orgpolicy

package
v0.114.0 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Mar 17, 2023 License: BSD-3-Clause Imports: 16 Imported by: 0

Documentation

Overview

Package orgpolicy provides access to the Organization Policy API.

For product documentation, see: https://cloud.google.com/orgpolicy/docs/reference/rest/index.html

Creating a client

Usage example: 

import "google.golang.org/api/orgpolicy/v2"
...
ctx := context.Background()
orgpolicyService, err := orgpolicy.NewService(ctx)

In this example, Google Application Default Credentials are used for authentication.

For information on how to create and obtain Application Default Credentials, see https://developers.google.com/identity/protocols/application-default-credentials.

Other authentication options

To use an API key for authentication (note: some APIs do not support API keys), use option.WithAPIKey: 

orgpolicyService, err := orgpolicy.NewService(ctx, option.WithAPIKey("AIza..."))

To use an OAuth token (e.g., a user token obtained via a three-legged OAuth flow), use option.WithTokenSource: 

config := &oauth2.Config{...}
// ...
token, err := config.Exchange(ctx, ...)
orgpolicyService, err := orgpolicy.NewService(ctx, option.WithTokenSource(config.TokenSource(ctx, token)))

See https://godoc.org/google.golang.org/api/option/ for details on options.

Index

Constants

View Source 
const (
	// See, edit, configure, and delete your Google Cloud data and see the
	// email address for your Google Account.
	CloudPlatformScope = "https://www.googleapis.com/auth/cloud-platform"
)

OAuth2 scopes used by this API.

Variables

This section is empty.

Functions

This section is empty.

Types

type FoldersConstraintsListCall 

type FoldersConstraintsListCall struct {
	// contains filtered or unexported fields
}

func (*FoldersConstraintsListCall) Context 

func (c *FoldersConstraintsListCall) Context(ctx context.Context) *FoldersConstraintsListCall

Context sets the context to be used in this call's Do method. Any pending HTTP request will be aborted if the provided context is canceled.

func (*FoldersConstraintsListCall) Do 

func (c *FoldersConstraintsListCall) Do(opts ...googleapi.CallOption) (*GoogleCloudOrgpolicyV2ListConstraintsResponse, error)

Do executes the "orgpolicy.folders.constraints.list" call. Exactly one of *GoogleCloudOrgpolicyV2ListConstraintsResponse or error will be non-nil. Any non-2xx status code is an error. Response headers are in either *GoogleCloudOrgpolicyV2ListConstraintsResponse.ServerResponse.Header or (if a response was returned at all) in error.(*googleapi.Error).Header. Use googleapi.IsNotModified to check whether the returned error was because http.StatusNotModified was returned.

func (*FoldersConstraintsListCall) Fields 

func (c *FoldersConstraintsListCall) Fields(s ...googleapi.Field) *FoldersConstraintsListCall

Fields allows partial responses to be retrieved. See https://developers.google.com/gdata/docs/2.0/basics#PartialResponse for more information.

func (*FoldersConstraintsListCall) Header 

func (c *FoldersConstraintsListCall) Header() http.Header

Header returns an http.Header that can be modified by the caller to add HTTP headers to the request.

func (*FoldersConstraintsListCall) IfNoneMatch 

func (c *FoldersConstraintsListCall) IfNoneMatch(entityTag string) *FoldersConstraintsListCall

IfNoneMatch sets the optional parameter which makes the operation fail if the object's ETag matches the given value. This is useful for getting updates only after the object has changed since the last request. Use googleapi.IsNotModified to check whether the response error from Do is the result of In-None-Match.

func (*FoldersConstraintsListCall) PageSize 

func (c *FoldersConstraintsListCall) PageSize(pageSize int64) *FoldersConstraintsListCall

PageSize sets the optional parameter "pageSize": Size of the pages to be returned. This is currently unsupported and will be ignored. The server may at any point start using this field to limit page size.

func (*FoldersConstraintsListCall) PageToken 

func (c *FoldersConstraintsListCall) PageToken(pageToken string) *FoldersConstraintsListCall

PageToken sets the optional parameter "pageToken": Page token used to retrieve the next page. This is currently unsupported and will be ignored. The server may at any point start using this field.

func (*FoldersConstraintsListCall) Pages 

func (c *FoldersConstraintsListCall) Pages(ctx context.Context, f func(*GoogleCloudOrgpolicyV2ListConstraintsResponse) error) error

Pages invokes f for each page of results. A non-nil error returned from f will halt the iteration. The provided context supersedes any context provided to the Context method.

type FoldersConstraintsService 

type FoldersConstraintsService struct {
	// contains filtered or unexported fields
}

func NewFoldersConstraintsService 

func NewFoldersConstraintsService(s *Service) *FoldersConstraintsService

func (*FoldersConstraintsService) List 

func (r *FoldersConstraintsService) List(parent string) *FoldersConstraintsListCall

List: Lists constraints that could be applied on the specified resource.

  • parent: The Google Cloud resource that parents the constraint. Must be in one of the following forms: * `projects/{project_number}` * `projects/{project_id}` * `folders/{folder_id}` * `organizations/{organization_id}`.

type FoldersPoliciesCreateCall 

type FoldersPoliciesCreateCall struct {
	// contains filtered or unexported fields
}

func (*FoldersPoliciesCreateCall) Context 

func (c *FoldersPoliciesCreateCall) Context(ctx context.Context) *FoldersPoliciesCreateCall

Context sets the context to be used in this call's Do method. Any pending HTTP request will be aborted if the provided context is canceled.

func (*FoldersPoliciesCreateCall) Do 

func (c *FoldersPoliciesCreateCall) Do(opts ...googleapi.CallOption) (*GoogleCloudOrgpolicyV2Policy, error)

Do executes the "orgpolicy.folders.policies.create" call. Exactly one of *GoogleCloudOrgpolicyV2Policy or error will be non-nil. Any non-2xx status code is an error. Response headers are in either *GoogleCloudOrgpolicyV2Policy.ServerResponse.Header or (if a response was returned at all) in error.(*googleapi.Error).Header. Use googleapi.IsNotModified to check whether the returned error was because http.StatusNotModified was returned.

func (*FoldersPoliciesCreateCall) Fields 

func (c *FoldersPoliciesCreateCall) Fields(s ...googleapi.Field) *FoldersPoliciesCreateCall

Fields allows partial responses to be retrieved. See https://developers.google.com/gdata/docs/2.0/basics#PartialResponse for more information.

func (*FoldersPoliciesCreateCall) Header 

func (c *FoldersPoliciesCreateCall) Header() http.Header

Header returns an http.Header that can be modified by the caller to add HTTP headers to the request.

type FoldersPoliciesDeleteCall 

type FoldersPoliciesDeleteCall struct {
	// contains filtered or unexported fields
}

func (*FoldersPoliciesDeleteCall) Context 

func (c *FoldersPoliciesDeleteCall) Context(ctx context.Context) *FoldersPoliciesDeleteCall

Context sets the context to be used in this call's Do method. Any pending HTTP request will be aborted if the provided context is canceled.

func (*FoldersPoliciesDeleteCall) Do 

func (c *FoldersPoliciesDeleteCall) Do(opts ...googleapi.CallOption) (*GoogleProtobufEmpty, error)

Do executes the "orgpolicy.folders.policies.delete" call. Exactly one of *GoogleProtobufEmpty or error will be non-nil. Any non-2xx status code is an error. Response headers are in either *GoogleProtobufEmpty.ServerResponse.Header or (if a response was returned at all) in error.(*googleapi.Error).Header. Use googleapi.IsNotModified to check whether the returned error was because http.StatusNotModified was returned.

func (*FoldersPoliciesDeleteCall) Fields 

func (c *FoldersPoliciesDeleteCall) Fields(s ...googleapi.Field) *FoldersPoliciesDeleteCall

Fields allows partial responses to be retrieved. See https://developers.google.com/gdata/docs/2.0/basics#PartialResponse for more information.

func (*FoldersPoliciesDeleteCall) Header 

func (c *FoldersPoliciesDeleteCall) Header() http.Header

Header returns an http.Header that can be modified by the caller to add HTTP headers to the request.

type FoldersPoliciesGetCall 

type FoldersPoliciesGetCall struct {
	// contains filtered or unexported fields
}

func (*FoldersPoliciesGetCall) Context 

func (c *FoldersPoliciesGetCall) Context(ctx context.Context) *FoldersPoliciesGetCall

Context sets the context to be used in this call's Do method. Any pending HTTP request will be aborted if the provided context is canceled.

func (*FoldersPoliciesGetCall) Do 

func (c *FoldersPoliciesGetCall) Do(opts ...googleapi.CallOption) (*GoogleCloudOrgpolicyV2Policy, error)

Do executes the "orgpolicy.folders.policies.get" call. Exactly one of *GoogleCloudOrgpolicyV2Policy or error will be non-nil. Any non-2xx status code is an error. Response headers are in either *GoogleCloudOrgpolicyV2Policy.ServerResponse.Header or (if a response was returned at all) in error.(*googleapi.Error).Header. Use googleapi.IsNotModified to check whether the returned error was because http.StatusNotModified was returned.

func (*FoldersPoliciesGetCall) Fields 

func (c *FoldersPoliciesGetCall) Fields(s ...googleapi.Field) *FoldersPoliciesGetCall

Fields allows partial responses to be retrieved. See https://developers.google.com/gdata/docs/2.0/basics#PartialResponse for more information.

func (*FoldersPoliciesGetCall) Header 

func (c *FoldersPoliciesGetCall) Header() http.Header

Header returns an http.Header that can be modified by the caller to add HTTP headers to the request.

func (*FoldersPoliciesGetCall) IfNoneMatch 

func (c *FoldersPoliciesGetCall) IfNoneMatch(entityTag string) *FoldersPoliciesGetCall

IfNoneMatch sets the optional parameter which makes the operation fail if the object's ETag matches the given value. This is useful for getting updates only after the object has changed since the last request. Use googleapi.IsNotModified to check whether the response error from Do is the result of In-None-Match.

type FoldersPoliciesGetEffectivePolicyCall 

type FoldersPoliciesGetEffectivePolicyCall struct {
	// contains filtered or unexported fields
}

func (*FoldersPoliciesGetEffectivePolicyCall) Context 

func (c *FoldersPoliciesGetEffectivePolicyCall) Context(ctx context.Context) *FoldersPoliciesGetEffectivePolicyCall

Context sets the context to be used in this call's Do method. Any pending HTTP request will be aborted if the provided context is canceled.

func (*FoldersPoliciesGetEffectivePolicyCall) Do 

func (c *FoldersPoliciesGetEffectivePolicyCall) Do(opts ...googleapi.CallOption) (*GoogleCloudOrgpolicyV2Policy, error)

Do executes the "orgpolicy.folders.policies.getEffectivePolicy" call. Exactly one of *GoogleCloudOrgpolicyV2Policy or error will be non-nil. Any non-2xx status code is an error. Response headers are in either *GoogleCloudOrgpolicyV2Policy.ServerResponse.Header or (if a response was returned at all) in error.(*googleapi.Error).Header. Use googleapi.IsNotModified to check whether the returned error was because http.StatusNotModified was returned.

func (*FoldersPoliciesGetEffectivePolicyCall) Fields 

func (c *FoldersPoliciesGetEffectivePolicyCall) Fields(s ...googleapi.Field) *FoldersPoliciesGetEffectivePolicyCall

Fields allows partial responses to be retrieved. See https://developers.google.com/gdata/docs/2.0/basics#PartialResponse for more information.

func (*FoldersPoliciesGetEffectivePolicyCall) Header 

func (c *FoldersPoliciesGetEffectivePolicyCall) Header() http.Header

Header returns an http.Header that can be modified by the caller to add HTTP headers to the request.

func (*FoldersPoliciesGetEffectivePolicyCall) IfNoneMatch 

func (c *FoldersPoliciesGetEffectivePolicyCall) IfNoneMatch(entityTag string) *FoldersPoliciesGetEffectivePolicyCall

IfNoneMatch sets the optional parameter which makes the operation fail if the object's ETag matches the given value. This is useful for getting updates only after the object has changed since the last request. Use googleapi.IsNotModified to check whether the response error from Do is the result of In-None-Match.

type FoldersPoliciesListCall 

type FoldersPoliciesListCall struct {
	// contains filtered or unexported fields
}

func (*FoldersPoliciesListCall) Context 

func (c *FoldersPoliciesListCall) Context(ctx context.Context) *FoldersPoliciesListCall

Context sets the context to be used in this call's Do method. Any pending HTTP request will be aborted if the provided context is canceled.

func (*FoldersPoliciesListCall) Do 

func (c *FoldersPoliciesListCall) Do(opts ...googleapi.CallOption) (*GoogleCloudOrgpolicyV2ListPoliciesResponse, error)

Do executes the "orgpolicy.folders.policies.list" call. Exactly one of *GoogleCloudOrgpolicyV2ListPoliciesResponse or error will be non-nil. Any non-2xx status code is an error. Response headers are in either *GoogleCloudOrgpolicyV2ListPoliciesResponse.ServerResponse.Header or (if a response was returned at all) in error.(*googleapi.Error).Header. Use googleapi.IsNotModified to check whether the returned error was because http.StatusNotModified was returned.

