diff --git a/api_names_out.yaml b/api_names_out.yaml index cf18fa9def0..c762d5948ad 100644 --- a/api_names_out.yaml +++ b/api_names_out.yaml @@ -132886,6 +132886,8 @@ "/securitycenter:v1/Asset/securityMarks": security_marks "/securitycenter:v1/Asset/updateTime": update_time "/securitycenter:v1/AssetDiscoveryConfig": asset_discovery_config +"/securitycenter:v1/AssetDiscoveryConfig/folderIds": folder_ids +"/securitycenter:v1/AssetDiscoveryConfig/folderIds/folder_id": folder_id "/securitycenter:v1/AssetDiscoveryConfig/inclusionMode": inclusion_mode "/securitycenter:v1/AssetDiscoveryConfig/projectIds": project_ids "/securitycenter:v1/AssetDiscoveryConfig/projectIds/project_id": project_id @@ -132921,6 +132923,9 @@ "/securitycenter:v1/Finding/sourceProperties": source_properties "/securitycenter:v1/Finding/sourceProperties/source_property": source_property "/securitycenter:v1/Finding/state": state +"/securitycenter:v1/Folder": folder +"/securitycenter:v1/Folder/resourceFolder": resource_folder +"/securitycenter:v1/Folder/resourceFolderDisplayName": resource_folder_display_name "/securitycenter:v1/GetIamPolicyRequest": get_iam_policy_request "/securitycenter:v1/GetIamPolicyRequest/options": options "/securitycenter:v1/GetPolicyOptions": get_policy_options @@ -132930,6 +132935,8 @@ "/securitycenter:v1/GoogleCloudSecuritycenterV1NotificationMessage/notificationConfigName": notification_config_name "/securitycenter:v1/GoogleCloudSecuritycenterV1NotificationMessage/resource": resource "/securitycenter:v1/GoogleCloudSecuritycenterV1Resource": google_cloud_securitycenter_v1_resource +"/securitycenter:v1/GoogleCloudSecuritycenterV1Resource/folders": folders +"/securitycenter:v1/GoogleCloudSecuritycenterV1Resource/folders/folder": folder "/securitycenter:v1/GoogleCloudSecuritycenterV1Resource/name": name "/securitycenter:v1/GoogleCloudSecuritycenterV1Resource/parent": parent "/securitycenter:v1/GoogleCloudSecuritycenterV1Resource/parentDisplayName": parent_display_name @@ -132963,6 +132970,9 @@ "/securitycenter:v1/GoogleCloudSecuritycenterV1p1beta1Finding/sourceProperties": source_properties "/securitycenter:v1/GoogleCloudSecuritycenterV1p1beta1Finding/sourceProperties/source_property": source_property "/securitycenter:v1/GoogleCloudSecuritycenterV1p1beta1Finding/state": state +"/securitycenter:v1/GoogleCloudSecuritycenterV1p1beta1Folder": google_cloud_securitycenter_v1p1beta1_folder +"/securitycenter:v1/GoogleCloudSecuritycenterV1p1beta1Folder/resourceFolder": resource_folder +"/securitycenter:v1/GoogleCloudSecuritycenterV1p1beta1Folder/resourceFolderDisplayName": resource_folder_display_name "/securitycenter:v1/GoogleCloudSecuritycenterV1p1beta1IamPolicy": google_cloud_securitycenter_v1p1beta1_iam_policy "/securitycenter:v1/GoogleCloudSecuritycenterV1p1beta1IamPolicy/policyBlob": policy_blob "/securitycenter:v1/GoogleCloudSecuritycenterV1p1beta1NotificationMessage": google_cloud_securitycenter_v1p1beta1_notification_message @@ -132971,6 +132981,8 @@ "/securitycenter:v1/GoogleCloudSecuritycenterV1p1beta1NotificationMessage/resource": resource "/securitycenter:v1/GoogleCloudSecuritycenterV1p1beta1NotificationMessage/temporalAsset": temporal_asset "/securitycenter:v1/GoogleCloudSecuritycenterV1p1beta1Resource": google_cloud_securitycenter_v1p1beta1_resource +"/securitycenter:v1/GoogleCloudSecuritycenterV1p1beta1Resource/folders": folders +"/securitycenter:v1/GoogleCloudSecuritycenterV1p1beta1Resource/folders/folder": folder "/securitycenter:v1/GoogleCloudSecuritycenterV1p1beta1Resource/name": name "/securitycenter:v1/GoogleCloudSecuritycenterV1p1beta1Resource/parent": parent "/securitycenter:v1/GoogleCloudSecuritycenterV1p1beta1Resource/parentDisplayName": parent_display_name @@ -133085,6 +133097,8 @@ "/securitycenter:v1/Policy/etag": etag "/securitycenter:v1/Policy/version": version "/securitycenter:v1/Resource": resource +"/securitycenter:v1/Resource/folders": folders +"/securitycenter:v1/Resource/folders/folder": folder "/securitycenter:v1/Resource/name": name "/securitycenter:v1/Resource/parentDisplayName": parent_display_name "/securitycenter:v1/Resource/parentName": parent_name @@ -133092,6 +133106,8 @@ "/securitycenter:v1/Resource/projectName": project_name "/securitycenter:v1/RunAssetDiscoveryRequest": run_asset_discovery_request "/securitycenter:v1/SecurityCenterProperties": security_center_properties +"/securitycenter:v1/SecurityCenterProperties/folders": folders +"/securitycenter:v1/SecurityCenterProperties/folders/folder": folder "/securitycenter:v1/SecurityCenterProperties/resourceDisplayName": resource_display_name "/securitycenter:v1/SecurityCenterProperties/resourceName": resource_name "/securitycenter:v1/SecurityCenterProperties/resourceOwners": resource_owners @@ -133132,6 +133148,45 @@ "/securitycenter:v1/fields": fields "/securitycenter:v1/key": key "/securitycenter:v1/quotaUser": quota_user +"/securitycenter:v1/securitycenter.folders.assets.group": group_folder_asset +"/securitycenter:v1/securitycenter.folders.assets.group/parent": parent +"/securitycenter:v1/securitycenter.folders.assets.list": list_folder_assets +"/securitycenter:v1/securitycenter.folders.assets.list/compareDuration": compare_duration +"/securitycenter:v1/securitycenter.folders.assets.list/fieldMask": field_mask +"/securitycenter:v1/securitycenter.folders.assets.list/filter": filter +"/securitycenter:v1/securitycenter.folders.assets.list/orderBy": order_by +"/securitycenter:v1/securitycenter.folders.assets.list/pageSize": page_size +"/securitycenter:v1/securitycenter.folders.assets.list/pageToken": page_token +"/securitycenter:v1/securitycenter.folders.assets.list/parent": parent +"/securitycenter:v1/securitycenter.folders.assets.list/readTime": read_time +"/securitycenter:v1/securitycenter.folders.assets.updateSecurityMarks": update_folder_asset_security_marks +"/securitycenter:v1/securitycenter.folders.assets.updateSecurityMarks/name": name +"/securitycenter:v1/securitycenter.folders.assets.updateSecurityMarks/startTime": start_time +"/securitycenter:v1/securitycenter.folders.assets.updateSecurityMarks/updateMask": update_mask +"/securitycenter:v1/securitycenter.folders.sources.findings.group": group_folder_source_finding +"/securitycenter:v1/securitycenter.folders.sources.findings.group/parent": parent +"/securitycenter:v1/securitycenter.folders.sources.findings.list": list_folder_source_findings +"/securitycenter:v1/securitycenter.folders.sources.findings.list/compareDuration": compare_duration +"/securitycenter:v1/securitycenter.folders.sources.findings.list/fieldMask": field_mask +"/securitycenter:v1/securitycenter.folders.sources.findings.list/filter": filter +"/securitycenter:v1/securitycenter.folders.sources.findings.list/orderBy": order_by +"/securitycenter:v1/securitycenter.folders.sources.findings.list/pageSize": page_size +"/securitycenter:v1/securitycenter.folders.sources.findings.list/pageToken": page_token +"/securitycenter:v1/securitycenter.folders.sources.findings.list/parent": parent +"/securitycenter:v1/securitycenter.folders.sources.findings.list/readTime": read_time +"/securitycenter:v1/securitycenter.folders.sources.findings.patch": patch_folder_source_finding +"/securitycenter:v1/securitycenter.folders.sources.findings.patch/name": name +"/securitycenter:v1/securitycenter.folders.sources.findings.patch/updateMask": update_mask +"/securitycenter:v1/securitycenter.folders.sources.findings.setState": set_folder_source_finding_state +"/securitycenter:v1/securitycenter.folders.sources.findings.setState/name": name +"/securitycenter:v1/securitycenter.folders.sources.findings.updateSecurityMarks": update_folder_source_finding_security_marks +"/securitycenter:v1/securitycenter.folders.sources.findings.updateSecurityMarks/name": name +"/securitycenter:v1/securitycenter.folders.sources.findings.updateSecurityMarks/startTime": start_time +"/securitycenter:v1/securitycenter.folders.sources.findings.updateSecurityMarks/updateMask": update_mask +"/securitycenter:v1/securitycenter.folders.sources.list": list_folder_sources +"/securitycenter:v1/securitycenter.folders.sources.list/pageSize": page_size +"/securitycenter:v1/securitycenter.folders.sources.list/pageToken": page_token +"/securitycenter:v1/securitycenter.folders.sources.list/parent": parent "/securitycenter:v1/securitycenter.organizations.assets.group": group_assets "/securitycenter:v1/securitycenter.organizations.assets.group/parent": parent "/securitycenter:v1/securitycenter.organizations.assets.list": list_organization_assets @@ -133219,6 +133274,45 @@ "/securitycenter:v1/securitycenter.organizations.updateOrganizationSettings": update_organization_organization_settings "/securitycenter:v1/securitycenter.organizations.updateOrganizationSettings/name": name "/securitycenter:v1/securitycenter.organizations.updateOrganizationSettings/updateMask": update_mask +"/securitycenter:v1/securitycenter.projects.assets.group": group_project_asset +"/securitycenter:v1/securitycenter.projects.assets.group/parent": parent +"/securitycenter:v1/securitycenter.projects.assets.list": list_project_assets +"/securitycenter:v1/securitycenter.projects.assets.list/compareDuration": compare_duration +"/securitycenter:v1/securitycenter.projects.assets.list/fieldMask": field_mask +"/securitycenter:v1/securitycenter.projects.assets.list/filter": filter +"/securitycenter:v1/securitycenter.projects.assets.list/orderBy": order_by +"/securitycenter:v1/securitycenter.projects.assets.list/pageSize": page_size +"/securitycenter:v1/securitycenter.projects.assets.list/pageToken": page_token +"/securitycenter:v1/securitycenter.projects.assets.list/parent": parent +"/securitycenter:v1/securitycenter.projects.assets.list/readTime": read_time +"/securitycenter:v1/securitycenter.projects.assets.updateSecurityMarks": update_project_asset_security_marks +"/securitycenter:v1/securitycenter.projects.assets.updateSecurityMarks/name": name +"/securitycenter:v1/securitycenter.projects.assets.updateSecurityMarks/startTime": start_time +"/securitycenter:v1/securitycenter.projects.assets.updateSecurityMarks/updateMask": update_mask +"/securitycenter:v1/securitycenter.projects.sources.findings.group": group_project_source_finding +"/securitycenter:v1/securitycenter.projects.sources.findings.group/parent": parent +"/securitycenter:v1/securitycenter.projects.sources.findings.list": list_project_source_findings +"/securitycenter:v1/securitycenter.projects.sources.findings.list/compareDuration": compare_duration +"/securitycenter:v1/securitycenter.projects.sources.findings.list/fieldMask": field_mask +"/securitycenter:v1/securitycenter.projects.sources.findings.list/filter": filter +"/securitycenter:v1/securitycenter.projects.sources.findings.list/orderBy": order_by +"/securitycenter:v1/securitycenter.projects.sources.findings.list/pageSize": page_size +"/securitycenter:v1/securitycenter.projects.sources.findings.list/pageToken": page_token +"/securitycenter:v1/securitycenter.projects.sources.findings.list/parent": parent +"/securitycenter:v1/securitycenter.projects.sources.findings.list/readTime": read_time +"/securitycenter:v1/securitycenter.projects.sources.findings.patch": patch_project_source_finding +"/securitycenter:v1/securitycenter.projects.sources.findings.patch/name": name +"/securitycenter:v1/securitycenter.projects.sources.findings.patch/updateMask": update_mask +"/securitycenter:v1/securitycenter.projects.sources.findings.setState": set_project_source_finding_state +"/securitycenter:v1/securitycenter.projects.sources.findings.setState/name": name +"/securitycenter:v1/securitycenter.projects.sources.findings.updateSecurityMarks": update_project_source_finding_security_marks +"/securitycenter:v1/securitycenter.projects.sources.findings.updateSecurityMarks/name": name +"/securitycenter:v1/securitycenter.projects.sources.findings.updateSecurityMarks/startTime": start_time +"/securitycenter:v1/securitycenter.projects.sources.findings.updateSecurityMarks/updateMask": update_mask +"/securitycenter:v1/securitycenter.projects.sources.list": list_project_sources +"/securitycenter:v1/securitycenter.projects.sources.list/pageSize": page_size +"/securitycenter:v1/securitycenter.projects.sources.list/pageToken": page_token +"/securitycenter:v1/securitycenter.projects.sources.list/parent": parent "/securitycenter:v1beta1/Asset": asset "/securitycenter:v1beta1/Asset/createTime": create_time "/securitycenter:v1beta1/Asset/name": name diff --git a/generated/google/apis/securitycenter_v1.rb b/generated/google/apis/securitycenter_v1.rb index c911ada07e5..d5b3ccc5518 100644 --- a/generated/google/apis/securitycenter_v1.rb +++ b/generated/google/apis/securitycenter_v1.rb @@ -26,7 +26,7 @@ module Apis # @see https://console.cloud.google.com/apis/api/securitycenter.googleapis.com/overview module SecuritycenterV1 VERSION = 'V1' - REVISION = '20201106' + REVISION = '20201112' # View and manage your data across Google Cloud Platform services AUTH_CLOUD_PLATFORM = 'https://www.googleapis.com/auth/cloud-platform' diff --git a/generated/google/apis/securitycenter_v1/classes.rb b/generated/google/apis/securitycenter_v1/classes.rb index 052ab8ad5c6..e722f9a6bc4 100644 --- a/generated/google/apis/securitycenter_v1/classes.rb +++ b/generated/google/apis/securitycenter_v1/classes.rb @@ -95,6 +95,12 @@ def update!(**args) class AssetDiscoveryConfig include Google::Apis::Core::Hashable + # The folder ids to use for filtering asset discovery. It consists of only + # digits, e.g., 756619654966. + # Corresponds to the JSON property `folderIds` + # @return [Array] + attr_accessor :folder_ids + # The mode to use for filtering asset discovery. # Corresponds to the JSON property `inclusionMode` # @return [String] @@ -111,6 +117,7 @@ def initialize(**args) # Update properties of this object def update!(**args) + @folder_ids = args[:folder_ids] if args.key?(:folder_ids) @inclusion_mode = args[:inclusion_mode] if args.key?(:inclusion_mode) @project_ids = args[:project_ids] if args.key?(:project_ids) end @@ -428,6 +435,32 @@ def update!(**args) end end + # Message that contains the resource name and display name of a folder resource. + class Folder + include Google::Apis::Core::Hashable + + # Full resource name of this folder. See: https://cloud.google.com/apis/design/ + # resource_names#full_resource_name + # Corresponds to the JSON property `resourceFolder` + # @return [String] + attr_accessor :resource_folder + + # The user defined display name for this folder. + # Corresponds to the JSON property `resourceFolderDisplayName` + # @return [String] + attr_accessor :resource_folder_display_name + + def initialize(**args) + update!(**args) + end + + # Update properties of this object + def update!(**args) + @resource_folder = args[:resource_folder] if args.key?(:resource_folder) + @resource_folder_display_name = args[:resource_folder_display_name] if args.key?(:resource_folder_display_name) + end + end + # Request message for `GetIamPolicy` method. class GetIamPolicyRequest include Google::Apis::Core::Hashable @@ -511,6 +544,13 @@ def update!(**args) class GoogleCloudSecuritycenterV1Resource include Google::Apis::Core::Hashable + # Output only. Contains a Folder message for each folder in the assets ancestry. + # The first folder is the deepest nested folder, and the last folder is the + # folder directly under the Organization. + # Corresponds to the JSON property `folders` + # @return [Array] + attr_accessor :folders + # The full resource name of the resource. See: https://cloud.google.com/apis/ # design/resource_names#full_resource_name # Corresponds to the JSON property `name` @@ -543,6 +583,7 @@ def initialize(**args) # Update properties of this object def update!(**args) + @folders = args[:folders] if args.key?(:folders) @name = args[:name] if args.key?(:name) @parent = args[:parent] if args.key?(:parent) @parent_display_name = args[:parent_display_name] if args.key?(:parent_display_name) @@ -706,6 +747,32 @@ def update!(**args) end end + # Message that contains the resource name and display name of a folder resource. + class GoogleCloudSecuritycenterV1p1beta1Folder + include Google::Apis::Core::Hashable + + # Full resource name of this folder. See: https://cloud.google.com/apis/design/ + # resource_names#full_resource_name + # Corresponds to the JSON property `resourceFolder` + # @return [String] + attr_accessor :resource_folder + + # The user defined display name for this folder. + # Corresponds to the JSON property `resourceFolderDisplayName` + # @return [String] + attr_accessor :resource_folder_display_name + + def initialize(**args) + update!(**args) + end + + # Update properties of this object + def update!(**args) + @resource_folder = args[:resource_folder] if args.key?(:resource_folder) + @resource_folder_display_name = args[:resource_folder_display_name] if args.key?(:resource_folder_display_name) + end + end + # Security Command Center's Notification class GoogleCloudSecuritycenterV1p1beta1NotificationMessage include Google::Apis::Core::Hashable @@ -744,6 +811,13 @@ def update!(**args) class GoogleCloudSecuritycenterV1p1beta1Resource include Google::Apis::Core::Hashable + # Output only. Contains a Folder message for each folder in the assets ancestry. + # The first folder is the deepest nested folder, and the last folder is the + # folder directly under the Organization. + # Corresponds to the JSON property `folders` + # @return [Array] + attr_accessor :folders + # The full resource name of the resource. See: https://cloud.google.com/apis/ # design/resource_names#full_resource_name # Corresponds to the JSON property `name` @@ -776,6 +850,7 @@ def initialize(**args) # Update properties of this object def update!(**args) + @folders = args[:folders] if args.key?(:folders) @name = args[:name] if args.key?(:name) @parent = args[:parent] if args.key?(:parent) @parent_display_name = args[:parent_display_name] if args.key?(:parent_display_name) @@ -1641,6 +1716,13 @@ def update!(**args) class Resource include Google::Apis::Core::Hashable + # Contains a Folder message for each folder in the assets ancestry. The first + # folder is the deepest nested folder, and the last folder is the folder + # directly under the Organization. + # Corresponds to the JSON property `folders` + # @return [Array] + attr_accessor :folders + # The full resource name of the resource. See: https://cloud.google.com/apis/ # design/resource_names#full_resource_name # Corresponds to the JSON property `name` @@ -1673,6 +1755,7 @@ def initialize(**args) # Update properties of this object def update!(**args) + @folders = args[:folders] if args.key?(:folders) @name = args[:name] if args.key?(:name) @parent_display_name = args[:parent_display_name] if args.key?(:parent_display_name) @parent_name = args[:parent_name] if args.key?(:parent_name) @@ -1699,6 +1782,13 @@ def update!(**args) class SecurityCenterProperties include Google::Apis::Core::Hashable + # Contains a Folder message for each folder in the assets ancestry. The first + # folder is the deepest nested folder, and the last folder is the folder + # directly under the Organization. + # Corresponds to the JSON property `folders` + # @return [Array] + attr_accessor :folders + # The user defined display name for this resource. # Corresponds to the JSON property `resourceDisplayName` # @return [String] @@ -1751,6 +1841,7 @@ def initialize(**args) # Update properties of this object def update!(**args) + @folders = args[:folders] if args.key?(:folders) @resource_display_name = args[:resource_display_name] if args.key?(:resource_display_name) @resource_name = args[:resource_name] if args.key?(:resource_name) @resource_owners = args[:resource_owners] if args.key?