Class: Google::Apis::AccesscontextmanagerV1beta::ServicePerimeterConfig
- Inherits:
-
Object
- Object
- Google::Apis::AccesscontextmanagerV1beta::ServicePerimeterConfig
- Includes:
- Core::Hashable, Core::JsonObjectSupport
- Defined in:
- generated/google/apis/accesscontextmanager_v1beta/classes.rb,
generated/google/apis/accesscontextmanager_v1beta/representations.rb,
generated/google/apis/accesscontextmanager_v1beta/representations.rb
Overview
ServicePerimeterConfig
specifies a set of GCP resources that describe
specific Service Perimeter configuration.
Instance Attribute Summary collapse
-
#access_levels ⇒ Array<String>
A list of
AccessLevel
resource names that allow resources within theServicePerimeter
to be accessed from the internet. -
#bridge_service_restriction ⇒ Google::Apis::AccesscontextmanagerV1beta::BridgeServiceRestriction
Alpha.
-
#ingress_service_restriction ⇒ Google::Apis::AccesscontextmanagerV1beta::IngressServiceRestriction
Alpha.
-
#resources ⇒ Array<String>
A list of GCP resources that are inside of the service perimeter.
-
#restricted_services ⇒ Array<String>
GCP services that are subject to the Service Perimeter restrictions.
-
#unrestricted_services ⇒ Array<String>
GCP services that are not subject to the Service Perimeter restrictions.
-
#vpc_service_restriction ⇒ Google::Apis::AccesscontextmanagerV1beta::VpcServiceRestriction
Alpha.
Instance Method Summary collapse
-
#initialize(**args) ⇒ ServicePerimeterConfig
constructor
A new instance of ServicePerimeterConfig.
-
#update!(**args) ⇒ Object
Update properties of this object.
Methods included from Core::JsonObjectSupport
Methods included from Core::Hashable
Constructor Details
#initialize(**args) ⇒ ServicePerimeterConfig
Returns a new instance of ServicePerimeterConfig
665 666 667 |
# File 'generated/google/apis/accesscontextmanager_v1beta/classes.rb', line 665 def initialize(**args) update!(**args) end |
Instance Attribute Details
#access_levels ⇒ Array<String>
A list of AccessLevel
resource names that allow resources within the
ServicePerimeter
to be accessed from the internet. AccessLevels
listed
must be in the same policy as this ServicePerimeter
. Referencing a
nonexistent AccessLevel
is a syntax error. If no AccessLevel
names are
listed, resources within the perimeter can only be accessed via GCP calls
with request origins within the perimeter. Example:
"accessPolicies/MY_POLICY/accessLevels/MY_LEVEL"
.
For Service Perimeter Bridge, must be empty.
Corresponds to the JSON property accessLevels
623 624 625 |
# File 'generated/google/apis/accesscontextmanager_v1beta/classes.rb', line 623 def access_levels @access_levels end |
#bridge_service_restriction ⇒ Google::Apis::AccesscontextmanagerV1beta::BridgeServiceRestriction
Alpha. Specifies which services are granted access via this Bridge Service
Perimeter.
Corresponds to the JSON property bridgeServiceRestriction
629 630 631 |
# File 'generated/google/apis/accesscontextmanager_v1beta/classes.rb', line 629 def bridge_service_restriction @bridge_service_restriction end |
#ingress_service_restriction ⇒ Google::Apis::AccesscontextmanagerV1beta::IngressServiceRestriction
Alpha. Specifies how Access Levels are to be used for accessing the Service
Perimeter.
Corresponds to the JSON property ingressServiceRestriction
635 636 637 |
# File 'generated/google/apis/accesscontextmanager_v1beta/classes.rb', line 635 def ingress_service_restriction @ingress_service_restriction end |
#resources ⇒ Array<String>
A list of GCP resources that are inside of the service perimeter.
Currently only projects are allowed. Format: projects/
project_number`
Corresponds to the JSON property
resources`
641 642 643 |
# File 'generated/google/apis/accesscontextmanager_v1beta/classes.rb', line 641 def resources @resources end |
#restricted_services ⇒ Array<String>
GCP services that are subject to the Service Perimeter restrictions. Must
contain a list of services. For example, if
storage.googleapis.com
is specified, access to the storage buckets
inside the perimeter must meet the perimeter's access restrictions.
Corresponds to the JSON property restrictedServices
649 650 651 |
# File 'generated/google/apis/accesscontextmanager_v1beta/classes.rb', line 649 def restricted_services @restricted_services end |
#unrestricted_services ⇒ Array<String>
GCP services that are not subject to the Service Perimeter
restrictions. Deprecated. Must be set to a single wildcard "*".
The wildcard means that unless explicitly specified by
"restricted_services" list, any service is treated as unrestricted.
Corresponds to the JSON property unrestrictedServices
657 658 659 |
# File 'generated/google/apis/accesscontextmanager_v1beta/classes.rb', line 657 def unrestricted_services @unrestricted_services end |
#vpc_service_restriction ⇒ Google::Apis::AccesscontextmanagerV1beta::VpcServiceRestriction
Alpha. Specifies how APIs are allowed to communicate within the Service
Perimeter.
Corresponds to the JSON property vpcServiceRestriction
663 664 665 |
# File 'generated/google/apis/accesscontextmanager_v1beta/classes.rb', line 663 def vpc_service_restriction @vpc_service_restriction end |
Instance Method Details
#update!(**args) ⇒ Object
Update properties of this object
670 671 672 673 674 675 676 677 678 |
# File 'generated/google/apis/accesscontextmanager_v1beta/classes.rb', line 670 def update!(**args) @access_levels = args[:access_levels] if args.key?(:access_levels) @bridge_service_restriction = args[:bridge_service_restriction] if args.key?(:bridge_service_restriction) @ingress_service_restriction = args[:ingress_service_restriction] if args.key?(:ingress_service_restriction) @resources = args[:resources] if args.key?(:resources) @restricted_services = args[:restricted_services] if args.key?(:restricted_services) @unrestricted_services = args[:unrestricted_services] if args.key?(:unrestricted_services) @vpc_service_restriction = args[:vpc_service_restriction] if args.key?(:vpc_service_restriction) end |