Module: Google::Cloud::OrgPolicy

Defined in:
lib/google/cloud/org_policy.rb,
lib/google/cloud/org_policy/version.rb

Constant Summary collapse

VERSION =
"1.4.1"

Class Method Summary collapse

Class Method Details

.configure {|::Google::Cloud.configure.org_policy| ... } ⇒ ::Google::Cloud::Config

Configure the google-cloud-org_policy library.

The following configuration parameters are supported:

  • credentials (type: String, Hash, Google::Auth::Credentials) - The path to the keyfile as a String, the contents of the keyfile as a Hash, or a Google::Auth::Credentials object.
  • lib_name (type: String) - The library name as recorded in instrumentation and logging.
  • lib_version (type: String) - The library version as recorded in instrumentation and logging.
  • interceptors (type: Array<GRPC::ClientInterceptor>) - An array of interceptors that are run before calls are executed.
  • timeout (type: Numeric) - Default timeout in seconds.
  • metadata (type: Hash{Symbol=>String}) - Additional headers to be sent with the call.
  • retry_policy (type: Hash) - The retry policy. The value is a hash with the following keys:
    • :initial_delay (type: Numeric) - The initial delay in seconds.
    • :max_delay (type: Numeric) - The max delay in seconds.
    • :multiplier (type: Numeric) - The incremental backoff multiplier.
    • :retry_codes (type: Array<String>) - The error codes that should trigger a retry.

Yields:

Returns:

  • (::Google::Cloud::Config)

    The default configuration used by this library



129
130
131
132
133
# File 'lib/google/cloud/org_policy.rb', line 129

def self.configure
  yield ::Google::Cloud.configure.org_policy if block_given?

  ::Google::Cloud.configure.org_policy
end

.org_policy(version: :v2, transport: :grpc, &block) ⇒ ::Object

Create a new client object for OrgPolicy.

By default, this returns an instance of Google::Cloud::OrgPolicy::V2::OrgPolicy::Client for a gRPC client for version V2 of the API. However, you can specify a different API version by passing it in the version parameter. If the OrgPolicy service is supported by that API version, and the corresponding gem is available, the appropriate versioned client will be returned. You can also specify a different transport by passing :rest or :grpc in the transport parameter.

About OrgPolicy

An interface for managing organization policies.

The Organization Policy Service provides a simple mechanism for organizations to restrict the allowed configurations across their entire resource hierarchy.

You can use a policy to configure restrictions on resources. For example, you can enforce a policy that restricts which Google Cloud APIs can be activated in a certain part of your resource hierarchy, or prevents serial port access to VM instances in a particular folder.

Policies are inherited down through the resource hierarchy. A policy applied to a parent resource automatically applies to all its child resources unless overridden with a policy lower in the hierarchy.

A constraint defines an aspect of a resource's configuration that can be controlled by an organization's policy administrator. Policies are a collection of constraints that defines their allowable configuration on a particular resource and its child resources.

Parameters:

  • version (::String, ::Symbol) (defaults to: :v2)

    The API version to connect to. Optional. Defaults to :v2.

  • transport (:grpc, :rest) (defaults to: :grpc)

    The transport to use. Defaults to :grpc.

Returns:

  • (::Object)

    A client object for the specified version.



89
90
91
92
93
94
95
96
97
98
99
# File 'lib/google/cloud/org_policy.rb', line 89

def self.org_policy version: :v2, transport: :grpc, &block
  require "google/cloud/org_policy/#{version.to_s.downcase}"

  package_name = Google::Cloud::OrgPolicy
                 .constants
                 .select { |sym| sym.to_s.downcase == version.to_s.downcase.tr("_", "") }
                 .first
  service_module = Google::Cloud::OrgPolicy.const_get(package_name).const_get(:OrgPolicy)
  service_module = service_module.const_get(:Rest) if transport == :rest
  service_module.const_get(:Client).new(&block)
end