Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(75)

Issues Search
    My Issues | Starred     Open | Closed | All

Side by Side Diff: discovery/googleapis/cloudresourcemanager__v1.json

Issue 2936613002: Api-Roll 50: 2017-06-12 (Closed)
Patch Set: Created 3 years, 6 months ago
Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.
Jump to:
View unified diff | Download patch
« no previous file with comments | « discovery/googleapis/cloudkms__v1.json ('k') | discovery/googleapis/cloudtrace__v1.json » ('j') | no next file with comments »
Toggle Intra-line Diffs ('i') | Expand Comments ('e') | Collapse Comments ('c') | Show Comments Hide Comments ('s')
OLDNEW
1 { 1 {
2 "auth": { 2 "auth": {
3 "oauth2": { 3 "oauth2": {
4 "scopes": { 4 "scopes": {
5 "https://www.googleapis.com/auth/cloud-platform.read-only": { 5 "https://www.googleapis.com/auth/cloud-platform.read-only": {
6 "description": "View your data across Google Cloud Platform services" 6 "description": "View your data across Google Cloud Platform services"
7 }, 7 },
8 "https://www.googleapis.com/auth/cloud-platform": { 8 "https://www.googleapis.com/auth/cloud-platform": {
9 "description": "View and manage your data across Google Clou d Platform services" 9 "description": "View and manage your data across Google Clou d Platform services"
10 } 10 }
(...skipping 10 matching lines...) Expand all
21 "icons": { 21 "icons": {
22 "x16": "http://www.google.com/images/icons/product/search-16.gif", 22 "x16": "http://www.google.com/images/icons/product/search-16.gif",
23 "x32": "http://www.google.com/images/icons/product/search-32.gif" 23 "x32": "http://www.google.com/images/icons/product/search-32.gif"
24 }, 24 },
25 "id": "cloudresourcemanager:v1", 25 "id": "cloudresourcemanager:v1",
26 "kind": "discovery#restDescription", 26 "kind": "discovery#restDescription",
27 "name": "cloudresourcemanager", 27 "name": "cloudresourcemanager",
28 "ownerDomain": "google.com", 28 "ownerDomain": "google.com",
29 "ownerName": "Google", 29 "ownerName": "Google",
30 "parameters": { 30 "parameters": {
31 "quotaUser": {
32 "description": "Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exc eed 40 characters.",
33 "location": "query",
34 "type": "string"
35 },
36 "pp": {
37 "default": "true",
38 "description": "Pretty-print response.",
39 "location": "query",
40 "type": "boolean"
41 },
42 "bearer_token": {
43 "description": "OAuth bearer token.",
44 "location": "query",
45 "type": "string"
46 },
47 "oauth_token": {
48 "description": "OAuth 2.0 token for the current user.",
49 "location": "query",
50 "type": "string"
51 },
52 "upload_protocol": {
53 "description": "Upload protocol for media (e.g. \"raw\", \"multipart \").",
54 "location": "query",
55 "type": "string"
56 },
57 "prettyPrint": {
58 "default": "true",
59 "description": "Returns response with indentations and line breaks." ,
60 "location": "query",
61 "type": "boolean"
62 },
63 "fields": {
64 "description": "Selector specifying which fields to include in a par tial response.",
65 "location": "query",
66 "type": "string"
67 },
68 "uploadType": {
69 "description": "Legacy upload protocol for media (e.g. \"media\", \" multipart\").",
70 "location": "query",
71 "type": "string"
72 },
73 "callback": { 31 "callback": {
74 "description": "JSONP", 32 "description": "JSONP",
75 "location": "query", 33 "location": "query",
76 "type": "string" 34 "type": "string"
77 }, 35 },
78 "$.xgafv": { 36 "$.xgafv": {
79 "description": "V1 error format.", 37 "description": "V1 error format.",
80 "enum": [ 38 "enum": [
81 "1", 39 "1",
82 "2" 40 "2"
(...skipping 14 matching lines...) Expand all
97 "proto" 55 "proto"
98 ], 56 ],
99 "enumDescriptions": [ 57 "enumDescriptions": [
100 "Responses with Content-Type of application/json", 58 "Responses with Content-Type of application/json",
101 "Media download with context-dependent Content-Type", 59 "Media download with context-dependent Content-Type",
102 "Responses with Content-Type of application/x-protobuf" 60 "Responses with Content-Type of application/x-protobuf"
103 ], 61 ],
104 "location": "query", 62 "location": "query",
105 "type": "string" 63 "type": "string"
106 }, 64 },
65 "key": {
66 "description": "API key. Your API key identifies your project and pr ovides you with API access, quota, and reports. Required unless you provide an O Auth 2.0 token.",
67 "location": "query",
68 "type": "string"
69 },
107 "access_token": { 70 "access_token": {
108 "description": "OAuth access token.", 71 "description": "OAuth access token.",
109 "location": "query", 72 "location": "query",
110 "type": "string" 73 "type": "string"
111 }, 74 },
112 "key": { 75 "quotaUser": {
113 "description": "API key. Your API key identifies your project and pr ovides you with API access, quota, and reports. Required unless you provide an O Auth 2.0 token.", 76 "description": "Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exc eed 40 characters.",
77 "location": "query",
78 "type": "string"
79 },
80 "pp": {
81 "default": "true",
82 "description": "Pretty-print response.",
83 "location": "query",
84 "type": "boolean"
85 },
86 "bearer_token": {
87 "description": "OAuth bearer token.",
88 "location": "query",
89 "type": "string"
90 },
91 "oauth_token": {
92 "description": "OAuth 2.0 token for the current user.",
93 "location": "query",
94 "type": "string"
95 },
96 "upload_protocol": {
97 "description": "Upload protocol for media (e.g. \"raw\", \"multipart \").",
98 "location": "query",
99 "type": "string"
100 },
101 "prettyPrint": {
102 "default": "true",
103 "description": "Returns response with indentations and line breaks." ,
104 "location": "query",
105 "type": "boolean"
106 },
107 "fields": {
108 "description": "Selector specifying which fields to include in a par tial response.",
109 "location": "query",
110 "type": "string"
111 },
112 "uploadType": {
113 "description": "Legacy upload protocol for media (e.g. \"media\", \" multipart\").",
114 "location": "query", 114 "location": "query",
115 "type": "string" 115 "type": "string"
116 } 116 }
117 }, 117 },
118 "protocol": "rest", 118 "protocol": "rest",
119 "resources": { 119 "resources": {
120 "organizations": { 120 "organizations": {
121 "methods": { 121 "methods": {
122 "testIamPermissions": {
123 "description": "Returns permissions that a caller has on the specified Organization.\nThe `resource` field should be the organization's reso urce name,\ne.g. \"organizations/123\".",
124 "httpMethod": "POST",
125 "id": "cloudresourcemanager.organizations.testIamPermissions ",
126 "parameterOrder": [
127 "resource"
128 ],
129 "parameters": {
130 "resource": {
131 "description": "REQUIRED: The resource for which the policy detail is being requested.\nSee the operation documentation for the appr opriate value for this field.",
132 "location": "path",
133 "pattern": "^organizations/[^/]+$",
134 "required": true,
135 "type": "string"
136 }
137 },
138 "path": "v1/{+resource}:testIamPermissions",
139 "request": {
140 "$ref": "TestIamPermissionsRequest"
141 },
142 "response": {
143 "$ref": "TestIamPermissionsResponse"
144 },
145 "scopes": [
146 "https://www.googleapis.com/auth/cloud-platform",
147 "https://www.googleapis.com/auth/cloud-platform.read-onl y"
148 ]
149 },
122 "clearOrgPolicy": { 150 "clearOrgPolicy": {
123 "description": "Clears a `Policy` from a resource.", 151 "description": "Clears a `Policy` from a resource.",
124 "httpMethod": "POST", 152 "httpMethod": "POST",
125 "id": "cloudresourcemanager.organizations.clearOrgPolicy", 153 "id": "cloudresourcemanager.organizations.clearOrgPolicy",
126 "parameterOrder": [ 154 "parameterOrder": [
127 "resource" 155 "resource"
128 ], 156 ],
129 "parameters": { 157 "parameters": {
130 "resource": { 158 "resource": {
131 "description": "Name of the resource for the `Policy ` to clear.", 159 "description": "Name of the resource for the `Policy ` to clear.",
(...skipping 145 matching lines...) Expand 10 before | Expand all | Expand 10 after
277 "$ref": "GetIamPolicyRequest" 305 "$ref": "GetIamPolicyRequest"
278 }, 306 },
279 "response": { 307 "response": {
280 "$ref": "Policy" 308 "$ref": "Policy"
281 }, 309 },
282 "scopes": [ 310 "scopes": [
283 "https://www.googleapis.com/auth/cloud-platform", 311 "https://www.googleapis.com/auth/cloud-platform",
284 "https://www.googleapis.com/auth/cloud-platform.read-onl y" 312 "https://www.googleapis.com/auth/cloud-platform.read-onl y"
285 ] 313 ]
286 }, 314 },
287 "search": {
288 "description": "Searches Organization resources that are vis ible to the user and satisfy\nthe specified filter. This method returns Organiza tions in an unspecified\norder. New Organizations do not necessarily appear at t he end of the\nresults.",
289 "httpMethod": "POST",
290 "id": "cloudresourcemanager.organizations.search",
291 "parameterOrder": [],
292 "parameters": {},
293 "path": "v1/organizations:search",
294 "request": {
295 "$ref": "SearchOrganizationsRequest"
296 },
297 "response": {
298 "$ref": "SearchOrganizationsResponse"
299 },
300 "scopes": [
301 "https://www.googleapis.com/auth/cloud-platform",
302 "https://www.googleapis.com/auth/cloud-platform.read-onl y"
303 ]
304 },
305 "getOrgPolicy": { 315 "getOrgPolicy": {
306 "description": "Gets a `Policy` on a resource.\n\nIf no `Pol icy` is set on the resource, a `Policy` is returned with default\nvalues includi ng `POLICY_TYPE_NOT_SET` for the `policy_type oneof`. The\n`etag` value can be u sed with `SetOrgPolicy()` to create or update a\n`Policy` during read-modify-wri te.", 316 "description": "Gets a `Policy` on a resource.\n\nIf no `Pol icy` is set on the resource, a `Policy` is returned with default\nvalues includi ng `POLICY_TYPE_NOT_SET` for the `policy_type oneof`. The\n`etag` value can be u sed with `SetOrgPolicy()` to create or update a\n`Policy` during read-modify-wri te.",
307 "httpMethod": "POST", 317 "httpMethod": "POST",
308 "id": "cloudresourcemanager.organizations.getOrgPolicy", 318 "id": "cloudresourcemanager.organizations.getOrgPolicy",
309 "parameterOrder": [ 319 "parameterOrder": [
310 "resource" 320 "resource"
311 ], 321 ],
312 "parameters": { 322 "parameters": {
313 "resource": { 323 "resource": {
314 "description": "Name of the resource the `Policy` is set on.", 324 "description": "Name of the resource the `Policy` is set on.",
315 "location": "path", 325 "location": "path",
316 "pattern": "^organizations/[^/]+$", 326 "pattern": "^organizations/[^/]+$",
317 "required": true, 327 "required": true,
318 "type": "string" 328 "type": "string"
319 } 329 }
320 }, 330 },
321 "path": "v1/{+resource}:getOrgPolicy", 331 "path": "v1/{+resource}:getOrgPolicy",
322 "request": { 332 "request": {
323 "$ref": "GetOrgPolicyRequest" 333 "$ref": "GetOrgPolicyRequest"
324 }, 334 },
325 "response": { 335 "response": {
326 "$ref": "OrgPolicy" 336 "$ref": "OrgPolicy"
327 }, 337 },
328 "scopes": [ 338 "scopes": [
329 "https://www.googleapis.com/auth/cloud-platform", 339 "https://www.googleapis.com/auth/cloud-platform",
330 "https://www.googleapis.com/auth/cloud-platform.read-onl y" 340 "https://www.googleapis.com/auth/cloud-platform.read-onl y"
331 ] 341 ]
332 }, 342 },
333 "get": { 343 "search": {
334 "description": "Fetches an Organization resource identified by the specified resource name.", 344 "description": "Searches Organization resources that are vis ible to the user and satisfy\nthe specified filter. This method returns Organiza tions in an unspecified\norder. New Organizations do not necessarily appear at t he end of the\nresults.",
335 "httpMethod": "GET", 345 "httpMethod": "POST",
336 "id": "cloudresourcemanager.organizations.get", 346 "id": "cloudresourcemanager.organizations.search",
337 "parameterOrder": [ 347 "parameterOrder": [],
338 "name" 348 "parameters": {},
339 ], 349 "path": "v1/organizations:search",
340 "parameters": { 350 "request": {
341 "name": { 351 "$ref": "SearchOrganizationsRequest"
342 "description": "The resource name of the Organizatio n to fetch, e.g. \"organizations/1234\".",
343 "location": "path",
344 "pattern": "^organizations/[^/]+$",
345 "required": true,
346 "type": "string"
347 }
348 }, 352 },
349 "path": "v1/{+name}",
350 "response": { 353 "response": {
351 "$ref": "Organization" 354 "$ref": "SearchOrganizationsResponse"
352 }, 355 },
353 "scopes": [ 356 "scopes": [
354 "https://www.googleapis.com/auth/cloud-platform", 357 "https://www.googleapis.com/auth/cloud-platform",
355 "https://www.googleapis.com/auth/cloud-platform.read-onl y" 358 "https://www.googleapis.com/auth/cloud-platform.read-onl y"
356 ] 359 ]
357 }, 360 },
358 "getEffectiveOrgPolicy": { 361 "getEffectiveOrgPolicy": {
359 "description": "Gets the effective `Policy` on a resource. T his is the result of merging\n`Policies` in the resource hierarchy. The returned `Policy` will not have\nan `etag`set because it is a computed `Policy` across m ultiple resources.", 362 "description": "Gets the effective `Policy` on a resource. T his is the result of merging\n`Policies` in the resource hierarchy. The returned `Policy` will not have\nan `etag`set because it is a computed `Policy` across m ultiple resources.",
360 "httpMethod": "POST", 363 "httpMethod": "POST",
361 "id": "cloudresourcemanager.organizations.getEffectiveOrgPol icy", 364 "id": "cloudresourcemanager.organizations.getEffectiveOrgPol icy",
(...skipping 14 matching lines...) Expand all
376 "$ref": "GetEffectiveOrgPolicyRequest" 379 "$ref": "GetEffectiveOrgPolicyRequest"
377 }, 380 },
378 "response": { 381 "response": {
379 "$ref": "OrgPolicy" 382 "$ref": "OrgPolicy"
380 }, 383 },
381 "scopes": [ 384 "scopes": [
382 "https://www.googleapis.com/auth/cloud-platform", 385 "https://www.googleapis.com/auth/cloud-platform",
383 "https://www.googleapis.com/auth/cloud-platform.read-onl y" 386 "https://www.googleapis.com/auth/cloud-platform.read-onl y"
384 ] 387 ]
385 }, 388 },
386 "testIamPermissions": { 389 "get": {
