Skip to content

Commit

Permalink
feat(assuredworkloads): update the api
Browse files Browse the repository at this point in the history 
#### assuredworkloads:v1

The following keys were deleted:
- schemas.GoogleCloudAssuredworkloadsV1WorkloadPartnerPermissions.properties.serviceAccessApprover.type (Total Keys: 1)

The following keys were added:
- schemas.GoogleCloudAssuredworkloadsV1Workload.properties.partnerPermissions.$ref (Total Keys: 1)
- schemas.GoogleCloudAssuredworkloadsV1Workload.properties.violationNotificationsEnabled.type (Total Keys: 1)

#### assuredworkloads:v1beta1

The following keys were added:
- schemas.GoogleCloudAssuredworkloadsV1beta1CreateWorkloadOperationMetadata (Total Keys: 9)
- schemas.GoogleCloudAssuredworkloadsV1beta1Workload.properties.controls (Total Keys: 2)
- schemas.GoogleCloudAssuredworkloadsV1beta1Workload.properties.partnerPermissions.$ref (Total Keys: 1)
- schemas.GoogleCloudAssuredworkloadsV1beta1Workload.properties.violationNotificationsEnabled.type (Total Keys: 1)
- schemas.GoogleCloudAssuredworkloadsV1beta1WorkloadComplianceControls (Total Keys: 12)
- schemas.GoogleCloudAssuredworkloadsV1beta1WorkloadPartnerPermissions (Total Keys: 4)
  • Loading branch information
@yoshi-automation
yoshi-automation committed May 24, 2023
1 parent 566a0af commit ef876a9
Show file tree
Hide file tree
Showing 6 changed files with 267 additions and 41 deletions.
63 changes: 46 additions & 17 deletions docs/dyn/assuredworkloads_v1.organizations.locations.workloads.html
View file

Large diffs are not rendered by default.

4 changes: 2 additions & 2 deletions docs/dyn/assuredworkloads_v1.organizations.locations.workloads.violations.html
View file
Expand Up @@ -135,7 +135,7 @@ <h3>Method Details</h3>
Returns:
An object of the form:

