Class: Google::Apis::CloudkmsV1beta1::Rule
- Inherits:
-
Object
- Object
- Google::Apis::CloudkmsV1beta1::Rule
- Defined in:
- generated/google/apis/cloudkms_v1beta1/classes.rb,
generated/google/apis/cloudkms_v1beta1/representations.rb,
generated/google/apis/cloudkms_v1beta1/representations.rb
Overview
A rule to be applied in a Policy.
Instance Attribute Summary collapse
-
#action ⇒ String
Required Corresponds to the JSON property
action
. -
#conditions ⇒ Array<Google::Apis::CloudkmsV1beta1::Condition>
Additional restrictions that must be met Corresponds to the JSON property
conditions
. -
#description ⇒ String
Human-readable description of the rule.
-
#in ⇒ Array<String>
If one or more 'in' clauses are specified, the rule matches if the PRINCIPAL/AUTHORITY_SELECTOR is in at least one of these entries.
-
#log_config ⇒ Array<Google::Apis::CloudkmsV1beta1::LogConfig>
The config returned to callers of tech.iam.IAM.CheckPolicy for any entries that match the LOG action.
-
#not_in ⇒ Array<String>
If one or more 'not_in' clauses are specified, the rule matches if the PRINCIPAL/AUTHORITY_SELECTOR is in none of the entries.
-
#permissions ⇒ Array<String>
A permission is a string of form '
. . ' (e.g., 'storage.buckets.list').
Instance Method Summary collapse
-
#initialize(**args) ⇒ Rule
constructor
A new instance of Rule.
-
#update!(**args) ⇒ Object
Update properties of this object.
Methods included from Google::Apis::Core::JsonObjectSupport
Methods included from Google::Apis::Core::Hashable
Constructor Details
#initialize(**args) ⇒ Rule
Returns a new instance of Rule
284 285 286 |
# File 'generated/google/apis/cloudkms_v1beta1/classes.rb', line 284 def initialize(**args) update!(**args) end |
Instance Attribute Details
#action ⇒ String
Required
Corresponds to the JSON property action
252 253 254 |
# File 'generated/google/apis/cloudkms_v1beta1/classes.rb', line 252 def action @action end |
#conditions ⇒ Array<Google::Apis::CloudkmsV1beta1::Condition>
Additional restrictions that must be met
Corresponds to the JSON property conditions
270 271 272 |
# File 'generated/google/apis/cloudkms_v1beta1/classes.rb', line 270 def conditions @conditions end |
#description ⇒ String
Human-readable description of the rule.
Corresponds to the JSON property description
265 266 267 |
# File 'generated/google/apis/cloudkms_v1beta1/classes.rb', line 265 def description @description end |
#in ⇒ Array<String>
If one or more 'in' clauses are specified, the rule matches if
the PRINCIPAL/AUTHORITY_SELECTOR is in at least one of these entries.
Corresponds to the JSON property in
282 283 284 |
# File 'generated/google/apis/cloudkms_v1beta1/classes.rb', line 282 def in @in end |
#log_config ⇒ Array<Google::Apis::CloudkmsV1beta1::LogConfig>
The config returned to callers of tech.iam.IAM.CheckPolicy for any entries
that match the LOG action.
Corresponds to the JSON property logConfig
276 277 278 |
# File 'generated/google/apis/cloudkms_v1beta1/classes.rb', line 276 def log_config @log_config end |
#not_in ⇒ Array<String>
If one or more 'not_in' clauses are specified, the rule matches
if the PRINCIPAL/AUTHORITY_SELECTOR is in none of the entries.
The format for in and not_in entries is the same as for members in a
Binding (see google/iam/v1/policy.proto).
Corresponds to the JSON property notIn
260 261 262 |
# File 'generated/google/apis/cloudkms_v1beta1/classes.rb', line 260 def not_in @not_in end |
#permissions ⇒ Array<String>
A permission is a string of form 'permissions
247 248 249 |
# File 'generated/google/apis/cloudkms_v1beta1/classes.rb', line 247 def @permissions end |
Instance Method Details
#update!(**args) ⇒ Object
Update properties of this object
289 290 291 292 293 294 295 296 297 |
# File 'generated/google/apis/cloudkms_v1beta1/classes.rb', line 289 def update!(**args) @permissions = args[:permissions] if args.key?(:permissions) @action = args[:action] if args.key?(:action) @not_in = args[:not_in] if args.key?(:not_in) @description = args[:description] if args.key?(:description) @conditions = args[:conditions] if args.key?(:conditions) @log_config = args[:log_config] if args.key?(:log_config) @in = args[:in] if args.key?(:in) end |