387 "description": "Returns permissions that a caller has on the specified Organization.\nThe `resource` field should be the organization's reso urce name,\ne.g. \"organizations/123\".", 390 "description": "Fetches an Organization resource identified by the specified resource name.",
388 "httpMethod": "POST", 391 "httpMethod": "GET",
389 "id": "cloudresourcemanager.organizations.testIamPermissions ", 392 "id": "cloudresourcemanager.organizations.get",
390 "parameterOrder": [ 393 "parameterOrder": [
391 "resource" 394 "name"
392 ], 395 ],
393 "parameters": { 396 "parameters": {
394 "resource": { 397 "name": {
395 "description": "REQUIRED: The resource for which the policy detail is being requested.\nSee the operation documentation for the appr opriate value for this field.", 398 "description": "The resource name of the Organizatio n to fetch, e.g. \"organizations/1234\".",
396 "location": "path", 399 "location": "path",
397 "pattern": "^organizations/[^/]+$", 400 "pattern": "^organizations/[^/]+$",
398 "required": true, 401 "required": true,
399 "type": "string" 402 "type": "string"
400 } 403 }
401 }, 404 },
402 "path": "v1/{+resource}:testIamPermissions", 405 "path": "v1/{+name}",
403 "request": {
404 "$ref": "TestIamPermissionsRequest"
405 },
406 "response": { 406 "response": {
407 "$ref": "TestIamPermissionsResponse" 407 "$ref": "Organization"
408 }, 408 },
409 "scopes": [ 409 "scopes": [
410 "https://www.googleapis.com/auth/cloud-platform", 410 "https://www.googleapis.com/auth/cloud-platform",
411 "https://www.googleapis.com/auth/cloud-platform.read-onl y" 411 "https://www.googleapis.com/auth/cloud-platform.read-onl y"
412 ] 412 ]
413 } 413 }
414 } 414 }
415 }, 415 },
416 "liens": { 416 "liens": {
417 "methods": { 417 "methods": {
(...skipping 98 matching lines...) Expand 10 before | Expand all | Expand 10 after
516 }, 516 },
517 "scopes": [ 517 "scopes": [
518 "https://www.googleapis.com/auth/cloud-platform", 518 "https://www.googleapis.com/auth/cloud-platform",
519 "https://www.googleapis.com/auth/cloud-platform.read-onl y" 519 "https://www.googleapis.com/auth/cloud-platform.read-onl y"
520 ] 520 ]
521 } 521 }
522 } 522 }
523 }, 523 },
524 "folders": { 524 "folders": {
525 "methods": { 525 "methods": {
526 "clearOrgPolicy": { 526 "listOrgPolicies": {
527 "description": "Clears a `Policy` from a resource.", 527 "description": "Lists all the `Policies` set for a particula r resource.",
528 "httpMethod": "POST", 528 "httpMethod": "POST",
529 "id": "cloudresourcemanager.folders.clearOrgPolicy", 529 "id": "cloudresourcemanager.folders.listOrgPolicies",
530 "parameterOrder": [ 530 "parameterOrder": [
531 "resource" 531 "resource"
532 ], 532 ],
533 "parameters": { 533 "parameters": {
534 "resource": { 534 "resource": {
535 "description": "Name of the resource for the `Policy ` to clear.", 535 "description": "Name of the resource to list Policie s for.",
536 "location": "path", 536 "location": "path",
537 "pattern": "^folders/[^/]+$", 537 "pattern": "^folders/[^/]+$",
538 "required": true, 538 "required": true,
539 "type": "string" 539 "type": "string"
540 } 540 }
541 }, 541 },
542 "path": "v1/{+resource}:clearOrgPolicy", 542 "path": "v1/{+resource}:listOrgPolicies",
543 "request": { 543 "request": {
544 "$ref": "ClearOrgPolicyRequest" 544 "$ref": "ListOrgPoliciesRequest"
545 }, 545 },
546 "response": { 546 "response": {
547 "$ref": "Empty" 547 "$ref": "ListOrgPoliciesResponse"
548 }, 548 },
549 "scopes": [ 549 "scopes": [
550 "https://www.googleapis.com/auth/cloud-platform" 550 "https://www.googleapis.com/auth/cloud-platform",
551 ] 551 "https://www.googleapis.com/auth/cloud-platform.read-onl y"
552 },
553 "setOrgPolicy": {
554 "description": "Updates the specified `Policy` on the resour ce. Creates a new `Policy` for\nthat `Constraint` on the resource if one does no t exist.\n\nNot supplying an `etag` on the request `Policy` results in an uncond itional\nwrite of the `Policy`.",
555 "httpMethod": "POST",
556 "id": "cloudresourcemanager.folders.setOrgPolicy",
557 "parameterOrder": [
558 "resource"
559 ],
560 "parameters": {
561 "resource": {
562 "description": "Resource name of the resource to att ach the `Policy`.",
563 "location": "path",
564 "pattern": "^folders/[^/]+$",
565 "required": true,
566 "type": "string"
567 }
568 },
569 "path": "v1/{+resource}:setOrgPolicy",
570 "request": {
571 "$ref": "SetOrgPolicyRequest"
572 },
573 "response": {
574 "$ref": "OrgPolicy"
575 },
576 "scopes": [
577 "https://www.googleapis.com/auth/cloud-platform"
578 ] 552 ]
579 }, 553 },
580 "listAvailableOrgPolicyConstraints": { 554 "listAvailableOrgPolicyConstraints": {
581 "description": "Lists `Constraints` that could be applied on the specified resource.", 555 "description": "Lists `Constraints` that could be applied on the specified resource.",
582 "httpMethod": "POST", 556 "httpMethod": "POST",
583 "id": "cloudresourcemanager.folders.listAvailableOrgPolicyCo nstraints", 557 "id": "cloudresourcemanager.folders.listAvailableOrgPolicyCo nstraints",
584 "parameterOrder": [ 558 "parameterOrder": [
585 "resource" 559 "resource"
586 ], 560 ],
587 "parameters": { 561 "parameters": {
(...skipping 10 matching lines...) Expand all
598 "$ref": "ListAvailableOrgPolicyConstraintsRequest" 572 "$ref": "ListAvailableOrgPolicyConstraintsRequest"
599 }, 573 },
600 "response": { 574 "response": {
601 "$ref": "ListAvailableOrgPolicyConstraintsResponse" 575 "$ref": "ListAvailableOrgPolicyConstraintsResponse"
602 }, 576 },
603 "scopes": [ 577 "scopes": [
604 "https://www.googleapis.com/auth/cloud-platform", 578 "https://www.googleapis.com/auth/cloud-platform",
605 "https://www.googleapis.com/auth/cloud-platform.read-onl y" 579 "https://www.googleapis.com/auth/cloud-platform.read-onl y"
606 ] 580 ]
607 }, 581 },
608 "listOrgPolicies": {
609 "description": "Lists all the `Policies` set for a particula r resource.",
610 "httpMethod": "POST",
611 "id": "cloudresourcemanager.folders.listOrgPolicies",
612 "parameterOrder": [
613 "resource"
614 ],
615 "parameters": {
616 "resource": {
617 "description": "Name of the resource to list Policie s for.",
618 "location": "path",
619 "pattern": "^folders/[^/]+$",
620 "required": true,
621 "type": "string"
622 }
623 },
624 "path": "v1/{+resource}:listOrgPolicies",
625 "request": {
626 "$ref": "ListOrgPoliciesRequest"
627 },
628 "response": {
629 "$ref": "ListOrgPoliciesResponse"
630 },
631 "scopes": [
632 "https://www.googleapis.com/auth/cloud-platform",
633 "https://www.googleapis.com/auth/cloud-platform.read-onl y"
634 ]
635 },
636 "getOrgPolicy": { 582 "getOrgPolicy": {
637 "description": "Gets a `Policy` on a resource.\n\nIf no `Pol icy` is set on the resource, a `Policy` is returned with default\nvalues includi ng `POLICY_TYPE_NOT_SET` for the `policy_type oneof`. The\n`etag` value can be u sed with `SetOrgPolicy()` to create or update a\n`Policy` during read-modify-wri te.", 583 "description": "Gets a `Policy` on a resource.\n\nIf no `Pol icy` is set on the resource, a `Policy` is returned with default\nvalues includi ng `POLICY_TYPE_NOT_SET` for the `policy_type oneof`. The\n`etag` value can be u sed with `SetOrgPolicy()` to create or update a\n`Policy` during read-modify-wri te.",
638 "httpMethod": "POST", 584 "httpMethod": "POST",
639 "id": "cloudresourcemanager.folders.getOrgPolicy", 585 "id": "cloudresourcemanager.folders.getOrgPolicy",
640 "parameterOrder": [ 586 "parameterOrder": [
641 "resource" 587 "resource"
642 ], 588 ],
643 "parameters": { 589 "parameters": {
644 "resource": { 590 "resource": {
645 "description": "Name of the resource the `Policy` is set on.", 591 "description": "Name of the resource the `Policy` is set on.",
(...skipping 35 matching lines...) Expand 10 before | Expand all | Expand 10 after
681 "request": { 627 "request": {
682 "$ref": "GetEffectiveOrgPolicyRequest" 628 "$ref": "GetEffectiveOrgPolicyRequest"
683 }, 629 },
684 "response": { 630 "response": {
685 "$ref": "OrgPolicy" 631 "$ref": "OrgPolicy"
686 }, 632 },
687 "scopes": [ 633 "scopes": [
688 "https://www.googleapis.com/auth/cloud-platform", 634 "https://www.googleapis.com/auth/cloud-platform",
689 "https://www.googleapis.com/auth/cloud-platform.read-onl y" 635 "https://www.googleapis.com/auth/cloud-platform.read-onl y"
690 ] 636 ]
691 } 637 },
692 } 638 "clearOrgPolicy": {
693 }, 639 "description": "Clears a `Policy` from a resource.",
694 "projects": {
695 "methods": {
696 "testIamPermissions": {
697 "description": "Returns permissions that a caller has on the specified Project.",
698 "httpMethod": "POST", 640 "httpMethod": "POST",
699 "id": "cloudresourcemanager.projects.testIamPermissions", 641 "id": "cloudresourcemanager.folders.clearOrgPolicy",
700 "parameterOrder": [ 642 "parameterOrder": [
701 "resource" 643 "resource"
702 ], 644 ],
703 "parameters": { 645 "parameters": {
704 "resource": { 646 "resource": {
705 "description": "REQUIRED: The resource for which the policy detail is being requested.\nSee the operation documentation for the appr opriate value for this field.", 647 "description": "Name of the resource for the `Policy ` to clear.",
706 "location": "path", 648 "location": "path",
649 "pattern": "^folders/[^/]+$",
707 "required": true, 650 "required": true,
708 "type": "string" 651 "type": "string"
709 } 652 }
710 }, 653 },
711 "path": "v1/projects/{resource}:testIamPermissions", 654 "path": "v1/{+resource}:clearOrgPolicy",
712 "request": { 655 "request": {
713 "$ref": "TestIamPermissionsRequest" 656 "$ref": "ClearOrgPolicyRequest"
714 }, 657 },
715 "response": { 658 "response": {
716 "$ref": "TestIamPermissionsResponse"
717 },
718 "scopes": [
719 "https://www.googleapis.com/auth/cloud-platform",
720 "https://www.googleapis.com/auth/cloud-platform.read-onl y"
721 ]
722 },
723 "delete": {
724 "description": "Marks the Project identified by the specifie d\n`project_id` (for example, `my-project-123`) for deletion.\nThis method will only affect the Project if the following criteria are met:\n\n+ The Project does not have a billing account associated with it.\n+ The Project has a lifecycle s tate of\nACTIVE.\n\nThis method changes the Project's lifecycle state from\nACTI VE\nto DELETE_REQUESTED.\nThe deletion starts at an unspecified time,\nat which point the Project is no longer accessible.\n\nUntil the deletion completes, you can check the lifecycle state\nchecked by retrieving the Project with GetProject ,\nand the Project remains visible to ListProjects.\nHowever, you cannot update the project.\n\nAfter the deletion completes, the Project is not retrievable by\ nthe GetProject and\nListProjects methods.\n\nThe caller must have modify permi ssions for this Project.",
725 "httpMethod": "DELETE",
726 "id": "cloudresourcemanager.projects.delete",
727 "parameterOrder": [
728 "projectId"
729 ],
730 "parameters": {
731 "projectId": {
732 "description": "The Project ID (for example, `foo-ba r-123`).\n\nRequired.",
733 "location": "path",
734 "required": true,
735 "type": "string"
736 }
737 },
738 "path": "v1/projects/{projectId}",
739 "response": {
740 "$ref": "Empty" 659 "$ref": "Empty"
741 }, 660 },
742 "scopes": [ 661 "scopes": [
743 "https://www.googleapis.com/auth/cloud-platform" 662 "https://www.googleapis.com/auth/cloud-platform"
744 ] 663 ]
745 }, 664 },
746 "clearOrgPolicy": { 665 "setOrgPolicy": {
747 "description": "Clears a `Policy` from a resource.", 666 "description": "Updates the specified `Policy` on the resour ce. Creates a new `Policy` for\nthat `Constraint` on the resource if one does no t exist.\n\nNot supplying an `etag` on the request `Policy` results in an uncond itional\nwrite of the `Policy`.",
748 "httpMethod": "POST", 667 "httpMethod": "POST",
749 "id": "cloudresourcemanager.projects.clearOrgPolicy", 668 "id": "cloudresourcemanager.folders.setOrgPolicy",
750 "parameterOrder": [ 669 "parameterOrder": [
751 "resource" 670 "resource"
752 ], 671 ],
753 "parameters": { 672 "parameters": {
754 "resource": { 673 "resource": {
755 "description": "Name of the resource for the `Policy ` to clear.", 674 "description": "Resource name of the resource to att ach the `Policy`.",
756 "location": "path", 675 "location": "path",
757 "pattern": "^projects/[^/]+$", 676 "pattern": "^folders/[^/]+$",
758 "required": true, 677 "required": true,
759 "type": "string" 678 "type": "string"
760 } 679 }
761 }, 680 },
762 "path": "v1/{+resource}:clearOrgPolicy", 681 "path": "v1/{+resource}:setOrgPolicy",
763 "request": { 682 "request": {
764 "$ref": "ClearOrgPolicyRequest" 683 "$ref": "SetOrgPolicyRequest"
765 }, 684 },
766 "response": { 685 "response": {
767 "$ref": "Empty" 686 "$ref": "OrgPolicy"
768 }, 687 },
769 "scopes": [ 688 "scopes": [
770 "https://www.googleapis.com/auth/cloud-platform" 689 "https://www.googleapis.com/auth/cloud-platform"
771 ] 690 ]
772 }, 691 }
692 }
693 },
694 "projects": {
695 "methods": {
773 "setIamPolicy": { 696 "setIamPolicy": {
