You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: docs/dyn/assuredworkloads_v1.organizations.locations.workloads.violations.html
+2-2Lines changed: 2 additions & 2 deletions
Original file line number
Diff line number
Diff line change
@@ -135,7 +135,7 @@ <h3>Method Details</h3>
135
135
Returns:
136
136
An object of the form:
137
137
138
-
{ # Workload monitoring Violation. Next Id: 22
138
+
{ # Workload monitoring Violation. Next Id: 27
139
139
"acknowledged": True or False, # A boolean that indicates if the violation is acknowledged
140
140
"acknowledgementTime": "A String", # Optional. Timestamp when this violation was acknowledged first. Check exception_contexts to find the last time the violation was acknowledged when there are more than one violations. This field will be absent when acknowledged field is marked as false.
141
141
"auditLogLink": "A String", # Output only. Immutable. Audit Log Link for violated resource Format: https://console.cloud.google.com/logs/query;query={logName}{protoPayload.resourceName}{timeRange}{folder}
@@ -204,7 +204,7 @@ <h3>Method Details</h3>
204
204
{ # Response of ListViolations endpoint.
205
205
"nextPageToken": "A String", # The next page token. Returns empty if reached the last page.
206
206
"violations": [ # List of Violations under a Workload.
207
-
{ # Workload monitoring Violation. Next Id: 22
207
+
{ # Workload monitoring Violation. Next Id: 27
208
208
"acknowledged": True or False, # A boolean that indicates if the violation is acknowledged
209
209
"acknowledgementTime": "A String", # Optional. Timestamp when this violation was acknowledged first. Check exception_contexts to find the last time the violation was acknowledged when there are more than one violations. This field will be absent when acknowledged field is marked as false.
210
210
"auditLogLink": "A String", # Output only. Immutable. Audit Log Link for violated resource Format: https://console.cloud.google.com/logs/query;query={logName}{protoPayload.resourceName}{timeRange}{folder}
Copy file name to clipboardExpand all lines: docs/dyn/assuredworkloads_v1beta1.organizations.locations.workloads.html
+65Lines changed: 65 additions & 0 deletions
Original file line number
Diff line number
Diff line change
@@ -139,6 +139,14 @@ <h3>Method Details</h3>
139
139
"compliantButDisallowedServices": [ # Output only. Urls for services which are compliant for this Assured Workload, but which are currently disallowed by the ResourceUsageRestriction org policy. Invoke RestrictAllowedResources endpoint to allow your project developers to use these services in their environment."
140
140
"A String",
141
141
],
142
+
"controls": { # Controls enabled to the user associated with this workload # Output only. Controls associated with the customer workload
143
+
"appliedOrgPolicies": [ # Output only. Org policies currently applied by this Assured Workload
144
+
{ # An org policy control applied by Assured Workloads
145
+
"constraint": "A String", # Output only. Constraint name of the org policy control Example: constraints/gcp.resourcelocations
146
+
"version": 42, # Output only. Org policy version
"displayName": "A String", # Required. The user-assigned display name of the Workload. When present it must be between 4 to 30 characters. Allowed characters are: lowercase and uppercase letters, numbers, hyphen, and spaces. Example: My Workload
144
152
"ekmProvisioningResponse": { # External key management systems(EKM) Provisioning response # Optional. Represents the Ekm Provisioning State of the given workload.
@@ -176,6 +184,10 @@ <h3>Method Details</h3>
176
184
},
177
185
"name": "A String", # Optional. The resource name of the workload. Format: organizations/{organization}/locations/{location}/workloads/{workload} Read-only.
178
186
"partner": "A String", # Optional. Partner regime associated with this workload.
187
+
"partnerPermissions": { # Permissions granted to the AW Partner SA account for the customer workload # Optional. Permissions granted to the AW Partner SA account for the customer workload
188
+
"dataLogsViewer": True or False, # Allow the partner to view inspectability logs and monitoring violations.
189
+
"remediateFolderViolations": True or False, # Allow partner to monitor folder and remediate violations
190
+
},
179
191
"provisionedResourcesParent": "A String", # Input only. The parent resource for the resources managed by this Assured Workload. May be either empty or a folder resource which is a child of the Workload parent. If not specified all resources are created under the parent organization. Format: folders/{folder_id}
180
192
"resourceSettings": [ # Input only. Resource properties that are used to customize workload resources. These properties (such as custom project id) will be used to create workload resources if possible. This field is optional.
