Class: Google::Apis::NetworksecurityV1::AuthzPolicyCustomProvider

Inherits:
Object
  • Object
show all
Includes:
Core::Hashable, Core::JsonObjectSupport
Defined in:
lib/google/apis/networksecurity_v1/classes.rb,
lib/google/apis/networksecurity_v1/representations.rb,
lib/google/apis/networksecurity_v1/representations.rb

Overview

Allows delegating authorization decisions to Cloud IAP or to Service Extensions.

Instance Attribute Summary collapse

Instance Method Summary collapse

Constructor Details

#initialize(**args) ⇒ AuthzPolicyCustomProvider

Returns a new instance of AuthzPolicyCustomProvider.



627
628
629
# File 'lib/google/apis/networksecurity_v1/classes.rb', line 627

def initialize(**args)
   update!(**args)
end

Instance Attribute Details

#authz_extensionGoogle::Apis::NetworksecurityV1::AuthzPolicyCustomProviderAuthzExtension

Optional. Delegate authorization decision to user authored extension. Only one of cloudIap or authzExtension can be specified. Corresponds to the JSON property authzExtension



616
617
618
# File 'lib/google/apis/networksecurity_v1/classes.rb', line 616

def authz_extension
  @authz_extension
end

#cloud_iapGoogle::Apis::NetworksecurityV1::AuthzPolicyCustomProviderCloudIap

Optional. Delegates authorization decisions to Cloud IAP. Applicable only for managed load balancers. Enabling Cloud IAP at the AuthzPolicy level is not compatible with Cloud IAP settings in the BackendService. Enabling IAP in both places will result in request failure. Ensure that IAP is enabled in either the AuthzPolicy or the BackendService but not in both places. Corresponds to the JSON property cloudIap



625
626
627
# File 'lib/google/apis/networksecurity_v1/classes.rb', line 625

def cloud_iap
  @cloud_iap
end

Instance Method Details

#update!(**args) ⇒ Object

Update properties of this object



632
633
634
635
# File 'lib/google/apis/networksecurity_v1/classes.rb', line 632

def update!(**args)
  @authz_extension = args[:authz_extension] if args.key?(:authz_extension)
  @cloud_iap = args[:cloud_iap] if args.key?(:cloud_iap)
end