Api-roll 46: 2017-03-06

generated/googleapis_beta/lib/cloudkms/v1beta1.dart

 // This is a generated file (see the discoveryapis_generator project).
 
 library googleapis_beta.cloudkms.v1beta1;
 
 import 'dart:core' as core;
 import 'dart:async' as async;
 import 'dart:convert' as convert;
 
 import 'package:_discoveryapis_commons/_discoveryapis_commons.dart' as commons;
 import 'package:http/http.dart' as http;
@@ skipping 80 matching lines @@
   }
 
   /**
    * Lists information about the supported locations for this service.
    *
    * Request parameters:
    *
    * [name] - The resource that owns the locations collection, if applicable.
    * Value must have pattern "^projects/[^/]+$".
    *
-   * [filter] - The standard list filter.
-   *
    * [pageToken] - The standard list page token.
    *
    * [pageSize] - The standard list page size.
    *
+   * [filter] - The standard list filter.
+   *
    * Completes with a [ListLocationsResponse].
    *
    * Completes with a [commons.ApiRequestError] if the API endpoint returned an
    * error.
    *
    * If the used [http.Client] completes with an error when making a REST call,
    * this method will complete with the same error.
    */
-  async.Future<ListLocationsResponse> list(core.String name, {core.String filter, core.String pageToken, core.int pageSize}) {
+  async.Future<ListLocationsResponse> list(core.String name, {core.String pageToken, core.int pageSize, core.String filter}) {
     var _url = null;
     var _queryParams = new core.Map();
     var _uploadMedia = null;
     var _uploadOptions = null;
     var _downloadOptions = commons.DownloadOptions.Metadata;
     var _body = null;
 
     if (name == null) {
       throw new core.ArgumentError("Parameter name is required.");
     }
-    if (filter != null) {
-      _queryParams["filter"] = [filter];
-    }
     if (pageToken != null) {
       _queryParams["pageToken"] = [pageToken];
     }
     if (pageSize != null) {
       _queryParams["pageSize"] = ["${pageSize}"];
     }
+    if (filter != null) {
+      _queryParams["filter"] = [filter];
+    }
 
     _url = 'v1beta1/' + commons.Escaper.ecapeVariableReserved('$name') + '/locations';
 
     var _response = _requester.request(_url,
                                        "GET",
                                        body: _body,
                                        queryParams: _queryParams,
                                        uploadOptions: _uploadOptions,
                                        uploadMedia: _uploadMedia,
                                        downloadOptions: _downloadOptions);
@@ skipping 251 matching lines @@
                                        uploadMedia: _uploadMedia,
                                        downloadOptions: _downloadOptions);
     return _response.then((data) => new Policy.fromJson(data));
   }
 
   /**
    * Returns permissions that a caller has on the specified resource.
    * If the resource does not exist, this will return an empty set of
    * permissions, not a NOT_FOUND error.
    *
+   * Note: This operation is designed to be used for building permission-aware
+   * UIs and command-line tools, not for authorization checking. This operation
+   * may "fail open" without warning.
+   *
    * [request] - The metadata request object.
    *
    * Request parameters:
    *
    * [resource] - REQUIRED: The resource for which the policy detail is being
    * requested.
    * `resource` is usually specified as a path. For example, a Project
    * resource is specified as `projects/{project}`.
    * Value must have pattern "^projects/[^/]+/locations/[^/]+/keyRings/[^/]+$".
    *
@@ skipping 440 matching lines @@
                                        uploadMedia: _uploadMedia,
                                        downloadOptions: _downloadOptions);
     return _response.then((data) => new Policy.fromJson(data));
   }
 
   /**
    * Returns permissions that a caller has on the specified resource.
    * If the resource does not exist, this will return an empty set of
    * permissions, not a NOT_FOUND error.
    *
+   * Note: This operation is designed to be used for building permission-aware
+   * UIs and command-line tools, not for authorization checking. This operation
+   * may "fail open" without warning.
+   *
    * [request] - The metadata request object.
    *
    * Request parameters:
    *
    * [resource] - REQUIRED: The resource for which the policy detail is being
    * requested.
    * `resource` is usually specified as a path. For example, a Project
    * resource is specified as `projects/{project}`.
    * Value must have pattern
    * "^projects/[^/]+/locations/[^/]+/keyRings/[^/]+/cryptoKeys/[^/]+$".
@@ skipping 409 matching lines @@
 