181
193
{ # Represent the custom settings for the resources to be created.
@@ -196,6 +208,7 @@ <h3>Method Details</h3>
196
208
],
197
209
"setupStatus": "A String", # Indicates SAA enrollment status of a given workload.
198
210
},
211
+
"violationNotificationsEnabled": True or False, # Optional. Indicates whether the e-mail notification for a violation is enabled for a workload. This value will be by default True, and if not present will be considered as true. This should only be updated via updateWorkload call. Any Changes to this field during the createWorkload call will not be honored. This will always be true while creating the workload.
199
212
}
200
213
201
214
externalId: string, Optional. A identifier associated with the workload and underlying projects which allows for the break down of billing costs for a workload. The value provided for the identifier will add a label to the workload and contained projects with the identifier as the value.
@@ -277,6 +290,14 @@ <h3>Method Details</h3>
277
290
"compliantButDisallowedServices": [ # Output only. Urls for services which are compliant for this Assured Workload, but which are currently disallowed by the ResourceUsageRestriction org policy. Invoke RestrictAllowedResources endpoint to allow your project developers to use these services in their environment."
278
291
"A String",
279
292
],
293
+
"controls": { # Controls enabled to the user associated with this workload # Output only. Controls associated with the customer workload
294
+
"appliedOrgPolicies": [ # Output only. Org policies currently applied by this Assured Workload
295
+
{ # An org policy control applied by Assured Workloads
296
+
"constraint": "A String", # Output only. Constraint name of the org policy control Example: constraints/gcp.resourcelocations
297
+
"version": 42, # Output only. Org policy version
"displayName": "A String", # Required. The user-assigned display name of the Workload. When present it must be between 4 to 30 characters. Allowed characters are: lowercase and uppercase letters, numbers, hyphen, and spaces. Example: My Workload
282
303
"ekmProvisioningResponse": { # External key management systems(EKM) Provisioning response # Optional. Represents the Ekm Provisioning State of the given workload.
@@ -314,6 +335,10 @@ <h3>Method Details</h3>
314
335
},
315
336
"name": "A String", # Optional. The resource name of the workload. Format: organizations/{organization}/locations/{location}/workloads/{workload} Read-only.
316
337
"partner": "A String", # Optional. Partner regime associated with this workload.
338
+
"partnerPermissions": { # Permissions granted to the AW Partner SA account for the customer workload # Optional. Permissions granted to the AW Partner SA account for the customer workload
339
+
"dataLogsViewer": True or False, # Allow the partner to view inspectability logs and monitoring violations.
340
+
"remediateFolderViolations": True or False, # Allow partner to monitor folder and remediate violations
341
+
},
317
342
"provisionedResourcesParent": "A String", # Input only. The parent resource for the resources managed by this Assured Workload. May be either empty or a folder resource which is a child of the Workload parent. If not specified all resources are created under the parent organization. Format: folders/{folder_id}
318
343
"resourceSettings": [ # Input only. Resource properties that are used to customize workload resources. These properties (such as custom project id) will be used to create workload resources if possible. This field is optional.
319
344
{ # Represent the custom settings for the resources to be created.
@@ -334,6 +359,7 @@ <h3>Method Details</h3>
334
359
],
335
360
"setupStatus": "A String", # Indicates SAA enrollment status of a given workload.
336
361
},
362
+
"violationNotificationsEnabled": True or False, # Optional. Indicates whether the e-mail notification for a violation is enabled for a workload. This value will be by default True, and if not present will be considered as true. This should only be updated via updateWorkload call. Any Changes to this field during the createWorkload call will not be honored. This will always be true while creating the workload.
337
363
}</pre>
338
364
</div>
339
365
@@ -373,6 +399,14 @@ <h3>Method Details</h3>
373
399
"compliantButDisallowedServices": [ # Output only. Urls for services which are compliant for this Assured Workload, but which are currently disallowed by the ResourceUsageRestriction org policy. Invoke RestrictAllowedResources endpoint to allow your project developers to use these services in their environment."