{ # Workload monitoring Violation. Next Id: 22
{ # Workload monitoring Violation. Next Id: 27
&quot;acknowledged&quot;: True or False, # A boolean that indicates if the violation is acknowledged
&quot;acknowledgementTime&quot;: &quot;A String&quot;, # Optional. Timestamp when this violation was acknowledged first. Check exception_contexts to find the last time the violation was acknowledged when there are more than one violations. This field will be absent when acknowledged field is marked as false.
&quot;auditLogLink&quot;: &quot;A String&quot;, # Output only. Immutable. Audit Log Link for violated resource Format: https://console.cloud.google.com/logs/query;query={logName}{protoPayload.resourceName}{timeRange}{folder}
Expand Down Expand Up @@ -204,7 +204,7 @@ <h3>Method Details</h3>
{ # Response of ListViolations endpoint.
&quot;nextPageToken&quot;: &quot;A String&quot;, # The next page token. Returns empty if reached the last page.
&quot;violations&quot;: [ # List of Violations under a Workload.
{ # Workload monitoring Violation. Next Id: 22
{ # Workload monitoring Violation. Next Id: 27
&quot;acknowledged&quot;: True or False, # A boolean that indicates if the violation is acknowledged
&quot;acknowledgementTime&quot;: &quot;A String&quot;, # Optional. Timestamp when this violation was acknowledged first. Check exception_contexts to find the last time the violation was acknowledged when there are more than one violations. This field will be absent when acknowledged field is marked as false.
&quot;auditLogLink&quot;: &quot;A String&quot;, # Output only. Immutable. Audit Log Link for violated resource Format: https://console.cloud.google.com/logs/query;query={logName}{protoPayload.resourceName}{timeRange}{folder}
Expand Down
65 changes: 65 additions & 0 deletions docs/dyn/assuredworkloads_v1beta1.organizations.locations.workloads.html
View file
Expand Up @@ -139,6 +139,14 @@ <h3>Method Details</h3>
&quot;compliantButDisallowedServices&quot;: [ # Output only. Urls for services which are compliant for this Assured Workload, but which are currently disallowed by the ResourceUsageRestriction org policy. Invoke RestrictAllowedResources endpoint to allow your project developers to use these services in their environment.&quot;
&quot;A String&quot;,
],
&quot;controls&quot;: { # Controls enabled to the user associated with this workload # Output only. Controls associated with the customer workload
&quot;appliedOrgPolicies&quot;: [ # Output only. Org policies currently applied by this Assured Workload
{ # An org policy control applied by Assured Workloads
&quot;constraint&quot;: &quot;A String&quot;, # Output only. Constraint name of the org policy control Example: constraints/gcp.resourcelocations
&quot;version&quot;: 42, # Output only. Org policy version
},
],
},
&quot;createTime&quot;: &quot;A String&quot;, # Output only. Immutable. The Workload creation timestamp.
&quot;displayName&quot;: &quot;A String&quot;, # Required. The user-assigned display name of the Workload. When present it must be between 4 to 30 characters. Allowed characters are: lowercase and uppercase letters, numbers, hyphen, and spaces. Example: My Workload
&quot;ekmProvisioningResponse&quot;: { # External key management systems(EKM) Provisioning response # Optional. Represents the Ekm Provisioning State of the given workload.
Expand Down Expand Up @@ -176,6 +184,10 @@ <h3>Method Details</h3>
},
&quot;name&quot;: &quot;A String&quot;, # Optional. The resource name of the workload. Format: organizations/{organization}/locations/{location}/workloads/{workload} Read-only.
&quot;partner&quot;: &quot;A String&quot;, # Optional. Partner regime associated with this workload.
&quot;partnerPermissions&quot;: { # Permissions granted to the AW Partner SA account for the customer workload # Optional. Permissions granted to the AW Partner SA account for the customer workload
&quot;dataLogsViewer&quot;: True or False, # Allow the partner to view inspectability logs and monitoring violations.
&quot;remediateFolderViolations&quot;: True or False, # Allow partner to monitor folder and remediate violations
},
&quot;provisionedResourcesParent&quot;: &quot;A String&quot;, # Input only. The parent resource for the resources managed by this Assured Workload. May be either empty or a folder resource which is a child of the Workload parent. If not specified all resources are created under the parent organization. Format: folders/{folder_id}
&quot;resourceSettings&quot;: [ # Input only. Resource properties that are used to customize workload resources. These properties (such as custom project id) will be used to create workload resources if possible. This field is optional.
{ # Represent the custom settings for the resources to be created.
Expand All @@ -196,6 +208,7 @@ <h3>Method Details</h3>
],
&quot;setupStatus&quot;: &quot;A String&quot;, # Indicates SAA enrollment status of a given workload.
},
&quot;violationNotificationsEnabled&quot;: True or False, # Optional. Indicates whether the e-mail notification for a violation is enabled for a workload. This value will be by default True, and if not present will be considered as true. This should only be updated via updateWorkload call. Any Changes to this field during the createWorkload call will not be honored. This will always be true while creating the workload.
}