774 "description": "Sets the IAM access control policy for the s pecified Project. Replaces\nany existing policy.\n\nThe following constraints ap ply when using `setIamPolicy()`:\n\n+ Project does not support `allUsers` and `a llAuthenticatedUsers` as\n`members` in a `Binding` of a `Policy`.\n\n+ The owner role can be granted only to `user` and `serviceAccount`.\n\n+ Service accounts can be made owners of a project directly\nwithout any restrictions. However, to be added as an owner, a user must be\ninvited via Cloud Platform console and mus t accept the invitation.\n\n+ A user cannot be granted the owner role using `set IamPolicy()`. The user\nmust be granted the owner role using the Cloud Platform Console and must\nexplicitly accept the invitation.\n\n+ Invitations to grant th e owner role cannot be sent using\n`setIamPolicy()`;\nthey must be sent only usi ng the Cloud Platform Console.\n\n+ Membership changes that leave the project wi thout any owners that have\naccepted the Terms of Service (ToS) will be rejected .\n\n+ There must be at least one owner who has accepted the Terms of\nService ( ToS) agreement in the policy. Calling `setIamPolicy()` to\nremove the last ToS-a ccepted owner from the policy will fail. This\nrestriction also applies to legac y projects that no longer have owners\nwho have accepted the ToS. Edits to IAM p olicies will be rejected until\nthe lack of a ToS-accepting owner is rectified.\ n\n+ Calling this method requires enabling the App Engine Admin API.\n\nNote: Re moving service accounts from policies or changing their roles\ncan render servic es completely inoperable. It is important to understand\nhow the service account is being used before removing or updating its\nroles.", 697 "description": "Sets the IAM access control policy for the s pecified Project. Replaces\nany existing policy.\n\nThe following constraints ap ply when using `setIamPolicy()`:\n\n+ Project does not support `allUsers` and `a llAuthenticatedUsers` as\n`members` in a `Binding` of a `Policy`.\n\n+ The owner role can be granted only to `user` and `serviceAccount`.\n\n+ Service accounts can be made owners of a project directly\nwithout any restrictions. However, to be added as an owner, a user must be\ninvited via Cloud Platform console and mus t accept the invitation.\n\n+ A user cannot be granted the owner role using `set IamPolicy()`. The user\nmust be granted the owner role using the Cloud Platform Console and must\nexplicitly accept the invitation.\n\n+ Invitations to grant th e owner role cannot be sent using\n`setIamPolicy()`;\nthey must be sent only usi ng the Cloud Platform Console.\n\n+ Membership changes that leave the project wi thout any owners that have\naccepted the Terms of Service (ToS) will be rejected .\n\n+ If the project is not part of an organization, there must be at least\non e owner who has accepted the Terms of Service (ToS) agreement in the\npolicy. Ca lling `setIamPolicy()` to remove the last ToS-accepted owner\nfrom the policy wi ll fail. This restriction also applies to legacy\nprojects that no longer have o wners who have accepted the ToS. Edits to\nIAM policies will be rejected until t he lack of a ToS-accepting owner is\nrectified.\n\n+ Calling this method require s enabling the App Engine Admin API.\n\nNote: Removing service accounts from pol icies or changing their roles\ncan render services completely inoperable. It is important to understand\nhow the service account is being used before removing o r updating its\nroles.",
775 "httpMethod": "POST", 698 "httpMethod": "POST",
776 "id": "cloudresourcemanager.projects.setIamPolicy", 699 "id": "cloudresourcemanager.projects.setIamPolicy",
777 "parameterOrder": [ 700 "parameterOrder": [
778 "resource" 701 "resource"
779 ], 702 ],
780 "parameters": { 703 "parameters": {
781 "resource": { 704 "resource": {
782 "description": "REQUIRED: The resource for which the policy is being specified.\nSee the operation documentation for the appropriate value for this field.", 705 "description": "REQUIRED: The resource for which the policy is being specified.\nSee the operation documentation for the appropriate value for this field.",
783 "location": "path", 706 "location": "path",
784 "required": true, 707 "required": true,
(...skipping 87 matching lines...) Expand 10 before | Expand all | Expand 10 after
872 "$ref": "GetOrgPolicyRequest" 795 "$ref": "GetOrgPolicyRequest"
873 }, 796 },
874 "response": { 797 "response": {
875 "$ref": "OrgPolicy" 798 "$ref": "OrgPolicy"
876 }, 799 },
877 "scopes": [ 800 "scopes": [
878 "https://www.googleapis.com/auth/cloud-platform", 801 "https://www.googleapis.com/auth/cloud-platform",
879 "https://www.googleapis.com/auth/cloud-platform.read-onl y" 802 "https://www.googleapis.com/auth/cloud-platform.read-onl y"
880 ] 803 ]
881 }, 804 },
882 "undelete": {
883 "description": "Restores the Project identified by the speci fied\n`project_id` (for example, `my-project-123`).\nYou can only use this metho d for a Project that has a lifecycle state of\nDELETE_REQUESTED.\nAfter deletion starts, the Project cannot be restored.\n\nThe caller must have modify permissi ons for this Project.",
884 "httpMethod": "POST",
885 "id": "cloudresourcemanager.projects.undelete",
886 "parameterOrder": [
887 "projectId"
888 ],
889 "parameters": {
890 "projectId": {
891 "description": "The project ID (for example, `foo-ba r-123`).\n\nRequired.",
892 "location": "path",
893 "required": true,
894 "type": "string"
895 }
896 },
897 "path": "v1/projects/{projectId}:undelete",
898 "request": {
899 "$ref": "UndeleteProjectRequest"
900 },
901 "response": {
902 "$ref": "Empty"
903 },
904 "scopes": [
905 "https://www.googleapis.com/auth/cloud-platform"
906 ]
907 },
908 "getEffectiveOrgPolicy": { 805 "getEffectiveOrgPolicy": {
909 "description": "Gets the effective `Policy` on a resource. T his is the result of merging\n`Policies` in the resource hierarchy. The returned `Policy` will not have\nan `etag`set because it is a computed `Policy` across m ultiple resources.", 806 "description": "Gets the effective `Policy` on a resource. T his is the result of merging\n`Policies` in the resource hierarchy. The returned `Policy` will not have\nan `etag`set because it is a computed `Policy` across m ultiple resources.",
910 "httpMethod": "POST", 807 "httpMethod": "POST",
911 "id": "cloudresourcemanager.projects.getEffectiveOrgPolicy", 808 "id": "cloudresourcemanager.projects.getEffectiveOrgPolicy",
912 "parameterOrder": [ 809 "parameterOrder": [
913 "resource" 810 "resource"
914 ], 811 ],
915 "parameters": { 812 "parameters": {
916 "resource": { 813 "resource": {
917 "description": "The name of the resource to start co mputing the effective `Policy`.", 814 "description": "The name of the resource to start co mputing the effective `Policy`.",
918 "location": "path", 815 "location": "path",
919 "pattern": "^projects/[^/]+$", 816 "pattern": "^projects/[^/]+$",
920 "required": true, 817 "required": true,
921 "type": "string" 818 "type": "string"
922 } 819 }
923 }, 820 },
924 "path": "v1/{+resource}:getEffectiveOrgPolicy", 821 "path": "v1/{+resource}:getEffectiveOrgPolicy",
925 "request": { 822 "request": {
926 "$ref": "GetEffectiveOrgPolicyRequest" 823 "$ref": "GetEffectiveOrgPolicyRequest"
927 }, 824 },
928 "response": { 825 "response": {
929 "$ref": "OrgPolicy" 826 "$ref": "OrgPolicy"
930 }, 827 },
931 "scopes": [ 828 "scopes": [
932 "https://www.googleapis.com/auth/cloud-platform", 829 "https://www.googleapis.com/auth/cloud-platform",
933 "https://www.googleapis.com/auth/cloud-platform.read-onl y" 830 "https://www.googleapis.com/auth/cloud-platform.read-onl y"
934 ] 831 ]
935 }, 832 },
833 "undelete": {
834 "description": "Restores the Project identified by the speci fied\n`project_id` (for example, `my-project-123`).\nYou can only use this metho d for a Project that has a lifecycle state of\nDELETE_REQUESTED.\nAfter deletion starts, the Project cannot be restored.\n\nThe caller must have modify permissi ons for this Project.",
835 "httpMethod": "POST",
836 "id": "cloudresourcemanager.projects.undelete",
837 "parameterOrder": [
838 "projectId"
839 ],
840 "parameters": {
841 "projectId": {
842 "description": "The project ID (for example, `foo-ba r-123`).\n\nRequired.",
843 "location": "path",
844 "required": true,
845 "type": "string"
846 }
847 },
848 "path": "v1/projects/{projectId}:undelete",
849 "request": {
850 "$ref": "UndeleteProjectRequest"
851 },
852 "response": {
853 "$ref": "Empty"
854 },
855 "scopes": [
856 "https://www.googleapis.com/auth/cloud-platform"
857 ]
858 },
936 "update": { 859 "update": {
937 "description": "Updates the attributes of the Project identi fied by the specified\n`project_id` (for example, `my-project-123`).\n\nThe call er must have modify permissions for this Project.", 860 "description": "Updates the attributes of the Project identi fied by the specified\n`project_id` (for example, `my-project-123`).\n\nThe call er must have modify permissions for this Project.",
938 "httpMethod": "PUT", 861 "httpMethod": "PUT",
939 "id": "cloudresourcemanager.projects.update", 862 "id": "cloudresourcemanager.projects.update",
940 "parameterOrder": [ 863 "parameterOrder": [
941 "projectId" 864 "projectId"
942 ], 865 ],
943 "parameters": { 866 "parameters": {
944 "projectId": { 867 "projectId": {
945 "description": "The project ID (for example, `my-pro ject-123`).\n\nRequired.", 868 "description": "The project ID (for example, `my-pro ject-123`).\n\nRequired.",
(...skipping 160 matching lines...) Expand 10 before | Expand all | Expand 10 after
1106 "request": { 1029 "request": {
1107 "$ref": "GetAncestryRequest" 1030 "$ref": "GetAncestryRequest"
1108 }, 1031 },
1109 "response": { 1032 "response": {
1110 "$ref": "GetAncestryResponse" 1033 "$ref": "GetAncestryResponse"
1111 }, 1034 },
1112 "scopes": [ 1035 "scopes": [
1113 "https://www.googleapis.com/auth/cloud-platform", 1036 "https://www.googleapis.com/auth/cloud-platform",
1114 "https://www.googleapis.com/auth/cloud-platform.read-onl y" 1037 "https://www.googleapis.com/auth/cloud-platform.read-onl y"
1115 ] 1038 ]
1039 },
1040 "testIamPermissions": {
1041 "description": "Returns permissions that a caller has on the specified Project.",
1042 "httpMethod": "POST",
1043 "id": "cloudresourcemanager.projects.testIamPermissions",
1044 "parameterOrder": [
1045 "resource"
1046 ],
1047 "parameters": {
1048 "resource": {
1049 "description": "REQUIRED: The resource for which the policy detail is being requested.\nSee the operation documentation for the appr opriate value for this field.",
1050 "location": "path",
1051 "required": true,
1052 "type": "string"
1053 }
1054 },
1055 "path": "v1/projects/{resource}:testIamPermissions",
1056 "request": {
1057 "$ref": "TestIamPermissionsRequest"
1058 },
1059 "response": {
1060 "$ref": "TestIamPermissionsResponse"
1061 },
1062 "scopes": [
1063 "https://www.googleapis.com/auth/cloud-platform",
1064 "https://www.googleapis.com/auth/cloud-platform.read-onl y"
1065 ]
1066 },
1067 "delete": {
1068 "description": "Marks the Project identified by the specifie d\n`project_id` (for example, `my-project-123`) for deletion.\nThis method will only affect the Project if the following criteria are met:\n\n+ The Project does not have a billing account associated with it.\n+ The Project has a lifecycle s tate of\nACTIVE.\n\nThis method changes the Project's lifecycle state from\nACTI VE\nto DELETE_REQUESTED.\nThe deletion starts at an unspecified time,\nat which point the Project is no longer accessible.\n\nUntil the deletion completes, you can check the lifecycle state\nchecked by retrieving the Project with GetProject ,\nand the Project remains visible to ListProjects.\nHowever, you cannot update the project.\n\nAfter the deletion completes, the Project is not retrievable by\ nthe GetProject and\nListProjects methods.\n\nThe caller must have modify permi ssions for this Project.",
1069 "httpMethod": "DELETE",
1070 "id": "cloudresourcemanager.projects.delete",
1071 "parameterOrder": [
1072 "projectId"
1073 ],
1074 "parameters": {
1075 "projectId": {
1076 "description": "The Project ID (for example, `foo-ba r-123`).\n\nRequired.",
1077 "location": "path",
1078 "required": true,
1079 "type": "string"
1080 }
1081 },
1082 "path": "v1/projects/{projectId}",
1083 "response": {
1084 "$ref": "Empty"
1085 },
1086 "scopes": [
1087 "https://www.googleapis.com/auth/cloud-platform"
1088 ]
1089 },
1090 "clearOrgPolicy": {
1091 "description": "Clears a `Policy` from a resource.",
1092 "httpMethod": "POST",
1093 "id": "cloudresourcemanager.projects.clearOrgPolicy",
1094 "parameterOrder": [
1095 "resource"
1096 ],
1097 "parameters": {
1098 "resource": {
1099 "description": "Name of the resource for the `Policy ` to clear.",
1100 "location": "path",
1101 "pattern": "^projects/[^/]+$",
1102 "required": true,
1103 "type": "string"
1104 }
1105 },
1106 "path": "v1/{+resource}:clearOrgPolicy",
1107 "request": {
1108 "$ref": "ClearOrgPolicyRequest"
1109 },
1110 "response": {
1111 "$ref": "Empty"
1112 },
1113 "scopes": [
1114 "https://www.googleapis.com/auth/cloud-platform"
1115 ]
1116 } 1116 }
1117 } 1117 }
1118 } 1118 }
1119 }, 1119 },
1120 "revision": "20170517", 1120 "revision": "20170607",
1121 "rootUrl": "https://cloudresourcemanager.googleapis.com/", 1121 "rootUrl": "https://cloudresourcemanager.googleapis.com/",
1122 "schemas": { 1122 "schemas": {
1123 "Ancestor": {
1124 "description": "Identifying information for a single ancestor of a p roject.",
1125 "id": "Ancestor",
1126 "properties": {
1127 "resourceId": {
1128 "$ref": "ResourceId",
1129 "description": "Resource id of the ancestor."
1130 }
1131 },
1132 "type": "object"
1133 },
1134 "ListConstraint": {
1135 "description": "A `Constraint` that allows or disallows a list of st ring values, which are\nconfigured by an Organization's policy administrator wit h a `Policy`.",
1136 "id": "ListConstraint",
1137 "properties": {
1138 "suggestedValue": {
1139 "description": "Optional. The Google Cloud Console will try to default to a configuration\nthat matches the value specified in this `Constra int`.",
1140 "type": "string"
1141 }
1142 },
1143 "type": "object"
1144 },
1145 "SetOrgPolicyRequest": {
1146 "description": "The request sent to the SetOrgPolicyRequest method." ,
1147 "id": "SetOrgPolicyRequest",
1148 "properties": {
1149 "policy": {
1150 "$ref": "OrgPolicy",
1151 "description": "`Policy` to set on the resource."
1152 }
1153 },
1154 "type": "object"
1155 },
1156 "SetIamPolicyRequest": {
1157 "description": "Request message for `SetIamPolicy` method.",
1158 "id": "SetIamPolicyRequest",
1159 "properties": {
1160 "policy": {
1161 "$ref": "Policy",
1162 "description": "REQUIRED: The complete policy to be applied to the `resource`. The size of\nthe policy is limited to a few 10s of KB. An emp ty policy is a\nvalid policy but certain Cloud Platform services (such as Projec ts)\nmight reject them."
