class Google::Apis::CloudassetV1::GoogleIdentityAccesscontextmanagerV1ServicePerimeter
`ServicePerimeter` describes a set of Google
Cloud resources which can freely import and export data amongst themselves, but not export outside of the ` ServicePerimeter`. If a request with a source within this `ServicePerimeter` has a target outside of the `ServicePerimeter`, the request will be blocked. Otherwise the request is allowed. There are two types of Service Perimeter - Regular and Bridge. Regular Service Perimeters cannot overlap, a single Google
Cloud project can only belong to a single regular Service Perimeter. Service Perimeter Bridges can contain only Google
Cloud projects as members, a single Google
Cloud project may belong to multiple Service Perimeter Bridges.
Attributes
Description of the `ServicePerimeter` and its use. Does not affect behavior. Corresponds to the JSON property `description` @return [String]
Required. Resource
name for the ServicePerimeter. The `short_name` component must begin with a letter and only include alphanumeric and '_'. Format: ` accessPolicies/`access_policy`/servicePerimeters/`service_perimeter“ Corresponds to the JSON property `name` @return [String]
Perimeter type indicator. A single project is allowed to be a member of single regular perimeter, but multiple service perimeter bridges. A project cannot be a included in a perimeter bridge without being included in regular perimeter. For perimeter bridges, the restricted service list as well as access level lists must be empty. Corresponds to the JSON property `perimeterType` @return [String]
`ServicePerimeterConfig` specifies a set of Google
Cloud resources that describe specific Service Perimeter configuration. Corresponds to the JSON property `spec` @return [Google::Apis::CloudassetV1::GoogleIdentityAccesscontextmanagerV1ServicePerimeterConfig]
`ServicePerimeterConfig` specifies a set of Google
Cloud resources that describe specific Service Perimeter configuration. Corresponds to the JSON property `status` @return [Google::Apis::CloudassetV1::GoogleIdentityAccesscontextmanagerV1ServicePerimeterConfig]
Human readable title. Must be unique within the Policy
. Corresponds to the JSON property `title` @return [String]
Use explicit dry run spec flag. Ordinarily, a dry-run spec implicitly exists for all Service Perimeters, and that spec is identical to the status for those Service Perimeters. When this flag is set, it inhibits the generation of the implicit spec, thereby allowing the user to explicitly provide a configuration (“spec”) to use in a dry-run version of the Service Perimeter. This allows the user to test changes to the enforced config (“status”) without actually enforcing them. This testing is done through analyzing the differences between currently enforced and suggested restrictions. use_explicit_dry_run_spec
must bet set to True if any of the fields in the spec are set to non-default values. Corresponds to the JSON property `useExplicitDryRunSpec` @return [Boolean]
Use explicit dry run spec flag. Ordinarily, a dry-run spec implicitly exists for all Service Perimeters, and that spec is identical to the status for those Service Perimeters. When this flag is set, it inhibits the generation of the implicit spec, thereby allowing the user to explicitly provide a configuration (“spec”) to use in a dry-run version of the Service Perimeter. This allows the user to test changes to the enforced config (“status”) without actually enforcing them. This testing is done through analyzing the differences between currently enforced and suggested restrictions. use_explicit_dry_run_spec
must bet set to True if any of the fields in the spec are set to non-default values. Corresponds to the JSON property `useExplicitDryRunSpec` @return [Boolean]
Public Class Methods
# File lib/google/apis/cloudasset_v1/classes.rb, line 2596 def initialize(**args) update!(**args) end
Public Instance Methods
Update properties of this object
# File lib/google/apis/cloudasset_v1/classes.rb, line 2601 def update!(**args) @description = args[:description] if args.key?(:description) @name = args[:name] if args.key?(:name) @perimeter_type = args[:perimeter_type] if args.key?(:perimeter_type) @spec = args[:spec] if args.key?(:spec) @status = args[:status] if args.key?(:status) @title = args[:title] if args.key?(:title) @use_explicit_dry_run_spec = args[:use_explicit_dry_run_spec] if args.key?(:use_explicit_dry_run_spec) end