Class: Google::Apis::AccesscontextmanagerV1beta::ServicePerimeterConfig

Inherits:
Object
  • Object
show all
Includes:
Core::Hashable, Core::JsonObjectSupport
Defined in:
generated/google/apis/accesscontextmanager_v1beta/classes.rb,
generated/google/apis/accesscontextmanager_v1beta/representations.rb,
generated/google/apis/accesscontextmanager_v1beta/representations.rb

Overview

ServicePerimeterConfig specifies a set of GCP resources that describe specific Service Perimeter configuration.

Instance Attribute Summary collapse

Instance Method Summary collapse

Methods included from Core::JsonObjectSupport

#to_json

Methods included from Core::Hashable

process_value, #to_h

Constructor Details

#initialize(**args) ⇒ ServicePerimeterConfig

Returns a new instance of ServicePerimeterConfig



665
666
667
# File 'generated/google/apis/accesscontextmanager_v1beta/classes.rb', line 665

def initialize(**args)
   update!(**args)
end

Instance Attribute Details

#access_levelsArray<String>

A list of AccessLevel resource names that allow resources within the ServicePerimeter to be accessed from the internet. AccessLevels listed must be in the same policy as this ServicePerimeter. Referencing a nonexistent AccessLevel is a syntax error. If no AccessLevel names are listed, resources within the perimeter can only be accessed via GCP calls with request origins within the perimeter. Example: "accessPolicies/MY_POLICY/accessLevels/MY_LEVEL". For Service Perimeter Bridge, must be empty. Corresponds to the JSON property accessLevels

Returns:

  • (Array<String>)


623
624
625
# File 'generated/google/apis/accesscontextmanager_v1beta/classes.rb', line 623

def access_levels
  @access_levels
end

#bridge_service_restrictionGoogle::Apis::AccesscontextmanagerV1beta::BridgeServiceRestriction

Alpha. Specifies which services are granted access via this Bridge Service Perimeter. Corresponds to the JSON property bridgeServiceRestriction



629
630
631
# File 'generated/google/apis/accesscontextmanager_v1beta/classes.rb', line 629

def bridge_service_restriction
  @bridge_service_restriction
end

#ingress_service_restrictionGoogle::Apis::AccesscontextmanagerV1beta::IngressServiceRestriction

Alpha. Specifies how Access Levels are to be used for accessing the Service Perimeter. Corresponds to the JSON property ingressServiceRestriction



635
636
637
# File 'generated/google/apis/accesscontextmanager_v1beta/classes.rb', line 635

def ingress_service_restriction
  @ingress_service_restriction
end

#resourcesArray<String>

A list of GCP resources that are inside of the service perimeter. Currently only projects are allowed. Format: projects/project_number` Corresponds to the JSON propertyresources`

Returns:

  • (Array<String>)


641
642
643
# File 'generated/google/apis/accesscontextmanager_v1beta/classes.rb', line 641

def resources
  @resources
end

#restricted_servicesArray<String>

GCP services that are subject to the Service Perimeter restrictions. Must contain a list of services. For example, if storage.googleapis.com is specified, access to the storage buckets inside the perimeter must meet the perimeter's access restrictions. Corresponds to the JSON property restrictedServices

Returns:

  • (Array<String>)


649
650
651
# File 'generated/google/apis/accesscontextmanager_v1beta/classes.rb', line 649

def restricted_services
  @restricted_services
end

#unrestricted_servicesArray<String>

GCP services that are not subject to the Service Perimeter restrictions. Deprecated. Must be set to a single wildcard "*". The wildcard means that unless explicitly specified by "restricted_services" list, any service is treated as unrestricted. Corresponds to the JSON property unrestrictedServices

Returns:

  • (Array<String>)


657
658
659
# File 'generated/google/apis/accesscontextmanager_v1beta/classes.rb', line 657

def unrestricted_services
  @unrestricted_services
end

#vpc_service_restrictionGoogle::Apis::AccesscontextmanagerV1beta::VpcServiceRestriction

Alpha. Specifies how APIs are allowed to communicate within the Service Perimeter. Corresponds to the JSON property vpcServiceRestriction



663
664
665
# File 'generated/google/apis/accesscontextmanager_v1beta/classes.rb', line 663

def vpc_service_restriction
  @vpc_service_restriction
end

Instance Method Details

#update!(**args) ⇒ Object

Update properties of this object



670
671
672
673
674
675
676
677
678
# File 'generated/google/apis/accesscontextmanager_v1beta/classes.rb', line 670

def update!(**args)
  @access_levels = args[:access_levels] if args.key?(:access_levels)
  @bridge_service_restriction = args[:bridge_service_restriction] if args.key?(:bridge_service_restriction)
  @ingress_service_restriction = args[:ingress_service_restriction] if args.key?(:ingress_service_restriction)
  @resources = args[:resources] if args.key?(:resources)
  @restricted_services = args[:restricted_services] if args.key?(:restricted_services)
  @unrestricted_services = args[:unrestricted_services] if args.key?(:unrestricted_services)
  @vpc_service_restriction = args[:vpc_service_restriction] if args.key?(:vpc_service_restriction)
end