func (*FoldersPoliciesListCall) Fields 

func (c *FoldersPoliciesListCall) Fields(s ...googleapi.Field) *FoldersPoliciesListCall

Fields allows partial responses to be retrieved. See https://developers.google.com/gdata/docs/2.0/basics#PartialResponse for more information.

func (*FoldersPoliciesListCall) Header 

func (c *FoldersPoliciesListCall) Header() http.Header

Header returns an http.Header that can be modified by the caller to add HTTP headers to the request.

func (*FoldersPoliciesListCall) IfNoneMatch 

func (c *FoldersPoliciesListCall) IfNoneMatch(entityTag string) *FoldersPoliciesListCall

IfNoneMatch sets the optional parameter which makes the operation fail if the object's ETag matches the given value. This is useful for getting updates only after the object has changed since the last request. Use googleapi.IsNotModified to check whether the response error from Do is the result of In-None-Match.

func (*FoldersPoliciesListCall) PageSize 

func (c *FoldersPoliciesListCall) PageSize(pageSize int64) *FoldersPoliciesListCall

PageSize sets the optional parameter "pageSize": Size of the pages to be returned. This is currently unsupported and will be ignored. The server may at any point start using this field to limit page size.

func (*FoldersPoliciesListCall) PageToken 

func (c *FoldersPoliciesListCall) PageToken(pageToken string) *FoldersPoliciesListCall

PageToken sets the optional parameter "pageToken": Page token used to retrieve the next page. This is currently unsupported and will be ignored. The server may at any point start using this field.

func (*FoldersPoliciesListCall) Pages 

func (c *FoldersPoliciesListCall) Pages(ctx context.Context, f func(*GoogleCloudOrgpolicyV2ListPoliciesResponse) error) error

Pages invokes f for each page of results. A non-nil error returned from f will halt the iteration. The provided context supersedes any context provided to the Context method.

type FoldersPoliciesPatchCall 

type FoldersPoliciesPatchCall struct {
	// contains filtered or unexported fields
}

func (*FoldersPoliciesPatchCall) Context 

func (c *FoldersPoliciesPatchCall) Context(ctx context.Context) *FoldersPoliciesPatchCall

Context sets the context to be used in this call's Do method. Any pending HTTP request will be aborted if the provided context is canceled.

func (*FoldersPoliciesPatchCall) Do 

func (c *FoldersPoliciesPatchCall) Do(opts ...googleapi.CallOption) (*GoogleCloudOrgpolicyV2Policy, error)

Do executes the "orgpolicy.folders.policies.patch" call. Exactly one of *GoogleCloudOrgpolicyV2Policy or error will be non-nil. Any non-2xx status code is an error. Response headers are in either *GoogleCloudOrgpolicyV2Policy.ServerResponse.Header or (if a response was returned at all) in error.(*googleapi.Error).Header. Use googleapi.IsNotModified to check whether the returned error was because http.StatusNotModified was returned.

func (*FoldersPoliciesPatchCall) Fields 

func (c *FoldersPoliciesPatchCall) Fields(s ...googleapi.Field) *FoldersPoliciesPatchCall

Fields allows partial responses to be retrieved. See https://developers.google.com/gdata/docs/2.0/basics#PartialResponse for more information.

func (*FoldersPoliciesPatchCall) Header 

func (c *FoldersPoliciesPatchCall) Header() http.Header

Header returns an http.Header that can be modified by the caller to add HTTP headers to the request.

func (*FoldersPoliciesPatchCall) UpdateMask added in v0.108.0 

func (c *FoldersPoliciesPatchCall) UpdateMask(updateMask string) *FoldersPoliciesPatchCall

UpdateMask sets the optional parameter "updateMask": Field mask used to specify the fields to be overwritten in the policy by the set. The fields specified in the update_mask are relative to the policy, not the full request.

type FoldersPoliciesService 

type FoldersPoliciesService struct {
	// contains filtered or unexported fields
}

func NewFoldersPoliciesService 

func NewFoldersPoliciesService(s *Service) *FoldersPoliciesService

func (*FoldersPoliciesService) Create 

func (r *FoldersPoliciesService) Create(parent string, googlecloudorgpolicyv2policy *GoogleCloudOrgpolicyV2Policy) *FoldersPoliciesCreateCall

Create: Creates a policy. Returns a `google.rpc.Status` with `google.rpc.Code.NOT_FOUND` if the constraint does not exist. Returns a `google.rpc.Status` with `google.rpc.Code.ALREADY_EXISTS` if the policy already exists on the given Google Cloud resource.

  • parent: The Google Cloud resource that will parent the new policy. Must be in one of the following forms: * `projects/{project_number}` * `projects/{project_id}` * `folders/{folder_id}` * `organizations/{organization_id}`.

func (*FoldersPoliciesService) Delete 

func (r *FoldersPoliciesService) Delete(name string) *FoldersPoliciesDeleteCall

Delete: Deletes a policy. Returns a `google.rpc.Status` with `google.rpc.Code.NOT_FOUND` if the constraint or organization policy does not exist.

  • name: Name of the policy to delete. See the policy entry for naming rules.

func (*FoldersPoliciesService) Get 

func (r *FoldersPoliciesService) Get(name string) *FoldersPoliciesGetCall

Get: Gets a policy on a resource. If no policy is set on the resource, `NOT_FOUND` is returned. The `etag` value can be used with `UpdatePolicy()` to update a policy during read-modify-write.

  • name: Resource name of the policy. See `Policy` for naming requirements.

func (*FoldersPoliciesService) GetEffectivePolicy 

func (r *FoldersPoliciesService) GetEffectivePolicy(name string) *FoldersPoliciesGetEffectivePolicyCall

GetEffectivePolicy: Gets the effective policy on a resource. This is the result of merging policies in the resource hierarchy and evaluating conditions. The returned policy will not have an `etag` or `condition` set because it is an evaluated policy across multiple resources. Subtrees of Resource Manager resource hierarchy with 'under:' prefix will not be expanded.

  • name: The effective policy to compute. See `Policy` for naming rules.

func (*FoldersPoliciesService) List 

func (r *FoldersPoliciesService) List(parent string) *FoldersPoliciesListCall

List: Retrieves all of the policies that exist on a particular resource.

  • parent: The target Google Cloud resource that parents the set of constraints and policies that will be returned from this call. Must be in one of the following forms: * `projects/{project_number}` * `projects/{project_id}` * `folders/{folder_id}` * `organizations/{organization_id}`.

func (*FoldersPoliciesService) Patch 

func (r *FoldersPoliciesService) Patch(name string, googlecloudorgpolicyv2policy *GoogleCloudOrgpolicyV2Policy) *FoldersPoliciesPatchCall

Patch: Updates a policy. Returns a `google.rpc.Status` with `google.rpc.Code.NOT_FOUND` if the constraint or the policy do not exist. Returns a `google.rpc.Status` with `google.rpc.Code.ABORTED` if the etag supplied in the request does not match the persisted etag of the policy Note: the supplied policy will perform a full overwrite of all fields.

  • name: Immutable. The resource name of the policy. Must be one of the following forms, where constraint_name is the name of the constraint which this policy configures: * `projects/{project_number}/policies/{constraint_name}` * `folders/{folder_id}/policies/{constraint_name}` * `organizations/{organization_id}/policies/{constraint_name}` For example, "projects/123/policies/compute.disableSerialPortAccess". Note: `projects/{project_id}/policies/{constraint_name}` is also an acceptable name for API requests, but responses will return the name using the equivalent project number.

type FoldersService 

type FoldersService struct {
	Constraints *FoldersConstraintsService

	Policies *FoldersPoliciesService
	// contains filtered or unexported fields
}

func NewFoldersService 

func NewFoldersService(s *Service) *FoldersService

type GoogleCloudOrgpolicyV2AlternatePolicySpec added in v0.65.0 

type GoogleCloudOrgpolicyV2AlternatePolicySpec struct {
	// Launch: Reference to the launch that will be used while audit logging
	// and to control the launch. Should be set only in the alternate
	// policy.
	Launch string `json:"launch,omitempty"`

	// Spec: Specify constraint for configurations of Google Cloud
	// resources.
	Spec *GoogleCloudOrgpolicyV2PolicySpec `json:"spec,omitempty"`

	// ForceSendFields is a list of field names (e.g. "Launch") to
	// unconditionally include in API requests. By default, fields with
	// empty or default values are omitted from API requests. However, any
	// non-pointer, non-interface field appearing in ForceSendFields will be
	// sent to the server regardless of whether the field is empty or not.
	// This may be used to include empty fields in Patch requests.
	ForceSendFields []string `json:"-"`

	// NullFields is a list of field names (e.g. "Launch") to include in API
	// requests with the JSON null value. By default, fields with empty
	// values are omitted from API requests. However, any field with an
	// empty value appearing in NullFields will be sent to the server as
	// null. It is an error if a field in this list has a non-empty value.
	// This may be used to include null fields in Patch requests.
	NullFields []string `json:"-"`
}

GoogleCloudOrgpolicyV2AlternatePolicySpec: Similar to PolicySpec but with an extra 'launch' field for launch reference. The PolicySpec here is specific for dry-run/darklaunch.

func (*GoogleCloudOrgpolicyV2AlternatePolicySpec) MarshalJSON added in v0.65.0 

func (s *GoogleCloudOrgpolicyV2AlternatePolicySpec) MarshalJSON() ([]byte, error)

type GoogleCloudOrgpolicyV2Constraint 

type GoogleCloudOrgpolicyV2Constraint struct {
	// BooleanConstraint: Defines this constraint as being a
	// BooleanConstraint.
	BooleanConstraint *GoogleCloudOrgpolicyV2ConstraintBooleanConstraint `json:"booleanConstraint,omitempty"`

	// ConstraintDefault: The evaluation behavior of this constraint in the
	// absence of a policy.
	//
	// Possible values:
	//   "CONSTRAINT_DEFAULT_UNSPECIFIED" - This is only used for
	// distinguishing unset values and should never be used.
	//   "ALLOW" - Indicate that all values are allowed for list
	// constraints. Indicate that enforcement is off for boolean
	// constraints.
	//   "DENY" - Indicate that all values are denied for list constraints.
	// Indicate that enforcement is on for boolean constraints.
	ConstraintDefault string `json:"constraintDefault,omitempty"`

	// Description: Detailed description of what this constraint controls as
	// well as how and where it is enforced. Mutable.
	Description string `json:"description,omitempty"`

	// DisplayName: The human readable name. Mutable.
	DisplayName string `json:"displayName,omitempty"`

	// ListConstraint: Defines this constraint as being a ListConstraint.
	ListConstraint *GoogleCloudOrgpolicyV2ConstraintListConstraint `json:"listConstraint,omitempty"`

	// Name: Immutable. The resource name of the constraint. Must be in one
	// of the following forms: *
	// `projects/{project_number}/constraints/{constraint_name}` *
	// `folders/{folder_id}/constraints/{constraint_name}` *
	// `organizations/{organization_id}/constraints/{constraint_name}` For
	// example, "/projects/123/constraints/compute.disableSerialPortAccess".
	Name string `json:"name,omitempty"`

	// SupportsDryRun: Shows if dry run is supported for this constraint or
	// not.
	SupportsDryRun bool `json:"supportsDryRun,omitempty"`

	// ForceSendFields is a list of field names (e.g. "BooleanConstraint")
	// to unconditionally include in API requests. By default, fields with
	// empty or default values are omitted from API requests. However, any
	// non-pointer, non-interface field appearing in ForceSendFields will be
	// sent to the server regardless of whether the field is empty or not.
	// This may be used to include empty fields in Patch requests.
	ForceSendFields []string `json:"-"`

	// NullFields is a list of field names (e.g. "BooleanConstraint") to
	// include in API requests with the JSON null value. By default, fields
	// with empty values are omitted from API requests. However, any field
	// with an empty value appearing in NullFields will be sent to the
	// server as null. It is an error if a field in this list has a
	// non-empty value. This may be used to include null fields in Patch
	// requests.
	NullFields []string `json:"-"`
}

GoogleCloudOrgpolicyV2Constraint: A constraint describes a way to restrict resource's configuration. For example, you could enforce a constraint that controls which Google Cloud services can be activated across an organization, or whether a Compute Engine instance can have serial port connections established. Constraints can be configured by the organization policy administrator to fit the needs of the organization by setting a policy that includes constraints at different locations in the organization's resource hierarchy. Policies are inherited down the resource hierarchy from higher levels, but can also be overridden. For details about the inheritance rules please read about `policies`. Constraints have a default behavior determined by the `constraint_default` field, which is the enforcement behavior that is used in the absence of a policy being defined or inherited for the resource in question.

func (*GoogleCloudOrgpolicyV2Constraint) MarshalJSON 

func (s *GoogleCloudOrgpolicyV2Constraint) MarshalJSON() ([]byte, error)

type GoogleCloudOrgpolicyV2ConstraintBooleanConstraint 

type GoogleCloudOrgpolicyV2ConstraintBooleanConstraint struct {
}

GoogleCloudOrgpolicyV2ConstraintBooleanConstraint: A constraint that is either enforced or not. For example, a constraint `constraints/compute.disableSerialPortAccess`. If it is enforced on a VM instance, serial port connections will not be opened to that instance.

