Specifies the audit configuration for a service. The configuration determines which permission types are logged, and what identities, if any, are exempted from logging. An AuditConfig must have one or more AuditLogConfigs. If there are AuditConfigs for both allServices and a specific service, the union of the two AuditConfigs is used for that service: the log_types specified in each AuditConfig are enabled, and the exempted_members in each AuditLogConfig are exempted. Example Policy with multiple AuditConfigs: { “audit_configs”: [ { “service”: “allServices”, “audit_log_configs”: [ { “log_type”: “DATA_READ”, “exempted_members”: [ “user:jose@example.com” ] }, { “log_type”: “DATA_WRITE” }, { “log_type”: “ADMIN_READ” } ] }, { “service”: “sampleservice.googleapis.com”, “audit_log_configs”: [ { “log_type”: “DATA_READ” }, { “log_type”: “DATA_WRITE”, “exempted_members”: [ “user:aliya@example.com” ] } ] } ] } For sampleservice, this policy enables DATA_READ, DATA_WRITE and ADMIN_READ logging. It also exempts jose@example.com from DATA_READ logging, and aliya@example.com from DATA_WRITE logging.
Provides the configuration for logging a type of permissions. Example: { “audit_log_configs”: [ { “log_type”: “DATA_READ”, “exempted_members”: [ “user:jose@example.com” ] }, { “log_type”: “DATA_WRITE” } ] } This enables ‘DATA_READ’ and ‘DATA_WRITE’ logging, while exempting jose@example.com from DATA_READ logging.
Associates members, or principals, with a role.
There is no detailed description.
There is no detailed description.
There is no detailed description.
Cancels and removes the preview currently associated with the deployment.
Deletes a deployment and all of the resources in the deployment.
Gets information about a specific deployment.
Gets the access control policy for a resource. May be empty if no such policy or resource exists.
Creates a deployment and all of the resources described by the deployment manifest.
Label object for Deployments
Lists all deployments for a given project.
Central instance to access all DeploymentManager related resource activities
A builder providing access to all methods supported on
deployment resources.
It is not used directly, but through the
DeploymentManager hub.
Patches a deployment and all of the resources described by the deployment manifest.
Sets the access control policy on the specified resource. Replaces any existing policy.
Stops an ongoing operation. This does not roll back any work that has already been completed, but prevents any new work from being started.
Returns permissions that a caller has on the specified resource.
There is no detailed description.
Updates a deployment and all of the resources described by the deployment manifest.
Label object for DeploymentUpdate
There is no detailed description.
A response containing a partial list of deployments and a page token used to build the next request if the request has been truncated.
There is no detailed description.
Represents a textual expression in the Common Expression Language (CEL) syntax. CEL is a C-like expression language. The syntax and semantics of CEL are documented at https://github.com/google/cel-spec. Example (Comparison): title: “Summary size limit” description: “Determines if a summary is less than 100 chars” expression: “document.summary.size() < 100” Example (Equality): title: “Requestor is owner” description: “Determines if requestor is the document owner” expression: “document.owner == request.auth.claims.email” Example (Logic): title: “Public documents” description: “Determine whether the document should be publicly visible” expression: “document.type != ‘private’ && document.type != ‘internal’” Example (Data Manipulation): title: “Notification string” description: “Create a notification string with a timestamp.” expression: “’New message received at ’ + string(document.create_time)” The exact variables and functions that may be referenced within an expression are determined by the service that evaluates it. See the service documentation for additional information.
There is no detailed description.
There is no detailed description.
There is no detailed description.
There is no detailed description.
Gets information about a specific manifest.
Lists all manifests for a given deployment.
A builder providing access to all methods supported on
manifest resources.
It is not used directly, but through the
DeploymentManager hub.
A response containing a partial list of manifests and a page token used to build the next request if the request has been truncated.