1163 },
1164 "updateMask": {
1165 "description": "OPTIONAL: A FieldMask specifying which field s of the policy to modify. Only\nthe fields in the mask will be modified. If no mask is provided, the\nfollowing default mask is used:\npaths: \"bindings, etag\ "\nThis field is only used by Cloud IAM.",
1166 "format": "google-fieldmask",
1167 "type": "string"
1168 }
1169 },
1170 "type": "object"
1171 },
1172 "Empty": {
1173 "description": "A generic empty message that you can re-use to avoid defining duplicated\nempty messages in your APIs. A typical example is to use i t as the request\nor the response type of an API method. For instance:\n\n se rvice Foo {\n rpc Bar(google.protobuf.Empty) returns (google.protobuf.Empty );\n }\n\nThe JSON representation for `Empty` is empty JSON object `{}`.",
1174 "id": "Empty",
1175 "properties": {},
1176 "type": "object"
1177 },
1178 "Organization": {
1179 "description": "The root node in the resource hierarchy to which a p articular entity's\n(e.g., company) resources belong.",
1180 "id": "Organization",
1181 "properties": {
1182 "creationTime": {
1183 "description": "Timestamp when the Organization was created. Assigned by the server.\n@OutputOnly",
1184 "format": "google-datetime",
1185 "type": "string"
1186 },
1187 "owner": {
1188 "$ref": "OrganizationOwner",
1189 "description": "The owner of this Organization. The owner sh ould be specified on\ncreation. Once set, it cannot be changed.\nThis field is r equired."
1190 },
1191 "lifecycleState": {
1192 "description": "The organization's current lifecycle state. Assigned by the server.\n@OutputOnly",
1193 "enum": [
1194 "LIFECYCLE_STATE_UNSPECIFIED",
1195 "ACTIVE",
1196 "DELETE_REQUESTED"
1197 ],
1198 "enumDescriptions": [
1199 "Unspecified state. This is only useful for distinguish ing unset values.",
1200 "The normal and active state.",
1201 "The organization has been marked for deletion by the us er."
1202 ],
1203 "type": "string"
1204 },
1205 "name": {
1206 "description": "Output Only. The resource name of the organi zation. This is the\norganization's relative path in the API. Its format is\n\"o rganizations/[organization_id]\". For example, \"organizations/1234\".",
1207 "type": "string"
1208 },
1209 "displayName": {
1210 "description": "A friendly string to be used to refer to the Organization in the UI.\nAssigned by the server, set to the primary domain of t he G Suite\ncustomer that owns the organization.\n@OutputOnly",
1211 "type": "string"
1212 }
1213 },
1214 "type": "object"
1215 },
1216 "ListAvailableOrgPolicyConstraintsResponse": {
1217 "description": "The response returned from the ListAvailableOrgPolic yConstraints method.\nReturns all `Constraints` that could be set at this level of the hierarchy\n(contrast with the response from `ListPolicies`, which returns all policies\nwhich are set).",
1218 "id": "ListAvailableOrgPolicyConstraintsResponse",
1219 "properties": {
1220 "nextPageToken": {
1221 "description": "Page token used to retrieve the next page. T his is currently not used.",
1222 "type": "string"
1223 },
1224 "constraints": {
1225 "description": "The collection of constraints that are setta ble on the request resource.",
1226 "items": {
1227 "$ref": "Constraint"
1228 },
1229 "type": "array"
1230 }
1231 },
1232 "type": "object"
1233 },
1234 "ListPolicy": {
1235 "description": "Used in `policy_type` to specify how `list_policy` b ehaves at this\nresource.\n\nA `ListPolicy` can define specific values that are allowed or denied by\nsetting either the `allowed_values` or `denied_values` fie lds. It can also\nbe used to allow or deny all values, by setting the `all_value s` field. If\n`all_values` is `ALL_VALUES_UNSPECIFIED`, exactly one of `allowed_ values`\nor `denied_values` must be set (attempting to set both or neither will\ nresult in a failed request). If `all_values` is set to either `ALLOW` or\n`DENY `, `allowed_values` and `denied_values` must be unset.",
1236 "id": "ListPolicy",
1237 "properties": {
1238 "allowedValues": {
1239 "description": "List of values allowed at this resource. an only be set if no values are\nset for `denied_values` and `all_values` is set t o\n`ALL_VALUES_UNSPECIFIED`.",
1240 "items": {
1241 "type": "string"
1242 },
1243 "type": "array"
1244 },
1245 "suggestedValue": {
1246 "description": "Optional. The Google Cloud Console will try to default to a configuration\nthat matches the value specified in this `Policy` . If `suggested_value`\nis not set, it will inherit the value specified higher i n the hierarchy,\nunless `inherit_from_parent` is `false`.",
1247 "type": "string"
1248 },
1249 "inheritFromParent": {
1250 "description": "Determines the inheritance behavior for this `Policy`.\n\nBy default, a `ListPolicy` set at a resource supercedes any `Polic y` set\nanywhere up the resource hierarchy. However, if `inherit_from_parent` is \nset to `true`, then the values from the effective `Policy` of the parent\nreso urce are inherited, meaning the values set in this `Policy` are\nadded to the va lues inherited up the hierarchy.\n\nSetting `Policy` hierarchies that inherit bo th allowed values and denied\nvalues isn't recommended in most circumstances to keep the configuration\nsimple and understandable. However, it is possible to se t a `Policy` with\n`allowed_values` set that inherits a `Policy` with `denied_va lues` set.\nIn this case, the values that are allowed must be in `allowed_values ` and\nnot present in `denied_values`.\n\nFor example, suppose you have a `Const raint`\n`constraints/serviceuser.services`, which has a `constraint_type` of\n`l ist_constraint`, and with `constraint_default` set to `ALLOW`.\nSuppose that at the Organization level, a `Policy` is applied that\nrestricts the allowed API ac tivations to {`E1`, `E2`}. Then, if a\n`Policy` is applied to a project below th e Organization that has\n`inherit_from_parent` set to `false` and field all_valu es set to DENY,\nthen an attempt to activate any API will be denied.\n\nThe foll owing examples demonstrate different possible layerings:\n\nExample 1 (no inheri ted values):\n `organizations/foo` has a `Policy` with values:\n {allowed_va lues: “E1” allowed_values:”E2”}\n ``projects/bar`` has `inherit_from_parent` `f alse` and values:\n {allowed_values: \"E3\" allowed_values: \"E4\"}\nThe acce pted values at `organizations/foo` are `E1`, `E2`.\nThe accepted values at `proj ects/bar` are `E3`, and `E4`.\n\nExample 2 (inherited values):\n `organizations /foo` has a `Policy` with values:\n {allowed_values: “E1” allowed_values:”E2” }\n `projects/bar` has a `Policy` with values:\n {value: “E3” value: ”E4” in herit_from_parent: true}\nThe accepted values at `organizations/foo` are `E1`, ` E2`.\nThe accepted values at `projects/bar` are `E1`, `E2`, `E3`, and `E4`.\n\nE xample 3 (inheriting both allowed and denied values):\n `organizations/foo` has a `Policy` with values:\n {allowed_values: \"E1\" allowed_values: \"E2\"}\n `projects/bar` has a `Policy` with:\n {denied_values: \"E1\"}\nThe accepted values at `organizations/foo` are `E1`, `E2`.\nThe value accepted at `projects/b ar` is `E2`.\n\nExample 4 (RestoreDefault):\n `organizations/foo` has a `Policy ` with values:\n {allowed_values: “E1” allowed_values:”E2”}\n `projects/bar` has a `Policy` with values:\n {RestoreDefault: {}}\nThe accepted values at ` organizations/foo` are `E1`, `E2`.\nThe accepted values at `projects/bar` are ei ther all or none depending on\nthe value of `constraint_default` (if `ALLOW`, al l; if\n`DENY`, none).\n\nExample 5 (no policy inherits parent policy):\n `organ izations/foo` has no `Policy` set.\n `projects/bar` has no `Policy` set.\nThe a ccepted values at both levels are either all or none depending on\nthe value of `constraint_default` (if `ALLOW`, all; if\n`DENY`, none).\n\nExample 6 (ListCons traint allowing all):\n `organizations/foo` has a `Policy` with values:\n {a llowed_values: “E1” allowed_values: ”E2”}\n `projects/bar` has a `Policy` with: \n {all: ALLOW}\nThe accepted values at `organizations/foo` are `E1`, E2`.\nA ny value is accepted at `projects/bar`.\n\nExample 7 (ListConstraint allowing no ne):\n `organizations/foo` has a `Policy` with values:\n {allowed_values: “E 1” allowed_values: ”E2”}\n `projects/bar` has a `Policy` with:\n {all: DENY} \nThe accepted values at `organizations/foo` are `E1`, E2`.\nNo value is accepte d at `projects/bar`.",
1251 "type": "boolean"
1252 },
1253 "deniedValues": {
1254 "description": "List of values denied at this resource. Can only be set if no values are\nset for `allowed_values` and `all_values` is set t o\n`ALL_VALUES_UNSPECIFIED`.",
1255 "items": {
1256 "type": "string"
1257 },
1258 "type": "array"
1259 },
1260 "allValues": {
1261 "description": "The policy all_values state.",
1262 "enum": [
1263 "ALL_VALUES_UNSPECIFIED",
1264 "ALLOW",
1265 "DENY"
1266 ],
1267 "enumDescriptions": [
1268 "Indicates that either allowed_values or denied_values m ust be set.",
1269 "A policy with this set allows all values.",
1270 "A policy with this set denies all values."
1271 ],
1272 "type": "string"
1273 }
1274 },
1275 "type": "object"
1276 },
1277 "GetAncestryResponse": {
1278 "description": "Response from the GetAncestry method.",
1279 "id": "GetAncestryResponse",
1280 "properties": {
1281 "ancestor": {
1282 "description": "Ancestors are ordered from bottom to top of the resource hierarchy. The\nfirst ancestor is the project itself, followed by t he project's parent,\netc.",
1283 "items": {
1284 "$ref": "Ancestor"
1285 },
1286 "type": "array"
1287 }
1288 },
1289 "type": "object"
1290 },
1291 "AuditLogConfig": { 1123 "AuditLogConfig": {
1292 "description": "Provides the configuration for logging a type of per missions.\nExample:\n\n {\n \"audit_log_configs\": [\n {\n \"log_type\": \"DATA_READ\",\n \"exempted_members\": [\n \"user:foo@gmail.com\"\n ]\n },\n {\n \"log_type \": \"DATA_WRITE\",\n }\n ]\n }\n\nThis enables 'DATA_READ' and ' DATA_WRITE' logging, while exempting\nfoo@gmail.com from DATA_READ logging.", 1124 "description": "Provides the configuration for logging a type of per missions.\nExample:\n\n {\n \"audit_log_configs\": [\n {\n \"log_type\": \"DATA_READ\",\n \"exempted_members\": [\n \"user:foo@gmail.com\"\n ]\n },\n {\n \"log_type \": \"DATA_WRITE\",\n }\n ]\n }\n\nThis enables 'DATA_READ' and ' DATA_WRITE' logging, while exempting\nfoo@gmail.com from DATA_READ logging.",
1293 "id": "AuditLogConfig", 1125 "id": "AuditLogConfig",
1294 "properties": { 1126 "properties": {
1295 "exemptedMembers": { 1127 "exemptedMembers": {
1296 "description": "Specifies the identities that do not cause l ogging for this type of\npermission.\nFollows the same format of Binding.members .", 1128 "description": "Specifies the identities that do not cause l ogging for this type of\npermission.\nFollows the same format of Binding.members .",
1297 "items": { 1129 "items": {
1298 "type": "string" 1130 "type": "string"
1299 }, 1131 },
1300 "type": "array" 1132 "type": "array"
(...skipping 14 matching lines...) Expand all
1315 ], 1147 ],
1316 "type": "string" 1148 "type": "string"
1317 } 1149 }
1318 }, 1150 },
1319 "type": "object" 1151 "type": "object"
1320 }, 1152 },
1321 "SearchOrganizationsRequest": { 1153 "SearchOrganizationsRequest": {
1322 "description": "The request sent to the `SearchOrganizations` method .", 1154 "description": "The request sent to the `SearchOrganizations` method .",
1323 "id": "SearchOrganizationsRequest", 1155 "id": "SearchOrganizationsRequest",
1324 "properties": { 1156 "properties": {
1325 "pageToken": {
1326 "description": "A pagination token returned from a previous call to `SearchOrganizations`\nthat indicates from where listing should continue .\nThis field is optional.",
1327 "type": "string"
1328 },
1329 "pageSize": { 1157 "pageSize": {
1330 "description": "The maximum number of Organizations to retur n in the response.\nThis field is optional.", 1158 "description": "The maximum number of Organizations to retur n in the response.\nThis field is optional.",
1331 "format": "int32", 1159 "format": "int32",
1332 "type": "integer" 1160 "type": "integer"
1333 }, 1161 },
1334 "filter": { 1162 "filter": {
1335 "description": "An optional query string used to filter the Organizations to return in\nthe response. Filter rules are case-insensitive.\n\n \nOrganizations may be filtered by `owner.directoryCustomerId` or by\n`domain`, where the domain is a Google for Work domain, for example:\n\n|Filter|Descriptio n|\n|------|-----------|\n|owner.directorycustomerid:123456789|Organizations wit h\n`owner.directory_customer_id` equal to `123456789`.|\n|domain:google.com|Orga nizations corresponding to the domain `google.com`.|\n\nThis field is optional." , 1163 "description": "An optional query string used to filter the Organizations to return in\nthe response. Filter rules are case-insensitive.\n\n \nOrganizations may be filtered by `owner.directoryCustomerId` or by\n`domain`, where the domain is a Google for Work domain, for example:\n\n|Filter|Descriptio n|\n|------|-----------|\n|owner.directorycustomerid:123456789|Organizations wit h\n`owner.directory_customer_id` equal to `123456789`.|\n|domain:google.com|Orga nizations corresponding to the domain `google.com`.|\n\nThis field is optional." ,
1336 "type": "string" 1164 "type": "string"
1165 },
1166 "pageToken": {
1167 "description": "A pagination token returned from a previous call to `SearchOrganizations`\nthat indicates from where listing should continue .\nThis field is optional.",
1168 "type": "string"
1337 } 1169 }
1338 }, 1170 },
1339 "type": "object" 1171 "type": "object"
1340 }, 1172 },
1341 "GetAncestryRequest": { 1173 "GetAncestryRequest": {
1342 "description": "The request sent to the\nGetAncestry\nmethod.", 1174 "description": "The request sent to the\nGetAncestry\nmethod.",
1343 "id": "GetAncestryRequest", 1175 "id": "GetAncestryRequest",
1344 "properties": {}, 1176 "properties": {},
1345 "type": "object" 1177 "type": "object"
1346 }, 1178 },
(...skipping 41 matching lines...) Expand 10 before | Expand all | Expand 10 after
1388 "description": "The resource name of the folder or organizat ion we are either creating\nthe folder under or moving the folder to.", 1220 "description": "The resource name of the folder or organizat ion we are either creating\nthe folder under or moving the folder to.",
1389 "type": "string" 1221 "type": "string"
1390 } 1222 }
1391 }, 1223 },
1392 "type": "object" 1224 "type": "object"
1393 }, 1225 },
1394 "Policy": { 1226 "Policy": {
1395 "description": "Defines an Identity and Access Management (IAM) poli cy. It is used to\nspecify access control policies for Cloud Platform resources. \n\n\nA `Policy` consists of a list of `bindings`. A `Binding` binds a list of\n `members` to a `role`, where the members can be user accounts, Google groups,\nG oogle domains, and service accounts. A `role` is a named list of permissions\nde fined by IAM.\n\n**Example**\n\n {\n \"bindings\": [\n {\n \"role\": \"roles/owner\",\n \"members\": [\n \"user:mike @example.com\",\n \"group:admins@example.com\",\n \"domain :google.com\",\n \"serviceAccount:my-other-app@appspot.gserviceaccoun t.com\",\n ]\n },\n {\n \"role\": \"roles/viewer \",\n \"members\": [\"user:sean@example.com\"]\n }\n ]\n }\n\nFor a description of IAM and its features, see the\n[IAM developer's guide ](https://cloud.google.com/iam).", 1227 "description": "Defines an Identity and Access Management (IAM) poli cy. It is used to\nspecify access control policies for Cloud Platform resources. \n\n\nA `Policy` consists of a list of `bindings`. A `Binding` binds a list of\n `members` to a `role`, where the members can be user accounts, Google groups,\nG oogle domains, and service accounts. A `role` is a named list of permissions\nde fined by IAM.\n\n**Example**\n\n {\n \"bindings\": [\n {\n \"role\": \"roles/owner\",\n \"members\": [\n \"user:mike @example.com\",\n \"group:admins@example.com\",\n \"domain :google.com\",\n \"serviceAccount:my-other-app@appspot.gserviceaccoun t.com\",\n ]\n },\n {\n \"role\": \"roles/viewer \",\n \"members\": [\"user:sean@example.com\"]\n }\n ]\n }\n\nFor a description of IAM and its features, see the\n[IAM developer's guide ](https://cloud.google.com/iam).",
