Class: Google::Apis::CloudassetV1beta1::GoogleIdentityAccesscontextmanagerV1EgressFrom

Inherits:

Object

• Object
• Google::Apis::CloudassetV1beta1::GoogleIdentityAccesscontextmanagerV1EgressFrom

Includes:

Google::Apis::Core::Hashable, Google::Apis::Core::JsonObjectSupport

Defined in:

lib/google/apis/cloudasset_v1beta1/classes.rb,
lib/google/apis/cloudasset_v1beta1/representations.rb,
lib/google/apis/cloudasset_v1beta1/representations.rb

Overview

Defines the conditions under which an EgressPolicy matches a request. Conditions based on information about the source of the request. Note that if the destination of the request is also protected by a ServicePerimeter, then that ServicePerimeter must have an IngressPolicy which allows access in order for this request to succeed.

Instance Attribute Summary

• #identities ⇒ Array<String>

  A list of identities that are allowed access through this [EgressPolicy].

• #identity_type ⇒ String

  Specifies the type of identities that are allowed access to outside the perimeter.

• #source_restriction ⇒ String

  Whether to enforce traffic restrictions based on sources field.

• #sources ⇒ Array<Google::Apis::CloudassetV1beta1::GoogleIdentityAccesscontextmanagerV1EgressSource>

  Sources that this EgressPolicy authorizes access from.

Instance Method Summary

• #initialize(**args) ⇒ GoogleIdentityAccesscontextmanagerV1EgressFrom constructor

  A new instance of GoogleIdentityAccesscontextmanagerV1EgressFrom.

• #update!(**args) ⇒ Object

  Update properties of this object.

Constructor Details

#initialize(**args) ⇒ GoogleIdentityAccesscontextmanagerV1EgressFrom

Returns a new instance of GoogleIdentityAccesscontextmanagerV1EgressFrom.

# File 'lib/google/apis/cloudasset_v1beta1/classes.rb', line 1478

def initialize(**args)
   update!(**args)
end

Instance Attribute Details

#identities ⇒ Array<String>

A list of identities that are allowed access through this [EgressPolicy]. Should be in the format of email address. The email address should represent individual user or service account only. Corresponds to the JSON property identities

Returns:

• (Array<String>)

# File 'lib/google/apis/cloudasset_v1beta1/classes.rb', line 1456

def identities
  @identities
end

#identity_type ⇒ String

Specifies the type of identities that are allowed access to outside the perimeter. If left unspecified, then members of identities field will be allowed access. Corresponds to the JSON property identityType

Returns:

• (String)

# File 'lib/google/apis/cloudasset_v1beta1/classes.rb', line 1463

def identity_type
  @identity_type
end

#source_restriction ⇒ String

Whether to enforce traffic restrictions based on sources field. If the sources fields is non-empty, then this field must be set to SOURCE_RESTRICTION_ENABLED. Corresponds to the JSON property sourceRestriction

Returns:

• (String)

# File 'lib/google/apis/cloudasset_v1beta1/classes.rb', line 1470

def source_restriction
  @source_restriction
end

#sources ⇒ Array<Google::Apis::CloudassetV1beta1::GoogleIdentityAccesscontextmanagerV1EgressSource>

Sources that this EgressPolicy authorizes access from. If this field is not empty, then source_restriction must be set to SOURCE_RESTRICTION_ENABLED. Corresponds to the JSON property sources

Returns:

• (Array<Google::Apis::CloudassetV1beta1::GoogleIdentityAccesscontextmanagerV1EgressSource>)

# File 'lib/google/apis/cloudasset_v1beta1/classes.rb', line 1476

def sources
  @sources
end

Instance Method Details

#update!(**args) ⇒ Object

Update properties of this object

# File 'lib/google/apis/cloudasset_v1beta1/classes.rb', line 1483

def update!(**args)
  @identities = args[:identities] if args.key?(:identities)
  @identity_type = args[:identity_type] if args.key?(:identity_type)
  @source_restriction = args[:source_restriction] if args.key?(:source_restriction)
  @sources = args[:sources] if args.key?(:sources)
end