Represents an Operation resource. Google Compute Engine has three Operation resources: *
Global *
Regional *
Zonal You can use an operation resource to manage asynchronous API requests. For more information, read Handling API responses. Operations can be global, regional or zonal. - For global operations, use the
globalOperations resource. - For regional operations, use the
regionOperations resource. - For zonal operations, use the
zoneOperations resource. For more information, read Global, Regional, and Zonal Resources. Note that completed Operation resources have a limited retention period.
[Output Only] If errors are generated during processing of the operation, this field will be populated.
[Output Only] The array of errors encountered while processing this operation.
Gets information about a specific operation.
Lists all operations for a project.
A builder providing access to all methods supported on
operation resources.
It is not used directly, but through the
DeploymentManager hub.
[Output Only] If warning messages are generated during processing of the operation, this field will be populated.
[Output Only] Metadata about this warning in key: value format. For example: “data”: [ { “key”: “scope”, “value”: “zones/us-east1-d” }
A response containing a partial list of operations and a page token used to build the next request if the request has been truncated.
An Identity and Access Management (IAM) policy, which specifies access controls for Google Cloud resources. A
Policy is a collection of
bindings. A
binding binds one or more
members, or principals, to a single
role. Principals can be user accounts, service accounts, Google groups, and domains (such as G Suite). A
role is a named list of permissions; each
role can be an IAM predefined role or a user-created custom role. For some types of Google Cloud resources, a
binding can also specify a
condition, which is a logical expression that allows access to a resource only if the expression evaluates to
true. A condition can add constraints based on attributes of the request, the resource, or both. To learn which resources support conditions in their IAM policies, see the
IAM documentation.
JSON example: { "bindings": [ { "role": "roles/resourcemanager.organizationAdmin", "members": [ "user:mike@example.com", "group:admins@example.com", "domain:google.com", "serviceAccount:my-project-id@appspot.gserviceaccount.com" ] }, { "role": "roles/resourcemanager.organizationViewer", "members": [ "user:eve@example.com" ], "condition": { "title": "expirable access", "description": "Does not grant access after Sep 2020", "expression": "request.time < timestamp('2020-10-01T00:00:00.000Z')", } } ], "etag": "BwWWja0YfJA=", "version": 3 } YAML example: bindings: - members: - user:mike@example.com - group:admins@example.com - domain:google.com - serviceAccount:my-project-id@appspot.gserviceaccount.com role: roles/resourcemanager.organizationAdmin - members: - user:eve@example.com role: roles/resourcemanager.organizationViewer condition: title: expirable access description: Does not grant access after Sep 2020 expression: request.time < timestamp('2020-10-01T00:00:00.000Z') etag: BwWWja0YfJA= version: 3 For a description of IAM and its features, see the
IAM documentation.
There is no detailed description.
The access controls set on the resource.
Gets information about a single resource.
Lists all resources in a given deployment.
A builder providing access to all methods supported on
resource resources.
It is not used directly, but through the
DeploymentManager hub.
There is no detailed description.
Output only. If errors are generated during update of the resource, this field will be populated.
[Output Only] The array of errors encountered while processing this operation.
Output only. If warning messages are generated during processing of this resource, this field will be populated.
[Output Only] Metadata about this warning in key: value format. For example: “data”: [ { “key”: “scope”, “value”: “zones/us-east1-d” }
Output only. If warning messages are generated during processing of this resource, this field will be populated.
[Output Only] Metadata about this warning in key: value format. For example: “data”: [ { “key”: “scope”, “value”: “zones/us-east1-d” }
A response containing a partial list of resources and a page token used to build the next request if the request has been truncated.
There is no detailed description.
There is no detailed description.
The
Status type defines a logical error model that is suitable for different programming environments, including REST APIs and RPC APIs. It is used by
gRPC. Each
Status message contains three pieces of data: error code, error message, and error details. You can find out more about this error model and how to work with it in the
API Design Guide.
There is no detailed description.
There is no detailed description.
There is no detailed description.
A resource type supported by Deployment Manager.
Lists all resource types for Deployment Manager.
A builder providing access to all methods supported on
type resources.
It is not used directly, but through the
DeploymentManager hub.
A response that returns all Types supported by Deployment Manager