 }
 
 
 
 /**
  * Specifies the audit configuration for a service.
  * It consists of which permission types are logged, and what identities, if
  * any, are exempted from logging.
  * An AuditConifg must have one or more AuditLogConfigs.
+ *
+ * If there are AuditConfigs for both `allServices` and a specific service,
+ * the union of the two AuditConfigs is used for that service: the log_types
+ * specified in each AuditConfig are enabled, and the exempted_members in each
+ * AuditConfig are exempted.
+ * Example Policy with multiple AuditConfigs:
+ * {
+ *   "audit_configs": [
+ *     {
+ *       "service": "allServices"
+ *       "audit_log_configs": [
+ *         {
+ *           "log_type": "DATA_READ",
+ *           "exempted_members": [
+ *             "user:foo@gmail.com"
+ *           ]
+ *         },
+ *         {
+ *           "log_type": "DATA_WRITE",
+ *         },
+ *         {
+ *           "log_type": "ADMIN_READ",
+ *         }
+ *       ]
+ *     },
+ *     {
+ *       "service": "fooservice@googleapis.com"
+ *       "audit_log_configs": [
+ *         {
+ *           "log_type": "DATA_READ",
+ *         },
+ *         {
+ *           "log_type": "DATA_WRITE",
+ *           "exempted_members": [
+ *             "user:bar@gmail.com"
+ *           ]
+ *         }
+ *       ]
+ *     }
+ *   ]
+ * }
+ * For fooservice, this policy enables DATA_READ, DATA_WRITE and ADMIN_READ
+ * logging. It also exempts foo@gmail.com from DATA_READ logging, and
+ * bar@gmail.com from DATA_WRITE logging.
  */
 class AuditConfig {
   /**
    * The configuration for logging of each type of permission.
    * Next ID: 4
    */
   core.List<AuditLogConfig> auditLogConfigs;
-  /**
-   * Specifies the identities that are exempted from "data access" audit
-   * logging for the `service` specified above.
-   * Follows the same format of Binding.members.
-   * This field is deprecated in favor of per-permission-type exemptions.
-   */
   core.List<core.String> exemptedMembers;
   /**
    * Specifies a service that will be enabled for audit logging.
    * For example, `resourcemanager`, `storage`, `compute`.
    * `allServices` is a special value that covers all services.
    */
   core.String service;
 
   AuditConfig();
 
@@ skipping 158 matching lines @@
 /** A condition to be met. */
 class Condition {
   /**
    * Trusted attributes supplied by the IAM system.
    * Possible string values are:
    * - "NO_ATTR" : Default non-attribute.
    * - "AUTHORITY" : Either principal or (if present) authority selector.
    * - "ATTRIBUTION" : The principal (even if an authority selector is present),
    * which
    * must only be used for attribution, not authorization.
+   * - "APPROVER" : An approver (distinct from the requester) that has
+   * authorized this
+   * request.
+   * When used with IN, the condition indicates that one of the approvers
+   * associated with the request matches the specified principal, or is a
+   * member of the specified group. Approvers can only grant additional
+   * access, and are thus only used in a strictly positive context
+   * (e.g. ALLOW/IN or DENY/NOT_IN).
+   * See: go/rpc-security-policy-dynamicauth.
    */
   core.String iam;
   /**
    * An operator to apply the subject with.
    * Possible string values are:
    * - "NO_OP" : Default no-op.
    * - "EQUALS" : DEPRECATED. Use IN instead.
    * - "NOT_EQUALS" : DEPRECATED. Use NOT_IN instead.
    * - "IN" : Set-inclusion check.
    * - "NOT_IN" : Set-exclusion check.
@@ skipping 1133 matching lines @@
   }
 
   core.Map toJson() {
     var _json = new core.Map();
     if (cryptoKeyVersionId != null) {
       _json["cryptoKeyVersionId"] = cryptoKeyVersionId;
     }
     return _json;
   }
 }