externalId: string, Optional. A identifier associated with the workload and underlying projects which allows for the break down of billing costs for a workload. The value provided for the identifier will add a label to the workload and contained projects with the identifier as the value.
Expand Down Expand Up @@ -277,6 +290,14 @@ <h3>Method Details</h3>
&quot;compliantButDisallowedServices&quot;: [ # Output only. Urls for services which are compliant for this Assured Workload, but which are currently disallowed by the ResourceUsageRestriction org policy. Invoke RestrictAllowedResources endpoint to allow your project developers to use these services in their environment.&quot;
&quot;A String&quot;,
],
&quot;controls&quot;: { # Controls enabled to the user associated with this workload # Output only. Controls associated with the customer workload
&quot;appliedOrgPolicies&quot;: [ # Output only. Org policies currently applied by this Assured Workload
{ # An org policy control applied by Assured Workloads
&quot;constraint&quot;: &quot;A String&quot;, # Output only. Constraint name of the org policy control Example: constraints/gcp.resourcelocations
&quot;version&quot;: 42, # Output only. Org policy version
},
],
},
&quot;createTime&quot;: &quot;A String&quot;, # Output only. Immutable. The Workload creation timestamp.
&quot;displayName&quot;: &quot;A String&quot;, # Required. The user-assigned display name of the Workload. When present it must be between 4 to 30 characters. Allowed characters are: lowercase and uppercase letters, numbers, hyphen, and spaces. Example: My Workload
&quot;ekmProvisioningResponse&quot;: { # External key management systems(EKM) Provisioning response # Optional. Represents the Ekm Provisioning State of the given workload.
Expand Down Expand Up @@ -314,6 +335,10 @@ <h3>Method Details</h3>
},
&quot;name&quot;: &quot;A String&quot;, # Optional. The resource name of the workload. Format: organizations/{organization}/locations/{location}/workloads/{workload} Read-only.
&quot;partner&quot;: &quot;A String&quot;, # Optional. Partner regime associated with this workload.
&quot;partnerPermissions&quot;: { # Permissions granted to the AW Partner SA account for the customer workload # Optional. Permissions granted to the AW Partner SA account for the customer workload
&quot;dataLogsViewer&quot;: True or False, # Allow the partner to view inspectability logs and monitoring violations.
&quot;remediateFolderViolations&quot;: True or False, # Allow partner to monitor folder and remediate violations
},
&quot;provisionedResourcesParent&quot;: &quot;A String&quot;, # Input only. The parent resource for the resources managed by this Assured Workload. May be either empty or a folder resource which is a child of the Workload parent. If not specified all resources are created under the parent organization. Format: folders/{folder_id}
&quot;resourceSettings&quot;: [ # Input only. Resource properties that are used to customize workload resources. These properties (such as custom project id) will be used to create workload resources if possible. This field is optional.
{ # Represent the custom settings for the resources to be created.
Expand All @@ -334,6 +359,7 @@ <h3>Method Details</h3>
],
&quot;setupStatus&quot;: &quot;A String&quot;, # Indicates SAA enrollment status of a given workload.
},
&quot;violationNotificationsEnabled&quot;: True or False, # Optional. Indicates whether the e-mail notification for a violation is enabled for a workload. This value will be by default True, and if not present will be considered as true. This should only be updated via updateWorkload call. Any Changes to this field during the createWorkload call will not be honored. This will always be true while creating the workload.
}</pre>
</div>

