Class: Google::Apis::CloudkmsV1::Rule

Inherits:
Object
  • Object
show all
Includes:
Google::Apis::Core::Hashable, Google::Apis::Core::JsonObjectSupport
Defined in:
generated/google/apis/cloudkms_v1/classes.rb,
generated/google/apis/cloudkms_v1/representations.rb,
generated/google/apis/cloudkms_v1/representations.rb

Overview

A rule to be applied in a Policy.

Instance Attribute Summary collapse

Instance Method Summary collapse

Methods included from Google::Apis::Core::JsonObjectSupport

#to_json

Methods included from Google::Apis::Core::Hashable

process_value, #to_h

Constructor Details

#initialize(**args) ⇒ Rule

Returns a new instance of Rule



716
717
718
# File 'generated/google/apis/cloudkms_v1/classes.rb', line 716

def initialize(**args)
   update!(**args)
end

Instance Attribute Details

#actionString

Required Corresponds to the JSON property action

Returns:

  • (String)


706
707
708
# File 'generated/google/apis/cloudkms_v1/classes.rb', line 706

def action
  @action
end

#conditionsArray<Google::Apis::CloudkmsV1::Condition>

Additional restrictions that must be met Corresponds to the JSON property conditions



682
683
684
# File 'generated/google/apis/cloudkms_v1/classes.rb', line 682

def conditions
  @conditions
end

#descriptionString

Human-readable description of the rule. Corresponds to the JSON property description

Returns:

  • (String)


677
678
679
# File 'generated/google/apis/cloudkms_v1/classes.rb', line 677

def description
  @description
end

#inArray<String>

If one or more 'in' clauses are specified, the rule matches if the PRINCIPAL/AUTHORITY_SELECTOR is in at least one of these entries. Corresponds to the JSON property in

Returns:

  • (Array<String>)


694
695
696
# File 'generated/google/apis/cloudkms_v1/classes.rb', line 694

def in
  @in
end

#log_configArray<Google::Apis::CloudkmsV1::LogConfig>

The config returned to callers of tech.iam.IAM.CheckPolicy for any entries that match the LOG action. Corresponds to the JSON property logConfig



688
689
690
# File 'generated/google/apis/cloudkms_v1/classes.rb', line 688

def log_config
  @log_config
end

#not_inArray<String>

If one or more 'not_in' clauses are specified, the rule matches if the PRINCIPAL/AUTHORITY_SELECTOR is in none of the entries. The format for in and not_in entries is the same as for members in a Binding (see google/iam/v1/policy.proto). Corresponds to the JSON property notIn

Returns:

  • (Array<String>)


714
715
716
# File 'generated/google/apis/cloudkms_v1/classes.rb', line 714

def not_in
  @not_in
end

#permissionsArray<String>

A permission is a string of form '..' (e.g., 'storage.buckets.list'). A value of '' matches all permissions, and a verb part of '' (e.g., 'storage.buckets.*') matches all verbs. Corresponds to the JSON property permissions

Returns:

  • (Array<String>)


701
702
703
# File 'generated/google/apis/cloudkms_v1/classes.rb', line 701

def permissions
  @permissions
end

Instance Method Details

#update!(**args) ⇒ Object

Update properties of this object



721
722
723
724
725
726
727
728
729
# File 'generated/google/apis/cloudkms_v1/classes.rb', line 721

def update!(**args)
  @description = args[:description] if args.key?(:description)
  @conditions = args[:conditions] if args.key?(:conditions)
  @log_config = args[:log_config] if args.key?(:log_config)
  @in = args[:in] if args.key?(:in)
  @permissions = args[:permissions] if args.key?(:permissions)
  @action = args[:action] if args.key?(:action)
  @not_in = args[:not_in] if args.key?(:not_in)
end