class Google::Apis::BinaryauthorizationV1::UserOwnedGrafeasNote
An user owned Grafeas note references a Grafeas Attestation.Authority Note created by the user.
Attributes
Output only. This field will contain the service account email address that this Attestor
will use as the principal when querying Container Analysis. Attestor
administrators must grant this service account the IAM role needed to read attestations from the note_reference
in Container Analysis (` containeranalysis.notes.occurrences.viewer`). This email address is fixed for the lifetime of the Attestor
, but callers should not make any other assumptions about the service account email; future versions may use an email based on a different naming pattern. Corresponds to the JSON property `delegationServiceAccountEmail` @return [String]
Required. The Grafeas resource name of a Attestation.Authority Note, created by the user, in the format: `projects//notes/`. This field may not be updated. An attestation by this attestor is stored as a Grafeas Attestation. Authority Occurrence that names a container image and that links to this Note. Grafeas is an external dependency. Corresponds to the JSON property `noteReference` @return [String]
Optional. Public keys that verify attestations signed by this attestor. This field may be updated. If this field is non-empty, one of the specified public keys must verify that an attestation was signed by this attestor for the image specified in the admission request. If this field is empty, this attestor always returns that no valid attestations exist. Corresponds to the JSON property `publicKeys` @return [Array<Google::Apis::BinaryauthorizationV1::AttestorPublicKey>]
Public Class Methods
# File lib/google/apis/binaryauthorization_v1/classes.rb, line 795 def initialize(**args) update!(**args) end
Public Instance Methods
Update properties of this object
# File lib/google/apis/binaryauthorization_v1/classes.rb, line 800 def update!(**args) @delegation_service_account_email = args[:delegation_service_account_email] if args.key?(:delegation_service_account_email) @note_reference = args[:note_reference] if args.key?(:note_reference) @public_keys = args[:public_keys] if args.key?(:public_keys) end