374
400
"A String",
375
401
],
402
+
"controls": { # Controls enabled to the user associated with this workload # Output only. Controls associated with the customer workload
403
+
"appliedOrgPolicies": [ # Output only. Org policies currently applied by this Assured Workload
404
+
{ # An org policy control applied by Assured Workloads
405
+
"constraint": "A String", # Output only. Constraint name of the org policy control Example: constraints/gcp.resourcelocations
406
+
"version": 42, # Output only. Org policy version
"displayName": "A String", # Required. The user-assigned display name of the Workload. When present it must be between 4 to 30 characters. Allowed characters are: lowercase and uppercase letters, numbers, hyphen, and spaces. Example: My Workload
378
412
"ekmProvisioningResponse": { # External key management systems(EKM) Provisioning response # Optional. Represents the Ekm Provisioning State of the given workload.
@@ -410,6 +444,10 @@ <h3>Method Details</h3>
410
444
},
411
445
"name": "A String", # Optional. The resource name of the workload. Format: organizations/{organization}/locations/{location}/workloads/{workload} Read-only.
412
446
"partner": "A String", # Optional. Partner regime associated with this workload.
447
+
"partnerPermissions": { # Permissions granted to the AW Partner SA account for the customer workload # Optional. Permissions granted to the AW Partner SA account for the customer workload
448
+
"dataLogsViewer": True or False, # Allow the partner to view inspectability logs and monitoring violations.
449
+
"remediateFolderViolations": True or False, # Allow partner to monitor folder and remediate violations
450
+
},
413
451
"provisionedResourcesParent": "A String", # Input only. The parent resource for the resources managed by this Assured Workload. May be either empty or a folder resource which is a child of the Workload parent. If not specified all resources are created under the parent organization. Format: folders/{folder_id}
414
452
"resourceSettings": [ # Input only. Resource properties that are used to customize workload resources. These properties (such as custom project id) will be used to create workload resources if possible. This field is optional.
415
453
{ # Represent the custom settings for the resources to be created.
@@ -430,6 +468,7 @@ <h3>Method Details</h3>
430
468
],
431
469
"setupStatus": "A String", # Indicates SAA enrollment status of a given workload.
432
470
},
471
+
"violationNotificationsEnabled": True or False, # Optional. Indicates whether the e-mail notification for a violation is enabled for a workload. This value will be by default True, and if not present will be considered as true. This should only be updated via updateWorkload call. Any Changes to this field during the createWorkload call will not be honored. This will always be true while creating the workload.
433
472
},
434
473
],
435
474
}</pre>
@@ -474,6 +513,14 @@ <h3>Method Details</h3>
474
513
"compliantButDisallowedServices": [ # Output only. Urls for services which are compliant for this Assured Workload, but which are currently disallowed by the ResourceUsageRestriction org policy. Invoke RestrictAllowedResources endpoint to allow your project developers to use these services in their environment."
475
514
"A String",
476
515
],
516
+
"controls": { # Controls enabled to the user associated with this workload # Output only. Controls associated with the customer workload
517
+
"appliedOrgPolicies": [ # Output only. Org policies currently applied by this Assured Workload
518
+
{ # An org policy control applied by Assured Workloads
519
+
"constraint": "A String", # Output only. Constraint name of the org policy control Example: constraints/gcp.resourcelocations
520
+
"version": 42, # Output only. Org policy version
"displayName": "A String", # Required. The user-assigned display name of the Workload. When present it must be between 4 to 30 characters. Allowed characters are: lowercase and uppercase letters, numbers, hyphen, and spaces. Example: My Workload
479
526
"ekmProvisioningResponse": { # External key management systems(EKM) Provisioning response # Optional. Represents the Ekm Provisioning State of the given workload.
@@ -511,6 +558,10 @@ <h3>Method Details</h3>
511
558
},
512
559
"name": "A String", # Optional. The resource name of the workload. Format: organizations/{organization}/locations/{location}/workloads/{workload} Read-only.
513
560
"partner": "A String", # Optional. Partner regime associated with this workload.