Expand Down Expand Up @@ -373,6 +399,14 @@ <h3>Method Details</h3>
&quot;compliantButDisallowedServices&quot;: [ # Output only. Urls for services which are compliant for this Assured Workload, but which are currently disallowed by the ResourceUsageRestriction org policy. Invoke RestrictAllowedResources endpoint to allow your project developers to use these services in their environment.&quot;
&quot;A String&quot;,
],
&quot;controls&quot;: { # Controls enabled to the user associated with this workload # Output only. Controls associated with the customer workload
&quot;appliedOrgPolicies&quot;: [ # Output only. Org policies currently applied by this Assured Workload
{ # An org policy control applied by Assured Workloads
&quot;constraint&quot;: &quot;A String&quot;, # Output only. Constraint name of the org policy control Example: constraints/gcp.resourcelocations
&quot;version&quot;: 42, # Output only. Org policy version
},
],
},
&quot;createTime&quot;: &quot;A String&quot;, # Output only. Immutable. The Workload creation timestamp.
&quot;displayName&quot;: &quot;A String&quot;, # Required. The user-assigned display name of the Workload. When present it must be between 4 to 30 characters. Allowed characters are: lowercase and uppercase letters, numbers, hyphen, and spaces. Example: My Workload
&quot;ekmProvisioningResponse&quot;: { # External key management systems(EKM) Provisioning response # Optional. Represents the Ekm Provisioning State of the given workload.
Expand Down Expand Up @@ -410,6 +444,10 @@ <h3>Method Details</h3>
},
&quot;name&quot;: &quot;A String&quot;, # Optional. The resource name of the workload. Format: organizations/{organization}/locations/{location}/workloads/{workload} Read-only.
&quot;partner&quot;: &quot;A String&quot;, # Optional. Partner regime associated with this workload.
&quot;partnerPermissions&quot;: { # Permissions granted to the AW Partner SA account for the customer workload # Optional. Permissions granted to the AW Partner SA account for the customer workload
&quot;dataLogsViewer&quot;: True or False, # Allow the partner to view inspectability logs and monitoring violations.
&quot;remediateFolderViolations&quot;: True or False, # Allow partner to monitor folder and remediate violations
},
&quot;provisionedResourcesParent&quot;: &quot;A String&quot;, # Input only. The parent resource for the resources managed by this Assured Workload. May be either empty or a folder resource which is a child of the Workload parent. If not specified all resources are created under the parent organization. Format: folders/{folder_id}
&quot;resourceSettings&quot;: [ # Input only. Resource properties that are used to customize workload resources. These properties (such as custom project id) will be used to create workload resources if possible. This field is optional.
{ # Represent the custom settings for the resources to be created.
Expand All @@ -430,6 +468,7 @@ <h3>Method Details</h3>
],
&quot;setupStatus&quot;: &quot;A String&quot;, # Indicates SAA enrollment status of a given workload.
},
&quot;violationNotificationsEnabled&quot;: True or False, # Optional. Indicates whether the e-mail notification for a violation is enabled for a workload. This value will be by default True, and if not present will be considered as true. This should only be updated via updateWorkload call. Any Changes to this field during the createWorkload call will not be honored. This will always be true while creating the workload.
},
],
}</pre>
Expand Down Expand Up @@ -474,6 +513,14 @@ <h3>Method Details</h3>
&quot;compliantButDisallowedServices&quot;: [ # Output only. Urls for services which are compliant for this Assured Workload, but which are currently disallowed by the ResourceUsageRestriction org policy. Invoke RestrictAllowedResources endpoint to allow your project developers to use these services in their environment.&quot;
&quot;A String&quot;,
],
&quot;controls&quot;: { # Controls enabled to the user associated with this workload # Output only. Controls associated with the customer workload
&quot;appliedOrgPolicies&quot;: [ # Output only. Org policies currently applied by this Assured Workload
{ # An org policy control applied by Assured Workloads
&quot;constraint&quot;: &quot;A String&quot;, # Output only. Constraint name of the org policy control Example: constraints/gcp.resourcelocations
&quot;version&quot;: 42, # Output only. Org policy version
},
],
},
&quot;createTime&quot;: &quot;A String&quot;, # Output only. Immutable. The Workload creation timestamp.
&quot;displayName&quot;: &quot;A String&quot;, # Required. The user-assigned display name of the Workload. When present it must be between 4 to 30 characters. Allowed characters are: lowercase and uppercase letters, numbers, hyphen, and spaces. Example: My Workload
&quot;ekmProvisioningResponse&quot;: { # External key management systems(EKM) Provisioning response # Optional. Represents the Ekm Provisioning State of the given workload.
Expand Down Expand Up @@ -511,6 +558,10 @@ <h3>Method Details</h3>
},
&quot;name&quot;: &quot;A String&quot;, # Optional. The resource name of the workload. Format: organizations/{organization}/locations/{location}/workloads/{workload} Read-only.
&quot;partner&quot;: &quot;A String&quot;, # Optional. Partner regime associated with this workload.
&quot;partnerPermissions&quot;: { # Permissions granted to the AW Partner SA account for the customer workload # Optional. Permissions granted to the AW Partner SA account for the customer workload
&quot;dataLogsViewer&quot;: True or False, # Allow the partner to view inspectability logs and monitoring violations.
&quot;remediateFolderViolations&quot;: True or False, # Allow partner to monitor folder and remediate violations
},
&quot;provisionedResourcesParent&quot;: &quot;A String&quot;, # Input only. The parent resource for the resources managed by this Assured Workload. May be either empty or a folder resource which is a child of the Workload parent. If not specified all resources are created under the parent organization. Format: folders/{folder_id}
&quot;resourceSettings&quot;: [ # Input only. Resource properties that are used to customize workload resources. These properties (such as custom project id) will be used to create workload resources if possible. This field is optional.
{ # Represent the custom settings for the resources to be created.
Expand All @@ -531,6 +582,7 @@ <h3>Method Details</h3>
],
&quot;setupStatus&quot;: &quot;A String&quot;, # Indicates SAA enrollment status of a given workload.
},
&quot;violationNotificationsEnabled&quot;: True or False, # Optional. Indicates whether the e-mail notification for a violation is enabled for a workload. This value will be by default True, and if not present will be considered as true. This should only be updated via updateWorkload call. Any Changes to this field during the createWorkload call will not be honored. This will always be true while creating the workload.
}

