Class: Google::Apis::AccesscontextmanagerV1::ServicePerimeterConfig

Inherits:

Object

• Object
• Google::Apis::AccesscontextmanagerV1::ServicePerimeterConfig

Includes:

Core::Hashable, Core::JsonObjectSupport

Defined in:

generated/google/apis/accesscontextmanager_v1/classes.rb,
generated/google/apis/accesscontextmanager_v1/representations.rb,
generated/google/apis/accesscontextmanager_v1/representations.rb

Overview

ServicePerimeterConfig specifies a set of Google Cloud resources that describe specific Service Perimeter configuration.

Instance Attribute Summary

• #access_levels ⇒ Array<String>

  A list of AccessLevel resource names that allow resources within the ServicePerimeter to be accessed from the internet.

• #egress_policies ⇒ Array<Google::Apis::AccesscontextmanagerV1::EgressPolicy>

  List of EgressPolicies to apply to the perimeter.

• #ingress_policies ⇒ Array<Google::Apis::AccesscontextmanagerV1::IngressPolicy>

  List of IngressPolicies to apply to the perimeter.

• #resources ⇒ Array<String>

  A list of Google Cloud resources that are inside of the service perimeter.

• #restricted_services ⇒ Array<String>

  Google Cloud services that are subject to the Service Perimeter restrictions.

• #vpc_accessible_services ⇒ Google::Apis::AccesscontextmanagerV1::VpcAccessibleServices

  Specifies how APIs are allowed to communicate within the Service Perimeter.

Instance Method Summary

• #initialize(**args) ⇒ ServicePerimeterConfig constructor

  A new instance of ServicePerimeterConfig.

• #update!(**args) ⇒ Object

  Update properties of this object.

Constructor Details

#initialize(**args) ⇒ ServicePerimeterConfig

Returns a new instance of ServicePerimeterConfig.

# File 'generated/google/apis/accesscontextmanager_v1/classes.rb', line 1261

def initialize(**args)
   update!(**args)
end

Instance Attribute Details

#access_levels ⇒ Array<String>

A list of AccessLevel resource names that allow resources within the ServicePerimeter to be accessed from the internet. AccessLevels listed must be in the same policy as this ServicePerimeter. Referencing a nonexistent AccessLevel is a syntax error. If no AccessLevel names are listed, resources within the perimeter can only be accessed via Google Cloud calls with request origins within the perimeter. Example: "accessPolicies/MY_POLICY/ accessLevels/MY_LEVEL". For Service Perimeter Bridge, must be empty. Corresponds to the JSON property accessLevels

Returns:

• (Array<String>)

# File 'generated/google/apis/accesscontextmanager_v1/classes.rb', line 1227

def access_levels
  @access_levels
end

#egress_policies ⇒ Array<Google::Apis::AccesscontextmanagerV1::EgressPolicy>

List of EgressPolicies to apply to the perimeter. A perimeter may have multiple EgressPolicies, each of which is evaluated separately. Access is granted if any EgressPolicy grants it. Must be empty for a perimeter bridge. Corresponds to the JSON property egressPolicies

Returns:

• (Array<Google::Apis::AccesscontextmanagerV1::EgressPolicy>)

# File 'generated/google/apis/accesscontextmanager_v1/classes.rb', line 1234

def egress_policies
  @egress_policies
end

#ingress_policies ⇒ Array<Google::Apis::AccesscontextmanagerV1::IngressPolicy>

List of IngressPolicies to apply to the perimeter. A perimeter may have multiple IngressPolicies, each of which is evaluated separately. Access is granted if any Ingress Policy grants it. Must be empty for a perimeter bridge. Corresponds to the JSON property ingressPolicies

Returns:

• (Array<Google::Apis::AccesscontextmanagerV1::IngressPolicy>)

# File 'generated/google/apis/accesscontextmanager_v1/classes.rb', line 1241

def ingress_policies
  @ingress_policies
end

#resources ⇒ Array<String>

A list of Google Cloud resources that are inside of the service perimeter. Currently only projects are allowed. Format: projects/project_number` Corresponds to the JSON propertyresources`

Returns:

• (Array<String>)

# File 'generated/google/apis/accesscontextmanager_v1/classes.rb', line 1247

def resources
  @resources
end

#restricted_services ⇒ Array<String>

Google Cloud services that are subject to the Service Perimeter restrictions. For example, if storage.googleapis.com is specified, access to the storage buckets inside the perimeter must meet the perimeter's access restrictions. Corresponds to the JSON property restrictedServices

Returns:

• (Array<String>)

# File 'generated/google/apis/accesscontextmanager_v1/classes.rb', line 1254

def restricted_services
  @restricted_services
end

#vpc_accessible_services ⇒ Google::Apis::AccesscontextmanagerV1::VpcAccessibleServices

Specifies how APIs are allowed to communicate within the Service Perimeter. Corresponds to the JSON property vpcAccessibleServices

Returns:

• (Google::Apis::AccesscontextmanagerV1::VpcAccessibleServices)

# File 'generated/google/apis/accesscontextmanager_v1/classes.rb', line 1259

def vpc_accessible_services
  @vpc_accessible_services
end

Instance Method Details

#update!(**args) ⇒ Object

Update properties of this object

# File 'generated/google/apis/accesscontextmanager_v1/classes.rb', line 1266

def update!(**args)
  @access_levels = args[:access_levels] if args.key?(:access_levels)
  @egress_policies = args[:egress_policies] if args.key?(:egress_policies)
  @ingress_policies = args[:ingress_policies] if args.key?(:ingress_policies)
  @resources = args[:resources] if args.key?(:resources)
  @restricted_services = args[:restricted_services] if args.key?(:restricted_services)
  @vpc_accessible_services = args[:vpc_accessible_services] if args.key?(:vpc_accessible_services)
end