type GoogleCloudOrgpolicyV2ConstraintListConstraint 

type GoogleCloudOrgpolicyV2ConstraintListConstraint struct {
	// SupportsIn: Indicates whether values grouped into categories can be
	// used in `Policy.allowed_values` and `Policy.denied_values`. For
	// example, "in:Python" would match any value in the 'Python' group.
	SupportsIn bool `json:"supportsIn,omitempty"`

	// SupportsUnder: Indicates whether subtrees of the Resource Manager
	// resource hierarchy can be used in `Policy.allowed_values` and
	// `Policy.denied_values`. For example, "under:folders/123" would
	// match any resource under the 'folders/123' folder.
	SupportsUnder bool `json:"supportsUnder,omitempty"`

	// ForceSendFields is a list of field names (e.g. "SupportsIn") to
	// unconditionally include in API requests. By default, fields with
	// empty or default values are omitted from API requests. However, any
	// non-pointer, non-interface field appearing in ForceSendFields will be
	// sent to the server regardless of whether the field is empty or not.
	// This may be used to include empty fields in Patch requests.
	ForceSendFields []string `json:"-"`

	// NullFields is a list of field names (e.g. "SupportsIn") to include in
	// API requests with the JSON null value. By default, fields with empty
	// values are omitted from API requests. However, any field with an
	// empty value appearing in NullFields will be sent to the server as
	// null. It is an error if a field in this list has a non-empty value.
	// This may be used to include null fields in Patch requests.
	NullFields []string `json:"-"`
}

GoogleCloudOrgpolicyV2ConstraintListConstraint: A constraint that allows or disallows a list of string values, which are configured by an Organization Policy administrator with a policy.

func (*GoogleCloudOrgpolicyV2ConstraintListConstraint) MarshalJSON 

func (s *GoogleCloudOrgpolicyV2ConstraintListConstraint) MarshalJSON() ([]byte, error)

type GoogleCloudOrgpolicyV2CustomConstraint added in v0.61.0 

type GoogleCloudOrgpolicyV2CustomConstraint struct {
	// ActionType: Allow or deny type.
	//
	// Possible values:
	//   "ACTION_TYPE_UNSPECIFIED" - Unspecified. Results in an error.
	//   "ALLOW" - Allowed action type.
	//   "DENY" - Deny action type.
	ActionType string `json:"actionType,omitempty"`

	// Condition: Org policy condition/expression. For example:
	// `resource.instanceName.matches("[production|test]_.*_(\d)+")'` or,
	// `resource.management.auto_upgrade == true` The max length of the
	// condition is 1000 characters.
	Condition string `json:"condition,omitempty"`

	// Description: Detailed information about this custom policy
	// constraint. The max length of the description is 2000 characters.
	Description string `json:"description,omitempty"`

	// DisplayName: One line display name for the UI. The max length of the
	// display_name is 200 characters.
	DisplayName string `json:"displayName,omitempty"`

	// MethodTypes: All the operations being applied for this constraint.
	//
	// Possible values:
	//   "METHOD_TYPE_UNSPECIFIED" - Unspecified. Results in an error.
	//   "CREATE" - Constraint applied when creating the resource.
	//   "UPDATE" - Constraint applied when updating the resource.
	//   "DELETE" - Constraint applied when deleting the resource. Not
	// supported yet.
	MethodTypes []string `json:"methodTypes,omitempty"`

	// Name: Immutable. Name of the constraint. This is unique within the
	// organization. Format of the name should be *
	// `organizations/{organization_id}/customConstraints/{custom_constraint_
	// id}` Example:
	// `organizations/123/customConstraints/custom.createOnlyE2TypeVms` The
	// max length is 70 characters and the minimum length is 1. Note that
	// the prefix `organizations/{organization_id}/customConstraints/` is
	// not counted.
	Name string `json:"name,omitempty"`

	// ResourceTypes: Immutable. The resource instance type on which this
	// policy applies. Format will be of the form : "/" Example: *
	// `compute.googleapis.com/Instance`.
	ResourceTypes []string `json:"resourceTypes,omitempty"`

	// UpdateTime: Output only. The last time this custom constraint was
	// updated. This represents the last time that the
	// `CreateCustomConstraint` or `UpdateCustomConstraint` RPC was called
	UpdateTime string `json:"updateTime,omitempty"`

	// ServerResponse contains the HTTP response code and headers from the
	// server.
	googleapi.ServerResponse `json:"-"`

	// ForceSendFields is a list of field names (e.g. "ActionType") to
	// unconditionally include in API requests. By default, fields with
	// empty or default values are omitted from API requests. However, any
	// non-pointer, non-interface field appearing in ForceSendFields will be
	// sent to the server regardless of whether the field is empty or not.
	// This may be used to include empty fields in Patch requests.
	ForceSendFields []string `json:"-"`

	// NullFields is a list of field names (e.g. "ActionType") to include in
	// API requests with the JSON null value. By default, fields with empty
	// values are omitted from API requests. However, any field with an
	// empty value appearing in NullFields will be sent to the server as
	// null. It is an error if a field in this list has a non-empty value.
	// This may be used to include null fields in Patch requests.
	NullFields []string `json:"-"`
}

GoogleCloudOrgpolicyV2CustomConstraint: A custom constraint defined by customers which can *only* be applied to the given resource types and organization. By creating a custom constraint, customers can apply policies of this custom constraint. *Creating a custom constraint itself does NOT apply any policy enforcement*.

func (*GoogleCloudOrgpolicyV2CustomConstraint) MarshalJSON added in v0.61.0 

func (s *GoogleCloudOrgpolicyV2CustomConstraint) MarshalJSON() ([]byte, error)

type GoogleCloudOrgpolicyV2ListConstraintsResponse 

type GoogleCloudOrgpolicyV2ListConstraintsResponse struct {
	// Constraints: The collection of constraints that are available on the
	// targeted resource.
	Constraints []*GoogleCloudOrgpolicyV2Constraint `json:"constraints,omitempty"`

	// NextPageToken: Page token used to retrieve the next page. This is
	// currently not used.
	NextPageToken string `json:"nextPageToken,omitempty"`

	// ServerResponse contains the HTTP response code and headers from the
	// server.
	googleapi.ServerResponse `json:"-"`

	// ForceSendFields is a list of field names (e.g. "Constraints") to
	// unconditionally include in API requests. By default, fields with
	// empty or default values are omitted from API requests. However, any
	// non-pointer, non-interface field appearing in ForceSendFields will be
	// sent to the server regardless of whether the field is empty or not.
	// This may be used to include empty fields in Patch requests.
	ForceSendFields []string `json:"-"`

	// NullFields is a list of field names (e.g. "Constraints") to include
	// in API requests with the JSON null value. By default, fields with
	// empty values are omitted from API requests. However, any field with
	// an empty value appearing in NullFields will be sent to the server as
	// null. It is an error if a field in this list has a non-empty value.
	// This may be used to include null fields in Patch requests.
	NullFields []string `json:"-"`
}

GoogleCloudOrgpolicyV2ListConstraintsResponse: The response returned from the ListConstraints method.

func (*GoogleCloudOrgpolicyV2ListConstraintsResponse) MarshalJSON 

func (s *GoogleCloudOrgpolicyV2ListConstraintsResponse) MarshalJSON() ([]byte, error)

type GoogleCloudOrgpolicyV2ListCustomConstraintsResponse added in v0.94.0 

type GoogleCloudOrgpolicyV2ListCustomConstraintsResponse struct {
	// CustomConstraints: All custom constraints that exist on the
	// organization resource. It will be empty if no custom constraints are
	// set.
	CustomConstraints []*GoogleCloudOrgpolicyV2CustomConstraint `json:"customConstraints,omitempty"`

	// NextPageToken: Page token used to retrieve the next page. This is
	// currently not used, but the server may at any point start supplying a
	// valid token.
	NextPageToken string `json:"nextPageToken,omitempty"`

	// ServerResponse contains the HTTP response code and headers from the
	// server.
	googleapi.ServerResponse `json:"-"`

	// ForceSendFields is a list of field names (e.g. "CustomConstraints")
	// to unconditionally include in API requests. By default, fields with
	// empty or default values are omitted from API requests. However, any
	// non-pointer, non-interface field appearing in ForceSendFields will be
	// sent to the server regardless of whether the field is empty or not.
	// This may be used to include empty fields in Patch requests.
	ForceSendFields []string `json:"-"`

	// NullFields is a list of field names (e.g. "CustomConstraints") to
	// include in API requests with the JSON null value. By default, fields
	// with empty values are omitted from API requests. However, any field
	// with an empty value appearing in NullFields will be sent to the
	// server as null. It is an error if a field in this list has a
	// non-empty value. This may be used to include null fields in Patch
	// requests.
	NullFields []string `json:"-"`
}

GoogleCloudOrgpolicyV2ListCustomConstraintsResponse: The response returned from the ListCustomConstraints method. It will be empty if no custom constraints are set on the organization resource.

func (*GoogleCloudOrgpolicyV2ListCustomConstraintsResponse) MarshalJSON added in v0.94.0 

func (s *GoogleCloudOrgpolicyV2ListCustomConstraintsResponse) MarshalJSON() ([]byte, error)

type GoogleCloudOrgpolicyV2ListPoliciesResponse 

type GoogleCloudOrgpolicyV2ListPoliciesResponse struct {
	// NextPageToken: Page token used to retrieve the next page. This is
	// currently not used, but the server may at any point start supplying a
	// valid token.
	NextPageToken string `json:"nextPageToken,omitempty"`

	// Policies: All policies that exist on the resource. It will be empty
	// if no policies are set.
	Policies []*GoogleCloudOrgpolicyV2Policy `json:"policies,omitempty"`

	// ServerResponse contains the HTTP response code and headers from the
	// server.
	googleapi.ServerResponse `json:"-"`

	// ForceSendFields is a list of field names (e.g. "NextPageToken") to
	// unconditionally include in API requests. By default, fields with
	// empty or default values are omitted from API requests. However, any
	// non-pointer, non-interface field appearing in ForceSendFields will be
	// sent to the server regardless of whether the field is empty or not.
	// This may be used to include empty fields in Patch requests.
	ForceSendFields []string `json:"-"`

	// NullFields is a list of field names (e.g. "NextPageToken") to include
	// in API requests with the JSON null value. By default, fields with
	// empty values are omitted from API requests. However, any field with
	// an empty value appearing in NullFields will be sent to the server as
	// null. It is an error if a field in this list has a non-empty value.
	// This may be used to include null fields in Patch requests.
	NullFields []string `json:"-"`
}

GoogleCloudOrgpolicyV2ListPoliciesResponse: The response returned from the ListPolicies method. It will be empty if no policies are set on the resource.

func (*GoogleCloudOrgpolicyV2ListPoliciesResponse) MarshalJSON 

func (s *GoogleCloudOrgpolicyV2ListPoliciesResponse) MarshalJSON() ([]byte, error)

type GoogleCloudOrgpolicyV2Policy 

type GoogleCloudOrgpolicyV2Policy struct {
	// Alternate: Deprecated.
	Alternate *GoogleCloudOrgpolicyV2AlternatePolicySpec `json:"alternate,omitempty"`

	// DryRunSpec: Dry-run policy. Audit-only policy, can be used to monitor
	// how the policy would have impacted the existing and future resources
	// if it's enforced.
	DryRunSpec *GoogleCloudOrgpolicyV2PolicySpec `json:"dryRunSpec,omitempty"`

	// Name: Immutable. The resource name of the policy. Must be one of the
	// following forms, where constraint_name is the name of the constraint
	// which this policy configures: *
	// `projects/{project_number}/policies/{constraint_name}` *
	// `folders/{folder_id}/policies/{constraint_name}` *
	// `organizations/{organization_id}/policies/{constraint_name}` For
	// example, "projects/123/policies/compute.disableSerialPortAccess".
	// Note: `projects/{project_id}/policies/{constraint_name}` is also an
	// acceptable name for API requests, but responses will return the name
	// using the equivalent project number.
	Name string `json:"name,omitempty"`

	// Spec: Basic information about the Organization Policy.
	Spec *GoogleCloudOrgpolicyV2PolicySpec `json:"spec,omitempty"`

	// ServerResponse contains the HTTP response code and headers from the
	// server.
	googleapi.ServerResponse `json:"-"`

	// ForceSendFields is a list of field names (e.g. "Alternate") to
	// unconditionally include in API requests. By default, fields with
	// empty or default values are omitted from API requests. However, any
	// non-pointer, non-interface field appearing in ForceSendFields will be
	// sent to the server regardless of whether the field is empty or not.
	// This may be used to include empty fields in Patch requests.
	ForceSendFields []string `json:"-"`

	// NullFields is a list of field names (e.g. "Alternate") to include in
	// API requests with the JSON null value. By default, fields with empty
	// values are omitted from API requests. However, any field with an
	// empty value appearing in NullFields will be sent to the server as
	// null. It is an error if a field in this list has a non-empty value.
	// This may be used to include null fields in Patch requests.
	NullFields []string `json:"-"`
}