1396 "id": "Policy", 1228 "id": "Policy",
1397 "properties": { 1229 "properties": {
1398 "bindings": {
1399 "description": "Associates a list of `members` to a `role`.\ nMultiple `bindings` must not be specified for the same `role`.\n`bindings` with no members will result in an error.",
1400 "items": {
1401 "$ref": "Binding"
1402 },
1403 "type": "array"
1404 },
1405 "etag": { 1230 "etag": {
1406 "description": "`etag` is used for optimistic concurrency co ntrol as a way to help\nprevent simultaneous updates of a policy from overwritin g each other.\nIt is strongly suggested that systems make use of the `etag` in t he\nread-modify-write cycle to perform policy updates in order to avoid race\nco nditions: An `etag` is returned in the response to `getIamPolicy`, and\nsystems are expected to put that etag in the request to `setIamPolicy` to\nensure that t heir change will be applied to the same version of the policy.\n\nIf no `etag` i s provided in the call to `setIamPolicy`, then the existing\npolicy is overwritt en blindly.", 1231 "description": "`etag` is used for optimistic concurrency co ntrol as a way to help\nprevent simultaneous updates of a policy from overwritin g each other.\nIt is strongly suggested that systems make use of the `etag` in t he\nread-modify-write cycle to perform policy updates in order to avoid race\nco nditions: An `etag` is returned in the response to `getIamPolicy`, and\nsystems are expected to put that etag in the request to `setIamPolicy` to\nensure that t heir change will be applied to the same version of the policy.\n\nIf no `etag` i s provided in the call to `setIamPolicy`, then the existing\npolicy is overwritt en blindly.",
1407 "format": "byte", 1232 "format": "byte",
1408 "type": "string" 1233 "type": "string"
1409 }, 1234 },
1410 "version": { 1235 "version": {
1411 "description": "Version of the `Policy`. The default version is 0.", 1236 "description": "Version of the `Policy`. The default version is 0.",
1412 "format": "int32", 1237 "format": "int32",
1413 "type": "integer" 1238 "type": "integer"
1414 }, 1239 },
1415 "auditConfigs": { 1240 "auditConfigs": {
1416 "description": "Specifies cloud audit logging configuration for this policy.", 1241 "description": "Specifies cloud audit logging configuration for this policy.",
1417 "items": { 1242 "items": {
1418 "$ref": "AuditConfig" 1243 "$ref": "AuditConfig"
1419 }, 1244 },
1420 "type": "array" 1245 "type": "array"
1246 },
1247 "bindings": {
1248 "description": "Associates a list of `members` to a `role`.\ n`bindings` with no members will result in an error.",
1249 "items": {
1250 "$ref": "Binding"
1251 },
1252 "type": "array"
1421 } 1253 }
1422 }, 1254 },
1423 "type": "object" 1255 "type": "object"
1424 }, 1256 },
1425 "ListAvailableOrgPolicyConstraintsRequest": { 1257 "ListAvailableOrgPolicyConstraintsRequest": {
1426 "description": "The request sent to the [ListAvailableOrgPolicyConst raints]\ngoogle.cloud.OrgPolicy.v1.ListAvailableOrgPolicyConstraints] method.", 1258 "description": "The request sent to the [ListAvailableOrgPolicyConst raints]\ngoogle.cloud.OrgPolicy.v1.ListAvailableOrgPolicyConstraints] method.",
1427 "id": "ListAvailableOrgPolicyConstraintsRequest", 1259 "id": "ListAvailableOrgPolicyConstraintsRequest",
1428 "properties": { 1260 "properties": {
1429 "pageToken": { 1261 "pageToken": {
1430 "description": "Page token used to retrieve the next page. T his is currently unsupported\nand will be ignored. The server may at any point s tart using this field.", 1262 "description": "Page token used to retrieve the next page. T his is currently unsupported\nand will be ignored. The server may at any point s tart using this field.",
(...skipping 81 matching lines...) Expand 10 before | Expand all | Expand 10 after
1512 "description": "The normal response of the operation in case of success. If the original\nmethod returns no data on success, such as `Delet e`, the response is\n`google.protobuf.Empty`. If the original method is standar d\n`Get`/`Create`/`Update`, the response should be the resource. For other\nmet hods, the response should have the type `XxxResponse`, where `Xxx`\nis the origi nal method name. For example, if the original method name\nis `TakeSnapshot()`, the inferred response type is\n`TakeSnapshotResponse`.", 1344 "description": "The normal response of the operation in case of success. If the original\nmethod returns no data on success, such as `Delet e`, the response is\n`google.protobuf.Empty`. If the original method is standar d\n`Get`/`Create`/`Update`, the response should be the resource. For other\nmet hods, the response should have the type `XxxResponse`, where `Xxx`\nis the origi nal method name. For example, if the original method name\nis `TakeSnapshot()`, the inferred response type is\n`TakeSnapshotResponse`.",
1513 "type": "object" 1345 "type": "object"
1514 } 1346 }
1515 }, 1347 },
1516 "type": "object" 1348 "type": "object"
1517 }, 1349 },
1518 "AuditConfig": { 1350 "AuditConfig": {
1519 "description": "Specifies the audit configuration for a service.\nTh e configuration determines which permission types are logged, and what\nidentiti es, if any, are exempted from logging.\nAn AuditConfig must have one or more Aud itLogConfigs.\n\nIf there are AuditConfigs for both `allServices` and a specific service,\nthe union of the two AuditConfigs is used for that service: the log_t ypes\nspecified in each AuditConfig are enabled, and the exempted_members in eac h\nAuditConfig are exempted.\n\nExample Policy with multiple AuditConfigs:\n\n {\n \"audit_configs\": [\n {\n \"service\": \"allServices \"\n \"audit_log_configs\": [\n {\n \"log_type\ ": \"DATA_READ\",\n \"exempted_members\": [\n \"user :foo@gmail.com\"\n ]\n },\n {\n \"log_type\": \"DATA_WRITE\",\n },\n {\n \"lo g_type\": \"ADMIN_READ\",\n }\n ]\n },\n {\n \"service\": \"fooservice.googleapis.com\"\n \"audit_log_config s\": [\n {\n \"log_type\": \"DATA_READ\",\n } ,\n {\n \"log_type\": \"DATA_WRITE\",\n \"e xempted_members\": [\n \"user:bar@gmail.com\"\n ]\n }\n ]\n }\n ]\n }\n\nFor fooservice, this pol icy enables DATA_READ, DATA_WRITE and ADMIN_READ\nlogging. It also exempts foo@g mail.com from DATA_READ logging, and\nbar@gmail.com from DATA_WRITE logging.", 1351 "description": "Specifies the audit configuration for a service.\nTh e configuration determines which permission types are logged, and what\nidentiti es, if any, are exempted from logging.\nAn AuditConfig must have one or more Aud itLogConfigs.\n\nIf there are AuditConfigs for both `allServices` and a specific service,\nthe union of the two AuditConfigs is used for that service: the log_t ypes\nspecified in each AuditConfig are enabled, and the exempted_members in eac h\nAuditConfig are exempted.\n\nExample Policy with multiple AuditConfigs:\n\n {\n \"audit_configs\": [\n {\n \"service\": \"allServices \"\n \"audit_log_configs\": [\n {\n \"log_type\ ": \"DATA_READ\",\n \"exempted_members\": [\n \"user :foo@gmail.com\"\n ]\n },\n {\n \"log_type\": \"DATA_WRITE\",\n },\n {\n \"lo g_type\": \"ADMIN_READ\",\n }\n ]\n },\n {\n \"service\": \"fooservice.googleapis.com\"\n \"audit_log_config s\": [\n {\n \"log_type\": \"DATA_READ\",\n } ,\n {\n \"log_type\": \"DATA_WRITE\",\n \"e xempted_members\": [\n \"user:bar@gmail.com\"\n ]\n }\n ]\n }\n ]\n }\n\nFor fooservice, this pol icy enables DATA_READ, DATA_WRITE and ADMIN_READ\nlogging. It also exempts foo@g mail.com from DATA_READ logging, and\nbar@gmail.com from DATA_WRITE logging.",
1520 "id": "AuditConfig", 1352 "id": "AuditConfig",
1521 "properties": { 1353 "properties": {
1522 "service": {
1523 "description": "Specifies a service that will be enabled for audit logging.\nFor example, `storage.googleapis.com`, `cloudsql.googleapis.com `.\n`allServices` is a special value that covers all services.",
1524 "type": "string"
1525 },
1526 "auditLogConfigs": { 1354 "auditLogConfigs": {
1527 "description": "The configuration for logging of each type o f permission.\nNext ID: 4", 1355 "description": "The configuration for logging of each type o f permission.\nNext ID: 4",
1528 "items": { 1356 "items": {
1529 "$ref": "AuditLogConfig" 1357 "$ref": "AuditLogConfig"
1530 }, 1358 },
1531 "type": "array" 1359 "type": "array"
1532 }
1533 },
1534 "type": "object"
1535 },
1536 "Status": {
1537 "description": "The `Status` type defines a logical error model that is suitable for different\nprogramming environments, including REST APIs and RP C APIs. It is used by\n[gRPC](https://github.com/grpc). The error model is desig ned to be:\n\n- Simple to use and understand for most users\n- Flexible enough t o meet unexpected needs\n\n# Overview\n\nThe `Status` message contains three pie ces of data: error code, error message,\nand error details. The error code shoul d be an enum value of\ngoogle.rpc.Code, but it may accept additional error codes if needed. The\nerror message should be a developer-facing English message tha t helps\ndevelopers *understand* and *resolve* the error. If a localized user-fa cing\nerror message is needed, put the localized message in the error details or \nlocalize it in the client. The optional error details may contain arbitrary\ni nformation about the error. There is a predefined set of error detail types\nin the package `google.rpc` that can be used for common error conditions.\n\n# Lang uage mapping\n\nThe `Status` message is the logical representation of the error model, but it\nis not necessarily the actual wire format. When the `Status` mess age is\nexposed in different client libraries and different wire protocols, it c an be\nmapped differently. For example, it will likely be mapped to some excepti ons\nin Java, but more likely mapped to some error codes in C.\n\n# Other uses\n \nThe error model and the `Status` message can be used in a variety of\nenvironm ents, either with or without APIs, to provide a\nconsistent developer experience across different environments.\n\nExample uses of this error model include:\n\n - Partial errors. If a service needs to return partial errors to the client,\n it may embed the `Status` in the normal response to indicate the partial\n errors.\n\n- Workflow errors. A typical workflow has multiple steps. Each step m ay\n have a `Status` message for error reporting.\n\n- Batch operations. If a client uses batch request and batch response, the\n `Status` message should be used directly inside batch response, one for\n each error sub-response.\n\ n- Asynchronous operations. If an API call embeds asynchronous operation\n re sults in its response, the status of those operations should be\n represented directly using the `Status` message.\n\n- Logging. If some API errors are store d in logs, the message `Status` could\n be used directly after any stripping needed for security/privacy reasons.",
1538 "id": "Status",
1539 "properties": {
1540 "code": {
1541 "description": "The status code, which should be an enum val ue of google.rpc.Code.",
1542 "format": "int32",
1543 "type": "integer"
1544 }, 1360 },
1545 "message": { 1361 "service": {
1546 "description": "A developer-facing error message, which shou ld be in English. Any\nuser-facing error message should be localized and sent in the\ngoogle.rpc.Status.details field, or localized by the client.", 1362 "description": "Specifies a service that will be enabled for audit logging.\nFor example, `storage.googleapis.com`, `cloudsql.googleapis.com `.\n`allServices` is a special value that covers all services.",
1547 "type": "string" 1363 "type": "string"
1548 },
1549 "details": {
1550 "description": "A list of messages that carry the error deta ils. There will be a\ncommon set of message types for APIs to use.",
1551 "items": {
1552 "additionalProperties": {
1553 "description": "Properties of the object. Contains f ield @type with type URL.",
1554 "type": "any"
1555 },
1556 "type": "object"
1557 },
1558 "type": "array"
1559 }
1560 },
1561 "type": "object"
1562 },
1563 "ListLiensResponse": {
1564 "description": "The response message for Liens.ListLiens.",
1565 "id": "ListLiensResponse",
1566 "properties": {
1567 "nextPageToken": {
1568 "description": "Token to retrieve the next page of results, or empty if there are no more\nresults in the list.",
1569 "type": "string"
1570 },
1571 "liens": {
1572 "description": "A list of Liens.",
1573 "items": {
1574 "$ref": "Lien"
1575 },
1576 "type": "array"
1577 } 1364 }
1578 }, 1365 },
1579 "type": "object" 1366 "type": "object"
1580 }, 1367 },
1581 "Constraint": { 1368 "Constraint": {
1582 "description": "A `Constraint` describes a way in which a resource's configuration can be\nrestricted. For example, it controls which cloud services can be activated\nacross an organization, or whether a Compute Engine instance can have\nserial port connections established. `Constraints` can be configured b y the\norganization's policy adminstrator to fit the needs of the organzation by \nsetting Policies for `Constraints` at different locations in the\norganization 's resource hierarchy. Policies are inherited down the resource\nhierarchy from higher levels, but can also be overridden. For details about\nthe inheritance ru les please read about\nPolicies.\n\n`Constraints` have a default behavior determ ined by the `constraint_default`\nfield, which is the enforcement behavior that is used in the absence of a\n`Policy` being defined or inherited for the resourc e in question.", 1369 "description": "A `Constraint` describes a way in which a resource's configuration can be\nrestricted. For example, it controls which cloud services can be activated\nacross an organization, or whether a Compute Engine instance can have\nserial port connections established. `Constraints` can be configured b y the\norganization's policy adminstrator to fit the needs of the organzation by \nsetting Policies for `Constraints` at different locations in the\norganization 's resource hierarchy. Policies are inherited down the resource\nhierarchy from higher levels, but can also be overridden. For details about\nthe inheritance ru les please read about\nPolicies.\n\n`Constraints` have a default behavior determ ined by the `constraint_default`\nfield, which is the enforcement behavior that is used in the absence of a\n`Policy` being defined or inherited for the resourc e in question.",
1583 "id": "Constraint", 1370 "id": "Constraint",
1584 "properties": { 1371 "properties": {
1585 "displayName": { 1372 "displayName": {
1586 "description": "The human readable name.\n\nMutable.", 1373 "description": "The human readable name.\n\nMutable.",
(...skipping 18 matching lines...) Expand all
1605 "This is only used for distinguishing unset values and s hould never be\nused.", 1392 "This is only used for distinguishing unset values and s hould never be\nused.",
1606 "Indicate that all values are allowed for list constrain ts.\nIndicate that enforcement is off for boolean constraints.", 1393 "Indicate that all values are allowed for list constrain ts.\nIndicate that enforcement is off for boolean constraints.",
1607 "Indicate that all values are denied for list constraint s.\nIndicate that enforcement is on for boolean constraints." 1394 "Indicate that all values are denied for list constraint s.\nIndicate that enforcement is on for boolean constraints."