(:resource_owners) diff --git a/generated/google/apis/securitycenter_v1/representations.rb b/generated/google/apis/securitycenter_v1/representations.rb index 609df0957b4..d52f0238ad0 100644 --- a/generated/google/apis/securitycenter_v1/representations.rb +++ b/generated/google/apis/securitycenter_v1/representations.rb @@ -70,6 +70,12 @@ class Representation < Google::Apis::Core::JsonRepresentation; end include Google::Apis::Core::JsonObjectSupport end + class Folder + class Representation < Google::Apis::Core::JsonRepresentation; end + + include Google::Apis::Core::JsonObjectSupport + end + class GetIamPolicyRequest class Representation < Google::Apis::Core::JsonRepresentation; end @@ -112,6 +118,12 @@ class Representation < Google::Apis::Core::JsonRepresentation; end include Google::Apis::Core::JsonObjectSupport end + class GoogleCloudSecuritycenterV1p1beta1Folder + class Representation < Google::Apis::Core::JsonRepresentation; end + + include Google::Apis::Core::JsonObjectSupport + end + class GoogleCloudSecuritycenterV1p1beta1NotificationMessage class Representation < Google::Apis::Core::JsonRepresentation; end @@ -323,6 +335,7 @@ class Representation < Google::Apis::Core::JsonRepresentation class AssetDiscoveryConfig # @private class Representation < Google::Apis::Core::JsonRepresentation + collection :folder_ids, as: 'folderIds' property :inclusion_mode, as: 'inclusionMode' collection :project_ids, as: 'projectIds' end @@ -388,6 +401,14 @@ class Representation < Google::Apis::Core::JsonRepresentation end end + class Folder + # @private + class Representation < Google::Apis::Core::JsonRepresentation + property :resource_folder, as: 'resourceFolder' + property :resource_folder_display_name, as: 'resourceFolderDisplayName' + end + end + class GetIamPolicyRequest # @private class Representation < Google::Apis::Core::JsonRepresentation @@ -417,6 +438,8 @@ class Representation < Google::Apis::Core::JsonRepresentation class GoogleCloudSecuritycenterV1Resource # @private class Representation < Google::Apis::Core::JsonRepresentation + collection :folders, as: 'folders', class: Google::Apis::SecuritycenterV1::Folder, decorator: Google::Apis::SecuritycenterV1::Folder::Representation + property :name, as: 'name' property :parent, as: 'parent' property :parent_display_name, as: 'parentDisplayName' @@ -459,6 +482,14 @@ class Representation < Google::Apis::Core::JsonRepresentation end end + class GoogleCloudSecuritycenterV1p1beta1Folder + # @private + class Representation < Google::Apis::Core::JsonRepresentation + property :resource_folder, as: 'resourceFolder' + property :resource_folder_display_name, as: 'resourceFolderDisplayName' + end + end + class GoogleCloudSecuritycenterV1p1beta1NotificationMessage # @private class Representation < Google::Apis::Core::JsonRepresentation @@ -473,6 +504,8 @@ class Representation < Google::Apis::Core::JsonRepresentation class GoogleCloudSecuritycenterV1p1beta1Resource # @private class Representation < Google::Apis::Core::JsonRepresentation + collection :folders, as: 'folders', class: Google::Apis::SecuritycenterV1::GoogleCloudSecuritycenterV1p1beta1Folder, decorator: Google::Apis::SecuritycenterV1::GoogleCloudSecuritycenterV1p1beta1Folder::Representation + property :name, as: 'name' property :parent, as: 'parent' property :parent_display_name, as: 'parentDisplayName' @@ -676,6 +709,8 @@ class Representation < Google::Apis::Core::JsonRepresentation class Resource # @private class Representation < Google::Apis::Core::JsonRepresentation + collection :folders, as: 'folders', class: Google::Apis::SecuritycenterV1::Folder, decorator: Google::Apis::SecuritycenterV1::Folder::Representation + property :name, as: 'name' property :parent_display_name, as: 'parentDisplayName' property :parent_name, as: 'parentName' @@ -693,6 +728,8 @@ class Representation < Google::Apis::Core::JsonRepresentation class SecurityCenterProperties # @private class Representation < Google::Apis::Core::JsonRepresentation + collection :folders, as: 'folders', class: Google::Apis::SecuritycenterV1::Folder, decorator: Google::Apis::SecuritycenterV1::Folder::Representation + property :resource_display_name, as: 'resourceDisplayName' property :resource_name, as: 'resourceName' collection :resource_owners, as: 'resourceOwners' diff --git a/generated/google/apis/securitycenter_v1/service.rb b/generated/google/apis/securitycenter_v1/service.rb index 1aa5a4b0007..0aaabbc4816 100644 --- a/generated/google/apis/securitycenter_v1/service.rb +++ b/generated/google/apis/securitycenter_v1/service.rb @@ -48,80 +48,10 @@ def initialize @batch_path = 'batch' end - # Gets the settings for an organization. - # @param [String] name - # Required. Name of the organization to get organization settings for. Its - # format is "organizations/[organization_id]/organizationSettings". - # @param [String] fields - # Selector specifying which fields to include in a partial response. - # @param [String] quota_user - # Available to use for quota purposes for server-side applications. Can be any - # arbitrary string assigned to a user, but should not exceed 40 characters. - # @param [Google::Apis::RequestOptions] options - # Request-specific options - # - # @yield [result, err] Result & error if block supplied - # @yieldparam result [Google::Apis::SecuritycenterV1::OrganizationSettings] parsed result object - # @yieldparam err [StandardError] error object if request failed - # - # @return [Google::Apis::SecuritycenterV1::OrganizationSettings] - # - # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried - # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification - # @raise [Google::Apis::AuthorizationError] Authorization is required - def get_organization_organization_settings(name, fields: nil, quota_user: nil, options: nil, &block) - command = make_simple_command(:get, 'v1/{+name}', options) - command.response_representation = Google::Apis::SecuritycenterV1::OrganizationSettings::Representation - command.response_class = Google::Apis::SecuritycenterV1::OrganizationSettings - command.params['name'] = name unless name.nil? - command.query['fields'] = fields unless fields.nil? - command.query['quotaUser'] = quota_user unless quota_user.nil? - execute_or_queue_command(command, &block) - end - - # Updates an organization's settings. - # @param [String] name - # The relative resource name of the settings. See: https://cloud.google.com/apis/ - # design/resource_names#relative_resource_name Example: "organizations/` - # organization_id`/organizationSettings". - # @param [Google::Apis::SecuritycenterV1::OrganizationSettings] organization_settings_object - # @param [String] update_mask - # The FieldMask to use when updating the settings resource. If empty all mutable - # fields will be updated. - # @param [String] fields - # Selector specifying which fields to include in a partial response. - # @param [String] quota_user - # Available to use for quota purposes for server-side applications. Can be any - # arbitrary string assigned to a user, but should not exceed 40 characters. - # @param [Google::Apis::RequestOptions] options - # Request-specific options - # - # @yield [result, err] Result & error if block supplied - # @yieldparam result [Google::Apis::SecuritycenterV1::OrganizationSettings] parsed result object - # @yieldparam err [StandardError] error object if request failed - # - # @return [Google::Apis::SecuritycenterV1::OrganizationSettings] - # - # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried - # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification - # @raise [Google::Apis::AuthorizationError] Authorization is required - def update_organization_organization_settings(name, organization_settings_object = nil, update_mask: nil, fields: nil, quota_user: nil, options: nil, &block) - command = make_simple_command(:patch, 'v1/{+name}', options) - command.request_representation = Google::Apis::SecuritycenterV1::OrganizationSettings::Representation - command.request_object = organization_settings_object - command.response_representation = Google::Apis::SecuritycenterV1::OrganizationSettings::Representation - command.response_class = Google::Apis::SecuritycenterV1::OrganizationSettings - command.params['name'] = name unless name.nil? - command.query['updateMask'] = update_mask unless update_mask.nil? - command.query['fields'] = fields unless fields.nil? - command.query['quotaUser'] = quota_user unless quota_user.nil? - execute_or_queue_command(command, &block) - end - # Filters an organization's assets and groups them by their specified properties. # @param [String] parent # Required. Name of the organization to groupBy. Its format is "organizations/[ - # organization_id]". + # organization_id], folders/[folder_id], or projects/[project_id]". # @param [Google::Apis::SecuritycenterV1::GroupAssetsRequest] group_assets_request_object # @param [String] fields # Selector specifying which fields to include in a partial response. @@ -140,7 +70,7 @@ def update_organization_organization_settings(name, organization_settings_object # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification # @raise [Google::Apis::AuthorizationError] Authorization is required - def group_assets(parent, group_assets_request_object = nil, fields: nil, quota_user: nil, options: nil, &block) + def group_folder_asset(parent, group_assets_request_object = nil, fields: nil, quota_user: nil, options: nil, &block) command = make_simple_command(:post, 'v1/{+parent}/assets:group', options) command.request_representation = Google::Apis::SecuritycenterV1::GroupAssetsRequest::Representation command.request_object = group_assets_request_object @@ -155,7 +85,8 @@ def group_assets(parent, group_assets_request_object = nil, fields: nil, quota_u # Lists an organization's assets. # @param [String] parent # Required. Name of the organization assets should belong to. Its format is " - # organizations/[organization_id]". + # organizations/[organization_id], folders/[folder_id], or projects/[project_id]" + # . # @param [String] compare_duration # When compare_duration is set, the ListAssetsResult's "state_change" attribute # is updated to indicate whether the asset was added, removed, or remained @@ -251,7 +182,7 @@ def group_assets(parent, group_assets_request_object = nil, fields: nil, quota_u # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification # @raise [Google::Apis::AuthorizationError] Authorization is required - def list_organization_assets(parent, compare_duration: nil, field_mask: nil, filter: nil, order_by: nil, page_size: nil, page_token: nil, read_time: nil, fields: nil, quota_user: nil, options: nil, &block) + def list_folder_assets(parent, compare_duration: nil, field_mask: nil, filter: nil, order_by: nil, page_size: nil, page_token: nil, read_time: nil, fields: nil, quota_user: nil, options: nil, &block) command = make_simple_command(:get, 'v1/{+parent}/assets', options) command.response_representation = Google::Apis::SecuritycenterV1::ListAssetsResponse::Representation command.response_class = Google::Apis::SecuritycenterV1::ListAssetsResponse @@ -268,42 +199,6 @@ def list_organization_assets(parent, compare_duration: nil, field_mask: nil, fil execute_or_queue_command(command, &block) end - # Runs asset discovery. The discovery is tracked with a long-running operation. - # This API can only be called with limited frequency for an organization. If it - # is called too frequently the caller will receive a TOO_MANY_REQUESTS error. - # @param [String] parent - # Required. Name of the organization to run asset discovery for. Its format is " - # organizations/[organization_id]". - # @param [Google::Apis::SecuritycenterV1::RunAssetDiscoveryRequest] run_asset_discovery_request_object - # @param [String] fields - # Selector specifying which fields to include in a partial response. - # @param [String] quota_user - # Available to use for quota purposes for server-side applications. Can be any - # arbitrary string assigned to a user, but should not exceed 40 characters. - # @param [Google::Apis::RequestOptions] options - # Request-specific options - # - # @yield [result, err] Result & error if block supplied - # @yieldparam result [Google::Apis::SecuritycenterV1::Operation] parsed result object - # @yieldparam err [StandardError] error object if request failed - # - # @return [Google::Apis::SecuritycenterV1::Operation] - # - # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried - # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification - # @raise [Google::Apis::AuthorizationError] Authorization is required - def run_organization_asset_discovery(parent, run_asset_discovery_request_object = nil, fields: nil, quota_user: nil, options: nil, &block) - command = make_simple_command(:post, 'v1/{+parent}/assets:runDiscovery', options) - command.request_representation = Google::Apis::SecuritycenterV1::RunAssetDiscoveryRequest::Representation - command.request_object = run_asset_discovery_request_object - command.response_representation = Google::Apis::SecuritycenterV1::Operation::Representation - command.response_class = Google::Apis::SecuritycenterV1::Operation - command.params['parent'] = parent unless parent.nil? - command.query['fields'] = fields unless fields.nil? - command.query['quotaUser'] = quota_user unless quota_user.nil? - execute_or_queue_command(command, &block) - end - # Updates security marks. # @param [String] name # The relative resource name of the SecurityMarks. See: https://cloud.google.com/ @@ -336,7 +231,7 @@ def run_organization_asset_discovery(parent, run_asset_discovery_request_object # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification # @raise [Google::Apis::AuthorizationError] Authorization is required - def update_organization_asset_security_marks(name, security_marks_object = nil, start_time: nil, update_mask: nil, fields: nil, quota_user: nil, options: nil, &block) + def update_folder_asset_security_marks(name, security_marks_object = nil, start_time: nil, update_mask: nil, fields: nil, quota_user: nil, options: nil, &block) command = make_simple_command(:patch, 'v1/{+name}', options) command.request_representation = Google::Apis::SecuritycenterV1::SecurityMarks::Representation command.request_object = security_marks_object @@ -350,15 +245,18 @@ def update_organization_asset_security_marks(name, security_marks_object = nil, execute_or_queue_command(command, &block) end - # Creates a notification config. + # Lists all sources belonging to an organization. # @param [String] parent - # Required. Resource name of the new notification config's parent. Its format is - # "organizations/[organization_id]". - # @param [Google::Apis::SecuritycenterV1::NotificationConfig] notification_config_object - # @param [String] config_id - # Required. Unique identifier provided by the client within the parent scope. It - # must be between 1 and 128 characters, and contains alphanumeric characters, - # underscores or hyphens only. + # Required. Resource name of the parent of sources to list. Its format should be + # "organizations/[organization_id], folders/[folder_id], or projects/[project_id] + # ". + # @param [Fixnum] page_size + # The maximum number of results to return in a single response. Default is 10, + # minimum is 1, maximum is 1000. + # @param [String] page_token + # The value returned by the last `ListSourcesResponse`; indicates that this is a + # continuation of a prior `ListSources` call, and that the system should return + # the next page of data. # @param [String] fields # Selector specifying which fields to include in a partial response. # @param [String] quota_user @@ -368,31 +266,38 @@ def update_organization_asset_security_marks(name, security_marks_object = nil, # Request-specific options # # @yield [result, err] Result & error if block supplied - # @yieldparam result [Google::Apis::SecuritycenterV1::NotificationConfig] parsed result object + # @yieldparam result [Google::Apis::SecuritycenterV1::ListSourcesResponse] parsed result object # @yieldparam err [StandardError] error object if request failed # - # @return [Google::Apis::SecuritycenterV1::NotificationConfig] + # @return [Google::Apis::SecuritycenterV1::ListSourcesResponse] # # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification # @raise [Google::Apis::AuthorizationError] Authorization is required - def create_organization_notification_config(parent, notification_config_object = nil, config_id: nil, fields: nil, quota_user: nil, options: nil, &block) - command = make_simple_command(:post, 'v1/{+parent}/notificationConfigs', options) - command.request_representation = Google::Apis::SecuritycenterV1::NotificationConfig::Representation - command.request_object = notification_config_object - command.response_representation = Google::Apis::SecuritycenterV1::NotificationConfig::Representation - command.response_class = Google::Apis::SecuritycenterV1::NotificationConfig + def list_folder_sources(parent, page_size: nil, page_token: nil, fields: nil, quota_user: nil, options: nil, &block) + command = make_simple_command(:get, 'v1/{+parent}/sources', options) + command.response_representation = Google::Apis::SecuritycenterV1::ListSourcesResponse::Representation + command.response_class = Google::Apis::SecuritycenterV1::ListSourcesResponse command.params['parent'] = parent unless parent.nil? - command.query['configId'] = config_id unless config_id.nil? + command.query['pageSize'] = page_size unless page_size.nil? + command.query['pageToken'] = page_token unless page_token.nil? command.query['fields'] = fields unless fields.nil? command.query['quotaUser'] = quota_user unless quota_user.nil? execute_or_queue_command(command, &block) end - # Deletes a notification config. - # @param [String] name - # Required. Name of the notification config to delete. Its format is " - # organizations/[organization_id]/notificationConfigs/[config_id]". + # Filters an organization or source's findings and groups them by their + # specified properties. To group across all sources provide a `-` as the source + # id. Example: /v1/organizations/`organization_id`/sources/-/findings, /v1/ + # folders/`folder_id`/sources/-/findings, /v1/projects/`project_id`/sources/-/ + # findings + # @param [String] parent + # Required. Name of the source to groupBy. Its format is "organizations/[ + # organization_id]/sources/[source_id]", folders/[folder_id]/sources/[source_id], + # or projects/[project_id]/sources/[source_id]. To groupBy across all sources + # provide a source_id of `-`. For example: organizations/`organization_id`/ + # sources/-, folders/`folder_id`/sources/-, or projects/`project_id`/sources/- + # @param [Google::Apis::SecuritycenterV1::GroupFindingsRequest] group_findings_request_object # @param [String] fields # Selector specifying which fields to include in a partial response. # @param [String] quota_user @@ -402,28 +307,102 @@ def create_organization_notification_config(parent, notification_config_object = # Request-specific options # # @yield [result, err] Result & error if block supplied - # @yieldparam result [Google::Apis::SecuritycenterV1::Empty] parsed result object + # @yieldparam result [Google::Apis::SecuritycenterV1::GroupFindingsResponse] parsed result object # @yieldparam err [StandardError] error object if request failed # - # @return [Google::Apis::SecuritycenterV1::Empty] + # @return [Google::Apis::SecuritycenterV1::GroupFindingsResponse] # # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification # @raise [Google::Apis::AuthorizationError] Authorization is required - def delete_organization_notification_config(name, fields: nil, quota_user: nil, options: nil, &block) - command = make_simple_command(:delete, 'v1/{+name}', options) - command.response_representation = Google::Apis::SecuritycenterV1::Empty::Representation - command.response_class = Google::Apis::SecuritycenterV1::Empty - command.params['name'] = name unless name.nil? + def group_folder_source_finding(parent, group_findings_request_object = nil, fields: nil, quota_user: nil, options: nil, &block) + command = make_simple_command(:post, 'v1/{+parent}/findings:group', options) + command.request_representation = Google::Apis::SecuritycenterV1::GroupFindingsRequest::Representation + command.request_object = group_findings_request_object + command.response_representation = Google::Apis::SecuritycenterV1::GroupFindingsResponse::Representation + command.response_class = Google::Apis::SecuritycenterV1::GroupFindingsResponse + command.params['parent'] = parent unless parent.nil? command.query['fields'] = fields unless fields.nil? command.query['quotaUser'] = quota_user unless quota_user.nil? execute_or_queue_command(command, &block) end - # Gets a notification config. - # @param [String] name - # Required. Name of the notification config to get. Its format is "organizations/ - # [organization_id]/notificationConfigs/[config_id]". + # Lists an organization or source's findings. To list across all sources provide + # a `-` as the source id. Example: /v1/organizations/`organization_id`/sources/-/ + # findings + # @param [String] parent + # Required. Name of the source the findings belong to. Its format is " + # organizations/[organization_id]/sources/[source_id], folders/[folder_id]/ + # sources/[source_id], or projects/[project_id]/sources/[source_id]". To list + # across all sources provide a source_id of `-`. For example: organizations/` + # organization_id`/sources/-, folders/`folder_id`/sources/- or projects/` + # projects_id`/sources/- + # @param [String] compare_duration + # When compare_duration is set, the ListFindingsResult's "state_change" + # attribute is updated to indicate whether the finding had its state changed, + # the finding's state remained unchanged, or if the finding was added in any + # state during the compare_duration period of time that precedes the read_time. + # This is the time between (read_time - compare_duration) and read_time. The + # state_change value is derived based on the presence and state of the finding + # at the two points in time. Intermediate state changes between the two times + # don't affect the result. For example, the results aren't affected if the + # finding is made inactive and then active again. Possible "state_change" values + # when compare_duration is specified: * "CHANGED": indicates that the finding + # was present and matched the given filter at the start of compare_duration, but + # changed its state at read_time. * "UNCHANGED": indicates that the finding was + # present and matched the given filter at the start of compare_duration and did + # not change state at read_time. * "ADDED": indicates that the finding did not + # match the given filter or was not present at the start of compare_duration, + # but was present at read_time. * "REMOVED": indicates that the finding was + # present and matched the filter at the start of compare_duration, but did not + # match the filter at read_time. If compare_duration is not specified, then the + # only possible state_change is "UNUSED", which will be the state_change set for + # all findings present at read_time. + # @param [String] field_mask + # A field mask to specify the Finding fields to be listed in the response. An + # empty field mask will list all fields. + # @param [String] filter + # Expression that defines the filter to apply across findings. The expression is + # a list of one or more restrictions combined via logical operators `AND` and ` + # OR`. Parentheses are supported, and `OR` has higher precedence than `AND`. + # Restrictions have the form ` ` and may have a `-` character in front of them + # to indicate negation. Examples include: * name * source_properties.a_property * + # security_marks.marks.marka The supported operators are: * `=` for all value + # types. * `>`, `<`, `>=`, `<=` for integer values. * `:`, meaning substring + # matching, for strings. The supported value types are: * string literals in + # quotes. * integer literals without quotes. * boolean literals `true` and ` + # false` without quotes. The following field and operator combinations are + # supported: name: `=` parent: `=`, `:` resource_name: `=`, `:` state: `=`, `:` + # category: `=`, `:` external_uri: `=`, `:` event_time: `=`, `>`, `<`, `>=`, `<=` + # Usage: This should be milliseconds since epoch or an RFC3339 string. Examples: + # `event_time = "2019-06-10T16:07:18-07:00"` `event_time = 1560208038000` + # security_marks.marks: `=`, `:` source_properties: `=`, `:`, `>`, `<`, `>=`, `<= + # ` For example, `source_properties.size = 100` is a valid filter string. Use a + # partial match on the empty string to filter based on a property existing: ` + # source_properties.my_property : ""` Use a negated partial match on the empty + # string to filter based on a property not existing: `-source_properties. + # my_property : ""` + # @param [String] order_by + # Expression that defines what fields and order to use for sorting. The string + # value should follow SQL syntax: comma separated list of fields. For example: " + # name,resource_properties.a_property". The default sorting order is ascending. + # To specify descending order for a field, a suffix " desc" should be appended + # to the field name. For example: "name desc,source_properties.a_property". + # Redundant space characters in the syntax are insignificant. "name desc, + # source_properties.a_property" and " name desc , source_properties.a_property " + # are equivalent. The following fields are supported: name parent state category + # resource_name event_time source_properties security_marks.marks + # @param [Fixnum] page_size + # The maximum number of results to return in a single response. Default is 10, + # minimum is 1, maximum is 1000. + # @param [String] page_token + # The value returned by the last `ListFindingsResponse`; indicates that this is + # a continuation of a prior `ListFindings` call, and that the system should + # return the next page of data. + # @param [String] read_time + # Time used as a reference point when filtering findings. The filter is limited + # to findings existing at the supplied time and their values are those at that + # specific time. Absence of this field will default to the API's version of NOW. # @param [String] fields # Selector specifying which fields to include in a partial response. # @param [String] quota_user @@ -433,74 +412,44 @@ def delete_organization_notification_config(name, fields: nil, quota_user: nil, # Request-specific options # # @yield [result, err] Result & error if block supplied - # @yieldparam result [Google::Apis::SecuritycenterV1::NotificationConfig] parsed result object + # @yieldparam result [Google::Apis::SecuritycenterV1::ListFindingsResponse] parsed result object # @yieldparam err [StandardError] error object if request failed # - # @return [Google::Apis::SecuritycenterV1::NotificationConfig] + # @return [Google::Apis::SecuritycenterV1::ListFindingsResponse] # # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification # @raise [Google::Apis::AuthorizationError] Authorization is required - def get_organization_notification_config(name, fields: nil, quota_user: nil, options: nil, &block) - command = make_simple_command(:get, 'v1/{+name}', options) - command.response_representation = Google::Apis::SecuritycenterV1::NotificationConfig::Representation - command.response_class = Google::Apis::SecuritycenterV1::NotificationConfig - command.params['name'] = name unless name.nil? - command.query['fields'] = fields unless fields.nil? - command.query['quotaUser'] = quota_user unless quota_user.nil? - execute_or_queue_command(command, &block) - end - - # Lists notification configs. - # @param [String] parent - # Required. Name of the organization to list notification configs. Its format is - # "organizations/[organization_id]". - # @param [Fixnum] page_size - # The maximum number of results to return in a single response. Default is 10, - # minimum is 1, maximum is 1000. - # @param [String] page_token - # The value returned by the last `ListNotificationConfigsResponse`; indicates - # that this is a continuation of a prior `ListNotificationConfigs` call, and - # that the system should return the next page of data. - # @param [String] fields - # Selector specifying which fields to include in a partial response. - # @param [String] quota_user - # Available to use for quota purposes for server-side applications. Can be any - # arbitrary string assigned to a user, but should not exceed 40 characters. - # @param [Google::Apis::RequestOptions] options - # Request-specific options - # - # @yield [result, err] Result & error if block supplied - # @yieldparam result [Google::Apis::SecuritycenterV1::ListNotificationConfigsResponse] parsed result object - # @yieldparam err [StandardError] error object if request failed - # - # @return [Google::Apis::SecuritycenterV1::ListNotificationConfigsResponse] - # - # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried - # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification - # @raise [Google::Apis::AuthorizationError] Authorization is required - def list_organization_notification_configs(parent, page_size: nil, page_token: nil, fields: nil, quota_user: nil, options: nil, &block) - command = make_simple_command(:get, 'v1/{+parent}/notificationConfigs', options) - command.response_representation = Google::Apis::SecuritycenterV1::ListNotificationConfigsResponse::Representation - command.response_class = Google::Apis::SecuritycenterV1::ListNotificationConfigsResponse + def list_folder_source_findings(parent, compare_duration: nil, field_mask: nil, filter: nil, order_by: nil, page_size: nil, page_token: nil, read_time: nil, fields: nil, quota_user: nil, options: nil, &block) + command = make_simple_command(:get, 'v1/{+parent}/findings', options) + command.response_representation = Google::Apis::SecuritycenterV1::ListFindingsResponse::Representation + command.response_class = Google::Apis::SecuritycenterV1::ListFindingsResponse command.params['parent'] = parent unless parent.nil? + command.query['compareDuration'] = compare_duration unless compare_duration.nil? + command.query['fieldMask'] = field_mask unless field_mask.nil? + command.query['filter'] = filter unless filter.nil? + command.query['orderBy'] = order_by unless order_by.nil? command.query['pageSize'] = page_size unless page_size.nil? command.query['pageToken'] = page_token unless page_token.nil? + command.query['readTime'] = read_time unless read_time.nil? command.query['fields'] = fields unless fields.nil? command.query['quotaUser'] = quota_user unless quota_user.nil? execute_or_queue_command(command, &block) end - # Updates a notification config. The following update fields are allowed: - # description, pubsub_topic, streaming_config.filter + # Creates or updates a finding. The corresponding source must exist for a + # finding creation to succeed. # @param [String] name - # The relative resource name of this notification config. See: https://cloud. - # google.com/apis/design/resource_names#relative_resource_name Example: " - # organizations/`organization_id`/notificationConfigs/notify_public_bucket". - # @param [Google::Apis::SecuritycenterV1::NotificationConfig] notification_config_object + # The relative resource name of this finding. See: https://cloud.google.com/apis/ + # design/resource_names#relative_resource_name Example: "organizations/` + # organization_id`/sources/`source_id`/findings/`finding_id`" + # @param [Google::Apis::SecuritycenterV1::Finding] finding_object # @param [String] update_mask - # The FieldMask to use when updating the notification config. If empty all - # mutable fields will be updated. + # The FieldMask to use when updating the finding resource. This field should not + # be specified when creating a finding. When updating a finding, an empty mask + # is treated as updating all mutable fields and replacing source_properties. + # Individual source_properties can be added/updated by using "source_properties." + # in the field mask. # @param [String] fields # Selector specifying which fields to include in a partial response. # @param [String] quota_user @@ -510,20 +459,20 @@ def list_organization_notification_configs(parent, page_size: nil, page_token: n # Request-specific options # # @yield [result, err] Result & error if block supplied - # @yieldparam result [Google::Apis::SecuritycenterV1::NotificationConfig] parsed result object + # @yieldparam result [Google::Apis::SecuritycenterV1::Finding] parsed result object # @yieldparam err [StandardError] error object if request failed # - # @return [Google::Apis::SecuritycenterV1::NotificationConfig] + # @return [Google::Apis::SecuritycenterV1::Finding] # # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification # @raise [Google::Apis::AuthorizationError] Authorization is required - def patch_organization_notification_config(name, notification_config_object = nil, update_mask: nil, fields: nil, quota_user: nil, options: nil, &block) + def patch_folder_source_finding(name, finding_object = nil, update_mask: nil, fields: nil, quota_user: nil, options: nil, &block) command = make_simple_command(:patch, 'v1/{+name}', options) - command.request_representation = Google::Apis::SecuritycenterV1::NotificationConfig::Representation - command.request_object = notification_config_object - command.response_representation = Google::Apis::SecuritycenterV1::NotificationConfig::Representation - command.response_class = Google::Apis::SecuritycenterV1::NotificationConfig + command.request_representation = Google::Apis::SecuritycenterV1::Finding::Representation + command.request_object = finding_object + command.response_representation = Google::Apis::SecuritycenterV1::Finding::Representation + command.response_class = Google::Apis::SecuritycenterV1::Finding command.params['name'] = name unless name.nil? command.query['updateMask'] = update_mask unless update_mask.nil? command.query['fields'] = fields unless fields.nil? @@ -531,16 +480,12 @@ def patch_organization_notification_config(name, notification_config_object = ni execute_or_queue_command(command, &block) end - # Starts asynchronous cancellation on a long-running operation. The server makes - # a best effort to cancel the operation, but success is not guaranteed. If the - # server doesn't support this method, it returns `google.rpc.Code.UNIMPLEMENTED`. - # Clients can use Operations.GetOperation or other methods to check whether the - # cancellation succeeded or whether the operation completed despite cancellation. - # On successful cancellation, the operation is not deleted; instead, it becomes - # an operation with an Operation.error value with a google.rpc.Status.code of 1, - # corresponding to `Code.CANCELLED`. + # Updates the state of a finding. # @param [String] name - # The name of the operation resource to be cancelled. + # Required. The relative resource name of the finding. See: https://cloud.google. + # com/apis/design/resource_names#relative_resource_name Example: "organizations/` + # organization_id`/sources/`source_id`/finding/`finding_id`". + # @param [Google::Apis::SecuritycenterV1::SetFindingStateRequest] set_finding_state_request_object # @param [String] fields # Selector specifying which fields to include in a partial response. # @param [String] quota_user @@ -550,30 +495,41 @@ def patch_organization_notification_config(name, notification_config_object = ni # Request-specific options # # @yield [result, err] Result & error if block supplied - # @yieldparam result [Google::Apis::SecuritycenterV1::Empty] parsed result object + # @yieldparam result [Google::Apis::SecuritycenterV1::Finding] parsed result object # @yieldparam err [StandardError] error object if request failed # - # @return [Google::Apis::SecuritycenterV1::Empty] + # @return [Google::Apis::SecuritycenterV1::Finding] # # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification # @raise [Google::Apis::AuthorizationError] Authorization is required - def cancel_organization_operation(name, fields: nil, quota_user: nil, options: nil, &block) - command = make_simple_command(:post, 'v1/{+name}:cancel', options) - command.response_representation = Google::Apis::SecuritycenterV1::Empty::Representation - command.response_class = Google::Apis::SecuritycenterV1::Empty + def set_folder_source_finding_state(name, set_finding_state_request_object = nil, fields: nil, quota_user: nil, options: nil, &block) + command = make_simple_command(:post, 'v1/{+name}:setState', options) + command.request_representation = Google::Apis::SecuritycenterV1::SetFindingStateRequest::Representation + command.request_object = set_finding_state_request_object + command.response_representation = Google::Apis::SecuritycenterV1::Finding::Representation + command.response_class = Google::Apis::SecuritycenterV1::Finding command.params['name'] = name unless name.nil? command.query['fields'] = fields unless fields.nil? command.query['quotaUser'] = quota_user unless quota_user.nil? execute_or_queue_command(command, &block) end - # Deletes a long-running operation. This method indicates that the client is no - # longer interested in the operation result. It does not cancel the operation. - # If the server doesn't support this method, it returns `google.rpc.Code. - # UNIMPLEMENTED`. + # Updates security marks. # @param [String] name - # The name of the operation resource to be deleted. + # The relative resource name of the SecurityMarks. See: https://cloud.google.com/ + # apis/design/resource_names#relative_resource_name Examples: "organizations/` + # organization_id`/assets/`asset_id`/securityMarks" "organizations/` + # organization_id`/sources/`source_id`/findings/`finding_id`/securityMarks". + # @param [Google::Apis::SecuritycenterV1::SecurityMarks] security_marks_object + # @param [String] start_time + # The time at which the updated SecurityMarks take effect. If not set uses + # current server time. Updates will be applied to the SecurityMarks that are + # active immediately preceding this time. + # @param [String] update_mask + # The FieldMask to use when updating the security marks resource. The field mask + # must not contain duplicate fields. If empty or set to "marks", all marks will + # be replaced. Individual marks can be updated using "marks.". # @param [String] fields # Selector specifying which fields to include in a partial response. # @param [String] quota_user @@ -583,28 +539,32 @@ def cancel_organization_operation(name, fields: nil, quota_user: nil, options: n # Request-specific options # # @yield [result, err] Result & error if block supplied - # @yieldparam result [Google::Apis::SecuritycenterV1::Empty] parsed result object + # @yieldparam result [Google::Apis::SecuritycenterV1::SecurityMarks] parsed result object # @yieldparam err [StandardError] error object if request failed # - # @return [Google::Apis::SecuritycenterV1::Empty] + # @return [Google::Apis::SecuritycenterV1::SecurityMarks] # # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification # @raise [Google::Apis::AuthorizationError] Authorization is required - def delete_organization_operation(name, fields: nil, quota_user: nil, options: nil, &block) - command = make_simple_command(:delete, 'v1/{+name}', options) - command.response_representation = Google::Apis::SecuritycenterV1::Empty::Representation - command.response_class = Google::Apis::SecuritycenterV1::Empty + def update_folder_source_finding_security_marks(name, security_marks_object = nil, start_time: nil, update_mask: nil, fields: nil, quota_user: nil, options: nil, &block) + command = make_simple_command(:patch, 'v1/{+name}', options) + command.request_representation = Google::Apis::SecuritycenterV1::SecurityMarks::Representation + command.request_object = security_marks_object + command.response_representation = Google::Apis::SecuritycenterV1::SecurityMarks::Representation + command.response_class = Google::Apis::SecuritycenterV1::SecurityMarks command.params['name'] = name unless name.nil? + command.query['startTime'] = start_time unless start_time.nil? + command.query['updateMask'] = update_mask unless update_mask.nil? command.query['fields'] = fields unless fields.nil? command.query['quotaUser'] = quota_user unless quota_user.nil? execute_or_queue_command(command, &block) end - # Gets the latest state of a