GoogleCloudOrgpolicyV2Policy: Defines an organization policy which is used to specify constraints for configurations of Google Cloud resources.

func (*GoogleCloudOrgpolicyV2Policy) MarshalJSON 

func (s *GoogleCloudOrgpolicyV2Policy) MarshalJSON() ([]byte, error)

type GoogleCloudOrgpolicyV2PolicySpec 

type GoogleCloudOrgpolicyV2PolicySpec struct {
	// Etag: An opaque tag indicating the current version of the policy,
	// used for concurrency control. This field is ignored if used in a
	// `CreatePolicy` request. When the policy` is returned from either a
	// `GetPolicy` or a `ListPolicies` request, this `etag` indicates the
	// version of the current policy to use when executing a
	// read-modify-write loop. When the policy is returned from a
	// `GetEffectivePolicy` request, the `etag` will be unset.
	Etag string `json:"etag,omitempty"`

	// InheritFromParent: Determines the inheritance behavior for this
	// policy. If `inherit_from_parent` is true, policy rules set higher up
	// in the hierarchy (up to the closest root) are inherited and present
	// in the effective policy. If it is false, then no rules are inherited,
	// and this policy becomes the new root for evaluation. This field can
	// be set only for policies which configure list constraints.
	InheritFromParent bool `json:"inheritFromParent,omitempty"`

	// Reset: Ignores policies set above this resource and restores the
	// `constraint_default` enforcement behavior of the specific constraint
	// at this resource. This field can be set in policies for either list
	// or boolean constraints. If set, `rules` must be empty and
	// `inherit_from_parent` must be set to false.
	Reset bool `json:"reset,omitempty"`

	// Rules: Up to 10 policy rules are allowed. In policies for boolean
	// constraints, the following requirements apply: - There must be one
	// and only one policy rule where condition is unset. - Boolean policy
	// rules with conditions must set `enforced` to the opposite of the
	// policy rule without a condition. - During policy evaluation, policy
	// rules with conditions that are true for a target resource take
	// precedence.
	Rules []*GoogleCloudOrgpolicyV2PolicySpecPolicyRule `json:"rules,omitempty"`

	// UpdateTime: Output only. The time stamp this was previously updated.
	// This represents the last time a call to `CreatePolicy` or
	// `UpdatePolicy` was made for that policy.
	UpdateTime string `json:"updateTime,omitempty"`

	// ForceSendFields is a list of field names (e.g. "Etag") to
	// unconditionally include in API requests. By default, fields with
	// empty or default values are omitted from API requests. However, any
	// non-pointer, non-interface field appearing in ForceSendFields will be
	// sent to the server regardless of whether the field is empty or not.
	// This may be used to include empty fields in Patch requests.
	ForceSendFields []string `json:"-"`

	// NullFields is a list of field names (e.g. "Etag") to include in API
	// requests with the JSON null value. By default, fields with empty
	// values are omitted from API requests. However, any field with an
	// empty value appearing in NullFields will be sent to the server as
	// null. It is an error if a field in this list has a non-empty value.
	// This may be used to include null fields in Patch requests.
	NullFields []string `json:"-"`
}

GoogleCloudOrgpolicyV2PolicySpec: Defines a Google Cloud policy specification which is used to specify constraints for configurations of Google Cloud resources.

func (*GoogleCloudOrgpolicyV2PolicySpec) MarshalJSON 

func (s *GoogleCloudOrgpolicyV2PolicySpec) MarshalJSON() ([]byte, error)

type GoogleCloudOrgpolicyV2PolicySpecPolicyRule 

type GoogleCloudOrgpolicyV2PolicySpecPolicyRule struct {
	// AllowAll: Setting this to true means that all values are allowed.
	// This field can be set only in policies for list constraints.
	AllowAll bool `json:"allowAll,omitempty"`

	// Condition: A condition which determines whether this rule is used in
	// the evaluation of the policy. When set, the `expression` field in the
	// `Expr' must include from 1 to 10 subexpressions, joined by the "||"
	// or "&&" operators. Each subexpression must be of the form
	// "resource.matchTag('/tag_key_short_name, 'tag_value_short_name')". or
	// "resource.matchTagId('tagKeys/key_id', 'tagValues/value_id')". where
	// key_name and value_name are the resource names for Label Keys and
	// Values. These names are available from the Tag Manager Service. An
	// example expression is: "resource.matchTag('123456789/environment,
	// 'prod')". or "resource.matchTagId('tagKeys/123', 'tagValues/456')".
	Condition *GoogleTypeExpr `json:"condition,omitempty"`

	// DenyAll: Setting this to true means that all values are denied. This
	// field can be set only in policies for list constraints.
	DenyAll bool `json:"denyAll,omitempty"`

	// Enforce: If `true`, then the policy is enforced. If `false`, then any
	// configuration is acceptable. This field can be set only in policies
	// for boolean constraints.
	Enforce bool `json:"enforce,omitempty"`

	// Values: List of values to be used for this policy rule. This field
	// can be set only in policies for list constraints.
	Values *GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValues `json:"values,omitempty"`

	// ForceSendFields is a list of field names (e.g. "AllowAll") to
	// unconditionally include in API requests. By default, fields with
	// empty or default values are omitted from API requests. However, any
	// non-pointer, non-interface field appearing in ForceSendFields will be
	// sent to the server regardless of whether the field is empty or not.
	// This may be used to include empty fields in Patch requests.
	ForceSendFields []string `json:"-"`

	// NullFields is a list of field names (e.g. "AllowAll") to include in
	// API requests with the JSON null value. By default, fields with empty
	// values are omitted from API requests. However, any field with an
	// empty value appearing in NullFields will be sent to the server as
	// null. It is an error if a field in this list has a non-empty value.
	// This may be used to include null fields in Patch requests.
	NullFields []string `json:"-"`
}

GoogleCloudOrgpolicyV2PolicySpecPolicyRule: A rule used to express this policy.

func (*GoogleCloudOrgpolicyV2PolicySpecPolicyRule) MarshalJSON 

func (s *GoogleCloudOrgpolicyV2PolicySpecPolicyRule) MarshalJSON() ([]byte, error)

type GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValues 

type GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValues struct {
	// AllowedValues: List of values allowed at this resource.
	AllowedValues []string `json:"allowedValues,omitempty"`

	// DeniedValues: List of values denied at this resource.
	DeniedValues []string `json:"deniedValues,omitempty"`

	// ForceSendFields is a list of field names (e.g. "AllowedValues") to
	// unconditionally include in API requests. By default, fields with
	// empty or default values are omitted from API requests. However, any
	// non-pointer, non-interface field appearing in ForceSendFields will be
	// sent to the server regardless of whether the field is empty or not.
	// This may be used to include empty fields in Patch requests.
	ForceSendFields []string `json:"-"`

	// NullFields is a list of field names (e.g. "AllowedValues") to include
	// in API requests with the JSON null value. By default, fields with
	// empty values are omitted from API requests. However, any field with
	// an empty value appearing in NullFields will be sent to the server as
	// null. It is an error if a field in this list has a non-empty value.
	// This may be used to include null fields in Patch requests.
	NullFields []string `json:"-"`
}

GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValues: A message that holds specific allowed and denied values. This message can define specific values and subtrees of the Resource Manager resource hierarchy (`Organizations`, `Folders`, `Projects`) that are allowed or denied. This is achieved by using the `under:` and optional `is:` prefixes. The `under:` prefix is used to denote resource subtree values. The `is:` prefix is used to denote specific values, and is required only if the value contains a ":". Values prefixed with "is:" are treated the same as values with no prefix. Ancestry subtrees must be in one of the following formats: - "projects/", e.g. "projects/tokyo-rain-123" - "folders/", e.g. "folders/1234" - "organizations/", e.g. "organizations/1234" The `supports_under` field of the associated `Constraint` defines whether ancestry prefixes can be used.

func (*GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValues) MarshalJSON 

func (s *GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValues) MarshalJSON() ([]byte, error)

type GoogleProtobufEmpty 

type GoogleProtobufEmpty struct {
	// ServerResponse contains the HTTP response code and headers from the
	// server.
	googleapi.ServerResponse `json:"-"`
}

GoogleProtobufEmpty: A generic empty message that you can re-use to avoid defining duplicated empty messages in your APIs. A typical example is to use it as the request or the response type of an API method. For instance: service Foo { rpc Bar(google.protobuf.Empty) returns (google.protobuf.Empty); }

type GoogleTypeExpr 

type GoogleTypeExpr struct {
	// Description: Optional. Description of the expression. This is a
	// longer text which describes the expression, e.g. when hovered over it
	// in a UI.
	Description string `json:"description,omitempty"`

	// Expression: Textual representation of an expression in Common
	// Expression Language syntax.
	Expression string `json:"expression,omitempty"`

	// Location: Optional. String indicating the location of the expression
	// for error reporting, e.g. a file name and a position in the file.
	Location string `json:"location,omitempty"`

	// Title: Optional. Title for the expression, i.e. a short string
	// describing its purpose. This can be used e.g. in UIs which allow to
	// enter the expression.
	Title string `json:"title,omitempty"`

	// ForceSendFields is a list of field names (e.g. "Description") to
	// unconditionally include in API requests. By default, fields with
	// empty or default values are omitted from API requests. However, any
	// non-pointer, non-interface field appearing in ForceSendFields will be
	// sent to the server regardless of whether the field is empty or not.
	// This may be used to include empty fields in Patch requests.
	ForceSendFields []string `json:"-"`

	// NullFields is a list of field names (e.g. "Description") to include
	// in API requests with the JSON null value. By default, fields with
	// empty values are omitted from API requests. However, any field with
	// an empty value appearing in NullFields will be sent to the server as
	// null. It is an error if a field in this list has a non-empty value.
	// This may be used to include null fields in Patch requests.
	NullFields []string `json:"-"`
}

GoogleTypeExpr: Represents a textual expression in the Common Expression Language (CEL) syntax. CEL is a C-like expression language. The syntax and semantics of CEL are documented at https://github.com/google/cel-spec. Example (Comparison): title: "Summary size limit" description: "Determines if a summary is less than 100 chars" expression: "document.summary.size() < 100" Example (Equality): title: "Requestor is owner" description: "Determines if requestor is the document owner" expression: "document.owner == request.auth.claims.email" Example (Logic): title: "Public documents" description: "Determine whether the document should be publicly visible" expression: "document.type != 'private' && document.type != 'internal'" Example (Data Manipulation): title: "Notification string" description: "Create a notification string with a timestamp." expression: "'New message received at ' + string(document.create_time)" The exact variables and functions that may be referenced within an expression are determined by the service that evaluates it. See the service documentation for additional information.

func (*GoogleTypeExpr) MarshalJSON 

func (s *GoogleTypeExpr) MarshalJSON() ([]byte, error)

type OrganizationsConstraintsListCall 

type OrganizationsConstraintsListCall struct {
	// contains filtered or unexported fields
}

func (*OrganizationsConstraintsListCall) Context 

func (c *OrganizationsConstraintsListCall) Context(ctx context.Context) *OrganizationsConstraintsListCall

Context sets the context to be used in this call's Do method. Any pending HTTP request will be aborted if the provided context is canceled.

func (*OrganizationsConstraintsListCall) Do 

func (c *OrganizationsConstraintsListCall) Do(opts ...googleapi.CallOption) (*GoogleCloudOrgpolicyV2ListConstraintsResponse, error)

Do executes the "orgpolicy.organizations.constraints.list" call. Exactly one of *GoogleCloudOrgpolicyV2ListConstraintsResponse or error will be non-nil. Any non-2xx status code is an error. Response headers are in either *GoogleCloudOrgpolicyV2ListConstraintsResponse.ServerResponse.Header or (if a response was returned at all) in error.(*googleapi.Error).Header. Use googleapi.IsNotModified to check whether the returned error was because http.StatusNotModified was returned.

func (*OrganizationsConstraintsListCall) Fields 

func (c *OrganizationsConstraintsListCall) Fields(s ...googleapi.Field) *OrganizationsConstraintsListCall

Fields allows partial responses to be retrieved. See https://developers.google.com/gdata/docs/2.0/basics#PartialResponse for more information.

func (*OrganizationsConstraintsListCall) Header 

func (c *OrganizationsConstraintsListCall) Header() http.Header

Header returns an http.Header that can be modified by the caller to add HTTP headers to the request.

func (*OrganizationsConstraintsListCall) IfNoneMatch 

func (c *OrganizationsConstraintsListCall) IfNoneMatch(entityTag string) *OrganizationsConstraintsListCall

IfNoneMatch sets the optional parameter which makes the operation fail if the object's ETag matches the given value. This is useful for getting updates only after the object has changed since the last request. Use googleapi.IsNotModified to check whether the response error from Do is the result of In-None-Match.

func (*OrganizationsConstraintsListCall) PageSize 

func (c *OrganizationsConstraintsListCall) PageSize(pageSize int64) *OrganizationsConstraintsListCall

PageSize sets the optional parameter "pageSize": Size of the pages to be returned. This is currently unsupported and will be ignored. The server may at any point start using this field to limit page size.

func (*OrganizationsConstraintsListCall) PageToken 

func (c *OrganizationsConstraintsListCall) PageToken(pageToken string) *OrganizationsConstraintsListCall

PageToken sets the optional parameter "pageToken": Page token used to retrieve the next page. This is currently unsupported and will be ignored. The server may at any point start using this field.

func (*OrganizationsConstraintsListCall) Pages 

func (c *OrganizationsConstraintsListCall) Pages(ctx context.Context, f func(*GoogleCloudOrgpolicyV2ListConstraintsResponse) error) error

Pages invokes f for each page of results. A non-nil error returned from f will halt the iteration. The provided context supersedes any context provided to the Context method.

type OrganizationsConstraintsService 

type OrganizationsConstraintsService struct {
	// contains filtered or unexported fields
}

func NewOrganizationsConstraintsService 

func NewOrganizationsConstraintsService(s *Service) *OrganizationsConstraintsService

func (*OrganizationsConstraintsService) List 

func (r *OrganizationsConstraintsService) List(parent string) *OrganizationsConstraintsListCall

List: Lists constraints that could be applied on the specified resource.