561
+
"partnerPermissions": { # Permissions granted to the AW Partner SA account for the customer workload # Optional. Permissions granted to the AW Partner SA account for the customer workload
562
+
"dataLogsViewer": True or False, # Allow the partner to view inspectability logs and monitoring violations.
563
+
"remediateFolderViolations": True or False, # Allow partner to monitor folder and remediate violations
564
+
},
514
565
"provisionedResourcesParent": "A String", # Input only. The parent resource for the resources managed by this Assured Workload. May be either empty or a folder resource which is a child of the Workload parent. If not specified all resources are created under the parent organization. Format: folders/{folder_id}
515
566
"resourceSettings": [ # Input only. Resource properties that are used to customize workload resources. These properties (such as custom project id) will be used to create workload resources if possible. This field is optional.
516
567
{ # Represent the custom settings for the resources to be created.
@@ -531,6 +582,7 @@ <h3>Method Details</h3>
531
582
],
532
583
"setupStatus": "A String", # Indicates SAA enrollment status of a given workload.
533
584
},
585
+
"violationNotificationsEnabled": True or False, # Optional. Indicates whether the e-mail notification for a violation is enabled for a workload. This value will be by default True, and if not present will be considered as true. This should only be updated via updateWorkload call. Any Changes to this field during the createWorkload call will not be honored. This will always be true while creating the workload.
534
586
}
535
587
536
588
updateMask: string, Required. The list of fields to be updated.
@@ -558,6 +610,14 @@ <h3>Method Details</h3>
558
610
"compliantButDisallowedServices": [ # Output only. Urls for services which are compliant for this Assured Workload, but which are currently disallowed by the ResourceUsageRestriction org policy. Invoke RestrictAllowedResources endpoint to allow your project developers to use these services in their environment."
559
611
"A String",
560
612
],
613
+
"controls": { # Controls enabled to the user associated with this workload # Output only. Controls associated with the customer workload
614
+
"appliedOrgPolicies": [ # Output only. Org policies currently applied by this Assured Workload
615
+
{ # An org policy control applied by Assured Workloads
616
+
"constraint": "A String", # Output only. Constraint name of the org policy control Example: constraints/gcp.resourcelocations
617
+
"version": 42, # Output only. Org policy version
"displayName": "A String", # Required. The user-assigned display name of the Workload. When present it must be between 4 to 30 characters. Allowed characters are: lowercase and uppercase letters, numbers, hyphen, and spaces. Example: My Workload
563
623
"ekmProvisioningResponse": { # External key management systems(EKM) Provisioning response # Optional. Represents the Ekm Provisioning State of the given workload.
@@ -595,6 +655,10 @@ <h3>Method Details</h3>
595
655
},
596
656
"name": "A String", # Optional. The resource name of the workload. Format: organizations/{organization}/locations/{location}/workloads/{workload} Read-only.
597
657
"partner": "A String", # Optional. Partner regime associated with this workload.
658
+
"partnerPermissions": { # Permissions granted to the AW Partner SA account for the customer workload # Optional. Permissions granted to the AW Partner SA account for the customer workload
659
+
"dataLogsViewer": True or False, # Allow the partner to view inspectability logs and monitoring violations.
660
+
"remediateFolderViolations": True or False, # Allow partner to monitor folder and remediate violations
661
+
},
598
662
"provisionedResourcesParent": "A String", # Input only. The parent resource for the resources managed by this Assured Workload. May be either empty or a folder resource which is a child of the Workload parent. If not specified all resources are created under the parent organization. Format: folders/{folder_id}
599
663
"resourceSettings": [ # Input only. Resource properties that are used to customize workload resources. These properties (such as custom project id) will be used to create workload resources if possible. This field is optional.
600
664
{ # Represent the custom settings for the resources to be created.
@@ -615,6 +679,7 @@ <h3>Method Details</h3>
615
679
],
616
680
"setupStatus": "A String", # Indicates SAA enrollment status of a given workload.
617
681
},
682
+
"violationNotificationsEnabled": True or False, # Optional. Indicates whether the e-mail notification for a violation is enabled for a workload. This value will be by default True, and if not present will be considered as true. This should only be updated via updateWorkload call. Any Changes to this field during the createWorkload call will not be honored. This will always be true while creating the workload.
0 commit comments