1608 ], 1395 ],
1609 "type": "string" 1396 "type": "string"
1610 }, 1397 },
1611 "name": { 1398 "name": {
1612 "description": "Immutable value, required to globally be uni que. For example,\n`constraints/serviceuser.services`", 1399 "description": "Immutable value, required to globally be uni que. For example,\n`constraints/serviceuser.services`",
1613 "type": "string" 1400 "type": "string"
1614 }, 1401 },
1615 "listConstraint": {
1616 "$ref": "ListConstraint",
1617 "description": "Defines this constraint as being a ListConst raint."
1618 },
1619 "version": { 1402 "version": {
1620 "description": "Version of the `Constraint`. Default version is 0;", 1403 "description": "Version of the `Constraint`. Default version is 0;",
1621 "format": "int32", 1404 "format": "int32",
1622 "type": "integer" 1405 "type": "integer"
1406 },
1407 "listConstraint": {
1408 "$ref": "ListConstraint",
1409 "description": "Defines this constraint as being a ListConst raint."
1623 } 1410 }
1624 }, 1411 },
1625 "type": "object" 1412 "type": "object"
1413 },
1414 "ListLiensResponse": {
1415 "description": "The response message for Liens.ListLiens.",
1416 "id": "ListLiensResponse",
1417 "properties": {
1418 "liens": {
1419 "description": "A list of Liens.",
1420 "items": {
1421 "$ref": "Lien"
1422 },
1423 "type": "array"
1424 },
1425 "nextPageToken": {
1426 "description": "Token to retrieve the next page of results, or empty if there are no more\nresults in the list.",
1427 "type": "string"
1428 }
1429 },
1430 "type": "object"
1431 },
1432 "Status": {
1433 "description": "The `Status` type defines a logical error model that is suitable for different\nprogramming environments, including REST APIs and RP C APIs. It is used by\n[gRPC](https://github.com/grpc). The error model is desig ned to be:\n\n- Simple to use and understand for most users\n- Flexible enough t o meet unexpected needs\n\n# Overview\n\nThe `Status` message contains three pie ces of data: error code, error message,\nand error details. The error code shoul d be an enum value of\ngoogle.rpc.Code, but it may accept additional error codes if needed. The\nerror message should be a developer-facing English message tha t helps\ndevelopers *understand* and *resolve* the error. If a localized user-fa cing\nerror message is needed, put the localized message in the error details or \nlocalize it in the client. The optional error details may contain arbitrary\ni nformation about the error. There is a predefined set of error detail types\nin the package `google.rpc` that can be used for common error conditions.\n\n# Lang uage mapping\n\nThe `Status` message is the logical representation of the error model, but it\nis not necessarily the actual wire format. When the `Status` mess age is\nexposed in different client libraries and different wire protocols, it c an be\nmapped differently. For example, it will likely be mapped to some excepti ons\nin Java, but more likely mapped to some error codes in C.\n\n# Other uses\n \nThe error model and the `Status` message can be used in a variety of\nenvironm ents, either with or without APIs, to provide a\nconsistent developer experience across different environments.\n\nExample uses of this error model include:\n\n - Partial errors. If a service needs to return partial errors to the client,\n it may embed the `Status` in the normal response to indicate the partial\n errors.\n\n- Workflow errors. A typical workflow has multiple steps. Each step m ay\n have a `Status` message for error reporting.\n\n- Batch operations. If a client uses batch request and batch response, the\n `Status` message should be used directly inside batch response, one for\n each error sub-response.\n\ n- Asynchronous operations. If an API call embeds asynchronous operation\n re sults in its response, the status of those operations should be\n represented directly using the `Status` message.\n\n- Logging. If some API errors are store d in logs, the message `Status` could\n be used directly after any stripping needed for security/privacy reasons.",
1434 "id": "Status",
1435 "properties": {
1436 "code": {
1437 "description": "The status code, which should be an enum val ue of google.rpc.Code.",
1438 "format": "int32",
1439 "type": "integer"
1440 },
1441 "message": {
1442 "description": "A developer-facing error message, which shou ld be in English. Any\nuser-facing error message should be localized and sent in the\ngoogle.rpc.Status.details field, or localized by the client.",
1443 "type": "string"
1444 },
1445 "details": {
1446 "description": "A list of messages that carry the error deta ils. There will be a\ncommon set of message types for APIs to use.",
1447 "items": {
1448 "additionalProperties": {
1449 "description": "Properties of the object. Contains f ield @type with type URL.",
1450 "type": "any"
1451 },
1452 "type": "object"
1453 },
1454 "type": "array"
1455 }
1456 },
1457 "type": "object"
1626 }, 1458 },
1627 "Binding": { 1459 "Binding": {
1628 "description": "Associates `members` with a `role`.", 1460 "description": "Associates `members` with a `role`.",
1629 "id": "Binding", 1461 "id": "Binding",
1630 "properties": { 1462 "properties": {
1631 "role": {
1632 "description": "Role that is assigned to `members`.\nFor exa mple, `roles/viewer`, `roles/editor`, or `roles/owner`.\nRequired",
1633 "type": "string"
1634 },
1635 "members": { 1463 "members": {
1636 "description": "Specifies the identities requesting access f or a Cloud Platform resource.\n`members` can have the following values:\n\n* `al lUsers`: A special identifier that represents anyone who is\n on the internet; with or without a Google account.\n\n* `allAuthenticatedUsers`: A special ident ifier that represents anyone\n who is authenticated with a Google account or a service account.\n\n* `user:{emailid}`: An email address that represents a spec ific Google\n account. For example, `alice@gmail.com` or `joe@example.com`.\n\ n\n* `serviceAccount:{emailid}`: An email address that represents a service\n account. For example, `my-other-app@appspot.gserviceaccount.com`.\n\n* `group:{e mailid}`: An email address that represents a Google group.\n For example, `adm ins@example.com`.\n\n\n* `domain:{domain}`: A Google Apps domain name that repre sents all the\n users of that domain. For example, `google.com` or `example.co m`.\n\n", 1464 "description": "Specifies the identities requesting access f or a Cloud Platform resource.\n`members` can have the following values:\n\n* `al lUsers`: A special identifier that represents anyone who is\n on the internet; with or without a Google account.\n\n* `allAuthenticatedUsers`: A special ident ifier that represents anyone\n who is authenticated with a Google account or a service account.\n\n* `user:{emailid}`: An email address that represents a spec ific Google\n account. For example, `alice@gmail.com` or `joe@example.com`.\n\ n\n* `serviceAccount:{emailid}`: An email address that represents a service\n account. For example, `my-other-app@appspot.gserviceaccount.com`.\n\n* `group:{e mailid}`: An email address that represents a Google group.\n For example, `adm ins@example.com`.\n\n\n* `domain:{domain}`: A Google Apps domain name that repre sents all the\n users of that domain. For example, `google.com` or `example.co m`.\n\n",
1637 "items": { 1465 "items": {
1638 "type": "string" 1466 "type": "string"
1639 }, 1467 },
1640 "type": "array" 1468 "type": "array"
1469 },
1470 "role": {
1471 "description": "Role that is assigned to `members`.\nFor exa mple, `roles/viewer`, `roles/editor`, or `roles/owner`.\nRequired",
1472 "type": "string"
1641 } 1473 }
1642 }, 1474 },
1643 "type": "object" 1475 "type": "object"
1644 }, 1476 },
1645 "GetOrgPolicyRequest": { 1477 "GetOrgPolicyRequest": {
1646 "description": "The request sent to the GetOrgPolicy method.", 1478 "description": "The request sent to the GetOrgPolicy method.",
1647 "id": "GetOrgPolicyRequest", 1479 "id": "GetOrgPolicyRequest",
1648 "properties": { 1480 "properties": {
1649 "constraint": { 1481 "constraint": {
1650 "description": "Name of the `Constraint` to get the `Policy` .", 1482 "description": "Name of the `Constraint` to get the `Policy` .",
(...skipping 84 matching lines...) Expand 10 before | Expand all | Expand 10 after
1735 "description": "The Google for Work customer id used in the Directory API.", 1567 "description": "The Google for Work customer id used in the Directory API.",
1736 "type": "string" 1568 "type": "string"
1737 } 1569 }
1738 }, 1570 },
1739 "type": "object" 1571 "type": "object"
1740 }, 1572 },
1741 "ListProjectsResponse": { 1573 "ListProjectsResponse": {
1742 "description": "A page of the response received from the\nListProjec ts\nmethod.\n\nA paginated response where more pages are available has\n`next_pa ge_token` set. This token can be used in a subsequent request to\nretrieve the n ext request page.", 1574 "description": "A page of the response received from the\nListProjec ts\nmethod.\n\nA paginated response where more pages are available has\n`next_pa ge_token` set. This token can be used in a subsequent request to\nretrieve the n ext request page.",
1743 "id": "ListProjectsResponse", 1575 "id": "ListProjectsResponse",
1744 "properties": { 1576 "properties": {
1577 "nextPageToken": {
1578 "description": "Pagination token.\n\nIf the result set is to o large to fit in a single response, this token\nis returned. It encodes the pos ition of the current result cursor.\nFeeding this value into a new list request with the `page_token` parameter\ngives the next page of the results.\n\nWhen `ne xt_page_token` is not filled in, there is no next page and\nthe list returned is the last page in the result set.\n\nPagination tokens have a limited lifetime." ,
1579 "type": "string"
1580 },
1745 "projects": { 1581 "projects": {
1746 "description": "The list of Projects that matched the list f ilter. This list can\nbe paginated.", 1582 "description": "The list of Projects that matched the list f ilter. This list can\nbe paginated.",
1747 "items": { 1583 "items": {
1748 "$ref": "Project" 1584 "$ref": "Project"
1749 }, 1585 },
1750 "type": "array" 1586 "type": "array"
1751 },
1752 "nextPageToken": {
1753 "description": "Pagination token.\n\nIf the result set is to o large to fit in a single response, this token\nis returned. It encodes the pos ition of the current result cursor.\nFeeding this value into a new list request with the `page_token` parameter\ngives the next page of the results.\n\nWhen `ne xt_page_token` is not filled in, there is no next page and\nthe list returned is the last page in the result set.\n\nPagination tokens have a limited lifetime." ,
1754 "type": "string"
1755 } 1587 }
1756 }, 1588 },
1757 "type": "object" 1589 "type": "object"
1758 }, 1590 },
1759 "Project": { 1591 "Project": {
1760 "description": "A Project is a high-level Google Cloud Platform enti ty. It is a\ncontainer for ACLs, APIs, App Engine Apps, VMs, and other\nGoogle Cloud Platform resources.", 1592 "description": "A Project is a high-level Google Cloud Platform enti ty. It is a\ncontainer for ACLs, APIs, App Engine Apps, VMs, and other\nGoogle Cloud Platform resources.",
1761 "id": "Project", 1593 "id": "Project",
1762 "properties": { 1594 "properties": {
1595 "lifecycleState": {
1596 "description": "The Project lifecycle state.\n\nRead-only.",
1597 "enum": [
1598 "LIFECYCLE_STATE_UNSPECIFIED",
1599 "ACTIVE",
1600 "DELETE_REQUESTED",
1601 "DELETE_IN_PROGRESS"
1602 ],
1603 "enumDescriptions": [
1604 "Unspecified state. This is only used/useful for distin guishing\nunset values.",
1605 "The normal and active state.",
1606 "The project has been marked for deletion by the user\n( by invoking\nDeleteProject)\nor by the system (Google Cloud Platform).\nThis can generally be reversed by invoking UndeleteProject.",
1607 "This lifecycle state is no longer used and not returned by the API."
1608 ],
1609 "type": "string"
1610 },
1763 "projectNumber": { 1611 "projectNumber": {
1764 "description": "The number uniquely identifying the project. \n\nExample: <code>415104041262</code>\nRead-only.", 1612 "description": "The number uniquely identifying the project. \n\nExample: <code>415104041262</code>\nRead-only.",
1765 "format": "int64", 1613 "format": "int64",
1766 "type": "string" 1614 "type": "string"
1767 }, 1615 },
1768 "parent": { 1616 "parent": {
1769 "$ref": "ResourceId", 1617 "$ref": "ResourceId",
1770 "description": "An optional reference to a parent Resource.\ n\nThe only supported parent type is \"organization\". Once set, the parent\ncan not be modified. The `parent` can be set on creation or using the\n`UpdateProjec t` method; the end user must have the\n`resourcemanager.projects.create` permiss ion on the parent.\n\nRead-write." 1618 "description": "An optional reference to a parent Resource.\ n\nThe only supported parent type is \"organization\". Once set, the parent\ncan not be modified. The `parent` can be set on creation or using the\n`UpdateProjec t` method; the end user must have the\n`resourcemanager.projects.create` permiss ion on the parent.\n\nRead-write."