  • parent: The Google Cloud resource that parents the constraint. Must be in one of the following forms: * `projects/{project_number}` * `projects/{project_id}` * `folders/{folder_id}` * `organizations/{organization_id}`.

type OrganizationsCustomConstraintsCreateCall added in v0.94.0 

type OrganizationsCustomConstraintsCreateCall struct {
	// contains filtered or unexported fields
}

func (*OrganizationsCustomConstraintsCreateCall) Context added in v0.94.0 

func (c *OrganizationsCustomConstraintsCreateCall) Context(ctx context.Context) *OrganizationsCustomConstraintsCreateCall

Context sets the context to be used in this call's Do method. Any pending HTTP request will be aborted if the provided context is canceled.

func (*OrganizationsCustomConstraintsCreateCall) Do added in v0.94.0 

func (c *OrganizationsCustomConstraintsCreateCall) Do(opts ...googleapi.CallOption) (*GoogleCloudOrgpolicyV2CustomConstraint, error)

Do executes the "orgpolicy.organizations.customConstraints.create" call. Exactly one of *GoogleCloudOrgpolicyV2CustomConstraint or error will be non-nil. Any non-2xx status code is an error. Response headers are in either *GoogleCloudOrgpolicyV2CustomConstraint.ServerResponse.Header or (if a response was returned at all) in error.(*googleapi.Error).Header. Use googleapi.IsNotModified to check whether the returned error was because http.StatusNotModified was returned.

func (*OrganizationsCustomConstraintsCreateCall) Fields added in v0.94.0 

func (c *OrganizationsCustomConstraintsCreateCall) Fields(s ...googleapi.Field) *OrganizationsCustomConstraintsCreateCall

Fields allows partial responses to be retrieved. See https://developers.google.com/gdata/docs/2.0/basics#PartialResponse for more information.

func (*OrganizationsCustomConstraintsCreateCall) Header added in v0.94.0 

func (c *OrganizationsCustomConstraintsCreateCall) Header() http.Header

Header returns an http.Header that can be modified by the caller to add HTTP headers to the request.

type OrganizationsCustomConstraintsDeleteCall added in v0.94.0 

type OrganizationsCustomConstraintsDeleteCall struct {
	// contains filtered or unexported fields
}

func (*OrganizationsCustomConstraintsDeleteCall) Context added in v0.94.0 

func (c *OrganizationsCustomConstraintsDeleteCall) Context(ctx context.Context) *OrganizationsCustomConstraintsDeleteCall

Context sets the context to be used in this call's Do method. Any pending HTTP request will be aborted if the provided context is canceled.

func (*OrganizationsCustomConstraintsDeleteCall) Do added in v0.94.0 

func (c *OrganizationsCustomConstraintsDeleteCall) Do(opts ...googleapi.CallOption) (*GoogleProtobufEmpty, error)

Do executes the "orgpolicy.organizations.customConstraints.delete" call. Exactly one of *GoogleProtobufEmpty or error will be non-nil. Any non-2xx status code is an error. Response headers are in either *GoogleProtobufEmpty.ServerResponse.Header or (if a response was returned at all) in error.(*googleapi.Error).Header. Use googleapi.IsNotModified to check whether the returned error was because http.StatusNotModified was returned.

func (*OrganizationsCustomConstraintsDeleteCall) Fields added in v0.94.0 

func (c *OrganizationsCustomConstraintsDeleteCall) Fields(s ...googleapi.Field) *OrganizationsCustomConstraintsDeleteCall

Fields allows partial responses to be retrieved. See https://developers.google.com/gdata/docs/2.0/basics#PartialResponse for more information.

func (*OrganizationsCustomConstraintsDeleteCall) Header added in v0.94.0 

func (c *OrganizationsCustomConstraintsDeleteCall) Header() http.Header

Header returns an http.Header that can be modified by the caller to add HTTP headers to the request.

type OrganizationsCustomConstraintsGetCall added in v0.94.0 

type OrganizationsCustomConstraintsGetCall struct {
	// contains filtered or unexported fields
}

func (*OrganizationsCustomConstraintsGetCall) Context added in v0.94.0 

func (c *OrganizationsCustomConstraintsGetCall) Context(ctx context.Context) *OrganizationsCustomConstraintsGetCall

Context sets the context to be used in this call's Do method. Any pending HTTP request will be aborted if the provided context is canceled.

func (*OrganizationsCustomConstraintsGetCall) Do added in v0.94.0 

func (c *OrganizationsCustomConstraintsGetCall) Do(opts ...googleapi.CallOption) (*GoogleCloudOrgpolicyV2CustomConstraint, error)

Do executes the "orgpolicy.organizations.customConstraints.get" call. Exactly one of *GoogleCloudOrgpolicyV2CustomConstraint or error will be non-nil. Any non-2xx status code is an error. Response headers are in either *GoogleCloudOrgpolicyV2CustomConstraint.ServerResponse.Header or (if a response was returned at all) in error.(*googleapi.Error).Header. Use googleapi.IsNotModified to check whether the returned error was because http.StatusNotModified was returned.

func (*OrganizationsCustomConstraintsGetCall) Fields added in v0.94.0 

func (c *OrganizationsCustomConstraintsGetCall) Fields(s ...googleapi.Field) *OrganizationsCustomConstraintsGetCall

Fields allows partial responses to be retrieved. See https://developers.google.com/gdata/docs/2.0/basics#PartialResponse for more information.

func (*OrganizationsCustomConstraintsGetCall) Header added in v0.94.0 

func (c *OrganizationsCustomConstraintsGetCall) Header() http.Header

Header returns an http.Header that can be modified by the caller to add HTTP headers to the request.

func (*OrganizationsCustomConstraintsGetCall) IfNoneMatch added in v0.94.0 

func (c *OrganizationsCustomConstraintsGetCall) IfNoneMatch(entityTag string) *OrganizationsCustomConstraintsGetCall

IfNoneMatch sets the optional parameter which makes the operation fail if the object's ETag matches the given value. This is useful for getting updates only after the object has changed since the last request. Use googleapi.IsNotModified to check whether the response error from Do is the result of In-None-Match.

type OrganizationsCustomConstraintsListCall added in v0.94.0 

type OrganizationsCustomConstraintsListCall struct {
	// contains filtered or unexported fields
}

func (*OrganizationsCustomConstraintsListCall) Context added in v0.94.0 

func (c *OrganizationsCustomConstraintsListCall) Context(ctx context.Context) *OrganizationsCustomConstraintsListCall

Context sets the context to be used in this call's Do method. Any pending HTTP request will be aborted if the provided context is canceled.

func (*OrganizationsCustomConstraintsListCall) Do added in v0.94.0 

func (c *OrganizationsCustomConstraintsListCall) Do(opts ...googleapi.CallOption) (*GoogleCloudOrgpolicyV2ListCustomConstraintsResponse, error)

Do executes the "orgpolicy.organizations.customConstraints.list" call. Exactly one of *GoogleCloudOrgpolicyV2ListCustomConstraintsResponse or error will be non-nil. Any non-2xx status code is an error. Response headers are in either *GoogleCloudOrgpolicyV2ListCustomConstraintsResponse.ServerResponse.He ader or (if a response was returned at all) in error.(*googleapi.Error).Header. Use googleapi.IsNotModified to check whether the returned error was because http.StatusNotModified was returned.

func (*OrganizationsCustomConstraintsListCall) Fields added in v0.94.0 

func (c *OrganizationsCustomConstraintsListCall) Fields(s ...googleapi.Field) *OrganizationsCustomConstraintsListCall

Fields allows partial responses to be retrieved. See https://developers.google.com/gdata/docs/2.0/basics#PartialResponse for more information.

func (*OrganizationsCustomConstraintsListCall) Header added in v0.94.0 

func (c *OrganizationsCustomConstraintsListCall) Header() http.Header

Header returns an http.Header that can be modified by the caller to add HTTP headers to the request.

func (*OrganizationsCustomConstraintsListCall) IfNoneMatch added in v0.94.0 

func (c *OrganizationsCustomConstraintsListCall) IfNoneMatch(entityTag string) *OrganizationsCustomConstraintsListCall

IfNoneMatch sets the optional parameter which makes the operation fail if the object's ETag matches the given value. This is useful for getting updates only after the object has changed since the last request. Use googleapi.IsNotModified to check whether the response error from Do is the result of In-None-Match.

func (*OrganizationsCustomConstraintsListCall) PageSize added in v0.94.0 

func (c *OrganizationsCustomConstraintsListCall) PageSize(pageSize int64) *OrganizationsCustomConstraintsListCall

PageSize sets the optional parameter "pageSize": Size of the pages to be returned. This is currently unsupported and will be ignored. The server may at any point start using this field to limit page size.

func (*OrganizationsCustomConstraintsListCall) PageToken added in v0.94.0 

func (c *OrganizationsCustomConstraintsListCall) PageToken(pageToken string) *OrganizationsCustomConstraintsListCall

PageToken sets the optional parameter "pageToken": Page token used to retrieve the next page. This is currently unsupported and will be ignored. The server may at any point start using this field.

func (*OrganizationsCustomConstraintsListCall) Pages added in v0.94.0 

func (c *OrganizationsCustomConstraintsListCall) Pages(ctx context.Context, f func(*GoogleCloudOrgpolicyV2ListCustomConstraintsResponse) error) error

Pages invokes f for each page of results. A non-nil error returned from f will halt the iteration. The provided context supersedes any context provided to the Context method.

type OrganizationsCustomConstraintsPatchCall added in v0.61.0 

type OrganizationsCustomConstraintsPatchCall struct {
	// contains filtered or unexported fields
}

func (*OrganizationsCustomConstraintsPatchCall) Context added in v0.61.0 

func (c *OrganizationsCustomConstraintsPatchCall) Context(ctx context.Context) *OrganizationsCustomConstraintsPatchCall

Context sets the context to be used in this call's Do method. Any pending HTTP request will be aborted if the provided context is canceled.

func (*OrganizationsCustomConstraintsPatchCall) Do added in v0.61.0 

func (c *OrganizationsCustomConstraintsPatchCall) Do(opts ...googleapi.CallOption) (*GoogleCloudOrgpolicyV2CustomConstraint, error)

Do executes the "orgpolicy.organizations.customConstraints.patch" call. Exactly one of *GoogleCloudOrgpolicyV2CustomConstraint or error will be non-nil. Any non-2xx status code is an error. Response headers are in either *GoogleCloudOrgpolicyV2CustomConstraint.ServerResponse.Header or (if a response was returned at all) in error.(*googleapi.Error).Header. Use googleapi.IsNotModified to check whether the returned error was because http.StatusNotModified was returned.

func (*OrganizationsCustomConstraintsPatchCall) Fields added in v0.61.0 

func (c *OrganizationsCustomConstraintsPatchCall) Fields(s ...googleapi.Field) *OrganizationsCustomConstraintsPatchCall

Fields allows partial responses to be retrieved. See https://developers.google.com/gdata/docs/2.0/basics#PartialResponse for more information.

func (*OrganizationsCustomConstraintsPatchCall) Header added in v0.61.0 

func (c *OrganizationsCustomConstraintsPatchCall) Header() http.Header

Header returns an http.Header that can be modified by the caller to add HTTP headers to the request.

type OrganizationsCustomConstraintsService added in v0.61.0 

type OrganizationsCustomConstraintsService struct {
	// contains filtered or unexported fields
}

func NewOrganizationsCustomConstraintsService added in v0.61.0 

func NewOrganizationsCustomConstraintsService(s *Service) *OrganizationsCustomConstraintsService

func (*OrganizationsCustomConstraintsService) Create added in v0.94.0 

func (r *OrganizationsCustomConstraintsService) Create(parent string, googlecloudorgpolicyv2customconstraint *GoogleCloudOrgpolicyV2CustomConstraint) *OrganizationsCustomConstraintsCreateCall

Create: Creates a custom constraint. Returns a `google.rpc.Status` with `google.rpc.Code.NOT_FOUND` if the organization does not exist. Returns a `google.rpc.Status` with `google.rpc.Code.ALREADY_EXISTS` if the constraint already exists on the given organization.

