Class AuthzExtension

AuthzExtension is a resource that allows traffic forwarding to a callout backend service to make an authorization decision.

Inheritance
object
AuthzExtension
Implements
Inherited Members
Namespace: Google.Apis.NetworkServices.v1beta1.Data
Assembly: Google.Apis.NetworkServices.v1beta1.dll
Syntax
public class AuthzExtension : IDirectResponseSchema

Properties

Authority

Required. The :authority header in the gRPC request sent from Envoy to the extension service.

Declaration
[JsonProperty("authority")]
public virtual string Authority { get; set; }
Property Value
Type Description
string

CreateTime

object representation of CreateTimeRaw.

Declaration
[JsonIgnore]
[Obsolete("This property is obsolete and may behave unexpectedly; please use CreateTimeDateTimeOffset instead.")]
public virtual object CreateTime { get; set; }
Property Value
Type Description
object

CreateTimeDateTimeOffset

DateTimeOffset representation of CreateTimeRaw.

Declaration
[JsonIgnore]
public virtual DateTimeOffset? CreateTimeDateTimeOffset { get; set; }
Property Value
Type Description
DateTimeOffset?

CreateTimeRaw

Output only. The timestamp when the resource was created.

Declaration
[JsonProperty("createTime")]
public virtual string CreateTimeRaw { get; set; }
Property Value
Type Description
string

Description

Optional. A human-readable description of the resource.

Declaration
[JsonProperty("description")]
public virtual string Description { get; set; }
Property Value
Type Description
string

ETag

The ETag of the item.

Declaration
public virtual string ETag { get; set; }
Property Value
Type Description
string

FailOpen

Optional. Determines how the proxy behaves if the call to the extension fails or times out. When set to TRUE, request or response processing continues without error. Any subsequent extensions in the extension chain are also executed. When set to FALSE or the default setting of FALSE is used, one of the following happens: * If response headers have not been delivered to the downstream client, a generic 500 error is returned to the client. The error response can be tailored by configuring a custom error response in the load balancer. * If response headers have been delivered, then the HTTP stream to the downstream client is reset.

Declaration
[JsonProperty("failOpen")]
public virtual bool? FailOpen { get; set; }
Property Value
Type Description
bool?

ForwardHeaders

Optional. List of the HTTP headers to forward to the extension (from the client). If omitted, all headers are sent. Each element is a string indicating the header name.

Declaration
[JsonProperty("forwardHeaders")]
public virtual IList<string> ForwardHeaders { get; set; }
Property Value
Type Description
IList<string>

Labels

Optional. Set of labels associated with the AuthzExtension resource. The format must comply with the requirements for labels for Google Cloud resources.

Declaration
[JsonProperty("labels")]
public virtual IDictionary<string, string> Labels { get; set; }
Property Value
Type Description
IDictionary<string, string>

LoadBalancingScheme

Required. All backend services and forwarding rules referenced by this extension must share the same load balancing scheme. Supported values: INTERNAL_MANAGED, EXTERNAL_MANAGED. For more information, refer to Backend services overview.

Declaration
[JsonProperty("loadBalancingScheme")]
public virtual string LoadBalancingScheme { get; set; }
Property Value
Type Description
string

Metadata

Optional. The metadata provided here is included as part of the metadata_context (of type google.protobuf.Struct) in the ProcessingRequest message sent to the extension server. The metadata is available under the namespace com.google.authz_extension.. The following variables are supported in the metadata Struct: {forwarding_rule_id} - substituted with the forwarding rule's fully qualified resource name.

Declaration
[JsonProperty("metadata")]
public virtual IDictionary<string, object> Metadata { get; set; }
Property Value
Type Description
IDictionary<string, object>

Name

Required. Identifier. Name of the AuthzExtension resource in the following format: projects/{project}/locations/{location}/authzExtensions/{authz_extension}.

Declaration
[JsonProperty("name")]
public virtual string Name { get; set; }
Property Value
Type Description
string

Service

Required. The reference to the service that runs the extension. To configure a callout extension, service must be a fully-qualified reference to a backend service in the format: https://www.googleapis.com/compute/v1/projects/{project}/regions/{region}/backendServices/{backendService} or https://www.googleapis.com/compute/v1/projects/{project}/global/backendServices/{backendService}.

Declaration
[JsonProperty("service")]
public virtual string Service { get; set; }
Property Value
Type Description
string

Timeout

Required. Specifies the timeout for each individual message on the stream. The timeout must be between 10-10000 milliseconds.

Declaration
[JsonProperty("timeout")]
public virtual object Timeout { get; set; }
Property Value
Type Description
object

UpdateTime

object representation of UpdateTimeRaw.

Declaration
[JsonIgnore]
[Obsolete("This property is obsolete and may behave unexpectedly; please use UpdateTimeDateTimeOffset instead.")]
public virtual object UpdateTime { get; set; }
Property Value
Type Description
object

UpdateTimeDateTimeOffset

DateTimeOffset representation of UpdateTimeRaw.

Declaration
[JsonIgnore]
public virtual DateTimeOffset? UpdateTimeDateTimeOffset { get; set; }
Property Value
Type Description
DateTimeOffset?

UpdateTimeRaw

Output only. The timestamp when the resource was updated.

Declaration
[JsonProperty("updateTime")]
public virtual string UpdateTimeRaw { get; set; }
Property Value
Type Description
string

WireFormat

Optional. The format of communication supported by the callout extension. If not specified, the default value EXT_PROC_GRPC is used.

Declaration
[JsonProperty("wireFormat")]
public virtual string WireFormat { get; set; }
Property Value
Type Description
string

Implements