1771 }, 1619 },
1620 "createTime": {
1621 "description": "Creation time.\n\nRead-only.",
1622 "format": "google-datetime",
1623 "type": "string"
1624 },
1772 "labels": { 1625 "labels": {
1773 "additionalProperties": { 1626 "additionalProperties": {
1774 "type": "string" 1627 "type": "string"
1775 }, 1628 },
1776 "description": "The labels associated with this Project.\n\n Label keys must be between 1 and 63 characters long and must conform\nto the fol lowing regular expression: \\[a-z\\](\\[-a-z0-9\\]*\\[a-z0-9\\])?.\n\nLabel valu es must be between 0 and 63 characters long and must conform\nto the regular exp ression (\\[a-z\\](\\[-a-z0-9\\]*\\[a-z0-9\\])?)?.\n\nNo more than 256 labels ca n be associated with a given resource.\n\nClients should store labels in a repre sentation such as JSON that does not\ndepend on specific characters being disall owed.\n\nExample: <code>\"environment\" : \"dev\"</code>\nRead-write.", 1629 "description": "The labels associated with this Project.\n\n Label keys must be between 1 and 63 characters long and must conform\nto the fol lowing regular expression: \\[a-z\\](\\[-a-z0-9\\]*\\[a-z0-9\\])?.\n\nLabel valu es must be between 0 and 63 characters long and must conform\nto the regular exp ression (\\[a-z\\](\\[-a-z0-9\\]*\\[a-z0-9\\])?)?.\n\nNo more than 256 labels ca n be associated with a given resource.\n\nClients should store labels in a repre sentation such as JSON that does not\ndepend on specific characters being disall owed.\n\nExample: <code>\"environment\" : \"dev\"</code>\nRead-write.",
1777 "type": "object" 1630 "type": "object"
1778 }, 1631 },
1779 "createTime": {
1780 "description": "Creation time.\n\nRead-only.",
1781 "format": "google-datetime",
1782 "type": "string"
1783 },
1784 "name": { 1632 "name": {
1785 "description": "The user-assigned display name of the Projec t.\nIt must be 4 to 30 characters.\nAllowed characters are: lowercase and upperc ase letters, numbers,\nhyphen, single-quote, double-quote, space, and exclamatio n point.\n\nExample: <code>My Project</code>\nRead-write.", 1633 "description": "The user-assigned display name of the Projec t.\nIt must be 4 to 30 characters.\nAllowed characters are: lowercase and upperc ase letters, numbers,\nhyphen, single-quote, double-quote, space, and exclamatio n point.\n\nExample: <code>My Project</code>\nRead-write.",
1786 "type": "string" 1634 "type": "string"
1787 }, 1635 },
1788 "projectId": { 1636 "projectId": {
1789 "description": "The unique, user-assigned ID of the Project. \nIt must be 6 to 30 lowercase letters, digits, or hyphens.\nIt must start with a letter.\nTrailing hyphens are prohibited.\n\nExample: <code>tokyo-rain-123</co de>\nRead-only after creation.", 1637 "description": "The unique, user-assigned ID of the Project. \nIt must be 6 to 30 lowercase letters, digits, or hyphens.\nIt must start with a letter.\nTrailing hyphens are prohibited.\n\nExample: <code>tokyo-rain-123</co de>\nRead-only after creation.",
1790 "type": "string" 1638 "type": "string"
1791 },
1792 "lifecycleState": {
1793 "description": "The Project lifecycle state.\n\nRead-only.",
1794 "enum": [
1795 "LIFECYCLE_STATE_UNSPECIFIED",
1796 "ACTIVE",
1797 "DELETE_REQUESTED",
1798 "DELETE_IN_PROGRESS"
1799 ],
1800 "enumDescriptions": [
1801 "Unspecified state. This is only used/useful for distin guishing\nunset values.",
1802 "The normal and active state.",
1803 "The project has been marked for deletion by the user\n( by invoking\nDeleteProject)\nor by the system (Google Cloud Platform).\nThis can generally be reversed by invoking UndeleteProject.",
1804 "This lifecycle state is no longer used and not returned by the API."
1805 ],
1806 "type": "string"
1807 } 1639 }
1808 }, 1640 },
1809 "type": "object" 1641 "type": "object"
1810 }, 1642 },
1811 "ListOrgPoliciesResponse": { 1643 "ListOrgPoliciesResponse": {
1812 "description": "The response returned from the ListOrgPolicies metho d. It will be empty\nif no `Policies` are set on the resource.", 1644 "description": "The response returned from the ListOrgPolicies metho d. It will be empty\nif no `Policies` are set on the resource.",
1813 "id": "ListOrgPoliciesResponse", 1645 "id": "ListOrgPoliciesResponse",
1814 "properties": { 1646 "properties": {
1647 "nextPageToken": {
1648 "description": "Page token used to retrieve the next page. T his is currently not used, but\nthe server may at any point start supplying a va lid token.",
1649 "type": "string"
1650 },
1815 "policies": { 1651 "policies": {
1816 "description": "The `Policies` that are set on the resource. It will be empty if no\n`Policies` are set.", 1652 "description": "The `Policies` that are set on the resource. It will be empty if no\n`Policies` are set.",
1817 "items": { 1653 "items": {
1818 "$ref": "OrgPolicy" 1654 "$ref": "OrgPolicy"
1819 }, 1655 },
1820 "type": "array" 1656 "type": "array"
1821 },
1822 "nextPageToken": {
1823 "description": "Page token used to retrieve the next page. T his is currently not used, but\nthe server may at any point start supplying a va lid token.",
1824 "type": "string"
1825 } 1657 }
1826 }, 1658 },
1827 "type": "object" 1659 "type": "object"
1828 }, 1660 },
1829 "SearchOrganizationsResponse": { 1661 "SearchOrganizationsResponse": {
1830 "description": "The response returned from the `SearchOrganizations` method.", 1662 "description": "The response returned from the `SearchOrganizations` method.",
1831 "id": "SearchOrganizationsResponse", 1663 "id": "SearchOrganizationsResponse",
1832 "properties": { 1664 "properties": {
1833 "nextPageToken": {
1834 "description": "A pagination token to be used to retrieve th e next page of results. If the\nresult is too large to fit within the page size specified in the request,\nthis field will be set with a token that can be used to fetch the next page\nof results. If this field is empty, it indicates that th is response\ncontains the last page of results.",
1835 "type": "string"
1836 },
1837 "organizations": { 1665 "organizations": {
1838 "description": "The list of Organizations that matched the s earch query, possibly\npaginated.", 1666 "description": "The list of Organizations that matched the s earch query, possibly\npaginated.",
1839 "items": { 1667 "items": {
1840 "$ref": "Organization" 1668 "$ref": "Organization"
1841 }, 1669 },
1842 "type": "array" 1670 "type": "array"
1671 },
1672 "nextPageToken": {
1673 "description": "A pagination token to be used to retrieve th e next page of results. If the\nresult is too large to fit within the page size specified in the request,\nthis field will be set with a token that can be used to fetch the next page\nof results. If this field is empty, it indicates that th is response\ncontains the last page of results.",
1674 "type": "string"
1843 } 1675 }
1844 }, 1676 },
1845 "type": "object" 1677 "type": "object"
1846 }, 1678 },
1847 "FolderOperationError": { 1679 "FolderOperationError": {
1848 "description": "A classification of the Folder Operation error.", 1680 "description": "A classification of the Folder Operation error.",
1849 "id": "FolderOperationError", 1681 "id": "FolderOperationError",
1850 "properties": { 1682 "properties": {
1851 "errorMessageId": { 1683 "errorMessageId": {
1852 "description": "The type of operation error experienced.", 1684 "description": "The type of operation error experienced.",
(...skipping 19 matching lines...) Expand all
1872 "The attempted action would introduce cycle in resource path.", 1704 "The attempted action would introduce cycle in resource path.",
1873 "The attempted action would move a folder that is alread y being moved.", 1705 "The attempted action would move a folder that is alread y being moved.",
1874 "The folder the caller is trying to delete contains acti ve resources.", 1706 "The folder the caller is trying to delete contains acti ve resources.",
1875 "The attempted action would violate the max deleted fold er depth\nconstraint." 1707 "The attempted action would violate the max deleted fold er depth\nconstraint."
1876 ], 1708 ],
1877 "type": "string" 1709 "type": "string"
1878 } 1710 }
1879 }, 1711 },
1880 "type": "object" 1712 "type": "object"
1881 }, 1713 },
1882 "BooleanPolicy": {
1883 "description": "Used in `policy_type` to specify how `boolean_policy ` will behave at this\nresource.",
1884 "id": "BooleanPolicy",
1885 "properties": {
1886 "enforced": {
1887 "description": "If `true`, then the `Policy` is enforced. If `false`, then any\nconfiguration is acceptable.\n\nSuppose you have a `Constrai nt` `constraints/compute.disableSerialPortAccess`\nwith `constraint_default` set to `ALLOW`. A `Policy` for that\n`Constraint` exhibits the following behavior:\ n - If the `Policy` at this resource has enforced set to `false`, serial\n p ort connection attempts will be allowed.\n - If the `Policy` at this resource h as enforced set to `true`, serial\n port connection attempts will be refused. \n - If the `Policy` at this resource is `RestoreDefault`, serial port\n con nection attempts will be allowed.\n - If no `Policy` is set at this resource or anywhere higher in the\n resource hierarchy, serial port connection attempts will be allowed.\n - If no `Policy` is set at this resource, but one exists hi gher in the\n resource hierarchy, the behavior is as if the`Policy` were set at\n this resource.\n\nThe following examples demonstrate the different possi ble layerings:\n\nExample 1 (nearest `Constraint` wins):\n `organizations/foo` has a `Policy` with:\n {enforced: false}\n `projects/bar` has no `Policy` se t.\nThe constraint at `projects/bar` and `organizations/foo` will not be\nenforc ed.\n\nExample 2 (enforcement gets replaced):\n `organizations/foo` has a `Poli cy` with:\n {enforced: false}\n `projects/bar` has a `Policy` with:\n {en forced: true}\nThe constraint at `organizations/foo` is not enforced.\nThe const raint at `projects/bar` is enforced.\n\nExample 3 (RestoreDefault):\n `organiza tions/foo` has a `Policy` with:\n {enforced: true}\n `projects/bar` has a `P olicy` with:\n {RestoreDefault: {}}\nThe constraint at `organizations/foo` is enforced.\nThe constraint at `projects/bar` is not enforced, because\n`constrai nt_default` for the `Constraint` is `ALLOW`.",
1888 "type": "boolean"
1889 }
1890 },
1891 "type": "object"
1892 },
1893 "OrgPolicy": { 1714 "OrgPolicy": {
1894 "description": "Defines a Cloud Organization `Policy` which is used to specify `Constraints`\nfor configurations of Cloud Platform resources.", 1715 "description": "Defines a Cloud Organization `Policy` which is used to specify `Constraints`\nfor configurations of Cloud Platform resources.",
1895 "id": "OrgPolicy", 1716 "id": "OrgPolicy",
1896 "properties": { 1717 "properties": {
1897 "etag": { 1718 "booleanPolicy": {
1898 "description": "An opaque tag indicating the current version of the `Policy`, used for\nconcurrency control.\n\nWhen the `Policy` is returne d from either a `GetPolicy` or a\n`ListOrgPolicy` request, this `etag` indicates the version of the current\n`Policy` to use when executing a read-modify-write loop.\n\nWhen the `Policy` is returned from a `GetEffectivePolicy` request, the\ n`etag` will be unset.\n\nWhen the `Policy` is used in a `SetOrgPolicy` method, use the `etag` value\nthat was returned from a `GetOrgPolicy` request as part of a\nread-modify-write loop for concurrency control. Not setting the `etag`in a\n `SetOrgPolicy` request will result in an unconditional write of the\n`Policy`.", 1719 "$ref": "BooleanPolicy",
1899 "format": "byte", 1720 "description": "For boolean `Constraints`, whether to enforc e the `Constraint` or not."
1900 "type": "string"
1901 }, 1721 },
1902 "constraint": { 1722 "constraint": {
1903 "description": "The name of the `Constraint` the `Policy` is configuring, for example,\n`constraints/serviceuser.services`.\n\nImmutable aft er creation.", 1723 "description": "The name of the `Constraint` the `Policy` is configuring, for example,\n`constraints/serviceuser.services`.\n\nImmutable aft er creation.",
1904 "type": "string" 1724 "type": "string"
1905 }, 1725 },
1906 "booleanPolicy": {
1907 "$ref": "BooleanPolicy",
1908 "description": "For boolean `Constraints`, whether to enforc e the `Constraint` or not."
1909 },
1910 "updateTime": { 1726 "updateTime": {
1911 "description": "The time stamp the `Policy` was previously u pdated. This is set by the\nserver, not specified by the caller, and represents the last time a call to\n`SetOrgPolicy` was made for that `Policy`. Any value se t by the client will\nbe ignored.", 1727 "description": "The time stamp the `Policy` was previously u pdated. This is set by the\nserver, not specified by the caller, and represents the last time a call to\n`SetOrgPolicy` was made for that `Policy`. Any value se t by the client will\nbe ignored.",
1912 "format": "google-datetime", 1728 "format": "google-datetime",
1913 "type": "string" 1729 "type": "string"
1914 }, 1730 },
1915 "version": { 1731 "version": {
1916 "description": "Version of the `Policy`. Default version is 0;", 1732 "description": "Version of the `Policy`. Default version is 0;",
1917 "format": "int32", 1733 "format": "int32",
1918 "type": "integer" 1734 "type": "integer"
1919 }, 1735 },
1920 "restoreDefault": { 1736 "restoreDefault": {
1921 "$ref": "RestoreDefault", 1737 "$ref": "RestoreDefault",
1922 "description": "Restores the default behavior of the constra int; independent of\n`Constraint` type." 1738 "description": "Restores the default behavior of the constra int; independent of\n`Constraint` type."