  • parent: Must be in the following form: * `organizations/{organization_id}`.

func (*OrganizationsCustomConstraintsService) Delete added in v0.94.0 

func (r *OrganizationsCustomConstraintsService) Delete(name string) *OrganizationsCustomConstraintsDeleteCall

Delete: Deletes a custom constraint. Returns a `google.rpc.Status` with `google.rpc.Code.NOT_FOUND` if the constraint does not exist.

  • name: Name of the custom constraint to delete. See the custom constraint entry for naming rules.

func (*OrganizationsCustomConstraintsService) Get added in v0.94.0 

func (r *OrganizationsCustomConstraintsService) Get(name string) *OrganizationsCustomConstraintsGetCall

Get: Gets a custom constraint. Returns a `google.rpc.Status` with `google.rpc.Code.NOT_FOUND` if the custom constraint does not exist.

  • name: Resource name of the custom constraint. See the custom constraint entry for naming requirements.

func (*OrganizationsCustomConstraintsService) List added in v0.94.0 

func (r *OrganizationsCustomConstraintsService) List(parent string) *OrganizationsCustomConstraintsListCall

List: Retrieves all of the custom constraints that exist on a particular organization resource.

  • parent: The target Google Cloud resource that parents the set of custom constraints that will be returned from this call. Must be in one of the following forms: * `organizations/{organization_id}`.

func (*OrganizationsCustomConstraintsService) Patch added in v0.61.0 

func (r *OrganizationsCustomConstraintsService) Patch(name string, googlecloudorgpolicyv2customconstraint *GoogleCloudOrgpolicyV2CustomConstraint) *OrganizationsCustomConstraintsPatchCall

Patch: Updates a custom constraint. Returns a `google.rpc.Status` with `google.rpc.Code.NOT_FOUND` if the constraint does not exist. Note: the supplied policy will perform a full overwrite of all fields.

  • name: Immutable. Name of the constraint. This is unique within the organization. Format of the name should be * `organizations/{organization_id}/customConstraints/{custom_constrain t_id}` Example: `organizations/123/customConstraints/custom.createOnlyE2TypeVms` The max length is 70 characters and the minimum length is 1. Note that the prefix `organizations/{organization_id}/customConstraints/` is not counted.

type OrganizationsPoliciesCreateCall 

type OrganizationsPoliciesCreateCall struct {
	// contains filtered or unexported fields
}

func (*OrganizationsPoliciesCreateCall) Context 

func (c *OrganizationsPoliciesCreateCall) Context(ctx context.Context) *OrganizationsPoliciesCreateCall

Context sets the context to be used in this call's Do method. Any pending HTTP request will be aborted if the provided context is canceled.

func (*OrganizationsPoliciesCreateCall) Do 

func (c *OrganizationsPoliciesCreateCall) Do(opts ...googleapi.CallOption) (*GoogleCloudOrgpolicyV2Policy, error)

Do executes the "orgpolicy.organizations.policies.create" call. Exactly one of *GoogleCloudOrgpolicyV2Policy or error will be non-nil. Any non-2xx status code is an error. Response headers are in either *GoogleCloudOrgpolicyV2Policy.ServerResponse.Header or (if a response was returned at all) in error.(*googleapi.Error).Header. Use googleapi.IsNotModified to check whether the returned error was because http.StatusNotModified was returned.

func (*OrganizationsPoliciesCreateCall) Fields 

func (c *OrganizationsPoliciesCreateCall) Fields(s ...googleapi.Field) *OrganizationsPoliciesCreateCall

Fields allows partial responses to be retrieved. See https://developers.google.com/gdata/docs/2.0/basics#PartialResponse for more information.

func (*OrganizationsPoliciesCreateCall) Header 

func (c *OrganizationsPoliciesCreateCall) Header() http.Header

Header returns an http.Header that can be modified by the caller to add HTTP headers to the request.

type OrganizationsPoliciesDeleteCall 

type OrganizationsPoliciesDeleteCall struct {
	// contains filtered or unexported fields
}

func (*OrganizationsPoliciesDeleteCall) Context 

func (c *OrganizationsPoliciesDeleteCall) Context(ctx context.Context) *OrganizationsPoliciesDeleteCall

Context sets the context to be used in this call's Do method. Any pending HTTP request will be aborted if the provided context is canceled.

func (*OrganizationsPoliciesDeleteCall) Do 

func (c *OrganizationsPoliciesDeleteCall) Do(opts ...googleapi.CallOption) (*GoogleProtobufEmpty, error)

Do executes the "orgpolicy.organizations.policies.delete" call. Exactly one of *GoogleProtobufEmpty or error will be non-nil. Any non-2xx status code is an error. Response headers are in either *GoogleProtobufEmpty.ServerResponse.Header or (if a response was returned at all) in error.(*googleapi.Error).Header. Use googleapi.IsNotModified to check whether the returned error was because http.StatusNotModified was returned.

func (*OrganizationsPoliciesDeleteCall) Fields 

func (c *OrganizationsPoliciesDeleteCall) Fields(s ...googleapi.Field) *OrganizationsPoliciesDeleteCall

Fields allows partial responses to be retrieved. See https://developers.google.com/gdata/docs/2.0/basics#PartialResponse for more information.

func (*OrganizationsPoliciesDeleteCall) Header 

func (c *OrganizationsPoliciesDeleteCall) Header() http.Header

Header returns an http.Header that can be modified by the caller to add HTTP headers to the request.

type OrganizationsPoliciesGetCall 

type OrganizationsPoliciesGetCall struct {
	// contains filtered or unexported fields
}

func (*OrganizationsPoliciesGetCall) Context 

func (c *OrganizationsPoliciesGetCall) Context(ctx context.Context) *OrganizationsPoliciesGetCall

Context sets the context to be used in this call's Do method. Any pending HTTP request will be aborted if the provided context is canceled.

func (*OrganizationsPoliciesGetCall) Do 

func (c *OrganizationsPoliciesGetCall) Do(opts ...googleapi.CallOption) (*GoogleCloudOrgpolicyV2Policy, error)

Do executes the "orgpolicy.organizations.policies.get" call. Exactly one of *GoogleCloudOrgpolicyV2Policy or error will be non-nil. Any non-2xx status code is an error. Response headers are in either *GoogleCloudOrgpolicyV2Policy.ServerResponse.Header or (if a response was returned at all) in error.(*googleapi.Error).Header. Use googleapi.IsNotModified to check whether the returned error was because http.StatusNotModified was returned.

func (*OrganizationsPoliciesGetCall) Fields 

func (c *OrganizationsPoliciesGetCall) Fields(s ...googleapi.Field) *OrganizationsPoliciesGetCall

Fields allows partial responses to be retrieved. See https://developers.google.com/gdata/docs/2.0/basics#PartialResponse for more information.

func (*OrganizationsPoliciesGetCall) Header 

func (c *OrganizationsPoliciesGetCall) Header() http.Header

Header returns an http.Header that can be modified by the caller to add HTTP headers to the request.

func (*OrganizationsPoliciesGetCall) IfNoneMatch 

func (c *OrganizationsPoliciesGetCall) IfNoneMatch(entityTag string) *OrganizationsPoliciesGetCall

IfNoneMatch sets the optional parameter which makes the operation fail if the object's ETag matches the given value. This is useful for getting updates only after the object has changed since the last request. Use googleapi.IsNotModified to check whether the response error from Do is the result of In-None-Match.

type OrganizationsPoliciesGetEffectivePolicyCall 

type OrganizationsPoliciesGetEffectivePolicyCall struct {
	// contains filtered or unexported fields
}

func (*OrganizationsPoliciesGetEffectivePolicyCall) Context 

func (c *OrganizationsPoliciesGetEffectivePolicyCall) Context(ctx context.Context) *OrganizationsPoliciesGetEffectivePolicyCall

Context sets the context to be used in this call's Do method. Any pending HTTP request will be aborted if the provided context is canceled.

func (*OrganizationsPoliciesGetEffectivePolicyCall) Do 

func (c *OrganizationsPoliciesGetEffectivePolicyCall) Do(opts ...googleapi.CallOption) (*GoogleCloudOrgpolicyV2Policy, error)

Do executes the "orgpolicy.organizations.policies.getEffectivePolicy" call. Exactly one of *GoogleCloudOrgpolicyV2Policy or error will be non-nil. Any non-2xx status code is an error. Response headers are in either *GoogleCloudOrgpolicyV2Policy.ServerResponse.Header or (if a response was returned at all) in error.(*googleapi.Error).Header. Use googleapi.IsNotModified to check whether the returned error was because http.StatusNotModified was returned.

func (*OrganizationsPoliciesGetEffectivePolicyCall) Fields 

func (c *OrganizationsPoliciesGetEffectivePolicyCall) Fields(s ...googleapi.Field) *OrganizationsPoliciesGetEffectivePolicyCall

Fields allows partial responses to be retrieved. See https://developers.google.com/gdata/docs/2.0/basics#PartialResponse for more information.

func (*OrganizationsPoliciesGetEffectivePolicyCall) Header 

func (c *OrganizationsPoliciesGetEffectivePolicyCall) Header() http.Header

Header returns an http.Header that can be modified by the caller to add HTTP headers to the request.

func (*OrganizationsPoliciesGetEffectivePolicyCall) IfNoneMatch 

func (c *OrganizationsPoliciesGetEffectivePolicyCall) IfNoneMatch(entityTag string) *OrganizationsPoliciesGetEffectivePolicyCall

IfNoneMatch sets the optional parameter which makes the operation fail if the object's ETag matches the given value. This is useful for getting updates only after the object has changed since the last request. Use googleapi.IsNotModified to check whether the response error from Do is the result of In-None-Match.

type OrganizationsPoliciesListCall 

type OrganizationsPoliciesListCall struct {
	// contains filtered or unexported fields
}

func (*OrganizationsPoliciesListCall) Context 

func (c *OrganizationsPoliciesListCall) Context(ctx context.Context) *OrganizationsPoliciesListCall

Context sets the context to be used in this call's Do method. Any pending HTTP request will be aborted if the provided context is canceled.

func (*OrganizationsPoliciesListCall) Do 

func (c *OrganizationsPoliciesListCall) Do(opts ...googleapi.CallOption) (*GoogleCloudOrgpolicyV2ListPoliciesResponse, error)

Do executes the "orgpolicy.organizations.policies.list" call. Exactly one of *GoogleCloudOrgpolicyV2ListPoliciesResponse or error will be non-nil. Any non-2xx status code is an error. Response headers are in either *GoogleCloudOrgpolicyV2ListPoliciesResponse.ServerResponse.Header or (if a response was returned at all) in error.(*googleapi.Error).Header. Use googleapi.IsNotModified to check whether the returned error was because http.StatusNotModified was returned.

func (*OrganizationsPoliciesListCall) Fields 

func (c *OrganizationsPoliciesListCall) Fields(s ...googleapi.Field) *OrganizationsPoliciesListCall

Fields allows partial responses to be retrieved. See https://developers.google.com/gdata/docs/2.0/basics#PartialResponse for more information.

func (*OrganizationsPoliciesListCall) Header 

func (c *OrganizationsPoliciesListCall) Header() http.Header

Header returns an http.Header that can be modified by the caller to add HTTP headers to the request.

func (*OrganizationsPoliciesListCall) IfNoneMatch 

func (c *OrganizationsPoliciesListCall) IfNoneMatch(entityTag string) *OrganizationsPoliciesListCall

IfNoneMatch sets the optional parameter which makes the operation fail if the object's ETag matches the given value. This is useful for getting updates only after the object has changed since the last request. Use googleapi.IsNotModified to check whether the response error from Do is the result of In-None-Match.

func (*OrganizationsPoliciesListCall) PageSize 

func (c *OrganizationsPoliciesListCall) PageSize(pageSize int64) *OrganizationsPoliciesListCall

PageSize sets the optional parameter "pageSize": Size of the pages to be returned. This is currently unsupported and will be ignored. The server may at any point start using this field to limit page size.

func (*OrganizationsPoliciesListCall) PageToken 

func (c *OrganizationsPoliciesListCall) PageToken(pageToken string) *OrganizationsPoliciesListCall

PageToken sets the optional parameter "pageToken": Page token used to retrieve the next page. This is currently unsupported and will be ignored. The server may at any point start using this field.

func (*OrganizationsPoliciesListCall) Pages 

func (c *OrganizationsPoliciesListCall) Pages(ctx context.Context, f func(*GoogleCloudOrgpolicyV2ListPoliciesResponse) error) error

Pages invokes f for each page of results. A non-nil error returned from f will halt the iteration. The provided context supersedes any context provided to the Context method.

type OrganizationsPoliciesPatchCall 

type OrganizationsPoliciesPatchCall struct {
	// contains filtered or unexported fields
}

func (*OrganizationsPoliciesPatchCall) Context 

func (c *OrganizationsPoliciesPatchCall) Context(ctx context.Context) *OrganizationsPoliciesPatchCall

