi::options::ClientConfig,
    ) -> crate::ClientBuilderResult<impl super::stub::KeyDashboardService> {
        super::transport::KeyDashboardService::new(conf).await
    }

    async fn build_with_tracing(
        conf: gaxi::options::ClientConfig,
    ) -> crate::ClientBuilderResult<impl super::stub::KeyDashboardService> {
        Self::build_transport(conf)
            .await
            .map(super::tracing::KeyDashboardService::new)
    }

    /// Returns cryptographic keys managed by Cloud KMS in a given Cloud project.
    /// Note that this data is sourced from snapshots, meaning it may not
    /// completely reflect the actual state of key metadata at call time.
    ///
    /// # Example
    /// ```
    /// # use google_cloud_kms_inventory_v1::client::KeyDashboardService;
    /// use google_cloud_gax::paginator::ItemPaginator as _;
    /// use google_cloud_kms_inventory_v1::Result;
    /// async fn sample(
    ///    client: &KeyDashboardService, parent: &str
    /// ) -> Result<()> {
    ///     let mut list = client.list_crypto_keys()
    ///         .set_parent(parent)
    ///         .by_item();
    ///     while let Some(item) = list.next().await.transpose()? {
    ///         println!("{:?}", item);
    ///     }
    ///     Ok(())
    /// }
    /// ```
    pub fn list_crypto_keys(&self) -> super::builder::key_dashboard_service::ListCryptoKeys {
        super::builder::key_dashboard_service::ListCryptoKeys::new(self.inner.clone())
    }
}

/// Implements a client for the KMS Inventory API.
///
/// # Example
/// ```
/// # use google_cloud_kms_inventory_v1::client::KeyTrackingService;
/// async fn sample(
///    project_id: &str,
///    location_id: &str,
///    key_ring_id: &str,
///    crypto_key_id: &str,
/// ) -> anyhow::Result<()> {
///     let client = KeyTrackingService::builder().build().await?;
///     let response = client.get_protected_resources_summary()
///         .set_name(format!("projects/{project_id}/locations/{location_id}/keyRings/{key_ring_id}/cryptoKeys/{crypto_key_id}/protectedResourcesSummary"))
///         .send().await?;
///     println!("response {:?}", response);
///     Ok(())
/// }
/// ```
///
/// # Service Description
///
/// Returns information about the resources in an org that are protected by a
/// given Cloud KMS key via CMEK.
///
/// # Configuration
///
/// To configure `KeyTrackingService` use the `with_*` methods in the type returned
/// by [builder()][KeyTrackingService::builder]. The default configuration should
/// work for most applications. Common configuration changes include
///
/// * [with_endpoint()]: by default this client uses the global default endpoint
///   (`https://kmsinventory.googleapis.com`). Applications using regional
///   endpoints or running in restricted networks (e.g. a network configured
///   with [Private Google Access with VPC Service Controls]) may want to
///   override this default.
/// * [with_credentials()]: by default this client uses
///   [Application Default Credentials]. Applications using custom
///   authentication may need to override this default.
///
/// [with_endpoint()]: super::builder::key_tracking_service::ClientBuilder::with_endpoint
/// [with_credentials()]: super::builder::key_tracking_service::ClientBuilder::with_credentials
/// [Private Google Access with VPC Service Controls]: https://cloud.google.com/vpc-service-controls/docs/private-connectivity
/// [Application Default Credentials]: https://cloud.google.com/docs/authentication#adc
///
/// # Pooling and Cloning
///
/// `KeyTrackingService` holds a connection pool internally, it is advised to
/// create one and reuse it. You do not need to wrap `KeyTrackingService` in
/// an [Rc](std::rc::Rc) or [Arc](std::sync::Arc) to reuse it, because it
/// already uses an `Arc` internally.
#[derive(Clone, Debug)]
pub struct KeyTrackingService {
    inner: std::sync::Arc<dyn super::stub::dynamic::KeyTrackingService>,
}

impl KeyTrackingService {
    /// Returns a builder for [KeyTrackingService].
    ///
    /// ```
    /// # async fn sample() -> google_cloud_gax::client_builder::Result<()> {
    /// # use google_cloud_kms_inventory_v1::client::KeyTrackingService;
    /// let client = KeyTrackingService::builder().build().await?;
    /// # Ok(()) }
    /// ```
    pub fn builder() -> super::builder::key_tracking_service::ClientBuilder {
        crate::new_client_builder(super::builder::key_tracking_service::client::Factory)
    }

