| Class | Description |
|---|---|
| AbuseDetected |
A generic alert for abusive user activity occurring with a customer.
|
| AccessApproval |
Alert that is triggered when Google support requests to access customer data.
|
| AccountSuspensionDetails |
Details about why an account is receiving an account suspension warning.
|
| AccountSuspensionWarning |
A warning that the customer's account is about to be suspended.
|
| AccountWarning |
Alerts for user account warning events.
|
| ActionInfo |
Metadata related to the action.
|
| ActivityRule |
Alerts from Google Workspace Security Center rules service configured by an admin.
|
| Alert |
An alert affecting a customer.
|
| AlertFeedback |
A customer feedback about an alert.
|
| AlertMetadata |
An alert metadata.
|
| ApnsCertificateExpirationInfo |
The explanation message associated with "APNS certificate is expiring soon" and "APNS certificate
has expired" alerts.
|
| AppMakerSqlSetupNotification |
Alerts from App Maker to notify admins to set up default SQL instance.
|
| AppSettingsChanged |
Alerts from AppSettingsChanged bucket Rules configured by Admin which contain the following
rules: - Calendar settings changed - Drive settings changed - Email settings changed - Mobile
settings changed
|
| AppsOutage |
An outage incident reported for a Google Workspace service.
|
| Attachment |
Attachment with application-specific information about an alert.
|
| BadWhitelist |
Alert for setting the domain or IP that malicious email comes from as whitelisted domain or IP in
Gmail advanced settings.
|
| BatchDeleteAlertsRequest |
A request to perform batch delete on alerts.
|
| BatchDeleteAlertsResponse |
Response to batch delete operation on alerts.
|
| BatchUndeleteAlertsRequest |
A request to perform batch undelete on alerts.
|
| BatchUndeleteAlertsResponse |
Response to batch undelete operation on alerts.
|
| CloudPubsubTopic |
A reference to a Cloud Pubsub topic.
|
| Csv |
A representation of a CSV file attachment, as a list of column headers and a list of data rows.
|
| CsvRow |
A representation of a single data row in a CSV file.
|
| DeviceCompromised |
A mobile device compromised alert.
|
| DeviceCompromisedSecurityDetail |
Detailed information of a single MDM device compromised event.
|
| DeviceManagementRule |
Alerts from Device Management Rules configured by Admin.
|
| DlpRuleViolation |
Alerts that get triggered on violations of Data Loss Prevention (DLP) rules.
|
| DomainId |
Domain ID of Gmail phishing alerts.
|
| DomainWideTakeoutInitiated |
A takeout operation for the entire domain was initiated by an admin.
|
| Empty |
A generic empty message that you can re-use to avoid defining duplicated empty messages in your
APIs.
|
| Entity |
Individual entity affected by, or related to, an alert.
|
| EntityList |
EntityList stores entities in a format that can be translated to a table in the Alert Center UI.
|
| GmailMessageInfo |
Details of a message in phishing spike alert.
|
| GoogleOperations |
An incident reported by Google Operations for a Google Workspace application.
|
| ListAlertFeedbackResponse |
Response message for an alert feedback listing request.
|
| ListAlertsResponse |
Response message for an alert listing request.
|
| LoginDetails |
The details of the login action.
|
| MailPhishing |
Proto for all phishing alerts with common payload.
|
| MaliciousEntity |
Entity whose actions triggered a Gmail phishing alert.
|
| MandatoryServiceAnnouncement |
Alert Created by the MSA team for communications necessary for continued use of Google Workspace
Products.
|
| MatchInfo |
Proto that contains match information from the condition part of the rule.
|
| MergeInfo |
New alert tracking numbers.
|
| Notification |
Settings for callback notifications.
|
| PhishingSpike |
Alert for a spike in user reported phishing.
|
| PredefinedDetectorInfo |
Detector provided by Google.
|
| PrimaryAdminChangedEvent |
Event occurred when primary admin changed in customer's account.
|
| ReportingRule |
Alerts from Reporting Rules configured by Admin.
|
| RequestInfo |
Requests for one application that needs default SQL setup.
|
| ResourceInfo |
Proto that contains resource information.
|
| RuleInfo |
Proto that contains rule information.
|
| RuleViolationInfo |
Common alert information about violated rules that are configured by Google Workspace
administrators.
|
| SensitiveAdminAction |
Alert that is triggered when Sensitive Admin Action occur in customer account.
|
| Settings |
Customer-level settings.
|
| SSOProfileCreatedEvent |
Event occurred when SSO Profile created in customer's account.
|
| SSOProfileDeletedEvent |
Event occurred when SSO Profile deleted in customer's account.
|
| SSOProfileUpdatedEvent |
Event occurred when SSO Profile updated in customer's account.
|
| StateSponsoredAttack |
A state-sponsored attack alert.
|
| Status |
The `Status` type defines a logical error model that is suitable for different programming
environments, including REST APIs and RPC APIs.
|
| SuperAdminPasswordResetEvent |
Event occurred when password was reset for super admin in customer's account.
|
| SupportTicket |
Support ticket related to Access Approvals request
|
| SuspiciousActivity |
A mobile suspicious activity alert.
|
| SuspiciousActivitySecurityDetail |
Detailed information of a single MDM suspicious activity event.
|
| TransferError |
Details for an invalid transfer or forward.
|
| TransferMisconfiguration |
Error related to transferring or forwarding a phone call.
|
| UndeleteAlertRequest |
A request to undelete a specific alert that was marked for deletion.
|
| User |
A user.
|
| UserChanges |
Alerts from UserChanges bucket Rules for predefined rules which contain the following rules: -
Suspended user made active - New user added - User suspended (by admin) - User granted admin
privileges - User admin privileges revoked - User deleted - Users password changed
|
| UserDefinedDetectorInfo |
Detector defined by administrators.
|
| VaultAcceleratedDeletion |
Alert that is triggered when a Vault accelerated deletion request is created or canceled.
|
| VoicemailMisconfiguration |
Issue(s) with sending to voicemail.
|
| VoicemailRecipientError |
Issue(s) with a voicemail recipient.
|
| VoiceMisconfiguration |
An alert triggered when Google Voice configuration becomes invalid, generally due to an external
entity being modified or deleted.
|
Copyright © 2011–2025 Google. All rights reserved.