Context sets the context to be used in this call's Do method. Any pending HTTP request will be aborted if the provided context is canceled.

func (*OrganizationsPoliciesPatchCall) Do 

func (c *OrganizationsPoliciesPatchCall) Do(opts ...googleapi.CallOption) (*GoogleCloudOrgpolicyV2Policy, error)

Do executes the "orgpolicy.organizations.policies.patch" call. Exactly one of *GoogleCloudOrgpolicyV2Policy or error will be non-nil. Any non-2xx status code is an error. Response headers are in either *GoogleCloudOrgpolicyV2Policy.ServerResponse.Header or (if a response was returned at all) in error.(*googleapi.Error).Header. Use googleapi.IsNotModified to check whether the returned error was because http.StatusNotModified was returned.

func (*OrganizationsPoliciesPatchCall) Fields 

func (c *OrganizationsPoliciesPatchCall) Fields(s ...googleapi.Field) *OrganizationsPoliciesPatchCall

Fields allows partial responses to be retrieved. See https://developers.google.com/gdata/docs/2.0/basics#PartialResponse for more information.

func (*OrganizationsPoliciesPatchCall) Header 

func (c *OrganizationsPoliciesPatchCall) Header() http.Header

Header returns an http.Header that can be modified by the caller to add HTTP headers to the request.

func (*OrganizationsPoliciesPatchCall) UpdateMask added in v0.108.0 

func (c *OrganizationsPoliciesPatchCall) UpdateMask(updateMask string) *OrganizationsPoliciesPatchCall

UpdateMask sets the optional parameter "updateMask": Field mask used to specify the fields to be overwritten in the policy by the set. The fields specified in the update_mask are relative to the policy, not the full request.

type OrganizationsPoliciesService 

type OrganizationsPoliciesService struct {
	// contains filtered or unexported fields
}

func NewOrganizationsPoliciesService 

func NewOrganizationsPoliciesService(s *Service) *OrganizationsPoliciesService

func (*OrganizationsPoliciesService) Create 

func (r *OrganizationsPoliciesService) Create(parent string, googlecloudorgpolicyv2policy *GoogleCloudOrgpolicyV2Policy) *OrganizationsPoliciesCreateCall

Create: Creates a policy. Returns a `google.rpc.Status` with `google.rpc.Code.NOT_FOUND` if the constraint does not exist. Returns a `google.rpc.Status` with `google.rpc.Code.ALREADY_EXISTS` if the policy already exists on the given Google Cloud resource.

  • parent: The Google Cloud resource that will parent the new policy. Must be in one of the following forms: * `projects/{project_number}` * `projects/{project_id}` * `folders/{folder_id}` * `organizations/{organization_id}`.

func (*OrganizationsPoliciesService) Delete 

func (r *OrganizationsPoliciesService) Delete(name string) *OrganizationsPoliciesDeleteCall

Delete: Deletes a policy. Returns a `google.rpc.Status` with `google.rpc.Code.NOT_FOUND` if the constraint or organization policy does not exist.

  • name: Name of the policy to delete. See the policy entry for naming rules.

func (*OrganizationsPoliciesService) Get 

func (r *OrganizationsPoliciesService) Get(name string) *OrganizationsPoliciesGetCall

Get: Gets a policy on a resource. If no policy is set on the resource, `NOT_FOUND` is returned. The `etag` value can be used with `UpdatePolicy()` to update a policy during read-modify-write.

  • name: Resource name of the policy. See `Policy` for naming requirements.

func (*OrganizationsPoliciesService) GetEffectivePolicy 

func (r *OrganizationsPoliciesService) GetEffectivePolicy(name string) *OrganizationsPoliciesGetEffectivePolicyCall

GetEffectivePolicy: Gets the effective policy on a resource. This is the result of merging policies in the resource hierarchy and evaluating conditions. The returned policy will not have an `etag` or `condition` set because it is an evaluated policy across multiple resources. Subtrees of Resource Manager resource hierarchy with 'under:' prefix will not be expanded.

  • name: The effective policy to compute. See `Policy` for naming rules.

func (*OrganizationsPoliciesService) List 

func (r *OrganizationsPoliciesService) List(parent string) *OrganizationsPoliciesListCall

List: Retrieves all of the policies that exist on a particular resource.

  • parent: The target Google Cloud resource that parents the set of constraints and policies that will be returned from this call. Must be in one of the following forms: * `projects/{project_number}` * `projects/{project_id}` * `folders/{folder_id}` * `organizations/{organization_id}`.

func (*OrganizationsPoliciesService) Patch 

func (r *OrganizationsPoliciesService) Patch(name string, googlecloudorgpolicyv2policy *GoogleCloudOrgpolicyV2Policy) *OrganizationsPoliciesPatchCall

Patch: Updates a policy. Returns a `google.rpc.Status` with `google.rpc.Code.NOT_FOUND` if the constraint or the policy do not exist. Returns a `google.rpc.Status` with `google.rpc.Code.ABORTED` if the etag supplied in the request does not match the persisted etag of the policy Note: the supplied policy will perform a full overwrite of all fields.

  • name: Immutable. The resource name of the policy. Must be one of the following forms, where constraint_name is the name of the constraint which this policy configures: * `projects/{project_number}/policies/{constraint_name}` * `folders/{folder_id}/policies/{constraint_name}` * `organizations/{organization_id}/policies/{constraint_name}` For example, "projects/123/policies/compute.disableSerialPortAccess". Note: `projects/{project_id}/policies/{constraint_name}` is also an acceptable name for API requests, but responses will return the name using the equivalent project number.

type OrganizationsService 

type OrganizationsService struct {
	Constraints *OrganizationsConstraintsService

	CustomConstraints *OrganizationsCustomConstraintsService

	Policies *OrganizationsPoliciesService
	// contains filtered or unexported fields
}

func NewOrganizationsService 

func NewOrganizationsService(s *Service) *OrganizationsService

type ProjectsConstraintsListCall 

type ProjectsConstraintsListCall struct {
	// contains filtered or unexported fields
}

func (*ProjectsConstraintsListCall) Context 

func (c *ProjectsConstraintsListCall) Context(ctx context.Context) *ProjectsConstraintsListCall

Context sets the context to be used in this call's Do method. Any pending HTTP request will be aborted if the provided context is canceled.

func (*ProjectsConstraintsListCall) Do 

func (c *ProjectsConstraintsListCall) Do(opts ...googleapi.CallOption) (*GoogleCloudOrgpolicyV2ListConstraintsResponse, error)

Do executes the "orgpolicy.projects.constraints.list" call. Exactly one of *GoogleCloudOrgpolicyV2ListConstraintsResponse or error will be non-nil. Any non-2xx status code is an error. Response headers are in either *GoogleCloudOrgpolicyV2ListConstraintsResponse.ServerResponse.Header or (if a response was returned at all) in error.(*googleapi.Error).Header. Use googleapi.IsNotModified to check whether the returned error was because http.StatusNotModified was returned.

func (*ProjectsConstraintsListCall) Fields 

func (c *ProjectsConstraintsListCall) Fields(s ...googleapi.Field) *ProjectsConstraintsListCall

Fields allows partial responses to be retrieved. See https://developers.google.com/gdata/docs/2.0/basics#PartialResponse for more information.

func (*ProjectsConstraintsListCall) Header 

func (c *ProjectsConstraintsListCall) Header() http.Header

Header returns an http.Header that can be modified by the caller to add HTTP headers to the request.

func (*ProjectsConstraintsListCall) IfNoneMatch 

func (c *ProjectsConstraintsListCall) IfNoneMatch(entityTag string) *ProjectsConstraintsListCall

IfNoneMatch sets the optional parameter which makes the operation fail if the object's ETag matches the given value. This is useful for getting updates only after the object has changed since the last request. Use googleapi.IsNotModified to check whether the response error from Do is the result of In-None-Match.

func (*ProjectsConstraintsListCall) PageSize 

func (c *ProjectsConstraintsListCall) PageSize(pageSize int64) *ProjectsConstraintsListCall

PageSize sets the optional parameter "pageSize": Size of the pages to be returned. This is currently unsupported and will be ignored. The server may at any point start using this field to limit page size.

func (*ProjectsConstraintsListCall) PageToken 

func (c *ProjectsConstraintsListCall) PageToken(pageToken string) *ProjectsConstraintsListCall

PageToken sets the optional parameter "pageToken": Page token used to retrieve the next page. This is currently unsupported and will be ignored. The server may at any point start using this field.

func (*ProjectsConstraintsListCall) Pages 

func (c *ProjectsConstraintsListCall) Pages(ctx context.Context, f func(*GoogleCloudOrgpolicyV2ListConstraintsResponse) error) error

Pages invokes f for each page of results. A non-nil error returned from f will halt the iteration. The provided context supersedes any context provided to the Context method.

type ProjectsConstraintsService 

type ProjectsConstraintsService struct {
	// contains filtered or unexported fields
}

func NewProjectsConstraintsService 

func NewProjectsConstraintsService(s *Service) *ProjectsConstraintsService

func (*ProjectsConstraintsService) List 

func (r *ProjectsConstraintsService) List(parent string) *ProjectsConstraintsListCall

List: Lists constraints that could be applied on the specified resource.

  • parent: The Google Cloud resource that parents the constraint. Must be in one of the following forms: * `projects/{project_number}` * `projects/{project_id}` * `folders/{folder_id}` * `organizations/{organization_id}`.

type ProjectsPoliciesCreateCall 

type ProjectsPoliciesCreateCall struct {
	// contains filtered or unexported fields
}

func (*ProjectsPoliciesCreateCall) Context 

func (c *ProjectsPoliciesCreateCall) Context(ctx context.Context) *ProjectsPoliciesCreateCall

Context sets the context to be used in this call's Do method. Any pending HTTP request will be aborted if the provided context is canceled.

func (*ProjectsPoliciesCreateCall) Do 

func (c *ProjectsPoliciesCreateCall) Do(opts ...googleapi.CallOption) (*GoogleCloudOrgpolicyV2Policy, error)

Do executes the "orgpolicy.projects.policies.create" call. Exactly one of *GoogleCloudOrgpolicyV2Policy or error will be non-nil. Any non-2xx status code is an error. Response headers are in either *GoogleCloudOrgpolicyV2Policy.ServerResponse.Header or (if a response was returned at all) in error.(*googleapi.Error).Header. Use googleapi.IsNotModified to check whether the returned error was because http.StatusNotModified was returned.

func (*ProjectsPoliciesCreateCall) Fields 

func (c *ProjectsPoliciesCreateCall) Fields(s ...googleapi.Field) *ProjectsPoliciesCreateCall

Fields allows partial responses to be retrieved. See https://developers.google.com/gdata/docs/2.0/basics#PartialResponse for more information.

func (*ProjectsPoliciesCreateCall) Header 

func (c *ProjectsPoliciesCreateCall) Header() http.Header

Header returns an http.Header that can be modified by the caller to add HTTP headers to the request.

type ProjectsPoliciesDeleteCall 

type ProjectsPoliciesDeleteCall struct {
	// contains filtered or unexported fields
}

func (*ProjectsPoliciesDeleteCall) Context 

func (c *ProjectsPoliciesDeleteCall) Context(ctx context.Context) *ProjectsPoliciesDeleteCall

Context sets the context to be used in this call's Do method. Any pending HTTP request will be aborted if the provided context is canceled.

func (*ProjectsPoliciesDeleteCall) Do 

func (c *ProjectsPoliciesDeleteCall) Do(opts ...googleapi.CallOption) (*GoogleProtobufEmpty, error)

Do executes the "orgpolicy.projects.policies.delete" call. Exactly one of *GoogleProtobufEmpty or error will be non-nil. Any non-2xx status code is an error. Response headers are in either *GoogleProtobufEmpty.ServerResponse.Header or (if a response was returned at all) in error.(*googleapi.Error).Header. Use googleapi.IsNotModified to check whether the returned error was because http.StatusNotModified was returned.

func (*ProjectsPoliciesDeleteCall) Fields 

func (c *ProjectsPoliciesDeleteCall) Fields(s ...googleapi.Field) *ProjectsPoliciesDeleteCall

Fields allows partial responses to be retrieved. See https://developers.google.com/gdata/docs/2.0/basics#PartialResponse for more information.

func (*ProjectsPoliciesDeleteCall) Header 

func (c *ProjectsPoliciesDeleteCall) Header() http.Header

Header returns an http.Header that can be modified by the caller to add HTTP headers to the request.

type ProjectsPoliciesGetCall 

type ProjectsPoliciesGetCall struct {
	// contains filtered or unexported fields
}

func (*ProjectsPoliciesGetCall) Context 

func (c *ProjectsPoliciesGetCall) Context(ctx context.Context) *ProjectsPoliciesGetCall

Context sets the context to be used in this call's Do method. Any pending HTTP request will be aborted if the provided context is canceled.

func (*ProjectsPoliciesGetCall) Do 

func (c *ProjectsPoliciesGetCall) Do(opts ...googleapi.CallOption) (*GoogleCloudOrgpolicyV2Policy, error)