    /// Creates a new client from the provided stub.
    ///
    /// The most common case for calling this function is in tests mocking the
    /// client's behavior.
    pub fn from_stub<T>(stub: impl Into<std::sync::Arc<T>>) -> Self
    where
        T: super::stub::KeyTrackingService + 'static,
    {
        Self { inner: stub.into() }
    }

    pub(crate) async fn new(
        config: gaxi::options::ClientConfig,
    ) -> crate::ClientBuilderResult<Self> {
        let inner = Self::build_inner(config).await?;
        Ok(Self { inner })
    }

    async fn build_inner(
        conf: gaxi::options::ClientConfig,
    ) -> crate::ClientBuilderResult<std::sync::Arc<dyn super::stub::dynamic::KeyTrackingService>>
    {
        if gaxi::options::tracing_enabled(&conf) {
            return Ok(std::sync::Arc::new(Self::build_with_tracing(conf).await?));
        }
        Ok(std::sync::Arc::new(Self::build_transport(conf).await?))
    }

    async fn build_transport(
        conf: gaxi::options::ClientConfig,
    ) -> crate::ClientBuilderResult<impl super::stub::KeyTrackingService> {
        super::transport::KeyTrackingService::new(conf).await
    }

    async fn build_with_tracing(
        conf: gaxi::options::ClientConfig,
    ) -> crate::ClientBuilderResult<impl super::stub::KeyTrackingService> {
        Self::build_transport(conf)
            .await
            .map(super::tracing::KeyTrackingService::new)
    }

    /// Returns aggregate information about the resources protected by the given
    /// Cloud KMS [CryptoKey][google.cloud.kms.v1.CryptoKey]. By default,
    /// summary of resources within the same Cloud organization as the key will be
    /// returned, which requires the KMS organization service account to be
    /// configured(refer
    /// <https://docs.cloud.google.com/kms/docs/view-key-usage#required-roles>).
    /// If the KMS organization service account is not configured or key's project
    /// is not part of an organization, set
    /// [fallback_scope][google.cloud.kms.inventory.v1.GetProtectedResourcesSummaryRequest.fallback_scope]
    /// to `FALLBACK_SCOPE_PROJECT` to retrieve a summary of protected resources
    /// within the key's project.
    ///
    /// [google.cloud.kms.inventory.v1.GetProtectedResourcesSummaryRequest.fallback_scope]: crate::model::GetProtectedResourcesSummaryRequest::fallback_scope
    /// [google.cloud.kms.v1.CryptoKey]: google_cloud_kms_v1::model::CryptoKey
    ///
    /// # Example
    /// ```
    /// # use google_cloud_kms_inventory_v1::client::KeyTrackingService;
    /// use google_cloud_kms_inventory_v1::Result;
    /// async fn sample(
    ///    client: &KeyTrackingService, project_id: &str, location_id: &str, key_ring_id: &str, crypto_key_id: &str
    /// ) -> Result<()> {
    ///     let response = client.get_protected_resources_summary()
    ///         .set_name(format!("projects/{project_id}/locations/{location_id}/keyRings/{key_ring_id}/cryptoKeys/{crypto_key_id}/protectedResourcesSummary"))
    ///         .send().await?;
    ///     println!("response {:?}", response);
    ///     Ok(())
    /// }
    /// ```
    pub fn get_protected_resources_summary(
        &self,
    ) -> super::builder::key_tracking_service::GetProtectedResourcesSummary {
        super::builder::key_tracking_service::GetProtectedResourcesSummary::new(self.inner.clone())
    }

    /// Returns metadata about the resources protected by the given Cloud KMS
    /// [CryptoKey][google.cloud.kms.v1.CryptoKey] in the given Cloud
    /// organization/project.
    ///
    /// [google.cloud.kms.v1.CryptoKey]: google_cloud_kms_v1::model::CryptoKey
    ///
    /// # Example
    /// ```
    /// # use google_cloud_kms_inventory_v1::client::KeyTrackingService;
    /// use google_cloud_gax::paginator::ItemPaginator as _;
    /// use google_cloud_kms_inventory_v1::Result;
    /// async fn sample(
    ///    client: &KeyTrackingService
    /// ) -> Result<()> {
    ///     let mut list = client.search_protected_resources()
    ///         /* set fields */
    ///         .by_item();
    ///     while let Some(item) = list.next().await.transpose()? {
    ///         println!("{:?}", item);
    ///     }
    ///     Ok(())
    /// }
    /// ```
    pub fn search_protected_resources(
        &self,
    ) -> super::builder::key_tracking_service::SearchProtectedResources {
        super::builder::key_tracking_service::SearchProtectedResources::new(self.inner.clone())
    }
}