Class: Google::Apis::HealthcareV1beta1::AuditConfig

Inherits:

Object

Object
Google::Apis::HealthcareV1beta1::AuditConfig

show all

Includes:: Core::Hashable, Core::JsonObjectSupport

Defined in:: generated/google/apis/healthcare_v1beta1/classes.rb,
generated/google/apis/healthcare_v1beta1/representations.rb,
generated/google/apis/healthcare_v1beta1/representations.rb

Overview

Specifies the audit configuration for a service. The configuration determines which permission types are logged, and what identities, if any, are exempted from logging. An AuditConfig must have one or more AuditLogConfigs. If there are AuditConfigs for both allServices and a specific service, the union of the two AuditConfigs is used for that service: the log_types specified in each AuditConfig are enabled, and the exempted_members in each AuditLogConfig are exempted. Example Policy with multiple AuditConfigs: "audit_configs": [ " service": "allServices", "audit_log_configs": [ "log_type": "DATA_READ", " exempted_members": [ "user:jose@example.com" ], "log_type": "DATA_WRITE", "log_type": "ADMIN_READ" ] , "service": "sampleservice.googleapis.com", "audit_log_configs": [ "log_type": "DATA_READ", "log_type": "DATA_WRITE" , "exempted_members": [ "user:aliya@example.com" ] ] ] For sampleservice, this policy enables DATA_READ, DATA_WRITE and ADMIN_READ logging. It also exempts jose@example.com from DATA_READ logging, and aliya@example.com from DATA_WRITE logging.

Instance Attribute Summary collapse

#audit_log_configs ⇒ Array<Google::Apis::HealthcareV1beta1::AuditLogConfig>
The configuration for logging of each type of permission.
#service ⇒ String
Specifies a service that will be enabled for audit logging.

Instance Method Summary collapse

#initialize(**args) ⇒ AuditConfig constructor
A new instance of AuditConfig.
#update!(**args) ⇒ Object
Update properties of this object.

Constructor Details

#initialize(**args) ⇒ `AuditConfig`

Returns a new instance of AuditConfig.



396
397
398

# File 'generated/google/apis/healthcare_v1beta1/classes.rb', line 396

def initialize(**args)
   update!(**args)
end

Instance Attribute Details

#audit_log_configs ⇒ `Array<Google::Apis::HealthcareV1beta1::AuditLogConfig>`

The configuration for logging of each type of permission. Corresponds to the JSON property auditLogConfigs

Returns:

(Array<Google::Apis::HealthcareV1beta1::AuditLogConfig>)



387
388
389

# File 'generated/google/apis/healthcare_v1beta1/classes.rb', line 387

def audit_log_configs
  @audit_log_configs
end

#service ⇒ `String`

Specifies a service that will be enabled for audit logging. For example, storage.googleapis.com, cloudsql.googleapis.com. allServices is a special value that covers all services. Corresponds to the JSON property service

Returns:

(String)



394
395
396

# File 'generated/google/apis/healthcare_v1beta1/classes.rb', line 394

def service
  @service
end

Instance Method Details

#update!(**args) ⇒ `Object`

Update properties of this object

# File 'generated/google/apis/healthcare_v1beta1/classes.rb', line 401

def update!(**args)
  @audit_log_configs = args[:audit_log_configs] if args.key?(:audit_log_configs)
  @service = args[:service] if args.key?(:service)
end