Do executes the "orgpolicy.projects.policies.get" call. Exactly one of *GoogleCloudOrgpolicyV2Policy or error will be non-nil. Any non-2xx status code is an error. Response headers are in either *GoogleCloudOrgpolicyV2Policy.ServerResponse.Header or (if a response was returned at all) in error.(*googleapi.Error).Header. Use googleapi.IsNotModified to check whether the returned error was because http.StatusNotModified was returned.

func (*ProjectsPoliciesGetCall) Fields 

func (c *ProjectsPoliciesGetCall) Fields(s ...googleapi.Field) *ProjectsPoliciesGetCall

Fields allows partial responses to be retrieved. See https://developers.google.com/gdata/docs/2.0/basics#PartialResponse for more information.

func (*ProjectsPoliciesGetCall) Header 

func (c *ProjectsPoliciesGetCall) Header() http.Header

Header returns an http.Header that can be modified by the caller to add HTTP headers to the request.

func (*ProjectsPoliciesGetCall) IfNoneMatch 

func (c *ProjectsPoliciesGetCall) IfNoneMatch(entityTag string) *ProjectsPoliciesGetCall

IfNoneMatch sets the optional parameter which makes the operation fail if the object's ETag matches the given value. This is useful for getting updates only after the object has changed since the last request. Use googleapi.IsNotModified to check whether the response error from Do is the result of In-None-Match.

type ProjectsPoliciesGetEffectivePolicyCall 

type ProjectsPoliciesGetEffectivePolicyCall struct {
	// contains filtered or unexported fields
}

func (*ProjectsPoliciesGetEffectivePolicyCall) Context 

func (c *ProjectsPoliciesGetEffectivePolicyCall) Context(ctx context.Context) *ProjectsPoliciesGetEffectivePolicyCall

Context sets the context to be used in this call's Do method. Any pending HTTP request will be aborted if the provided context is canceled.

func (*ProjectsPoliciesGetEffectivePolicyCall) Do 

func (c *ProjectsPoliciesGetEffectivePolicyCall) Do(opts ...googleapi.CallOption) (*GoogleCloudOrgpolicyV2Policy, error)

Do executes the "orgpolicy.projects.policies.getEffectivePolicy" call. Exactly one of *GoogleCloudOrgpolicyV2Policy or error will be non-nil. Any non-2xx status code is an error. Response headers are in either *GoogleCloudOrgpolicyV2Policy.ServerResponse.Header or (if a response was returned at all) in error.(*googleapi.Error).Header. Use googleapi.IsNotModified to check whether the returned error was because http.StatusNotModified was returned.

func (*ProjectsPoliciesGetEffectivePolicyCall) Fields 

func (c *ProjectsPoliciesGetEffectivePolicyCall) Fields(s ...googleapi.Field) *ProjectsPoliciesGetEffectivePolicyCall

Fields allows partial responses to be retrieved. See https://developers.google.com/gdata/docs/2.0/basics#PartialResponse for more information.

func (*ProjectsPoliciesGetEffectivePolicyCall) Header 

func (c *ProjectsPoliciesGetEffectivePolicyCall) Header() http.Header

Header returns an http.Header that can be modified by the caller to add HTTP headers to the request.

func (*ProjectsPoliciesGetEffectivePolicyCall) IfNoneMatch 

func (c *ProjectsPoliciesGetEffectivePolicyCall) IfNoneMatch(entityTag string) *ProjectsPoliciesGetEffectivePolicyCall

IfNoneMatch sets the optional parameter which makes the operation fail if the object's ETag matches the given value. This is useful for getting updates only after the object has changed since the last request. Use googleapi.IsNotModified to check whether the response error from Do is the result of In-None-Match.

type ProjectsPoliciesListCall 

type ProjectsPoliciesListCall struct {
	// contains filtered or unexported fields
}

func (*ProjectsPoliciesListCall) Context 

func (c *ProjectsPoliciesListCall) Context(ctx context.Context) *ProjectsPoliciesListCall

Context sets the context to be used in this call's Do method. Any pending HTTP request will be aborted if the provided context is canceled.

func (*ProjectsPoliciesListCall) Do 

func (c *ProjectsPoliciesListCall) Do(opts ...googleapi.CallOption) (*GoogleCloudOrgpolicyV2ListPoliciesResponse, error)

Do executes the "orgpolicy.projects.policies.list" call. Exactly one of *GoogleCloudOrgpolicyV2ListPoliciesResponse or error will be non-nil. Any non-2xx status code is an error. Response headers are in either *GoogleCloudOrgpolicyV2ListPoliciesResponse.ServerResponse.Header or (if a response was returned at all) in error.(*googleapi.Error).Header. Use googleapi.IsNotModified to check whether the returned error was because http.StatusNotModified was returned.

func (*ProjectsPoliciesListCall) Fields 

func (c *ProjectsPoliciesListCall) Fields(s ...googleapi.Field) *ProjectsPoliciesListCall

Fields allows partial responses to be retrieved. See https://developers.google.com/gdata/docs/2.0/basics#PartialResponse for more information.

func (*ProjectsPoliciesListCall) Header 

func (c *ProjectsPoliciesListCall) Header() http.Header

Header returns an http.Header that can be modified by the caller to add HTTP headers to the request.

func (*ProjectsPoliciesListCall) IfNoneMatch 

func (c *ProjectsPoliciesListCall) IfNoneMatch(entityTag string) *ProjectsPoliciesListCall

IfNoneMatch sets the optional parameter which makes the operation fail if the object's ETag matches the given value. This is useful for getting updates only after the object has changed since the last request. Use googleapi.IsNotModified to check whether the response error from Do is the result of In-None-Match.

func (*ProjectsPoliciesListCall) PageSize 

func (c *ProjectsPoliciesListCall) PageSize(pageSize int64) *ProjectsPoliciesListCall

PageSize sets the optional parameter "pageSize": Size of the pages to be returned. This is currently unsupported and will be ignored. The server may at any point start using this field to limit page size.

func (*ProjectsPoliciesListCall) PageToken 

func (c *ProjectsPoliciesListCall) PageToken(pageToken string) *ProjectsPoliciesListCall

PageToken sets the optional parameter "pageToken": Page token used to retrieve the next page. This is currently unsupported and will be ignored. The server may at any point start using this field.

func (*ProjectsPoliciesListCall) Pages 

func (c *ProjectsPoliciesListCall) Pages(ctx context.Context, f func(*GoogleCloudOrgpolicyV2ListPoliciesResponse) error) error

Pages invokes f for each page of results. A non-nil error returned from f will halt the iteration. The provided context supersedes any context provided to the Context method.

type ProjectsPoliciesPatchCall 

type ProjectsPoliciesPatchCall struct {
	// contains filtered or unexported fields
}

func (*ProjectsPoliciesPatchCall) Context 

func (c *ProjectsPoliciesPatchCall) Context(ctx context.Context) *ProjectsPoliciesPatchCall

Context sets the context to be used in this call's Do method. Any pending HTTP request will be aborted if the provided context is canceled.

func (*ProjectsPoliciesPatchCall) Do 

func (c *ProjectsPoliciesPatchCall) Do(opts ...googleapi.CallOption) (*GoogleCloudOrgpolicyV2Policy, error)

Do executes the "orgpolicy.projects.policies.patch" call. Exactly one of *GoogleCloudOrgpolicyV2Policy or error will be non-nil. Any non-2xx status code is an error. Response headers are in either *GoogleCloudOrgpolicyV2Policy.ServerResponse.Header or (if a response was returned at all) in error.(*googleapi.Error).Header. Use googleapi.IsNotModified to check whether the returned error was because http.StatusNotModified was returned.

func (*ProjectsPoliciesPatchCall) Fields 

func (c *ProjectsPoliciesPatchCall) Fields(s ...googleapi.Field) *ProjectsPoliciesPatchCall

Fields allows partial responses to be retrieved. See https://developers.google.com/gdata/docs/2.0/basics#PartialResponse for more information.

func (*ProjectsPoliciesPatchCall) Header 

func (c *ProjectsPoliciesPatchCall) Header() http.Header

Header returns an http.Header that can be modified by the caller to add HTTP headers to the request.

func (*ProjectsPoliciesPatchCall) UpdateMask added in v0.108.0 

func (c *ProjectsPoliciesPatchCall) UpdateMask(updateMask string) *ProjectsPoliciesPatchCall

UpdateMask sets the optional parameter "updateMask": Field mask used to specify the fields to be overwritten in the policy by the set. The fields specified in the update_mask are relative to the policy, not the full request.

type ProjectsPoliciesService 

type ProjectsPoliciesService struct {
	// contains filtered or unexported fields
}

func NewProjectsPoliciesService 

func NewProjectsPoliciesService(s *Service) *ProjectsPoliciesService

func (*ProjectsPoliciesService) Create 

func (r *ProjectsPoliciesService) Create(parent string, googlecloudorgpolicyv2policy *GoogleCloudOrgpolicyV2Policy) *ProjectsPoliciesCreateCall

Create: Creates a policy. Returns a `google.rpc.Status` with `google.rpc.Code.NOT_FOUND` if the constraint does not exist. Returns a `google.rpc.Status` with `google.rpc.Code.ALREADY_EXISTS` if the policy already exists on the given Google Cloud resource.

  • parent: The Google Cloud resource that will parent the new policy. Must be in one of the following forms: * `projects/{project_number}` * `projects/{project_id}` * `folders/{folder_id}` * `organizations/{organization_id}`.

func (*ProjectsPoliciesService) Delete 

func (r *ProjectsPoliciesService) Delete(name string) *ProjectsPoliciesDeleteCall

Delete: Deletes a policy. Returns a `google.rpc.Status` with `google.rpc.Code.NOT_FOUND` if the constraint or organization policy does not exist.

  • name: Name of the policy to delete. See the policy entry for naming rules.

func (*ProjectsPoliciesService) Get 

func (r *ProjectsPoliciesService) Get(name string) *ProjectsPoliciesGetCall

Get: Gets a policy on a resource. If no policy is set on the resource, `NOT_FOUND` is returned. The `etag` value can be used with `UpdatePolicy()` to update a policy during read-modify-write.

  • name: Resource name of the policy. See `Policy` for naming requirements.

func (*ProjectsPoliciesService) GetEffectivePolicy 

func (r *ProjectsPoliciesService) GetEffectivePolicy(name string) *ProjectsPoliciesGetEffectivePolicyCall

GetEffectivePolicy: Gets the effective policy on a resource. This is the result of merging policies in the resource hierarchy and evaluating conditions. The returned policy will not have an `etag` or `condition` set because it is an evaluated policy across multiple resources. Subtrees of Resource Manager resource hierarchy with 'under:' prefix will not be expanded.

  • name: The effective policy to compute. See `Policy` for naming rules.

func (*ProjectsPoliciesService) List 

func (r *ProjectsPoliciesService) List(parent string) *ProjectsPoliciesListCall

List: Retrieves all of the policies that exist on a particular resource.

  • parent: The target Google Cloud resource that parents the set of constraints and policies that will be returned from this call. Must be in one of the following forms: * `projects/{project_number}` * `projects/{project_id}` * `folders/{folder_id}` * `organizations/{organization_id}`.

func (*ProjectsPoliciesService) Patch 

func (r *ProjectsPoliciesService) Patch(name string, googlecloudorgpolicyv2policy *GoogleCloudOrgpolicyV2Policy) *ProjectsPoliciesPatchCall

Patch: Updates a policy. Returns a `google.rpc.Status` with `google.rpc.Code.NOT_FOUND` if the constraint or the policy do not exist. Returns a `google.rpc.Status` with `google.rpc.Code.ABORTED` if the etag supplied in the request does not match the persisted etag of the policy Note: the supplied policy will perform a full overwrite of all fields.

  • name: Immutable. The resource name of the policy. Must be one of the following forms, where constraint_name is the name of the constraint which this policy configures: * `projects/{project_number}/policies/{constraint_name}` * `folders/{folder_id}/policies/{constraint_name}` * `organizations/{organization_id}/policies/{constraint_name}` For example, "projects/123/policies/compute.disableSerialPortAccess". Note: `projects/{project_id}/policies/{constraint_name}` is also an acceptable name for API requests, but responses will return the name using the equivalent project number.

type ProjectsService 

type ProjectsService struct {
	Constraints *ProjectsConstraintsService

	Policies *ProjectsPoliciesService
	// contains filtered or unexported fields
}

func NewProjectsService 

func NewProjectsService(s *Service) *ProjectsService

type Service 

type Service struct {
	BasePath  string // API endpoint base URL
	UserAgent string // optional additional User-Agent fragment

	Folders *FoldersService

	Organizations *OrganizationsService

	Projects *ProjectsService
	// contains filtered or unexported fields
}

func New deprecated 

func New(client *http.Client) (*Service, error)

New creates a new Service. It uses the provided http.Client for requests.

Deprecated: please use NewService instead. To provide a custom HTTP client, use option.WithHTTPClient. If you are using google.golang.org/api/googleapis/transport.APIKey, use option.WithAPIKey with NewService instead.

func NewService 

func NewService(ctx context.Context, opts ...option.ClientOption) (*Service, error)

NewService creates a new Service.

Source Files

View all Source files

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.