Class: Google::Apis::CloudassetV1::GoogleCloudAssetV1DeniedAccessDenyDetail
- Inherits:
-
Object
- Object
- Google::Apis::CloudassetV1::GoogleCloudAssetV1DeniedAccessDenyDetail
- Includes:
- Google::Apis::Core::Hashable, Google::Apis::Core::JsonObjectSupport
- Defined in:
- lib/google/apis/cloudasset_v1/classes.rb,
lib/google/apis/cloudasset_v1/representations.rb,
lib/google/apis/cloudasset_v1/representations.rb
Overview
A deny detail that explains which IAM deny rule denies the denied_access_tuple.
Instance Attribute Summary collapse
-
#accesses ⇒ Array<Google::Apis::CloudassetV1::GoogleCloudAssetV1DeniedAccessAccess>
The denied accesses.
-
#deny_rule ⇒ Google::Apis::CloudassetV1::GoogleIamV2DenyRule
A deny rule in an IAM deny policy.
-
#fully_denied ⇒ Boolean
(also: #fully_denied?)
Whether the deny_rule fully denies all access granted by the denied_access_tuple.
-
#identities ⇒ Array<Google::Apis::CloudassetV1::GoogleCloudAssetV1DeniedAccessIdentity>
If this deny_rule fully denies the denied_access_tuple, this field will be same as AccessTuple.identity.
-
#resources ⇒ Array<Google::Apis::CloudassetV1::GoogleCloudAssetV1DeniedAccessResource>
The resources that the identities are denied access to.
Instance Method Summary collapse
-
#initialize(**args) ⇒ GoogleCloudAssetV1DeniedAccessDenyDetail
constructor
A new instance of GoogleCloudAssetV1DeniedAccessDenyDetail.
-
#update!(**args) ⇒ Object
Update properties of this object.
Constructor Details
#initialize(**args) ⇒ GoogleCloudAssetV1DeniedAccessDenyDetail
Returns a new instance of GoogleCloudAssetV1DeniedAccessDenyDetail.
1850 1851 1852 |
# File 'lib/google/apis/cloudasset_v1/classes.rb', line 1850 def initialize(**args) update!(**args) end |
Instance Attribute Details
#accesses ⇒ Array<Google::Apis::CloudassetV1::GoogleCloudAssetV1DeniedAccessAccess>
The denied accesses. If this deny_rule fully denies the denied_access_tuple,
this field will be same as AccessTuple.access. Otherwise, this field can
contain AccessTuple.access and its descendant accesses, such as a subset of
IAM permissions contained in an IAM role.
Corresponds to the JSON property accesses
1820 1821 1822 |
# File 'lib/google/apis/cloudasset_v1/classes.rb', line 1820 def accesses @accesses end |
#deny_rule ⇒ Google::Apis::CloudassetV1::GoogleIamV2DenyRule
A deny rule in an IAM deny policy.
Corresponds to the JSON property denyRule
1825 1826 1827 |
# File 'lib/google/apis/cloudasset_v1/classes.rb', line 1825 def deny_rule @deny_rule end |
#fully_denied ⇒ Boolean Also known as: fully_denied?
Whether the deny_rule fully denies all access granted by the
denied_access_tuple. True means the deny rule fully blocks the access tuple.
False means the deny rule partially blocks the access tuple."
Corresponds to the JSON property fullyDenied
1832 1833 1834 |
# File 'lib/google/apis/cloudasset_v1/classes.rb', line 1832 def fully_denied @fully_denied end |
#identities ⇒ Array<Google::Apis::CloudassetV1::GoogleCloudAssetV1DeniedAccessIdentity>
If this deny_rule fully denies the denied_access_tuple, this field will be
same as AccessTuple.identity. Otherwise, this field can contain AccessTuple.
identity and its descendant identities, such as a subset of users in a group.
Corresponds to the JSON property identities
1840 1841 1842 |
# File 'lib/google/apis/cloudasset_v1/classes.rb', line 1840 def identities @identities end |
#resources ⇒ Array<Google::Apis::CloudassetV1::GoogleCloudAssetV1DeniedAccessResource>
The resources that the identities are denied access to. If this deny_rule
fully denies the denied_access_tuple, this field will be same as AccessTuple.
resource. Otherwise, this field can contain AccessTuple.resource and its
descendant resources.
Corresponds to the JSON property resources
1848 1849 1850 |
# File 'lib/google/apis/cloudasset_v1/classes.rb', line 1848 def resources @resources end |
Instance Method Details
#update!(**args) ⇒ Object
Update properties of this object
1855 1856 1857 1858 1859 1860 1861 |
# File 'lib/google/apis/cloudasset_v1/classes.rb', line 1855 def update!(**args) @accesses = args[:accesses] if args.key?(:accesses) @deny_rule = args[:deny_rule] if args.key?(:deny_rule) @fully_denied = args[:fully_denied] if args.key?(:fully_denied) @identities = args[:identities] if args.key?(:identities) @resources = args[:resources] if args.key?(:resources) end |