Class AuditConfig
Specifies the audit configuration for a service. The configuration determines which permission types are logged,
and what identities, if any, are exempted from logging. An AuditConfig must have one or more AuditLogConfigs. If
there are AuditConfigs for both allServices
and a specific service, the union of the two AuditConfigs is used
for that service: the log_types specified in each AuditConfig are enabled, and the exempted_members in each
AuditLogConfig are exempted. Example Policy with multiple AuditConfigs: { "audit_configs": [ { "service":
"allServices", "audit_log_configs": [ { "log_type": "DATA_READ", "exempted_members": [ "user:jose@example.com" ]
}, { "log_type": "DATA_WRITE" }, { "log_type": "ADMIN_READ" } ] }, { "service": "sampleservice.googleapis.com",
"audit_log_configs": [ { "log_type": "DATA_READ" }, { "log_type": "DATA_WRITE", "exempted_members": [
"user:aliya@example.com" ] } ] } ] } For sampleservice, this policy enables DATA_READ, DATA_WRITE and ADMIN_READ
logging. It also exempts jose@example.com
from DATA_READ logging, and aliya@example.com
from DATA_WRITE
logging.
Implements
Inherited Members
Namespace: Google.Apis.GKEHub.v1alpha2.Data
Assembly: Google.Apis.GKEHub.v1alpha2.dll
Syntax
public class AuditConfig : IDirectResponseSchema
Properties
AuditLogConfigs
The configuration for logging of each type of permission.
Declaration
[JsonProperty("auditLogConfigs")]
public virtual IList<AuditLogConfig> AuditLogConfigs { get; set; }
Property Value
Type | Description |
---|---|
IList<AuditLogConfig> |
ETag
The ETag of the item.
Declaration
public virtual string ETag { get; set; }
Property Value
Type | Description |
---|---|
string |
Service
Specifies a service that will be enabled for audit logging. For example, storage.googleapis.com
,
cloudsql.googleapis.com
. allServices
is a special value that covers all services.
Declaration
[JsonProperty("service")]
public virtual string Service { get; set; }
Property Value
Type | Description |
---|---|
string |