1923 }, 1739 },
1924 "listPolicy": { 1740 "listPolicy": {
1925 "$ref": "ListPolicy", 1741 "$ref": "ListPolicy",
1926 "description": "List of values either allowed or disallowed. " 1742 "description": "List of values either allowed or disallowed. "
1743 },
1744 "etag": {
1745 "description": "An opaque tag indicating the current version of the `Policy`, used for\nconcurrency control.\n\nWhen the `Policy` is returne d from either a `GetPolicy` or a\n`ListOrgPolicy` request, this `etag` indicates the version of the current\n`Policy` to use when executing a read-modify-write loop.\n\nWhen the `Policy` is returned from a `GetEffectivePolicy` request, the\ n`etag` will be unset.\n\nWhen the `Policy` is used in a `SetOrgPolicy` method, use the `etag` value\nthat was returned from a `GetOrgPolicy` request as part of a\nread-modify-write loop for concurrency control. Not setting the `etag`in a\n `SetOrgPolicy` request will result in an unconditional write of the\n`Policy`.",
1746 "format": "byte",
1747 "type": "string"
1927 } 1748 }
1928 }, 1749 },
1929 "type": "object" 1750 "type": "object"
1751 },
1752 "BooleanPolicy": {
1753 "description": "Used in `policy_type` to specify how `boolean_policy ` will behave at this\nresource.",
1754 "id": "BooleanPolicy",
1755 "properties": {
1756 "enforced": {
1757 "description": "If `true`, then the `Policy` is enforced. If `false`, then any\nconfiguration is acceptable.\n\nSuppose you have a `Constrai nt` `constraints/compute.disableSerialPortAccess`\nwith `constraint_default` set to `ALLOW`. A `Policy` for that\n`Constraint` exhibits the following behavior:\ n - If the `Policy` at this resource has enforced set to `false`, serial\n p ort connection attempts will be allowed.\n - If the `Policy` at this resource h as enforced set to `true`, serial\n port connection attempts will be refused. \n - If the `Policy` at this resource is `RestoreDefault`, serial port\n con nection attempts will be allowed.\n - If no `Policy` is set at this resource or anywhere higher in the\n resource hierarchy, serial port connection attempts will be allowed.\n - If no `Policy` is set at this resource, but one exists hi gher in the\n resource hierarchy, the behavior is as if the`Policy` were set at\n this resource.\n\nThe following examples demonstrate the different possi ble layerings:\n\nExample 1 (nearest `Constraint` wins):\n `organizations/foo` has a `Policy` with:\n {enforced: false}\n `projects/bar` has no `Policy` se t.\nThe constraint at `projects/bar` and `organizations/foo` will not be\nenforc ed.\n\nExample 2 (enforcement gets replaced):\n `organizations/foo` has a `Poli cy` with:\n {enforced: false}\n `projects/bar` has a `Policy` with:\n {en forced: true}\nThe constraint at `organizations/foo` is not enforced.\nThe const raint at `projects/bar` is enforced.\n\nExample 3 (RestoreDefault):\n `organiza tions/foo` has a `Policy` with:\n {enforced: true}\n `projects/bar` has a `P olicy` with:\n {RestoreDefault: {}}\nThe constraint at `organizations/foo` is enforced.\nThe constraint at `projects/bar` is not enforced, because\n`constrai nt_default` for the `Constraint` is `ALLOW`.",
1758 "type": "boolean"
1759 }
1760 },
1761 "type": "object"
1930 }, 1762 },
1931 "Lien": { 1763 "Lien": {
1932 "description": "A Lien represents an encumbrance on the actions that can be performed on a\nresource.", 1764 "description": "A Lien represents an encumbrance on the actions that can be performed on a\nresource.",
1933 "id": "Lien", 1765 "id": "Lien",
1934 "properties": { 1766 "properties": {
1935 "parent": { 1767 "parent": {
1936 "description": "A reference to the resource this Lien is att ached to. The server will\nvalidate the parent against those for which Liens are supported.\n\nExample: `projects/1234`", 1768 "description": "A reference to the resource this Lien is att ached to. The server will\nvalidate the parent against those for which Liens are supported.\n\nExample: `projects/1234`",
1937 "type": "string" 1769 "type": "string"
1938 }, 1770 },
1939 "createTime": { 1771 "createTime": {
1940 "description": "The creation time of this Lien.", 1772 "description": "The creation time of this Lien.",
1941 "format": "google-datetime", 1773 "format": "google-datetime",
1942 "type": "string" 1774 "type": "string"
1943 }, 1775 },
1944 "origin": {
1945 "description": "A stable, user-visible/meaningful string ide ntifying the origin of the\nLien, intended to be inspected programmatically. Max imum length of 200\ncharacters.\n\nExample: 'compute.googleapis.com'",
1946 "type": "string"
1947 },
1948 "name": { 1776 "name": {
1949 "description": "A system-generated unique identifier for thi s Lien.\n\nExample: `liens/1234abcd`", 1777 "description": "A system-generated unique identifier for thi s Lien.\n\nExample: `liens/1234abcd`",
1950 "type": "string" 1778 "type": "string"
1951 }, 1779 },
1952 "reason": { 1780 "reason": {
1953 "description": "Concise user-visible strings indicating why an action cannot be performed\non a resource. Maximum lenth of 200 characters.\n \nExample: 'Holds production API key'", 1781 "description": "Concise user-visible strings indicating why an action cannot be performed\non a resource. Maximum lenth of 200 characters.\n \nExample: 'Holds production API key'",
1954 "type": "string" 1782 "type": "string"
1955 }, 1783 },
1784 "origin": {
1785 "description": "A stable, user-visible/meaningful string ide ntifying the origin of the\nLien, intended to be inspected programmatically. Max imum length of 200\ncharacters.\n\nExample: 'compute.googleapis.com'",
1786 "type": "string"
1787 },
1956 "restrictions": { 1788 "restrictions": {
1957 "description": "The types of operations which should be bloc ked as a result of this Lien.\nEach value should correspond to an IAM permission . The server will\nvalidate the permissions against those for which Liens are su pported.\n\nAn empty list is meaningless and will be rejected.\n\nExample: ['res ourcemanager.projects.delete']", 1789 "description": "The types of operations which should be bloc ked as a result of this Lien.\nEach value should correspond to an IAM permission . The server will\nvalidate the permissions against those for which Liens are su pported.\n\nAn empty list is meaningless and will be rejected.\n\nExample: ['res ourcemanager.projects.delete']",
1958 "items": { 1790 "items": {
1959 "type": "string" 1791 "type": "string"
1960 }, 1792 },
1961 "type": "array" 1793 "type": "array"
1962 } 1794 }
1963 }, 1795 },
1964 "type": "object" 1796 "type": "object"
1797 },
1798 "Ancestor": {
1799 "description": "Identifying information for a single ancestor of a p roject.",
1800 "id": "Ancestor",
1801 "properties": {
1802 "resourceId": {
1803 "$ref": "ResourceId",
1804 "description": "Resource id of the ancestor."
1805 }
1806 },
1807 "type": "object"
1808 },
1809 "ListConstraint": {
1810 "description": "A `Constraint` that allows or disallows a list of st ring values, which are\nconfigured by an Organization's policy administrator wit h a `Policy`.",
1811 "id": "ListConstraint",
1812 "properties": {
1813 "suggestedValue": {
1814 "description": "Optional. The Google Cloud Console will try to default to a configuration\nthat matches the value specified in this `Constra int`.",
1815 "type": "string"
1816 }
1817 },
1818 "type": "object"
1819 },
1820 "SetOrgPolicyRequest": {
1821 "description": "The request sent to the SetOrgPolicyRequest method." ,
1822 "id": "SetOrgPolicyRequest",
1823 "properties": {
1824 "policy": {
1825 "$ref": "OrgPolicy",
1826 "description": "`Policy` to set on the resource."
1827 }
1828 },
1829 "type": "object"
1830 },
1831 "SetIamPolicyRequest": {
1832 "description": "Request message for `SetIamPolicy` method.",
1833 "id": "SetIamPolicyRequest",
1834 "properties": {
1835 "policy": {
1836 "$ref": "Policy",
1837 "description": "REQUIRED: The complete policy to be applied to the `resource`. The size of\nthe policy is limited to a few 10s of KB. An emp ty policy is a\nvalid policy but certain Cloud Platform services (such as Projec ts)\nmight reject them."
1838 },
1839 "updateMask": {
1840 "description": "OPTIONAL: A FieldMask specifying which field s of the policy to modify. Only\nthe fields in the mask will be modified. If no mask is provided, the\nfollowing default mask is used:\npaths: \"bindings, etag\ "\nThis field is only used by Cloud IAM.",
1841 "format": "google-fieldmask",
1842 "type": "string"
1843 }
1844 },
1845 "type": "object"
1846 },
1847 "Empty": {
1848 "description": "A generic empty message that you can re-use to avoid defining duplicated\nempty messages in your APIs. A typical example is to use i t as the request\nor the response type of an API method. For instance:\n\n se rvice Foo {\n rpc Bar(google.protobuf.Empty) returns (google.protobuf.Empty );\n }\n\nThe JSON representation for `Empty` is empty JSON object `{}`.",
1849 "id": "Empty",
1850 "properties": {},
1851 "type": "object"
1852 },
1853 "Organization": {
1854 "description": "The root node in the resource hierarchy to which a p articular entity's\n(e.g., company) resources belong.",
1855 "id": "Organization",
1856 "properties": {
1857 "creationTime": {
1858 "description": "Timestamp when the Organization was created. Assigned by the server.\n@OutputOnly",
1859 "format": "google-datetime",
1860 "type": "string"
1861 },
1862 "owner": {
1863 "$ref": "OrganizationOwner",
1864 "description": "The owner of this Organization. The owner sh ould be specified on\ncreation. Once set, it cannot be changed.\nThis field is r equired."
1865 },
1866 "lifecycleState": {
1867 "description": "The organization's current lifecycle state. Assigned by the server.\n@OutputOnly",
1868 "enum": [
1869 "LIFECYCLE_STATE_UNSPECIFIED",
1870 "ACTIVE",
1871 "DELETE_REQUESTED"
1872 ],
1873 "enumDescriptions": [
1874 "Unspecified state. This is only useful for distinguish ing unset values.",
1875 "The normal and active state.",
1876 "The organization has been marked for deletion by the us er."
1877 ],
1878 "type": "string"
1879 },
1880 "name": {
1881 "description": "Output Only. The resource name of the organi zation. This is the\norganization's relative path in the API. Its format is\n\"o rganizations/[organization_id]\". For example, \"organizations/1234\".",
1882 "type": "string"
1883 },
1884 "displayName": {
1885 "description": "A friendly string to be used to refer to the Organization in the UI.\nAssigned by the server, set to the primary domain of t he G Suite\ncustomer that owns the organization.\n@OutputOnly",
1886 "type": "string"
1887 }
1888 },
1889 "type": "object"
1890 },
1891 "ListAvailableOrgPolicyConstraintsResponse": {
1892 "description": "The response returned from the ListAvailableOrgPolic yConstraints method.\nReturns all `Constraints` that could be set at this level of the hierarchy\n(contrast with the response from `ListPolicies`, which returns all policies\nwhich are set).",
1893 "id": "ListAvailableOrgPolicyConstraintsResponse",
1894 "properties": {
1895 "constraints": {
1896 "description": "The collection of constraints that are setta ble on the request resource.",
1897 "items": {
1898 "$ref": "Constraint"
1899 },
1900 "type": "array"
1901 },
1902 "nextPageToken": {
1903 "description": "Page token used to retrieve the next page. T his is currently not used.",
1904 "type": "string"
1905 }
1906 },
1907 "type": "object"
1908 },
1909 "ListPolicy": {
1910 "description": "Used in `policy_type` to specify how `list_policy` b ehaves at this\nresource.\n\nA `ListPolicy` can define specific values that are allowed or denied by\nsetting either the `allowed_values` or `denied_values` fie lds. It can also\nbe used to allow or deny all values, by setting the `all_value s` field. If\n`all_values` is `ALL_VALUES_UNSPECIFIED`, exactly one of `allowed_ values`\nor `denied_values` must be set (attempting to set both or neither will\ nresult in a failed request). If `all_values` is set to either `ALLOW` or\n`DENY `, `allowed_values` and `denied_values` must be unset.",
1911 "id": "ListPolicy",
1912 "properties": {
1913 "deniedValues": {
1914 "description": "List of values denied at this resource. Can only be set if no values are\nset for `allowed_values` and `all_values` is set t o\n`ALL_VALUES_UNSPECIFIED`.",
1915 "items": {
1916 "type": "string"
1917 },
1918 "type": "array"
1919 },
1920 "allValues": {
1921 "description": "The policy all_values state.",
1922 "enum": [
1923 "ALL_VALUES_UNSPECIFIED",
1924 "ALLOW",
1925 "DENY"
1926 ],
1927 "enumDescriptions": [
1928 "Indicates that either allowed_values or denied_values m ust be set.",
1929 "A policy with this set allows all values.",
1930 "A policy with this set denies all values."
1931 ],
1932 "type": "string"
1933 },
1934 "allowedValues": {
1935 "description": "List of values allowed at this resource. Ca n only be set if no values\nare set for `denied_values` and `all_values` is set to\n`ALL_VALUES_UNSPECIFIED`.",
1936 "items": {
1937 "type": "string"
1938 },
1939 "type": "array"
1940 },
1941 "suggestedValue": {
1942 "description": "Optional. The Google Cloud Console will try to default to a configuration\nthat matches the value specified in this `Policy` . If `suggested_value`\nis not set, it will inherit the value specified higher i n the hierarchy,\nunless `inherit_from_parent` is `false`.",
1943 "type": "string"
1944 },
1945 "inheritFromParent": {
1946 "description": "Determines the inheritance behavior for this `Policy`.\n\nBy default, a `ListPolicy` set at a resource supercedes any `Polic y` set\nanywhere up the resource hierarchy. However, if `inherit_from_parent` is \nset to `true`, then the values from the effective `Policy` of the parent\nreso urce are inherited, meaning the values set in this `Policy` are\nadded to the va lues inherited up the hierarchy.\n\nSetting `Policy` hierarchies that inherit bo th allowed values and denied\nvalues isn't recommended in most circumstances to keep the configuration\nsimple and understandable. However, it is possible to se t a `Policy` with\n`allowed_values` set that inherits a `Policy` with `denied_va lues` set.\nIn this case, the values that are allowed must be in `allowed_values ` and\nnot present in `denied_values`.\n\nFor example, suppose you have a `Const raint`\n`constraints/serviceuser.services`, which has a `constraint_type` of\n`l ist_constraint`, and with `constraint_default` set to `ALLOW`.\nSuppose that at the Organization level, a `Policy` is applied that\nrestricts the allowed API ac tivations to {`E1`, `E2`}. Then, if a\n`Policy` is applied to a project below th e Organization that has\n`inherit_from_parent` set to `false` and field all_valu es set to DENY,\nthen an attempt to activate any API will be denied.\n\nThe foll owing examples demonstrate different possible layerings:\n\nExample 1 (no inheri ted values):\n `organizations/foo` has a `Policy` with values:\n {allowed_va lues: “E1” allowed_values:”E2”}\n ``projects/bar`` has `inherit_from_parent` `f alse` and values:\n {allowed_values: \"E3\" allowed_values: \"E4\"}\nThe acce pted values at `organizations/foo` are `E1`, `E2`.\nThe accepted values at `proj ects/bar` are `E3`, and `E4`.\n\nExample 2 (inherited values):\n `organizations /foo` has a `Policy` with values:\n {allowed_values: “E1” allowed_values:”E2” }\n `projects/bar` has a `Policy` with values:\n {value: “E3” value: ”E4” in herit_from_parent: true}\nThe accepted values at `organizations/foo` are `E1`, ` E2`.\nThe accepted values at `projects/bar` are `E1`, `E2`, `E3`, and `E4`.\n\nE xample 3 (inheriting both allowed and denied values):\n `organizations/foo` has a `Policy` with values:\n {allowed_values: \"E1\" allowed_values: \"E2\"}\n `projects/bar` has a `Policy` with:\n {denied_values: \"E1\"}\nThe accepted values at `organizations/foo` are `E1`, `E2`.\nThe value accepted at `projects/b ar` is `E2`.\n\nExample 4 (RestoreDefault):\n `organizations/foo` has a `Policy ` with values:\n {allowed_values: “E1” allowed_values:”E2”}\n `projects/bar` has a `Policy` with values:\n {RestoreDefault: {}}\nThe accepted values at ` organizations/foo` are `E1`, `E2`.\nThe accepted values at `projects/bar` are ei ther all or none depending on\nthe value of `constraint_default` (if `ALLOW`, al l; if\n`DENY`, none).\n\nExample 5 (no policy inherits parent policy):\n `organ izations/foo` has no `Policy` set.\n `projects/bar` has no `Policy` set.\nThe a ccepted values at both levels are either all or none depending on\nthe value of `constraint_default` (if `ALLOW`, all; if\n`DENY`, none).\n\nExample 6 (ListCons traint allowing all):\n `organizations/foo` has a `Policy` with values:\n {a llowed_values: “E1” allowed_values: ”E2”}\n `projects/bar` has a `Policy` with: \n {all: ALLOW}\nThe accepted values at `organizations/foo` are `E1`, E2`.\nA ny value is accepted at `projects/bar`.\n\nExample 7 (ListConstraint allowing no ne):\n `organizations/foo` has a `Policy` with values:\n {allowed_values: “E 1” allowed_values: ”E2”}\n `projects/bar` has a `Policy` with:\n {all: DENY} \nThe accepted values at `organizations/foo` are `E1`, E2`.\nNo value is accepte d at `projects/bar`.",
1947 "type": "boolean"
1948 }
1949 },
1950 "type": "object"
1951 },
1952 "GetAncestryResponse": {
1953 "description": "Response from the GetAncestry method.",
1954 "id": "GetAncestryResponse",
1955 "properties": {
1956 "ancestor": {
1957 "description": "Ancestors are ordered from bottom to top of the resource hierarchy. The\nfirst ancestor is the project itself, followed by t he project's parent,\netc.",
1958 "items": {
1959 "$ref": "Ancestor"
1960 },
1961 "type": "array"
1962 }
1963 },
1964 "type": "object"
1965 } 1965 }
1966 }, 1966 },
1967 "servicePath": "", 1967 "servicePath": "",
1968 "title": "Google Cloud Resource Manager API", 1968 "title": "Google Cloud Resource Manager API",
1969 "version": "v1" 1969 "version": "v1"
1970 } 1970 }
OLDNEW
« no previous file with comments | « discovery/googleapis/cloudkms__v1.json ('k') | discovery/googleapis/cloudtrace__v1.json » ('j') | no next file with comments »

Powered by Google App Engine
This is Rietveld 408576698