Class: Google::Apis::CloudassetV1::IamPolicyAnalysisQuery
- Inherits:
-
Object
- Object
- Google::Apis::CloudassetV1::IamPolicyAnalysisQuery
- Includes:
- Google::Apis::Core::Hashable, Google::Apis::Core::JsonObjectSupport
- Defined in:
- lib/google/apis/cloudasset_v1/classes.rb,
lib/google/apis/cloudasset_v1/representations.rb,
lib/google/apis/cloudasset_v1/representations.rb
Overview
IAM policy analysis query message.
Instance Attribute Summary collapse
-
#access_selector ⇒ Google::Apis::CloudassetV1::AccessSelector
Specifies roles and/or permissions to analyze, to determine both the identities possessing them and the resources they control.
-
#identity_selector ⇒ Google::Apis::CloudassetV1::IdentitySelector
Specifies an identity for which to determine resource access, based on roles assigned either directly to them or to the groups they belong to, directly or indirectly.
-
#options ⇒ Google::Apis::CloudassetV1::Options
Contains query options.
-
#resource_selector ⇒ Google::Apis::CloudassetV1::ResourceSelector
Specifies the resource to analyze for access policies, which may be set directly on the resource, or on ancestors such as organizations, folders or projects.
-
#scope ⇒ String
Required.
Instance Method Summary collapse
-
#initialize(**args) ⇒ IamPolicyAnalysisQuery
constructor
A new instance of IamPolicyAnalysisQuery.
-
#update!(**args) ⇒ Object
Update properties of this object.
Constructor Details
#initialize(**args) ⇒ IamPolicyAnalysisQuery
Returns a new instance of IamPolicyAnalysisQuery.
2600 2601 2602 |
# File 'lib/google/apis/cloudasset_v1/classes.rb', line 2600 def initialize(**args) update!(**args) end |
Instance Attribute Details
#access_selector ⇒ Google::Apis::CloudassetV1::AccessSelector
Specifies roles and/or permissions to analyze, to determine both the
identities possessing them and the resources they control. If multiple values
are specified, results will include roles or permissions matching any of them.
The total number of roles and permissions should be equal or less than 10.
Corresponds to the JSON property accessSelector
2566 2567 2568 |
# File 'lib/google/apis/cloudasset_v1/classes.rb', line 2566 def access_selector @access_selector end |
#identity_selector ⇒ Google::Apis::CloudassetV1::IdentitySelector
Specifies an identity for which to determine resource access, based on roles
assigned either directly to them or to the groups they belong to, directly or
indirectly.
Corresponds to the JSON property identitySelector
2573 2574 2575 |
# File 'lib/google/apis/cloudasset_v1/classes.rb', line 2573 def identity_selector @identity_selector end |
#options ⇒ Google::Apis::CloudassetV1::Options
Contains query options.
Corresponds to the JSON property options
2578 2579 2580 |
# File 'lib/google/apis/cloudasset_v1/classes.rb', line 2578 def @options end |
#resource_selector ⇒ Google::Apis::CloudassetV1::ResourceSelector
Specifies the resource to analyze for access policies, which may be set
directly on the resource, or on ancestors such as organizations, folders or
projects.
Corresponds to the JSON property resourceSelector
2585 2586 2587 |
# File 'lib/google/apis/cloudasset_v1/classes.rb', line 2585 def resource_selector @resource_selector end |
#scope ⇒ String
Required. The relative name of the root asset. Only resources and IAM policies
within the scope will be analyzed. This can only be an organization number (
such as "organizations/123"), a folder number (such as "folders/123"), a
project ID (such as "projects/my-project-id"), or a project number (such as "
projects/12345"). To know how to get organization id, visit here . To know how to get folder or project id,
visit here .
Corresponds to the JSON property scope
2598 2599 2600 |
# File 'lib/google/apis/cloudasset_v1/classes.rb', line 2598 def scope @scope end |
Instance Method Details
#update!(**args) ⇒ Object
Update properties of this object
2605 2606 2607 2608 2609 2610 2611 |
# File 'lib/google/apis/cloudasset_v1/classes.rb', line 2605 def update!(**args) @access_selector = args[:access_selector] if args.key?(:access_selector) @identity_selector = args[:identity_selector] if args.key?(:identity_selector) @options = args[:options] if args.key?(:options) @resource_selector = args[:resource_selector] if args.key?(:resource_selector) @scope = args[:scope] if args.key?(:scope) end |