long-running operation. Clients can use this method - # to poll the operation result at intervals as recommended by the API service. + # Gets the settings for an organization. # @param [String] name - # The name of the operation resource. + # Required. Name of the organization to get organization settings for. Its + # format is "organizations/[organization_id]/organizationSettings". # @param [String] fields # Selector specifying which fields to include in a partial response. # @param [String] quota_user @@ -614,40 +574,33 @@ def delete_organization_operation(name, fields: nil, quota_user: nil, options: n # Request-specific options # # @yield [result, err] Result & error if block supplied - # @yieldparam result [Google::Apis::SecuritycenterV1::Operation] parsed result object + # @yieldparam result [Google::Apis::SecuritycenterV1::OrganizationSettings] parsed result object # @yieldparam err [StandardError] error object if request failed # - # @return [Google::Apis::SecuritycenterV1::Operation] + # @return [Google::Apis::SecuritycenterV1::OrganizationSettings] # # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification # @raise [Google::Apis::AuthorizationError] Authorization is required - def get_organization_operation(name, fields: nil, quota_user: nil, options: nil, &block) + def get_organization_organization_settings(name, fields: nil, quota_user: nil, options: nil, &block) command = make_simple_command(:get, 'v1/{+name}', options) - command.response_representation = Google::Apis::SecuritycenterV1::Operation::Representation - command.response_class = Google::Apis::SecuritycenterV1::Operation + command.response_representation = Google::Apis::SecuritycenterV1::OrganizationSettings::Representation + command.response_class = Google::Apis::SecuritycenterV1::OrganizationSettings command.params['name'] = name unless name.nil? command.query['fields'] = fields unless fields.nil? command.query['quotaUser'] = quota_user unless quota_user.nil? execute_or_queue_command(command, &block) end - # Lists operations that match the specified filter in the request. If the server - # doesn't support this method, it returns `UNIMPLEMENTED`. NOTE: the `name` - # binding allows API services to override the binding to use different resource - # name schemes, such as `users/*/operations`. To override the binding, API - # services can add a binding such as `"/v1/`name=users/*`/operations"` to their - # service configuration. For backwards compatibility, the default name includes - # the operations collection id, however overriding users must ensure the name - # binding is the parent resource, without the operations collection id. + # Updates an organization's settings. # @param [String] name - # The name of the operation's parent resource. - # @param [String] filter - # The standard list filter. - # @param [Fixnum] page_size - # The standard list page size. - # @param [String] page_token - # The standard list page token. + # The relative resource name of the settings. See: https://cloud.google.com/apis/ + # design/resource_names#relative_resource_name Example: "organizations/` + # organization_id`/organizationSettings". + # @param [Google::Apis::SecuritycenterV1::OrganizationSettings] organization_settings_object + # @param [String] update_mask + # The FieldMask to use when updating the settings resource. If empty all mutable + # fields will be updated. # @param [String] fields # Selector specifying which fields to include in a partial response. # @param [String] quota_user @@ -657,32 +610,32 @@ def get_organization_operation(name, fields: nil, quota_user: nil, options: nil, # Request-specific options # # @yield [result, err] Result & error if block supplied - # @yieldparam result [Google::Apis::SecuritycenterV1::ListOperationsResponse] parsed result object + # @yieldparam result [Google::Apis::SecuritycenterV1::OrganizationSettings] parsed result object # @yieldparam err [StandardError] error object if request failed # - # @return [Google::Apis::SecuritycenterV1::ListOperationsResponse] + # @return [Google::Apis::SecuritycenterV1::OrganizationSettings] # # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification # @raise [Google::Apis::AuthorizationError] Authorization is required - def list_organization_operations(name, filter: nil, page_size: nil, page_token: nil, fields: nil, quota_user: nil, options: nil, &block) - command = make_simple_command(:get, 'v1/{+name}', options) - command.response_representation = Google::Apis::SecuritycenterV1::ListOperationsResponse::Representation - command.response_class = Google::Apis::SecuritycenterV1::ListOperationsResponse + def update_organization_organization_settings(name, organization_settings_object = nil, update_mask: nil, fields: nil, quota_user: nil, options: nil, &block) + command = make_simple_command(:patch, 'v1/{+name}', options) + command.request_representation = Google::Apis::SecuritycenterV1::OrganizationSettings::Representation + command.request_object = organization_settings_object + command.response_representation = Google::Apis::SecuritycenterV1::OrganizationSettings::Representation + command.response_class = Google::Apis::SecuritycenterV1::OrganizationSettings command.params['name'] = name unless name.nil? - command.query['filter'] = filter unless filter.nil? - command.query['pageSize'] = page_size unless page_size.nil? - command.query['pageToken'] = page_token unless page_token.nil? + command.query['updateMask'] = update_mask unless update_mask.nil? command.query['fields'] = fields unless fields.nil? command.query['quotaUser'] = quota_user unless quota_user.nil? execute_or_queue_command(command, &block) end - # Creates a source. + # Filters an organization's assets and groups them by their specified properties. # @param [String] parent - # Required. Resource name of the new source's parent. Its format should be " - # organizations/[organization_id]". - # @param [Google::Apis::SecuritycenterV1::Source] source_object + # Required. Name of the organization to groupBy. Its format is "organizations/[ + # organization_id], folders/[folder_id], or projects/[project_id]". + # @param [Google::Apis::SecuritycenterV1::GroupAssetsRequest] group_assets_request_object # @param [String] fields # Selector specifying which fields to include in a partial response. # @param [String] quota_user @@ -692,102 +645,1084 @@ def list_organization_operations(name, filter: nil, page_size: nil, page_token: # Request-specific options # # @yield [result, err] Result & error if block supplied - # @yieldparam result [Google::Apis::SecuritycenterV1::Source] parsed result object + # @yieldparam result [Google::Apis::SecuritycenterV1::GroupAssetsResponse] parsed result object # @yieldparam err [StandardError] error object if request failed # - # @return [Google::Apis::SecuritycenterV1::Source] + # @return [Google::Apis::SecuritycenterV1::GroupAssetsResponse] # # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification # @raise [Google::Apis::AuthorizationError] Authorization is required - def create_organization_source(parent, source_object = nil, fields: nil, quota_user: nil, options: nil, &block) - command = make_simple_command(:post, 'v1/{+parent}/sources', options) - command.request_representation = Google::Apis::SecuritycenterV1::Source::Representation - command.request_object = source_object - command.response_representation = Google::Apis::SecuritycenterV1::Source::Representation - command.response_class = Google::Apis::SecuritycenterV1::Source + def group_assets(parent, group_assets_request_object = nil, fields: nil, quota_user: nil, options: nil, &block) + command = make_simple_command(:post, 'v1/{+parent}/assets:group', options) + command.request_representation = Google::Apis::SecuritycenterV1::GroupAssetsRequest::Representation + command.request_object = group_assets_request_object + command.response_representation = Google::Apis::SecuritycenterV1::GroupAssetsResponse::Representation + command.response_class = Google::Apis::SecuritycenterV1::GroupAssetsResponse command.params['parent'] = parent unless parent.nil? command.query['fields'] = fields unless fields.nil? command.query['quotaUser'] = quota_user unless quota_user.nil? execute_or_queue_command(command, &block) end - # Gets a source. - # @param [String] name - # Required. Relative resource name of the source. Its format is "organizations/[ - # organization_id]/source/[source_id]". - # @param [String] fields - # Selector specifying which fields to include in a partial response. - # @param [String] quota_user - # Available to use for quota purposes for server-side applications. Can be any - # arbitrary string assigned to a user, but should not exceed 40 characters. - # @param [Google::Apis::RequestOptions] options - # Request-specific options - # - # @yield [result, err] Result & error if block supplied - # @yieldparam result [Google::Apis::SecuritycenterV1::Source] parsed result object - # @yieldparam err [StandardError] error object if request failed - # - # @return [Google::Apis::SecuritycenterV1::Source] - # - # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried - # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification - # @raise [Google::Apis::AuthorizationError] Authorization is required - def get_organization_source(name, fields: nil, quota_user: nil, options: nil, &block) - command = make_simple_command(:get, 'v1/{+name}', options) - command.response_representation = Google::Apis::SecuritycenterV1::Source::Representation - command.response_class = Google::Apis::SecuritycenterV1::Source - command.params['name'] = name unless name.nil? - command.query['fields'] = fields unless fields.nil? - command.query['quotaUser'] = quota_user unless quota_user.nil? - execute_or_queue_command(command, &block) - end - - # Gets the access control policy on the specified Source. - # @param [String] resource - # REQUIRED: The resource for which the policy is being requested. See the - # operation documentation for the appropriate value for this field. - # @param [Google::Apis::SecuritycenterV1::GetIamPolicyRequest] get_iam_policy_request_object - # @param [String] fields - # Selector specifying which fields to include in a partial response. - # @param [String] quota_user - # Available to use for quota purposes for server-side applications. Can be any - # arbitrary string assigned to a user, but should not exceed 40 characters. - # @param [Google::Apis::RequestOptions] options + # Lists an organization's assets. + # @param [String] parent + # Required. Name of the organization assets should belong to. Its format is " + # organizations/[organization_id], folders/[folder_id], or projects/[project_id]" + # . + # @param [String] compare_duration + # When compare_duration is set, the ListAssetsResult's "state_change" attribute + # is updated to indicate whether the asset was added, removed, or remained + # present during the compare_duration period of time that precedes the read_time. + # This is the time between (read_time - compare_duration) and read_time. The + # state_change value is derived based on the presence of the asset at the two + # points in time. Intermediate state changes between the two times don't affect + # the result. For example, the results aren't affected if the asset is removed + # and re-created again. Possible "state_change" values when compare_duration is + # specified: * "ADDED": indicates that the asset was not present at the start of + # compare_duration, but present at read_time. * "REMOVED": indicates that the + # asset was present at the start of compare_duration, but not present at + # read_time. * "ACTIVE": indicates that the asset was present at both the start + # and the end of the time period defined by compare_duration and read_time. If + # compare_duration is not specified, then the only possible state_change is " + # UNUSED", which will be the state_change set for all assets present at + # read_time. + # @param [String] field_mask + # A field mask to specify the ListAssetsResult fields to be listed in the + # response. An empty field mask will list all fields. + # @param [String] filter + # Expression that defines the filter to apply across assets. The expression is a + # list of zero or more restrictions combined via logical operators `AND` and `OR` + # . Parentheses are supported, and `OR` has higher precedence than `AND`. + # Restrictions have the form ` ` and may have a `-` character in front of them + # to indicate negation. The fields map to those defined in the Asset resource. + # Examples include: * name * security_center_properties.resource_name * + # resource_properties.a_property * security_marks.marks.marka The supported + # operators are: * `=` for all value types. * `>`, `<`, `>=`, `<=` for integer + # values. * `:`, meaning substring matching, for strings. The supported value + # types are: * string literals in quotes. * integer literals without quotes. * + # boolean literals `true` and `false` without quotes. The following are the + # allowed field and operator combinations: * name: `=` * update_time: `=`, `>`, ` + # <`, `>=`, `<=` Usage: This should be milliseconds since epoch or an RFC3339 + # string. Examples: `update_time = "2019-06-10T16:07:18-07:00"` `update_time = + # 1560208038000` * create_time: `=`, `>`, `<`, `>=`, `<=` Usage: This should be + # milliseconds since epoch or an RFC3339 string. Examples: `create_time = "2019- + # 06-10T16:07:18-07:00"` `create_time = 1560208038000` * iam_policy.policy_blob: + # `=`, `:` * resource_properties: `=`, `:`, `>`, `<`, `>=`, `<=` * + # security_marks.marks: `=`, `:` * security_center_properties.resource_name: `=`, + # `:` * security_center_properties.resource_display_name: `=`, `:` * + # security_center_properties.resource_type: `=`, `:` * + # security_center_properties.resource_parent: `=`, `:` * + # security_center_properties.resource_parent_display_name: `=`, `:` * + # security_center_properties.resource_project: `=`, `:` * + # security_center_properties.resource_project_display_name: `=`, `:` * + # security_center_properties.resource_owners: `=`, `:` For example, ` + # resource_properties.size = 100` is a valid filter string. Use a partial match + # on the empty string to filter based on a property existing: ` + # resource_properties.my_property : ""` Use a negated partial match on the empty + # string to filter based on a property not existing: `-resource_properties. + # my_property : ""` + # @param [String] order_by + # Expression that defines what fields and order to use for sorting. The string + # value should follow SQL syntax: comma separated list of fields. For example: " + # name,resource_properties.a_property". The default sorting order is ascending. + # To specify descending order for a field, a suffix " desc" should be appended + # to the field name. For example: "name desc,resource_properties.a_property". + # Redundant space characters in the syntax are insignificant. "name desc, + # resource_properties.a_property" and " name desc , resource_properties. + # a_property " are equivalent. The following fields are supported: name + # update_time resource_properties security_marks.marks + # security_center_properties.resource_name security_center_properties. + # resource_display_name security_center_properties.resource_parent + # security_center_properties.resource_parent_display_name + # security_center_properties.resource_project security_center_properties. + # resource_project_display_name security_center_properties.resource_type + # @param [Fixnum] page_size + # The maximum number of results to return in a single response. Default is 10, + # minimum is 1, maximum is 1000. + # @param [String] page_token + # The value returned by the last `ListAssetsResponse`; indicates that this is a + # continuation of a prior `ListAssets` call, and that the system should return + # the next page of data. + # @param [String] read_time + # Time used as a reference point when filtering assets. The filter is limited to + # assets existing at the supplied time and their values are those at that + # specific time. Absence of this field will default to the API's version of NOW. + # @param [String] fields + # Selector specifying which fields to include in a partial response. + # @param [String] quota_user + # Available to use for quota purposes for server-side applications. Can be any + # arbitrary string assigned to a user, but should not exceed 40 characters. + # @param [Google::Apis::RequestOptions] options + # Request-specific options + # + # @yield [result, err] Result & error if block supplied + # @yieldparam result [Google::Apis::SecuritycenterV1::ListAssetsResponse] parsed result object + # @yieldparam err [StandardError] error object if request failed + # + # @return [Google::Apis::SecuritycenterV1::ListAssetsResponse] + # + # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried + # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification + # @raise [Google::Apis::AuthorizationError] Authorization is required + def list_organization_assets(parent, compare_duration: nil, field_mask: nil, filter: nil, order_by: nil, page_size: nil, page_token: nil, read_time: nil, fields: nil, quota_user: nil, options: nil, &block) + command = make_simple_command(:get, 'v1/{+parent}/assets', options) + command.response_representation = Google::Apis::SecuritycenterV1::ListAssetsResponse::Representation + command.response_class = Google::Apis::SecuritycenterV1::ListAssetsResponse + command.params['parent'] = parent unless parent.nil? + command.query['compareDuration'] = compare_duration unless compare_duration.nil? + command.query['fieldMask'] = field_mask unless field_mask.nil? + command.query['filter'] = filter unless filter.nil? + command.query['orderBy'] = order_by unless order_by.nil? + command.query['pageSize'] = page_size unless page_size.nil? + command.query['pageToken'] = page_token unless page_token.nil? + command.query['readTime'] = read_time unless read_time.nil? + command.query['fields'] = fields unless fields.nil? + command.query['quotaUser'] = quota_user unless quota_user.nil? + execute_or_queue_command(command, &block) + end + + # Runs asset discovery. The discovery is tracked with a long-running operation. + # This API can only be called with limited frequency for an organization. If it + # is called too frequently the caller will receive a TOO_MANY_REQUESTS error. + # @param [String] parent + # Required. Name of the organization to run asset discovery for. Its format is " + # organizations/[organization_id]". + # @param [Google::Apis::SecuritycenterV1::RunAssetDiscoveryRequest] run_asset_discovery_request_object + # @param [String] fields + # Selector specifying which fields to include in a partial response. + # @param [String] quota_user + # Available to use for quota purposes for server-side applications. Can be any + # arbitrary string assigned to a user, but should not exceed 40 characters. + # @param [Google::Apis::RequestOptions] options + # Request-specific options + # + # @yield [result, err] Result & error if block supplied + # @yieldparam result [Google::Apis::SecuritycenterV1::Operation] parsed result object + # @yieldparam err [StandardError] error object if request failed + # + # @return [Google::Apis::SecuritycenterV1::Operation] + # + # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried + # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification + # @raise [Google::Apis::AuthorizationError] Authorization is required + def run_organization_asset_discovery(parent, run_asset_discovery_request_object = nil, fields: nil, quota_user: nil, options: nil, &block) + command = make_simple_command(:post, 'v1/{+parent}/assets:runDiscovery', options) + command.request_representation = Google::Apis::SecuritycenterV1::RunAssetDiscoveryRequest::Representation + command.request_object = run_asset_discovery_request_object + command.response_representation = Google::Apis::SecuritycenterV1::Operation::Representation + command.response_class = Google::Apis::SecuritycenterV1::Operation + command.params['parent'] = parent unless parent.nil? + command.query['fields'] = fields unless fields.nil? + command.query['quotaUser'] = quota_user unless quota_user.nil? + execute_or_queue_command(command, &block) + end + + # Updates security marks. + # @param [String] name + # The relative resource name of the SecurityMarks. See: https://cloud.google.com/ + # apis/design/resource_names#relative_resource_name Examples: "organizations/` + # organization_id`/assets/`asset_id`/securityMarks" "organizations/` + # organization_id`/sources/`source_id`/findings/`finding_id`/securityMarks". + # @param [Google::Apis::SecuritycenterV1::SecurityMarks] security_marks_object + # @param [String] start_time + # The time at which the updated SecurityMarks take effect. If not set uses + # current server time. Updates will be applied to the SecurityMarks that are + # active immediately preceding this time. + # @param [String] update_mask + # The FieldMask to use when updating the security marks resource. The field mask + # must not contain duplicate fields. If empty or set to "marks", all marks will + # be replaced. Individual marks can be updated using "marks.". + # @param [String] fields + # Selector specifying which fields to include in a partial response. + # @param [String] quota_user + # Available to use for quota purposes for server-side applications. Can be any + # arbitrary string assigned to a user, but should not exceed 40 characters. + # @param [Google::Apis::RequestOptions] options + # Request-specific options + # + # @yield [result, err] Result & error if block supplied + # @yieldparam result [Google::Apis::SecuritycenterV1::SecurityMarks] parsed result object + # @yieldparam err [StandardError] error object if request failed + # + # @return [Google::Apis::SecuritycenterV1::SecurityMarks] + # + # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried + # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification + # @raise [Google::Apis::AuthorizationError] Authorization is required + def update_organization_asset_security_marks(name, security_marks_object = nil, start_time: nil, update_mask: nil, fields: nil, quota_user: nil, options: nil, &block) + command = make_simple_command(:patch, 'v1/{+name}', options) + command.request_representation = Google::Apis::SecuritycenterV1::SecurityMarks::Representation + command.request_object = security_marks_object + command.response_representation = Google::Apis::SecuritycenterV1::SecurityMarks::Representation + command.response_class = Google::Apis::SecuritycenterV1::SecurityMarks + command.params['name'] = name unless name.nil? + command.query['startTime'] = start_time unless start_time.nil? + command.query['updateMask'] = update_mask unless update_mask.nil? + command.query['fields'] = fields unless fields.nil? + command.query['quotaUser'] = quota_user unless quota_user.nil? + execute_or_queue_command(command, &block) + end + + # Creates a notification config. + # @param [String] parent + # Required. Resource name of the new notification config's parent. Its format is + # "organizations/[organization_id]". + # @param [Google::Apis::SecuritycenterV1::NotificationConfig] notification_config_object + # @param [String] config_id + # Required. Unique identifier provided by the client within the parent scope. It + # must be between 1 and 128 characters, and contains alphanumeric characters, + # underscores or hyphens only. + # @param [String] fields + # Selector specifying which fields to include in a partial response. + # @param [String] quota_user + # Available to use for quota purposes for server-side applications. Can be any + # arbitrary string assigned to a user, but should not exceed 40 characters. + # @param [Google::Apis::RequestOptions] options + # Request-specific options + # + # @yield [result, err] Result & error if block supplied + # @yieldparam result [Google::Apis::SecuritycenterV1::NotificationConfig] parsed result object + # @yieldparam err [StandardError] error object if request failed + # + # @return [Google::Apis::SecuritycenterV1::NotificationConfig] + # + # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried + # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification + # @raise [Google::Apis::AuthorizationError] Authorization is required + def create_organization_notification_config(parent, notification_config_object = nil, config_id: nil, fields: nil, quota_user: nil, options: nil, &block) + command = make_simple_command(:post, 'v1/{+parent}/notificationConfigs', options) + command.request_representation = Google::Apis::SecuritycenterV1::NotificationConfig::Representation + command.request_object = notification_config_object + command.response_representation = Google::Apis::SecuritycenterV1::NotificationConfig::Representation + command.response_class = Google::Apis::SecuritycenterV1::NotificationConfig + command.params['parent'] = parent unless parent.nil? + command.query['configId'] = config_id unless config_id.nil? + command.query['fields'] = fields unless fields.nil? + command.query['quotaUser'] = quota_user unless quota_user.nil? + execute_or_queue_command(command, &block) + end + + # Deletes a notification config. + # @param [String] name + # Required. Name of the notification config to delete. Its format is " + # organizations/[organization_id]/notificationConfigs/[config_id]". + # @param [String] fields + # Selector specifying which fields to include in a partial response. + # @param [String] quota_user + # Available to use for quota purposes for server-side applications. Can be any + # arbitrary string assigned to a user, but should not exceed 40 characters. + # @param [Google::Apis::RequestOptions] options + # Request-specific options + # + # @yield [result, err] Result & error if block supplied + # @yieldparam result [Google::Apis::SecuritycenterV1::Empty] parsed result object + # @yieldparam err [StandardError] error object if request failed + # + # @return [Google::Apis::SecuritycenterV1::Empty] + # + # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried + # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification + # @raise [Google::Apis::AuthorizationError] Authorization is required + def delete_organization_notification_config(name, fields: nil, quota_user: nil, options: nil, &block) + command = make_simple_command(:delete, 'v1/{+name}', options) + command.response_representation = Google::Apis::SecuritycenterV1::Empty::Representation + command.response_class = Google::Apis::SecuritycenterV1::Empty + command.params['name'] = name unless name.nil? + command.query['fields'] = fields unless fields.nil? + command.query['quotaUser'] = quota_user unless quota_user.nil? + execute_or_queue_command(command, &block) + end + + # Gets a notification config. + # @param [String] name + # Required. Name of the notification config to get. Its format is "organizations/ + # [organization_id]/notificationConfigs/[config_id]". + # @param [String] fields + # Selector specifying which fields to include in a partial response. + # @param [String] quota_user + # Available to use for quota purposes for server-side applications. Can be any + # arbitrary string assigned to a user, but should not exceed 40 characters. + # @param [Google::Apis::RequestOptions] options + # Request-specific options + # + # @yield [result, err] Result & error if block supplied + # @yieldparam result [Google::Apis::SecuritycenterV1::NotificationConfig] parsed result object + # @yieldparam err [StandardError] error object if request failed + # + # @return [Google::Apis::SecuritycenterV1::NotificationConfig] + # + # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried + # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification + # @raise [Google::Apis::AuthorizationError] Authorization is required + def get_organization_notification_config(name, fields: nil, quota_user: nil, options: nil, &block) + command = make_simple_command(:get, 'v1/{+name}', options) + command.response_representation = Google::Apis::SecuritycenterV1::NotificationConfig::Representation + command.response_class = Google::Apis::SecuritycenterV1::NotificationConfig + command.params['name'] = name unless name.nil? + command.query['fields'] = fields unless fields.nil? + command.query['quotaUser'] = quota_user unless quota_user.nil? + execute_or_queue_command(command, &block) + end + + # Lists notification configs. + # @param [String] parent + # Required. Name of the organization to list notification configs. Its format is + # "organizations/[organization_id]". + # @param [Fixnum] page_size + # The maximum number of results to return in a single response. Default is 10, + # minimum is 1, maximum is 1000. + # @param [String] page_token + # The value returned by the last `ListNotificationConfigsResponse`; indicates + # that this is a continuation of a prior `ListNotificationConfigs` call, and + # that the system should return the next page of data. + # @param [String] fields + # Selector specifying which fields to include in a partial response. + # @param [String] quota_user + # Available to use for quota purposes for server-side applications. Can be any + # arbitrary string assigned to a user, but should not exceed 40 characters. + # @param [Google::Apis::RequestOptions] options + # Request-specific options + # + # @yield [result, err] Result & error if block supplied + # @yieldparam result [Google::Apis::SecuritycenterV1::ListNotificationConfigsResponse] parsed result object + # @yieldparam err [StandardError] error object if request failed + # + # @return [Google::Apis::SecuritycenterV1::ListNotificationConfigsResponse] + # + # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried + # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification + # @raise [Google::Apis::AuthorizationError] Authorization is required + def list_organization_notification_configs(parent, page_size: nil, page_token: nil, fields: nil, quota_user: nil, options: nil, &block) + command = make_simple_command(:get, 'v1/{+parent}/notificationConfigs', options) + command.response_representation = Google::Apis::SecuritycenterV1::ListNotificationConfigsResponse::Representation + command.response_class = Google::Apis::SecuritycenterV1::ListNotificationConfigsResponse + command.params['parent'] = parent unless parent.nil? + command.query['pageSize'] = page_size unless page_size.nil? + command.query['pageToken'] = page_token unless page_token.nil? + command.query['fields'] = fields unless fields.nil? + command.query['quotaUser'] = quota_user unless quota_user.nil? + execute_or_queue_command(command, &block) + end + + # Updates a notification config. The following update fields are allowed: + # description, pubsub_topic, streaming_config.filter + # @param [String] name + # The relative resource name of this notification config. See: https://cloud. + # google.com/apis/design/resource_names#relative_resource_name Example: " + # organizations/`organization_id`/notificationConfigs/notify_public_bucket". + # @param [Google::Apis::SecuritycenterV1::NotificationConfig] notification_config_object + # @param [String] update_mask + # The FieldMask to use when updating the notification config. If empty all + # mutable fields will be updated. + # @param [String] fields + # Selector specifying which fields to include in a partial response. + # @param [String] quota_user + # Available to use for quota purposes for server-side applications. Can be any + # arbitrary string assigned to a user, but should not exceed 40 characters. + # @param [Google::Apis::RequestOptions] options + # Request-specific options + # + # @yield [result, err] Result & error if block supplied + # @yieldparam result [Google::Apis::SecuritycenterV1::NotificationConfig] parsed result object + # @yieldparam err [StandardError] error object if request failed + # + # @return [Google::Apis::SecuritycenterV1::NotificationConfig] + # + # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried + # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification + # @raise [Google::Apis::AuthorizationError] Authorization is required + def patch_organization_notification_config(name, notification_config_object = nil, update_mask: nil, fields: nil, quota_user: nil, options: nil, &block) + command = make_simple_command(:patch, 'v1/{+name}', options) + command.request_representation = Google::Apis::SecuritycenterV1::NotificationConfig::Representation + command.request_object = notification_config_object + command.response_representation = Google::Apis::SecuritycenterV1::NotificationConfig::Representation + command.response_class = Google::Apis::SecuritycenterV1::NotificationConfig + command.params['name'] = name unless name.nil? + command.query['updateMask'] = update_mask unless update_mask.nil? + command.query['fields'] = fields unless fields.nil? + command.query['quotaUser'] = quota_user unless quota_user.nil? + execute_or_queue_command(command, &block) + end + + # Starts asynchronous cancellation on a long-running operation. The server makes + # a best effort to cancel the operation, but success is not guaranteed. If the + # server doesn't support this method, it returns `google.rpc.Code.UNIMPLEMENTED`. + # Clients can use Operations.GetOperation or other methods to check whether the + # cancellation succeeded or whether the operation completed despite cancellation. + # On successful cancellation, the operation is not deleted; instead, it becomes + # an operation with an Operation.error value with a google.rpc.Status.code of 1, + # corresponding to `Code.CANCELLED`. + # @param [String] name + # The name of the operation resource to be cancelled. + # @param [String] fields + # Selector specifying which fields to include in a partial response. + # @param [String] quota_user + # Available to use for quota purposes for server-side applications. Can be any + # arbitrary string assigned to a user, but should not exceed 40 characters. + # @param [Google::Apis::RequestOptions] options + # Request-specific options + # + # @yield [result, err] Result & error if block supplied + # @yieldparam result [Google::Apis::SecuritycenterV1::Empty] parsed result object + # @yieldparam err [StandardError] error object if request failed + # + # @return [Google::Apis::SecuritycenterV1::Empty] + # + # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried + # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification + # @raise [Google::Apis::AuthorizationError] Authorization is required + def cancel_organization_operation(name, fields: nil, quota_user: nil, options: nil, &block) + command = make_simple_command(:post, 'v1/{+name}:cancel', options) + command.response_representation = Google::Apis::SecuritycenterV1::Empty::Representation + command.response_class = Google::Apis::SecuritycenterV1::Empty + command.params['name'] = name unless name.nil? + command.query['fields'] = fields unless fields.nil? + command.query['quotaUser'] = quota_user unless quota_user.nil? + execute_or_queue_command(command, &block) + end + + # Deletes a long-running operation. This method indicates that the client is no + # longer interested in the operation result. It does not cancel the operation. + # If the server doesn't support this method, it returns `google.rpc.Code. + # UNIMPLEMENTED`. + # @param [String] name + # The name of the operation resource to be deleted. + # @param [String] fields + # Selector specifying which fields to include in a partial response. + # @param [String] quota_user + # Available to use for quota purposes for server-side applications. Can be any + # arbitrary string assigned to a user, but should not exceed 40 characters. + # @param [Google::Apis::RequestOptions] options + # Request-specific options + # + # @yield [result, err] Result & error if block supplied + # @yieldparam result [Google::Apis::SecuritycenterV1::Empty] parsed result object + # @yieldparam err [StandardError] error object if request failed + # + # @return [Google::Apis::SecuritycenterV1::Empty] + # + # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried + # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification + # @raise [Google::Apis::AuthorizationError] Authorization is required + def delete_organization_operation(name, fields: nil, quota_user: nil, options: nil, &block) + command = make_simple_command(:delete, 'v1/{+name}', options) + command.response_representation = Google::Apis::SecuritycenterV1::Empty::Representation + command.response_class = Google::Apis::SecuritycenterV1::Empty + command.params['name'] = name unless name.nil? + command.query['fields'] = fields unless fields.nil? + command.query['quotaUser'] = quota_user unless quota_user.nil? + execute_or_queue_command(command, &block) + end + + # Gets the latest state of a long-running operation. Clients can use this method + # to poll the operation result at intervals as recommended by the API service. + # @param [String] name + # The name of the operation resource. + # @param [String] fields + # Selector specifying which fields to include in a partial response. + # @param [String] quota_user + # Available to use for quota purposes for server-side applications. Can be any + # arbitrary string assigned to a user, but should not exceed 40 characters. + # @param [Google::Apis::RequestOptions] options + # Request-specific options + # + # @yield [result, err] Result & error if block supplied + # @yieldparam result [Google::Apis::SecuritycenterV1::Operation] parsed result object + # @yieldparam err [StandardError] error object if request failed + # + # @return [Google::Apis::SecuritycenterV1::Operation] + # + # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried + # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification + # @raise [Google::Apis::AuthorizationError] Authorization is required + def get_organization_operation(name, fields: nil, quota_user: nil, options: nil, &block) + command = make_simple_command(:get, 'v1/{+name}', options) + command.response_representation = Google::Apis::SecuritycenterV1::Operation::Representation + command.response_class = Google::Apis::SecuritycenterV1::Operation + command.params['name'] = name unless name.nil? + command.query['fields'] = fields unless fields.nil? + command.query['quotaUser'] = quota_user unless quota_user.nil? + execute_or_queue_command(command, &block) + end + + # Lists operations that match the specified filter in the request. If the server + # doesn't support this method, it returns `UNIMPLEMENTED`. NOTE: the `name` + # binding allows API services to override the binding to use different resource + # name schemes, such as `users/*/operations`. To override the binding, API + # services can add a binding such as `"/v1/`name=users/*`/operations"` to their + # service configuration. For backwards compatibility, the default name includes + # the operations collection id, however overriding users must ensure the name + # binding is the parent resource, without the operations collection id. + # @param [String] name + # The name of the operation's parent resource. + # @param [String] filter + # The standard list filter. + # @param [Fixnum] page_size + # The standard list page size. + # @param [String] page_token + # The standard list page token. + # @param [String] fields + # Selector specifying which fields to include in a partial response. + # @param [String] quota_user + # Available to use for quota purposes for server-side applications. Can be any + # arbitrary string assigned to a user, but should not exceed 40 characters. + # @param [Google::Apis::RequestOptions] options + # Request-specific options + # + # @yield [result, err] Result & error if block supplied + # @yieldparam result [Google::Apis::SecuritycenterV1::ListOperationsResponse] parsed result object + # @yieldparam err [StandardError] error object if request failed + # + # @return [Google::Apis::SecuritycenterV1::ListOperationsResponse] + # + # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried + # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification + # @raise [Google::Apis::AuthorizationError] Authorization is required + def list_organization_operations(name, filter: nil, page_size: nil, page_token: nil, fields: nil, quota_user: nil, options: nil, &block) + command = make_simple_command(:get, 'v1/{+name}', options) + command.response_representation = Google::Apis::SecuritycenterV1::ListOperationsResponse::Representation + command.response_class = Google::Apis::SecuritycenterV1::ListOperationsResponse + command.params['name'] = name unless name.nil? + command.query['filter'] = filter unless filter.nil? + command.query['pageSize'] = page_size unless page_size.nil? + command.query['pageToken'] = page_token unless page_token.nil? + command.query['fields'] = fields unless fields.nil? + command.query['quotaUser'] = quota_user unless quota_user.nil? + execute_or_queue_command(command, &block) + end + + # Creates a source. + # @param [String] parent + # Required. Resource name of the new source's parent. Its format should be " + # organizations/[organization_id]". + # @param [Google::Apis::SecuritycenterV1::Source] source_object + # @param [String] fields + # Selector specifying which fields to include in a partial response. + # @param [String] quota_user + # Available to use for quota purposes for server-side applications. Can be any + # arbitrary string assigned to a user, but should not exceed 40 characters. + # @param [Google::Apis::RequestOptions] options + # Request-specific options + # + # @yield [result, err] Result & error if block supplied + # @yieldparam result [Google::Apis::SecuritycenterV1::Source] parsed result object + # @yieldparam err [StandardError] error object if request failed + # + # @return [Google::Apis::SecuritycenterV1::Source] + # + # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried + # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification + # @raise [Google::Apis::AuthorizationError] Authorization is required + def create_organization_source(parent, source_object = nil, fields: nil, quota_user: nil, options: nil, &block) + command = make_simple_command(:post, 'v1/{+parent}/sources', options) + command.request_representation = Google::Apis::SecuritycenterV1::Source::Representation + command.request_object = source_object + command.response_representation = Google::Apis::SecuritycenterV1::Source::Representation + command.response_class = Google::Apis::SecuritycenterV1::Source + command.params['parent'] = parent unless parent.nil? + command.query['fields'] = fields unless fields.nil? + command.query['quotaUser'] = quota_user unless quota_user.nil? + execute_or_queue_command(command, &block) + end + + # Gets a source. + # @param [String] name + # Required. Relative resource name of the source. Its format is "organizations/[ + # organization_id]/source/[source_id]". + # @param [String] fields + # Selector specifying which fields to include in a partial response. + # @param [String] quota_user + # Available to use for quota purposes for server-side applications. Can be any + # arbitrary string assigned to a user, but should not exceed 40 characters. + # @param [Google::Apis::RequestOptions] options + # Request-specific options + # + # @yield [result, err] Result & error if block supplied + # @yieldparam result [Google::Apis::SecuritycenterV1::Source] parsed result object + # @yieldparam err [StandardError] error object if request failed + # + # @return [Google::Apis::SecuritycenterV1::Source] + # + # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried + # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification + # @raise [Google::Apis::AuthorizationError] Authorization is required + def get_organization_source(name, fields: nil, quota_user: nil, options: nil, &block) + command = make_simple_command(:get, 'v1/{+name}', options) + command.response_representation = Google::Apis::SecuritycenterV1::Source::Representation + command.response_class = Google::Apis::SecuritycenterV1::Source + command.params['name'] = name unless name.nil? + command.query['fields'] = fields unless fields.nil? + command.query['quotaUser'] = quota_user unless quota_user.nil? + execute_or_queue_command(command, &block) + end + + # Gets the access control policy on the specified Source. + # @param [String] resource + # REQUIRED: The resource for which the policy is being requested. See the + # operation documentation for the appropriate value for this field. + # @param [Google::Apis::SecuritycenterV1::GetIamPolicyRequest] get_iam_policy_request_object + # @param [String] fields + # Selector specifying which fields to include in a partial response. + # @param [String] quota_user + # Available to use for quota purposes for server-side applications. Can be any + # arbitrary string assigned to a user, but should not exceed 40 characters. + # @param [Google::Apis::RequestOptions] options + # Request-specific options + # + # @yield [result, err] Result & error if block supplied + # @yieldparam result [Google::Apis::SecuritycenterV1::Policy] parsed result object + # @yieldparam err [StandardError] error object if request failed + # + # @return [Google::Apis::SecuritycenterV1::Policy] + # + # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried + # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification + # @raise [Google::Apis::AuthorizationError] Authorization is required + def get_source_iam_policy(resource, get_iam_policy_request_object = nil, fields: nil, quota_user: nil, options: nil, &block) + command = make_simple_command(:post, 'v1/{+resource}:getIamPolicy', options) + command.request_representation = Google::Apis::SecuritycenterV1::GetIamPolicyRequest::Representation + command.request_object = get_iam_policy_request_object + command.response_representation = Google::Apis::SecuritycenterV1::Policy::Representation + command.response_class = Google::Apis::SecuritycenterV1::Policy + command.params['resource'] = resource unless resource.nil? + command.query['fields'] = fields unless fields.nil? + command.query['quotaUser'] = quota_user unless quota_user.nil? + execute_or_queue_command(command, &block) + end + + # Lists all sources belonging to an organization. + # @param [String] parent + # Required. Resource name of the parent of sources to list. Its format should be + # "organizations/[organization_id], folders/[folder_id], or projects/[project_id] + # ". + # @param [Fixnum] page_size + # The maximum number of results to return in a single response. Default is 10, + # minimum is 1, maximum is 1000. + # @param [String] page_token + # The value returned by the last `ListSourcesResponse`; indicates that this is a + # continuation of a prior `ListSources` call, and that the system should return + # the next page of data. + # @param [String] fields + # Selector specifying which fields to include in a partial response. + # @param [String] quota_user + # Available to use for quota purposes for server-side applications. Can be any + # arbitrary string assigned to a user, but should not exceed 40 characters. + # @param [Google::Apis::RequestOptions] options + # Request-specific options + # + # @yield [result, err] Result & error if block supplied + # @yieldparam result [Google::Apis::SecuritycenterV1::ListSourcesResponse] parsed result object + # @yieldparam err [StandardError] error object if request failed + # + # @return [Google::Apis::SecuritycenterV1::ListSourcesResponse] + # + # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried + # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification + # @raise [Google::Apis::AuthorizationError] Authorization is required + def list_organization_sources(parent, page_size: nil, page_token: nil, fields: nil, quota_user: nil, options: nil, &block) + command = make_simple_command(:get, 'v1/{+parent}/sources', options) + command.response_representation = Google::Apis::SecuritycenterV1::ListSourcesResponse::Representation + command.response_class = Google::Apis::SecuritycenterV1::ListSourcesResponse + command.params['parent'] = parent unless parent.nil? + command.query['pageSize'] = page_size unless page_size.nil? + command.query['pageToken'] = page_token unless page_token.nil? + command.query['fields'] = fields unless fields.nil? + command.query['quotaUser'] = quota_user unless quota_user.nil? + execute_or_queue_command(command, &block) + end + + # Updates a source. + # @param [String] name + # The relative resource name of this source. See: https://cloud.google.com/apis/ + # design/resource_names#relative_resource_name Example: "organizations/` + # organization_id`/sources/`source_id`" + # @param [Google::Apis::SecuritycenterV1::Source] source_object + # @param [String] update_mask + # The FieldMask to use when updating the source resource. If empty all mutable + # fields will be updated. + # @param [String] fields + # Selector specifying which fields to include in a partial response. + # @param [String] quota_user + # Available to use for quota purposes for server-side applications. Can be any + # arbitrary string assigned to a user, but should not exceed 40 characters. + # @param [Google::Apis::RequestOptions] options + # Request-specific options + # + # @yield [result, err] Result & error if block supplied + # @yieldparam result [Google::Apis::SecuritycenterV1::Source] parsed result object + # @yieldparam err [StandardError] error object if request failed + # + # @return [Google::Apis::SecuritycenterV1::Source] + # + # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried + # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification + # @raise [Google::Apis::AuthorizationError] Authorization is required + def patch_organization_source(name, source_object = nil, update_mask: nil, fields: nil, quota_user: nil, options: nil, &block) + command = make_simple_command(:patch, 'v1/{+name}', options) + command.request_representation = Google::Apis::SecuritycenterV1::Source::Representation + command.request_object = source_object + command.response_representation = Google::Apis::SecuritycenterV1::Source::Representation + command.response_class = Google::Apis::SecuritycenterV1::Source + command.params['name'] = name unless name.nil? + command.query['updateMask'] = update_mask unless update_mask.nil? + command.query['fields'] = fields unless fields.nil? + command.query['quotaUser'] = quota_user unless quota_user.nil? + execute_or_queue_command(command, &block) + end + + # Sets the access control policy on the specified Source. + # @param [String] resource + # REQUIRED: The resource for which the policy is being specified. See the + # operation documentation for the appropriate value for this field. + # @param [Google::Apis::SecuritycenterV1::SetIamPolicyRequest] set_iam_policy_request_object + # @param [String] fields + # Selector specifying which fields to include in a partial response. + # @param [String] quota_user + # Available to use for quota purposes for server-side applications. Can be any + # arbitrary string assigned to a user, but should not exceed 40 characters. + # @param [Google::Apis::RequestOptions] options + # Request-specific options + # + # @yield [result, err] Result & error if block supplied + # @yieldparam result [Google::Apis::SecuritycenterV1::Policy] parsed result object + # @yieldparam err [StandardError] error object if request failed + # + # @return [Google::Apis::SecuritycenterV1::Policy] + # + # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried + # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification + # @raise [Google::Apis::AuthorizationError] Authorization is required + def set_source_iam_policy(resource, set_iam_policy_request_object = nil, fields: nil, quota_user: nil, options: nil, &block) + command = make_simple_command(:post, 'v1/{+resource}:setIamPolicy', options) + command.request_representation = Google::Apis::SecuritycenterV1::SetIamPolicyRequest::Representation + command.request_object = set_iam_policy_request_object + command.response_representation = Google::Apis::SecuritycenterV1::Policy::Representation + command.response_class = Google::Apis::SecuritycenterV1::Policy + command.params['resource'] = resource unless resource.nil? + command.query['fields'] = fields unless fields.nil? + command.query['quotaUser'] = quota_user unless quota_user.nil? + execute_or_queue_command(command, &block) + end + + # Returns the permissions that a caller has on the specified source. + # @param [String] resource + # REQUIRED: The resource for which the policy detail is being requested. See the + # operation documentation for the appropriate value for this field. + # @param [Google::Apis::SecuritycenterV1::TestIamPermissionsRequest] test_iam_permissions_request_object + # @param [String] fields + # Selector specifying which fields to include in a partial response. + # @param [String] quota_user + # Available to use for quota purposes for server-side applications. Can be any + # arbitrary string assigned to a user, but should not exceed 40 characters. + # @param [Google::Apis::RequestOptions] options + # Request-specific options + # + # @yield [result, err] Result & error if block supplied + # @yieldparam result [Google::Apis::SecuritycenterV1::TestIamPermissionsResponse] parsed result object + # @yieldparam err [StandardError] error object if request failed + # + # @return [Google::Apis::SecuritycenterV1::TestIamPermissionsResponse] + # + # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried + # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification + # @raise [Google::Apis::AuthorizationError] Authorization is required + def test_source_iam_permissions(resource, test_iam_permissions_request_object = nil, fields: nil, quota_user: nil, options: nil, &block) + command = make_simple_command(:post, 'v1/{+resource}:testIamPermissions', options) + command.request_representation = Google::Apis::SecuritycenterV1::TestIamPermissionsRequest::Representation + command.request_object = test_iam_permissions_request_object + command.response_representation = Google::Apis::SecuritycenterV1::TestIamPermissionsResponse::Representation + command.response_class = Google::Apis::SecuritycenterV1::TestIamPermissionsResponse + command.params['resource'] = resource unless resource.nil? + command.query['fields'] = fields unless fields.nil? + command.query['quotaUser'] = quota_user unless quota_user.nil? + execute_or_queue_command(command, &block) + end + + # Creates a finding. The corresponding source must exist for finding creation to + # succeed. + # @param [String] parent + # Required. Resource name of the new finding's parent. Its format should be " + # organizations/[organization_id]/sources/[source_id]". + # @param [Google::Apis::SecuritycenterV1::Finding] finding_object + # @param [String] finding_id + # Required. Unique identifier provided by the client within the parent scope. It + # must be alphanumeric and less than or equal to 32 characters and greater than + # 0 characters in length. + # @param [String] fields + # Selector specifying which fields to include in a partial response. + # @param [String] quota_user + # Available to use for quota purposes for server-side applications. Can be any + # arbitrary string assigned to a user, but should not exceed 40 characters. + # @param [Google::Apis::RequestOptions] options # Request-specific options # # @yield [result, err] Result & error if block supplied - # @yieldparam result [Google::Apis::SecuritycenterV1::Policy] parsed result object + # @yieldparam result [Google::Apis::SecuritycenterV1::Finding] parsed result object # @yieldparam err [StandardError] error object if request failed # - # @return [Google::Apis::SecuritycenterV1::Policy] + # @return [Google::Apis::SecuritycenterV1::Finding] # # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification # @raise [Google::Apis::AuthorizationError] Authorization is required - def get_source_iam_policy(resource, get_iam_policy_request_object = nil, fields: nil, quota_user: nil, options: nil, &block) - command = make_simple_command(:post, 'v1/{+resource}:getIamPolicy', options) - command.request_representation = Google::Apis::SecuritycenterV1::GetIamPolicyRequest::Representation - command.request_object = get_iam_policy_request_object - command.response_representation = Google::Apis::SecuritycenterV1::Policy::Representation - command.response_class = Google::Apis::SecuritycenterV1::Policy - command.params['resource'] = resource unless resource.nil? + def create_organization_source_finding(parent, finding_object = nil, finding_id: nil, fields: nil, quota_user: nil, options: nil, &block) + command = make_simple_command(:post, 'v1/{+parent}/findings', options) + command.request_representation = Google::Apis::SecuritycenterV1::Finding::Representation + command.request_object = finding_object + command.response_representation = Google::Apis::SecuritycenterV1::Finding::Representation + command.response_class = Google::Apis::SecuritycenterV1::Finding + command.params['parent'] = parent unless parent.nil? + command.query['findingId'] = finding_id unless finding_id.nil? command.query['fields'] = fields unless fields.nil? command.query['quotaUser'] = quota_user unless quota_user.nil? execute_or_queue_command(command, &block) end - # Lists all sources belonging to an organization. + # Filters an organization or source's findings and groups them by their + # specified properties. To group across all sources provide a `-` as the source + # id. Example: /v1/organizations/`organization_id`/sources/-/findings, /v1/ + # folders/`folder_id`/sources/-/findings, /v1/projects/`project_id`/sources/-/ + # findings # @param [String] parent - # Required. Resource name of the parent of sources to list. Its format should be - # "organizations/[organization_id]". + # Required. Name of the source to groupBy. Its format is "organizations/[ + # organization_id]/sources/[source_id]", folders/[folder_id]/sources/[source_id], + # or projects/[project_id]/sources/[source_id]. To groupBy across all sources + # provide a source_id of `-`. For example: organizations/`organization_id`/ + # sources/-, folders/`folder_id`/sources/-, or projects/`project_id`/sources/- + # @param [Google::Apis::SecuritycenterV1::GroupFindingsRequest] group_findings_request_object + # @param [String] fields + # Selector specifying which fields to include in a partial response. + # @param [String] quota_user + # Available to use for quota purposes for server-side applications. Can be any + # arbitrary string assigned to a user, but should not exceed 40 characters. + # @param [Google::Apis::RequestOptions] options + # Request-specific options + # + # @yield [result, err] Result & error if block supplied + # @yieldparam result [Google::Apis::SecuritycenterV1::GroupFindingsResponse] parsed result object + # @yieldparam err [StandardError] error object if request failed + # + # @return [Google::Apis::SecuritycenterV1::GroupFindingsResponse] + # + # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried + # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification + # @raise [Google::Apis::AuthorizationError] Authorization is required + def group_findings(parent, group_findings_request_object = nil, fields: nil, quota_user: nil, options: nil, &block) + command = make_simple_command(:post, 'v1/{+parent}/findings:group', options) + command.request_representation = Google::Apis::SecuritycenterV1::GroupFindingsRequest::Representation + command.request_object = group_findings_request_object + command.response_representation = Google::Apis::SecuritycenterV1::GroupFindingsResponse::Representation + command.response_class = Google::Apis::SecuritycenterV1::GroupFindingsResponse + command.params['parent'] = parent unless parent.nil? + command.query['fields'] = fields unless fields.nil? + command.query['quotaUser'] = quota_user unless quota_user.nil? + execute_or_queue_command(command, &block) + end + + # Lists an organization or source's findings. To list across all sources provide + # a `-` as the source id. Example: /v1/organizations/`organization_id`/sources/-/ + # findings + # @param [String] parent + # Required. Name of the source the findings belong to. Its format is " + # organizations/[organization_id]/sources/[source_id], folders/[folder_id]/ + # sources/[source_id], or projects/[project_id]/sources/[source_id]". To list + # across all sources provide a source_id of `-`. For example: organizations/` + # organization_id`/sources/-, folders/`folder_id`/sources/- or projects/` + # projects_id`/sources/- + # @param [String] compare_duration + # When compare_duration is set, the ListFindingsResult's "state_change" + # attribute is updated to indicate whether the finding had its state changed, + # the finding's state remained unchanged, or if the finding was added in any + # state during the compare_duration period of time that precedes the read_time. + # This is the time between (read_time - compare_duration) and read_time. The + # state_change value is derived based on the presence and state of the finding + # at the two points in time. Intermediate state changes between the two times + # don't affect the result. For example, the results aren't affected if the + # finding is made inactive and then active again. Possible "state_change" values + # when compare_duration is specified: * "CHANGED": indicates that the finding + # was present and matched the given filter at the start of compare_duration, but + # changed its state at read_time. * "UNCHANGED": indicates that the finding was + # present and matched the given filter at the start of compare_duration and did + # not change state at read_time. * "ADDED": indicates that the finding did not + # match the given filter or was not present at the start of compare_duration, + # but was present at read_time. * "REMOVED": indicates that the finding was + # present and matched the filter at the start of compare_duration, but did not + # match the filter at read_time. If compare_duration is not specified, then the + # only possible state_change is "UNUSED", which will be the state_change set for + # all findings present at read_time. + # @param [String] field_mask + # A field mask to specify the Finding fields to be listed in the response. An + # empty field mask will list all fields. + # @param [String] filter + # Expression that defines the filter to apply across findings. The expression is + # a list of one or more restrictions combined via logical operators `AND` and ` + # OR`. Parentheses are supported, and `OR` has higher precedence than `AND`. + # Restrictions have the form ` ` and may have a `-` character in front of them + # to indicate negation. Examples include: * name * source_properties.a_property * + # security_marks.marks.marka The supported operators are: * `=` for all value + # types. * `>`, `<`, `>=`, `<=` for integer values. * `:`, meaning substring + # matching, for strings. The supported value types are: * string literals in + # quotes. * integer literals without quotes. * boolean literals `true` and ` + # false` without quotes. The following field and operator combinations are + # supported: name: `=` parent: `=`, `:` resource_name: `=`, `:` state: `=`, `:` + # category: `=`, `:` external_uri: `=`, `:` event_time: `=`, `>`, `<`, `>=`, `<=` + # Usage: This should be milliseconds since epoch or an RFC3339 string. Examples: + # `event_time = "2019-06-10T16:07:18-07:00"` `event_time = 1560208038000` + # security_marks.marks: `=`, `:` source_properties: `=`, `:`, `>`, `<`, `>=`, `<= + # ` For example, `source_properties.size = 100` is a valid filter string. Use a + # partial match on the empty string to filter based on a property existing: ` + # source_properties.my_property : ""` Use a negated partial match on the empty + # string to filter based on a property not existing: `-source_properties. + # my_property : ""` + # @param [String] order_by + # Expression that defines what fields and order to use for sorting. The string + # value should follow SQL syntax: comma separated list of fields. For example: " + # name,resource_properties.a_property". The default sorting order is ascending. + # To specify descending order for a field, a suffix " desc" should be appended + # to the field name. For example: "name desc,source_properties.a_property". + # Redundant space characters in the syntax are insignificant. "name desc, + # source_properties.a_property" and " name desc , source_properties.a_property " + # are equivalent. The following fields are supported: name parent state category + # resource_name event_time source_properties security_marks.marks # @param [Fixnum] page_size # The maximum number of results to return in a single response. Default is 10, # minimum is 1, maximum is 1000. # @param [String] page_token - # The value returned by the last `ListSourcesResponse`; indicates that this is a - # continuation of a prior `ListSources` call, and that the system should return - # the next page of data. + # The value returned by the last `ListFindingsResponse`; indicates that this is + # a continuation of a prior `ListFindings` call, and that the system should + # return the next page of data. + # @param [String] read_time + # Time used as a reference point when filtering findings. The filter is limited + # to findings existing at the supplied time and their values are those at that + # specific time. Absence of this field will default to the API's version of NOW. + # @param [String] fields + # Selector specifying which fields to include in a partial response. + # @param [String] quota_user + # Available to use for quota purposes for server-side applications. Can be any + # arbitrary string assigned to a user, but should not exceed 40 characters. + # @param [Google::Apis::RequestOptions] options + # Request-specific options + # + # @yield [result, err] Result & error if block supplied + # @yieldparam result [Google::Apis::SecuritycenterV1::ListFindingsResponse] parsed result object + # @yieldparam err [StandardError] error object if request failed + # + # @return [Google::Apis::SecuritycenterV1::ListFindingsResponse] + # + # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried + # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification + # @raise [Google::Apis::AuthorizationError] Authorization is required + def list_organization_source_findings(parent, compare_duration: nil, field_mask: nil, filter: nil, order_by: nil, page_size: nil, page_token: nil, read_time: nil, fields: nil, quota_user: nil, options: nil, &block) + command = make_simple_command(:get, 'v1/{+parent}/findings', options) + command.response_representation = Google::Apis::SecuritycenterV1::ListFindingsResponse::Representation + command.response_class = Google::Apis::SecuritycenterV1::ListFindingsResponse + command.params['parent'] = parent unless parent.nil? + command.query['compareDuration'] = compare_duration unless compare_duration.nil? + command.query['fieldMask'] = field_mask unless field_mask.nil? + command.query['filter'] = filter unless filter.nil? + command.query['orderBy'] = order_by unless order_by.nil? + command.query['pageSize'] = page_size unless page_size.nil? + command.query['pageToken'] = page_token unless page_token.nil? + command.query['readTime'] = read_time unless read_time.nil? + command.query['fields'] = fields unless fields.nil? + command.query['quotaUser'] = quota_user unless quota_user.nil? + execute_or_queue_command(command, &block) + end + + # Creates or updates a finding. The corresponding source must exist for a + # finding creation to succeed. + # @param [String] name + # The relative resource name of this finding. See: https://cloud.google.com/apis/ + # design/resource_names#relative_resource_name Example: "organizations/` + # organization_id`/sources/`source_id`/findings/`finding_id`" + # @param [Google::Apis::SecuritycenterV1::Finding] finding_object + # @param [String] update_mask + # The FieldMask to use when updating the finding resource. This field should not + # be specified when creating a finding. When updating a finding, an empty mask + # is treated as updating all mutable fields and replacing source_properties. + # Individual source_properties can be added/updated by using "source_properties." + # in the field mask. + # @param [String] fields + # Selector specifying which fields to include in a partial response. + # @param [String] quota_user + # Available to use for quota purposes for server-side applications. Can be any + # arbitrary string assigned to a user, but should not exceed 40 characters. + # @param [Google::Apis::RequestOptions] options + # Request-specific options + # + # @yield [result, err] Result & error if block supplied + # @yieldparam result [Google::Apis::SecuritycenterV1::Finding] parsed result object + # @yieldparam err [StandardError] error object if request failed + # + # @return [Google::Apis::SecuritycenterV1::Finding] + # + # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried + # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification + # @raise [Google::Apis::AuthorizationError] Authorization is required + def patch_organization_source_finding(name, finding_object = nil, update_mask: nil, fields: nil, quota_user: nil, options: nil, &block) + command = make_simple_command(:patch, 'v1/{+name}', options) + command.request_representation = Google::Apis::SecuritycenterV1::Finding::Representation + command.request_object = finding_object + command.response_representation = Google::Apis::SecuritycenterV1::Finding::Representation + command.response_class = Google::Apis::SecuritycenterV1::Finding + command.params['name'] = name unless name.nil? + command.query['updateMask'] = update_mask unless update_mask.nil? + command.query['fields'] = fields unless fields.nil? + command.query['quotaUser'] = quota_user unless quota_user.nil? + execute_or_queue_command(command, &block) + end + + # Updates the state of a finding. + # @param [String] name + # Required. The relative resource name of the finding. See: https://cloud.google. + # com/apis/design/resource_names#relative_resource_name Example: "organizations/` + # organization_id`/sources/`source_id`/finding/`finding_id`". + # @param [Google::Apis::SecuritycenterV1::SetFindingStateRequest] set_finding_state_request_object + # @param [String] fields + # Selector specifying which fields to include in a partial response. + # @param [String] quota_user + # Available to use for quota purposes for server-side applications. Can be any + # arbitrary string assigned to a user, but should not exceed 40 characters. + # @param [Google::Apis::RequestOptions] options + # Request-specific options + # + # @yield [result, err] Result & error if block supplied + # @yieldparam result [Google::Apis::SecuritycenterV1::Finding] parsed result object + # @yieldparam err [StandardError] error object if request failed + # + # @return [Google::Apis::SecuritycenterV1::Finding] + # + # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried + # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification + # @raise [Google::Apis::AuthorizationError] Authorization is required + def set_organization_source_finding_state(name, set_finding_state_request_object = nil, fields: nil, quota_user: nil, options: nil, &block) + command = make_simple_command(:post, 'v1/{+name}:setState', options) + command.request_representation = Google::Apis::SecuritycenterV1::SetFindingStateRequest::Representation + command.request_object = set_finding_state_request_object + command.response_representation = Google::Apis::SecuritycenterV1::Finding::Representation + command.response_class = Google::Apis::SecuritycenterV1::Finding + command.params['name'] = name unless name.nil? + command.query['fields'] = fields unless fields.nil? + command.query['quotaUser'] = quota_user unless quota_user.nil? + execute_or_queue_command(command, &block) + end + + # Updates security marks. + # @param [String] name + # The relative resource name of the SecurityMarks. See: https://cloud.google.com/ + # apis/design/resource_names#relative_resource_name Examples: "organizations/` + # organization_id`/assets/`asset_id`/securityMarks" "organizations/` + # organization_id`/sources/`source_id`/findings/`finding_id`/securityMarks". + # @param [Google::Apis::SecuritycenterV1::SecurityMarks] security_marks_object + # @param [String] start_time + # The time at which the updated SecurityMarks take effect. If not set uses + # current server time. Updates will be applied to the SecurityMarks that are + # active immediately preceding this time. + # @param [String] update_mask + # The FieldMask to use when updating the security marks resource. The field mask + # must not contain duplicate fields. If empty or set to "marks", all marks will + # be replaced. Individual marks can be updated using "marks.". # @param [String] fields # Selector specifying which fields to include in a partial response. # @param [String] quota_user @@ -797,35 +1732,33 @@ def get_source_iam_policy(resource, get_iam_policy_request_object = nil, fields: # Request-specific options # # @yield [result, err] Result & error if block supplied - # @yieldparam result [Google::Apis::SecuritycenterV1::ListSourcesResponse] parsed result object + # @yieldparam result [Google::Apis::SecuritycenterV1::SecurityMarks] parsed result object # @yieldparam err [StandardError] error object if request failed # - # @return [Google::Apis::SecuritycenterV1::ListSourcesResponse] + # @return [Google::Apis::SecuritycenterV1::SecurityMarks] # # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification # @raise [Google::Apis::AuthorizationError] Authorization is required - def list_organization_sources(parent, page_size: nil, page_token: nil, fields: nil, quota_user: nil, options: nil, &block) - command = make_simple_command(:get, 'v1/{+parent}/sources', options) - command.response_representation = Google::Apis::SecuritycenterV1::ListSourcesResponse::Representation - command.response_class = Google::Apis::SecuritycenterV1::ListSourcesResponse - command.params['parent'] = parent unless parent.nil? - command.query['pageSize'] = page_size unless page_size.nil? - command.query['pageToken'] = page_token unless page_token.nil? + def update_organization_source_finding_security_marks(name, security_marks_object = nil, start_time: nil, update_mask: nil, fields: nil, quota_user: nil, options: nil, &block) + command = make_simple_command(:patch, 'v1/{+name}', options) + command.request_representation = Google::Apis::SecuritycenterV1::SecurityMarks::Representation + command.request_object = security_marks_object + command.response_representation = Google::Apis::SecuritycenterV1::SecurityMarks::Representation + command.response_class = Google::Apis::SecuritycenterV1::SecurityMarks + command.params['name'] = name unless name.nil? + command.query['startTime'] = start_time unless start_time.nil? + command.query['updateMask'] = update_mask unless update_mask.nil? command.query['fields'] = fields unless fields.nil? command.query['quotaUser'] = quota_user unless quota_user.nil? execute_or_queue_command(command, &block) end - # Updates a source. - # @param [String] name - # The relative resource name of this source. See: https://cloud.google.com/apis/ - # design/resource_names#relative_resource_name Example: "organizations/` - # organization_id`/sources/`source_id`" - # @param [Google::Apis::SecuritycenterV1::Source] source_object - # @param [String] update_mask - # The FieldMask to use when updating the source resource. If empty all mutable - # fields will be updated. + # Filters an organization's assets and groups them by their specified properties. + # @param [String] parent + # Required. Name of the organization to groupBy. Its format is "organizations/[ + # organization_id], folders/[folder_id], or projects/[project_id]". + # @param [Google::Apis::SecuritycenterV1::GroupAssetsRequest] group_assets_request_object # @param [String] fields # Selector specifying which fields to include in a partial response. # @param [String] quota_user @@ -835,32 +1768,109 @@ def list_organization_sources(parent, page_size: nil, page_token: nil, fields: n # Request-specific options # # @yield [result, err] Result & error if block supplied - # @yieldparam result [Google::Apis::SecuritycenterV1::Source] parsed result object + # @yieldparam result [Google::Apis::SecuritycenterV1::GroupAssetsResponse] parsed result object # @yieldparam err [StandardError] error object if request failed # - # @return [Google::Apis::SecuritycenterV1::Source] + # @return [Google::Apis::SecuritycenterV1::GroupAssetsResponse] # # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification # @raise [Google::Apis::AuthorizationError] Authorization is required - def patch_organization_source(name, source_object = nil, update_mask: nil, fields: nil, quota_user: nil, options: nil, &block) - command = make_simple_command(:patch, 'v1/{+name}', options) - command.request_representation = Google::Apis::SecuritycenterV1::Source::Representation - command.request_object = source_object - command.response_representation = Google::Apis::SecuritycenterV1::Source::Representation - command.response_class = Google::Apis::SecuritycenterV1::Source - command.params['name'] = name unless name.nil? - command.query['updateMask'] = update_mask unless update_mask.nil? + def group_project_asset(parent, group_assets_request_object = nil, fields: nil, quota_user: nil, options: nil, &block) + command = make_simple_command(:post, 'v1/{+parent}/assets:group', options) + command.request_representation = Google::Apis::SecuritycenterV1::GroupAssetsRequest::Representation + command.request_object = group_assets_request_object + command.response_representation = Google::Apis::SecuritycenterV1::GroupAssetsResponse::Representation + command.response_class = Google::Apis::SecuritycenterV1::GroupAssetsResponse + command.params['parent'] = parent unless parent.nil? command.query['fields'] = fields unless fields.nil? command.query['quotaUser'] = quota_user unless quota_user.nil? execute_or_queue_command(command, &block) end - # Sets the access control policy on the specified Source. - # @param [String] resource - # REQUIRED: The resource for which the policy is being specified. See the - # operation documentation for the appropriate value for this field. - # @param [Google::Apis::SecuritycenterV1::SetIamPolicyRequest] set_iam_policy_request_object + # Lists an organization's assets. + # @param [String] parent + # Required. Name of the organization assets should belong to. Its format is " + # organizations/[organization_id], folders/[folder_id], or projects/[project_id]" + # . + # @param [String] compare_duration + # When compare_duration is set, the ListAssetsResult's "state_change" attribute + # is updated to indicate whether the asset was added, removed, or remained + # present during the compare_duration period of time that precedes the read_time. + # This is the time between (read_time - compare_duration) and read_time. The + # state_change value is derived based on the presence of the asset at the two + # points in time. Intermediate state changes between the two times don't affect + # the result. For example, the results aren't affected if the asset is removed + # and re-created again. Possible "state_change" values when compare_duration is + # specified: * "ADDED": indicates that the asset was not present at the start of + # compare_duration, but present at read_time. * "REMOVED": indicates that the + # asset was present at the start of compare_duration, but not present at + # read_time. * "ACTIVE": indicates that the asset was present at both the start + # and the end of the time period defined by compare_duration and read_time. If + # compare_duration is not specified, then the only possible state_change is " + # UNUSED", which will be the state_change set for all assets present at + # read_time. + # @param [String] field_mask + # A field mask to specify the ListAssetsResult fields to be listed in the + # response. An empty field mask will list all fields. + # @param [String] filter + # Expression that defines the filter to apply across assets. The expression is a + # list of zero or more restrictions combined via logical operators `AND` and `OR` + # . Parentheses are supported, and `OR` has higher precedence than `AND`. + # Restrictions have the form ` ` and may have a `-` character in front of them + # to indicate negation. The fields map to those defined in the Asset resource. + # Examples include: * name * security_center_properties.resource_name * + # resource_properties.a_property * security_marks.marks.marka The supported + # operators are: * `=` for all value types. * `>`, `<`, `>=`, `<=` for integer + # values. * `:`, meaning substring matching, for strings. The supported value + # types are: * string literals in quotes. * integer literals without quotes. * + # boolean literals `true` and `false` without quotes. The following are the + # allowed field and operator combinations: * name: `=` * update_time: `=`, `>`, ` + # <`, `>=`, `<=` Usage: This should be milliseconds since epoch or an RFC3339 + # string. Examples: `update_time = "2019-06-10T16:07:18-07:00"` `update_time = + # 1560208038000` * create_time: `=`, `>`, `<`, `>=`, `<=` Usage: This should be + # milliseconds since epoch or an RFC3339 string. Examples: `create_time = "2019- + # 06-10T16:07:18-07:00"` `create_time = 1560208038000` * iam_policy.policy_blob: + # `=`, `:` * resource_properties: `=`, `:`, `>`, `<`, `>=`, `<=` * + # security_marks.marks: `=`, `:` * security_center_properties.resource_name: `=`, + # `:` * security_center_properties.resource_display_name: `=`, `:` * + # security_center_properties.resource_type: `=`, `:` * + # security_center_properties.resource_parent: `=`, `:` * + # security_center_properties.resource_parent_display_name: `=`, `:` * + # security_center_properties.resource_project: `=`, `:` * + # security_center_properties.resource_project_display_name: `=`, `:` * + # security_center_properties.resource_owners: `=`, `:` For example, ` + # resource_properties.size = 100` is a valid filter string. Use a partial match + # on the empty string to filter based on a property existing: ` + # resource_properties.my_property : ""` Use a negated partial match on the empty + # string to filter based on a property not existing: `-resource_properties. + # my_property : ""` + # @param [String] order_by + # Expression that defines what fields and order to use for sorting. The string + # value should follow SQL syntax: comma separated list of fields. For example: " + # name,resource_properties.a_property". The default sorting order is ascending. + # To specify descending order for a field, a suffix " desc" should be appended + # to the field name. For example: "name desc,resource_properties.a_property". + # Redundant space characters in the syntax are insignificant. "name desc, + # resource_properties.a_property" and " name desc , resource_properties. + # a_property " are equivalent. The following fields are supported: name + # update_time resource_properties security_marks.marks + # security_center_properties.resource_name security_center_properties. + # resource_display_name security_center_properties.resource_parent + # security_center_properties.resource_parent_display_name + # security_center_properties.resource_project security_center_properties. + # resource_project_display_name security_center_properties.resource_type + # @param [Fixnum] page_size + # The maximum number of results to return in a single response. Default is 10, + # minimum is 1, maximum is 1000. + # @param [String] page_token + # The value returned by the last `ListAssetsResponse`; indicates that this is a + # continuation of a prior `ListAssets` call, and that the system should return + # the next page of data. + # @param [String] read_time + # Time used as a reference point when filtering assets. The filter is limited to + # assets existing at the supplied time and their values are those at that + # specific time. Absence of this field will default to the API's version of NOW. # @param [String] fields # Selector specifying which fields to include in a partial response. # @param [String] quota_user @@ -870,31 +1880,46 @@ def patch_organization_source(name, source_object = nil, update_mask: nil, field # Request-specific options # # @yield [result, err] Result & error if block supplied - # @yieldparam result [Google::Apis::SecuritycenterV1::Policy] parsed result object + # @yieldparam result [Google::Apis::SecuritycenterV1::ListAssetsResponse] parsed result object # @yieldparam err [StandardError] error object if request failed # - # @return [Google::Apis::SecuritycenterV1::Policy] + # @return [Google::Apis::SecuritycenterV1::ListAssetsResponse] # # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification # @raise [Google::Apis::AuthorizationError] Authorization is required - def set_source_iam_policy(resource, set_iam_policy_request_object = nil, fields: nil, quota_user: nil, options: nil, &block) - command = make_simple_command(:post, 'v1/{+resource}:setIamPolicy', options) - command.request_representation = Google::Apis::SecuritycenterV1::SetIamPolicyRequest::Representation - command.request_object = set_iam_policy_request_object - command.response_representation = Google::Apis::SecuritycenterV1::Policy::Representation - command.response_class = Google::Apis::SecuritycenterV1::Policy - command.params['resource'] = resource unless resource.nil? + def list_project_assets(parent, compare_duration: nil, field_mask: nil, filter: nil, order_by: nil, page_size: nil, page_token: nil, read_time: nil, fields: nil, quota_user: nil, options: nil, &block) + command = make_simple_command(:get, 'v1/{+parent}/assets', options) + command.response_representation = Google::Apis::SecuritycenterV1::ListAssetsResponse::Representation + command.response_class = Google::Apis::SecuritycenterV1::ListAssetsResponse + command.params['parent'] = parent unless parent.nil? + command.query['compareDuration'] = compare_duration unless compare_duration.nil? + command.query['fieldMask'] = field_mask unless field_mask.nil? + command.query['filter'] = filter unless filter.nil? + command.query['orderBy'] = order_by unless order_by.nil? + command.query['pageSize'] = page_size unless page_size.nil? + command.query['pageToken'] = page_token unless page_token.nil? + command.query['readTime'] = read_time unless read_time.nil? command.query['fields'] = fields unless fields.nil? command.query['quotaUser'] = quota_user unless quota_user.nil? execute_or_queue_command(command, &block) end - # Returns the permissions that a caller has on the specified source. - # @param [String] resource - # REQUIRED: The resource for which the policy detail is being requested. See the - # operation documentation for the appropriate value for this field. - # @param [Google::Apis::SecuritycenterV1::TestIamPermissionsRequest] test_iam_permissions_request_object + # Updates security marks. + # @param [String] name + # The relative resource name of the SecurityMarks. See: https://cloud.google.com/ + # apis/design/resource_names#relative_resource_name Examples: "organizations/` + # organization_id`/assets/`asset_id`/securityMarks" "organizations/` + # organization_id`/sources/`source_id`/findings/`finding_id`/securityMarks". + # @param [Google::Apis::SecuritycenterV1::SecurityMarks] security_marks_object + # @param [String] start_time + # The time at which the updated SecurityMarks take effect. If not set uses + # current server time. Updates will be applied to the SecurityMarks that are + # active immediately preceding this time. + # @param [String] update_mask + # The FieldMask to use when updating the security marks resource. The field mask + # must not contain duplicate fields. If empty or set to "marks", all marks will + # be replaced. Individual marks can be updated using "marks.". # @param [String] fields # Selector specifying which fields to include in a partial response. # @param [String] quota_user @@ -904,36 +1929,40 @@ def set_source_iam_policy(resource, set_iam_policy_request_object = nil, fields: # Request-specific options # # @yield [result, err] Result & error if block supplied - # @yieldparam result [Google::Apis::SecuritycenterV1::TestIamPermissionsResponse] parsed result object + # @yieldparam result [Google::Apis::SecuritycenterV1::SecurityMarks] parsed result object # @yieldparam err [StandardError] error object if request failed # - # @return [Google::Apis::SecuritycenterV1::TestIamPermissionsResponse] + # @return [Google::Apis::SecuritycenterV1::SecurityMarks] # # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification # @raise [Google::Apis::AuthorizationError] Authorization is required - def test_source_iam_permissions(resource, test_iam_permissions_request_object = nil, fields: nil, quota_user: nil, options: nil, &block) - command = make_simple_command(:post, 'v1/{+resource}:testIamPermissions', options) - command.request_representation = Google::Apis::SecuritycenterV1::TestIamPermissionsRequest::Representation - command.request_object = test_iam_permissions_request_object - command.response_representation = Google::Apis::SecuritycenterV1::TestIamPermissionsResponse::Representation - command.response_class = Google::Apis::SecuritycenterV1::TestIamPermissionsResponse - command.params['resource'] = resource unless resource.nil? + def update_project_asset_security_marks(name, security_marks_object = nil, start_time: nil, update_mask: nil, fields: nil, quota_user: nil, options: nil, &block) + command = make_simple_command(:patch, 'v1/{+name}', options) + command.request_representation = Google::Apis::SecuritycenterV1::SecurityMarks::Representation + command.request_object = security_marks_object + command.response_representation = Google::Apis::SecuritycenterV1::SecurityMarks::Representation + command.response_class = Google::Apis::SecuritycenterV1::SecurityMarks + command.params['name'] = name unless name.nil? + command.query['startTime'] = start_time unless start_time.nil? + command.query['updateMask'] = update_mask unless update_mask.nil? command.query['fields'] = fields unless fields.nil? command.query['quotaUser'] = quota_user unless quota_user.nil? execute_or_queue_command(command, &block) end - # Creates a finding. The corresponding source must exist for finding creation to - # succeed. + # Lists all sources belonging to an organization. # @param [String] parent - # Required. Resource name of the new finding's parent. Its format should be " - # organizations/[organization_id]/sources/[source_id]". - # @param [Google::Apis::SecuritycenterV1::Finding] finding_object - # @param [String] finding_id - # Required. Unique identifier provided by the client within the parent scope. It - # must be alphanumeric and less than or equal to 32 characters and greater than - # 0 characters in length. + # Required. Resource name of the parent of sources to list. Its format should be + # "organizations/[organization_id], folders/[folder_id], or projects/[project_id] + # ". + # @param [Fixnum] page_size + # The maximum number of results to return in a single response. Default is 10, + # minimum is 1, maximum is 1000. + # @param [String] page_token + # The value returned by the last `ListSourcesResponse`; indicates that this is a + # continuation of a prior `ListSources` call, and that the system should return + # the next page of data. # @param [String] fields # Selector specifying which fields to include in a partial response. # @param [String] quota_user @@ -943,22 +1972,21 @@ def test_source_iam_permissions(resource, test_iam_permissions_request_object = # Request-specific options # # @yield [result, err] Result & error if block supplied - # @yieldparam result [Google::Apis::SecuritycenterV1::Finding] parsed result object + # @yieldparam result [Google::Apis::SecuritycenterV1::ListSourcesResponse] parsed result object # @yieldparam err [StandardError] error object if request failed # - # @return [Google::Apis::SecuritycenterV1::Finding] + # @return [Google::Apis::SecuritycenterV1::ListSourcesResponse] # # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification # @raise [Google::Apis::AuthorizationError] Authorization is required - def create_organization_source_finding(parent, finding_object = nil, finding_id: nil, fields: nil, quota_user: nil, options: nil, &block) - command = make_simple_command(:post, 'v1/{+parent}/findings', options) - command.request_representation = Google::Apis::SecuritycenterV1::Finding::Representation - command.request_object = finding_object - command.response_representation = Google::Apis::SecuritycenterV1::Finding::Representation - command.response_class = Google::Apis::SecuritycenterV1::Finding + def list_project_sources(parent, page_size: nil, page_token: nil, fields: nil, quota_user: nil, options: nil, &block) + command = make_simple_command(:get, 'v1/{+parent}/sources', options) + command.response_representation = Google::Apis::SecuritycenterV1::ListSourcesResponse::Representation + command.response_class = Google::Apis::SecuritycenterV1::ListSourcesResponse command.params['parent'] = parent unless parent.nil? - command.query['findingId'] = finding_id unless finding_id.nil? + command.query['pageSize'] = page_size unless page_size.nil? + command.query['pageToken'] = page_token unless page_token.nil? command.query['fields'] = fields unless fields.nil? command.query['quotaUser'] = quota_user unless quota_user.nil? execute_or_queue_command(command, &block) @@ -966,11 +1994,15 @@ def create_organization_source_finding(parent, finding_object = nil, finding_id: # Filters an organization or source's findings and groups them by their # specified properties. To group across all sources provide a `-` as the source - # id. Example: /v1/organizations/`organization_id`/sources/-/findings + # id. Example: /v1/organizations/`organization_id`/sources/-/findings, /v1/ + # folders/`folder_id`/sources/-/findings, /v1/projects/`project_id`/sources/-/ + # findings # @param [String] parent # Required. Name of the source to groupBy. Its format is "organizations/[ - # organization_id]/sources/[source_id]". To groupBy across all sources provide a - # source_id of `-`. For example: organizations/`organization_id`/sources/- + # organization_id]/sources/[source_id]", folders/[folder_id]/sources/[source_id], + # or projects/[project_id]/sources/[source_id]. To groupBy across all sources + # provide a source_id of `-`. For example: organizations/`organization_id`/ + # sources/-, folders/`folder_id`/sources/-, or projects/`project_id`/sources/- # @param [Google::Apis::SecuritycenterV1::GroupFindingsRequest] group_findings_request_object # @param [String] fields # Selector specifying which fields to include in a partial response. @@ -989,7 +2021,7 @@ def create_organization_source_finding(parent, finding_object = nil, finding_id: # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification # @raise [Google::Apis::AuthorizationError] Authorization is required - def group_findings(parent, group_findings_request_object = nil, fields: nil, quota_user: nil, options: nil, &block) + def group_project_source_finding(parent, group_findings_request_object = nil, fields: nil, quota_user: nil, options: nil, &block) command = make_simple_command(:post, 'v1/{+parent}/findings:group', options) command.request_representation = Google::Apis::SecuritycenterV1::GroupFindingsRequest::Representation command.request_object = group_findings_request_object @@ -1006,9 +2038,11 @@ def group_findings(parent, group_findings_request_object = nil, fields: nil, quo # findings # @param [String] parent # Required. Name of the source the findings belong to. Its format is " - # organizations/[organization_id]/sources/[source_id]". To list across all - # sources provide a source_id of `-`. For example: organizations/` - # organization_id`/sources/- + # organizations/[organization_id]/sources/[source_id], folders/[folder_id]/ + # sources/[source_id], or projects/[project_id]/sources/[source_id]". To list + # across all sources provide a source_id of `-`. For example: organizations/` + # organization_id`/sources/-, folders/`folder_id`/sources/- or projects/` + # projects_id`/sources/- # @param [String] compare_duration # When compare_duration is set, the ListFindingsResult's "state_change" # attribute is updated to indicate whether the finding had its state changed, @@ -1092,7 +2126,7 @@ def group_findings(parent, group_findings_request_object = nil, fields: nil, quo # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification # @raise [Google::Apis::AuthorizationError] Authorization is required - def list_organization_source_findings(parent, compare_duration: nil, field_mask: nil, filter: nil, order_by: nil, page_size: nil, page_token: nil, read_time: nil, fields: nil, quota_user: nil, options: nil, &block) + def list_project_source_findings(parent, compare_duration: nil, field_mask: nil, filter: nil, order_by: nil, page_size: nil, page_token: nil, read_time: nil, fields: nil, quota_user: nil, options: nil, &block) command = make_simple_command(:get, 'v1/{+parent}/findings', options) command.response_representation = Google::Apis::SecuritycenterV1::ListFindingsResponse::Representation command.response_class = Google::Apis::SecuritycenterV1::ListFindingsResponse @@ -1139,7 +2173,7 @@ def list_organization_source_findings(parent, compare_duration: nil, field_mask: # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification # @raise [Google::Apis::AuthorizationError] Authorization is required - def patch_organization_source_finding(name, finding_object = nil, update_mask: nil, fields: nil, quota_user: nil, options: nil, &block) + def patch_project_source_finding(name, finding_object = nil, update_mask: nil, fields: nil, quota_user: nil, options: nil, &block) command = make_simple_command(:patch, 'v1/{+name}', options) command.request_representation = Google::Apis::SecuritycenterV1::Finding::Representation command.request_object = finding_object @@ -1175,7 +2209,7 @@ def patch_organization_source_finding(name, finding_object = nil, update_mask: n # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification # @raise [Google::Apis::AuthorizationError] Authorization is required - def set_organization_source_finding_state(name, set_finding_state_request_object = nil, fields: nil, quota_user: nil, options: nil, &block) + def set_project_source_finding_state(name, set_finding_state_request_object = nil, fields: nil, quota_user: nil, options: nil, &block) command = make_simple_command(:post, 'v1/{+name}:setState', options) command.request_representation = Google::Apis::SecuritycenterV1::SetFindingStateRequest::Representation command.request_object = set_finding_state_request_object @@ -1219,7 +2253,7 @@ def set_organization_source_finding_state(name, set_finding_state_request_object # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification # @raise [Google::Apis::AuthorizationError] Authorization is required - def update_organization_source_finding_security_marks(name, security_marks_object = nil, start_time: nil, update_mask: nil, fields: nil, quota_user: nil, options: nil, &block) + def update_project_source_finding_security_marks(name, security_marks_object = nil, start_time: nil, update_mask: nil, fields: nil, quota_user: nil, options: nil, &block) command = make_simple_command(:patch, 'v1/{+name}', options) command.request_representation = Google::Apis::SecuritycenterV1::SecurityMarks::Representation command.request_object = security_marks_object diff --git a/generated/google/apis/securitycenter_v1/synth.metadata b/generated/google/apis/securitycenter_v1/synth.metadata index d205479fe89..8b51c41a5b7 100644 --- a/generated/google/apis/securitycenter_v1/synth.metadata +++ b/generated/google/apis/securitycenter_v1/synth.metadata @@ -4,7 +4,7 @@ "git": { "name": ".", "remote": "https://github.com/googleapis/google-api-ruby-client.git", - "sha": "33b84d0738d4f86612984844493a4e0f8651f26d" + "sha": "fd68d8388ddace483f1cff77d52a03934f656362" } } ]