updateMask: string, Required. The list of fields to be updated.
Expand Down Expand Up @@ -558,6 +610,14 @@ <h3>Method Details</h3>
&quot;compliantButDisallowedServices&quot;: [ # Output only. Urls for services which are compliant for this Assured Workload, but which are currently disallowed by the ResourceUsageRestriction org policy. Invoke RestrictAllowedResources endpoint to allow your project developers to use these services in their environment.&quot;
&quot;A String&quot;,
],
&quot;controls&quot;: { # Controls enabled to the user associated with this workload # Output only. Controls associated with the customer workload
&quot;appliedOrgPolicies&quot;: [ # Output only. Org policies currently applied by this Assured Workload
{ # An org policy control applied by Assured Workloads
&quot;constraint&quot;: &quot;A String&quot;, # Output only. Constraint name of the org policy control Example: constraints/gcp.resourcelocations
&quot;version&quot;: 42, # Output only. Org policy version
},
],
},
&quot;createTime&quot;: &quot;A String&quot;, # Output only. Immutable. The Workload creation timestamp.
&quot;displayName&quot;: &quot;A String&quot;, # Required. The user-assigned display name of the Workload. When present it must be between 4 to 30 characters. Allowed characters are: lowercase and uppercase letters, numbers, hyphen, and spaces. Example: My Workload
&quot;ekmProvisioningResponse&quot;: { # External key management systems(EKM) Provisioning response # Optional. Represents the Ekm Provisioning State of the given workload.
Expand Down Expand Up @@ -595,6 +655,10 @@ <h3>Method Details</h3>
},
&quot;name&quot;: &quot;A String&quot;, # Optional. The resource name of the workload. Format: organizations/{organization}/locations/{location}/workloads/{workload} Read-only.
&quot;partner&quot;: &quot;A String&quot;, # Optional. Partner regime associated with this workload.
&quot;partnerPermissions&quot;: { # Permissions granted to the AW Partner SA account for the customer workload # Optional. Permissions granted to the AW Partner SA account for the customer workload
&quot;dataLogsViewer&quot;: True or False, # Allow the partner to view inspectability logs and monitoring violations.
&quot;remediateFolderViolations&quot;: True or False, # Allow partner to monitor folder and remediate violations
},
&quot;provisionedResourcesParent&quot;: &quot;A String&quot;, # Input only. The parent resource for the resources managed by this Assured Workload. May be either empty or a folder resource which is a child of the Workload parent. If not specified all resources are created under the parent organization. Format: folders/{folder_id}
&quot;resourceSettings&quot;: [ # Input only. Resource properties that are used to customize workload resources. These properties (such as custom project id) will be used to create workload resources if possible. This field is optional.
{ # Represent the custom settings for the resources to be created.
Expand All @@ -615,6 +679,7 @@ <h3>Method Details</h3>
],
&quot;setupStatus&quot;: &quot;A String&quot;, # Indicates SAA enrollment status of a given workload.
},
&quot;violationNotificationsEnabled&quot;: True or False, # Optional. Indicates whether the e-mail notification for a violation is enabled for a workload. This value will be by default True, and if not present will be considered as true. This should only be updated via updateWorkload call. Any Changes to this field during the createWorkload call will not be honored. This will always be true while creating the workload.
}</pre>
</div>

Expand Down

0 comments on commit ef876a9

Please sign in to comment.